From f97bc88f5b51741e019ada0d10bf66e0ce14c91a Mon Sep 17 00:00:00 2001
From: Jaykumar Pitambarbhai Patel <jaykumar.pitambarbhaipatel@arm.com>
Date: Mon, 3 Jun 2019 11:57:48 +0530
Subject: [PATCH] v0.9 PSA APIs test suite update

This release includes the following major enhancements:

1. Enhanced Crypto and IPC suites for new tests
2. Added TFM-MUSCA_B support
3. Bug fixes, feature enhancement and documentation update
---
 api-specs/include/psa/crypto.h                | 1277 ++---------------
 api-specs/include/psa/crypto_extra.h          |  113 +-
 api-specs/include/psa/crypto_platform.h       |   62 +-
 api-specs/include/psa/crypto_sizes.h          |   66 +-
 api-specs/include/psa/crypto_struct.h         |  184 ++-
 api-specs/include/psa/crypto_types.h          |   21 +-
 api-specs/include/psa/crypto_values.h         |  288 ++--
 api-tests/README.md                           |   33 +-
 api-tests/dev_apis/README.md                  |   81 +-
 .../dev_apis/crypto/test_c002/test_c002.c     |    6 +-
 .../dev_apis/crypto/test_c002/test_data.h     |   12 +-
 .../dev_apis/crypto/test_c003/test_c003.c     |    5 +-
 .../dev_apis/crypto/test_c003/test_data.h     |   10 +-
 .../dev_apis/crypto/test_c004/test_c004.c     |    2 +-
 .../dev_apis/crypto/test_c005/test_c005.c     |    2 +-
 .../dev_apis/crypto/test_c006/test_c006.c     |    4 +-
 .../dev_apis/crypto/test_c006/test_data.h     |    3 +-
 .../dev_apis/crypto/test_c007/test_c007.c     |    2 +-
 .../dev_apis/crypto/test_c007/test_data.h     |    2 +-
 .../dev_apis/crypto/test_c008/test_c008.c     |    2 +
 .../dev_apis/crypto/test_c009/test_c009.c     |   15 +-
 .../dev_apis/crypto/test_c009/test_data.h     |   34 +-
 .../dev_apis/crypto/test_c011/test_c011.c     |   15 +-
 .../dev_apis/crypto/test_c011/test_data.h     |    9 +
 .../dev_apis/crypto/test_c012/test_c012.c     |   10 +-
 .../dev_apis/crypto/test_c014/test_c014.c     |    8 +-
 .../dev_apis/crypto/test_c015/test_c015.c     |    2 +-
 .../dev_apis/crypto/test_c016/test_c016.c     |   22 +-
 .../dev_apis/crypto/test_c017/test_c017.c     |   52 +-
 .../dev_apis/crypto/test_c017/test_data.h     |    3 -
 .../dev_apis/crypto/test_c018/test_c018.c     |   53 +-
 .../dev_apis/crypto/test_c018/test_c018.h     |    1 +
 .../dev_apis/crypto/test_c018/test_data.h     |    4 +-
 .../dev_apis/crypto/test_c019/test_c019.c     |   50 +-
 .../dev_apis/crypto/test_c019/test_c019.h     |    1 +
 .../dev_apis/crypto/test_c020/test_c020.c     |   69 +-
 .../dev_apis/crypto/test_c020/test_data.h     |    2 +-
 .../dev_apis/crypto/test_c021/test_c021.c     |    4 +
 .../dev_apis/crypto/test_c022/test_c022.c     |   23 +-
 .../dev_apis/crypto/test_c022/test_data.h     |   10 +-
 .../dev_apis/crypto/test_c024/test_c024.c     |   33 +-
 .../dev_apis/crypto/test_c024/test_data.h     |    2 +-
 .../dev_apis/crypto/test_c025/test_c025.c     |   34 +-
 .../dev_apis/crypto/test_c025/test_data.h     |   17 +
 .../dev_apis/crypto/test_c026/test_c026.c     |   20 +-
 .../dev_apis/crypto/test_c027/test_c027.c     |   41 +-
 .../dev_apis/crypto/test_c028/test_c028.c     |   20 +-
 .../dev_apis/crypto/test_c029/test_c029.c     |   20 +-
 .../dev_apis/crypto/test_c030/test_c030.c     |   15 +-
 .../dev_apis/crypto/test_c031/test_c031.c     |   12 +-
 .../dev_apis/crypto/test_c032/test_c032.c     |   17 +-
 .../dev_apis/crypto/test_c033/test_c033.c     |   18 +-
 .../dev_apis/crypto/test_c034/test_c034.c     |   17 +-
 .../dev_apis/crypto/test_c035/test_c035.c     |    6 +-
 .../dev_apis/crypto/test_c036/test_c036.c     |   49 +-
 .../dev_apis/crypto/test_c036/test_c036.h     |    1 +
 .../dev_apis/crypto/test_c036/test_data.h     |    2 +
 .../dev_apis/crypto/test_c037/test_c037.c     |   18 +-
 .../dev_apis/crypto/test_c038/test_c038.c     |   14 +-
 .../dev_apis/crypto/test_c039/test_c039.c     |   29 +-
 .../dev_apis/crypto/test_c039/test_data.h     |    8 +-
 .../dev_apis/crypto/test_c040/test_c040.c     |   25 +-
 .../dev_apis/crypto/test_c041/test_c041.c     |   20 +-
 .../dev_apis/crypto/test_c042/test_c042.c     |    6 +-
 .../dev_apis/crypto/test_c043/test_c043.c     |   20 +-
 api-tests/dev_apis/crypto/test_c044/source.mk |   20 +
 .../dev_apis/crypto/test_c044/test_c044.c     |  302 ++++
 .../dev_apis/crypto/test_c044/test_c044.h     |   31 +
 .../dev_apis/crypto/test_c044/test_data.h     |  348 +++++
 .../dev_apis/crypto/test_c044/test_entry.c    |   53 +
 api-tests/dev_apis/crypto/testsuite.db        |    1 +
 .../test_s002/test_its_data.h                 |    3 +
 .../test_s004/test_s004.c                     |    4 +-
 .../test_s006/test_s006.c                     |    2 +-
 .../test_s009/test_its_data.h                 |   18 +-
 .../test_s009/test_ps_data.h                  |   18 +-
 .../test_s009/test_s009.c                     |   48 +-
 .../test_s009/test_s009.h                     |    2 +-
 .../test_s010/test_its_data.h                 |    2 +-
 .../test_s010/test_ps_data.h                  |    2 +-
 .../test_s010/test_s010.c                     |    2 +-
 ..._APIs_Arch_Test_Validation_Methodology.pdf |  Bin 587853 -> 590051 bytes
 api-tests/docs/porting_guide_dev_apis.md      |   56 +-
 api-tests/docs/porting_guide_ff.md            |   56 +-
 api-tests/docs/psa_attestation_testlist.md    |    2 +-
 api-tests/docs/psa_crypto_testlist.md         |  193 ++-
 api-tests/docs/psa_ipc_testlist.md            |  218 +--
 api-tests/docs/psa_its_testlist.md            |   26 +-
 api-tests/docs/psa_ps_testlist.md             |   39 +-
 api-tests/docs/sw_requirements.md             |   38 +-
 api-tests/ff/README.md                        |  114 +-
 api-tests/ff/ipc/test_i001/test_i001.c        |    8 +-
 api-tests/ff/ipc/test_i001/test_supp_i001.c   |   15 +-
 api-tests/ff/ipc/test_i002/test_i002.c        |   41 +-
 api-tests/ff/ipc/test_i002/test_i002.h        |    2 +-
 api-tests/ff/ipc/test_i002/test_supp_i002.c   |  152 +-
 api-tests/ff/ipc/test_i003/test_i003.c        |   16 +-
 api-tests/ff/ipc/test_i003/test_supp_i003.c   |  203 +--
 api-tests/ff/ipc/test_i004/test_i004.c        |   44 +-
 api-tests/ff/ipc/test_i004/test_supp_i004.c   |   13 +-
 api-tests/ff/ipc/test_i005/test_i005.c        |   43 +-
 api-tests/ff/ipc/test_i005/test_supp_i005.c   |   26 +-
 api-tests/ff/ipc/test_i006/test_i006.c        |   45 +-
 api-tests/ff/ipc/test_i006/test_supp_i006.c   |   26 +-
 api-tests/ff/ipc/test_i007/test_i007.c        |   45 +-
 api-tests/ff/ipc/test_i007/test_supp_i007.c   |   26 +-
 api-tests/ff/ipc/test_i008/test_i008.c        |   59 +-
 api-tests/ff/ipc/test_i008/test_supp_i008.c   |   45 +-
 api-tests/ff/ipc/test_i009/test_i009.c        |   38 +-
 api-tests/ff/ipc/test_i009/test_supp_i009.c   |   26 +-
 api-tests/ff/ipc/test_i010/test_i010.c        |   48 +-
 api-tests/ff/ipc/test_i010/test_supp_i010.c   |   25 +-
 api-tests/ff/ipc/test_i011/test_i011.c        |   48 +-
 api-tests/ff/ipc/test_i011/test_supp_i011.c   |   26 +-
 api-tests/ff/ipc/test_i012/test_i012.c        |   42 +-
 api-tests/ff/ipc/test_i012/test_supp_i012.c   |   13 +-
 api-tests/ff/ipc/test_i013/test_i013.c        |    8 +-
 api-tests/ff/ipc/test_i013/test_supp_i013.c   |   64 +-
 api-tests/ff/ipc/test_i014/test_i014.c        |    8 +-
 api-tests/ff/ipc/test_i014/test_supp_i014.c   |   62 +-
 api-tests/ff/ipc/test_i015/test_i015.c        |    8 +-
 api-tests/ff/ipc/test_i015/test_supp_i015.c   |   63 +-
 api-tests/ff/ipc/test_i016/test_i016.c        |    8 +-
 api-tests/ff/ipc/test_i016/test_supp_i016.c   |   61 +-
 api-tests/ff/ipc/test_i017/test_i017.c        |    8 +-
 api-tests/ff/ipc/test_i017/test_supp_i017.c   |   63 +-
 api-tests/ff/ipc/test_i018/test_i018.c        |    8 +-
 api-tests/ff/ipc/test_i018/test_supp_i018.c   |   71 +-
 api-tests/ff/ipc/test_i019/test_i019.c        |    8 +-
 api-tests/ff/ipc/test_i019/test_supp_i019.c   |   72 +-
 api-tests/ff/ipc/test_i020/test_i020.c        |    8 +-
 api-tests/ff/ipc/test_i020/test_supp_i020.c   |   67 +-
 api-tests/ff/ipc/test_i021/test_entry.c       |    4 +-
 api-tests/ff/ipc/test_i021/test_i021.c        |   44 +-
 api-tests/ff/ipc/test_i021/test_i021.h        |    2 +-
 api-tests/ff/ipc/test_i021/test_supp_i021.c   |   79 +-
 api-tests/ff/ipc/test_i022/test_i022.c        |    8 +-
 api-tests/ff/ipc/test_i022/test_supp_i022.c   |   65 +-
 api-tests/ff/ipc/test_i023/test_i023.c        |    8 +-
 api-tests/ff/ipc/test_i023/test_supp_i023.c   |   67 +-
 api-tests/ff/ipc/test_i024/test_i024.c        |   59 +-
 api-tests/ff/ipc/test_i024/test_supp_i024.c   |   33 +-
 api-tests/ff/ipc/test_i025/test_i025.c        |   59 +-
 api-tests/ff/ipc/test_i025/test_supp_i025.c   |   34 +-
 api-tests/ff/ipc/test_i026/test_i026.c        |   46 +-
 api-tests/ff/ipc/test_i026/test_i026.h        |    5 -
 api-tests/ff/ipc/test_i026/test_supp_i026.c   |   55 +-
 api-tests/ff/ipc/test_i027/test_entry.c       |    4 +-
 api-tests/ff/ipc/test_i027/test_i027.c        |  111 +-
 api-tests/ff/ipc/test_i027/test_supp_i027.c   |   43 +-
 api-tests/ff/ipc/test_i028/test_entry.c       |    2 +-
 api-tests/ff/ipc/test_i028/test_i028.c        |    6 +-
 api-tests/ff/ipc/test_i028/test_supp_i028.c   |   61 +-
 api-tests/ff/ipc/test_i029/test_i029.c        |   13 +-
 api-tests/ff/ipc/test_i029/test_supp_i029.c   |   68 +-
 api-tests/ff/ipc/test_i030/test_i030.c        |    8 +-
 api-tests/ff/ipc/test_i030/test_supp_i030.c   |   77 +-
 api-tests/ff/ipc/test_i031/test_i031.c        |    8 +-
 api-tests/ff/ipc/test_i031/test_supp_i031.c   |   77 +-
 api-tests/ff/ipc/test_i032/test_i032.c        |    8 +-
 api-tests/ff/ipc/test_i032/test_supp_i032.c   |   77 +-
 api-tests/ff/ipc/test_i033/test_i033.c        |    8 +-
 api-tests/ff/ipc/test_i033/test_supp_i033.c   |   77 +-
 api-tests/ff/ipc/test_i034/test_i034.c        |    6 +-
 api-tests/ff/ipc/test_i034/test_supp_i034.c   |   61 +-
 api-tests/ff/ipc/test_i035/test_i035.c        |    6 +-
 api-tests/ff/ipc/test_i035/test_supp_i035.c   |   69 +-
 api-tests/ff/ipc/test_i036/test_i036.c        |    8 +-
 api-tests/ff/ipc/test_i036/test_supp_i036.c   |   77 +-
 api-tests/ff/ipc/test_i037/test_i037.c        |    8 +-
 api-tests/ff/ipc/test_i037/test_supp_i037.c   |   75 +-
 api-tests/ff/ipc/test_i038/test_i038.c        |    8 +-
 api-tests/ff/ipc/test_i038/test_supp_i038.c   |   77 +-
 api-tests/ff/ipc/test_i039/test_i039.c        |    8 +-
 api-tests/ff/ipc/test_i039/test_supp_i039.c   |   77 +-
 api-tests/ff/ipc/test_i040/test_i040.c        |    6 +-
 api-tests/ff/ipc/test_i040/test_supp_i040.c   |   61 +-
 api-tests/ff/ipc/test_i041/test_i041.c        |    6 +-
 api-tests/ff/ipc/test_i041/test_supp_i041.c   |   69 +-
 api-tests/ff/ipc/test_i042/test_i042.c        |    8 +-
 api-tests/ff/ipc/test_i042/test_supp_i042.c   |   74 +-
 api-tests/ff/ipc/test_i043/test_i043.c        |    8 +-
 api-tests/ff/ipc/test_i043/test_supp_i043.c   |   77 +-
 api-tests/ff/ipc/test_i044/test_i044.c        |    8 +-
 api-tests/ff/ipc/test_i044/test_supp_i044.c   |   75 +-
 api-tests/ff/ipc/test_i045/test_i045.c        |    8 +-
 api-tests/ff/ipc/test_i045/test_supp_i045.c   |   77 +-
 api-tests/ff/ipc/test_i046/test_i046.c        |    8 +-
 api-tests/ff/ipc/test_i046/test_supp_i046.c   |   77 +-
 api-tests/ff/ipc/test_i047/test_i047.c        |    6 +-
 api-tests/ff/ipc/test_i047/test_supp_i047.c   |   67 +-
 api-tests/ff/ipc/test_i048/test_i048.c        |   51 +-
 api-tests/ff/ipc/test_i048/test_supp_i048.c   |   53 +-
 api-tests/ff/ipc/test_i049/test_i049.c        |   51 +-
 api-tests/ff/ipc/test_i049/test_supp_i049.c   |   53 +-
 api-tests/ff/ipc/test_i050/test_i050.c        |   51 +-
 api-tests/ff/ipc/test_i050/test_supp_i050.c   |   53 +-
 api-tests/ff/ipc/test_i051/test_i051.c        |   53 +-
 api-tests/ff/ipc/test_i051/test_supp_i051.c   |   53 +-
 api-tests/ff/ipc/test_i052/test_i052.c        |   56 +-
 api-tests/ff/ipc/test_i052/test_supp_i052.c   |   53 +-
 api-tests/ff/ipc/test_i053/test_i053.c        |   55 +-
 api-tests/ff/ipc/test_i053/test_supp_i053.c   |   53 +-
 api-tests/ff/ipc/test_i054/test_entry.c       |    7 -
 api-tests/ff/ipc/test_i054/test_i054.c        |   42 +-
 api-tests/ff/ipc/test_i054/test_supp_i054.c   |   53 +-
 api-tests/ff/ipc/test_i055/test_i055.c        |    6 +-
 api-tests/ff/ipc/test_i055/test_supp_i055.c   |   93 +-
 api-tests/ff/ipc/test_i056/test_i056.c        |    6 +-
 api-tests/ff/ipc/test_i056/test_supp_i056.c   |   77 +-
 api-tests/ff/ipc/test_i057/test_i057.c        |    6 +-
 api-tests/ff/ipc/test_i057/test_supp_i057.c   |   91 +-
 api-tests/ff/ipc/test_i058/test_i058.c        |    7 +-
 api-tests/ff/ipc/test_i058/test_supp_i058.c   |   27 +-
 api-tests/ff/ipc/test_i059/test_i059.c        |    2 +-
 api-tests/ff/ipc/test_i059/test_supp_i059.c   |   51 +-
 api-tests/ff/ipc/test_i060/test_i060.c        |    2 +-
 api-tests/ff/ipc/test_i060/test_supp_i060.c   |   51 +-
 api-tests/ff/ipc/test_i061/test_i061.c        |    2 +-
 api-tests/ff/ipc/test_i061/test_supp_i061.c   |   51 +-
 api-tests/ff/ipc/test_i062/test_i062.c        |    2 +-
 api-tests/ff/ipc/test_i062/test_supp_i062.c   |   51 +-
 api-tests/ff/ipc/test_i063/test_i063.c        |    8 +-
 api-tests/ff/ipc/test_i063/test_supp_i063.c   |   47 +-
 api-tests/ff/ipc/test_i064/test_i064.c        |   18 +-
 api-tests/ff/ipc/test_i064/test_supp_i064.c   |    9 +-
 api-tests/ff/ipc/test_i065/test_i065.c        |   18 +-
 api-tests/ff/ipc/test_i065/test_supp_i065.c   |    9 +-
 api-tests/ff/ipc/test_i066/test_i066.c        |   18 +-
 api-tests/ff/ipc/test_i066/test_supp_i066.c   |    9 +-
 api-tests/ff/ipc/test_i067/source.mk          |   25 +
 api-tests/ff/ipc/test_i067/test_entry.c       |   52 +
 api-tests/ff/ipc/test_i067/test_i067.c        |   65 +
 api-tests/ff/ipc/test_i067/test_i067.h        |   37 +
 api-tests/ff/ipc/test_i067/test_supp_i067.c   |  127 ++
 api-tests/ff/ipc/test_i068/source.mk          |   25 +
 api-tests/ff/ipc/test_i068/test_entry.c       |   52 +
 api-tests/ff/ipc/test_i068/test_i068.c        |   94 ++
 api-tests/ff/ipc/test_i068/test_i068.h        |   37 +
 api-tests/ff/ipc/test_i068/test_supp_i068.c   |   37 +
 api-tests/ff/ipc/test_i069/source.mk          |   25 +
 api-tests/ff/ipc/test_i069/test_entry.c       |   52 +
 api-tests/ff/ipc/test_i069/test_i069.c        |   68 +
 api-tests/ff/ipc/test_i069/test_i069.h        |   37 +
 api-tests/ff/ipc/test_i069/test_supp_i069.c   |   37 +
 api-tests/ff/ipc/test_i070/source.mk          |   25 +
 api-tests/ff/ipc/test_i070/test_entry.c       |   52 +
 api-tests/ff/ipc/test_i070/test_i070.c        |   75 +
 api-tests/ff/ipc/test_i070/test_i070.h        |   37 +
 api-tests/ff/ipc/test_i070/test_supp_i070.c   |   37 +
 api-tests/ff/ipc/test_i071/source.mk          |   25 +
 api-tests/ff/ipc/test_i071/test_entry.c       |   52 +
 api-tests/ff/ipc/test_i071/test_i071.c        |  120 ++
 api-tests/ff/ipc/test_i071/test_i071.h        |   37 +
 api-tests/ff/ipc/test_i071/test_supp_i071.c   |   37 +
 api-tests/ff/ipc/test_i072/source.mk          |   25 +
 api-tests/ff/ipc/test_i072/test_entry.c       |   51 +
 api-tests/ff/ipc/test_i072/test_i072.c        |  125 ++
 api-tests/ff/ipc/test_i072/test_i072.h        |   38 +
 api-tests/ff/ipc/test_i072/test_supp_i072.c   |  113 ++
 api-tests/ff/ipc/test_i073/source.mk          |   25 +
 api-tests/ff/ipc/test_i073/test_entry.c       |   51 +
 api-tests/ff/ipc/test_i073/test_i073.c        |  125 ++
 api-tests/ff/ipc/test_i073/test_i073.h        |   38 +
 api-tests/ff/ipc/test_i073/test_supp_i073.c   |  120 ++
 api-tests/ff/ipc/test_i074/source.mk          |   25 +
 api-tests/ff/ipc/test_i074/test_entry.c       |   51 +
 api-tests/ff/ipc/test_i074/test_i074.c        |  145 ++
 api-tests/ff/ipc/test_i074/test_i074.h        |   38 +
 api-tests/ff/ipc/test_i074/test_supp_i074.c   |  146 ++
 api-tests/ff/ipc/test_i075/source.mk          |   25 +
 api-tests/ff/ipc/test_i075/test_entry.c       |   51 +
 api-tests/ff/ipc/test_i075/test_i075.c        |  127 ++
 api-tests/ff/ipc/test_i075/test_i075.h        |   38 +
 api-tests/ff/ipc/test_i075/test_supp_i075.c   |  143 ++
 api-tests/ff/ipc/test_i076/source.mk          |   25 +
 api-tests/ff/ipc/test_i076/test_entry.c       |   51 +
 api-tests/ff/ipc/test_i076/test_i076.c        |  144 ++
 api-tests/ff/ipc/test_i076/test_i076.h        |   38 +
 api-tests/ff/ipc/test_i076/test_supp_i076.c   |   44 +
 api-tests/ff/ipc/test_i077/source.mk          |   25 +
 api-tests/ff/ipc/test_i077/test_entry.c       |   51 +
 api-tests/ff/ipc/test_i077/test_i077.c        |  145 ++
 api-tests/ff/ipc/test_i077/test_i077.h        |   38 +
 api-tests/ff/ipc/test_i077/test_supp_i077.c   |   44 +
 api-tests/ff/ipc/test_i078/source.mk          |   25 +
 api-tests/ff/ipc/test_i078/test_entry.c       |   51 +
 api-tests/ff/ipc/test_i078/test_i078.c        |  162 +++
 api-tests/ff/ipc/test_i078/test_i078.h        |   38 +
 api-tests/ff/ipc/test_i078/test_supp_i078.c   |   44 +
 api-tests/ff/ipc/test_i079/source.mk          |   25 +
 api-tests/ff/ipc/test_i079/test_entry.c       |   51 +
 api-tests/ff/ipc/test_i079/test_i079.c        |  144 ++
 api-tests/ff/ipc/test_i079/test_i079.h        |   38 +
 api-tests/ff/ipc/test_i079/test_supp_i079.c   |   46 +
 api-tests/ff/ipc/test_i080/source.mk          |   25 +
 api-tests/ff/ipc/test_i080/test_entry.c       |   52 +
 api-tests/ff/ipc/test_i080/test_i080.c        |  144 ++
 api-tests/ff/ipc/test_i080/test_i080.h        |   38 +
 api-tests/ff/ipc/test_i080/test_supp_i080.c   |   44 +
 api-tests/ff/ipc/test_i081/source.mk          |   25 +
 api-tests/ff/ipc/test_i081/test_entry.c       |   52 +
 api-tests/ff/ipc/test_i081/test_i081.c        |  145 ++
 api-tests/ff/ipc/test_i081/test_i081.h        |   38 +
 api-tests/ff/ipc/test_i081/test_supp_i081.c   |   44 +
 api-tests/ff/ipc/test_i082/source.mk          |   25 +
 api-tests/ff/ipc/test_i082/test_entry.c       |   52 +
 api-tests/ff/ipc/test_i082/test_i082.c        |  162 +++
 api-tests/ff/ipc/test_i082/test_i082.h        |   38 +
 api-tests/ff/ipc/test_i082/test_supp_i082.c   |   44 +
 api-tests/ff/ipc/test_i083/source.mk          |   25 +
 api-tests/ff/ipc/test_i083/test_entry.c       |   52 +
 api-tests/ff/ipc/test_i083/test_i083.c        |  144 ++
 api-tests/ff/ipc/test_i083/test_i083.h        |   38 +
 api-tests/ff/ipc/test_i083/test_supp_i083.c   |   46 +
 api-tests/ff/ipc/test_i084/source.mk          |   25 +
 api-tests/ff/ipc/test_i084/test_entry.c       |   52 +
 api-tests/ff/ipc/test_i084/test_i084.c        |  125 ++
 api-tests/ff/ipc/test_i084/test_i084.h        |   38 +
 api-tests/ff/ipc/test_i084/test_supp_i084.c   |  113 ++
 api-tests/ff/ipc/test_i085/source.mk          |   25 +
 api-tests/ff/ipc/test_i085/test_entry.c       |   52 +
 api-tests/ff/ipc/test_i085/test_i085.c        |  125 ++
 api-tests/ff/ipc/test_i085/test_i085.h        |   38 +
 api-tests/ff/ipc/test_i085/test_supp_i085.c   |  120 ++
 api-tests/ff/ipc/test_i086/source.mk          |   25 +
 api-tests/ff/ipc/test_i086/test_entry.c       |   52 +
 api-tests/ff/ipc/test_i086/test_i086.c        |  145 ++
 api-tests/ff/ipc/test_i086/test_i086.h        |   38 +
 api-tests/ff/ipc/test_i086/test_supp_i086.c   |  146 ++
 api-tests/ff/ipc/test_i087/source.mk          |   25 +
 api-tests/ff/ipc/test_i087/test_entry.c       |   52 +
 api-tests/ff/ipc/test_i087/test_i087.c        |  127 ++
 api-tests/ff/ipc/test_i087/test_i087.h        |   38 +
 api-tests/ff/ipc/test_i087/test_supp_i087.c   |  143 ++
 api-tests/ff/ipc/test_l088/source.mk          |   25 +
 api-tests/ff/ipc/test_l088/test_entry.c       |   52 +
 api-tests/ff/ipc/test_l088/test_l088.c        |   37 +
 api-tests/ff/ipc/test_l088/test_l088.h        |   37 +
 api-tests/ff/ipc/test_l088/test_supp_l088.c   |   59 +
 api-tests/ff/ipc/testsuite.db                 |  142 +-
 .../ff/partition/common/driver_partition.c    |  407 +++++-
 api-tests/ff/partition/ipc/client_partition.c |   13 +-
 api-tests/ff/partition/ipc/server_partition.c |    9 +-
 api-tests/platform/drivers/nvmem/pal_nvmem.c  |    2 +-
 api-tests/platform/drivers/nvmem/pal_nvmem.h  |    2 +-
 .../platform/drivers/uart/cmsdk/pal_uart.c    |   51 +-
 .../platform/drivers/uart/cmsdk/pal_uart.h    |   15 +-
 .../platform/drivers/uart/pl011/pal_uart.c    |   69 +-
 .../platform/drivers/uart/pl011/pal_uart.h    |   19 +-
 .../drivers/watchdog/cmsdk/pal_wd_cmsdk.h     |    2 +-
 .../tgt_dev_apis_mbedos_fvp_mps2_m4/Makefile  |    3 +-
 .../common/driver_partition_psa.json          |   14 +-
 .../manifests/ipc/client_partition_psa.json   |   11 +-
 .../manifests/ipc/server_partition_psa.json   |    8 +-
 .../nspe/common/pal_config.h                  |   19 +-
 .../nspe/common/pal_driver_ipc_intf.c         |    2 +-
 .../nspe/common/pal_driver_ns_intf.c          |    2 +-
 .../nspe/crypto/pal_crypto_intf.c             |    7 +-
 .../nspe/crypto/pal_crypto_intf.h             |    1 +
 .../pal_attestation_crypto.c                  |  346 +++++
 .../pal_attestation_crypto.h                  |  102 ++
 .../initial_attestation/pal_attestation_eat.c |  130 +-
 .../initial_attestation/pal_attestation_eat.h |  105 +-
 .../pal_attestation_intf.h                    |    2 +-
 .../spe/pal_driver_intf.c                     |   22 +-
 .../spe/pal_driver_intf.h                     |    4 +-
 .../targets/tgt_dev_apis_tfm_an521/Makefile   |    3 +-
 .../common/driver_partition_psa.json          |   16 +-
 .../manifests/ipc/client_partition_psa.json   |   11 +-
 .../manifests/ipc/server_partition_psa.json   |    8 +-
 .../nspe/common/pal_config.h                  |   19 +-
 .../nspe/common/pal_driver_ipc_intf.c         |    2 +-
 .../nspe/common/pal_driver_ns_intf.c          |    2 +-
 .../nspe/crypto/pal_crypto_config.h           |   30 +-
 .../nspe/crypto/pal_crypto_intf.c             |    7 +-
 .../nspe/crypto/pal_crypto_intf.h             |    1 +
 .../pal_attestation_crypto.c                  |  346 +++++
 .../pal_attestation_crypto.h                  |  102 ++
 .../initial_attestation/pal_attestation_eat.c |  130 +-
 .../initial_attestation/pal_attestation_eat.h |  105 +-
 .../pal_attestation_intf.h                    |    2 +-
 .../spe/pal_driver_intf.c                     |   22 +-
 .../spe/pal_driver_intf.h                     |    4 +-
 .../targets/tgt_dev_apis_tfm_musca_a/Makefile |    3 +-
 .../common/driver_partition_psa.json          |   16 +-
 .../manifests/ipc/client_partition_psa.json   |   11 +-
 .../manifests/ipc/server_partition_psa.json   |    8 +-
 .../nspe/common/pal_config.h                  |   19 +-
 .../nspe/common/pal_driver_ipc_intf.c         |    2 +-
 .../nspe/common/pal_driver_ns_intf.c          |    2 +-
 .../nspe/crypto/pal_crypto_config.h           |   30 +-
 .../nspe/crypto/pal_crypto_intf.c             |    7 +-
 .../nspe/crypto/pal_crypto_intf.h             |    1 +
 .../pal_attestation_crypto.c                  |  346 +++++
 .../pal_attestation_crypto.h                  |  102 ++
 .../initial_attestation/pal_attestation_eat.c |  130 +-
 .../initial_attestation/pal_attestation_eat.h |  105 +-
 .../pal_attestation_intf.h                    |    2 +-
 .../reference_logs/attestation.txt            |   36 +
 .../reference_logs/crypto.txt                 |  766 ++++++++++
 .../reference_logs/protected_storage.txt      |  157 ++
 .../spe/pal_driver_intf.c                     |   22 +-
 .../spe/pal_driver_intf.h                     |    4 +-
 .../tgt_dev_apis_tfm_musca_b1/Makefile        |  160 +++
 .../common/driver_partition_psa.json          |   75 +
 .../manifests/ipc/client_partition_psa.json   |   37 +
 .../manifests/ipc/server_partition_psa.json   |   69 +
 .../nspe/common/pal_client_api_empty_intf.c   |   93 ++
 .../nspe/common/pal_client_api_intf.c         |   97 ++
 .../nspe/common/pal_client_api_intf.h         |   32 +
 .../nspe/common/pal_common.h                  |  118 ++
 .../nspe/common/pal_config.h                  |  119 ++
 .../nspe/common/pal_driver_ipc_intf.c         |  305 ++++
 .../nspe/common/pal_driver_ns_intf.c          |  145 ++
 .../nspe/crypto/pal_crypto_config.h           |  323 +++++
 .../nspe/crypto/pal_crypto_config_check.h     |  223 +++
 .../nspe/crypto/pal_crypto_empty_intf.c       |   30 +
 .../nspe/crypto/pal_crypto_intf.c             |  340 +++++
 .../nspe/crypto/pal_crypto_intf.h             |   76 +
 .../pal_attestation_crypto.c                  |  346 +++++
 .../pal_attestation_crypto.h                  |  102 ++
 .../initial_attestation/pal_attestation_eat.c |  491 +++++++
 .../initial_attestation/pal_attestation_eat.h |  170 +++
 .../pal_attestation_empty_intf.c              |   30 +
 .../pal_attestation_intf.c                    |   54 +
 .../pal_attestation_intf.h                    |   30 +
 .../pal_internal_trusted_storage_empty_intf.c |   30 +
 .../pal_internal_trusted_storage_intf.c       |   60 +
 .../pal_internal_trusted_storage_intf.h       |   31 +
 .../pal_protected_storage_empty_intf.c        |   30 +
 .../pal_protected_storage_intf.c              |   75 +
 .../pal_protected_storage_intf.h              |   34 +
 .../reference_logs/attestation.txt            |   36 +
 .../reference_logs/crypto.txt                 |  403 ++++++
 .../reference_logs/protected_storage.txt      |  154 ++
 .../spe/pal_driver_intf.c                     |  131 ++
 .../spe/pal_driver_intf.h                     |   35 +
 .../tgt_dev_apis_tfm_musca_b1/target.cfg      |   56 +
 .../tgt_ff_mbedos_fvp_mps2_m4/Makefile        |    3 +-
 .../common/driver_partition_psa.json          |   14 +-
 .../manifests/ipc/client_partition_psa.json   |   11 +-
 .../manifests/ipc/server_partition_psa.json   |    8 +-
 .../nspe/common/pal_config.h                  |   19 +-
 .../nspe/common/pal_driver_ipc_intf.c         |    2 +-
 .../nspe/common/pal_driver_ns_intf.c          |    2 +-
 .../nspe/crypto/pal_crypto_intf.c             |    7 +-
 .../nspe/crypto/pal_crypto_intf.h             |    1 +
 .../pal_attestation_crypto.c                  |  346 +++++
 .../pal_attestation_crypto.h                  |  102 ++
 .../initial_attestation/pal_attestation_eat.c |  130 +-
 .../initial_attestation/pal_attestation_eat.h |  105 +-
 .../pal_attestation_intf.h                    |    2 +-
 .../spe/pal_driver_intf.c                     |   22 +-
 .../spe/pal_driver_intf.h                     |    4 +-
 .../tgt_ff_mbedos_fvp_mps2_m4/target.cfg      |   13 +-
 api-tests/tools/makefiles/Makefile            |   34 +-
 api-tests/tools/makefiles/linker/test.linker  |    4 +-
 api-tests/tools/makefiles/linker/test.sct     |    2 +-
 api-tests/tools/makefiles/spbuild.mk          |    6 +
 api-tests/tools/makefiles/toolchain.mk        |   20 +-
 api-tests/tools/scripts/gen_tests_list.pl     |    8 +-
 .../tools/scripts/process_test_linker_file.pl |    2 -
 api-tests/tools/scripts/setup.sh              |   83 +-
 api-tests/tools/scripts/targetConfigGen.pl    |  238 ---
 api-tests/tools/scripts/targetConfigGen.py    |  183 +++
 api-tests/tools/scripts/test_elf_combine.pl   |    4 +-
 api-tests/val/common/val.h                    |   31 +-
 api-tests/val/common/val_target.c             |   15 +-
 api-tests/val/common/val_target.h             |   10 +-
 api-tests/val/nspe/pal_interfaces_ns.h        |    2 +-
 api-tests/val/nspe/val_attestation.h          |    1 -
 api-tests/val/nspe/val_crypto.c               |    2 +-
 api-tests/val/nspe/val_crypto.h               |    2 +
 api-tests/val/nspe/val_dispatcher.c           |    4 +-
 api-tests/val/nspe/val_entry.h                |    2 +-
 api-tests/val/nspe/val_framework.c            |   74 +-
 api-tests/val/nspe/val_interfaces.h           |    2 +-
 api-tests/val/nspe/val_peripherals.c          |    2 +-
 api-tests/val/nspe/val_peripherals.h          |    2 +-
 api-tests/val/spe/pal_interfaces_s.h          |   21 +-
 api-tests/val/spe/val_driver_service_apis.c   |   50 +-
 api-tests/val/spe/val_driver_service_apis.h   |   16 +-
 api-tests/val/spe/val_partition_common.h      |   44 +-
 api-tests/val/spe/val_service_defs.h          |   68 +-
 485 files changed, 22490 insertions(+), 4819 deletions(-)
 create mode 100644 api-tests/dev_apis/crypto/test_c044/source.mk
 create mode 100644 api-tests/dev_apis/crypto/test_c044/test_c044.c
 create mode 100644 api-tests/dev_apis/crypto/test_c044/test_c044.h
 create mode 100644 api-tests/dev_apis/crypto/test_c044/test_data.h
 create mode 100644 api-tests/dev_apis/crypto/test_c044/test_entry.c
 mode change 100644 => 100755 api-tests/docs/Arm_PSA_APIs_Arch_Test_Validation_Methodology.pdf
 create mode 100644 api-tests/ff/ipc/test_i067/source.mk
 create mode 100644 api-tests/ff/ipc/test_i067/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i067/test_i067.c
 create mode 100644 api-tests/ff/ipc/test_i067/test_i067.h
 create mode 100644 api-tests/ff/ipc/test_i067/test_supp_i067.c
 create mode 100644 api-tests/ff/ipc/test_i068/source.mk
 create mode 100644 api-tests/ff/ipc/test_i068/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i068/test_i068.c
 create mode 100644 api-tests/ff/ipc/test_i068/test_i068.h
 create mode 100644 api-tests/ff/ipc/test_i068/test_supp_i068.c
 create mode 100644 api-tests/ff/ipc/test_i069/source.mk
 create mode 100644 api-tests/ff/ipc/test_i069/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i069/test_i069.c
 create mode 100644 api-tests/ff/ipc/test_i069/test_i069.h
 create mode 100644 api-tests/ff/ipc/test_i069/test_supp_i069.c
 create mode 100644 api-tests/ff/ipc/test_i070/source.mk
 create mode 100644 api-tests/ff/ipc/test_i070/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i070/test_i070.c
 create mode 100644 api-tests/ff/ipc/test_i070/test_i070.h
 create mode 100644 api-tests/ff/ipc/test_i070/test_supp_i070.c
 create mode 100644 api-tests/ff/ipc/test_i071/source.mk
 create mode 100644 api-tests/ff/ipc/test_i071/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i071/test_i071.c
 create mode 100644 api-tests/ff/ipc/test_i071/test_i071.h
 create mode 100644 api-tests/ff/ipc/test_i071/test_supp_i071.c
 create mode 100644 api-tests/ff/ipc/test_i072/source.mk
 create mode 100644 api-tests/ff/ipc/test_i072/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i072/test_i072.c
 create mode 100644 api-tests/ff/ipc/test_i072/test_i072.h
 create mode 100644 api-tests/ff/ipc/test_i072/test_supp_i072.c
 create mode 100644 api-tests/ff/ipc/test_i073/source.mk
 create mode 100644 api-tests/ff/ipc/test_i073/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i073/test_i073.c
 create mode 100644 api-tests/ff/ipc/test_i073/test_i073.h
 create mode 100644 api-tests/ff/ipc/test_i073/test_supp_i073.c
 create mode 100644 api-tests/ff/ipc/test_i074/source.mk
 create mode 100644 api-tests/ff/ipc/test_i074/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i074/test_i074.c
 create mode 100644 api-tests/ff/ipc/test_i074/test_i074.h
 create mode 100644 api-tests/ff/ipc/test_i074/test_supp_i074.c
 create mode 100644 api-tests/ff/ipc/test_i075/source.mk
 create mode 100644 api-tests/ff/ipc/test_i075/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i075/test_i075.c
 create mode 100644 api-tests/ff/ipc/test_i075/test_i075.h
 create mode 100644 api-tests/ff/ipc/test_i075/test_supp_i075.c
 create mode 100644 api-tests/ff/ipc/test_i076/source.mk
 create mode 100644 api-tests/ff/ipc/test_i076/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i076/test_i076.c
 create mode 100644 api-tests/ff/ipc/test_i076/test_i076.h
 create mode 100644 api-tests/ff/ipc/test_i076/test_supp_i076.c
 create mode 100644 api-tests/ff/ipc/test_i077/source.mk
 create mode 100644 api-tests/ff/ipc/test_i077/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i077/test_i077.c
 create mode 100644 api-tests/ff/ipc/test_i077/test_i077.h
 create mode 100644 api-tests/ff/ipc/test_i077/test_supp_i077.c
 create mode 100644 api-tests/ff/ipc/test_i078/source.mk
 create mode 100644 api-tests/ff/ipc/test_i078/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i078/test_i078.c
 create mode 100644 api-tests/ff/ipc/test_i078/test_i078.h
 create mode 100644 api-tests/ff/ipc/test_i078/test_supp_i078.c
 create mode 100644 api-tests/ff/ipc/test_i079/source.mk
 create mode 100644 api-tests/ff/ipc/test_i079/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i079/test_i079.c
 create mode 100644 api-tests/ff/ipc/test_i079/test_i079.h
 create mode 100644 api-tests/ff/ipc/test_i079/test_supp_i079.c
 create mode 100644 api-tests/ff/ipc/test_i080/source.mk
 create mode 100644 api-tests/ff/ipc/test_i080/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i080/test_i080.c
 create mode 100644 api-tests/ff/ipc/test_i080/test_i080.h
 create mode 100644 api-tests/ff/ipc/test_i080/test_supp_i080.c
 create mode 100644 api-tests/ff/ipc/test_i081/source.mk
 create mode 100644 api-tests/ff/ipc/test_i081/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i081/test_i081.c
 create mode 100644 api-tests/ff/ipc/test_i081/test_i081.h
 create mode 100644 api-tests/ff/ipc/test_i081/test_supp_i081.c
 create mode 100644 api-tests/ff/ipc/test_i082/source.mk
 create mode 100644 api-tests/ff/ipc/test_i082/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i082/test_i082.c
 create mode 100644 api-tests/ff/ipc/test_i082/test_i082.h
 create mode 100644 api-tests/ff/ipc/test_i082/test_supp_i082.c
 create mode 100644 api-tests/ff/ipc/test_i083/source.mk
 create mode 100644 api-tests/ff/ipc/test_i083/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i083/test_i083.c
 create mode 100644 api-tests/ff/ipc/test_i083/test_i083.h
 create mode 100644 api-tests/ff/ipc/test_i083/test_supp_i083.c
 create mode 100644 api-tests/ff/ipc/test_i084/source.mk
 create mode 100644 api-tests/ff/ipc/test_i084/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i084/test_i084.c
 create mode 100644 api-tests/ff/ipc/test_i084/test_i084.h
 create mode 100644 api-tests/ff/ipc/test_i084/test_supp_i084.c
 create mode 100644 api-tests/ff/ipc/test_i085/source.mk
 create mode 100644 api-tests/ff/ipc/test_i085/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i085/test_i085.c
 create mode 100644 api-tests/ff/ipc/test_i085/test_i085.h
 create mode 100644 api-tests/ff/ipc/test_i085/test_supp_i085.c
 create mode 100644 api-tests/ff/ipc/test_i086/source.mk
 create mode 100644 api-tests/ff/ipc/test_i086/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i086/test_i086.c
 create mode 100644 api-tests/ff/ipc/test_i086/test_i086.h
 create mode 100644 api-tests/ff/ipc/test_i086/test_supp_i086.c
 create mode 100644 api-tests/ff/ipc/test_i087/source.mk
 create mode 100644 api-tests/ff/ipc/test_i087/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_i087/test_i087.c
 create mode 100644 api-tests/ff/ipc/test_i087/test_i087.h
 create mode 100644 api-tests/ff/ipc/test_i087/test_supp_i087.c
 create mode 100644 api-tests/ff/ipc/test_l088/source.mk
 create mode 100644 api-tests/ff/ipc/test_l088/test_entry.c
 create mode 100644 api-tests/ff/ipc/test_l088/test_l088.c
 create mode 100644 api-tests/ff/ipc/test_l088/test_l088.h
 create mode 100644 api-tests/ff/ipc/test_l088/test_supp_l088.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_crypto.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_crypto.h
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_crypto.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_crypto.h
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_crypto.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_crypto.h
 create mode 100755 api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/reference_logs/attestation.txt
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/reference_logs/crypto.txt
 create mode 100755 api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/reference_logs/protected_storage.txt
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/Makefile
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/manifests/common/driver_partition_psa.json
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/manifests/ipc/client_partition_psa.json
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/manifests/ipc/server_partition_psa.json
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_client_api_empty_intf.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_client_api_intf.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_client_api_intf.h
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_common.h
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_config.h
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_driver_ipc_intf.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_driver_ns_intf.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_config.h
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_config_check.h
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_empty_intf.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_intf.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_intf.h
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_crypto.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_crypto.h
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_eat.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_eat.h
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_empty_intf.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_intf.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_intf.h
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/internal_trusted_storage/pal_internal_trusted_storage_empty_intf.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/internal_trusted_storage/pal_internal_trusted_storage_intf.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/internal_trusted_storage/pal_internal_trusted_storage_intf.h
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/protected_storage/pal_protected_storage_empty_intf.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/protected_storage/pal_protected_storage_intf.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/protected_storage/pal_protected_storage_intf.h
 create mode 100755 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/reference_logs/attestation.txt
 create mode 100755 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/reference_logs/crypto.txt
 create mode 100755 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/reference_logs/protected_storage.txt
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/spe/pal_driver_intf.c
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/spe/pal_driver_intf.h
 create mode 100644 api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/target.cfg
 create mode 100644 api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_crypto.c
 create mode 100644 api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_crypto.h
 delete mode 100755 api-tests/tools/scripts/targetConfigGen.pl
 create mode 100644 api-tests/tools/scripts/targetConfigGen.py

diff --git a/api-specs/include/psa/crypto.h b/api-specs/include/psa/crypto.h
index 4c5c3495..c8a1c18f 100644
--- a/api-specs/include/psa/crypto.h
+++ b/api-specs/include/psa/crypto.h
@@ -193,7 +193,7 @@ psa_algorithm_t psa_key_policy_get_algorithm(const psa_key_policy_t *policy);
  *         the policy has been saved to persistent storage. Implementations
  *         may defer saving the policy until the key material is created.
  * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_OCCUPIED_SLOT
+ * \retval #PSA_ERROR_ALREADY_EXISTS
  * \retval #PSA_ERROR_NOT_SUPPORTED
  * \retval #PSA_ERROR_INVALID_ARGUMENT
  * \retval #PSA_ERROR_COMMUNICATION_FAILURE
@@ -285,7 +285,7 @@ psa_status_t psa_allocate_key(psa_key_handle_t *handle);
  *         Success. The application can now use the value of `*handle`
  *         to access the newly allocated key slot.
  * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_EMPTY_SLOT
+ * \retval #PSA_ERROR_DOES_NOT_EXIST
  * \retval #PSA_ERROR_INVALID_ARGUMENT
  *         \p lifetime is invalid, for example #PSA_KEY_LIFETIME_VOLATILE.
  * \retval #PSA_ERROR_INVALID_ARGUMENT
@@ -322,7 +322,7 @@ psa_status_t psa_open_key(psa_key_lifetime_t lifetime,
  *         to access the newly allocated key slot.
  * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
  * \retval #PSA_ERROR_INSUFFICIENT_STORAGE
- * \retval #PSA_ERROR_OCCUPIED_SLOT
+ * \retval #PSA_ERROR_ALREADY_EXISTS
  *         There is already a key with the identifier \p id in the storage
  *         area designated by \p lifetime.
  * \retval #PSA_ERROR_INVALID_ARGUMENT
@@ -348,9 +348,6 @@ psa_status_t psa_create_key(psa_key_lifetime_t lifetime,
  * with the key in volatile memory. The key slot in persistent storage is
  * not affected and can be opened again later with psa_open_key().
  *
- * If the key is currently in use in a multipart operation,
- * the multipart operation is aborted.
- *
  * \param handle        The key handle to close.
  *
  * \retval #PSA_SUCCESS
@@ -404,7 +401,7 @@ psa_status_t psa_close_key(psa_key_handle_t handle);
  * \retval #PSA_ERROR_INVALID_ARGUMENT
  *         The key slot is invalid,
  *         or the key data is not correctly formatted.
- * \retval #PSA_ERROR_OCCUPIED_SLOT
+ * \retval #PSA_ERROR_ALREADY_EXISTS
  *         There is already a key in the specified slot.
  * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
  * \retval #PSA_ERROR_INSUFFICIENT_STORAGE
@@ -433,9 +430,6 @@ psa_status_t psa_import_key(psa_key_handle_t handle,
  * This function also erases any metadata such as policies and frees all
  * resources associated with the key.
  *
- * If the key is currently in use in a multipart operation,
- * the multipart operation is aborted.
- *
  * \param handle        Handle to the key slot to erase.
  *
  * \retval #PSA_SUCCESS
@@ -476,7 +470,7 @@ psa_status_t psa_destroy_key(psa_key_handle_t handle);
  *
  * \retval #PSA_SUCCESS
  * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
+ * \retval #PSA_ERROR_DOES_NOT_EXIST
  *         The handle is to a key slot which does not contain key material yet.
  * \retval #PSA_ERROR_COMMUNICATION_FAILURE
  * \retval #PSA_ERROR_HARDWARE_FAILURE
@@ -490,106 +484,6 @@ psa_status_t psa_get_key_information(psa_key_handle_t handle,
                                      psa_key_type_t *type,
                                      size_t *bits);
 
-/**
- * \brief Set domain parameters for a key.
- *
- * Some key types require additional domain parameters to be set before import
- * or generation of the key. The domain parameters can be set with this
- * function or, for key generation, through the \c extra parameter of
- * psa_generate_key().
- *
- * The format for the required domain parameters varies by the key type.
- * - For DSA public keys (#PSA_KEY_TYPE_DSA_PUBLIC_KEY),
- *   the `Dss-Parms` format as defined by RFC 3279 &sect;2.3.2.
- *   ```
- *   Dss-Parms ::= SEQUENCE  {
- *      p       INTEGER,
- *      q       INTEGER,
- *      g       INTEGER
- *   }
- *   ```
- * - For Diffie-Hellman key exchange keys (#PSA_KEY_TYPE_DH_PUBLIC_KEY), the
- *   `DomainParameters` format as defined by RFC 3279 &sect;2.3.3.
- *   ```
- *   DomainParameters ::= SEQUENCE {
- *      p               INTEGER,                    -- odd prime, p=jq +1
- *      g               INTEGER,                    -- generator, g
- *      q               INTEGER,                    -- factor of p-1
- *      j               INTEGER OPTIONAL,           -- subgroup factor
- *      validationParms ValidationParms OPTIONAL
- *   }
- *   ValidationParms ::= SEQUENCE {
- *      seed            BIT STRING,
- *      pgenCounter     INTEGER
- *   }
- *   ```
- *
- * \param handle      Handle to the slot where the key will be stored.
- *                    This must be a valid slot for a key of the chosen
- *                    type: it must have been obtained by calling
- *                    psa_allocate_key() or psa_create_key() with the
- *                    correct \p type and with a maximum size that is
- *                    compatible with \p data. It must not contain
- *                    key material yet.
- * \param type        Key type (a \c PSA_KEY_TYPE_XXX value). When
- *                    subsequently creating key material into \p handle,
- *                    the type must be compatible.
- * \param[in] data    Buffer containing the key domain parameters. The content
- *                    of this buffer is interpreted according to \p type. of
- *                    psa_export_key() or psa_export_public_key() for the
- *                    chosen type.
- * \param data_length Size of the \p data buffer in bytes.
- *
- * \retval #PSA_SUCCESS
- * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_OCCUPIED_SLOT
- *         There is already a key in the specified slot.
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- * \retval #PSA_ERROR_BAD_STATE
- *         The library has not been previously initialized by psa_crypto_init().
- *         It is implementation-dependent whether a failure to initialize
- *         results in this error code.
- */
-psa_status_t psa_set_key_domain_parameters(psa_key_handle_t handle,
-                                           psa_key_type_t type,
-                                           const uint8_t *data,
-                                           size_t data_length);
-
-/**
- * \brief Get domain parameters for a key.
- *
- * Get the domain parameters for a key with this function, if any. The format
- * of the domain parameters written to \p data is specified in the
- * documentation for psa_set_key_domain_parameters().
- *
- * \param handle            Handle to the key to get domain parameters from.
- * \param[out] data         On success, the key domain parameters.
- * \param data_size         Size of the \p data buffer in bytes.
- * \param[out] data_length  On success, the number of bytes
- *                          that make up the key domain parameters data.
- *
- * \retval #PSA_SUCCESS
- * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
- *         There is no key in the specified slot.
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- * \retval #PSA_ERROR_NOT_SUPPORTED
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- * \retval #PSA_ERROR_BAD_STATE
- *         The library has not been previously initialized by psa_crypto_init().
- *         It is implementation-dependent whether a failure to initialize
- *         results in this error code.
- */
-psa_status_t psa_get_key_domain_parameters(psa_key_handle_t handle,
-                                           uint8_t *data,
-                                           size_t data_size,
-                                           size_t *data_length);
-
 /**
  * \brief Export a key in binary format.
  *
@@ -625,10 +519,19 @@ psa_status_t psa_get_key_domain_parameters(psa_key_handle_t handle,
  *       coefficient         INTEGER,  -- (inverse of q) mod p
  *   }
  *   ```
- * - For DSA private keys (#PSA_KEY_TYPE_DSA_KEYPAIR), the format is the
- *   representation of the private key `x` as a big-endian byte string. The
- *   length of the byte string is the private key size in bytes (leading zeroes
- *   are not stripped).
+ * - For DSA private keys (#PSA_KEY_TYPE_DSA_KEYPAIR), the format
+ *   is the non-encrypted DER encoding of the representation used by
+ *   OpenSSL and OpenSSH, whose structure is described in ASN.1 as follows:
+ *   ```
+ *   DSAPrivateKey ::= SEQUENCE {
+ *       version             INTEGER,  -- must be 0
+ *       prime               INTEGER,  -- p
+ *       subprime            INTEGER,  -- q
+ *       generator           INTEGER,  -- g
+ *       public              INTEGER,  -- y
+ *       private             INTEGER,  -- x
+ *   }
+ *   ```
  * - For elliptic curve key pairs (key types for which
  *   #PSA_KEY_TYPE_IS_ECC_KEYPAIR is true), the format is
  *   a representation of the private value as a `ceiling(m/8)`-byte string
@@ -640,10 +543,6 @@ psa_status_t psa_get_key_domain_parameters(psa_key_handle_t handle,
  *   and `PSA_ECC_CURVE_BRAINPOOL_PXXX`).
  *   This is the content of the `privateKey` field of the `ECPrivateKey`
  *   format defined by RFC 5915.
- * - For Diffie-Hellman key exchange key pairs (#PSA_KEY_TYPE_DH_KEYPAIR), the
- *   format is the representation of the private key `x` as a big-endian byte
- *   string. The length of the byte string is the private key size in bytes
- *   (leading zeroes are not stripped).
  * - For public keys (key types for which #PSA_KEY_TYPE_IS_PUBLIC_KEY is
  *   true), the format is the same as for psa_export_public_key().
  *
@@ -655,7 +554,7 @@ psa_status_t psa_get_key_domain_parameters(psa_key_handle_t handle,
  *
  * \retval #PSA_SUCCESS
  * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
+ * \retval #PSA_ERROR_DOES_NOT_EXIST
  * \retval #PSA_ERROR_NOT_PERMITTED
  * \retval #PSA_ERROR_NOT_SUPPORTED
  * \retval #PSA_ERROR_BUFFER_TOO_SMALL
@@ -700,20 +599,39 @@ psa_status_t psa_export_key(psa_key_handle_t handle,
  *   ```
  * - For elliptic curve public keys (key types for which
  *   #PSA_KEY_TYPE_IS_ECC_PUBLIC_KEY is true), the format is the uncompressed
- *   representation defined by SEC1 &sect;2.3.3 as the content of an ECPoint.
+ *   representation defined by SEC1 &sect;2.3.3 as the content of an ECPoint:
  *   Let `m` be the bit size associated with the curve, i.e. the bit size of
  *   `q` for a curve over `F_q`. The representation consists of:
  *      - The byte 0x04;
  *      - `x_P` as a `ceiling(m/8)`-byte string, big-endian;
  *      - `y_P` as a `ceiling(m/8)`-byte string, big-endian.
- * - For DSA public keys (#PSA_KEY_TYPE_DSA_PUBLIC_KEY), the format is the
- *   representation of the public key `y = g^x mod p` as a big-endian byte
- *   string. The length of the byte string is the length of the base prime `p`
- *   in bytes.
- * - For Diffie-Hellman key exchange public keys (#PSA_KEY_TYPE_DH_PUBLIC_KEY),
- *   the format is the representation of the public key `y = g^x mod p` as a
- *   big-endian byte string. The length of the byte string is the length of the
- *   base prime `p` in bytes.
+ *
+ * For other public key types, the format is the DER representation defined by
+ * RFC 5280 as `SubjectPublicKeyInfo`, with the `subjectPublicKey` format
+ * specified below.
+ * ```
+ * SubjectPublicKeyInfo  ::=  SEQUENCE  {
+ *      algorithm          AlgorithmIdentifier,
+ *      subjectPublicKey   BIT STRING  }
+ * AlgorithmIdentifier  ::=  SEQUENCE  {
+ *      algorithm          OBJECT IDENTIFIER,
+ *      parameters         ANY DEFINED BY algorithm OPTIONAL  }
+ * ```
+ * - For DSA public keys (#PSA_KEY_TYPE_DSA_PUBLIC_KEY),
+ *   the `subjectPublicKey` format is defined by RFC 3279 &sect;2.3.2 as
+ *   `DSAPublicKey`,
+ *   with the OID `id-dsa`,
+ *   and with the parameters `DSS-Parms`.
+ *   ```
+ *   id-dsa OBJECT IDENTIFIER ::= {
+ *      iso(1) member-body(2) us(840) x9-57(10040) x9cm(4) 1 }
+ *
+ *   Dss-Parms  ::=  SEQUENCE  {
+ *      p                  INTEGER,
+ *      q                  INTEGER,
+ *      g                  INTEGER  }
+ *   DSAPublicKey ::= INTEGER -- public key, Y
+ *   ```
  *
  * \param handle            Handle to the key to export.
  * \param[out] data         Buffer where the key data is to be written.
@@ -723,7 +641,7 @@ psa_status_t psa_export_key(psa_key_handle_t handle,
  *
  * \retval #PSA_SUCCESS
  * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
+ * \retval #PSA_ERROR_DOES_NOT_EXIST
  * \retval #PSA_ERROR_INVALID_ARGUMENT
  *         The key is neither a public key nor a key pair.
  * \retval #PSA_ERROR_NOT_SUPPORTED
@@ -750,11 +668,12 @@ psa_status_t psa_export_public_key(psa_key_handle_t handle,
  *
  * Copy key material from one location to another.
  *
- * This function is primarily useful to copy a key from one lifetime
- * to another. The target key retains its lifetime and location.
+ * This function is primarily useful to copy a key from one location
+ * to another, since it populates a key using the material from
+ * another key which may have a different lifetime.
  *
  * In an implementation where slots have different ownerships,
- * this functin may be used to share a key with a different party,
+ * this function may be used to share a key with a different party,
  * subject to implementation-defined restrictions on key sharing.
  * In this case \p constraint would typically prevent the recipient
  * from exporting the key.
@@ -791,9 +710,9 @@ psa_status_t psa_export_public_key(psa_key_handle_t handle,
  *
  * \retval #PSA_SUCCESS
  * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_OCCUPIED_SLOT
+ * \retval #PSA_ERROR_ALREADY_EXISTS
  *         \p target already contains key material.
- * \retval #PSA_ERROR_EMPTY_SLOT
+ * \retval #PSA_ERROR_DOES_NOT_EXIST
  *         \p source does not contain key material.
  * \retval #PSA_ERROR_INVALID_ARGUMENT
  *         The policy constraints on the source, on the target and
@@ -817,66 +736,6 @@ psa_status_t psa_copy_key(psa_key_handle_t source_handle,
  * @{
  */
 
-/** Calculate the hash (digest) of a message.
- *
- * \note To verify the hash of a message against an
- *       expected value, use psa_hash_compare() instead.
- *
- * \param alg               The hash algorithm to compute (\c PSA_ALG_XXX value
- *                          such that #PSA_ALG_IS_HASH(\p alg) is true).
- * \param[in] input         Buffer containing the message to hash.
- * \param input_length      Size of the \p input buffer in bytes.
- * \param[out] hash         Buffer where the hash is to be written.
- * \param hash_size         Size of the \p hash buffer in bytes.
- * \param[out] hash_length  On success, the number of bytes
- *                          that make up the hash value. This is always
- *                          #PSA_HASH_SIZE(\c alg) where \c alg is the
- *                          hash algorithm that is calculated.
- *
- * \retval #PSA_SUCCESS
- *         Success.
- * \retval #PSA_ERROR_NOT_SUPPORTED
- *         \p alg is not supported or is not a hash algorithm.
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- */
-psa_status_t psa_hash_compute(psa_algorithm_t alg,
-                              const uint8_t *input,
-                              size_t input_length,
-                              uint8_t *hash,
-                              size_t hash_size,
-                              size_t *hash_length);
-
-/** Calculate the hash (digest) of a message and compare it with a
- * reference value.
- *
- * \param alg               The hash algorithm to compute (\c PSA_ALG_XXX value
- *                          such that #PSA_ALG_IS_HASH(\p alg) is true).
- * \param[in] input         Buffer containing the message to hash.
- * \param input_length      Size of the \p input buffer in bytes.
- * \param[out] hash         Buffer containing the expected hash value.
- * \param hash_length       Size of the \p hash buffer in bytes.
- *
- * \retval #PSA_SUCCESS
- *         The expected hash is identical to the actual hash of the input.
- * \retval #PSA_ERROR_INVALID_SIGNATURE
- *         The hash of the message was calculated successfully, but it
- *         differs from the expected hash.
- * \retval #PSA_ERROR_NOT_SUPPORTED
- *         \p alg is not supported or is not a hash algorithm.
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- */
-psa_status_t psa_hash_compare(psa_algorithm_t alg,
-                              const uint8_t *input,
-                              size_t input_length,
-                              const uint8_t *hash,
-                              const size_t hash_length);
-
 /** The type of the state data structure for multipart hash operations.
  *
  * Before calling any function on a hash operation object, the application must
@@ -957,6 +816,9 @@ static psa_hash_operation_t psa_hash_operation_init(void);
  *         Success.
  * \retval #PSA_ERROR_NOT_SUPPORTED
  *         \p alg is not supported or is not a hash algorithm.
+ * \retval #PSA_ERROR_BAD_STATE
+ *         The operation state is not valid (already set up and not
+ *         subsequently completed).
  * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
  * \retval #PSA_ERROR_COMMUNICATION_FAILURE
  * \retval #PSA_ERROR_HARDWARE_FAILURE
@@ -1127,88 +989,6 @@ psa_status_t psa_hash_clone(const psa_hash_operation_t *source_operation,
  * @{
  */
 
-/** Calculate the MAC (message authentication code) of a message.
- *
- * \note To verify the MAC of a message against an
- *       expected value, use psa_mac_verify() instead.
- *       Beware that comparing integrity or authenticity data such as
- *       MAC values with a function such as \c memcmp is risky
- *       because the time taken by the comparison may leak information
- *       about the MAC value which could allow an attacker to guess
- *       a valid MAC and thereby bypass security controls.
- *
- * \param handle            Handle to the key to use for the operation.
- * \param alg               The MAC algorithm to compute (\c PSA_ALG_XXX value
- *                          such that #PSA_ALG_IS_MAC(alg) is true).
- * \param[in] input         Buffer containing the input message.
- * \param input_length      Size of the \p input buffer in bytes.
- * \param[out] mac          Buffer where the MAC value is to be written.
- * \param mac_size          Size of the \p mac buffer in bytes.
- * \param[out] mac_length   On success, the number of bytes
- *                          that make up the mac value. This is always
- *                          #PSA_HASH_SIZE(\c alg) where \c alg is the
- *                          hash algorithm that is calculated.
- *
- * \retval #PSA_SUCCESS
- *         Success.
- * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
- * \retval #PSA_ERROR_NOT_PERMITTED
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         \p key is not compatible with \p alg.
- * \retval #PSA_ERROR_NOT_SUPPORTED
- *         \p alg is not supported or is not a MAC algorithm.
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- * \retval #PSA_ERROR_BAD_STATE
- *         The library has not been previously initialized by psa_crypto_init().
- *         It is implementation-dependent whether a failure to initialize
- *         results in this error code.
- */
-psa_status_t psa_mac_compute(psa_key_handle_t handle,
-                             psa_algorithm_t alg,
-                             const uint8_t *input,
-                             size_t input_length,
-                             uint8_t *mac,
-                             size_t mac_size,
-                             size_t *mac_length);
-
-/** Calculate the MAC of a message and compare it with a reference value.
- *
- * \param handle            Handle to the key to use for the operation.
- * \param alg               The MAC algorithm to compute (\c PSA_ALG_XXX value
- *                          such that #PSA_ALG_IS_MAC(alg) is true).
- * \param[in] input         Buffer containing the input message.
- * \param input_length      Size of the \p input buffer in bytes.
- * \param[out] mac          Buffer containing the expected MAC value.
- * \param mac_length        Size of the \p mac buffer in bytes.
- *
- * \retval #PSA_SUCCESS
- *         The expected MAC is identical to the actual MAC of the input.
- * \retval #PSA_ERROR_INVALID_SIGNATURE
- *         The MAC of the message was calculated successfully, but it
- *         differs from the expected value.
- * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
- * \retval #PSA_ERROR_NOT_PERMITTED
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         \p key is not compatible with \p alg.
- * \retval #PSA_ERROR_NOT_SUPPORTED
- *         \p alg is not supported or is not a MAC algorithm.
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- */
-psa_status_t psa_mac_verify(psa_key_handle_t handle,
-                            psa_algorithm_t alg,
-                            const uint8_t *input,
-                            size_t input_length,
-                            const uint8_t *mac,
-                            const size_t mac_length);
-
 /** The type of the state data structure for multipart MAC operations.
  *
  * Before calling any function on a MAC operation object, the application must
@@ -1268,6 +1048,8 @@ static psa_mac_operation_t psa_mac_operation_init(void);
  * -# Initialize the operation object with one of the methods described in the
  *    documentation for #psa_mac_operation_t, e.g. PSA_MAC_OPERATION_INIT.
  * -# Call psa_mac_sign_setup() to specify the algorithm and key.
+ *    The key remains associated with the operation even if the content
+ *    of the key slot changes.
  * -# Call psa_mac_update() zero, one or more times, passing a fragment
  *    of the message each time. The MAC that is calculated is the MAC
  *    of the concatenation of these messages in order.
@@ -1286,15 +1068,13 @@ static psa_mac_operation_t psa_mac_operation_init(void);
  *                          been initialized as per the documentation for
  *                          #psa_mac_operation_t and not yet in use.
  * \param handle            Handle to the key to use for the operation.
- *                          It must remain valid until the operation
- *                          terminates.
  * \param alg               The MAC algorithm to compute (\c PSA_ALG_XXX value
  *                          such that #PSA_ALG_IS_MAC(alg) is true).
  *
  * \retval #PSA_SUCCESS
  *         Success.
  * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
+ * \retval #PSA_ERROR_DOES_NOT_EXIST
  * \retval #PSA_ERROR_NOT_PERMITTED
  * \retval #PSA_ERROR_INVALID_ARGUMENT
  *         \p key is not compatible with \p alg.
@@ -1305,6 +1085,9 @@ static psa_mac_operation_t psa_mac_operation_init(void);
  * \retval #PSA_ERROR_HARDWARE_FAILURE
  * \retval #PSA_ERROR_TAMPERING_DETECTED
  * \retval #PSA_ERROR_BAD_STATE
+ *         The operation state is not valid (already set up and not
+ *         subsequently completed).
+ * \retval #PSA_ERROR_BAD_STATE
  *         The library has not been previously initialized by psa_crypto_init().
  *         It is implementation-dependent whether a failure to initialize
  *         results in this error code.
@@ -1324,6 +1107,8 @@ psa_status_t psa_mac_sign_setup(psa_mac_operation_t *operation,
  * -# Initialize the operation object with one of the methods described in the
  *    documentation for #psa_mac_operation_t, e.g. PSA_MAC_OPERATION_INIT.
  * -# Call psa_mac_verify_setup() to specify the algorithm and key.
+ *    The key remains associated with the operation even if the content
+ *    of the key slot changes.
  * -# Call psa_mac_update() zero, one or more times, passing a fragment
  *    of the message each time. The MAC that is calculated is the MAC
  *    of the concatenation of these messages in order.
@@ -1343,15 +1128,13 @@ psa_status_t psa_mac_sign_setup(psa_mac_operation_t *operation,
  *                          been initialized as per the documentation for
  *                          #psa_mac_operation_t and not yet in use.
  * \param handle            Handle to the key to use for the operation.
- *                          It must remain valid until the operation
- *                          terminates.
  * \param alg               The MAC algorithm to compute (\c PSA_ALG_XXX value
  *                          such that #PSA_ALG_IS_MAC(\p alg) is true).
  *
  * \retval #PSA_SUCCESS
  *         Success.
  * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
+ * \retval #PSA_ERROR_DOES_NOT_EXIST
  * \retval #PSA_ERROR_NOT_PERMITTED
  * \retval #PSA_ERROR_INVALID_ARGUMENT
  *         \c key is not compatible with \c alg.
@@ -1362,6 +1145,9 @@ psa_status_t psa_mac_sign_setup(psa_mac_operation_t *operation,
  * \retval #PSA_ERROR_HARDWARE_FAILURE
  * \retval #PSA_ERROR_TAMPERING_DETECTED
  * \retval #PSA_ERROR_BAD_STATE
+ *         The operation state is not valid (already set up and not
+ *         subsequently completed).
+ * \retval #PSA_ERROR_BAD_STATE
  *         The library has not been previously initialized by psa_crypto_init().
  *         It is implementation-dependent whether a failure to initialize
  *         results in this error code.
@@ -1509,91 +1295,6 @@ psa_status_t psa_mac_abort(psa_mac_operation_t *operation);
  * @{
  */
 
-/** Encrypt a message using a symmetric cipher.
- *
- * This function encrypts a message with a random IV (initialization
- * vector).
- *
- * \param handle                Handle to the key to use for the operation.
- *                              It must remain valid until the operation
- *                              terminates.
- * \param alg                   The cipher algorithm to compute
- *                              (\c PSA_ALG_XXX value such that
- *                              #PSA_ALG_IS_CIPHER(\p alg) is true).
- * \param[in] input             Buffer containing the message to encrypt.
- * \param input_length          Size of the \p input buffer in bytes.
- * \param[out] output           Buffer where the output is to be written.
- *                              The output contains the IV followed by
- *                              the ciphertext proper.
- * \param output_size           Size of the \p output buffer in bytes.
- * \param[out] output_length    On success, the number of bytes
- *                              that make up the output.
- *
- * \retval #PSA_SUCCESS
- *         Success.
- * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
- * \retval #PSA_ERROR_NOT_PERMITTED
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         \p key is not compatible with \p alg.
- * \retval #PSA_ERROR_NOT_SUPPORTED
- *         \p alg is not supported or is not a cipher algorithm.
- * \retval #PSA_ERROR_BUFFER_TOO_SMALL
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- */
-psa_status_t psa_cipher_encrypt(psa_key_handle_t handle,
-                                psa_algorithm_t alg,
-                                const uint8_t *input,
-                                size_t input_length,
-                                uint8_t *output,
-                                size_t output_size,
-                                size_t *output_length);
-
-/** Decrypt a message using a symmetric cipher.
- *
- * This function decrypts a message encrypted with a symmetric cipher.
- *
- * \param handle                Handle to the key to use for the operation.
- *                              It must remain valid until the operation
- *                              terminates.
- * \param alg                   The cipher algorithm to compute
- *                              (\c PSA_ALG_XXX value such that
- *                              #PSA_ALG_IS_CIPHER(\p alg) is true).
- * \param[in] input             Buffer containing the message to decrypt.
- *                              This consists of the IV followed by the
- *                              ciphertext proper.
- * \param input_length          Size of the \p input buffer in bytes.
- * \param[out] output           Buffer where the plaintext is to be written.
- * \param output_size           Size of the \p output buffer in bytes.
- * \param[out] output_length    On success, the number of bytes
- *                              that make up the output.
- *
- * \retval #PSA_SUCCESS
- *         Success.
- * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
- * \retval #PSA_ERROR_NOT_PERMITTED
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         \p key is not compatible with \p alg.
- * \retval #PSA_ERROR_NOT_SUPPORTED
- *         \p alg is not supported or is not a cipher algorithm.
- * \retval #PSA_ERROR_BUFFER_TOO_SMALL
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- */
-psa_status_t psa_cipher_decrypt(psa_key_handle_t handle,
-                                psa_algorithm_t alg,
-                                const uint8_t *input,
-                                size_t input_length,
-                                uint8_t *output,
-                                size_t output_size,
-                                size_t *output_length);
-
 /** The type of the state data structure for multipart cipher operations.
  *
  * Before calling any function on a cipher operation object, the application
@@ -1650,6 +1351,8 @@ static psa_cipher_operation_t psa_cipher_operation_init(void);
  *    documentation for #psa_cipher_operation_t, e.g.
  *    PSA_CIPHER_OPERATION_INIT.
  * -# Call psa_cipher_encrypt_setup() to specify the algorithm and key.
+ *    The key remains associated with the operation even if the content
+ *    of the key slot changes.
  * -# Call either psa_cipher_generate_iv() or psa_cipher_set_iv() to
  *    generate or set the IV (initialization vector). You should use
  *    psa_cipher_generate_iv() unless the protocol you are implementing
@@ -1664,15 +1367,14 @@ static psa_cipher_operation_t psa_cipher_operation_init(void);
  * After a successful call to psa_cipher_encrypt_setup(), the application must
  * eventually terminate the operation. The following events terminate an
  * operation:
- * - A failed call to any of the \c psa_cipher_xxx functions.
+ * - A failed call to psa_cipher_generate_iv(), psa_cipher_set_iv()
+ *   or psa_cipher_update().
  * - A call to psa_cipher_finish() or psa_cipher_abort().
  *
  * \param[in,out] operation     The operation object to set up. It must have
  *                              been initialized as per the documentation for
  *                              #psa_cipher_operation_t and not yet in use.
  * \param handle                Handle to the key to use for the operation.
- *                              It must remain valid until the operation
- *                              terminates.
  * \param alg                   The cipher algorithm to compute
  *                              (\c PSA_ALG_XXX value such that
  *                              #PSA_ALG_IS_CIPHER(\p alg) is true).
@@ -1680,7 +1382,7 @@ static psa_cipher_operation_t psa_cipher_operation_init(void);
  * \retval #PSA_SUCCESS
  *         Success.
  * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
+ * \retval #PSA_ERROR_DOES_NOT_EXIST
  * \retval #PSA_ERROR_NOT_PERMITTED
  * \retval #PSA_ERROR_INVALID_ARGUMENT
  *         \p key is not compatible with \p alg.
@@ -1691,6 +1393,9 @@ static psa_cipher_operation_t psa_cipher_operation_init(void);
  * \retval #PSA_ERROR_HARDWARE_FAILURE
  * \retval #PSA_ERROR_TAMPERING_DETECTED
  * \retval #PSA_ERROR_BAD_STATE
+ *         The operation state is not valid (already set up and not
+ *         subsequently completed).
+ * \retval #PSA_ERROR_BAD_STATE
  *         The library has not been previously initialized by psa_crypto_init().
  *         It is implementation-dependent whether a failure to initialize
  *         results in this error code.
@@ -1709,7 +1414,9 @@ psa_status_t psa_cipher_encrypt_setup(psa_cipher_operation_t *operation,
  *    documentation for #psa_cipher_operation_t, e.g.
  *    PSA_CIPHER_OPERATION_INIT.
  * -# Call psa_cipher_decrypt_setup() to specify the algorithm and key.
- * -# Call psa_cipher_set_iv() with the IV (initialization vector) for the
+ *    The key remains associated with the operation even if the content
+ *    of the key slot changes.
+ * -# Call psa_cipher_update() with the IV (initialization vector) for the
  *    decryption. If the IV is prepended to the ciphertext, you can call
  *    psa_cipher_update() on a buffer containing the IV followed by the
  *    beginning of the message.
@@ -1723,15 +1430,13 @@ psa_status_t psa_cipher_encrypt_setup(psa_cipher_operation_t *operation,
  * After a successful call to psa_cipher_decrypt_setup(), the application must
  * eventually terminate the operation. The following events terminate an
  * operation:
- * - A failed call to any of the \c psa_cipher_xxx functions.
+ * - A failed call to psa_cipher_update().
  * - A call to psa_cipher_finish() or psa_cipher_abort().
  *
  * \param[in,out] operation     The operation object to set up. It must have
  *                              been initialized as per the documentation for
  *                              #psa_cipher_operation_t and not yet in use.
  * \param handle                Handle to the key to use for the operation.
- *                              It must remain valid until the operation
- *                              terminates.
  * \param alg                   The cipher algorithm to compute
  *                              (\c PSA_ALG_XXX value such that
  *                              #PSA_ALG_IS_CIPHER(\p alg) is true).
@@ -1739,7 +1444,7 @@ psa_status_t psa_cipher_encrypt_setup(psa_cipher_operation_t *operation,
  * \retval #PSA_SUCCESS
  *         Success.
  * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
+ * \retval #PSA_ERROR_DOES_NOT_EXIST
  * \retval #PSA_ERROR_NOT_PERMITTED
  * \retval #PSA_ERROR_INVALID_ARGUMENT
  *         \p key is not compatible with \p alg.
@@ -1750,6 +1455,9 @@ psa_status_t psa_cipher_encrypt_setup(psa_cipher_operation_t *operation,
  * \retval #PSA_ERROR_HARDWARE_FAILURE
  * \retval #PSA_ERROR_TAMPERING_DETECTED
  * \retval #PSA_ERROR_BAD_STATE
+ *         The operation state is not valid (already set up and not
+ *         subsequently completed).
+ * \retval #PSA_ERROR_BAD_STATE
  *         The library has not been previously initialized by psa_crypto_init().
  *         It is implementation-dependent whether a failure to initialize
  *         results in this error code.
@@ -1793,7 +1501,7 @@ psa_status_t psa_cipher_generate_iv(psa_cipher_operation_t *operation,
 
 /** Set the IV for a symmetric encryption or decryption operation.
  *
- * This function sets the IV (initialization vector), nonce
+ * This function sets the random IV (initialization vector), nonce
  * or initial counter value for the encryption or decryption operation.
  *
  * The application must call psa_cipher_encrypt_setup() before
@@ -1967,7 +1675,7 @@ psa_status_t psa_cipher_abort(psa_cipher_operation_t *operation);
  * \retval #PSA_SUCCESS
  *         Success.
  * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
+ * \retval #PSA_ERROR_DOES_NOT_EXIST
  * \retval #PSA_ERROR_NOT_PERMITTED
  * \retval #PSA_ERROR_INVALID_ARGUMENT
  *         \p key is not compatible with \p alg.
@@ -2023,7 +1731,7 @@ psa_status_t psa_aead_encrypt(psa_key_handle_t handle,
  * \retval #PSA_SUCCESS
  *         Success.
  * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
+ * \retval #PSA_ERROR_DOES_NOT_EXIST
  * \retval #PSA_ERROR_INVALID_SIGNATURE
  *         The ciphertext is not authentic.
  * \retval #PSA_ERROR_NOT_PERMITTED
@@ -2052,529 +1760,20 @@ psa_status_t psa_aead_decrypt(psa_key_handle_t handle,
                               size_t plaintext_size,
                               size_t *plaintext_length);
 
-/** The type of the state data structure for multipart AEAD operations.
- *
- * Before calling any function on an AEAD operation object, the application
- * must initialize it by any of the following means:
- * - Set the structure to all-bits-zero, for example:
- *   \code
- *   psa_aead_operation_t operation;
- *   memset(&operation, 0, sizeof(operation));
- *   \endcode
- * - Initialize the structure to logical zero values, for example:
- *   \code
- *   psa_aead_operation_t operation = {0};
- *   \endcode
- * - Initialize the structure to the initializer #PSA_AEAD_OPERATION_INIT,
- *   for example:
- *   \code
- *   psa_aead_operation_t operation = PSA_AEAD_OPERATION_INIT;
- *   \endcode
- * - Assign the result of the function psa_aead_operation_init()
- *   to the structure, for example:
- *   \code
- *   psa_aead_operation_t operation;
- *   operation = psa_aead_operation_init();
- *   \endcode
- *
- * This is an implementation-defined \c struct. Applications should not
- * make any assumptions about the content of this structure except
- * as directed by the documentation of a specific implementation. */
-typedef struct psa_aead_operation_s psa_aead_operation_t;
-
-/** \def PSA_AEAD_OPERATION_INIT
- *
- * This macro returns a suitable initializer for an AEAD operation object of
- * type #psa_aead_operation_t.
- */
-#ifdef __DOXYGEN_ONLY__
-/* This is an example definition for documentation purposes.
- * Implementations should define a suitable value in `crypto_struct.h`.
- */
-#define PSA_AEAD_OPERATION_INIT {0}
-#endif
+/**@}*/
 
-/** Return an initial value for an AEAD operation object.
+/** \defgroup asymmetric Asymmetric cryptography
+ * @{
  */
-static psa_aead_operation_t psa_aead_operation_init(void);
 
-/** Set the key for a multipart authenticated encryption operation.
- *
- * The sequence of operations to encrypt a message with authentication
- * is as follows:
- * -# Allocate an operation object which will be passed to all the functions
- *    listed here.
- * -# Initialize the operation object with one of the methods described in the
- *    documentation for #psa_aead_operation_t, e.g.
- *    PSA_AEAD_OPERATION_INIT.
- * -# Call psa_aead_encrypt_setup() to specify the algorithm and key.
- * -# If needed, call psa_aead_set_lengths() to specify the length of the
- *    inputs to the subsequent calls to psa_aead_update_ad() and
- *    psa_aead_update(). See the documentation of psa_aead_set_lengths()
- *    for details.
- * -# Call either psa_aead_generate_nonce() or psa_aead_set_nonce() to
- *    generate or set the nonce. You should use
- *    psa_aead_generate_nonce() unless the protocol you are implementing
- *    requires a specific nonce value.
- * -# Call psa_aead_update_ad() zero, one or more times, passing a fragment
- *    of the non-encrypted additional authenticated data each time.
- * -# Call psa_aead_update() zero, one or more times, passing a fragment
- *    of the message to encrypt each time.
- * -# Call psa_aead_finish().
- *
- * The application may call psa_aead_abort() at any time after the operation
- * has been initialized.
+/**
+ * \brief Sign a hash or short message with a private key.
  *
- * After a successful call to psa_aead_encrypt_setup(), the application must
- * eventually terminate the operation. The following events terminate an
- * operation:
- * - A failed call to any of the \c psa_aead_xxx functions.
- * - A call to psa_aead_finish(), psa_aead_verify() or psa_aead_abort().
- *
- * \param[in,out] operation     The operation object to set up. It must have
- *                              been initialized as per the documentation for
- *                              #psa_aead_operation_t and not yet in use.
- * \param handle                Handle to the key to use for the operation.
- *                              It must remain valid until the operation
- *                              terminates.
- * \param alg                   The AEAD algorithm to compute
- *                              (\c PSA_ALG_XXX value such that
- *                              #PSA_ALG_IS_AEAD(\p alg) is true).
- *
- * \retval #PSA_SUCCESS
- *         Success.
- * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
- * \retval #PSA_ERROR_NOT_PERMITTED
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         \p key is not compatible with \p alg.
- * \retval #PSA_ERROR_NOT_SUPPORTED
- *         \p alg is not supported or is not an AEAD algorithm.
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- * \retval #PSA_ERROR_BAD_STATE
- *         The library has not been previously initialized by psa_crypto_init().
- *         It is implementation-dependent whether a failure to initialize
- *         results in this error code.
- */
-psa_status_t psa_aead_encrypt_setup(psa_aead_operation_t *operation,
-                                    psa_key_handle_t handle,
-                                    psa_algorithm_t alg);
-
-/** Set the key for a multipart authenticated decryption operation.
- *
- * The sequence of operations to decrypt a message with authentication
- * is as follows:
- * -# Allocate an operation object which will be passed to all the functions
- *    listed here.
- * -# Initialize the operation object with one of the methods described in the
- *    documentation for #psa_aead_operation_t, e.g.
- *    PSA_AEAD_OPERATION_INIT.
- * -# Call psa_aead_decrypt_setup() to specify the algorithm and key.
- * -# If needed, call psa_aead_set_lengths() to specify the length of the
- *    inputs to the subsequent calls to psa_aead_update_ad() and
- *    psa_aead_update(). See the documentation of psa_aead_set_lengths()
- *    for details.
- * -# Call psa_aead_set_nonce() with the nonce for the decryption.
- * -# Call psa_aead_update_ad() zero, one or more times, passing a fragment
- *    of the non-encrypted additional authenticated data each time.
- * -# Call psa_aead_update() zero, one or more times, passing a fragment
- *    of the ciphertext to decrypt each time.
- * -# Call psa_aead_verify().
- *
- * The application may call psa_aead_abort() at any time after the operation
- * has been initialized.
- *
- * After a successful call to psa_aead_decrypt_setup(), the application must
- * eventually terminate the operation. The following events terminate an
- * operation:
- * - A failed call to any of the \c psa_aead_xxx functions.
- * - A call to psa_aead_finish(), psa_aead_verify() or psa_aead_abort().
- *
- * \param[in,out] operation     The operation object to set up. It must have
- *                              been initialized as per the documentation for
- *                              #psa_aead_operation_t and not yet in use.
- * \param handle                Handle to the key to use for the operation.
- *                              It must remain valid until the operation
- *                              terminates.
- * \param alg                   The AEAD algorithm to compute
- *                              (\c PSA_ALG_XXX value such that
- *                              #PSA_ALG_IS_AEAD(\p alg) is true).
- *
- * \retval #PSA_SUCCESS
- *         Success.
- * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
- * \retval #PSA_ERROR_NOT_PERMITTED
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         \p key is not compatible with \p alg.
- * \retval #PSA_ERROR_NOT_SUPPORTED
- *         \p alg is not supported or is not an AEAD algorithm.
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- * \retval #PSA_ERROR_BAD_STATE
- *         The library has not been previously initialized by psa_crypto_init().
- *         It is implementation-dependent whether a failure to initialize
- *         results in this error code.
- */
-psa_status_t psa_aead_decrypt_setup(psa_aead_operation_t *operation,
-                                    psa_key_handle_t handle,
-                                    psa_algorithm_t alg);
-
-/** Generate a random nonce for an authenticated encryption operation.
- *
- * This function generates a random nonce for the authenticated encryption
- * operation with an appropriate size for the chosen algorithm, key type
- * and key size.
- *
- * The application must call psa_aead_encrypt_setup() before
- * calling this function.
- *
- * If this function returns an error status, the operation becomes inactive.
- *
- * \param[in,out] operation     Active AEAD operation.
- * \param[out] nonce            Buffer where the generated nonce is to be
- *                              written.
- * \param nonce_size            Size of the \p nonce buffer in bytes.
- * \param[out] nonce_length     On success, the number of bytes of the
- *                              generated nonce.
- *
- * \retval #PSA_SUCCESS
- *         Success.
- * \retval #PSA_ERROR_BAD_STATE
- *         The operation state is not valid (not set up, or nonce already set).
- * \retval #PSA_ERROR_BUFFER_TOO_SMALL
- *         The size of the \p nonce buffer is too small.
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- */
-psa_status_t psa_aead_generate_nonce(psa_aead_operation_t *operation,
-                                     unsigned char *nonce,
-                                     size_t nonce_size,
-                                     size_t *nonce_length);
-
-/** Set the nonce for an authenticated encryption or decryption operation.
- *
- * This function sets the nonce for the authenticated
- * encryption or decryption operation.
- *
- * The application must call psa_aead_encrypt_setup() before
- * calling this function.
- *
- * If this function returns an error status, the operation becomes inactive.
- *
- * \note When encrypting, applications should use psa_aead_generate_nonce()
- * instead of this function, unless implementing a protocol that requires
- * a non-random IV.
- *
- * \param[in,out] operation     Active AEAD operation.
- * \param[in] nonce             Buffer containing the nonce to use.
- * \param nonce_length          Size of the nonce in bytes.
- *
- * \retval #PSA_SUCCESS
- *         Success.
- * \retval #PSA_ERROR_BAD_STATE
- *         The operation state is not valid (not set up, or nonce already set).
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         The size of \p nonce is not acceptable for the chosen algorithm.
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- */
-psa_status_t psa_aead_set_nonce(psa_aead_operation_t *operation,
-                                const unsigned char *nonce,
-                                size_t nonce_length);
-
-/** Declare the lengths of the message and additional data for AEAD.
- *
- * The application must call this function before calling
- * psa_aead_update_ad() or psa_aead_update() if the algorithm for
- * the operation requires it. If the algorithm does not require it,
- * calling this function is optional, but if this function is called
- * then the implementation must enforce the lengths.
- *
- * You may call this function before or after setting the nonce with
- * psa_aead_set_nonce() or psa_aead_generate_nonce().
- *
- * - For #PSA_ALG_CCM, calling this function is required.
- * - For the other AEAD algorithms defined in this specification, calling
- *   this function is not required.
- * - For vendor-defined algorithm, refer to the vendor documentation.
- *
- * \param[in,out] operation     Active AEAD operation.
- * \param ad_length             Size of the non-encrypted additional
- *                              authenticated data in bytes.
- * \param plaintext_length      Size of the plaintext to encrypt in bytes.
- *
- * \retval #PSA_SUCCESS
- *         Success.
- * \retval #PSA_ERROR_BAD_STATE
- *         The operation state is not valid (not set up, already completed,
- *         or psa_aead_update_ad() or psa_aead_update() already called).
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         At least one of the lengths is not acceptable for the chosen
- *         algorithm.
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- */
-psa_status_t psa_aead_set_lengths(psa_aead_operation_t *operation,
-                                  size_t ad_length,
-                                  size_t plaintext_length);
-
-/** Pass additional data to an active AEAD operation.
- *
- * Additional data is authenticated, but not encrypted.
- *
- * You may call this function multiple times to pass successive fragments
- * of the additional data. You may not call this function after passing
- * data to encrypt or decrypt with psa_aead_update().
- *
- * Before calling this function, you must:
- * 1. Call either psa_aead_encrypt_setup() or psa_aead_decrypt_setup().
- * 2. Set the nonce with psa_aead_generate_nonce() or psa_aead_set_nonce().
- *
- * If this function returns an error status, the operation becomes inactive.
- *
- * \warning When decrypting, until psa_aead_verify() has returned #PSA_SUCCESS,
- *          there is no guarantee that the input is valid. Therefore, until
- *          you have called psa_aead_verify() and it has returned #PSA_SUCCESS,
- *          treat the input as untrusted and prepare to undo any action that
- *          depends on the input if psa_aead_verify() returns an error status.
- *
- * \param[in,out] operation     Active AEAD operation.
- * \param[in] input             Buffer containing the fragment of
- *                              additional data.
- * \param input_length          Size of the \p input buffer in bytes.
- *
- * \retval #PSA_SUCCESS
- *         Success.
- * \retval #PSA_ERROR_BAD_STATE
- *         The operation state is not valid (not set up, nonce not set,
- *         psa_aead_update() already called, or operation already completed).
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         The total input length overflows the additional data length that
- *         was previously specified with psa_aead_set_lengths().
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- */
-psa_status_t psa_aead_update_ad(psa_aead_operation_t *operation,
-                                const uint8_t *input,
-                                size_t input_length);
-
-/** Encrypt or decrypt a message fragment in an active AEAD operation.
- *
- * Before calling this function, you must:
- * 1. Call either psa_aead_encrypt_setup() or psa_aead_decrypt_setup().
- *    The choice of setup function determines whether this function
- *    encrypts or decrypts its input.
- * 2. Set the nonce with psa_aead_generate_nonce() or psa_aead_set_nonce().
- * 3. Call psa_aead_update_ad() to pass all the additional data.
- *
- * If this function returns an error status, the operation becomes inactive.
- *
- * \warning When decrypting, until psa_aead_verify() has returned #PSA_SUCCESS,
- *          there is no guarantee that the input is valid. Therefore, until
- *          you have called psa_aead_verify() and it has returned #PSA_SUCCESS:
- *          - Do not use the output in any way other than storing it in a
- *            confidential location. If you take any action that depends
- *            on the tentative decrypted data, this action will need to be
- *            undone if the input turns out not to be valid. Furthermore,
- *            if an adversary can observe that this action took place
- *            (for example through timing), they may be able to use this
- *            fact as an oracle to decrypt any message encrypted with the
- *            same key.
- *          - In particular, do not copy the output anywhere but to a
- *            memory or storage space that you have exclusive access to.
- *
- * \param[in,out] operation     Active AEAD operation.
- * \param[in] input             Buffer containing the message fragment to
- *                              encrypt or decrypt.
- * \param input_length          Size of the \p input buffer in bytes.
- * \param[out] output           Buffer where the output is to be written.
- * \param output_size           Size of the \p output buffer in bytes.
- * \param[out] output_length    On success, the number of bytes
- *                              that make up the returned output.
- *
- * \retval #PSA_SUCCESS
- *         Success.
- * \retval #PSA_ERROR_BAD_STATE
- *         The operation state is not valid (not set up, nonce not set
- *         or already completed).
- * \retval #PSA_ERROR_BUFFER_TOO_SMALL
- *         The size of the \p output buffer is too small.
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         The total length of input to psa_aead_update_ad() so far is
- *         less than the additional data length that was previously
- *         specified with psa_aead_set_lengths().
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         The total input length overflows the plaintext length that
- *         was previously specified with psa_aead_set_lengths().
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- */
-psa_status_t psa_aead_update(psa_aead_operation_t *operation,
-                             const uint8_t *input,
-                             size_t input_length,
-                             unsigned char *output,
-                             size_t output_size,
-                             size_t *output_length);
-
-/** Finish encrypting a message in an AEAD operation.
- *
- * The operation must have been set up with psa_aead_encrypt_setup().
- *
- * This function finishes the authentication of the additional data
- * formed by concatenating the inputs passed to preceding calls to
- * psa_aead_update_ad() with the plaintext formed by concatenating the
- * inputs passed to preceding calls to psa_aead_update().
- *
- * This function has two output buffers:
- * - \p ciphertext contains trailing ciphertext that was buffered from
- *   preceding calls to psa_aead_update(). For all standard AEAD algorithms,
- *   psa_aead_update() does not buffer any output and therefore \p ciphertext
- *   will not contain any output and can be a 0-sized buffer.
- * - \p tag contains the authentication tag. Its length is always
- *   #PSA_AEAD_TAG_LENGTH(\p alg) where \p alg is the AEAD algorithm
- *   that the operation performs.
- *
- * When this function returns, the operation becomes inactive.
- *
- * \param[in,out] operation     Active AEAD operation.
- * \param[out] ciphertext       Buffer where the last part of the ciphertext
- *                              is to be written.
- * \param ciphertext_size       Size of the \p ciphertext buffer in bytes.
- * \param[out] ciphertext_length On success, the number of bytes of
- *                              returned ciphertext.
- * \param[out] tag              Buffer where the authentication tag is
- *                              to be written.
- * \param tag_size              Size of the \p tag buffer in bytes.
- * \param[out] tag_length       On success, the number of bytes
- *                              that make up the returned tag.
- *
- * \retval #PSA_SUCCESS
- *         Success.
- * \retval #PSA_ERROR_BAD_STATE
- *         The operation state is not valid (not set up, nonce not set,
- *         decryption, or already completed).
- * \retval #PSA_ERROR_BUFFER_TOO_SMALL
- *         The size of the \p output buffer is too small.
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         The total length of input to psa_aead_update_ad() so far is
- *         less than the additional data length that was previously
- *         specified with psa_aead_set_lengths().
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         The total length of input to psa_aead_update() so far is
- *         less than the plaintext length that was previously
- *         specified with psa_aead_set_lengths().
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- */
-psa_status_t psa_aead_finish(psa_aead_operation_t *operation,
-                             uint8_t *ciphertext,
-                             size_t ciphertext_size,
-                             size_t *ciphertext_length,
-                             uint8_t *tag,
-                             size_t tag_size,
-                             size_t *tag_length);
-
-/** Finish authenticating and decrypting a message in an AEAD operation.
- *
- * The operation must have been set up with psa_aead_decrypt_setup().
- *
- * This function finishes the authentication of the additional data
- * formed by concatenating the inputs passed to preceding calls to
- * psa_aead_update_ad() with the ciphertext formed by concatenating the
- * inputs passed to preceding calls to psa_aead_update().
- *
- * When this function returns, the operation becomes inactive.
- *
- * \param[in,out] operation     Active AEAD operation.
- * \param[in] tag               Buffer containing the authentication tag.
- * \param tag_length            Size of the \p tag buffer in bytes.
- *
- * \retval #PSA_SUCCESS
- *         Success.
- * \retval #PSA_ERROR_BAD_STATE
- *         The operation state is not valid (not set up, nonce not set,
- *         encryption, or already completed).
- * \retval #PSA_ERROR_BUFFER_TOO_SMALL
- *         The size of the \p output buffer is too small.
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         The total length of input to psa_aead_update_ad() so far is
- *         less than the additional data length that was previously
- *         specified with psa_aead_set_lengths().
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         The total length of input to psa_aead_update() so far is
- *         less than the plaintext length that was previously
- *         specified with psa_aead_set_lengths().
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- */
-psa_status_t psa_aead_verify(psa_aead_operation_t *operation,
-                             const uint8_t *tag,
-                             size_t tag_length);
-
-/** Abort an AEAD operation.
- *
- * Aborting an operation frees all associated resources except for the
- * \p operation structure itself. Once aborted, the operation object
- * can be reused for another operation by calling
- * psa_aead_encrypt_setup() or psa_aead_decrypt_setup() again.
- *
- * You may call this function any time after the operation object has
- * been initialized by any of the following methods:
- * - A call to psa_aead_encrypt_setup() or psa_aead_decrypt_setup(),
- *   whether it succeeds or not.
- * - Initializing the \c struct to all-bits-zero.
- * - Initializing the \c struct to logical zeros, e.g.
- *   `psa_aead_operation_t operation = {0}`.
- *
- * In particular, calling psa_aead_abort() after the operation has been
- * terminated by a call to psa_aead_abort() or psa_aead_finish()
- * is safe and has no effect.
- *
- * \param[in,out] operation     Initialized AEAD operation.
- *
- * \retval #PSA_SUCCESS
- * \retval #PSA_ERROR_BAD_STATE
- *         \p operation is not an active AEAD operation.
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- */
-psa_status_t psa_aead_abort(psa_aead_operation_t *operation);
-
-/**@}*/
-
-/** \defgroup asymmetric Asymmetric cryptography
- * @{
- */
-
-/**
- * \brief Sign a hash or short message with a private key.
- *
- * Note that to perform a hash-and-sign signature algorithm, you must
- * first calculate the hash by calling psa_hash_setup(), psa_hash_update()
- * and psa_hash_finish(). Then pass the resulting hash as the \p hash
- * parameter to this function. You can use #PSA_ALG_SIGN_GET_HASH(\p alg)
- * to determine the hash algorithm to use.
+ * Note that to perform a hash-and-sign signature algorithm, you must
+ * first calculate the hash by calling psa_hash_setup(), psa_hash_update()
+ * and psa_hash_finish(). Then pass the resulting hash as the \p hash
+ * parameter to this function. You can use #PSA_ALG_SIGN_GET_HASH(\p alg)
+ * to determine the hash algorithm to use.
  *
  * \param handle                Handle to the key to use for the operation.
  *                              It must be an asymmetric key pair.
@@ -2838,22 +2037,6 @@ static psa_crypto_generator_t psa_crypto_generator_init(void);
 psa_status_t psa_get_generator_capacity(const psa_crypto_generator_t *generator,
                                         size_t *capacity);
 
-/** Set the maximum capacity of a generator.
- *
- * \param[in,out] generator The generator object to modify.
- * \param capacity          The new capacity of the generator.
- *                          It must be less or equal to the generator's
- *                          current capacity.
- *
- * \retval #PSA_SUCCESS
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         \p capacity is larger than the generator's current capacity.
- * \retval #PSA_ERROR_BAD_STATE
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- */
-psa_status_t psa_set_generator_capacity(psa_crypto_generator_t *generator,
-                                        size_t capacity);
-
 /** Read some data from a generator.
  *
  * This function reads and returns a sequence of bytes from a generator.
@@ -2866,7 +2049,7 @@ psa_status_t psa_set_generator_capacity(psa_crypto_generator_t *generator,
  * \param output_length     Number of bytes to output.
  *
  * \retval #PSA_SUCCESS
- * \retval #PSA_ERROR_INSUFFICIENT_CAPACITY
+ * \retval #PSA_ERROR_INSUFFICIENT_DATA
  *                          There were fewer than \p output_length bytes
  *                          in the generator. Note that in this case, no
  *                          output is written to the output buffer.
@@ -2908,7 +2091,7 @@ psa_status_t psa_generator_read(psa_crypto_generator_t *generator,
  *         Success.
  *         If the key is persistent, the key material and the key's metadata
  *         have been saved to persistent storage.
- * \retval #PSA_ERROR_INSUFFICIENT_CAPACITY
+ * \retval #PSA_ERROR_INSUFFICIENT_DATA
  *                          There were fewer than \p output_length bytes
  *                          in the generator. Note that in this case, no
  *                          output is written to the output buffer.
@@ -2920,7 +2103,7 @@ psa_status_t psa_generator_read(psa_crypto_generator_t *generator,
  *         implementation in general or in this particular slot.
  * \retval #PSA_ERROR_BAD_STATE
  * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_OCCUPIED_SLOT
+ * \retval #PSA_ERROR_ALREADY_EXISTS
  *         There is already a key in the specified slot.
  * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
  * \retval #PSA_ERROR_INSUFFICIENT_STORAGE
@@ -2978,172 +2161,94 @@ psa_status_t psa_generator_abort(psa_crypto_generator_t *generator);
 
 /** Set up a key derivation operation.
  *
- * A key derivation algorithm takes some inputs and uses them to create
- * a byte generator which can be used to produce keys and other
- * cryptographic material.
- *
- * To use a generator for key derivation:
- * - Start with an initialized object of type #psa_crypto_generator_t.
- * - Call psa_key_derivation_setup() to select the algorithm.
- * - Provide the inputs for the key derivation by calling
- *   psa_key_derivation_input_bytes() or psa_key_derivation_input_key()
- *   as appropriate. Which inputs are needed, in what order, and whether
- *   they may be keys and if so of what type depends on the algorithm.
- * - Optionally set the generator's maximum capacity with
- *   psa_set_generator_capacity(). You may do this before, in the middle of
- *   or after providing inputs. For some algorithms, this step is mandatory
- *   because the output depends on the maximum capacity.
- * - Generate output with psa_generator_read() or
- *   psa_generator_import_key(). Successive calls to these functions
- *   use successive output bytes from the generator.
- * - Clean up the generator object with psa_generator_abort().
- *
- * \param[in,out] generator       The generator object to set up. It must
- *                                have been initialized but not set up yet.
+ * A key derivation algorithm takes three inputs: a secret input \p key and
+ * two non-secret inputs \p label and p salt.
+ * The result of this function is a byte generator which can
+ * be used to produce keys and other cryptographic material.
+ *
+ * The role of \p label and \p salt is as follows:
+ * - For HKDF (#PSA_ALG_HKDF), \p salt is the salt used in the "extract" step
+ *   and \p label is the info string used in the "expand" step.
+ *
+ * \param[in,out] generator       The generator object to set up. It must have
+ *                                been initialized as per the documentation for
+ *                                #psa_crypto_generator_t and not yet in use.
+ * \param handle                  Handle to the secret key.
  * \param alg                     The key derivation algorithm to compute
  *                                (\c PSA_ALG_XXX value such that
  *                                #PSA_ALG_IS_KEY_DERIVATION(\p alg) is true).
- *
- * \retval #PSA_SUCCESS
- *         Success.
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         \c alg is not a key derivation algorithm.
- * \retval #PSA_ERROR_NOT_SUPPORTED
- *         \c alg is not supported or is not a key derivation algorithm.
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- * \retval #PSA_ERROR_BAD_STATE
- */
-psa_status_t psa_key_derivation_setup(psa_crypto_generator_t *generator,
-                                      psa_algorithm_t alg);
-
-/** Provide an input for key derivation or key agreement.
- *
- * Which inputs are required and in what order depends on the algorithm.
- * Refer to the documentation of each key derivation or key agreement
- * algorithm for information.
- *
- * This function passes direct inputs. Some inputs must be passed as keys
- * using psa_key_derivation_input_key() instead of this function. Refer to
- * the documentation of individual step types for information.
- *
- * \param[in,out] generator       The generator object to use. It must
- *                                have been set up with
- *                                psa_key_derivation_setup() and must not
- *                                have produced any output yet.
- * \param step                    Which step the input data is for.
- * \param[in] data                Input data to use.
- * \param data_length             Size of the \p data buffer in bytes.
- *
- * \retval #PSA_SUCCESS
- *         Success.
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         \c step is not compatible with the generator's algorithm.
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         \c step does not allow direct inputs.
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- * \retval #PSA_ERROR_BAD_STATE
- *         The value of \p step is not valid given the state of \p generator.
- * \retval #PSA_ERROR_BAD_STATE
- *         The library has not been previously initialized by psa_crypto_init().
- *         It is implementation-dependent whether a failure to initialize
- *         results in this error code.
- */
-psa_status_t psa_key_derivation_input_bytes(psa_crypto_generator_t *generator,
-                                            psa_key_derivation_step_t step,
-                                            const uint8_t *data,
-                                            size_t data_length);
-
-/** Provide an input for key derivation in the form of a key.
- *
- * Which inputs are required and in what order depends on the algorithm.
- * Refer to the documentation of each key derivation or key agreement
- * algorithm for information.
- *
- * This function passes key inputs. Some inputs must be passed as keys
- * of the appropriate type using this function, while others must be
- * passed as direct inputs using psa_key_derivation_input_bytes(). Refer to
- * the documentation of individual step types for information.
- *
- * \param[in,out] generator       The generator object to use. It must
- *                                have been set up with
- *                                psa_key_derivation_setup() and must not
- *                                have produced any output yet.
- * \param step                    Which step the input data is for.
- * \param handle                  Handle to the key. It must have an
- *                                appropriate type for \p step and must
- *                                allow the usage #PSA_KEY_USAGE_DERIVE.
+ * \param[in] salt                Salt to use.
+ * \param salt_length             Size of the \p salt buffer in bytes.
+ * \param[in] label               Label to use.
+ * \param label_length            Size of the \p label buffer in bytes.
+ * \param capacity                The maximum number of bytes that the
+ *                                generator will be able to provide.
  *
  * \retval #PSA_SUCCESS
  *         Success.
  * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
+ * \retval #PSA_ERROR_DOES_NOT_EXIST
  * \retval #PSA_ERROR_NOT_PERMITTED
  * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         \c step is not compatible with the generator's algorithm.
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         \c step does not allow key inputs.
+ *         \c key is not compatible with \c alg,
+ *         or \p capacity is too large for the specified algorithm and key.
+ * \retval #PSA_ERROR_NOT_SUPPORTED
+ *         \c alg is not supported or is not a key derivation algorithm.
  * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
  * \retval #PSA_ERROR_COMMUNICATION_FAILURE
  * \retval #PSA_ERROR_HARDWARE_FAILURE
  * \retval #PSA_ERROR_TAMPERING_DETECTED
  * \retval #PSA_ERROR_BAD_STATE
- *         The value of \p step is not valid given the state of \p generator.
- * \retval #PSA_ERROR_BAD_STATE
  *         The library has not been previously initialized by psa_crypto_init().
  *         It is implementation-dependent whether a failure to initialize
  *         results in this error code.
  */
-psa_status_t psa_key_derivation_input_key(psa_crypto_generator_t *generator,
-                                          psa_key_derivation_step_t step,
-                                          psa_key_handle_t handle);
+psa_status_t psa_key_derivation(psa_crypto_generator_t *generator,
+                                psa_key_handle_t handle,
+                                psa_algorithm_t alg,
+                                const uint8_t *salt,
+                                size_t salt_length,
+                                const uint8_t *label,
+                                size_t label_length,
+                                size_t capacity);
 
-/** Perform a key agreement and use the shared secret as input to a key
- * derivation.
+/** Set up a key agreement operation.
  *
  * A key agreement algorithm takes two inputs: a private key \p private_key
  * a public key \p peer_key.
- * The result of this function is passed as input to a key derivation.
- * The output of this key derivation can be extracted by reading from the
- * resulting generator to produce keys and other cryptographic material.
- *
- * \param[in,out] generator       The generator object to use. It must
- *                                have been set up with
- *                                psa_key_derivation_setup() with a
- *                                key agreement and derivation algorithm
- *                                \c alg (\c PSA_ALG_XXX value such that
- *                                #PSA_ALG_IS_KEY_AGREEMENT(\p alg) is true
- *                                and #PSA_ALG_IS_RAW_KEY_AGREEMENT(\p alg)
- *                                is false).
- *                                The generator must be ready for an
- *                                input of the type given by \p step.
- * \param step                    Which step the input data is for.
- * \param private_key             Handle to the private key to use.
+ * The result of this function is a byte generator which can
+ * be used to produce keys and other cryptographic material.
+ *
+ * The resulting generator always has the maximum capacity permitted by
+ * the algorithm.
+ *
+ * \param[in,out] generator The generator object to set up. It must have been
+ *                          initialized as per the documentation for
+ *                          #psa_crypto_generator_t and not yet in use.
+ * \param private_key       Handle to the private key to use.
  * \param[in] peer_key      Public key of the peer. The peer key must be in the
  *                          same format that psa_import_key() accepts for the
  *                          public key type corresponding to the type of
- *                          private_key. That is, this function performs the
+ *                          \p private_key. That is, this function performs the
  *                          equivalent of
  *                          `psa_import_key(internal_public_key_handle,
  *                          PSA_KEY_TYPE_PUBLIC_KEY_OF_KEYPAIR(private_key_type),
  *                          peer_key, peer_key_length)` where
- *                          `private_key_type` is the type of `private_key`.
- *                          For example, for EC keys, this means that peer_key
- *                          is interpreted as a point on the curve that the
- *                          private key is on. The standard formats for public
- *                          keys are documented in the documentation of
- *                          psa_export_public_key().
- * \param peer_key_length         Size of \p peer_key in bytes.
+ *                          `private_key_type` is the type of \p private_key.
+ *                          For example, for EC keys, this means that \p
+ *                          peer_key is interpreted as a point on the curve
+ *                          that the private key is associated with. The
+ *                          standard formats for public keys are documented in
+ *                          the documentation of psa_export_public_key().
+ * \param peer_key_length   Size of \p peer_key in bytes.
+ * \param alg               The key agreement algorithm to compute
+ *                          (\c PSA_ALG_XXX value such that
+ *                          #PSA_ALG_IS_KEY_AGREEMENT(\p alg) is true).
  *
  * \retval #PSA_SUCCESS
  *         Success.
  * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
+ * \retval #PSA_ERROR_DOES_NOT_EXIST
  * \retval #PSA_ERROR_NOT_PERMITTED
  * \retval #PSA_ERROR_INVALID_ARGUMENT
  *         \c private_key is not compatible with \c alg,
@@ -3157,62 +2262,10 @@ psa_status_t psa_key_derivation_input_key(psa_crypto_generator_t *generator,
  * \retval #PSA_ERROR_TAMPERING_DETECTED
  */
 psa_status_t psa_key_agreement(psa_crypto_generator_t *generator,
-                               psa_key_derivation_step_t step,
                                psa_key_handle_t private_key,
                                const uint8_t *peer_key,
-                               size_t peer_key_length);
-
-/** Perform a key agreement and use the shared secret as input to a key
- * derivation.
- *
- * A key agreement algorithm takes two inputs: a private key \p private_key
- * a public key \p peer_key.
- *
- * \warning The raw result of a key agreement algorithm such as finite-field
- * Diffie-Hellman or elliptic curve Diffie-Hellman has biases and should
- * not be used directly as key material. It should instead be passed as
- * input to a key derivation algorithm. To chain a key agreement with
- * a key derivation, use psa_key_agreement() and other functions from
- * the key derivation and generator interface.
- *
- * \param private_key             Handle to the private key to use.
- * \param[in] peer_key            Public key of the peer. It must be
- *                                in the same format that psa_import_key()
- *                                accepts. The standard formats for public
- *                                keys are documented in the documentation
- *                                of psa_export_public_key().
- * \param peer_key_length         Size of \p peer_key in bytes.
- * \param[out] output             Buffer where the decrypted message is to
- *                                be written.
- * \param output_size             Size of the \c output buffer in bytes.
- * \param[out] output_length      On success, the number of bytes
- *                                that make up the returned output.
- *
- * \retval #PSA_SUCCESS
- *         Success.
- * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_EMPTY_SLOT
- * \retval #PSA_ERROR_NOT_PERMITTED
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         \p alg is not a key agreement algorithm
- * \retval #PSA_ERROR_INVALID_ARGUMENT
- *         \p private_key is not compatible with \p alg,
- *         or \p peer_key is not valid for \p alg or not compatible with
- *         \p private_key.
- * \retval #PSA_ERROR_NOT_SUPPORTED
- *         \p alg is not a supported key agreement algorithm.
- * \retval #PSA_ERROR_INSUFFICIENT_MEMORY
- * \retval #PSA_ERROR_COMMUNICATION_FAILURE
- * \retval #PSA_ERROR_HARDWARE_FAILURE
- * \retval #PSA_ERROR_TAMPERING_DETECTED
- */
-psa_status_t psa_key_agreement_raw_shared_secret(psa_algorithm_t alg,
-                                                 psa_key_handle_t private_key,
-                                                 const uint8_t *peer_key,
-                                                 size_t peer_key_length,
-                                                 uint8_t *output,
-                                                 size_t output_size,
-                                                 size_t *output_length);
+                               size_t peer_key_length,
+                               psa_algorithm_t alg);
 
 /**@}*/
 
@@ -3285,18 +2338,6 @@ typedef struct {
  *                            specifying the public exponent. The
  *                            default public exponent used when \p extra
  *                            is \c NULL is 65537.
- *                          - For an DSA key (\p type is
- *                            #PSA_KEY_TYPE_DSA_KEYPAIR), \p extra is an
- *                            optional structure specifying the key domain
- *                            parameters. The key domain parameters can also be
- *                            provided by psa_set_key_domain_parameters(),
- *                            which documents the format of the structure.
- *                          - For a DH key (\p type is
- *                            #PSA_KEY_TYPE_DH_KEYPAIR), the \p extra is an
- *                            optional structure specifying the key domain
- *                            parameters. The key domain parameters can also be
- *                            provided by psa_set_key_domain_parameters(),
- *                            which documents the format of the structure.
  * \param extra_size        Size of the buffer that \p extra
  *                          points to, in bytes. Note that if \p extra is
  *                          \c NULL then \p extra_size must be zero.
@@ -3306,7 +2347,7 @@ typedef struct {
  *         If the key is persistent, the key material and the key's metadata
  *         have been saved to persistent storage.
  * \retval #PSA_ERROR_INVALID_HANDLE
- * \retval #PSA_ERROR_OCCUPIED_SLOT
+ * \retval #PSA_ERROR_ALREADY_EXISTS
  *         There is already a key in the specified slot.
  * \retval #PSA_ERROR_NOT_SUPPORTED
  * \retval #PSA_ERROR_INVALID_ARGUMENT
diff --git a/api-specs/include/psa/crypto_extra.h b/api-specs/include/psa/crypto_extra.h
index 6711860c..1e330aca 100644
--- a/api-specs/include/psa/crypto_extra.h
+++ b/api-specs/include/psa/crypto_extra.h
@@ -1,7 +1,7 @@
 /**
  * \file psa/crypto_extra.h
  *
- * \brief PSA cryptography module: vendor extensions
+ * \brief PSA cryptography module: Mbed TLS vendor extensions
  *
  * \note This file may not be included directly. Applications must
  * include psa/crypto.h.
@@ -30,11 +30,120 @@
 #ifndef PSA_CRYPTO_EXTRA_H
 #define PSA_CRYPTO_EXTRA_H
 
+#include "mbedtls/platform_util.h"
+
 #ifdef __cplusplus
 extern "C" {
 #endif
 
-/* Add vendor extensions here. */
+/* UID for secure storage seed */
+#define PSA_CRYPTO_ITS_RANDOM_SEED_UID 0xFFFFFF52
+
+/*
+ * Deprecated PSA Crypto error code definitions
+ */
+#if !defined(MBEDTLS_DEPRECATED_REMOVED)
+#define PSA_ERROR_UNKNOWN_ERROR \
+    MBEDTLS_DEPRECATED_NUMERIC_CONSTANT( PSA_ERROR_GENERIC_ERROR )
+#endif
+
+#if !defined(MBEDTLS_DEPRECATED_REMOVED)
+#define PSA_ERROR_OCCUPIED_SLOT \
+    MBEDTLS_DEPRECATED_NUMERIC_CONSTANT( PSA_ERROR_ALREADY_EXISTS )
+#endif
+
+#if !defined(MBEDTLS_DEPRECATED_REMOVED)
+#define PSA_ERROR_EMPTY_SLOT \
+    MBEDTLS_DEPRECATED_NUMERIC_CONSTANT( PSA_ERROR_DOES_NOT_EXIST )
+#endif
+
+#if !defined(MBEDTLS_DEPRECATED_REMOVED)
+#define PSA_ERROR_INSUFFICIENT_CAPACITY \
+    MBEDTLS_DEPRECATED_NUMERIC_CONSTANT( PSA_ERROR_INSUFFICIENT_DATA )
+#endif
+
+/**
+ * \brief Library deinitialization.
+ *
+ * This function clears all data associated with the PSA layer,
+ * including the whole key store.
+ *
+ * This is an Mbed TLS extension.
+ */
+void mbedtls_psa_crypto_free( void );
+
+
+/**
+ * \brief Inject an initial entropy seed for the random generator into
+ *        secure storage.
+ *
+ * This function injects data to be used as a seed for the random generator
+ * used by the PSA Crypto implementation. On devices that lack a trusted
+ * entropy source (preferably a hardware random number generator),
+ * the Mbed PSA Crypto implementation uses this value to seed its
+ * random generator.
+ *
+ * On devices without a trusted entropy source, this function must be
+ * called exactly once in the lifetime of the device. On devices with
+ * a trusted entropy source, calling this function is optional.
+ * In all cases, this function may only be called before calling any
+ * other function in the PSA Crypto API, including psa_crypto_init().
+ *
+ * When this function returns successfully, it populates a file in
+ * persistent storage. Once the file has been created, this function
+ * can no longer succeed.
+ *
+ * If any error occurs, this function does not change the system state.
+ * You can call this function again after correcting the reason for the
+ * error if possible.
+ *
+ * \warning This function **can** fail! Callers MUST check the return status.
+ *
+ * \warning If you use this function, you should use it as part of a
+ *          factory provisioning process. The value of the injected seed
+ *          is critical to the security of the device. It must be
+ *          *secret*, *unpredictable* and (statistically) *unique per device*.
+ *          You should be generate it randomly using a cryptographically
+ *          secure random generator seeded from trusted entropy sources.
+ *          You should transmit it securely to the device and ensure
+ *          that its value is not leaked or stored anywhere beyond the
+ *          needs of transmitting it from the point of generation to
+ *          the call of this function, and erase all copies of the value
+ *          once this function returns.
+ *
+ * This is an Mbed TLS extension.
+ *
+ * \note This function is only available on the following platforms:
+ * * If the compile-time options MBEDTLS_ENTROPY_NV_SEED and
+ *   MBEDTLS_PSA_HAS_ITS_IO are both enabled. Note that you
+ *   must provide compatible implementations of mbedtls_nv_seed_read
+ *   and mbedtls_nv_seed_write.
+ * * In a client-server integration of PSA Cryptography, on the client side,
+ *   if the server supports this feature.
+ * \param[in] seed          Buffer containing the seed value to inject.
+ * \param[in] seed_size     Size of the \p seed buffer.
+ *                          The size of the seed in bytes must be greater
+ *                          or equal to both #MBEDTLS_ENTROPY_MIN_PLATFORM
+ *                          and #MBEDTLS_ENTROPY_BLOCK_SIZE.
+ *                          It must be less or equal to
+ *                          #MBEDTLS_ENTROPY_MAX_SEED_SIZE.
+ *
+ * \retval #PSA_SUCCESS
+ *         The seed value was injected successfully. The random generator
+ *         of the PSA Crypto implementation is now ready for use.
+ *         You may now call psa_crypto_init() and use the PSA Crypto
+ *         implementation.
+ * \retval #PSA_ERROR_INVALID_ARGUMENT
+ *         \p seed_size is out of range.
+ * \retval #PSA_ERROR_STORAGE_FAILURE
+ *         There was a failure reading or writing from storage.
+ * \retval #PSA_ERROR_NOT_PERMITTED
+ *         The library has already been initialized. It is no longer
+ *         possible to call this function.
+ */
+psa_status_t mbedtls_psa_inject_entropy(const unsigned char *seed,
+                                        size_t seed_size);
+
 
 #ifdef __cplusplus
 }
diff --git a/api-specs/include/psa/crypto_platform.h b/api-specs/include/psa/crypto_platform.h
index ea60c959..52ee822e 100644
--- a/api-specs/include/psa/crypto_platform.h
+++ b/api-specs/include/psa/crypto_platform.h
@@ -1,7 +1,7 @@
 /**
  * \file psa/crypto_platform.h
  *
- * \brief PSA cryptography module: Platfom-specific definitions
+ * \brief PSA cryptography module: Mbed TLS platfom definitions
  *
  * \note This file may not be included directly. Applications must
  * include psa/crypto.h.
@@ -35,11 +35,67 @@
 #ifndef PSA_CRYPTO_PLATFORM_H
 #define PSA_CRYPTO_PLATFORM_H
 
+/* Include the Mbed TLS configuration file, the way Mbed TLS does it
+ * in each of its header files. */
+#if !defined(MBEDTLS_CONFIG_FILE)
+#include "../mbedtls/config.h"
+#else
+#include MBEDTLS_CONFIG_FILE
+#endif
+
 /* PSA requires several types which C99 provides in stdint.h. */
 #include <stdint.h>
 
-/* Integral type representing a key handle. The choice of integral
- * type is implementation-dependent. */
+/* Integral type representing a key handle. */
 typedef uint16_t psa_key_handle_t;
 
+/* This implementation distinguishes *application key identifiers*, which
+ * are the key identifiers specified by the application, from
+ * *key file identifiers*, which are the key identifiers that the library
+ * sees internally. The two types can be different if there is a remote
+ * call layer between the application and the library which supports
+ * multiple client applications that do not have access to each others'
+ * keys. The point of having different types is that the key file
+ * identifier may encode not only the key identifier specified by the
+ * application, but also the the identity of the application.
+ *
+ * Note that this is an internal concept of the library and the remote
+ * call layer. The application itself never sees anything other than
+ * #psa_app_key_id_t with its standard definition.
+ */
+
+/* The application key identifier is always what the application sees as
+ * #psa_key_id_t. */
+typedef uint32_t psa_app_key_id_t;
+
+#if defined(MBEDTLS_PSA_CRYPTO_KEY_FILE_ID_ENCODES_OWNER)
+
+#if defined(PSA_CRYPTO_SECURE)
+/* Building for the PSA Crypto service on a PSA platform. */
+/* A key owner is a PSA partition identifier. */
+typedef int32_t psa_key_owner_id_t;
+#endif
+
+typedef struct
+{
+    uint32_t key_id;
+    psa_key_owner_id_t owner;
+} psa_key_file_id_t;
+#define PSA_KEY_FILE_GET_KEY_ID( file_id ) ( ( file_id ).key_id )
+
+/* Since crypto.h is used as part of the PSA Cryptography API specification,
+ * it must use standard types for things like the argument of psa_open_key().
+ * If it wasn't for that constraint, psa_open_key() would take a
+ * `psa_key_file_id_t` argument. As a workaround, make `psa_key_id_t` an
+ * alias for `psa_key_file_id_t` when building for a multi-client service. */
+typedef psa_key_file_id_t psa_key_id_t;
+
+#else /* !MBEDTLS_PSA_CRYPTO_KEY_FILE_ID_ENCODES_OWNER */
+
+/* By default, a key file identifier is just the application key identifier. */
+typedef psa_app_key_id_t psa_key_file_id_t;
+#define PSA_KEY_FILE_GET_KEY_ID( id ) ( id )
+
+#endif /* !MBEDTLS_PSA_CRYPTO_KEY_FILE_ID_ENCODES_OWNER */
+
 #endif /* PSA_CRYPTO_PLATFORM_H */
diff --git a/api-specs/include/psa/crypto_sizes.h b/api-specs/include/psa/crypto_sizes.h
index 046b5246..7967a290 100644
--- a/api-specs/include/psa/crypto_sizes.h
+++ b/api-specs/include/psa/crypto_sizes.h
@@ -268,27 +268,6 @@
      (plaintext_length) + PSA_AEAD_TAG_LENGTH(alg) :              \
      0)
 
-/** The maximum size of the output of psa_aead_finish(), in bytes.
- *
- * If the size of the ciphertext buffer is at least this large, it is
- * guaranteed that psa_aead_finish() will not fail due to an
- * insufficient buffer size. Depending on the algorithm, the actual size of
- * the ciphertext may be smaller.
- *
- * \param alg                 An AEAD algorithm
- *                            (\c PSA_ALG_XXX value such that
- *                            #PSA_ALG_IS_AEAD(alg) is true).
- *
- * \return                    The maximum trailing ciphertext size for the
- *                            specified algorithm.
- *                            If the AEAD algorithm is not recognized, return 0.
- *                            An implementation may return either 0 or a
- *                            correct size for an AEAD algorithm that it
- *                            recognizes, but does not support.
- */
-#define PSA_AEAD_FINISH_OUTPUT_SIZE(alg, plaintext_length)      \
-    ((size_t)0)
-
 /** The maximum size of the output of psa_aead_decrypt(), in bytes.
  *
  * If the size of the plaintext buffer is at least this large, it is
@@ -313,9 +292,9 @@
      (plaintext_length) - PSA_AEAD_TAG_LENGTH(alg) :              \
      0)
 
-#define PSA_RSA_MINIMUM_PADDING_SIZE(alg)                               \
-    (PSA_ALG_IS_RSA_OAEP(alg) ?                                         \
-     2 * PSA_HASH_FINAL_SIZE(PSA_ALG_RSA_OAEP_GET_HASH(alg)) + 1 :      \
+#define PSA_RSA_MINIMUM_PADDING_SIZE(alg)                         \
+    (PSA_ALG_IS_RSA_OAEP(alg) ?                                   \
+     2 * PSA_HASH_SIZE(PSA_ALG_RSA_OAEP_GET_HASH(alg)) + 1 :      \
      11 /*PKCS#1v1.5*/)
 
 /**
@@ -438,25 +417,16 @@
 /* Maximum size of the export encoding of an RSA public key.
  * Assumes that the public exponent is less than 2^32.
  *
- * SubjectPublicKeyInfo  ::=  SEQUENCE  {
- *      algorithm            AlgorithmIdentifier,
- *      subjectPublicKey     BIT STRING  } -- contains RSAPublicKey
- * AlgorithmIdentifier  ::=  SEQUENCE  {
- *      algorithm               OBJECT IDENTIFIER,
- *      parameters              NULL  }
  * RSAPublicKey  ::=  SEQUENCE  {
  *    modulus            INTEGER,    -- n
  *    publicExponent     INTEGER  }  -- e
  *
- * - 3 * 4 bytes of SEQUENCE overhead;
- * - 1 + 1 + 9 bytes of algorithm (RSA OID);
- * - 2 bytes of NULL;
- * - 4 bytes of BIT STRING overhead;
+ * - 4 bytes of SEQUENCE overhead;
  * - n : INTEGER;
  * - 7 bytes for the public exponent.
  */
 #define PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(key_bits)        \
-    (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) + 36)
+    (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) + 11)
 
 /* Maximum size of the export encoding of an RSA key pair.
  * Assumes thatthe public exponent is less than 2^32 and that the size
@@ -523,26 +493,16 @@
 
 /* Maximum size of the export encoding of an ECC public key.
  *
- * SubjectPublicKeyInfo  ::=  SEQUENCE  {
- *      algorithm            AlgorithmIdentifier,
- *      subjectPublicKey     BIT STRING  } -- contains ECPoint
- * AlgorithmIdentifier  ::=  SEQUENCE  {
- *      algorithm               OBJECT IDENTIFIER,
- *      parameters              OBJECT IDENTIFIER } -- namedCurve
- * ECPoint ::= ...
- *    -- first 8 bits: 0x04;
- *    -- then x_P as a `ceiling(m/8)`-byte string, big endian;
- *    -- then y_P as a `ceiling(m/8)`-byte string, big endian;
- *    -- where `m` is the bit size associated with the curve.
- *
- * - 2 * 4 bytes of SEQUENCE overhead;
- * - 1 + 1 + 7 bytes of algorithm (id-ecPublicKey OID);
- * - 1 + 1 + 12 bytes of namedCurve OID;
- * - 4 bytes of BIT STRING overhead;
- * - 1 byte + 2 * point size in ECPoint.
+ * The representation of an ECC public key is:
+ *      - The byte 0x04;
+ *      - `x_P` as a `ceiling(m/8)`-byte string, big-endian;
+ *      - `y_P` as a `ceiling(m/8)`-byte string, big-endian;
+ *      - where m is the bit size associated with the curve.
+ *
+ * - 1 byte + 2 * point size.
  */
 #define PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(key_bits)        \
-    (2 * PSA_BITS_TO_BYTES(key_bits) + 36)
+    (2 * PSA_BITS_TO_BYTES(key_bits) + 1)
 
 /* Maximum size of the export encoding of an ECC key pair.
  *
diff --git a/api-specs/include/psa/crypto_struct.h b/api-specs/include/psa/crypto_struct.h
index df09fcb0..18b37ef2 100644
--- a/api-specs/include/psa/crypto_struct.h
+++ b/api-specs/include/psa/crypto_struct.h
@@ -1,11 +1,7 @@
 /**
  * \file psa/crypto_struct.h
  *
- * \brief PSA cryptography module: structured type implementations
- *
- * This file contains a list of structures that each implementation
- * of the PSA Crypto API must define, as well as sample definitions
- * for initializers.
+ * \brief PSA cryptography module: Mbed TLS structured type implementations
  *
  * \note This file may not be included directly. Applications must
  * include psa/crypto.h.
@@ -39,40 +35,189 @@
 #ifndef PSA_CRYPTO_STRUCT_H
 #define PSA_CRYPTO_STRUCT_H
 
-struct psa_hash_operation_s;
-#define PSA_HASH_OPERATION_INIT {0}
+/* Include the Mbed TLS configuration file, the way Mbed TLS does it
+ * in each of its header files. */
+#if !defined(MBEDTLS_CONFIG_FILE)
+#include "../mbedtls/config.h"
+#else
+#include MBEDTLS_CONFIG_FILE
+#endif
+
+#include "mbedtls/cipher.h"
+#include "mbedtls/cmac.h"
+#include "mbedtls/gcm.h"
+#include "mbedtls/md.h"
+#include "mbedtls/md2.h"
+#include "mbedtls/md4.h"
+#include "mbedtls/md5.h"
+#include "mbedtls/ripemd160.h"
+#include "mbedtls/sha1.h"
+#include "mbedtls/sha256.h"
+#include "mbedtls/sha512.h"
+
+struct psa_hash_operation_s
+{
+    psa_algorithm_t alg;
+    union
+    {
+        unsigned dummy; /* Make the union non-empty even with no supported algorithms. */
+#if defined(MBEDTLS_MD2_C)
+        mbedtls_md2_context md2;
+#endif
+#if defined(MBEDTLS_MD4_C)
+        mbedtls_md4_context md4;
+#endif
+#if defined(MBEDTLS_MD5_C)
+        mbedtls_md5_context md5;
+#endif
+#if defined(MBEDTLS_RIPEMD160_C)
+        mbedtls_ripemd160_context ripemd160;
+#endif
+#if defined(MBEDTLS_SHA1_C)
+        mbedtls_sha1_context sha1;
+#endif
+#if defined(MBEDTLS_SHA256_C)
+        mbedtls_sha256_context sha256;
+#endif
+#if defined(MBEDTLS_SHA512_C)
+        mbedtls_sha512_context sha512;
+#endif
+    } ctx;
+};
+
+#define PSA_HASH_OPERATION_INIT {0, {0}}
 static inline struct psa_hash_operation_s psa_hash_operation_init( void )
 {
     const struct psa_hash_operation_s v = PSA_HASH_OPERATION_INIT;
     return( v );
 }
 
-struct psa_mac_operation_s;
-#define PSA_MAC_OPERATION_INIT {0}
+#if defined(MBEDTLS_MD_C)
+typedef struct
+{
+        /** The hash context. */
+        struct psa_hash_operation_s hash_ctx;
+        /** The HMAC part of the context. */
+        uint8_t opad[PSA_HMAC_MAX_HASH_BLOCK_SIZE];
+} psa_hmac_internal_data;
+#endif /* MBEDTLS_MD_C */
+
+struct psa_mac_operation_s
+{
+    psa_algorithm_t alg;
+    unsigned int key_set : 1;
+    unsigned int iv_required : 1;
+    unsigned int iv_set : 1;
+    unsigned int has_input : 1;
+    unsigned int is_sign : 1;
+    uint8_t mac_size;
+    union
+    {
+        unsigned dummy; /* Make the union non-empty even with no supported algorithms. */
+#if defined(MBEDTLS_MD_C)
+        psa_hmac_internal_data hmac;
+#endif
+#if defined(MBEDTLS_CMAC_C)
+        mbedtls_cipher_context_t cmac;
+#endif
+    } ctx;
+};
+
+#define PSA_MAC_OPERATION_INIT {0, 0, 0, 0, 0, 0, 0, {0}}
 static inline struct psa_mac_operation_s psa_mac_operation_init( void )
 {
     const struct psa_mac_operation_s v = PSA_MAC_OPERATION_INIT;
     return( v );
 }
 
-struct psa_cipher_operation_s;
-#define PSA_CIPHER_OPERATION_INIT {0}
+struct psa_cipher_operation_s
+{
+    psa_algorithm_t alg;
+    unsigned int key_set : 1;
+    unsigned int iv_required : 1;
+    unsigned int iv_set : 1;
+    uint8_t iv_size;
+    uint8_t block_size;
+    union
+    {
+        unsigned dummy; /* Enable easier initializing of the union. */
+        mbedtls_cipher_context_t cipher;
+    } ctx;
+};
+
+#define PSA_CIPHER_OPERATION_INIT {0, 0, 0, 0, 0, 0, {0}}
 static inline struct psa_cipher_operation_s psa_cipher_operation_init( void )
 {
     const struct psa_cipher_operation_s v = PSA_CIPHER_OPERATION_INIT;
     return( v );
 }
 
-struct psa_aead_operation_s;
-#define PSA_AEAD_OPERATION_INIT {0}
-static inline struct psa_aead_operation_s psa_aead_operation_init( void )
+#if defined(MBEDTLS_MD_C)
+typedef struct
 {
-    const struct psa_aead_operation_s v = PSA_AEAD_OPERATION_INIT;
-    return( v );
-}
+    uint8_t *info;
+    size_t info_length;
+    psa_hmac_internal_data hmac;
+    uint8_t prk[PSA_HASH_MAX_SIZE];
+    uint8_t output_block[PSA_HASH_MAX_SIZE];
+#if PSA_HASH_MAX_SIZE > 0xff
+#error "PSA_HASH_MAX_SIZE does not fit in uint8_t"
+#endif
+    uint8_t offset_in_block;
+    uint8_t block_number;
+} psa_hkdf_generator_t;
+#endif /* MBEDTLS_MD_C */
+
+#if defined(MBEDTLS_MD_C)
+typedef struct psa_tls12_prf_generator_s
+{
+    /* The TLS 1.2 PRF uses the key for each HMAC iteration,
+     * hence we must store it for the lifetime of the generator.
+     * This is different from HKDF, where the key is only used
+     * in the extraction phase, but not during expansion. */
+    unsigned char *key;
+    size_t key_len;
+
+    /* `A(i) + seed` in the notation of RFC 5246, Sect. 5 */
+    uint8_t *Ai_with_seed;
+    size_t Ai_with_seed_len;
+
+    /* `HMAC_hash( prk, A(i) + seed )` in the notation of RFC 5246, Sect. 5. */
+    uint8_t output_block[PSA_HASH_MAX_SIZE];
+
+#if PSA_HASH_MAX_SIZE > 0xff
+#error "PSA_HASH_MAX_SIZE does not fit in uint8_t"
+#endif
 
-struct psa_crypto_generator_s;
-#define PSA_CRYPTO_GENERATOR_INIT {0}
+    /* Indicates how many bytes in the current HMAC block have
+     * already been read by the user. */
+    uint8_t offset_in_block;
+
+    /* The 1-based number of the block. */
+    uint8_t block_number;
+
+} psa_tls12_prf_generator_t;
+#endif /* MBEDTLS_MD_C */
+
+struct psa_crypto_generator_s
+{
+    psa_algorithm_t alg;
+    size_t capacity;
+    union
+    {
+        struct
+        {
+            uint8_t *data;
+            size_t size;
+        } buffer;
+#if defined(MBEDTLS_MD_C)
+        psa_hkdf_generator_t hkdf;
+        psa_tls12_prf_generator_t tls12_prf;
+#endif
+    } ctx;
+};
+
+#define PSA_CRYPTO_GENERATOR_INIT {0, 0, {{0, 0}}}
 static inline struct psa_crypto_generator_s psa_crypto_generator_init( void )
 {
     const struct psa_crypto_generator_s v = PSA_CRYPTO_GENERATOR_INIT;
@@ -84,6 +229,7 @@ struct psa_key_policy_s
     psa_key_usage_t usage;
     psa_algorithm_t alg;
 };
+
 #define PSA_KEY_POLICY_INIT {0, 0}
 static inline struct psa_key_policy_s psa_key_policy_init( void )
 {
diff --git a/api-specs/include/psa/crypto_types.h b/api-specs/include/psa/crypto_types.h
index 99d73f61..b8717e35 100644
--- a/api-specs/include/psa/crypto_types.h
+++ b/api-specs/include/psa/crypto_types.h
@@ -47,8 +47,13 @@
  * This is either #PSA_SUCCESS (which is zero), indicating success,
  * or a nonzero value indicating that an error occurred. Errors are
  * encoded as one of the \c PSA_ERROR_xxx values defined here.
+ * If #PSA_SUCCESS is already defined, it means that #psa_status_t
+ * is also defined in an external header, so prevent its multiple
+ * definition.
  */
+#ifndef PSA_SUCCESS
 typedef int32_t psa_status_t;
+#endif
 
 /**@}*/
 
@@ -85,7 +90,14 @@ typedef uint32_t psa_key_lifetime_t;
 
 /** Encoding of identifiers of persistent keys.
  */
+/* Implementation-specific quirk: The Mbed Crypto library can be built as
+ * part of a multi-client service that exposes the PSA Crypto API in each
+ * client and encodes the client identity in the key id argument of functions
+ * such as psa_open_key(). In this build configuration, we define
+ * psa_key_id_t in crypto_platform.h instead of here. */
+#if !defined(MBEDTLS_PSA_CRYPTO_KEY_FILE_ID_ENCODES_OWNER)
 typedef uint32_t psa_key_id_t;
+#endif
 
 /**@}*/
 
@@ -98,13 +110,4 @@ typedef uint32_t psa_key_usage_t;
 
 /**@}*/
 
-/** \defgroup derivation Key derivation
- * @{
- */
-
-/** \brief Encoding of the step of a key derivation. */
-typedef uint16_t psa_key_derivation_step_t;
-
-/**@}*/
-
 #endif /* PSA_CRYPTO_TYPES_H */
diff --git a/api-specs/include/psa/crypto_values.h b/api-specs/include/psa/crypto_values.h
index 88eaff65..2ce2de65 100644
--- a/api-specs/include/psa/crypto_values.h
+++ b/api-specs/include/psa/crypto_values.h
@@ -40,25 +40,17 @@
  * @{
  */
 
-#if !defined(PSA_SUCCESS)
-/* If PSA_SUCCESS is defined, assume that PSA crypto is being used
- * together with PSA IPC, which also defines the identifier
- * PSA_SUCCESS. We must not define PSA_SUCCESS ourselves in that case;
- * the other error code names don't clash. This is a temporary hack
- * until we unify error reporting in PSA IPC and PSA crypto.
- *
- * Note that psa_defs.h must be included before this header!
- */
+/* PSA error codes */
+
 /** The action was completed successfully. */
 #define PSA_SUCCESS ((psa_status_t)0)
-#endif /* !defined(PSA_SUCCESS) */
 
 /** An error occurred that does not correspond to any defined
  * failure cause.
  *
  * Implementations may use this error code if none of the other standard
  * error codes are applicable. */
-#define PSA_ERROR_UNKNOWN_ERROR         ((psa_status_t)1)
+#define PSA_ERROR_GENERIC_ERROR         ((psa_status_t)-132)
 
 /** The requested operation or a parameter is not supported
  * by this implementation.
@@ -67,7 +59,7 @@
  * parameter such as a key type, algorithm, etc. is not recognized.
  * If a combination of parameters is recognized and identified as
  * not valid, return #PSA_ERROR_INVALID_ARGUMENT instead. */
-#define PSA_ERROR_NOT_SUPPORTED         ((psa_status_t)2)
+#define PSA_ERROR_NOT_SUPPORTED         ((psa_status_t)-134)
 
 /** The requested action is denied by a policy.
  *
@@ -80,7 +72,7 @@
  * not valid or not supported, it is unspecified whether the function
  * returns #PSA_ERROR_NOT_PERMITTED, #PSA_ERROR_NOT_SUPPORTED or
  * #PSA_ERROR_INVALID_ARGUMENT. */
-#define PSA_ERROR_NOT_PERMITTED         ((psa_status_t)3)
+#define PSA_ERROR_NOT_PERMITTED         ((psa_status_t)-133)
 
 /** An output buffer is too small.
  *
@@ -92,23 +84,19 @@
  * buffer would succeed. However implementations may return this
  * error if a function has invalid or unsupported parameters in addition
  * to the parameters that determine the necessary output buffer size. */
-#define PSA_ERROR_BUFFER_TOO_SMALL      ((psa_status_t)4)
+#define PSA_ERROR_BUFFER_TOO_SMALL      ((psa_status_t)-138)
 
-/** A slot is occupied, but must be empty to carry out the
- * requested action.
+/** Asking for an item that already exists
  *
- * If a handle is invalid, it does not designate an occupied slot.
- * The error for an invalid handle is #PSA_ERROR_INVALID_HANDLE.
- */
-#define PSA_ERROR_OCCUPIED_SLOT         ((psa_status_t)5)
+ * Implementations should return this error, when attempting
+ * to write an item (like a key) that already exists. */
+#define PSA_ERROR_ALREADY_EXISTS        ((psa_status_t)-139)
 
-/** A slot is empty, but must be occupied to carry out the
- * requested action.
+/** Asking for an item that doesn't exist
  *
- * If a handle is invalid, it does not designate an empty slot.
- * The error for an invalid handle is #PSA_ERROR_INVALID_HANDLE.
- */
-#define PSA_ERROR_EMPTY_SLOT            ((psa_status_t)6)
+ * Implementations should return this error, if a requested item (like
+ * a key) does not exist. */
+#define PSA_ERROR_DOES_NOT_EXIST        ((psa_status_t)-140)
 
 /** The requested action cannot be performed in the current state.
  *
@@ -118,9 +106,9 @@
  *
  * Implementations shall not return this error code to indicate
  * that a key slot is occupied when it needs to be free or vice versa,
- * but shall return #PSA_ERROR_OCCUPIED_SLOT or #PSA_ERROR_EMPTY_SLOT
+ * but shall return #PSA_ERROR_ALREADY_EXISTS or #PSA_ERROR_DOES_NOT_EXIST
  * as applicable. */
-#define PSA_ERROR_BAD_STATE             ((psa_status_t)7)
+#define PSA_ERROR_BAD_STATE             ((psa_status_t)-137)
 
 /** The parameters passed to the function are invalid.
  *
@@ -129,20 +117,20 @@
  *
  * Implementations shall not return this error code to indicate
  * that a key slot is occupied when it needs to be free or vice versa,
- * but shall return #PSA_ERROR_OCCUPIED_SLOT or #PSA_ERROR_EMPTY_SLOT
+ * but shall return #PSA_ERROR_ALREADY_EXISTS or #PSA_ERROR_DOES_NOT_EXIST
  * as applicable.
  *
  * Implementation shall not return this error code to indicate that a
  * key handle is invalid, but shall return #PSA_ERROR_INVALID_HANDLE
  * instead.
  */
-#define PSA_ERROR_INVALID_ARGUMENT      ((psa_status_t)8)
+#define PSA_ERROR_INVALID_ARGUMENT      ((psa_status_t)-135)
 
 /** There is not enough runtime memory.
  *
  * If the action is carried out across multiple security realms, this
  * error can refer to available memory in any of the security realms. */
-#define PSA_ERROR_INSUFFICIENT_MEMORY   ((psa_status_t)9)
+#define PSA_ERROR_INSUFFICIENT_MEMORY   ((psa_status_t)-141)
 
 /** There is not enough persistent storage.
  *
@@ -151,7 +139,7 @@
  * many functions that do not otherwise access storage may return this
  * error code if the implementation requires a mandatory log entry for
  * the requested action and the log storage space is full. */
-#define PSA_ERROR_INSUFFICIENT_STORAGE  ((psa_status_t)10)
+#define PSA_ERROR_INSUFFICIENT_STORAGE  ((psa_status_t)-142)
 
 /** There was a communication failure inside the implementation.
  *
@@ -168,7 +156,7 @@
  * cryptoprocessor but there was a breakdown of communication before
  * the cryptoprocessor could report the status to the application.
  */
-#define PSA_ERROR_COMMUNICATION_FAILURE ((psa_status_t)11)
+#define PSA_ERROR_COMMUNICATION_FAILURE ((psa_status_t)-145)
 
 /** There was a storage failure that may have led to data loss.
  *
@@ -193,13 +181,13 @@
  * permanent storage corruption. However application writers should
  * keep in mind that transient errors while reading the storage may be
  * reported using this error code. */
-#define PSA_ERROR_STORAGE_FAILURE       ((psa_status_t)12)
+#define PSA_ERROR_STORAGE_FAILURE       ((psa_status_t)-146)
 
 /** A hardware failure was detected.
  *
  * A hardware failure may be transient or permanent depending on the
  * cause. */
-#define PSA_ERROR_HARDWARE_FAILURE      ((psa_status_t)13)
+#define PSA_ERROR_HARDWARE_FAILURE      ((psa_status_t)-147)
 
 /** A tampering attempt was detected.
  *
@@ -230,7 +218,7 @@
  * This error indicates an attack against the application. Implementations
  * shall not return this error code as a consequence of the behavior of
  * the application itself. */
-#define PSA_ERROR_TAMPERING_DETECTED    ((psa_status_t)14)
+#define PSA_ERROR_TAMPERING_DETECTED    ((psa_status_t)-151)
 
 /** There is not enough entropy to generate random data needed
  * for the requested action.
@@ -249,7 +237,7 @@
  * secure pseudorandom generator (PRNG). However implementations may return
  * this error at any time if a policy requires the PRNG to be reseeded
  * during normal operation. */
-#define PSA_ERROR_INSUFFICIENT_ENTROPY  ((psa_status_t)15)
+#define PSA_ERROR_INSUFFICIENT_ENTROPY  ((psa_status_t)-148)
 
 /** The signature, MAC or hash is incorrect.
  *
@@ -259,7 +247,7 @@
  *
  * If the value to verify has an invalid size, implementations may return
  * either #PSA_ERROR_INVALID_ARGUMENT or #PSA_ERROR_INVALID_SIGNATURE. */
-#define PSA_ERROR_INVALID_SIGNATURE     ((psa_status_t)16)
+#define PSA_ERROR_INVALID_SIGNATURE     ((psa_status_t)-149)
 
 /** The decrypted padding is incorrect.
  *
@@ -275,17 +263,15 @@
  * as close as possible to indistinguishable to an external observer.
  * In particular, the timing of a decryption operation should not
  * depend on the validity of the padding. */
-#define PSA_ERROR_INVALID_PADDING       ((psa_status_t)17)
+#define PSA_ERROR_INVALID_PADDING       ((psa_status_t)-150)
 
-/** The generator has insufficient capacity left.
- *
- * Once a function returns this error, attempts to read from the
- * generator will always return this error. */
-#define PSA_ERROR_INSUFFICIENT_CAPACITY ((psa_status_t)18)
+/** Return this error when there's insufficient data when attempting
+ * to read from a resource. */
+#define PSA_ERROR_INSUFFICIENT_DATA     ((psa_status_t)-143)
 
 /** The key handle is not valid.
  */
-#define PSA_ERROR_INVALID_HANDLE        ((psa_status_t)19)
+#define PSA_ERROR_INVALID_HANDLE        ((psa_status_t)-136)
 
 /**@}*/
 
@@ -497,15 +483,6 @@
 #define PSA_ECC_CURVE_CURVE25519        ((psa_ecc_curve_t) 0x001d)
 #define PSA_ECC_CURVE_CURVE448          ((psa_ecc_curve_t) 0x001e)
 
-/** Diffie-Hellman key exchange public key. */
-#define PSA_KEY_TYPE_DH_PUBLIC_KEY             ((psa_key_type_t)0x60040000)
-/** Diffie-Hellman key exchange key pair (private and public key). */
-#define PSA_KEY_TYPE_DH_KEYPAIR                ((psa_key_type_t)0x70040000)
-/** Whether a key type is a Diffie-Hellman key exchange key (pair or
- * public-only). */
-#define PSA_KEY_TYPE_IS_DH(type)                                       \
-    (PSA_KEY_TYPE_PUBLIC_KEY_OF_KEYPAIR(type) == PSA_KEY_TYPE_DH_PUBLIC_KEY)
-
 /** The block size of a block cipher.
  *
  * \param type  A cipher key type (value of type #psa_key_type_t).
@@ -540,8 +517,9 @@
 #define PSA_ALG_CATEGORY_AEAD                   ((psa_algorithm_t)0x06000000)
 #define PSA_ALG_CATEGORY_SIGN                   ((psa_algorithm_t)0x10000000)
 #define PSA_ALG_CATEGORY_ASYMMETRIC_ENCRYPTION  ((psa_algorithm_t)0x12000000)
-#define PSA_ALG_CATEGORY_KEY_DERIVATION         ((psa_algorithm_t)0x20000000)
-#define PSA_ALG_CATEGORY_KEY_AGREEMENT          ((psa_algorithm_t)0x30000000)
+#define PSA_ALG_CATEGORY_KEY_AGREEMENT          ((psa_algorithm_t)0x22000000)
+#define PSA_ALG_CATEGORY_KEY_DERIVATION         ((psa_algorithm_t)0x30000000)
+#define PSA_ALG_CATEGORY_KEY_SELECTION          ((psa_algorithm_t)0x31000000)
 
 #define PSA_ALG_IS_VENDOR_DEFINED(alg)                                  \
     (((alg) & PSA_ALG_VENDOR_FLAG) != 0)
@@ -676,15 +654,18 @@
 /** SHA3-512 */
 #define PSA_ALG_SHA3_512                        ((psa_algorithm_t)0x01000013)
 
-/** Allow any hash algorithm.
+/** In a hash-and-sign algorithm policy, allow any hash algorithm.
+ *
+ * This value may be used to form the algorithm usage field of a policy
+ * for a signature algorithm that is parametrized by a hash. The key
+ * may then be used to perform operations using the same signature
+ * algorithm parametrized with any supported hash.
  *
- * This value may only be used to form the algorithm usage field of a policy
- * for a signature algorithm that is parametrized by a hash. That is,
- * suppose that `PSA_xxx_SIGNATURE` is one of the following macros:
+ * That is, suppose that `PSA_xxx_SIGNATURE` is one of the following macros:
  * - #PSA_ALG_RSA_PKCS1V15_SIGN, #PSA_ALG_RSA_PSS,
  * - #PSA_ALG_DSA, #PSA_ALG_DETERMINISTIC_DSA,
  * - #PSA_ALG_ECDSA, #PSA_ALG_DETERMINISTIC_ECDSA.
- * Then you may create a key as follows:
+ * Then you may create and use a key as follows:
  * - Set the key usage field using #PSA_ALG_ANY_HASH, for example:
  *   ```
  *   psa_key_policy_set_usage(&policy,
@@ -771,7 +752,7 @@
  *          algorithm is considered identical to the untruncated algorithm
  *          for policy comparison purposes.
  *
- * \param alg           A MAC algorithm identifier (value of type
+ * \param mac_alg       A MAC algorithm identifier (value of type
  *                      #psa_algorithm_t such that #PSA_ALG_IS_MAC(\p alg)
  *                      is true). This may be a truncated or untruncated
  *                      MAC algorithm.
@@ -787,14 +768,14 @@
  *                      MAC algorithm or if \p mac_length is too small or
  *                      too large for the specified MAC algorithm.
  */
-#define PSA_ALG_TRUNCATED_MAC(alg, mac_length)                          \
-    (((alg) & ~PSA_ALG_MAC_TRUNCATION_MASK) |                           \
+#define PSA_ALG_TRUNCATED_MAC(mac_alg, mac_length)                      \
+    (((mac_alg) & ~PSA_ALG_MAC_TRUNCATION_MASK) |                       \
      ((mac_length) << PSA_MAC_TRUNCATION_OFFSET & PSA_ALG_MAC_TRUNCATION_MASK))
 
 /** Macro to build the base MAC algorithm corresponding to a truncated
  * MAC algorithm.
  *
- * \param alg           A MAC algorithm identifier (value of type
+ * \param mac_alg       A MAC algorithm identifier (value of type
  *                      #psa_algorithm_t such that #PSA_ALG_IS_MAC(\p alg)
  *                      is true). This may be a truncated or untruncated
  *                      MAC algorithm.
@@ -803,12 +784,12 @@
  * \return              Unspecified if \p alg is not a supported
  *                      MAC algorithm.
  */
-#define PSA_ALG_FULL_LENGTH_MAC(alg)            \
-    ((alg) & ~PSA_ALG_MAC_TRUNCATION_MASK)
+#define PSA_ALG_FULL_LENGTH_MAC(mac_alg)        \
+    ((mac_alg) & ~PSA_ALG_MAC_TRUNCATION_MASK)
 
 /** Length to which a MAC algorithm is truncated.
  *
- * \param alg           A MAC algorithm identifier (value of type
+ * \param mac_alg       A MAC algorithm identifier (value of type
  *                      #psa_algorithm_t such that #PSA_ALG_IS_MAC(\p alg)
  *                      is true).
  *
@@ -817,8 +798,8 @@
  * \return              Unspecified if \p alg is not a supported
  *                      MAC algorithm.
  */
-#define PSA_MAC_TRUNCATED_LENGTH(alg)           \
-    (((alg) & PSA_ALG_MAC_TRUNCATION_MASK) >> PSA_MAC_TRUNCATION_OFFSET)
+#define PSA_MAC_TRUNCATED_LENGTH(mac_alg)                               \
+    (((mac_alg) & PSA_ALG_MAC_TRUNCATION_MASK) >> PSA_MAC_TRUNCATION_OFFSET)
 
 #define PSA_ALG_CIPHER_MAC_BASE                 ((psa_algorithm_t)0x02c00000)
 #define PSA_ALG_CBC_MAC                         ((psa_algorithm_t)0x02c00001)
@@ -915,7 +896,7 @@
  * Depending on the algorithm, the tag length may affect the calculation
  * of the ciphertext.
  *
- * \param alg           A AEAD algorithm identifier (value of type
+ * \param aead_alg      An AEAD algorithm identifier (value of type
  *                      #psa_algorithm_t such that #PSA_ALG_IS_AEAD(\p alg)
  *                      is true).
  * \param tag_length    Desired length of the authentication tag in bytes.
@@ -926,26 +907,26 @@
  *                      AEAD algorithm or if \p tag_length is not valid
  *                      for the specified AEAD algorithm.
  */
-#define PSA_ALG_AEAD_WITH_TAG_LENGTH(alg, tag_length)                   \
-    (((alg) & ~PSA_ALG_AEAD_TAG_LENGTH_MASK) |                          \
+#define PSA_ALG_AEAD_WITH_TAG_LENGTH(aead_alg, tag_length)              \
+    (((aead_alg) & ~PSA_ALG_AEAD_TAG_LENGTH_MASK) |                     \
      ((tag_length) << PSA_AEAD_TAG_LENGTH_OFFSET &                      \
       PSA_ALG_AEAD_TAG_LENGTH_MASK))
 
 /** Calculate the corresponding AEAD algorithm with the default tag length.
  *
- * \param alg   An AEAD algorithm (\c PSA_ALG_XXX value such that
- *              #PSA_ALG_IS_AEAD(\p alg) is true).
+ * \param aead_alg      An AEAD algorithm (\c PSA_ALG_XXX value such that
+ *                      #PSA_ALG_IS_AEAD(\p alg) is true).
  *
- * \return      The corresponding AEAD algorithm with the default tag length
- *              for that algorithm.
+ * \return              The corresponding AEAD algorithm with the default
+ *                      tag length for that algorithm.
  */
-#define PSA_ALG_AEAD_WITH_DEFAULT_TAG_LENGTH(alg)                       \
+#define PSA_ALG_AEAD_WITH_DEFAULT_TAG_LENGTH(aead_alg)                  \
     (                                                                   \
-        PSA__ALG_AEAD_WITH_DEFAULT_TAG_LENGTH__CASE(alg, PSA_ALG_CCM)   \
-        PSA__ALG_AEAD_WITH_DEFAULT_TAG_LENGTH__CASE(alg, PSA_ALG_GCM)   \
+        PSA__ALG_AEAD_WITH_DEFAULT_TAG_LENGTH__CASE(aead_alg, PSA_ALG_CCM) \
+        PSA__ALG_AEAD_WITH_DEFAULT_TAG_LENGTH__CASE(aead_alg, PSA_ALG_GCM) \
         0)
-#define PSA__ALG_AEAD_WITH_DEFAULT_TAG_LENGTH__CASE(alg, ref) \
-    PSA_ALG_AEAD_WITH_TAG_LENGTH(alg, 0) == \
+#define PSA__ALG_AEAD_WITH_DEFAULT_TAG_LENGTH__CASE(aead_alg, ref)      \
+    PSA_ALG_AEAD_WITH_TAG_LENGTH(aead_alg, 0) ==                        \
     PSA_ALG_AEAD_WITH_TAG_LENGTH(ref, 0) ?  \
     ref :
 
@@ -1169,20 +1150,11 @@
      ((alg) & PSA_ALG_HASH_MASK) | PSA_ALG_CATEGORY_HASH :      \
      0)
 
-#define PSA_ALG_HKDF_BASE                       ((psa_algorithm_t)0x20000100)
+#define PSA_ALG_HKDF_BASE                       ((psa_algorithm_t)0x30000100)
 /** Macro to build an HKDF algorithm.
  *
  * For example, `PSA_ALG_HKDF(PSA_ALG_SHA256)` is HKDF using HMAC-SHA-256.
  *
- * This key derivation algorithm uses the following inputs:
- * - #PSA_KDF_STEP_SALT is the salt used in the "extract" step.
- *   It is optional; if omitted, the derivation uses an empty salt.
- * - #PSA_KDF_STEP_SECRET is the secret key used in the "extract" step.
- * - #PSA_KDF_STEP_INFO is the info string used in the "expand" step.
- * You must pass #PSA_KDF_STEP_SALT before #PSA_KDF_STEP_SECRET.
- * You may pass #PSA_KDF_STEP_INFO at any time after steup and before
- * starting to generate output.
- *
  * \param hash_alg      A hash algorithm (\c PSA_ALG_XXX value such that
  *                      #PSA_ALG_IS_HASH(\p hash_alg) is true).
  *
@@ -1208,7 +1180,7 @@
 #define PSA_ALG_HKDF_GET_HASH(hkdf_alg)                         \
     (PSA_ALG_CATEGORY_HASH | ((hkdf_alg) & PSA_ALG_HASH_MASK))
 
-#define PSA_ALG_TLS12_PRF_BASE                  ((psa_algorithm_t)0x20000200)
+#define PSA_ALG_TLS12_PRF_BASE                     ((psa_algorithm_t)0x30000200)
 /** Macro to build a TLS-1.2 PRF algorithm.
  *
  * TLS 1.2 uses a custom pseudorandom function (PRF) for key schedule,
@@ -1247,7 +1219,7 @@
 #define PSA_ALG_TLS12_PRF_GET_HASH(hkdf_alg)                         \
     (PSA_ALG_CATEGORY_HASH | ((hkdf_alg) & PSA_ALG_HASH_MASK))
 
-#define PSA_ALG_TLS12_PSK_TO_MS_BASE            ((psa_algorithm_t)0x20000300)
+#define PSA_ALG_TLS12_PSK_TO_MS_BASE ((psa_algorithm_t)0x30000300)
 /** Macro to build a TLS-1.2 PSK-to-MasterSecret algorithm.
  *
  * In a pure-PSK handshake in TLS 1.2, the master secret is derived
@@ -1287,48 +1259,51 @@
 #define PSA_ALG_TLS12_PSK_TO_MS_GET_HASH(hkdf_alg)                         \
     (PSA_ALG_CATEGORY_HASH | ((hkdf_alg) & PSA_ALG_HASH_MASK))
 
-#define PSA_ALG_KEY_DERIVATION_MASK             ((psa_algorithm_t)0x080fffff)
-#define PSA_ALG_KEY_AGREEMENT_MASK              ((psa_algorithm_t)0x10f00000)
+#define PSA_ALG_KEY_DERIVATION_MASK             ((psa_algorithm_t)0x010fffff)
 
-/** Macro to build a combined algorithm that chains a key agreement with
- * a key derivation.
+/** Use a shared secret as is.
  *
- * \param ka_alg        A key agreement algorithm (\c PSA_ALG_XXX value such
- *                      that #PSA_ALG_IS_KEY_AGREEMENT(\p ka_alg) is true).
- * \param kdf_alg       A key derivation algorithm (\c PSA_ALG_XXX value such
- *                      that #PSA_ALG_IS_KEY_DERIVATION(\p kdf_alg) is true).
+ * Specify this algorithm as the selection component of a key agreement
+ * to use the raw result of the key agreement as key material.
  *
- * \return              The corresponding key agreement and derivation
- *                      algorithm.
- * \return              Unspecified if \p ka_alg is not a supported
- *                      key agreement algorithm or \p kdf_alg is not a
- *                      supported key derivation algorithm.
+ * \warning The raw result of a key agreement algorithm such as finite-field
+ * Diffie-Hellman or elliptic curve Diffie-Hellman has biases and should
+ * not be used directly as key material. It can however be used as the secret
+ * input in a key derivation algorithm.
  */
-#define PSA_ALG_KEY_AGREEMENT(ka_alg, kdf_alg)  \
-    ((ka_alg) | (kdf_alg))
+#define PSA_ALG_SELECT_RAW                      ((psa_algorithm_t)0x31000001)
 
 #define PSA_ALG_KEY_AGREEMENT_GET_KDF(alg)                              \
     (((alg) & PSA_ALG_KEY_DERIVATION_MASK) | PSA_ALG_CATEGORY_KEY_DERIVATION)
 
-#define PSA_ALG_KEY_AGREEMENT_GET_BASE(alg)                             \
-    (((alg) & PSA_ALG_KEY_AGREEMENT_MASK) | PSA_ALG_CATEGORY_KEY_AGREEMENT)
-
-#define PSA_ALG_IS_RAW_KEY_AGREEMENT(alg)                               \
-    (PSA_ALG_KEY_AGREEMENT_GET_KDF(alg) == PSA_ALG_CATEGORY_KEY_DERIVATION)
+#define PSA_ALG_KEY_AGREEMENT_GET_BASE(alg)                              \
+    ((alg) & ~PSA_ALG_KEY_DERIVATION_MASK)
 
-#define PSA_ALG_IS_KEY_DERIVATION_OR_AGREEMENT(alg)     \
-    ((PSA_ALG_IS_KEY_DERIVATION(alg) || PSA_ALG_IS_KEY_AGREEMENT(alg)))
-
-/** The finite-field Diffie-Hellman (DH) key agreement algorithm.
+#define PSA_ALG_FFDH_BASE                       ((psa_algorithm_t)0x22100000)
+/** The Diffie-Hellman key agreement algorithm.
+ *
+ * This algorithm combines the finite-field Diffie-Hellman (DH) key
+ * agreement, also known as Diffie-Hellman-Merkle (DHM) key agreement,
+ * to produce a shared secret from a private key and the peer's
+ * public key, with a key selection or key derivation algorithm to produce
+ * one or more shared keys and other shared cryptographic material.
  *
  * The shared secret produced by key agreement and passed as input to the
  * derivation or selection algorithm \p kdf_alg is the shared secret
  * `g^{ab}` in big-endian format.
  * It is `ceiling(m / 8)` bytes long where `m` is the size of the prime `p`
  * in bits.
+ *
+ * \param kdf_alg       A key derivation algorithm (\c PSA_ALG_XXX value such
+ *                      that #PSA_ALG_IS_KEY_DERIVATION(\p hash_alg) is true)
+ *                      or a key selection algorithm (\c PSA_ALG_XXX value such
+ *                      that #PSA_ALG_IS_KEY_SELECTION(\p hash_alg) is true).
+ *
+ * \return              The Diffie-Hellman algorithm with the specified
+ *                      selection or derivation algorithm.
  */
-#define PSA_ALG_FFDH                            ((psa_algorithm_t)0x30100000)
-
+#define PSA_ALG_FFDH(kdf_alg) \
+    (PSA_ALG_FFDH_BASE | ((kdf_alg) & PSA_ALG_KEY_DERIVATION_MASK))
 /** Whether the specified algorithm is a finite field Diffie-Hellman algorithm.
  *
  * This includes every supported key selection or key agreement algorithm
@@ -1341,11 +1316,18 @@
  *         key agreement algorithm identifier.
  */
 #define PSA_ALG_IS_FFDH(alg) \
-    (PSA_ALG_KEY_AGREEMENT_GET_BASE(alg) == PSA_ALG_FFDH)
+    (PSA_ALG_KEY_AGREEMENT_GET_BASE(alg) == PSA_ALG_FFDH_BASE)
 
+#define PSA_ALG_ECDH_BASE                       ((psa_algorithm_t)0x22200000)
 /** The elliptic curve Diffie-Hellman (ECDH) key agreement algorithm.
  *
- * The shared secret produced by key agreement is the x-coordinate of
+ * This algorithm combines the elliptic curve Diffie-Hellman key
+ * agreement to produce a shared secret from a private key and the peer's
+ * public key, with a key selection or key derivation algorithm to produce
+ * one or more shared keys and other shared cryptographic material.
+ *
+ * The shared secret produced by key agreement and passed as input to the
+ * derivation or selection algorithm \p kdf_alg is the x-coordinate of
  * the shared secret point. It is always `ceiling(m / 8)` bytes long where
  * `m` is the bit size associated with the curve, i.e. the bit size of the
  * order of the curve's coordinate field. When `m` is not a multiple of 8,
@@ -1367,9 +1349,17 @@
  *   the shared secret is the x-coordinate of `d_A Q_B = d_B Q_A`
  *   in big-endian byte order.
  *   The bit size is `m` for the field `F_{2^m}`.
+ *
+ * \param kdf_alg       A key derivation algorithm (\c PSA_ALG_XXX value such
+ *                      that #PSA_ALG_IS_KEY_DERIVATION(\p hash_alg) is true)
+ *                      or a selection algorithm (\c PSA_ALG_XXX value such
+ *                      that #PSA_ALG_IS_KEY_SELECTION(\p hash_alg) is true).
+ *
+ * \return              The Diffie-Hellman algorithm with the specified
+ *                      selection or derivation algorithm.
  */
-#define PSA_ALG_ECDH                            ((psa_algorithm_t)0x30200000)
-
+#define PSA_ALG_ECDH(kdf_alg) \
+    (PSA_ALG_ECDH_BASE | ((kdf_alg) & PSA_ALG_KEY_DERIVATION_MASK))
 /** Whether the specified algorithm is an elliptic curve Diffie-Hellman
  * algorithm.
  *
@@ -1384,25 +1374,7 @@
  *         key agreement algorithm identifier.
  */
 #define PSA_ALG_IS_ECDH(alg) \
-    (PSA_ALG_KEY_AGREEMENT_GET_BASE(alg) == PSA_ALG_ECDH)
-
-/** Whether the specified algorithm encoding is a wildcard.
- *
- * Wildcard values may only be used to set the usage algorithm field in
- * a policy, not to perform an operation.
- *
- * \param alg An algorithm identifier (value of type #psa_algorithm_t).
- *
- * \return 1 if \c alg is a wildcard algorithm encoding.
- * \return 0 if \c alg is a non-wildcard algorithm encoding (suitable for
- *         an operation).
- * \return This macro may return either 0 or 1 if \c alg is not a supported
- *         algorithm identifier.
- */
-#define PSA_ALG_IS_WILDCARD(alg)                        \
-    (PSA_ALG_IS_HASH_AND_SIGN(alg) ?                    \
-     PSA_ALG_SIGN_GET_HASH(alg) == PSA_ALG_ANY_HASH :   \
-     (alg) == PSA_ALG_ANY_HASH)
+    (PSA_ALG_KEY_AGREEMENT_GET_BASE(alg) == PSA_ALG_ECDH_BASE)
 
 /** Whether the specified algorithm encoding is a wildcard.
  *
@@ -1514,34 +1486,4 @@
 
 /**@}*/
 
-/** \defgroup derivation Key derivation
- * @{
- */
-
-/** A secret input for key derivation.
- *
- * This must be a key of type #PSA_KEY_TYPE_DERIVE.
- */
-#define PSA_KDF_STEP_SECRET              ((psa_key_derivation_step_t)0x0101)
-
-/** A label for key derivation.
- *
- * This must be a direct input.
- */
-#define PSA_KDF_STEP_LABEL               ((psa_key_derivation_step_t)0x0201)
-
-/** A salt for key derivation.
- *
- * This must be a direct input.
- */
-#define PSA_KDF_STEP_SALT                ((psa_key_derivation_step_t)0x0202)
-
-/** An information string for key derivation.
- *
- * This must be a direct input.
- */
-#define PSA_KDF_STEP_INFO                ((psa_key_derivation_step_t)0x0203)
-
-/**@}*/
-
 #endif /* PSA_CRYPTO_VALUES_H */
diff --git a/api-tests/README.md b/api-tests/README.md
index 98f1bcd5..cb664216 100644
--- a/api-tests/README.md
+++ b/api-tests/README.md
@@ -1,38 +1,37 @@
 
-# PSA APIs : Architecture Test Suite
+# PSA APIs Architecture Test Suite
 
 ## Introduction
 
-Arm Platform Security Architecture (PSA) is a holistic set of threat models, security analysis, hardware and firmware architecture specifications, and an open source firmware reference implementation. PSA provides a recipe, based on industry best practice, that allows security to be consistently designed in, at both a hardware and firmware level. One of the PSA goals is to make IoT security easier and quicker for everyone. This means having reliable, consistent APIs and useful built-in security functions for device manufacturers and the developer community. These PSA APIs provides a consistent developer experience hiding the underlying complexity of the security system.
+Arm *Platform Security Architecture* (PSA) is a holistic set of threat models, security analyses, hardware and firmware architecture specifications, and an open source firmware reference implementation. PSA provides a recipe, based on industry best practice, that allows security to be consistently designed in, at both a hardware and firmware level. One of the PSA goals is to make IoT security easier and quicker for everyone. This means having reliable, consistent APIs and useful built-in security functions for device manufacturers and the developer community. These PSA APIs provides a consistent developer experience, hiding the underlying complexity of the security system.
 
-For more information, visit the PSA webpage [here](https://developer.arm.com/products/architecture/platform-security-architecture)
+For more information, visit the [PSA Webpage](https://developer.arm.com/products/architecture/platform-security-architecture).
 
 ## Architecture test suite
 
-The current implementation of the Architecture test suite contains tests for following PSA APIs specifications.
-
-The tests are available as open source. The tests and the corresponding abstraction layers are available with an Apache v2 license allowing for external contribution.
+The current implementation of the architecture test suite contains tests for PSA Firmware Framework and PSA Developer APIs specifications. The tests are available as open source. The tests and the corresponding abstraction layers are available with an Apache v2.0 license, allowing external contribution.
 
 ### PSA Firmware Framework (PSA-FF)
-The test suite for this specification is located in the ff directory of this repository. See [PSA Firmware Framework Readme](ff/README.md) file for more details.
+The test suite for this specification is located in the **ff** directory of this repository. See the [PSA Firmware Framework README](ff/README.md) file for more details.
 
 ### PSA Developer APIs
-The test suite for this specification is located in the dev_apis directory of this repository. See [PSA Developer APIs Readme](dev_apis/README.md) file for more details.
+The test suite for this specification is located in the **dev_apis** directory of this repository. See the [PSA Developer APIs README](dev_apis/README.md) file for more details.
 
 ## Release Update
- - Release Version - 0.8
- - Code Quality: Please use this opportunity to suggest enhancements and point out errors.
- - Current release contains following tests:
- 1. Developer APIs test list:
+ - Release Version: 0.9
+ - Code quality: Arm welcomes suggestions for enhancements and error corrections.
+ - This release contains following tests: <br />
+
+1. Developer APIs test list:
 
 | Test Category            | Specification Version                | Header File                                                                       |
 |--------------------------|--------------------------------------|-----------------------------------------------------------------------------------|
-| Crypto                   | PSA Crypto API 1.0 Beta-1                  | [crypto.h](../api-specs/include/psa/crypto.h)                                     |
-| Protected Storage        | PSA Protected Storage API 1.0       | [protected_storage.h](../api-specs/include/psa/protected_storage.h)               |
-| Internal Trusted Storage | PSA Internal Trusted Storage API 1.0 | [internal_trusted_storage.h](../api-specs/include/psa/internal_trusted_storage.h) |
-| Initial Attestation      | PSA Initial Attestation API 1.0 Beta-0     | [initial_attestation.h](../api-specs/include/psa/initial_attestation.h)           |
+| Crypto                   | PSA Crypto API 1.0-Beta([mbedcrypto-1.0.0](https://github.com/ARMmbed/mbed-crypto/tree/mbedcrypto-1.0.0))                  | [crypto.h](../api-specs/include/psa/crypto.h)                                     |
+| Protected Storage        | PSA Protected Storage API 1.0-Beta2       | [protected_storage.h](../api-specs/include/psa/protected_storage.h)               |
+| Internal Trusted Storage | PSA Internal Trusted Storage API 1.0-Beta2 | [internal_trusted_storage.h](../api-specs/include/psa/internal_trusted_storage.h) |
+| Initial Attestation      | PSA Initial Attestation API 1.0-Beta0     | [initial_attestation.h](../api-specs/include/psa/initial_attestation.h)           |
 
-2. PSA-FF **IPC tests** that are written for version 1.0-Beta-0 of the PSA FF specification.
+2. PSA-FF tests that are written for version 1.0-Beta1 of the PSA FF specification.
 
 ## License
 
diff --git a/api-tests/dev_apis/README.md b/api-tests/dev_apis/README.md
index 4ada39ed..518fe60e 100644
--- a/api-tests/dev_apis/README.md
+++ b/api-tests/dev_apis/README.md
@@ -1,34 +1,26 @@
 
-# PSA Developer APIs : Architecture Test Suite
+# PSA Developer APIs Architecture Test Suite
 
-## Introduction
+## PSA Developer APIs
 
-### PSA Developer APIs
+PSA defines security service APIs for application developers. Some of these services are Crypto, Attestation, and Secure storage. For more information on API specifications, refer to the [PSA Developer APIs Specifications](../../api-specs/).
 
-PSA defines security service APIs for application developers. Some of these services are Crypto Services, Attestation Services, and Secure Storage Services. For more information on API specification, refer the [PSA Developer facing APIs specifications](../../api-specs/)
+## Architecture test suite
 
-### Architecture Test Suite
+The architecture test suite is a set of examples of the invariant behaviors that are specified in the PSA Developer APIs specifications. Use this suite to verify whether these behaviors are implemented correctly in your system. This  suite contains self-checking and portable C-based tests with directed stimulus. These tests are available as open source. The tests and the corresponding abstraction layers are available with an Apache v2.0 license, allowing external contribution.
 
-The Architecture Test Suite is a set of examples of the invariant behaviours that are specified by the PSA Developer APIs Specifications. Use this suite to verify that these behaviours are implemented correctly in your system.
+This test suite is not a substitute for design verification. To review the test logs, Arm licensees can contact Arm directly through their partner managers.
 
-The Architecture Test Suite contains the tests that are self-checking, portable C-based tests with directed stimulus.
+For more information on the architecture test suite framework and methodology to run the tests, refer to the [Validation Methodology](../docs/Arm_PSA_APIs_Arch_Test_Validation_Methodology.pdf) document.
 
-The tests are available as open source. The tests and the corresponding abstraction layers are available with an Apache v2.0 license allowing for external contribution. This test suite is not a substitute for design verification. To review the test logs, Arm licensees can contact Arm directly through their partner managers.
+## Test scenarios
 
-For more information on Architecture Test Suite specification, refer the [Validation Methodology](../docs/Arm_PSA_APIs_Arch_Test_Validation_Methodology.pdf) document.
+The mapping of the rules in the specification to the test cases and the steps followed in the tests are mentioned in the [Scenario Document](../docs/) that is present in the **docs/** folder.
 
-## Tests Scenarios
 
-The mapping of the rules in the specification to the test cases and the steps followed in the tests are mentioned in the [Scenario document](../docs/) present in the docs/ folder.
+## Getting started
 
-
-## Getting Started
-
-Follow the instructions in the subsequent sections to get a copy of the source code on your local machine and build the tests. <br />
-
-### Prerequisite
-
-Please make sure you have all required software installed as explained in the [software requirements](../docs/sw_requirements.md).
+Follow the instructions in the subsequent sections to get a copy of the source code on your local machine and build the tests. Make sure you have all required software installed as explained in the [Software Requirements Document](../docs/sw_requirements.md).
 
 ### Porting steps
 
@@ -36,49 +28,51 @@ Refer to the [PSA Developer APIs Test Suite Porting Guide](../docs/porting_guide
 
 ### Build steps
 
-To build test suite for a given platform, execute the following commands:
+To build the test suite for your target platform, execute the following commands:
 
 ```
 cd api-tests
-./tools/scripts/setup.sh --target <platform_name> --cpu_arch <cpu_architecture_version> --suite <suite_name>  --build <build_dir> --include <include_path>
+./tools/scripts/setup.sh --target <platform_name> --cpu_arch <cpu_architecture_version> --suite <suite_name>  --build <build_dir> --include <include_path> --archive_tests
 ```
 <br />  where:
 
--   <platform_name> is the same as the name of the target specific directory created in the platform/targets/ directory.  <br />
--   <cpu_architecture_version> is the Arm Architecture version name for which test binaries should be compiled. For example, Armv7M, Armv8M-Baseline and Armv8M-Mainline Architecture.  <br />
--   <suite_name> is the suite name and it is same as the suite name available in test_suites/ directory. <br />
--   <include_path> is an additional directory to be included into compiler search path. Note- You must provide Developer APIs header file implementation to Test Suite build system using this option. For example - To compiler Crypto tests, include path must point to path where "psa/crypto.h" is located in your build system.<br />
--   <build_dir> is an output directory to keep build files.
+-   <platform_name> is the same as the name of the target-specific directory created in the **platform/targets/** directory.  <br />
+-   <cpu_architecture_version> is the Arm Architecture version name for which the tests should be compiled. For example, Armv7M, Armv8M-Baseline and Armv8M-Mainline Architecture.  <br />
+-   <suite_name> is the suite name that is the same as the suite name available in **dev_apis/** directory. <br />
+-   <build_dir> is a directory to store build output files. <br />
+-   <include_path> is an additional directory to be included into the compiler search path. <br />
+Note: You must provide Developer APIs header file implementation to the test suite build system using this option. For example, to compile Crypto tests, the include path must point to the path where **psa/crypto.h** is located in your build system.<br />
+-  Use **--archive_tests** option to create a combined test archive (**test_combine.a**) file by combining available test object files. Absence of this option creates a combined test binary (**test_elf_combine.bin**) by combining the available test ELF files.
 
-Refer ./tools/scripts/setup.sh --help to know more about options.
+For details about options, refer to **./tools/scripts/setup.sh --help**.
 
-*To compile crypto tests for tgt_dev_apis_mbedos_fvp_mps2_m4 platform*
+To compile Crypto tests for **tgt_dev_apis_mbedos_fvp_mps2_m4** platform, execute the following commands:
 ```
 cd api-tests
-./tools/scripts/setup.sh --target tgt_dev_apis_mbedos_fvp_mps2_m4 --cpu_arch armv7m --suite crypto --build BUILD_CRYPTO --include <include_path>
+./tools/scripts/setup.sh --target tgt_dev_apis_mbedos_fvp_mps2_m4 --cpu_arch armv7m --suite crypto --build BUILD_CRYPTO --include <include_path>  --archive_tests
 ```
 
 ### Build output
-Test suite build generates following binaries:<br />
+Building the test suite generates the following NSPE binaries:<br />
+- **<build_dir>/BUILD/val/val_nspe.a**
+- **<build_dir>/BUILD/platform/pal_nspe.a**
+- **<build_dir>/BUILD/dev_apis/<suite_name>/test_combine.a**
 
-NSPE libraries:<br />
-1. <build_dir>/BUILD/val/val_nspe.a
-2. <build_dir>/BUILD/platform/pal_nspe.a
-3. <build_dir>/BUILD/dev_apis/<suite_name>/test_elf_combine.bin
+### Integrating the libraries into your target platform
 
-### Binaries integration into your platform
+1. Integrate **val_nspe.a**, **pal_nspe.a**, and **test_combine.a** libraries with your Non-secure OS so that these libraries get access to the PSA Developer APIs. For example, Crypto tests require access to PSA Crypto APIs. This forms an NSPE binary.
+2. Load the NSPE binary to the Non-secure memory.
+3. Build your SPE binary and load into the Secure memory.
 
-1. Integrate val_nspe.a and pal_nspe.a libraries with your non-secure OS so that these libraries get access to PSA Developer APIs. For example,  Crypto tests would require to get access to PSA Crypto APIs. This will form a NSPE binary.
-2. Load NSPE binary and test_elf_combine.bin to NS memory
-3. Build your SPE binary and load into S memory
+## Test suite execution
+The following steps describe the execution flow before the test execution: <br />
 
-## Test Suite Execution
-The following steps describe the execution flow prior to the start of test execution: <br />
-
-1. The target platform must load above binaries into appropriate memory. <br />
-3. Upon booting firmware and non-secure OS, the SUT - boot software would give control to the test suite entry point- *void val_entry(void);* as an non-secure application entry point. <br />
+1. The target platform must load the above binaries into appropriate memory. <br />
+3. Upon booting firmware and Non-secure OS, the SUT boot software gives control to the test suite entry point void **val_entry(void);** as an Non-secure application entry point. <br />
 4. The tests are executed sequentially in a loop in the test_dispatcher function. <br />
 
+For details on test suite integration, refer to the **Integrating the test suite with the SUT** section of [Validation Methodology](../docs/Arm_PSA_APIs_Arch_Test_Validation_Methodology.pdf).
+
 ## License
 
 Arm PSA test suite is distributed under Apache v2.0 License.
@@ -94,4 +88,3 @@ Arm PSA test suite is distributed under Apache v2.0 License.
 --------------
 
 *Copyright (c) 2018-2019, Arm Limited and Contributors. All rights reserved.*
-
diff --git a/api-tests/dev_apis/crypto/test_c002/test_c002.c b/api-tests/dev_apis/crypto/test_c002/test_c002.c
index 19e1c44f..e5c15a5e 100644
--- a/api-tests/dev_apis/crypto/test_c002/test_c002.c
+++ b/api-tests/dev_apis/crypto/test_c002/test_c002.c
@@ -139,6 +139,10 @@ int32_t psa_import_key_test(security_t caller)
         {
             return VAL_STATUS_INVALID;
         }
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(13));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -185,7 +189,7 @@ int32_t psa_import_key_negative_test(security_t caller)
         /* Import the key data into the occupied key slot */
         status = val->crypto_function(VAL_CRYPTO_IMPORT_KEY, check2[i].key_handle,
                                      check2[i].key_type, check2[i].key_data, check2[i].key_length);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_OCCUPIED_SLOT, TEST_CHECKPOINT_NUM(5));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_ALREADY_EXISTS, TEST_CHECKPOINT_NUM(5));
 
         val->print(PRINT_TEST, "[Check %d] Test psa_import_key with zero as key handle\n",
                                                                                    g_test_count++);
diff --git a/api-tests/dev_apis/crypto/test_c002/test_data.h b/api-tests/dev_apis/crypto/test_c002/test_data.h
index aaa6840b..0b2faea1 100644
--- a/api-tests/dev_apis/crypto/test_c002/test_data.h
+++ b/api-tests/dev_apis/crypto/test_c002/test_data.h
@@ -166,7 +166,7 @@ static test_data check1[] = {
 #ifdef ARCH_TEST_AES_128
 {"Test psa_import_key 16 Byte AES\n", 1, PSA_KEY_TYPE_AES,
 {0x49, 0x8E, 0xC7, 0x7D, 0x01, 0x95, 0x0D, 0x94, 0x2C, 0x16, 0xA5, 0x3E, 0x99,
- 0x5F, 0xC9},
+ 0x5F, 0xC9, 0x77},
  AES_16B_KEY_SIZE, PSA_KEY_USAGE_EXPORT, PSA_ALG_CTR,
  BYTES_TO_BITS(AES_16B_KEY_SIZE), AES_16B_KEY_SIZE, PSA_SUCCESS
 },
@@ -175,7 +175,7 @@ static test_data check1[] = {
 #ifdef ARCH_TEST_AES_192
 {"Test psa_import_key 24 Byte AES\n", 2, PSA_KEY_TYPE_AES,
 {0x24, 0x13, 0x61, 0x47, 0x61, 0xB8, 0xC8, 0xF0, 0xDF, 0xAB, 0x5A, 0x0E, 0x87,
- 0x40, 0xAC, 0xA3, 0x90, 0x77, 0x83, 0x52, 0x31, 0x74, 0xF9},
+ 0x40, 0xAC, 0xA3, 0x90, 0x77, 0x83, 0x52, 0x31, 0x74, 0xF9, 0x05},
  AES_24B_KEY_SIZE, PSA_KEY_USAGE_EXPORT, PSA_ALG_CTR,
  BYTES_TO_BITS(AES_24B_KEY_SIZE), AES_24B_KEY_SIZE, PSA_SUCCESS
 },
@@ -269,7 +269,7 @@ static test_data check1[] = {
 
 {"Test psa_import_key with incorrect key data size\n", 12, PSA_KEY_TYPE_AES,
 {0x24, 0x13, 0x61, 0x47, 0x61, 0xB8, 0xC8, 0xF0, 0xDF, 0xAB, 0x5A, 0x0E, 0x87,
- 0x40, 0xAC, 0xA3, 0x90},
+ 0x40, 0xAC, 0xA3, 0x90, 0x77},
 AES_18B_KEY_SIZE, PSA_KEY_USAGE_EXPORT, PSA_ALG_CTR,
 BYTES_TO_BITS(AES_18B_KEY_SIZE), AES_18B_KEY_SIZE, PSA_ERROR_INVALID_ARGUMENT
 },
@@ -277,7 +277,7 @@ BYTES_TO_BITS(AES_18B_KEY_SIZE), AES_18B_KEY_SIZE, PSA_ERROR_INVALID_ARGUMENT
 
 {"Test psa_import_key with incorrect key type\n", 13, PSA_KEY_TYPE_VENDOR_FLAG,
 {0x24, 0x13, 0x61, 0x47, 0x61, 0xB8, 0xC8, 0xF0, 0xDF, 0xAB, 0x5A, 0x0E, 0x87,
- 0x40, 0xAC, 0xA3, 0x90, 0x77, 0x83, 0x52, 0x31, 0x74, 0xF9},
+ 0x40, 0xAC, 0xA3, 0x90, 0x77, 0x83, 0x52, 0x31, 0x74, 0xF9, 0x05},
 AES_24B_KEY_SIZE, PSA_KEY_USAGE_EXPORT, PSA_ALG_CTR,
 BYTES_TO_BITS(AES_24B_KEY_SIZE), AES_24B_KEY_SIZE, PSA_ERROR_NOT_SUPPORTED,
 },
@@ -289,9 +289,9 @@ static test_data check2[] = {
 #ifdef ARCH_TEST_AES_128
 {"Test psa_import_key negative cases\n", 1, PSA_KEY_TYPE_AES,
 {0x49, 0x8E, 0xC7, 0x7D, 0x01, 0x95, 0x0D, 0x94, 0x2C, 0x16, 0xA5, 0x3E, 0x99,
- 0x5F, 0xC9},
+ 0x5F, 0xC9, 0x77},
 AES_16B_KEY_SIZE, PSA_KEY_USAGE_EXPORT, PSA_ALG_CTR,
-BYTES_TO_BITS(AES_16B_KEY_SIZE), AES_16B_KEY_SIZE, PSA_ERROR_OCCUPIED_SLOT
+BYTES_TO_BITS(AES_16B_KEY_SIZE), AES_16B_KEY_SIZE, PSA_ERROR_ALREADY_EXISTS
 },
 #endif
 #endif
diff --git a/api-tests/dev_apis/crypto/test_c003/test_c003.c b/api-tests/dev_apis/crypto/test_c003/test_c003.c
index e25d80dd..1968cb15 100644
--- a/api-tests/dev_apis/crypto/test_c003/test_c003.c
+++ b/api-tests/dev_apis/crypto/test_c003/test_c003.c
@@ -112,8 +112,8 @@ int32_t psa_export_key_test(security_t caller)
                                        &key_type, &bits);
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(6));
 
+        /* Make sure the metada matches with the given data */
         TEST_ASSERT_EQUAL(key_type, check1[i].key_type, TEST_CHECKPOINT_NUM(7));
-
         TEST_ASSERT_EQUAL(bits, check1[i].expected_bit_length, TEST_CHECKPOINT_NUM(8));
 
         /* Export a key in binary format */
@@ -124,6 +124,7 @@ int32_t psa_export_key_test(security_t caller)
         if (check1[i].expected_status != PSA_SUCCESS)
             continue;
 
+        /* Check if the key length matches with the given length */
         TEST_ASSERT_EQUAL(length, check1[i].expected_key_length, TEST_CHECKPOINT_NUM(10));
 
         /* Check if original key data matches with the exported data */
@@ -177,7 +178,7 @@ int32_t psa_export_key_negative_test(security_t caller)
         /* Export a key in binary format */
         status = val->crypto_function(VAL_CRYPTO_EXPORT_KEY, check2[i].key_handle, data,
                                        check2[i].key_length, &length);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_EMPTY_SLOT, TEST_CHECKPOINT_NUM(5));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_DOES_NOT_EXIST, TEST_CHECKPOINT_NUM(5));
 
         val->print(PRINT_TEST, "[Check %d] Test psa_export_key with zero as key handle\n",
                                                                                  g_test_count++);
diff --git a/api-tests/dev_apis/crypto/test_c003/test_data.h b/api-tests/dev_apis/crypto/test_c003/test_data.h
index c5832c7d..dfe0a0b6 100644
--- a/api-tests/dev_apis/crypto/test_c003/test_data.h
+++ b/api-tests/dev_apis/crypto/test_c003/test_data.h
@@ -165,7 +165,7 @@ static test_data check1[] = {
 #ifdef ARCH_TEST_AES_128
 {"Test psa_export_key 16 Byte AES\n", 1, PSA_KEY_TYPE_AES,
 {0x49, 0x8E, 0xC7, 0x7D, 0x01, 0x95, 0x0D, 0x94, 0x2C, 0x16, 0xA5, 0x3E, 0x99,
- 0x5F, 0xC9},
+ 0x5F, 0xC9, 0x77},
  AES_16B_KEY_SIZE, PSA_KEY_USAGE_EXPORT, PSA_ALG_CTR, BUFFER_SIZE,
  BYTES_TO_BITS(AES_16B_KEY_SIZE), AES_16B_KEY_SIZE, PSA_SUCCESS
 },
@@ -174,7 +174,7 @@ static test_data check1[] = {
 #ifdef ARCH_TEST_AES_192
 {"Test psa_export_key 24 Byte AES\n", 2, PSA_KEY_TYPE_AES,
 {0x24, 0x13, 0x61, 0x47, 0x61, 0xB8, 0xC8, 0xF0, 0xDF, 0xAB, 0x5A, 0x0E, 0x87,
- 0x40, 0xAC, 0xA3, 0x90, 0x77, 0x83, 0x52, 0x31, 0x74, 0xF9},
+ 0x40, 0xAC, 0xA3, 0x90, 0x77, 0x83, 0x52, 0x31, 0x74, 0xF9, 0x05},
  AES_24B_KEY_SIZE, PSA_KEY_USAGE_EXPORT, PSA_ALG_CTR, BUFFER_SIZE,
  BYTES_TO_BITS(AES_24B_KEY_SIZE), AES_24B_KEY_SIZE, PSA_SUCCESS
 },
@@ -260,14 +260,14 @@ static test_data check1[] = {
 #ifdef ARCH_TEST_AES_128
 {"Test psa_export_key with key policy verify\n", 11, PSA_KEY_TYPE_AES,
 {0x49, 0x8E, 0xC7, 0x7D, 0x01, 0x95, 0x0D, 0x94, 0x2C, 0x16, 0xA5, 0x3E, 0x99,
- 0x5F, 0xC9},
+ 0x5F, 0xC9, 0x05},
  AES_16B_KEY_SIZE, PSA_KEY_USAGE_VERIFY, PSA_ALG_CTR, BUFFER_SIZE,
  BYTES_TO_BITS(AES_16B_KEY_SIZE), AES_16B_KEY_SIZE, PSA_ERROR_NOT_PERMITTED
 },
 
 {"Test psa_export_key with less buffer size\n", 12, PSA_KEY_TYPE_AES,
 {0x49, 0x8E, 0xC7, 0x7D, 0x01, 0x95, 0x0D, 0x94, 0x2C, 0x16, 0xA5, 0x3E, 0x99,
- 0x5F, 0xC9},
+ 0x5F, 0xC9, 0x05},
  AES_16B_KEY_SIZE, PSA_KEY_USAGE_EXPORT, PSA_ALG_CTR, 14,
  BYTES_TO_BITS(AES_16B_KEY_SIZE), AES_16B_KEY_SIZE, PSA_ERROR_BUFFER_TOO_SMALL
 },
@@ -280,7 +280,7 @@ static test_data check2[] = {
 #ifdef ARCH_TEST_AES_128
 {"Test psa_export_key negative case\n", 13, PSA_KEY_TYPE_AES,
 {0x49, 0x8E, 0xC7, 0x7D, 0x01, 0x95, 0x0D, 0x94, 0x2C, 0x16, 0xA5, 0x3E, 0x99,
- 0x5F, 0xC9},
+ 0x5F, 0xC9, 0x05},
  AES_16B_KEY_SIZE, PSA_KEY_USAGE_EXPORT, PSA_ALG_CTR, BUFFER_SIZE,
  BYTES_TO_BITS(AES_16B_KEY_SIZE), AES_16B_KEY_SIZE, PSA_SUCCESS
 },
diff --git a/api-tests/dev_apis/crypto/test_c004/test_c004.c b/api-tests/dev_apis/crypto/test_c004/test_c004.c
index fceade54..d99c4837 100644
--- a/api-tests/dev_apis/crypto/test_c004/test_c004.c
+++ b/api-tests/dev_apis/crypto/test_c004/test_c004.c
@@ -185,7 +185,7 @@ int32_t test_psa_export_public_key_handle(security_t caller)
         /* Export a key in binary format */
         status = val->crypto_function(VAL_CRYPTO_EXPORT_PUBLIC_KEY, check2[i].key_handle, data,
                                       check2[i].key_length, &length);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_EMPTY_SLOT, TEST_CHECKPOINT_NUM(5));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_DOES_NOT_EXIST, TEST_CHECKPOINT_NUM(5));
 
         val->print(PRINT_TEST, "[Check %d] Test psa_export_key with zero as key handle\n",
                                                                                  g_test_count++);
diff --git a/api-tests/dev_apis/crypto/test_c005/test_c005.c b/api-tests/dev_apis/crypto/test_c005/test_c005.c
index f5881929..1af6b369 100644
--- a/api-tests/dev_apis/crypto/test_c005/test_c005.c
+++ b/api-tests/dev_apis/crypto/test_c005/test_c005.c
@@ -115,8 +115,8 @@ int32_t psa_destroy_key_test(security_t caller)
                     PSA_SUCCESS,
                     TEST_CHECKPOINT_NUM(6));
 
+        /* Check that metadata matches with given data */
         TEST_ASSERT_EQUAL(key_type, check1[i].key_type, TEST_CHECKPOINT_NUM(7));
-
         TEST_ASSERT_EQUAL(bits, check1[i].expected_bit_length, TEST_CHECKPOINT_NUM(8));
 
         /* Destroy a key and restore the slot to its default state */
diff --git a/api-tests/dev_apis/crypto/test_c006/test_c006.c b/api-tests/dev_apis/crypto/test_c006/test_c006.c
index ca6d5258..a18aaa79 100644
--- a/api-tests/dev_apis/crypto/test_c006/test_c006.c
+++ b/api-tests/dev_apis/crypto/test_c006/test_c006.c
@@ -113,8 +113,8 @@ int32_t psa_get_key_information_test(security_t caller)
         if (check1[i].expected_status != PSA_SUCCESS)
             continue;
 
+        /* Check that it matches with given data */
         TEST_ASSERT_EQUAL(key_type, check1[i].key_type, TEST_CHECKPOINT_NUM(7));
-
         TEST_ASSERT_EQUAL(bits, check1[i].expected_bit_length, TEST_CHECKPOINT_NUM(8));
     }
 
@@ -159,7 +159,7 @@ int32_t psa_get_key_information_invalid_test(security_t caller)
         /* Get basic metadata about a key */
         status = val->crypto_function(VAL_CRYPTO_GET_KEY_INFORMATION, check2[i].key_handle,
                                       &check2[i].key_type, &check2[i].key_length);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_EMPTY_SLOT, TEST_CHECKPOINT_NUM(6));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_DOES_NOT_EXIST, TEST_CHECKPOINT_NUM(6));
 
         val->print(PRINT_TEST, "[Check %d] Test psa_get_key_information with destroyed"
                                                         " key handle\n", g_test_count++);
diff --git a/api-tests/dev_apis/crypto/test_c006/test_data.h b/api-tests/dev_apis/crypto/test_c006/test_data.h
index e4ae0774..ccc52e2c 100644
--- a/api-tests/dev_apis/crypto/test_c006/test_data.h
+++ b/api-tests/dev_apis/crypto/test_c006/test_data.h
@@ -255,10 +255,9 @@ static test_data check1[] = {
  224, 28, PSA_SUCCESS
 },
 #endif
-#endif    
+#endif
 };
 
-
 static test_data check2[] = {
 #ifdef ARCH_TEST_CIPER_MODE_CTR
 #ifdef ARCH_TEST_AES_128
diff --git a/api-tests/dev_apis/crypto/test_c007/test_c007.c b/api-tests/dev_apis/crypto/test_c007/test_c007.c
index 82a77c27..9b3371fc 100644
--- a/api-tests/dev_apis/crypto/test_c007/test_c007.c
+++ b/api-tests/dev_apis/crypto/test_c007/test_c007.c
@@ -181,7 +181,7 @@ int32_t psa_set_key_policy_negative_test(security_t caller)
 
         /* Set the usage policy on a key slot */
         status = val->crypto_function(VAL_CRYPTO_SET_KEY_POLICY, check2[i].key_handle, &policy);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_OCCUPIED_SLOT, TEST_CHECKPOINT_NUM(8));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_ALREADY_EXISTS, TEST_CHECKPOINT_NUM(8));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c007/test_data.h b/api-tests/dev_apis/crypto/test_c007/test_data.h
index 183c3b56..75726963 100644
--- a/api-tests/dev_apis/crypto/test_c007/test_data.h
+++ b/api-tests/dev_apis/crypto/test_c007/test_data.h
@@ -277,7 +277,7 @@ static test_data check2[] = {
 {0x49, 0x8E, 0xC7, 0x7D, 0x01, 0x95, 0x0D, 0x94, 0x2C, 0x16, 0xA5, 0x3E, 0x99,
  0x5F, 0xC9},
 AES_16B_KEY_SIZE, PSA_KEY_USAGE_EXPORT, PSA_ALG_CTR,
-BYTES_TO_BITS(AES_16B_KEY_SIZE), AES_16B_KEY_SIZE, PSA_ERROR_OCCUPIED_SLOT
+BYTES_TO_BITS(AES_16B_KEY_SIZE), AES_16B_KEY_SIZE, PSA_ERROR_ALREADY_EXISTS
 },
 #endif
 #endif
diff --git a/api-tests/dev_apis/crypto/test_c008/test_c008.c b/api-tests/dev_apis/crypto/test_c008/test_c008.c
index 05ce0f81..363d5c76 100644
--- a/api-tests/dev_apis/crypto/test_c008/test_c008.c
+++ b/api-tests/dev_apis/crypto/test_c008/test_c008.c
@@ -53,6 +53,8 @@ int32_t psa_get_key_policy_test(security_t caller)
          * usage of the key
          */
         val->crypto_function(VAL_CRYPTO_KEY_POLICY_INIT, &policy);
+        memset(&expected_usage, 0, sizeof(psa_key_usage_t));
+        memset(&expected_alg, 0, sizeof(psa_algorithm_t));
 
         /* Setting up the watchdog timer for each check */
         status = val->wd_reprogram_timer(WD_CRYPTO_TIMEOUT);
diff --git a/api-tests/dev_apis/crypto/test_c009/test_c009.c b/api-tests/dev_apis/crypto/test_c009/test_c009.c
index aa4af152..9b252b88 100644
--- a/api-tests/dev_apis/crypto/test_c009/test_c009.c
+++ b/api-tests/dev_apis/crypto/test_c009/test_c009.c
@@ -55,6 +55,9 @@ int32_t psa_allocate_key_test(security_t caller)
         status = val->crypto_function(VAL_CRYPTO_ALLOCATE_KEY, &check1[i].key_handle);
         TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(3));
 
+        /* Destroy a key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(4));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -62,7 +65,7 @@ int32_t psa_allocate_key_test(security_t caller)
 
 int32_t psa_allocate_key_negative_test(security_t caller)
 {
-    int32_t             i, status;
+    int32_t             i, j, status;
     psa_key_handle_t    key_handle[MAX_KEYS];
 
     /* Initialize the PSA crypto library*/
@@ -76,10 +79,18 @@ int32_t psa_allocate_key_negative_test(security_t caller)
         /* Allocate a key slot for a transient key */
         status = val->crypto_function(VAL_CRYPTO_ALLOCATE_KEY, &key_handle[i]);
         if (status != PSA_SUCCESS)
+        {
+            TEST_ASSERT_EQUAL(status, PSA_ERROR_INSUFFICIENT_MEMORY, TEST_CHECKPOINT_NUM(2));
             break;
+        }
     }
 
-    TEST_ASSERT_EQUAL(status, PSA_ERROR_INSUFFICIENT_MEMORY, TEST_CHECKPOINT_NUM(2));
+    for (j = 0; j < i; j++)
+    {
+        /* Destroy a key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, key_handle[j]);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(3));
+    }
 
     return VAL_STATUS_SUCCESS;
 }
diff --git a/api-tests/dev_apis/crypto/test_c009/test_data.h b/api-tests/dev_apis/crypto/test_c009/test_data.h
index 4a859864..fd4be3c2 100644
--- a/api-tests/dev_apis/crypto/test_c009/test_data.h
+++ b/api-tests/dev_apis/crypto/test_c009/test_data.h
@@ -20,67 +20,53 @@
 typedef struct {
     char                    test_desc[75];
     psa_key_handle_t        key_handle;
-    psa_key_type_t          key_type;
-    size_t                  key_length;
     psa_status_t            expected_status;
 } test_data;
 
 static test_data check1[] = {
 #ifdef ARCH_TEST_AES_128
-{"Test psa_allocate_key 16 Byte AES\n", 1, PSA_KEY_TYPE_AES,
- AES_16B_KEY_SIZE, PSA_SUCCESS
+{"Test psa_allocate_key 16 Byte AES\n", 1, PSA_SUCCESS
 },
 #endif
 
 #ifdef ARCH_TEST_AES_192
-{"Test psa_allocate_key 24 Byte AES\n", 2, PSA_KEY_TYPE_AES,
- AES_24B_KEY_SIZE, PSA_SUCCESS
+{"Test psa_allocate_key 24 Byte AES\n", 2, PSA_SUCCESS
 },
 #endif
 
 #ifdef ARCH_TEST_AES_256
-{"Test psa_allocate_key 32 Byte AES\n", 3, PSA_KEY_TYPE_AES,
- AES_32B_KEY_SIZE, PSA_SUCCESS
+{"Test psa_allocate_key 32 Byte AES\n", 3, PSA_SUCCESS
 },
 #endif
 
 #ifdef ARCH_TEST_RSA_2048
-{"Test psa_allocate_key 2048 RSA public key\n", 4, PSA_KEY_TYPE_RSA_PUBLIC_KEY,
- 294, PSA_SUCCESS
+{"Test psa_allocate_key 2048 RSA public key\n", 4, PSA_SUCCESS
 },
 
-{"Test psa_allocate_key with RSA 2048 keypair\n", 5, PSA_KEY_TYPE_RSA_KEYPAIR,
- 1193, PSA_SUCCESS
+{"Test psa_allocate_key with RSA 2048 keypair\n", 5, PSA_SUCCESS,
 },
 #endif
 
 #ifdef ARCH_TEST_DES_1KEY
-{"Test psa_allocate_key with DES 64 bit key\n", 6, PSA_KEY_TYPE_DES,
- DES_8B_KEY_SIZE, PSA_SUCCESS
+{"Test psa_allocate_key with DES 64 bit key\n", 6, PSA_SUCCESS,
 },
 #endif
 
 #ifdef ARCH_TEST_DES_2KEY
-{"Test psa_allocate_key with Triple DES 2-Key\n", 7, PSA_KEY_TYPE_DES,
- DES3_2KEY_SIZE, PSA_SUCCESS
+{"Test psa_allocate_key with Triple DES 2-Key\n", 7, PSA_SUCCESS,
 },
 #endif
 
 #ifdef ARCH_TEST_DES_3KEY
-{"Test psa_allocate_key with Triple DES 3-Key\n", 8, PSA_KEY_TYPE_DES,
- DES3_3KEY_SIZE, PSA_SUCCESS
+{"Test psa_allocate_key with Triple DES 3-Key\n", 8, PSA_SUCCESS,
 },
 #endif
 
 #ifdef ARCH_TEST_ECC_CURVE_SECP192R1
-{"Test psa_allocate_key with EC Public key\n", 9,
- PSA_KEY_TYPE_ECC_PUBLIC_KEY_BASE | PSA_ECC_CURVE_SECP192R1,
- 75, PSA_SUCCESS
+{"Test psa_allocate_key with EC Public key\n", 9, PSA_SUCCESS,
 },
 
-{"Test psa_allocate_key with EC keypair\n", 10,
- PSA_KEY_TYPE_ECC_KEYPAIR_BASE | PSA_ECC_CURVE_SECP192R1,
- 97, PSA_SUCCESS
+{"Test psa_allocate_key with EC keypair\n", 10, PSA_SUCCESS
 },
 #endif
 };
diff --git a/api-tests/dev_apis/crypto/test_c011/test_c011.c b/api-tests/dev_apis/crypto/test_c011/test_c011.c
index 7e4b4dff..13176a2e 100644
--- a/api-tests/dev_apis/crypto/test_c011/test_c011.c
+++ b/api-tests/dev_apis/crypto/test_c011/test_c011.c
@@ -43,6 +43,8 @@ int32_t psa_hash_setup_test(security_t caller)
     {
         val->print(PRINT_TEST, "[Check %d] ", g_test_count++);
         val->print(PRINT_TEST, check1[i].test_desc, 0);
+
+        /* Initialize the structure */
         memset(&operation, 0, sizeof(operation));
 
         /* Setting up the watchdog timer for each check */
@@ -53,9 +55,16 @@ int32_t psa_hash_setup_test(security_t caller)
         status = val->crypto_function(VAL_CRYPTO_HASH_SETUP, &operation, check1[i].alg);
         TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(3));
 
-        /*Abort the hash operation */
-        status = val->crypto_function(VAL_CRYPTO_HASH_ABORT, &operation);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(4));
+        if (check1[i].expected_status == PSA_SUCCESS)
+        {
+            /* Start a multipart hash operation */
+            status = val->crypto_function(VAL_CRYPTO_HASH_SETUP, &operation, check1[i].alg);
+            TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(4));
+
+            /*Abort the hash operation */
+            status = val->crypto_function(VAL_CRYPTO_HASH_ABORT, &operation);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(5));
+        }
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c011/test_data.h b/api-tests/dev_apis/crypto/test_c011/test_data.h
index fab7bd59..64b233b7 100644
--- a/api-tests/dev_apis/crypto/test_c011/test_data.h
+++ b/api-tests/dev_apis/crypto/test_c011/test_data.h
@@ -114,7 +114,16 @@ static test_data check1[] = {
 },
 #endif
 
+{"Test psa_hash_setup with Invalid hash algorithm\n",
+ PSA_HASH_ALG_INVALID, PSA_ERROR_NOT_SUPPORTED,
+},
+
 {"Test psa_hash_setup with Invalid algorithm\n",
  PSA_ALG_INVALID, PSA_ERROR_INVALID_ARGUMENT,
 },
+
+{"Test psa_hash_setup with CTR algorithm\n",
+ PSA_ALG_CTR, PSA_ERROR_INVALID_ARGUMENT,
+},
+
 };
diff --git a/api-tests/dev_apis/crypto/test_c012/test_c012.c b/api-tests/dev_apis/crypto/test_c012/test_c012.c
index 5a3181cb..a02f8ada 100644
--- a/api-tests/dev_apis/crypto/test_c012/test_c012.c
+++ b/api-tests/dev_apis/crypto/test_c012/test_c012.c
@@ -45,6 +45,8 @@ int32_t psa_hash_update_test(security_t caller)
     {
         val->print(PRINT_TEST, "[Check %d] ", g_test_count++);
         val->print(PRINT_TEST, check1[i].test_desc, 0);
+
+        /* Initialize the hash structure */
         memset(&operation, 0, sizeof(operation));
 
         /* Setting up the watchdog timer for each check */
@@ -72,7 +74,7 @@ int32_t psa_hash_update_invalid_handle(security_t caller)
 {
     psa_hash_operation_t    operation;
     uint8_t                 input[] = "Hello World";
-    size_t                  input_length = sizeof(input)/sizeof(input[0]);
+    size_t                  input_length = sizeof(input);
     int32_t                 status;
 
     /* Initialize the PSA crypto library*/
@@ -81,6 +83,8 @@ int32_t psa_hash_update_invalid_handle(security_t caller)
 
     val->print(PRINT_TEST, "[Check %d] ", g_test_count++);
     val->print(PRINT_TEST, "Test psa_hash_update without hash setup\n", 0);
+
+    /* Initialize the hash structure */
     memset(&operation, 0, sizeof(operation));
 
     /* Setting up the watchdog timer for each check */
@@ -102,13 +106,13 @@ int32_t psa_hash_update_with_completed_handle(security_t caller)
 {
     psa_hash_operation_t    operation;
     uint8_t                 input[] = {0xbd};
-    size_t                  input_length = sizeof(input)/sizeof(input[0]);
+    size_t                  input_length = sizeof(input);
     psa_algorithm_t         alg = PSA_ALG_SHA_256;
     uint8_t                 hash[] = {0x68, 0x32, 0x57, 0x20, 0xAA, 0xBD, 0x7C, 0x82, 0xF3, 0x0F,
                                       0x55, 0x4B, 0x31, 0x3D, 0x05, 0x70, 0xC9, 0x5A, 0xCC, 0xBB,
                                       0x7D, 0xC4, 0xB5, 0xAA, 0xE1, 0x12, 0x04, 0xC0, 0x8F, 0xFE,
                                       0x73, 0x2B};
-    size_t                  hash_length = sizeof(hash)/sizeof(hash[0]);
+    size_t                  hash_length = sizeof(hash);
     int32_t                 status;
 
     /* Initialize the PSA crypto library*/
diff --git a/api-tests/dev_apis/crypto/test_c014/test_c014.c b/api-tests/dev_apis/crypto/test_c014/test_c014.c
index 48e3c5ab..272e0e0f 100644
--- a/api-tests/dev_apis/crypto/test_c014/test_c014.c
+++ b/api-tests/dev_apis/crypto/test_c014/test_c014.c
@@ -38,7 +38,7 @@ int32_t psa_hash_finish_test(security_t caller)
     psa_hash_operation_t    operation;
     const char              *expected_hash;
     char                    hash[HASH_64B];
-    size_t                  hash_length, hash_size = sizeof(hash)/sizeof(hash[0]);
+    size_t                  hash_length, hash_size = sizeof(hash);
 
     /* Initialize the PSA crypto library*/
     status = val->crypto_function(VAL_CRYPTO_INIT);
@@ -77,14 +77,10 @@ int32_t psa_hash_finish_test(security_t caller)
 
         if (check1[i].expected_status != PSA_SUCCESS)
         {
-            /*Abort the hash operation */
-            status = val->crypto_function(VAL_CRYPTO_HASH_ABORT, &operation);
-            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(6));
             continue;
         }
 
         TEST_ASSERT_EQUAL(hash_length, PSA_HASH_SIZE(check1[i].alg), TEST_CHECKPOINT_NUM(7));
-
         TEST_ASSERT_MEMCMP(hash, expected_hash, hash_length, TEST_CHECKPOINT_NUM(8));
 
         /*Abort the hash operation */
@@ -102,7 +98,7 @@ int32_t psa_hash_finish_inactive_operation_handle(security_t caller)
     size_t                  input_length = 1;
     psa_algorithm_t         alg = PSA_ALG_SHA_256;
     char                    hash[HASH_64B];
-    size_t                  hash_length, hash_size = sizeof(hash)/sizeof(hash[0]);
+    size_t                  hash_length, hash_size = sizeof(hash);
     int32_t                 status;
 
     /* Initialize the PSA crypto library*/
diff --git a/api-tests/dev_apis/crypto/test_c015/test_c015.c b/api-tests/dev_apis/crypto/test_c015/test_c015.c
index 208d7b56..8f725f3e 100644
--- a/api-tests/dev_apis/crypto/test_c015/test_c015.c
+++ b/api-tests/dev_apis/crypto/test_c015/test_c015.c
@@ -74,7 +74,7 @@ int32_t psa_hash_abort_before_operation_finish(security_t caller)
     size_t                  input_length = 1;
     psa_algorithm_t         alg = PSA_ALG_SHA_256;
     char                    hash[HASH_64B];
-    size_t                  hash_length, hash_size = sizeof(hash)/sizeof(hash[0]);
+    size_t                  hash_length, hash_size = sizeof(hash);
     int32_t                 status;
 
     /* Initialize the PSA crypto library*/
diff --git a/api-tests/dev_apis/crypto/test_c016/test_c016.c b/api-tests/dev_apis/crypto/test_c016/test_c016.c
index 5862ba56..9781827a 100644
--- a/api-tests/dev_apis/crypto/test_c016/test_c016.c
+++ b/api-tests/dev_apis/crypto/test_c016/test_c016.c
@@ -76,23 +76,33 @@ int32_t psa_generate_key_test(security_t caller)
         TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(5));
 
         if (check1[i].expected_status != PSA_SUCCESS)
+        {
+            /* Destroy the key */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(6));
+
             continue;
+        }
 
         /* Get basic metadata about a key */
         status = val->crypto_function(VAL_CRYPTO_GET_KEY_INFORMATION, check1[i].key_handle,
                     &key_type, &bits);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(6));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
 
-        TEST_ASSERT_EQUAL(key_type, check1[i].key_type, TEST_CHECKPOINT_NUM(7));
+        TEST_ASSERT_EQUAL(key_type, check1[i].key_type, TEST_CHECKPOINT_NUM(8));
 
-        TEST_ASSERT_EQUAL(bits, check1[i].expected_bit_length, TEST_CHECKPOINT_NUM(8));
+        TEST_ASSERT_EQUAL(bits, check1[i].expected_bit_length, TEST_CHECKPOINT_NUM(9));
 
         /* Export a key in binary format */
         status = val->crypto_function(VAL_CRYPTO_EXPORT_KEY, check1[i].key_handle, data,
                                       BUFFER_SIZE, &length);
-        TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(9));
+        TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(10));
+
+        TEST_ASSERT_EQUAL(length, check1[i].expected_key_length, TEST_CHECKPOINT_NUM(11));
 
-        TEST_ASSERT_EQUAL(length, check1[i].expected_key_length, TEST_CHECKPOINT_NUM(10));
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(12));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -156,7 +166,7 @@ int32_t psa_generate_key_negative_test(security_t caller)
         /* Generate a key or key pair */
         status = val->crypto_function(VAL_CRYPTO_GENERATE_KEY, check2[i].key_handle,
                     check2[i].key_type, check2[i].bits, check2[i].extra, check2[i].extra_size);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_OCCUPIED_SLOT, TEST_CHECKPOINT_NUM(8));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_ALREADY_EXISTS, TEST_CHECKPOINT_NUM(8));
 
         val->print(PRINT_TEST, "[Check %d] Test psa_generate_key with destroyed key handle\n",
                                                                                  g_test_count++);
diff --git a/api-tests/dev_apis/crypto/test_c017/test_c017.c b/api-tests/dev_apis/crypto/test_c017/test_c017.c
index 10387b8d..8aeab9c9 100644
--- a/api-tests/dev_apis/crypto/test_c017/test_c017.c
+++ b/api-tests/dev_apis/crypto/test_c017/test_c017.c
@@ -28,13 +28,14 @@ client_test_t test_c017_crypto_list[] = {
 };
 
 static int g_test_count = 1;
+static uint8_t data[BUFFER_SIZE], changed[BUFFER_SIZE];
 
 int32_t psa_generate_random_test(security_t caller)
 {
-    int                     num_checks = sizeof(check1)/sizeof(check1[0]);
-    uint32_t                i, j, data_sum;
-    uint8_t                 data[BUFFER_SIZE] = {0};
-    int32_t                 status;
+    int         num_checks = sizeof(check1)/sizeof(check1[0]);
+    uint32_t    i, j, run;
+    uint8_t     trail[] = "don't overwrite me";
+    int32_t     status;
 
     /* Initialize the PSA crypto library*/
     status = val->crypto_function(VAL_CRYPTO_INIT);
@@ -45,29 +46,44 @@ int32_t psa_generate_random_test(security_t caller)
         val->print(PRINT_TEST, "[Check %d] ", g_test_count++);
         val->print(PRINT_TEST, check1[i].test_desc, 0);
 
+        memset(data, 0, sizeof(data));
+        memcpy(data + check1[i].size, trail, sizeof(trail));
+
         /* Setting up the watchdog timer for each check */
         status = val->wd_reprogram_timer(WD_CRYPTO_TIMEOUT);
         TEST_ASSERT_EQUAL(status, VAL_STATUS_SUCCESS, TEST_CHECKPOINT_NUM(2));
 
-        /* Generate random bytes */
-        status = val->crypto_function(VAL_CRYPTO_GENERATE_RANDOM, data, check1[i].size);
-        TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(3));
+        /* Run several times, to ensure that every output byte will be
+         * nonzero at least once with overwhelming probability
+         * (2^(-8*number_of_runs)).
+         */
+        for (run = 0; run < 10; run++)
+        {
+            memset(data, 0, check1[i].size);
+
+            /* Generate random bytes */
+            status = val->crypto_function(VAL_CRYPTO_GENERATE_RANDOM, data, check1[i].size);
+            TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(3));
 
-        if (check1[i].expected_status != PSA_SUCCESS)
-            continue;
+            /* Check that no more than bytes have been overwritten */
+            status = memcmp(data + check1[i].size, trail, sizeof(trail));
+            TEST_ASSERT_EQUAL(status, 0, TEST_CHECKPOINT_NUM(4));
 
-        data_sum = 0;
-        /* Check that if generated data are zero */
+            for (j = 0; j < check1[i].size; j++)
+            {
+                if (data[j] != 0)
+                    ++changed[j];
+            }
+        }
+
+        /* Check that every byte was changed to nonzero at least once. This
+         * validates that psa_generate_random is overwriting every byte of
+         * the output buffer.
+         */
         for (j = 0; j < check1[i].size; j++)
         {
-            data_sum += data[j];
-            data[j] = 0;
+            TEST_ASSERT_NOT_EQUAL(changed[j], 0, TEST_CHECKPOINT_NUM(5));
         }
-
-        if (check1[i].size != 0)
-            TEST_ASSERT_NOT_EQUAL(data_sum, 0, TEST_CHECKPOINT_NUM(4));
-        else
-            TEST_ASSERT_EQUAL(data_sum, 0, TEST_CHECKPOINT_NUM(5));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c017/test_data.h b/api-tests/dev_apis/crypto/test_c017/test_data.h
index 4e0c46cf..53a7c24f 100644
--- a/api-tests/dev_apis/crypto/test_c017/test_data.h
+++ b/api-tests/dev_apis/crypto/test_c017/test_data.h
@@ -50,7 +50,4 @@ static test_data check1[] = {
 
 {"Test psa_generate_random to get 1000 Byte data\n", 100, PSA_SUCCESS
 },
-
-{"Test psa_generate_random to get 1024 Byte data\n", 1024, PSA_SUCCESS
-},
 };
diff --git a/api-tests/dev_apis/crypto/test_c018/test_c018.c b/api-tests/dev_apis/crypto/test_c018/test_c018.c
index 971c6de3..0bdf91a7 100644
--- a/api-tests/dev_apis/crypto/test_c018/test_c018.c
+++ b/api-tests/dev_apis/crypto/test_c018/test_c018.c
@@ -24,6 +24,7 @@
 client_test_t test_c018_crypto_list[] = {
     NULL,
     psa_generator_read_test,
+    psa_generator_read_negative_test,
     NULL,
 };
 
@@ -95,6 +96,11 @@ int32_t psa_generator_read_test(security_t caller)
             /* Abort a generator */
             status = val->crypto_function(VAL_CRYPTO_GENERATOR_ABORT, &generator);
             TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(8));
+
+            /* Destroy the key */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
+
             continue;
         }
 
@@ -106,7 +112,7 @@ int32_t psa_generator_read_test(security_t caller)
         }
 
         memset(data, 0, sizeof(data));
-        TEST_ASSERT_NOT_EQUAL(data_sum, 0, TEST_CHECKPOINT_NUM(9));
+        TEST_ASSERT_NOT_EQUAL(data_sum, 0, TEST_CHECKPOINT_NUM(10));
 
         remaining_size = check1[i].capacity - check1[i].size;
         if (remaining_size > 0)
@@ -114,7 +120,7 @@ int32_t psa_generator_read_test(security_t caller)
             /* Read some data from a generator */
             status = val->crypto_function(VAL_CRYPTO_GENERATOR_READ, &generator,
                                           data, remaining_size);
-            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(11));
 
             data_sum = 0;
             /* Check that if generated data are zero */
@@ -124,23 +130,52 @@ int32_t psa_generator_read_test(security_t caller)
             }
 
             memset(data, 0, sizeof(data));
-            TEST_ASSERT_NOT_EQUAL(data_sum, 0, TEST_CHECKPOINT_NUM(11));
+            TEST_ASSERT_NOT_EQUAL(data_sum, 0, TEST_CHECKPOINT_NUM(12));
 
             /* Read some data from a generator */
             status = val->crypto_function(VAL_CRYPTO_GENERATOR_READ, &generator,
                                           data, check1[i].size);
-            TEST_ASSERT_EQUAL(status, PSA_ERROR_INSUFFICIENT_CAPACITY, TEST_CHECKPOINT_NUM(12));
+            TEST_ASSERT_EQUAL(status, PSA_ERROR_INSUFFICIENT_DATA, TEST_CHECKPOINT_NUM(13));
         }
 
-        /* Read data using invalid generator handle */
-        status = val->crypto_function(VAL_CRYPTO_GENERATOR_READ, &invalid_generator,
-                    data, 1);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(13));
-
         /* Abort a generator */
         status = val->crypto_function(VAL_CRYPTO_GENERATOR_ABORT, &generator);
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(14));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(15));
+    }
+
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t psa_generator_read_negative_test(security_t caller)
+{
+    uint32_t                i;
+    psa_crypto_generator_t  generator[] = {psa_crypto_generator_init(),
+                                           PSA_CRYPTO_GENERATOR_INIT, {0} };
+    uint32_t                generator_count = sizeof(generator)/sizeof(generator[0]);
+    int32_t                 status;
+
+    val->print(PRINT_TEST, "[Check %d] ", g_test_count++);
+    val->print(PRINT_TEST, "Test psa_generator_read without setup\n", 0);
+
+    /* Initialize the PSA crypto library*/
+    status = val->crypto_function(VAL_CRYPTO_INIT);
+    TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(1));
+
+    memset(data, 0, sizeof(data));
+
+    for (i = 0; i < generator_count; i++)
+    {
+        status = val->crypto_function(VAL_CRYPTO_GENERATOR_READ, &generator[i], data, 1);
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(2));
+
+        status = val->crypto_function(VAL_CRYPTO_GENERATOR_ABORT, &generator[i]);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(3));
     }
 
     return VAL_STATUS_SUCCESS;
 }
+
diff --git a/api-tests/dev_apis/crypto/test_c018/test_c018.h b/api-tests/dev_apis/crypto/test_c018/test_c018.h
index 34f72c8d..bd196511 100644
--- a/api-tests/dev_apis/crypto/test_c018/test_c018.h
+++ b/api-tests/dev_apis/crypto/test_c018/test_c018.h
@@ -27,4 +27,5 @@ extern psa_api_t *psa;
 extern client_test_t test_c018_crypto_list[];
 
 int32_t psa_generator_read_test(security_t caller);
+int32_t psa_generator_read_negative_test(security_t caller);
 #endif /* _TEST_C018_CLIENT_TESTS_H_ */
diff --git a/api-tests/dev_apis/crypto/test_c018/test_data.h b/api-tests/dev_apis/crypto/test_c018/test_data.h
index 9506e173..f2c136e1 100644
--- a/api-tests/dev_apis/crypto/test_c018/test_data.h
+++ b/api-tests/dev_apis/crypto/test_c018/test_data.h
@@ -76,7 +76,7 @@ static test_data check1[] = {
 {0x70, 0x24, 0x55, 0x0C, 0x14, 0x9D, 0xED, 0x29},
  DES_8B_KEY_SIZE, PSA_KEY_USAGE_DERIVE, PSA_ALG_HKDF(PSA_ALG_SHA_1),
  {0}, 0, {0}, 0, 64,
- 70, PSA_ERROR_INSUFFICIENT_CAPACITY
+ 70, PSA_ERROR_INSUFFICIENT_DATA
 },
 
 {"Test psa_generator_read to request maximum capacity\n", 4, PSA_KEY_TYPE_DERIVE,
@@ -90,7 +90,7 @@ static test_data check1[] = {
 {0x70, 0x24, 0x55, 0x0C, 0x14, 0x9D, 0xED, 0x29},
  DES_8B_KEY_SIZE, PSA_KEY_USAGE_DERIVE, PSA_ALG_HKDF(PSA_ALG_SHA_1),
  {0}, 0, {0}, 0, (255 * 20),
- ((255 * 20) + 1), PSA_ERROR_INSUFFICIENT_CAPACITY
+ ((255 * 20) + 1), PSA_ERROR_INSUFFICIENT_DATA
 },
 #endif
 #endif
diff --git a/api-tests/dev_apis/crypto/test_c019/test_c019.c b/api-tests/dev_apis/crypto/test_c019/test_c019.c
index c110892c..3f0a670c 100644
--- a/api-tests/dev_apis/crypto/test_c019/test_c019.c
+++ b/api-tests/dev_apis/crypto/test_c019/test_c019.c
@@ -24,6 +24,7 @@
 client_test_t test_c019_crypto_list[] = {
     NULL,
     psa_get_generator_capacity_test,
+    psa_get_generator_capacity_negative_test,
     NULL,
 };
 
@@ -94,27 +95,66 @@ int32_t psa_get_generator_capacity_test(security_t caller)
             /* Abort a generator */
             status = val->crypto_function(VAL_CRYPTO_GENERATOR_ABORT, &generator);
             TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(8));
+
+            /* Destroy the key */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
+
             continue;
         }
 
-        TEST_ASSERT_EQUAL(capacity, check1[i].capacity, TEST_CHECKPOINT_NUM(9));
+        TEST_ASSERT_EQUAL(capacity, check1[i].capacity, TEST_CHECKPOINT_NUM(10));
 
         /* Generate random bytes */
         status = val->crypto_function(VAL_CRYPTO_GENERATOR_READ, &generator, data,
                                       check1[i].size);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(11));
 
         remaining_size = check1[i].capacity - check1[i].size;
 
         /* Retrieve the current capacity of a generator */
         status = val->crypto_function(VAL_CRYPTO_GET_GENERATOR_CAPACITY, &generator, &capacity);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(11));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(12));
 
-        TEST_ASSERT_EQUAL(capacity, remaining_size, TEST_CHECKPOINT_NUM(12));
+        TEST_ASSERT_EQUAL(capacity, remaining_size, TEST_CHECKPOINT_NUM(13));
 
         /* Abort a generator */
         status = val->crypto_function(VAL_CRYPTO_GENERATOR_ABORT, &generator);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(13));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(14));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(15));
+    }
+
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t psa_get_generator_capacity_negative_test(security_t caller)
+{
+    uint32_t                i;
+    size_t                  capacity;
+    psa_crypto_generator_t  generator[] = {psa_crypto_generator_init(),
+                                           PSA_CRYPTO_GENERATOR_INIT, {0} };
+    uint32_t                generator_count = sizeof(generator)/sizeof(generator[0]);
+    int32_t                 status;
+
+    /* Initialize the PSA crypto library*/
+    status = val->crypto_function(VAL_CRYPTO_INIT);
+    TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(1));
+
+    val->print(PRINT_TEST, "[Check %d] ", g_test_count++);
+    val->print(PRINT_TEST, "Test psa_get_generator_capacity without setup\n", 0);
+
+    for (i = 0; i < generator_count; i++)
+    {
+        /* Retrieve the current capacity of a generator */
+        status = val->crypto_function(VAL_CRYPTO_GET_GENERATOR_CAPACITY, &generator[i], &capacity);
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(2));
+
+        /* Abort a generator */
+        status = val->crypto_function(VAL_CRYPTO_GENERATOR_ABORT, &generator[i]);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(3));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c019/test_c019.h b/api-tests/dev_apis/crypto/test_c019/test_c019.h
index da29369c..d8924d3a 100644
--- a/api-tests/dev_apis/crypto/test_c019/test_c019.h
+++ b/api-tests/dev_apis/crypto/test_c019/test_c019.h
@@ -27,4 +27,5 @@ extern psa_api_t *psa;
 extern client_test_t test_c019_crypto_list[];
 
 int32_t psa_get_generator_capacity_test(security_t caller);
+int32_t psa_get_generator_capacity_negative_test(security_t caller);
 #endif /* _TEST_C019_CLIENT_TESTS_H_ */
diff --git a/api-tests/dev_apis/crypto/test_c020/test_c020.c b/api-tests/dev_apis/crypto/test_c020/test_c020.c
index 700c3de0..0363d03f 100644
--- a/api-tests/dev_apis/crypto/test_c020/test_c020.c
+++ b/api-tests/dev_apis/crypto/test_c020/test_c020.c
@@ -78,12 +78,12 @@ int32_t psa_generator_import_key_test(security_t caller)
         /* Set the usage policy on a key slot */
         status = val->crypto_function(VAL_CRYPTO_SET_KEY_POLICY, check1[i].key_handle[SLOT_1],
                                       &policy);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(3));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(4));
 
         /* Import the key data into the key slot */
         status = val->crypto_function(VAL_CRYPTO_IMPORT_KEY, check1[i].key_handle[SLOT_1],
                     check1[i].key_type[SLOT_1], check1[i].key_data, check1[i].key_length);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(4));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(5));
 
         /* Set up a key derivation operation. Using this function to initialize the generate as
          * XOR or PRNG generator initialization is not implemented.
@@ -91,7 +91,7 @@ int32_t psa_generator_import_key_test(security_t caller)
         status = val->crypto_function(VAL_CRYPTO_KEY_DERIVATION, &generator,
                     check1[i].key_handle[SLOT_1],  check1[i].key_alg[SLOT_1], &salt, salt_length,
                     &label, label_length, check1[i].capacity);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(5));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(6));
 
         /* Initialize a key policy structure to a default that forbids all
          * usage of the key
@@ -104,32 +104,40 @@ int32_t psa_generator_import_key_test(security_t caller)
 
         /* Allocate a key slot for a transient key */
         status = val->crypto_function(VAL_CRYPTO_ALLOCATE_KEY, &check1[i].key_handle[SLOT_2]);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(3));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
 
         /* Set the usage policy on a key slot */
         status = val->crypto_function(VAL_CRYPTO_SET_KEY_POLICY, check1[i].key_handle[SLOT_2],
                                       &policy);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(6));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(8));
 
         /* Create a symmetric key from data read from a generator */
         status = val->crypto_function(VAL_CRYPTO_GENERATOR_IMPORT_KEY, check1[i].key_handle[SLOT_2],
                     check1[i].key_type[SLOT_2], BYTES_TO_BITS(check1[i].size), &generator);
-        TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(7));
+        TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(9));
 
         if (check1[i].expected_status != PSA_SUCCESS)
         {
             /* Abort a generator */
             status = val->crypto_function(VAL_CRYPTO_GENERATOR_ABORT, &generator);
-            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(8));
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
+
+            /* Destroy the key */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle[SLOT_1]);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(11));
+
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle[SLOT_2]);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(12));
+
             continue;
         }
 
         /* Export a key in binary format */
         status = val->crypto_function(VAL_CRYPTO_EXPORT_KEY, check1[i].key_handle[SLOT_2], data,
                                       BUFFER_SIZE, &length);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(13));
 
-        TEST_ASSERT_EQUAL(length, check1[i].size, TEST_CHECKPOINT_NUM(10));
+        TEST_ASSERT_EQUAL(length, check1[i].size, TEST_CHECKPOINT_NUM(14));
 
         data_sum = 0;
         /* Check that if generated data are zero */
@@ -139,7 +147,7 @@ int32_t psa_generator_import_key_test(security_t caller)
         }
 
         memset(data, 0, sizeof(data));
-        TEST_ASSERT_NOT_EQUAL(data_sum, 0, TEST_CHECKPOINT_NUM(12));
+        TEST_ASSERT_NOT_EQUAL(data_sum, 0, TEST_CHECKPOINT_NUM(15));
 
         remaining_size = check1[i].capacity - check1[i].size;
         if (remaining_size > 0)
@@ -156,25 +164,25 @@ int32_t psa_generator_import_key_test(security_t caller)
 
             /* Allocate a key slot for a transient key */
             status = val->crypto_function(VAL_CRYPTO_ALLOCATE_KEY, &check1[i].key_handle[SLOT_3]);
-            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(3));
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(16));
 
             /* Set the usage policy on a key slot */
             status = val->crypto_function(VAL_CRYPTO_SET_KEY_POLICY, check1[i].key_handle[SLOT_3],
                                           &policy);
-            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(12));
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(17));
 
             /* Create a symmetric key from data read from a generator */
             status = val->crypto_function(VAL_CRYPTO_GENERATOR_IMPORT_KEY,
                         check1[i].key_handle[SLOT_3], check1[i].key_type[SLOT_2],
                         BYTES_TO_BITS(check1[i].size), &generator);
-            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(13));
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(18));
 
             /* Export a key in binary format */
             status = val->crypto_function(VAL_CRYPTO_EXPORT_KEY, check1[i].key_handle[SLOT_3], data,
                         BUFFER_SIZE, &length);
-            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(14));
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(19));
 
-            TEST_ASSERT_EQUAL(length, remaining_size, TEST_CHECKPOINT_NUM(15));
+            TEST_ASSERT_EQUAL(length, remaining_size, TEST_CHECKPOINT_NUM(20));
 
             data_sum = 0;
             /* Check that if generated data are zero */
@@ -184,7 +192,7 @@ int32_t psa_generator_import_key_test(security_t caller)
             }
 
             memset(data, 0, sizeof(data));
-            TEST_ASSERT_NOT_EQUAL(data_sum, 0, TEST_CHECKPOINT_NUM(16));
+            TEST_ASSERT_NOT_EQUAL(data_sum, 0, TEST_CHECKPOINT_NUM(21));
 
             /* Initialize a key policy structure to a default that forbids all
              * usage of the key
@@ -197,23 +205,37 @@ int32_t psa_generator_import_key_test(security_t caller)
 
             /* Allocate a key slot for a transient key */
             status = val->crypto_function(VAL_CRYPTO_ALLOCATE_KEY, &check1[i].key_handle[SLOT_4]);
-            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(3));
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(22));
 
             /* Set the usage policy on a key slot */
             status = val->crypto_function(VAL_CRYPTO_SET_KEY_POLICY, check1[i].key_handle[SLOT_4],
                                           &policy);
-            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(17));
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(23));
 
             /* Create a symmetric key from data read from a generator */
             status = val->crypto_function(VAL_CRYPTO_GENERATOR_IMPORT_KEY,
                         check1[i].key_handle[SLOT_4], check1[i].key_type[SLOT_2],
                         BYTES_TO_BITS(check1[i].size), &generator);
-            TEST_ASSERT_EQUAL(status, PSA_ERROR_INSUFFICIENT_CAPACITY, TEST_CHECKPOINT_NUM(18));
+            TEST_ASSERT_EQUAL(status, PSA_ERROR_INSUFFICIENT_DATA, TEST_CHECKPOINT_NUM(24));
+
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle[SLOT_3]);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(25));
+
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle[SLOT_4]);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(26));
+
         }
 
         /* Abort a generator */
         status = val->crypto_function(VAL_CRYPTO_GENERATOR_ABORT, &generator);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(19));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(27));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle[SLOT_1]);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(28));
+
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle[SLOT_2]);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(29));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -291,11 +313,16 @@ int32_t psa_generator_import_key_negative_test(security_t caller)
         /* Create a symmetric key from data read from a generator */
         status = val->crypto_function(VAL_CRYPTO_GENERATOR_IMPORT_KEY, check2[i].key_handle[SLOT_1],
                     check2[i].key_type[SLOT_2], check2[i].size, &generator);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_OCCUPIED_SLOT, TEST_CHECKPOINT_NUM(9));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_ALREADY_EXISTS, TEST_CHECKPOINT_NUM(9));
 
         /* Abort a generator */
         status = val->crypto_function(VAL_CRYPTO_GENERATOR_ABORT, &generator);
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(8));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check2[i].key_handle[SLOT_1]);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
+
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c020/test_data.h b/api-tests/dev_apis/crypto/test_c020/test_data.h
index 95fe77b7..512625dc 100644
--- a/api-tests/dev_apis/crypto/test_c020/test_data.h
+++ b/api-tests/dev_apis/crypto/test_c020/test_data.h
@@ -67,7 +67,7 @@ static test_data check1[] = {
 {0x70, 0x24, 0x55, 0x0C, 0x14, 0x9D, 0xED, 0x29},
  DES_8B_KEY_SIZE, {PSA_KEY_USAGE_DERIVE, PSA_KEY_USAGE_EXPORT},
 {PSA_ALG_HKDF(PSA_ALG_SHA_1), PSA_ALG_CTR},
- 64, 80, PSA_ERROR_INSUFFICIENT_CAPACITY
+ 64, 80, PSA_ERROR_INSUFFICIENT_DATA
 },
 #endif
 #endif
diff --git a/api-tests/dev_apis/crypto/test_c021/test_c021.c b/api-tests/dev_apis/crypto/test_c021/test_c021.c
index 64619d1c..7a3c39ca 100644
--- a/api-tests/dev_apis/crypto/test_c021/test_c021.c
+++ b/api-tests/dev_apis/crypto/test_c021/test_c021.c
@@ -105,6 +105,10 @@ int32_t psa_generator_abort_test(security_t caller)
         /* Abort the generator */
         status = val->crypto_function(VAL_CRYPTO_GENERATOR_ABORT, &generator);
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(11));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c022/test_c022.c b/api-tests/dev_apis/crypto/test_c022/test_c022.c
index 8f8ac601..049e8d1d 100644
--- a/api-tests/dev_apis/crypto/test_c022/test_c022.c
+++ b/api-tests/dev_apis/crypto/test_c022/test_c022.c
@@ -94,18 +94,27 @@ int32_t psa_key_derivation_test(security_t caller)
             /* Abort the generator */
             status = val->crypto_function(VAL_CRYPTO_GENERATOR_ABORT, &generator);
             TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(6));
+
+            /* Destroy the key */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
+
             continue;
         }
 
         /* Retrieve the current capacity of a generator */
         status = val->crypto_function(VAL_CRYPTO_GET_GENERATOR_CAPACITY, &generator, &capacity);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(8));
 
-        TEST_ASSERT_EQUAL(capacity, check1[i].capacity, TEST_CHECKPOINT_NUM(8));
+        TEST_ASSERT_EQUAL(capacity, check1[i].capacity, TEST_CHECKPOINT_NUM(9));
 
         /* Abort the generator */
         status = val->crypto_function(VAL_CRYPTO_GENERATOR_ABORT, &generator);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(11));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -141,7 +150,7 @@ int32_t psa_key_derivation_negative_test(security_t caller)
         val->crypto_function(VAL_CRYPTO_KEY_POLICY_SET_USAGE, &policy, check2[i].usage,
                                                                           check2[i].key_alg);
 
-        val->print(PRINT_TEST, "[Check %d] Test psa_key_derivation with invalid key handle\n",
+        val->print(PRINT_TEST, "[Check %d] Test psa_key_derivation with Invalid key handle\n",
                                                                                  g_test_count++);
         /* Set up a key derivation operation. Using this function to initialize the generate as
          * XOR or PRNG generator initialization is not implemented.
@@ -152,7 +161,7 @@ int32_t psa_key_derivation_negative_test(security_t caller)
                     check2[i].capacity);
         TEST_ASSERT_EQUAL(status, PSA_ERROR_INVALID_HANDLE, TEST_CHECKPOINT_NUM(6));
 
-        val->print(PRINT_TEST, "[Check %d] Test psa_key_derivation with zero as key handle\n",
+        val->print(PRINT_TEST, "[Check %d] Test psa_key_derivation with Zero as key handle\n",
                                                                                  g_test_count++);
         /* Set up a key derivation operation. Using this function to initialize the generate as
          * XOR or PRNG generator initialization is not implemented.
@@ -163,7 +172,7 @@ int32_t psa_key_derivation_negative_test(security_t caller)
                     check2[i].capacity);
         TEST_ASSERT_EQUAL(status, PSA_ERROR_INVALID_HANDLE, TEST_CHECKPOINT_NUM(7));
 
-        val->print(PRINT_TEST, "[Check %d] Test psa_key_derivation with empty key handle\n",
+        val->print(PRINT_TEST, "[Check %d] Test psa_key_derivation with Empty key handle\n",
                                                                                  g_test_count++);
          /* Allocate a key slot for a transient key */
         status = val->crypto_function(VAL_CRYPTO_ALLOCATE_KEY, &empty_key_handle);
@@ -181,7 +190,7 @@ int32_t psa_key_derivation_negative_test(security_t caller)
                     empty_key_handle, check2[i].key_alg, check2[i].salt,
                     check2[i].salt_length, check2[i].label, check2[i].label_length,
                     check2[i].capacity);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_EMPTY_SLOT, TEST_CHECKPOINT_NUM(10));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_DOES_NOT_EXIST, TEST_CHECKPOINT_NUM(10));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c022/test_data.h b/api-tests/dev_apis/crypto/test_c022/test_data.h
index ecd5cded..7dcc94f0 100644
--- a/api-tests/dev_apis/crypto/test_c022/test_data.h
+++ b/api-tests/dev_apis/crypto/test_c022/test_data.h
@@ -104,6 +104,14 @@ static test_data check1[] = {
  PSA_ERROR_NOT_PERMITTED
 },
 #endif
+
+{"Test psa_key_derivation with unsupported key derivation algorithm\n", 14, PSA_KEY_TYPE_DERIVE,
+{0x49, 0x8E, 0xC7, 0x7D, 0x01, 0x95, 0x0D, 0x94, 0x2C, 0x16, 0xA5, 0x3E, 0x99,
+ 0x5F, 0xC9},
+ AES_16B_KEY_SIZE, PSA_KEY_USAGE_DERIVE, PSA_ALG_HKDF(PSA_ALG_CATEGORY_HASH),
+ {0}, 0, {0}, 0, 32,
+ PSA_ERROR_NOT_SUPPORTED
+},
 #endif
 
 #ifdef ARCH_TEST_RSA_PKCS1V15_CRYPT
@@ -116,7 +124,6 @@ static test_data check1[] = {
  PSA_ERROR_INVALID_ARGUMENT
 },
 #endif
-
 };
 
 static test_data check2[] = {
@@ -132,5 +139,4 @@ static test_data check2[] = {
 },
 #endif
 #endif
-
 };
diff --git a/api-tests/dev_apis/crypto/test_c024/test_c024.c b/api-tests/dev_apis/crypto/test_c024/test_c024.c
index a375efee..16b52e66 100644
--- a/api-tests/dev_apis/crypto/test_c024/test_c024.c
+++ b/api-tests/dev_apis/crypto/test_c024/test_c024.c
@@ -90,12 +90,18 @@ int32_t psa_aead_encrypt_test(security_t caller)
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(5));
 
         if (is_buffer_empty(check1[i].nonce, check1[i].nonce_length) == TRUE)
+        {
             nonce = NULL;
+            check1[i].nonce_length = 0;
+        }
         else
             nonce = check1[i].nonce;
 
         if (is_buffer_empty(check1[i].additional_data, check1[i].additional_data_length) == TRUE)
+        {
             additional_data = NULL;
+            check1[i].additional_data_length = 0;
+        }
         else
             additional_data = check1[i].additional_data;
 
@@ -108,16 +114,25 @@ int32_t psa_aead_encrypt_test(security_t caller)
         TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(6));
 
         if (check1[i].expected_status != PSA_SUCCESS)
+        {
+            /* Destroy the key */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
+        }
             continue;
 
         /* Check if the length matches */
         TEST_ASSERT_EQUAL(ciphertext_length,
                     check1[i].expected_ciphertext_length,
-                    TEST_CHECKPOINT_NUM(7));
+                    TEST_CHECKPOINT_NUM(8));
 
         /* Check if the data matches */
         TEST_ASSERT_MEMCMP(ciphertext, check1[i].expected_ciphertext, ciphertext_length,
-                           TEST_CHECKPOINT_NUM(8));
+                           TEST_CHECKPOINT_NUM(9));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -152,16 +167,22 @@ int32_t psa_aead_encrypt_negative_test(security_t caller)
                                                                           check2[i].key_alg);
 
         if (is_buffer_empty(check2[i].nonce, check2[i].nonce_length) == TRUE)
+        {
             nonce = NULL;
+            check2[i].nonce_length = 0;
+        }
         else
             nonce = check2[i].nonce;
 
         if (is_buffer_empty(check2[i].additional_data, check2[i].additional_data_length) == TRUE)
+        {
             additional_data = NULL;
+            check2[i].additional_data_length = 0;
+        }
         else
             additional_data = check2[i].additional_data;
 
-        val->print(PRINT_TEST, "[Check %d] Test psa_aead_encrypt - invalid key handle\n",
+        val->print(PRINT_TEST, "[Check %d] Test psa_aead_encrypt - Invalid key handle\n",
                                                                              g_test_count++);
         /* Process an authenticated encryption operation */
         status = val->crypto_function(VAL_CRYPTO_AEAD_ENCRYPT, check2[i].key_handle,
@@ -171,7 +192,7 @@ int32_t psa_aead_encrypt_negative_test(security_t caller)
                     &ciphertext_length);
         TEST_ASSERT_EQUAL(status, PSA_ERROR_INVALID_HANDLE, TEST_CHECKPOINT_NUM(3));
 
-        val->print(PRINT_TEST, "[Check %d] Test psa_aead_encrypt - zero as key handle\n",
+        val->print(PRINT_TEST, "[Check %d] Test psa_aead_encrypt - Zero as key handle\n",
                                                                              g_test_count++);
         /* Process an authenticated encryption operation */
         status = val->crypto_function(VAL_CRYPTO_AEAD_ENCRYPT, 0,
@@ -181,7 +202,7 @@ int32_t psa_aead_encrypt_negative_test(security_t caller)
                     &ciphertext_length);
         TEST_ASSERT_EQUAL(status, PSA_ERROR_INVALID_HANDLE, TEST_CHECKPOINT_NUM(4));
 
-        val->print(PRINT_TEST, "[Check %d] Test psa_aead_encrypt - empty key handle\n",
+        val->print(PRINT_TEST, "[Check %d] Test psa_aead_encrypt - Empty key handle\n",
                                                                              g_test_count++);
         /* Allocate a key slot for a transient key */
         status = val->crypto_function(VAL_CRYPTO_ALLOCATE_KEY, &check2[i].key_handle);
@@ -198,7 +219,7 @@ int32_t psa_aead_encrypt_negative_test(security_t caller)
                     check2[i].additional_data_length, check2[i].plaintext,
                     check2[i].plaintext_length, ciphertext, check2[i].ciphertext_size,
                     &ciphertext_length);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_EMPTY_SLOT, TEST_CHECKPOINT_NUM(7));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_DOES_NOT_EXIST, TEST_CHECKPOINT_NUM(7));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c024/test_data.h b/api-tests/dev_apis/crypto/test_c024/test_data.h
index 9f52ecb8..f2800024 100644
--- a/api-tests/dev_apis/crypto/test_c024/test_data.h
+++ b/api-tests/dev_apis/crypto/test_c024/test_data.h
@@ -173,7 +173,7 @@ static test_data check2[] = {
 {0x5D, 0xC1, 0x72, 0x23, 0x66, 0x96, 0xFD, 0xFC, 0x93, 0x06, 0x27, 0x52, 0xC7,
  0x0A, 0xCB, 0x36, 0x55, 0x30, 0xC9, 0x48, 0x8F, 0x5E, 0xA5, 0xB9, 0x51, 0xFB,
  0x4E},
- BUFFER_SIZE, 27, PSA_ERROR_EMPTY_SLOT
+ BUFFER_SIZE, 27, PSA_ERROR_DOES_NOT_EXIST
 },
 #endif
 #endif
diff --git a/api-tests/dev_apis/crypto/test_c025/test_c025.c b/api-tests/dev_apis/crypto/test_c025/test_c025.c
index f1bcc5c2..f9dc3fd5 100644
--- a/api-tests/dev_apis/crypto/test_c025/test_c025.c
+++ b/api-tests/dev_apis/crypto/test_c025/test_c025.c
@@ -89,12 +89,18 @@ int32_t psa_aead_decrypt_test(security_t caller)
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(5));
 
         if (is_buffer_empty(check1[i].nonce, check1[i].nonce_length) == TRUE)
+        {
             nonce = NULL;
+            check1[i].nonce_length = 0;
+        }
         else
             nonce = check1[i].nonce;
 
         if (is_buffer_empty(check1[i].additional_data, check1[i].additional_data_length) == TRUE)
+        {
             additional_data = NULL;
+            check1[i].additional_data_length = 0;
+        }
         else
             additional_data = check1[i].additional_data;
 
@@ -106,15 +112,25 @@ int32_t psa_aead_decrypt_test(security_t caller)
         TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(6));
 
         if (check1[i].expected_status != PSA_SUCCESS)
+        {
+            /* Destroy the key */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
+
             continue;
+        }
 
         /* Check if the length matches */
         TEST_ASSERT_EQUAL(plaintext_length, check1[i].expected_plaintext_length,
-                          TEST_CHECKPOINT_NUM(7));
+                          TEST_CHECKPOINT_NUM(8));
 
         /* Check if the data matches */
         TEST_ASSERT_MEMCMP(plaintext, check1[i].expected_plaintext, plaintext_length,
-                           TEST_CHECKPOINT_NUM(8));
+                           TEST_CHECKPOINT_NUM(9));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -149,16 +165,22 @@ int32_t psa_aead_decrypt_negative_test(security_t caller)
                                                                           check2[i].key_alg);
 
         if (is_buffer_empty(check2[i].nonce, check2[i].nonce_length) == TRUE)
+        {
             nonce = NULL;
+            check2[i].nonce_length = 0;
+        }
         else
             nonce = check2[i].nonce;
 
         if (is_buffer_empty(check2[i].additional_data, check2[i].additional_data_length) == TRUE)
+        {
             additional_data = NULL;
+            check2[i].additional_data_length = 0;
+        }
         else
             additional_data = check2[i].additional_data;
 
-        val->print(PRINT_TEST, "[Check %d] Test psa_aead_decrypt - invalid key handle\n",
+        val->print(PRINT_TEST, "[Check %d] Test psa_aead_decrypt - Invalid key handle\n",
                                                                              g_test_count++);
         /* Process an authenticated decryption operation */
         status = val->crypto_function(VAL_CRYPTO_AEAD_DECRYPT, check2[i].key_handle,
@@ -167,7 +189,7 @@ int32_t psa_aead_decrypt_negative_test(security_t caller)
                   plaintext, check2[i].plaintext_size, &plaintext_length);
         TEST_ASSERT_EQUAL(status, PSA_ERROR_INVALID_HANDLE, TEST_CHECKPOINT_NUM(3));
 
-        val->print(PRINT_TEST, "[Check %d] Test psa_aead_decrypt - zero as key handle\n",
+        val->print(PRINT_TEST, "[Check %d] Test psa_aead_decrypt - Zero as key handle\n",
                                                                              g_test_count++);
         /* Process an authenticated decryption operation */
         status = val->crypto_function(VAL_CRYPTO_AEAD_DECRYPT, 0,
@@ -176,7 +198,7 @@ int32_t psa_aead_decrypt_negative_test(security_t caller)
                   plaintext, check2[i].plaintext_size, &plaintext_length);
         TEST_ASSERT_EQUAL(status, PSA_ERROR_INVALID_HANDLE, TEST_CHECKPOINT_NUM(4));
 
-        val->print(PRINT_TEST, "[Check %d] Test psa_aead_decrypt - empty key handle\n",
+        val->print(PRINT_TEST, "[Check %d] Test psa_aead_decrypt - Empty key handle\n",
                                                                              g_test_count++);
         /* Allocate a key slot for a transient key */
         status = val->crypto_function(VAL_CRYPTO_ALLOCATE_KEY, &check2[i].key_handle);
@@ -192,7 +214,7 @@ int32_t psa_aead_decrypt_negative_test(security_t caller)
                   check2[i].key_alg, nonce, check2[i].nonce_length, additional_data,
                   check2[i].additional_data_length, check2[i].ciphertext, check2[i].ciphertext_size,
                   plaintext, check2[i].plaintext_size, &plaintext_length);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_EMPTY_SLOT, TEST_CHECKPOINT_NUM(7));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_DOES_NOT_EXIST, TEST_CHECKPOINT_NUM(7));
      }
 
      return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c025/test_data.h b/api-tests/dev_apis/crypto/test_c025/test_data.h
index 4ad0e17d..44ce513f 100644
--- a/api-tests/dev_apis/crypto/test_c025/test_data.h
+++ b/api-tests/dev_apis/crypto/test_c025/test_data.h
@@ -188,6 +188,23 @@ static test_data check1[] = {
  0xD1, 0xFC, 0xB6, 0x91, 0xF3, 0x40, 0x6C, 0xBF, 0x53, 0x1F, 0x83, 0xA4},
  38, 23, PSA_ERROR_INVALID_SIGNATURE
 },
+
+{"Test psa_aead_decrypt - Invalid tag length 0\n", 11, PSA_KEY_TYPE_AES,
+{0xD7, 0x82, 0x8D, 0x13, 0xB2, 0xB0, 0xBD, 0xC3, 0x25, 0xA7, 0x62, 0x36, 0xDF,
+ 0x93, 0xCC, 0x6B},
+ AES_16B_KEY_SIZE, PSA_KEY_USAGE_DECRYPT, PSA_ALG_AEAD_WITH_TAG_LENGTH(PSA_ALG_CCM, 0),
+{0x48, 0xc0, 0x90, 0x69, 0x30, 0x56, 0x1e, 0x0a, 0xb0, 0xef, 0x4c, 0xd9, 0x72},
+ 13,
+{0x40, 0xa2, 0x7c, 0x1d, 0x1e, 0x23, 0xea, 0x3d, 0xbe, 0x80, 0x56, 0xb2, 0x77,
+ 0x48, 0x61, 0xa4, 0xa2, 0x01, 0xcc, 0xe4, 0x9f, 0x19, 0x99, 0x7d, 0x19, 0x20,
+ 0x6d, 0x8c, 0x8a, 0x34, 0x39, 0x51}, 32,
+{0x45, 0x35, 0xd1, 0x2b, 0x43, 0x77, 0x92, 0x8a, 0x7c, 0x0a, 0x61, 0xc9, 0xf8,
+ 0x25, 0xa4, 0x86, 0x71, 0xea, 0x05, 0x91, 0x07, 0x48, 0xc8, 0xef}, BUFFER_SIZE,
+{0x26, 0xc5, 0x69, 0x61, 0xc0, 0x35, 0xa7, 0xe4, 0x52, 0xcc, 0xe6, 0x1b, 0xc6,
+ 0xee, 0x22, 0x0d, 0x77, 0xb3, 0xf9, 0x4d, 0x18, 0xfd, 0x10, 0xb6, 0xd8, 0x0e,
+ 0x8b, 0xf8, 0x0f, 0x4a, 0x46, 0xca, 0xb0, 0x6d, 0x43, 0x13, 0xf0, 0xdb, 0x9b,
+ 0xe9}, 40, 24, PSA_ERROR_INVALID_ARGUMENT
+},
 #endif
 #endif
 };
diff --git a/api-tests/dev_apis/crypto/test_c026/test_c026.c b/api-tests/dev_apis/crypto/test_c026/test_c026.c
index 9f43a7ab..03d9def5 100644
--- a/api-tests/dev_apis/crypto/test_c026/test_c026.c
+++ b/api-tests/dev_apis/crypto/test_c026/test_c026.c
@@ -79,9 +79,25 @@ int32_t psa_mac_sign_setup_test(security_t caller)
                     check1[i].key_handle, check1[i].key_alg);
         TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(6));
 
-        /* Abort a MAC operation */
+        /* Whether setup succeeded or failed, abort must succeed.
+           Abort a MAC operation
+         */
         status = val->crypto_function(VAL_CRYPTO_MAC_ABORT, &operation);
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
+
+        /* If setup failed, reproduce the failure, so that the caller can
+         * test the resulting state of the operation object.
+         */
+        if (check1[i].expected_status != PSA_SUCCESS)
+        {
+            status = val->crypto_function(VAL_CRYPTO_MAC_SIGN_SETUP, &operation,
+                    check1[i].key_handle, check1[i].key_alg);
+            TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(8));
+        }
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -141,7 +157,7 @@ int32_t psa_mac_sign_setup_negative_test(security_t caller)
         /* Start a multipart MAC calculation operation */
         status = val->crypto_function(VAL_CRYPTO_MAC_SIGN_SETUP, &operation,
                     check2[i].key_handle, check2[i].key_alg);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_EMPTY_SLOT, TEST_CHECKPOINT_NUM(7));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_DOES_NOT_EXIST, TEST_CHECKPOINT_NUM(7));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c027/test_c027.c b/api-tests/dev_apis/crypto/test_c027/test_c027.c
index e761848f..b6e32889 100644
--- a/api-tests/dev_apis/crypto/test_c027/test_c027.c
+++ b/api-tests/dev_apis/crypto/test_c027/test_c027.c
@@ -90,22 +90,31 @@ int32_t psa_mac_update_test(security_t caller)
             /* Abort a MAC operation */
             status = val->crypto_function(VAL_CRYPTO_MAC_ABORT, &operation);
             TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(8));
+
+            /* Destroy the key */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
+
             continue;
         }
 
         /* Finish the calculation of the MAC of a message */
         status = val->crypto_function(VAL_CRYPTO_MAC_SIGN_FINISH, &operation, data,
-                    sizeof(data)/sizeof(data[0]), &length);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
+                    sizeof(data), &length);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
 
         /* Add a message fragment to the same multipart MAC operation*/
         status = val->crypto_function(VAL_CRYPTO_MAC_UPDATE, &operation, check1[i].data,
                     check1[i].data_size);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(10));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(11));
 
         /* Abort a MAC operation */
         status = val->crypto_function(VAL_CRYPTO_MAC_ABORT, &operation);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(11));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(12));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(13));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -113,11 +122,11 @@ int32_t psa_mac_update_test(security_t caller)
 
 int32_t psa_mac_update_invalid_operator_test(security_t caller)
 {
-    psa_mac_operation_t operation;
-    int32_t             status;
+    int32_t             i, status;
+    psa_mac_operation_t operation[] = {psa_mac_operation_init(), PSA_MAC_OPERATION_INIT, {0} };
+    uint32_t            operation_count = sizeof(operation)/sizeof(operation[0]);
 
     memset(data, 0, sizeof(data));
-    memset(&operation, 0, sizeof(operation));
     val->print(PRINT_TEST, "[Check %d] ", g_test_count++);
     val->print(PRINT_TEST, "Test psa_mac_update without mac setup\n", 0);
 
@@ -125,14 +134,18 @@ int32_t psa_mac_update_invalid_operator_test(security_t caller)
     status = val->crypto_function(VAL_CRYPTO_INIT);
     TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(1));
 
-    /* Start a multipart MAC calculation operation */
-    status = val->crypto_function(VAL_CRYPTO_MAC_UPDATE, &operation, data,
-                 sizeof(data)/sizeof(data[0]));
-    TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(2));
+    for (i = 0; i < operation_count; i++)
+    {
+
+        /* Start a multipart MAC calculation for each operation */
+        status = val->crypto_function(VAL_CRYPTO_MAC_UPDATE, &operation[i], data,
+                     sizeof(data)/sizeof(data[0]));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(2));
 
-    /* Abort a MAC operation */
-    status = val->crypto_function(VAL_CRYPTO_MAC_ABORT, &operation);
-    TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(3));
+        /* Abort the MAC operations */
+        status = val->crypto_function(VAL_CRYPTO_MAC_ABORT, &operation[i]);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(3));
+    }
 
     return VAL_STATUS_SUCCESS;
 }
diff --git a/api-tests/dev_apis/crypto/test_c028/test_c028.c b/api-tests/dev_apis/crypto/test_c028/test_c028.c
index 08982786..475feb77 100644
--- a/api-tests/dev_apis/crypto/test_c028/test_c028.c
+++ b/api-tests/dev_apis/crypto/test_c028/test_c028.c
@@ -96,27 +96,37 @@ int32_t psa_mac_sign_finish_test(security_t caller)
             /* Abort a MAC operation */
             status = val->crypto_function(VAL_CRYPTO_MAC_ABORT, &operation);
             TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
+
+            /* Destroy the key */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
+
             continue;
         }
 
         /* Check if the MAC length matches with the expected length */
-        TEST_ASSERT_EQUAL(length, check1[i].expected_length, TEST_CHECKPOINT_NUM(10));
+        TEST_ASSERT_EQUAL(length, check1[i].expected_length, TEST_CHECKPOINT_NUM(11));
 
         /* Check if the MAC data matches with the expected data */
-        TEST_ASSERT_MEMCMP(check1[i].expected_data, data, length, TEST_CHECKPOINT_NUM(11));
+        TEST_ASSERT_MEMCMP(check1[i].expected_data, data, length, TEST_CHECKPOINT_NUM(12));
 
         memset(data, 0, sizeof(data));
 
-        /* Finish the calculation of the MAC of a message using same operation
+        /* Calling mac finish twice in a row.
+         * Finish the calculation of the MAC of a message using same operation
          * should return error
          */
         status = val->crypto_function(VAL_CRYPTO_MAC_SIGN_FINISH, &operation, data,
                     check1[i].mac_size, &length);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(12));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(13));
 
         /* Abort a MAC operation */
         status = val->crypto_function(VAL_CRYPTO_MAC_ABORT, &operation);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(13));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(14));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(15));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c029/test_c029.c b/api-tests/dev_apis/crypto/test_c029/test_c029.c
index d732d920..53be0dbf 100644
--- a/api-tests/dev_apis/crypto/test_c029/test_c029.c
+++ b/api-tests/dev_apis/crypto/test_c029/test_c029.c
@@ -79,9 +79,25 @@ int32_t psa_mac_verify_setup_test(security_t caller)
                     check1[i].key_handle, check1[i].key_alg);
         TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(6));
 
-        /* Abort a MAC operation */
+        /* Whether setup succeeded or failed, abort must succeed.
+         * Abort a MAC operation
+         */
         status = val->crypto_function(VAL_CRYPTO_MAC_ABORT, &operation);
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
+
+        /* If setup failed, reproduce the failure, so that the caller can
+         * test the resulting state of the operation object.
+         */
+        if (check1[i].expected_status != PSA_SUCCESS)
+        {
+            status = val->crypto_function(VAL_CRYPTO_MAC_VERIFY_SETUP, &operation,
+                        check1[i].key_handle, check1[i].key_alg);
+            TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(8));
+        }
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -136,7 +152,7 @@ int32_t psa_mac_verify_setup_negative_test(security_t caller)
         /* Start a multipart MAC verification operation */
         status = val->crypto_function(VAL_CRYPTO_MAC_VERIFY_SETUP, &operation,
                     check2[i].key_handle, check2[i].key_alg);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_EMPTY_SLOT, TEST_CHECKPOINT_NUM(6));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_DOES_NOT_EXIST, TEST_CHECKPOINT_NUM(6));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c030/test_c030.c b/api-tests/dev_apis/crypto/test_c030/test_c030.c
index ad14048c..177b0f0e 100644
--- a/api-tests/dev_apis/crypto/test_c030/test_c030.c
+++ b/api-tests/dev_apis/crypto/test_c030/test_c030.c
@@ -94,19 +94,28 @@ int32_t psa_mac_verify_finish_test(security_t caller)
             /* Abort a MAC operation */
             status = val->crypto_function(VAL_CRYPTO_MAC_ABORT, &operation);
             TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
+
+            /* Destroy the key */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
             continue;
         }
 
-        /* Finish the calculation of the MAC of a message using same operation
+        /* Calling mac finish twice in a row.
+         * Finish the calculation of the MAC of a message using same operation
          * should return error
          */
         status = val->crypto_function(VAL_CRYPTO_MAC_VERIFY_FINISH, &operation,
                     check1[i].expected_mac, check1[i].mac_size);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(10));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(11));
 
         /* Abort a MAC operation */
         status = val->crypto_function(VAL_CRYPTO_MAC_ABORT, &operation);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(11));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(12));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(13));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c031/test_c031.c b/api-tests/dev_apis/crypto/test_c031/test_c031.c
index 9988fae8..040e8a86 100644
--- a/api-tests/dev_apis/crypto/test_c031/test_c031.c
+++ b/api-tests/dev_apis/crypto/test_c031/test_c031.c
@@ -86,6 +86,10 @@ int32_t psa_mac_abort_test(security_t caller)
         /* Multiple Abort a MAC operation should succeed */
         status = val->crypto_function(VAL_CRYPTO_MAC_ABORT, &operation);
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(8));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -103,8 +107,8 @@ int32_t psa_mac_abort_before_finish_test(security_t caller)
     uint8_t             key_data[] = {0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6, 0xab, 0xf7,
                                       0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c};
     uint8_t             input_data[] = {0x48, 0x69, 0x20, 0x54, 0x68, 0x65, 0x72, 0x65};
-    size_t              key_length = sizeof(key_data)/sizeof(key_data[0]);
-    size_t              inputdata_size = sizeof(input_data)/sizeof(input_data[0]);
+    size_t              key_length = sizeof(key_data);
+    size_t              inputdata_size = sizeof(input_data);
     int32_t             status;
 
     memset(data, 0, sizeof(data));
@@ -159,5 +163,9 @@ int32_t psa_mac_abort_before_finish_test(security_t caller)
                 BUFFER_SIZE, &length);
     TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(9));
 
+    /* Destroy the key */
+    status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, key_handle);
+    TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
+
     return VAL_STATUS_SUCCESS;
 }
diff --git a/api-tests/dev_apis/crypto/test_c032/test_c032.c b/api-tests/dev_apis/crypto/test_c032/test_c032.c
index de4dcf78..44e4682b 100644
--- a/api-tests/dev_apis/crypto/test_c032/test_c032.c
+++ b/api-tests/dev_apis/crypto/test_c032/test_c032.c
@@ -111,9 +111,22 @@ int32_t psa_cipher_encrypt_setup_test(security_t caller)
                     check1[i].key_handle, check1[i].key_alg);
         TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(6));
 
-        /* Abort a cipher operation */
+        /* Whether setup succeeded or failed, abort must succeed.
+         * Abort a cipher operation
+         */
         status = val->crypto_function(VAL_CRYPTO_CIPHER_ABORT, &operation);
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
+
+        if (check1[i].expected_status != PSA_SUCCESS)
+        {
+            status = val->crypto_function(VAL_CRYPTO_CIPHER_ENCRYPT_SETUP, &operation,
+                        check1[i].key_handle, check1[i].key_alg);
+            TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(8));
+        }
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -173,7 +186,7 @@ int32_t psa_cipher_encrypt_setup_negative_test(security_t caller)
         /* Set the key for a multipart symmetric encryption operation */
         status = val->crypto_function(VAL_CRYPTO_CIPHER_ENCRYPT_SETUP, &operation,
                     check2[i].key_handle, check2[i].key_alg);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_EMPTY_SLOT, TEST_CHECKPOINT_NUM(7));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_DOES_NOT_EXIST, TEST_CHECKPOINT_NUM(7));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c033/test_c033.c b/api-tests/dev_apis/crypto/test_c033/test_c033.c
index 45d5b15f..c3b60096 100644
--- a/api-tests/dev_apis/crypto/test_c033/test_c033.c
+++ b/api-tests/dev_apis/crypto/test_c033/test_c033.c
@@ -111,9 +111,23 @@ int32_t psa_cipher_decrypt_setup_test(security_t caller)
                     check1[i].key_handle, check1[i].key_alg);
         TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(6));
 
-        /* Abort a cipher operation */
+        /* Whether setup succeeded or failed, abort must succeed.
+         * Abort a cipher operation
+         */
         status = val->crypto_function(VAL_CRYPTO_CIPHER_ABORT, &operation);
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
+
+        if (check1[i].expected_status != PSA_SUCCESS)
+        {
+            status = val->crypto_function(VAL_CRYPTO_CIPHER_DECRYPT_SETUP, &operation,
+                        check1[i].key_handle, check1[i].key_alg);
+            TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(8));
+        }
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
+
     }
 
     return VAL_STATUS_SUCCESS;
@@ -173,7 +187,7 @@ int32_t psa_cipher_decrypt_setup_negative_test(security_t caller)
         /* Set the key for a multipart symmetric decryption operation */
         status = val->crypto_function(VAL_CRYPTO_CIPHER_DECRYPT_SETUP, &operation,
                     check2[i].key_handle, check2[i].key_alg);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_EMPTY_SLOT, TEST_CHECKPOINT_NUM(7));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_DOES_NOT_EXIST, TEST_CHECKPOINT_NUM(7));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c034/test_c034.c b/api-tests/dev_apis/crypto/test_c034/test_c034.c
index 65b680c3..97c5bee7 100644
--- a/api-tests/dev_apis/crypto/test_c034/test_c034.c
+++ b/api-tests/dev_apis/crypto/test_c034/test_c034.c
@@ -92,11 +92,16 @@ int32_t psa_cipher_generate_iv_test(security_t caller)
             /* Abort a cipher operation */
             status = val->crypto_function(VAL_CRYPTO_CIPHER_ABORT, &operation);
             TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(8));
+
+            /* Destroy the key */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
+
             continue;
         }
 
         /* Check that if generated iv length match the expected length */
-        TEST_ASSERT_EQUAL(iv_length, check1[i].expected_iv_length, TEST_CHECKPOINT_NUM(9));
+        TEST_ASSERT_EQUAL(iv_length, check1[i].expected_iv_length, TEST_CHECKPOINT_NUM(10));
 
         iv_sum = 0;
         for (j = 0; j < iv_length; j++)
@@ -105,18 +110,22 @@ int32_t psa_cipher_generate_iv_test(security_t caller)
         }
 
         /* Check that if generated iv are zero */
-        TEST_ASSERT_NOT_EQUAL(iv_sum, 0, TEST_CHECKPOINT_NUM(10));
+        TEST_ASSERT_NOT_EQUAL(iv_sum, 0, TEST_CHECKPOINT_NUM(11));
 
         /* Generating an IV for a symmetric encryption operation using the same operator
          * should fail
          */
         status = val->crypto_function(VAL_CRYPTO_CIPHER_GENERATE_IV, &operation, iv,
                     check1[i].iv_size, &iv_length);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(11));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(12));
 
         /* Abort a cipher operation */
         status = val->crypto_function(VAL_CRYPTO_CIPHER_ABORT, &operation);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(12));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(13));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(14));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c035/test_c035.c b/api-tests/dev_apis/crypto/test_c035/test_c035.c
index 368b699c..010b2756 100644
--- a/api-tests/dev_apis/crypto/test_c035/test_c035.c
+++ b/api-tests/dev_apis/crypto/test_c035/test_c035.c
@@ -85,7 +85,7 @@ int32_t psa_cipher_set_iv_test(security_t caller)
         TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(7));
 
         /* Setting an IV for a symmetric encryption operation using the same operator
-         * should fail
+         * should fail for both previous success and failure cases
          */
         status = val->crypto_function(VAL_CRYPTO_CIPHER_SET_IV, &operation, check1[i].iv,
                     check1[i].iv_size);
@@ -94,6 +94,10 @@ int32_t psa_cipher_set_iv_test(security_t caller)
         /* Abort a cipher operation */
         status = val->crypto_function(VAL_CRYPTO_CIPHER_ABORT, &operation);
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c036/test_c036.c b/api-tests/dev_apis/crypto/test_c036/test_c036.c
index 4a917c48..bf5969a9 100644
--- a/api-tests/dev_apis/crypto/test_c036/test_c036.c
+++ b/api-tests/dev_apis/crypto/test_c036/test_c036.c
@@ -25,10 +25,12 @@
 client_test_t test_c036_crypto_list[] = {
     NULL,
     psa_cipher_update_test,
+    psa_cipher_update_negative_test,
     NULL,
 };
 
 static int                     g_test_count = 1;
+static uint8_t                 input[SIZE_32B];
 static uint8_t                 output[SIZE_32B];
 static psa_cipher_operation_t  operation;
 
@@ -107,25 +109,64 @@ int32_t psa_cipher_update_test(security_t caller)
             /* Abort a cipher operation */
             status = val->crypto_function(VAL_CRYPTO_CIPHER_ABORT, &operation);
             TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
+
+            /* Destroy the key */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(11));
             continue;
         }
 
         /* Check if the output length matches the expected length */
-        TEST_ASSERT_EQUAL(length, check1[i].expected_output_length, TEST_CHECKPOINT_NUM(11));
+        TEST_ASSERT_EQUAL(length, check1[i].expected_output_length, TEST_CHECKPOINT_NUM(12));
 
         /* Check if the output data matches the expected data */
-        TEST_ASSERT_MEMCMP(output, check1[i].expected_output, length, TEST_CHECKPOINT_NUM(12));
+        TEST_ASSERT_MEMCMP(output, check1[i].expected_output, length, TEST_CHECKPOINT_NUM(13));
 
         /* Encrypt or decrypt a message fragment in an invalid cipher operation should fail */
         status = val->crypto_function(VAL_CRYPTO_CIPHER_UPDATE, &invalid_operation,
                     check1[i].input, check1[i].input_length, output, check1[i].output_size,
                     &length);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(13));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(14));
 
         /* Abort a cipher operation */
         status = val->crypto_function(VAL_CRYPTO_CIPHER_ABORT, &operation);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(14));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(15));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(16));
     }
 
     return VAL_STATUS_SUCCESS;
 }
+
+int32_t psa_cipher_update_negative_test(security_t caller)
+{
+    int32_t                 i, status;
+    psa_cipher_operation_t  operations[] = {psa_cipher_operation_init(),
+                                            PSA_CIPHER_OPERATION_INIT, {0} };
+    uint32_t                operation_count = sizeof(operations)/sizeof(operations[0]);
+    size_t                  length;
+
+    memset(output, 0, sizeof(output));
+    val->print(PRINT_TEST, "[Check %d] ", g_test_count++);
+    val->print(PRINT_TEST, "Test psa_cipher_update without cipher setup\n", 0);
+
+    /* Initialize the PSA crypto library*/
+    status = val->crypto_function(VAL_CRYPTO_INIT);
+    TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(1));
+
+    for (i = 0; i < operation_count; i++)
+    {
+        status = val->crypto_function(VAL_CRYPTO_CIPHER_UPDATE, &operations[i], input,
+                 sizeof(input), output, sizeof(output), &length);
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(2));
+
+        /* Abort a cipher operation */
+        status = val->crypto_function(VAL_CRYPTO_CIPHER_ABORT, &operations[i]);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(3));
+    }
+
+    return VAL_STATUS_SUCCESS;
+}
+
diff --git a/api-tests/dev_apis/crypto/test_c036/test_c036.h b/api-tests/dev_apis/crypto/test_c036/test_c036.h
index 045271a0..61fe7e53 100644
--- a/api-tests/dev_apis/crypto/test_c036/test_c036.h
+++ b/api-tests/dev_apis/crypto/test_c036/test_c036.h
@@ -27,4 +27,5 @@ extern psa_api_t *psa;
 extern client_test_t test_c036_crypto_list[];
 
 int32_t psa_cipher_update_test(security_t caller);
+int32_t psa_cipher_update_negative_test(security_t caller);
 #endif /* _TEST_C036_CLIENT_TESTS_H_ */
diff --git a/api-tests/dev_apis/crypto/test_c036/test_data.h b/api-tests/dev_apis/crypto/test_c036/test_data.h
index 17f9bf01..c5e4fbe8 100644
--- a/api-tests/dev_apis/crypto/test_c036/test_data.h
+++ b/api-tests/dev_apis/crypto/test_c036/test_data.h
@@ -101,6 +101,7 @@ static test_data check1[] = {
 #endif
 
 #ifdef ARCH_TEST_CBC_NO_PADDING
+#ifdef ARCH_TEST_DES_1KEY
 {"Test psa_cipher_update - Encrypt - DES CBC (nopad)\n", 6, PSA_KEY_TYPE_DES,
 {0x01, 0x02, 0x04, 0x07, 0x08, 0x0b, 0x0d, 0x0e}, DES_8B_KEY_SIZE,
  PSA_KEY_USAGE_ENCRYPT, PSA_ALG_CBC_NO_PADDING,
@@ -110,6 +111,7 @@ static test_data check1[] = {
 },
 #endif
 #endif
+#endif
 
 #ifdef ARCH_TEST_CBC_NO_PADDING
 #ifdef ARCH_TEST_DES_2KEY
diff --git a/api-tests/dev_apis/crypto/test_c037/test_c037.c b/api-tests/dev_apis/crypto/test_c037/test_c037.c
index fa2ab6c5..8a7fdc88 100644
--- a/api-tests/dev_apis/crypto/test_c037/test_c037.c
+++ b/api-tests/dev_apis/crypto/test_c037/test_c037.c
@@ -114,29 +114,37 @@ int32_t psa_cipher_finish_test(security_t caller)
             /* Abort a cipher operation */
             status = val->crypto_function(VAL_CRYPTO_CIPHER_ABORT, &operation);
             TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(11));
+
+            /* Destroy the key */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(12));
             continue;
         }
 
         /* Check if the output length matches the expected length */
-        TEST_ASSERT_EQUAL(finish_length, check1[i].expected_output_length, TEST_CHECKPOINT_NUM(12));
+        TEST_ASSERT_EQUAL(finish_length, check1[i].expected_output_length, TEST_CHECKPOINT_NUM(13));
 
         /* Check if the output data matches the expected data */
         TEST_ASSERT_MEMCMP(output, check1[i].expected_output,
                           (update_length + finish_length),
-                           TEST_CHECKPOINT_NUM(13));
+                           TEST_CHECKPOINT_NUM(14));
 
         /* Finish encrypting or decrypting a message using an invalid operation should fail */
         status = val->crypto_function(VAL_CRYPTO_CIPHER_FINISH, &invalid_operation, output,
                     check1[i].output_size[SLOT_2], &finish_length);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(14));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(15));
 
         /* Abort a cipher operation */
         status = val->crypto_function(VAL_CRYPTO_CIPHER_ABORT, &operation);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(15));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(16));
 
         /* Abort a cipher operation */
         status = val->crypto_function(VAL_CRYPTO_CIPHER_ABORT, &invalid_operation);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(16));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(17));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(18));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c038/test_c038.c b/api-tests/dev_apis/crypto/test_c038/test_c038.c
index b8d8840c..54b4b7d5 100644
--- a/api-tests/dev_apis/crypto/test_c038/test_c038.c
+++ b/api-tests/dev_apis/crypto/test_c038/test_c038.c
@@ -97,6 +97,10 @@ int32_t psa_cipher_abort_test(security_t caller)
         /* Multiple abort cipher operation should return success*/
         status = val->crypto_function(VAL_CRYPTO_CIPHER_ABORT, &operation);
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -117,9 +121,9 @@ int32_t psa_cipher_abort_before_update_test(security_t caller)
                                        0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a};
     uint8_t                 iv[] = {0x2a, 0x2a, 0x2a, 0x2a, 0x2a, 0x2a, 0x2a, 0x2a, 0x2a, 0x2a,
                                     0x2a, 0x2a, 0x2a, 0x2a, 0x2a, 0x2a};
-    size_t                  key_length = sizeof(key_data)/sizeof(key_data[0]);
-    size_t                  input_length = sizeof(input)/sizeof(input[0]);
-    size_t                  iv_size = sizeof(iv)/sizeof(iv[0]);
+    size_t                  key_length = sizeof(key_data);
+    size_t                  input_length = sizeof(input);
+    size_t                  iv_size = sizeof(iv);
     int32_t                 status;
 
     /* Initialize the PSA crypto library*/
@@ -173,5 +177,9 @@ int32_t psa_cipher_abort_before_update_test(security_t caller)
                 input_length, output, SIZE_32B, &length);
     TEST_ASSERT_EQUAL(status, PSA_ERROR_BAD_STATE, TEST_CHECKPOINT_NUM(9));
 
+    /* Destroy the key */
+    status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, key_handle);
+    TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
+
     return VAL_STATUS_SUCCESS;
 }
diff --git a/api-tests/dev_apis/crypto/test_c039/test_c039.c b/api-tests/dev_apis/crypto/test_c039/test_c039.c
index 0053fdd1..30a833e1 100644
--- a/api-tests/dev_apis/crypto/test_c039/test_c039.c
+++ b/api-tests/dev_apis/crypto/test_c039/test_c039.c
@@ -128,7 +128,10 @@ int32_t psa_asymmetric_encrypt_test(security_t caller)
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(5));
 
         if (is_buffer_empty(check1[i].salt, check1[i].salt_length) == TRUE)
+        {
             salt = NULL;
+            check1[i].salt_length = 0;
+        }
         else
             salt = check1[i].salt;
 
@@ -139,10 +142,16 @@ int32_t psa_asymmetric_encrypt_test(security_t caller)
         TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(6));
 
         if (check1[i].expected_status != PSA_SUCCESS)
+        {
+            /* Destroy the key */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
+
             continue;
+        }
 
         /* Check if the output length matches with the expected output length */
-        TEST_ASSERT_EQUAL(length, check1[i].expected_output_length, TEST_CHECKPOINT_NUM(7));
+        TEST_ASSERT_EQUAL(length, check1[i].expected_output_length, TEST_CHECKPOINT_NUM(8));
 
         /* We test encryption by checking that encrypt-then-decrypt gives back
          * the original plaintext because of the non-optional random
@@ -152,14 +161,18 @@ int32_t psa_asymmetric_encrypt_test(security_t caller)
             status = val->crypto_function(VAL_CRYPTO_ASYMMTERIC_DECRYPT,
                         check1[i].key_handle, check1[i].key_alg, output, length, salt,
                         check1[i].salt_length, output, check1[i].output_size, &length);
-            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(8));
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
 
             /* Check if the output length matches with the input length */
-            TEST_ASSERT_EQUAL(length, check1[i].input_length, TEST_CHECKPOINT_NUM(9));
+            TEST_ASSERT_EQUAL(length, check1[i].input_length, TEST_CHECKPOINT_NUM(10));
 
             /* Check if the output matches with the given input data */
-            TEST_ASSERT_MEMCMP(output, check1[i].input, length, TEST_CHECKPOINT_NUM(10));
+            TEST_ASSERT_MEMCMP(output, check1[i].input, length, TEST_CHECKPOINT_NUM(11));
         }
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(12));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -179,9 +192,6 @@ int32_t psa_asymmetric_encrypt_negative_test(security_t caller)
 
     for (i = 0; i < num_checks; i++)
     {
-        val->print(PRINT_TEST, "[Check %d] Test psa_asymmetric_encrypt - Invalid key handle\n",
-                                                                                 g_test_count++);
-
         /* Initialize a key policy structure to a default that forbids all
          * usage of the key
          */
@@ -223,7 +233,10 @@ int32_t psa_asymmetric_encrypt_negative_test(security_t caller)
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(6));
 
         if (is_buffer_empty(check1[i].salt, check1[i].salt_length) == TRUE)
+        {
             salt = NULL;
+            check1[i].salt_length = 0;
+        }
         else
             salt = check1[i].salt;
 
@@ -231,7 +244,7 @@ int32_t psa_asymmetric_encrypt_negative_test(security_t caller)
         status = val->crypto_function(VAL_CRYPTO_ASYMMTERIC_ENCRYPT, check2[i].key_handle,
                     check2[i].key_alg, check2[i].input, check2[i].input_length, salt,
                     check2[i].salt_length, output, check2[i].output_size, &length);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_EMPTY_SLOT, TEST_CHECKPOINT_NUM(7));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_DOES_NOT_EXIST, TEST_CHECKPOINT_NUM(7));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c039/test_data.h b/api-tests/dev_apis/crypto/test_c039/test_data.h
index 48538253..5bb5109c 100644
--- a/api-tests/dev_apis/crypto/test_c039/test_data.h
+++ b/api-tests/dev_apis/crypto/test_c039/test_data.h
@@ -167,13 +167,13 @@ static test_data check1[] = {
  128, 1024, PSA_SUCCESS
 },
 
-{"Test psa_asymmetric_encrypt - Small output buffer\n", 5, PSA_KEY_TYPE_RSA_PUBLIC_KEY,
-{0}, 162, PSA_KEY_USAGE_ENCRYPT | PSA_KEY_USAGE_DECRYPT, PSA_ALG_RSA_PKCS1V15_CRYPT,
+{"Test psa_asymmetric_encrypt - Small output buffer\n", 5, PSA_KEY_TYPE_RSA_KEYPAIR,
+{0}, 610, PSA_KEY_USAGE_ENCRYPT | PSA_KEY_USAGE_DECRYPT, PSA_ALG_RSA_PKCS1V15_CRYPT,
 {0}, 0,
 {0xba, 0x78, 0x16, 0xbf, 0x8f, 0x01, 0xcf, 0xea, 0x41, 0x41, 0x40, 0xde, 0x5d,
  0xae, 0x22, 0x23, 0xb0, 0x03, 0x61, 0xa3, 0x96, 0x17, 0x7a, 0x9c, 0xb4, 0x10,
- 0xff, 0x61, 0xf2, 0x00, 0x15, 0xad}, 22, 110,
- 128, 1024, PSA_ERROR_INVALID_ARGUMENT
+ 0xff, 0x61, 0xf2, 0x00, 0x15, 0xad}, 22, 120,
+ 128, 1024, PSA_ERROR_BUFFER_TOO_SMALL
 },
 #endif
 
diff --git a/api-tests/dev_apis/crypto/test_c040/test_c040.c b/api-tests/dev_apis/crypto/test_c040/test_c040.c
index 69dc7ef0..760ab197 100644
--- a/api-tests/dev_apis/crypto/test_c040/test_c040.c
+++ b/api-tests/dev_apis/crypto/test_c040/test_c040.c
@@ -128,7 +128,10 @@ int32_t psa_asymmetric_decrypt_test(security_t caller)
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(5));
 
         if (is_buffer_empty(check1[i].salt, check1[i].salt_length) == TRUE)
+        {
             salt = NULL;
+            check1[i].salt_length = 0;
+        }
         else
             salt = check1[i].salt;
 
@@ -139,13 +142,23 @@ int32_t psa_asymmetric_decrypt_test(security_t caller)
         TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(6));
 
         if (check1[i].expected_status != PSA_SUCCESS)
+        {
+            /* Destroy the key */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
+
             continue;
+        }
 
         /* Check if the output length matches with the expected length */
-        TEST_ASSERT_EQUAL(length, check1[i].expected_output_length, TEST_CHECKPOINT_NUM(7));
+        TEST_ASSERT_EQUAL(length, check1[i].expected_output_length, TEST_CHECKPOINT_NUM(8));
 
         /* Check if the output matches with the expected data */
-        TEST_ASSERT_MEMCMP(output, check1[i].expected_output, length, TEST_CHECKPOINT_NUM(8));
+        TEST_ASSERT_MEMCMP(output, check1[i].expected_output, length, TEST_CHECKPOINT_NUM(9));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -165,9 +178,6 @@ int32_t psa_asymmetric_decrypt_negative_test(security_t caller)
 
     for (i = 0; i < num_checks; i++)
     {
-        val->print(PRINT_TEST, "[Check %d] Test psa_asymmetric_decrypt - Invalid key handle\n",
-                                                                                 g_test_count++);
-
         /* Initialize a key policy structure to a default that forbids all
          * usage of the key
          */
@@ -209,7 +219,10 @@ int32_t psa_asymmetric_decrypt_negative_test(security_t caller)
         TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(6));
 
         if (is_buffer_empty(check1[i].salt, check1[i].salt_length) == TRUE)
+        {
             salt = NULL;
+            check1[i].salt_length = 0;
+        }
         else
             salt = check1[i].salt;
 
@@ -217,7 +230,7 @@ int32_t psa_asymmetric_decrypt_negative_test(security_t caller)
         status = val->crypto_function(VAL_CRYPTO_ASYMMTERIC_DECRYPT, check2[i].key_handle,
                     check2[i].key_alg, check2[i].input, check2[i].input_length, salt,
                     check2[i].salt_length, output, check2[i].output_size, &length);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_EMPTY_SLOT, TEST_CHECKPOINT_NUM(7));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_DOES_NOT_EXIST, TEST_CHECKPOINT_NUM(7));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c041/test_c041.c b/api-tests/dev_apis/crypto/test_c041/test_c041.c
index 55106f72..101e16a0 100644
--- a/api-tests/dev_apis/crypto/test_c041/test_c041.c
+++ b/api-tests/dev_apis/crypto/test_c041/test_c041.c
@@ -120,13 +120,23 @@ int32_t psa_asymmetric_sign_test(security_t caller)
         TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(6));
 
         if (check1[i].expected_status != PSA_SUCCESS)
+        {
+            /* Destroy the key */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
+
             continue;
+        }
 
         /* Check if the output length matches with the expected length */
-        TEST_ASSERT_EQUAL(length, check1[i].expected_signature_length, TEST_CHECKPOINT_NUM(7));
+        TEST_ASSERT_EQUAL(length, check1[i].expected_signature_length, TEST_CHECKPOINT_NUM(8));
 
         /* Check if the output matches with the expected data */
-        TEST_ASSERT_MEMCMP(signature, check1[i].expected_signature, length, TEST_CHECKPOINT_NUM(8));
+        TEST_ASSERT_MEMCMP(signature, check1[i].expected_signature, length, TEST_CHECKPOINT_NUM(9));
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -145,8 +155,6 @@ int32_t psa_asymmetric_sign_negative_test(security_t caller)
 
     for (i = 0; i < num_checks; i++)
     {
-        val->print(PRINT_TEST, "[Check %d] Test psa_asymmetric_sign - Invalid key handle\n",
-                                                                                g_test_count++);
         /* Initialize a key policy structure to a default that forbids all
          * usage of the key
          */
@@ -168,7 +176,7 @@ int32_t psa_asymmetric_sign_negative_test(security_t caller)
                     signature, check2[i].signature_size, &length);
         TEST_ASSERT_EQUAL(status, PSA_ERROR_INVALID_HANDLE, TEST_CHECKPOINT_NUM(3));
 
-        val->print(PRINT_TEST, "[Check %d] Test psa_asymmetric_sign - zero as key handle\n",
+        val->print(PRINT_TEST, "[Check %d] Test psa_asymmetric_sign - Zero as key handle\n",
                                                                                 g_test_count++);
         /* Sign a hash or short message with a private key */
         status = val->crypto_function(VAL_CRYPTO_ASYMMTERIC_SIGN, 0,
@@ -191,7 +199,7 @@ int32_t psa_asymmetric_sign_negative_test(security_t caller)
         status = val->crypto_function(VAL_CRYPTO_ASYMMTERIC_SIGN, check2[i].key_handle,
                     check2[i].key_alg, check2[i].input, check2[i].input_length,
                     signature, check2[i].signature_size, &length);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_EMPTY_SLOT, TEST_CHECKPOINT_NUM(7));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_DOES_NOT_EXIST, TEST_CHECKPOINT_NUM(7));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c042/test_c042.c b/api-tests/dev_apis/crypto/test_c042/test_c042.c
index 97f3be99..43ed5ecd 100644
--- a/api-tests/dev_apis/crypto/test_c042/test_c042.c
+++ b/api-tests/dev_apis/crypto/test_c042/test_c042.c
@@ -114,6 +114,10 @@ int32_t psa_asymmetric_verify_test(security_t caller)
                     check1[i].key_alg, check1[i].input, check1[i].input_length,
                     check1[i].signature, check1[i].signature_size);
         TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(6));
+
+        /* Destroy a key and restore the slot to its default state */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -178,7 +182,7 @@ int32_t psa_asymmetric_verify_negative_test(security_t caller)
         status = val->crypto_function(VAL_CRYPTO_ASYMMTERIC_VERIFY, check2[i].key_handle,
                     check2[i].key_alg, check2[i].input, check2[i].input_length,
                     check2[i].signature, check2[i].signature_size);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_EMPTY_SLOT, TEST_CHECKPOINT_NUM(7));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_DOES_NOT_EXIST, TEST_CHECKPOINT_NUM(7));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c043/test_c043.c b/api-tests/dev_apis/crypto/test_c043/test_c043.c
index 2d665746..c61aad40 100644
--- a/api-tests/dev_apis/crypto/test_c043/test_c043.c
+++ b/api-tests/dev_apis/crypto/test_c043/test_c043.c
@@ -86,28 +86,36 @@ int32_t psa_key_agreement_test(security_t caller)
             /* Abort a generator */
             status = val->crypto_function(VAL_CRYPTO_GENERATOR_ABORT, &generator);
             TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
+
+            /* Destroy a key and restore the slot to its default state */
+            status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+            TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(8));
             continue;
         }
 
         /* Retrieve the current capacity of a generator */
         status = val->crypto_function(VAL_CRYPTO_GET_GENERATOR_CAPACITY, &generator, &capacity);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(8));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(9));
 
         /* Check if the generator capacity matches with the expected capacity */
-        TEST_ASSERT_EQUAL(capacity, check1[i].expected_capacity, TEST_CHECKPOINT_NUM(9));
+        TEST_ASSERT_EQUAL(capacity, check1[i].expected_capacity, TEST_CHECKPOINT_NUM(10));
 
         /* Read some data from a generator */
         status = val->crypto_function(VAL_CRYPTO_GENERATOR_READ, &generator, output,
                     check1[i].expected_output_length);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(11));
 
          /* Check if the output matches with the expected data */
         TEST_ASSERT_MEMCMP(output, check1[i].expected_output, check1[i].expected_output_length,
-                        TEST_CHECKPOINT_NUM(11));
+                        TEST_CHECKPOINT_NUM(12));
 
         /* Abort a generator */
         status = val->crypto_function(VAL_CRYPTO_GENERATOR_ABORT, &generator);
-        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(12));
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(13));
+
+        /* Destroy a key and restore the slot to its default state */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(14));
     }
 
     return VAL_STATUS_SUCCESS;
@@ -172,7 +180,7 @@ int32_t psa_key_agreement_negative_test(security_t caller)
         status = val->crypto_function(VAL_CRYPTO_KEY_AGREEMENT, &generator,
                     check2[i].key_handle, check2[i].peer_key, check2[i].peer_key_length,
                     check2[i].key_alg);
-        TEST_ASSERT_EQUAL(status, PSA_ERROR_EMPTY_SLOT, TEST_CHECKPOINT_NUM(7));
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_DOES_NOT_EXIST, TEST_CHECKPOINT_NUM(7));
     }
 
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/dev_apis/crypto/test_c044/source.mk b/api-tests/dev_apis/crypto/test_c044/source.mk
new file mode 100644
index 00000000..3e694cc3
--- /dev/null
+++ b/api-tests/dev_apis/crypto/test_c044/source.mk
@@ -0,0 +1,20 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_c044.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
diff --git a/api-tests/dev_apis/crypto/test_c044/test_c044.c b/api-tests/dev_apis/crypto/test_c044/test_c044.c
new file mode 100644
index 00000000..aa597895
--- /dev/null
+++ b/api-tests/dev_apis/crypto/test_c044/test_c044.c
@@ -0,0 +1,302 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_c044.h"
+#include "test_data.h"
+#include "val_crypto.h"
+
+client_test_t test_c044_crypto_list[] = {
+    NULL,
+    psa_copy_key_test,
+    psa_copy_key_negative_test,
+    NULL,
+};
+
+static int g_test_count = 1;
+static uint8_t data[BUFFER_SIZE];
+
+int32_t psa_copy_key_test(security_t caller)
+{
+    uint32_t         length, i;
+    const uint8_t    *key_data;
+    psa_key_policy_t policy, target_policy, constraint;
+    psa_key_handle_t target_handle = 0;
+    psa_key_type_t   key_type, target_type;
+    psa_algorithm_t  expected_key_alg;
+    psa_key_usage_t  expected_usage;
+    size_t           bits, target_bits;
+    int              num_checks = sizeof(check1)/sizeof(check1[0]);
+    int32_t          status, export_status;
+
+    /* Initialize the PSA crypto library*/
+    status = val->crypto_function(VAL_CRYPTO_INIT);
+    TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(1));
+
+    /* Set the key data buffer to the input base on algorithm */
+    for (i = 0; i < num_checks; i++)
+    {
+        val->print(PRINT_TEST, "[Check %d] ", g_test_count++);
+        val->print(PRINT_TEST, check1[i].test_desc, 0);
+
+        /* Setting up the watchdog timer for each check */
+        status = val->wd_reprogram_timer(WD_CRYPTO_TIMEOUT);
+        TEST_ASSERT_EQUAL(status, VAL_STATUS_SUCCESS, TEST_CHECKPOINT_NUM(2));
+
+        /* Initialize a key policy structure to a default that forbids all
+         * usage of the key
+         */
+        val->crypto_function(VAL_CRYPTO_KEY_POLICY_INIT, &policy);
+
+        if (PSA_KEY_TYPE_IS_RSA(check1[i].key_type))
+        {
+            if (check1[i].key_type == PSA_KEY_TYPE_RSA_KEYPAIR)
+            {
+                if (check1[i].expected_bit_length == BYTES_TO_BITS(384))
+                    key_data = rsa_384_keypair;
+                else if (check1[i].expected_bit_length == BYTES_TO_BITS(256))
+                    key_data = rsa_256_keypair;
+                else
+                    return VAL_STATUS_INVALID;
+            }
+            else
+            {
+                if (check1[i].expected_bit_length == BYTES_TO_BITS(384))
+                    key_data = rsa_384_keydata;
+                else if (check1[i].expected_bit_length == BYTES_TO_BITS(256))
+                    key_data = rsa_256_keydata;
+                else
+                    return VAL_STATUS_INVALID;
+            }
+        }
+        else if (PSA_KEY_TYPE_IS_ECC(check1[i].key_type))
+        {
+            if (PSA_KEY_TYPE_IS_ECC_KEYPAIR(check1[i].key_type))
+                key_data = ec_keypair;
+            else
+                key_data = ec_keydata;
+        }
+        else
+            key_data = check1[i].key_data;
+
+        /* Set the standard fields of a policy structure */
+        val->crypto_function(VAL_CRYPTO_KEY_POLICY_SET_USAGE, &policy, check1[i].usage,
+                                                                          check1[i].key_alg);
+
+        /* Allocate a key slot for a transient key */
+        status = val->crypto_function(VAL_CRYPTO_ALLOCATE_KEY, &check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(3));
+
+        /* Set the usage policy on a key slot */
+        status = val->crypto_function(VAL_CRYPTO_SET_KEY_POLICY, check1[i].key_handle, &policy);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(4));
+
+        /* Import the key data into the key slot */
+        status = val->crypto_function(VAL_CRYPTO_IMPORT_KEY, check1[i].key_handle,
+                                check1[i].key_type, key_data, check1[i].key_length);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(5));
+
+        /* Get basic metadata about a key */
+        status = val->crypto_function(VAL_CRYPTO_GET_KEY_INFORMATION, check1[i].key_handle,
+                                      &key_type, &bits);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(6));
+
+        val->crypto_function(VAL_CRYPTO_KEY_POLICY_INIT, &target_policy);
+
+        /* Allocate a key slot for a transient key */
+        status = val->crypto_function(VAL_CRYPTO_ALLOCATE_KEY, &target_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
+
+        /* Set the standard fields of a policy structure */
+        val->crypto_function(VAL_CRYPTO_KEY_POLICY_SET_USAGE, &target_policy,
+                                        check1[i].target_usage, check1[i].target_key_alg);
+
+        /* Set the usage policy on a key slot */
+        status = val->crypto_function(VAL_CRYPTO_SET_KEY_POLICY, target_handle, &target_policy);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(8));
+
+        val->crypto_function(VAL_CRYPTO_KEY_POLICY_INIT, &target_policy);
+        val->crypto_function(VAL_CRYPTO_KEY_POLICY_INIT, &constraint);
+
+        val->crypto_function(VAL_CRYPTO_KEY_POLICY_SET_USAGE, &constraint,
+                                      check1[i].constraint_usage, check1[i].constraint_key_alg);
+        /* Make a copy of a key */
+        status = val->crypto_function(VAL_CRYPTO_COPY_KEY, check1[i].key_handle, target_handle,
+                                                                                     &constraint);
+        TEST_ASSERT_EQUAL(status, check1[i].expected_status, TEST_CHECKPOINT_NUM(9));
+
+        if (check1[i].expected_status != PSA_SUCCESS)
+            continue;
+
+        /* Destroy the source to ensure that this doesn't affect the target */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check1[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
+
+        /* Get basic metadata about a key */
+        status = val->crypto_function(VAL_CRYPTO_GET_KEY_INFORMATION, target_handle,
+                                                             &target_type, &target_bits);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(11));
+
+        TEST_ASSERT_EQUAL(target_type, key_type, TEST_CHECKPOINT_NUM(12));
+        TEST_ASSERT_EQUAL(target_bits, bits, TEST_CHECKPOINT_NUM(13));
+
+        status = val->crypto_function(VAL_CRYPTO_GET_KEY_POLICY, target_handle, &target_policy);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(14));
+
+        val->crypto_function(VAL_CRYPTO_KEY_POLICY_GET_USAGE, &target_policy, &expected_usage);
+        val->crypto_function(VAL_CRYPTO_KEY_POLICY_GET_ALGORITHM, &target_policy,
+                                                                            &expected_key_alg);
+
+        TEST_ASSERT_EQUAL(expected_usage, check1[i].expected_usage, TEST_CHECKPOINT_NUM(15));
+        TEST_ASSERT_EQUAL(expected_key_alg, check1[i].expected_key_alg, TEST_CHECKPOINT_NUM(16));
+
+        if (expected_usage & PSA_KEY_USAGE_EXPORT)
+            export_status = PSA_SUCCESS;
+        else
+            export_status = PSA_ERROR_NOT_PERMITTED;
+
+        /* Export a key in binary format */
+        status = val->crypto_function(VAL_CRYPTO_EXPORT_KEY, target_handle, data,
+                                      BUFFER_SIZE, &length);
+        TEST_ASSERT_EQUAL(status, export_status, TEST_CHECKPOINT_NUM(17));
+
+        if (export_status != PSA_SUCCESS)
+            continue;
+
+        TEST_ASSERT_EQUAL(length, check1[i].expected_key_length, TEST_CHECKPOINT_NUM(18));
+
+        if (PSA_KEY_TYPE_IS_UNSTRUCTURED(check1[i].key_type))
+        {
+            TEST_ASSERT_MEMCMP(data, check1[i].key_data, length, TEST_CHECKPOINT_NUM(19));
+        }
+        else if (PSA_KEY_TYPE_IS_RSA(check1[i].key_type) || PSA_KEY_TYPE_IS_ECC(check1[i].key_type))
+        {
+            TEST_ASSERT_MEMCMP(data, key_data, length, TEST_CHECKPOINT_NUM(20));
+        }
+        else
+        {
+            return VAL_STATUS_INVALID;
+        }
+
+        /* Destroy the key */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, target_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(21));
+    }
+
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t psa_copy_key_negative_test(security_t caller)
+{
+    int              num_checks = sizeof(check2)/sizeof(check2[0]);
+    int32_t          i, status;
+    psa_key_policy_t policy, target_policy, constraint;
+    psa_key_handle_t target_handle;
+
+    /* Initialize the PSA crypto library*/
+    status = val->crypto_function(VAL_CRYPTO_INIT);
+    TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(1));
+
+    for (i = 0; i < num_checks; i++)
+    {
+        val->print(PRINT_TEST, "[Check %d] Test psa_copy_key with unallocated target key slot\n",
+                                                                                  g_test_count++);
+
+        /* Setting up the watchdog timer for each check */
+        status = val->wd_reprogram_timer(WD_CRYPTO_TIMEOUT);
+        TEST_ASSERT_EQUAL(status, VAL_STATUS_SUCCESS, TEST_CHECKPOINT_NUM(2));
+
+        /* Allocate a key slot for a transient key */
+        status = val->crypto_function(VAL_CRYPTO_ALLOCATE_KEY, &check2[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(3));
+
+        /* Initialize a key policy structure to a default that forbids all
+        * usage of the key
+        */
+        val->crypto_function(VAL_CRYPTO_KEY_POLICY_INIT, &policy);
+        memset(&target_handle, 0xDEADDEAD, sizeof(target_handle));
+
+        /* Set the usage policy on a key slot */
+        val->crypto_function(VAL_CRYPTO_KEY_POLICY_SET_USAGE, &policy, check2[i].usage,
+                                                                                check2[i].key_alg);
+
+        /* Import the key data into the key slot */
+        status = val->crypto_function(VAL_CRYPTO_IMPORT_KEY, check2[i].key_handle,
+                             check2[i].key_type, check2[i].key_data, check2[i].key_length);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(4));
+
+        val->crypto_function(VAL_CRYPTO_KEY_POLICY_INIT, &constraint);
+        val->crypto_function(VAL_CRYPTO_KEY_POLICY_SET_USAGE, &constraint,
+                                      check2[i].constraint_usage, check2[i].constraint_key_alg);
+
+        /* Make a copy of a key with unallocated target handle*/
+        status = val->crypto_function(VAL_CRYPTO_COPY_KEY, check2[i].key_handle, target_handle,
+                                                                                     &constraint);
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_INVALID_HANDLE, TEST_CHECKPOINT_NUM(5));
+
+        val->print(PRINT_TEST, "[Check %d] Test psa_copy_key with target containing key material\n",
+                                                                                 g_test_count++);
+        val->crypto_function(VAL_CRYPTO_KEY_POLICY_INIT, &target_policy);
+
+        /* Allocate a key slot for a target key */
+        status = val->crypto_function(VAL_CRYPTO_ALLOCATE_KEY, &target_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(6));
+
+        /* Set the standard fields of a policy structure */
+        val->crypto_function(VAL_CRYPTO_KEY_POLICY_SET_USAGE, &target_policy,
+                                        check2[i].target_usage, check2[i].target_key_alg);
+
+        /* Set the usage policy on a key slot */
+        status = val->crypto_function(VAL_CRYPTO_SET_KEY_POLICY, target_handle, &target_policy);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(7));
+
+        /* Make a copy of a key */
+        status = val->crypto_function(VAL_CRYPTO_COPY_KEY, check2[i].key_handle, target_handle,
+                                                                                     &constraint);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(8));
+
+        /* Make a copy of a key in the existing target slot*/
+        status = val->crypto_function(VAL_CRYPTO_COPY_KEY, check2[i].key_handle, target_handle,
+                                                                                     &constraint);
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_ALREADY_EXISTS, TEST_CHECKPOINT_NUM(9));
+
+        val->print(PRINT_TEST, "[Check %d] Test psa_copy_key with no source handle\n",
+                                                                                 g_test_count++);
+        /* Destroy the contents of source and target slots */
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, check2[i].key_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(10));
+
+        status = val->crypto_function(VAL_CRYPTO_DESTROY_KEY, target_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(11));
+
+        /* Allocate a key slot for a target key */
+        status = val->crypto_function(VAL_CRYPTO_ALLOCATE_KEY, &target_handle);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(12));
+
+        /* Set the usage policy on a key slot */
+        status = val->crypto_function(VAL_CRYPTO_SET_KEY_POLICY, target_handle, &target_policy);
+        TEST_ASSERT_EQUAL(status, PSA_SUCCESS, TEST_CHECKPOINT_NUM(13));
+
+        /* Make a copy of a key with no source material*/
+        status = val->crypto_function(VAL_CRYPTO_COPY_KEY, check2[i].key_handle, target_handle,
+                                                                                     &constraint);
+        TEST_ASSERT_EQUAL(status, PSA_ERROR_DOES_NOT_EXIST, TEST_CHECKPOINT_NUM(14));
+    }
+
+    return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/dev_apis/crypto/test_c044/test_c044.h b/api-tests/dev_apis/crypto/test_c044/test_c044.h
new file mode 100644
index 00000000..f187d3b0
--- /dev/null
+++ b/api-tests/dev_apis/crypto/test_c044/test_c044.h
@@ -0,0 +1,31 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_C044_CLIENT_TESTS_H_
+#define _TEST_C044_CLIENT_TESTS_H_
+
+#include "val_crypto.h"
+#define test_entry CONCAT(test_entry_, c044)
+#define val CONCAT(val, test_entry)
+#define psa CONCAT(psa, test_entry)
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+extern client_test_t test_c044_crypto_list[];
+
+int32_t psa_copy_key_test(security_t caller);
+int32_t psa_copy_key_negative_test(security_t caller);
+#endif /* _TEST_C044_CLIENT_TESTS_H_ */
diff --git a/api-tests/dev_apis/crypto/test_c044/test_data.h b/api-tests/dev_apis/crypto/test_c044/test_data.h
new file mode 100644
index 00000000..47786db8
--- /dev/null
+++ b/api-tests/dev_apis/crypto/test_c044/test_data.h
@@ -0,0 +1,348 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_crypto.h"
+
+typedef struct {
+    char                    test_desc[75];
+    psa_key_handle_t        key_handle;
+    psa_key_type_t          key_type;
+    uint8_t                 key_data[34];
+    uint32_t                key_length;
+    psa_key_usage_t         usage;
+    psa_key_usage_t         target_usage;
+    psa_key_usage_t         constraint_usage;
+    psa_key_usage_t         expected_usage;
+    psa_algorithm_t         key_alg;
+    psa_algorithm_t         target_key_alg;
+    psa_algorithm_t         constraint_key_alg;
+    psa_algorithm_t         expected_key_alg;
+    uint32_t                expected_bit_length;
+    uint32_t                expected_key_length;
+    psa_status_t            expected_status;
+} test_data;
+
+static const uint8_t rsa_384_keypair[1];
+static const uint8_t rsa_384_keydata[1];
+
+static const uint8_t rsa_256_keypair[] = {
+ 0x30, 0x82, 0x04, 0xA5, 0x02, 0x01, 0x00, 0x02, 0x82, 0x01, 0x01, 0x00, 0xC0,
+ 0x95, 0x08, 0xE1, 0x57, 0x41, 0xF2, 0x71, 0x6D, 0xB7, 0xD2, 0x45, 0x41, 0x27,
+ 0x01, 0x65, 0xC6, 0x45, 0xAE, 0xF2, 0xBC, 0x24, 0x30, 0xB8, 0x95, 0xCE, 0x2F,
+ 0x4E, 0xD6, 0xF6, 0x1C, 0x88, 0xBC, 0x7C, 0x9F, 0xFB, 0xA8, 0x67, 0x7F, 0xFE,
+ 0x5C, 0x9C, 0x51, 0x75, 0xF7, 0x8A, 0xCA, 0x07, 0xE7, 0x35, 0x2F, 0x8F, 0xE1,
+ 0xBD, 0x7B, 0xC0, 0x2F, 0x7C, 0xAB, 0x64, 0xA8, 0x17, 0xFC, 0xCA, 0x5D, 0x7B,
+ 0xBA, 0xE0, 0x21, 0xE5, 0x72, 0x2E, 0x6F, 0x2E, 0x86, 0xD8, 0x95, 0x73, 0xDA,
+ 0xAC, 0x1B, 0x53, 0xB9, 0x5F, 0x3F, 0xD7, 0x19, 0x0D, 0x25, 0x4F, 0xE1, 0x63,
+ 0x63, 0x51, 0x8B, 0x0B, 0x64, 0x3F, 0xAD, 0x43, 0xB8, 0xA5, 0x1C, 0x5C, 0x34,
+ 0xB3, 0xAE, 0x00, 0xA0, 0x63, 0xC5, 0xF6, 0x7F, 0x0B, 0x59, 0x68, 0x78, 0x73,
+ 0xA6, 0x8C, 0x18, 0xA9, 0x02, 0x6D, 0xAF, 0xC3, 0x19, 0x01, 0x2E, 0xB8, 0x10,
+ 0xE3, 0xC6, 0xCC, 0x40, 0xB4, 0x69, 0xA3, 0x46, 0x33, 0x69, 0x87, 0x6E, 0xC4,
+ 0xBB, 0x17, 0xA6, 0xF3, 0xE8, 0xDD, 0xAD, 0x73, 0xBC, 0x7B, 0x2F, 0x21, 0xB5,
+ 0xFD, 0x66, 0x51, 0x0C, 0xBD, 0x54, 0xB3, 0xE1, 0x6D, 0x5F, 0x1C, 0xBC, 0x23,
+ 0x73, 0xD1, 0x09, 0x03, 0x89, 0x14, 0xD2, 0x10, 0xB9, 0x64, 0xC3, 0x2A, 0xD0,
+ 0xA1, 0x96, 0x4A, 0xBC, 0xE1, 0xD4, 0x1A, 0x5B, 0xC7, 0xA0, 0xC0, 0xC1, 0x63,
+ 0x78, 0x0F, 0x44, 0x37, 0x30, 0x32, 0x96, 0x80, 0x32, 0x23, 0x95, 0xA1, 0x77,
+ 0xBA, 0x13, 0xD2, 0x97, 0x73, 0xE2, 0x5D, 0x25, 0xC9, 0x6A, 0x0D, 0xC3, 0x39,
+ 0x60, 0xA4, 0xB4, 0xB0, 0x69, 0x42, 0x42, 0x09, 0xE9, 0xD8, 0x08, 0xBC, 0x33,
+ 0x20, 0xB3, 0x58, 0x22, 0xA7, 0xAA, 0xEB, 0xC4, 0xE1, 0xE6, 0x61, 0x83, 0xC5,
+ 0xD2, 0x96, 0xDF, 0xD9, 0xD0, 0x4F, 0xAD, 0xD7, 0x02, 0x03, 0x01, 0x00, 0x01,
+ 0x02, 0x82, 0x01, 0x01, 0x00, 0x9A, 0xD0, 0x34, 0x0F, 0x52, 0x62, 0x05, 0x50,
+ 0x01, 0xEF, 0x9F, 0xED, 0x64, 0x6E, 0xC2, 0xC4, 0xDA, 0x1A, 0xF2, 0x84, 0xD7,
+ 0x92, 0x10, 0x48, 0x92, 0xC4, 0xE9, 0x6A, 0xEB, 0x8B, 0x75, 0x6C, 0xC6, 0x79,
+ 0x38, 0xF2, 0xC9, 0x72, 0x4A, 0x86, 0x64, 0x54, 0x95, 0x77, 0xCB, 0xC3, 0x9A,
+ 0x9D, 0xB7, 0xD4, 0x1D, 0xA4, 0x00, 0xC8, 0x9E, 0x4E, 0xE4, 0xDD, 0xC7, 0xBA,
+ 0x67, 0x16, 0xC1, 0x74, 0xBC, 0xA9, 0xD6, 0x94, 0x8F, 0x2B, 0x30, 0x1A, 0xFB,
+ 0xED, 0xDF, 0x21, 0x05, 0x23, 0xD9, 0x4A, 0x39, 0xBD, 0x98, 0x6B, 0x65, 0x9A,
+ 0xB8, 0xDC, 0xC4, 0x7D, 0xEE, 0xA6, 0x43, 0x15, 0x2E, 0x3D, 0xBE, 0x1D, 0x22,
+ 0x60, 0x2A, 0x73, 0x30, 0xD5, 0x3E, 0xD8, 0xA2, 0xAC, 0x86, 0x43, 0x2E, 0xC4,
+ 0xF5, 0x64, 0x5E, 0x3F, 0x89, 0x75, 0x0F, 0x11, 0xD8, 0x51, 0x25, 0x4E, 0x9F,
+ 0xD8, 0xAA, 0xA3, 0xCE, 0x60, 0xB3, 0xE2, 0x8A, 0xD9, 0x7E, 0x1B, 0xF0, 0x64,
+ 0xCA, 0x9A, 0x5B, 0x05, 0x0B, 0x5B, 0xAA, 0xCB, 0xE5, 0xE3, 0x3F, 0x6E, 0x32,
+ 0x22, 0x05, 0xF3, 0xD0, 0xFA, 0xEF, 0x74, 0x52, 0x81, 0xE2, 0x5F, 0x74, 0xD3,
+ 0xBD, 0xFF, 0x31, 0x83, 0x45, 0x75, 0xFA, 0x63, 0x7A, 0x97, 0x2E, 0xD6, 0xB6,
+ 0x19, 0xC6, 0x92, 0x26, 0xE4, 0x28, 0x06, 0x50, 0x50, 0x0E, 0x78, 0x2E, 0xA9,
+ 0x78, 0x0D, 0x14, 0x97, 0xB4, 0x12, 0xD8, 0x31, 0x40, 0xAB, 0xA1, 0x01, 0x41,
+ 0xC2, 0x30, 0xF8, 0x07, 0x5F, 0x16, 0xE4, 0x61, 0x77, 0xD2, 0x60, 0xF2, 0x9F,
+ 0x8D, 0xE8, 0xF4, 0xBA, 0xEB, 0x63, 0xDE, 0x2A, 0x97, 0x81, 0xEF, 0x4C, 0x6C,
+ 0xE6, 0x55, 0x34, 0x51, 0x2B, 0x28, 0x34, 0xF4, 0x53, 0x1C, 0xC4, 0x58, 0x0A,
+ 0x3F, 0xBB, 0xAF, 0xB5, 0xF7, 0x4A, 0x85, 0x43, 0x2D, 0x3C, 0xF1, 0x58, 0x58,
+ 0x81, 0x02, 0x81, 0x81, 0x00, 0xF2, 0x2C, 0x54, 0x76, 0x39, 0x23, 0x63, 0xC9,
+ 0x10, 0x32, 0xB7, 0x93, 0xAD, 0xAF, 0xBE, 0x19, 0x75, 0x96, 0x81, 0x64, 0xE6,
+ 0xB5, 0xB8, 0x89, 0x42, 0x41, 0xD1, 0x6D, 0xD0, 0x1C, 0x1B, 0xF8, 0x1B, 0xAC,
+ 0x69, 0xCB, 0x36, 0x3C, 0x64, 0x7D, 0xDC, 0xF4, 0x19, 0xB8, 0xC3, 0x60, 0xB1,
+ 0x57, 0x48, 0x5F, 0x52, 0x4F, 0x59, 0x3A, 0x55, 0x7F, 0x32, 0xC0, 0x19, 0x43,
+ 0x50, 0x3F, 0xAE, 0xCE, 0x6F, 0x17, 0xF3, 0x0E, 0x9F, 0x40, 0xCA, 0x4E, 0xAD,
+ 0x15, 0x3B, 0xC9, 0x79, 0xE9, 0xC0, 0x59, 0x38, 0x73, 0x70, 0x9C, 0x0A, 0x7C,
+ 0xC9, 0x3A, 0x48, 0x32, 0xA7, 0xD8, 0x49, 0x75, 0x0A, 0x85, 0xC2, 0xC2, 0xFD,
+ 0x15, 0x73, 0xDA, 0x99, 0x09, 0x2A, 0x69, 0x9A, 0x9F, 0x0A, 0x71, 0xBF, 0xB0,
+ 0x04, 0xA6, 0x8C, 0x7A, 0x5A, 0x6F, 0x48, 0x5A, 0x54, 0x3B, 0xC6, 0xB1, 0x53,
+ 0x17, 0xDF, 0xE7, 0x02, 0x81, 0x81, 0x00, 0xCB, 0x93, 0xDE, 0x77, 0x15, 0x5D,
+ 0xB7, 0x5C, 0x5C, 0x7C, 0xD8, 0x90, 0xA9, 0x98, 0x2D, 0xD6, 0x69, 0x0E, 0x63,
+ 0xB3, 0xA3, 0xDC, 0xA6, 0xCC, 0x8B, 0x6A, 0xA4, 0xA2, 0x12, 0x8C, 0x8E, 0x7B,
+ 0x48, 0x2C, 0xB2, 0x4B, 0x37, 0xDC, 0x06, 0x18, 0x7D, 0xEA, 0xFE, 0x76, 0xA1,
+ 0xD4, 0xA1, 0xE9, 0x3F, 0x0D, 0xCD, 0x1B, 0x5F, 0xAF, 0x5F, 0x9E, 0x96, 0x5B,
+ 0x5B, 0x0F, 0xA1, 0x7C, 0xAF, 0xB3, 0x9B, 0x90, 0xDB, 0x57, 0x73, 0x3A, 0xED,
+ 0xB0, 0x23, 0x44, 0xAE, 0x41, 0x4F, 0x1F, 0x07, 0x42, 0x13, 0x23, 0x4C, 0xCB,
+ 0xFA, 0xF4, 0x14, 0xA4, 0xD5, 0xF7, 0x9E, 0x36, 0x7C, 0x5B, 0x9F, 0xA8, 0x3C,
+ 0xC1, 0x85, 0x5F, 0x74, 0xD2, 0x39, 0x2D, 0xFF, 0xD0, 0x84, 0xDF, 0xFB, 0xB3,
+ 0x20, 0x7A, 0x2E, 0x9B, 0x17, 0xAE, 0xE6, 0xBA, 0x0B, 0xAE, 0x5F, 0x53, 0xA4,
+ 0x52, 0xED, 0x1B, 0xC4, 0x91, 0x02, 0x81, 0x81, 0x00, 0xEC, 0x98, 0xDA, 0xBB,
+ 0xD5, 0xFE, 0xF9, 0x52, 0x4A, 0x7D, 0x02, 0x55, 0x49, 0x6F, 0x55, 0x6E, 0x52,
+ 0x2F, 0x84, 0xA3, 0x2B, 0xB3, 0x86, 0x62, 0xB3, 0x54, 0xD2, 0x63, 0x52, 0xDA,
+ 0xE3, 0x88, 0x76, 0xA0, 0xEF, 0x8B, 0x15, 0xA5, 0xD3, 0x18, 0x14, 0x72, 0x77,
+ 0x5E, 0xC7, 0xA3, 0x04, 0x1F, 0x9E, 0x19, 0x62, 0xB5, 0x1B, 0x1B, 0x9E, 0xC3,
+ 0xF2, 0xB5, 0x32, 0xF9, 0x4C, 0xC1, 0xAA, 0xEB, 0x0C, 0x26, 0x7D, 0xD4, 0x5F,
+ 0x4A, 0x51, 0x5C, 0xA4, 0x45, 0x06, 0x70, 0x44, 0xA7, 0x56, 0xC0, 0xD4, 0x22,
+ 0x14, 0x76, 0x9E, 0xD8, 0x63, 0x50, 0x89, 0x90, 0xD3, 0xE2, 0xBF, 0x81, 0x95,
+ 0x92, 0x31, 0x41, 0x87, 0x39, 0x1A, 0x43, 0x0B, 0x18, 0xA5, 0x53, 0x1F, 0x39,
+ 0x1A, 0x5F, 0x1F, 0x43, 0xBC, 0x87, 0x6A, 0xDF, 0x6E, 0xD3, 0x22, 0x00, 0xFE,
+ 0x22, 0x98, 0x70, 0x4E, 0x1A, 0x19, 0x29, 0x02, 0x81, 0x81, 0x00, 0x8A, 0x41,
+ 0x56, 0x28, 0x51, 0x9E, 0x5F, 0xD4, 0x9E, 0x0B, 0x3B, 0x98, 0xA3, 0x54, 0xF2,
+ 0x6C, 0x56, 0xD4, 0xAA, 0xE9, 0x69, 0x33, 0x85, 0x24, 0x0C, 0xDA, 0xD4, 0x0C,
+ 0x2D, 0xC4, 0xBF, 0x4F, 0x02, 0x69, 0x38, 0x7C, 0xD4, 0xE6, 0xDC, 0x4C, 0xED,
+ 0xD7, 0x16, 0x11, 0xC3, 0x3E, 0x00, 0xE7, 0xC3, 0x26, 0xC0, 0x51, 0x02, 0xDE,
+ 0xBB, 0x75, 0x9C, 0x6F, 0x56, 0x9C, 0x7A, 0xF3, 0x8E, 0xEF, 0xCF, 0x8A, 0xC5,
+ 0x2B, 0xD2, 0xDA, 0x06, 0x6A, 0x44, 0xC9, 0x73, 0xFE, 0x6E, 0x99, 0x87, 0xF8,
+ 0x5B, 0xBE, 0xF1, 0x7C, 0xE6, 0x65, 0xB5, 0x4F, 0x6C, 0xF0, 0xC9, 0xC5, 0xFF,
+ 0x16, 0xCA, 0x8B, 0x1B, 0x17, 0xE2, 0x58, 0x3D, 0xA2, 0x37, 0xAB, 0x01, 0xBC,
+ 0xBF, 0x40, 0xCE, 0x53, 0x8C, 0x8E, 0xED, 0xEF, 0xEE, 0x59, 0x9D, 0xE0, 0x63,
+ 0xE6, 0x7C, 0x5E, 0xF5, 0x8E, 0x4B, 0xF1, 0x3B, 0xC1, 0x02, 0x81, 0x80, 0x4D,
+ 0x45, 0xF9, 0x40, 0x8C, 0xC5, 0x5B, 0xF4, 0x2A, 0x1A, 0x8A, 0xB4, 0xF2, 0x1C,
+ 0xAC, 0x6B, 0xE9, 0x0C, 0x56, 0x36, 0xB7, 0x4E, 0x72, 0x96, 0xD5, 0xE5, 0x8A,
+ 0xD2, 0xE2, 0xFF, 0xF1, 0xF1, 0x18, 0x13, 0x3D, 0x86, 0x09, 0xB8, 0xD8, 0x76,
+ 0xA7, 0xC9, 0x1C, 0x71, 0x52, 0x94, 0x30, 0x43, 0xE0, 0xF1, 0x78, 0x74, 0xFD,
+ 0x61, 0x1B, 0x4C, 0x09, 0xCC, 0xE6, 0x68, 0x2A, 0x71, 0xAD, 0x1C, 0xDF, 0x43,
+ 0xBC, 0x56, 0xDB, 0xA5, 0xA4, 0xBE, 0x35, 0x70, 0xA4, 0x5E, 0xCF, 0x4F, 0xFC,
+ 0x00, 0x55, 0x99, 0x3A, 0x3D, 0x23, 0xCF, 0x67, 0x5A, 0xF5, 0x22, 0xF8, 0xB5,
+ 0x29, 0xD0, 0x44, 0x11, 0xEB, 0x35, 0x2E, 0x46, 0xBE, 0xFD, 0x8E, 0x18, 0xB2,
+ 0x5F, 0xA8, 0xBF, 0x19, 0x32, 0xA1, 0xF5, 0xDC, 0x03, 0xE6, 0x7C, 0x9A, 0x1F,
+ 0x0C, 0x7C, 0xA9, 0xB0, 0x0E, 0x21, 0x37, 0x3B, 0xF1, 0xB0};
+
+static const uint8_t rsa_256_keydata[] = {
+ 0x30, 0x82, 0x01, 0x0A,
+ 0x02, 0x82, 0x01, 0x01, 0x00, 0xDB, 0x1C, 0x7F, 0x2E, 0x0B, 0xCD, 0xBF, 0xCE, 0xD1,
+ 0x75, 0x10, 0xA0, 0xA2, 0xB8, 0xCE, 0x7D, 0xAA, 0xE2, 0x05, 0xE0, 0x7A, 0xD8, 0x44,
+ 0x63, 0x8F, 0xB5, 0xBD, 0xC0, 0xB0, 0x19, 0xB9, 0x37, 0xB8, 0x19, 0x4A, 0x0E, 0xF1,
+ 0x5D, 0x74, 0x80, 0x67, 0x46, 0x87, 0x06, 0xDE, 0x5B, 0x7F, 0x06, 0x03, 0xBD, 0xC1,
+ 0x8D, 0x5E, 0x07, 0x15, 0xD4, 0x5B, 0xF4, 0xDC, 0xE5, 0xCF, 0x3D, 0xF9, 0xC1, 0x11,
+ 0x2C, 0xAE, 0x6A, 0xB9, 0x8A, 0xBD, 0x1D, 0x67, 0x66, 0x17, 0xEA, 0x4E, 0xBD, 0xDB,
+ 0x15, 0x9A, 0x82, 0x87, 0xE4, 0xF0, 0x78, 0xC3, 0xA3, 0x85, 0x87, 0xB0, 0xFD, 0x9F,
+ 0xA9, 0x99, 0x5F, 0xE3, 0x33, 0xEC, 0xCC, 0xEA, 0x0B, 0xB5, 0x61, 0x5E, 0xF1, 0x49,
+ 0x7E, 0x3F, 0xA3, 0x2D, 0xEA, 0x01, 0x0C, 0xCC, 0x42, 0x9A, 0x76, 0x9B, 0xC4, 0xD0,
+ 0x37, 0xD3, 0xB1, 0x17, 0x01, 0x61, 0x01, 0x16, 0x59, 0x7E, 0x1C, 0x17, 0xC3, 0x53,
+ 0xFD, 0xD1, 0x72, 0xCB, 0x4C, 0x60, 0x15, 0xDA, 0x7D, 0xE2, 0xEA, 0xAD, 0x50, 0xEF,
+ 0x8E, 0xE2, 0x8B, 0xD4, 0x6A, 0x77, 0x55, 0xD6, 0x70, 0xD9, 0x6B, 0xBB, 0xF1, 0xEE,
+ 0x39, 0x04, 0x38, 0xA3, 0xBD, 0xE2, 0xD1, 0xE0, 0x66, 0x6B, 0xE2, 0x9C, 0x47, 0x99,
+ 0xE9, 0x28, 0xE6, 0xB6, 0xFC, 0x2E, 0xCA, 0x67, 0x43, 0x84, 0xE8, 0xD5, 0x83, 0xD6,
+ 0x9D, 0x98, 0x6B, 0x01, 0x3E, 0x81, 0xDC, 0x3C, 0x7A, 0xCA, 0xF9, 0xF3, 0x9C, 0xF7,
+ 0xD6, 0x28, 0x1B, 0x27, 0x78, 0x7C, 0xC3, 0xD0, 0xD5, 0x63, 0xA7, 0x81, 0x34, 0x89,
+ 0xAD, 0x25, 0x6A, 0xBD, 0xF2, 0xEA, 0xED, 0xFA, 0x57, 0xFC, 0xE5, 0x34, 0xC6, 0xC1,
+ 0x0F, 0x71, 0x2D, 0xD2, 0x08, 0x10, 0x1B, 0xAD, 0x44, 0x41, 0xE0, 0xFE, 0x79, 0xA0,
+ 0x63, 0x93, 0x8A, 0xB1, 0x5D, 0xE9, 0xB0, 0xEE, 0x6F, 0x02, 0x03, 0x01, 0x00, 0x01};
+
+static const uint8_t ec_keydata[] = {
+ 0x04, 0xde, 0xa5, 0xe4, 0x5d, 0x0e, 0xa3, 0x7f, 0xc5, 0x66, 0x23, 0x2a, 0x50, 0x8f,
+ 0x4a, 0xd2, 0x0e, 0xa1, 0x3d, 0x47, 0xe4, 0xbf, 0x5f, 0xa4, 0xd5, 0x4a, 0x57, 0xa0,
+ 0xba, 0x01, 0x20, 0x42, 0x08, 0x70, 0x97, 0x49, 0x6e, 0xfc, 0x58, 0x3f, 0xed, 0x8b,
+ 0x24, 0xa5, 0xb9, 0xbe, 0x9a, 0x51, 0xde, 0x06, 0x3f, 0x5a, 0x00, 0xa8, 0xb6, 0x98,
+ 0xa1, 0x6f, 0xd7, 0xf2, 0x9b, 0x54, 0x85, 0xf3, 0x20};
+
+static const uint8_t ec_keypair[] = {
+ 0x68, 0x49, 0xf9, 0x7d, 0x10, 0x66, 0xf6, 0x99, 0x77, 0x59, 0x63, 0x7c, 0x7e, 0x38,
+ 0x99, 0x46, 0x4c, 0xee, 0x3e, 0xc7, 0xac, 0x97, 0x06, 0x53, 0xa0, 0xbe, 0x07, 0x42};
+
+static test_data check1[] = {
+#ifdef ARCH_TEST_CIPER_MODE_CTR
+#ifdef ARCH_TEST_AES_128
+{"Test psa_copy_key 16 Byte AES\n", 1, PSA_KEY_TYPE_AES,
+{0x49, 0x8E, 0xC7, 0x7D, 0x01, 0x95, 0x0D, 0x94, 0x2C, 0x16, 0xA5, 0x3E, 0x99,
+ 0x5F, 0xC9, 0x77},
+ AES_16B_KEY_SIZE,
+ PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT,
+ PSA_ALG_CTR, PSA_ALG_CTR, PSA_ALG_CTR, PSA_ALG_CTR,
+ BYTES_TO_BITS(AES_16B_KEY_SIZE), AES_16B_KEY_SIZE, PSA_SUCCESS
+},
+#endif
+
+#ifdef ARCH_TEST_AES_192
+{"Test psa_copy_key 24 Byte AES\n", 2, PSA_KEY_TYPE_AES,
+{0x24, 0x13, 0x61, 0x47, 0x61, 0xB8, 0xC8, 0xF0, 0xDF, 0xAB, 0x5A, 0x0E, 0x87,
+ 0x40, 0xAC, 0xA3, 0x90, 0x77, 0x83, 0x52, 0x31, 0x74, 0xF9, 0x05},
+ AES_24B_KEY_SIZE,
+ PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_ENCRYPT, PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_ENCRYPT,
+ PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_ENCRYPT, PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_ENCRYPT,
+ PSA_ALG_CTR, PSA_ALG_CTR, PSA_ALG_CTR, PSA_ALG_CTR,
+ BYTES_TO_BITS(AES_24B_KEY_SIZE), AES_24B_KEY_SIZE, PSA_SUCCESS
+},
+#endif
+
+#ifdef ARCH_TEST_AES_256
+{"Test psa_copy_key 32 Byte AES\n", 3, PSA_KEY_TYPE_AES,
+{0xEA, 0xD5, 0xE6, 0xC8, 0x51, 0xF9, 0xEC, 0xBB, 0x9B, 0x57, 0x7C, 0xED, 0xD2,
+ 0x4B, 0x82, 0x84, 0x9F, 0x9F, 0xE6, 0x73, 0x21, 0x3D, 0x1A, 0x05, 0xC9, 0xED,
+ 0xDF, 0x25, 0x17, 0x68, 0x86, 0xAE},
+ AES_32B_KEY_SIZE,
+ PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_DECRYPT, PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_ENCRYPT,
+ PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT,
+ PSA_ALG_CTR, PSA_ALG_CTR, PSA_ALG_CTR, PSA_ALG_CTR,
+ BYTES_TO_BITS(AES_32B_KEY_SIZE), AES_32B_KEY_SIZE, PSA_SUCCESS
+},
+#endif
+#endif
+
+#ifdef ARCH_TEST_RSA_PKCS1V15_SIGN_RAW
+#ifdef ARCH_TEST_RSA_2048
+{"Test psa_copy_key 2048 RSA public key\n", 4, PSA_KEY_TYPE_RSA_PUBLIC_KEY,
+ {0},
+ 270,
+ PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_SIGN, PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_SIGN,
+ PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_ENCRYPT, PSA_KEY_USAGE_EXPORT,
+ PSA_ALG_RSA_PKCS1V15_SIGN_RAW, PSA_ALG_RSA_PKCS1V15_SIGN_RAW,
+ PSA_ALG_RSA_PKCS1V15_SIGN_RAW, PSA_ALG_RSA_PKCS1V15_SIGN_RAW,
+ 2048, 270, PSA_SUCCESS
+},
+
+{"Test psa_copy_key with RSA 2048 keypair\n", 5, PSA_KEY_TYPE_RSA_KEYPAIR,
+ {0},
+ 1193,
+ PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT,
+ PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_VERIFY, PSA_KEY_USAGE_EXPORT,
+ PSA_ALG_RSA_PKCS1V15_SIGN_RAW, PSA_ALG_RSA_PKCS1V15_SIGN_RAW,
+ PSA_ALG_RSA_PKCS1V15_SIGN_RAW, PSA_ALG_RSA_PKCS1V15_SIGN_RAW,
+ 2048, 1193, PSA_SUCCESS
+},
+
+{"Test psa_copy_key with Incompatible target policy(source and target)\n",
+ 12, PSA_KEY_TYPE_RSA_KEYPAIR,
+ {0},
+ 1193,
+ PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT,
+ PSA_ALG_RSA_PKCS1V15_SIGN(PSA_ALG_ANY_HASH), PSA_ALG_RSA_PSS(PSA_ALG_ANY_HASH),
+ -1, -1,
+ 2048, 1193, PSA_ERROR_INVALID_ARGUMENT
+},
+
+{"Test psa_copy_key with Incompatible constraint\n", 6, PSA_KEY_TYPE_RSA_KEYPAIR,
+ {0},
+ 1193,
+ PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT,
+ PSA_ALG_RSA_PKCS1V15_SIGN(PSA_ALG_ANY_HASH), PSA_ALG_RSA_PKCS1V15_SIGN(PSA_ALG_ANY_HASH),
+ PSA_ALG_RSA_PSS(PSA_ALG_ANY_HASH), -1,
+ 2048, 1193, PSA_ERROR_INVALID_ARGUMENT
+},
+
+{"Test psa_copy_key with unexport source key usage\n", 7, PSA_KEY_TYPE_RSA_KEYPAIR,
+ {0},
+ 1193,
+ PSA_KEY_USAGE_SIGN, PSA_KEY_USAGE_EXPORT,
+ PSA_KEY_USAGE_EXPORT, 0,
+ PSA_ALG_RSA_PKCS1V15_SIGN_RAW, PSA_ALG_RSA_PKCS1V15_SIGN_RAW,
+ PSA_ALG_RSA_PKCS1V15_SIGN_RAW, PSA_ALG_RSA_PKCS1V15_SIGN_RAW,
+ 2048, 1193, PSA_SUCCESS
+},
+
+#endif
+#endif
+
+#ifdef ARCH_TEST_CIPER_MODE_CTR
+#ifdef ARCH_TEST_DES_1KEY
+{"Test psa_copy_key with DES 64 bit key\n", 8, PSA_KEY_TYPE_DES,
+ {0x70, 0x24, 0x55, 0x0C, 0x14, 0x9D, 0xED, 0x29},
+ DES_8B_KEY_SIZE,
+ PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT,
+ PSA_ALG_CTR, PSA_ALG_CTR, PSA_ALG_CTR, PSA_ALG_CTR,
+ BYTES_TO_BITS(DES_8B_KEY_SIZE), DES_8B_KEY_SIZE, PSA_SUCCESS
+},
+#endif
+
+#ifdef ARCH_TEST_DES_2KEY
+{"Test psa_copy_key with Triple DES 2-Key\n", 9, PSA_KEY_TYPE_DES,
+{0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+ 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF},
+ DES3_2KEY_SIZE,
+ PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT,
+ PSA_ALG_CTR, PSA_ALG_CTR, PSA_ALG_CTR, PSA_ALG_CTR,
+ BYTES_TO_BITS(DES3_2KEY_SIZE), DES3_2KEY_SIZE, PSA_SUCCESS
+},
+#endif
+
+#ifdef ARCH_TEST_DES_3KEY
+{"Test psa_copy_key with Triple DES 3-Key\n", 10, PSA_KEY_TYPE_DES,
+{0x01, 0x23, 0x45, 0x67, 0x89, 0xAB, 0xCD, 0xEF,
+ 0xF1, 0xE0, 0xD3, 0xC2, 0xB5, 0xA4, 0x97, 0x86,
+ 0xFE, 0xDC, 0xBA, 0x98, 0x76, 0x54, 0x32, 0x10},
+ DES3_3KEY_SIZE,
+ PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT,
+ PSA_ALG_CTR, PSA_ALG_CTR, PSA_ALG_CTR, PSA_ALG_CTR,
+ BYTES_TO_BITS(DES3_3KEY_SIZE), DES3_3KEY_SIZE, PSA_SUCCESS
+},
+#endif
+#endif
+
+#ifdef ARCH_TEST_ECDSA
+#ifdef ARCH_TEST_ECC_CURVE_SECP256R1
+{"Test psa_copy_key with EC Public key\n", 11,
+ PSA_KEY_TYPE_ECC_PUBLIC_KEY(PSA_ECC_CURVE_SECP256R1),
+ {0},
+ 65,
+ PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT,
+ PSA_ALG_ECDSA_ANY, PSA_ALG_ECDSA_ANY, PSA_ALG_ECDSA_ANY, PSA_ALG_ECDSA_ANY,
+ 256, 65, PSA_SUCCESS
+},
+#endif
+
+#ifdef ARCH_TEST_ECC_CURVE_SECP224R1
+{"Test psa_copy_key with EC keypair\n", 12,
+ PSA_KEY_TYPE_ECC_KEYPAIR(PSA_ECC_CURVE_SECP224R1),
+ {0},
+ 28,
+ PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT,
+ PSA_ALG_ECDSA_ANY, PSA_ALG_ECDSA_ANY, PSA_ALG_ECDSA_ANY, PSA_ALG_ECDSA_ANY,
+ 224, 28, PSA_SUCCESS
+},
+#endif
+#endif
+
+#ifdef ARCH_TEST_CIPER_MODE_CTR
+#ifdef ARCH_TEST_AES
+{"Test psa_copy_key with Incompatible target policy\n", 13, PSA_KEY_TYPE_AES,
+{0x49, 0x8E, 0xC7, 0x7D, 0x01, 0x95, 0x0D, 0x94, 0x2C, 0x16, 0xA5, 0x3E, 0x99,
+ 0x5F, 0xC9, 0x77},
+ AES_16B_KEY_SIZE,
+ PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT,
+ PSA_ALG_CTR, PSA_ALG_CBC_NO_PADDING, PSA_ALG_CBC_NO_PADDING, PSA_ALG_CBC_NO_PADDING,
+ BYTES_TO_BITS(AES_16B_KEY_SIZE), AES_16B_KEY_SIZE, PSA_ERROR_INVALID_ARGUMENT
+},
+#endif
+#endif
+};
+
+static test_data check2[] = {
+#ifdef ARCH_TEST_CIPER_MODE_CTR
+#ifdef ARCH_TEST_AES_128
+{"Test psa_copy_key negative cases\n", 14, PSA_KEY_TYPE_AES,
+{0x49, 0x8E, 0xC7, 0x7D, 0x01, 0x95, 0x0D, 0x94, 0x2C, 0x16, 0xA5, 0x3E, 0x99,
+ 0x5F, 0xC9, 0x77},
+ AES_16B_KEY_SIZE,
+ PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT, PSA_KEY_USAGE_EXPORT,
+ PSA_ALG_CTR, PSA_ALG_CTR, PSA_ALG_CTR, PSA_ALG_CTR,
+ BYTES_TO_BITS(AES_16B_KEY_SIZE), AES_16B_KEY_SIZE, PSA_SUCCESS
+},
+#endif
+#endif
+};
diff --git a/api-tests/dev_apis/crypto/test_c044/test_entry.c b/api-tests/dev_apis/crypto/test_c044/test_entry.c
new file mode 100644
index 00000000..7eebc5c4
--- /dev/null
+++ b/api-tests/dev_apis/crypto/test_c044/test_entry.c
@@ -0,0 +1,53 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_c044.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_CRYPTO_BASE, 44)
+#define TEST_DESC "Testing crypto key management APIs\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L1, WD_HIGH_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Execute list of tests available in test[num]_crypto_list from Non-secure side*/
+    status = val->execute_non_secure_tests(TEST_NUM, test_c044_crypto_list, FALSE);
+
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->crypto_function(VAL_CRYPTO_FREE);
+    val->test_exit();
+}
diff --git a/api-tests/dev_apis/crypto/testsuite.db b/api-tests/dev_apis/crypto/testsuite.db
index 66170eea..ebe6839a 100644
--- a/api-tests/dev_apis/crypto/testsuite.db
+++ b/api-tests/dev_apis/crypto/testsuite.db
@@ -63,5 +63,6 @@ test_c040
 test_c041
 test_c042
 test_c043
+test_c044
 
 (END)
diff --git a/api-tests/dev_apis/internal_trusted_storage/test_s002/test_its_data.h b/api-tests/dev_apis/internal_trusted_storage/test_s002/test_its_data.h
index 325e862e..303b25fd 100755
--- a/api-tests/dev_apis/internal_trusted_storage/test_s002/test_its_data.h
+++ b/api-tests/dev_apis/internal_trusted_storage/test_s002/test_its_data.h
@@ -118,6 +118,9 @@ static const test_data s002_data[] = {
 {
  VAL_ITS_SET, PSA_ITS_ERROR_WRITE_ONCE  /* Setting flag to zero for UID should fail */
 },
+{
+ VAL_ITS_REMOVE, PSA_ITS_ERROR_WRITE_ONCE /* Storage should not be removed */
+},
 {
  VAL_ITS_GET_INFO, PSA_ITS_SUCCESS  /* Check that the WRITE_ONCE flag is preserved */
 },
diff --git a/api-tests/dev_apis/internal_trusted_storage/test_s004/test_s004.c b/api-tests/dev_apis/internal_trusted_storage/test_s004/test_s004.c
index 00f42451..9db24a79 100755
--- a/api-tests/dev_apis/internal_trusted_storage/test_s004/test_s004.c
+++ b/api-tests/dev_apis/internal_trusted_storage/test_s004/test_s004.c
@@ -42,11 +42,11 @@ int32_t psa_sst_get_data_check(security_t caller)
     uint32_t status,j;
 
     /* Set data for UID */
-    status = SST_FUNCTION(s004_data[1].api, uid + 1, TEST_BUFF_SIZE, write_buff,0);
+    status = SST_FUNCTION(s004_data[1].api, uid, TEST_BUFF_SIZE, write_buff,0);
     TEST_ASSERT_EQUAL(status, s004_data[1].status, TEST_CHECKPOINT_NUM(1));
 
     /* Call get function and check the data consistency */
-    status = SST_FUNCTION(s004_data[2].api, uid + 1, 0, TEST_BUFF_SIZE, read_buff);
+    status = SST_FUNCTION(s004_data[2].api, uid, 0, TEST_BUFF_SIZE, read_buff);
     TEST_ASSERT_EQUAL(status, s004_data[2].status, TEST_CHECKPOINT_NUM(2));
     TEST_ASSERT_MEMCMP(read_buff, write_buff, TEST_BUFF_SIZE, TEST_CHECKPOINT_NUM(3));
 
diff --git a/api-tests/dev_apis/internal_trusted_storage/test_s006/test_s006.c b/api-tests/dev_apis/internal_trusted_storage/test_s006/test_s006.c
index 1c7066b0..d1d81bc7 100755
--- a/api-tests/dev_apis/internal_trusted_storage/test_s006/test_s006.c
+++ b/api-tests/dev_apis/internal_trusted_storage/test_s006/test_s006.c
@@ -73,7 +73,7 @@ int32_t psa_sst_flags_not_supported(security_t caller)
        {
           test_status = psa_sst_remove_api(uid, TEST_BUFF_SIZE, write_buff,
                                           (flag & (~PSA_SST_FLAG_WRITE_ONCE)));
-	      if (test_status != VAL_STATUS_SUCCESS)
+          if (test_status != VAL_STATUS_SUCCESS)
              return test_status;
        }
        else if (status == s006_data[0].status)
diff --git a/api-tests/dev_apis/internal_trusted_storage/test_s009/test_its_data.h b/api-tests/dev_apis/internal_trusted_storage/test_s009/test_its_data.h
index a4f0b7e1..80e7fb1a 100755
--- a/api-tests/dev_apis/internal_trusted_storage/test_s009/test_its_data.h
+++ b/api-tests/dev_apis/internal_trusted_storage/test_s009/test_its_data.h
@@ -33,25 +33,31 @@ static const test_data s009_data[] = {
  0, 0 /* This is dummy for index0 */
 },
 {
- VAL_ITS_SET, PSA_ITS_ERROR_INVALID_ARGUMENTS /* Call set API with 0 write buffer */
+ VAL_ITS_SET, PSA_ITS_SUCCESS /* Call set API with NULL write buffer and 0 length */
 },
 {
- VAL_ITS_GET_INFO, PSA_ITS_ERROR_UID_NOT_FOUND /* Call to get_info API should fail */
+ VAL_ITS_GET_INFO, PSA_ITS_SUCCESS /* Verify UID is created */
 },
 {
- VAL_ITS_SET, PSA_ITS_SUCCESS /* Create storage of zero size */
+ VAL_ITS_GET, PSA_ITS_SUCCESS /* Call get API with NULL write buffer and 0 length */
 },
 {
- VAL_ITS_SET, PSA_ITS_ERROR_INVALID_ARGUMENTS /* Try to set 0 buffer for previous created storage */
+ VAL_ITS_REMOVE, PSA_ITS_SUCCESS /* Remove the storage entity */
+},
+{
+ VAL_ITS_GET_INFO, PSA_ITS_ERROR_UID_NOT_FOUND /* Verify UID is removed */
+},
+{
+ VAL_ITS_SET, PSA_ITS_SUCCESS /* Create storage of zero size and valid write buffer */
 },
 {
  VAL_ITS_GET_INFO, PSA_ITS_SUCCESS /* Call get_info API to check data size */
 },
 {
- 0, 0 /* This is dummy for index6 */
+ 0, 0 /* This is dummy for index8 */
 },
 {
- VAL_ITS_GET, PSA_ITS_ERROR_INVALID_ARGUMENTS /* Call get API with 0 read buffer */
+ VAL_ITS_GET, PSA_ITS_SUCCESS /* Call get API with 0 length and NULL read buffer */
 },
 {
  VAL_ITS_SET, PSA_ITS_SUCCESS /* Increase the asset size */
diff --git a/api-tests/dev_apis/internal_trusted_storage/test_s009/test_ps_data.h b/api-tests/dev_apis/internal_trusted_storage/test_s009/test_ps_data.h
index 982561c8..129bca08 100755
--- a/api-tests/dev_apis/internal_trusted_storage/test_s009/test_ps_data.h
+++ b/api-tests/dev_apis/internal_trusted_storage/test_s009/test_ps_data.h
@@ -33,25 +33,31 @@ static const test_data s009_data[] = {
  0, 0 /* This is dummy for index0 */
 },
 {
- VAL_PS_SET, PSA_PS_ERROR_INVALID_ARGUMENT /* Call set API with 0 write buffer */
+ VAL_PS_SET, PSA_PS_SUCCESS /* Call set API with NULL write buffer and 0 length */
 },
 {
- VAL_PS_GET_INFO, PSA_PS_ERROR_UID_NOT_FOUND /* Call to get_info API should fail */
+ VAL_PS_GET_INFO, PSA_PS_SUCCESS /* Verify UID is created */
 },
 {
- VAL_PS_SET, PSA_PS_SUCCESS /* Create storage of zero size */
+ VAL_PS_GET, PSA_PS_SUCCESS /* Call get API with NULL write buffer and 0 length */
 },
 {
- VAL_PS_SET, PSA_PS_ERROR_INVALID_ARGUMENT /* Try to set 0 buffer for previous created storage */
+ VAL_PS_REMOVE, PSA_PS_SUCCESS /* Remove the storage entity */
+},
+{
+ VAL_PS_GET_INFO, PSA_PS_ERROR_UID_NOT_FOUND /* Verify UID is removed */
+},
+{
+ VAL_PS_SET, PSA_PS_SUCCESS /* Create storage of zero size and valid write buffer */
 },
 {
  VAL_PS_GET_INFO, PSA_PS_SUCCESS /* Call get_info API to check data size */
 },
 {
- 0, 0 /* This is dummy for index6 */
+ 0, 0 /* This is dummy for index8 */
 },
 {
- VAL_PS_GET, PSA_PS_ERROR_INVALID_ARGUMENT /* Call get API with 0 read buffer */
+ VAL_PS_GET, PSA_PS_SUCCESS /* Call get API with 0 length and NULL read buffer */
 },
 {
  VAL_PS_SET, PSA_PS_SUCCESS /* Increase the asset size */
diff --git a/api-tests/dev_apis/internal_trusted_storage/test_s009/test_s009.c b/api-tests/dev_apis/internal_trusted_storage/test_s009/test_s009.c
index a1b54246..4567c666 100755
--- a/api-tests/dev_apis/internal_trusted_storage/test_s009/test_s009.c
+++ b/api-tests/dev_apis/internal_trusted_storage/test_s009/test_s009.c
@@ -28,7 +28,7 @@
 
 client_test_t test_s009_sst_list[] = {
     NULL,
-    psa_sst_invalid_arguments_check,
+    psa_sst_zero_length_check,
     NULL,
 };
 
@@ -36,7 +36,7 @@ static psa_sst_uid_t uid = UID_BASE_VALUE + 5;
 static uint8_t write_buff[TEST_BUFF_SIZE] = {0x99, 0x01, 0x02, 0x03, 0x04, 0x23, 0xF6, 0x07, 0x08, \
                                   0x0D, 0x70, 0xA1, 0xFF, 0xFF, 0x14, 0x73, 0x46, 0x97, 0xE8, 0xDD};
 
-int32_t psa_sst_invalid_arguments_check(security_t caller)
+int32_t psa_sst_zero_length_check(security_t caller)
 {
     uint32_t status;
 
@@ -45,38 +45,48 @@ int32_t psa_sst_invalid_arguments_check(security_t caller)
     status = SST_FUNCTION(s009_data[1].api, uid, 0, NULL, 0);
     TEST_ASSERT_EQUAL(status, s009_data[1].status, TEST_CHECKPOINT_NUM(1));
 
-    /* Call the get_info function and match the attributes */
+    /* Call the get_info function to verify UID created */
     status = SST_FUNCTION(s009_data[2].api, uid, &info);
     TEST_ASSERT_EQUAL(status, s009_data[2].status, TEST_CHECKPOINT_NUM(2));
 
-    /* Set data for UID with length 0 and valid write buffer */
-    val->print(PRINT_TEST, "[Check 2] Create UID with zero data length\n", 0);
-    status = SST_FUNCTION(s009_data[3].api, uid, 0, write_buff, 0);
+    /* Call get API with NULL read buffer */
+    val->print(PRINT_TEST, "[Check 2] Call get API with NULL read buffer and data length 0\n", 0);
+    status = SST_FUNCTION(s009_data[3].api, uid, 0, 0, NULL);
     TEST_ASSERT_EQUAL(status, s009_data[3].status, TEST_CHECKPOINT_NUM(3));
 
-    /* Set data for UID with length 0 and NULL pointer */
-    val->print(PRINT_TEST, "[Check 3] Try to set NULL buffer for existing UID\n", 0);
-    status = SST_FUNCTION(s009_data[4].api, uid, 0, NULL, 0);
+    /* Remove the UID */
+    val->print(PRINT_TEST, "[Check 3] Remove the UID\n", 0);
+    status = SST_FUNCTION(s009_data[4].api, uid);
     TEST_ASSERT_EQUAL(status, s009_data[4].status, TEST_CHECKPOINT_NUM(4));
 
-    /* Call the get_info function and match the attributes */
+    /* Call the get_info function to verify UID is removed */
+    val->print(PRINT_TEST, "[Check 4] Call get_info API to verify UID removed\n", 0);
     status = SST_FUNCTION(s009_data[5].api, uid, &info);
     TEST_ASSERT_EQUAL(status, s009_data[5].status, TEST_CHECKPOINT_NUM(5));
-    TEST_ASSERT_EQUAL(info.size, 0, TEST_CHECKPOINT_NUM(6));
 
-    /* Call get API with NULL read buffer and valid UID */
-    val->print(PRINT_TEST, "[Check 4] Call get API with NULL read buffer and data length 0\n", 0);
-    status = SST_FUNCTION(s009_data[7].api, uid, 0, 0, NULL);
+    /* Create UID with length 0 and valid write buffer */
+    val->print(PRINT_TEST, "[Check 5] Create UID with zero data_len and valid write buffer\n", 0);
+    status = SST_FUNCTION(s009_data[6].api, uid, 0, write_buff, 0);
+    TEST_ASSERT_EQUAL(status, s009_data[6].status, TEST_CHECKPOINT_NUM(6));
+
+    /* Call the get_info function and match the attributes */
+    status = SST_FUNCTION(s009_data[7].api, uid, &info);
     TEST_ASSERT_EQUAL(status, s009_data[7].status, TEST_CHECKPOINT_NUM(7));
+    TEST_ASSERT_EQUAL(info.size, 0, TEST_CHECKPOINT_NUM(8));
+
+    /* Call get API with NULL read buffer and valid UID */
+    val->print(PRINT_TEST, "[Check 8] Call get API with NULL read buffer and data length 0\n", 0);
+    status = SST_FUNCTION(s009_data[9].api, uid, 0, 0, NULL);
+    TEST_ASSERT_EQUAL(status, s009_data[9].status, TEST_CHECKPOINT_NUM(9));
 
     /* Change the length to test_buff_size */
-    val->print(PRINT_TEST, "[Check 5] Increase the length\n", 0);
-    status = SST_FUNCTION(s009_data[8].api, uid, TEST_BUFF_SIZE, write_buff, 0);
-    TEST_ASSERT_EQUAL(status, s009_data[8].status, TEST_CHECKPOINT_NUM(8));
+    val->print(PRINT_TEST, "[Check 9] Increase the length\n", 0);
+    status = SST_FUNCTION(s009_data[10].api, uid, TEST_BUFF_SIZE, write_buff, 0);
+    TEST_ASSERT_EQUAL(status, s009_data[10].status, TEST_CHECKPOINT_NUM(10));
 
     /* Remove the UID */
-    status = SST_FUNCTION(s009_data[9].api, uid);
-    TEST_ASSERT_EQUAL(status, s009_data[9].status, TEST_CHECKPOINT_NUM(9));
+    status = SST_FUNCTION(s009_data[11].api, uid);
+    TEST_ASSERT_EQUAL(status, s009_data[11].status, TEST_CHECKPOINT_NUM(11));
 
     return VAL_STATUS_SUCCESS;
 }
diff --git a/api-tests/dev_apis/internal_trusted_storage/test_s009/test_s009.h b/api-tests/dev_apis/internal_trusted_storage/test_s009/test_s009.h
index db084cfc..11b32d17 100755
--- a/api-tests/dev_apis/internal_trusted_storage/test_s009/test_s009.h
+++ b/api-tests/dev_apis/internal_trusted_storage/test_s009/test_s009.h
@@ -31,6 +31,6 @@ extern val_api_t *val;
 extern psa_api_t *psa;
 extern client_test_t test_s009_sst_list[];
 
-int32_t psa_sst_invalid_arguments_check(security_t caller);
+int32_t psa_sst_zero_length_check(security_t caller);
 
 #endif /* _TEST_S009_CLIENT_TESTS_H_ */
diff --git a/api-tests/dev_apis/internal_trusted_storage/test_s010/test_its_data.h b/api-tests/dev_apis/internal_trusted_storage/test_s010/test_its_data.h
index 7b1b6d37..1a811b11 100644
--- a/api-tests/dev_apis/internal_trusted_storage/test_s010/test_its_data.h
+++ b/api-tests/dev_apis/internal_trusted_storage/test_s010/test_its_data.h
@@ -29,7 +29,7 @@ typedef struct {
 
 static const test_data s010_data[] = {
 {
-  VAL_ITS_SET, PSA_ITS_SUCCESS /* Create with UID value zero should fail */
+  VAL_ITS_SET, PSA_ITS_ERROR_INVALID_ARGUMENTS /* Create with UID value zero should fail */
 },
 };
 #endif /* _TEST_S010_ITS_DATA_TESTS_H_ */
diff --git a/api-tests/dev_apis/internal_trusted_storage/test_s010/test_ps_data.h b/api-tests/dev_apis/internal_trusted_storage/test_s010/test_ps_data.h
index e88ed9b4..fb06deb9 100644
--- a/api-tests/dev_apis/internal_trusted_storage/test_s010/test_ps_data.h
+++ b/api-tests/dev_apis/internal_trusted_storage/test_s010/test_ps_data.h
@@ -29,7 +29,7 @@ typedef struct {
 
 static const test_data s010_data[] = {
 {
- VAL_PS_SET, PSA_PS_SUCCESS /* Create with UID value zero should fail */
+ VAL_PS_SET, PSA_PS_ERROR_INVALID_ARGUMENT /* Create with UID value zero should fail */
 },
 };
 #endif /* _TEST_S010_PS_DATA_TESTS_H_ */
diff --git a/api-tests/dev_apis/internal_trusted_storage/test_s010/test_s010.c b/api-tests/dev_apis/internal_trusted_storage/test_s010/test_s010.c
index c74bad3f..8e556ce1 100644
--- a/api-tests/dev_apis/internal_trusted_storage/test_s010/test_s010.c
+++ b/api-tests/dev_apis/internal_trusted_storage/test_s010/test_s010.c
@@ -42,7 +42,7 @@ int32_t psa_sst_uid_value_zero_check(security_t caller)
     /* Set with UID value zero should fail */
     val->print(PRINT_TEST, "[Check 1] Creating storage with UID 0 should fail\n", 0 );
     status = SST_FUNCTION(s010_data[0].api, uid, TEST_BUFF_SIZE, write_buff, 0);
-    TEST_ASSERT_NOT_EQUAL(status, s010_data[0].status, TEST_CHECKPOINT_NUM(1));
+    TEST_ASSERT_EQUAL(status, s010_data[0].status, TEST_CHECKPOINT_NUM(1));
 
     return VAL_STATUS_SUCCESS;
 }
diff --git a/api-tests/docs/Arm_PSA_APIs_Arch_Test_Validation_Methodology.pdf b/api-tests/docs/Arm_PSA_APIs_Arch_Test_Validation_Methodology.pdf
old mode 100644
new mode 100755
index 1ec5b796743a3be73449ebd671ba0ad21a67765f..b22a7242cc319037785f5f2a385a4cd484f38c02
GIT binary patch
literal 590051
zcma%hb9iN4_GWC`xv_1hVkZ@+V%xTjs#I*-X2rH`+veo!uY0<mXL{y0=Z|~NJ$LW5
z)_&Js@4L@FmrOxKjE;$(1D<SWcXAdUhJ~FCzzDE4uz=^~WsotqG1hl5_b@gBFfqsg
z*ti%O*_asQ0W9pC459!oM%J&h9Ds$DK^eft$;HCT&L9EM1hBEN0yr5twfXtsjcttn
zG6ne0<I4vJ=f8c37#rFe87t^JSUY}s6t=Z;wzhEuurVk&7#o=zI@vk^n3(zb8ANRi
z9o+4lzFf0^^;KjLGq-Xwc3=>*(swfc+XRE8h$b(iD2u4D$TtpQF%ecyMkaPvE;e=!
z4i;f%F*Y_9PF7}qUJfxv7G^dfRu<-OB0_Ae!a_ovtYVB}!oo~!Vyx`KO#Ipmk~T)h
zZkm4~!N&U6Hxt`0x2*qgD`RY9>SPAs<oqi>m%m5N!Jues`&VQf|7fE0g%^O8iHkwm
z-OiXnUD4QtK~0khzye_ULd4O@!C2oK9>#3Lz`#fkNl(u}Pj4PHHcIUqsW4x11q5+Q
zQ=mj4m0m1y^~k9nn?1k*n?xP2&qS*pOyWb=Bi%nd*8iG89UhcK|MxCt4K*aubC$pT
zg|HtGDA1D?LI^y}7v%qR@=x#`o%9`?+#HNe;9(fyVaUit<;CD({xc!}$2B|*E7N~u
z=quA4?Ee*T02dcC!#^S6U}E{28C>j)3`zh_4#s~EmG;$+id3G`L|Zdqj7c+d6S8Zt
z#z=4$%D%Ao5@X&tqydiMq+Y#E12~q=Mhx?abUp}sn}H3P!(Mco0?4<mz@7BjzIX#)
z`3Yr1{|}s`68^X)a2t9mY?oGfwrQo>emr!8t0Zig3pJ7m4OjE!sgaAs%V2eRK$wbI
zF|MHdjlzzUXb5fyHJ_oWAFKBOX-xgW9!tNj9L`wrwiH&5gX$RLL!@#<ySS4tE`-v`
ze)nYs^<iUNtA7=+_w=xFU39!+A0<|IXbX=$_88=S44h5&M*dBfhuaNnik9*o83-9g
zkJ^i8DXXsWXex~%*b4tH<|8OA4>1q!AZrriumJ>+|1GE76;3tp^jwMuDU03$W|N;k
zTFO|Bd<_I793t&m2W{268YzB3BQ?G~z4HTk2OIm<q=&U~iIG>Cb(3HrQIW+e0@R5f
zQ`g*)xZYS_z<#9Ce18yCYUz@s`P+(biHsob)XRME8inZGZW<Bn=Y8Ghx1ZR+XDT~@
zQR=}%R80X5%1~(@Mi;fHx%+2>YO!W^!%|kgjA!PXAQ)3t*~K<{d$o|my_d7T>Qu`3
zDAP#Mo8j*5NqJ%m`(IAlr3KX=V#$Lc?V+(pM30_i(lz8fO=y&GSTUCs>vS5+9jVb5
z-0M<XwD1Z;&Wcg&6#8&FrbJvJ2Ik!6h5b>7&L@e>Id9c;DOnT`QwOR6x_f5v{7&9S
zn}{&kutG(*G&4i*Bm})w$_*Z923CilTUa^p_RPF~bbJs3W7<jx3QkkFKIp;Y@f~in
zQDLxU7F3Z=4RXpycona1QXD1_(b|%cs-pRLQfbs6#h6=2dp*nR<I!Xa*ubzig=U`H
za>)E_tZa^J<%gPMUadggGkQC~_*x*sR@Jhd3lJn3v@4bl!QtHi${NYEGY{q8KyEI>
zLUpViKa!vofFA~hJX}n-;T`@<ZT-zg|71&Hu`dEsax(hI`J1zonW&4gjT3{2t)aY~
zu?>T;m@I?p|1K9McK)y9Usa{#q;F%S?_l(=Vq#+EWRR!aF%qv19y2M+l8;0;VJhSq
zO*wPTmK@*2A9w%)W5uMQVo(6kF)^~RGbjRBzdT!u{q6qi)8Sv2DwLJi%ADkV^aWa!
zrG#X5{)ow1l$~-qa?TOojDX}+KVN{Ms2EfMtp8@~zlrQ$5}<EmN|_l?#UN|!q;I6}
zqz_>F2RA4($mv@fI|5iZxc<R<^3G0HUuyAngY$2KR?s&!mi=OO1{Fu+fBnet*Uhgc
z?9Bh@^ACa){<3LhYx<w=|ATvktc;C~glye38NYh4ak0@ebFi_q064gq>6tlM*qF4x
z6vM{p3+BHf`P-_ngRR~Fvxm5Yt+U-<TBF1uV(emWXsjqM#Gu5W?4WPsXs7RBY-8yD
zH+TP|;a8Gmzm!P-|7r3|zP@7k8W_tz2Bv82XzT1?X#AI=iG9WQ*NO29nZE-R`w|1r
zzf@N7%eI1pt)Y^!lP1HL4l^hlyE!pPT7Q8g{G}CNvf}imZUDx=qxlQF|3v98-2a)R
z|00HB<_?ZdU;6d08O6rM^(ECDf18pwu=tuS|EB0yO;z~9GgR1kj*%!Fqm1N|AXeXi
zILS0*SaIah>S00>-B<>d{!WN=h&9O+4YxG@AyW@55jK82B<J3XiN1kBPf>)JMf9>K
z-#>7_K!omQ41iI7QXVl2l0|;Nzg7ov56BJ_Hh%zx0=(<N@3Z!zaLBM339n>}m8>v{
zM%!IwMVxuKQ>A#09R2MhJi=QkQk-ER`O0@uXR5Qjf)de<7@fj6qzNnTn6S8BYkJd^
z_Pau45Dw~%#z%kmn;zIBBbW{HMQKwXP?|tBJ(g1@5CKGdldF+;hSu!gQB#g71I@(S
zf4Du;z4Aqv)R!71kPQ`~pedp1$VE*96`%m|3vBQQzf=1l-Z9EQ#DzYwS4nBX+{B!p
zfpyuZ5N^NK5{{Zm7o2XtjW|$W4BBttTx7iNC0D*HmNx=62_G)mRS$GI{M4{+a)mIg
z5ypOzXg(RGxWw?z&1RZS{d!dx#P3TKAwGXTfE#k;*U6aYc);6b-HoE1&5QRm3kr9C
z^9(g~z!06J)=+phqm_i<MLOb4|Mr_h^jh-HC#MqHahuPfBw|UNx9TR7HNdBV%G+r)
z2C3Se5&{%E?llRk+;*iwd%(|+Cx4-DF3bsyyedk;#;cy9x$b-&;E39<uT;vLQHd-#
zT^n!ot5d(Jo+<c+C%XBtD1S-1_$>(EKW1Y3hc%)?BY*_<r#eM}K8U5PXYuB%sD6Ys
zn2sBZN3>Hrl|7JRqN_fq@OTAoZ^F^Zg$kEG?O;j!lQEod)P8H(%yR`!|02u#ay7eg
zV&h<~N66@ZBTSCJ3i<y&ZU4ELU}0hT_w1|+N<o@Yy6sGsNODpb_ZL$0_B=>;;^vn{
zc6V)r^sYx0h7=-$lPe(|0_0)iQ>;`crSZyxvZ;7xRl6T}ElTN0h9GYg>6bpN^~%m6
z_(|_&X$Iil=C@1UJ58Tx$8?QJ`{NgDAD{yF6t~A7BBnh+X4^;xDoGuX#!tS^s}#Wz
zK+je`tL*Wq$8W)`NgHTmZm!(NY5PabZEmjeCd@vh#*s=6e=Ko#x8Yg|RF%_dK!Y(}
zPpq1pM{(;lx2rp9P6I#Vi<4_eEA`{g#-IHp_DNywz5;gHLlN2EwD=W`l~f?~(30~r
zqyzK}gw*As$Klp)&6l(aX%}b2B!`)ut$Lp4<Y|J|Eu2U<lys!Y4O|Q!>8W%%+5V)@
zo$SRhr~nMxq22VAEP-hy?qu0aZ#tC<4e49iACuc$DYHlH5sZZs5mF?}EGN6<|C$q~
z|DT*Nb8-DUC-@`K49m@$ke7U_N6uIB*34{q4LTwq`zL#)FYg}ZF8n&sv$v1YlcMsa
zl99f?Z3F!j{B{XX<ksy=cF56JBM=@B<bqv@KXxY##95T6a;6^_*T$t3rYWg@+3&w_
z78NU)Pobws!TuP&Ny=MJQ1D6#HD&)c8pmhTx<6R~r}T|SC;69c3M*FEp*;0Vz=Wq3
zerbm%Z;+|Qa36R>pnVpNmTD$g$n8chtu+6=Vk%a*G|@b3Bk@4fL~<!pOn}Wx2=AZT
zsA&K7@1?s-)hz9`j30J?G<h%rWWfk!HM0CF4s6Bq-}I^Tq>w-k%4<l{H{Z#kD!>_8
zc}?GaUCnf>CQNIiJR{_s$XIY{)7*q!%_7h;YrRGo4`0t2Euhf%dVl{>3g}7KjQX#L
z|D^=~V-+wlv2*+za#8A0?h|QIth)4=Dh)UoDsI?xFTWm92Kko*<p}U0JO8ecp%*~1
zp{{-?toN>v5n&8p1#B3cs<tm{8DE91pP-^97EsOhEan+*@0{-4TuNvGOPmv2_($qa
z*px#%<go3X6QQHfCXns0ZGe+MdsRFm#EOA$8WT6klD6eW`Ssn|6<G$IBmA9`uk>7{
z=D;X8z~YW<x9@rha?-1dn2o@O?p1THT=e?E+Fjm%=hr8Wk8>oEatOT>P6n-1x>&V2
zaRy_7{^FolGD-~<+^FfOMsW9yfOGJ!a_JmpHikJEHX(N4^cibRml==pd&5h|_rB-~
zrvBq;aKM#xMJAL*IB`fwpwud*T|-NdiyLa^!$qn6RdAUF?NR~ZC!TM}pPrp7c1JgS
zc^9n?teCuJ=Azy$u!<}9{a|Ux@Hdixc2g4bt~YK^fIgBfcD=gw%`%dHiA75I_9_^^
zU+VqTYxcvS-wa*U$nhC<4{J2xjE+I%GwVVKux=iT<T5XA9II+x-6}}Rww|v!IGu|X
zb^Tc$95MK#P3S!Q_6qpec2cCXvpb=L%E+8@wKi6QY-?1~F{mkC5%L@5OW@s9cEKK6
zYV4irK!Ko*7oh`mS;8$M1=*PQ6S{@So%Q{78KlJFxFxK54fEtTRsM79=cIOr*FXpF
zf@cueVv9Tu?m<Hd%z;18oULqABL1?257BeDta=2299{`wI0>NTIdrz@ooctz+88^9
zAgmsjV$;n_^XT4tQd+&Dl)43{cXA)gBk2a%-%Hp%E1!Q?r~w#Iy@cF)XTs{s#%%Z4
zIy_rBRy7ymQ58bUU&<b*r1EPWv&d54Ci6bw$+Z=Wftj|iro#Ua8by{&;zngbO#bMM
zz&A0s0>ZtQu&&=Ma~a5F8O)aCusv(|SiM`KBil1(ZsRTQPY0HUeWF9xsR-++=<9A5
z-R%)-JZn*Uv6>nVmoBjGM)B41OJwW9s9EGQrXNG0@|OPD&RIr(n>CEdHoH<=o0fgC
za9=d-*h@wh+k1od%<K-34}0t3@~3vZ)S2<1?F}jEjmx{=u8DL;%61Qv)IJsM=8dj!
zR2HS5p={`yEr{qIv=yge9#(ks7t6RlPOEL2qHZ{V%$%XG#1d!?onVx<Mco}Lbv!}#
z$pn)J`~6Jc1HJ(|rTc1ToNcUqsaxBs?<AhsEu&D5Pkx>EoD+?`c0?npsH5&7LA=9s
zRw`m4P?JNk(<|X)b#rS8BqCzc_F58us<jw7aye+hc|)HripJPkj)z*zqGJZZtG}-$
zeGn6MR!VT1as&qQtC@^PnF0m3+?h#0r;iDRm_x-jI$eTwUY&I^{XJ>Lj-<0`Ev*Bb
zU-E}sV2~KT+PH^=t>n*}?6sne=>$Qm*2MK1&O^f7wo+J;^fdP6+0)1FxZX6{KKo8H
zX<C2kCcEg3obroV^w3e<j+HGWkn#6Z@)>;)SswpUizkiW38795Q%!pWcQGLc+a*>l
z;cTpvsE6&ZkoNPbV<r*(GT#_YN;U@C|LCRHvrhR@t#ezMzWrBP`)m38KhhfW*R#gI
z_CaR8okF9647zLb%hy>G#T3bU2RNWLNRIti>wj&*{EyaInOT__|GDaA0(@;sG5*I=
zq6OBT`xhS8NaTT{<^&7#GMjFhjd3LC?2|DtiNcXC8i_v60B}1{UbB!?dJFPHvE>Qr
z`Bk#%<&$ASsbqod5nTaJ0MSOr;dg#%cop%A$$oxVGa}S5wco!-gS&06kz?E-m-s4l
zwb#;=;Ev8ye&@25-CbwrYWzybH6h?mdZ91pKXo8Iwl#z8<~Y_(t?N5xM=~-9MIGh#
zsrZEw);pu^rS`158y`H}a(LuLhN~HNfZ0V4ywQY66Fc8MqBz49T{RhcD~6W+dc|&M
zBxUUSB%F%Q3Mcy^!~Wjz{qqW@`OeoIlrcN9TZms{vwyWPzB8X2<#)Z6qjElQ#l2Ss
z^WLSW*^GNjlX4)nC2us?YCg3&I3%^JV5ze8nDfh>SAO-e9vU?ey5NFCp}O<#uEo!b
zz~fl}9XD~iq?UyFV79M5;JlFfDR8aXaD$9?_Om!C08Ib|HIi1OWbZD|OQs}ljU-K;
zDz;iy`K}iDj|@zI7EvnU%gYIV5B9vO3$n2Is*ZgaIrt$X&NR|w7j8=Rq-X#5NEeXo
zAM5g41LTEm=W6%u65BS+eW{CVa-q|Rgc_S{@Q5jKfM5|0rEPhMxIQ*uI=AnU1X^C4
zW4XTX@~40>>T+!eiZlCr+6Zz#mKn06R)FUbI3wDPw2f@@-C9t00yNV1PU1~-K@^Zz
zzx#fg9&O#U^;@2fZI0v?Yeyc~l!N;_=i;6y)6G6ByfC6)p&m}HURv`kmtaN4K-<Oo
z=t8Nb_hN!CM=Me9oG!wodC}AO#CoxKxJe#dANGBSbw=%{?$7&Y+{5w=;D1haE(Hxd
zwOKVbx=7qDE@&o>VSi~c{lN$o_`HncnJHR+v4GyUUDinKYdeQq=@u)rFKm=+yWiBr
z)PKmJ8Q$O&%g4(Mdgc)~fTwHXtqf@N&ZExQm2j?+K1jNpsYuPwvpFaHxV{i`XY>z6
z0;>JNuVOh+P~5mPy*i&i0pk}J2#<X#zDqUEjjqFl_ko}fvKjS>lwthdpw;zk9|prU
zH$~hW;vwA0ns7sL_6^Fh^<qJgi>hHxZS<f~VL4yP_Vv=onTfsHKs8!iB=Ee!KA}o%
zD56Kkb|4OS{pSWTTUgKm(-h<VD;ebQ=WV!H5<T!N39)M6^N-tykL+~l2Kv@hnx`D5
z?iCYCRXwnfofWw^(i>k4SLsKUhn-Ke0`C?_d~((KaO=w+Mn8lMFKBL8h({}rVO0ik
z%iE~pu;TQo)>Lmg1LL&lkWkTSw?GUDyaWx4Kd3`nujXz%ILz?Bfw-m_J!hU(n`a|m
zp(HgckN1MFWABrLFJ>nq5{suNH|g|H>-Ftzz0(&s4UT_6Xwndb0>m$uP2*V{xCi7W
zB>6kW{k*AQIDtH4C*rv&ClQ%js6Y5fSmH(MgX3n6#l9P%4sn=<=ohE;_4qU5Ph8SU
zR45xzK#tm4=3ovFJtf7YpyIk0)zsgi4>xxu3mPoiaRBxt<(Yeq5;eCkt$9huti+8U
z`5pYrnb8x&$e9F&#Z_iaD(qG#H1Yz=1g0#O$Y1K#hkmBvtjHMC75Kyu00hHB-An1~
zOGMx4^2dup3Rhicla#uP$ef{?aE<U3`2fez5pJEj9EN|Mu?YcJP@d<a8Yh+!S#J7o
z3A@9wZj4?W{V>OmAjP@gN&7E!eE53msj#di@jWMwWTPBAk4D?57dxm>);<rXI8+WK
zEyVcMmPUDgf;eytG9NTnoWgorAtvxyu9xCVWc_CDfVxn4qz=;fVR}^fhmR@TO&9_a
zA^1tknSMW+(WQ_Rd2zv!?CiESYayuHMBuXyA~<%7qM20fE-<90OR&Wx3VjfgR)9oV
zv$`C!mQyKOQZ3oq5b!+qIuOyobKS6m&MMOT==yN1K*{5;bnH~DIVJ~`?2b<HgF$P#
zLSngwv>By(Pad-`A~B?6I_;B{TSr^v2PrBLyXAT>qUrWnrCorW1@O>>4>f$OThq+q
zKuF`W$+slFC;ZQ@gE<3C3ip@ME^OL%>feceQuUOuMUhZNuW;yt<GHUv#US**<2I8?
z&zo9&90I-Hp$o-ioX8kEX~MZ++;8>`HiYP{{6{~1AD#(w*6Gl}91{%J&<l^p)1rPg
zS5W^L&;ZL%1Fu@r04s^Nms??yGF=E^RJDG1Md*sH+(<3a=Kpkz$P99BZMzG1t3WNt
z-y^q^no;L|3*_J|x;Q9mb7r2}D)6%4KkUD7G99lHLV0EtPnHxAJnph6EVZ(?&eK_D
zE(=l0Ftzvb-C%R=kdu$W;E?+9%D}-``}-})N<d7z5$(-chjqzQ#N2Tdd6hVB8kc90
zipxAtXg@!LGxs4%avYTWC5sWA_LSa|1u24T*tzGB>eV{m@b{kmN{T~o9AvX!fNH)>
z0(c24LW~%bkB!fWmtuN;K~8{V&@07rt`+UN?aG7@6zYAseX}bQ6p`zUv0rZbM$dDy
zySn+GTUc+2Ej_gElCHwAvL%L4CY?eA7Nz;|_2NshNVCb*a9EUa{#G2K#2$Ho;Ixy9
z`%wRW>uU<9#XH-y_y>5gu(Zn``t9~I!k@K0DmhqjV@;ACOf8b|e=xc&xu1x^f#*8$
zC0h3|m7zdD+Qf*b`J%$CQ^!7ki?S~J_+b75?YnF%$@YX<d!B2^^|2l)$A`EYaIA}|
zF!0$JmH=YyO~EOJVLUThf39>KwDc%f>MRo*UizilNP(#*NF~1oaLI3>-oITg?h-*~
zI$PB|gR4F8W)S1WReYQNBk54XpVW3-6$<$CUVl<zyXKk9O}%?eU5-LP7dP*SnDV`&
zm1-kGHrIKra9pZ<$N3Oj%a9qv)t{)oqib#@|3ckGj2rY79s&cOS!lAsD7bk7Nmc<=
z++IBZ86FL0m7Ef(;r-_7;i9Umy+hi1i$!vXOB2WQw7NRqN;jfl@f+{Ev){u-D)trL
zi)>hI;ztQY%fm3%P0tL_YW1vF1o)xl;l!T)W2MawZ9}hk3i8zDfa<1PK%Q7sc8|u?
z%T;jvo$EdG7RY2u)ZzR|aBZ?NB0mn#I5H%9!3pjy$@horYkiPtvjNuiR7$39^@JD_
zV4dWy&rc`Jtncn)6I>{EJ1A9jY%Xm~;=3s-nN}%O^SeCGy0FWw?v*@{_Zddt(X~b&
z%eK+&h*=kTscv#)8v5A?qtKpG3^s3;mEFP?@@QP3f+^K9#}8EKegIZusL3((@=wRP
zlfaWZ+c6BD(uA4P^cVZIv`}jeW!|lVHXy4z^p`G=YlvjnO)}skgTN2)IiPy^aev5g
zC??<3uOZBB9nf$|$_+D=kmCl%?@p!VSQir(F{|~($trF)F&Rttgmh6;$x^lz8U|F}
zJH7#TJ~PjlB7}f>-;7C8EqD$~dyvGr{|I$4)U<;QuubKtJq7Px9o!r4{6KTxBBqW*
zM@Ni&EuzLW;G-u6gp~sZt?t1P`<;<rr;O#q-i*;xt?PgxrhoW?qrte|e@Fwg6#2_G
zKP9n^H6S=DmCMY1Fv;1Rf}zr}?6CoeQ5W0PgiuRIA5Py50t(8Eya;yXr}G@nNK`$d
zCKe%{^7G5?5u+V>WmP|NfVSR^Z`2pYKjYHO$U%OZMq<Ul!T$Ib8{v>20ynOTGT6=j
zU8wS2@|AjqGdGo(7iFnLec1cR2D3;%0r3J$q1M}qN1dStHqPx6A}l6*u`@mqVrBNv
zh>CUY+pO#X)p%|>NZp}Ur!>=V2O$}+lj9G$fU*s_{gLn=EP{AtG;8&^&;!-X#m@+}
z1yrsmOlY_+yiXI)qbitFpBu3O_EVDHjGf;Ji)!!E<RUx7YRmI_$Fau2;J)^zB5>Vr
ztrj=&j#)4}2q6%a*m%=Oazriys4|o>t--Nm9Ot(e9FWLM43S;C6iY!G&AK~64(T1d
zCd|wd<d}J|L=Y`6y@w<oS)9OG-ef)^h?fFb`z=Q4;}rDd^AE8utvfY5@Y<htHUNlJ
zY|xNWu>NkvJ!Jj$8qYkw>W3y8+ZOu;V_<J%vU_T}&L)#(71qQni^#t?4HKjw)?D_+
ztw1PBdq5YjJ))ND=LGbMGPZ<Gr1}M2j@KY(I$cUn_IwY@x-2#)TJn9n-=CSY5ZhJ2
zWII}ajxl5!3zZu;UOnOClK6&g3US~nBW%4U-&<o-M?}7(eQv?BQ%V=oFC}Zg9`q=U
zllzh*h&4Tsk=y`(+;E$H(C=kx?mC~d4zF+bxqDe!0>4CXT_#OP3-LlWyoa+%T>H;y
zZ72ZN4`xaOFWCUH77$^>3$7Ya4}xT=rigi((z&Q&R!vlM&hAMe?+1>+FS)PWfJa}s
zLvy&_N*}}ZNnIiaMxxU02mVcc-D>E;+ScN`BUf%oTH;74zM)OgX}xQK{av$Idb{2=
zCC9pVGLk3O(?)}XS|lrC!%{=f?t2S5YMRT;1IvII7DDmlmV`97fMsoyfe`C>wZIiC
zdp<HCBj%p*>)fWEdzbSLiePf;aG3SS-ERu0eqL`m))4ec{D-YjD0{ycN-#i{*1Zxn
z5N_pAv#7~v{$QkNA0LH9H$$i`fS}gflD)MsUCjnd7OPX%>FkhjoC;)234#`>(Yi(Y
zC0GJ1=~!r%224VK5vb@nk8mXeLA6DbWKIBu@#}?h-i)lCCl!fx|2DX#gkwzotktoI
z6Aj1Mkqo=6(D&(pU|iySSH;$k*NNT7-)b&SERlC_4FCz4ftByh8r4fAx_gypwKhi8
zUlY#|u=<53uJbiAe|LmLCMpqc*?1y4>%{DRcQORa-&!ZN_eo7Wh~=?UH5g$)jCZCE
zcKgAQKu1j3^FM<#_Y+s%2Kn8$Qas+~zRz>`<j|ZR$Mv_}vXZh;e!%Y&FPMSWprqD|
z)>3r|(G_Zq&6Ar~vifB6oF|4--L}+2F?k9(Ll=!L^op6R8Rs4(v|`62p5pTwpiYF^
z+aYhO!Ia(uuHq@K@ZeW)CRz&w{3g3986*;bc2Cv(XM)hdubLo!|N7wFmnfrN*?~J|
zxj!Y_;|F>|yBnFdT}PCa<+Kq7FPB(Paeu!6F)`@owyBwtk-2a7HJ+!OAX2XG3mm+J
z;<}V35y@$Q4MX1Ro~_rJx!H~7hxg%rbrda(26kghPB%p`ee!JbhM=bH1f+}p6fN*f
zZ+1W=csEbp#q?9B?`jHQmb4#Z15E+qOQ}&HyW0}3z?tRKVy=gkGoYmvXOl5^j)h5z
zT_DCUiHLREa?e!4L}xDpvZU)m6d}mqNn#08R^(9V64ken(PLEqA^hg3)IsjB74eO#
z?bl^4v#+TiB<*?Dd=R*%g5&HT0uNd?TszAchj@`bf!51qo1T2R41!8}ttBOHQm?Tg
z8Wc!|98BgVX1PX?&%0hDx|q4t{dg_+)~IRPt6#2^`GM0I6(g}!Ad=%hlTf<?W!4T-
z#3P(<(*RVmCkcCY$(+~cX6U3Qt{C*c;-^;$%$yg64G!v@smb&R+q_t_JsLD>(8vXW
zhMM!l3%#w6^^R@q1Uh+jHa_EZ0UADBEugtO#x&kCw3Q7tXk2Wy`uM$?tGX^x>lKVw
z+36WlE(OOP2yaaVv1Cq+B*4huFl%q%861%%9PZ7%_@W-mtW%B9wKl+M_vzR%y8FgG
z?ayCX(m3}&Da|W&jwzWZ1uY8g)}qrU%n*(0#jE08T&#xR`3m-hCm5gNTf_tn`~%|$
zP_vPF$9kA6pf=C8ja`!!^k9~RpO^fd0<lQ81UvQRjIo&6s1hj8qP3FhE;9~_3Id_m
z$O)c-@rW!0Xrp$+9s(@;v#5WMqPE*p_Rx4sL~{zIFn$+~3S7evgILT>lHM%en0knK
zo4^gAz1q6t%`+;emp@aZ+Zz&BvX5i@c4+i^Vbz@ChvNQN`rPaB#3|t@QKlgF<R?Do
zq;~OrA5GAEF+?Iaf|7RL>4dqaSqctQEt%zEf7Cth4`hE)V*eIU>2;WUpMYLfAcsi|
zXZ?gqO4J}$y-*+thf`4oy<xXwa*+guMnsRu2PuCH<vF|P8al~$URso=y;)BU%l)5m
zv|*zK{RxnwtSqPD0ppQ(^x?caY4Pm+kASCsTO{;WS{wv-@1CVVH|#(@H<m%H6}Ksw
z=~ADzl^dQQ*E)mVl5$#LYWyp06esQmo^i$7#SoY+CS#m-7r0x36P#W$q_Gp4rgsYq
zU`MDGQxT|Id>_13?6OAn;GNu%!CCdI1ujy|hjDTX7pk=a>*G_c=o(qtQ0xLGF7;j|
zsU%@0&+O$@hfHo@+$Cx@U+3wGh^2%oe;;SG-J||BDg()8@e$m~5iH`&jvfVseGtSh
zvT{&Onrhi>K?83cZE&Z2M@aYgf!H3vZv+)$_Mj#w@+rcbP5pt_0q4i7ET&xIw}hOg
zhEVumD|Cm3kP=v7nf%if<Fg5Vhpu824wPz59=zqyXbpK|(TRh-j4HVP`=YL_vTd+c
z69o8xcWII;1_n$k@9Nh#V#lx7HCF>VbLO#poJ{culxn<0VjE}}ojucrN|PK#0=%Nd
z3$!l&qjy5%ETu<6`hliO^wY+>3dxHP8R@BYxb#Cut;U!jsOhrkCA+RfJ<)`M?)-V7
zOWI~lRt_A~Wi;nc!9f?FaJ%;DHp4W-xj4T|dcFMBZh^GKDUa|3y&kn?6KuPu4yhz7
zZU!c2rI!lC5doj-x&fmN5cml>5btAG%~$UPyCe*N%=8+OkgIIv95|Y042a}Z$F<Bq
z(<E(^c2U**K;IqSL>veykK^n{{2_k`(q`(}gs9@lUJ|-%92Wg(juAjd9y+I%pXVmu
zW$?#L=I+nyq#V;mTsyo$jvZVm-P&)bK;<<|0L1MkYavf3$6ld3*Dx4RwFAV_3(aSu
zr|Lw-C#U4tKnlvCZ@Hb)eBg_S%&5wJwvbQJ*lIE8K92@PU0H4kvL`F`^W!qDjk^}{
zj|c}7tZ1%ZVj^s9wLMYI-!l<x<)lDF7{m<ylY}!GKR;6{Bj#LeiV$;A7?Z>rPqSVL
zmKd6U5-4NKWg{%oqG<7HxaaI&8ufS9w45~~N+t#2q1|^_B-%}n!|RAp7gDapHBOu!
zRfWl}@R7DMQgsbG3`_n|$a%t)D2$BLzi=v1b8ORqgJSzgqji1fq^o(wm!!zLLB>eK
zdq{#S4dk%ih!Fq%tGOEo(PwCT=@#_KpvYAt#7b>N0pgB2p7&xx=$WbOl7gy^r^Jmg
zNa=+>ujV|*?`+GNFea$*ECwpCaJ+<MXE+?B`1|$YP@8ds;#7H~7%R{poW333(Kyl&
z7|hVdUqA5rF$05b%cb7bCKE8P&X8WSDcxVt#3?OMJn;)g>63WCS~ohPX3C6lX`_s(
z^j2z1d+(YXC>DbPD2(e6`?E@AZ<vs4A!Jmw&7!3pBwu<d=(Mzt6+uCV^3{g=Qkkim
zr}aQK;d7*Ved}`w*kSKYFeie2yBcP|Mo(R3Dm7Q1TeFBA!*QsfQxtu<8-7IKJi!3d
zJ?orBE*quX1qH?jmPt{Rf@|DSt1iuhFSt5w+GbQ>lb@u(Odp1V<eBHOmP*h6J~MS}
zFK=<33;2cqiJAkLg1di{t(L=Hif?!1K?P&BO93F@nM^TG1OeMvC;x^`Lyk73JLub!
zO_HGa^BG>d_Ylu_3df`neLq^U4Zq_+F-jV5YCwuD`Sm9&6D)k!cCm0_Pi6iM!-9p(
z0_O9vWeM;qtG@623zZ2#MlhJG2=1mg)*l`~A<&<74*f7uOxClaBk!3i;g7*T!wLtF
zdz|)5-9hVBEJ=*4cZF@b0dit>Bg*dc-JHpyQ&-4r<~!<LPMJSsoMvA^lC_6_C|b2`
z;g#E~mU^B(Ves&pbnv4vS-ezdUV&B3r;d0Xs+%$9>%+!zy$m%g^q#*6haFQoKMpB-
zRJ82_6pnMK5}D9FfD{AMKmlJ5Jr*v#Eu*7>RpVAuO#H$K#PKY&oseP=^I+ej0?-Xi
zs6851#5GPwud>ji-=fVTr(vv$Q#6W-vpf?tAT$+EpK?8Z@ik0f*H0=RF=A+$g{b(s
zs|{h@a50$wKA_B?C)qV9dE0GyTQB_43_b_<BYT_cgf^i4sTdz}t``OV)#tbQcbrbO
z8;z>3of*{G=_|P)V6g8~2A!mN%40$9B16a2h$ps)qowusK-Yx8=Qd5ZD=ic83?$E=
zIu{)U)?VD+v|9=je~8aNr<Y*EhU{o62)Oy_O#O~$>SGrkHoTB>GxkS2Ihz&E*i;oM
zIJClHUExqmPrv(dUgF^o@|u>5#;)TQr*%dp5!+a6iD==7p3ts!>&UcB&4|^!vPG6)
z)@Gd(I1E^OzF$1v)DhQaB);xJB{YUk%<o;Q9+7L@!!r_ifj&_q4zrT9^idP#6bDrg
z=TVg<H+FLpwU%$qnO%_RNMO@6B5guRJptr0G$wx)#B(Q=`jlaC0OW*9fdf!%HbdjM
zbWGk;G~&AHpU|wW=QfD7aHmv&*t+=W7M>+iR&$YRECeAF_144H;HQQR^|1qiXq}U`
zV8fs1(PNzP%_DDpQq!5_1H^t<-Fbfs1&7X4CHUBzjlpMbYkxZ<-RK;pa-EKgo~*{3
znIfF*tDci4VG4G(UVq{{)hE$z*i~bjq{VX)mYj7?`dLlf^XKg|jGO@<RD4+uXz5B}
z^U&lI*@Fy?1L$>=#e*Z$SA9~sxdZm8EWXV-&`si-%hXs2I0BS8OVb32O2L!xCCF7x
z7T?e2-?oS`Gg6xH2SM688J^oB=Yct=;4O?coMiDo9oPqmV-OZ3D~`;(hLepJn#^ed
zoQMm%#M<u{DyXWMM|r#!ZArlQl)Td(3)Ks<X_8M?CGld?2=-`a1yVPkWkQDCeK_Xp
zat0RP1PPDJ(2g&(#aMU$gw*2v*-@=;D7Q4McZB*)>~WclKbd|2Mv=5i`$o$y%Hmxt
z|4!X?V&bJuA&2j6Tcr2Fo=exKXNRipyWW2EmR|Pf!h`S<TJ^e$SlVa;%*Kk?R%2M-
zkr49W<PNuqhi=cf@@f*31lajvNh5}v){)|^>jw(WIEGVWCFTQa5uY3}Xwp^x0;N%+
zbAaA3xN*NfC(js53y}g5Cw2x(GlpsMo4tm6i|}4eg#>}xj05Z>vW`=m-hhfs|5gxG
zej)#?m0MQR$budQg_qu&Fjg8Y)Y5mtBn2m8)ukzVA>hgsE2e>D=7C3DneCr$S^D^8
zG^RrFFHcGpOJv-=(8ea^a+Cy?vasLOl+Ti6x>Lgl!!P1g5WiFJ>=3AW^l}r#(xRgr
zF0$G9t&3l>@p)p1m18WA7a_=7$15o}&taepbc?S=ppyNlq6|uGvfB0v-OmGtC4N?`
zF&ICNjEZX>uy4#;4q7CTD4<BB(KMeIfW9g`4f`Z><8~aB`Z>mei%{XzZu~rDi)1<?
za>NB}qGr&~+w2x0bs)Ib4E{jOg1LWLlrPruZ1pZrHjZBHn(SDV)X;i@|7^#s+xw#{
z?$V}Yx{a1)<>8>C9^AoL;W#OsVsu&MZkP=cu6+r;`8aea+Jv2(;fBY0afK0F2z}$d
zV|4LRb=!P^1_Flq^%ZkHq|U1L=qgpFHl=vnH7-li!Y#?xhVgq%FD2{N5y?H+^@IW!
zW`rB5UvA+!eyfz{>RE%WM*5r}<>97L!U%U1j0o$WUXxM?6``}#O?t63QCk}}n%)*@
zn>HiHY@Dvukjgk*J%m-eO1EQjoPl(9`5vJB_PzJM@`q_V>Pf{ks^@CW{GSvqs+D37
za+)cla+&4))iHc4xQrq<i!f5mYtS_f>pEcNVJXltOyKhm)7>&g3dN^2EB*LF`8v{p
zKzNL#Ky$Xd8gPz_<&>v}$>X4jeoG!Ju<9=ZL!=K-Dpv3ay}#f$=qNsUegm`KM#sg6
zz)%hh6|AnX4V2#DZbrdq9Sj<l7a<+<;CfXBy6jr4@#i<g21@s>7jKo6W3GpJcjU2;
zNihP`%E9m>HmjR(2`oc27GH0#1qi?X!OTOsRKrTM=YN3Mu2eudQ&KC7ExT@V<(D)w
z2E<e5J#v#}An{g^DuK^#$%RGZsR<r_OR+eW*EDX;HnYh%0N0+{dbo+a5^mz$3zvBI
zGhSak!EbT5zD1EfiE2zB5vLjR>vfkqdX||EZ#!~s`4u8W+OEW<Efu7X!T-^{8=mK8
zX&*JUNniXk1r^D{mCY)Jpq?#Og7tg!`U!t968o6VIy3IUrYJ>5&7Yb@*e)bKy$ZtL
zXVoYs^v4#gJ%?_2&Fz9FO>3W;$m1YR-z5k;rpU*#*bARKo@R9m@(-mgaOOtV#+HvZ
z#HQXRcZOF5x|C9XY0<1F<b8$(5X*SW1*|&3T2{8j`95Jff{6)!qrA;KSjl84&t7S8
z(UjOvX$xIIKYi08EXdSk?t!022#ftR=xU@P9Rbzx;TlhUYui82Eq*!}8}W@RpV%&c
z8rgs9Ltz7cuk47{-4jSnzqOb>CU4R~nx9RW&ym{VAnt+Ga>Q)w%N<yY>zeBV2Hz;J
z7Y#USyHDO1Hm@TM{-{lk3FL)8pI~9^3EFevulyGJ`kUjTFomJ;$$GZZ%sYAhkBX7^
zPN`-~J#6hj)y(<)0&zDKeYb9FRLy|#wFokkr8YwTqJ&x1PDSIgw+i(5LA|SJ;<O4J
zzt7L34xgF0R!H5|xd@-^z(JZ?1fa(4o}Nb5RdA<afymE1yEy<F?n>PrJxY9!_y(so
z`A;0fW-Uktf^eh{?PD#?)y`r6n{HNYcL(4VZCp0J7rTAO{n1&5?h$z7%7TOC1LFrf
zCPQgXTM=^t54oKH*@XuX(E8sqzGhKzNyBNg<Iu0#9<@)Pbn(VfI?cjsS^PZL$WCQ%
z9~zJnZ4_O}MLhAEzlcC(W+As4yc>KAK8q^+8)9$MKpYusHOolsXT>f{4G4*3Kw5j;
zr%IwI(yVkg3JY$lT~YYSZS>c9l#$mppf3%SdxLJF)v_f0G~Nfb&Dw5MZ6<rt_Pi8>
zgX5XD9LAz1J5bChs8}VKqdg&5M|1PezhS^_LZ<VbS0`VQK>9z)%y7pPEvS?zV07N3
z)9>$NcNK{6!qqd9m}teq$ofpgPu{}49u1gZ)gjPyupYZ~2>wCy^U(xvslwv|)_8gk
zI4$H|yk>>NSU4nCA8E6<!G-TiYS6#^6$)^L!&|I6-!6FnGqCS0eppUPdN;MVFD><o
z@bvAJ_5P*IrdN&{=qVJjwby0=j`1}kaWx0xayb`Lm<u(`s(}K7Yd?#Nshe)}zA{x=
zi4J)7AkA*<b1bp#^@Zm<^e{&yZ_&k%o#lIRjk+78jEKduY+??PD&PBIMzwRz<bfcN
zY8$A!g;Ng?&g80A;e9K;oTrjF4<XN<rh@U7G0wDU?^~}E24Zf7MqGe!TuPy?Qb{C%
z&Q+D?N=^g1jp)K9(F{olp1k?X`#5-*JC^+MU{F~lAF>a<!AO<m)h^l+#gCIbRSGd&
zZ=~k|rr3=e{Z4Z*+(7L5Txpoqlla0>;6A3|m8n7xdPOM3i$xk=7<AXQsb8KF#r2^K
z3fY$IVCADL@@<Rxe&WF<&JnQWto{Z<cL{b}9R^b>LU5#ZIzdQmNm#>-^Al$)(eY;G
zq}k%M1DfsF+S8OI6;#wt?b#%XmikT6&rIps4_R8`Kc987zB_o>)-9tVEH$#><ZB{%
zJk5ujS@)uW6&fz4pavV)<m30QRJrTa!0It;rBScck@wu3)s1d6`lD@O4+Te_Bv=I~
zGnN-zEclgSRyzt1`e+b+=a_CuQClOpkR;?BoJ~=YQ7sZ0Cp4d_&;;~|)m~Pppi?So
zhr>%4!Uq6Wu&?V9sICpkscWyG9e`~LO^=vP=`N9q+h0o@;IRWo!^;71nmN5Hn5|T_
zhPy@O?W}lRzj_*tmc^LOE_r;JSTFpxVKzpd#W1PU915sCX5mr>S90Hsejk52j0zFP
zR*{(g=^@F^Dd4+uhZ5`)1b9mmL`98^w&m}Y6k_Z?xF8T2?c9%1Z9o|M*m?dui2SaE
zNj8cU=Kki5Zm|1t*j~6y5Nr@nF)6t*!RfGe2f=Du&`K9L(wb>|i0uwuoNLjelt|QL
z3?EsH#IQDQoB$mmhb;5d+&T{KBU1i>-f{7Gjzuq(U11464_w3!o{q86Vp(e_%)uK=
z+ko|kPU2+>l7y8yNB8vt*t(SQio*5isZ^)^v^8bMWm)oRciYR*B#KbC0yrq}0v2sr
zPGfdB2dtm}&Qv3k716h47}SvM9gwgnpZ|-Uo0#ES8z2Lsp?L}?evyF5GXZi0(?f!~
z_2);ZC=)T{H*XPGQm~I2jKq14vz6!2ww)b$eu<jH8D2Xh#&?;e^wb{{K}B&8^rd$4
zC9be=97VX45S<l!&*PPAVD`(f4K3u|KM#vDo1N3p>RMLAA|TC^wuzldz>!t!{VUHO
z8|&59iD%(`hr4dr?>_)rWRTX6x4%>FY`Q)~uxe+O34}NE?Hxc9=MYZnI453*Oimx|
zg2)j>op;s=N!WV7yTHEhKnGU5mY*o!l&`bq;s=h2y-uS&viBB>oe0g<&Ov*aco;91
zMUPtdSw*Mp2j^7*M(uj@erO3GJe^EtV6=S8oX(dm&@!l3W8iowp}4=1iiJG`om)As
z+R8aSwn(xYMoSIHxvVk!t*8^9BaS~Hr2H*ui>HGbc%~o5ew?0Yxknt!l665ddea_Y
z7aYRjSrJ*qpl8|`It0l_i&$0NcJpnvmI-$8v<=iWQVOqmLZEQp1v9KVsf=V;$A)!N
zO`lEcdi8M*{c6Ijq3d8Oao)2}PFY$;Vp#mS?NCJ6s69?f6js=6>-{bo4+{=>k$At+
zE-yNHy-B$m!0Q2fHgM$*efh+MJYO6-bY!%qe;yg>m678s-Lg*DkJ*k@lT`Zd-mV)L
z6XB{U(+^Y{q&2WZ#S-*htRh*LNc3$TX#kXbvJGvK*L7qmX952#q*CSpCUe}0gnUz0
zQ+WToaY6%_x<P9#4hu-rt($mq78(!=Bc9^*_8=me2MhYnb+r%;h#(1jy35DMcl0Y0
zd+X177>72g$TMjay&*`<#;d}M$1N*UlJBSDy{apU7&N&tK&?D{RIYK(idJ}jin)SD
zCp>y0Y{qexc!Mz;l))!_=a~w*{g$+fJd8i@4`vWwVOrDEeD#WI!S2?x-Z}RKW&9LB
zz@xC{q9b;yMt_34YVf@rYX`rf-s|{o@_(8gRYRLqPL^N7N}_dAWDJRZPzO(OZSM~G
zC#aNjzJp=My1+7DOAGyaNaPiVo#DLhZ<L}(*b>5Ob|;jg@)T`wauEUzaY2rTHC-o9
zlE8EBO=Mr7UJ~yXOg)26;#~TnSmt~NihAi4>KQuGH5iKerVC+HDYEc>8UyOv#i;zF
zb~cSWf>hE2t93fL=>e}DF-*oO#Ro`p3)WeEPxPl5o?<3)CZDsY^F?LTuMZ!l;Qo<?
z6#~d9ki)P=rP#OCHB@S4V*%;q(RWX1V9^q!%zDfOb*I*>t{;acv_qz?7vI@NWS?7&
z>$S%jbdf|pUU@hCfLvsvp}Xo)#54jrZKx+o+HMsy-DR`LZ0owN7|imE6D?#qBLh$?
z5(T_*SY!>FV)+Wz8dOdYM$t}PK~Hg39|c76nY(dFaxdqORjk#P#_d@vN)ljX(1UPe
z1F_;>gdST0>aI6JOSuAQd*E#u#zZfLr8S<F#d?t-Z+QL`dqE~%*cLAY<5ia5fr$a~
zX&AGGN%`yw;}TzJ!O})+WJ{yRNrglZ5|!*2Se|Cb;n!P;Jk)WE#}|f?rSV1$LWJU%
zb<^XD^@)2LnrrVL&5KM(*9|A!V7LNvqRHfA@305k=Gx+)!Aqg~`pmZnAA_2of7lo>
zl(*7Tac}ESk^E>QY-lwKT@((LbQOpk3ai4$fLU}41Y?1-MXk~74A%*SwdYjJn%abv
z|Kk83>(XFA!JDUOv308kGT6jFJ?H5TC_a#dvog`!vEI&0qYlOtsOPpdTwr_bnc#M{
zvTt-C6F3@E2v1BDJD8aayE##*%9^69)FUK|QV2|;B|3BU4d5!VU+MB6GvFXvVCgoW
zq3cs7sBQwac`RaXTDn}tq)5_<B!m^mJ-N`ykqu3PoDp9CShVSlvT=>B8v{%z$06&}
zXNn;D7pjLKD=hmt!mzUonb_U~JzfZcMiVwY1m*q?OzMh1<~4bxlzg*Iie!s^LvC2Q
zY!4H#$RUv6#r;JyO{EF`*hd*_a)=G;WawyZL*GPu59x)HJH+XynB6ZW7e6Z;N^Sbk
zz7;X^Dfd7Nb)M#vCzFVHXAo7a)<$rGDDC!QTxCjw8D?76XgTUw&OWbuf<yHDXcxX;
zzht%u4U?#F`nU(dC3O5H5F;CK+0d!|s^b$x@4w;K)dYW?UAL*#T>b&>0T|TGy4e2G
zaA#vPmrGZjY{~@<+Tlm<0O9`K{JwBWk1YGVNsC@Z#naA4=iIBl=$lk2A1^7#N4O2f
z_X9n-6K)<xgCkT?Wl`^n`)Ab8I*nWN+Pg^aXM=XV2vprUdEetXf^XWsM4VYf`lg4g
zTNR02b#0^Pq=au7YSN}P7#EVPTZ<#wSv9QRb-L5=LcbxVP3No|%JgbKcR-5W^LGWF
z@Nax;<x|(0py3Q{`Yt%+{%)M)UZ~wJ*>=^;TX;7b4C>PI6Omk<*(2jRS2^g~S~8V0
z@@E{iB@D%#E_dl#>Zeb<V?_Mi>b&x5FxaTW{Pmq9n-O%)oCW$;Pl%JS42*Utr~GZ;
zh$XYYdvYzLPltGsC>S2uV&{(IW-G(F&)yNSIK};yR(`>UK`7=Bfq>{`&>v++7wk*V
z&r=qG=PIix!s@fn#W2R--aJAZ1I{p($O8J@{Eu{oNW<PU!@Q0@5)Zs$0KR9?>Md{1
z`rUwo-8&4#{O_bj2L|+z8K0F^*(c+}O>fe)YR?&uOhVm}xQfskb|-a~US#KD!Gk;b
z132>itec~HCs<twCKSOGnni4U2elrT5#|Aq1Hg{L&L_#y(1v%)SUENIIaVJ1-&u;w
zY*#6#m0!l>7braSV_O#Sd(~f;x+d{<spCxYbW4XcYUZEAHHGkgqqf{Z;#bo%p-W*j
z=p3kh8zB%6awpqOOW)rSeUy2AU^t+s(yyanu)pxT6#QhHGjh8ONnRX5nYkRw!5%s0
zgu>Ldjm1_)i|Zw~yGQj!da2F>3LGRH7F~WipAS$%!++pjwdAl9@0eorl+Kysa58|M
znYU5NCkEe@ACJzt{uv;;S}u;6V%J58`gwz_oL8$uQ4Unl5_US#vj33BJoNJvvgCF{
zd=(`GCp8feB#5MKawYN!g8)WCeb}tH9?mN{%SUdK$+8fzZ2@<N6{lLc3$*bGXG|UO
zn+mE{``n0N<J<CZCnE8-w<FKn1-yJBv3q6-4ZBL8Spq?wE-H$tW}`I`n}i*(J6Sl{
zFYi@pEKW>*w-=a|qoP8=s!2R7$+3rK*oJUX>2gxSREETHi%Snj7Kzm!E1zy*2Zkp*
zR1pNk+DLrp>O(h|^fAu+^0E<uBsWU2Tjriw9k!~eTJ_!HT_;Ch;aJmoC7>X@HV@<n
zm<&h_BOl1_x8hEyc^-B19^ug<iBkl&>lE4CCeVCE{#k#F`Kx_iD8p;$p-GW+xJOsE
z-0<r#tkC|Oj$G-|^)kb{+pP#}@1b&tCdox}^neaUxD4I<%YdS`C=Gj>oH8tD{T$T;
zU@h|98Ny&fD3hqfy5cMSRFU&ySwIHi?R;;W2C-v4#a!7dBg+hF_Z1{iTOcI-BgOz$
z#EF_>t*u9bTQ_*|YM4Bt50@sns-1cacJzE<n&9v00#FeS)cn{z7ntWny{S_Yyj<TO
zWc|F_pm-Q-ep|LA&E<<Ib}pro80EJonO$0t0p6k+0ocDBYLAC!Do1ATKZv&Mlx25(
zHOA`2h<PjJh$TGJ0<ED&^Lij{ei4&@e++nMPT;C+d?`y*A!G+~%G`bQ47qB#7zkB}
z<4-{bdyoV}QYUZKn%jkvur2~Y;Eh#wz=f^2jVG~}?AA0(q;aOx-3@}L?Eq<;c%;rs
zKdulKtYgi&z3cPqIO@4CL3=+JJ#u;)^iXzD^zr54u=5=XY&@cO351%U<ACCrg3VPV
z$)e71#C)bT;pb_OkY#9wVVuP3`@s<qBFSi0DYfEP_C$GQFLWWJ9g3wfQB3pb-UM4!
z7wR5C@ys<VMseBapx!6R1#)jb%0F8e9?o3|1Z)do2UaqUGyC?ViWi?R-FRSh?OQ(+
z`ezJvn%<&3ZUfPhDZ;l+5vn$aCPBYvf#Mza6g@Ig@mwbDAh7=3@Hz^=GdnZb>M2J(
zu9vXHH!6fvGCZ5TCnN(jnQ4jRt{a%61l-8D6rH%d9k}2^9`p{|YlY9w8EDD>1v@~*
zzp!gkUWY*>XwpEFKvryee|=JWBP_E#m&$@NYK$}w)P1}tOgBG42RB0Ok@lDWP7&ph
zLR<nbmOFg7)qmb{fWyz`CcwN%R%h!yKWeP&u0wr&S=I9Tfa6sXwvqDxv$9^YO0HK7
zY~DI5V6OA~?W%sd>n?=cG;m;V&dQw&GZaZtzKF904Y3DSr~=JXxUXo1dUpXtk=as}
zn3gKO2yE<o9HP=5M>&vKEXmvf0nncPXO0&Y(N1|r$;%SQKJ(MU2x&|VXg=AY3^qs4
z2h=9IhJuY6_2i}qwZ%;7VJujg{^>(=TtB7lLr=fiEi7XfNn7yc%uwkK*=TFa`PoBK
zSZ`owmR+6XMX-r39spwZ8s<bH#VxXG05*Apt9qrkZ31@<p&|*UcqFs%yleRivv_bV
zg67siZC})4hj|$FJXEGz$4Lq^P`8VNj3o3FW*>Z>-FuZG(#E%5+WnjsjvwE40N%DU
zZ*c&ZEe3<A*BIVRj@Nxz;Vkx)^BM(8C!ZT+_<+=hPtIly@_T5ytq^}hf&ZJSzr0NS
zpkBapr!_saQmED;$U{3XVva$Uj%>5j3?FeE+ZMf6DIVRJOADb5{0XQjrZ4*3ZWP}E
zLjkK=kDUtyf=+&@%IA-Ml%HzBx(P8JA?R@NoHl#w{VdQ1H;XN;k7fU+mG55`R&1z{
z-}Z8WXua&;3Zj}467W9_1L%@G(2_oBt&*ACyUNR22X$$b@wVzjZ3IwUf@NhJZgalc
z{;E0{I;}uPMa|9&+<#imvenV{*?IsB5gUp7?D;!jQO=~|qW8%6?fAYO9S(ZC>zS3y
z<!JbjhRlWW@Xc|Rj96dffx_c}vDhpZm42jvblit#0>i69HRNsW<%udNOe!QcLVjDG
zLz)uD1YpAP)Z2GE19iAYWoulUh$HD=Zzq4>1rE2)`iOVcZ_c3aQ8<8PrSem}t6%8p
zpu+g|8cf6Rmrw~cXwxmp@nc*@38RL7x18Jk^Kc!8og`=AtRVh2O$g>wPnhZWiaDlF
z9{+}(;ep(#QeGwQHNcQ@xAO?0&0X01o1!f*%wkhbr4gLs!f4i(uK^OHaEIzLC7S0e
zvZn1(2E%tI6ID^KbpZiy9h0a-Wb03(%fP}f(W)#)W_Zu*QVGwR*B&@Ox5U-8v|gNq
z$#US2VxU-}(yi5nwCg%`=NFb5(}AX(9!Jh9ah>UBOw~C`0fWKlo)KU7xhuklt$$3v
zHNk87%h;{RC&w8h5!5K`k;~O3L;oQryjx9Fhk&-m+S!;GT*1x0?b220wBG~2FRv87
zn$&2;W_lPZr3T>5BxQM8HoYV%znf%OngbW1n+lqE3;&;2#4a?u?(owz9tZ)gw78^k
zjK_5?c0D4qCt)$0@aIb_7a4_t(omVe?NYWqUXu_SV~wLkh~CV68*0(yVj7d#>fCiP
z?{0#!%UGHt%Eycd(WirKSa0iOs+*v=+A-~_@Aoq<_C{ba>>Kcy91!4h+G1gyuK#1i
zc{Y-Wk4=fh-;|I##q(lr@$Vy}OUF`}L{l`!W}NV?(Ka9vrMg%@X25x3_G><OsV-+}
z+21Kw77U7;Hsd*)N9tu9W4x_%G*eZms4C8{DcRbEFzxfRtTm9ptQ6~Lf4VsDo5*bc
zRfSk=NrXf$4=ifJ>kcSr2+ga^p0&pxgdKe10rqCl>U)9<{BrsT!>Qy}O%1<ZNoPo5
z-F|gAV{t&L=8Gcx-$aLfO8gb}sJEaJ06!BW@s26AuY%_vHH~!6N@tulF+oR4e(7YJ
zyzJmiwfSp22km8>HkNn)N6^cXy|5rtF3dq}K&|q`m-I|7oI9v*lUdt0(fboDE|ZsM
zcJ%Ja2mUBMc!Y^EcY{@koQB^4d73;7Y^>z()6``ZWntp%Q9euGeiP?+zcc@#6xNF0
zugwqIdUh62wf3COljZ4wl2BCW;<;}sH+`gEN-^}We|bB4%__ub>REsQyL^q9^b0Tm
z<!_*J;57|lqvu-1r*&PJgwxRT>)D>b*}I!Wi{V(PE}Y!O{mRYGfM+z4RlVx^q6E*v
zrO6vD|1->)40jR<@y^>o%4+u$1sokyA3@SG(M8Td8c#U~hDdsR@ifw{ev;lh#}7Sq
z?=+4oE&=&;i|0X8!sa1v@nnGxbNZtXe_R@Eo&t{;v7J0JWr(X(sA*X7cZmd^%_K6}
zY(+=rR91{?{i$AC0KpJ?F>9mSze|y%mioy{KzK<{8&05zsZS;L)caR{WAoH16m|b2
zUSgYDMtcMR4xF+)p<ESJ@6l`Y#gS=G8a*<dzxBh+yl-z<iT%If*J9s$2*P71uF}(1
zdbZxZ-A(VCt-4jw3B*Hp_G57WU+WztTKvjX8;}~$&Um6NYWV(*XXx_y5j|N=&RFTR
zv{ClFrWD?AnEO$8Q<pejfBYOtuvzXF^wG_n&|e7gzU1YYG4@xFDF-O#_v00<UrXYv
zCxP}{q33%|0#uE}(IiNrXBQJ-Nn!o<5Jy^vs-sD;z_7FICRGVu>jDHeB9?Y%ET;yS
z8L~vBTG!sSk0&l;3%qmAEI<G|6`_#K7?@FfNE+b9QBykL0s}DKEitFW!qHFLNf>CN
zr6P*YkSGZ=5qWWYN+C(bKu4w~_|&V+BfflCQ<9|DxvPH3S!>Wc67)$QZaYb$g2z}C
zYmuo?@kQ=oCAS|{V)cK?*WFhYqg#FTuTuj`#tScHT<i>1s9bjNC{X>rohNa^eUQ4v
zCRWIhn*M<`&us1=t$tA5JRoH3N~Nk2mPU(pyl|ICU%Gvp&Omd`GY9cZJok5#O~k-s
z^NuO!;nC)24x+Y9NK`}~3fgQ;mjTUk_D$%7x5Z-J;Q}Y54p~~}TjlB5Xsm>4c<%{?
zCSf*We6x-0#VsDqhx69hN=chuN@xW|un+YNuA#rTL<Lj%ljyHKeTEUJ-LtHK!e9k6
z_4jk6?G};tTA>Tj?H317SW!5hy5piG<z+865w@z0ACsryCD#XGU|H=86pa>GI@EZ!
zPvNO5T5pC8qs8xB6VWHIyYU3A{m0%N<RNFzE8mRx_z7(B6<hIpa<2GLIK)^^VMD*0
z5%1DKmB%h>+Y0onh@ZFlr5{_VH26i>K%uVF`?se~?1K^Wj!Bus<XTJ-l<yMsSaRAi
zuY4@5^Cw`ln9g>7)q|+jc9w^5S$X4-JF7=Wuf4#|cEMurNa>5`n}s0y8mqQewo=(%
z%t^0_=eqaD8w{u5HkO18`7wQtdlgQ6VQLt~=z|AwJv`7GR*s!<`ri~eO{B8h;ABHz
zY4xRmCnF7f_j@f<CTVqx9wqSy8eRX01kO$?#WW^k#p>;}329v{brAP!q>5Lpj@)jk
zka>%d7gKJ~2?KiB$gkNy=1vL_Q6_>o6%he0V|y3l=CMB=2fasfH-#3X2j)MH4ea%5
zcVIu{G@H<&isC8ymcsg^K~&xa5_3=}>0<T*!;j($7;)E(z&QkWT=AzapwWVnr{EGi
z1{Sz?VY@X<x0}$OJyLlBrmP>I+1U(T1{x)o7I(eNc5WzC(`Guw({7rfD`+v3K#`-O
zYIf8UD+Ik8PSq}2>%e-@4A#oEhV@$C^5X%3*#5#|?IzN3xC-zIm^?!+qj+@)?TIN2
zbe=Gj;X+ojK~f4q+saPyMJ?d4k`@oJSOefcn!*$#AQhmbsk}a1@13(nUcFn0(suyi
zAt)rrU#9V1RX*SOE{drLxnQHpc({o44Hfm5FkqUIRV1}-9F>2am)`E!eGKe(Y4mHm
z49d8HU9g)4vp4iPwo=PmQI#^P2H=OMufvOwLjV-{g$F*#GYG%Ex?+jbzGQ-z6md2>
zspkMJkVy^AO;jFqMY%1H3QbAj#dXQR-;zo5DWR%Xt{m(*bD5LfT0X8|#y%C{1s#A1
zWFQKYNB|GP{>zG&8p?Wxa1V@*_o1c`@p+F}fYXTW52w1#I(I+Hs=m??Pb#s1h$XS7
zg9NGlYwi#IhRjodEBrpB_?N38{&uH2RDczGn}v%#uo!CF#*dW-;f6D7b`{Be-4Hyd
zwvla#|GY~Lm+v4kew*t6<G}c{&p|I2-VZ9DW}uQQ--Gi<*k0YTVT>0@-c_D}oD2h2
zU>Rj)?*J&yf$$_Gj%IK0P@!%qVE!3R29OkC^vBkQJb#7n!C#?8mQtF`_VIx^gxLF}
zalmhAdrF;hk4ik-9>uzn@U9(^0_;GqkyU_-N=Os(KA3>*Nfv9lDb1r1ZgCgVBRhEv
zT*fKuv6Kv*pe|pVSCR-O;ugW|x+0b55Qsg8HDZjpFxo9=Sm0n;CA7xNa!mAPAnFk(
z3Uo8BF9XO0d4M`=zSJPjF|uPKCK8hgH{~IC`L{T9ENNV;06ukl_bCa&vP|yHygDtD
z*xDKm$jzAFJp*w2@Mtnavvu2qg;;Mmvr#DDgDW#)V&_of9gRm?y74CJc^`Q&=jrvg
zp(1gb0QlQQ4Z^W8*d5L>X|nzlp<G%%Cwkv`1`1TfWUL6tXA^g5oXgRV<Fe^xO;G3#
z?&1i<t2h#l0>FhOr~h8qqpeWX>T*KRsVyekBU00~Q7u9ab^E2~MrPlSb-ipC|KD%A
z|G-9KmIkxYGM6-5xyec<<!uzP@6gjTUWG(Os{|+^McDL%-G~1m%kvXm<@p@zYYE^>
z5>rY@0|$<Dmv59$W|2*_zTW@JG+7L`5dLF^spk)-;95isw&FL;SK{jHP;AJ8wFcCQ
z4bDg{f}WRsGdY%*PNoUGi1nNt&oe1AX7{sJgqHs-zgkiME?YzTG3jJ)EPf4r3b91{
zpUF1R5IlAk_lH=3+EfzZQD?HYV`O%H?w5s(+><e=X(Mii)WhUKL%mVtM{bGjOT411
z+k$9gg><KU9lmktSXsqZazK;D2Ayzh_OKmyebi2dQ1j+iGu;g}c=87V{5<09lxN@_
ze~mBYXaG5V*NjoSF93&PHVoxElNp^PwZhYDCgF+(vtZ=CYP20iJ^}GTN=j?rOI?L+
zQjZ8_FRblk&q|m5sdub0N_=>>q&s1GuiJjgD+b=q+8XIj@-y0tybAfgPb-ZuWS}lT
zX@qO?tnd#@4f%9hPfNuTJ;dhP>><5iW>~zXa*$F8-E?ivi$nM15oiW;j#FvttT~}0
zXDg+aRuJ&;F0M;%kN$Pi;OU2q398;G^~1VoK?<%Xpx0(Q@w)XkgsPsD+KOxqKO?$&
zT~fCL`TCTd`*^JGTffQ7;SaNK58;7X{e_w)M*#%1VuA%BYD7Dafm4k|mE4Smi0gOl
zr*z*=L#26!x$<v}9E_i($LqrsFu0W$R0w=>pqu9G+981!>F&@*{eLcPgfrD|RdU{m
zlxbQP{}S@hux|+ejQdMx*dZc)Vw%I=P1NFfy-CULO2jZV!@3QWGice$Y{#?%5(S;B
z0~NQ@-uy2xDy_l<r?L!sG_^Z2_SDg-e7N-W0Qp9aCwX&Zu!T*{L1g%IbGACIcYe#E
z%0R_L_qQI7EABJu+)_?AAism6BW1@{1H#HI%&uqMH8(>R;jYn>yn3(-mpa`QqHosA
zMXF8TbWKD~AAX&w%=h9gfPs|ROp|40F>H2spg)nQt@~8P?l564{>K76&(nWwSY)Z`
zi{kE*h9c#;-D<g~-If1IyMS;J+I?+~g|*WZeh0{msd)knO-|pFe)JYdchHD)#s?F?
z?g?Q+@kHvVj4sV>+I7Z1>``}1z&fP}1Rlul^9}Z{yU#EH*Rz`%Q=+h-593?W6d{Kj
z?|j9;VU><2w4b8`J<EIl9vgt1$s*3Zj+ph1vjHE{i%<QP^QhaOO2@;25)}ZPf7NBV
zHGE+;lcresV0e;|L4mx=5>(_#*)JcC{<({zOPP=N#}{qPdmlo@)0RKqxvy>n(Aj0{
zi3a!2jx3PS;|!TOK)58|;H>!uVq4Tc*7X~u`J7CbJ$Y?rfM7;dsg$4z`}p&l`1fgq
zR8v22h=Hy7BHtUTWQO#CIyDgRE-{@8Uzyn}e2cipj*Gxy9kTwzKY1U=<6WJ1%+5O1
zt<LU+O{tUG+w~;L`2661DP($bNOY8uOCI&H$`zcnW7Uf1A*DMS$Ax3W2ipBbn{Lye
zwiGbhDJD&4mR$xELzeaB;mCM0PPTtW>FU<)s$N|QK>@jPA7N0r%<nbc?5o=mceRz6
zXA;BH*|tg?)W>%ma@y6J6t7o(SOW-)?X3b&Mg;sPN-{u}PL<_k26v>z8l<OH5srW_
zfuT!4<_*Iz!FrRvEAFQ69voAMozkm%xpXKMTwYT9tWO)&FP$4XSp&mp_bDNtFw@ey
z5IngxoHUR3<RS`Vz_a7*^WXZW3gc!~?of6Bb0K(&h^LCcJB2eI5$?*Q>UPatjrm|1
zKN$RKGfKo$efMG(H^aq+1*|Elgh(NUPJULX{9QGg*|Nqd<CREmuS?EoTivOjBalFO
z=H>9xQQX&#92JU|Q2%cU!{6?)@{#eoR2a?p0DmCepH=@QSNciwidX~IWNMTz{A!XM
z;2+Otq&sr`Z;hm4;hQ=7q0DkSbDPGgi4`vtE~;DLzEi(1{U_|;C-Nq}Lij`$=!yHQ
z;G(Q5inY|3+M1KUdtO1k*AFTv3S`3t-AlAk;`9_%?hN%4W-IB<1Cn);NZVXMQ~J{p
z`jfyr(fg2@>mWMx4`eBfSi#IPotGI)EfGV-zGEXjx0ahhQ&524joUfLyt_eK9T-dS
z*1y(2(WdgGis&;#KuErT&tbq+Lj6%*0x(hDF68ABu*$dC%dEkpW>mkATU1fY`uow>
znH0Xrj>8o|NHEN^Ttf=MMMSG2<b{q{c1Q81{$lg0AMJWuMMM!N9xnD3GC?FbX8J#A
z?Tcib1fJ2WG@+;JFC}eaD|=+QZQ`4!_*QFO2QhR9cUFURDD!yLXVk>kEm*Gr0IX-_
z>IQGxJh=}W%QJUCNGWtzN!;St4~i(9fCA)_^lfeEx&@E2FMnVj;MbfowLw8)T!wT%
z!OYkw@)xDLopBFEt<SlF0HxSMltjZLILoe~mO|IQIbByzywB=5H!Mt^g}{Z+`VE{#
zHwbOaUlS1Ez|)m}v;{HQlDph!?xX`kccBiC)k&cG9&w!*{PPm@-UWEm2m!)njb%pa
zmJiy`+74qi!ir~^>vR~Z#fXuipe<p**edZwe?xsc<j{89y(&AE>Xf>;&2c#WWX@^S
z8@+xD<6ZNGQ4BI_EO}v55sL+UKX_Gg5cPUH7fTgpC3LFy74G&7kqDdcu(nsawy8U+
z{u#%-v+5Gd=p5%T(9eBi3pLQJEY1=nAW58mN>+^9&N3dJ=CoM=XWvWY*+Va0D?)QJ
z;&M;s;}&w<XRz!4wK~dvyMZs;rJf)W!^P%%4XwvH5w&dxgWQ78`D9-(nM~Jm3&Svt
z0Y<BaKsS>}EvU)AGo-a-(!ALBBLspvuU}orm7;4W5ey%<VE5LZSqt;pc3MRKnSm~`
z0KIa20a4_x*kzE?IrEk_X4cCHSMWbOp{<rwah0?^9ZdGz620#NmMPa}kks4Pl~8Mb
zA}sb|+?X1n_LBKS(l<4ADrFm1(%qzZ)-<S$ns8hO=H4#3KsMM4Kh(s^8)uLLU|S+5
zO<sGTs~Hzwvxm+r>ioO$%>b3U^~U!f?4a-Gc2=gp8>AT0`Wmh?7yO_gm}$&%hZ=VA
zR4oTD22&%ynIqcvrs9)7;O1R7hLG%?2^*JEwTon=aS(sE7Tk0(C`5arCSeaEEvU#O
zHG<VdLnQ+6QN`^_w8=yQ0Mv`@^S`C|@_6v$C$40~Mg-okh#{P+9lh97wpd~~@SgQf
z^1=&@L08`;UGlbLs<5lF`Ii~J^+|y4L~Uu%RD7npAjX}uS9fLF0z~sTf51S?65?kC
z<)xp*DVd`fQ;KI;H8o9xd*xeR+M!1n0|5i9#+ylX0@S6!aVRPE(_%9ELf2<s6$aP<
z)5k6_V;EacBtdg=KI8XraETV@0XntJ27k+#;MQ%EiH`)pN-5~mO*QH_nIKhTpuW)P
z0dkm~Ub@Bt`aT6ZSpXJ5`|9~0p0)B~{*|OZ;<}e5S%ezkKFx5-7cijUJZOO1mQvr9
zPxTh}`I5oovD^w^25WzvCg*1<1?;>rv)jhKXbDz?p#wP8S0}MdPkyfM3`-=x;>dVM
z^jO#;z&D_|^;)gx+Oylvqk9~852k>*g#sKvoMbR=yfo-uFfDTR|4H_qA~PX_aqe3n
z0sU`A((Goy$qKTlh1rixidVV=y}FUJL3vjbv3y9kvR5}}>+otQ*EH2WrDUV9k4_fU
z^y7Gb7zf^J*2Xp@^tu6w^PL;aq)L15Lei=9t7?oQS@8=?VwPv^5xCDqk}MQr|I26E
zewF3ejTsV$Y*t{etqBL73jqXVLm{ego+H%AyQbZ#RD|G?_Qdyiy%u>eJ#*v8+DDL=
zXJ1R7&cSjs9u_&@1&dnKcsX4YyO;rMTz1kBWi=Kp*K*3y%Y|DV&Hryd*@ANrK^7wT
z3o&mEy$i0>U;j>gVlP9abw75aHQqZVsJyW+$RZ7pYi7Lesvo?-Y6%H#oLX?X9Ts0u
z@Jbl^)<|^+eorY$hlpvd@y{YprV|Q^N^5_wUJ?G307A4-n)UMH>!?ISkl{jX3ufoW
zWg#~3U7Ogwlv3QBO5QI%LBZ>`$2%pabE1T*uVQoA#SydTsOj_Gqo?bZ1<MvA9Q$kN
zFD>2kZLi<twyJ_OT&AupVV+c$lLXNZj`o4y)gH!x<Sk|PJNnH3M=&rfh&<si3*zEE
z4e2xHn<8Jsh&62qaF7Wm1Z>8tONy%pRqoy|@3011up)k^Q5Jx6H^Qte?t-m(H{>jW
zhH7kxZVf+aYU}pLl*#;vg>QSJ!ZCQ1aUXCUjw?}6o2B8x`<Nknc1yf6nL3_RT!Y{O
zR2v&14lV;>*7xEUV@Z~cn{i~hHZZH|-hN&o{`&5si)6pK7E||@!Q->)CqYkdi~7!u
zX@M|59i%7RW2?3N)_XrhK~es!__6ws{rpZ;(CxjvA)?Vsr<h})LB!=irX%hw(r|Nw
zRUPI5iM7-qe{T0dJUGD>pfE&(+g8~Oij!ZHKDbg;6SEpyWq4NlK>aTe9c}6G!u(fM
z@F<8x>s(!A5pfB_;2<LvucOhus67V2@<1jFkc5$?i*HLjfGb^SHK?2ekW;#ot;Uc-
zHbJLy27tK{#uPohPYr?Hq!@~)oOWvJV0!0MR&Jw3j$6chkEHC>yA10~vR7%?^A$*(
zrcpS+1b~p7IQP{+4#siJI_@~fv9flM8{M1>iyOyS_Xb;P!XZ3R<){S)?cw>m8qUbX
z!1IK5-7*kd;DBaL0}bc3_({JY9UX%=_|1B^F0_}fACQqHi*%DuxR8}|$l+v5Tps@1
zQO&A5vITetCdRnYt4eV*#4>1>hLB4_{A&V!k#!cDbdw`~l)ZFkSuPRjtr#K9qY8r>
zudtxlF^=!CX|QC^5Z6@O$pBF44U3|?@7Q<%PaB$*F=}5vI0N`|gAN>-HizmIeT3Ec
zp?ODR4Tg~VIRY1{yP~4qs?So5t6&}-CzojrokU7c-u<L%9elYmxBeUvU_yA{tPl_~
zb5$rVq#$g?M=h@nQq|$daJM!Ube7uP=5%Jsk<UntI68E4+2Q5mg+u?Yy0421p36i9
z-WiXu45%K!`xfuT^6QWEVO$dPXQVBgH7NP@7lCz8KPLu&?z$7<6733nd_825ia0M6
zl7`Ly$xS^T+VR1zO+$XIg_@ErawDt_9qL9M4z)1r+8j)GIZ;p7qWJ|)avm^&o6IIb
zTD~cyS4shfl=0HZ1OWE>;{zJdwwqg&0nzv{jSoC!5zp*Jzc^|lWPOfB;)PrK>Dtw-
z8!7@$-sAqgaWEkL`T~~_eGZAM^Jm!p4L?E}?LKDQ-vnzT8N)#j%@59XbICuAyX!WL
z?JsfzNQvtw!g8c}Q(58iYI`cdPd2J4?bW2ryqrlO?l!6u9`!wcJ@wvtB~nAcBp_VY
zm5H5dL@`-KkcFhB;HZ0)8BXiv@@23fy+lu3l!(^{jJ3zxYZA%Y*QYZopVUada+hR5
zK$5R`9I!mklKAjpGM2ZiDAE`-hNqg+W@osLD2ByQv?>d2a*5Q2b30_OBrL!0BRwkN
zcYlHRO9wure)iy<j{*%6ZPo1=@h{G$epSeXG-YB06E#6af|u$S&ek8Z?05i>tMs@O
zK3kAo1K=~QG5_iq`K;q5$f1Wn4HneYa|i4$nDk?St_sfErT9ag^V^mexc!>SKdqld
zr_HS73<ElFV3>0LD9I_{-7+WdFT82@s?%lJG9lW)<~me|2LY0z*^*d%n^`W+qD2Sz
z6p^QicEu|-d$?egZYy06Uz-IEa}4JZpmZYl+YURnQGt+_4q0n9V<}cm0V;_#knj-X
zgk~mf^LQURnQ?88DW4p3X3?JbFhRE@HLM;@Ys)6o=CS>OHk4-ZZ>zY)kEV^!H@P8g
z4Q&K6YN}WHw8w}fjE+EdIwnA(6p^~TgX2Nj9Zwm=&3>+Mlu9!eLDmmFvao%eqIN)>
z=C@UXJ_pHyS62JoHXZl`he>R?AW%`&>U$IvH@+7rB(AxMM?hFefjVZNy`C!0-<!rJ
zc&WqMRTvsL_I_8m!cb#<9N+xb>7jW8x{XY<9n^>1LWzfTQ7FdEvcAu?jkMa0e*!)8
z+)@6C+>4svF7W|Eh5tA_B+9=KhIR7aXy<yhW|zOIAG3>c=e+N8ue`b18P)CE1@fQ6
zzd_!=*&keUVhr_gkY9V1Q7*X%mMr<xg1S@SFb&bEVg$b6$W*KODuiFyk3ZV^3e~k9
z_-}OjGWd6<CGNl1Vz{-{=~o^xe4}E{Q|RhRz?(ZtVImJP*{`^)a0Q-C)K9Bp#VN_<
zrgXf5nW=UALnLJh>lmPdz2469#cv+NsdWuSFJ4h7KEu@FR?^45qBzV;bw#3S7I<gv
z9uf4PJp9xXwiKP0*M4;g^xh^JyEBaJqKG=AOX=i>G8h5sJHP}p!;Hz@SXY>-QMU@r
zU5W3_eEuCD91X)3yQ)e8Z9X^KvT~lB_@N|)D4B3Q{Bqq?Eoy6qpk~id^SPT*zaRDJ
zay|<!!YXgKH0GYrsF#+U3y?Ol4T8A@e-xRSII%E8n6rmCLPoBBYA4%PD=%T`OX6fp
zNRvnLfB&5N`k%Av-t6aD3sGforukn{RgV;uwUIY}XR;A~m1LXueu23o>~Qm*$JR41
z8{(hGx{aCtM1W?AfJ2{?P6^%)^iTAL`{Qr*70iW-&wC6gKK<MdM>W!}sjFerqAUV>
za+TZQ-rZk(h<qEvvMb9b+j`NQO<ni7hj2Gp8u;n|>;{VBkp;ar+8Ri<A3xb{$e18>
z$i%^mXm6&!&oBLx{{2<|%fH^$yEx;hQI5zxt}<jKU@mh@1;ogaOkTN{56)oO?8&-(
zfD6LS8(T)ZWEo%IU6^lRo7oK(RttGxlQ@WXBv#R@4_+75oC2u+0})vWTGXfAp86sp
z7CZPh83N?n(^1jjjaAa1y~|a+B@uik!9v`+<?}LL3QMP;#lP<~GUMcO`nX7zCC}Ro
zKTa1#;sGenRbw8&WWVh2neW(J^8)?3e28xwF-G(0R)6qS6=CR^vy~isFi?~E{|mZY
zEW#=<XCx|i54A&@E>texY1f#IY$FO{w_AEe8BDhBG+~YM9U35WCc!3G&M)qsVQJ&D
zJu7FIGd#sXy)t76&TXCkHWGIeF^aQ)>C+ZWeBDVSnHuHpigZz@B%LV74-sYmF{v;|
z7{Bmcz0#_l`wX_fG&~umwZiYvMt?exytx!bA%+VL9EIUU+j#M#cS4|@PV-Z<?7zXp
zwdDa}YFCZbiB_}}yV);niBiJF)YdT}96jJ6r*ZV;{>ll^<wysph&1%Bsc*n;B_<S9
zzQD}{Ht|698~+~_zRnvOJq<<R)!$x*-2NO?r;r193jE&Tls60G-fY9!&OBC;6_9=6
z0~eKbl1qPU+71cWYpD63_s*Se{nmkGX!zuuFyaFoaf^x#8d*mOoQxX;f=nuS58<g9
z?Ucv2gKIBk`{<?<R_DL9#y55wXma=q=@74ZUJWkS@afbq`1XvfsXf08EBd+s*?PZ4
z;x3u@j3o{-Yg&=zVZ`N*7L6>4<L*oD-$m`B>Y$T++p|!|Gj0_GDQ-v3u1v0AEN)3Z
zeG)XChIg#wwY8^FpKu&OslSr)RN5Htc;3f!%dl8aa(T~D`i_~2-EsG*sQhJa^27lm
z-Oo?NQzx&HVnnxkDD`>(dR!59r|RH6+eKwX4ev7u-F@#f9UOBpfFDJXA>F6M?3iEE
zkPgX1*!v<cr7_e1&##*bmQc~`i3z8Dj_7p;|E2=UMKs(to{Oki)g_-cT3uH=3?Dp4
zWw7z`B8(bmJa7av-hR$jyWp&d4ZE4$*)DMVFj1i31#^(_V*=sEc6|>_Nf{1i$U~9Z
zCaBcdj2jItwv{H{XgSM?Xf_D2-e}iIa_eRfzN~bZw36Jiqr%3bI^3*Vzoh~WxDG`M
zRI#Nl@D?rI+CB;AvaW(?wx$89Egg4LB(vA@ByJScnajmq?XY_(?9V>Gy2mD!cd!qP
z;@CF-O|w3qS~f$I)8Qqflf&L=2-S9nwr{KRVj`vHX9V}dJ%qA&GvC|Y1|LmJ?NHcy
z@aDp%r+Rj?sjFP>+2dYfhz(G3zWoEEL-Zx0K|__=sp5-qO}6z;G16^?ScA`B%`aTi
zUjmqX87w&<Zo)mnC4|KXpH|hhGQB^bEn~i*Rn{Vo(l!7bgKTx^Hwywe@z-f}2|BJ&
zp3wN-CN{l$Uhx_$_BAzT6y1~gK~;xNiP7C>A=FKhc3DE_@G|;Yu=+5g;+UF`jvhUI
zR?steGFA8QQ$k09=jv-Hl&CZK0ZQE4dIq11@+sM>_Ew`rY=N*BIFGd!2&5x!l4tFw
zn=tsXLm$Zb9O$MP;!-^hU>olEe^UCFt=$d-j70k$JRf}FUWg1;P^qn`21VRQtT=)q
z6VZ!Zq*cN4;DH@h3d^=)9ZSu;$NJ=n^xO%0=dxXi4V#!S?KwYXf7u@&o@<In1U~OH
zP1&JPl7TplnDSQpf0OUIm$3c(G8FmPsd6MpRoS$kY;(~&Mnf~5ecb-x4udwGvUTCr
zrgWhzYg9^cL=DE9j{CC|?0G9OIr!(#F_6?eH)%{)ypU?ExNPi-YO*ttCW@L(Ne2pO
zu9*h%4a97;l=S`tkzCHu9_<jl3yvN>epQihrLQlKI~gM581I&)5jT<EU=Z9pi>GIU
zp7pF)><J(dMC-2Qq$$a9Bsrdc<&ug#sHN_Uu)yX~V52D`N7R~0*IFm;$W>v@4c7^S
zMYc*b1Ebmd*)Z9yp)kVd10BHbv@&=3W2{aSC0-I&k*tn#ZR-&@X5|lR$YwGQPi>(;
z^-o81-#2p^lL?c&@L0R++mxOnl%#68JtHbG$rO|%TVIQ|XK=EMb`A_xx>b=tz(bhQ
z&C*qm%g^r8U&l5Ljo}qKCj@Bf9r5YMp0ZBMn{o;zs?V}=9N3s>Hmbs9i;!3LNt*Y3
zS9K5)G>g!eD+gx<Ecbnfk)z=+FQ_dD`jVG4tK2PL1^Nbsc1QBD5nV_S$HoFss)nf&
zB<oySPYc4_B+0)lOwiJj3eUV*X2<_Tm9y_gqMctCCDW~)qw3JDdbpO4<v{w&omo}-
zdaC45+009PUBsM23+p|b44IL_)LGB#NKq@K1lX1FGxvp>SSZud=X*<;&j!|l6?fz`
z#pd+Mb5z^dSa^kzJgOfon1aZrF~pcPcW2*J?2G0azl#SbkJOGo&`mjj)S1LQM!>!p
zvvxCXmIqAUp0RjwEZS7`?z_OLvEUL0t7eP#^*AFrysN;W((HyrE_2_Bj>Sb8rYA=f
zM8OokQor7o1%6Ig?%nj7TcKZwj)qSL<wfX+s~dd^?sk+V?NNwr0Xgh22j9>AC9E<N
zhC)rtVFz0wLO3_t3F|71&taLaHWaHI6cILTsS#R^-&-oXtuU0#l)fmRYZbd*_)3SH
z_xFUy0ba#Xab|!+s%~eM%C41)D*7a{15)@^%;fhsYYd6OEwh?lgpM=OuNv&jFpc%N
z*T8=yQB}nlJ%jB*s=zF7yle%lhyIAI>kCXvq*|i06`~<4Frgi@_gL#)+@-(*olJit
z%eHU~NP76=HMu{<tE|r^peO7qAq}&Kjl=~ARmQc`tY$|tRhFcaS^xe15lp4ZfF!y4
zVRJi+I3LKIJ_TC=8rnkiFf8y9X%Eqvx9WIJhXhNRWZ6PCVgLgUNU!c*LFG(i4eG*_
zHNT~aj?69xFcNE9zsq<k>V>#CTn#|aSb?IM{7SDitTTDHP!Ork<Rb%<OjjmsN_h>`
zs_N?Oq2~6&kB`J@x}(5PBd@b`S2!?DKCysyE0_Icsu3AbJ#(dg1bh=Ps;*N8ohVnH
zbgWVAo?_5MA428XyEz_-HB*3%<K=-^PNoyd6ocleN1+ky{S_c_sDAcEe7*8_e~jSF
zMRBcgA5_MVqZ}_50sx$Maf>YwzmxQD4#6wY4$bu0!unP+giv!x$Y3*e?(@SaJIWS6
zz&y-E&Gd6;L*|L<IeMYPK^i)ox+cZs_n?zJ2wzujN&(;OtJ&ypzw>@r?x)#($u1pj
zE<GX{{}LF<1Rb;4-Z6R)!VUSBf7Glh22}TO-9SgMk#_J%$!+~Wm?m07InfA3D$l%2
z3GxM&-K7hjt4&#|q7N8elY$3qVx@;}J!R%$@$Ke8O|RGj{EEAyhxkryl?y|ZYNRpm
z$<`tzBv$~6g`20z<9<G(L9_;?c6gMY_0C<6RwbPf222b`_&*%7Ui}Z`2C<|)5Ob;|
z;@t-#vZ3=6jd^gHEzMMtYq59?+M6R9iiN5w)(v)_sK-;?7-WY9DEEYwZ14ue(O?u(
zW!}bru3TEkEWT%iP6CcE-nBOchKdhcRhNl2P8mM6j**6IcB8&qrPZOt_u%{_h^ZFj
z=^XytD9gCyiwBCD5Vl&X8QJ0yE2Ep=Hu0#r-YqJT1g9y+#Kh*8864+60)$4GyJ$}=
z9M+oz1^qA%dLtBGG3g(3Ic53b$bOe3Nod!})%r!pvur~>vf&AGal&xg8r$0V%?#kU
zjINVD90bT7dk7e-_->Hcr5}}sIgg&HlTHW!<QMctJ8nyd)(o?+?Xw`%NYI`+ddAzf
z`Wx-nv}{h>1}6{J6fg@)So=cgNsD9EQ<%UrD8<}}Z`tK#*gMLU$XQqz;vqfWN#m$s
zF}MSibKtCTcEJZ-k%el94D-D-T9HqZZw&T4=4s`H-bEtSo9W5U2@WNjiT?LqHlX`2
ze$L{#<iL=N?ygUysHzYE${Yman{rL2PVZW}U+D4@C!zBQwS;;Lb*myP0PKc&bcJJh
zhU<e?$daMfRu*1?>I(C|^79^Iv|4D{?m}0~<M)>647p5?gN+#)K;X2hO=6`M%JXzG
z+7+Jw!#F+@^*U+qj9Fs10NP^ob+_hIarJIsuq@g|AF0y~06O-`t+G%d_6?^<+~Nym
z-y|WOZP6H|T#Jh}6&6|AjM8#Y4{Y+rT=uOAJzB*o=0{*;L1?xh>!_n42SEMy)h2%~
znrLIK9&{D%SqbdaG_&Ys(P=*ivCkY;Dg8TQ4+gK1gZWRksYoq77$Ts{^D~er!#FBU
z@J8NS5)DcO#%dcT5so?SZLVO$k1IknA7m;EN={tZ{qHOd%+h*V6+2y?aPn6W&Ccz5
z0gIOp39B##P;TkP0f&=fSW9xH_n!`&fZ$SstF<fHW0-fwlX>642S@0E0-$2XwpYW^
zpOOBt&I3wv|2WqM>W=+I4jcs8n{?+>&LE!QAfGU5Z`VBPB*9<p9RkS2rF!p)`${T+
zNX0~_Oa>9sg%32xnhL2?Z?wt%d$uw6*}lW!$T3V_UolrG!96kjlbzWQ1DXw{Su7pE
z8@_5J>fSZARX8arqoUKq?8(ZyEb+uv9CHi!{zgt+CvY7#{^rkQ-U~tiU$W?f;ti|&
zD`=?s`ZK!eayiyfUGetzOxF(HBu4Yr(0$cZgopdTwdg085?_|}@r<!a2mX~J&9dcj
zlHZOKDC(xFKmfls_|ym=<@Guu7xXY(fKRF&<(WI9I!#YRP18|aNK(Q2^ns|aFb)Gb
zTOUziq_!{WK%%uvHz}()j1%2}UU5uAEG>2yTk;1zakuHqKa7Y45m3~z#R(xATIZJ}
zJNP;GHf&jF9Y!lOH7W{KVHuXyY5@9LChqn6X2WmFaI~nVjL)3H?Y?wenLOHS898t0
zTK5LzY_<(iUhk?&naZ@a5ampayVjR2jSikI=tb}0Q-e32{T`2vF=urcW$;gk^SfRe
zl%7v{Z9`;?;S9bn$dBtX3~$~VH#Hbp3!+CFi`hole$nI%j0ZZZo=5g8Jd-UsI8vwo
zD29;xO*v_wfa)YPj>X|s>chNyWVa&2i{ya6;|RPlFyKab+~{a`6nk})FlQ}ICd=0F
zgPd>4;`k*(z}n{hTzk@ix(`3(P0Eujq>G+tPM{g1#v1>KI2kS?4bPcihOm%WbCmUN
zcza|Tyc{I?RDquiaRqG;-!8$yEE{9b@2;Kcd!(1v_O+dyEQRF?MJ_WrY7^2PL@obi
zJLSy!&vTakt_AR=MY|u{D0cYC(pOQRjcN9bsgmkXL`*P2AahZnJU0T}J3z6fkA+0Z
z3(~rJ0Z8-@*Ydc};^dQ!ID!fQ<sid?`4z>NA(q)JW~W*rVcpqJS3w>lPtJ#*ET-|t
zBP$uc{sV~j;CnWfT%_tNai8w+7-0AlhnT-t-4j8AO8k${r~%qUfY9Xz&m65|3^UQs
zzil$4?Q~?PXA4`qLu}G6#<R-B?T)G8%yN6aHp4io{b#XWn8Kth|DI<wZX{&vG*8j|
z16J(}5rlO3z6&OMC5`&Nyko!ruGnbGs=0cFV1{;NN{UD4yq`rKim@J<-zaM-jjo@!
zX!^SsYALgb1-)zhQCoicj*#Yy8LCkpTIzy!#^aqgV(EixmYH3XIs};Zo4+ZKklFF{
z+Bl?jhF*8>f9D5N8l2<+|AffZT}WQT>)mpG{$Z@*^RRajw=k$?mKX~2$xIDcQCf+~
zHD=P+z#P{V^`tFu9&cb4gyZx!(iSpc7~j>e6}J^Q1VEg<3!UTQrg&|LvmJ0CLQT>)
zlZ43c^WLn>Ppf&W3`FdJNkqk(`A1HcYohvkM;=z#e|V0z3RMkZJ#Fm*#>}RK2Xv5r
zq%l|*Hag~bJ-?-c6X(32;m;<6EMgmSKkLofKEH)4!l2!Y+pGipQ~}Pm%Ixd#Grz*8
z?um445)))lFa4lsBS5vG__@@`<8eg9yHObhilfQY|5i9FmpfaXZ;+B%3*Q0w5qnJ?
z)46%^<>(p*QXuM)ySjc~Hg%YGm)d_x@V=#l3!Ak_o1^Sfqp(obmUGE}#SRA}XO|PL
zGu%iIpnpny;ZtqYE)j(DvuI%Xt8Nscd{HiC;4ODOVpgx;Ak+!j1V4GVbsGn-Rm{?|
z1!YwSc`o!JHYRkEwjU+ph1AAg{R6qWpQ#of%AaVzz<-#8S1n}wTo;ODtyC>UPU6+I
zW|K*xTF=l^{t@JP$8)S%=E9@urVs}&xf(3?!aUtPz+b`gEBWVNZgd#zMzCoG!d&{=
z*<L*-6}`S>s&9|@612;?r2!aYTz2^i=$OENxz+6|%grnGud8(_o!{?J%IG06CfMN1
zEi<^PIKT%?60*Cp@Im=Ws3XxHjDYYGs;Pto1~nD}@}hR#R{?BUD2>m<#!N5`&^j+n
zg&@o*^Ue7Ga4K<@m?}<nw3C`QY9x{1zq-aqQf#o?P4<2<jt_Goq}U?|CYkDRd<j$D
z>qu+~NrgxMEc8dvp&<UCI6Z;&2aXC&X?g$LgFv!A6a3NU<X-dUn3nj6cvTvUsuniN
zLDNhk40MxNSC~s@A>=%HsuMP>+Aa(DFIWsSmtwF57zrU!E1IGTq5k?efn)l>2jkdP
zKkg2;CFlQjh<0u@C_9R$;q!S?KsDne#~=i=IfW!BHy8^@J8Sudc-b_BD0EJ4fs)b@
z5lj+k3xy20DP8}~$L!>%l9ei16gjK@vPs<jL6-Rc)_x_XFBY?}T9~&32ZpvZ@@u=a
zRdv3+$T=#tma|1y53=;?{Q#J{wtM?aYfE!%UB)5mKp(u3$cu_&ce`k|rysH~!T6eQ
z^nW>vF$Iqwbw@>-hU7if-L6%(cQAkWbzuAKLRnQZPE4~ssDB0an3fo6fNs$Hpw!|4
zzPV8ro-e406~V?i=F{SK!gz<n@(ax7T?TBL+P5j*qd6Nz%)(BqbKLzNzxc{cX3QlJ
zZojEv7&hB^T(WD!TjszM$zvoE#S(l^<7^f~;_?}-nk)DpenBUfR!yXH`Hq?_g$X`J
zCldl;w=Acs|B!z4V`*LGT{eqzjS&n49S-I%c2?G3(-nIapInx~3><`Fch*g3U4p8K
z+jf$J+_zz07B+G~L+X_1KSe=r!T%ow^GMBvL$eK**y0*uuF)sOjP4!vDM`Q!Bu`$S
zor@TDLe*pKkuA{NzH&D@%8!lJHeCv5LzYZSkXj2x<sOWUUd<f6^6|$m4X=4#1hYY)
zF{N_*p>(m*kr>-q^!O6~NIw<t1^JE?ny?cAWcvCnY#bctqK8`G<I*?Yvhd22%^@`N
zFaVcjR$j}jY~{IP(aD5!l_@4bk&~AYigHR!X|PJ~+5U8lSiE7O&EX90(E<&iR!kU$
zKsAf6>69dwr0V8+fF+zFkEKTfn8XK^2FxS`U)0aBe(gAC_E)*d^)GR9H|qj=wQ2PX
zAD}Yz=d@p--F18e%DUpE?TUOo73EJ;L;YC@OR!MKRJQp&sr}yr2n5FDpm(DU*FoR2
zJzEy<R`T~_9>e;&Bt*5m*r*R>BEuXha<QTM{iJ&wKvT{J7@~EXzUjB8gj!l8<zWpo
zG8gX)#%&k7efHq4aQHRL#O&=-lHB_{%v09H&%S&f#7h=_ugqrrMpcXLdrRcOS^VPT
zP4h-DYqR%m^Vvx^+ktFJ@q1qk-0Q}1Qt6$(AzOa;NVlOu`MPOB%Yi=40l8V|8B~bE
ze$THyLany&O|Nz0x8<NaKD%tK-t@G`rc3#(q&kax`tdJ1Bi1bPX2ykmFDVmqhtrl_
z1%T(3m7ASM7g2p28op!TC3`8DmJBxY1%jitV9}>`BS73YP={zE$%IoDo~woY9)-Mu
zdX6m8LrUN||8T2;cU1XEWt*dUNMOHH3K3=Z&8hIuZ#TbSEE@RT1;ZjCz0joqgT@lS
zg9INmvmG?})G4-FQ9zqSN*qZF)ho*FN~5WbvnY0mMOJ`kJYHE2dVafg#1R?iKD7{I
zB;~3p(;|1POs0s*<Z3N}DVD;zVbQh$wE|GROA^Up7?^^{)O=dJ0QOB7+FiuU=E3@I
zdJfiQFR0hDx1450%$&~W(^|2@KfK+>MXxUW+%T}lNNoQ0K94kKf7$od>-a($@Pu-D
zxS}0?LI%gER+O7EA!S5!4rJ@jExU@;Za>?ov}~+|2dWVifjq(1pg_JJtm_rfSQ`VW
zZrRO<&SHAE-!yIuzbn*1s%TJyQX1USne-OKBcE*Qt|~IBVXp5!nPic?<${~M)2vK7
zihGxEn}Ocy5zizjpEc*y>8H8k09qK>i!ZcWWz#AHs*GTH1wP`v$|qM`B6g*HC>qu6
zEt((6H18}5rb$Vz0yhnuWPJJ#E}(5J+RqG0WcwB~Q`ccI@_(xnQ#>>yxX33ON3;E~
z)6(G`HzD-ej-i|)irJi@AGFFnh!92&5$#5Es&5&H$a?lVag%%^z0^0}bG`bd4=%`k
znl18U90vR-UcttbE$fVvPcz!$rw2sSS-)Du!;F!ZG<~Y049y|xo8k4{_|7yf3zz41
zD7IMQqexR^^pZo&5XScH%AoSzJTJLHMR12vuoiyr0XVdYPEEJJ$qbe_R>H8FLQ7vU
zz`W*xHjBS#17<(D)>)c?rung5C$5@nhCVH}c)XX(n5cvx7JvQ_R~%;4ISD!}AH)b@
zM);jz2#@@4<?YoBEW{){kbtXWKJOxtKXk8Y43lROyjbDWb*>%P^cM^?wx9sdNjDG{
z+|>~KGsOe-u?^sVh>2-!bfZx|02%8-HBY0*Jlaz?DVw40A>a0hz~~0LW5#m$B#Rv(
zNXWwN)vsCf6I>YEw{t9?yfi3~^I~#ki{R`UQv(n$Y9nxhauv_DS2ER7X26b-{I-p4
zKerXx&s3K!pz*~0{Vto@uy{Sx?*MMIs)?a5h3cBJ45uytArH}U%*Nx$6vti_%PWCu
zPpDJ53<iu7#g0w)l@BRUD@;yBTh_<^sDJgakiq&Dr(2hPWf>#4M*I(&9u~{!=r<9v
zSa0KIJw}-GD}6gD?0u?MgIpVBPp6*aG8BVVfI5!-aC`0$Po}mGZFA_rcy^0~x{X0A
zU+#MdwRa%Pi2IYhkYH|w|65Y0_*2{=B=;TLV*A3o%t)=ii`yoZXGda;BztCnQDST3
zXa~n&T6oF0uCHyhh34m{gldw!8b+~7FQVX9`e-=Vh}+LZ?sIG3-i*D@F2Fp~XY;n{
zcFRF5K<LXYQ2+&bqMLE2WY7?DN*qT@1wCiMIm=Mg!GVKRXTV|-2G<rdJ)sfXHsaS5
z`}#rf)5=LZe*emj@x?EouQ}f#Yd8$ga~$Fy!|rDtBfEYNHk30c-X+^$76EZVGTh1p
zv~%)V0!KWZaoAho(dyk*x!PtP@>;}UxYtv{*Hhm}fyUY1y0gswSm(!l|MeZo^#KaK
zYFgyj!EY7@I`_*w%dfJd0yHJ|=bz`$o;YY+Q3QogUvM>1;Cj#KOG--_<fr8_0%(3y
z1K15Hrw>HX(&J)^0Rv$=+%!b3yCrBEa_U^e$fuGqxPWN|y;DS~t6k|VoY?L7o3WTc
z<1gK2LED)ND*VatylY<pdHnP8lOqmj3RJ{jL(b$pj}MRuLG~Fv52#-S776R-(;nqg
zDq28942EJEK}s45Ia(r~J;XNnPS&KWwjfy^sy3-YX!Z<oH~LS_TT)y3$a6Lb4WUA0
zf6N!(9_0`@uIBv1myw4WK<0XF6sLh!rZV)obH3P~QdWBRX#36wqeIqGPABMg6xR2v
zI>L?$vhvL~xL)#rz&R@}%Dhuv?&RAea~V9pP!R0<Pag6@n-gWIM)SRUn*yc^G(7~V
z%~sDLmHlb|A@oJk?BKv&H%N})cfJ*<;%GYk29~VcAxl6j{A<M&yJt;O6q<al&TTEo
z8kcsrAT(&qz=iFwT$(e&t*e!$G_7|Zwn2!KMna-G<+ZtsG2~44e0a<1UB+`_1Lc)M
zX|grOHS%$VP}e#XD|V4UuV9kjMG?e0%JiiFXb>kN_XlMySS|oxY12X{L;=IDo+2Y<
z^{Cn4Tdf^<cu#Mm6eizQXIa~HkU$`Pn0#gfMCbLMAn|ZTv(1fKnSL|!4V{JUv0=8E
zTaTOsxffQ!?5f;yJvoLC<e*6~#Q+KC`v)?*sgL=@IqOMoz*bhxPKk3+MMZRvdma8v
zeBpp@!IO!ACPFuFI>VA|y|vc0&{3|{T$P=m)W@$Kgz3QNPqCkB88}MhjIOy6ymq{%
zx?v7T(1V7zob^5BjD16}C`z#8v2EM7agS}=wr$(CZQHhO+tz;*@grt4i`mttyA~ZC
zUDcVD`PeF0;oepl&Wd{lf>;nAYZ~+Z?wc^jsp{BG&jIp4#3oNI#nd#lRf3N7%#&23
zIb$Sk-We@wGvZvIUh}q)ZVoL@GV7+%&rf-jE3lzp`uV<eR%mB#Co7H6a>0rAj%G&A
z|I7Pe^Fe6}$hO8VOy$@FjK+XRKtk`F0Xru4O0subMAjQK9kYf^e8yzDo^j}-_3bQ{
z39XfHW*~(l5(ZUV%R!qU?3^UlDdEpGg<VRHW`|(a_78ymH8t8A%|P|BNEDTQkD>NT
zWdxLV4)^)7OEm2|+ZIm@H^0j~T}@s3zqyntWoc3I^Bt0b#-)M)3PIL>hk$ApGm$(g
zDnEm@hrQ&Sw^O};i>}zD9=|Zq1qfsZkfKf5aSLhYOcSFN6|}Be0ZHQGWZ3CeUVO4?
z%u(R4;Z?)``L)<MVj%!%?OIGrvMl5@wnIATqzk3CF86V%pB5B!I>y-W<{S@K3hYv~
zk;wVx0cWH|jD}u=4(SQZL*z0C`B7lGGm<TfTE446w9U{|FDd(kj)Suc+nVy?HU%LI
zRi1i3lzphfR!QPMn~cl!An?Iqh~}n5mC2;%X_Q;Kq#|zmYik$Q0vz7G>wE&=EVCsq
zt?uL*7QQ_)CG#MC$obfe??3-G#?AV<lTWXg{d6f%uN?0NAG4yUbUN{5uBh4cghRPF
zSx^u=9rHCK5wrf|j73Cq4Zco!=}PHOe(dgUC7%K?Rx#;`zhjH>C><e?4|lRUB{Osf
zXTFX6?@fk%um7Mr6caY;t#b$!YQDVEOt0jGE>%IlR{k8(K&Vmm+(JTov}K}SQwxnO
zASbT?sQ6kl+#p^zMvNODhq%VKSoIzqpR)iJfFOs@ivqRXl*)$DS!gl4q=4p~ta<QL
zOKC}yct6#AhgFTlB(ekc<n6+KP8R>YV7OcX%_u2ed!ILIJ|G%<Mo)})_p*117-d2?
zB_+)bTvwY;eGGAKYP4|Cxwy!+N1c>BlkRXp6u<O*J#sU=+y;(WH~PW_`zHpZZ7GeX
z6S+ek@h>wWA8QX<yv(6djELkvB0v2kX3p48SE>HBmCV+o{CmcbP=7W%Q=Q2J&w+MY
zif?zqZgYle=y_Ig$IBAyh8QFIgJGY0_u3FK<9af(aU)va2AqF{yW<+lzdEVBa@`{i
z@BX4yLFJ8hXj8t+f%o}>YUgHnUU*mdCIK{5^;(1LqvPrl?%#sUWpv<_szWs;6<2V>
z6f4~<P#{833H5wlC*66C7G#^dL#;p4tl(~GqJ~z>?|FR+1GjzkhW6vX1xZXw{H7#U
zae6Yb&rC|p%+|fBELuJ@zf!xHAlLF_cSo3VBC;>SOFX`XU*QRzs^n<qsEgf~GZ8Ip
zlu8q<<aB4Xq_ItxY~ALRcM@bbGqJ}K#0)Q>1AbsrL{VQ!QW@<tAvhl&%@vkghU)3Z
z6V%-CbL&Mf``N|qL@_H0e0Wy|+HwA;ZJpr}$womo#cbXPy%0<3!awm209hfjDgXuL
zbq5lG&NAx-pos}W1N&TpgS5Tl=nI_K%8#r<>zheT4|?mbhH~E0*lPvfy>8;hN4bnX
zbr7afj!J@NLd>o;rbx92$23FJY2bgfkgg&EV{U|#hX{(o(BNONV<3s~sj&W%+wYdE
zVlkt0EhLE~&hnq3$dVJ%rN9y<`=Y7L4tYQ#3???*LQ+e6sh?(eJfHGK6`74=w&pf3
zV}vby2(J?TQHHx6F;HA`WR(^fA+dt4l6TfU!0`g#ke8qawO5-b^f|J%SLvIGaT1X9
ztZpDe#o>2Uuq}V+8yuLx9o%x3cj|&Sod*^Im_JQAW!JnzG-m_n!Z{5Z?{B5T5s)yK
zI49JzQV}d>uCd!UY;Vv&cH88LK#XMmqFnD@8hSb;YHBmDvC;4A>xER!(iV)yk^rfg
zu|Xp@aY=-)hvG7rr4*xe<%nB|<p%NVuk{)fD)aHy@D1KUwxsu`i@1-amO#w=ECsTW
z*Gb!z1ALNqqm5f4s-2GwugSuO;aYenT{w(t<h<0X4LKo@Rs}MkBP+qdYcFi&3<BC<
z-GHNF#K4wRp&lk$*Y;aPyyb2=e4m2>{_sY=-6F8%Lw+o_8o3I7zF=*i@mP#jUo}B3
z!>(C3vaP;|AQIpXt06OZ79kZW-=cjVXsOIdrw=5#BkmwQd*BXXa~8;w=3Rfb3+g}c
zH+zN=*3+h(xgs-4ssx~jHI~7^9?A@f-6$^h#*E^dVZ(X0ef_axeFAOtP+rn-*lk;S
zhYivuJ>P{9%`V6=wR+f_z5r+LulMedt>=Ou7VV8>G*-9Y$W-4sUDuIS`$+-vkU@KG
zthINz10sFNz}fZb!^Crj`=LQ!;BqAvJ=$9_FD;u`^>AMh?V6nv@x0NVhTqPF#TW)v
zl<C}u-V~JBmyO+c#>F7^y#5mTZbSc#Z-5bronB?+FjpPkTs58wckSoGV^RL+r<%W`
z!iTMj>t(KC;VO^^9_#mRj#IV@0$=^Di1GxiE{iB9*E;wH|C~+#EZSb;c)%u{l|vU<
z8=gMS!XNH26wr|QOSC22L4LZ*UpJ*<P#R=Cj7esoKzNT<M_nfjYV6Oc7VUM}J>IKL
ztj)Rzyo5#aWPb@#0?|E<*W~16=bOX<cF8*@+X7XhlKhyRjlO4crR9#eMS)^$4w(*d
zR1~CmL20@C%=i!tenwb+$GAI+hBQ?ek{kjY0_^D?fac_=5h8<Vqs)!SF72cMXgP`h
zkBV{VhupdU<1;nsVcjO?7y{vw0)g3St*?C_cmar(oqh5;a2@07<xw7C`^4PET_&6C
zyRiRY*nPRMkOOZFx9@MW0Bx@)4%5`Ce6h(85@3^U0c~ruTstJiW6Dfy(N0ea06JT<
z_C8EzgIa8=AC}GKY`geNvfbk;ICO?5+KCWz0Rdt0h=O$6Fhole9)t~)`|@AYAfF_i
zwg$`-i#uB`l&(}y4TcU2099IKm?xVtz^VS022DMU;<0kydIIy?9qd`jVrF5l&JpD~
z@IoRBvsjleHU;}2PV~%n`(X9p;kwg_!FMs|OF=fvZ3jSu_0BV#CVIpzg5m&DkqB^=
zHv(L_`fy80?){ci$@7KmD_biJX?rb@l8sCk^<a)kR`3(?bTs58R`B;U;Z){gmN-v0
z|5ZG;jw^cp$q)(3kV_1}jWOK$tol}>q5#cla-uKxrdD&*1+aX8TG=Ya8#A9A6RdLC
zc|LT~OANN+>ae-f(f&~pYstjX_~-~$>-twFh1^f0v_5FMec|R|j<&C}b;dzp_kxx}
zN6&o%ou54Y?Pd+K3vlSew17^#UCbc|*qQKn2hZl}+HZVB&c-|99^Alx<gfSTsNi+>
zpdE@HOTe4d?_avH0#5h}k_HVTG}HEuuuC-o*!9i^5}EtDYVZSNX%x85UV@#T&LCAN
z`Y`;!8~(I(ZrH$k8gPbbO0U|7hTNJ<5bLEdHF}wkZI+JCFQIh~@`Au?G)+uP`dz~N
z8}i!b3EA|^9LN2{66Du?R>8(n4{R4O3JA>LaY+`CFoC6K-%~?%-AOGV`!=f`Lc#9l
z*YT&(t6<eQs&P2bS+v#SWBMzfb!(#!4?$S!-lLzdA<f)^K&L!WQn?g*vo!^DXx^!G
zng4orA%mApOlVwmMR)d2V+TL8+9))^g&dkHSB>?}2dkw5d>6N!R%rxp^air0fG+Y3
z7&gR;2!j>8T(z#)RfvF|e8I^WLd0R=l+@XJD37SZ8qgQ2f^Ng(8wyhPY5gT~l8OEX
zMJAxp-#u?XZSYKe^$GUW89mEQ^q{<3I>j2XKe(hD0tK`6TW#v%eeD2CJJY!wF<ano
zDvb5Dt}Z!itD8+lcIya>V4k-(8PBr$5uA@LS5&}MzIC)?^0;4ksmIJTRbih>=nGjX
zKS7wfvw|bLbnkyM1Y*e%mazVQzPbpU9F`2_xIo8mu;#*IbQPbn05hsdXPQZp+I?$i
z!ad_U3TE{Dlz15Z9icm1?V*Xgd}K{0)IsJi;SqNho6)%s6A14t(b_tr(4|rs$10bM
z`<~2@S3620n}Q4AyRJ#>u3+*-t3J+$stJYyM$*XZIbUvI|9+O91vqI5=yZ4Od-&8_
zFbP$KVXS!PF&<pLPHGz(sB5vx1?YwczZS~3S?BMmTLZ%!?Z9+aA6Fpx6sCniLH*>L
z58eQ`pN2M9Z9zJokfY6|0@y>!qB2X+l=d>{4?XI3yn~&8=n^)$+7_KXJ@TLj1|6|I
z^L5!$Y~}(>xk`|lKOVJ(Agu4W(7F&SD^Jsm{%g|04hDjT;_B-7A;kXR6<_1@%E~6k
zK-ewPHq8?GnUAIpi7(YDgdDUz(ikG6P^K9Bh_Fi^un_!!NYmiYSZsfNt0rAGe%BxJ
z%#uPH51mKkL%dOO+_FgS(-2%V_ZP(IVBzX*8E%ai8=)=2QVg@>%2Q&LW^DRgjwl)e
z1H|U3AXAm5VrPO2ZD_?9yG?{j^#yc*79^gy+XnV+bfvW1`MJrte2BL`8z|IZTAJ0t
zd>DoK0o`24^8Za>s^eH5s>3sbi+wNhcH)(-XHh0+Rki_ze+F56TGt<C1nD^>F8@ci
z$p%KVxfo2fz_ObKll2f3k<EKR_9=KQHO^)4b<V8)jjIK^b+1a&R$zGE28x(|NadGV
zv6qkwh8$ng8xP$GjFWrpe~0dR_)AJIFj*BVH2{zlnN^lj0(8Wz3lv&%-dsXC7Q1W1
zAv?AlEUyUDg-%Ic#eNqEn@3R(+wc(I@U$vqdj)Y(*V||{YCqNM!euxCQM`fv?RKhA
z`|8d<W{+b*=#RA&J+pSWz&VN=0?MP!oXYKSK{2BtIrwr+OM=5*TRGvLXP=3;tKWuU
zgjePUtZ_CZ#~c0oOVI0#jnLMO@5*U<8>>L1yC{ROaR5Q2#Y1EAkFy;jvET$9jGwDG
zscrPX8s>+PFt7r3R?X5@Zg$UjAA!dHn5|SkmuDmi`0-=bk3Lp6Y2v1>!bV|TBX#JH
z_fdJZtcqwV-C=QG`_Yzh&PO}s%sBi(+J4|0rl3mazgrc{DN_T-PSV|Ae4`UlLFNCf
zXm<}K#0`LWrolx0HSIEd_{aAbU$1>uf_>1>$;y0RO`Hk;A<>^LbIjY`{7Gso2jbco
zhzZEbK|HfDDgE)HA4O~Iv7)yLmx)c^n_jVR9#u++`SCjRcx_qff=l34Rx5mbywgdg
z)^xVWCC(xq0`uTn9=T8NAH?)(#sr4RQgc6~i(Y0;f$(6Mg({|wag6w(c?|`+Czk`y
zRU;AlahV_`6Ymgce7=p}i9D4_pcIfc(}fzsc5#4oiy%w8lBlYGw0;m1)f5_lYcIk?
zkK`6&kotR8#PN@TxeuMOgnHi_#&X*HYbLkGp6B_T%><`usRlj4FNTxn<<~8hYI2!7
z3^y85g2gU#1PNQt*}J$0;T0XS%38_Smhox%oc1|e;zjtdB|;dZo(~&Wd9BNuU8WuW
z%4Ws}ZV(UEhHiJ2t>S#9wcJ#Rh)@m>fO-I1kVZ`NFZmKUM<@<+Hj246a!NwaCNmJx
z1st=Cboh5FKyNpFs3pm|xrb=aMFmtCjErt1qx$ivJAJ&l^tE|~BzZgI(8;mS00)CQ
zJM{Rh*wNN#9MD?<fhp(eha;;9z7k%xiqn*^`_}Aqe>T+ry@+w)ojdfKeovLCGtk~A
znI|8@(*bx=dD;O0MzSvZlfi>H=DJu!afX>S)km9-H(plL6k~oN?leC7dqg~6>_gqS
zPJNbmm|f2E3rlw=Tk`=`*8fAx5}`;`EjlvGlft`NiD~AsAW3imKZpN8qiioXHlE57
z=sJ9TxUUna;ys<o(|~MNE?1yu!rtA>#HV%M368zevaMY$fG+S8SnqGX7fz?{LqiJs
zJ4f|L#RO!53ip!a`)&3>gxT*SOOl0NYxW-z%&3=G25RcUAW`mhefF=)juZPn%bvbK
zki$}%_nZpy?jt!WuJ&M|C@sMqvyGQzuu8=(9)*qgsnbX#$m~r8?LrzPaFKL#*a5D4
z#3Kr{o``QN7M4y8DDBriGQ^tNEqi+7FI393wu4!Mzg*RSMD*zZx5VF2bsM0Lmfj-h
z5)jBrP5jysbn0cXEHV<SN_Q1!^*`tT{wA4>&T?+oNk*Bn)WxS0>%oPYHv~Z*px8Lz
zR9C)X_TUJ2CvrIs(Sq;qdxr~p5yYZoP%2UDxt=<cWHs@P-mKA?^qPryr6e3UHm$Yk
z%?)pCK25Yb)bU5u9BM@|LCvDrFLdP2c|C-+Lxw`|Wg5tDZN;zo<2&kO&lrv5QTu(m
zGzu!fds|3J$yQq{@$GoYxQ`!$OCw=-NXFqoary=VS(5bmN!P6l+@Cvy@|c>8X(=WK
z|NW54k@=t{Fl22E+$-+*M{$LC{B+$ioZV{?^8MN#_bRUNC3+MwMm#GYF<GioHqy%9
zvb4P!H^-Dj6tLJ=$y76tjfx%4#;>suN+P9(yhSTcw3m74K#M10{l|{r=WM`H1eF${
zxx?oc5r5@N{eAqLXebtL+}U~^hsfNDXGiL6(zpYh<_K@(z1)*t`SbW*;WD+CbS(@E
zGOKd|#%kXxp(Nqi<(*)OM$@f59<ig>xb)^gr<!Y~LnNBa3Hj*F@k)fHZuE4cw@S~G
znt~<-&sQMqGv>kJy<|t~M?uAyh2|2+kV?lV?q*31sRMYVz}mbW%Ku2qOI7(U;p==i
zRV-55oVt`Tn9*T;YBv%*rXTJ9W)v8*aq<_Ef!mou%{#rO+O4Bk+Diq7W``9;_?%Xe
zb8TCas`h7h0i%R#{MWkh?6F5-&*Ohh1=HxSxC5ksM9>ueF9ELOX97LmxTCQOz$BWx
zD?kmCoCn@?Ul5IqHA0d^i+A(S={^!zqADoluasd!-u55D=NNPBIjSfU`5(~MEk!Up
z{6_k76HqkJsu0V({61wT67dE7ePIUXQFA^@#Cw(Q%f~}z^`F?#R|n;NF#s!TTZl`Q
z6?O0Xs(${O@f2hq1Hqc<VH2;v@(sX?dUT14DH?HYy6T;4h{cHFTsAhOC!Ccf%+L8r
z#wt{-ipY(wV+B<G-Jj~aS<?lA7hnAn?lpD>YGkRT91hP&4YGpaHpZLQ0}1a>YT<xm
z)@n7?84!b=n0=%|f#b9B4(eC-w3+rEJNks0bWJ?iOtnJ%!}7k9Xo4C-w;-cdq_f|P
zg~(->yLKik#=i=NTDUouU&?Hmq#>SmdY0FWLFa}5einFW4)em^uoiD24H#(+o`wn9
z;5<ySA^low22N`&FdJfd6T{qAtN0RHtd3G`u5vHtd>X^<3QOeMC^)YM<G~V<v64hW
z#NefnZ)zr3_|zW|XIbgyR;O9hG@O61_10y$7E+KVdCM<w-cyO3&*aZHwgnypdm74=
zGQYP;uw^}JzTr$B$@)|g9CS2@gS~m3&T_`p*F)FnZK-oow{8e0!LuQjExKM+<^8Vl
zUpY4t+{GoZt!+TcD-TyD*JPNsSnXl-Qb`Oz9%W!DR%=jw!V+xj9&M#m0_vQ41CVC%
zBF9;Is5mC<&;0HiyOK^psPUb?r=^iwcd{$YZH&QCg+Vi*_XK+rtQa356aSQo9-b;I
zNKV_=?F8a(U)onE&p8oVcuN)MBuz5WMZ|{ysY%PobLWPQ#K^<rI071`ul5W(Q)l+H
z!CvOX!gvzTBTKA7p^bBFx%Z*pqJ5E6CH){*N9RIJMuYoAJ`!U=L%yW6b$q>_#YLcq
zyLI|4?DK>d!j`Owyo*IAy5d{pMxE7Pe!=lL<OGd93I#nf3B59Vq2AmGG*R%r1zT9I
za)H5w-h~unogM1vMv^pSm(hlQnGelouTZaN&7AWk;>!O!gc}ar`e+$9ouAm|_sqD6
zaZ)QB7INSY^mx7l^)KZqCnm1QvlvD>I9vXM*tg|x&x(bE^`@EG?K#}Ry+IIzxaSiZ
z<T<dGUiJ|X6AG0?Gb%v@1#D`sNh5jOG3)Rsy6f8+dJG+{E^Y<IYSRo*T=%_BJ>^gU
z(kLbh3RQFy1RBy+aLW<$CHpkx_rnVDecs|D5?`yfP!Hxv{OCSUtUMlLG9eyYK96jK
zjUc6g1;96$i>CPc*7G6pHLhbjIi5oO;U5RGo^Pm4>eO%1k6F(mEspG%O=!3o7?w6E
zIT^cjaygL*xtXyd@gNuaK@_S_I6s{nTzo=0W6dTI?l&!;`Z_A^mSR&u&_T)F_)3c1
z2iLaH%tS)}{VyD*iDso9=&-iTrr`!&g^%RJ?dQ#NSU7A?iA7=7T}s+Pk0Z?WcE19=
zsSOM!V7(mr*D&>zUoj{A+eO)&+JQ_KTc~y%%nt3oo-GoNCI*Z0Q0(V86`ac=0l=jE
z>I&zqP-WDD&}mR<Z(7y(8N`t6LXy|N6E~bPXUq^Z%1#f+#1@^UP$YYz3HNgSK9Bc=
zV;QNj8-a>XG}0QoavE&&EjkW9-b|LKd7yKHZ$uQOhahD}nK#0al6Vvk-G!{+580ex
zEG04(3QHSdt`G!sX<!^s-aS`)2sP>>a5lLtUX4$i(><rMlf)C_PaCEcb9^rF_gxK+
z7Z>XcFh&3@;hJ!{uvWkBPVX$VazQWbzy(;WzB?^K_LUFx?CC?nY$-Qbx1Yh~_Yltb
zkdM?wj$p_UkMVit%LTO8)^W$-F)WY{0;=^LEr$_k@~9j9J+7q!o-lNF8E{x=zUm+A
zn_j=P!1ktz&Y%F}jkP!@N9g~soR#366(usd?VFbks?MuW6iS)miR<<}*6?{wB_1hz
z)%ZAA4xlFjD-#nOglC~sBRDui*dO%jx;vKhB`SV0@fFuVKF>a=tL%3oKNN6Hb(+x%
zQ6@t(KS~)tVimbIE`Z2R<<pkU+y!N?cV}$REz$(n+JY|zQ&iEWKZ7cF*!O#J6`Eoo
z+J^K63#@ZExPx=#S==p9k=Qy?(mx|Er5j)8?-@OHyz>^ycBg`QN3<oSN?yavN5ukc
zz0tt430%U8fm*_RMcTd)%b=V@gEiz43bUF^Hj@)`VUdJmHu{G?yvD28V6mI{ZT^)f
z`BM<vaF&f$tws@0R}C6#9tC(umne|&@gp9{j#r_VT;Pe+k|)4`m>BWxjg~GV)n}a)
z9WQ9coa|)S*qCpb=GxY@CG}mG{)H@&(npR~eVWPlt+i>EPD#N=M^F;r^vY_!5X?va
zfvR#;js1!~$K+f<b_WEf*DhUZzRs`_s{qDcGwreE2m!)q=bTfOWGdl!;(ze&HAhJ&
z<A(zCsYh0}F~AlT#+@Ubdr2mk{7C0H4<oBq;AQ2m&DgL;mblJn!Uor}o~`v25_dr?
z|Azhjx{QDp*|$402MNOQ-wIw}ZI|0B!JFA*zVx+u_1jB@jRQk~g7S~I>0}X>C|O7)
zwI4OVw@@#{zg^(hVT2_ap1Z`INL2TVR-<A6xyGr<s~+%Cq=SbPv$ps!T>bb|hy7V0
zNfR6e=n-mIRKZtPw4&>9g^IqR$iYmOfeylE00ZCvh#$kI$G>eqzK3BC{}Z+Y&UxT;
zVT*p;Z01wFw<0!Td#A-*X~%}yd!gT1kRA5;mhYO7yi!xlqh*U6&WImTUr77*UBb_9
z3=$Cu2i12b<3S!cO%iuMB<jDkk_aG6{txAD9ubGXtUm$c#sU|p{8`MNe?BRpf64dM
zN-D?^P9zc;L5g_bT4|Ii0wSBb487GB1I>xzheo`5PVK8lkF#;!t!5m^yshfOA--ty
zkO|<+`cb14W6Xc8&@wVaRd%4cePp|@2{P>S8B}o=9qV`kztJ(32<%5ltmVkFi3s2j
zRt4_ig&X^@6{PmRY$&>awR(%S@gG++SD1#g=RAg0JRVba&MnT7*LKbSg{xX+ERi)<
z!_;r3M0q)*Hr<qg%Y*=Q$q4?Jzj2v>MbX}tzQz(RkYrDQIso*OE}zM0LJ@9vxJ~Af
z)o%>uxzei}UJzXK4Td+NU9FTY8EeYi^BI>@j~Tb*oiOC?Nk#f*Hy2HJv#Ldd%2(Cf
z>j;_AOg9LV^@%~kS<|AA#3dnuV*g9+ogenmpIn4vC4r=xB*!Um;#iAcCy;1+?u)}U
zaEr-tYA2`7wZxxWWyx^YifxTRM7e%}n3!MKgSE~6+1I#0xg1fh-qCR|WCG&1eD`jV
zt?}LPVQc4D5xwPr)D;!j(>r)VH?^v)fA8F<Sz!WkwFw?7%E*X{@Yz%-)|uQ`v=uv)
zku1o`Ea>LOt4bWn25kWYDtNd{uvCut2z@WYYdJ?}OO3S9V;Ud)fYejxb5TO6V_Iuz
ziE-#>DN2&R{M2y%+q0ZYq;)5+ME9j?&bIqAsv`cuk>xEMQ6VzNa{vey8)lA9i)Itf
z=b?-G6shnGcJXKaMVHeSJw7ttAC*cLA&<I+<g_4Ra(h7_`P&f>RncN@@u{RB@RZ=o
z6H!g0RHd;HCIL9AQ!E(t@-vZJwVB)pzY4$Qk|KMeNQCv_>5FF#LHLU1ZQc2%@B}lj
zM2X<Hg)Wy<4$F@rCk#cSM}Urfv3#wBNS&EUmR{U${YxqaobnknX#Jpk<d<MeErYYZ
z{lRV}_eObT-97y{UTuxkye^8tB_k=@&atLO6}27_q|2$wv{sI37J_&6JtV>oY81oo
z>y~~dt!NzyQ%hQ}?j@fJwmhED(JL<jRxKh(skK6p1S{Nvo`0qLZ@|6+)FjQ{2eoU;
z=!h8~o`hUGZ9QE;vEkR30AbZXM(7#!NLMme23ci;CXLJpn3(O~cV4u!vZ@zG_`^zF
z6=(58oMU7|6Ah~_nzajW^FyI$0!ki%44%@P73r!<a`ch;BD-l(Y121%vr@}_3J179
z!xL_PL4TQhSnV@_=vidtof2;RrZVB8lq_)xe`LtT>o#fbgdlBE$D>LaB|tpYGl8()
z!L$bIox@z@+7&8c2Haeg3N`jnG+xgB&8OzimHveZz#roUBrbXe<U$*pcRVZ`1_9-F
zj}H6+RzgfG-eyAb==^J`+f<g^dNks-0C?Zwd{)H)9bn-vD>#0=^=$^97{t(Dle72`
zM64t+(&w(D+jgp@{NKW)ItNWUBKuEv)f-!y_+RNXN%e>Q-eFpi>~-s5u~&>JAdKBD
zoru!tE4=0){36n5w=7<|6!MuJeYskiqi4mv*JsKq-7DR`%#4{pSe6O7G>cv@4}FzW
zubsY<##FUTcXr-ON#E<Nw#Um*);J$mi_)f(T4Xtod$NzKhl!}#SdDZ^Iw}c+LfKge
zE<8Z_?T|q~(NLyc?#W*G)_U2L+Cz-Lcds>;)*wmg<&3J|g>6Fn<j=i}Cu1JgD@)33
zI2W}R<`#a0xm@pGXjwTeOkQCHuYC>KAaD1ze;kjZzvg#;s}NzWp+t(Zk!IFA`DIv~
zEt*$$z|qq_^l=5ijK71(UL0OyUa^pR(CX_Rg>8fHJjT3Vp@krdb^8^R2Dw7|&gFZM
zS@1&$O1;k8yxW!*mo($@I~RrimlCZ=DCd$)P#m1)K;nrQpp_)=AF@MD)bmxQNL8R@
zwfd>F_6MJCk){A?4&J$sRN^fnl9gJkn~*IewfdN|EY%--E{U~3!{-D?@j^tt6|QuI
z!fwXL6hX4z<bzCcvvV365eepimat!3h-hx#tyu&wiIFJ4qFweOUsgd08x=xk7G9y;
z_2b`v+Df|kwg~oIYO;!zUc5@$l|@-+$|%@*oNo9XMX8}3rSlx)7!rf%HY}nd)fZlc
z>G~5+x<S0rs|NZPo_kyEHkpWwHZ00XCB3IssAvBqiV?po;n&mjR=O;xH=SGYWqgj@
z***Q)^3mbfcHN|k)c(yoZlPrEp8{TIDZ^we&kZOMsAB23^HB)B3@{bY0{du{=(LhW
z2i?!lQ3B%Eb~5P}!`=&r3~-YbeS*=TCtp8D{Ss)(j*Hd^C!7+gVL?xAGD-4}9zNHJ
zlITx|JDKZ3Z>-RSSK^=A-v3sLT^F*e-U_#rqJD-IAe|tTMu8=_q8JJ<M5936aYV$|
zzp0w0;mN^MrkyP{oOI`Q$mK3y2=8`kL-N0i^vCv5R5@>!`3}IZfDk{LdxTRJZa703
zl5@TW4?HW6$-x2qHqH07Uu#y;;4Q{&jeAd*OeCkdvM9Qga;lkjiZ@h~F}qy&Tv{+k
z$EGiIQj)&3%$OgO%|F&h*v@TC&^Zx%Ku2Bje+uLswk+XrR2Tb1<4-Re+mp=kDm{sA
z+04RgT}3n@$04DelEV_ua?Na3G@fl$vN6Fbk@DlX9qJ1?Wa<&zUgcE0SahVZg8HmS
z8~!4G#Jt{eH3mbDex*!e&_((q{ax~kF+?9t?7&5aDkB;MJ*xux!irEyJ`)8|_1q#|
zLRsjiF}Ns&Iy8!G)=0cBe>|4}1t`iu$qR@A$^bcWbwa;*&L*qhyQn+`%a}O5XWm=!
zew?H$js~?-r#gbzpvk5n>8aZLbfs+?KixMmjCNWO&o1Y%5gpMG$uO;p?AS2ot;g^o
zclXT9qK+>NR>`JTG`?@|@>P;(2&dAc1L)#+pj1>Yt(R~*1$iexdwXK_ak-dNIGqzY
zJ2NSCrC%qWD(fxJ&juqJx|LjAm{*BqPzE!!5;VTMHXHUUgztjED^D--%4tp}ap(>+
zBI{vMWOy(Fi=KQY=KdM)RYy0O`k6|SNZVDSCkR?}ek!J5Pg{`f{s^4v<<EG|-Oye}
zQXseK=t%|5=Af=-9z!|cva)i3g`l`~{VbC&dhep72)CfFPm6Sw+F82HS3tQ&fL}vV
zXke~s{Do1+%i{v7h|)N>9do;r2eYJeqi>0?T@Gcpm@m73kosHNgc~B?WO36El3=PA
zj857g?l*xEoYOdsl<-HShXB0K52VFDMAoPZb`T99v2;v{!$f6r8CKg22}Ln{Sd1d+
z;}gHVa*&EXGLGMoHuJ;euW^*_$FcKA*Z78Rxnf5K$Gst{O9Iwg<(Bmh={i1pN3sWE
zyK{?v1BL^jp_p)4<IRbKU~%G>^GhV&{GoBIe&{KZwO5KJ29muMe-y|01SGp-NWsIH
zBFEJL#X^`>GPipVqJ7FoYP>X|RTtbmH^#)w*P!hq08UwsL>Kfm&Mrdc?)dzpZC(~O
zBG=bA^{t;6BD&b_@p#7D_yko3C-OB7uzQDlP^ddyz8flWU-H9(zF^GNZrrYGa?Rk&
ze%<=#&-K${y}fgWHIjiS>9;dGmjty8O(s@Ds}VnUjPlwSH-nXzCN{l=JyTQDbj<Xh
z??A~G!K*;jpBWb$u6^H=9H@5BoJ~@({UA`2&-YQ954ftk(N%Zs?P|M-;Y&WoL;yyY
zgZ}bM^qF^-UxZ?&bhaNbr~7s>FXxqZpco{nV<3J=d>!P%uDMK2Y%?n6R4dSp*U=jU
zamrVt_K=JUMWoXg3=B?77po`!v9ZT}(`c#oLc9^?faRgE$QV5mdxJR{o*n<nFoGFO
zlav1Y(WZ`t&7Ce#R&2eKjbqgM#5-D*+|ZvP%^B0I_Psaqn3(c^cI`pIU*{Hw38^EI
z*gczVBSJ=@V@WqpHX{kh`!h$TbsLVUYj)_X??+l@GD<kwwwr{$p|Q4Ee|h|S=~&1c
z+0EBrJJ@WYcqlo5)j72LKZ*OjJ-*=HFi`aD7Dkb>;<LZS#=a{l&MG)X5LN!^Q<$Id
z0B`@v>^-|CLZcUt7p#DCOJhef*R1bzCo^CNsT$IT+GLKxk?zqX5AI)I0p>YbaRHRu
zW!wQ)*-)UzsyR)r9bpYKii&i6Xf7<g4=^MAXR2y@7*3z|@er@}-cm!r&y3d9YdD3T
z>CEkoHccAL#w|362~rceHg5JY^*D&3mSYB2UkQ+eXJ8iJOJ34n8LpD(M^A`96OxQ@
zmS9=5ePBiI03<HjEre{9OC@PqqN~0dEn5(SW`}~%RzXsf4^nC(nGOQwU<LPdbu|^S
z8@Koz-i4$c$YXDHt$PGe@jWg{Iv)a)2=|>MU)(pK+!I@TH8<c0H>n^*UusDa>eGmB
zDP;8bV!Gz~pB&)26sq-EHYJa>3}8WRJij-=!O)3+^0&>*vOpJj$G074vRe+W<X;s#
zC46%e+gf|-^dD#I`J&M1x8hfx_=A3!$NX{4CoWA1S~XT-mM~F^-xoN-{?qWizq#Xo
zR~VbGuMlJvAFZ~ZN2x^LJ44H+Q<W|{sf%2GWM+O?N6#_8IGWX@y^YE!5W;B?#DjRc
z{}`(_-($c$Pa=)`QgNSgPaFv5;;@?yT;iYimJ*CycGfZEQ;cX3xL^D(biee6N{>ry
zb)^U+cSk-W4#R6+=Q^PIfi!smA+M#{8t$IS=Yrh?<3Z?@5*X6msK+$9$qP3YD3BS4
zMYz*$5f8R+PkLTcbwXV=Xu=fQ`-CUemWZtkkym-^3t|s0u5O>PBo_1eS4c^K95#W`
z?xYMt#$0N#D4+N<rhAKP)y|B;k^nM#aay_`{a080F|x9m#=}sK(nSYV!1xzO=;fUi
zPrSHq%Vkbbv0wK}v@G)vly@Ia-<*VFevOm9NbWgOP5um-RHk}S#62dVHB+xvo!|P>
z-f>HIaOcpf)?t1^wpy?y*D#tyO)P%bSV^v?(91Kfcm=VvR?kif?vb>TFTVh4ESL2O
zN|?$<-ujAbY;Ney2P|S)1+p{o&aTQd_VI6?g`M&3FXVg2YO`oqWs2NJg1wy`T8ikT
z3q(yo<h7BMS2K{=Qm&Yth@q4_wzomKzOP-58;_v6rn%viH`<vORIW2^;*&Cg$LRsn
z1`Ggc6{*%iSFp{k?0x5aRTyRocrMIhPV1@^i-Xs1(Uu~$A}|<1t$G#XaLM&r@jvYk
z5{h6Wg`j5E4mi#Ds<a#XGyNbqzwYb*l&y)vx$1!pzyTSMESHNPtQ!cc-eX!AzuWfP
zp@VlN-BstBH+#mQgUHYDC_URU%VQfa-`kPgk!j_5=8wf&paU)?YCnXVKjT9A*=||D
zgvv!VYxnjk*7Od<9`k>j;y1_nyJK~GMc`7H)3$o?y-HI#n<poZIZRjPSBlCo@TYjw
z-WLe9l`|t+Ej)aq8i&AhM*(B!+})5l@;%ocaRpVjxBNsqS8n90(+J0s5=^+p@_DmY
za@cvppY?2?gHy75@L;7o@e0VQV8>U>V)W?|B5{HZe#!mV%=dkYjbz{QIlbQry<dO<
z>cZ!Iy73hA0tF_qD(yd<`yACuSRod8xEZZL0XXcdB~_6A6VC9!!Y1LKz*9S8293};
z_irX-G9*Dk);%PstIn>2ICAcwmdv&4;HbgR9E%4oN;K^~QHkIy9v^LNm{(ToH<}dS
z1A?pmgT&u)a6Tcw$<hxi(?EsvbSDk2LMThh)c_PL(}Xt91o%okT^D}uULr@j!${JN
zRU(RKJRi$uqK1?0t)F_=<$5caO|)MXEL~i#KO&RNF4oHmfKEf&sor60sZ~)YA~H=b
zE-&$k+iB`CKfVVCK5IjYGWm}r|E>5A_$l^s_sX>Kg-5|ftfcG01rI$Hrk6YXi8&Q}
z>J|>%!E>WWf6wntLEJ;p%LqL#Bd+LtpXV{AmBPbQbqLDIltQ=d7h1eziR0k?M?w6=
zOv=MqS^&k0bzrWMNC*=(xm$YkpY2J%af%hij{I#m6>s2&^_9AHapQS{dD}Pf%HndO
zAWrmn%mrM1U9<C=*m6~bR$LQ=Gwq;n3yK&Ac-MEw5xs}n9Hm_d@V8+B#vvs#TII<E
zDKEvu)R9^&@WCFa(`>zeT!U6Hx(eBV*>VBE_%l0qi(!ige`0IBd0+TZ5z|LoOqxvs
zx~Gf>iysCKhfkSS1Hp<P+ch|mlwayfUa4A3?bl5EM;VVB&Fc#9S;I;_9+HR4gv-#P
z|1ncgF>li529UyDr?^Zs*yDdV(U$f4)lT>`4G4};phf&~dYwqT^Dnz<CDOs%f&n|L
zN-x8$O{N?^WO5x|^y23e^4(YSdy~N2T<v|g8ZzKzQtL4Q^|cb%k3O6=T^ac+EEl`l
zCB)a#@X2%E4?6Wo0%bf4^JqP=DH^?gd|1pRYrh*tg}>YNnT)DD$cwHKD&>Du(_?rK
zEP8bgxz>USeT%&;TMlWCO>^dmyUrGJPi5szo@IXc(n14>*puTLfvbyEr`aHF`NapZ
z`shbVeTVijBXvXp!25F)_t7PQz9NUhZ_>&-x2|We!G`~K?GgU0{j-rcI@Da)=DdA@
z;M+kB)fRBtNDD}ou+;%Y@<z=3_M2%HGeq?y>4SeXpMA^iI*RC?`#cGi@vw(K%V4c1
zAs2wCAC&(C_ew*}m_;5Q%%m)<)pq>2cy0Rqfab`{V?$)tdOu%{bF6@nCeV}pClhV2
ze|1(9J~vQjTyKLW`qRwVL>j0YaNar%v{ZmkKQeqqXAfr<`?wqF2{#JICn}C+&}>bN
zUrLvnD)3uThFVRa(6E|@J!<?ZVZ&RH;F*p2D52l|G^d~W_Onlyv;Vr;ly*tbO^*6_
zdcwll0<ovdw~9-tB3dTZggX~OrDGKhfDJG~Z}p*)wE(Zs*!3CTpQ}LmK`FoH^&SBw
zz}najL@PmFZCQg_$NcdI?0jg9odT;4`O~HQ=%$uAy~oG8R$?3M!6Vd^=3b~FUXpPK
zIy}v6@yOMs#P>rZb>a1$`V6j*r}E{Z$K;e99aHeAi!5*1MmtZY*{zZhNoOxh%U_o4
zsDvH{4gt2}Zqc!r!?L2XYsliq1L7&CQM|z#cKnf~L&dxjIK;>DoO~<k3z;3`Jvpim
z{6~h&Ga^5Y&x(@W=F>kvxDNM2(cHU~b0$xR^cOixTu~0wuc%XxIm5a70tYV^i`n-%
zyXYHl4Y3+&Hlp=Ybk3zrc&_JM@?s419e>-#aNuGn+yu{S@c;Ny2c=3mzUgE8Xh?rG
z9W2!npS&5w_Bmu8Aba1C@~0JK2pP=dcx`R4vJ_)l>I3=e1xP>o5Ou(m^lbvNf}{4p
zG-!K1ieqy(vtNIbEOGgm;cvZu0E-{PXWQxRhsregkg;(_r|^7dw<d?u<}Hm<#I62$
zCAPtnlR!26MftvAW1pvDDYE7IVBI6D2kq^BlDrAZS&?=bz`?w9;cb+44}>%_!X)@1
zqtSV}@)KSk+6|2e5l(jdpiZs{Wfyylhg_CmWC5N;KL+<XM-V$c@pf}`0}b3JEkGW@
zhd3a-xOD}tkCF?3UssR#CoiyvO?)3>zPbT&64_!5{J|koW4wtt9(sB<-r+DO#L(*I
zL@;ULMSQTeaOlr(k*|2D({Zad)!(nCU&U{nnqp7iGYHO`wtNKgRNR1|(sy0dS3%HP
zMqyw=;1jZ%Et0(pqta%GhR=kJGPRN~8p=y$P#R}lL`q*6r@3A@9QYK&j&gF{ru6$a
zn*ND2Z2?7-kBR6h{Q~{MZWB<~U5&kD^O}kjV9mcV%yu-^ClWMJoc=Zbb0O4JBO7(R
ziN737b3dYBWq>(Oy4pI=cjg3(-hR*@N<oo8rXqDl>+TD~d+{>2|EO7cqqY+m$zw8D
zlv0VB&>u>sU7Wkio`wg(iBCjKLYr{no7hjpB5^>1Zi597MbZ^0?x_#{=$CT-Tt2bg
zM<U9R%A^P22|BJ&E4L}_W?#K!w<==9rq>!gsT^t*GO&zwykg-?sXXkl%yXox;pNAZ
zxzJA%f2t`cSEJU2Z_E=-K{R?5dlk|-tT^_fU5fj1Lw{6CJld1C1TXvB_9l>Hq23H1
zu>*MK?(JTsNn3{X7!{}sgh|-Z4+zsY5mbZ_2rP=?0c7uoLJ-*=w8GDp0q}9P5sHlP
ze<FKETq)>W0t|&WAGg*zYK}tb(ogDXCM^Z<YKcP-jAp5LrL=Y78bnw(oh0ezzSXHv
zSB6FVVI*qj)lGcT-5oC(x}*CjLRl@0sAq|dq)Wi^gz=s(|GM=euR0Jvfe}XOUF3b9
z0NL2km<MBNVoZRAGO;ywa&|N^uz~$AvNN=VWoBn3U?BKE5f2Z&sD-t&i6gzJwSlvV
zu!)hKu?fAjiLIHlIRO(3AK(8jgc2r8SZ4}+VK?Owd7glb!$3YbV}0gd0snvQ&i4Pa
zI}0N#3+Ml)VkF>X;AH0fzv;vh$QY^LToPmb`MPV+5$RM<H`o}pAEw6VXpX|l7fEF8
zw7Gr7IAz~)1E+1Wt8&=w!v1q<su!W?$2YsDQenQuv8YB%ANy24lpZZ8uUQ*H?wCS$
zojfWDo^H-(95psu>(C?XJ~rz}64f0sQ@YdM3s?HmX_VXe_C0~>+0A{VNeK;y8XP}2
z+g^=@ebWed$ry=@+(5Rdw5kH?CR8xRO7~NV9rjFeQH$hS-{$baUpMw5O42||q$;Ra
zpKpJ`ceKwNlBW>^*4eV8rDED+OktIQs;*lLlCo~!^lZn_G{3m$=R(<0aBg%`5T-Ti
zRH(#?O69b=z|z16S9l3$BV-)&2(Iut_&QEPv7`85AmufrO=UL>rV%%BEh5rGE&Tym
znSmaTtE)BnQUFhe261+Y<R7!Sfvbi*$WcFDxfStFaObZOxWJ?<DRj#;|E?Awtr33=
zh_51e?KOtHiSV-qi<sPBDW6Mf<twr|RyRb$jb=#@sFK%mu$IEh`A8uhjZ&v}Q33IO
z_8#zz^H*FSlX~~{lh{%w*rFE%e}^edckD$O8G_<_J6vV^vIU&Oxn9G@`v-9`^pb&W
zJ;oCd<*LkpI(WgspVaY81bt{;`OB;pb{V?7-Gaq(fds)sNP%4s`X8`kLovr%*Oh!m
z0FfC*2YW29#1Zwg%sn>Xr@@)<{F=74@y`t{a?~?eXpfVZvulJ!y-Yy6K@vxIBjCS^
za3tpUEx-z`(No%FA7RWk7s}d9`6^mshD&`E;=lQM*rd#=Xk~EaZH}SY55Z;?<W17o
z80l%_&tK4$PF9Wb%)yI&r%2W8)p)=lvHYLTDl-*CTsf@6MX*sP<k2yEGbAbc{QO$D
za;>d!8vt_;4a<?ACK2dl>ACpO@ETH%*^T}mU8rqM4;Z3FUh_H=dqXQM)jXWkB-&JD
z)#ML$22w+k^>o95_a0#R3?dA9glJbnt`H71U*#mX{m~o!b(OApBVlI7@R{i8bZRnF
zozEBdQUD0Y^b-skgw|I6j*%_Pt}%|`x6%`HLyRJZlLML7lWH*}<wBTmz{Do}Bs&$j
zUNFIc;W6%SY}10nuFj(ZXiDQZEo4B%{aPcp=PcL{np*CN>YPi3WskH;@3><Y)Lf#$
z3jn4aTZ52tJg^e0G0mCOshxpNOZVDxH&C^D1*aUVM`H(xVj_j?W#p*zz%KiC!eu}T
z<t@5pv6`<pj@0~0sm=u}jJ^vBn4Jo<I3>3~IB}P1P}`d5z&uHEws<2>IJ6hvlhA#7
zt;ZSmrZK1Yts!m#q1rk3mYyA9wB0MG9&HXRoCDC2QCi-d6%3A-q>l4xPWToBdp!k=
zOHkg2ZUhPVqR4rwqH$P$;p<XD{IvZ7BPS6h4=DpkUHfnU*gWAt)on#`r=N4;g#)gE
zVqV8ve$#NgLBe(OFJ>JGSUXa(c|dP#MPKJc*Egm+cyO>6U=b6?N+2QN4vci~ZqH|D
z8;{z|1Z67m%%DYh*qd>UFVMx8B0{LqrPHcT)Giz$X7s~P*6gDMbF}gTKdwPzeaf6&
z08)`83Q#VmS2kjuo#~xQSx8d7O~Kr1U-OPbbN~u&UM<#C-R3ztAsKcY^rt2q!PcXU
zd(b+)e~6h2#cdB-(o8A>Q)AG4xcxe?g=1G|@Kg?<<~d}HBP0kAc_F&<=11_lkja-c
z0+R_hwPwsczj<Zl;z=Xav+*_<fm?&MSeJmvS(9{ZgkLw=g|DruG$|n7h9;05;fFkr
zG_4nCfg*eP*zxqHdKx&;zN{Ru8%6xwiX>?cwX<`P+`9B~;?)+>ZQPe5=ti?2ijEtD
z?@aElBzl{cEK%1qwK;H_iFw{b1{Fi7AHzUit8V>qpZ0C&LcGqC2N=M{0XgCz?R*V8
zO_h1^nn(yJ%=&P~rLwBZP=%W+P&RL$2v7522C?S_Hmv2ri{C1ehuYKrXKf-srsmGX
zXq6)1dAyR_(*^$Qbi4vgdy=tAd%mx^;l8JvGfyFK<kZ+K^8HZ>(qoFX2or)kJHx>{
z-MvL7rE@{ji9I3a=}8LoFI;v28R38r(#dm+Qa{Lu=5gO4)G6t<c=ZfC<^ep>ttovI
zei11j=A2r9uzox!2DO(So7sM?g~qFL`%=JXQV;{Fx7AC>v0i4Fo8}eN_D>^^COw4l
zp6so##d7Xp&#2IY6WuNf3+b6Z@=RDx8&NToGz+Ff<*(*UEjO5q>~uyjNY8Hf9E2J3
zvJ53Mcl0y_@v2cAe#J^jpmDQR_VzSpei2g}`BQADBMynya!t;5j|iAC=fIbnueatp
zRTik8R#BV5xr=Uw&~B_uvKxrI0HPjkaY#XJ69E*5UvN6Q+$*^V<px&az>X)G-xU~^
z6Qo_HOQK#$S_jr9yx?_%KtP-GgK#mcAt$PnWS)AhbKf^NaWL`goJamM*{W8XS9XCX
zvXp@yCjktJ_F?(^y}MN986Q4JeK5Tcd?AvceX_7f4I{7n5}D~2D3AQwy*b=BE(LzE
z@IFvL)>iwB!Batj*gL?|Ln9|Q(~w$B%GB*HzVHle*FLr8YYZGvQJNhdhK|{DtSQZ%
zyK!ty-^nHY_)<I`q;S#<W9i~RZuD4_mPOp_m6#BqB049V5>GqJy+^)ZK@)WN$ku7}
zPkD=5?zO%CCAx4RdOYsJrcdk#aby5tk?7EHY1918Utl%SzsILj?Xvuu0|O?pVSUmJ
zyp&`tx+XjAQHmJ#O9>pNbG~C{HNx^3RK%AtnC&2SJ`Quzk*)<ZZiSDtjFgKzE)Yh5
z&tar&yW&1*Ur?=hkFwV=9%ahtyV1Jt2U84UYB>)M<~`gtl^bi<r0GV2zN5#MeN?@g
z=H!rR-2GQuP=hY>YV}%(zE~QIEO1IL9@LoOKAe=tElzK8C~U_7D|bzIR3Ah5CMZXI
zKqU(IOtd04-KWrpBdPhsP#;!Ps2$-gcUBFNo>#tVO#)342aA3r{7W7eXR>9_1xeXt
z#jIa?1suM@txods6)8>vFq*lz6Jvos-kksL>UWS@&GDUH1x!hSq&?EBDt>=wF8E#?
z$q!d+jT~*oGTFJrlE1Tq2puB`$qWTUWe<}DW1Q_Wc8lP2!X5mVOQI>5X5tZ09Cnfo
zsA|nGSO(fMsslGtsM7FJIGW}8ByDR{5*PLfy6$_w>wn~Wa<cD;gS8tuf%=X{eTMDn
zn=gjS4%+J<gezdDDc5eZZpf<b1|Ts>$w`f@Fx?Ifa9XI~DHuHi>2TD_L7=?Uv*f4$
z^y9eCHAPff6{&xR@6%RuR4Un?8Tfq>S+5n@&Gn2;QlzgNq3Y2(F3Vb)$U^mYHJDS*
zgkOb~(HL#T-gBP?7Zrn~fLeUw^pE`6F9x0a{dIYfodK|X>uEn-iJb>9kv3zp!v-5y
zr<~fklrZd~G@nCMvFdeTTr<&6Fv-{+oa(OYv3_DnSc>Rc%YAN03s3Nrv!h0_eFuCg
z0NO`I7`v_z8NrD``_KhHA(f?)3G9sjD<gFX5d*OgD+j7<(K{7vHV>!*h^xGCr{QV+
zZUPGHfyT<iU&^UVz655R4h+NVp^kW9L;hujkPY3NBvPU<3?>fcn&ra87Piq1^btkD
zI+yC|-2^Om`d$ki=v^|Q9QOX!eT|_tl4=na<8W@1=_Y&dE|zU4|Cw(U?Iqy-4**+0
zq`x4z?3}R7%QOQ8l{Pxl!h7A`L{`Eyu5q=|l=uX=wHzoTRB9fB4Vpp(Hp*OOpbC%|
zRM8$bwqMaW^fDMxn#||t)o5ZqV6p2wPvpzy&e(1cq44=KmkLWaPMDeR{aw@5tJmNJ
zz5b=rPyr9+s6?G?UwDu0JT+GpWt1?-(n*foH{sc+F9NK`WWY^pzmY!d()7M463!RM
z+C^YmctI=t$eE&?7KFJGc)`5D;|jrey+$JdK+R&I#on^J<SRL8PjVi2^@3_-8APSS
zL|E1IjOfd`+@&SLRVkmT!|GvenbOHN=eV^-0qKa0LEVHffYD}8Owp*Zk!t5uPStId
z&edwaldp_4w6HO7Ij`k)a>Bo)vJHvhsBjk{dK2}{Vduh*IVu~h24=+@`;GN+B$pc}
zULKWT{tV{6Yi9%Zl{S&V)M-D(FZ$lz)8M-fur_yYKIt~H^iZc;K3^p`!L!TRtibIb
z5qlO|0!pQ#mRtC0U`Oj#MntI8_Rc6_t>pme{qE=Rd#2|W+(S(;V=|xtBWMe6f?gLy
zM_z3~;gmplROlYt%_0$M5tB{+P@r<6yHO_$bG~h;YW9nw^fLCVwmb=}D7?VneN#Vm
zMqNzRd&)EzM@E&doPYAMN>n9ekLOfkB=pz!@1H{|4hnyxQ|W0p)O!rOn&(ScVD)6+
z;r1V%vEE`TI8#tOHD@ZUe96m!yS)<JS$*AFa7rz%=$_~rEt}25du<l8ON!8NTqwim
zHZ(}YnFZo(!zs7>mnKv+dB=|lrC&?Y+Nt)J{tgMlGn?lpdU<;!2Rk8fU%HBwD5KHH
zVW{C+)XcF(>F~QN!-6Pd`Mr(<j)vSKyWZv?UT@^?>|iFn&_rcj+%$gkjc{L!jTqV?
z%^^tC&cqIY&#ag@*YNY!r|+N)U)$yL?_245W}(MUU&!+Q>jh-1^L5SjR*xNc^P==s
zqJfjCD$UpMs0RviLyJJGKgrHyI0C}Dc^FVkr0j*mdl_8{mJP1@U?7D68tCOL!^h1M
ziInKhdl468(TGAbaLQlLv#g?Yo9`oY`wXrD*n?h1(UUm0uB5BraN*?N<*ZSs!{#j)
zGrKDn>R!wJVK~w3!4Og=RnGnY2Cox|IP^A_`@bd}tru^BW8r#H^FPThW&c~(8#=V{
zsl$si?~A>KO8FHODMP~<YfsdCgAF!HR--y#fWw%nN3RsBV+*xSbTY7=2EOm?<k+ma
zsuC9Q_c&wngkzpNxQCnrjK1cTa}}*$cla#RAITXFmLIJH<|h&H*6(s4F<#o0T&W9g
zRG|u?St!`3L~2@TBM61zZy$0OyAvdRL7*fP#X~&jVD%;oXlZ~z_yV_U*;TYMWGl4J
zu6~BlyPdG2bQd6_?<P!QSPqYLWU33=vfalT&}EevP+vt^WW3s{#+gozU$^oK)yofl
zLap;UQ!WIW_2!S6x^?SM_+dc#zV~<o*_&6w7AQa49H^$+{N7Z-lZFO*>?hZUuuU*<
z>vn@9{mPup$gQ<KE5>W?zyQ+;Z!|xetZcSG9b57us$|o3b-($lJI)@;d_Yp}Gfh&b
zB1vHlP!j`%c2%~DbQIhh^O#GguyJB{q34WMoa^)+f3cq}1ru{mqSK(Ncn1t6`R9aW
z)R>;WCg67*WV{y1P9Y;sdWwn&w+bEWojIIhve`!T^`z8c%a7R8thSBpN>U{>3_Bzd
zIt^XGoMO!XoEEt#@lxWIG`J@loZXQ~ZAO!!AkbA(R7SR1ho>J;)71^Sl;!~mA=>k!
z?JO41mm{cQ8}sH5ibN9H;VbdbArZrpl-0p#-onlE@o;hGs7=CtmK+%nosbP_76@B8
zq8l|{?9D}H{W&k0bN?37wQ=n9UjuZ!ML4F5llINvG(pNZ1iGdRl4^?PlbjS?RxA&q
zJ$wU5W;ZL-h5=&us(C~s`0RuJY?p~~a#H;<pYb(O63Gq%vo@n<tHA5bsK}VX7_`Y7
z;d1Ky=oOJ2<aQXpe=yH01~gEI0XmpIpqwJ-?|EL|&@y~hjeXmY3V8_RS7PB}5#cSX
z3v{%sHE;Q&bL<8F3DBi;cuA>mm(Z@s0pkq4KC0*0pd+d!3nJ0i*%Pg|DN8-WMkUsT
zb&o(sP?dsLYc-BXBB@;SVL{n9Twz^mv47e0ghyB7^jmR={=WekA@fBg1*X>6A4!-}
znfvSl%zZSFh;b((jms+5TdgoUBs)<qp%<+hdLQ2+>e<Qf(+z8~7Z56^97r7ubM>GN
z9W0^$4cOdG$oF@}@e!cp3~%oH(Qb)gQ$Y2o+CJj*H83m#As&BqbVo>Qb}+T2zwg~F
z>|^v>0s$wS@k$pBBxVs5M;|v?nR9y&7DTUgkhVl`w=E5d348X1h0qBR#%AE^rbJTR
zDUgD0j^A%)gAOpri~>Sch^gi}2j8B`+~TI1Ko~EN*P`D7?F^zBn<=c<J(}QnIm-Yq
zbQc7XR^Qz~Y{*q#hqR^*RHR44^5m_gauSGV<=zTA!QQybH=|+E1$^MxF;R&;_2nkQ
zBYk2Hl<8;ZC2LJbg)QHggVQCN%iG1ue|EZ6EHO#^QynVR1BrYXxk27}o!;Ss6ZI33
zBLJ}C@>p5^WUJ4`r^Hn;($Hm}IWIC<##lH{u_Z6{I(iW}m2`}@KcOEtZ#!G&6lmMP
zgyF-9W0L1&Vmjs>Wy$G=G0fGL4D#6yM-LM#0l!LY7g;hnot#yE$vCsY@MgE0zl8y&
zR5Z8qL$dxi8VfW&4nspCmCBC;xRv?b5vR%~kzq$UKEPqn?%QNHOKLgB=pqsd86qo2
zwGwF?LZ1Tva8drvuv1Ncvu8`Yd7eCtkm~jn%n(pTeOjObV#4C`CZTX-+_03U!x+_7
zoIJxVvnGk@JBvzxkEs}qB8b}UFsA_D{`_)Geh~HYWC=o9tosf6k>R<itDj)kWW$xp
zelR4Aj$#`B@XdDNM_7zV2p9_9nWRDKO2~jAeTQOT7C{^;<UG0f^J?(yDF@csVJ2qU
zmIyt*q`Vg(V;e#bwbZ%W(WCg_K1<hhkw`!^^P4gRNukbFL0MtqxT5$Y7nA~a3@izX
zE+4_m%Vx?@>B+7IpZPso*J;oMx6A^8NcK3xV<h^>^1q_9{k++z09mz~C3Jt_VdyOs
z2aY1o1XYI2eqEgE|75N3P{ipEC#?Pbwml`>=dgDvEg_Its(kSAjHl+2*z~?K{@gzg
z)r;VGAVLB0`{<J0qvu@_v5rzgF5pq_$t&`Sd3wKz2?N{!@1lqbeW2CdCO9}UCzS~{
zGw!4t)h|iDlXMkJ02sntDlDQFCMQTH@<=MQ^R43F$I{`vsc)-(<OjS(vlyIO6N1|L
zkchxZpLn~2rt7{HYwcyZbF#4ZNK7-XKDvMYh_WAJ#}M>`iRIii={%O1>8hxpvY6T|
z2eY*#;aIRZK+RazK{wbVswREc7`6)a%WQ5Pi<l|Y2Yq4`0_r~*DwuOU>f^L}D-(2_
zK`PtNQMh=-cn*;zqPg#N-SLT-;ok)c<%S0KSs}Zf9)Dol!w1}v24T=W{9;IVDY#rU
z+*4d#r8y~GHWei`$fZo&{mFCOrcCI8?*Hylv(6Dst<=Xw;MTwR{pLck2#tlKTZ<Kf
zBr5q?^kK~`WTD7R^|W4cFSVu9l6BY0CWM6hS|w1NAi;=QRGSqYUU>564uO#;2)Gv~
zgPXmjm(0Syv5H`*ZxA2pUe1387!)!BL)WC4-FyhNaWZY<Cwc{jmDHs7IBpjrs((cV
zE-)1@zg_h<ws#nyuGcd6-+D9qMgph9tH_uwsyuao?2a`BD=j6YO;Pto`&_j``jgr|
z7A>fgRH2j4rC%XN=K(AmcCIdo3hwMQz}UDC6*jc0%7RK!_#c%>Wsw(4YKD*G5fR*I
zG&r?&5M~0px4RvSjK@LdsLH!1EY_izxBH@1kue^%tZzTcj?VU$*q+07n}THQg7@!D
z-a8dCH_hFl0hB6h+coXCxtv;_>1pW~CvZ;=dmBYo!D3x)%Vl8*4c-oc&NXk$w~t$<
zycIpow5UBE#5}etp9n0=5y7uzPhsi=TGx#C>1#Z_$q3twQVW22u%0-ax7Fh9m{mzA
zHH<}_F#~-!1?>3ZWYs1v`O_O+P9=X1YP1}Hg2R`jVQg*pLKf7^oE>$bklwJbm18FL
z$jXeq#qb&Ut;-*)>q^5Wyu+{_<SU0$FpNDLri3IAgJ*ViR9;DV8vTbr!dRka^;BDB
z<U!1#Ip0seUSfx(o1TX#V)7u0|CyC!=<4&1E$k^Z0JCc51Dm9yCxA+}bHW4gVmSiV
z^zY(zEOb<gHiw{oVda+S<Qk1$yCoAw^4~qqr|m^lpu6^44VZ#kaI@U|<2GmM%0fOg
zh>;Nt2VDhMS(u>KZE0c^h*msdWuSW*ui+ihMAOp7JB@h?foZsxXNX{I<UAkA$UH$;
z(@4Kt-0!XBNaRDYO^{^(a@iXP=?WGV<mZSxWd_sAZ73cXX0IE($axzAn1Ob1v_cls
z1WBE3=#8kffN9qv^=1Vhg%>#oy!J5)v0f`qU>_4g=T~qBj#S5Fa^@J-ne<YcPNXxZ
znq@zH6%cc(_{AO<Vxp0Kx3uz%Ne$qT(}oNoVPb94%K<eEiGbn+G>AvrV?8r#`wm0)
z?BO05c?}+@&FW4{DoMxPDc1$AlV+^NmR3+CX}SzS7tWOb6c&<h-t-}N9c#|}^B;5p
z2=htpz2Rr=J@Nlm$xQH<(I_8&#KGk6w~lL90U7XGOb9*_Z7cM^Y5@vY3O6dOGxS$`
z{PD5V8=cUZ5b|?M3J;i3$~&=zar#_s^`zJjm??U&hX{E<Xqbc^Wle%dAaKXpP~9w(
zT}DP}C^H)&lGIzJ=m>e}UT6H3$nB-;sT)F<dNlG2-ugAp<tzuI!G6w?`g&IgZ)Wr>
zY-&s;FUjf$`(9~JHWLaB<}SNx()1u$B0!T)w5|@J)K!H{&68OwkOjrCsa>ow3fAOj
zm%<*08lOC<!Epz)+79<K5Um62l2fH6K?Fj8K3T*XC>seGFvg;6s^6U><>+#;segsT
zeD=-5wh1Jv`>yDQJey*BrV5RKTSb2hmk>ov-XfQkG-^)FizjO^&svd08){}44C)h<
z$pj|W=KK-iQ=TZk(@7TB6ry+TXyl0?{}_WGF@xr;zko@R=1l=I&D*~GgL#KfB`a;E
zaHsThcIi=_Ez)<0j}bS6nA>%j%z`0D;ljcrb?dlFBKPj+F~S_eaNAT+MuJtr0oHha
zcY~;XLHpmofIk0OD+2p2fh`bw!zc)cqy&;3#z|zRh^YA?J8uM8KL!BQw4NQ*)5UKw
zBFu~mGe6J7?9!u}HG`QhA1vlkq+Y&0bk3|+lqAU>wMN{st_0yyLSJdi8v5ihXiOt<
zZgeb-JxhwS9d?-ad&=<ihc9YK?6r<x-`jHlPV|C)tvDDALvq;K=}OMx-@-q74^h#+
zDwC<oni0nbS=L<o4F=9(a#9sl?My|_y+(6V#ux8GalE`cAxe;0>Fg7=BoXZhR>NYd
z`szfYxamE0hO(4pK>*J5@}y?P?G?0vW=b*8az`O1APZR4GTEX3iHTE8a0BkQl;_PU
zzQb$|v<LkNv;w{FSPX>|c|THfie`3%7HcM*>EGfUrPYooVy0h-PO|Q31r?`megaJu
z+}96CqSxMU8*#b2xT1%hYU|9qt4p{c7Q?uq(71qtm-F8a3m7ZZ*;IOS_;2R{ESK4&
zK%5IdJ*VD1_VW?f6D9uFKMYs&lY@Cc(y}o_iq_owXHz4)BsUABuQ*?jfElQnRnJSJ
zJ`iCr9QV~l%vlsny9y-8#p}w8pY5fVBr|3aGVzJ>4&<z;?7WGB(7fpDJfdv8=SxwP
zjIYWlbk}Hy52T!8A+cVMR)hFdOn}-Xq4TE5P}#bxG!T0=FUdnPP^kY@mSalELY@f@
zMTA{9-plyohKDX^)-^Ob`a>TMH`(VE2Cy`Cdqt(`UKn-)AUi4pup;c^v-vi8Nt~-1
z1&v2(!h_<vsk)2jK@{|OdTzUD1v@aR82o8o1LEu1k!?>+$G}whboKeD_4f2<Sd1@?
zvrFf2{ZDo({<?dQ#lRGtu~;3{$rhZDC5)#(hD{1xF?iK4r#hEH0!4lKv9X~z^na%I
zbcblQViPqa@Z*()GWKU^UbYd2CmsWk5pkSk0>B@HlYI-&xZgHNNK?y8uQA34;#z=s
z)Q&2aQx!M>h;u&*yu<@D`IDGZ8#5N0tLPqU5Z3Il#0^ZqW1CP2%8++J#TjM+1}K!@
zKfZ2y(({8}{2yJ@!+q$0BTtuP1u{_%eXLpT1yhW_z^AvlJ?T9V9{l);UsNjN1CsLq
zrj!l3_na{#25SBA)Uxuep7qR@Xcs`c1N;wk(OzPrPYQ~p2Jml2ifDh%KloD=HeWx~
zKfm&D8-9Wyz7*OHBFjS1J|Uw|dIb4Ndhl$NFPDg?F4f`Cg?Qu-ciA@4?SY3;5Tzyb
zf5614>8HbpXp_4+Ygi>%GLEitt@8=}!oXI6P|O&xeU3xz<eb?Gr?B6F6Zm82&?*+S
ztE*30voH18RAdYWdsRGLMdt<^UIR8uIVD9nws(N0n@RM;KgT=im}h!6cl#JFMzD7a
z0mG|-NGWtB-N7M~JnTq#XrR-#uUNuTuf2o7^F<_Aw)ez-ORo%SV3L&a>w%q*`7Y|X
zzzj&QRdDz^iha|k>`e->&a7)ww2YKr09dCi-~g_snkTz{9$qfkMdq3h^Bnv@+&qAe
z9tYgfZL-q?(vPpIEQa4n_U>6Bw!XF9ksElD8RBo)5*nozB4V&=Q3I)ppAD1oO1MX%
zk9JmQPAo5^{3SFKjvJhZBO}JwrsSW7(CU#5Pu-LTt`u0%)!zh#^LUP50ds3%_{TH}
zD*RI>)ERK6tsk4)=HR_MdjC)MAm;EkUGdW7enyGjCOpubELT)M$xqbT;2h0Vep(QD
zRaTjdWpM!qb&?^^O4bWcea8vO+d&uY`EfX+YStIbxk&f5vx$S5Y_rLQ=#cqE&iC&b
z03rD}2-3n>S&DuhiI#j)!@8lcZ4PGV<o<B~3wD285-4=(-$p?1ofJT{ZAfWQQdzM4
z<tj^*a&=y!Xm{n(J4pLqRo^Lw>Iwzt^<;QvC2Z!sYbb1y<tM|+G+zRrPErC0xnDL)
zgT+nj&%!I6pMB%e9;Z<qK~Y}kk~pag9vZ<gb~dI=w@Xua_8P8txGk*zv@jHO<JjEV
z20x8B&h+}#^m(*Ut4s2+K6*roHgb>NLAAr?T#WVZM(FIpZlC?u<51@J8gw@yXcnd^
zy9Y@I0?lOjTP^WV;;X?WsMlBuvvaY)j@)m9RTdyOVObOyn@ajrftoND3NVD;;=4q)
zNThFhJ$7mzPHHfG$W_yFk$`fc<$kZuQIPt61@1sr*xTu&Svh62b7>Y=p<agjsi^+J
zIM^v0rlc{<57@8~cb+xV#8V%UK~jX;^N>Hp$+_qO+IJaZ@NfVBYk>hh@Pg1TdU^Gz
za>~{OFHN+Y3fa_?#bq<{blzG^7|9%yxppJ6`9;{%w#u^`Bd*JL51vwvlL$$B#36-!
zmv#$c{PJpH3d7uL;xE=Zukg$I4a1=BGm{0yq{mV&n1zLCIItL~JkvMtVXbGKC@{N7
z6sU^_J1R`!u#N;i3dydNh}Tg8&?9zLBfH&~bKZ3aM<Vp~Ao1}_=cu1<*R8E)==<cr
z3a>D*1cw(Qv;8G}phe<us2{?OD%<~GY*C#5{v!2DQN`ya%znqW6`>Oks%xv8k8wU`
zzVmq<cXSRdYK4(Y947KQ7%YtL*f&1Dq#~%=^y)MaF8|R>7KcsMb(1V0?G=AOdER3h
z;DzOejSTV#MjpnXQXs@j*EZ5U*$!Ryb+(MCl=U(nnOXPJ04o>^MGmJF>QS>@@LIXL
zdkR6?53$55cE#3MP>A2?bZ7xVbJu!14$1?KkKs?Y+iq3ORBtRWB=4@>u4?Dw6L$XC
zt9bLy`u5^0=?~^1n~TKIC|e)b4CP=B+JrQ3m#f*8f2~%@75PQtppb$YSvkVh`LzT;
zgc9<>pws}V-Tjjx<~uysDgecM_|pS&iJDBsHk?jErx>oZIr6L&_PWAa*SN?UU9{HD
zKJP)5;K(0e=Ep}4U6i{kw$TA<k^N};!bsEril7M*f5g8D3U;CW3WPksBm#ot%55BF
zO%pK=+?2_UOAGLFbh=ace)}N@g?YIN8GMq&Wrlh|#4Av3=#Bov4^@HU^RF7)Q&)Oe
zfjqqFCzY3Yp6%7zEra$(ZZ*@B&MPe{>{y*fY{j2?B59aWCQStLXbSb-u80NaN(?#^
zN|qkz<ZLh^{3uPWpNVZaOWdTQAi+eUUM}#ns8-qD1XH2t8Z@Z>w0ETMkuK+i`ZrOu
z`Sq+*NUhRVa_{On%#75`d(hROk;M0uZ|JzK*-Kl|XMlC0Ugfb?-6u!s=;^dIvH&u;
zO@fUO1Z5c0YC<h3tJ&~IfcXOE4>HD)k>XuocT#!N*QdfckW`cS3|>(k@|qtVdM5`T
z9Dw73TagScAnh<&sUs&Uhmv@qN0^(z8q+4w;e-4PK^|DSHQRA5bU3_{#m&9)_@*<I
zb`D6Ks-cqD$bzv9;GBK7MbzSu38l;=G^M2#|911?T>n9&z<=%bU9>J0^yKk++5h%)
z&pgrH{krCfN_$t+^Ojv0uC74*qoYUdj^(4){bzlG8hoI|!NU33nK)N*EtHaLd57WW
z!l!}Vg?D7bwzT&}wZdz!rB087(tg%XmAcDd>LzG^nai~f3+YymV_Q1m;~GwXVQvpb
zB+qVEkUST<102JiMo@mD(y9I_o(`!3J4Z2ASma{gk_`Fz>_Ya={}tZix@uh3nQps>
zX<}Pc?-O1DOQxw~l_s*S#RBbBl}Gi2*k;YDkCoE<%;WzVS?0bV16310S548(g&EIK
z)}3V<^bmd=1SY7C)6|E509A;VGKxu>x2?A}6L2<`+pj2gg!YDaC=Sa89Mf0o6dV(~
ziDu;G)o(bqvniAdcg83hmu9RYo6a;sZePiOu;uD>YHl<V1uG3RoPLMPn;6Iel7p0T
z+za^S6it{alFGxf;EQ;RB+~-we`)Du{EAUW(*Ch0{V0|fv!CphG@@J}Le|!G6K2U}
zdkgyP4&P)xJ`=ti&77B5{OU`^A|x=jZnbSt{#e7JM&dvT*R&KJZxXI-5@msvM18+(
zyx_jK)UD91*HKWjxaSIkbpcS>XL&2s`%hJI2r-YGMb`IOL~dQDo!l2(K1)nq+&#XH
z-8RY}4GU{}Dc)n*-=ml*f5K(MvbYx8K+#U=frmRZPxlTFbXCMEml)cEA?!Hv#R?Dh
zc8{k6&IIS=bO*`dzho~&<hyQ0b17OwJR8c%i#O=@lbgx?o4BZOfh<Ycnnf@CBt#{`
zzMovZT3-nY`FwihX#S()1Q$rzVA(we`mp?t%gVKO>-|F-%h--0YI%xSV6R+io&w0?
z4ARQVqasD@QU+Oi8DlUhH_+NA<Y&zp`WrQKvG{lQQ<(~(MoRkC8#uFh=VJo^nDaV>
zj6ifcP%u%h<ve*#CW9@>p<Jw6VLfMlH!>mM1*`I<v930&h*<ryKy@6G={v)WNzZID
zri@-HNsPe0>~pE<<i^w(j&YuGA~|(pC8OEn@l=OV{J}vjzLSpN9?aPBiC+F(appbX
z<~5)rFw!JHcIJo<mdf`YYi-x%<!@0Lme)=y&%Gidqn#KguZxf$nY$t7&P0j(kxZ@<
z{g0k^0c06k)5+&*lNsQJDg!f=Jw`F@8YXo_ar0~5@Jng@0B-!zN;2w}(xx)7tR<0S
zb^Ofk4G~Z*h8GS;Zh+pQLCSLsJhbE0&BhAzKCZ%P4@@1A(C8a}-R9|Sx}n)VI>QfT
zYFUg=Mn>Z;>`dK5Fp=5@Y-iiK@OCJM^diXYf|S6h(L+8$QFo)BE*5`%){Cdg1(Q*4
zIa7gnuf!iU+dl0msljk1#T2*k^J{*5kp#=D*4rfmXkBxj%t{WFe~$g)9ah3v;6)=I
z*(}m<L??ss#^5Rh+YTvx+xY#iB#e*R4NHD&4)UZ%pX#4x3OTl?UEGIKZV;KHvPzA;
za9y*=f4<H>*EUo|>b~{PdaVMjLfK#!U-vnWx-OL8bBexjm_x3!z<v^pY=tN+l2#C8
zBu9u6S@mC*q^PKLhMigoyN#x_gX(vlgyvoU#{Xp6b&!MnM>z6qyNl&qX;C0qa6hyx
zh><c$v?#^UdHF%lgib)D;0pliC@1culP`CDH|G%Cl+7SpYMQg@aDpVHNIN=V*pg$H
z)ykAy#!yg3gR~W^WURIQJfAxH-05r_N0uWn>kNf<%eAgboh(*wt2n@Q^`lx->b6k8
zc5ip?YIFLAkhA_2Balp3%D(1U1U)KemF0fW)YmubI5Y%T=J`_yU_!>ekT)YiOsL5M
zo|lQIjpqP0x*+&u<CGRKFiqjql1(w~Is7bNW(2a~XRC9d-B*I|!>d>?D;*<W^ripy
zlmF_xEfY?b7}s#^aoVy^OxBM>Yd1nMhy=Z|Znaq;^!(6+Zxf-mM=dy{gq+);02@O*
z)D2a8YS?@QsuAYiZ3EI%Wdjw}>1c0e2N}3OUX)uZfw~vXqURVI>-VUTWmLAi&op18
zpoe!=rb1d@raTB)HnFnkOmi5*v3(SPjN;+S)>Md<=@Da@SBTr%DkKjw-|~&9D04zk
z{9i8~66Y{9YZx+EM~0cmd1)^ttpt;q9Iq$uVR~{Ndw;Rzb}IQhB|2*CA%qs<X4wMP
zK61dqKn(;9vCtLG-FowD<64LgEEBx&Kb@HhD#GvxG^ffg|3hL%M*~E`bS003X$&)I
zf#@)NSyXnP$$q7q<`F|NGH#7E`_a-Z4Asfl=vZL&S!a0&zMK~}!))S)Lc$<E0SrwR
zKuZg-=BB!cSA=(&F8qHIM=pB}QLCXTb$m}KvvDvpg?$oo8#1>ZFFZ%SS4usbqE_Eq
zWpQ3@GaLeqKjCeRD#TEJdA2DO7<<45XxA-U<mt4PfDPQ3;*m<llaY`wv1P)rErB@8
zH<lzw!FX8Gv*^)pWh4&kpc_G1T$iMYI&#CvumsL9|7>O{tX4$^A{`<M>QW`JT3n;W
zor5OdS=acN>@t6SpyjB1)tb{3u%f4eQeNB>_7Jrnv#^=)v<;MO`!{5Msj8?pfqo?F
ziul;}>~#{J+WfjHy{?uP38MWUFr{cAAm^AS5^rwLF#7LHCj`PpQm51QDl{nee{*09
zpu6ER=r5t#Qp%HmqAu%-T85MY+4=ppf?&N*Sq>v+H#KYg#}L^J;`R^Ur1k(B^Ys?>
zvM2>qhZ`YCmX?*ZeA#LgC7OT~rLCq1x9&Z3|4$aByWv{40xNqUhVjQ5`@^mb{}Xl3
zByVAwe6G~!c_IJaq|Cdp6)?(Ipsk59OkT@Hp_}t#2D@v);38;d>03+Mt_H>Mf<wN3
z@~X!Vl7=uGkiye(lu5h&ks1$S?lt>`3J`ufdTxjs*6XJRVhKrmjt+Qk3usXFF7I$i
zj1$->DmYR)Kn*!bX64f}UxT#4(Aw<FHa`uBo2Z0#_@sQv;Bxn#m&XdcE6DYc2E|`e
z>nv65ET?R9(JwR)`wlSNS1mQ#(oSGB{Z}Iz>WV=W)#H<--1Rgc<*_d~vZiKg)v8W`
zzmVwc9jTKqj*6h#U*xs>gT&$VG;3YH0e+g|cWzCT8qApjy?}V}#vyT6k0oGhktso0
zo2YY!87?9?Cm3#a$P*(H)NPY%tjmyxbtL}zLiyT%caqC&nOXCHA<;!QO><cdHI8J5
zg7m+xyy>^R?zgXDE;g=rH=MEau6`y7JwNTN)u)+<g0d35&+OXL><RD)kl%Jp1I3AC
zCx`uZr>^%H8iJ8`#Gm}FEKFm!6y;3CidZUfvP3I^7=jl@jS9kZTXQ+#8M;(RM<ZXN
zjDt<9KYT~})S3HYPL;V;L4+mooKIY8(a48F>pw^h@)_x;!`>r8<DhSlapZ?4oA2G`
zh!(ZwA!&5Z{oUFdu8Kt&0*2?~6hgl&+mF#S@s+Q1Z@SScr9QwT1a3K03a<m{k&Z!%
zy~qBjKWhoF$0b~xD?GR;S^9Tfj%iX1yKLsP!1^Yq^jQ&LJO(8IMzT_Qb+{SfzN+N*
z>B8XA;uauf^0+96XHJ@-*UXD7P%Yo(iV9ORAIefTGom}fTB9w{<;9dWmC|kRUiOB{
zbY&@SBgXn&D`&ezaT|WHW2AIx5$^E1iWQCMAos1o)*zdo?v52fVFRWlMA`DcTfc(v
zO!zgxK{%I`PkAXaSx%}zRD)_7dF*LJ7w*wTNphEBs`0+U_JyT?BRw0GBx`a&lB#}r
zRNXE&?Suu##iTdSzIV{vj0UFLu^?E@be0K$0Z=!5Xz|GnJK(Sokm@DJ7-Vn#J=mtc
z=#p>z8bHxOtCBQ)ZOBnr*VA~j__v$x7hZ-uZSVLrs<g5C%9EFd?pM$-$8*Mac{x5l
zF`=ZeL4ov)87R(K7p${U7vbOj7@5wO-E6g{N}*vmdRe=;?N=Y8MLf-=aQXp9b<jKa
zR`iPeW44#gg2816_-#WN1#3w}uL6OEB|XGMW5C??w)*V&&`4gmftcRuNu!*HyUg*=
z%ue%`&t3p&MzWlItX4D86wB~ws!{hSLj+J~!kXCDgCBS#Z7pct%FYx*Vg`I6|L70(
z3n=;E@unMC;9md3hex{W4e-F?B&}99f0P;jr;frtu=(7ldSeWtzxV}g=OBr|^<%P@
zz}o4D#sqNNSvps$tCYBbM<YY^^JWrx%qmJD>G!@17KFGGhEd^}n%u_iC>Q7XNZBys
zC=-T*MfG5d&APiAvi1|G^wO}xkIY2jMq3C2G?W{OYRR05(3?dx>@~0rxe~b6=u-G(
z$Cu)3EuC1xWJx46Cyv*q8AyP99FfEl6|NCS{N3%*H(e6*2tq!-#(2sq)kuyvUAbPD
zF3FT5ng14Rc6<%Hk~V<P#X4IK)-l`d00+3QZjgcf)Q)K(-@aNg4QKDs`I&_a6=;EK
zKn=yI%FY70*sKH=!P?>Hx^u4x8ZEEyap!{uSP(S8CvqLM$31z?%NR?FqAy-Z`X`5n
zlQ(+*2{rRUC!-33{Cu-VPF(Uc8tSGcm7FyJ=vCuV>xa-SX0TDBdsDQhC;F4ZW5eO=
zkcKu8iNDjDpo>ZACgm)2`kA*C_0Rnlgy{IC+I52!x3KM65JL|}YXVg9Her0FN^l@N
zN~E7JqbO^c{I^E#y>R&*czh$7zOV$y`-pRJGj9*2QQpY>uU+U`FLEmH`KmoiR(E3j
zp3q+@n4QVv*{-Ur2B(c5I%$=>g^_%+>Gr)-USJc?vrT4ZXFSunV$o)L9Mu<PDYELZ
zV$m+n+VQZeloQn|1KE!KpsJaXHLfvABr;>fq5Ltg6o%UwJX-GkZaNOu`O9ii{M>Gp
z63YYEw2}Y+xS>ZT^0d+Ft^d37*jLX*cPlj#D;_X|rTqGBA`nZ&Aerq~;%@Tg%aNr~
zGrql0=FYCQ6C}!ySDX+s-{2)y_(ROX*a;iqO+kJUAJamEL-S7Oy@GAm6JM>k*9m2I
z)1!VxhT7eNAdup;?W<s~M*OTOu?r|abdgY&RmU4%dLfof{DY~_jCGT9jGyEk^ZekI
z+Wn^?3<FIzMx$b|PtL#XEY~}M5qWjrLtKHpyuwiOFvISbu#lt)1c8eK6-bvXURJ6u
zV==rHMdE`ThpY~@>0V?fZISZzwJOw~r2i<~4Cf00SQL%xg$X`DQ*yTDrLD%Iu6@RF
zg=l>4o-L0LB+WoK4wUionpFQdN4HW0un43Re~%wo<Fv`muYq0}9ZZodhWDIvbq&n%
z^Xy7pt4xa)da6X7%b<PBLryc+p#&U6XV&8=aGJ^KVlpipCqot1dwX)8Kmh?9m9Ai4
zeuL~k!S^eEQk1`=36uM3o!-R!vCbKBskrsVml{?w#?N^r|BgJ*q9xWoW1LCKQ5g4^
zHBw*Vt`&MUc@*fNG2GdoBOLA-u)`*exNETHy{g)I$Q~NWTm1>?fF=7r@P9s|9=y4E
zYz-h$#!A70tUT_PDG&ZDgl}sx-x>>04}aKIY+PV>@i!gc8BY51qmADgT;*?N;TdAu
zu8YBeQcsD1d!}H|jRkgIZ!22uo>G=J@{(>~ow%ihC2JPZNb*NTfa@T*scWfW$U0kV
z@5dtmbIB61`Fufa00@KjddGAmusiri2nFsDSSGsUK93r+FtEnty7pBIK*flr8QltN
z1A3=N!?ma;6LpUp6H2SS?2X*El}*_BvyXv)vMp32Uq3w^!3=-M?|ty;(#IBLwSC(Y
z_LJ`_%CJFw5OX5(PivGu!TPdBH>zPYRW=E?xJ|u{vO=u;HwMxmgELt3U*pPphG|Xl
z$_^a6{CdZ^x^Vz<@cL@1&w4ix1Kc^#;o|x=R9<6_O*S<bI9U@!Bt5|H<&x|2BTWqQ
z+?I6n7S54n@;HxZ9exb>8(CKR<e--$>U*r#D21b^#7SW0gdRR@ME}N-B|+2Hou5dh
zC&SRkl)L(@F}}N!!`rtpQqmr$I(ZT<jt+!0uyuAjwoB;Q+@GD<qmTjyMHCqKGDF0%
zn7k(WI<eI8k4LGQMXiY*aIiGAX2U85j&hsJL`*bCzSIaN*ze`X9n9aJM`R1AD?A#@
zqzzuozNS&k9rNNeG~}+TaR>X9lSba<S_2_wMf)6w0N_hY{YRI0J~frC&b7*R8f?Cl
zt3U+;-UeCWM6mKIKImPGJK?CYVcv<Uq2LJC0rYcdbL|{%>XtOWZ?de8v5$KRT;|*o
zpUhEg)B4R`&qYtNTxc9yRk8ln{Hki=JD1iqMpR6)!TKy?D&mcI&c}#gBTRxBMvL^E
zR#H?Ywz1g@$GL^lRVq)`2?H0TkLd$ul@=E(UpqwPl&14=6I@QkSYDF`2?rCus@v8#
zlrt=Fh`Bf1`Kg|m9tDBh4*NW9WN=9^NQEDv!l=G&?8`BG7{S@is_cc3{(1`>sA+uy
zy%#)x8Y1oD*VA;^3%hb9>q9H0#_E<`#yE5G0ibxG7H*6ggCHueK<du{yNKruq;Cj3
zKX>KtK)dHkR=L=0ZmxCR$6%$EE>-$}L#D$}Dc$N!GC?>9I|s;8opIWK66!Vh%&;o`
z^__zc(VSBLIJcvocC2Ir6LqQ1{V|8zh$2*>Gy}h*H*BUHklc1Rj>#4k&q{gy%Nu~-
zfwQ=<Dln>>*o}Q|T{%+7l`AR`R$4(%+W}S^SLWT&JMT_~*FmVs!NhCmgz;X@A*?Nw
zIV1Q)$<!8qqW(za{oWcL>7POV4W;E%CT5pmth0mUaI(||PEu1Z$`o}M(!1YNUvke1
z8Si`rowjkH#}16Q1U`|CB`&t57&YjHtI1zoZ10uhxMI)J5#+x%J|dwx6;j1D1idMM
z^lVs9JjV$0zY0@bw^)8Iw#=4%XT4CXSg6D5QB$O>oUgTs6gYL|R<*S_(kXmKoNytZ
zvC_4hzI(~nCNQazcy3=WW1eU69@klPwXd>5UP3P}OlmjcT^@$;cF;O2A%YrE^A!g|
zi-za`GhpC=yAlLCaDKHiUk})h6;j7cEP`FxdT)V;&&?k1RMo6f=-=ZaG!@keC82oJ
z<vP+-BCGQ@m_6=Cv*&C%v5Moe$-!MB*JJqE40J2Ca?NcXYc=Yh(x#lc{~`g-00E@(
zp~BO{ULBTygn}>9!-GnG98v7!V-3mF&dwpxspePj_Er8O#1R)mxDyDwr$D<>QHwjn
zAP@B+k(KS`Gmifk<w%SBlE6#&2UsoEGCX>QU`yr#Z!tNmM|C9SeAI)bA}^Mh(rmt|
zz~1V?wPvax#6*3v`KmwYc5r*sq+LILg<%xN5Ml!+nIkG$$(d)mX84py-wR#rD!Kau
zK)cFX6am5(Zdm!z)7&;us8FAtbu*bR9IO9DcUn)iV0^fZcFVu9cX>9&va;PDQv}S?
zwtC0Y(}bDP<u!_La;=tH1Rp;HUKyV5--PXs5mzK^V#^?dFA8H}iAq@GkRQ<O@#~#e
zy-M`Kn-CJWS_;KfU-%=wua29%_YWFOl9d6>T?Isg><^o36IrxTX)B<;D~v+V^%fJ4
z?IRzw&wIe)qQPY&{wCyhB)<%3V)eYbI3Im@Xsh}wrI>XxaN6mkZ=x$?%Ugx6v@82u
z$lO#9;aluXqVb?ZH?{)O+(EPxh8?EyuxWQeedsqjKH{N>;jwl`xjz?O(_KlT{p~i@
zuyrzfX@aN%SW5wKA8ea|?3ySWHO1^l2VN?a*VcX?liX9Y0L_jyu-phX9)jQ?A@RTf
zixEs>xzxy!j1{Hw&1Ly}X%=8<_9_P%s_TkF;quZ7=aK>cLyZp<r$4c8qYn|58(6t)
zJjto!6smdi$0r#_U9hPnh&RWkSo$)*-s<y#&nsoWz*A9V!tLh0-%X*b@2s%6-&(Ra
z`7yyQ`Nw3kWnJ~`#r_#7R~b#MYN2>laoDUg>$bW=9$|7xF<#AXZ>?;a3q7Bw&Pr>Y
zJ>HZ?V^}-yF(H;#s1#4b`xCcaK;&wkBTw=_<F<!Y9z3>hR>hEUNmtyWckYWKUBM|h
z8w9)m1Fy%R5pQ_qC(!@F=o50KG>Y78t2RQA8@>Z}Tr<*30@jEC1(gf6DeKXK?Bx7D
z7L(P=aBasb&#C<n(r~YNtcl?1jX5UAsNbIc@TLN!?!~5O$6)KzmW%PepcP#2Lr$NG
zV7qttzq9g4kQpdtpB1t^d#O|yWfd$~IkHsI`nSK{d&Y&?k#Po*3JKfYp1K2Q(<9L%
z`^KIIIHvZMlIpOvr7eHI5pvU6VEm-Tq^2iv{Tl(mhw1_>nFpx(bU9-|H|=4L=W0}h
z-_6$|dO%><GdtE3dF2CE%I|7MhMib05a0eg#p=nOSU~994$}+-<+qK5J4(t;;F)Lw
zcGC?P&Rj^^cp=f1i2zJxth?*~UzDCtK6eyAn>1qcP+yXe;4RhOk9?%39?|R3|0YzK
zsodQ~6ME-|<rrpHjyv}*CtXIt+!T_!#w6x%oyhVE;etX=JQ>X%{IAEnozmL(JFC>^
zL|T(vtx=V8)H6X?lfMEM@i%F6wkQ{iLblViahi~g{01a_EG=*s{H@cexS%S<IdW<8
z6yY|No73jQO!Vd!mT(+tn!C_(qM$@W%`Ws>f8tJu>_z4EXdu_fUK`ZCsgX{2%=W@$
zZSc0-gwe$aV2qFPPhn+8bd1lX40oX+tdqxvik^$mWi;x;>rVg6PDR#>4Wm+9(u@*E
zYmo(oOPrAt^Pp!Vo^gX+N1Hu+Y7sk#ToTk~zuGJhZ*zy<kzT$)V6IfM2=qxoX&}e?
z?UfaD%iV1B-zt};0>GRqQGS^lL<h(09zZ|O?G66N6MNb&G8wsBFFWcvpOZ*+{RriQ
z?pJZH_@JWpU<_q_M-q%vX{>hUXbHmG`F>q|F6yB}E3^dvZWTwB#LGh{nE~r&Np;b%
z@6lT+=!tHW{4#vs*15S|p<<OMbX$&7B`bx0f0W_WWjBTwfDz)E=N8V=#Lr#0XVas+
ze+Azc!+l#n#n^#`A{Ge=Iv;iTo_qhXb0X$4_a(lty+BeswfOC&@@I%x3#_!7U>}f0
zPR>J;3VBT7CsZpb3dU=Z=pUnrK~8I^5Z*ch`9>@W+VI7)-kU-a>05tbx&QqEX*v+G
zxX{&6mW^9`uvQ|lhLEZzQKh)oXGUqv*yG(->55J4=rDu@oUuQxKUG`PLDC`Q(n){q
z)TK7OaB04?{clagcO(s;$+1dT%S69iTa3H(nk7HVjiJA?tH=|PRDOp^w?S}vHQkDd
zm^$g}M<<u*RY6{ekROz{z6u8j^J6$!j>74)s6d8^3k)!}D7^0nYQga?RU_D+GjUnG
zmS;9L|BOPTa4t;8I?GN?=^n4f;owqP60C8>MVHL1iZs9RE?<8G=zWqK`4u-{6iF`*
z_>Zn4P+x9!%dvea_c`!_8Q{h>>#SSv(8I5v8h%6@Wv@L5F?jg`I#<u|<fUWYeQC?b
z#aZDexQ=4y!o*n-b%6)$X5c?k@pU<!FYgD6Bl8@jD?8~r@_wLvPqdGB=4kR)Z?hgO
zW2Fgdnrq;pE5YzbG4N+#qP&jP5xt9-c*WaxC+uwuBe|P{qO#8jj&8R*;DHT2Q{3dc
zatsY%0Ai~@iEc}>2O|<GQRQd1X~=RjqkUd=Ua;<>8`kjV`%@ng;?a($KKLT9H084!
z4L9Ri^UzAcWyBnJ-|VQXtz5n8gGg7i0!Hd9fO=)2D$UTteG`Er&H(<?u#|j#)5Hps
zeyq5dK5tYrEG;gATDskq4T(8<-xl88<gRdwS>^AI@gqK=p1H;Ha!c&<lO27eYNA=m
z9&=NuAG`tdp<ZAUv!1?7w*o-{jx++QYAIb+NNhX)k><lg|L+xLr5H*k@T3*SmpQlg
zc}lZ;L%}Q}--7MyirR;@Y4ar$dp|=>ai8&+?yew7+;nmda$_xzCp7*{hvZDmV{0w(
z>ZRlBkadjxn17&OsUjT1M?3Yz;QXpQzyi+_YfG%-iA<LgU6sxOg(w4IkcF;ZH;t!(
zDV=bAU-Z#-l;yD4^pAdVf8oI7R@(HSc5DkuA_0ME`w48M`i{c86Pql~6S)ary@!#Z
zeJ$cJI(uWcw-foM72Ou3et(}p!z@6fD$ssb8eryuY`5OX7N)2T{8<5d!GUF1gIT2b
zK%K!Yx&vV#V?aSiMJ$q)TPl~JX?jeJW~`{A4iEZ4;oR+{L`~BVr1DUsfh!fs0qJs6
zyxlzayKxk>HpQPF_~z!g%qscu_niudxKv-vUxsssnIsBYkQ?~LS-6!PSw}Y^(dofK
z-{TbVEQf8{2llfsd8%tIbc%E{L(=1z@dX3{LOoR~$~dWFI)yvPqfKv^G$8JFq>0sy
zst*%+sOIS2Lbtk&AXcIFfN(PL5J$_dLyaEknRXIi$&as>k^lRQcyxOyyF6~y{y@R;
zC4^l*GQ-uB!8lY(rNLu3%u|G0o;i1+jYyUzJ0O1Ak{IeQ!eVWCB}u~mz0bVJg}ltI
z9ZZ->4L+4ukxzfvuH}OfBG?C;{=Rm}hls_SBGUCDwL9bu_3&w(E)Lz(v<j(Q-d{f4
zf28D;cVBE?_Bp%6B-ccKD?rKL06RVMdRdI^4mVl?LFRxbd8#^Po#PH?*-j+$T=;Iu
zF(|qd;Fwz7=lRUsW0K=8Cj-OZk6wz*9g7U)?|S2nfl#M$*AmTmJ3t;ha*_rlj;#ax
zz{Fm9vj0VXF#CaNY!N7#I;;-4{b~t~GUP54sr0J2pzm<O{iN=;5O*97)pFLs_2I4h
z`&AW5zA7S^J-r~oM6TF;6xvR<3y+bFe04;mxiHWLZ_}tuPUaU)2QvCQYDQ}+wC2JW
zuDibfrWceA)&z-!$O4I03!PErfV|JNVgBfkV(H_MPS6Qfsxhh(J;-mkY%<TNOnx?%
z3h@is+I`sIf@e^noW^pm6L>F6Ypc0+?EaM|{|Xb(8ps}*%8oaHEb(iibA{s9nn&cJ
zs$@&LEf7*4=dy(>A<y*K6zmw?KJ7SBcgK5eA%=7wmr2S81Gzd@X(CWPgqo2?lUU3>
ztOKr8u=o~y`=RmRgPRn`lfickMux)n+A$duAu)cROz9VCmupl@hLXXJCw8Hj2c}+3
z{HPTXqW9a=Gi4Z-iP9``@vieNtdkGXPa+%?^)6^mM>TL;nQsv=<k?U-+_)$g=Xq7g
zMB5~u2>!P@)`Ch5q_|s_EL|A1`RP|uI~<8t^`1tKsF%tTJ4w+2PxUp+O)Vh4$rGVj
zLZX9V6N&OTSrTjE9XYuwU6+{(yx?Uxqbp#TqLI~vGz2-UxI)9iC_aty!f15w*1O{|
z51BMnX*7se)?uqpA-+E}-5UL@iMS^8ib8oOH<e)~3zGSi&+)PQWup+JeY~9*Yh9*1
z|1;N2N)OV}7q&rMDAe}g<G7=MP07gP>qNq+M*6+-E`b$Pc@Zc&L?z1<qTbWNuW#}h
zpLt=k=)c(@;rYHTNwkmd8=UMMp=Pt0r-WuVD@&~}5pSIqoD)N$_2VlEVWZY)&>y9{
z-fb+Gb@k{oyCk*Cj_&aGc?7$!)X+UPF54=O#M#ECBm<_-Yp^R9O0$pN!hEOPL^4Ej
z?z9I+mx~;BNe`$lZ4Z(b(vmdpS_V?5zKX1aihfsVd&j)kgVuq`yCT&t9=;}kq(imD
zXG43w+)Ce<ho=Y?e=ZNdE>ez#aMmRU5z6H`GeAb{Kx%bu<%H4b?ZMO*Pq<yQV8{SM
z+Wvhf<n2kevZg@_hh489;*?E%Nz|dSK1ySW@@(!<T$vn$g?X7}rJP+u2|L<q=>!Ht
zyE=96ZE?|QqXfu<#!g%qPTM^2ATXc&5-=%n4wQQQdXRT0jpkDWkDKM;0@mAy+T!ec
zZ5-u8?_y%t-cI5tJg=HyHWkFZIsbYE^pEV*!v@cqO*L2)*+X1q^)4)~%&ou*DaQ>4
zI-2VRFT4_Sf)m_*4-E$#kLZ&#zP~7E67Bztmf3|iM&z21gW-tSAY4Oj8hf7DGo^$^
zr~9AmXzA-0YQvHfW~m$~JMlO!cCbH-jd``D4w9>{E-4Wr4s9C0nvn|Oq^yWRN$pM>
zaN3C-U(P^SzGwSkeRcgYUXL8Q!MoukYwk4T#Hk?QMrc<fhJXrfX-<)HB0F0I5~-S8
z)d9^ifnDbJhcu|MAU+ZmB&F1XsS+q*u?tmZ)r`fXs-}ZOU3Jt*eeKzl0EOx_)^}!N
z#TjjtLMvBb9mzgIUc`MJNL=n?a=NzVtF`H16v7LFwumItc21EvBt=`fn2&LE*%JU0
zTbtVX*Bn^nWuvgRpx2%ZOxb(Ol!ycGAmxt%vbimyY6b$^J+Q*HVhLX-#f_G|IQ%fi
zx66$_u3RcjLu`Z;H>T-%RugwG?9^b|a289yvr`vETw+ZH`!uRSii$jVq!iW0nMNnE
z=MX5j6;xVQB6=gU0_BShUTD%Yi2PK1%HHD&J=RR)<z;qu)dQJ$b^oAp-UBo#-#(BH
z1|_MswCo=C6ps!{l)At_**B)CUGEztqGg{|9dKy+%7~l2jXx64eH(6BcOI%`FCKJ+
zr9*e`Oi2P$p8=&`SK)EpkYvM{)&6IU={68nYJ<t)J3-CM#18_iN$?&+vl@gnl481p
zQ3ot9f<Rq~<00h~gR%h+Sp&6o&s2=Q|EoM2UA=o{LLiR6lDYLHFG-sZ494AX^M55O
zkA$O>;6on7o4nX{7$Z0VW2=!0-q-7|zwW70a!=&PPE4E~>&qby?z4-EHtPdZtsg~n
z`448-;_u(Ynpy@Q4b}^Dx%a&eZwe;42ylSE0IcOM9N?0Hih#Z2gCI&<Q68i><u!q4
znT|ttc4&53<?iN43-yBS>X2q*0TddvfzGNsw?1{11+M$qkqf<9W58?%QnrRLW<l2t
z1(BhyMokz4IO`shSYNb^MoHXhRL&IYBC%X4Xhe1p{GGlSGUSQZNTtsTmK7vp4Bq+U
z8idU1X66cVxUsS7Q0SpCbLWg`h0$LE?7lq*T}<0rLnf1tBXvg_@YFn6{-Fz(?~7{8
zvBRB%4wVT}H$|9&u(>#r&>K<Yo;_><W1kEH*NagdPEO3xDkA@d!ycC4ngBUK#=o@u
zBegd<-(D&ggW=CMYLR_%;WSga!<C!s^K$B<h1V;@EqX<M{#Dx=F4D&3DT4BK8XW@|
z4nZ?JWvA!{f`BlQSmNrTP3Om^gdF7unZdx=8YH3F>V(qtRlls)XBr@SV71Ct%fb2&
zYB6-<!lscBD!tjW7T%j?DE+a3&FVDm5v3GQsp<B~h}3ke!d-SPXKj(Ra0(+rvYlT0
zZtZ9_Vwh<FbNdFURFXmL3w=dy{k?t*BDHMhjMxasLnRPgH?sM>VaHr}Xv|CPY@9<s
zXh2(oK4i0)b~!!~_vf9yT|S~ow4hWi%}ci#LKlJ_;xamvr@3xNbwlFMU_zA?T3GM3
z7xJAeRJ7&oly<I#V~1Yse1%xUj_>Tuin!)=VqZZ7fUmZeDQ%EDYLWr11SRD%OAYnI
z^W$i~lK$yi+eVp)CJg-}cr3tUMP1~z^#lF%Pk3|cPEZ|Ple_m`Rvmf*_}>cLXWzOP
z{|{H+w~X&#F?o%fZacQte>1YG+_4(FXztTo3d`TSoTcaJMfX%Xsr?1!<Xg2y`UwTr
z+93;_s~=zGSKxDj;@N0QK81!ej&&>S2p{t9Mx=mu8`gnsj{fU=Bd6Owy=2u>Drup2
zNF<P=$ZaBP;S-5;!h-n}315QD|E5lztza;h#Mal!fADvA$Ex4YcnN(M={Fp?bdbRB
z09>H?Dnm~;g~|W`e6Z7bL7tlO?{6f$e9uEkb>X|!yHU-kmg8<zXwMq7fxa%9l`TjM
z7L`6Awj4A3Od3(CS<XR1<vx>HXssp!kvv6@4M*DaqZyEJXh74GogHQic+bI0^cQ><
z6b44iOANsCi09_KMr2M^#kAQs+z6ndkq+NSsAy!A?NrofeB+0Pu%G<N6`YplaLfUi
zH*`$S_VwtV-zqBz0aP>R`bMr2)!e4g83I04_NW#Ea_@lglDKW1Xn`h6&4K<>I^FEo
z8|sw9N_g6^^KE0fjFt-NXHL1BZP5mhVi4jt_DW*U;{a#Hy$kDL$msT2WMqBhe-`Vt
zhSvnGf}gqD{bn!}9(1B!U!vNV8ElC%#&DZ1iPj2EuU>VIJS8?O8(Bkmv0>9pjB|q~
zN)X-I`quyI+8JjPSbCLV*NIn2ehVhcKVz8g7NQR8`5!SyklB#^!BdG3RExObCub=M
ze_6|psYQE#WqO4*XAqRri`DMLoqx(^h6iyo4r6RS7zFJsIO|!CAt|S!Tt-UJzp|*e
z`EkUdO~5Ek-y(rAjJ%dr#?S+C+-a9|PGz#cy{F1ZI}(kAO2y|8iZu_yniZbv8PJGy
z>Xs+BZfKG;2rn()v~nyvZzZ%(+z<)lps_Cg%wFA)#DJ<qfXqV3Sr&45dLJrfk=+AA
z%8>Vi+Vw~?af<t}T7XLLj`Vtzd$4WD7;vGRhq5-9Of*FR^@x&m8;hkDW5xOf#Y11a
z9sB-xExgtj!o;kzRKs!|3JHXTkH6gQ;yVfLD@J=~5;a9le$J5?l6Nh-N$J8|B8syW
z#&&e5j7W7t!is!XOrs$u>xbZeWkp+qw*Y;vXhK;<3mQ>^VNXq7<@Iz0?72ELd8<Kt
z3r4Lm<;4gbIpR!iV>q+)i$aA<56fKw`G-1MK8|J?W=kMuZJAbJ`E#u}l|7*r&6OJf
zW9vcesmP6j&0qsBYR=uabH<G>^4TyJ4|DerXJEB{7+Cs5k~s6SSkxW(u}LXA_aa>M
z(WDt^^mLyXvD94OLG`eZOQtrsEI5v6p7FNFRAK)BQB|LHwu9gmB0<-5xS`gCqdOZ@
zsgqFcYJrSGl=oKA-!5{)DrpOPrl|Q9UU>B=n9v@kH1;_^l;`1CCP7MoI#}j}#l&xE
z{PQPYN=jeE)?|K4_Y>JT_f(qTGnD8D0`BR4uQQg}<uUt*<o5*cK-v&-5bVLA-;+Vv
zymq_19+wz`6V`v2x_9-Mbm&e3Al>%kEe%P{*@?^oV^EE>b!?fg=&=NvRk%d}8z?L_
zY%Rr{>2|dyt=nc!O$KCm%^k65XvIkdN$89@Pik__i^o060Bdv^y+@1EW6i#PdAyR2
zs`Fx#kY<GreE&7pmCL{^zLRUzV}o?QzFg?56v-|3Bn+ITXY=24Rrp1q^UsQ<>;0s%
ztDu0T$uHm^F07rdKKFm@4U~4h2{Uwlv?A&e=Q_sPl(XRvcyg^zO12h9;;ImTPG07r
z#B__&6-P!1Al3RmxMY!A9#}yC#9I*m^}{#(p+vCBb~}*ir5m@|P4~f%Pu;!W1UoBN
zBOqfDi?xoN_Tw~_Ox&HD^FV7_NqTlmJEm0o1Tro97ii{>#xlWuu?$CkCou=H4Bp_p
z5HiAXi4hVk>_N~<6`ro+X^##gw!{~O*R>J+HCUX<oS3)cj{Bo7G=8?w5IEqkiNsjt
z&uj9x=lNvZ$GPux)dWE@`wg%la@Uwzj@{$z|GqL}u05gMHPl(dB+0=fv~I&8JkujI
z)Lnjv#tHLk*)W)=iOLVL*d93u0LYM85H(2XjmY4;0(Qm1oWgtz52G940WmqKwtLuX
z_TP5&5Qp>Z&2GDxe~F?ymZJHlht%R8a*Vt6qtIAW1(IbeM?*bRx@NrA@``vs{fCK=
z!7JgS(m0fxQ7sT7%w@N$3w43$hNU8t!`0#4k5P)k4x8p&J#R|Ym@1iKcuN1SmjJc)
zvuEwRxU+hs4sNIRnQKFrY<5NNubF0Rn{He9?tdcD^J=38rQd7#_8*apGq?Av!E;aa
zjxFbsO|Fl|U%|v}ih5-mUY4hsf_Z4}&{Jiz_0w>D4Ain84?+V+iyZgF(J!>`elD<~
z?D8(p7)|KoMWnPbte8e^>8zC|1K-wOKDL*s3xX6Z5Tl8#>l0b~@IY~b)`)tGc)8_A
z{~fNe6pKOeW#q*OXYvEMbkvFqKZ3tS7msRH!UTQ4+e1*vz>&B&5->I*g?1o4G06NU
z>YTX!E1LyuV#~qdN5r}t+)Gq;_8WaLiJK>S>TkZfi4O8giQ$w|Cw6}KHS!~-2tc2a
zZ#3QnK1h=J*DhaLa=etCDflha1g_&~w9Kod|9W8zN&NA|oe5Ld?BJUQts(0M)NJ$g
zl$Oaq{Z^rUBY)@;rV@Ijz(8i&)%fx&$~IPze@?BD*C0|fd!YPt!o*;+xAdc6{x%P?
z|9jiS!U6&BrPBJw65kJXj0~yF6R8<DjnR1U{uJ0QnGyTUv5r|lS`EI<sGo%ECiHZ5
z{%$vmWiV(yjRb}s588LIBC?fLo{fbI0`{BK(0rCf4{_oryeV(*&vWP=EXonMk+fCp
zXR%xqmtTGco030LUAPjmxO|p(Z}onif2Wv=YauQGMh-~gRP~Jj1WT}o_mhh!EBtU=
zxbacr|9|AFl%`+gR7C3Lr2CLj#&c7PAQdq4xJ><21ymP@`{gxcalOhRVb@TN0UG}M
z7=1e)DG06MH=0b2HEt7K%l=$urTxqb!7I{8i2KBdzilpm;tb{5ly`wMA9aP#KX~ms
z|D1x=+5j|GuPTLxEra^S?Wg24N&vS`*YUGET44T{4<2~OA3tDTz--JGu6zfi$#MAO
zN`R^IOL1WToVfL>w9L=c%KmdabjGz_MugmSskj$8X{pSD5hl0Z3?BuAFgg^4i$eLR
zVaq6{J52T_DfN(iJi;QJA{p)w4H#MiceiD<)&qNM(mVP16d615yrrql;3t1Bsx3!S
zR&(Emda%oDlC9yEwlYR`=X4pz=ZSPNi9oLSEm%WD<J}qNH)j;fM}zD9UH!b%sAxkA
z>93uv4YwEikl--h*fM#e?J{sM+*6_K8~sv{VUA1ZxqkA6Gcf6ibZ~#J6Q`Sy*$V+0
zY^ki8R)f(nh9BHkApthc0yQHSj%3q07_Ml3C!1r*y6NrCilIC|Q>?h=@&5pd!uZ>I
zlNu@6s+LH4t?6;*c4SokIZeJ%rC39&80StPJ%UG|_Q{^EJSX<{{dU|Lrf}idOd|Or
zmQFZ`NKgY`DZI{Fy+YB}t}AbRi?ru+(splKSCqx;Wtb3py{_6nacDNGmd*Z@y^!1E
zJ6Mw@LyseDpV2k*h~lM!9-GCGl-tLj-xIF`p`lxAQYzV<O{aZK_%T%P0r0#{03mn0
z>Tcdyi2Jmq7YMPZo+jx5N0)VaAjX=P5cImu&-^)`dam4AR1dILYl}jLc5Ca3Y_xJR
zJ$RoeWu~Q2swU8hT#6mRNS|epf&3p@0m359wjI*|29d2L$eNdxB&~!sH}-2V3`1QT
zuE>EFp;}nQrZwr+5*5_6!{<iU?sQeNG8P^?Hgp$1w3xI_;E5pX9C5Lb)x=z4ZOQ3%
z8p77n+!D`xk-QDRw(T0|d9z`6eG~+ca;C>aQI!*kQ421G{hmaPw1O6fN%#b;L$kq$
ze>dy4%<Zhtb*xr1@uNj8N8rG{$kcybOb_V0d8lJISb5a?n4_x-k>oo54J{^e2u|%R
zxj2w;blRaD?^((L3s7@DnO8QMK*NRs*~|yPX*Ni93HA(F@&O3*Lqw(+&FkXHpje+j
z%3qFVPgTf=m`O;3k|TYg7R<2>@~lLa%Jn2%;+8@3(abJ|h&5%;sW^OcfcER=w&==|
z$|eD4M;pUu=xc;?4-v$qN&}ji*4%bZ9XAEPWj%xBPAI<4MjkHKbC?Gn#_0OLC>NPy
zMG2b8Y^eoVm9!Nl!jET;WujUs)+mtndeyCXcgd|?4o~u+o_K{=6;EpBFBZCGAJY7K
z=*<HTuKB4c0aq7UE-d@EN@3O8L#%;%4SH2uskD~dxa>`4D!HbD-Cze<Gk_?uUH94~
zF06@XIR8$JA4}i4L5uSJ3^{~<ZU&;@h(H5mJUT!7WlaUi%7%@QMB80;(~&p}ffXa<
zyJp_G|4i;_t9vD-oG?yrRH(>(!KA4Hvkz|O5R9f|J>rtAbtfC7bjWUd>GR9Bw^u}k
zOA8}>m@{|)@~zW7_JR>uH_H+w5W*er#k8GZjV?8A)A_EocF{C0LJjgDqX*U<WQk~<
zsK0Lou1eP$BJ<qhEH<?tYhz(_zKXmR%Hp?BE&1XT+rE)UZ{dtv0Me!J-|qM*k<qHe
z97rj2<SPweXgy$yTF%GE{|{CQVj#=&Fp|;|`4sPyjV3ap+eBz#Kqub-41rwUi)Vh2
zVgY9HO@iOpQSgb*$b6>Fx}6Y`dCuCQ!7rw>8v#`HA~(^D$rSsB$$ANW4OUEHO+qAz
zTpJ4(uq7@)Xnf^;XgajBw>zKG<h4$*8k{vVY^1&NG3@4h*gxOh&NC{XADPp{z=TAU
z8!1=26X=!~hyWitDICM9On+>l9#^2M+)kqJH<0LHv;6dn8qtI+?RUj8hFy;7|MX)|
zr7U<yn`D-K(MWo_-3X(5Ge7&%nqc`4oDX?>0q|Y-q-6ErLU+no)a&#iJ#Cnxi3dn~
zGm(NbkEpg&Do^S_C{;O!ENB%q0kRR~DCsJ3UN$8s6W*VM=l!qUAJRe5?KWnJOXGVz
zI9q2nER(ZvlxBZ+lzilx@%b4&+=E0R=%BJ%rE_pte$CUpnB4i}p&R<xDf7(z#7sJt
z=mx*$w%e8NHKtx&?0J6CZ$$^dZ9r?!!x5VCeiNo2M)9+hly}PxctHQL$TIs7WsQmc
z+}Q|tE2i8m-XEQfyUFnTK_5W>f;W=FV(+eL!EZ;>8d<1MXksCTM8X9`#rSZRU_~E2
zoRqPZ=C>lZ7_P$T=jBU)?c=^}r_2#KF=-W?aKBdGJ0(tvXx9tK`tT~F@UA4e?9i9+
zZ+Bvap4y{~GcF7+946#m_<=G75@M!0w1w-zvzm?R1FZb;*teE)sM9UT)CBDT39n7n
z$Esz@J{P`e0FCY_JqH~l&5c&l-2PVJZbQPkly>NU4@ig#)P~8%Qm?1MN8`wlu-9fG
z_kB0H+s?;XiDnz^)4nJijD<E5c8YQuqHl0~ORN2@a#&1g%iBc(bfp4r2MH5{xEY^c
zuu{vdA+h$vlkHa}&m-(>gBP#sPG=j8et6epy2>+fwc9zfj?cGVvF+#EC9!Q}>V19t
ze|dO3alDo@D_GiEP>jKILx+TmrffG$U0-*24r~R`d5llhRIjI)s8WtBJTIS-t1xwY
zGR&yd(I_+y!nXDrc6%;&Lx?mBkVK*YE1qIT?c9M31(rO4Wiwq5-yxj$2k*q0;B;_F
z!!+6zBuAnj(_;TIGq(88x&*UsldrO5(P!tmx4*xMGI4wc2FI!5h?@EjQV;CVjlqM%
zI0Ewgd5C<OCl>s<sXETJ^mp=}s{x?OoKZy=#It81DB*c=#Ki_+F0=}|-<qme?Sq-7
z*^xGi9Fwz0P0E@xoz)x`c^8L3igs<jQgvTGZH)Z${#@Qz&j`K1CMt$IXxL@Y%JF?_
zqtIK=d7j0VBfmlRnjC&zvA7t>H_mTOJ|okD*BBgwtv7MXcoCLyX<wmCpw77-9r#CF
zpev}gQw)&a``ogzR2^RN^L`s{K<dOy!}(k0@Vel^Q%*C>9f8-lypzsBLA}l@l`#NJ
zO)_NzfSm{`P;|#JO|<A^QjyUE9!y?#K@O#3@0`f>btz5cckpoq7CF$b>QHAV5nry~
zO9ssNxf`*3bNn68S>6&%-dh-svXmei&^9m}cCjtx;azp94SIXM@)Uh%ttRvme7H<Y
z2PKj@HfX<_Yk#${jfq(X?PrTX<>`y)LJCgv4*<1W%@+nW)8hRW33BWEH;ZAfQy-L`
zJRJV_>d=y0c?rS=wQ(92ZOdgFmhH=Or%J~Ilx|_#F)!XM+_iaSC?6)bbi68Wlq;%<
z0;4XNZYH|si0l1F(nASX>B<%a!BUeCP2*dAT6m;Ih5!a$Ef(wqWR>wTvv8$Jziml`
zT>XHEAAux5?H*{q&Az8>z8md|67AV#bo~ea3H09WK4Ie@2)_~KFZ|@MjY~lYh@Mnt
zk;)V5qjD!8Pmh#A!EwlS+ccl|YH6{k1A{zv=U^K=p5w>x>Dn7d)Ffh2=PN!dPHu99
z2@rsGs@&Da&*y$)1plP{y2Htm^wml?#5kbdZq-*`v@6C2vMH{TiVZ^8m#&cjNKg0;
z-UFY)auLUC!hE>4vSur1`nLQN8rivr>lR#Ahcvh%s0qxdc4B$lAv25d!N!!KWK(oO
zBM@<(CByoiC=)RHhe%J$0etv8$H`CoVRV?XcB&Crsv>4vyBzooDrAl(>%2{J?}$8A
zuR$nKeb5G>@0BLwn-J;|&~&>fH}bxt**-#kQc4X(^}E*U#Zwk}vf+gJfy&h*)#K8^
z>%&n=@nO$s(Ze3y@pr8twYKBAnCzCb!jw~&dvZiT^bE~Fr<7pgIvE=msyaQ^=V>Za
zZ;^77D=$X9%Jn`b6@J`9N;M%3?Iu?^9VKA;r>*-HD1))In6vi$(-)egaW0Q?LFCjd
zkv72@#-Q3%z%JA@$rZ6yF_`hnr8z2+63&RChB+l0)(st^HM6E{#8q_mMHg%#q(=MY
zQM%}Qg{Y0!6dew_eZ8TOwv>kQ&;gLInkT^xas}#J2^m^XPFTk88sgo>*?C;iQwenF
z>E9)T;k+GRyJ#|La@>Sqa%AoVB|HV;U9i&AH~JNr-RE>H?mVes6aT7I!4R9WlD>u-
zw{uAj_^Pn5>AEY^aQHOmW1)XyM59;z8M4T;!pnJRetfV!JE(a4918CBe5r>I9kQ!a
z*QCY(wknc!>Y{Bppn-hrl<#{(4V_wZ0od{J7<kQYv)@lFtq!MqCJi@lYZO8JWZG~B
zi9y8A@xwqbiEKh6|3c@4b1sBD`<9TK*m+um{{WsQ78bptQL;buM&fq$o~s4$gKa{h
z?VEqt;9Y<}`x398_%f-NQ(ljsyb;v=VoH_*mZ&4Tr)vHpc*7^o+w-Q;b@_V}tYR+R
zt+>1yBJ>L;$2(s69ftscv_!|!wUK3*lXz3Ly=S}LvmM@_GT%dsGlrcHZlqgiK0G;e
z7;RWJZs+HOv~a`X1<s#MbE@%#C&|iDLJt}ntOsjMwrwg2q##DK3P}`u8LjD0L`<zu
zAsAZpbW{Zva)GMAP4kdZu{2Hg6Rl94ALxF@a7Ud&P)2p&)EoSakN7W~r&Oci$Wm6t
z3)sWRK)MK^`%Z07#NI*IU`S&F?A|#foTr?7n(U4kX8*2WDRe@fvG`@+j9uv9$=d)G
z^t#9VFhP*C%T%p!aDRj#V_e<Xd5qu=xEy@Zl9<0_HT+SCnYDXBnr?LWJ`DaI8)#<t
zlqcg+)B`V5a%d`M375~`rz|kSOJ~Z|ubvTZ^;apTE-)JVKQ}Ue_5C+?s1Qkb3?V)D
z1v{jGv5~n|M}M(7lYA*)l$wlhfsO@nP!IZiCYL)M>@`WH&0((^%8l4rRpz<MSFU$*
zEk}jh%S?F~XfWj>pjh(WQ(>N~kD|MXbmio=qaR`nWqJFJrJs%kJ?okf=<PL?@X)-E
zVKu2vki*%=K5b#2p@U9*>i#=|aeZxnX-=xch1H%<bnwCk!^KWTE$?=!2NF5QyN&s|
z5iutpWDg)m$G%1M(N{gHYZbonKD!+<eOU;zM4t)bdoV6LGtyQ0i_){2AwUsk+zyyr
zC<<^qliY4w`vt(L6Ecvn{2GSDp%sRDn7SNB{OdWl@)^j(t~p-z^2?8zdbo=34Y*(m
zA;B`lHU!4As~S3VgqQupK@=rcF8nltmDLxl@4aZwRO=yxfHv=4$QC$BLCdA>Uqt?l
zpl_6pSkoDxbqn6>>C?S4h_JG8@0~l$66fZmtWT@Jr*#L(v2BmMB`b*qL6!S>*=#7?
zyc4RXaQ@Eg*cGh>fH$kV^MG_=&nDIm5&+V#l?k7btM3+FXY~r6Q9=&2-F{c|YG=8q
zJSx;WpCU}?7QyJu+}yHrfl2AA^^U>a<J_$AID-ORu}on%=<ufdxxzZ2<|COK&haGN
za{dEyVs>>RhnlX9CrfautM0}8*>lSRc9_iMqb~zeY>w{wV0W|P{FRh)FW$%9BQl!L
zcxl&d#0;-%WzVb;?M-rU!#>D~_@yq2d1w0=x=|0@3k^aNhFN~tE>!L=jeFJ%(}kiF
zg3(4MmQ+&4$DqZqx%S}s0U-+pazStQ>TK?BJL5THYoF|-W8AZUi$CiIz|!w{r1*0o
z>DMY$qNdZ^Dh0w3eGL+@GYq#yoj<Rp88-5`zPeauUd#?#c^Qu{pBHBV1lzLNwN=c6
z(e0~Kh+o5}Imog$exY)}Xp<qrQ8HvRyz-MA$b74xc7m__uT#OZ!%2q)FZSuTTDcSS
z5Q~F@NY50X<9SzJN^>bXTQ;xvfPrrQvKfuFFMf4nRWm-Ze<2=E8;uF*rO28_YgLw<
zCJDZ3u5>g?5zj?q2JS##s!GIVvaFY-Q<Y)y?ARF8Onsj7=^-qqsFKg*TMMoR47`u+
zpKqZ}!$7QmY|fx`AF@Lovm)5F%?MAetVD48>gzE-4j2fH&9o@g<^L*~X7w&!Q`VbU
z$s{)~>vD01kU+P^ybnXgq|>`x(&oLP;%H}17O^fuvT+RTskx*r5Tds)pI65PN8c-j
zioSM>l9R`v18M|ch(D#c#nNZ5{>7B->+>&B7PWDJpGVjjYSNvD6)@NXHqBTwz^8^`
z3sYfrFcQm6J@l#^2G%hr?@GwshiZoyFph0n9mf8{Yde`7)IVQhhZ4C5iT3m65Z&n0
z1hu)72RFClw+p*OwT-y=pQ!x)+SED>W6s?&#JKF#b2w<cH29A6rVnPBvoiU`gHx2b
zmVt^U_M|pz&}U*_56Q6}>|p0l2{OXh%^9cG0wOWF{6J?M7CWzU7XWcq9bd8Wx4+xh
z92tothgWCoID!g}(d<(pKyu&899*(u%+YJg9K{ek2+12k9iS+wvl!6ODw~*@h^AC6
zo~fX)d$B2~5&g^1=#%l7;|k%+;c7&8Vi^_b>X!EsCWpXh=U~QaH~u0z#CoW=GWe|=
zl;vjF6N*~#hl+{qI!I7;`)0q-iV^Jhg+`KL+G_{Q?$}HiD6_W?;-der3=_pO{BfD~
z?MP_dRx$*nKqmk1_%F~B+{3i1soPD?V#}D+W9<IzA>E0N+3Cm&C)M$Eti&JIiJYiG
zl9@R^=|$wrKj`dr7Lju#+V&!76anPJWp7e5_m#xw0x3k8e%U%W*<KhFUV+p{{V+?A
zRHN`tEdrJdnVUA#DpAmz7X+KQh?TdJCF*=ssz+d-2}nAq9sXu)A(s}gJIFDL)LCK9
zjZZ5QFfIMJ#&4Nmc*rR9&zQzH7A^50aG7Ez4g;Z6R8ZM|j5J(M`x$wcA$TEB%<%%f
zIQmkEb!immLV|Nxs#W6&c5<@|NFN_2R)&{G`P6~7*-}e2<OsQawH<+jJ$NVn-0F3C
zNrGWFR@l`&`;BBL)j^vhG0=qUwmJ^pzKz3K@AZ*A&W=Pa7yw}kdN4lS;nK1dv$902
z)(rKOin`xxXgWcEStqwyFn|)JBl(BSvaj>Y-sb#fcl?4Z9ngy4kPq+S_vhyc8dido
zvob_<lDwmmZY=BS7TW>bOf_ukmyo6fRoWUqIu7d&E+uhLQg{PIOWhd<h5ysFNf^D8
zK?`&~A);UV5zyPtrp5uelT}5qouL2NVJB~>fxo?tg7DAgC}dCk>xG2)xQmO%Z-dm(
z%Q?c{I=)?H(SIOVyoPZBT+(g6;q&lF^s<%VW=z0Wmv0WUfQFGlNNW<LFG>bWZn8KI
z$?DcBsa0dzSVyliI5)*qu-;G0!*hc3z}DNm;=7b~l%qDfueB4<fA086Hy|>5-qQJb
zlJeGW@li=$)wkWpE6^NgU|$h@bfx8?ypd{^2U7?Y6a0HqH3L6j|9DF*f8!Ek?gx|U
z3<^SaT7TnlwKhMUyizCq-whh?NF~r~!qsc|Y1VOBPSSU2q5Gu!VCX^2Iw^UQ4i9Vv
z<N#oMaPD&6`_7Hv%2nbk)Et-1`PYg-&eSKzq_@kzQv5PT^UrX<?c4wQ-KB{HeAm#~
z$$5ql9ASd5Q3>^?bjl%<zsT7Tj>P&8ntj{XTA~DI(*HwcF$LE7j_9rZ`KX9hw~PU@
zubzEA4NY1X=h5P|ZTV1sd^M#LqP+S%-vNx#fW+{I=74uZKNZ=#5&7~oK$zXTUg<$y
zdb2}ZCrOVn4YzXxmHp%Gb%5RToR7!V+ElW)n<X-m@sg@2E%q(O5Zt#B1*{GSkc3OD
zY|pBz+Q4F@N0QChgP44E$8novq+2wklM2r!QZ~AkUjlX9tt-lbs3DdCkfT#xW*QRY
zlrF(m$VMT>%qOXpi#bxlk(Q{4nDyV!c4sv7kR}Brs3aNPTl{$(KT)D{0Qf3rVh%NL
zsUfY3012)$*HQ))+n0S^g~~eJ6o<MQ+E-mC10??w%Nxw68IS4-tDo5GVm?x-Q6Rs}
zQKn|s+dZ^b3mzHEItR;K87<Y4pcPN))~+=vN^F>0c*bLlm+92AKzdhqA@=P|(#p(O
z!f>;<7lBfXbeh6kU(WV-VklvFTed(j^^t+|&~<7tNJw85RH5@~vUa!T%Q1czDexbB
zt2pnG<HBT?0wV3F$I995ZwFJ{I2Q;va!5HDm5;fAxnPD`!E&&SbXs?l435lc*K<d*
zYT)=iq`Is2WnZTvK}ftNmcBMbL4#<5^GQI#58C})`hrSx6D-&GSEh~F^`%4DC67L_
z<NVGbbta;?)Dy%?D#@8Bk{SqP9>h2L0nHZLx9wk#uLZMGG2{C=O+(2&6*@biU730}
zBNyQbkj)A74l&w1PsncsDjZzIJ?i(TRhqq&oo|6OmC?lO8cew(`gG7S#Y$fhXLVms
zhYa_^FGp&P8(@~>rA%L^!gZLfHU0IhkudL+_HlyccE`h30AxRzDPzL1qIrVQhs}ru
z1aiY61i<DY+CCryOM|hPW6R}7-7dc|L^tywtpx^4sHhCfilp{^2!>@Q8CCaMIFi6Q
zqgA3)t3&;!{%H%Pa!SA=6s9_dp|1F(CF|~&daB%FMl91!TD6^^NJ4qIN;Z5h5I=DY
z(C@S=lD1zz4{9#xx$*V$&mF>jysBQay~x1K--?urfIf1YLuYP{Q6-St1$Af!@(8-?
zZr?#t9ZU%?zct1My7GuJ>o`vz(~cn`_&J~AMb|fk%n6a>fliix8~^NrQf%*LNDrpK
zQi!R#b3Y7Q8$$hvOx`PX*=%eI{U6u7Qk!LursWyxk5|0KgAZJWzY>5&1Kb+HxR_s4
z>AGi3%Igm}euvVr$_<Y}ZWHs;lhw{^-Ge5*;ife5qX8U2T1-{uI#yM&k8P=ic5lDI
zELik|9oS;f;o?lE<*a!5fkQGkKFPvOcx4=S$_p8+gF$Wd$5;%kK5Y+IpBk{E2)wu+
z<j@TSgv#$ayk;LyfD`xS;ZQ^=KkM}jUvO1}Drr+>;_)l%x#*>V)GQY9700c+b5*3H
ze&U&P+<~T^#7@hZ3L{?;pM?cz!>kb7-YyXpst+*Az{>hbb-T%{&o>eINs)*T!N%6J
zBI|%(80&*C4nSxN=idTzD^Z)M258dVqEB>sPs=q^0$(#l=SqhLiD3{YmqGE++6QLE
z(B}Fo&dcDZ+qFSqVh0*+@h--s=F;6kfy)GaGQD7R!gHI;;Vw5Uv2}R26~B~0Zv9IM
zRC)|nvSu>-N;mlk`=Wz<^iC8{;7*)eA7kd7vuTl>1?I;9K|v{oQF`-N9Ack#u~4in
z`qOkrKa--jOi(!Bi_d{vv1$e;$^`A7{gK+cFVCXR67KPW6*}~W?+I9^DpsNX5CK*O
zH+I=Pu=^BVcCq@Pf^?D5H6XD-*SvB;e^}A#q|t+Uak|65V}+J$;5U|<s}~Y9i*n5y
zWkI&6oVzsR^7J-*dB$+~YH<*R04NryQ#WSQMR$k)XOmFFw0ZQRtgR0^;x3RgNs!0J
zq?TXVEb6;M@Hr&HMP`npcGHn+J=%scBv!L?XN@dLZqeh3AGX%fblnyy?X_se*%v!n
zE2krzG<`*?tb{78_i|CwUA#!?I;t007`Sn#hpv=B)Zt0qT*m*04ewpd__~euc)wYK
z*U*TqSG79q*2cn<>SFXxIqQBqlo6Ub8_E`L(^#!iUCDILe8DSt1qCzl*q|gAl%A$B
zWym8zPHCl;id*9{@>V$Y>CTd&xkF$O1(^QhbCFEquYdM0B`0uo-AxWWCSwxt#}3`w
z^DcPG!AN*WNvx8UV4Mbne9!NbR`xy!J?CYgH{iLgY<3nM;ZYL`Nod8!D|N-s6EVGL
z<=k2<lNV3J{Jnm3wbSnI<>;2qHocta5rJ?*BnY>Bl)k<CXWD0h@;FV@6xX~eqWerF
zHon_HDXNk#<j)VJlh-n4K!HbHy{@Bi(G(1GvZn_5-S8<##hcF!Y*VGED7#>3F=3pR
z8!Jg7+pQl@3jrL)3s~`+1%fHjtOF+u7?f9*Pl*YhYZTJQ$HfO5Y+a_{Z`SMeGjU%r
zucE8BiU9{3igQVvg4d+jzs#i;3S^jXYD`%2Te_^Wh{UV~!7%4OJmz##G`c}(Rd>#l
zm`*&48&2ntqp_ckQ$Jg`U5$E@3assM%lMyTCFa2}A%R3Wbt%t@(;lxt%FOoWa_7jP
zJAU(2t@6#P;1Xvd5p#GxCHqCcuS8gbn5MH;-xaBq&)EHCsj+XNEljY*l-x&PYU|q8
z^YGL+eH6jf*KdU>1unk8l84FllZNm@S8?tV><0eDbm;tAfEr)7lsHAr)mVolTNUxQ
zSbD$>g<3O)?t`WQiyG1eSmiP3G;L_tl%dmJB!}QJO$MuntB{u<0;eQ~b<6<kmehG9
zlsQK}yv5lb+vsz&=xAk~wTw+BzicD*`Ty+Vz78!zPg<W#hV7D<>XQQWFzu~##4I>J
zF5AV6H<W&j)ANf#%iS145S?wwc1EoU?Z_sBBZxq|8Mcy)j?1|}nwnjKu|wU&hgZhG
zw!s5}dzs}Q=4Ln;?qJhD{pn(Kz^ND0c<C={y`wN0gR3dPfVZ4um}UOE3bf-rARv(t
zuA!!qUW8=9MR2UXUepbIg+UIAz`Pi;0JMma&<%}^`;p*tr-0u^y3lgU-+jY$U-~Dg
zs-U4859qVbbc3bQGJWE1_L;ETz5go9dpPU4$u;$BA>m)MN>kS?H=XwA(Z2{sA{Xt6
z$tLESBFG%}ox9L92RS=sCf9wJufRxaimCyl`Ml5tb!edHH-ykbqm>#}jq?N(QWMXE
z#LG%nTN^lI-cO|;R|Jr*QfOpjSCFmVxz5IUlFMqDj~SgSen=1kErFj%S&qd;>iF0s
z0z|VBuWmGy^`z+9Ab$8@`$anVzx5Le=RLa^KLtOmS>2g)GAIc^V>MkR?3o0vUK}r4
zW6CX}>ZYLU)aj(Su@w;`u6lSsuec?IPRig2^6W8^^M&k6;P=Xt)p9l^Og!P;I^`%+
zI--I<kal#-1XauL1QEVUZ%s+=1f88_AL7iL6=VpsoV4pnof{>nwTK>>?IG+^8QBP+
zy3cqAr_z)<9$50@8jkJ(<Bi?^Lo6u+np?fGq1Ef6c05wo8BlMW=eG-#(>i-BRdNb&
zjb1M4l$E=aF!Z-J3l@}wT`=7ucXxHtH{5{R+!aJqsJwcNRJ-l0wcfjU9+#m7$EWtD
z;U#TAduF)Ci^w1&Nm~(o+^BzbZ35@w)*}3L%j}?_7}2bcX{j(7{=<2yi11kTO@w3R
zevvi`ba{kI?av>YZfMLhsWBv8`lscBSr}VTax`;im1<dX6vlBL^RLa3JD>V1J<!X<
z%euF;?;%C=P@)dHiQ>y7(egylGeQbzND@(H*H1I!(pIlOIlyc8Y?Dg9IXlEwai-sT
zvP#pY8cL<@)F}hMz}MZA)Xq3m=Z4Rv8G0<66;qF6^TU@sZK>ibMQC}(1F23DB~NO4
zN9K`g7WLHUjs^$1{V$zC$6MvLSx_Te{c!V`*QR8+LWW^a16CFK%lfR5Hx+#b#_)7V
zzx%Fo+l$NKpAk(vgPL3osu27DB}r-8kw$s!u`I6Fc$lyVVl@i2pd15Q-0VL_^Bkl1
zoBqWbtPT4<I=tT$$0^~6Rfn*Gmx6s}(N>P6xImV9;}T=7-ji(K3*A|Rk6nwI&8sf9
zj!1hxHlmcaWSYsjJ{1Hytd21%gJKXIZXlQX#mZDlw}YviJp-wgWPbVBZZmlC=&Z;C
z6*%-e%H-^>i%c6Ik{aN?+Y2aTTF)}P$X-o*e1<8>pE_WmAKM<gk>n0rl=ldnh)^R<
z>&E7>NFJnv(`#_Dxj+zeeslQyIDN4a%9LJR6QZ3Jy)|1Tf+#i$AGH))RkGcqaZW$8
zr3Qc%U-4BwbaAEq*>j_U>8<;o>C**}SD%!7*A1kn(ne+S%&%n31N%|^yWCwkrtkNa
zdg3zq&DNe=kr@=^SDQvNlNRMlS-grJMW1Yw!9a)@yMVa!UngB;M~UWyYp*k(dEz{V
z_rFh>6|7R#!{}R3cm4C@lg8!;@u@~6SAdJ9HfGJO05mw>rMacIhLxwhSdHK-5#%x8
zJ$Ug<-O=@wcn?#WaSZE^XR!p+s!95}Mco=ots{*&eLL=?1I7p=u&4kE*?#IIv%?0(
zwq<*|<l2%@t4y_iRLSiX0Gu;9#y079meduAB<f?aJ53*A=Vhd?JwwkoV@5~J#&kQ$
z>I?Kf9l*)s<d7}gEdf&2q;>H4uY>Cw*^hZ-`4L0~fE%i-4{8rVnH~!guonpA^hHJ)
zuu81|iQcZAboV$W>`&vdupOPuP_HXw_ov1Irmd(n_F9&H3!#PIO4n<)cG`2oN`DA_
z`gs$c0?^#zWjS?V#4}^y+c0rL=qE&%4vX%1m#fuRn6jx4B7=1B*sx`GP9ju}T$V|*
z&3x1e@&qlH9cIUf|H1EVJsTvOIrYfdEZ?9moY5w_31Eql_qy~;B@*m7G9><-HJFi1
zal7o6EjCsiz#o_H8|f}|B2*?{KMzV(wNf+|x_xL;-?44tRgAx3k4I;Gu>i@(HbFSn
znxl8hr!Fj<UgIwJIM}ZkQnl!^@rt!Rf@LB9%2TwQpxj7uYIR9if+XT!`G}m7;<OF~
z_ExKDenc6HBu<Z#bsbIZATLK%!=It9O$g^FmA23FASlG^^04LD|DG8p43k#zwvXcq
zCu6~iRrZ~D2vBTlv^7SkehOvU?_0>IP<DvbWDc>o7|Oot3)zS$lqOf*jf=8j{=7eB
zfVkKucZU%OtBrJbuM6xPQzL247Bt^$Q?HL+G=hCo>rb`#oHIk*jb{dQOr)L5u8f9j
z2xzgy|HGJVW8r(4{==WJP<}pMrXldZPR-R}3yGny{oZbp?;Tah?966}+0Z2t-9Qx=
ztPO}r%&MS5#oHz}C>Z!EuD%ZWk;skoOJS$^5x;Zyq~P7T%*Fm|Q!s(u@Ie+MG>WP<
z==<Jp9=Q-BW36hvxxdTr<WlgHUD*mW!ApGMWlYNxC`LN}u{agit=$iRL~WipCwVGX
zT7lH9Aw8q>l^C06pSBHi29enYB&KKbd}##7T&jjNZ=ge2`EsKsjD^>O%1AU@Tz>n`
zC(TV3uQm)fV1$x<i`H-Qr|vIFbO@<pGEyPc(N<Wbmb`E-%l>|x0*uV;)qXGvTF5Cm
zgTWN83UMSy=BwR({Dk8Lg1?b@EVf>O7aeR_1d+sG1K;s+R^s{NTr{!>uYR;ex_h?M
z%93U{uftdyL)dSwSgkeUHN!@%hsVk-u&<-f1pr%T2i;(*4<bA7?iHN%J|cPRNydb2
zi;)f{@j$;5&P?R^GlZSjoQ05P&GqW5u|R$s5d?b(E6WYyvgz(60X_3=62)y^1cjts
zAF(Hj2)ZaL{R86U!&?=bm_?arapOz`8oA5vF&$8?k*y8Wv5_IA%4Sj2i#@ls*T5pV
zRk`W+c&of<i(FQrx$b}kMC0eeKeP04ihwPkG{@kBE_95xHr09i8r&SCWv~2wdh$>h
z@G2q?!G(j7Kj5@nK{ql3OYkIdBD2b!3jmL+<5@D>vVoN>(+gkJg?Wpo-DF@c+t8$d
z!9l`(L(Z^|zy<jUQ1iJxG4%NltA865?Hqh-o2_<h5Vylo3&XI*1ns!gT4{8zU1aH4
zK_n{lI<23$9PcI;Fn!_E74H}S!9C!d3I)!FC^%|Iv-1Z}CC+bVr!g(Y=;imGz<2E6
zcZvBEkkaTneg(Ukms}=Vrr{XDtwYT9O(YG9s8uCj4*BZ`h;__la<HruKrpZ#wohYD
z?9EsQPmwrC1oHE1H~aUDX#nLAcie_ktd3^uM)q?7ES=I7#V|Z)n;@F2Dl{gaKuMEm
zK{o4g?7~|ndq+8w&H^|6h4hp^D7uNqSSlRVtPR4N*ukamTqtuJ0=s5pUthfL-l>w!
z;81UXSi^tn;eU+YtuZ3ceFw3lunB9=8X?21ttcA%)6-@UfU?3_^tpM<baW&*_N^Ag
zJ}z)4)mPE|jYB<avnN#X4gje}#~^15KCU>$g-*8$WEN@n=EI<~^Ay7v0nf7XYR@@t
zb69d<vHlHB`TUSk6O#>)E=xJIn#}CVZ>Xe-`7JL7BzI(7KcpvC{}cGrw#L+Q5N!z@
zD@xJqy1TwGiCZmnqn7<WbG9JHW^#~QCW-*)k|+0XT=REoHI)$tf$nGasxF&u@-v31
zGaB9A%tmQ}x11&#9^9bW&}S@!>3vg^QS>QGGP|WJpw@G5A?_)f+x3lWqSnMH>%Q1#
zDLF=Fp~E%uP#)d3x+jveCfg~eV5LaI`3A_T)4tKB2g^P#FvIBPS4WNBzpDCA;nR(r
zm(^gd(L};OElvIs9gfa&VYoqM*_>o}sT}z*N9|aAt~~#qiDUK|*Bll7=Q~Er0mm~2
zhwS(I$8U9#D4dM9&J;l;{NQy{e66GBP8?B#;<X%h_oxyK^bA5p!=KjQUUzV{fyR49
zq75+eaRDwv-Sy4-KX4QF5`6L#H+Wpy*z<Va-D20NqjD>7O2e5~I)F6R4&zCQBPAE_
zgfxM>&SDtw^6cEVw=0+`SQB`0*tC=muwp-y@pE!&8>UIN1mO+g@Y*Je+ijSnse7d5
zOiJeq!qi)x0fTL<6yNXi+_864c+2tBzP^GMmFiw(L^aT0#i$pCAK?y)s1S@`<_U%2
zNJ{S=527!Jus8i?Eqx_6F03|!2e0LWZyZ7w8({^2QoxW=SkjRx1b6(y1JW1QFu80n
zwgM@-+YmeC!UOwtTl-!)j1{zuR4VOy1DBmxE`@SRJLEE>2*Kg;WWl^wO<v+7$i9%T
z?x+ZeBn>~gaf;`a8B;%cL&fQgA`|~?4Z@W->+7JbrNr{{Ta#Rx(&tJX;C!><)p!Jv
z%QE|cH(4WE4T<=M9Z~pmsUMCMNfLhw`ruQGlGJ?hGaGQEC~!4207cTOrbbEiDN7MG
zY;w-V;rtN|-ciE=9)3{qiqYOh18+3Z-!a~uUEFV82#I%{QWz|D0knv-ivz(FMdTWl
z0`l9*id%qq+NSpE4&iwqAtE){13(Ob_;B$|;Im(8^CfbmwIAqGnDpDq2L9>xUz+`#
zaE3*qTcN&*1*alUL2Dp47Vjy!*nF5}qJA%|X<$h8`;v;07z!{qFjDJ)AjxnA4k!yl
zUi5OK%k$S%IZxbQ6&I}c;Fzm%GvVs;by+j5*tPg=Bwrnb*<hzS4XmAf5_8Prmmv_W
z8a4+7=>5y8dQvxcf{|r<MB~*dP3*eRgDyh_ezkyk!CMi__pJnG+;p|cj-4aR=gFKX
zt4K#Dp!=4Bz+Q?I?))=no>cKkVtAiuiHWWysZ3Ow?1E#tiK*Xm0h+p!3LGovyctO$
zK^EaYU4BPRaRDtF8+9^I)(XyOQdzsDZu$~xWRt$jTn8pd3K)KMrG!Oxa5+C*pXY8L
z&pf<bY62BZEBb5d<))V&S07|-8cIiW`;PAKjHO^x+X+CP+_vF^l=s#M+uACwVG-cz
z5~&NqXCvCpRrA@Ic4!jtoGLACPsBs}2&@D$Wy>HHBP300VWR%bd};}tz76#|*5F_L
zW;(+0Nx@-#N6l7G8L;&PpjAxApBhbA;>_a?dRhU9VJ#g7?kw=nDiUtjr4POsYb&J&
zzyfQBoP%I37U@3{);x_CkCk8<7eec<ReD;{ZyHuWev1gj#t_J@K6?VL7C}}iOABMY
zWmrv~GhQnHrb+(zcFmHh0d8ya)%M1i=%XoOEFgyLJ@ff3i#6iy4v}QMRYpnejFO4v
zB6J|3{!Qy(Ge|^v>j#y4v!p}IO!hxWsea_#TZw0-YO6}0VE<rfv?_%{cIs8Bdac}Q
z<137$>31I)3bPgBwP9m7=fBc0QGaqdr1~bK`3Oio7pETqP`H?Mq|ebf^L0BwLfO7x
zoaO4Ohg`GLmM`hxX}~ED*ru}hR|=dde;2w_F0U8x)x5-}<d{maY<BZBc4REHoyJ3P
zSPN6q2}Fnq$Sp#H?Li-3--a-^R*5?-=B&-Dni5dwg@0x6#5^nQLDuWMTgC1fpob%K
zaaNbgcR;L4?NYAGRz(R+KOj}k4Q?80E+U*#Zsb+N1I5^x37?v}qA$hGF(hX%<gY3R
zM&W;0Mm8HNXR|?ef~%mbx`e-D>F#FF(*a=sp1}fL_7MBy+fCj%Ryx>ECJ!Y!E40?<
zAZ0ZOQ&#JnR#a2FPV|Ci<R%os{_js`6p}KyJ!m*;jG(oEnHQkYzn)S4!8`AS;sV^m
z4Txcp;=z5B5~Z_D6PJAdO57KM!`%l8NpOh~zAbfR?*{KO!{W#(xDO}V5YFWc4wh1-
z-OGTW>0BC&c<w7y>8ocYN9a930xgy9AN4_d{t(;^gzz?l8m3G<5Nd8F>ztFT@JGMH
z-X&6r|L2V$NZ8;JCO#}A7eVSZK{!CNfgKt>v)#c&iMsJ@$R&EU&5@qn3t%8=TNbZp
zGh4&9YZoD3!PVcMv`K6@u%@baH7>yn7dW=<k|0V{I7v%GZS>AG2jC4Q>D&jx8cm&L
zSUU?}LAGeGZgz{U{1q$*tE0W0n-RDmQ}fU$h;Y&eAZrf)FnjLMRU|WBi;L+o67j5-
z<9rN{-xS<)rc^UEE|6SD|IcuAP^!Z@uhL=+$1xZ~*||Uqv^;-K`hiGd4A$F*j61o6
zRLTpUFruItGb-LUF8rhbh!lDbV0!<l5v>Q26@@@E5bO{*VC`xrWNNLx6jdU60?e~b
zXJX)O1vbH^5JV;)IwS}02IEo6Qc39P(v9^3sJW(yOGKj5z>(TWeqd^We`QdB(O=7H
zNIlZeLld|gR4n6ixyCko*-|+7`l>)m^Gr=f35V-AJ1=#`JTB*55qN~|I#GN$Gz}O+
z+M|fe-L_3m<s$=d{{x;&)#t|6F_V&CR88I1Sm}%~v)deny5JRKXfDQ=1&=YLM9E=J
zv%hz1bZO0dOm3z83|AQ0L^mT58-U;>{#+F84^)w`aCsg+YBI4uOgrzTo(ffOS{}Yj
zV~Y+l?Ih`P@FDp<+AOLq&)z0hNz{H<EO8!}Gr}J?D^y0hLcjPKcfns_NuB{~y0@R1
zs}5z{TtG~gBO8)wgR3nHbTA^F+`5dnwv>r-u*{_z2|-E>zjH3%T*NUzBacq)g1mgU
zYWKaXl6;$=Z!EN_;`10&-fJD#*5doWuGvVLVVKoBkseF>h6fll@%FPFBsK9o#sJV5
zzRYMjU-D~g6N^EOcpH>W9;=`nmi2^-zQekCCI4#<cZqqNa(d_ZQfu$6$4q$(j>b}A
zYiZ?+fBgfbWi*tLcVf+LrI*>^<?e7gjl#f^g$m~I|2U3)lR_DWpE5JvRMCM!-+M&~
zXS5Dczf7sIY@qU~&|-({6O`2*?k_az%GA7QlZaTeTXDCL=b+%_6~LY9QW}9_@K+#W
zKUvX2#C<%7hD6Aw!isxaCuB{jk#KiSkk4EutL8pzUj0GciwWXM^V**!v`}6TiZAD~
zV&nHo9)%P1ES^VfX7}?x6uGTEMRn=Z6`ylpD{B&41gvF%Zgt>hF@C0b+H%rny@|1L
zyjLcfxf10S80SXp;vBec&ou?2^c*Y^pjw~;jP0MXW;R>f^6RrGE%2OCz6*PusCKk2
z7N1kCLPG;a$EHba&OqWU{*Y*nIjaiN>56ks)nq$JxgI=;AOvnx;=e7@?tAsB-P?OW
za-!ZGjE0$8aEjI2HOk@#qCXCH;2Tp68>+7(2JfBscL7m}n*}>uDUp%*h4-0^f8wPX
zNhVOt^umOkHM%xbM42g3Afb*_#ePL-X~9XF!MZvF)PsWCH@dBY_lRWnP`u6*i)q`5
zV;MnDI%!R>(9FDB=GDukDBcI=!}wX=r8#S^*&5RTVZ$_t@b{G$_33yG$;6&?wV*NT
z9#U&O!2Z@2@)MC;F}pj02GqxMdiko8^z|aPI2`da>y|>B<z?f;!NAhb7n#L20D9Lc
z>D`kF*5FfoXq$ywa{?VnUA8~iftISs<Tveu?>L(#$Knj+WN;KfZIKH`bY$+Ik@Qh;
z!+v}1D<zWz!tvF$sJuXoV{s_c8@$QH@mF$EV>X;P#s%OkkJukQkMgj&q8{Jji(|h)
zc{fF{s<$HhV1-f)^13kRbgIw$4y99W1iPx%&!zqy#A_3`S_~Y5xyXQ73SG%TJQ!Ne
zy;}$c6AP9^hay-Qw`D!<1*2iCc`H_sc5D;-?-%G>yEdtBDI>;y>Tf7)<v{|vB`7um
zc<)FlE}e$dy<?On-PR?Vwryvn?Mj=Kwr$&$wr$(CZQH7}?d*Kddrp6S$2jM^qsQ$Z
zw|~WY_Ol~m#U2rRu9$P}6`1T@@%lKcQ6@NVAax|aYO<CM_R?r+3aZ+;sFU<d%?j3v
znVwAcmJvAdai`I;vEQPt!v>aGNzZr9v8;hmX50X`u}{`+*+Ig$DwGro*8L&!e`97X
zn-&sSb^u^3zAI<p7>epWZ&#C5uyVf9pdh=Zt(|<vg-5+0C36LFfI6%mcB0p_ZZBI=
zqk7Z}1Y6O(v^3~l@7&+Knh~DEGvIWvXo7*mJF%qupD9)1&}W6GLInUsgzE8PS%Wt>
zsgQ-G1jv*_p-EB@)2xMB_K;-UorYbcpp33SM(2QY)b)c9IAW0~3eau0)0of+9mYd*
zUdBRe3@o7ljcv^(yv|=8Sw$Vs)E@+#YbVv%m(RvEP=hT1X+10<XX#2OR({FT!Ek*<
zfo@2bX73V9o~oei`6~jbDhumn0v1Eow0fr-4ysGK6Z7{liC((C0?2XR#^#~KrdLLP
zy+fO^Zz-wmYpvkv`%~PVUEIOtc5d5v@YlyVd#2tYcW0r^VRTUC=lrgn+a7ty8?v3-
zPfM8KBgSjS$^GixIfy^o+zvK9VtHtvO!EgEu0M+}MnO_}i@j7(_6wFHL|u5F(!u{q
zDM&pOO1KT(Y>Fes{$QBr!@fLH|NdNGdUz-iG{Tna_LdIi1u5-e87LJ+`T?_*D3XeV
zZmX7-K7Z7+jlE1<B-V_v_3`LpR`m>3>Y(MsEB5iYf4JV+N*Czb>6&@pnMh^@Wda#}
zL;T}dHe_ffA=i&*kCf7A*eIeC5+TsX2(d9_EB0Ywr?1m&S)yBsk!%7c3UG#pr38|J
zfJL3kTnGNdy7Ho5(~mGLRH<jEmEN!3@f4udxh<xbJAIfW{P>(N+<B~ZpClK(r{!ce
zNvN#k34(%ux&kP?HfH!#?`3d2V4L$Tbo4UAC-vUr-R{FNk!x-bXs<E8(lQ#QrK2FT
z7Jc!Nj7gvoLro;5HND}wNP6}^@}5S0bc*K}Z&NN+rH6FEql5?=CH&yGQgV1fu%{fd
z`YBbN*0F&--PmNg2iM}MV*Il;+Wq`QeU{HaH}fINCKW#3atUq4?Jq|~{KS&ZcCmgo
z2Na#A)(ws3kI(A)8YOFO)4FIPYvfB;ST=Hk9_`f_yPF-Mahn<8e=i}2&Mq=Im2|N^
zliVedyxDxIp;3ZXE-YU4-}Xreh=Z?Z7Sk-Sm(WNqA1T~u2oDz*U%Bu>9b+b|?q%iF
zY~^;uR6f6U7uElK=**@wW6U<`qD}u5D6W>Ugt}z-V*+Fgs1+M<IWrQ_5#OX60q)5p
z$+Tuk!l}DIH$p!<r6>16LT`l*)!+QbNGj@@Sa!tLr)@+@v*uXN+4mZ0_o;aUXW-V3
z<L9@LJFq!v4+P=-?5xJ|Q9U7pp9T<~B9LoVR{=;1VTx6=5I}^>C2Jr7<#CQ-O!T3O
z#FL(n96=Wt$4-p?EJ^oLz}i_N!UecBo4ZfRer~N41%<s4NNXXywqL<2a(X`t2nOXb
zE?D~uDk$9B-8+&FNNw~jJL?R8QOY&zmHJEaD6<emqe~PzXI-aayDr$pI$1*}oR{lZ
zTAcxdrA9Eo^GwH-C-{0Yw03jNqnPf;n^0)h9g#BH)>@Vv6n}sD%2xsbO7nN``e!yH
zN`KU3V-ooiB!J^%(^M_`Fr%KUL@g9?+Us(decn2MULa&%uK(s3{&Bc@GK$0cZ+aU-
z?1iY}K||;rjE~R=cO5w@XDem(G4-zGNdfG0bba95m~?o&_JO-)puJyqkWD-qhVMY`
zhh%C!SjsOm+w?oU-q~imO^PMMJG=t6Dk3)&5s*yWKz<U4C6Dg3sWHoej**JF(JN8Y
zP6wrQf#?Gg7CH6If4V5PCUrk`K*>s}CCZXdyLv-g_DPbhrhYFJ!$`2*5(pxQuh8Fv
z#o_Hvzw8X5xkcboZ+RdtFXRm8>98UT1A9I{_QM9~*<CFp_ydZd6KrvW3rS0u@VuK$
zG{OH8X^d4!KKB7Y?rLtd8=mvH1}nZ1HFe3gIlrJx*o_fLQPH!E>U6Dx@{7QVGqO&(
zLu9@~J}lYHFJK9%{qieQX^|y_&EX+w$k@Au^$?%_9Cq|yBH49m=5!Ly2F}}ZTr6AD
zkEbm!1+s~E^E?6Nhf3x06catZbSW58fh-tH=|SaEjMl7lP#=t-EjOy!=DuXp8UZ@N
zDW!*YhM8swU!aBQ%hndbb48Bc^p_IDvVSfovpj&$I$GWwn|Mb$a9^_F&4bK>iPE=<
zUz<J8xJ}H-#<#QhRf@+4XTxlvE8>^+2H|RQ%Dr)3Um+Mk$=kse?3jBP*l!l4ky81`
zxUsACI@PD2Ew{ZNQ?BVYT<}PzC^ZI(R`{^cg&nAaqZJaO5HS{yy>xB5AhvFTgr^!x
zZ@iTH*xYfT9M$4FwdrFD5D*4l`WKAJ+DgkfGp8)+Np+mf`jMM}iEm@t5X`lxz*F2v
zGB4inZ;wk*OHTYBm$O`=F^*0Qw>bh7I#^!h>^gfe%a@N?+j(j&`*%;N>Q!zN@3rtG
zOPMo(W#MJUN(UHJcn?m0R^3@us>GZ;A2d^2lJO8<TEb{Z*aX1)1cUFmT`lH*E9mCV
zYwGt1xu(bZKmo(#+S{5+s0ib3cCkOD1Pu|1Ye#QRM^Jd^rm{u5zNK?z(UXY-LQ<dx
zOG8P<-LvGVw&VMeA2q-s&BWKm<kXH>Z>2bqTNgQnK*pK6Owhnzv=Kz$WTmXQjf=&I
z;#8$200+lyar!#)FIdS9lTs1H!<vwrWaVu$%$h4Fq5aaq2wg|Er{d_$%_(}N>I}P}
zG~ibA+`f#R9=F<ib!2A&Eq;tQKZr4+p^anvK~55wnu3ThjIK+6Oq>8S2U?8|k4VOI
z#vGvUao%vUpU0ho(BJ0e{}b%$AP3<fCU@A?@(av+YRETOvMpf<Oj;P1j|WF|$x_4?
zS+}kX@#%t915U6<TPbhz^H<~nQy20I(f7J%t?ne{GzsGfm|lalw%>h2$wG8qGSx_W
z=TU&&HbgABu9ek8Ku$=D`z`FtFq@P8rzJt3R~R{N3X$XUWok1r6sSitX4SR%Ea<c%
z)jo4J5rD(dyCmL!(n_%nOwZXCCMMd?*=_&<;xT>cXX{TPPMa*U91Q1}4U||~XW@9<
zT7%|rO1<395_j$%<TwfzewiWpz{ZF49l5qFH2D8~T(h~9N1tc|L&Br`;jmwV$^?{k
zRVU1SV9X~h+*+Mp9{S!%%fOJUsJc8nlN<)21lF~#F)hDhQG_B|n-m8*9Fmn|B<%=<
z@w}RkF&Y%d#Uxk@cJCeM^*Yn7S-F)-g$YLizRbexUsyP<(H`~M09KDL<@ftjFL;q0
zD^%DEcVPgiAiH$Y_!Tb^u3`_HRX7=-%v2kNrL|U$eWh?b=<!3<uH`%Nl%RKP1t%Lj
zdPbYP7kCy;cMFT{j6|raG}Zf;dX0PSq8mhxEE{3B=Po;Wd)rj97J3+m-jXz<>Qg%z
z&89rh?s3XBFHn2p&D814aBYc5?@F8tUL#+FYq7v5$1C82A%EH*lAP~lMJ~=c#Xr%t
zRu_>PNe}1{*u3{ymGl)C5p2%W_mAZ5C3VSXPQ$4C^#ZWx3pfJP*L;=~k$BUTRSgOd
zJ0ee8wuQYmgNaru04F7*kv3<e3UQfwXK@KRkcj|4134%A%w+?`7yVY*20YXI@i<|R
zpgL&y6Rl4ACdz6z!V7ZaeOg|D$x{vK{eiiw*zH8<rV%=4Rdw~f*5Bn42{fdsKep{T
zlf~P+gJGs{RDZ~-N%16b&6Ek{Yb$Eci@Z_EH*6DDS-F7|VFUFI{@8@`bu>~OupZ3{
zVG+FIiq3&TO7se6b;$s@OU`M+YN#lEBk^&G(S@1N-=ErP!pG(j9jP2fg-RxMx)e}5
zxJywyXbgIP#eNefGN}nQv)!&Yos-T)rP>SQLmbNX{e*A<MxewpY^`9&%Z6aLIxD1#
z3fNU#*5dPFL2C6sRD~`vQL$?xd$h?G0rus&mAl3j0`L6F$cmzOLG6-`w*_jaBm^3I
zR6kH5-{bhHq!<HBL#i7D?!Zb@*n*bn98poi@XF<+UY3RvQ@Ru-Pz%%&3kE?!UKUw8
zsFxgKDGWTDR6>(<Pv`QYEN`JPaz3PFjFOn7*1663+xdJ-f^3@rOzTY(-#YH-YyZOV
zXgm%h0VK@b`7|yA0D4_)81r(Lp$WfuVpf3mq)e{x0kt!I(f?!>W-;<<{P4N=>m@p9
zwc1G~a{=lR6jB)^)mLd&|D!r0=swG~eiTT@-cyiPK?jMIPMss?XJ@%qws^)%1J)wU
zp56UCu(>{<gYpjv=gA)D>_Yo4IlpDJly#`-!x96hC<<(~^W=n5b;q!?%Ms}5c$eJ)
z-W^&8;pso#3n7kJcu!)lE!Af5s^K8j(9(w5fGPaMJ3)1Dov)5h>V#asqymP8lM^3c
zEvwYcp!>%i*~(v&oJ!HGl90n0bq4NqoWHKNx-XqOWCweuyx=B=#WitP-=p89+zft^
zcEXN2{ZOy)A3D%uA;`!v8s)0i&1e8Fq(`;PTKFJY?6N*`*HEQ|V*Rmb*=ORC{8GHv
ztkcA&7gEY~`_4OGq^E*oIUFXzXbj|#)ySYfO}epzYSzm--{vRk-7m|Amd=F5R3LQg
zXH780b*Fn*>}tf#yd$zfgTh8a1jg)c{W7WvX1~)E-7imjl_BzQYz}DU+@^10%Ph@Z
ziF&+HE#Fh~`d)NTsu33$th0SGxeCx)3rv(`LS(Wn;{y@8jLg86)&L2qIO;@syio*F
z-0IKy0!*mGt0rPGCg9GrxQ@dHtyWJC3R};Ub3?-o8v$Ar{23noYgkjZRyTKqUP3+>
zaRVU`QHT5?G)n=N5(XZOz)uILILFT&N2mOuRk&fLg*Et(LKSVlI{>4-sl1KG5;Hx}
zYhp(+@t}~;mwtAzqS##uF|)Ms4CV7LrtYdsW-`||$H}62T%%y0N%QWQYl7f|rH3yZ
z4K2bF>?ovFHELcU2J2*;{>s;G0q3MS&?+_Y>8h`SH7rHkY@ccu{J2BV6A5zQix&R&
zH{h5g>>kOMqxHNmuUS1|E1p;C4D`CsuKmSu=SkmazbRQL8xBZgyICdI(V}QeCcu~_
zuF#BMu^||Oq2om)48QPH3G=vR)k{&84y{&v<_~8R4K!>fjI1Y|?63qE0AaD+HIx-c
z(yVAGWO5V&POpvEav=xhR2zGC%hNZ9hCn``yzIAKAij%2lqGz%(|W;rM%ac0@f0*b
zVvVw})%ACWAs^32JTZrQdd1UV9ORRNffL-alz&48NlC+^vfw&wP9Fg9GV3v$wsD5i
zpLwlI$xCs1D|Wz3$tSkge9l|%qpU9yj&T433fU`8@Fu5EqTA9!#6nxF!t3u`dGYV6
z0A<LUG(=0T{w(sX<2yY%zmb~r?qvICUeLg;W(m-6!dD2~6k_I_-GB}ruy0qIi^Xh&
zr60B%Gx)BZoOxn6jL&rEvqMNdis(oQl_@E8nHCy7TaP>Jt_^b%QA$>y^feln2-K<x
z@3V<sMNHTi(U(@tJ+(~B+?6^{)n&{RA20qqV6q1bgWgd`$ViQ@DF`b_{z=$wD@a)a
zo6p3Hu`_zLq+SKRUW%g!*Ke8*{LC{^@`QgjVg?hsK<|E8CB(voFom(d^#Q4j`XQ01
zj0|N)U(WWF<Xmw&rZ^ye$nR21yYg70jtTVPNMGt_<vb*C05&Pta+%s<&9e#JNy%N(
zcOhBi3iL68@|!cVdMQ$&F--pbsUvX(PZf$%+By&Y>+zGqY!L6`7svSOJ-q_r0~1BF
z-<0R<9H69Aab&C;ft_ldzw~}B+|PMc88RrmEjQ_^#awtrMsD5h1FRfS{a~lKPi}!g
z80mE3Roni>`nT-X??l30AqtyveU0E{Z(+&L1k?=UE<;DI`(gt-d*KV_ZCC1NyW@r?
ze{)DSXu2j~>CdpB#aJMDkzzJMp!AXOuY8Y$EY=`C)vvF-4)vxi*>h70h#k}<OxbM{
zzXFAbd#Ep_9+zW(zzk^MqS&`?my_PATKTQ<M$})Ob*}@ARaowyRwI&Xx!vPQ`{M;L
z$9BDYnrF9WB)SvK?(G^X#Wk1^K67pYu_sM{dqs(I9`bAHnbN~%D<RJPI-CT=T6|KE
znJ>CiGl7IcO|QW>u$=nL7Q~lv6b!TPlzyp!{E?~oN8${Bcy(y7#6UPGm<D@0je?D!
znuu4smp{ecpNxm8>WDtcErd;NNBu_N7<_GtpsVF4T-R`i1f)nB2?QNq&8ZYg<lHhN
z=!#XE8a^r2ex6NY=G#q2x;_zpwH~PV4RJp@-TnFFB;31dEgw5xCfvoX{;Q6AO{_5D
zy|aBpa_tjhyw>jlLy9lv;iqA6PJXBwR6!WuW#GNm3=lpMEt*rW8%sv|i!;@X*-B+O
zmDP44U+_Tl;nyt=G3wLqWa+`S8LKWFa-BK3Yc{8PETsfVfz^IENE0}8zkuZp8S=T8
zO%rkhyrfD_O|NLY|9AHG!QBbM%lKnC_pQfNg8WZGGSm&ur{7qc&kp|U%wmUQXH%5@
z-Q*z|aEQ#z*Du)hrp-{!4zD3BvtlGOSwiMdzYE*hOH~nX`Q7a%fzP^XF|_8_W;8_m
zu`%HnPkM!nafWK@pM1u2o&`)`6Kve6X}!78(yo>7<ErC38nXsJSb+_Ev-#J|8>e>K
zZTniMomnc5(Qwb?0u`k%ZSJ|~HolB}Z->|K;mbiWe4%{_f9V^PCpQKdIbb@wR$>ha
zH^^V%$>)!?@-;5gOp;Of@A1|TDY!_#W%E(;q%&SZ&7o|iOD`D$CLSgV%a<`2?V-(c
zCp=QD$$xk!vOmDil*_P9rea*`bnq5|-1E?iOR}NY<dY%V2SO1I&!;UYRYEJVfoILK
zgkHma;-3Ua?Cp@Qo1{4O&@@8-qzO7`0b32D(PI&Y>?y%LnF^SOYPW!2mrTiHKXvcL
zFqQ8ns%Z~i&_L6fN72bFq4SRk*lfPhs8tbFn<|Qak=))}wa5fwN}PO1Fl(dX%(=)v
z@ji;fWH32~Y@fTUWeyRg^=v$c&lG9ZMLE#Vr$*72&U!S92nCuGfOvy_vTs7^7Bi2f
z4~P7G1G#(jrzpe)U?Unzl6R3NU%3&<u>6tvi@l@kDFxp%0=;!MrGDQKI{<^7a3E|T
zVc4GulCwHhD3^TZ6DcO8tYu=|iPTd`Z|LL+hmnhlAu6>s`ZeGU8-%&QaN-lU!d^1^
z^tm_n!<pmp{hiVGEzL)wp%F2D>$KPoy-FsO3%)+@fch91g%TS4#_91%`G?&5THYYk
z&3sx4EBBJJmFV3aRLDbLe$=E*=F=YPO)+BR+D;U{419~lDpCe<r&woo-f|11LKZ<K
zq0wO#laX7#hKM|pA`jCj+tW>FP!0LCQdkctx0@U~k+OZ|m~-ijrOJ;prQZ4dGGq$@
z0(2@+x_*^M%S_byg%35(`Ys+>;`8MDgwFd!-lmI6@kFP!^9#e{X`I6oi`tnBdM^ek
z-|33_AS<({?UE%V-4!>vS2}_ZRp4#ON2(kOrln#oE)2D=h-OGvH|q6XBS=xiM=X%Y
zeA{TI#XyEt8+%r9lRx6^PM>e4+ny?V#S^KkL6i8$o}LA*NHsSXhl&#-M~C=hG>vId
zAOYv>)J?RX`v{2fru2x_ESYR&c?h5fG<vM}M-kFL5`wL`D@VrAlk!NSA(u}r8;R)C
z24JC#tPLF;?Tz%TV81OJeREhQHZ}r!g1;;-E;<o2OGhJnIuT1fM<XF40~<r5?<RW(
zM*>DRb~-5|YZFIP0tO~lW;$sCCPq3%H(Mh*8GUmFM=Ktle;yS|S`$ZY*x$10rKGm7
z7J*pjh_r&D3@!lY>>=2k)wIRT(&;RZu@d(@9uijN$WkSsDZN=FN$XFQqv;hSZvVz6
z9Ak6jX6$x|L%hapHNJ5Yh!X_C=Yfhrf+bVP+E=Y2RGgcf7c*L^yago0GE!rhTm)KW
z@;q2=@<Dk%=z@diQ|$V>X~NhT)2$OI(`$nT)Q9lO;}p)&t#Y5lgi=-c`f#9X(f%o|
zY64e6N@<=g`*s+nA@mzUa#dDi<E10m!p%OnjZ?;{KNL{m3`m}EY<+qbq5^2lqpe{#
zA29WH2COsO8hd?9iTzb6=AWp!pO<UZ_t(et#<!fKCsc#YqNZa7zIb=%&26Z$e6A>A
zprK$+txC=tVieZL#pe(2%uf|Sma-sK2Ke&7yMA-GxH@OkyTxo;)!0&TGZ20TWQO;W
zi_6qx?9^@fnAwTlta%5Wb5TX9G)qGu{>s;k4jzn1E{N~M<pd=P;FYnkwzRQrKrnIf
zexJSXd+Ldc9|XTirsYTTK2g7A2z~VEKl*x|nN-4%`6ko!RyQ6b+)yTX&E8bjG|XrW
z@X1ctMqOVm_^8GN=plV7c}Vo#H6Uxni2#t2<bxm9V$l}voUoXftQ%+ftoc}TGw{Ex
zJ2V28@M%?Os@x5x4$Te7S26hUHP_6qhYe{5bF;+Uud?@_$kCtNVc@cb$DQ?wR}T1&
zUP*Hn&3iVEhR*+tLJKV<#kX&I)+_>?07_U=OVoJLY{n)!Jj+uorR|LcnjxN$lP-`F
z)+>mxTOw@b0n<G;?^s$nUjwfq%voeeEpG9u)`Or)d}YO4Fwwr6ac36|fgc?P-mM0A
zSRXlh^rta#(R*+|s|!GnS{%uuNvru4%U4NlW2%m=36-mQo|r~QX2p7G+lX?`Ynwzp
zCMW0D?~vAP_NZ*KC{u&lI-YpIL803XI}PQnCR-oGN_`NnWWXDJ_|KH*&3YtSJe><Y
z79D25aF#KYn+(G0<UvA={F>o%Ck`0)?M<?6-}074KvUv~oo*NC$@_6HPmu1Q$On(X
zd|T&>z6>cCRf-r*VoKai<GGk(s{{kaWTD8j+nc-zXuG|61s|_B*@wU1u8!KkAB<Kt
z7OCfS?`Zr&^;=SAG9VjFZ$Vbct1Kz|q<z2rWQx+H=`w-p1Od@jP!>8N-qimjPGblR
zo8{mkYg1*rSnG(?%2(H4XIvT!(_kA}B@O2Ju?fG)u{#q>yHufVLGQ-vmbt6tm`D2{
zl%`C6Ni&?gcp(-+x8MoLRNl)IBg7jeG1k@&t(~cgw=PxY?XuZf@-;Jl8#tw0mqRBr
z?BRB6;dxBx;Id<WsL19mOkK?*c|?c$M;>BpZn!9=3wTw4Qwb72?T0&ff?Dq7*q-{@
zV9Fd=>cqPw%)7d{4G(YF&lDn&S9SjWZ8C4}4ATB=40GisaU55trvfAg>&1GTvDw;b
z`Mi@cD`5}7l0D|e$hogjv(380Vw2bgb*N<GORJTJFzF)BAq!Svq%34`*Omall|{;?
zE?|-Tm>^kkb?iTG^c&G8J8Mz1XYzc7qUL3qndPH$NY>T+wTcdf4C9=qmv9#)@3q2N
zJ938KHMPb3dnhx*b-scb*$<f3j!{qw7UeSP2&xv1s;b;`w#)7~HW342yr&z&sw9Uy
z9-gKoJ|{I$nCr86_p*Ko7aF?Bxz9u6vh-^_Tqz#Q*BKST`WL~APj|wZv(6`HS61UW
zfEFh2s?Td2`c<C6Hy-C{VjQQR%q!h^rN1m&b@fw?^raM(oZflX>#9LHo(Ynp3CvIS
z5dE8Jo8iAEZGLNO8%GBX21ds3HhBUDMy9{ET66-IMn;ALHm(}<-@jQnSZEp9SXh||
z*f<zz8QGaw7_{gFZLA%QtQ{Q){;?;WpuLUlf7@Tw-p0xH8zux5=!A@%%?ym>MFr>-
z=oIbstQ~Ci?2W7q-2MiIe{|&Gq5EZIXr}ky9#ZzN-5d#+z8(8^noi!x!N$qnz{ue*
zF#7iHuMIr`6Z_u|iZFbeEdS^z!brf#@Yf*7(}^&Bo6LWk%-<%*-zLkq`H#Nee#qL}
z7$_JyYS76FiO?w;xjNE`Tj`k?32J@+CvW5Ujdld|e|s+b-OR)DFL3<pwEr0z{|SgJ
z^z`3fXZ{!dMI^~S*)-pSC;yI-Ea{&70a8A>Od5^>*AgVm^A_ooof*xbH~RoV?%?~5
zovxcgwvL&ngLQBfXXSaNC3nLdPaWTWKf=q}DuFjyQZNLG>~)IDmIN;V9S+?{?|17n
ze~>=SR93LL3s51-z7Ki8)uB%E5l{3o;N}bhU#6L$p)JLuAJk7c&;gOZo{J=yxigS6
zT)$52Rbx?O_GKOHTKwEHBP&=%&Jymta2o^NW{HO%A6f&OE9SK6ZORY<98MwcOWY`q
zQV+;>B+Yz5U;`Ti87kmA2N`<Q;{)H4vN96-LGyx2d;S`p2E>$*e;i%KdF&8WKD{;j
zUV^RAFD=EW$ELg7Xl$%w>G_>Bb!pMaijtdMXZik{4LSoV(Q+Vo<Oo;J(e-G?MNET(
z4WwC3wj%!$wI3fiX9n$T-93?*Gl{v%!HGhyq^%1nXp2d9TsR~oCRI%BR@08+-AZxQ
z3z9yy*f!t2s&Y_WK|Bh?4p3#{tK?JJ5ZDuXGTXpyL?-EL9YSVjrA>boP!WhbS$Y;U
z-Tn@jr8wO>!LY{KmMr<!kTLU72dTt$Rkaxb9L~aP;?T`}?<%BVLv0B}8|~!|o$n}|
zPH#Y;p|>I~=V}4PVysELHyy*B94?EG`_1^IK54-^fT97DKtjGG!;~!^K9g(D=}$1G
zK|uqDPt0swhZB^mAPKC$vv=kyu~3=bnH*-(ONv9{1_z+Obv2VzR?Cu^Cff&kbac+4
zErQVw?pXz|agW{-@o^}`qHd(unF4E1r;qY#0M_;mJ5^)VyL~gO1Vf_HX#s^F42KKH
zx}9Q6+r`4Qg>!*ouf<8>5>%_;sa+<X81&;HT2Y`>P?KTC6VRS{tSpZW;tCV+(?<iD
z+trNUZ6>xx=d)_Vm1N<mz!Ry~a=nqP!1)h%jyvH7*OpdH?1ud~AHal`dcQT}nx@>e
zH@eHtxQ?J?9|#n*7#E&GAO##6^)zb09H;_gXGhV3VXWl9-|xRz=<;Kti0TeEFK21o
zoo}8%DwoHWyOe*<b8@tkitEoM3x_x-^7|f!HmE0fodk>$91sODgq=Y(5NIcF-j&u}
zuWMJx|90M{j1;a>%&8MuTEk^cn=Tl!Ku10vxz^k2MJA69K?*Xd?{BEjQh8&6e{D!p
zqRV$Bs8Y$=1GuGG*8xM~OP;nVTmw=s6fbm}XsDC4IF7ZT<%Yx<PIQ0v(D}qa^{q>m
zbaB`t?z}-i$5ppkErGu_=bN(&o08#oG@r}k680U2dq~q{mVAzHfC-6uX0`!ZX<3Ve
zHmm@nA&ynv7_J&rl;n|u3q2uS!8gJ5l)>C|N6kB;LBJ5xV|{jV>3rQ1W!dBbmUJLL
zdi5ojnO`3~?q#*DI!JhFiZCiUrJKT7Ui#9ew=Kv5oKknWo#gm_*KV7oQX&|@xi<jt
zFFH@~a$ECP7fXv8I0eBs4gwR6gwVX;4Bj(AWJHA#0TvJLq`s;+$s;ON7}~{DjB3di
zQ%D7wY&qwnRG0lM40^CFNGZ90mTxs}v&&&X&@viSIbOm81O8IfqHM6Mce^X^N%$H<
zN^?Zl%Xbl22yIlT`zgaLoIR#?#QGDtIQY7n%H2;nZwa?Gz5Ws~;I%9Z?beB*PYP^N
z5xd&&8Mx$uj?*?e5cC0ZN!ICEj8y|g?g?6v>0oWhyj0&X62wS341$S3^ULMcsCar(
z2NvTJ-T;{%5ZxGY_Z{EfDjGw-*=d@fS3*!Cfj9*6X3ba11HOz+u7~-zaRAuLOw*C+
z^^(rMiycnx=8HescU^mAILoSsLIW{~)rxp$(x}WmBMo>}O08^;+2%c6QeHM_PiW;V
zJ1FqZMN>l>kHf$gq39{;*$aKf@SxS6fD7oC9!&^{?&MrK@Q6F(z`_LR6_Fei?Rmf)
zW81;oT(h;k8T&q9p4>bd+r6uUvbc91Ue;$;LdOs;)9hd?DsJ+C8{FJ5*eRmG2J=C#
zZLSt^=!>EZ62Jkz1lCMD7XcW_H*zs`o>q9}R9Iut#=T91X<!$StNTq%(qkwjdUyTu
zy8RX{9<M2+U1nt0OhAiitJ}SXTO46G^s5H@SYjX-ZJxL9+Sft}r(noMm+<)mGSF+;
zv<bQ$kl^X6QyJ`G&?f@iReO&cDuO@AUv;)pNk!sJlG;hms+z|rsy}%_3dt8w((6;o
z4C+_Fafezm_LT-mu#QoBb(Ml)s@pN=G;x7otJ(mbFAuh`(qJ+qb(<10ss~mNs(gV|
zlTyx666I9KyF@9ba|nLs9VhHqAySP=dfS=kEoqK0{*I3!VWNH-YB$9tNoIA1p=Y!1
z-Gk{Mve#wE*NQ@I7o)7B^zu6(Hol#<1FBw4T7)GWzyAOOevB5h-~qCkY+b894&>|Z
zeg7R-fV@EbrgXLh4~Q<GAl;bR@_QuqL={|TO=lqBob6dLa;iF~J&R&%K;ln$fWL>^
zl#}YHhYG2pS(}RTKw6AM`@VZbDO8?{JqC$2z!*}d!<Xcv)b-<_VMjb&%oWf=0o;W!
z3WJM*uX=`gE11`bb9|q~`z$qwG-)Vsf{FJ>j6sOF0=nu>B3M(W$$hKev7AxsaCgo<
z1uX4R1$?eG9*c=k1~(B79EWjJ`Xl)^3km*Nb69i>%$OZUt}ftM^F-wDY?e(+=u^a3
zC<3>2^rey7!X&uYpxl$Z3r&i9VA*2q{8UZp60*;^b}BdkE(ho2SYUn;mcIM<cs*!F
z4L39}EBv;8AwvIgi3Qcy-d-y+xM^eZ3!l}=wH%)Mii~FYprqToUO%{?GKv@(R&C`$
zmTX%14cw7fplDkvyj`TXKc4kT4-C}YwFrGj1#>U<_l&I&mXO~{IZtfZcBi<2O)wMv
zh}#rDEiWcc$V>7UbsZvE*}bw3{55i^UYBR*A9*wCXk0{~{A02-j;FpKHN#eR^g;Wu
z^jtW<PgK2GQH_Pk^L~vw7qlfIP*jr#Umvfqblt;>zSA8hp^OAQ?%T*k(Fg@dGv^|c
zjrqqMAsz^dD2k`ACYT79@rjW=Y*K=VcmKMEHM=ZI(Uq{~GIyoWJopf8d2R3uCJ@_3
z(=(GF1)qyv)qHY<!0hnKBWQ()C4ng*$7fy#!C<GbZ%;ig*)r`jqo14C>V`g%GpU`8
zi|%O*@SiO&+OSL8m}?|=JcRlg=HW?*=H8K<f)cP>k;YdbB`qB{R*;T?k5CnP??@BQ
zObG-tHP@a~ZCP0p)_G;i9(6vNZX^^p{Ad$V8gt`wNSYw0<DdwmqggZBTfH%J1<WHx
z-1-aPH#qs(1nXQ4+yE%~b^P8KbaBFx@NCrmm>5clruWkP;VrEP@3ah8i%@bOAQE|8
z_&6&(QV8TEu;u(IkKM~I&46<T^IgDeU>V5JO2-CzW|O9(=YAD}Y!5FyVv2Sb+1ACO
z{n%6~7i%5;gaD2Qt0NVjgTx^Op6hJzQ7aCdKnY4wFmGli?{tOE+}^rTIvB!X>|)F`
ziM}DL+m(jAStYw<m0t{ee?g;(>Qgpb{BaT&<J~ah=y^9oO#cqYg#R%<y_xpcMyuEb
zl(7Zf;c66B(k(DnHg*WHOv`3efxcHrB^2E=lxZP0<~Ee)fy~B089J8Bx?Z7GSaq_F
zpJSk6;i6$9dRBU1@u0S%*$gCwZ=no>(%8+9K!s61E(<CR8`uXE_pm#<lD&f+@>}WC
zjN~Wt@T$wf7bpUBK)3x=Y%%wvuChY=Ka;lPW8>msS~{Fmzm@PxaNb6Glu_&)mS9@X
z^ql~eSDv@n+5ObHFUv}0Jd1r>neAS{2|-#6fQ4r}S?U8qir$VK4A9jS4S41Zp0cp&
z%ey1B^ZW4_uh?_5wb4aKtr_=T;lqC{ai;o`$cArI%a|HQWcLin@{G*(V0QGv9J>iD
z$x0alIo#Y0-%4*Pej!pMc*Vnt*){`d;Zvx|ZSo))Ns*OAZNta+JBdl1BYKv|<{V~;
zFg(26k$8sS*WXe6w(rG<mbI~NLHcr^a|Mu;wpo*CmpIiX*j=6yU!ki>Umwu-!?DA7
zZNxSj*pdI0oFv{|fc5E3X0;EX?~so0T5CSE&d;!*gavh8_j08m&5c*X*DI;ox0ek>
z%Kpnj;&DHmt=|U63e#d4s*^^jH=Q55e9a}Y27u^YU+g}-U4rU?p6;-_)v0f(SoTMj
z&aGz$&2sJbC#y0ZTH3gh7Y!aG^}_F6#q(yGRGPL@AeArUhfp<gx^A?1LgE9$Vt=m|
z;*<4O2H_<gCq8qunZAd?a6{U2Pv!d_q`4uGGutyf`9WkvU^`S3?F8{`CT3rrgaBBy
zVtq2{4GE=vYC?wWytN)y=!mp-0IGmtbCeodqH#5PU!4|iq+SPClvzGq$)Q5z;C}nc
znKgzQ8WQ;yxDNl$PU^llen|J5JSi;h4JhSvjI<>KIyvZs^|ohOY|%V;opL2TRhzmz
z<>|@!*Ok_(XTWzVr#XI})qLQ#3MBg9+1C6lPH8wF0UjiBD$Ww;i4v+aRSqD5Qzpau
zKHY8c^hSr;=N$y8+-3J;KYx4`$j4dBe#DRJ^95P-Ekh+}Ku(1hQqZ`7i|O~%6!DRa
zl5FP3w;V|1{^rF>06I53g^(a60BG*48Md3!f*T9|AP7-PM`n-GJ{D%tu^<zJZ4_oB
zIsfpZG_5RY%*2(*zy1oFX-H#Ul^$DzO^Rsqmt~Fj(1ZiYZ=23n!vlosmi<f(iU9`>
z&_vw9bDz^@hv<rlrVI>=R=#gQIom&RB`FPxuZ-n5pYW+gXTBh1F>X3o$!s;?yw4_4
zsueNNCuzzY<*K250IIcs<4d(3y|RoWNhoAT<%p(dPUC>6{NWA((Ut{SNu*zX+8-;9
zsIYe`WW@#dv}nRP&tB%nJOgSqdktP*lf6Q88S)$l)!v!c(ef!IA&=h0g&Mi0ozV7q
z53Lj=b)1HjcYgkZ=^R*n**2?%wfeZu{szbRtEi;%?koypvZM*`ie4a36Z~ZP=?VHF
z`eF`Tw$)B!Z<nKuzi!P6yLj}=%eZ10fHXBVg&N^q<_o+!Nr+==@Ri!^f;x+xR9QD-
zPc+SmBj>~Rx4Z$E*S1Puxeir`uGNL_X_Tum<>&&+c&<gDMechIcJlBW_CBj|40Wrk
zno^UuE?qPSjS}pZ@bOC-emCwgOH#pMdaTm<Wpgazm;_#LaBp>TbFk2H^t4#4E~8C*
zT9ohdGwU{S;J~=p2c5Lnwmb#t=0T;S7O8i?RKCHr6qA;Jt>)u-$WAbmS8DkoJCqXY
zb@bq$n?Iu}f@0&Y2^`=$Y1~$4Cy}K(Dw(=%*|i+N%uu2MA!{E{Y^Nf)dWa|XT=DF9
z=zCv|zU??TiTQL6O}2YQ&0bTZ1Q1GD8@%@!*xOOLx?K|5)H)lYpLtzcfU-&;>W<sJ
zk8`y7M+dLzddB<WGawa@7R*y({VER)WBelmQ_l2u&B%>{H}7`Ng$pj4ye433@Bo}_
z^|w!xL6?4#F_(@4h}pm5S9DS|8dB}mP-#7;U$M-D=Hwbf3lrdmTM&9MK|%cVob#y!
zk-D*k?(St_@z#QZCZoD6CB#zmKP9kWpO$Gi8R0$}?@-3BOVFKt=!x1Y@Ur`Gvb7hQ
z?b<v92B<ahfn2KA&qE;Eggv;&n#AU8yJkQ4;WIJVYuH37X*+c*CogeXeOp%g5<#e)
z49wZu_ucvndmu<W?|&;~wZ4Q+>hx9QLoLMMH6)XsLd;)_7uiiN1aKFsqZnl{Xy?%c
z;A7`VNvq0oeL4t?;xi>m5uNq$4QE<u%aV<l3asMjYt_f3F1Haxfx9pf(>9u_y@ZLW
z#N^`(xVY!)F-=oa24<hWhyZAsWAWmKOjdPZT)pvQxlq>VA)3XJo9WluO~Pog7~(o`
z62=?01#kO;w=N(dAwf;vsK~+eOD`Xa?f|byKhAi%z)Of3EJ#6eJU)_(2c8+3l}<*n
zvXdyf+<$pE%8cGzEi$R1i2edRLBeS!BaKi1#UqQp!mXf$5=!<@$keUi-qxFgCePEs
z)dw_JKJPPs;W;HSBn%mSmKxGAoklw1ieAWuvF`9{-4PKL1tfo?1W~=9PlX54BQiD$
zz+SCR($@ScG9*OhtPxDE7s6T-uq!llB&+YDQ^BTTA<VLo(~7i_k)HUpDzT)+zk+5f
zg~uElvI59UU>k!Jvr9Oepv2G{YDKGXT6w13f6Ksc%nnTGK(kj^6a}$cB9SigqWCV@
zSAAz()nucatY07>ENnQ4BbTo~C44oxxU2|X7LYEOD@VAffJgfHQe?dWx_+^)N7|CU
zW%Q~uirvy>2OEA>EvS8)eatHJ3%bL~`pG9fWEt3=+96^e^)v=s*7JuHtNbz1fc%Lk
z6576lV<IqCk$-w=8v5xomjAic5XfHV+hJr$oaCDHreA312u&h@Z%o94h8XEo#&~hS
z7jWV6GKi}tY>mYjQ%-10YrkHTsieka%#TAF3M|oL#AAfnjZmRug);$9?Z;ZX9duy!
z9{<II2KDs(qVCU{Lw(NMmH3bP!VPno704OSw<mk1Lg$HjoGZ?E=i$|1*OA_%`yjI>
ze*Cmr!s?GxYo%Vv@q^`AClZ=vV4~a#l25F&C`2^Se?y-B#WntCTJLYgi-GxHg4Z{>
z_^o&S2f0gzdU%f!qXn|NpLb{mEJWf2bffeMt%g^;PZJS4%wNr)oGluEuH}{e{QYJ*
z)?E#AA7aK=+J!1P);D^+tO7@CmPPPh*KsO=L<5e-WUo8(f~=Yr13f4AKn8m*)A={7
zm;tjzgrB*I@<Pn@?b@=UWaBE}gpA<1gA*1ef(T<Fr6}Gxh3HU(i#+>7;kL&g`A=$h
zGR$@5`n@?YMGwKuJ2P!UrY~f71tTMIF(23H3A?)F3G<K%g)>kBr9{f_jHb2a15Am=
zGcEjrC8g2#(Lu@2p?@=Ge-W(z9JBvPIRArm{of**|0Zw$ZzY=l53|dE4aR@I4gV##
zGW@UX@}ChP&UYN?ET*YO>r6b~Bg)l;k%3{K-$;W4M!oJ;DEe1Wgt?_TEYqBmTMygg
z3c%VKhkeXOWpjVZbsJ^r7TP0Dv7NRg^7f9R2J4l6;z?*pt^C-P=JBnvB3#V-TsmBD
z7h!fhjPw3c)(w@_v-AUBg(=9serqQzhW-it;fj*r-UYcd+K9SwMG(K`owbGcC9FI2
z#*Zgg?7%f9=}D|6VJ_#mYhG0KAY_uN`hjo{`k*uNn0|8CVdod*S*{7gFYrmV3`PJw
zcssL&q=EBp?n)yGPoKl~T5|Q6%W;uz@69e>*eLt>b!iyubnXBef#uUP)m^6!VAN3p
zlMaouKc8srT$k-dajUN*4vC}d%W5WY$51-7ygo|1X9n~};W|NJjjRxtP-e2Td7bf!
zfYmJUId@i#DxJ<;)1e<mQX$8>lE#Fe=kHEZUe4u??!EliNI%)*#D?~B6-94b!5%zy
z0;i2*>OR}NbUgSwFr^S^Rs<Y&yhFlvu1*(CtXLA-TmlbXG&G&*=En*1{%n>vQbtp4
zDE0F&Zl>%KjX8R4;9GnbnNi*R=>gcCroIP<^<8MLFwv6r^w0~-7Bl5S-eTkZLNH#*
z4oW@bBxugsI8XM+Z%@3`m0R~AX9yWz!+v-mM>HbDqRZvp#ICo=Y?HxJd)dJIJ9&r<
z-?Ebh7ao2L*^%%gy}G!-K`U>p2EvcsfNTAw(i1F38DBWg`rSES3mLvLYNMjayPp$y
zIA?QH^*Ji34I<$CWOEd&1g}Zq5h;{VylMo#Bur&z^TQ87Vp`qjN-h!2N?FSNtbW6P
z2t52@wRx%cBvi!|2#_47=*hZNG<?k$3e(<Uc!nKWW3+9amM2}<Q6S#B2M_0vjpBtc
zU)AUDf$ZVsHCQ6)efUS8iA5{6k-1wI4T>&nknF@9MR;AkQb;pPW_HBUQst#AoCx6O
zC0!bQb}N&7bW6EJN8~F&1mHBlboqNJuRz6VHUbo+4y!~imA1D>IPk{mI*Ts?Pp-g=
zALo;ZD^&Ad0;XG5p-U!Cw|YGpB?k+uJLT`Es>CJ>ng`iGKBq8U=dkdtb9|QFxY}js
zKnLSd+|{2RTLTa)-aGmhA;s3*JIG^im}^2|IO?z0@zZuB^wg5MjZ0w5{_O5~Hk*Od
zu{_nqg>{YpK%y<|AZubhI{x{rm@yXm8Mv#KaJ>-ZV7+kms44l1cRH@HO0=rF{*|`U
z{sn!w-)mbjPnrbpEh|{`=TC%`Fm*ajP~%HOTX9zeianA8(77|irs-wMp1m`lG^{TO
zM$&CkmM==Q!Oc&CSVcf`c4t?FjtW<+#e!>@(A;|!1k2iYs$@anPk9Am-A`5A;-AA$
zm4YTj6NjRH@zk_>BV_vGwsMdNDB%Y|z$rt4ed>18`a2nwKfWe@6|8e{i6CB~lpdFu
z={PFiggeBVO4>$|w=oNivAIHbk>d3VcmA8%p7p<-n*K&e)_(yc0}I<XKr;OMe2`K_
zJ<RZf54u7*yedB)aYoM3w-kw7Dljv(gi?_QcM?=rtn)G;cR#@;$`E0^8G60RtkdX=
zqiZ@c)?l$4dz~#s5{vDsXL5z3mor8`0OC*+M1R2c$fR1!`C;j#>t{D?AS-<~*s~OX
z@PXzA=R88IB$n~^nNa|nsqvGM5KK)TyM=prE=iEEmbw9jrg##Wu*0%hjOrVVf-2~L
zbLIa_Hq75R_bsUYjavU3dMf+(@X7z*rKkQ+xs*<Xm4NYY4f+3ra{AW@{J&!x3j^bS
zDW`2JGnjo$T<VCX`S99XH$SnKup<Hz3|@WhmM$ieg$C%dsJQ^twDcKypsZW%kQlic
z3x1axb`BHZR{I#uq{@@2E|YyqKbab#A$yu;$I$iafjY)$JBW1ht}CQR*NHec!MmHC
zvWU+~%rgVq)VouS`T4&TO-%q^rVPlX?EP{((X%?CgJ5Iu5jJh?+Tv80-5!mzt62}!
zULu$3d1BYJp4BO`W4WEOf=z^1(q1AP<JRp^5rjnCvtNruvvC!<iB=UFuR@fgL7~IP
zuzd<$YH`Fk=D9dyXB6JJz)D1aLAHWl1AEYFX*5>tA}_o#SwPf8Rq@2X_pgVN5f`gF
z+H}cP)KMxI9@d}EA{M52eVYHpio74Vm^#(_GqNFo^~=EA2LMxMqHMfmO^lh&ae3pJ
zdzcC;Xk&@L9mO#yyP3Gk@<$M=;HF`-v=pf@(LgEYv%IWEx|dOu{Nke}Ch{3(x9kR@
zl5x8T6j)dQ7xHaedmKtlrZnl^TDLlzd~-Lbwdo15dC@tf;94`$4Cd{hunHhO(do4d
zUmP@G8Zsa>WhH3gKNg+RO-^fiYgiw|5rks1xX~H+61FPIY*=r9cwoX5M^giA7Twfh
zR7jT!tPFr(P#GD-8oFK(enDSn>HK(9c+}ujBwlmd(=fU<VawaNK%R;qvPlwron8%r
z0;B?z6Z*k*<z2ZEWj+e_Q|F8KcoGp634Iz4_`|byWTB{@a8bEVh-@DrWIv7sRqzm_
z{UZoG{fAIy2usi!<(o3wSm0V#=Ginkoe|psq6oh?PQ;(mj?m(}!8d$|bKce{ma$GE
z2+DGUO%M25S(59q+IfC8OuVr_=Tl>a59PIN&tYwwBR$fO;}5&WeqQClecB_n2GeN$
zm6sED&lWG7#ug>At5|~C3qY^RKz9HUSgF}nfZ$`gEFHjwHk}+L!h_unfrbRL$uE8T
z{zSm|j)11jE>#k&ug-*FzV+<I{p#;zo!qgIc)ssGW^=Cs?o-r>uRlE#GQi~GM+MQ1
zkKwxyM{*R4On##)UPqSk^-p)U%JC~E%SHONR+he+pE-=xV<o5zq$Wm3hj6P$_BK+w
zu@lFz`{m>^iz5f+$W~zeP)OZZJ6<V#N$QN6_iZ=XdX5~V2CMxt_m*mLK9Ym&I%9@y
zRq-#Ha48A!O;Bz#w(1o_%Dt>d3YIC~ZvtSVBcgolzDqm26z|m6%nUT8vxEW4GXq(m
z&JdUne8)-u6#uzQ3WY4n$6U@)#hge*YL^U0(6U&&i24C)ZCf-o-i7)5@fIR~a+q`+
z-3v?`q}gnmXt|BmRdE--Po3C_P)tVhw@fQTf!<0sTZwyB#Jx&7#K9;96~|t{oiiTX
zdm!D`LtxP8i2^&$aDR0T-j{D5%QP&tdwSfMQ9xA@4OAWL8d$Jt{MG!CXE0!Sj?SyF
z>J54AfeMZvzC1U&GH`T^>nItQ&aNn?S0Q`gCa}=DAHh}sOc=K|PC>qDZ}3D^(unE;
z7q=x}<Vtty_hZFt2@$FmfL~~*>^`J9<x}E7xMQRi5GtbA6(o++I(QfsWuALGs($eW
z2_t<$YQc)lb${Murt9^AIO=0gc|cpc6oSe+^qYyp@vbd@Na?4eBZE$HJr!i=a3kFg
zId4F8XPM(+Densy?*t|8dE^Ce2Vh3YbueV#n*(Z#2)g<MJHSu4yGY|nZ)`Cj2k)LZ
z==(I^sQSCxanYEt5UAo3O-Sn+$)56k8>3ltPzYo+C?m!vzr`{G&OEgYX#XJ}{R-hC
z{3w%~xKzkk-W5VbnTf>+F<S+L4G%pHWcI7wbP6#nb{*rfJuXo5_ZEpyz=f|}oP2`;
zXo+iM)A;@LJ?doz^1x>#d|+C=t-`{Kjcsz*EmO?61ieycfHkf7v__^**b;W);Od3(
z$L{{yCFN#~sy^wBY@>2atV$Ogww@mudqb73_-5qqYz41KH(;VvU)zh<%MT5|&b>8!
zSCl%xT)Fq;1pf`_{*|)xpV8u<FXXID{|Y!*7+C%aI5_@&#BrYGp6-u>4<ea@{@7;N
z<bFay0_%4s2Q|WgBAxL@o+8=?0!JTAGi9Yj_k6xEIL-|CGSNZkcCGs{%RqpHY22>Z
z#Q{}Y{{a|JP)Wed;y~2E@;0*BImi~+|3y0fvv#859iCw+kfi4dcuZ;TW|T9#k*-XY
zv&-xdky3=1<heC<0U41yGI&NVdKSyvX5d5betSb3od+Y{45pLS)g8L?yqTgf{KXol
zRMyLhBKERwsbRYF&TrW(UOrj6bJI3`cDZ;8f1S`$;MT;sCbmZSlw;b3Mf=o?M^h?z
z#|)B2w72EqiV;q>zng^kMKo52FBmNtUT}wAP@|Nxg+8@@YW((4u02=EsL5^~?aNQR
zjTK9gEVGFE0JU$sx~e!`=1&QRBe4!auDq2(ryEFSa@`n4h9fav_3q7H!#-%<^3krQ
z8#o*aLD3x~*)GJ=iw{)W<(DcdP$q;uW%DM4XX)LnGVh(8nRz#(|9$Fmd%Ng8u1ltW
zy&f&yp%QCnQ1~d3^fGQ->CirGGU-DL{qD2J;~_xNOws=2yn5&{i4;=G{(=1T2m7O4
z?hQ6uxfs6F!vl$FQIh~&jg7X3UQO(h-J;JZ+W2J!mM)QK3L8^%Zry9g4%36r(apFW
zA2Ity3AsxrFz`zRAQ=+?nio4v1uje-W*y%Jg>#VQ=D)ec82-wF`+pD^1Psi7XN~=D
z1a|*SIs5-Vf$@JhocqUh|K}(4pIiki8~uNUbGreG*NKLx22VY&4(lOCqfy5L{Vx4;
z@ru{6^K)BKeq#L1G8Wgu;+ZjX6U|wpuK<NG;XVetz(L5d<@xMRw>~An3BJZk`-D5|
zrZy^TaIv*@S8(2ZWMhm?p)iU9gXDpZPH;)jKOoR%6H%;!F-O8qpD2Q=%o_6T%w1S$
zX3trN+^hEAWrVtle$qKvDl_{EZtI(r&j%It2Z9hr2hP#fclSFV=<0Npp9WM~L%0cd
zzbOb>2F-6N9Z%yIz^d-_X}CwgwsA-+%p^qo@jkH2b;J_Sn;dH*mX~a|;X`nCcd#}d
zFoH<HK73tZBjNV&*2kHhVIdRljlI6f+v*z>%f*yBE{|MJ;Sj&DQR_&9{&|Wp<mW%_
zQ><B(f#p;O9?`UZC4N1$6+JM-j~4TA_P!aALN4zK@IR<~r{K`qZe1|8ZQHhO+qP}n
zwryv{$%<{;cCupiI%n^{_kZ!7eY&grqWf-M&8j(O)id7l;2j~IBIYi0q`%?kK>`gG
z%aGzHLXl&NaTxIB-+T%{+qd)CoM(^cU3yA7LvWqajm8)bCnI9E%B)&=X^l-sOB4f-
zIxA)Y>D$X3Lyxe(l4)c8Iu2MOnJWTln|b1ykVjV?7p+ju;P0MyY1Cpin*l0mQ}$7;
z2E>gekQnb*qlo4tn6g=GYMy5g;9h!b1<rQ)Y3{|h2WZ7Gvj9c}n^ZN@11bow>u8)P
z_nbz?s8N5C+=9xo#Cm*eBGh#)c_{{K`OrrUZG6qDsHK|t0DO~L)l&{hT47_}hl=!l
zhlIZ4Xw}N;rL=RU?l3M1uu34xoVEAuID%!6&dK3##pmVbVU*!1XKi1MSq+b>sDun#
z#DLtOl5L&CRb#8-yQ2Ip+B;vdJ1X`6RC;233VFs-UjZ-aS)(l3ksFlusLjKHDKgFQ
zGb@`O%FasnX&?&`u{A~?UbBZ@F`;`zsu1nW`}`9^{P%9p{|rJf{;LTwG5(LKm-(N2
zkn%Fn##eYnc&W{gSk`Zfed=uTF7p|n1^||6;+LTQ!AODn_pP%RQK>oYR&g!L_#R=q
z3YbCXkaiJGu1#>LmsS@wcKmuDU&WJ)^UH6`I*wz2o;sO*j#KwPJ`zLY^@!D8N_Xvy
zG4{=HIXju+vM1Bmf+>fF>J*@Qr)!l1Uq!N9cPpP}Qmy(S=%YOQ-LQ8`n5D174HOi5
zFK|M&egS3O=TMwlr@Kwk-CNvwrhEgARK`~0S{ozLt-}qZ50k)`6){G(qj(~}`SD4m
zZlTTDWs!lf*gOBJZvRH7|7&Ds`5$An(*GR`@_#yb|G$r{|Lj5jf0-KopVj!^;w=X&
z%YWhRTJe_PA5D9l#4izZr4Am9av-uP#V~Y--$B?e2%;gl9lAZfC9qs~-1|L%@&^2&
z4cw`_miYoFU+!pzq6Im}HgTCgp0Rd4N&_|hmS;zcUM2<IARY#+pI8@|t!mNZZ{_*n
zK9l-~7sxUh70dhYuZsgGJ+%5vb71ssX>2*cOUieFkx7pn-Hnzuw!%|>)M<j<f?mC)
zctK%<4|!&!ByTX~rnxvDa3*T*yts7_^DTQN5Y@rWR61WLXq$L~g4(`7VysRjbQ0<}
zLI-x!rrJrn<E_GjyD?D+`rHP!;Xy<P;xl0gxe%`l6+7KRiUE(GxOB46YqdX_&XzxW
zdIqp@othl)8IWU0+5%KAI214>>(Z%Jo8AjHCF9=Keot(pXo+1{W2`YFt%S#vxx<K)
zv04^bUGkA3*Ofuc&OF>a%kmf)k9d;1x{N4T&k9_tKLH|y*{5SiQ97wjCHE<olfuz_
zx9+#)1-6jhJ}+i_Ty=wT+T^EN`+Zt}#3kog>oUEnO+ck^>f7c_SAJ_2CyZ5O*9hnH
zV(r#i0uBuD4Fs0z4(&n;YseNvn-*&Z5LEACxl0*>F)CF}pguUn>l-HK#%!6a!jKsA
zACV|K^Tx6&kbtR60@37-FH|!R#aolN$ZSQ8-V}=WLz~vpm$A&%ARIpf@*&J|DiLTx
zL06<L<={?!Wbie?d|r&yrchcxRV7_wHx?L3y_Q=4^vh4mp}|wPmI_YZ%;}1m354Fn
z3R?puy^sUe&(dTt0i1mx+qmah;Q;HKvw?aK5q1oWD2G(%wDA7<<UJ$@nU0Syk`mkh
zWi(`;DhTRApbrP_(s$F8OoSZW*S+;4M5ZfSWe9R&cl;$I&}&DAJ1zQQx@K8yZzYO)
znq!B6IZ5H7CSU>kF_zPb%JWb#!Ou+`U<BEX7XbK0WymNnEa|`O?H(CI#sF_oAF}bm
z;CsRIS=54Tm(P~QNRzI#j1e=zc525*%2gWVkgTNJD~izH*#C*dLeFLPy15bI8NPaH
zVKdeW>QRsGo2i0oE>pt;XZFcAGVez6&05|<nrP|bXSE)R*4%agrJkSoh#4G33FEHR
zU@UcVRgikI>RDHy1vuS&-6r#>DwE?()4Kmpc=zAyHvc)TF#W4fFtRcIujNB<ydHv!
z*Qg$ndv6VEWi`!cA$STP9l{3@DSNOYfpk(#@Um4v4QT{@NmABYj7@q0RiGMCt8jv4
z8?psx?43CGe4Gl;ec&@V>iu`{TUAW_Oit<o%flJ4l2DlVL5DM}t|a-+<O@I*1%%eZ
zA(1C_@a^$9za}egcdQ|PQg;QG-z`PJ6gX=s@;-@Zv-z?)yx193ctM3~USW}aHSBZ@
z-~UvAe`AOLPr(0=)W!duqx65Yi2uI={{JR)@^36Ez1ZJXg-rkPwPGB9AOC|L7UTT;
z_&=-m|A1y?{5QJ#AHtjec`j#SV`clVMzPJ`nzS8x<p6*UKnl)Z_cxLVDf@F(p9Qfu
za6?5V%Qk?uFM0CNp|r8=U+3@GtTB6My7KLw%ccmfvJ5Y3F<$PYxqNl2_d*-m+=bVd
z)%xIhABnw&x8@%BJ`l8nBvHCf{*e$i*eDiHP1-C<NgwaZ93!5&umR9hMo1rfNE!wo
zV4;0v^($SKIxc*AcJZACVxd-Q={7T`;%(4V(x-L!1>x^<u=JF1;@wnK=dMPG%%%1g
zFM$YBzxM6mC$y!{%STL0db(}o)qIwpj}zrS=e3500>|YGZTU<n_W9DWYuqIYB@6iL
z8Fn2gfe61XrbSV<&&@c~F2#)RA=6sAi1t^24lby3^gqgMGf-gWX;LKu_vMtWz{m<d
zV5n7p*NnD?kdGQ)*Qjnt5tvTc-#sX0LClTKPJV&apAcWjX5^g0EH3nik!PMN)Rc)L
z;eVfWi6+#*m-RiFgIvDeh#U8xX(<LC?DkrB-ta9C&t$!Evh1ve*54_?wrZ~n&M{w3
zco2%p&T9y$(>Dn)PDGDKhVEI|9=I(_7EZt14voWxlTT)F!1+5@CfLeVV?68HRWMeX
zzI1fPlW?z<X%n%~(ztt_F&wudq_HVulHKDz?*dO=r~(=H3r#QI2wsn7b5Q>}_7~HQ
zQvB5LD@d#mS;<Dy{q`u=9~!m^!MY{8|Gg|e2-&Y12=8j;(}8|0)TnnG@1-D=`-fCg
zAZ=9-;xc3GVN%K>V&G|lcz4f{DK*2VuJqcQJ6m=EnB*Qx4&mC<{_=!!y9Sgm!N{HM
zYplfMoJhnSJmdD)rw#)bFRM@j2UE+UpnDqWYp`CwbY4>pFQpqtmd&7Vff-4m#q8<?
z<fzO3QLiI$#*5tO%qG~JVO+8Edk{)zrKqz!r<!`bE$7>3df4Z0E_<jT%^yP$m1x%q
zvwbGIS7tj#8sGzKs-R0On4Hd~Ml3H;l5aEO@vmF78uu-ZlG73DU9dUxDzijLTgEcm
zm9`6S2R02tBI$QQ<8#^=tNM_E+VP=z%#X(4--djDWPrx+jzB-Zd85Oix@yh$Kgyhs
zA{gz<wE>Q1<l@?J>FXE`IjVmUt2_A9zNa~}v8&3z`_r#4IDZP$w>{E@tKi|vpS8VT
zo)6Df*pQ?czS)<9xdzB@Nm+?F<+h9|6Dy)Oq$AeC_sX44dlu9<rnY<{87;s4RpQNg
z@W&_yhA^dsdi-vA$&T^mA1;crplS6BZp1`cxjr2bW`o)~5Y`eFvAr{Ry(m0t4xloq
zh<(ajis;RFHr1N4&s!aC#b|jf7G8gup@c1_6+Vt}=lXFq6mgVEI6qm*E75{N{Tz=9
z@W}5=2MaG$z_T*eeZxTzY`%_OEvsTH60L@l8=O|D7z0Ue_+Q#Yu!J=1JrJ#XFh)3p
z1f>w~;%v<u5?38_0H=rvDHy=6Kxb|?Gk}*e#p2(7TpPN47ZLYLVzy(>f+Z2K>*zaR
z5v?tN1M@d)rNTchzhTt(Um~4|rdXsQ;BB*uj0-}Sm0LTJqoV7`kM)az+6p4emDUc>
z>F>=HWI``B`X8trPj)7&@eY((5LRV^jtapGP@uwenG%)Neol=4BA_}!5dN}dydR^+
zxbGgua5+^fmsXXg=d)V>V;vBHpy{^2aJsYKfCbBIt(|WjQW}v_<nb<a-AZcJR>?${
zg5?2mao!&B)W0==0F9V#>|d*@CjmQDIDQ^bPsNa*-5V>+7LC)B>Au%{3{@`VJ>yM_
z3;BxHftCp{#Tw>kAk@}PP0N(Co!{Xj(tTnL;G}w+(lX8LD_9)|e`C@BO1%m9vcWE#
zOt@M)XvQxrgCQr9HZW7)Q6~)R{L}4s<dBX>mKHlbdPOy#$G3EpuS^;PMnYnOzwm^@
z-==d2RRF<bfG;qtYFt4J^6D6z3j&QS_av*z2VLn7AT1U=0r{%U9}*M5FseaIyobSl
z+)UwX>X~~84f9=+_lk7wKFBUYktMYkEDTqYv|8yLCPKSD0DPl6u{N@EK{mY<AL_?>
z*|~XN$SD|<3>P++f+#csCKz}+$+$#Yu-w|Tb0WMfM{q*}-kW0sD$~1Yjy2SNDajfA
ze#?IhZd;mlhg5&g`MdEF&f(m%t6R~VRd+bH32Hgot1+IuT}9zl_w}NFUgu#Z?Lgfe
zLlC`ss&Q4|5!u)5{P#kXywK%ANf<%O?B9fhvdzHdXTUF&zC1qV-<aEGD3Cif37707
zkJ0E0-@~(`i}B^3O4Wpwrkr?Fw6#O`8dRJp;C`*YSFuW5PC)i`LfLIvk~w05E{|R=
z%v=R-qnk&L!P3v&tbaYvJ(OC>9wiH^CcDPzsIC>0ieft;Du!SpuaEsj=+{(>IdzuY
z2wsaCGnO8OTr#!M*~v_Fs2y$o1QH7!a^kxIKeJZ>q2I==l+~}BT>22xjc-zC=|-~L
zHSp^t?Aqp0q?}<aJaG1$6+CmE)AP?@w_tXybdARR%o^<M(k^Ol=-*FDjm<shsoL9`
zgMCCCa>eA;jxtFxBzQ~=So6Fqq%xLmkjN6Q6}b<EIfb&cEYB2UN{4QupE}(o7{=@v
zuTL3NcKh9jwFkrCm0?-tZUI&xDW`|#u4Yxt`gx_yOD~ueN;hHpOo7sS6VfhiS;d%j
zF&J3Ne(AS*ey*(y7NA?p9Gq&Gn15~yNvVxSpL_OLN}pi%1vw7|gz+z^ey6HA?Q2Vy
zs*zuuhboI+v~ac`%_*NNwIrqK)hBOEQ#b=*tOZB_0c04ofu}N<CkTU5oZHK}9uf-5
zucnC|(B_K6_(FX>UXxg-WDZ8q#(;ZbzTloOq4pcYbKzcOxj~sgRrbw;*7{EZnX5~X
zJhL+@byB&YK196AHhu)0QdF&@pQD4p#klwxF$@zgI^f{Ka6cf*81$HsXmi8Fb0=i<
zj#jMf8B$ae_C=`YCB$~K=^oFyHYT3P_-?9rdJf5yXF-U5kVpHamJFg<MCX#z*SPIU
zEw(p=EBPI4>s70iN~q+-t9TkUw=MLtiy5vY2R;Fb$DS*u7P=IG-gEkLJ(QiYI?HqM
z9-~@2f`{#zyunV2AW3GqPyf|7gb-Dz%5^NWnewY4t01jzWo~pgd4rQPmBenrC&hi$
z#{)a@v<O$dxabyf0`I))RTo$9KWpCQDPOlaNXCNsV1ANL<D7q%m{6S7f5z$x0=#4^
zN#9Ykp($$c<&6i@jv}((;E!#Hpmq4W-K!j+-l~uwK5m9lUeB@->p=j+$-7KjlucK+
zMzgG`td}4I+ANO+Lr$HJ%4m66xb~pae|qh}gT1r&hkZr%4u!j7wQ7VH3eje#c)ctL
z7I5G%F|S>|GMrKRT=HAyj8sZb$MFEn>RbV*j0dTAA=J1`shR925ct(M63^VvgLZGC
z_3eIV;-!}Wje#78(P(ttZ`+$HB=5>>DN^YQ@u^EihL?DgQIgG&a8X?Mh|{<O2~?#K
zChp|>e7;S@>B--TYO1sMl(3ChYn;8b7I_bDBW1M~{nNzof6)%`Ux(Cpj&Nmi*B}*V
z%0QE-W%Yl0=YKC6{fm-j<oK77laYXtk)7?|qT0M013X_KXcZtg+r^BuiR}4)VaRbZ
z>vZmTY34a%&WQ3_Kq0>doYz{m3F~%2MW9T&*3uK>L=J^mHM|L=w%c~;H4S2pW#bXR
zzjslR{Z}VZ`XW(G#2$1sh-H`f!vO&TYPE?3JONPmdby=m$p(W>#HdMEAAReCGpl%8
zc2)t^VGHyhCX{uQ(lr$_SB~wzfvUE+dv>A)-O^TzIi+cASp1OB;N#^1eCTfV_>|kH
zG~wxGE{1eFfe-{#s`Eka^h2Z8%BQ5@a=@on(8w#F2@p|-N$|#15Q>Br(n&$!d}J)v
z0t%dSs4LGU8~s_NnWL(LGm(3xeow|ga#C7ME{Na^9g3*^wHjm<0L{6vLq}0~^3IN^
zM5abdV9kYAebhz@7H`^FIk=NpM@^SEXd;GreqD5Nj$_!YLq%NT_Yc1)zh*~d$PXN~
zqoOXf^opvr86XCD+K_2sdRrG(xGL60inaArd$z=zn$n9ZB%VaW*6zQsKXk)~_cO4~
zC`!aF!3ry5LTX`AZ<wd0S&d<lANQqKUlbI2D({wLrq8|$@-joX)d;^_8P1+YE8F5j
zGZD%vCG<}}2?+ZB5gOZt0*bvR1&PO;{%99&Y3<rTE0jq*+aA1MvLORQXgPOm)jr_w
zb18@k1XI1{#5Zv%&dLtiHKvR2sk?7Kn(61wlzCR+Y*G^S?oR+!F=El(<?ILM>#4(p
z2-5v=<ih_nh9xn3^(7E1DbjesEjR0Q?FN8#bNikq>Qz0QjQ7vS4zl_2`lb8XVP<Np
zeugr`7F-}^^0DWPplCT>)p5-RS=v;2q%A!=kBlT??d{TxHn}0G2g-G6@pk!8lqxE(
zt<gC`y%eNm>)y?SfBrI-eYtx3BD_3GMpQ-#x>E;YsgK$NiUdWy3UJ_VX{#BD+ggJu
z+b*6hhE6gv>P#TL6sWMW4$X%YI@>C03_+!?VcA)p#m@7~luL)hLa@oW{5+~_)1WBo
zH(Q(2!r4|hkxDBS-|%BqHbAz{&>^}AZ5$WJhy{2w5^?2`<ez(?7)_J}UWWC>Me<Qq
zWXhlwVPy3ji;&Zl*2v~3$-~p}5WOU2vop;`8xK}!#xKq^x-+P|k(S{^XMxF4J!-gT
z<U7rqKpU<<IaSdR?0VcsroHQwQLNC=ED-B~HW9T_tX)nm=?wr1RE_(=1Gl-3yQ-9C
z&2EFbbY9jP6=1rot$esW?LsF0n3f!GN*5JQsRo?C-LsY^25^<F9j*vID+n`BqJMap
zJ46iw!!V^Mn<>gf91r9h_|IkYmlt8`Fm%@&g>ne}XWU45%A?|u@f5&?HT$3O(CKwY
zyAG1vz(A_F0MlzlzJDnpjIy**vPy%)52gk=VZS+x>1569o(WgPD!R{i6KLd3`pJB0
zZ?%xM6#&9-&|YgyJA8(Fe3$fAL~C`<m7RH<^01mgA1MnJ1Xl1%-mTM;(|dy2{5;Hp
z3lI9vy?l=GdHJjaFrYLN(`8TPJPvy{xR>*_XIGAbgCUC%%0Y)l^ItxEefeUkVJkB%
z*wjcKo?+)Tqt8abu%2|V)?n`>6lF+fqHm#ozMVEvDh+3|p3=6*zT##C&^ndKgdFXV
z34oZTQRVVvFcOf0C-hDw6A4zB-F;yKbElx!9%gsEWld;%6o4hvl;k&ii9!q<9G5P?
z7*i>1_C}8{6;aR1i)sGa+6p>ch-A=0L>=UH2>`t1U;s`GJt^ryO7Rzxt;HygOO+2;
zv_#Y|Xuc~A!;m&N?CohIhw#`Kd_0R_ICK&w^DV{d?E$7+Gc`FIxsQX+h3E;lff<3g
zVcOUu=5%p}*c!ChpnI`IcwwfKVC0QZHqCVugDtvGBW`lor@bw3U<&gR>pabC)5#G%
zccX-r+X#zSTrM$Pbts`p7koX}Go(%{kKwa3j|3gc$k;Fft=w+KYB|GyD}ve=6S@@a
zvW|4z_CT>BH6tv=aq#M;+k-MRxD;*jF^(E<iArUQFdFlybf>cVPL@Ify6BXFHC0Ch
z?V8Rd2+l1ALfJpr36HI}MPY}maYd4$6hk;6m4ZOYwqN(OD!FCN%GMQ&u$C&SUnps6
zhXj;1`xrO&k71Y+)?lmSl63|HH2t-}f?2@u>%2ysp=q3?S=}qTHVQVQK|zwR2O6fS
zsQ88J@8$qs(cn<>*o2BhFioA(Zy0;XC^!<9DWT`^GzbqP{O;@kex`0d7mO8bZmEGQ
zTm#!>yhDwvhbv?60Vyewl@P{L+#Y(7)qu`B#{eH0BrwXzt@_MCVYl}NqVZ9u%asX)
z#J8Z3YZ!P_pI#>T<6d2tcM{MBtTV_c;%7Jl{tCLkH-`AbLw(canxj!7kX&f#oTI)2
znIlOY-YX5ook)-+27PwPsD~P59vk>tq<?Cc`UT{Gx0KfQsU%n)LrR-OUJw%FhlX3M
zCz`yQxz=gBA`~gCWUqT5%pgJlvvpl^96AfW5rZXN=)M{s-12M(;%g1}&E^PQAW;uY
zDbboU&lm_d)8h6v8C3Ws@Wb7bIXOG9U(@S2&-GC@h8~e|5;rU7J{Wv56&-x3)L49&
zYbICf_kQlewzE(=nzoUKb9#n(x8-S{R(a?q=j=L%EuCS9-`z4?-+Tu0<LEvW(UhAK
z9A<mjG4VHmm9(qA$YW^kh~g}kQr$RA9V#{2b4`S~1jOCY#5UO35POfJ#Vm>~&-b%X
zI&fsd_XB!_3*z_bjpKgN;ZZvMj<cmvjhtooAJPFL1d*efqh6l~C`BM3S=1SA){))-
zu#GSW&C?I~D(G*1UdEMu$vEq4vFVHU&yf`hWF)k)q>R3@TEFC=<Sx9_O<Xd0AjqzW
z#~DB?vD|a^9p{_l`mxB5T4KiHT)+C0I*M|+9}<jbno9ljwA^03zN5@giCUoJJn~@v
zEl+<rPcbQq`p1`=Ew-ZufU{SwKT(||ptpyKa?xvc_36|y703)*!|E(nb<BSi&d=HI
zV%xaht9M2R$|k>n&mcEFE!gDhtll*zW>soP_Go~wr;lQ!^nL1hT-VNr#3HsHiiw(R
z8<tW30y6_W(c4L1jSjvU1*VP|Wd{xZiF$X&DZo7EnZ_?(1V)A4EwHt+j0xA}Tqpva
zhWJEu>zIY^$9ddRf?W`Tdci-EwHNGJ-~8+EC2~|(wB9az*C6$-zehoKAFf+i*q>Du
z3-XQtHgXbNwr>#BEO1kUoc9kJs~xNRw~6)5_SIcIX<_L$j)xI~ePq>~sCP)dw)yUr
zO>hN1okWSV2bhF{p6(0X&8z{IIjRMi@-iQOt%Va1?-P;}Ws#$=8fF7os;&})K{wbC
z1#oZ+8sMhhV^`PPl+EZ`cS1{Bvdt;67_bGk<xcC~Sv7ee)%X9*hu2)`{@y0FUL2wj
z$LF3eYMW4ZSoGMzF@9?(DfrCmE5&~fL#)(@G=H4oIRk=uG`lVLQs;t<?lg!Q2=Ia4
zNUyfL3w*V;nOHQ5YY=~pWUK;gd`pL9b2E6VQ7RB2pYnM&ppJufC<_$y;4GT<rgy#q
z*Eel_QlGLeMj}ukMfG5WgM0(zW*ieMaV^!rjd?)`HJoKfe`@`^J0V;%Xcr<k8$&$_
z3C#dtfNgQouz8W%V(c(F`OcFOgf>;A#1zEGi_HKa^#HoWW{XrdJOqai>MB<`Q{b~2
z*xy{a6dD|3Eb5xlisaOKjZSGE%O|(pgt5~H9D^y^Z7k6~?J?G-$e=u0p|4giPRL8C
zC4r&G)_|+GSs2OE)s1pH39Uf+>$qR2)ff@8&qYSYz*Daz=ZvZiMp0fK>#j`GqO<W*
ztNM-<gSu{Yp7F|(dp^5ol#~2!LcFJ|Bj3`zRfcHbi(ChTOMFSv(j}#9%WgEaW$;FY
zGPo;(aIxl3Id9QB@GK~hiCs=tZz9-IrF6teBA1nYTS37Q4pRL(*7-RGuG3h2N;P`4
zY&O@BoT)%;d0JDrYTRgd>;`<m?*rSdHH_<yF)lT#9Adv&8U{cdJ+{ee)DD(`Pz1%E
zXRYDs`^x#n3;N^kN&sc>)j5jr6!v?aGb8tLpQ-Qb<L7i@qDy9hZX7$7)-xq}k3L&K
zv2(+^2D18JNlu;mC6o%#5a-zCu%!GA8P=Oc>;8Iyj-w(zl$5~hs2!3GqQaAG%3wtZ
zbbf<(G;}^p^&X@s!03&q$i27Lf`(1E=J3O_0o$n#7chBm*L$@GonA^3sxrR9)nbXL
zgu1ZFZo&gPbc3&CU)SJkH=B0g%@;NkW1={%IhX`iDs>VHi9bYzIr8daBYVPU{2jXl
zfhcV|ut`OrHW?3mv`0yP>@u8ni{&;xC8jf*&UV>A-IHy1Yqp0V<%*+;2yaFhqG6B}
z)&`|UR^I_f;xeFLyqumVtU^>Huk;Ne_+4+QtGj4p0S+dDeG;4U^b5lpB>+H=lpF*x
zIb!<B=av+}oP}L+3qi(poj*f*^goDvO!lwzEOQ6KiOKlc`nNu;k0JH00=izj)0ju1
zBQCDqw}QG)5|EE682p#t6l}})Y<Mz<suguG3M;?&U6Pmdp+X&oW4nXO7gk}-P*J=o
za#5`FHjOf9YgZt}M1#VCx1<2A;tmk{a*;xle%iG=&>8$qrJ$>JARFv$l^gGZGQ<nQ
zFv|u{hHqKSW&QLAQV79E%H(y*<f~W0?{vWYwRIWzN~6eNOHN(sD^y@aG~L2Gb-v2@
zJ1enM0yL-00VXgw<?I78pr8@FL^R_79~;GEei7Q_rj}_4HiqiSr0AQ=oWh7QLH}xk
z1UKKdKnKX)Opy$H3Qv&+6X{9ER~gjRF($zc$U03kcK<zqPO9N_9%rTDeq#H@j*cj@
zI&v2{Y9{Ho8lwMRHOUzoi3m1r)>oBEIkDIvxu3oc1K%$t*TluJ{y;sBEia;9hZ%^d
zyBbl`OP!x9a1tB#(zwtFjIpO%ip4m5&83=4nbbEm!RMm?^0*nLrh}GT?e`sVp#wNK
z;}H%kyNx(9Eq&$Gop1J~|AxikAbstpWuWhEohJilfDex`1%`!)g6;>rRp~#nQ62$k
zxAU#0!geD52@BBDMWP(;#BsGVNz-B46CgzCw05{2FMURsMoD7Ne+`lz=^xiGfe~JW
zRh<fHeB{t%DfV`N*$G)=^a^nJRF4F9=KP@8j1CuHb1}93^8us3Sg%{66V{#E^0Tmf
zSs!C?ZDgoUk0_zH{!MhSll~YYs-1$EYXFn+Ms;RxJ4V%W5BduNKb~F9ftz3?=YY_#
z@@G8{2!aMUqg*STN*zxZplo|Hc|y)j#kp~oyV=0K0AF4dL?eJ!g^0s`ak$2Nt!+cw
z;fTL&b{(MxRr*mY_9G3wx9G<xT<0T0;}UPt<0gz|xPFpqe{tEr?*<^k>wVt0(S1eu
zJfe~A7g*2`coi~-4mWe4I+*^e|FTi~0<n^{PGhQCALMvsoc^DH>~5^Q0)v@n%EPQS
z`aVEGOTgaWRRu1b(VT~j*X6NZ0(=PM<HR<<KwQxheiFR2fxJhVAIm1RYOdP=sR^X`
zx~!p;j}MSZqFk5etBs)JDEA_B@X-|wsn#zI-<R|I)xF;NEP_|J#ku#zPa3_x?lL4J
z(qedXDnDX=5|*NMgeeJSX;9W3k`L)sf`zGFtT0VJ#`)@bx|VSZSq-0(n^8YXv^MrN
z?|Lij_@o~W9+56#l+I_3)&=ksH2*-{)tIbKvXWy@eaBX}7{yS(t=BRCY{4qgH!R6T
z=BLs#UmV@^jyWxR54VPZC7I8D0}69KAfsPI*&o(D5*ku9m;~Ahj~#$ecOoOK8ZfVa
z*Ko{x%5S`9y5DUXZ~FBHW9qyBtvlRrpuV#+>Jz1O){dysu%b>u+f3f&N%5F#UJkmu
zgPv{t#rjzae<^JW-b^&g<}A2eV4IyVAP~Xl5iilQK|ij($0{j#>2<7YMHwP==jwnM
z5oPJ<vV5SJg&*E8x&0eY-E&I#xQ@aA4vD=tHRu!HcHZC?7M^gcU;xIzf&*NueAj&X
z>MZ{Ob3(A6`Jo4&yIX*1;U-LuP^{NeNJG*|d%v}^5v*eD*aF4%$rO}F{U=k#4=a*2
z@V&Vn4)#?^f^TURqgJ~sUy7Qxs0gh0#T1$7!A(wP_jZxrxn1fY8->Sj5!UU|+znFN
ze5<pjQFu5a8ib;HEiN2^Om2k0X_wLRMhPd>0Fa15zMad}Sx^;Z-(`KQx*d{q(ip?T
z)<A|Blfa^vP9ThuMA42j;&w(CC&SaiqxN;`bfhXu5PW0aB*2=kE7{wI)Pi;9#5#8P
z5JTdC7DD{N#}B<Jrzeem;G~G;&O%W*E)75uNbj%7y|X^6lgDWqhgzM{`xmIU2UbW5
z^gz}WurOV%q?->^)wt0I7P5kJa%gq@k7acSi2*_JA;)8YVKcE26Ry=mv_KL7!yJgn
zA(@K#`)RJhTc#_w9Q5&d$dc;_2PN=&hqAtBIoV(ZwJUC2UvDB|TYbiXrrUOCOx}$|
zw*f;Rq~r67Wdu!`PCT7P%UQ%HA{VVE3Rpk7)ZM+;gXYg$cD!ibs%Uw@dT0CJW`{{h
za;oN*^4?BX(c`J#dT3~)%ET0rMU8k(rK9JGx1`6PG!vh(l%?_x&Tli-9ueLk(LZ$?
z*@H1&XOR(AZ?`dN`5BXXsSvf_nuLLRq8%zq7yxbf%v!+kzF_-YbOKo@fMT*;YlP@$
zYMy7vim?yj9j@-26<GtswC$yofIsf=vjk#Lv4t<KBz`&O00I&fp*ESCUA6s}g<d~n
zUy`)w`z8S%*yPxxwbR#5RXGVaqNo8#{o`n@@lx?M36*|~#e?K{5m&8C0MoI!!?jRK
z%7|y6LaGn?n4JV5REot=h>pDT#RV*Jm;FC2NW~6U1(*Fz%%8fcCrSvxd%j0VgR13M
zXX>0Yck>-9IxVuolYS5fg88r5A#>%*PzMiqAw*az=3}mv1XrhD!}dH{KK;<4JNBEw
zJ<{XqI`Dh(p@fOUthZDTi5~Reb(h%`8Yi8hao;LQfGirM=j|={;R1t066E-@Ca`Jl
z2by(gg@~eib;aIIjQZ3Z<MuY$z0@*nmikBJDtdDZYxV~;Bezed;Ji*QG9SkXmpRU4
zlY<}juBHhXq3Zt8+;N|!l{trvMYW{ATbg|9ZK@5uSVoeA13N({kmGvdxmt?;c)A4#
zBYI@VO3^b1HKxY`i^NvMhV!i<8Ttth8VNdwuUBcQZsz=IBBP+z=z<?#g$|VQoO#s@
z$_S|5-mG9ew)4`g8JQ}lldXfzqAmFF8uZS_iSGmG54)x_vbdF3Xx}^!v%=iSITM(J
z$Ru_Rn9WP|LqlfFI@?9&kbp9<)qKx!0DZV0(a9~u0KqlWdn7msSUucsUT<Fx>;wR_
ziXUY>^-*xU^(KKpR`r1W5#3)UwjxrXWBcP2Udlujx0Dl?dLanlj-&~ln@fA^=e9E2
zbOFr*eDjS5nT?hK?%VaMLRY(|G??F^GqcZy%=5jydv!y0%Sjay{kwpiZ;bCY9S(r7
z64gezf6**w5_@!THwS}wnz$xCUct~YE+nV`lehnvc*Le!!dMVz@EJ7i%+wuG`?My?
z2$JoKH>UEjE5PYGef@rs4gwUISC3YJW<ix1wskBR;DsPvyih-b<>|yV*pR3GtGIkQ
zvyF>$vzF;Xn~+mmpBjtCX~vs380J@4!|wA9bnlTtZRAZP5%w*Q?HDSNrH`st(2Qe(
zUNqZsh=GiVEa%f2bj4b<l0_gFzgCcNs$Zgug9T`3W<~ChtT*5bHj#oK62_RXf}m`|
z*4QPz@(X3A+XC2R872-Sta1+hJ=nwzXfFEJek2}F<l0;V-wXwdFh1tI$WtjWD~@~!
zk>~ZxMJ5Ybx#hE;iJQX|+TRQi;vZkxi3wLcbI!OzFz3wqtl3_6Qz#&RMEIJ4Io(Jj
zd_)@-D8#zU4Gl-6)~~0$y<Pc)Dq`obk|&Fe`N5-W@%R^%2Os3Ao5^OjdKlrm%pAK8
zI@dMPY7?-j;PO}r%!gS?EZCAW=WObkP^W0)b_&%W{c(Dn*Gf&Ko#A{1$$P}WQ89a1
zflk&*EBpzLZ{>GxWi;-P#;|Suk@b#d!y|RfQlIiV++D+4GNSZ`d_OWew<LYSsS_xh
zC;vNL-m&fT^Gu%dpZ0~1EvPJBa*1Y@dmgfZOSH3ve-Iy-{w+=L-}!F-%?}>{#4|3+
zD#xL33>JcT8E){<r0mB~pgG_WUKC#&l}H>MSgP2M1cIrOhkrzIz$9R(Y`+~A4HfLM
z;L#q?PlvhRg{~5!2z_m~0Ui?R_<Js|tvXvT?kWl>utD`5#GsXSFoE&%>*T2|Isx<0
zxlC?xWEL*4;@Jhu_Tw{au)hZa?~16=8h$Y*=we5VdQKq;4B}KvLgZ-_$E0IYGu427
z1-T)sbMC-OYY$U@cE6Fkxu)KtUfC(pnvL3^;L1{Se~e{V3HxFU;R9atW5~m^6PLkx
zJSjcc4@A3YaUUpxL%7F~8J)_cp*36~itx#uwf^m<kP2CFE{1DN9a-vy)OYZoD*10W
z8UL><$;kR&(vT<t)-%pR%JGyc@6Iz1z(2k7zjt!~OB!Nk`d5VcuQbHW#PV-H>zLia
z3EPmhZapTV*!85j!$d5*LEGhKgR$p%PnVQ%%q9uU;P@{kQPX)391=0c6Vr?SiO&Ks
z>KHMF1r%)}GG%!INw6{2bxrmG{&=h5luln_Sn;kpGS~xn`g8U-V@i23d^Jw;p3urt
zUYhs48>b8RaylP&iIYE+6ym>Ef36}!h#gQE1%o**=+t5t`LYKG1Pg;mqfYnTXK3*U
zmpR6FNkEwpx04o{>Uf>tY$^@R4)Z2xsnf>C5tWkbx*~Sa`j?ivQP2#ptEc^kb-e?B
zNb(w@+DdIKxA7-us@jI#QXSMH^E3M8PBiRQf)VzS{vBokTS<2eili&>r+cYcgxidm
zhP{R!0D}jH&TAr_itC$qS{}0<)|LH`2iR5aeX|MF?{-dRY{`0u=sq&f&MI+$R(zy~
z*FU>P8KS##Pqx=f337OqZP|G@@l<~Z*TnNm!+3;q?DK~N*>vnxHpP=kcD4atS2iJz
ze!b^T<Qav7y>V4$;_e3LTFYSY^4xjj2F`oq)#bJ_y?$fQP2mE7`!_k+7GjVCEl(Xw
z(bJThcUsmK#ibi`UF|GFvs-%%LhIO1t>(WW7TjEg?6@m@nKtg5^lopU4$|z;(ws~2
z;HSSfNGhf&qdyGfi)fQ`F^V4WzSES5$M<TkQWU{Ax-+d@qZ<{UJ@`x#HdkNLekQvc
zjs1-CV4o#CN}1_Tc+?~X+ex96P3^G7)*>(UmBGtc)AZMJO|?GzBYsVJwRgBX*^R@&
zLjViJx%wDb*33_tH9>mc)m#t}pWyxJ!1We(RFf!djx<NmcB0w++o=AOXLK(@esj?(
zU*_Cnx@3BDq+6fUQ<x~bQ8IiQ`J;7;jCJPceGN}SuA;Qm?_&JkT^y;N=x)ldQ8E$-
zO$A2RxgQ@5r<elYLd^<J0_VbZ-W}_r%aV=yw8Y#~7c%>9Jj0}kf;%?ea?$lHo;Jsg
z6yU<F#tD>%1Z|DkRejZOONPO*`%@d>Y8sJK>)1f1DMf)GBc}&&P#5BOxazLh&gKoo
zx=a(~o5^=qSgG+DK9OkcOyY%qFdJvva5>XuZyYVsWI*WO0`eTf9(c=f!lrG`EeCjw
zq(*JYcbNa)d~S%~RpiyJutZgvR`Cp~Jn<(x4!8s5I*nH)mdB+RIryOo14mQ_CyjNQ
z!?6euOi!imOkm^BoJ<IBYAox7rtxR@dC&MS9iZHYPnL|Nl$W3H3>;%%9J5piNM@?-
zK04x8+6PMVipSG6Ysx`qw8#{g6m;tsofsZ2OFZB1N7Ka<9M&xzPN9P)9)li$c;>!M
zzxPZUbljZA<!VuUZ-TAuy5kU0c(!{OjfAHcPVmWtyG9)1PgW{a&2^XbFM4XjQtm=-
z^kvT|iE0%#qe5Vr?=YO^OpBY<dsAk>>|fEP5rg_IXgc!#qXiQs2gIu9%CxyI&h`BX
znp|b2*7Qj309n|krGT@$t9qd&qxc~x=;jz|N2)ltw+gnZ)XCc2AC8?Zi;?V0=*QjR
ziYg~I)U!NEhX)+(rY}MPf!yBDJc2sj)JwwQmTjLVdY0le6vrp3OS23H6i%<kSr8y;
zDD)fV7-u0lO^sK?ic6!@BF7G2cEneDqDjoR+0NZPpBNOrx(%aW+K*9dkd}ex+mYLy
zFN1*v8{B(aKtY(~oX2nPdO!2fO6Xu{cG69$W#HcTl7{t!4OG>cg8mY!yu{>g&EG+%
z3J5z+#7s^2&=jkn8>zI8&VE%>jKjG2Cp#bjEE|8ga2ui0?e3bo3tZ!@xpz-U|Flm(
z4PO=h?vBmA?24Ub_U1S*|4A2Vnc`zwRF35Jio|iL9r9F@)=1438}toXnAr{@@iG>m
zoWl^AAP!(ZLjT(SGek0^+s*-{U19zE76lPc^?eP^(ij91v<vHKLz2|ZplJL7I~(ZK
z>^E4d!1oXUU=ANd=xpXPAE5E|u<;a2iVLE`4&3}OIlCa<kB=&<TX(-?88(0XC{LRD
zOw5Vj3g9xCnLAgzS1Ei1kinkx%{MhwMWVj=Q7(}AbPZ$x=w8qYnmNaQPEdj)4WG*@
zY)_WA>k<}jJrPpvD%(cZ4K61+_CoehUG>^WWCFmd;35gEYlF;dsL7=O=Lvx(Sig<&
zAXn-ZN%=h|wOrnj5sY8Di(^4Wi3swyp&X=+ncGFnVWybiO4Y|ZQVu9COL3x8I)jXt
zneMgah%Js`NqOY+<P0A^*(z1srdBVpawo~+T9S+)i1tiT=xr)^Lkl0>HkGy(D9xa$
zNp|nmJCI5V!veekS08>bzpE#n1q8o?$nH5?dCJ!N*Xbeop@EC_#hgMY8Y{y5Usspf
z4|%_x+#_%#(eKD>*)3RGTh0nr9jhIJbukSQs}myA1L?1}K(Z2t8<MI^Gvnoc5mrav
zU+PhK28cuPRCY3&y7J>jiCDyT+s(H6B!Dwg8n|u`t7ds%(ZwAepq6eZruuC|Ik7FV
z(uWGI#3wG(RJ7JiVd%x=-K1bem#l?x5S($dBzT163HX_qiieHN@fhZBK9*Y^5GlIu
zKhx%@GJWET7WM3irBx}dm)sj0e5I+Ko7>d^<PD9zO6O_dEw1CmL-4}@7x-vRusbi1
zC5fk)CAq&YiZI(F+>zoa{Ft)Cl6yoR1Ziy~zb%i$KS&e|u{=_Cc^MDMJUM7+PiYKt
zanvlL85h7voe@&z+rW)%myB8W!$<9$M5jv+YV{gSzd2`<XNyX4J5QH~pu$&u08#Ev
zUTKkY9v}NT!Nq2dXbzeLvAYao25Nt4TB6?Tws!+#=ff*D&tI;bBll=-`!(ywOd@Ai
zWyF8-@J`DKL~~!BXgWq-JhNS0=Wd#+OxPHPS@+fDHPyzAj1uY9+L<hrnLSpJZ!-iu
zkN{T7-`(JL43Ts50&TmLz5~$7S7ZAk{qTK{%DZ;!YNnKXu|^-0!$v9s`|E%;4|~V@
zqI)07P&g|e)PhEH>AS;V>v@^ao#%kCMq`&-lhJV184GH29Bk{WUI5dF5s0IU+v<5^
z<)OHLKc*C7{`jv<HcbMcbq1^X(EIIG99j~S%3^C^#6^HH^(y()r|&N2h@)-GoBF4(
zK80aIxzyQ8MXhgHOfk?eun){Pjx~dfJG))tc<TF5fN0^jRFGHDG+uoq8J=`OpQO##
zJ7ISqx?^DW5$m_mYZ$98&9S@2hehG<qgea0bVxFENJ^)Iwko-kBcJ2k6Z+8H(gay`
z9(p2{2g6Q2hi4kPf<m#Sx;Q^)Jm5m#lMdrWMuLfThVpB=NJzyt&^j<Eyr_qvq><>P
zaQhmYG<8l7`(!xtlVULVj#-V`#8@AXORQ^WGuzA4EIzb#+cPAqVCiduqZW<&UVLCc
zAoyp?uO^tdwxT)oqq?`zw!S&xKKc<xy?(-23k^f;sduXww-DvFTpktzLfS{~(~vh2
zR+4_m;0Y-xjV<yw+m-dm1J|r~e(tJXio+6Of1M;h035~xN)}W)v3Mw!4j#=H+CBjw
zy?(drQ`p3mVnwx}5_{gtRFUW&-OY$bc-?`45G{ibj?wjVQND}`i>HUmhA)4vB78QE
z!@hGu$^V8(^|X?K&G&A*5gJ$Y{tPee&j2TsSbC!Y3*<L*rmAOU1E!PSp(Y<7$De86
zfbxXP%{ZnH3ND|?0^|zET|QqAF&W?IHqM8T9dkNMcUo$>5|-)UBWKa0AolmjdBkqh
zd?G8C9&X_oVFgd!w<nNm*lE`Yot>!5v0bfs8_32(Mql7Z#hKO@q@`Vs1{<;A->zI+
zfTNckeGu`INliQ1`qjaO^AtFBaSVXSNVxi=m25?hLd#NZr%Boo`MOFu|D`#ekPTxq
z?ROMXn_zKoitd#ITYT)N{C*tsJ=!E`<qR|klOkVgb%q>M2fi6w2iJv^mO$IY@DPxY
zxSbU>9uwlF)=0Z-dzmBr#at?EigO@u<Pi*n(WXNlv!p(R0yi?X#Rrt((hXLLSHQo#
z39t|pUZlz*qVLm9ya|bdP9E3(78)`e^?F8Zdqs70=W3nmsOtXf;CScm$&=clWIIlp
zCD?tu!6;3AXqT1DvQ=Gr)7$(as6C~q`G{FjkuxD)Y$V9Jq?U@IM@k!a&(Jy~hqtg5
z&<6H0NTTg5tFDytX99u<9SR1S3H&`t#t1LeQi7z2PS-r+<7uL(LHqZ)_a`P*H8m4O
zgZs)arlg>Ty`>&_su$7Jt&}|r^#n>$8}yXXo<SeS#Da=P;;UJG$*~cX)Tu$_tdLhL
zB0jH16PX-k4M;Ud5BEmHwyCpAJ754gr#2W<$N{k}XLQUouNO)p7ZIe8RN=Bb!nP~>
zFz8o$)fM5=#8WhAo5hCA{k~^0enyhyoH@L=)Mb?GP>r9d2tUw|Ki{a<$IatHX^^eg
zlF#PByafmd1c*b?b$<dloBp&6I5e-r+I#o!ddqs%YoF}5K}^?wZ216_(z;?Ln73zG
z)8CL+gA}bu-LxjO)ULfW^B{@Klix{IuDvwz=Tv74rXPS=<)Am7R}r+1m0l4ia(~OG
z8`mr8C8Le_BdNXb8?P#N9})lBO+2J`ereLsvMU%-erXs#6<dfN1$R^*P$2~y#WU>6
zPM~Um#CN!%*e+}CX2bcD3>du}8{5wm{+7c2fk_p_xe&xVVjx&nSVz#N7}Bs=fX1mc
zZ{IRTQ@!S5S6<Wd>f7SR29C*!L>doMEn+od?>NhzLXcI2py+!8=F7f$%JPVZ6J4fE
zOPSMyU}F_2<fFPrx`p*}Y0yoQ=IEzDZ)s>mhc6uWHHCnCBi)`=7Sh3btsIW}s`o%z
z`D1RCm@v=@$SPnqufB{SMs^x?RmtSJjtCAH?3{Y(JD}1I4)9h?%V7Al{7NXcSmHfG
z2d;Hous^ltk~K`ljS4i9_r)nWNl$b7vZIwKni-nPl$T<Fy5b=+2dZG3&STyyIeRNH
zMTbCvKdXOivT?->HnX`VHw2!Os`?}`oE=5r4o@w5#WRSWa}V*e%nkP8Cy9vCTxxAv
z6K#Nnv0Fx{%qID^`Bm#ro_Mbfw9$MVv@tb9kD5-k6-112;Lu*45hF2$_gAy?fs@2@
zRsaSnBb;rY29{kzPAVq9XN8H1R`$YP!~=qZY8N&%7SkYryo$=vJ7Kttc9hvG*K9vu
z+?K6S+1|leuekeydl?OX`__#OLt+suygoUcfZVLOULoCWqkoG2?H2F_qrfImUIT)s
zUDXd8pIt1L@#LP2eq<jk+*{!o>VZfg^}#nnm#R$~R#%9T1WOl9T%i3pSv+MPQ45zl
zSpo`JwHBBn$&lX$Bbo!(+`dy)O(VmA0B<Tz5(riG;f`?M0&VbME=|n*8>m+g)c9T@
zpApy`Kitj=kMNTR#Z9WTp?z%~JMsYZPtXRulas!0v3rmkobAPLaqDms;l@pbgJHTe
zHaj|PBDNLTiGzW1Ue<xSm8n;(v(6l<K-f!iOd;YBc_mCTSvR2URow)k<v;v|n>o&+
z_*EGR5+1X~>Qs+`M|7Of&{0SQ8+?s5{M3dEi6Yb!p=jloEk}LOENdByOAQtw6|#S_
z*1*28Y%&CJq2~>6Gfs*0HoWe7w}+SZW}U36q*X=CK#=<%cq@em`x(?L>1ET~BwYWF
z=X&jA&63eRzo@AXo&fct-ae}4nNwYXr$CVlq?znHez%FdAjB%@yb7<Hr#7I+VnimA
z`uWp*@gN}mt{e3}s-~Z@#<tj-!>^l`)$3+10<_t!LCHQBcF1IN;cKG#0sX>u^z3~F
zLNWoz%pTjAAJ>&Up+FRGK@LOjNo$jMC}fV`B;VAC-<`Bl9}>o<9Ki6B%zB77F1hq;
zEIji+?^sy0v(NbTy$8;6)2mEh?ThRp874((sY>v}uO0sU>)iy!9)jobic{v8mp&s6
zBXZoiqnosh#}t@!L$f-E22YC2i=MQusO_B(AId8@(NywDbcX2n#oaHBgBU=uj?!>@
zOm;_qX@5l3ubXbN?qr78xpR|*S9W46Mg0fjGT7AoX_A^CoSIr<7#g5`oCO|v*5FjC
z%~rVA_nAt+bzWGP3B274DjKWtzatW^v&G)ATt`Ue8U0C!g?vH@L>Oq)?Cp-Lr%$Qf
zSJFK_NNt9O8=6UJ&8hEo2;DJqU(n@Oj}~Kk22-F*MeNe4h-->6%d0zZ9=PZxPR8la
zlUNhZ&?@FcR-i-?GLdcUH#SB_QWb@LN@mX3iePsO;YT4PNU_)*8fqSQFZY3X@%{H;
zZ^hk7W?nBnH884>o%<yY?y`&;zqrDP%b7_g&>WQ5nDT^R2Uao)^AKkM%!{0l0u&++
zGnGm)%aU?C0n}Q6<p`Np`TbQKH1W0#ZTi@SO40h^bTziXs(8fAEP<;lzq--w`O&Ln
znVI1wuYWTyCzOn}5<<iYIh=8(Z1q-jFhVxUgM{9@1q!)DC(@@}Xipd&^HOoXDa`Sz
zE0N_%icB~hq4)kQ28vZ%YYAT4Y<|I*SXYU^U&jz+r;??XRz?hAX&4Bp|3_k|P#IAr
z9+81<ZEb&~^W{VG$l3&#rILIVD(qc#wR;{_ny%*R5Q{>oPZ=ltnv~-tRmGeEN-Pbx
zuJUuEX+S<BS>_ZMeyQMi2DKt-T7{JpSYCHWC8_UMU~|}hqyN>z1k7_(B*0#E&kY*U
zf<pYJtDU$h#c7kyG=C+qE4(ZbuqIWPe^GDVz7HJ`a9mupBZXkummzVSp`9>Q^BurG
z9}2c*-wSF7gXfwm<P&-6VO=5(y=~A1ix?bU2O%}W2$9$R0JH#-#ESBe{|G(5|3JxW
zSkP$PN_NqiVRfCk*qB41D(1D+pLwR1+(G~pAfz}3v7*wiVjxEUL3M7Yef2_rCpsj+
zaz;LDWf-<CbK^jTJa;=IdhIQ?t1l2*Qe#nXtc2PS-cQ&$${FGAxj%0}R&wbi_y;|$
zSp0wrceVU1)V5)$RMtgjl)0!OR)Y8$@JmA<Oeb(?tCYz`6VlHri>w5^gy%Jx0jm$h
z)!Qh?O*{!XHIl1*^iHUJ=u&;4U)3C<U@YVTm~*ggq@wcy%SU{kJ%(V^ip;)qy{mgj
zQj`pAh6BcxW4g^urHdFl8QkExQ7dCaMG)PwX7_Nh8m(ebyzVt?kB@HUcKY1oD)S9x
z4p%C?_{u6jJ<q>30m~f%Kfhy#-fK8A1J0dWe+84ryD%DN0RPpkjxP>-qcl+8$$bW@
zUA+^^=N5EwB@R>$L~VFrP+5yQN|=U+ke9-*UJX73MN-#t+Y^IC^&D9)7-fjG6720w
zfr1_d=pO)1dZmU*h9~YFZ)xQ0j`(g*7U(CUfn1VWuik_3|NJQ~`y-?@YV`QgUh?Yy
zt-VM<6AF8@Uy1d+%=S}y;7aB>da{lj#f*>+QI{HShq{-d(!Z7Qe^B?1QI@t#x^8Br
zZD&^6wr$(CZQC|0ZQHK2ZQC|at<}4`*BSfk-Q8#RIAg3|bIzY{ymQ18PsAP9ZNB9m
z|5=^`gu6pC)iC0Cn41KO>>K*C{XmbM;bt;Ep*^fr(Z|Yy=6(gHr-(hIwbtXo5bHUG
z%03;gjX%#mQllT}SJ1P1W??|bi3++(^jKXXmaut-Z!hH@_Xq)$K9f)8YLTz|S7H6W
z!!++(d2&n+uf^CJqnn<Z({muwyjLpMCf?p}3Gfs2=cjJtqNH&W9SRdjvS#KdKcPn0
zCKS(5^7BBfBmnAlo#N1<bYj1l<xsqaporKV5DuHD(1H!ut)>{4PNkKRRSxlHqT2U1
zD0FCPx$xH*dk3z<!j#T^Uepz6F$Id^EuR!_a#k=NCO=20^kZWKu)xX>Qn;!RwvlFh
zGd>MA`$9?gC{oh|FJ}NXVq`{e>sDbXU-)eJI2q!Bt-zUscbF2>TiBWyN!LnbPxnW!
zcXiO+Uv0X&J`v=xY|Xk*j?ebtdTpdYO9IwQiEu}cu-m%y4xS_U{v!L4c6u_P^X`DO
z`-?3zD!)kwo_a+))!wN^gYKA{?G+<YDijg_G*d?Aa*cM}$?Vf?9FQ)f&i8F-!GB(d
zPrgzL1wq6Da@rExyQaDxHd2yz8)w;4W6^fUqyy_4?LCAa0WB5>YQtCW&L=1y`jxFG
zPa&lRL6XSBI6YA^>TvnA&X~101$v1QlJsi_ih~A@inkKFvoPx<0W1Pc$xZ$mqpQMe
z>)XUFzD&Ym{}m?zrCHD82>PYl=_P*KIz*7u%7eksN<L}a4~eT|3j^P^1a5c=Zs^P}
zw+P<4so^k6^x&i^>v|H6y>2Ez%}_KWrm$--1C4W(5EY=agm-was=zEHFQ?s@gi80z
zJPw%Dy>^hPDQx=7qb?^>&t#R)<;NIzyZWdQ!8hg#r@(G|hrCMJw{Om3ojuL_6_SP3
zS(&y~&>E|pw@p*{X^rge?Ufu_4OQ^D^Ka)6eTYm%9Yri~VZ3__kpTz!>^j%K8io7=
zoaH|ruP`vN{`-7|5lsM6r8uHV#eIXJ5ch$n|IX>K7{5@!CeIh7G2`(yz`ZlkyFxWP
zfPORj`X@C`^i|7M8H-=B$e*RK@P!$pN}HhdC5|C26`bLVB7k#q?6&X8b_CwFhL9YE
zeL>|ET&MTk5G<dl=n1&YWp6y2tlTuk*sW51t?2C{)}EmX5z2LQ?fUu&zR>UY-6}5O
z7sYJM^s8`0Z^achIuhEdUJn%I?$qWKL7u8Vi(K}7^$Wz%;#G}J>)_bu*^Vi^DdErY
zT3T$HNID_Ad$KJJInDV;#j%x+)TOsQcggpa)5@=sXc<uf05mwZ-IjrIGIR>1jP-4Q
z6}-Rk!Tw_k%fFBwSpSU(#KQD9Q2c*DrOO(@T$X>OBK7Ow%}#(QHB<X&o&GkMP$5=a
zF4ja{;Q0|0zdyF<MT}|%Z3;_OVca`jAD7=77PG816x`&Jaj!#OdZ;S@GllvndL_{s
z0>Q0&j0qBLPdtz!#JHseNd-?GI29{1+RL9R%IdvDozI2QmYto326&H}#=eVOx2{u~
zaH*kC9y<fdq}Pzv%jS$JX^q|RyeV!Y%D?FD`gHQ3Q`RDUD%bolIgpi7+lhxXm6n=B
z%7T6En;AW_6fcZ7N95b8Yaq;?Xru{?g}T(p{<3i|>6ftFYv8ykR#X#^5awNW9gE5q
zel+?vLV`YP+#-?Pc%RhHup}V|oV#Yma{iT%!5fE$Yfrt!{54!*#if=1$jgosVS%Be
zM)E1WgZ%V&VxT&1IsGTR!otpIDqq%;4jVS=K%UBT?19}`a_i+5Oir*|c(eIEUd=N(
z5WjtxuLP;(FcUYLJ86RaM9rR5A$Dri^Y;)d<;jqJi-cllbhFGH(t%hpfJ$~ZgeBG9
zq7ItQ^7kFrQB^!nH~Hst=*)1=)gDGRGuhNn#?mw2&7x4bIl6ZFsu?m)|6I-JDFuS6
zI<EYaXm~{Ai_)$G1}x!6p6%Qp>0QCU8N*%_QDKrv)HC1Nv3JNm{mDxhnEbN&_BGYm
zOMb8s&FUqETvIDc2-GH6K1V-UK1#$NT~blAT;)o*OB4AupcyV5-lrZ9u^i&$4OOt`
zcvp%2SxnXzv;^=mfZ7N*d9unk&Xb;K<b_V1F}=HHh&e28iU%rXJ`ut)Mx7uc*(i_h
zZo-+9&-6mGNL`IfauUSNRY(nwUV%s>pWSf%d`OSI{oPx)tnSsBgtdLK!;$w_fAN2S
znfxo)pZV{A3Ost|ztbu3=vn?Y?EYgc%kp=>)jywq8?XND_uq2Mf7598Z|IPJGBWc2
zKTfm%z*PB<^ECbci}+M0E}8#co;V>2lHLZ9kV02&=3)01U;GB$Xzi>>Ns((RBvxA|
zOSs&n>Z)KfJZsd>wYIuQ(fY;2wda-2fJNs*)KIu1(0qvDdDj!+)@s5l7ZVJ>vsfjw
zF%=sWuyaO-meBK}<iYvrcp7%8f<UG~vkPVIZC|nIOT3|fgATnLYVK`{y&eRw8;6(u
zPI~1-An!eV94hc;djT+ut0b9}OrjJ~#al6)*mVtL;w9am;_J=jEmlRg;D=?*dmU*C
zN7k@h@Irr)k?jo{h>!lF0}N@)9_D>&wBL3n#J38Ut&_AZUQM4Ds<?3L36&o1E6#SE
ztUZwG6y+x@pGlKhY|DhVG{m<>q~frygZPGoDq=zF^i^3pVcn{J3jk;j1Ubgkh1%jw
z7<&Swusl`eh*rxqlW?`~j?By5SE!w7wl-y|#ld@vJ@>F*&j-JkTqb~4h2Qjh3pe7a
ztDM|B_SV0KUxu{z_Is3iXVI-Z1Ptm_J$YrhAZQSo`9^gxykpoVlrqAusNjTd<7M>6
zG#ON;<8`Xln%XQTMZtK6Il9H{ZTpj;6)C|by{&r{YLk6g0mM4Za5c3pPnx4FP#QDr
zhuUs^Xp@!TP;nD`WE046+f@!J2;vA#0VpPri11e4Tlo#MtvOhxmnaaj5*56@v*>)$
zDJ5YFF@&7!FL3jVg#BNQbbjadbsfUVTfd$b;Z$j595?l1_yHdugkP9c0emt5(Tkbs
zDsK=UtharAwA)oHeY84Ehgk5SdQn;!AjC+UB;%lX5rX_Pi_7iu=z>xqctH-KbZGD7
z3i}Manz-C)-jT%@U2kFxj-sBisPdk3r~X*DCA@7x(qo0<Vt$=LE$qlB-%$dMVb|vn
z>CSt^ukdt&X`I2z>iN1*;4UAJqdhT@vr+k<m`ZJ&<JRRgQTa3gAdjY}I-q~)!sS?U
z7&Fqg1N$!dg==CC{)Tbs8<`LYj7D!UXZ(F382&qR!FeW75md*%o1Ze({q>pOrE2=Z
zl++qbDh#<S-AyXqDXeF~&i6;huP8;Bt)LXrsKK{{J|Z*=aVEjT1Z2vPmjKb6gmJbr
zndUAk+hh{16NsU0r2A&?fjBBKZcp@kG{B(74S5p3W^q|OSRVc7BI)NDm`b;Blzw8=
zHCgacwsLcz3{r-^kj04yMnZF>nb9EraBjF?KGK8HF-@vdf_Rff`=rjbN+K|hXrVi4
zlmIM5&rgid3xYbXRW0T!z%qsJ&7loi6<>2BI}@cGUNmMWxZP2|$7$P9j=Ry-BW1S4
zp}lAhjgD{LeLjW5rQonB^xHWO(PnrTJ$GfUD_NkQ#blg4=yX(Kc7md3P^~2*y$H=J
zBhYKbcXmP{9BB*-d(VoXDLEyH)3u`f*gQ;4J1SORRvZR%Sm{%0MzsQ{pjgSz=~Rmt
zv49zl1GHzyoW`4&L5EJrl0P6;<_Dz*ZLJ-FJ(G#`ynj}s)9{QobL!H9pd(G+?g0hy
zEHbW7sL%)V_6-DX^n0#GBs(k@q*}UDnbPmzRp}-aBmvk>D3`ucAl#z`F8AwhsblX^
zDh0aNn=4In_T`_ZQXpS@pyMXVB&SQSR~(GZ$<tI5$ry|}%C!}jhuMK$uw1T%K&FHz
zDNEF$GP<6eBd*j_`Q7w#G8p){AyGQCwuNs}QWi`k8GoFMndyB}FjI<HOLbSfnjNC`
zwwJoR7JMy_><oeLw8_v3L3s&Z$q{IaC$$!e=Gg-EL!F3qK;}QmOe7n+FUyYH>lZ3z
z!$gz(VnRaPXt}Ui!oLtYYcXpnuU^iQG4SP@OCc|hKUWU`oAKkE5B9__!E<kkL^nm0
z6Owx|Uvv*HF)V^M7y+jdKISP6jLnl*ivli?*{Ta@l#^D)NGnK6E=RjEVP}3(w|OSN
z3}|c;slE135=-=e3qKGy^;r&X4afDJk%h-~)qs9Bo>gkVrh$fPdAK%wMF_rHLNU||
zDI8qnZ#!?U<s&fP$FfqS21)Z6uNj(?VpC!4k>@zrb)Z=4kJo>VN%?ApbL!#z>L^wc
z&tTt3%oRZ+&=}h_F)ymFIF~kvPc!gyyPILspR)o0X+zJaDJT4v>n(;JQglqyylYXX
zZ%(X}y(eaSR|ifgAMl#~((n$M!sp;A4->AB#N3oGcSX(h!<x_AbYUu!ir}t9+|<00
zO?Tpno7XQsC$nx&@_ur|y^h1c_MyA9#1ggWFH;trfJZEunYezJ&a81v$ShFm!wSa>
zT*7gF1tkFrpT*t`2s@}DEMw4Oy*G~2g@H{rvI9XpD!6UOHl~a7M^#KQAld@%X#hYN
z=>wA~Pyyi|{((4oCAVle%KL2{4jX@~j6s@_nwfiEx%9GZv;+zibDlaG64S7nuy`)h
z(6xF6ESyx?@WVF|ZY2@j0C#r6LTErgwpApE{G_3wobSM}LUDp${}ZE|0%7VSTsZiz
zilP5AP3vFkeWrgEjo~q}{*3_2^4A2=@+OU^)V@%HK3yO83TmahW|`jv+C8NWmhh_r
zedSDf%JjsURmX5lZp|0#vz-gpt%DS0rAyA|Yi|jO7~v1vKdstdSS0y;Q=`5Se^KE)
zC~#cGWQ5sI9H0XZwk(n3@l2LgFA-`+L2VU*rI#zE>&hQhG9SRdOz63jsDi^6eT)ca
zg!pA4^Nef!VYS-J__}`LB{OyBCg}Gt1<FjLNIfFum~y0v_>5iEoJ4LGKXZtQI@wFT
z_h9k^P_tvb=K@{8ndlvZ`EyRL5HUcz%hTSK--yqMy!?EK@HFCALlieHki?-aDx5@i
z6cmdZCrMLZ8P#DxwKHX1E+k`DLaL%;ww}HOyPE9gdI$K;{f8M2!WB1$%UBO1@8&N{
zx~+z)$F@^6P>!OxrBPdjhq>)c1dyD}(|@MO23bvc2h+#w4Dz&y1R3YBPWw&N`qLUb
zYv)#WlVa=5e&EgHI}E;kW{Dd-RNb;XA?1Y@9+pT>VR_I1BlWM|>p$Qp{uNlq^514Z
z{|l_`pUc(bA8ObCVM6KOqwyc#jsKU%lAfNO>EAmGpAF2m&Tl4@Ow0M6xM2-Uk}1}8
z&GKKDUtODe_&AP;(M7=RyD2%7@enyi9kw#=Y2uImS-KU#nMYpdyxxcb%3k@3h^qFE
zf57b}uPbmNDzDAiN|u~@FQP)Aw!I&Bjz4~GuqYIp4!DH?-FtC-pX|N7)!Tb?vzF-q
zI+WI{nXMpn$T94NkIY--iWx|2;W;f<<(OI%xOD$ELR|UMpUB{`5~9mbDFmsX?8!*=
zdp%%H+bUK|-VD>Y23mcxSMY@!MdbjHBUwt=shyTN8^Iu>zeS10k>{EkOFf$4HHGEG
zrPwViiYmmITkro`G?XDWwwN$Qz;|D>>qH-WgcTMreO#X07spKsAI@1QDFfG-^+~gC
z0URBoDVv+k<bTEfEi_$^%hJgA#}6rj9hXOvEQ-`!mIG8?AD4)nuXHhca>E2qBK+eE
zpsJ^VH=B$>$7?6Zk+C2|-F8V<TV3jr51b{<_h5Sz9$6sp5+3h@t#DOiTdcJ}@YKfF
z({^+OeSG>ZFLjMFa`1Y}57^FU8mk@1!7(Gj;3V$)HDudlJ|AYcR@|1DJytU4uB)66
z`<}ViW~-8&>^OnR8+}rQ;-D3+y9Pdio)?N>I&5N~1pbF)dGz@7gvIQ1JM#C6GlqZZ
z1_H)?I>HU1w_W7-dS+Yp`Rlk&<%qWLQJaMrcf}5$Crw7NHd?;EU%w^Dnsa&ARR}g@
zG{E-0vpx1oc6685QVL|J36Nhh#)wv1GM2GWN47FM8Kn0^U(rgV!WW|k04|sgH<^aW
z`nKXI28kkIMh8fEf3WmRynevemQMsSMlS|+Pv3LQTE%8A&@D$;m07cTXRidCVNMZl
zap(^~Dmv~!LOtPP85ke|NLVOd(Axf|#=)ax_T=i96SmGFtKkp(u@xs4>zC_Y!SWVU
z3-P0p8pQR)VXd=2d6?{^oCBGG*?~m?LvGxPp`;}^u|o|i8)@DbGpn7{umTes+V+RI
zXTRY)BO}LC6kj=#Lm{Lz`Z_2BIxZVH=IeY=zE(y?(L7^wEeoa<0nR*Q|84&z1TZJ5
z04INKG)m}j5^e-s{$gl(z5X?QVgrA@O&b4X5=g8}mcCL{#0MhOD_XBL-&2;@?F3U0
z=Qb=#*^)6f(m`^x!MwC12tNV01uyvJt-+S12n~t=FN4indU-g*c(!Pz=nFEeWDGo&
ziMG|aFGCMKr+d&RKf9qav$W|l3TPeIir4;2$<32OdgYjVE*V_Vjax++!n|<?n*sUA
zBGBd0*RbdB7UOa^NA~Md4l7(*k1kxB7enPqoh?I)w!~26my6bQ<?Yy`{rkZI(1wG^
zP(QI{uay*;DHpIV<IY8o#nSl!*g9mrehBZdg~3ksGJ`Mx+I$|)TJ{L<56}YDtL)Zy
zUHN#Zm9S>sO&3o}JL>_?Qe{x?Lj3+8?ntW%3^Yqz2AP&~GKhNj6cr2Q3iA?*H%b@A
z9u}uA>M^J52e}?2LQk-@)vngnwoe*v;047Xbf7-QsBtuoA&*M+Gw%46;K|@LWXpCH
zR9@7PHBPe*g@X#aav_8@j-3xFEz`G^s5=IybIOf>afmSfpC$kQs~Jf5uh>^c#=l`-
z|AS^=;?$3+oktEdq8Z7!If68PjkEVv$MV~wUuygADO5^5-(&jlXwGn*d0}nwG~pLQ
zoQvnV6O|cjX^5N>3_z=xEyXAJ9r_sKZm1!hSM=)RB7QRJO@__y=-KErJ`X)eYTRBb
zy*-NeCYxi-9GL~(frs0Dx<cv%5T>euztVf9U!>-`aVNf98quma@tqt}6bFwXMfzo^
zuSYrPYXN^SyRb@33ejJGA+>7w$+|z^Lgy{$b))tMke$4iq-Zp$?2+(rmwI+F6br@*
zW9lz0gU|5-=g)$CfQ4}SN7N!cK}rvBL3c;vnNJ?Pw$G6X>p)=+KMFeUQUqQ(&HZ%1
zruH3#u}Fh300a&CZAF>l3#l<F{{zv9?1eS0Sz5lXy$k<*-Jeq*^@WT*<ymmOWep?Y
z)~C;H)p>Ij1rhr|-?qXj^vCW*?F?^t#$Uavf7mJbZxCr2|K8X7r#;~R&GO;@f+zd;
z5d5d7Ivc}3*mkkTBP!Ek0RIrg?piav{(QBwp)HvYs7g8vcQX{_TrDA$Dj8Nkh3StA
zR*U6?ctZXOR?ZZ-@^WiPt=8Bv9<||?Qgd;11COx`##Y}P&H5B?3ik=;>F=6PjGac3
z#4PTpR<MQtI$Wi+$ZB0-LG9M!87O{wO*a@3r9*1}l_y%+)ciXb11E_Fp4Aqn0iVTM
zt4*m#aQY{=QeK+8$%2aj=vEx<(o*zZSg@;NO<vQIe4Cq=_v2QQTgff1K;<lX39q_(
zIulT|Wcy1d;F(BJD}l3O%JoS)GN$#1K6JIuqJ2s*p;nc0JXx5tqua%43K#lY?$Vt0
z_6OT`g{iB;2(hV_nNHcOeSw}>I1{T;{KcZ)AzP=h&vuV&nvJGPQl7gE|1x2<fP3@H
zXQ2>`(A`A<;?k<LD%hl-*H3=rynequ3z@VBkkh5BUAN-N0AwHF`x)K`?4M~6EuMhM
zb0xNOS+tgPk*47lzS$3rI~*)hTFGzy{#_axG=oqR1SJm%+r>V|E}zA54Hug^rU}aj
z<;cxM+)LS&kUz4lf3?a;_Ir8#z^&&7LP*H-G6&qSFAm4p2@gEtu6!r7Li}E)ar$MB
z;fmLM$~MGa^P7&qmqZUBQc->L#B`ke3(E)>R?$WxY-@jWj0c?+Lb$#0Q|=3cyl&^D
zW6{4TQ*a0H4;ek8p(3D!Z(<zZH<H&2_x(Xt^j6^XlqF&w&Hm4m__8PYBxCy%M1(wX
z10413h9?zz`jl%_*UIc8j%tVj%E8vFL~R^VF~8dUWX-h-<=i(aa;{}Hm(%bf6KR*I
zd3S*%&g7u5N~sK^hV)zanVrqU*2&F_fqaUlb+ns|E97q1UfcM<7Rh4zL6K_Et=o}i
z>HyUQ<|7iyN4g3+ILjQr<8Qqx+d&w7>309C7jP4|WLz^`a8aVK;Web8?Smao!@OD`
zTet-sB!87tZb+b;FW1taG0cEZG+~Vq(StS1p%okpuFhZR%r3(r_)cRb@(k7t=3<;0
zVr@Dc)oY2cX@xsf#&wi$YhmsfEA2%=4`b*>l*NA;$jBjUOM0c_R=~WL9(6VbtTcy`
z!S1iJ)<2Bu{ySOgUoJBLtQ_tCk*xK9p40uWy9fg_`#)@Wk?7j6(C+*$uGJcKs<zkg
z_v+J|qRT1jrO%70Mtnu>zR9UAe59B6E#0oEoo!^avfCr;XJ{gkehL*@$5UA?sAvpG
zb(m+3foemY<Ccj-jy<K!!+;1fsr6DQU1owiF_jf#DOjyvMQq;$!68LtE!sv*oqy}}
zMM&{MYPx!}eo;T>{>*c7wc|aO0R>lWj?zk}g}ci#eQCQ<CpPr+^=NRwQMjJ;P4NG$
z7d8<f8h-H(b3O968g(lgS}r(z%ihkuV-*0)s|^$B&gh9w;(lFA)|J+|>Y&OuI%>45
zEQ3ZzX^$Am?5;f0II%BhBQfi!*%NqwknWJoo;`0_TMV2B7y>z@Q4QrAa2Q-62aEs@
zWJ-m~0At%koT-;+Te(}u|M;T6;nm0FDp^3u5K`bpYC^6^pP}<LA~vyhU_&^>I><^v
zr9@N#p+;{FC1skZ&&C}QrMPG~ONU}`FI;mwG0XZ%3cMw}9{bZ{DSydiO`qVGKEm}$
zVH*WdoODi?;m)kM?72THs>iMgB_MAoE>DEJuH6~W{CKMg<;b!NRfn#hO$4N+iy7QW
z_b@Ing{?Vl@(jdMf3IX&;~g(0AT;L>AZTF;V@)0Zyvno^y)40^DQMPbhjEc{8X30}
z;ZP5JFJZr;{S8#uJpsk{y`4ndL@C#1`@A!66?xB^Eq{%(3sY~oaunRxYw>3Z1cu8}
z#eqRrT!bBIV!87)3){*r<zbmyGR`7wM3S_{+0=`GU>}lh{nU|zQ`MkNR*sfizMs5i
z*wP0uw>OB1-9Gn)j|#95N|A6*sqOQw2s=7&tj)s{K3f1ww(6XnQKDL3G+y;z6N?T4
zUsNounu9MCPb?61z{=m;*J3)=)T{SL@LXr1eX{S5)%?F|%#rH`?xlSwPGte>vvyUB
zcB;$O5XIm;c>e5bIgyYv?H6Y>Q82)oz!*(qQ8g&dMyJYQj*AOW*4bq<cPl?le4Gl_
z0+;a+Uc`*$NbB4Fn3B@p6T({iMOvHVzJm3R3i%@yAa^YZjD(F$gfl{%4}y9DOQ}ux
z!cz2Me90h$7v3s6VveI&(%jyl*~DmFeqb-K&^Uo{wUM$GmOUw(>1*B=0|~d~th+(g
z;mIBf7MAiSBe`db%vF@>n<RG~D<M`9srJr*u7OBii$b_{uXfRF9L&YkQh1K%*hgn1
zUKB?_BYzD$QZwF(fFb-~rX85-JrMw=#S50J^2K{tE-+cnlT|eZ_x|?h&p5%(v_{qT
z^YONx!k+#;74uwjn8nC8VhwF}gUHtAWL}Kw0m>aiQcj`m_V&B02DPo-)7EL|a-}5t
z@jZ-;=VYP1b*LLfdm)AQt?r-u;sURf%C|gg5mX_FXUR?JUfl+k_|qx^&5uq%9#o4b
z6%$a#gjMKofUoJJIp_FVxN=5~0#fBM_eGiqIkW8CqK8G<ZE>$ZKwkBnk<1<q;@S&0
z`MlYrq4zX-4xv`}E%!a#JQCcSCbU3c58}unc7(IAq)u1bMUT>6SaK?S@<pch&tRwd
zz2i6{<y}WAeu7`uz5fCSsN`*u00b(3K?7N|m*Vp48bDalUl-uE23Xe+8>UFa@?Us<
zKdOlNhG6632qq}(hYnp%A}!6DQA2#gZ$w{q5g{?Daf-lqcmX3jE_NQ{zo--(?KmQ8
z{uyj1rMg1w719@JUY)?g3?}&;3wfLM3dt52#`avObEo3-pcqx2H!=3eqL_K#pbfUh
z47Kmo=j74{GkBE_S-$Y~hwbg9&Av{H$yngii|%5NE)>WGa8L1kM(D1Mcn3}Nz7&~g
zVHU)|JSY<T+whu&QRk~=_Sj|p+zBL3;tHj?F^>Twz{mge+^MnrWfOmq224nL$uq=}
zdxEohbdO@Pg+S&`AQlh|R9Qigm)prPuGYy4<_bp>gnt!4Wf~4ZrX=8T<xPLV88eU^
zeXgsDj3Fs-@$PM0>%%;adqcR1A79~#nnf<69|pP}#A_h{EPS)qo}=G-2z#$3*gZ6p
zESGFP$8F#8JY?t=yV`Q`9V6V?ph6C{Wxp=+h`K^DY0VY(9z!kI6QDzpor!Hzc!g8j
zPBzrSPx7&JLVHrMtoGOeU6{;i9yH@J8ZchYj*Rn0^5-A~;k>k&gs++21zo%kGUT`7
zjrKw4V_~yKDtt|?49AF6pdL9N_rs9?oowgVTn$ZqMZ7Jm4-!$KKeHk!Sx==<J>&Oy
z_gd~(kCb@OnxKpl_Hs6yHIuJ*h#4<4yN>F8)4<^O6dE~L3S1pmI6UDUnt0fV5Js)f
ze(P>q=b5ti=dsEAQyU@FTfEo3_L_8OW<AI?Bd4Y9U`-;5`ILo~CU{Fgr<0pG@Vw>z
zajY#&u^H|gm+Ooy?HJCTz|CFUWEftmv+IpURrDC@FW*ptCB>MB?xWgV*{|23wi)ZF
z2_W$dtuiH#(|jl>pbDy8s6ysJ%;UULkUu8s3T*F!MXJl5iy3JNBWAdxN+g#V7wR?n
zEWBmPcF8_B*o-exSaeou6Gb8F;t3<UBESy|i~Uie<67Z0s>qmQPD_aPwYcW-hu5a|
z2j&@2j+8<Csvf}*^6R?Zak~Q&(-6QE1)Gy_#Ob?2Chk(23S}A9vRM<d3EMwQ;9UoK
zqdwg8ax))6npGkJ2+NNq@Y6|UYA<0{R0r3-aeki}oB0V3=|`o%AUn#z!&d1!J5<LU
z_qVf8|Ey}z)zWtv<4ME{9#~l+y8OJ}?VuPdJfS5nNWr%oMpNYY84)m#fj8_b5Rcd}
zkOts&!7ZD^ns4T=a3rV&m;QYz(;mpc{~lF%VuQa9#_0$mc9t{XWCM9pu4q>7wftD6
zuvmCUdans8|1cwF&W9jbot!t?s_3r;l`+pgeylfYI~u)Cg|(Gw_5;0MMZc@bn~j#O
zuKfk1<i~!=bmp&M{=O9Olq~5P*f(6#Y`D%)bUa9)*vIYfC2TlU%QzwD?MJPQcm?*}
zKYGBynaP+}N}#k(`a1D4rnWhaCOhD0Emf2(LfUBrZ+5q%oY^HbAquu{XK$Pe?Bk*a
z#WW2W<law{eWW8?8U@AI{I?#I8ti!|!p4{qB-=h0zZzwXFf63esqX6h2OeERI|kcA
z&D<KjI;?b@6BLb(rwr)Q%_A@zL^$xFV#cwWrdGh9XfH2cr|S*QRQ8{-O=ySyA6}p5
z&vRlG&O7yr&XW|QfOZ1U!^UZu&q(efDatMZecZtIOY1@^aKzvpneHxE80W;Oo>ZPf
z{Nm56Z&?Tp_M5OeuM#2%!oV09@0K|;*A+Ugs+5__lXE=$&!vAB&Fnpwb^@!ygw<oC
zy6!Cc2$~HQz~R7MY(;%&>`ECkyn{UhL=``XwR%SOcl(sb{_y0c7EZ1RiPl{SP;Imp
znr+@-il2SJuErc(@FlUIUV2qmD)hY_A8agw3xfWtJpbR6GI;c?e^<c#cWllW|G5P)
z|HDIszenRgZ8tEo)Bl5gjYj-H3GsUm#550PESCfyvmxH0r{KcbbA`bGwNNZ6%bGJ;
z^or>1_1A(?!B&BhHWF@d8=3-VB@%^G8S2mZC;!>BQx9oa;?VR@p1@~zyQ}yECLpX2
zYc2wn8&nEg*&%lrKGNvj2PgJ;5hF<q6n}Q0$=Z(r>E@47IK`06N6*<c{-)R3n5Q<<
zx(XNNOFq`(G}V=K!cP80UA*haff4X)%}-T(GO5cb4k8>VsL7!i6d`2Z>TJOLG7bD#
zjzb)(PG-1)dCK4Zgo-1E<nA6KHYITt&wNZ^R@>65hPeKm#lb<Y_@fx@pMCEQ4KUXB
zgEk~;UpLdsnz1U|2j6R^7lhVg4LC+r(C*ze8=-ysA5xWX$}NH}iu#{8IoMP3MVsn3
zURQ@w7xkJ88Q`MA@xdVlKEhypSy5Vfn)yehgwm?zp7B7+=-MMFD{>;hd$=Wv=Zed`
zsb!xm7+^$iu8(RRv2Hv&);vwz(h?UvnA>WSs;n6d`DA`*`D=(rPO=QgyVRY_`Tmsb
zhnToLhA|+3C)L)+)R!;*-e7>}fs}J$sr|U(f*>MY!m#=NqAa*F`#Ns7>a&aUiS8#A
zTF-QiDz-^!{OVp(hOZ))49WEh2@$dyZS{wxQHYIHgA`uya_H(rFfzxQ#sDgPU)8YT
zV=(NaPo_>^>-gEXN2k`$3i(%c4$mCB+;$m*!g@&W^SZbFp>1A{^(b8pfGyK+&l`X)
z@v7QD^xBY%lH%z}d1?2+bq!P)1)Z@3H}0ih9DM50jd3;xU)hgBh=3J}zqi&sTc96&
zb2GMZ_4t$BY8h%4#Xdt^pIgXz1)E?b!fr%;1$g>5cv*U2S2-oS>ZgjQNarjSyi<WP
z4faCFs+5cr=;<lKcm*SHe;Z6~AF`~J6lzIx!O{z}I9pR+E(HfJBilXvik#(Ycnq(e
z=E6h=#Ct~1+>-sY#U1Q<fp!2}ayUcr8=vB9$EIXQ0^jm9(5Lc$7#9)maH2^SP+#fA
zlT>;Td=vA`-7c?=uSpuZktKIi(d;=yXl8s-Br$=SZfU2YP*aiufCw>8+zvGX3H9dF
z7A0AzSGeB`8Qu7Xn53u~(d^^P^j|(={b^RVTL+Kjw439MlH^?km*#o77m%j`pBg)z
zLUJZ68JnE3=S(PHp5)NU1Sh5-U+b-qEtqnIWUBBGXl-x{lAuMl?u{8Ts&~-?HR}c^
z<OljGA{(&($t<V7;AB_W7E-uh=_zo71JZvHOgAFP6?+UP+VhDNVYd*u9?I&Wht&vc
z^>Hf^zVE_bu&+`LJcNLvqc%f0*E4V?#a#2vHD+QN@Bc$hFQJ@i9`S7WauBAp5i>hI
zjj1VFPoB)|Y(duIPp1%G6kd~Z*ZW{9e=h(kyyn*<D2>)3taID|4w9qHK8r~0`=>{E
zE=!;^G><<KoN)`+0c!v{5m*?b06PN`hHbmxiSn{kQvPK%MF^#*uiU|0)Dd<xPZ6a<
z`KOy>Wc>{MxaML%*l?%^c57F5yEd;wbr#20^Q0n=vRg|lsPPpxml2MArM8wRsNqis
z)SK1}CF@PQfqfBOH?^(%S2+=U_7^pvL`1?u`kVqWekU8<D1-ga8<OeoZPZ<!=#E<g
zsEQd_eK=C)QU>Tla|u`SD2h^Pfz}=nC<yqJ+(=eMrDNZjC>`qF36i#iIfHCydo6R*
zHOLQhTh`<tJRlR2g%Y1fnWU@8X$mvX1q~eKAy8YX`G$B8v9fDOAX3@kGWRi0R@`IZ
z)~RVnOVPa^mRtb!P7_Np))P>(D;{{Yp)$d;@Kte};Emwl2%kP9GaYSD!8-Vj1Nv71
z)3NZ+km<~9rwzhSefFbVBj@upSyJDkh%<aNY$vP?1}Q`#RO%PWY<GFRhvd%wQp~gp
zAl>VB6-%pbG56Rzbg~On5%ui`Z3R^YrK2~Z8W*YJ<!pBv+46GS6}rEk(wD+F0SPg6
zNFE+T&Cd@nvPp#wmGt4BG39wEh+fi^oRu@&q;K6O!u7Wwi_cJ$zg4LON<WOA9+e#^
zES9hbsF;YH+ttEv-T}BXZcX7d=qSF$JmE{R4q{Rc-yTcvtFpNbv?{Ji(hGky6ZAO;
zDg)k`cMdll*{R`Oo^Hi*OAA9Ht^)E}H5KV9dmg#&Pe$G-yjc!y=&-7nC=Ez5SG5Fs
z(|D*V1^9zWIR32sFxa4$ttM7R3IN`&VhY;C7CS>`OnH+M>7knqbiDX2vFuYz-K!R<
zCBGvDKZjV_?qM{&bo1JzKBcPyaQ>^wC`NL!gFBO*&DaPM?YwDRSTGl8BqVQ-`D?tB
zsc?nT_~&DRTI+Fh(z|!aF^lH`L7L6<PfleQ*<hF!YLN_H!3#(0V=vy_GmIf%#^Q0~
zl&RyIsd)Sv{qac~un^UIE-1w=yLx&O2(Tv16ZJkxO2zoE@rI~ti-4OumT6mbm?9m2
zSL?;EzIm=M*Y>xOkzQ`8wF;b@iDmyVs30rLE~rh+A682*KhoQTKWUB$AxRaiM{#5_
z#qaGG9p}xmUHwO9>KmiqL!O<(SQPW+!R>JI5f>Cbn`3eI<iUjQL7zX<W=5Rd)|;{1
z>_uO1VtoRpFD431UhMmCT5E*T=UTi-eR0FW6P+ZM_)TvM)-)O&S(-@if?jLNYV%J{
zo?-1CB18Dk?npz;pW3nDl|KJ$S2f3HNA&#8=Eu2H;Bf`jKgKR)W2+N@myPI9{lHcK
z{iVFsv1nA2u``&tpjj-ytkIn&c<OVH7Ic8(K@iy3D47Y3t-KO|M2zd(1yZQYR}UIG
z*32=uX3p}OIuJ#wEc>}>!$Oh11TA{=lRXf~wGs?Mzq_dG^)Xvg8*jENlP@TaDhKv@
z!%hFvqL9$*>Z?=2NB1E|)wA}Fn8SY%YS)3KYG;~)R84kCMevH$-PH-!lbGvf$(Yrl
zurXExS?(f|Vb%9@L<K4ko$dkuTDGefmRtA*TAyHb0M&yPdQ8bI0b~XQ-O%NB(eDbG
z#WC%JQ%{W*`4q^0`>+hbj%Nwzm#oy#Otg?f7dmNY;?m{G#5^1A3#XpfwBEf~il$%g
z2l578Mkyu!oaC>=O6fPCqfY6r*W*a$Ew4-T5IaM|WteE1_6A*`-l1fgH7mBVZwIqg
zs}6sh!iX`|?asaf37{Zy08vSdnM0WQN3~}6iZeZVkSNH(s>)0;{B8QTDCtP*yPcTV
z*36SzJBq+H70B*$Esjp+$j~aUN$ITNU%c-9k0n~xiVRt<Ivy>yDj3$#_>o0oE%FW3
z^_H|3vV%VqZZ+NlJ5MAo(7N^(Wm4{GfJ5A<%UQ#kowUXmu-xU|Q4(E-rSaQW>S52^
zG*;(Ys(F4TI))%hKLO#G2p`8BauX@6na|@Nr=<05GRqr6x+v)xa%Q-cx~j@Zg7YS1
zkipQ*Kn!R7^rWX-1rc;T@`MxhPx|FORStE8GR|~UI2kHIlh^;6d4%E+cyB{*y0TAZ
zMsG8I^kX$J4Y#*QWNg2PoJ-e82rCtbqEVk=OM6fsUTW)3mfaW4KZ|)o(d8Nzz%`*u
zxKCmyH_J8oQ#A*6PB`|l3eGiQk%*NGXN+Q+EoiclMRum_&B#de*2^6IzT}4mS=Q^a
zGpN&Om^F2Bel1V(p$b<+5pyF4HT>DfF&oWeXbs(+c;vX6GaQxxrRgBv6kDD@Qu$!v
zE<yZrr1)zlDSsG@>dJ8qhKJnzniW&h<#I(dfCZWo(!x0u0%_&pEcpcTqXax~EmGGT
zABi!Y^!zwPc=Dx<9kn?Y9MMdD>|%`d8V8rcY0oTSn#R>A*zKs#?NY-VaJW=hgO>fV
zLd5U!CpLr}c#@lj)=KBQSLbvS$gGIN6E!_0mUY1>LxEYuUb>B{TY3KGKo$K|Bu@_K
znz5JQN=1IF^oztzY)+X|%6Pf*TdfLGqk#?MBblSVdRn(Q%kD<r(vwr{175<wnlhGB
zwc)}@cxqgPY6zR%i9ioDHFIA@w<~oHmo_D@&C0z>8F)`ks7T1i=|A`!b9Rv$XHyEi
zkI{!6gCXq}VcK*4_Oyq5!?0ndqkTu=>U-?<Kx>PgyYM6y{IX0Z3K1dqvMe0i&1@Ai
zratca0V2a3E02!U2BYy*(0;d2*?~)Mk80XId7D6xGy2U1x+s?^^`9H4c*DN+llY5(
ziT-pA_w@LDx*>xWYoOGo%6iOQspX(^vu+$JEmK2^{2I~6+&Rk-gM~0I@s@{$DTEW4
z4(va|dL`i;WwHlF(@<h4UUZ@gN6cuN<P^*1Cplt1A(8Cm^BZy7TYinvpc{_qgFQ(P
z{Kkdar;O<;SJN1qlQox&FtweTDi^g`k$q<FIS!)ha>eeM2Fo3pFvRyqCBc(Fep~7_
zX8t*ZtLdVh2Ski5s>n;a_g<cE3qbK?wsB(Cvb^(z@-3@)^T)m6>tse<z5|`@ZnnuJ
z7_Efx8^E65XN97abRt{&Krg9eQwOGTn<Y)9yKTSb`FQz?NL%i9Sx9;JKB*GVHMT{r
z*S*E+ki3OKzpFkg77bZ)O02AYB}{RVz>8HsmT5~Jc>uG&uYE^!@5t$3nAOSMtUc%&
zrD^s>cYC%~tJ~GN8f&J)<PZL7LMf|jt*1%HJ^~PHGJ;-?niq<b_$c3B8^(C}$?i?S
z{d5$65d6ryFrBxn)GAyhluS4o3QvjN3QP$*JD31(Gkd@vR^2KiRS&7w0MQZgVV+6w
z3=br)1j^lO@faMY+o0G0lb|(N2ecN}2Cz0P5F)3qwaHwq2~61~YT~72;w#h85EyBI
zrCL_vuFA2cofLjYVx!o;gO})fLpQG4tyEWY`T5s8&Ylq~i3brU7#xwqblnm0v^74$
zB|%5*^<j>>V+%%SO?;($L0QpcY*qeO75B+9TeVMm<P3MOEj3RNAVxDULUA-*&D|p*
zW$nhQ>S`zwuui7_b{75z>}DLy!t1mml1qFhU(_Q3gzW7gCq{DeJf*qj4_6Dh(LJZE
z!%|^|^Sti-TBxTYH2rL~+z4J3#m(Sz&+o8zXa-ja2S$T9jMr4*-fj}D8#2%f7Mvsn
z0q!Y+B)C0GmY-z2>0fm`{Fdy6d_n{VA5IrqXx@uxv5>Gw0w&Cgy6}2U>ac##?lz=f
z)*<!aW(>#H2z6r*a6jQlaH?yL*7>W%fJMo|!E!earx%*paBlvp&GBE+z%u;X&Ko^D
z-5;3?<6moFsUQ0fnV*p;xkL6`sC_BgJ?hG_$zq#YW3^{Xtqs0yXw)OE6io0uWk~r$
z{3{p)%jAv5On%3mh5RywIRw57l36WFjn;L;X51!STfxIt3q!$3Gg(6k^1Dp`n7e?_
zu>yWb&ku?lklY4ByybdPO(G!n<%y?i;sS0+8lrMsY4e-*T8fHLRrLQb>Q^h;2no3q
zx#?kH(Q}9z8hLy>i0B>|xTYf9Az-(>tk0I}Sxu(&l>Fp?3*OHgJQ(?_;QVhwQq4b>
zV*l+eD8_#=Oa5ma+5S&Af&NQIZuCs_^#86To#7H13QKV5C{j?;(JRQuw|s7o1gd%i
z$+4W6p8!qDZAlE9)D&C`)f1rPQk_9cv_6}|x73{B8J)OxnFvZO3>a&2K8EDgpD7VV
zJ&wJ$0d<_wnF@=2Wn(HFvncR>1JTx<)tc0)!RVph{B0y!kg#;()q>2X8gipDXvDJI
zD5kxYwzFIkWmVVKTPC|f5L6kvFH<PS`)e%oeKp<o_27ApE1&WEkVKQGcQ~##U+Zb-
zrW@60Eu6J}Md>Z62N8TTt+sZP)C2<V&9^iKKH)uLfV9!WOYk71uf9gUHv+dv%pP+g
zGUr4xJ0$=VPox<u4nro5!9b+QL3E|pO1<KKQqJW)2Dp%jc+;K!kJ@#<9M)ILqcI+!
z6ZesNUE6BMgb)RfTqUrxX~*f)NHj#_posQDB)%#e>qN9rOnWLi*yX_i4CJm@fFB~<
zix|3df$<Jj9Iy%YG}QIi{kO<ZUxRsFvowtI7;0*bc=^-;<P$yl_+MtOAIRH@_cn@t
z#}VjcXH15Ftl)hX&17y@Xb3YOXS-yFPcc9QlFl&ZU!KB6%SBT8hHwB#oS0-!$9Ha4
z8FYkn)ZSnB9MXjT6d0}*&I8u+KU7RM;4wZ@YB&)QC$WBOoTYD`u_&FX;%DypSx7*j
z%?kY%ml>=r(2WHM@c@#9s3J{Win=5#XgWziDkvCdG>74?>p^~Ci&v}TrxNqHk0hCJ
z`a?o^{S0FMV|#aRyc)}}t7P_gxG(&3AFxDQ@$}<UveCW5En>wRT0W()@IYav6Qn3}
zb6|=4GePmgGb-svF_<Kmmb)>9xRL0}pZq-O#0u)ny=WBc6@Pc&;+lPh0X>iQrGZ20
z(8sx0j}#_gle(T3FX6Gg?@pL7cZ#sKkdv9--IV~3LE`KqHi-Db9(*oS$4}fR8KvNS
zr8=%$ejfAut604GW*g9;4VcM%iA2`KkASk;K}3mkN#N}!>IZ|=xd2Xfmi+EU9e*`z
zoPkFwA9Fj4mH{n5bY4h3qSo6nYa-#rw+!F4Q?5yK-UN4CsP$`ypk8_AoV1ivEX^_(
z8G<0DP*CIw2Buuni2C>onziG#r@l<Qhf1VhedRd$D@<}i3c@Otq`ezD9taD~$)~f-
zL)_CbX$41_d}=N1HqY=xK_qixCOFRnuXh><YZ}m5Q7@z3g%Hta<U5tH-oSSZYpLv_
zJ)?D$Sh~!Wtz$94Oa@Nm&F=G8t;Ho$R?oFiY(80|MU&}-mNKJa4QC5kJTmfOww0TE
z8j)AN0vKlc^bYT~I`PPAJ)wO&%r312udDN$P2~y5+@fIyK4nVf?On`~(h>_({oyc9
zzg4B07AU^c#2Hw7aJL6G0)V4lV#m+r-sO{=kG{{?yI=4S2hKr?K=;B?NaF`vl%Wq5
zoTELGs^K74lZ(ABv(mq|E@_sL6Og;@N>qd4{;b;v)lP)+2|o$+e20sTL)rn_=a2bR
z2R|iifUYCD4vG|<k`!k$<zmSNf3HiL;|bjf&f(%W5{juEirU0xTJ|K8{8p+#diR(9
zyp*;Z#7900%uB^R%K}i$bT{(3cld&+qfZ4e_kGe4a!mIUed3lVcJ>~g$$zxi$bc-c
zH(2Yd)OcOj6r7A+K`<+_q0UwBMbBDfCA`Uqq?YcKi8lHDt-#<NxnQPl`~%l8pm#+J
zBu%n1z+#<{=>A62+9QZ@=JCv$-?dzr$H=rhgpR4mN0RG;1u;vhqp&%wgGdY3dSM6{
zi|+mhyjtZkKvtJqka(aYTd6-j6%CcBNA}n;y?z%=K)lk7BB`)R#ff$x4&{)3`s2z2
z2Y$5g=>0h*l!v?*aX_2&XEV(PcNiB|U=@o6LtIYQitKxlqQGAqk4*m+iR{0v&oI#a
zt#qLO>(T*3K;DvL7A*If=3oVcxtx~z)!12s`);AXxZFt6iFd9^R*MJ)x%Q(I-0sX;
zQr-QBM!tGctw=tTdVnF@*GQKjhv-WW?R3QrF#gp>iiYs|RNEUHL5Nj33xbMe68PJa
zG*SzGm0onnm%_@=D<Je!d~{$HpcZAj2gR2y3{$p1+W5Gpenq~Q9*bG6i7fu%%Gdnb
z^u4cT1RS7iazgOt_k`7FPH?A?rG<}|;K0Q(`@(I@Jshk^0ZT$)vrvmDxCF}{vOlms
zNMjo#M<)kkeQTIM-~Kl1VEX^2PG$P%R;T_|(LgK0ipRk4w}MmQ|3b6+_rUz;LnJm<
z#(%FLXoK!rpN*J5k9%`c$ohUnY+_^7MqXA0@u!p*1^MLu%7l~$uCA{dU1Bm<%V<%L
z!H52qaRS{^(O*9jQqm4bx!Q_}IQdqFL~|`h7S}mIvkQ|3(vfGXFd&IGn=M1);(ulM
zeN|Nan`R}Zu$mGTWK0P%H5F>i6LWN&c-}K4W;33@*w_S_h#B|kp4<vFm&tyXG!Bjp
zuwbC|jn^;H681~~WXbaNNs9MDW1O7Q53uz2taeaM*5?HC8im3Rmh^Pqn_<m~6NHN2
zaH6rki=lS;Dd}&R$}pWXkt6d;?=8K+(FoMMbXd8R-}OIe;l!omcBFkxL+BP3xjwxp
z;!E$?7sXIW3NJ}}3I{&7`Q&NKf8o#t)~gRQ!;`6YKNE|8)WWVt?GeBE5aWuixT_kD
zMKSb@T3<?xObL>QSfeI2aYvRnrKdoZH{4nmUQkM4cD&#qB-YPLxHYo12Rda_K6X({
zmLQ3%I+H$i6fDBTaT#d$`H>3eZHIzD@jo_}g1z}9qRrztd_5l4vy^J68#l0-Sa1}0
z7!oslujW*y4)Cd7sBGvf;%w=}QP57>nacCnmt43youIBGu&1YEZJo$KHh|<nMt_6Z
zOfLePRW^h8TrF`<MA&~gFfthNl*)ai3a_;de0W6$TVs&0h+V4tpC#N$uQ%CAYeld|
zM6_!o*W%22Z34p|mNh_N5HzEaWSa-^cy~uRw;g;n>79}5thfrL;*{+0^#v!kxox3L
zVwXS)gSJ+jzKJ8m@5OKv%NXr3QFJbpa-zh>{(^h<4x4b`!%x51gczA3aj6N*P(G^g
zJfn=MG0+65LmO&(Q(GVs4hQp4G-|&G=L@K&1THk!J?wqdO-eFRvr-cEc#(QKeHQBd
zV;79()<gOkad^jCtQZ>XJlO(id{<frIY!15qLn^yiqf@a<YiTKLcZkrlu6zNt3rM(
z=e`4l+&d*Wju4qjM7mha^n>HJ&O4V83+a5##HHj`hxT$*TFDcjrnw3<f)B_k+RlFj
zC<K!cWNj&-@h6$p3IknaWe^-x-Xn?U*db9uzBAA1fIM{hYX+QDQlM0yxR&4Jv47&@
zbvrmZI-uM)@fp@p4{!UXhFTf232GI5k%^KWMLqiq=&I)AMHWn1pH1szW&!0!?mK9V
z_V>o1_+o5=a^~7QIttPd5_Z2$0WG;15>*SWpLm$~*00*+tVELTN$JC~P%J%ffd{a7
zProSx8*%fZ*xZSXc6`F+V<e8b$Qf@tXBP398A~^ch{Hrz)$8+vvMchaa5W0)VqO4}
zh#5K$C!uwlpGK8JS?<JiWMM;wZs*b(pODb1)Ck`n!m#Ew_82IfiB&J@j681Cdax*&
z1wX*RLXFJVtJh<T&BA_V==dg-*anBuiZ_?=^<%F6uJJq{f6I>lS)B<d+=B_}L9`r!
zy*@OIy-cRH9_=H<ppKlla}?Twk_-L?L}kp^vOB_Uc0Q3fOqD722Ms;5a1V$p4X)=>
z{!yUekI8!O9h%CitNFeV-l#%lhMm81hkXjw>mRQm9<0J}7urITNeU*^3_>9PF%jfu
zSydQmkFYSWyP<ycqD-I7J#$G*e0jnMhes3Ps5CcZ=7++((J!&2pw3NNtE}faZa5p1
zd#n%MREt;2V<WWVk~y|~BQ;Y=LPyy}!)M>j*eyB1Q+?IFRP9hK9n1jA`+i>>+1gp3
zYV0Kl3buEhbH*%_^HsDjCNAqS6rl-`GKaSJ4fioAD6%~5<{jWSkq#XNvR$6DWF+Fq
zcjWj~_U-w@u(5A9s*R*a=e{(x^(sU2cY_;O@)N6rVHxaELw?4*G&2y#+pKv}bH~+p
zC~!#PUT8oH$la_xh-{DSdP)oi-<=G8NDuiz*f;Wmyt)dQsWIyrpK>Nv$z(4;9+!M(
zT^*Uw2st&P@s;%);Wh#Qz6;a_*_*vcdsmz)uAvN|<A`@!N(1Wy4WV9DTX?{0Xy(}V
zp5~vyh%rr(>r3>>?oKk(YzP4CYa-aJhiBH@PG=JtS&%a09V2>#e86vkdM{Z>7VU)1
zutVsqali~`0v#A@G1Yk#?v{9CYl&Q5Bdf~w1I4o{D*4DP|9JpVTuwzjkYJ}3!`#pD
z4n!`)@$UoddK+t+H_iR<fuS_T_CS-e>$Bs1kLtcv4ra=ypn`($?I<8LbWW{wzp1Yo
zM)w%>wBMg$Mi!l3*PA)x`uH?hu<e4!@jws?hd2pYv(7EnUf&lzMf21y`xIMhv_srZ
z`8*2iBM1?~yX<5qCk1tiS>i43ccHh~F|ewEx!&GFKTxQDMi}4nTnXtp@^C3W{y*%!
z^OGgqnkAgJZCfX8+nJTNZQC{~ZQHh4S!vrwRoa;9d;8A3G4b}y^!Lp#9Wm!GIA@<7
z&)Tt`g(KvpII2*`p<tmVH^kG9p41zx;HQAld39o7le-~d%r4<I7*@F_B`>rEgtK${
zw?Iy&Ry*cMKJ)o-u}Uiw8+L|ANK{|+1R#b3Lgwf7V?Sx{>;t5&I9Ft`8S>Swx|?Ja
zmIwwaiT-hVxqvQb0Qnf(6p8r++;-P2axv*EOa?|)FDe!a9<hW$IVV(YjVD|8YMms$
z7?z7<N`eG3Pq0JBJn^{uY$}buPg6$@F1%M|>w{c(M|wCE-idN=s54e+C&~c96A8`S
zTeK;jvm8=5;i9^Jx&03k*%IX<S*Cc1M^-FK9fai|tqYQK91@rD6Tk=XlpBy<V6@39
zVD|V+eOVEdOcrH@K&#$srll)<Z)N66gh!)MEpv8<v5arNM3$XG%&BWN1s)6AI3}ps
zP(P*MwF0O$mf#t>lW>zF^fRvY4AtQ`83!0D9ktVmEX?R)#0r6_1=H(mX$Q78LB(tp
zm9K(BGb)zq7{0?4?^+Ufx2q@@Tc?HaI-l*&E~=U~3o<Ly%R>VrDckTn&e@uu`u<Rg
zN+H^Qp}CE1I9*Gem%CzNx5PsAq(0{;`Ntr7c*c8HAgnunU>Fp)rLTj7Z{^!ND6V3n
zso9HXyVkesOeiz+bJ5ia61yvR1&eHO!!AJ^gH}=M35vbHct(fr;}cufnrzJyBre|_
z^XVD}khjDZ2PynjN1gQYTBMV)oQY=(`iD!`Xqfeye%J%~Y;QH1=ZZ6W83Id7K4tO8
zP_Q9gzlxNDq`HC@r%~|HlOO$XIB(p@>&~ipiTdj9@mbn+TLQSbG=1nob<Wy+%Xxq;
zVWllc<&nFC?B6;$k+ee|D>+mP7=GGaAK{@x=?%Hs7Yu4U*87mCw)<|Hr}$Q~faoso
z*Ia9xgS~0Caaruh;!JR;3En6nj(?zFGPlv2d=NdN&#rg8U_PC6gIfq5;;=>aRu(fm
zimO>B!*{94+f=he?>%fkhd_8%FQzIl^%I=aqN7YZk^zTi+Ge^kUJ?uD9u~+6TGVIB
z{H1pHX}xoyLN`r0JaQej?zWY}V-c=?LxsF8@skj8J{Aj7DC_=WfBdv_bHU_6>d`ra
zS70n};DBCTDOr)yw4E<Ij;gDTWI_VijF<`>vnm7~LCDPFGRI_P1F&U2Zq24O^-9+|
zw>j6W6xpbZdH{PE8@LEtXYZ8S574=$PaGAz{AE+NF?1!c3QO6=3QH<nBrY6WuG^v1
zwIC%g>WI4e)n)tXpvX!N9H(ySsxOeJ2Zs9ejW~o&v#(c{j@&_3yH(5qYNbA)`{nJv
zw8-&Vujulfu{yRkxc$!i<f(1XcQ+PBt8th*r1H0JO?omd+&o@2(^az<OvC;8wH6Z&
z1huSxN=~e{u4aANqIAjauPHY+af2QdM(z1C4;grTIQx1y;bRs3DPm)i+ttd*=uZ|J
z_lHLMN{`>a4jf0tRFysz5vEcb9_Z&fekqe>Rw&+OhhnS4qF=7=fvEEhg3ll7GY_x{
zw=8ge>V}emKYlesWH1|Wd~#^AsrNk601{<GW?WZOt?n$Z)57XXML!&FR7o`ke)ujx
z+H-hM5-o>~se65M)UDv%Ub_}U8(tRfzV$)t&zv>8Z>+k+P8UC37YugE`DqAKa(Lky
z!@i{(M|HV(uVl0dgACpEE)<ySo)0I+FIlkUTTgP%m1E1t^7SZ7_tPjStT^Bk=9k{^
zcVRKcg{x@aoAuJLV_I})#j9wy@PrL5MkB^rqUcu%DW?R4riOw^-`kQkli=^ASrmC2
z2*cy@!mo&onbKp#C9;*xj!hiDYmTuXh;G^N^>7ht4+*^N=$-rRYgimI8H0=6jK7ox
zBlBfCr{{QwdxGe>2V6L6$xv+(BWA`U<b^skS#E9k8ze2oCP@s<nV-H>EfHfOel3NX
zz5yFpeiruwtIXa!%my7WC3COvu6Xc18biug;3Dwc4rehvjU=idjCx~78Inec3X}n~
zlH{*&Q;cuDNX<YN&TQD*s1MZNsINLmTph%f2<5dOe0i0Qd%{fiR&9QAtxB#g1a*{a
z!FNAlkeI7{EYa{nm|}9ee{6aIu|nnQojCb)iD<KbBTy8y7DlBVNLLTVDv@1Oc^k-=
za~wZxmemQPD|_#=_c<-z3S}q17<@UM_U0I)x6$taJ_QZUeEJMaKpL$Fmz`#g75^zv
zdX_B0jE_q)f3*1^c>0FMMnrhSpl2O3UJY_w0~;?fSY=I3ov)N-0Q4MFK=%AWA!&4o
zpR_nnW6rb=h;Lfds;RqQcY^_N@gmu&3o=035>qcxLRzDIV=~he{ZW3A=J2kYi3#2C
z>A7>M^ZR%MbFx;O9t56bTQO5u$td}`5f=@tRw~5|)24{a2q;j(*}KOAnTh2q;Pg}!
z<hNznj=}BER0?i`1uRcN*XCt^pD7@vtWZHy!HrGV>DXl`2uQLQGlz)<DSj6^wKgxT
z6u`=#vK>cEms771YR!;vJ>9?n1d^kAJceO)81tV9H|G_=BBL~I5-5fnbY1m#v_Xpp
z%=Wh)Q;rNOtdH%RtYko;f{>9+a02KX!Xo3-hdrH=U7hph`r{<vMazsOg95)s)7s{&
zzljXs1U3Zm5Qq<SCHAG2G0c$_uTjK<_$3!O+1ejlaSkEE&opPShJ5b88s?Jg@h845
z>P^|Ju)+S|$?FJdUF?inQl%t94l-#ztxOpexui#mRm&~VpTwR>K{Pb<NDZjsdu5DK
zzqiXeIN(zEQ3PcF?g<xU%#H#+Ud>pmR;dx)^mlii8jF?;IIq)t#ef=){yW~{|C>LJ
z^}n`1?eBPt|375K|Cv>diIMYvkQLdkFTVsck9FS3W}w!dAM>|bo|uJUDs_J~bj2N#
zJ$UsF?A!dh^X$b%WRv?yH^hJJ`suv2^b$X|aETMb4owz*l@>~^OtX&I8I6BH#nu>R
z1a`zwxaQ0B^AnfJ0frLGBFR&;ZtB~QpwZ)EH+}z(b>U)nr1?i_{mB7I7m-DhW(&E#
z?QlouoQUxt%(i$uw8z>%>A09{7cUMkvvUv}&#rfi>Nv{qr#LgiLO#$t;Y(n<s<Myp
z_Ziw+3n}VkR&DYQk6CWl2TIM)L-qm1FzHr54`-A6$E>4{i#KClcM0SLgwSg)5}371
z#sWje7|kRJ%!8l$%{()K1rA7eR|^Fp^sZN4&!1d<sAPYOF8SfO8qo>_a$RSGlg5v_
zAU0Kce%GN%FA}`(4_e??3-Hp!f<u|hbr7<IF8}ye6(9z7$UrLkdN*hx^;_lM01Y0w
zL6=<3b0dQDdppcNZOu9|%!Qxxg@bbD-N=LlR!)2ST+0UcMiS<-5bP$r#GnZeii?|=
zo#iF%XU~nWfoF;@&7n~wa0DkMB=9MDP5SQJ&%%gEVy6Z|!TWZree<=4q4enHx+~6j
zKYKsIZXj8u(We?73y>GBu7?WYaas>OIU(zZSHD5Fg)QUtx}18L^A4A6P*!*dj-|^x
zY1*66?Sq6Buw@&#$5LLR{<}#@F74?j+cTA!L@o^V;nv_T4Q#rAPKi<0+1_kuo|MA1
zcHGtg>(m(8JwY8dP9WK>N$y|BRc=2Ul|r!C=!_$qg;Ez7Ohvz+uEaHd>iU6rl^3;p
z1tyy}ia%nk>b)4<VShj9vzI}13_H(1X<g$TlV;Y0Pl$Nv@Feg8n@q-%P8jcL`%Xg!
z-)fAkU}p-%LF(s41HNr{E^_La{tKK=toIV<HlvO>lt4jDhO(1cBP6fxqZ0hCGdv74
z$TMA%e<N9#!T4wbJ(+2JbDOQNUs7?0wXmllO*s~^A4MyAbSCe0lGmW!w^pk#HXOWG
zgI8c1y=lmj1An&cRcZ?c%KOTg2hZ=IvlB~f+X0-j8DHz7h0kBMI$FrMYfj6ox732h
zWZ<;5HMP{lN%azK!Sg;YO<8lalDboA`4|{11hmYFsm@e)<2{QIX}w8BEkaST?=*Eq
zZRpfxPlu-!^LQ~~u=>(n+aJrbuY8-;h4h-_qcQN-vthik*Zls^I!dbVCD1}z-S#R-
z0DjU`(w4_|ss=$ep0okhENRW-se`ivy<Xq4!~}O9HEzPA-d`oO3!*u*jWYg=CPoxi
z%{#@$Zyg>0I${4tvyR>2z8E&!MCDGg$5-V%q~;vU?ezPeP;|mXnwF;{JKwTl?}7w*
zAJ=y&GuaPPja{4(y>itrnR)B`E6ZVsFExG?8D?nFqAG*HwgpCbXyf5|qw=bX)h%T@
zdeZ)|*kkVGB5z7sf)URZT$ut)H@iV)C4^yC{zRatKFwGce;U-B9Rorf`T26(<GNg`
z>NGfxc*%MdG<ajkS@rko{TQ;@cebu1fTY?|8-_JE{1!*^GnY%;z`>!c>KMfo2?HSl
zU+_^NxNt(T{T_e!M)hnL>#yP(5GqKT!yZEll1J%#G6J?s??|{G&VT+x1k_QuP=SkQ
zoVW2k;y_Sm+;iB7EB&n!@x#5fye-nl<J+yh3V%s45vtrI(SS#eB?a^BnnhJ+?VUN!
z$kUD^AvI|87Al%Cek>{%aklx@I$1^ZZv(=boBAqXvl<HHyxO4D388S2X2I%bQ<sbM
zdQTyAQ`;iEAx1exoX|75hCOvN`C+d%RYmpN0Xr3w8SIdPDZdg#x%fL06y`%nS2wK-
zqwj1h(+^2NCjABn(Igpp*m#oDNCp~w*<>2G%v+yrDO{yHe+w(j-aRN)*pFYH?+Krg
z(pS|VVbG|>66KwpWwP6X6*yT87UM%>Gu_$}k*HFXwYcH6Bt~@xVL#ABShk4iD=_z+
z<O93PsZqc4QqkmPHq(2UTD$`df~izFFqztJLjZIbT=q0R3ZT$m?S=~_^Qkmjlvu(v
zTYWK^yqsbwqtk(A>E6*l^aS#^$x^(USu$rj6n02C_q_fjajZ(Pp>R4$vtF(=&9F`5
zP!0DCqF)3iIxm+~D^GDbEdY}S-iEHkbZ(h-ciF03cp4+JMR-lH$7z<?<$i9Zct;W4
z(UNHPn=M%KL0j1|bW*@H`Djgf1R&VO7+{TuNmdKkrsS^8Ip?miO(|Cz241W}?*LQq
z_vq9iswytlaDw9mL_;U^!E@{V{FI9be3VEGTQw0{y3xGVcI*_6#?Z)=+<v71H3jmW
z1AXExu#*+KvPpcVSij%gyiytn>Vm&;@}V{ESP9?~AZB0W0@Mw=C2T5Gz~5#JDcyGA
zQ~BDvu!Qlv?W`UV*Uu(|#%En=J@JqG`v|WRiurKDbrCiy331hgN|##6-4jtjEq&#b
z<a1_LY}qt2KzL70Mthv8er5wSv}xuihh!OpwmgJt&Gvs}+^C;4;TD%BM62aiX;yqg
zA7?ZbL>J<fg#j<qY(m3H*1fn$b#Na<15Uyx!8-H;ua3c+N|%N?3TL<h7yV+yMo)U1
zV>EiZ`x#(ji5Hjomj3Q5m9eoBj_^<zSeCF6eX3k;L^OYWBXu9>GSf-!-lbygb~ncW
zj4vcPfu#b;(wU4R`F2~>umn*&oZ(-u?|E}AT;Sn5{*xvPKa&wC{J<f9hRr_{Asr8H
zxVBr{P5D@$krl~#nQLo8gIW_96)$9`vq)aiX1$x8n9`212|#drhW2hrA<&m(T=jS`
zsPlL4xW5>g{u4O^tp5d_OH7PJ%q;)5Zc_q?|0N2Ig@~EypRZE!{~PfG|2Ucd?E>o0
z7x~MZt|AUyjkjx)sLeJvOlAUg#XD@vdeKK)O0F*6$Ythz;YL{Fk};H0@i?~%dAbe-
zMdXZpIL`SNq)G&tPN}WF57@dvAVkyrwvr;W%RExpG%1C=xH`)oIcMc4v%`+qnql||
zM$n9zuzDpl>Op<0NvLj@Eqd|8h$Zh$0OjfwrdK)_lZ!@fk-!D_iW3ONH?%NyKvw)@
zwGk<Hlp{vH=e<;TfB(CdRO|TIJqjrUnXPBn{AG5Y_N*;h@|0ujhsX=lO}?Q^k?1DO
z>%mmWM<u%2IT@fnKn>V^MNtNP8QXYVQ|OiwF(leY^(^$E+`B3b3sy7w<-~f&u5_;^
zJGR%H{Q0)#Hvjfg!Cl-+xw0QdKbEJz^o6E(_hO`dUhM7O1^M@Vr?@tCKbCmCfvhTD
zP9o`|WbL<n`6~O}A08E_^o^R5pSkvG><!9GXeX7#=j9NW^z_ex&(;A?I+&+z57(?c
z!J<7abf>PStIbqA?&<c;c-8{GZ1wQ_oCw526NbWU$EnYXSt?%##*bp$KKBTo#cyq%
zMg*ik=Y>sdey0<jg43nSQDbb~{_Kh<1~_+ayHN}QOFN!senrF<Lk=s4wz;8b9uDcZ
zkO13Cl#(H_MIPuwE?DjHd-Gxr2qNm9aXM*<<{B-8k3e~GnMk;1Uy{uK(p=u&O}q7#
zw2=v))~%DFrZo4}JgZd91=$EtP>yqiim7#V30M6SB=$0pL6#{2{t(U}idZGsuw<tm
zO}_9FBa(0`p1!ft{)0QWQz0Ig&<&T6><FrRqxYLz0I6{?P21RY7m=IWu%v8>o}CF$
zvyB>t7`WT#J6kaYFp{-gaPkz&_X8lcD}0xA)cHjnBCtH%i9IIDiTQ+_O*Lsm@<Qit
zOVV91DWf6%O?WxIrzo5p;JggXZK-u_AppF#DmSA!t?hHj4F3*(Ag17Q1Ob~TggAZh
z?V!5SdBWUwJhkD8soU49!6$cIP;=Xoe%{PCwIz<E=Qw^TUCJ!eISO&59C;eBdFq5J
zj0<j`T{t#8LsNG)#?UaP`|K|9LhJ8W2^j7glzBVVd%1U&d#gP<d3lfZCu`pnqf%pI
zB`kA)e88Dgw~cWrU-liXx%Ii5J6``D<=`g(Ge_IW7xlmm8G<z~N3labRepF2-zPCS
z$XaKo-l5oRXxWIp+IfJ792_sZ3E9EN&vedQcRhpEgG@9P;eoiEuX$s$ez=u~?l;9t
z@#KtPy>wiTUJ}Mtu||&$U%QN!^WuF_J-G;=TPTZw2{7$_(ao4Jjg(bY;SWsvPMC{k
zvSW|~7qfOup7ba=sUh38NdKV8wO`+piKo3IEhGri8;F93F=_h1MTWS5@DS4PTCNjq
z>za(?q!Rhl+Q>c4c3=+Jg6_s@6!1g6+6nJN0P6KZXBkr6aZY-;y)Rm0i#_=Qy<ePD
zX8jl^c}kKXX?SW!R(G6+I}mh8;7X@dYN&n3!&L!N_!gf7f?XzY2EhL(^b7)nLR|UE
zhSN7r5p3V(V<^+F#851FI0Gsq@Nzm#-6!tkq)mU>(ohcIGw-$4UkY<83c!{r{4L9T
zWJw#%MHHoe`CLrQEwQ5XssoF_1E}$$?>w+`UEy$GL#(}RSP-0R5qi*JiVJ^4I?grS
zu;8q79my5?)^^0`@!ewO=KOQ_T=5D{ZcNZ87!{Vg<*_QVA>~=D*h3%U@@@p0Nm^MJ
zM1<J8C>%k(`q-%79_6zdmTnYK5gC-NHqzjBF6$udwb^N)pzzw3yAtv|ItL1<`<U0~
zTmP8<9bQtf5=gQR*U4$@f;tmUd{5`=C7@8UwN{@X8W>f+kNfIFkbs1gix@VqGTie3
zZx&e@+Qk$1EK|nDfy3fvw{mp|v69J*1LwE7A7FZdi+uppu3Iv*%rW&1aT{I+fj24M
zt-jcgU}HqT{#^UVPfUS&XS<SU4@#_WY&60~UaqxU_iv`10?KV2(~aFfKxt8#(j$xa
zK@MH$cIgZKn!d=xz^N-x^1E|<zhV{u%Y}vJ4%*v;Cw#ZHX>O2??F}J?kj-Lb>*!bM
zL{-#>oBp%@`SuU@!%xu-jC|oYL#x(qyKL5nsb8IsJ%9E<R#ewJ#2hX&LdGk?jjrxH
zwniCafN1zbm#^T&q$^Knai7j&ScacOoE^L>ToC6EnFaCUh|W20*>{%uD9Cy=?>wWU
z(bho@NKF=CGF(71cf>?Y-3pg#DvEkikgHe$+$^ZGsb5IjerZqKW8rF2_0$p3!zJtf
z679We=nS<r5Bm50$C`+if+aW$>%J59h_v3tZL){qGS^71Z%jbD9H1Q@JKy>V7wDT|
zX^Qnt156y_WV10kS5x>o9O&Tv2GXLni85Epe`iE#q-bY-HFN<f5S;7^1TBzhdE*F?
z#}K~y(d);J;oUJDyQOg(d+M7Tn^MKlj@j0xdrG_@sQTVKNgoAf2ZyMY+?ul*)L6rB
zUOFnwd{>jd-$xf(wu9d4`k89LNi=AlxKjg#)H<A>!%~JzkAAr%6ealVWo!o%vOWkQ
zga1Qh<x%RO41tl{JmW+tt`NBh#LD%JBo~8!1oMy&sy9Y4xmCMt;fi6X2Pf^B+Q|{v
zhY9<%DhB*Ro0x4)H7~0p(qofH&z03X*gY4wOfAv&!H9Fa<Eibpe0`_;z)M7vRRWv(
z_J<s6>!B5U%9en)+)YRkJ5$$vIjbjyD4V+5AY9}6vy<;O!zQH4(rwHqIR-5bDxKnq
zyPs`kl_+7%bVKX(!Ed5w!jwmt*cAuyvH(3pXMi*OFURa1etE!y$D2a$>xi6%Pc4|A
zX+MgnWh(h<3T#Ll(rOM-cjB*~Nc*?vN{x4EcL)04CbCHzZ-%JQ+{omLWpHd11E9W+
zDJaL2g=`){ezQ_;b({@f!F@(r<OUaor6dZVO5INI0Be5{`Lnitd;>28dh)P|HX-Ls
zFN-$x<d-7%m+|83#_LK=JFekLIQLmvkxF;o^bnoLBWU$toT|zvC$}xNZE5!-B1Ghk
z?NV%p8b6-S6GRFsa#>(ntC-wJZFgcqiNJE&P|uVdp^J`(%D?)%SL$DM=>ICF;P{7B
zNcTVEw`cuFm&JeCOuzrz?Bieb>;H?E3C6#^R5|V|@s~Dp`_cph;<b93m0;mTxC+D}
z1Zr8J0IPlJ(br^Wfets1jRarf@ygN|(_f}WI{UANqHFHF@wPb@<q8YIF36V)tLU3r
zy&6Js2-qmq9A~l}QX*$v1)E}sA#q1*&-@ZdIy&l&ZJ7!64?4mJ&-_E@(2>HxFs6lN
zUtH#ns~$I5a<Cw*GY}l{#=5AZXL$Z6E75_0?H(Z$!jq_u?HfEFj&xXGdIYTL>Bf|B
z2yQ&<AgjbpK`W7>bLWUzPBVw7Gxs9<`%NAsfe2-KiivfVm~CRk{JIv~N;hZ@yUcL?
zYLFo^@eS$&5%gTTA0!<x{l~Qh-iG*X=97y2lc<vjtd3K2I+W5zzb(U@-Pkf==uF=-
z1@?HL95$S!@H#-73YCWYfB7(6`~N_hD6oVL*1sg9nz*ELsf_QHu<2+7?y4O1BR?;*
zu83)i?0#_Tcfk9-8s4gaygAYPB0SwxRvK>uu^~PfmELt|X$Gsh2MNEg)3<9>4jG_Z
zHe7pF=<zzEl$j}A0z_rd1@GBcYEH|EN?bWPrln8d8lx8N7Yk`iO&*V{k&n_KMY<fT
zYNtI)XY)+JKv9K#S*X|1=8X%5`QBCpd=DJH|0Wj9ceT5I+bRq1a8b2+D!3^N`O6oJ
zzKRXcFJO<*&`#-f@J7vobH!_4f?Q*Sj&SG>t2ig~jUez|@&s^IK(&-}x~uF@ytxDR
ztWh`L9(H<)ujMw`U`{i>xs2VqE@2QvH^3c?C8dk10>J4%fVoAYRg4me^%Xqwh1B`+
z*|iEUplF>FN|0={*cNnrh*E@SCvX&DgR_N<jI_CkFVUzkX_eNYIzhV>?V4zoR2QW<
zd%heJp6WSn6DcK?y*Y3_K(61fFbvZ=h$l$c)lU0JMTT9jnDp!7I9rw3PC=`i<NFy7
z+SaqNdv;T(j>aso&i6I^o8HRO8viD3uK9j(ah%nq)k&jhfD^MO@^Tkdtc~)Ib4N0x
zP(%V9O?|M0N>4TS^d~y-i%VkH=d}ARJDKlEsDWYOOvl|KE#r3Jh6DVSXl&i=dJi0$
zvnyx%UpKzN4!^Ze!XEC3I{Sut7CEb&_u}htKgt0;-u5f2Gm$Yt6*r)Gh}<i?!3Q0c
z3p`Y~RP;&#8~`yRp}qsNr{pfmYlab(*5@Zg*5n)BKK?m#T-eke6MM=L)bE{AxxbIU
zbFdRXow+28QijA{>qG)ml}Q{6@KF&)^4ykvw0`2A&@m_|cG4tuH7+&~qf<z0Z`YQ$
z0VO`qE61bqT}zHPjN<^ItHkV6=W9S#d`)Vx@3B(B*17XDIRIeFMRLR!I*D+ya<G2M
z+b~E)o_g$W{M}UkUwbwF8G`%Y6~2EOgZ^WM?@6LqKVQ@YmEv>za}C?uZRZ2&+6|8Y
zNGhwa${kzU`?h^{BW&0cqraa_0I#E($>R)x{@O!f@Eb8~^sN*TXIElt4UUTIN(Lcl
zG`i<RBI*Xlq+mOSy5b3y(oG>;`G>$Kd*ihZC{hn2uB=xe+GS7FZ?as+;M(N@rowAs
zrCOY%$#Q#3x9FC_X|4ni*1TBFK@(zwj-{&#(FMQ>WdGm%e73&`oc}v0{R3hCQ=r85
zPfFtd`G5YQhyKTD{BP+KCdR*pz_1Ww4cA2AT{vobmdU`0{5X1%UZE>r$1S(XP`5h*
z%Hx%K7$0UzIp7!h)d)zt1IU^~eIb*Ua_Z;z(>Fdy#)N2;J+Tu37xSkSBrqsr_Cn#t
zraA<6<_7^`TA@KlJmih;@N~~}+o?debZr{?i-mkYY3HQ=2>6O*mG1W)VNbl~)XYo`
z>4(p4QNZKNGbL4q(&~yi?-2Gr>$@c_{d&^$KKR^2G=`NcCsAFAM!WjK6*9EoT=h~<
z<TAY>cLAL$IbMT|T=&aWgr$Dz0cGF~4!TLO=kTWrydbF{?<?vl84+WSqlxK62LPkS
zKDS=n8+O$cKxgyHf_@J`tbv$bbjBsDW9z5KUh8Gc8d{)2cGixAku`mH{>r^S941Sl
zwYSBR_CA#eqTO(^t^BfAt0ev<vng5mb&qwPOjEj9>bZc-M0!%MJK-(M6_@gj6$G*)
zwVTs<VoYd%GPZGdcm4>pj;8<2?_*-~D;NrVN*|=3nN&7G+jKeUgLR;Fo^`SP*(`}$
zc(MF>WAok$p`t~~nm&K)s*g*Cz^qe8eun+9^vc%UTY9mu7Ml1p_XEtd%vsUF^b~nE
zzt^HaLRZa-;q7|M=gBdKwcPo-o>A|!#VDC%lKGG3p_@H0RLI?PnrH*zw?Jw4&ffKl
zR_#a@Qac<I8-sgDC6dWNgNJpp%*edM!0iYf!NhNJ*j@t=eh-SVDw9IzV0Q_en|BX3
zGt+F%Q;(JO0TS1`w2#v7l#8ZuKI`a_Aml>yD*Il`uB1Td)RuA4>}6;K`VDRcjuSAv
z%+sF!eP>I3W%}LAxQEjra{_8V8g!z(p%ots5teU9nALV<PiOLr*J2x9sar(#T?6GA
z4Yk3L?(Uu!s)Otm71W5+kKEy8B%|nb)>Gmsi1o$n=ux7E;UtE|skT;(hF)T;00V(7
zr5G+WfktEVw5&P3PK<em`$%$i%51e?X0)|_=E57RK;RWe&z4cZ)RdgNRgqR$UpvmJ
z5lhbVIzPOYaw*0ytIm;C_Bb0Ycrvg~k>T`8*QNp_8;`GmYn#Sot#t|Vd`X#(EAp@+
z;~hXcu1EFSSXHH|R3JFoJVIBdRVusW<cw`hhI52ym*4${<P$4dKKYRc)GqHVS>RW5
zkj@_5%=W&eb8o%_rIH*nrn6<wwTlmHEFQ(ar4ARL-B`gBsxQ~A!_oUlGGk?Z`~mxK
zlxsg3MYQ9=isrMNx(_yZi5<%vlumXx={2^MQjgYBBJL_@61Mu4WpClWw(zLM7A9=A
zk<5S=0{D$5q2TkWY1(#kY!c9kmEsASnqJ-yy^HXX5^#yR@z7)xR`RGORD{l=wk`f{
zCjXl+;y)fA|1%_U{98xke_%Q>NTs#teV5hhPpltVXFOE~+?ze>v`7jH4JR$bf}~45
z{$NrTf?bX?OUDVQ@4@*FcH99<9@ETk>yv|Am_OCUbJ?Tm;h?pKnT?#~j(hA*vgM<V
zW-y@>dzvhxPNQWF*M6^6yDMazO}fa4?&~!Po++26DrK(f{|+8V@HT*rDmcuo?^aQk
zYX;v6u-7q+&ucR@1)}B3c{a3iy!R0_ZLc3Zo;)MsJwTxxb@{uq_=`m2UqvSz|1_Ka
zCzyV=|EJh6<>&vGUFRRC@gLu>e-)iDa{eU~eaDgWRQnaX5nf)4WyT=^x(ME}C#X5E
zbB9<#QC{dh6rf|-$*NJfgYDGs;i-_;xh3gfbiQ@dZ~hvaKRuQ{zO99P=I?8^)}H#T
z^75@pCu+t3*)F1mhqpH=C@IQ}>6DZtgG+P<r*Vy3OJD}Rqxl033u}h)ty}NKV3jkA
zEC0hXUCd|3&lW!#v$l^1q;V!w5AY#f_9J4gycX*|D1!EQv&Qh<43ra(+yAC$Ek($^
zE<tv^EHlPz{lULFexfnv5xHKe3|E`Cpf3IHg8j7Rxpx-rX7+<ewMOy~9PQpTHIE9)
zDsakfy!ZIB@LjH0P{Geo9_J13q8va+IZJY>evsT1I^X@9Wk!ZOvj@R$^?@W98Z^Ah
zjct3zp-j0!30B#)SP6>8b;@~MREJN#r02FNULmF;5zA9zXU`ua2qvLbae!lA(^WTy
z;aMqMqag;PF8=C4Q;{ykclm1`C>RH92E);ErgbJ8;R27Q<<%U&8CMXW1I;t<a|lQ-
zpwN<4LCFARF0BEZ8b}Cz9>63`_HI77^^>3P>!*>5I(HXCMr#M`%AiE2teDNWJs%gC
zOh;@9&&U;hrqi3kTeSJqY=rJI?FPG$z}{@b{^vuP+9C6Z@@FROF^$4RTpL}lj+{aX
z9|~-rT7PK-vec-N@)+qGan#&H+E7Banuyy=&o@!z@<7%7wvJ++vy-X=b_m(L(66(^
ze%vhlmB8dHMj$gB+k5$RgdG1@wKzmR&$e*#f?;%dz59S^6lnZPDQ8?}cLr@$rgLzL
zK#n|Fu-A3gDKEEiER4<8l_42>@~1fP&k?mrL$c6OFQ_bfl_ait*bA}iDF9|^2$k|D
z)$2(+d#{+h!A7b@QYeMWok_9u!}5gnunvx<{8t!CdvnB0SW$~4^a=+bSl-#t_VY*V
zUA!>sDgR5Y(d42YViRtQap>bzB~h8K;UAm?9iJ0b>6kbp7ZqY96;6!9Gr>&mq3A~4
zvPBfzwovZ+Fq4<jcKFo*MXC>z%CIlBZl6q+BzRH>INe3iTw2)uco|l<WX{T&@Bfv)
zMBBbubFsQl8+KRn{isD1eVnXzl&I<#Esnd;8uv#p%X^<h&K)z!jxAWj!QES^y$F=x
z0)4!!g=}aeZEB&x+ZkZQ#pC=nK1F+Rd~ib_j>|p`DIm>35d}sh<T-&n7i{SrS^tOH
zZT8NG0sDLcP0R<bavY){wf9T7$kJ2zNC2qNO@~T*_IMngm)a!f)+d3t*($804Nv+J
znEoA~_eZfpz60yL``9{_sZg(X3q~;_0N-4CLQn1NFtz=ly_86x=cCe*`9Pcsu5&u4
z-B;&X4jKZYZgFGunL_+KDSU-al^|7N-O9SdnKPp_YyrZG$72;rkR@lnsS4>-cqqpS
z0YRaQl}^Q|x4ZWmeoh%BR(R^)4fVh5YyXC{`6s}!vHYuegqf4&55jT$y{$5C&{gpc
zxJpsrMxVEKoCp1FvQCi>zB%(?kg^)gD0cc*awY6bJxglO(ClOS^J-NFoA|gOp(J@|
z&ZIT04+<M@Kpf7f?C}dY77EKVl}&vr2j0#T{v6t^J|lS{)*|cM%cCB}LS6Es;bsn_
zfLchR2mU;-?htlLL;P92-i>B9zbXIrOE3BGog+u~f%TG%`&Rjr0D`jXp|7M)U1#ow
zbZ0W1pW`8H0`F)1t!S-l#Ew{^GE;_{1Q1-Kv$n>f*NhkR$XX3haCFo$&<vwDewgB!
zQjAmy+@qD9DZEM+lif20Phpe)#pM%!O+&sJx@H_Y={C`lB;c9Db`x<R@jLJNOHRaP
zhi=RS9$J7pJ7W&99twSs8pPk7{J*Wd|9$lTXYlhMH06I;&hh_fB@WO~FtRc=cH!j(
zNHG!pvoV<e&j+An?_%g;O2qij`=@AV{#Pjd3#a=xH~C*s%Ea;)r)IX@7SZX#gFl*^
znnqNHxeS!B{Qbr^)=}3}>UL`lkYwN%s6k+E?kJhBj_ytFt&2fy_iBRROYHo-%s01`
zA*8S0c?fO#yTTh^vY!xB9{@i=jm`SaY8nx#Z@C)Hjz0JTuZ7D#M%!W-9)&w!A-u-F
z9#-qr>4ol-=zYV%xq>GB^IBC}ROy`ICY8ElP;bV<+{?&qe<Fnnbn5@sqGF_3*bm1G
zcuD*{=8O8Xx0&2f+<*g?8ntfAu$sh&cdy3R{gu0A41z+?fGn7CXX=j1EYjiIO@C#<
zhO!lt>Mcbv-|$R$f8%LE;PX*yK%K!aJY2b*W9b<=Et(PJ{-#Q#w{-f9Kraa0@aV!v
zI=+6Q^B(bj`PjV;ewUrFz0^XMQ^$w-p9pq%A4QLL{1VGQ>Q)V#^famtcZI@t3(P$_
z7slvmvHV|%&I20z*ml5lS<T&X=J`<_yxT=Q%P|$SgX0d_iOy5}3DkC@VbywL5+bn9
zGXh$YEPmdsG#Jdyr}B_T--vM^gvFIIV)vEc=@hoJ$~i-zoL_K2MPdk0D{l_yFIa)g
z22Tv5t^*8kWHr^lWjx}U83#0e20!c(^HkZ(-F7$Wkmxi`bA1CiS+Gn05Fg9G7rvSX
zq}rniB)4_$$}MVNVq_LKPVXUPTh4vg_V4EOi9Mj>lvx}{>vUteR9wD2LM<DXtfr7-
zKPNCW@jZl$*wmS^_U45?ety+3#0lc^VPF%1iqndy03su#YyPd$%E+V><-YZuI9J19
z8vToyR`Pr=R?`mO(oXkr!*=GphbEWl)pRoSWLs|`x1tnGLR3Yrm98ZFd@cyQvtVZo
z$SrUH=WAK9EpI38U0^)ZZ1K$Q8I6iGjC)0;4vY#-uJ-DPRD8XoXS9#SJk*j4%b>?z
zbfwXv^wZT#WNqM2YiFP-R2zivw*5;d@;VYwhn^4tQlU{J(<`6TknIz4KIlSbk+oM{
zVNh7B3uW2rC(wAs<A*f<lj~(74@DarX6~1;_R=F^AS)RmO<<b8oQJ`rh@U8=_!Y(D
zcfiV^Y|_ueHne1(Huqr3{Gv=;U~AS(&T@-=ynyP@p@8l(i7Trea?ht=gy%*#2|e~1
z(a0a;6nko1;j8Zyb7a!AnEuo?V%L>L(*Y&Q0dJo|zT%nB<-jsNHOfTz8+8Ek@fo9v
zd4(YmiJD*0uE9t1EF@+ruf1-l^A3@A7!zC^*?ftvu~xrG?ZA)*`4uqd-(Bt}rF-h8
zWQhWSH>xtQ@NB;3<2+0C$xTFKgGp`##uoY=eS&)tkI$Kir2IyZ_2A6X=Dfu>!jc1#
ztL14GcyS12QAUw55<)R>SR0#eWYC3RQsT^(w`OT&n@$P5a+N{ICJuPP<y(R^xela%
zrk1Yb%3erH?o$&DVX08LL@11l%ZsAl{-ng^^q$|fpEBSAPGp-@f+f;gaRv?8oC^Yi
zv7+wx$y`w)JfJpvPyePRe9EO=cZNK8_C@F7&AE#a<M?+N@RyZ|u%(N$qN$UJy{&`2
zovED*5hp;z-p1ZZ*}>4*6d-EqW@&7yBq0p=_t_>Yq9ST)Y;R%;kTkV4w{Rh1XJY*q
zO0)lgX;y%;tC5SRgDF7D_RpOB=fwQ?xe8FXG;y&YVq#?F`X55@;$k=E;28zJsk*dF
zTqU8(8@$j?)0j7}e2L4vAtq81w(R9|bVZ>k>t)OdrfUTuXsr=0H3DPKyO`En$FDr#
zbp20}q>^h^)wf$?mM98BH~wB-iR;W24rmt~`(T1;8q|{r5&xbiMRAW9FWS8Y9F^v=
zLj}<2{%_HSMT4x`fE#4VR`Wzm(1O&0@pJ>$sbpJv)^@2bhs@N#!nmlqPcPW@Y=;Nx
zIl<e{u7q45;Twad{eUXs63{r*3@u6U{DT^a*GEA^etW7IX`-+owEBUm&_K1#3gTUK
zm}|neCFt{2g1$|1)X7b0yB;quy8^cA^A*+${sG{?ioLa6iT-2GZZGoGu?UrZWU6FW
zqz_o{5fICcYKDXQhrEWWq1kgdMr!OEQVQtiY!$M(eR-z(#r|}>8@yOxuF6JS7m7G|
z+xWxOq!_5RG>t~VB9}F_AMl=>!h=OET+h5d8Hr44aO}Z$(gL24P?ft_F;;bbT=}UL
z{J_%ag%G~GvrB|M##=bTJmX@BdbAzdxMp2$NH|EK>(h=!i~>z5ig<6wzwp|q7+vxi
zvcInN15aN9;B>*?c}0&4OLhn_O*{Tv_16Qu$UpTj3^zVxQeQ>V?yNpiMn9`j6}N&X
z&a20wK_G@EUA&P7AdJM74YXKyx>-j?NOTx(R&om7InTyD>|?H8NK<ME)-{m;3_!vd
z@{%1P(PyAvzm+`B_L|Els)B$GVWheu$+)9Ty~8wuLok(#1rD`4IcM;RBvsLKRj86f
zsf-lb;EfF}vGwjHA%L>-8L#xEF$LzEwxUG1DJf8X7$LEU#%374)|c({XW4i}u?oe+
z29}ry1`UK`apm6UKLmvltz?Z4p76$H!EF#^XdfbeW41U(UgmDW<{YQq(u?W)c^W+C
z$v2yS-miEO9g||SaBb(h^e9!7CY#MPPP|w{1jvZv>uh>%l98?6DR|r%<4~Hb)@mvb
zd{-lW|HydEFN-AK#UP`iFdCowpa*7Uy64?cc?<?w$WC(g<K=Fo(TcuU;Dc?vtb_3w
zRxUGiso4;yWQ_aiBgc%xlhNLMOY#SNz#vbR$I0N@=L~sE6ZSN4vf~HxWs;J1IA#N5
z+2OWo?09-!nbY~R(l9|JiZ>j{H=BQfLLZ_LSjbZwKRu72PWP2&!8|UUG$#5_20lf>
zQ?9eMjjg34p~y`Cf=Vm+t&C9l>uPj!nf6y4copJ0MPVW&K~)M{szN7J6`v^l$6}4E
zQW;bzzk#>;lJ@T(UrV5_gy>ojOphMEwN1@f&2;z^{Ag{7-k=}SCnwkV1uwQB{{9-w
zW(A*&MIw#%GtB-}bK<pwbJabYluaI#`7orx(@V{jByrMI)9tW+yyvqeC45wdva-xj
z&9P-GiA-1X>>Dj(X^kA*O<ur(WJjz463Mc4a_%}eAcn{b9Y%*V-|@N_CXl2Kh)^=y
zuY&b2V9J_>bNE4Xe!N(w$=1|fenpH5ol)*$Xvad0e6(Y0H#}1JA`@Qw;Ur0iTjkSl
zq1nBXCL6Y17v;gr1=W=IWPp~34}8xg>%-?;V=YyPvjNk=?1yUmC<_Fzgc`EU8A6NX
zS+7Mdw|uwx>^{8yY7+?MI0P@#V*ncj!IA12MyO+AgZbeef-dZVZ}>}DJO_4NTDJ8U
zm|bfILZF}|QOoyJIuu`lr}YoM3+YLhwwBZDre!?B5OL>H-)iUy)?ZvD&pE|g2N#wZ
z7R(Bg{6E_`N(1yqB2$$K*UKvGUw$}s=Fcl8b)dl3Okq5sYTj2X*r@~|$L?AH2_AHX
zJlWC&7=jguATAL`b`^Rll!w^HcNVfJj>5uWQ(VT?SBQ}~xIlg0lr4RLCs2DGGh@}3
z==wNGigam)rX0A=z#mjYUS3hHfR%%fTpK*KGk+A-<Z5P(73=#OD?PF(+mJBtW3-`v
z{Ha>|^q_sfovk3I4flC)mvCsW)lw-ww?g?k_80kl{3C(az9u3W*(s)I?OUOqQX6Eq
zh^u_#X4EA`>1*+}7iR(at+7tbyK&l=UEWLoZBw_lpo?%2fr2%aa(Z60peg09OG>+%
zD7-p*uqh8q+;24s>-H)ki8=5@R_kH#mTln<@_p%;``yRGv~#P#ad<7dGlSEu*$cx;
ziT}HRjrWdIS#S~d0!4`aYay^<R9jGDTYkX&#8*Uwk5TD+?6xNTwZ@2o%nNB`omgsE
zOGhnCxU*yAO0fj~w|;o9usC9A!WWYbi;gJJ*^*<(eyJ{EHVDQf^2bsrOFI>lPoA!l
zv>RPR66adi+@Xxt^uZAWoc54=<T~^YXu`GmlMXiO^L6#gFSs>8@#n>7v8_J`v>{@#
z!iX=HZZyYBzqQn90i#~(7e!gDEK!c0DlniG7_(t#ZY7*LE5e4_zGm#(>GD~ZOO27q
zo}#avml|z}pAR=!8(yAPukQ%rbMy@kUPd0avX7UW59A?&^u@6Ncg<@qPuu1Vm^O65
z+olzgiFAHPqm{c3eu9bFer9(-R3seXM;KPb^{|_0?W%u$PdCzG%j}c<E)@%(S{ukO
zrVlU94D@<)VC>&IaYsdLrw8%eQmsd<!<$$6?#;MM&MUOLstsA!0k(rT7;=*-N<nW7
ztJB(_{p6tXBDu-)G1me>)nY?D`T#7KxLVIvV2Y+ZbgN408stKeMupat-#7(9Ic3p*
zXrhEkjn6}>JQ5?HDDy)~m+^xm=EEPm<-#K9>GeN%?LhRXp~XX7#{nfAZ)w;N{!XA5
zd{VRSia5hLDn~)P+&;z4Gg@4WEdd_cNx6t^srp&!g2umUReec&uy=HH%3O>UMC4HC
zgmP6LyfZ3t&LSE#5gu?nIBbj7uaTySEK2<0E!s(ZrY!P*z*8s1kY!^9@jt91aOj!d
z_)q%7+><|J+s8!;BHk8RT0c(Z%lgibP=Pl;(s*c6_kvR5)dK93!e~UzMoL5kH}?54
zyk`axFnsF*`e2S2k~O)*4lInaMl_99Colqkz5dM1w(@kW%knt5xseQnGcq{GSh~f=
zM@DuyxwH)ViM*@YYP46rhlNpoIYmeY_}Z^gY3md#X=D;?`l-iCjh@GANwCDwnzdCo
zg9}LY+_fzE{&8Va5y8aBjw?B*lR4hcIfTnY>YA7WB+vXZ)gt6`;76QjBsC3$nmPh5
z^K7?tDK+9WH-u4UK&n%D2UXqyj0oxk%4Mp#U9x0(+@5o1s>WaZi#RVp|A9BSXP+tv
zNe)nQug)6}A?^3!g^H>fTd)b|;8nvS<1#rv5fG1dfXArT_`D{=taCLJUphSV$C;!p
zp>T7bJc0BaEVnDOjLTS9aGT?R)Ul{80=Gr=k%Ej{;q#6xujh_G-w_I2!T@KCXNhv9
z3e$2o^Mp7E3Em<fDKv>006nh<?D4A5@9!i$6t@E1JD!6oB~$QY{hAsP#jHk(W!=ca
zdB56QqbP^w!s1x`<+&ue&w+~!gk!NBd6t>H(+o@DG7A>&mlY`Pn&Xv+kuLEAPZ;6O
z&vOd75%!e0hz(w9=Lknu0I<^z6~U-^sj4HdakWlF`fUy1I&!+1?i*PEtU*#w?OKdv
z&gu8<TZ<FLcTE;53q<<kS)8Z^o#M@0lcy;8ZCg9et(WGE^3WwVaBZFNDb)Ok#ZhtR
z`mOqnqN7me<ihUf3iXk|eD{x;?aMK)4Xt(L8z}uMVXg@|T)LM}8%Dr62--CptTZqc
z+Rp)t0`5gDm#H7ZKAiFX=(8fi$1VF}TbHRn{v_8v630%p0oZvh`CNDvVBL#eBxC1N
z8ek08ndhXP($1+~;sZ4t=Ybn>hBt5h-SY;)_LO%6MFw(X^{fW0oNlIJK21ngy<bEC
z@tWCsWrCpK0d<NJbr$jY*y9IjT+*}qDwYn2KB7V$h12akpeo)^wAk-NOpR$;6c#kW
z{_Io+N+JPc)<&f9N5EY_pdB%p`uprZmRK-rIIUsFPCv9o0}HL3&#qsg`;x*PYD;Q_
zr$>XR*~Qv6@$$iOQ%t`fLDha6Wy2?Jpim{impf(ONGIw7?!NPo^^lJ^A&Gq0*V@)A
z3C#i0eE3$bxJlgm%kR_&pS;7H7j?FXM)|o<L+ow~71Bwoi#-LXhos`!w_QT`;1n}+
zGVM73(^*=86`~51dmMpT>ZWC~UNXBfqARq65Njk2Xvc4tSYab9)W^X6u*fS|Iet?0
zI&yB(5dZ2&T{%gW4x#wa?;V&#L~;yCx<6|QBYzlqtQrZKa0r{8h3f{Z?V*C8iA~Ej
z)s%0_udB;t{u>_4uorDqS6ybzgJYC13hiV8;8M}jbIIXn(g!xUuFuI(cEmLyps$&-
zeq-$(?$tWv3l{iCJglDgzCHcx2A(rn@NSstzOH?rrQ0$bemx4O=5_wyztUB)*J_es
z8A9D|LIo?JthML^s8WAV_B!`RekV>2BOGhrmfHt5DN*Zj34vQZUg`S02w*aYqRZKo
zyD7q-`_0c8XK~jIRbXQ2Y#*!$t_|?V%d%dpw4r9$Y&p=(BgYJqaW!R~#w~F%=(LO!
z0gcG}VxBUU>cxTnbh)JEG6m)w)EC!<pGJLYBF+G(<zFbba=Gt~^*lHO7E~t_Ck_y|
za->hEoJ`~s`>jr?NpyPeEr(&b*Lg4tu}!DF87$v(Po?D%-7dZaRc0%p61uaK%*VYH
zAjTj`RD8Q1p|zN4Gm(5_fJ%mjMwruf83aW}YtPB2r;r6(0}NiW=8Wk1Y<`0CY-=0D
zR^(T$00!^h4DUTEp>mv=Ti`+(fJ@PO@&FPHtj%-}U=Gf2P|WOG=><21Jk9$lDHu)P
z8NMWy^Xa{!tDw+loN0RGS~T9Dtf>2TPXI?q%QmVJijIc7U-#lEZ9a~>PgZ>t+KC#H
z*e0m1L;f_lYqK*k`&*|pGryF@K#!<Znn!7T{#|30u?%j+3De@th+9%UL`lSHZ(r%y
zsavWneP;OZO_?Hsmnv1cM^pneIdiL`Nc8!e3L8Vsv1J5SYQYO%BsBdqyQNV*Km5#A
zbxpm0i@|gl2-M@gk}o3-HDo17``ZdoOGo;fenaF}bc)cEqEd9Y#Z^5G%wsybEP9vB
z%d+?K18V%f5VO6>Hih>q;V}wOm`FzAWc|zn`5?3VsZQ!v&t`>AAoei9QLzT4g$A3D
zv`gjNxzLUj);@)K5<vCgM=WsC4x;F@l!BIu$d^|XEdiDgVF%Ol;E;^i5NEn|-n*_w
z*xr)PJd>Y}`K1zTl<f7fKt-NzxHZk_exX#|d{Yj%G5dCQGuTz6r<J4{eWR0wHL+CT
z$#*V*3kp?)-{$%@pOZMade~>p?af@+RR-z6lwPm8D0ZM0MtOcC+d+2{$El?6LE%&{
zLSPakcbA+VL&Z(oXX@gd)|+dFGc75p=-D<UUN$$E-1Dzl&No&FqWug}eAnq7flzf^
zZbf=8gOd6kJ*BTK7y6#WpTJbl<LcWZJ!q4_*{p1dCtqS2jeo*h44E4O;}yL7ZPu#A
zu*k&yGPyKkR{(7NV_B~eOO53o>2aRt28ostjRMG^dqB_o7#K<MaoWc%fzR#V`^Ew~
zP-wCsf{4Pys<GGivUhoQnHx|0o}04L<7qz?;8Z_}jLpYz6%E(V5)e-%P_@}+f0)h|
z9UIzMrg*tUwnH2>F7Rw4y~KQPc-~$*Uhs9lZwVE(8Ug|26#)-_8~faGrHSA-HmfX`
z07jpg8<O9CBu!|DYk9UVL`BfW<U+lI+_sT}By?cecD8Ql#KCeGj>v`aaR;)cif}LI
zkyI6&lMMXL1zY0`1=Ik9g&QN?q(P9RGY0gv7rp+TwXjKNrzG>*VyZ-AeE1Ns$3j4U
z{$PtZyYnZ16n+*I$t!OZlV;YFgjmG;O-8pqPA{SSp%GWSjD?b*EEOL%WQhT(nWiF<
zpt4Am{X!hLdSCctTv{wz7WK*LK(Gk&xy1G?J5wa<2%~06EF@3H5>2H?vbzqs`3S)b
z-<_Fz!6gR;w)9CR(s2T-^<KndVFL{RU3>kvR>?G%h}(du5XPdXh?txwBZBdcquAY)
zbSBz3*vW;|Cua3on2<KWMr8XWChUnxjS4@iFgz#KIq3I2%>)qq97sRM$BF*Kr9ov+
zEt>7U1#$|)eP=!F@kNnJw&^~|V~QM!K<li$ndC1053<FL_yrh*nQp9C$vi_7vFF74
z#V%1cuh^EG#aF*lpnTqA%_+z?mekCek0VIM@bit9<)PkI0ma=Sgt#RHs?P!VGtz5U
z7gVL;MGUgEFDm8bove&SAF&&-_E((D_h_mhc&PQ+rO)X921P)+zjH|DeF@-hr5mUO
zLXzOGE@+IKH8pic9axNXMn310^Fdo{$yDFVr#X0?scu5ZKj*aS6;{0ugZ4qINYXTa
zI7HxX_5TQ@L4ar~3&eRZZsdaGwe@Hr0?91MCnj_cJ&8W%+sEmWTeS6t7xZ+HsEyBd
zUe9EZ#X~ZKACB8M4%-1@xn+5MAo;q{61zSd!@wRvM^&0(;JcnN^4;8LLy?G}GS8f~
z4Mi2n_4nJnwCw}NWD!YvgT@9|0%^W=LIr`d&D8nKy!{-YVCHKO(_d8~jVqD|!bj_2
z4G*2qFUz5><Loy3Mzu+j!79#bp4v9(rZe1~Yd*Wk{EVl4@RtgiRknuD4TN+qkIy6y
z<o}UcRcvvg1)Y_<nYXT{MA!u1A!_xh1pBx^{=~MekS^Cqobbs$->?_8oxKS7k&@{k
zd$BIY{$`?9m;xg6p$T;8BJ84GFPr5gG?7V2D{_ppZ(hP#k%&4tYqd0i&b;Mz>L*?z
z9R_w|3a;~@z5nWBX+KzdR_Lx<6z}HeJ)iV=*#yqo)@GG_N-b7m<I92<J@3=&{`Ah4
z;Vv+8HGL;<5lcA@9-W~>a#RZ19KJ_n#7WLAvm&=p!<|VqW;^n|%;?~24?!cU?hl`Z
z-hR5eT=*X4hxv$5w-j7%0xgH;b4N#-bjarVlu+v&LaKEntsMT~GIGUSZW6u|ac^q9
zLs8v@#)4K~=Yg|Ab9842@r2}-5N3C<3%5ten&b+DuxVcV&nTa1j2;t-$x7wpZT(5K
z2S4O*Y@J4Tg9FKm^u6iBhsDin!H^3d`+8`1*b~ME%C)~;s(ZhJU$3K_a$V*{CN%_j
zSD$La78Ar4{i*9Ii6_T{t9`tnPXwJl!6eS)yf=D5uQzL9h0>O;T>mQQZLg~+yTdp?
z8ofbz)tP&>IV9171*oRZ{|#&X?DIvkYVCLt8M_p-Iy8WYEHF+0mvRNfw6v`dSLW2`
zB1Z`F@ov(Q3`_sq`7#yOu}${2i}yi@Mz5w3ZJ08MAD{Wu!qvjbxuC5(m7F{9X#$EW
zb1Hf_eo&3lh3jb)=n%Pcm(>Wb+B2fBWa)J_EPPT}rsx5%R=jrn-lws>)r8u-pElU6
zvvC{sJS{Lmd;GZs#r?<u)086WG+stjl+ca1f}d1zAXvL<Bb>`5ImM{*fLtX~%s=(R
znl!9@N9-v(JW7bU=Q0HB1`ylONjuH8Flxih$wVH~!h8|8d&nL%h~-t4x{_S!7=VI`
z5tfpu8nQ#f-{Pc|U~!b&Jz3CwD(eh(7ZrVb#BDm|r0z;7?2*7eh$X93+ZNWJe+6_5
ze<7kCoO^9`mGeHbLOr6r-*QQ`b0-zDA52*o@r}wDPJmh0eGZ4m3fKDQ0Ag_YkspPB
zth<M|mc(~CkRVIU0z0d5!gfS382eRBkde+MzSio4Fxo<gx_Yi*(;%?VALfqkM@;OK
zMxd$dxm2?KD$tC1V4G&XUoO|c+*O_hjTMF5J1DDdFUyjMM)O)za0N*DM?^E!K0FO!
zXTzbfOm!GQ#^~nFB8g?P_M>{r`NAIrjhjzVB)QjV1>p+bz}FsOLhZh;iD$2w29+;f
zRCYqRD4CIy8`w;F=L!qx*`~<+QnK<F1zyQ50T1@|4dejFcV*xQ#DK?MY8FtX)s!@7
zXLDd0<@v_@`(1%}YndYg<Fc(KNK&#Bac%9CB=|mN;$Pr4#Ykixtc|CTtV?Ve89vn!
zxxtEd8N10$Q|9nQdSEmC@Q6*6UgXkxpjF!fe%))S&^7yfr9A~7zUlI6Zo-hM#;SCA
zy_nZ*FKMJ0Q*9yhIdew64?uh5)V(3duk0mSgh2YfovzL={V8-zg|c)GGhY<KIZswN
z%q%Xv#HTPmH2<#xlNOn-S0zmo5Og1{*yX7QK5S<|QraWJtAQKyV2s9aePKzRoxpO#
z@0Q=xS28;QYI(TELVjuK1C&!bK_k&cF&2}d#}@^&rrVWT1~b$PABH^$1q{;QAgihb
zapL*Ca?>#SOhi`UsbB(*G8Hvd0xtT^wkCvL{S_RQo6F9U#AouF;KN2J8f5FX6A2Al
zYd$cGRML1(w;79VRl!z~CE5P>=<vsL23=mEICV9T);cEz=p(n6wx8_Mre-wq%=hat
zKD10yQ3xj2b_N=oDa@pntET+88xt}a{)SH0vpUa1>*1(MnaM>t2I)iZ2WywCql3~~
z3`7xS3RNtL_&G1ID4#pIqUxjdFhH@Lb(v(i!p!nGVOgn<fxWVOH)>QqF-esRM1}up
zlq2W1ST2P)q$^EssM|E<;o~L=QAUD(6kS*xfCy}}j^>H2ko_FFk9&oQE6;za=QW2w
zZN;fppjI{KQ@G++)^*GZwb3JaBj(H&|F;g2v_#{3SKv#R3?dhnM`<R^_}WFYi}8*=
zd+A@nOo6g9f4xN8W@Koy9BS(G3Qnr#t6Ms6t3~^9M83}^NA)c<5x~rW^FkxP|9q{q
z+pmJB=Ww=~I*VuAA(L=VP{+|ZaHsNhDvB8hnh^Csq=>_IZQ2CXoHv##(?F5Pyn-w2
zz<;TjV^ZIa_E88sa08J$>}V_t>fkGiIN43in3I`@*Hn?VgCfls@5bt0J>^)g4<Ua@
z7&%T3oV~6!>szw+_O#Fr+Q7HGr3oyYuk+XIe;}?2WDX{sAIf0DmZ%mt25nBKOFdsy
z4}xnBpQ0Nc+Unt~6=$9P$8DW#k|<w>z0kY~$<}`TYQz6CGM?2#*a!RV=o`WKMVGVu
z#>0#<rEcbO)OVH_<&(20P_8Cp1B5GW9&VS?q|EVWr<<6k(iS%A3Fbl%RPLHbeNdxM
z9y{~Rv^xa=c*k<`oTxe*m0GPuG}V(spQ;-;CiKt(W4<&jFJMd<u(Zm0v5HrzfGDjz
z&WWo|jj>b8-@GU}XT0-IzEE9#ylNPrqh(BNSzKfEV(l~b)FFpHtxTa(9_DNZ`Dc5e
zi)x_DZ7?1L%vtvf42H<m8FK`PTDn9aIV4!w<F>X$Eub~m&}8^?FlgGxBtL&POjuX1
z${XpF??#-rR5P5YiGlpSpCTj(dtQ}RiIH$we;5zt(X0#sI+K*`N?Fuyh%`ylcdw_c
zQS#{LRR?j>V3rS}KOQFNp-rHw9M?!C?LBpxh?B$&H0@5z*8;`_%fLHHDv&8KuY>E(
zGzY>ySbohWgpnh#d3Z{7%5Y3}=5pFRus*p&AlTo@l_u?-YT1bbLB*7&@!w<b>L_=n
z1A0we9VK898X0Bc5|JEF1D2%VOISZ7vRkD8)1{xDpQdC>jCLU(Pzv|1tShPX1(@hR
z$rPF%i)knBSX?C<P=01QaZ|LGOyKStVDRgVBODR#-+46RN*BbPRMxSd$Ew#pWJ;DU
zjQv$0E|0L90@^)E71!Y@Yxxpfg!X|qW~>kg!?0n+d#1q&jmKDj@tIOA;glD&qfTpc
zgD{ze+zxjRd;*fMxM>sgO%%PK0X`eBAh<N-mm9_&(^8^3()K&f9jJPHBzfg5=a_lv
zDW1l<YlmuT8ueW=S3Qi-<8DiyyCo%U`S6CldslI~7R!SppTbNe{;?<f^!ec2(e39z
z<!dsw8WdHei&pGSR<mGKww7AgAb<;71ASrKMnE(uE5bthd)YXO9vw;N(e95I=})SO
zaqKacr(3iC$nJXSCnH2b65X(}e}I#l<aC>pwqoMPn%I?yWQoC?KVpmbW5W_-+EfkA
z=EU<gP&^5LEDi<Z1LXcVAyXyayV&Uo4MQ%0&~d4?{p@%DV4a!+@{ti`cZSe;Hz_G^
zO7Q9@7**}@m|NqZX4jnNgCnd>1SVw$40D_yxXe{6PqQByM#f6Qve%I-k*pKmC52{1
zsUM#^kmp@E%VdGl=qB*rZx6>s<b%3h#YviOVZaipC2C8^RVq&RUi7PUIgxP|rG#iP
zmblI(y$o0H|LFv>lobblY2pv`QAr?8`>sIuiw>*9oc#q-AM)ed1~Hd!9`unEpz7K#
z@N>;~!(qiKQ)pp-Ad6GpbLZ{q%`9A`rA8#l+e@AEv52=r?U!iftozltY^gvk2|tuY
zfKuO?XtoffWPqpb9ePs(VJx{YM1U|o6{it3HT9a8#qkn{jCNqP1P76utwSIV7a}ZV
zbq@4~GS$E`4ewz?B$2?_=u<(r-SsdWWb6PO>U$nkprgmY!ivEodzRC{TY2_pew*WB
z@<=>GrXzq90AMjU0S{uf0jICwk%DN>sI<cIjXPwdV`~ggT-Qy582chE0%u<y>lS26
z6VS-}TY*KTVUX5ybgYoy*4)0Y+s0ntr*5_#=%;4yHYuwzm^mpXF>&FMG96ghsYUbc
zLALORfTvgi!7_2JcgIt>u-Goo@KxL;Ysc1!TGAQk(`{|NN!TZR4>sVur{;^iPj4Rm
zuhad3LqStha?xo1<T@BRg*UU+YI0Tt^$A#aFf+YpR=HtUh%MIzL8v9Y;tf=vwvZbK
zJa0r#YBX_K8e2;coUY5E1AJ+buACtfl|A9fb!kd-;c0$!sQhLnHqr7gH?bOgURA<G
zgqG_ak|%i;Qv!s)Q~oL)P(TZ|4dvuMwSdjRTNMYS1L~Y$m7uA!k)Qj8xxe_{ckbo+
zFYkQjy~;C)Wj$W(TAL5oOE9cknCm>Lc(LaHIzq<z_B^3KU}$>MTb6~F5n<+&CsF&v
zOCy+@Wyk!$@qy1DYS21MNLb=RwYZc<(ZSB8_T25Aa7*+)0-1Jppn`7oCYK$SSlD#H
z_S(tcE=1;7pO;zib~FvhrD==?_7H}q+nW#+=|(=g$m=^}Q#<>of@kFT60Y9~npoz;
zoW_FeH$U`QVnU`Qu!B%PQyq)7n00Lf6SKSwn}r1H|6u{*%V_Nq|EX%O`N4zER}^QX
zY|)L{-=mlE4H2FBxS!a;Y%=NaNxNQIcHU9+j#q^p$Rfn7Z3|60FJRdSZ$;wcci9}|
zm_lIak4jf7x8ko{77#sSO+8`y>$qzG%f1|QcDS=(_H0OVZkV84MLG~a@Q1O9a9%G%
z5>35zGtG9&tiD`HA9V^G@>4qnah>?kbSe_4!Wr9x6z0bmV&2c{C&!dxue*9hRY_(G
zVh4&Hz_ya53j5w2x!T;<BipyA6hLg%UOHnsqmP*%6+z=hUlO~Z()l0@(T~O@rdrc*
zK4x50rkY}un(iaiI^ow>am^)Y(gv|=Z#e^ERVq|r?LXqs67AI>{+?J_g0X;|w+7OD
zx%+pHy{NN*XMgIu^ynsNn}5xUlOc~qr(9$4US%?k<{CW}(peq>;n)FK$mwecWuDua
zM>J1zR8yKKKxOWuO4_^k{|d3bOlY}8BUTPw<kA#PvOk~LvU*eG2-)jQrW;T{xppxB
zfEG$4s<*r91ZnKXKv4A9{<bSb+}3vBW-TmLBGjC5`ROL3H`$Yby+LrA`>u9DAUu4Y
z%PNQj=oeo$fyE9DG2(+7da5-kL4z(nC7nq6RM>>{8>ei1OrNj7C)sMI*a6I)e5lgb
zDipWAY||Z+fX>)ueyybFB2vXFrO%QOWe!azM$MYLC-PpBjMw`O3qUlewhtht#eC`m
zG5_j~q8O4Ukk$e#n-e_t`p#?=<+!Fgrgxw9GIE}>RW=N7fP-}EnlTy|m&Njd$%<&>
z6@`of(LO8b_sje_(9X_!yTP2L-Jv8=bx+y!`au1`&X`&$q3a253F5hp1nF^d*s<)2
zl`0-w`#|~Pcp<3nT4@d#UaD=<SN?0Qun^OxYZy6;e(kg?7`xnHi}4tZhJfkZ>+Vks
z-TxLxQ#2i8Ai{=tzR|n@j=`eWN?37dWz|*_0|fw^=cK6Lfe+i)QRqW&lJi77h5yEW
zhsgXhDo$YCGj%5K-x&^Mzz`Z;p2Mw#OJCMA$Q*;ly3~vn46rzZdyT}VrWShJEUuoK
zr^CC@ky@BRhjM$Jo@ZT@aR;sQl>MZ5^Dbk8e1kC;jfn#NQJ~Vwsg!6jx7J{a<0OB#
zm`%>Z|0zxr9pYl;`k)CNE;8$Z?3jKCh^DzzOnL$FSxn*B^_o~(%laaQr4%qWH${(>
zRJ~1mqjz?Ni`|FLfg^hVa~!A@(djKWEH9ids>>!$u<gK@OMQ>hTSVLuTa}VqmKcKv
zBDyEflYoE*hwk4(Fa)h51xPU5VZ6a>MAaXTB21%_Z9I}7WMiST!8?xm%teF#B{0YC
zrdJ!6M@Z+Ev-<Rz*cX+&PP305bOuv`3!}S7-c{Dz3`C88daHsVCF+13%esE^&8>SH
zuIQu^;2K4&yY!E}mLtI(cw7eq1ho69e>~s35l}M@q?_H&0LiSLOef#8?t57wZ-d`5
z%f`u{j58Df%!)F<Q{$t|&$?7?pu9?_-HVn(c@5Qp@<=v3DN021ceSP6ZO1nn{GiN?
z#$-qKczz~4FW8SK{GQJNuAe{kB~$dV_vD{;onwfyd?WGmZKxGgKj&E!S3gkiY>-(&
zoi2Z1W7mHLv?O$XpvTElP7X;<pIYNsmxo2N&5C1rHj#j9VUpg2uoXu-08IgNiiim6
znS2F%3X@06?HN*-YaMYG3wCD)rF@yB>jt2;B8qq>GRe`i;ZQ~U3Atq`s}OfxiQ+pa
zYiygREQ&z6lD-+Luy@Z1Lvd?RQ@w8WUbNgNK9xa>p-(vC8#Fn|eu)t(ll<=+-e`YF
z$BTsLVO#2{2j6^oxw9&s(V%dL$kjTr&QI#x{-I;ZU6pSpr7s~!x|QW%YJ#zPD4B&}
zvdo*IV;eHi@dr;Ko|GVUiVLXpO-T?BS4AuK1o0KA*q!Tyek-m{KUC+z`$eQHySkXL
zl$+fVL~M>oV-MhO6Awl17oDjlhEpX_VpY3ZK#D~lwEkIV>oHP_uArb%x@ker?AEW}
zm6jGTFyTO_HNWVH5#qhE)Xn(gYl>e7<fI8u7*b`%RBE&+-1!V}u6|$UZs5Sk*Ow5x
zemvT&h$pYiTY+HR0h3ZwO!ADKvzVZ8+b};Kc^(yWcz*0@?`%P^CvU76n*BB2sshrq
z0A4Bsg(yLAY)4D}DH4-=N!pqLu|pj!G5q=ocE|z^moCfNhYF0YDHsRUvH*|q5hF&!
z)-tyy;P;=_+u4Wiht<?TdpTJqOUj^Z!TPUftK<Zfe7&}$96nH#`Gf%~C;laBP3*c5
zx=*(~1|W*woEgbNw_c3Ar$8Mi5NtoUneltYhH--XuOJGhk)odlO{2>3NKagAgbNp^
zpLkb26Csy;Y>+REd}8J01JPspb&l30UDkCzoBDK6GEGaN_L`;~MD70t??3RqF{pFb
zY@-@5@PXwe$*S#3wL!nEG09KtL+UtTYAd(#msD{v5#zd!Ls7$hA<&XqV1|35GeZFz
zSE<(EhJNhRV%jJc&E8UhQ3S9AI0z`Xa3gJ{GHm_`M^txkAKrJ3ISL6WpZ+vXu2{4X
z1jGZ|!~qVR${a9t-QAjBaUD-ZI{n|?NSp3$wWx4BowQ@NF;S&*NIaBxx@L;Z+41oo
zVxdV)HH^y{>2s-Nm$pj~gjS(Ia`+9E%f#rH7#XASQUNujLRY!hZl@jNLRN3raP^0h
z@DboD1|aVCuwtImIW7Nr=&fWhPTge4f+XAkv+MOov>0L1u+lf_({eWy>wjmls;65_
zT)SPR6qpN&W;r`Tb3H?TIZic05J)?Si#jY!QD@o)2Y%C(TRZ49)5X1F{&+N1kq7k@
zE5WCS6WOHqv3?&-4{6w~Lp{jTiSmbFc{a>+!;od;+ygGUOydt$q%rzBiySGtYDibY
z^pM2`R-~lo%czRnlBP6?Oy1BCK>#co$~q8RIYC^mGoceTQD@X0=owP%HJnejCIi;2
z#P<fVQ=c?w7EvyAMEFy?&ZOK@kN8;Xb+*Fa<gQ)IQVm|5)3XB2?F6l~=s+}dZG{xT
zAAHX;QWg8Jo?r+H`e^ffKR1ikOMpVtU~24jrJ{?y9p_WcR%eul{MvZQC+kkd5DC$6
zDV+-@xH6}i0`wUlWLJ3VVt+$w1SLem$9v5F_}APOv?_0mT7%GO?TRgpFhFU>oM>A0
z_MC?QxWMmkQLn33{nzYCdYfxTDw&P(*{h%CVh%HG%-?TEeV}q0vVQ;k_W2_1jgGhl
zwTQ8Id_y)*Jw7ChHfNV@Y~jRt0^;dD;aLAhoT40nM6fw<?7;GV(zipDIH*v-0-xd?
z76+t+puN*~6f(>Ht6luk77hAIU3aw`8Za<o^!9jGQ+`TotEwR`yW9{DDC{TB^#|8i
zk=D=1vrNHJgRx{*5pvuO{V$=dEhQlCyb!R*Um5lhc0;$CHa^NUcb_#Bk&lkfY?fO8
zb=9$IX40>-%0pu91W^R^<;R3}t6+FvE}v~m@QtfG&(5f0L^&QqlTdqPu#qpxYf13u
zSHRH5k(gBPN|Ip_E25yd3bWGlA=*x=f87-Qe{GP>$bn~oAjx3<TxFBkzXAtiwXbj;
zAP|c(5Q=qx=xde#%>j5rQCymA$THc!LF8;~ZyQ90(-L^f1i^pkUk-+>yUDQ;QtsBt
z`Dt3f?H=<NMCq#{c~OM+>&3M~m1vjC5`t~8KPjiM0P$T7BD$ZpqCp!}1N`KgBj=N@
z86WY}G`aCYwQ?4(jJ}D^EpIpoJXW|K@leiigWTE9j9vyjtOs;g@7Ibe1au3Y0-B#U
z?qxOyE1Nm;T$&->>6S6P0%mvd-7|hiV(=lGXik&o>%+@ru-m%%x27iEc0u^u7_}5}
zer^h~@8y~6W_qTKh6&5&=0B&3GCkql@3FtA0>mq_{Z!biF`VfM8O36W2*=TQ7xGNY
z*w-Z2x@L<H;jG7i5b^a1*B-T8CrsWxg3dpvYJf6V5~@XWRcE(3i1!(vMDfUiJqm~W
zlouQM`HQ}=ptz~WQy@@79|e4Y#2hP;+1;M(f#Rdz3a{m|)V<jza<%*#<_K}^<9RDI
z9FAV(g3T{Y@Z2f2Wjv_)Z*0D$2Ogho=#@lS?w>M7ySicUeCIkjZ6D<nS|oeH)@S26
z4d}lGgj5~DQ=<t#J<vfI!%^E9ns9!0BQKYQD20sBVNd5gTGZ@4xf*nfO>tX;(K^Q>
zPNlTUP4{S66ja;@K&byGgQS%Hi=bd-KHktI=<z0B)DoA_YU7XX@>jPjv_yjq&S<u(
zxt^=)%Yp{^B`s~HjEY+kbps{n5VccAGLeSgY%KU?GL$JrXgXds_v+)M$#zbhFPc3b
zWqahmT}gx|93_<YZ5YwQl~K-daco*!M4vi?via2t{W>c%VZ%_37H%5qhrwUU5GtH1
z^5DgPbPhki&*PBKULEy0m$BY@E43JSw4$uZiK4w!ttmByOf9)!)STXaHrI5)Ra*|X
z3<u^HHLjP{d$_3gPxo;UAhuBbfMrV%l&a0UN+|j54Ze+k(rK+781^#6Wxrvv?hnn+
z&v~;Jd7I>2qY4JZ4QC$iHQf<A^saoGzK&fGtqECgL8j!QD<$!Owk%qMr3nn;(e}<w
zvHSGj*lU9Zge=(Q_-e^<2w+lmaZxdc)APJT7iK2gs(9Gm+=|5Xw;y;$#q|k_Z}K&2
z+vtwOMry}23edaV%PM>2gEC4L>?&x9wX#X%oQ0yDv2lW^l1Ag&B$O_Ni+%8s(7RkP
z$q&1Dj!NI^H!;#7`5<A(nT2o^l4yBalpO4#6IVw)T?acusw_%YX1Xr0;pv9v4UTtw
zY<#%aa_b#aR8Nyx{p6aVoD2WL><sQfBpI7+%gdm#&w8X&tF1MtuW|y`#;I*(DI8Td
zJ@LHZj&{*l%Jvw_t67J!PZfO*uQb=wCiQA2xSRz*%>&86_blw)_-`XFnVCCz-T4;G
zt?Kf1v2ELHcIcNuKbpqCK`dGo+f8T_zmd?Dj3quYWry|(j~>VHUr7$qmFXC2amD$`
zmp;<i+eMOrShBpH#Y%8ZH9J61n5s2dx}TcNzr?4`TWi}%=7<_X1OC?Y{cs(F%MpBU
zBI~=(G8du(EHOM{9*0z(*ylDVxe6h4`uyyUVcYA9){MEf;Gz0DFf{K2Udux^x(sN_
zfO$lbfnc9VBK~9MXrux;(hV%JlRfio)QBKpyrpIJbLF#%lD$=p?dCdt36gM*&e&D_
z?PB+~0JI9n>d%^!tRB7|7Aa96IE8C9_gqH=h*srouPn8R(<5j)dhFHq>IFc;PA;KL
z{%u?PEpPKylOczC5R}x)BjAV-893_pxH&HWpo2WQ?-q_gbgdp_Zu!GSU7Azd4{{}l
zuo-r>s&hQ_4Cl7zjMVJ;fAq;D-|9CzdhiWd!wfl}mOqQ8Cx<C;aoq@qir&%Va`<A$
z@`WnNlNkehQT0n7aZeF?R9NlV)+TLnR8^7)vsNYt-rI85utw5f@3@=U2kk*1hq%9d
zv<`OttbkkXJ2O)$qDOj&$9~lXjAi+Xp@@mL0{cbC6^%0@EpI;>v9&>&+*$rrupmb-
zZ+Y+ShA@X)nN!}3r35?jV7{Cu5d;25dpvwaW}Y2%Cx1b;ymB?DL>XA&%LzK_u7&0P
zD6+HYHX4=PXvT*FmU9L_9$&o579H~5gs{ifaP#|eYA23(@Fvu`sqV~3*7Nu_qUR2S
zPN(0+dXd$lD5phA!$ux-nU!UzBBbzebiL`(3jf6uZ#`82-34y@jE_F_oQmbGO*cKb
z)v%IgTgMn(H#4<v082?{tLpQ3IH3a3a5~nq%sG}Y>aN8oJ*j*+Eh1C*+bxE%3;d~F
zbg%-NQOzx^f`wRBc;nDV$T|t-WA@edf<d7d)1b_@_S~EL`lV6fb2sNM^U|@`I#wSV
ztxm+yoH@d-4Ni_4tuSNMU!U|V65{e=bzeFE!mk?FJe5zJ2NqDW1!Mv?#%TzbVhT=W
zw;$^V>XSb79p0oeUdVvU@oa#n^#}-+)oX!vvGAfY6dMr97#wj_@UvEl{p_0t@a!vo
zgSR{F-qH+8H{dl4qA9+Rt^}$3*6gN4LF|hDu3I)X@YpY>=1t}`Ed7Y<Qw{IjZGhou
zo2FK+gntptl~hW1#K$9aaN@B$<alfKAnZZxHt)fs!Kyj$U<h-<<)f=iFHJn#^1P82
zB5ATszkb{9PIi(YA+Zs=?w48=JYGu$5hAzuJuQcaC>bEtG~-Jnr#gnS1w&?p>3IH^
zgMY`CsN`<Fc7RyLm?b!rUkt!bxlk_Kk_{q}-zH~9yq2Z7lhem8n&KATK?du><oi1~
z_@Yd^rZn7$!B_G=OEU`e?iDDC<H$=!GS}Oe80c6P)jspmNAmoz+itCXHCl$T<^K-d
z6Z80>SqE|(8I<PgME$6!PII~kA{1yNc3qEJjLqkPrC<R}Y^99>tW$Cdj}M@-!Wx6(
zj1(~Czi7hA^kMQdTK@Czc?yijQyj+g?DJ$%Ci9XXr8H`8*5lf|NQ-*Rf&+lH5{P*r
z%c2xZ&`jU>g}Gbnt1l5L9f~%SWn6$S5AQLLyOa+Aa>MO*h->DAIJXpG1`#|ovIN{3
zKi+9lU)Bg%&D0f0pFQTJgGlhtr6&H#>ycjQ8u{1I##6QN+k~F7hFT4F-<=CjP6Ss+
zlfqe$(>l$a(PlZHGv}8uTy^HUjSd!`S%ee@?l1(ue_+3PvcdY1UsZ>|xaFE@d>V%H
zX4$5wdMR^rvYk51gc#3gN{q$t7)>~I{oGYK)EiA;yttUFr@0xx;Ll<vG)Z6=ol;!B
z_HJqsX1rrOf+NARJq0W{``*n`kZDr0!9oSXNWWYq716DICP=9tchyMq-uQ`3{+Nn~
zx$1Xx!&l|}X?(}&mGvOk*Q`Q<GkrTO^-n`u+1!LA@$K5lucBFoawEaNQz_@sU&4FC
zVcMVF?QSVPkWHZdf;aBu`(?)iT8D-E+7$z{;va-*x%b>@XWK)YRq-TfdcVM1Y%E?o
z8LgZ=t#TXozqET$cbTr^Cdafp;+Xfo@UcR8hP+1<zBvSA_Isc9Y!lMv!i4FzVV3aJ
zo_TKMqaixeAJ1ya*6q3_ONhDV+z2z9^og1tC3d7%H05TX0WrAm48GTf;4kucYQ~(>
z$X#@Riq%#7<vd_r%6^zRwdl+#?m<~!Zb5yqyb=AzcoLQO>LP@V;*v0ruO44c2UVkR
zH>-}W1q8j>ABuj0;cvHn^lNA#qs1kqXfGuyI-+L+aK3kvQ?aAtFH9Z7C?HDqvAV`>
z-?Pq&6yD3{xBdYQoO9j02Hp>f9(t^AemJ23Rud#yW<z=osGZxxJv^E8Y@D$cC^4v$
zxr~WoA$~q@SMtQ4P{RuDroZV1J-%L&PjDFeraU(FR*Ho~v+Z**)vMRErdV;1?N_v3
zd)S6Q=BAf?I;lcfDf{fkBD1B>Y{;3IbPTRf2M6j8RthQ6l(_^xXMSCfFY1aNpy|r$
zd|`@(Hjp4Z2i<(8fKvwbRJC(RD2LU`(4wUwpc10$t5Ql0k=NziDfs&_Ac#$X;*t6y
zusX%W^8eme3HW3CxJIM+jo?1BKvJ|>SZh~lQ#Kdle<@{^EZBXRy|eAtD9)&E<`>xh
zGl?35^QwXBiFVEMJvVMiL@rT>4oZQjV_KXlkOc)_%&lw{4MKA_#isFMELSkVEE1;t
zj~z#T+wo$~gZ=X+Xb%C$OjWx}%f!dmTKA!-L9du;d7US_`UakI<*qPohvwAYl2&^(
zN06X}2+GBzQnF;(%v}1_NvB*1aF7E&DY|K1{{7T}5xrY&X>(j^PD?Z<%t%0lh_c`^
zOOAEfpACUNoD@>Jd$YP9CNx4sKZ70mwFaYXp4ESuPV^cy!(HXdgRIP3FyszH>43Wa
zyF(kWEBd8$0I}uF(+|>>aHW(acysJOWLJ2_qhuItM?vTwYXw;;kV|r9bNEw9a=^qa
zn20sNw40zWST7HLq6~K01jXb7_Q|+8sUJgo*cXek1*QakW)Uk)zgQ#Ef!fu%<yg~K
zgh9Y6$7NpN=pZhED)=8<(P+0g(4_w{6|%m3m3nzpg>a5h#?_A11g}=vRcpc*1<if#
zoHyS+cWVlcc7_E-x(SEfyJk;(kR1JM=Ok-yF_694uguhteWeWyy_CtY`&lLidC_@0
z;-^x|RF=S4@#aB&HE)933JX-k50X7Cnz)3Fyq-0+b()HmW~|yQBr7g-tc3EZcjUaT
z4*{_#)jd4Tu7B)4cCwuS^H;y^z$Dc``_IKZK4D?jyGvTGPTAcoeinRPkUK|p6O@*t
z{&a1mM&YT@LH9qKqL2YwCZ_{&*%MHe<0$>?9VDvFXv0<x)l#54(2&n^tzhWHLGQPW
z2$M0Fp*7Z~Pr|0*m=f<96<hx9spJQzz6AS?GlD{f$?zxszN#_gBNu;;`H)diC@BIO
zJar4G4c+iK+1l^loNV#kH59q|0CgS5dhC2$)zV@Sc+FjNrjIo~+BsUyUiZhEF0&d;
zpLn!l>JMm@X0jo;&D&CPp)+)?7dlHCYeKrL5sbq_fZrZ1psc&$t@jK&nFM+>*-*lz
zh9{RTn}hmI_<2r`ATln!;f3r&e^#FD0@{6TNX7{p_QY^d%f+b>IOLIs=}#8AH#l7j
z9?EHqM=yfaqQGVsGrXX+&9&K?ArQ<&$n<4o+kF7uo4ip!6d^1By%2)Y!mXGGN!u9`
z<sA<D0UcflLT)ukx|zN(bx%XF$||qPcp7FW$_Esbtnd|Z116i<7YpQ_*d=%oXq%~1
zUWCzqwlRVi%TuAYIY})zW3-WCiiD1<VFhn<Zfn8_f$T4X1Jn%axx74vC0PK^Nbj*M
zvM7AH;yUDvxIO_K4NzCNDd&&wk{zrLvG2{(AN&)Bp9#!Sfa)msSV^GL>!0zD+DR8{
z4WI{$0{VMw_;$*?5w9j>WrBr_jx7MMq1I+j136P`QUtxdnz)o{?h-$4e~qR9!N;T3
zwodh}OZ2-&i5(BHnKYXBc#o#Nf^#?SBp@mr{YG~`bSrFeCGW~~-P4{Pz1(YG;c_7w
zpN!nPKX$yqI1%Ut4GYzWw<-wWZ<47>zY{DFg2-I8Z-%EfgZ(KT@#AK_0*oPzc3T(f
z5G9r$Y-{(3`C27$xv)=|eb{`RcsKY}8Qu_s;st&zKFv^lj>9{gBeKj0%^k8Xs#S@>
zg;i8Yl@T<Q7Xf2e0!EkFu~8U$=;kj~RcvT8`1chIC_Dt=V=we*otAS{>>UFE&deX8
zNKj{UMAgx^rpUkID8`-7KcaBq302A>codpxh9nyNF$LC#t(!O;fg5LGKxx;iS`rX6
z4(HW$v8(d3-%JSKTx#*ivED0OSp_Y%3I*<Zj7)@_$n)X~AxgNe=OQxs!rhjbtm4s*
z*i7hTyDz_y3{I7G{7c8`m2az`m9Rwljq}w<(Elu@IDsAaPnzu%ln%BQ?<$z<M6_O9
zMLE~xzMl=qVsFhQ3DV4k>21~~<n>|)3cjMXHqj-84X&aUmyAwq6B|p`OwV<3=?1NN
zOPuAh^xb$0kWBVnFn54|fpre3oucrW1+zwDnl;=!HEW<2RiAc011}FDGjR;KwxhvB
z&&XeC&6lC3nB$69uyarDKyE!jA`fBaBU+b0n3&@>Z!Jupt>tk?rJ3<o*FvNh4yNfD
z?nss_=4|q0|DH1Scc+0>(9nIezZPvGF7zPg)P{$F49ka)`)r}z2PSMU@00-_GW#l&
zI?>JIp>MfJSfE}`ibtd&3xuUGo4V6PB6(@dOE)39d{EFZ@yxM@OBYqz;Xy(a16y}l
z)YK>fJ=!Oh;hJ-wX@<u<Cs%8^aKZC;yE~c;>)AU?S#nRLgUZ8R9Zd##p9#x2EJTLE
zCjWRza2$D{?6mhfloJyaU;f!QJ@Gtskk6~7tpFk>B6MQBzu|}p+5HNp2m06_KFq4N
zZ6cKrXme0ZJ?vUwtS6AwIP6o6#l5X?bGcPKLBKU{BxG#hS`F0MsYl?SsV9;IlRj*?
zPCe1ia(5K$f9_cOdp$@cDCcOxbZQ4>p~(|2a_-RF(&ni1SDUlRWu6pZ=6>|~yj41{
zJxNKDLV`8qf8k|fk9RRrH}?+%$ggr&O4<x|diqB^H(O4);dy=`0GXU&)Et`?HfQ<9
zR6zIM7Wg)Whl%x3A_7HMozus*@t(l8H}sKaMMkZRLFOFkuh@@eak?}JOTmKU&Z>G{
zLpJ;Tmyz&AtF0~MC%CfY3zPiROMY$s@ISDg4Iu2r!Kb6C$sW)4{Drq1D5QKM;T4~j
zyu&I(-|83{O$=!g{}?mKm<^Kd40*q<EFyWb-XdL~pH52{2%w$SC_|Hz2UZdz0?G6L
z1zk9U=*PVOod1j*<-BZ^`>;tN4qTk>y7&eon+&H~av8DiHfYYJZdI&@+-Yc##=Gd_
zAFk><ZRnhnqWX;g5rG_qfmCs%<O^Wz13-~{wX2{vLfnkc-|%Mn1m8e!m+gJEnyMpK
z72t$A3~<KXlMh-MET7OQl!qxu1~^e5g<?F%NsuIKt0=+2=m-x_mq=^q1Y;IXrDbts
zH)GoW$<CCA-$5%FhjR+l*{5mAxnaPhlG&A$CiYm>#dMu5imG0FUa~~eh$T|;vU*H2
zZ)ZsHkBnIiHKyFUcF}06aaufa{74b<2&$2+RH?;kzB;`9Zz6T<xj|#nzVmx!lHpeO
zet;40sRR+F$pp{hn$C>#nv>_{YE%;w<NJgs9cmlu<uA~9xH?WHNO<W@iD2rz^n<`c
z^|Iy9fXafMXSQq<ce(30d4iqk;Em0Ey{~5UP(-<Y?~~x|JdtsEh^=ACkYg})-`HVB
zGRAw}BWyP`g1f#SsfHs-H+fY?qggOH?^AoJH3G8|Iz&D^8JrSU6(oqaI%aMFc}<WX
zsna?96Yd=~H&T##)>DQ;qg1j4<6E)uD}TEFSr$8RF{=e4?yO$RtJUj|K+EYb6i~oJ
zC&Me^K>U72T<|YjsHXpFFGrmKFq!T}V6mrff1DW&!8FRXMhff?%82GDs=8zeNSk;Q
zc%x93#x<B3sNmx)l&}D23uU!j;*%v@&+z#Hn-ieTzXgHQi7@n#%$HyEL+m?s>^Duf
z-bNA7R6PX7(wtkiyf-G@ht7Xp<2o8g3Y$j(3N-Nn3<DGy)PqkYaeP4NC_1aO-`-CB
z1Uy6?bWnvHJYq0u&E-pw+1aK}us1uTsDGcPP|$w!rDr=lN*N<Y1^(;~&t0LR4&^bW
zKuM;ksmMX(L3reM73h$}cYLqK=6}m1{@}W#9Oe{1FA=hqHMKOXkIL@JBy`ek=~wC=
z@Ux&4EX~Xue2Cua_~68u!@sEy@*%!4VQ*k)a0}7>rTx9^(i+zo2&1t7HdnAi`0ks7
zsX3HS_^z?D=vs%GwU0uQ)=eRV$yh8*1C)|d9i4VpY-~=AK^YOtFz$dSdi<cYz-N}A
zOsoe(hU*t?3_BGg)?_#!N8!|S5=OG1N7A^BZr{s=cLc0)z^ax)^!+B{Q->hplMt|(
z==O<9wwOzgt8@W~PcEYbq{e1^A|tbxPSg#+JfNpVza)t(M_JF9E@-&IB{G(=R?bAu
zT%T!3|1R>bT*V!jf%C%v%@!!DG^Dt!;|4nMGzqs|tPg|BG~Q^Xuth^$Al$o+TahjK
zcQ!!#$KkfR=AV?|uGwr__f?J@<9-bb=j_?W&+><3HcP#ddp+J&6TcemCS?k-OUm^u
z?wZbMQFep}zK^cIm^~RQ^Q9P0VqiiHZ5fF0NxW{%n+x)bUM4YRB4_*;(aUOqCOr4n
zKYl8b2m(6NYQRCUpk~^m2W_IA9@gtbS{yLIK@Wf93|LJVlgTP;7krHr!2yA)7<<R(
z(>wVjqgpdeU_KpJGC5U05JhKx>7ukfp^X1FsF=65k%V3PQ#9}@j5zAfJRr>idYJG-
zQ#sWpm6QZMKiF)xzZ@Qfq%$gE7lY*MWnP4-jefb)%Q+o^9x_eLIYUi*O#~NgCC4ku
z!ABHA%wx$!`r@uEZtJ20({gER%55R5Dk&6FM>;PAeksbEg~}XcBxFs96J*D^xk$X4
z2#<q5@;Z0@hmgz4XE*Lgs2RC$_kg-}EsOG)klP;IzI(O+tnf*~ZyDq011`jtR1^bc
zwGa{l>YzcUGj`y2FB>g$Kd+-}wBSekZ#=&4i`#6W_NyRB3J|Lj&#d}G=9DG1=IAxO
zHDm-AQu=wiU`WXD&acno>u3^6L&k+_gr<1uuNh}hQS}m5QgGq0p6+_QbaQ(fupZjU
za0SD<XJZW#(qHrE-myz-vej)iKMh2vLDs=`U_cg>c!$Tc&Qvq?@~b2#VQxpOF2-`#
z_+5_VUtX0qo{MCXi6CaK|E>xkd~+<)<;{Jx%4erlKK(bD7Ks5A)cJ1A{IrQ8*@U|*
zhqyF&Tf{f8i7<V<n%+phFG-|IjZK=P^bOsk4tH*X{GGP=s7wNssDfE<{C`Lg%0io)
zhKZ>YG5u@?wyzfljV?9`UC%_CbvDYi<zSu~wwZhAJ$~?SmPXz)&Pjvo)|FVd!UYb0
zi7*oN(t6qvWV1R*o;l!}w!{z77V;zaLXok@$&`jot4DbIV(IX$6TLw1-;{~?Cdiu{
zZR{Y{-h=E2427?(reh%=Rl4a`2uW9D!$RA;o$~NZnzT(m_=H$5);yH5(!${^%;vu|
zrojKSmCY6S_gjKR-8jl`60#%1D+W8zePo56o9hh|EB+)e7dUh0c{G_j>yMB-)sqdQ
z%Ume2&kX9=w)$Yk7hSbdh`+sP>*y6m3SocxPn@76-A}{r118fPpXzNcSHiONa8Dox
zkak0gh*(O`l~Ki)n{4pIW2h?vPO|&y>l%zpa;5j%=|qm26~oCJ{@gFR0}0`*a!Anj
z;uWwiAefz%kh>tyKX0dfCNoc-Q`|a+T0WX#d2o=YM445}`rT((lD7H;*)kOQw0`C%
zG~lLk0#=BBM-ch>?xm-D0);UNKEgn%IPkzMVVEq_<x;n05g(u2$7rA`yDMk>VM2f#
z+s}KKsYD5evlLwx{YllQQ3Hs8ylj6^sn6w%Av4fdw@!2Dy=pP~Lu-dBawkhs%;^5h
z;4={*B-Rr8G@cT;)c<vZU<BswGhM#Edf?T^`OlHqz+rk{J>Yk|nVZJ%Ad|gNds!*z
zaZJZ=6&BmDA-5<IaHx=jWadv`H=vAE_zg2H%@p|-X+nLg>q6aA!1I)27b>rsRE%}4
z`ZVLue-F7#8o~miIp51;Zl7EN7qT)z;KD-Bi2lyf*FU9(W@SPKsrM6yy;(`Wfy4`h
zaJN=Ee$BL3VP!#4PH}Ln3@J)qTK>`&_YzDfCNEB`GzTsn7caaRu0$j|av_}O<2H7+
zYwBZ`_NL|lV)Z%YJTiO9^)NfixJyhnGmc)dqPr8)13ouFp9`5t^~g4t!;(2~#{ZU&
zInD@3l?u=Pql}Vz)(4(R6sRZ`B}+iZ-pw;eWu{{d%%gNC-MtEub$YbzIrvenk}2~V
zufR1A%E~k&heVGmhcYhbj$q6xN7=giYG6*+>=fM?QW&&V{o<5W?v3dJG}i)~{_|0i
zP{Q^?D7wgKS>8k3$Gz+wN!;IkDiXwnCcSPX${=7-x~{LBy%9u*uJq0GT#WnUL`cFr
z|CmG4<(@#7Klrrh^5s)}?Tu^9lPUB&F(c&j7`a>aSQMERo_XD8)NxN4y9!HxPA)3H
zDSo-4r%(}h^;OMQ<}B)OsyiTX4*h)cXbA$}m6_mkc-nM;HJU09rZ#-6{-db|1@KmP
zXS8P*Aym4W9jB>VJp7lXG;H1zehG3_b+~fv2oev=qeF&2L$meW39cgkEP~C)lE%ce
zs%6$vgob`$2Kr560*+$A^^w|vje@Y~NU}hH(JXeMa5{oygDrE|9g$3{J{LI*H^d=h
zpHf%5U??JJ<Y<rT@giUaqC@*Jc*r+V<GfkSd%rI>(OXCxuT{q8`6QFn5eQ-&=BvfA
z%y}Pauee3#<QulVx34wZ&w08`8u<=Dv(7Kt!m}BuyPVVQYRdMnMiT3{W27sd@nr9E
zFEiDh3+uNhe*jL6iE5P9PlM}YpoZWsV1@_#upG|?T!a+hqjR8&Tr(;`UE>+Z1kpNC
z?6KkTYUB0S0lO#5;XF9IWAB}&hdfIN1LA7_sms>R;_Qp)W=1zf38RRcR)7-FSdVS5
z2N?=OV^Qs*aObsUE%gqPf}AH-Z3R&8J~!wk1kB&gMNPP`mpNv>e^t*UrdPCsz7+I4
zn*Ik#UCy}ND^{zOU2yJLU=P``mXNDd>bllfoT(o`7VsWXjSt*%V`(%H?VIVmZIk6l
zUU!_L?4j=LCx#Gvkz6dN>X1J8@=yLpFk=KT4$Ug`o2YlxlXTX#bqmIzJ=+_6Tr;c>
zXf_@T=t}4VC6U_g2q<V8MHXP)m7ds!AZ~-nkn#>h8i8rmkN}Nm1$G|MIx>9`quf#8
z#GJ(K#9B3Pkb8o=ZwDzV5doPMOkjwH$K=o)j!{)`3b^I)0lzW&IWX2WWB_|rXj$%m
z3B*gX?V;UF^Z?(d{*;zqZeJU!W1~$_jvOb(@$7l`#thQuw?0+~?$D2xdq92t_Cp7@
zc#apNWZlq_nHZW9uy4%W^a$(gd?0I6!EgE7gNlU6HfyI;%Mk8%^k{Qx53;__t#Pt_
zf|O^{D-K3i{$P>iWCwQ@`eE<hSJiL{sB`xfXc=?RDD&1ZE(&(12E0+zT|7c$ke<1W
z|4WG9Y-{-+v-sK2;&n2{uKEewG^kO4m=Q+wz$5tf*d4lu>z9KW)OiQLTumvG1#co!
zE>qCw_69^xA`Tfx)j0&v`|`Z91>}#MQ+|8o4|@xqA0m$bB4&wIO+5k)oT7*sE1lF;
z97MpSB%VcWXdVsi@Xsr2D@q%-oXKCqSU0P>;SilrteFz&!~ZGO@Yg4jJ!#~*YMWwn
z<tr?Om=29620AcU_*>;aa*=a{kXVVCq>`2(qzZfyI7Nwk@}xqic(tGMYlWjTb@Xlq
z2J-q{4m|}HZyQ*UGUYu9j@a_ng}0-=#|`Dh9(umlo4mlsiabVi$v-Lj-Wh|xn5z+O
z#!5*2Qr({>(`FQ{$iSS<k;*!nIjb?n3~oKJYATF9g&73IJ_7hjA&80^nD8Kks<@m*
z&vYeqbRpjp1sZ@NW(gF>hL^0ZzQ|j_GoI!+V3}cKueNi}^F+84-&6rI$(U3^e6a~b
zlYy0z5;uWkHdcjlmwfc&v@C*TldPBbrED{Bq>do;?7(u%SVdme;Z7>`K79Ng?k&+p
z&GgXo!(L#vnNk^r6DPohVIlL%lHg?ct<(X+Ein1WpedhlcuT+wGsW!Dl#^9^^q{m<
zV6H?fD~{%%@cTY2OR{DzKFXu*hoY<m5a>PUsPdbvLM^tt9f-9Dl7-!!qJ7#B@(o69
z8xeNbuA_G1R!yN!%@G}|OgTQ}U#Grz{>((SsM94>cT_HQa6=Gq`Fi%~L7fsRWrB({
z;QU#3?<s>R1!{AN>DH-+bXr$YCd2?|7r@+wv|&h}2j9#kULux0exHn(w9eGNT=g2=
zlv1ajLL}0fBghzIE%@o+>c=0^itY41$Re({Bj);23KnTl=Tu{tTDEral{6Hc$|S5~
zNh<L}0jn0~6plF&40y0)Y^>=PYd?RA4u93|FiqhUzXyz_iL&a{1gCgy!XG^XNCamw
zoMUgUO<}!{m#5t<HFXHQefwWz4k~PntmNi&{~q8jJZ~S7-ksr1IL0{jz-LECnPuue
zZ=%O$>(eIFWGP$m*j>;BRZ`MtyQr@fF(0bLLX~}mM)gDVt_m>!vrYEw-BagzOt++5
zc%W5mf=38rE-ZBzq-2N2KdPTUlE&NQN0))VV{@3j%P9)La8szuJ;QPG!zgz@cX1v7
zr;%?qUpKk(HcI9NPdr=WC?kVc<{jS&zx4Qbaj#^W@Witrpm)&<R!Y`W9zY3r6_Q1}
z9O7sC$92r+IFo1`mILF>+W?9!qgi<&&zav*ihJ})(Wdx?^9}Yq3d$!ZpVL8V%O9hD
zV~jOYLBW}-CA94soCy)R{zw$RQfEk-g+&Dxt?ae=F&MY19?IN~&CQoSw?(AYdNTte
z^~*4afJrMbR#AX|Ey~5dYMA>|SYaW(Y)imKNpVL2oVaaDm@UE5J2S@W>26O}Q32_6
zWdLgjM}T9)@NmMF8kHo;Fbd0e|2)C-<6b%^*iGZ`22YZ-uDb2Pog(q96E<I)UDk7c
z2%T1W@@GAW%))th4*_poay2nP^`)S8nKJ^Kk+KY)qa3H5cZfu2-9ffJd5z`veev;>
zk+S?G5u2f+)*j!_3UkW9!ZynHJiedR{lIdh77@>fHnuxsa-^x8K&bWCQLu%2LutxC
zNX~pxiI@q~s$1fT3)u5he*%2XPhP(_o?Q41vDhw3#nao{?8ryj>4sE6b|L%HY-=;c
zgh4Q1`ra%E9xNa#rOr{5QRwZ;OH(J9WZnGKQVqcdnx7YwpUfaYJTprC*6S|iyxqd+
z)2*{C?+fZaIyBwiKVC@Fs7-_-=$L|<$Am<<Jr6I1(f{WSY8tX-L>K<O9_SoNk%P*Y
zxl&2BN2p7Y8?^Mw=Sv&6Cm0^a+{TzUlIl|C6}G@=SRtu1a_6^M=AvWEC$bmZ4>FF@
z)y3*%?@2$x*h6MV_)tMqlvp(wmYt{E>PBvVd@2Dk)-AgHT3oKniHk>CaHRsA2yS`{
zuGidXekO4;w*mW{mQujPV)^8XVaBrA?D)tl6h6O^mJj_f_ATZ8W`2}ZGj{*K{xH&E
zZe2BhnivUwe(wM|K*qm2c9@__m=v-P-9v^7je$uG+M@3Ml%p>{^whYC?2OACpC@$+
zODZwKlcbwFb<d*CiB*niC}zr7+(q)9oJ#LBrgg&EG75C?A)Kv+_{XUYhM*i&@QZqW
z?tBc?bpJbh?_Q~vNA&-y!~LVC&ZT9O(^*OT3Vx!=HuJ6-A$IKm`iwA%Qq>|xgnH#I
zXvWmW_O-kpB(EF%w%rfdzTa~Z!m3REe}fiR_YDM__^phX1TQh*I8(7UBbKzP-mQd`
zv(;HbWK~|iXrSZHo<28D0^KrP5jrxklv<<@&6%H)3*#qpG7|;uC7?g+QDxOp{@p!k
zM}z$z`UZ(l6YFch{PVG%FS%{tN<v;XzT{-C@P1aL14<Paj<p%mkDn$m4CS~PEMBdd
zOH<7>VWx^4$uE+#yBG*;AaDH!V#DrN_Z4<zAIw+h`g&u)i$PlYNkjMx1V8M&A5k|h
zWAb___~5}Ry%?KUr9x;@%ZVdexlJiK$Ih3BRnJ@L!+G==iQ!6-cqH&Jx%(qwuk!cT
z5dWj*V~saRjkhoP(02DRVTiO0Uxh;qOq-FE*1n~CW~qpQ?s)rlSG4@@%Y36|es8p{
ziW7OjvyaUUj_l9cBCc&fg-B6Xk8x$>7fDbWB9^m)fjCoI9{yFi=e0?ZfXt+b_x24O
zhdr}}!+v^Ku?sdMKb5q$8l-6SV|sI3)GPaLFT*}pl1^sUzO9jZazRZWR#NL>RD@H&
z2lVFa9=~zBSsy|R-UHd2OqTB0yB0Pi^Ro#t(W-eFR12CoqnRn>N!hLBe1q6myzGto
z#^g0(E|Dvr-vzr<)dkNHeevm)A}Gq&z-gp(zc`+Fd$12pnyz&7-}eNpT>WAGcZ#@0
zfyw{aSc#An?bDH-^yfvrM}o3yJuyJveDmBY{a`}*fxz(`^ue_KK1#&u_fp9;)+ro>
ztMRK#QHayA!kaOXwxYs=Iel@g@U(7u_QLIjYm68bPsQ!v)<UjegHAoE?T>OFo`LhF
z`~`F^4-li7@5PHc(Cf0dS@d7we!lTS8Z5Z6jHdCHrm3nttSUY(Xa;}imUorYyR<~~
z=0sec`>QT5H=Ql;C}Gbb@^*X^ugW`ng}%A$L@VYlxr-sIhyO)SZMx=SWcFi%hkX!M
zdm;P?-}w9~|Ab3ai1GsQXz!okPV0`Nn;6*Yh%pTgzXlB*InJ_lP(vRx4Y87k{k%3I
z4zor5Je2<~$Z}06LQiV+`<;Gw@!609GbDUSSAu=@iXY`5nTcLe;X1Tk2j=X!rF(Q+
zd8Cq3*jW<LMq0F0%RmP|F-tktXI-Z|y5&}ZYk5eLqeFx8T|lL(MxZB~aqMxsEr-7Q
zx|#bX7<V=%QVcW2fgj=2??IRhCPoryBf}Xav*|*^Z*W0DFOX5v?2oXS5TS?t#k!7i
z)G*}PeBI{#cZP(MzHV$!YaC^{d6VLPdzu%kMPo*b`>|y(C;Y^*NtN2O<aq((x?ai7
z!3LiriRzYON<HK8=GT-A@D0lg%N%+T-<u!;C0*X2aa4Jg);x!J$27|rWo8zpS4)o;
z2*m%&W6Q=Xl6t6FUjiS#SrzC7I`3gHd`@bF?f-Lk`a<Mak-s!G_LHq;OCuYr_UE~L
zTw9gKoQ`R65nPu((r*>y?3kl!m6?)`k=Z|<uue1Ct}neDa<l!ipYl;DoTbiF&Gz=)
zt;pvGp%W;}%W~W4-(Z3rpQ%rC!{=o3Mzuqr)xz)JZ9)crDJh-LU;G3gGa!tvJP@Qg
zpT(R}5DY0R0AG~{L1D?e@@6U{H*_EZ4s-KHkc^PP8r;DQ?MBP*LY?__BlqUFEEL3U
z4SiM^R$B<*a|In8`kNK0Jksd5Qtpezv;@jxl%889?=hxA$<JJG@I1-(8DIEXcCMFv
zrO-QSVV;tnO0QfXpG|Suv=$S?HW8+4z!|fzft7B#A4_&H{)qFNq%sevEaCM*D-xrs
z(VJvnBuKQL)M^#k#V*se=@_}_LIvKT=SDstBwc1Xzmj(9p4Q>r)gI;92HJ_6IBgug
zzdu**8}S4Vk-B-W6-&^G2FIULhP4%F8kKH&f)I|5h+8{IBf8(bBkAYZIAVuz;MdM`
zCfj<V^Tox#C`;15vX-Ep`zM5ql4xtDAsLRs@|GyKk%iXYC@WgiMi2z~vtxRt@EXq7
zqa4p#$~F}@<s+!s1T8E)W0=18Z5%4SBL2y!*+_I?RRz*Ag-*+EX7zk4abHsoX#yTQ
z!&;zA^-)}=#q6#7K$C&ycM)Bh620+>z8So|zpcg^O;zfp>q@psRY4go4XG^>E#Hod
zm<OZ_+pPHRL(ED7r+}0tcOYR9HLu0m2!arm(*z?F5;^~}1U4y0jm$TBc%=4S`CIWB
zUXaM?DQx1v)P8={2Vqff&Y>>Y_>mie`2z17Q|oAS*;R*xNrVh?8{@&VcS`DYLInVg
zP3AoEODP^RDilx>;UY000s5mR)_jKba`h(5dpe_$%KTIoW-I2fH6EjK-^YO%)Nu%%
z0`I8ckDa#=ytM1Te65zaY1r|nr7C*H;+dr7xbH=j70BEiQqeqK=RIY3+l`5K)9%q|
zvzTaCUgCun?{+d(q9jQBqi#86E6Xy!=5@H1I`=C(-|Pvlh;~WznP<n@6w-tK8V*d~
z2w1=puB{2#gq^(LN=gq&g)Rd>Y3YqQLSFQ~eju@}xUVen)xJoqJnd}1u;Si!2e+{F
zr2Nn11R6X@PjK8OTvZEb@lr85Nr@^MU4gzyiKf#inmRz!n@nw0*Cv&;;IerzMzkD$
zOc(EiU-lqsU%{PHl95IM+TVySdZ$cbSw{#pjLz?O4=sP^A;Fc!LKpq2)`<9r!WNs7
zN1wP9RY`OTvFH1f^*KN{Z)p-bD700?06pf!YGA--$~qxewDdf=m`d1sfyukE5)|*o
zMCljQTCdtaN2GJQxtMvpL7Z`50ZNllrl4}+&X~6QTZYeWLzV!{0ha;rr`Szx@T@&U
z@1J-UO;1st^JZskl;y|rQK%+zv}xfb4%{iB_RJ!jq}Od&i$Zbk`c?Djp4uV>;{A9P
z9p&3vU|C49ugzG9zUJj+0h^gfR?EE|xVH85SQ97gz2%J3M}lLm!ypnwo#>FPV9`GX
z`?i;W)H*ggU(OeIt}eWPa*F1&Uiocn>k5_5#AauKho)(V`?-SmxA`(t07UTFp%5b@
zWeD1*X~*<(?8-tGWGX+g=pFzve*hX^Hgi9sU2dJ-5{b5v(Pg7rW>+c*M<yioHW^4E
zoTjvTzd+aH9jR2t#%D3@^Dtpiw6$|Z0I`Iakz>y+`X{)jtHY(qGE(WJ%&v`EazhQd
z+nn3kxw%yxdEQO$E$`uI;B(tlkwMlIh`w`aPfp#@>X$oSZ;jymTLy~ui<FSeoUy7l
zlqIkcC0p9Bn3jWzSPqF~@K%`YWY<-#-4rp_2Ei7O^t~!J_3P<hxqj5bt0f7Q1^ucU
zC6_p1_^o0<VJ#8q5J@xthWik<#J3IbHg&sE2?L7Z($2=&GWXW_*&$YT$MGhmc~_Gn
z`~1@Ii*%SuFs58O^8Bm~em#z1LClf{8mQaL@PKmR4}{)&!xHL_5XKebBQ?%t-KZmp
zt4aJE=&#pBfVFIAFAwA#Lrhn4w+}@qsi#73IODI<D{vwSZ1*5fp$#;j3q@(9dZ8ds
zEaR2&&T>2+tYSu1QZpKgA*dx&H0qH<tP#sVUq$Y|^ZjelK@}9<)tVM%`Dq<{*ztlX
zgJGefHg}Mowq9Mbi6RGLv>**1+bnJn(G?mE-2KxugSRuGOrTsK$0E(xAysOtT{}Q7
zBs2<l@v*)Y5RnDCeY?|cfLjNuTQOubiW}pl5&PlicoA~i;r65)aBm3nnTt`j^TU96
ze`%ZstoWZj(0I)1Ayy>uqa6J7KttqLRMklS;XGGM6d14k;1WxYrbW?)fLx>SgjEsz
zum*Xz+u-;aRA!(gHtUm0WlP2o5sCeW*IFcT`#aN9K992oQX7l*jPA-~{r%|GvG(K?
zx^I>)89khGZLc5n;`++1mpqHeJ{o?i_msx<&fe(7oGthj9>IG<(%Zl5>5DB|8M)>V
zdr)V6M`#qt%EPX^Zm6|&M3Ov#pBhLgSLi)B>>ICUB))u{r?js7%bOPdBLHABljbgD
zSIch}R<@^jnR5{84cOwBdi>YVyKq2@?LYt$At0l6s-K1IR_OWuD+~|xXx}yea5j$L
z!(yCCEkYJc)M<mm8Ra*~ZXVcQcshhGL#4Zq8m_=S=$wj(UA}G{34ETtf;SQ70X?v&
zyKycTex`C(bQhtT8wgf^y}_R>YkN_m)7A*3$T~X)fUDhSw{U7i2YmVIghFbWca{ij
z86HWh^7)i={n6dErdtmaR_?89zDq>q+G{__>FgU6`({CWojLDoI%{NGQ=H!R1r)>7
zQEq_!6J;LpD7p4XBY{?}GoSVPHJrY@d?}xfgM=1=snd!_Y{yvUBa8g#<p$7;g)gHK
zBVb~}k?PtxPQ|DfPe>sv&x0jIUsq9LG$h;Oy_>`s0SrIHBX&Bw6IKQAdID{;_-h_!
zkGMDfcKblJ?UlkPu2gr)jEav54fmk$AWVWye7p|&XM~xH>Zd*wf8OV;ppnC&;t&nl
zh)<U^yqPFa0V@qFW%tW3ZVwaL5WgQh7wE9I#Vsh>UJBUFj=*6YNmY&cNUW5<Y($xn
zHfL7w-y(IY&3G*c6GFpaUK<vt`!V8vjfUDwSCRgKkp2Qou&38mLoJzwTIq(hExoWE
z{CUCZ$4|}9V8*p=&M=055p&&oG~C;uS#wYOlxCm*^cOB|b3I}v^_z&afBa=JGN=<t
zp+V13rVd{Z6ibi(u^15}da2({OsMo0|6*7cgA3@Y4taQ54(T&(ljQ@Alyl*dC4+~6
zZIgV8XkX@2>!n*RClgmFbUH)sLb-%l_k+5oEBFFE#Fl_#bI6-kG3ZsT?&$DoI-5<g
zVHG{LELw2;7$=E`zi-#HbwxZSHM-~X4op-7m;u-Os^t4}L2I&wqa#uC(S-`BcP*E-
zVP4I<3TZce`Ew2p6HI*hFXWfz1pdRjeMzK-Vtds2#@D@OU`j~A{17yRF$QHAY+B`~
zbB6b55B+Z)K5eY!+H7m5P;?bU4+3($u1IU*O0v3VGv;K0?bISQH54_KK0*uJS-eyW
zp>r#qPuD*txNnrErAIZO=g07nP9c&`eWoOcZZDL$G%zwK{CfcagZjfR9c9j<T_^kL
zQs!pd0fg@0tc;+<fN!g^Q17`8x5=WMfnZ@YVsZ_H+AxV9!q8r3tP$mx{)S#4@MMUB
zSt$>X8RISjaqByb%t0j-7NH$ln)g7!pT8qtP1PnA{#`(NFpb+?KW5>v6tTxork4|7
zpvt(`7>9SHQUnhaIlH&Km^y>2+}&ytW!^Hc-x(Y!@%G4cHUOkh3@)<SRXt2FJ1$ST
z@E1&!rspVRcU_>9gS%DekMo@xTbI=@6C%%V282p948%1KB&hgMY=CQc^zHv|Z1+Mo
z(8H=RATMYoYvIsrCaWI0_wj6-maQN0_u->3?B=G&;g^Hr5~}wCLa-Skb<+rujUKB}
zwPNoZBeD2wo|S)0z<2o>V9^C3w>b!=DjWx}qUBOM&+mkL(=3`iO$-VvRrLp|A*cHb
z{`oOd;i!2%P%Rdrc+AF5)s@A?kg~|XeVF=eP~!`aqGS^ZlaZHp5TXRz-jluy*EX=z
z5=>v@dw*KMPP2DDQkiT0RIPmXOVXvbOb)ru0-5eRTn9FkHFd>C>l4i%Z^8e{?aEJ{
zr|{FcIe<iHSG0w3BPC4M!XnquIuQEQHdJWfT_oQ}`EdBeMRZ<U1xyr6VAecs$Bo1b
z@=9cUdqa2R{@xBv_~VGoC`&<QWLJ7AD9vIm4#XFZ@S8EbxZgMg5S13_?-Rd8j=eWn
zTd#zZ^LpY<?U2n-CGmN#byR5j_544g3xvd(V-YocpLBrE)HKJ=IA>%b(TAc+tWS^o
zCmwzseA^Lg?rhU8$;FR>P(h}@(pQCzVeMWWkE|W%hZ&Xgx5+~f^OcrH1pE!ZhS3z}
zxNBb)?EI(sTi7ES1n&3`%~XIrMxk*gt;_q#<AIhb&>PUDofaC`k@j&<29v8ddZCro
z6{>gkGTCXXxd9Xn>um=P`wo714RM(9DVvvjh4w3pgNXH-XuX$dsc@C^t1g(2DcMJ5
z?clrhvKsI_35OFDl^G}pthU`GM5@Khh)tLVc?`t&1KO0^P{^f-u^{_Xq<=O1+MFXx
znvhbRD(c>Cy?Ytf>tC=>yL3eL5~-!d(uDRUx~KmE&5DAdaXN?Sm^n_ZWg&KeH<bmU
zl;2QJ-{mV`l`Le)^wY<#W~<$*wH{ol|1-xmk`k9w*I$nVa;cP4^L!Hqc!_Pv$rGLb
zAlo{?5j8=~-Li0Ws}^bZJvonOO^S2230e)yNp#_Pv+J)=7dUbm<lSp!I*OzWaQ!{D
z@_a@U6woy_SEAfd0eusK3c@BfJy)g@a3TAT;@xm&R%Pf!)USt=>qsSg*`++!>EU~%
zOs0XG$@RS1VjkaA*~mJdA59ah5CwrUc|XL-K~kL;<i8C;XLL`W(w?RSdGzX;P6UsG
z90yh`I%+kNwLi13D}B39+`)m$4e+{o!U!rKZO&g+`s;D4rUtNA%s?F<8Hn-%*j6NL
zK!*R~w`%qalQmzu)cg4I@!gP0<m%AOo=-BF=`Wp%2iZoCquLY`rW2%|F`Ksig-D-O
z&E1Rkv9l*kc7fdjb34zdru|^a5{Ieb=Tly67FuH9hLX75vDrmLS{4pvs%Z2aiu^~Z
z_!lCtYi-xT2&STSw`n5~PRD9-k7ETl;FW(n_Z%g0yT<2|ibbR0*W+U@8IQ)eE#NAz
zxl5BZxlChqoYKMC{nF6IaK5mLs3XwZ!<8D>`yz?MP)<U>hXJt)5^im~@dD}j1)Ys7
zTJb$|rvX*pBPoaKVPAS+@^LYzF85@o&uJAWdT+=#*2^we+WN|<r@*VBhvv}+&gBI8
zC2BYEo<2x{rd4<~Cv8e@zU3~T72t!$yz>m9z*^6_2}MU{op5}zyrcbFWu#19twxT)
z9e98WIR)2&F)M`OK1pt|q5;IAxHP;8)4FX^-t7MibJbXor?%6&%Cb&{f)GI8qw}6p
zAZ$|%dc{P3x5We@KYLWhSBQ$WlRs7dh-}*$$po{G%U|IIU_nJFkjK*@BIjO>$lV80
zcJ;#|MyisMzlqewoeLe5U%cYGy1+y(8%!7RDv{Lb`|`CQ${H5T`OT&2|DNu?wSL3y
zE>Z~9bf^|6-U+$Pr@DS$9NCQkI#g6>qBrAc=?<@xb!YgxV<L$S@zgQ*MI%fRQo!^D
zv9I&!jm)uP%2w9n@nI)B#ir)c22tmHHS%OUc0iQ}fF8^%e`Y5CuJS3UEg7&s%Jy31
z0o+cw!y-mvt4+@$x4I>hSeFAmU8~r!=yrn(WIp+IRxd2LpC>yrX7{RcgNjzV!?JFl
zJRL*6jZs)d69fwDj@#6F5HVwiNN5JI>T@ezE~K7xOlf~ehEcn!eM=s4_cTcis4~sE
zpSPAgpX=}ILobx@Z_GMiA#+*gcSLE+VQ}UXFrDd^WpG`7%8{OKns?kZ4RV(&69+#{
z`D=Wc^6vWe+Kd)qRMSi8XA@#A!R6kF7J!uV>3_5W1;l*XKuVj92zt}krDidLQzdS?
z%&pk}5!S-{PH)u-Twgq-x)x4pZDJv1o1*0zCxCiy^4|g*(IGujSFiE0gX<uMCb!R4
zzIOgqpvCzMUs*_ufd?4)$<l?PYl+I%B@FPzm}~<hRxJSax$nUd+wg4W=+r2jm$j(-
z4DXuCTKrX|ZuoI#r@&o+reGJ3e_4b+TAl`c4};oN2l&PPsQL0Nu2cP4=`tJOLUtf!
zUp}hgz`^4St8|yA#m)JfhLIP^v=ug1jRqfX{!3o-Amz9j!kEnR9SP9&!e0r7qsL`5
zWxc9m2lYA^g+n+1w;_|dxo=wK8aH9VIcgDTSY<i%a#JNVdio(rp>K62@_xZl%|Ru5
zQI-?ob@OcaeNe%R=AS{mNHn%x!O7(jxZkXX7XVDsi~&++gg7c~m6aNE(am%&QK`XC
z@8V^VGYpX&SaeAte&?YFI0074I+CR`Wc-h6&YLp$^G*Y}zyg>2JIPP6YhY?g{a$ZS
z9^OUv3V3VdoG78WGRfJlr4P>okFl=e!q}LnjD6v;Tni<r=<oMlZ62oM67Kq_v2r%X
zIkLcJ?fwK8o3IP7Rr$qYSV(P7t@vL#xt``g1C|{R@J}PEqSVCGjdQjCwCQiMEsmIq
zu7?}2in~5r+<AnEOW%MoaJUtnvjn^+^!(t!GdtD<fb~0lC1-0KT{L>{h+Ir(;I>;I
z=fB3jG%n6sxz;4m6nkw|fI5W8EHpEI!fxK6rO&8&Xy~L=cmq@ZH|w3FFdwfhh;ER~
zmXRA5ecnI!hx&Tx3I(;#jX%im-{yI*NFuQ|+bHm-3WHI%<-772=SZ}n1{Svx+{2SQ
z%t+L=->T*^H-96PHuLwu;^6H{pB#(L@V39y(JvENggt1{&~uz&#>xt$l<;0+u>BVB
z#Q0S>5=`oOPs`%{VY0e)=_ch=SGucpJYs${v{CYQaMmK~YLKLbXb;}v+7OCj*o>b|
zs%ohfI8p(WFXT-_MnJOkZ8g3`s9N;;hdKv->e+%k&#FKU{d;Iy-dZ3KoR6jrB`Qv}
z{1lY2oX~Gn|I^MG5Bce><@%n|Qtcf(>7oE1mQFHXI<-1P7qf{FfFYrmRlso!=j*;U
z?~}Lr$RV4b|IYX#<uZU35a3TgN`b@aVE`M1^TCJS0kgx;_V=psBt|-4wC{ihc1c;d
zd5ViQ>k%v9mo(B+o+eNFTwfBtgDN&1!ajep%=j=6wQ}#ebaPrUcUYUS-lJt;maa8%
zFbVOcSbSH{ND=3#<Hn?c5%krn6j1?)h7JcLlO+!`OvJQ#&C{hT4x)pVcUm2ILdB^c
zW26Ei9)=!(XmNBwh5>)aN1HiaKodlmt|F}Tz42W)bpkB9G3NA+MQELpuHM)+l_sH^
z;S7Kd7b(vEyyB;$$DmE?qOq2S*Ca9(cSEF%k*;r!x8aq(d~Y3azrhK?HkojZ!A=`j
zkl%vJx=A~HiIC6`APU{eK=uD!Z0`J}j76oKCQg2BW@``o6X;c1^mxk~o{>0gpcnB`
zB;?pBYr11W5`}k6-Cy$#SBsVF6VZ7m%v`UBmOk9|rX@pZTx-zMPYlB%$0bS0X`9hv
z?(MduIQfDgkW7%%{)pt*mXz&h_ar49JFz#6Cy0MBE8}=(@6^19eS6ObkIF5caF#2D
z79t;QXubf!H*%|O&yX7@N~uo2RxSarzK4>qezu7?yvO>i<$sp6RS5l=;7j>TQ^`9F
zs6nywXY0wd(e0$`gb`A;C5Jw*un*CVFQko!`ylndi!`68rg2X|mc(@|F``br#>$6)
z7$d><zk$MK=`vQ3V8#|LNuK4X$qrYt{M75<zCTbd{;C!*aIie}8xLGSW$w9$mOAIH
z8ef1^JkR7UWE+Lk2s*v8gdgZ{yd#{GyF^|e(k&P-%a7GsBeNiLa7m#k3pq!$&^Rwu
zw;6~t1U(ED)3jDN;!IAnl|^jeHI~I&cqL1kY4@s+yf}CYNVv@OV=Yzw=7L79B_RlO
zP$>Lj<Ei$0je@z>KMK(XQ9IJT$7@O;;b&nkc{rC@^*~9lRJHmnk_mkDu`HlY$Her8
zn}~nft`p49HNNKTxz;ut&TlyRP_=GerkkT7JR$Xn?htfuQ+EQ2xo}S;22;cO?H>!e
zN;5hqYV%CE5S_9o__<pA*yEK<is{6tz2N*p&I@&2X4WTrE><=){A`aRI3*sfDgI4^
zlFJBrjLlG6tJVRTcpKhS%l*U->XG78&;0LnEbCjdzZL9323xUG99Q)T^S{G$_~$l<
zt3-orF$ph<DHp6=UdY-&+mjQCw(*=VIQI5#X)u8LPywbCkS~FBARfOOl4n(0cP&5O
zU9iZFjaL{}g-D<t`G*Gi-UOgN=!EjMxQ_v!ZG$ZB{NzD)IQ^D)1svHlTwtxmBV)n)
z*N~)EYg3~&Tx&(ni-$_y21W(!JZeuNsH>e7vV$lw>>M-M!ubvmE_VXmO&D@XdJ_fK
z5N0b@eZO#fU$24{ZQ23JE7ZH~muv*P<&%`Q1Geq~NC)Vsn~#dV<+uc*t*e^e)uUE2
zr+<}T)-nl-=W>0f!Ze3?@T*4^cVyr-;8Y%30l$*4fa#No8d2d~Z8T5a-Zk;yd2;Rd
zaoA_-^ujD#qHjU9+qwu)4?xvgKo0v!jTh}1s{8m!BCr8DFncnm&e7CGj*Cog$ny|1
zy!dn$nL1DwseiQDFdmzUPh2yY=#i)E`+p&O0k~eAy+OZ~H>JwiE+ixhg!x`KjTq0S
zA>#k@dF4f5ppsI2Z28{dfkNFci&ChC6&hKm-X!h+I$j^w7>cS{`zoSmal#nISGsg?
zerT^VIp83sW(qhbBloV*u=jAyn+A@TWsyZt@a=h_2CkERO&Bwv^}Ar(TPSW&4=!C2
z-VYr%BKjwHt-GRvp2V_h8*4f3iq}aiv+y&G)e`c?sOpTaWy*YnzBHWB*Ne6TD}k<i
zZw-~X+G##txMp<FIkE&zxc6xSzYKV@WF7iH0(_1B2$@w}dfexp8%R}}6SjP!m;)G^
z$sJt&1yuPDLi@u`y9W;QMHz2JM-*Z^jyV>8l6w&8ZROcn<mE#yxD%4kL=(@Z6zb=V
z-8tI`C_bKc8cUolb;kAe@(kk9X02hT;E(58JJGWKp?s&I9J1=h7K)_CYMt?~QLSR;
zc(BH-f*+9wtW-UC?UT`L?OGW}|KU}}wwwlOuefB6z{Nek5a03h!9=%}+TMi3g8a1x
z`-(z4Pxq68Jc`UC_oiElOYnIc3z_L9co)2!j8`INjNu9mIwD(nNj)ddZ8_8w*a@ng
zMbT8F1qz<GQ7M13IfAtJ)4O#>1brm_?oy5~xGX{WXyGpt4p2Wyr8HAL4ZsLW7hunV
zy>J0~&4i6dXX(>YiEm)_0(Okou)^Tn*im#0MB16o_DLC?pB{k(7Wx<#>NTNIy;Q@W
z8GB7pMqv#m+M(m~rKffd$-TB&;7-RTSKnb*b$v=lP~K=^jH%5QwZO|TqPOLhKBA!$
zm*$<o;eVa~6T=fmXafngUcJP#QxI>yNB*Adfx1v<Pd!#(PnfCZ2`Ag7{x({S@IYB+
z!X+n6aB>~J&)dChZ1Zs)*IWVDTQ>G(qUNCo?&SvcQ<&Wn?8_zB@M7_hvks=+nH$2i
z6zaMU_5_|qY%y{5vJ*E+!aNQ106U9gp}pAKEpS>lIX_n^kbQBALFigI@jty?o{`0=
zJv(f@hia5x^cd(l4fik^#QNoLvJGtLL3&`J{u-WqzMbr7#WPtXp;u`8*C^s+NfEU1
z{*~y6V!@=d$`v+k059Qkik~ORprBH(6^KCnTVFSw4BkX7NxxJ1n`wHfZ5oKn8V1yi
zzXi#V_|u@BX=pM?0PtzdGqkZd3P*C~XMrGIvQK1cBj$Z3b}X#c>C9Lw0l}nvfNz8u
zJ$qJcEcH;K4IA+>P~H`3(RB!N-?zs$7EKtN(8Sx${fd`D#NF~uVZz5OyB-&KDXJqQ
z_n6tCUW6fm;#XC1TLSkou*$q(ij7B69$GL5Xo;xN3Ie>RyWka34U8H`=%x)a+I6=2
zjte^nbH^McM=9=VR9Ji8erd!m2cf4;(2;dTP((o2mO~fct^0R&^Dqy%Y<1B5JPtMD
zSs*4v*|zCk4B=;Gob3X+iL#du?ctC^*24ddsZVNJi1`6!xhIT}y%FC<M+x6*9@<OI
zkbnpGYA|lSK1T#IrBdlm18rNxWZU+kX}<s7IpeE}(k+`PXW$Cgc{1R(x6A9C4c+I2
zdWS{EsI5~?nbj&G)<nTAz%&d&KkgP3z+5)MKBOBhPvIZmv(mB{nZ^0J_I*0TEc(<H
zZ@$KH*#8Nw#k4Y-DdXH_Y}8vU&e|eStl%Cu3q;!4HwmvJop3}r;U&e;f`xGNuq&S!
zwS|`8{@i7-h^PI0a65yvQ`gzUyZ<}7rs3At>2z3pw@&CXZNt`{p(YkuU3?MkS7#k9
z`-w+c+BfklBnwP5VPfS)0M_gzFB#YIjv?QP=>IEWd36`9{asvRv&rrmK^*`Gn>LhV
zbZti>WaT;(eU>1hBKealCxJjrFYuYbi1-=jTz4%-M&Y9k$mDhYFME2)eY@R!MiHrH
z^6*VNCgO+%^VaguTXRa=%V-1AW@Ko04j}AfM=KyNS81=3iFKl^IWRU<q}isF31GSe
zUpG?^w}0~Rxx%UeQ|E?p8576GF!F{_FpPKZBzVW!Ik3f8$ZNdbAKS67JBz>26%oUy
zoLOWLM|gnsgg1$^*Qkx{N2j!pib=i7^)3cw5*cuepk2|3Vds2X7C4l|vv62Dq~7`2
zAGY$<3#&HttC$U&R&89;;xplgo2@n;8WTYkJL4Rzgd*?oC^!y=IYJ8L*Saw56gh)6
z=vFo=ns`%u)nhn~JDkwdJGESn*g(zgatK$SONX2Fa#5xBD^zScH)7pqz;eardZyQO
zTZ0nDx+2&~9{NOU#VU=MYTCdHNT#cdEXb2R>U>+;zYHxUS^G;>H<@w!ysD%f+nAKF
zijs$t`Fl3il_mKI;rGj@RPx|Q^5(d@Cr_nL>+vrU$9jj1)GFJBHs1>KW3vyrO&k3x
z#x(cFZCCTx{LT;Z9{Q1N;7me~qUeqwY-72HfiX=4)4W}ps&ZrSMZd<xn3tB^;&fe!
zMrtPj;1WZbX5T{F-rL{|&QOGiod{%M_-hQ!RSU)dio6WAtffAS-2xEc%LKN|**ZiQ
zf;8!Acdn84Fio3<?;r>{XI*I=GnlcpgUqeaXkRx|i?HzG+C=Mp`SttOpxQ_Kd55!g
zgL7+INI8kM<@Jquhyiisv~!8Es}7RLIVks@gCB$|dMrfkGx&Maxm$Z3S`C1WpHVI2
zY@LEU6ljT<<Se}^P|hBX=REn8(hj$}j}oQSCdyr$o+!wH&>;H%?0)=j2Fv+kHEObu
zcTb#MR=myhqOXFB$s(u6H;J=&lSR{{>g0A>GJpgl)I6R)%Hn4v`@W1mhZr&8wBm@P
zEzr#3T#?~RHM@)`kYfY|5lz?_?JjBwmkIyb66@H^3Ou4^TC5tLa8;Xwr1L3=<9FW8
z=q+t~ix0r4GP3u!wDaZH#Q(tAx#lKUb@q8C%axg6l6!wpB|r3#RJj7@9=;L9=303*
zH=rV5r+?Lp-V-N);Yt*2h_?{X_d@Awj6=M*<pDf3)Sh8T9GLykE$<g+aW3fZc03ja
zVx9eXr3G!xMS0ouDUo)%KNR#zhd9r<CTMuV@ye9g)gOFAgr^X*hZ=Cb&sIbV<m!Ad
zRX5c%yYglZtfMSm^aM}k<+^q~D4ZM%n$(%Vx=8NkK|lh&qvbjiX=?TKYu={V6Qnr*
zoAs0p5v;S|EN>{Vgy~ap@b0d@!5KN@W0MA>eDH0$7WR|bWf*D|G~uf@a@SQ|PJ_$}
z&u3}Ehq?yT!a3D+rf?I0ppcMtp!ai|Rj8l#&;%zfVjy8U8PclzVXW9Un~oWBELO>G
z)aiz^3KhfODVaP5G>Af^A1iSjy4-;-KRvGd3vOpuGy)XSX^B^=GjuY2hO=v1`yMqS
zSaFU<(LLGhnJoQ>Gix}2a>V%S(zwioefPQDvdL;V6#ID7rrY_;TAR*{Q#J8i{VoCO
z`jRGL_I=p3wTf<d8C93%c}LxA(4_0UY))@hnecmTcniQ8bxaz}3?;_#;-J<QbZ+az
zHRWOKKdO)cCuk)A(OoPL0Du5TvHqo&?uhs_2gj|Z?Vce)<9^nQR6ugNiH`SbVs?v6
z7$tXT%R$+tm=hyp(~SsXE1?q;NC~&IGT`1mfou;ANn@4nj)S2n+_nUtb<)F_3|bt;
zIN0y1rg?w$(57Fx39n|}vYZjZR<BS`Vw5EMGtsiJF@}rv8WA-&4kwo%!b673I56_0
zL289hhh2YWuCMfp^wXw6gpDPEb_mW7%yRNWJZS^Q+dp|@O{l`#g8q2;BS7xbQ@4c4
z%|DBXKWPIv89O5O;!HTm<oVbAy+rAw3K18N^}UP^hzd2Zp+TN4%oJ^HA``B1Rv5_&
zQ&-`Jx4`ZS%%qq?w}hF?jr)^kQySMd-I8aNuS2l6r*->M6d$IS%aNFjQE?|q^n+D?
z<tvH=yf}Cy$ceZREowu$nj+gi!-Xk>w*1d?c?1AM3P;j2yp1_51}nvjMUyX7dCU`y
z>^9-J_H%uGr2sW>4%)<M!&JuPb6p~9DvxT@choV6TUr3Sy^Pgb$!E&X`BXB;L$lER
zd-%4HuS$u(<xYq_I82ZviQ_?O6PNs)yB@08-)S7u8}??i+7L5CNJhD;Up})<^*#Zd
ztw6{Hl{p&4HfXW>b1l14GZGFKEHth%nA3p)3V%C1^Ay1}I(&03{1MRD{QhO!-s}zv
zCa1*<W$J%SmP^GDJSn<H-_FeVdQ-0hx5#^W&x8{SZS7E?#Zp9xk{QHhC!*cMC>U*V
z8*K5-j}?-XZ*TWIBA)MwP2C=ProUP=)?>kGf(pdG1|G@(eDN%%T#2v}h;y95^K?Um
zWPz*ldfmRBI6WyGj$gxrJ-NkDbryMbqq%@|!8$9q<3%PJIRp6ViFe{BGU#3eO=uYV
zWt3PM2<$C28k%Eb3tYt+UU6{U7k2-#?fkhDdKTY@TAmfcy2`g;!`MOTHK$XO?jb!_
zQ$4en!nLyLFUx2<b~wvv_DlfCr?TzyxJGZ`QxBOdFr|u608z*26@(T;^cbCcm%kDx
zHdRj5w?H7!r31i-bIC>0R!1DEf=i5~sLh|QqDVgn5``*6o>a;Sfo3mk1Lol3f48(>
zwR=-O$a7i^dOT;OAgwHxbhd{}@)3@=ppgw&;;L`hy|2Lyi|(r=eldDLBdCOP!w{Q!
z%n~mz2Sw&97kvkbyz8TAY|dLnf2t%ciVBsl!<b(TsdE}TJMvS8@06AWyomFjVByGV
zlykbKuH_UR!Y}Zsw5yj8F38_v>SLSNn#R+5`K0m|!;HWivgZq1y;uu)-$+E7htO{}
zD;E1vOHSKwMXyzhv(cvM{RDeSd_rlq{|_u|t>sda!o*)m1j!-OQznHQ6j<WzGn||p
zFIg;Z6Je)6izm*M_Cf&%lQ-N<^0{wHo35%x&@4dwKKCLQ&6^^PagsZwIV}|4W_xmQ
zUO(3H{crB6SQ}>KE8336NMBT(ApFf@j9vH8d1@I828DSc2U$<Ph<-P<I)kDG#tinp
zzbyg!2{^)PP*Zg!YoF3;&ph^XF#c6d-iEWoFD=c#9H=AC$JKnh5djr>)ZE4f)rLKJ
z6DJD?PihQoD;rg+61~R@7je?Za^8AbSWL@N7|5H_epbQ1;WUPyQFY)~3}@VtL+;Jv
zXdRovb~qF1;{y-lGSifdL4p{IBx>q&9sC6Rnc4Dd_qPfDpe;jL_@7%*zYGI=KQLsG
z8<gAkQ&8>qC)R|k#iz<M<;7)hb&3Itr+s)LNBvh-2U2%J*6HGLaK5uTfE2{<@m7l8
z9KZg&_8XLvjg@cJa65&OvRwlO7>JXxjK}+%(H;x}=s-z-#uv|)xHs1tS~9pCJZW|a
z)TEGvFe-plpf(}eOh{1UumfRZ#M0hPT2xo_lHW;VGWM~^U0NsDL$tT>v5H|S$UWu3
zS$gN&6K&)jOf6LZj_9q7IhZ1fWcMfglShWtg0#;soktXhkpe~aDYQ?wl<n&D11h`-
z!9CS0#&CazWtB0^VhDXd(<LoDlfVbx#iSD9Rl|YGX?hHJ%lzNVMo!WK<z>{(3pLcq
zjOgX_qu?5gYzJ+_$8%ER86t&k_Y)`eFe{KL5K*x437!j@sq7M@A(eY#@h4{)xXh-k
zO)`Iyc!ocJ*0sLIa53-%*aPAsp=rC(JbY==NOu8#0cmmd|9Jp+AL@+l!Br|$5b(t5
z)Kk0`nQ7AQ>p3QXzWPqk48;tX7ai<q;T;<Bo1)m7F=+bOC~oOSH!DZ~)Mb66e|bKh
zON$O6)0IUWByu*$hxhRor9s?%Q@3;wW7}XcId^u+8Br{3bfvIy2o;4{hM>CEhc-&`
z3P}5sETP`RYm$;y@C>%MFal5zaXETMcgdMaGblJ~@|qEN=ymf9xltNi7g(IZ81q!@
zLQbq(>h0`!C9)B<oo3Z!#(Z?zRrbgp<=O+B>-{gXVO&uSx52AQH6`-}K32KETu|q3
zt@jQ=SUGj3Q3&qL%t9T83I!RHdzBV2@=s_jW6)7N%f&_R7nt`t&U(=oDq!qemN9w;
z;-i*+P^>?neZ%6Yz8OpVSkCc3v{NA}B=*#T-#!l$xTR)<+0QoWkjVMv#t>s^kmAmI
zz3#h6K2ClYUv(saD0!ax46c@PzJ#$ok;OonRl6Ozdef8!O<vy@VmD8&a@!;g__mK#
zQ~>57{UvGJ1tBvQ&2FWlXgo%19fcJ#aiR!KZ>V<?2-Ac10U5@4VZ&8Tc|Ib?W}*x~
zFMKHYDcX}|rh#|z7@dx^I=J~!uGVJAL^}a>)Bba_?|cwuuWnZ`*r-!5PnCS%=a)B7
zP#RQRwqeD$^(ctV-sq)ZWf}50V5@X7pP&Nz(KzUYxICNN=WiCbSsHJi!c@97C)LR3
z=(^#))$0B6#Ig1k3=3ld8_5k`&1#*-FNPMl;!&nNah1)u+}4d_=)XaE*r1&yksf|-
z>F!~M5yb?o8)naXbL8Cdruwv{{FL4TsaSU01B?X{<Q7*wlCe~z9%YgXgnt*M-!4=h
zU%G?YYj1AmU<_9Vc>RRIAJ2c_+Z3GS=<v%NqFmm-JoZEk8RNKjgb8D3%f_f!jr6sI
zMuNVzYap(3U0he8)V2x7voG{~=p(uOu<EUp9SM-*Y!=OVynJcpkPLI7uWLF{h}knI
zD4!<@?ZyewxY`C?%m(1C_Q%EHnUY>i?78)eqc_DNq!x8e(_qX$9Nj^bL#DLmRx44W
zF~vGxmQET`Y!CEVv#ux7$7{(1)W!zaawaM24sJcSoFOdNZ|pYRBaFP=F8tLqA9k?y
z)q|<$f9XKnI83y@RD>i%QbbW=I|Xl>TZSo)(`5<E>3hidyF77ce4iFH4y4pcB-13}
z&mE95=%Qo6BL`%;(=~FKX|p6eJsv=c46BxpgvCYwn`A@btj1WmoyYt-pF-ltR<9{}
zdBE+24fL3Yya#k@@_fqJATfbl%F}jF(~7RP&)if*G~yWd!`emR@)~?pt)#3ime?N!
zX%0Sa%N!&lzLZ-lSpA{Wt4B-?q!C5q&S|iDKx=SSSd+I-u_&fycPSqEm&<1!FQF|V
zLL3%x1ieOqLBGhs+{`3gD}t1n54bMoR@mrKtPJulF0)@XbSQ_si<7RW=I2B0=gk>2
zyY@DQ@x$##w*Zw|*jtDzt=@O9>V@Nl)C)H6<@Ns0OjKtP4)mhGV6_iU^Ja=Uf>4=7
zlE55#p@Mgb&v<f<yxM~^<f+-nnwFKZdtN)k%ZB2Oj`Q#QRNbu2^7m)k7A;Cr(@I{F
zMI*_@IzW(hJjk0B$?5;q0F$@x`jrG_;bC9RIEED_3xyMI!Y<nGx)EnkMSfrM16RW>
zU|_j5gvJ$-_dB+Be0MDUrMKc;>y=9LC#aOEv?_rzcu@+F1~1lf{V&(d>*`p<>Q@~x
zq|KlfPT7r+U^BY4K_LQv+=vCLT=bnO{!<}=%0^B6^JPz0{DBjMDZquz;_8zR(4BUM
zkss`kXOPtXMm^%UHBZz`?)1*9fUIih1yg0_$D>VtbClg@RifKqzp7B&W%?xRP-uSk
z_?m#rZRIzMr%$8F9lDP`f+0#ry~?6C8A|ang7OM3G2IFe)bx*LI{cIph=Qc`G44as
z=OJ8E%ZwQ3uZFD8(a|NaW$3t&^r8YGCX-g*-Jm8?(-v}tp6R2+hRhY`X+GRZJ8n{7
z^KQ9$z)`BJjO2;9X|>kWuFUN0uY<G{oP8N+irY4psW)#ykP5~UWq7!9GxLFJUux+<
zMdE=$i;FcZZb6h{z}3_q1#>|6a%pxji}M&Ghsn%AYuX^2gfie_0xo01-hvVqz1^Wj
zN(JT|c-~#v_f~Xt)W1B_Z9pRGbt<l6U!*>dL^JTo?;j44L&ZKnvBZrK!ioAUG=$uj
zw+<a}Hpco)l3iF=Yu&4wc=S7yo`~$b><DGB{-fFj*2}f_iMUSo0P4k+Zo8hu&zI*q
zkEXc;!I{dI#{D{w&uLOk)bu0)9ovb;tovQ;8)`q?e}FD82iYLn;6n`?K<NefOP-UT
zrgyg^-QA_^B8i3#Iq8mFrf!I=)qH~<cu3Ej!OIGY$}LrzX@H((n2zixZ*P8ZPkewr
z1s{`9T-OddT8#X}Xji^P7IN-Nt&X0{#_;wH9SBfU&5I&BRK32PDcSTN8)vZoje~{A
z3YF!0Mcf{I-7Ug-;i@%=8dj+J-YI2OX^)Qr{6u^w-1uS2820%xt1|bu$Sh%^^_i~u
zz~z(1mEnMNm%jZNnIli2D+h6OV!9vR6+7Ycy$&uUx!5P>CL#hSMr=#2@orux(g_`m
zZ$)ecK!$fB=qt|j!7<=sZ_{Yn=R84{12|WIj{n4<F3h-E7b)prbnF4gf$f0z5Sn}F
zs8tHaH79Bw%>uop=smN!*PzFY%62#$j_F(xGB-~oKMnNdHFUYEPzXDi0zst4bwgL!
zWSQnr`8nk_CA$n#?6?5(^>Xjfwo<ZIjF3XN7)i<I5nNm|bW#H_sFN?u(c`P8tX48e
z=1y?G$V-Mk-DU?%>^R_aBS+pnTRj-}@4AS_$NJ|=F$1wtppM;cV#Zn4b8)qth{1dF
z%_pj}2>0~0Iur~ybM1i!Ukz?+UPXAiWPKjexUQ<i(-q|ahVQz)y(|u1Ib&b>?DR9z
zF*e9i=_ikzBz>y8z387RGebr)(Iwl?9GkmvqmAX*>ueS3xjN!&3O`ND=}0(`hnVzO
zp4$!R{klzxxFUDgR*7)f=3GWRXGz^zN`V!^?{)c&(dv%TKU}y*>nEJEuJ2!A@r-K$
z^W2`T<Nn$nd`k|A;6m$r`Hz6%?9sN5&RN`Vp(iOMnCcq1Y;5oQ!aryxqs$5spu#|E
z)z>GR^Vb%m_S9J%gM;K;!T_ds-8Mv%BU+GE^g9ama*9&0=mE2dJ-VEgFmpm@C$7Oh
zMe~QLfrq^mz@Snexdwb5OhNT{2&SuU1Ln<!xZfOoWn>C7;fYdtM@#K}({1kE0UEHh
ztp3Ppn2u(U^3{8&NQo*DqQzAAg3LTeRnh9+@w+yRwfa=#8Z+y~7PMt=h4m{A8fXy8
zZ5v**SMr#OK6!j@ns+LV9)E@Whm?WixhN0k?Q2t5=rfLOK?1$Uw=Ghp(UFS}i-x3r
zai%qzik+H&2bmc`;@lGfb`8j8;Llwqy#EE4?nbKnS|yZ4Ui?D_C1%rEx2@L&sXeT7
zNDPQw&y+5uDR4ZZ<5rKQRJG31Q*mKl<H@!oPA)>%a{EWnJwlx5k#rJnL?C^ZVjc66
zqVyy|MtE*u6yJgxv=q3jz~`h6rUmDrN!~FBeg-y#X8~612)Hk&BNr)fPF)%Bk%(OJ
zIa<Zw_sgpr{G*w-_`30XXJ$Xo*+B|<!S(Q25q<^kH1@VCMP<ki-@$|zaI!^Wab^+2
z8^h3E+|;nRfa;tLrs`MRUVV75hT^+pu9K*t2=1HtfoH+}JQvYOK8}yNGN#>uYV681
z%?a4qrsdaHtI!wK&EK#PxSqN;hgc@IqP{m=YMUWf<Y3h%B$77&nX-Fpc*bSEYV=e?
zZK9E7<ld-49%pz5navY_O2E@WVwAgdl(#=L)`uF_zz00z5Wgg<(s)ZZ+scy4_2~Rk
zV?CKzT>|LxjSqp{TxNOs-T}4YkOibhlpk4BDEog={NFoCsRh!*494a!`F%ezJ7*U+
z#1!<R(;iS53v)%tqU6Ryts%;2@`vZB{1<*REYoBf($&k(z{*_#C-6d37j{V_zF>g-
zLSjCspnw>5z;9)ap*s384a#e%2Nv0Odq6NUjz72!Gwn}od^o5Z#WM1lUR?;`*0WQ<
zgZgEa4E%s3u#o8h+aprK@tcX627IVe#ZcHAy2}bA2AIh^WM+?q%zzt!)UrYtr$X77
zLQMq>v8F?xbPg@~;0g;OQNGM1vYJqm6q>zn3Y<S;AEcS?taK>s><|-AR+|?+?pyx#
zhD>KswVcoZPgj`dXdr~^O~q6Sl-7I)I#mrL(=b0`+QTnEV~n*AcE*!HLh<I*e{tY-
zR*7jmiw(vq0;_aHw?G8gt)g<{B_QU=LNSE1MTc92m2`6DFt+JU&4$!MRv2;W0>i8%
zJ_ToKsF<gek4l4ZyH5Vbd*31Ze|gQHTMULgy#M)Fp}0*fd00}5Jzaa~FL^=m{or;>
zc*~#7@a?Qe%2lv7+%8Aj^MADGr?iC-b__1fsSkm<R}jso_eRAC7V784auJvm0#;_r
z_@J~3JiS$D?Aar8ca89IZFl)C_I5XVvlNWxcBzN9m$j~bZW6iINGo~-+6$IpgYWAJ
z2hIo}ZQ${5Bk}=HlejT8Fx7tW>)}3dFNtkdPO<%cG3he$*H;0p4b0+QLm=nYMP15F
z^V`YtPHI%^I>9U(#7@if*YMVw%vau%P&uL`aptxNujR9GB(HSo)^;%l;`5(2q*W2T
z_)@0eygV)2`k%eQ_=uZeP!3&zbZd_0UhbVP>PATae5Kucw}&8H`E!N{%a#g+Sc>Bu
zPE@86V8=1zo?UKn42XiRmq>-a-|9`Jp?ReFoN!;{m4_XcxCRWfcP1kQey1PVXTWC9
zQFA!$x%@ltW{I|@*0$PD?4k_&Mi2E&4T*7QeWwt1#S7K`f+Ezx=;QQ~IbME3xTYd#
z)bD-KzpSNV{Y<2#vpAg{M$_~-qQogwE$sSq)}05tY?(>{Em52cl&$B1fP6)xIc0~Q
z^bbi1Q#8WBqosFK%a38rW>>lV=X4`VcRX!!J;btAB7L&eA*@*>i{*#+PGm;vy@NRd
zXAD5uXk==E^S0N&e2rA+eK3IZGb1F7TpRAppuJi7fVa!BLhPIfy@{>JJ8PdG+52Bf
zooZ|``Wo;`>Mb<0(W|O5c6M_GbmwM(2-IojVX!#+Zya31ZJeUVd+z6xyM~Of57J<y
zL8|8*W8CLCoCH(tV4$A9E_VUhh!)c3U+)bj*TW2Gs|<q7?PD7Py-p-;ILGenj+UKx
z{RN}p#xa?Ng9PpBk+wi50&bWcA-HgVqVf!#gxd@gy*B4#A^UM3+NsIwU<gf_18Byt
zYM{dM&W=o{1Y~X6&_<XP9l>=S#C=RWoFb1KdRja6`R3nx;p*&E|0h4UdT<7y*^5t}
zSC}#ea!h%tvY`<L!p$U6Y$9s4$-GpL_!WziTk1j>b#C{10P6n{xY9Y5W+=#z-VqcQ
znxAI8eK$+rxGrF^P<{`@&AUiQpck_nOYriJs(~mwOfLgL2bdKU`Mab2uFvyWjT2m#
zA(?@Kw}3@=PwFMAaa~`Wt{qCQh63mi05d?$zc@@cev4(XEaURI+gPnL#?uD;!DDGj
zHF^isjPx6QY>Re|zd1e?s>O!e-J6cFh2VRlsL0b+xg>}ZCxbmxHaiJ6mH!-p=jM^O
zW!kHPx?$6;T4b*sDZWezXC=H663=NE!c!b(;;sqHc~KWuS2Pe!I~EkOj@7U|Y;eK@
zUC^WHwJXtC3sc~Q!~IW=zKsNDH&lQVL|KMM7sL6T4r!JC@xeKVC?yx%4UI0N6;_d1
zW~l&_U;oLG9@AG|wYAi?gz*%BBXM>*!U{oo<L#~k0XGS=?lk<ivkWM8KlHJ8ggamU
zUunEiePN4I;C|L;s+eOwcT>H{JBp0lDrO3w`!Bz{GeX?1@DMuM)j<BK#FC!X{JVI5
z`vWZ3mB4r{p<jkXGYOuiTZCk%y<J|ZU@$?NaL0SP&OULo9{Oiaf3PxQDkDJQTyuV2
zH0$Vt-|_bWbc9_PWV12Q)^4mp?MJWxMcS7E_`d0YYN{mJwbln+q^3M|tT^57P0j&A
zlgD$!i+AG`iv=xSi`IUiQo7atRZ-ALQq7s@D6&D*4PL`eQ*>*no8%qoE4~%PS^Df!
zE6gbrx5Uv^Bt#5>GTMnyWV0A>Z-fP?=6Cv37forYW8}`;tY^8!Z{nn1$Wh|yGOerU
z+xY^7rRpCv*~nWHOA5kDQ$M@i-FzBw!wPqgjj%FcJnseNTiuvGj=0J(NQ68IxgDF6
z4xBTnrtWtZ7x}{(ySTp8eg|f<|76{U8PuQMz|Gl@?7jQW^^1S-^$~}T^?~E7piM=D
zzURcUaS3j?5Ce8>bbtPYnge&bPrM4p@o2ng>Dqzfn~k8C8V}2r3rt2OR&rJ~WkV%@
zi?d9&#cRlw0v>d^Ex(eqv7;In1Oe*jCKzT;fT>*3*X-xxd3e@yXOl_tK!NB!)Lb|E
zFw+S7C`TRaq1Xrqj%Yb=EPOkfzoVLZD3!S0>bDEn&@@BNyJDUyt8Gz1szs2!DsHn4
zI{I4v((JNh1=VN6VPFney2I0J4QA1yh=)AbQYlQIN#a!|9DUxI&+~Q4p}$aMR$S5r
z4i>0wQJ$V1g$aYgsqd#(m-#Y+FE+7DTeQ~T?RCA8!2-tSq9fM6bO{$ZV=ChaeN4d<
z?J4;$oGR0&@`X2eMytlMkFBY8;kgaisXwpkeJxZX(r}EY?Ykjgy?>Rzg3k7cIYc)&
z-~YQgXZ1$Ork8mGQba|xM3qGzKuBtBr<?x{tiBRn0x`C1Wp8ikGa%5EyOju)feP-c
zeWudfe%w>_jKS$?JtdnXJVkU<<yyCu=wl`#4`LHW&Y+dSz9wq&!CJ)hbkYlA=OZ@O
zhavc>zU~E=>JsQ*+1<NaFe4W0WZb?zGEgLPL}Ce~BYi=w1s!IEd7!Gol<#=${SPoK
z9eX%Yi?n#er+gy8`Eai%n|*h|nw6Frj_!N7e+4}Ow+1Ypo29&guN*p9`l$a8d{sM#
zjx+RfN}6r7<2z@R{s=su1wdCY)lD*kx7U2yrW^zUJwrh^jSjC$gv2{cGlV|%#>?~x
zy@xAb1$!ceQ|gz%B-mv=!LW9oLW7<&MmD6}toHok=O{5UpuPRvH}y!<vy*K$=SP4A
zt??B!M#4<jyAb2>sghR{64B<=x=;N|ro=GjA$*k0J7dHw@Wl1gu>t82Mb51|9RU&0
zdPH!*nt~#bnE-+CIi+(LV5~xqXseIjV;tFe)gM6FB<@x5^0=UM?Tj&fzjE?~hH=u8
zdJ}3I%wqQuTN%Qy1J*+T_EM$9QEP8B0-uq6TKHT7r=eQrKx3(Ip_8Z8Cw23P;19e0
zR7aRGG9>uMs!QG&E?#CYl5TIzt-Pl~hrQ@#0Df6%&E1C=(2PUeA~!A6un(G5mH^h4
zLiyDw+^D~CRL)$g+!$@L$)ijQFjIxk>Jj}y|1S22@uMflX?u+3Z`x^;<~HP_vX_G3
zxdTKlZ=h5<)YjI9=Tsru$UWNoh(4ugQiyZ~Ih(?AC!~wYWNLEWn3=y73#<l7%6Kk8
zQN9E1f13W~8t~d4%Hu=jFFBa2g1?nB;cfru0kZh?!BYj*dQ2~^r!R#IctS&=J?0ze
zHM)#C699pf`aLl_Smr>BOAhm@E#cL<L)n(AK68a^p)L(D^VOTw3_=n^LzUjTu7s7%
zsFGAS&lV_iJkF+RxEDNCv2lIQnt;w^Tlnq7fT-)0*KsQi5c-lj#PV~gc?eL6J4<8j
zG$1Zk0Lp3^^BNK9MPl}FXd}2aSYF6f3&oM!h0$D>-HrEYj-+t;k0xRNo@m&FY6Wny
zVPHhbP6<xi%yn8dbR{0puJ)$5E2M#OR1<d#6fFlV=6|oFwDK23-JG(HGyL&we7Ai&
zG&qFtKPa3^$A&X@gLr%(du66;1V@6Hpjo$;HuzL<WuSKuN4v0e;z(Bx(@Mx$($>yV
z9XN|ZcPwnf*m_w_=_v-y^>J4x5)%&onH&qv;XK?YbVHM3DOYIT($|}z&E@+#hy@_P
z14nOd--!_U`Gp*i!?~985sPxsPFh&jJ5Lm@-VpCe$1p>B<&~B0UK!|<+ZPh(%OD`I
zD!*6#X7oJfOF8Yy;8wNw@u=B;AGYLW4(Q_e*>_eCbU7msVm}%cj$U*0N!?$n{WNWs
z2g#id3TO}DsgAbfv9JxUjj_Z<Oz#=#1C5%3HFgfKNQ2gy;z2#_mzMB7RjD3C{mF9j
z0udG~3Dm#$JX-*&sQQ?fbrjH@HcMrY^nv#itVa&(YIiB?)VF3NbfpQ52wX*eeYeW$
zc8*#HH8EsON@(<oJOxgtaB`;^8&F#yfqSPo?7-S-uc`TOD=shd8|UGY8vNNMQ7mfA
z<BSiW991b?`J=UFZI+At>g<XMmlMySQ(3L}q{APT6+du%Sw|VtQ8SW_Vg4PZx;I8l
zPzXtg;+L>ST#Mi(Fkf%tgYsuBH0d5)3DlvP{DB%8nVbMS+FhH(Ki|d*xRClp)Ilas
z9Z)3#x-15j+Nk_|AB2f`;s~j`tJ;s?R@O6$6lA2Y1=tCn-I!oKW;cVE_&pS}pS-81
zvzyO3p+sVh4Vx@JDHk*Ss4rV2<JBPSt~8Ag@dc(r@!!~oaFO3Iuv1T#;2Fy_t+ECu
zOQc9=$ZNL@FPM6^X};E}*jNjanJse0FfT}4RFDIGdjK(MXKmXMoE_DgNXS1lb%$Eu
z1T%KMO{O;cE<x2Oc0DmdilX58xt^T;jJv=G?h(BHElx{MDv47`IN{YG)kS@=ur&2^
zmBtYo?_v1+F@bY)7qafoNd1}aQ#Q-Bp{N@h+dtl{10BYF;aqeB9U7-%Fm{V>Dt@ht
zL519#GYi1&lPLt^9Pr<JW|_(XAajHD$YL0wv)ko_hx?wl*Kp=FNlWn9sV7Za@S0<A
z+V*55rWISt7=dqpFg71NUU|Qnz^*?ZCBiaAN+LNzW0=y>%i0WEo^WlSpjEJ2TYE8=
z8lE}wQSg8PzjyCZyF%hA0{;_JvhYT6trxU}xt9vZoN0lDCXF1gdnU8ty@4AChS2QD
z^Yq!H4uwu0H0X=&bNHNtHWnk&0dF=w_*m=W$lof@JPyTtVZ99WXn-Iu4OnamLhyH+
zMMZRI$TXoMNDuUXDK|fO4dJo-$bYON4j*&yL)lK7=S&JbG7nZSP~xAB8U?)i9^_Y>
zJ^j0VoD7d`tnB#%FP6X<&r|O1roeXif;AQRK=HT7gK;7cyBwSk1?Jlp0PRfvK9Q>(
z(Gwl$-P7oHo`%Sz7QCOm)gXdI<`+hBXkHfiJUiPG2yOa&0QI-6s8S-~&9fOTkw87A
zF<NzM5L!7^Y*VZdoTjZ>fTIrzY{25)Dfu&h@mKo1e1D2nEpUdGV>;t1JjeYp{d9`P
z!d`~=-9Q*2Z@VgUgjhgO!Lf=595Aqwj-570YC=LuM4d{X?Yed+bKu;Ckw)9qYOmvO
zwcY+iAnbUP(yRNMrH$y)-Bci$;cw?Zk~iB99vQv%OMGz=F;#L_@<VdleBW`ITkJQm
z<{|BYwOLt8xkHu22C_T!v@NTqP&O+PDkFq#B(UMVcCnNNc)_9Usm<XT%p?W)O+ksz
z_CP~Wc2r40d~+yN*r&?0rRXMyR$bA+hC15Ye9GL7$+)t??P0u07%kFr7$4`>rZJDm
z@Lqi|dgt}bYEJ|hdsKlGsTxUx9WJ~_?I5{<mA>>JIkGL&Fy^-74Ff^TV$_$(vpwQG
z#nz1(&1Hn4kC)sn1ImXwz&SyFVUlHPY@iJ2vyUYaB-=wSEej9y47d_Bq7vmmm>E{6
zE;PN8_v9N8h7ft;yqB5%>ByV@xDd^KO9kryWD?f4n?ZMJHMEZdn7-;1>&wZ<(rEat
z%S2j&`oUA={HXSM4PoU^Ux!1Kx2VSH)SkAHbYNaVN*Te-Zc+$-&nO|cM6L9*iRA>*
z2vU7XRJ!&hpnDYpFja+D&9+-+v(;YI(SlL%P%!-Mzgw4I2`b5lYM0%tb{j7$MiSCU
zDV)E%*HGD3_r>$^N?NzO^|szapO=Z>A}X=4N83>8-;bzDNhaC1){s8f`)w_P57U*0
zLlU0xB^)SkC9419Oi~<9D2)BxM@e`!WW51M9;%YUv|m75R$mE_h){cn%0#qQKnl}v
zD!mWBMg%<elQg5g8BJb_7qgsBW&`OC@U12khQyEcRgF46U*b{><rbj<7+C#dBPb$8
z;%3azs~-vRj)}{%<|u|7P9S=;3O=!H)6sqd#|%=CnC1h2)_%gXBi$Y6`eDp+4O0v(
zL)7AK_!Pdg*d+lO$2kDS&HLh!<1Ez+%=rT*%x(rvcv#rQx9^8@$*5p*UJ)+hN&uro
zGFSCq?n!Hz33B(}<c)uM%;^%l1@w<sQ2#@w*FkSh&TmqA7}Ylx?}GH<2GK}W?HOGv
zJ{{grUc;_IxJIo4Awc)FX5g@>Mk!kS{dM2Us5k#^VpSTf%#H8X8u_$~6LKvO8P*+q
zEKZdj_Q?*z7F*5$hucEb81GwLvXB{fpIMQ&s?e_gvvgzvf^2#-1LMo--B-iuY-tXf
z;5Z^rVtyugW5?ec!YmN`t0Y-^AV_lwMG0=DIDb@KXw3{sEpZr87MbtK-XO5hGFT=>
z0d<qvxtsd51|mv{z?kRI`5UfHT?77Dok-P`W9JV2{o`nTh@Kw9h}f?untnlm*v^l*
zT>%@O@ytq<Jn5%u-QSb6lT!0x;9c@M$OiWBjiR%W;kjjWBV-gW_<?{?iu}kWR;&iy
z!+Rx?Oiz<0v2OU`tOR60a<`C^dOwjmk!ze3t$#S+7KO_R)d3iNA00Im>!3WGI@V7%
z|00&%Fx(pV-)urGpF!S8(rVHp&GxmlaYuq$^&BMH`yJUTw|jr!5xNr+12uqOF&2hR
zJiHr3$B-uY(2CG58u*v<0wWshD_)C_@rYs?aTS1v@%Hs<=i$K!g$d`K@Ewr|H5|#g
zKm6IZH*a;}!3<=tk_S?d0&B6#(~b@H?S9`x9mieJ+dPw*A2~=hn`QuU_#;8#5v<2b
zFr!4mhTFKb4{OLQ@>=>}p9m9ZD!C|O=yYGlu&>2(d3*u$=EFlj;0D{W1$3%J!tKs;
zV`omf)J|i~j9hueRIUmx@ELyNd+Yi%q12@xPGb7wEZBd&1YV8ycbD@021au1YBcLZ
z9YmIcXxynH>(L}zxCl8@>JPKCHPja{?CJa;^SW1-K$&$PIlpDhq6q*QZX|61RuJQ?
z*47+hH-uB8*=%bq+%*b9!c;jomCV-mv608bLp+K$DiRl9dp9&H+%x=4{h86qmX=;>
zz2Up5-eGZbT3reYZaxsD(yHK>k?jO08zwOkxiY!L4S;BS1{Y32{1uht(~Pu5vK8*f
zDF*M(9(K1tZ=HPaxYpK>zrT7R065XY;d+Y>#iR2J;o(%drAn(Yui*)ZJhK;`(p2|`
z{6vsHl#&~3;!R<{t2bHl<A6wi3PKq7c?U^)A_|35sM6|EVumoRc6an3FG5?1IO3}C
z`m2Ikx4=yGNOGO0Jm`$~N8o)o?0JG3W73T0^CmCDnqK+D6wB9rzb(dw+^->NvKM@;
z9GW9M3D??w3zg#1!+(BJz2Q(0d1L2!PF(mhmTdW9*Mk+&->@8U{>Nj}pIc3p3k`}c
z{NKvtue@<;5r;A(-Xy)(vOTL--F)m|WTHX*qu3+@BF5w`>(jC1T+8&7&tBvB$WV04
z#X@No`G(xDkkg&D!r<BApA>FBS9fM}cDUZ_IH1iy2h$c6iHt9Amk65F&Rw8QgG*Ln
zYRFr=RjE2FIdQ~Es|zY}@({`GJ>N?CgG18dkgfanx}eokBM~WY@rSzw*sN$w5?RM3
z6Fp1l90Ro2*UZn2L3e?|I|%i|7QGm-22DQ4yCY!A82MH_QhpiIbSkTgbow+67Y+0T
zNIBK0jGoT`CZn92zCNq$UW4*2Zs}c8J6_1#I4YZi_A8<_Sgn~fj%%@SLAb-qJco_y
z@f-xFh-in@pMDFof%waYQd%{&0l7uo5V9}XmV{_-_Oxi{%_x9Y)s~ncdsl&AxP#tu
zcTqHm3kss=By{`^as>b*TBTHNDtE8L>^Jt<Vl^d8DZ`-r{EPa7=V=XM!%pX;LFf%Z
zG>%2#TJqMuv{H%Ym=FPoq?dwc-DdA<WhtGgG=X6yRG>Zto{e5I%}(V+p+T`7R1Hgw
z5vzu70ppjvH8J%L$HOs9y41C^ojHut5LZrXnf*Bed*_PiWt?7L&Yv$KN&muo@uNm4
z<~{^s@~Y0t+Ykd9I>e1~)<|{5FD~d!bydz;W@_QLV&$$jO)=7lYA7%!*#R23SJ^=g
z;0<aX?l+<EOJ>^^g1&hvbUUIUHC2$={B1aMELc2s%#yaZ#KMEc8j}i+-zn}1>tn;j
zKWa+7?U(MZj@$>G$igQ)6ymlK{0Ly402yIuAn7C|bCf2MOKjCyJXLQ-$UP;nh6O*h
z)f;W(6$ngF{NYkHu>ptwxkYqN;1!0a)4`n}({RxI10G~&rH{R3Gx<ca^A}(i99avB
zOPYs&H%tKQ5CGY`l9Hr!fQ-utU6)Vk@{GF!u@;ySuRgr)*?N|QGM{}ySM)>8-y0!H
zWht-KpvT)Nt|q9w`P*$pM<pXR1CK*P0zOq-h#ju3P>RTsn>CKpe=UXj4q<DD&((r%
z$lBMzP%&$$_+IR>0YXT+&WT=5uO`yG7Pm(+;3$*L>Zff{LKtrcPeINQa6EdsE1e4a
zw^0WIxb`lD$SEunrqzolduL_TlaD*{`*2D|?IVj0Ppz19#7r#@BY`>n2^bG$6dyig
zf&N=+5O*bOw-q^VSjKys;1LS`Y91(CXY=a#qb2sZi88Y(iLjl9cQM<Zxi2K1#Sr>p
z=)q~S@|iB{Ztfq2q0aKIH#@HP`O_<_xSpsx5S5Npdj0<#h{Zf0M4$Hb{P%mTD77F!
z`8n#C{b=&4D{3OPt{g@)d6$||`KX?icC9Ncc2=)Ag67lBridw+J(0Y!!WS3>ik|fY
zFmtnd8j4<7&T}M3rbJ9RIo+J*EVw5)ntDt9tRtN=)!upTLXx98LTpK;iasfx+Y!hk
zrPHIOdJMrHT>)pDablhSg0<9Lb}hB(eQD+-GRT_~!!gl!bAr<dT4^0Ugorm?+CUhM
zWHoU--?VbU^hsMqzwn0S-!fEF9}-3~XO5T>E(M*E&kK$U#wu-OAh`WAQX(cIQW-sw
zG6)MX{_IaJB|u|XL3-hMRw6RnCWpHsTF%!?NO+IVTz%nVJ#MI>n{~=;F#9==fA2gk
zy98&Hl4QxyQ%#OuE9FBdQl>NI1nS6)bf2s{Us(y|1SY6ZD(K8sQ9Mkdtrua$u5Al7
z?j$}lA*k$3yaG9nglB+4TCQ9OMKh}BYN-cR{wCT48`R+}9R%ywUGZCEWc?a0hH;OV
zzEXjNs)%Me5+y!Nm@uGy%$jQ^c8Zo|mxQ+35HizpX2bHDvj;vD2u;C(DPagwFUanK
zAp62l3NfDihvM+stlXEy64_I1*mVU6H-^I@8%UQNWR_p{L%y!^?Uji>QF(APK~kzb
zHp1hhFsZ?DmE@GGhbHSM*;2))C{$e?RWhjxIYf8!Kc|havAuc$;J}^m+1b(`$*Jwx
zpNmr)s$RN0)P`mwFE?5%TR1qy)5IF$P}l6J*WmN0bomVhD@S-1(7n@gg@F{ZgvlKM
zV<A{Qb>RJ!$-4GTf9zWRzBWowcsRD;X~(S~VXWx=sep5pW;GFZhnj87i8r^~A`Sy=
zmjRV;Wf-;d1^kyNNMtPertV{Wd}R*Q%7YzNgM;xJx#G7;tmd!eVjanSbwG4y#1Kb0
zcNpK`wyy4~vI+mxsUfbnm9zLe)0xb}hThI`3A(-fTRHwzf+Jmg;l>HAd=3~*N-Lse
z05}W%LEG$~0&J;^J=Tp5O<Jp7Sc0(zmpCDJugAsbl#Rmm1m3{OVBuL^Ml9vBs#DJU
z>`j<$S)&PLi4`2nIj0*sG56-tGEoNgg$+bnFIbz!-P%Fn4Or;oyw<@o9X$q_p^&cS
zgtBK~p&MheqD~R2V({{!2XvHG29k)O^1L1twgZYdw2#vxuOzVzK#M~>4LurwUi&Eq
z#Qu2@UEntVnBV4gRQ`(x&0&2CfgP13grCE;Gu|O^l`A?!#9OHV1bOVnh@yjof`~CZ
z#WhdR@g4(;>uzGWq1Vs3jc4;8bJk==5D}e*IiLpd>t2pQp0e#`${%3{$K}feHIIUg
zCRP#D=2c66ag~JXdRCc2bWEce;CISO1&P<vRoKCrR~A1^gcXJNhaeg5w}#rgXWaj-
zN~ghRNg&McNCpcXIL-hU+^Wavn>p1Xa1m6qx|?@wIRm<>D=2TvL_)78SKAFy-n|>I
ztW7Ykt1eN)BWt8{I+=@9QsxOWSe$q7n*=z@Gu!c4i-9|JWab-%^G`GA2YB$!DvBX{
zz*cVZds?qYts%HMhPHt?-r7;WBpDW!e8M7h{qoC{(fc+*A>;MAC7ncprvb59u($!3
z5X7?0+NCt>sl1oPT6<>u72l%zzxyd4^8EN6tNIDg_HnIj0~y0-R~(%A^tCwc>wvhb
za+uu0x}=Gw5{+KtH-ggH;Xb2MW++1oVPGqIT5WBY(w!1{jZ1A>_6PE5BA3#~DbMov
z!MpiGJvJ!EtFcXpPQ;GIf87Jgq|lOxL!K87V>GIpCTNOg0jXmamI38hWl(5@WNP`b
zP`y1tO(PNPyK89K<B7wh#}%veHRG^EVgj847PZgDcNP*{28DAedzLl+T?^<A$g)>J
zAxYgajnRV2>*we;muml4^k@DrjsRP7=3Rx(9lvnS?v~P*Szsz@@e;PfjFVtH{qidO
zP8DDZlnAqzvLLfMoz$d&CYR}Z0<5|zaBLX5u5?uQkj!x|&VJw5gBxqOYe$R|kF&{(
z)6v4O9|Q(<SSkLZx;~7s7POrD$MmsRi_)i@x|unVc!p<r$Er4x{D#czLkg5V2-8fJ
zBQqkhcco(j+&r=0k2ls`C@Ziw*ayxL+z9#h@l*^5j9-E`Q|e5mSW>nM=;c)djjA^Y
zx5!3LwgB^>kWjgQ7XFzJe_b;0l;rJL&5zMe)x$t$pjTS&mA4KmS(aR|OKt<zF<Ne2
zs7tS)9Qez~K2N1qfAbdU3I0p*?}mJ(z^vqGOraTz9X%cQj-6_*(8o+4bYS3wcmdvG
zcKe6mi$=c5UN9GqgiilgP)bMnf}0ZKSXfaPJLwc#OoFcw`VKEipWhhfEWlWd+#kz}
z^-G*@0eeKCFnGUdTR%RLhX)(W!29hrwy9dd`NwdB2-PO5o+#S9yDb2AN;Lv&1S~;Q
zUkSEmGK&`iAvAx_8KVwbSc%xhnZ-41LVc1ZsV3Nb$AHQkt6rwBZIohNCSn!DK6ti$
zrZ~q2_BWsW>)|Abfg-LQY~>AQa+$iSH3Gm0@$gqF0H{u)HKYVWVY;9T?n=*+F?e>q
zJHZ3@gcsFtx(Hrm4qXeC0lb}XvlR4xVYq?pvBjw{H^4-uvbmh-fHF>ij8saIT$ubQ
znFN|XSienqth7}DQ1H*;!k|wS=}50~j2{pma{Nw%$!F8oB1c~Dl9ruG_d6T1L_HAh
z0WAYL>9=|r{h(nfr>^};MEgB&zh=EnWiLS}4FLa@;4ufEdptXUpl>i(&VrksKO?m+
z;zj>QT4{L15J*se6^XhpMrl9xzw(AW)gMx=;C+@2!Fb#38yCC;7R626fPh7P8<`_R
zHIR{IUxD}4M*~WhXf&kQRvp`x|GJJzGHOg@cjsX@h%g)@1{Jo47_$#=ZFj8PNlveH
z>9v=f*#MJtA5R_~Rr?J_bI0>8V8#;PraSAJpMvB*O^SUsp6u1v@V&mM^XIjKaXA12
z5Er=wuk_%Ee^r9yt_4|*`>HA957o~w;uKpW<%fXG=5V7&<eUV^qF3dI36URVlr;4o
zo_0BWhpTXw6OBG$l!m%--sZL!_pj@zeHgjcN(orj;$KXM^|ieG<3qwUUwrc&a3>MB
z_2(Zr_q5XE=l!6k-hi6!&hJ9u3nIL&74zo+LcK!$9ht4_lbdkEbW7!c0T6f)uDQJb
zIVX1Kp2(UZ^2AcZ>`NW!yd19_Dl3B#_yC{0DbIX$H~u?Y3nkGh=+<6$d1llCN=Ko%
zMJAt<^klj1GZ5>G(7F-?(7r%0t*jr~Y?EQj`B$dW6l>w_idr?gu2wL-Hf6KrbOsjU
zV{-9^w_cC_Y!HkSSU+$f^l*#zYzgI;%hdFR7N_D*eu^il<#E$ao-elga%v*uni)@X
zhxVLUvCTkvsCkxcU=c}D;TOE6s*q2IXB4+*@zUG=nc^0yflVlEOY_{}<ev1!qIH}(
z>U)(<i5Cf(bGLeBb`BpRHq=7SZS^j}0LO&zA1cmi8Bqgfs5P<uZ~17LvUX;4tEc_f
zI3z~!e`vLfA!``Y*{a`y0py5MxQ^i;Tw8IL(V@b7iD#M$6EumAg(I4;4qG8q@&xBU
zkhH<}rqL>}NX4F0Ub@0UeYNjIH8@GZzJEK&Z~z?lkox<69xxpQS@>ihG6uK=i!I@9
zPkbeT<60tPO_}K3_pc`I3JQO)xTzSoiMFm3p1)SmesD9wpm>tCIR0;FfBm6-DRF3p
zqR)Q!xHrpb(;CFBzNl<F$P}a*6i@91d)Cr&R0}#NrEAg-mPlOAC+hK}i^s&e_(R5S
zT9l{DIY#;zTx<9yoH7No)cb!JD;F3fXvCAw`Q@k;X*qjuXQDw!3H(UUq0HQJ$9g`?
zEheQZ0Tr)%%H!<WdoEkFtKyKC>B!K-cmp*tuM!hF(ATfODVxDOx2N}Z2pbqGS-@H?
z+c+2suVDT@u%;dN)z&sQB0Yw^SG}sGIQmVL2wTq<xm|auFUW{rC#h`bsz!)1V|oD^
z_KMoGX$`3#?rqK<mE8z=9>Aa7`aPPQ8O3s0rimZ%aQJ&^2e}ZnIw)9q9fJsfidXtF
zQSeC-cusbLZz5oz0VRk@V(C?#zvC3~GtEq=3FBbYzlAJ@dO!`V24u&mN;JXQ_~slE
zW$4!3sp(w$SqcS|_Nr(Zyx{@9*Y>bBhO@dQNlv+b9#Jd6jP?F}#^k;t2Kxs76j<Pk
zkETN5`rh8nrco^MCoJB{V8RlOj&S%3t*-g|Hmi~|8m;nSOWWU=e@Wijs^{CWA~erF
ze@O;U%XNRng`{W${X28bU9k$sA&R4Of1c>G&48o0AK(~7zitzx@je+b^J2Fe@DYTj
zdT!+k%luw5^|e$DB6GTF`;UY4fSZ@M3VRtzT>q?sm9CpP*dSZCmb5%%F$x`pg0&?)
zqZf9kz>W?i-yH1vB{E+IwYEUAk|4^61+7&Wd>3C>Yx7Aa1%%m?8nwS=&Pi6!7DfYX
zo4qiWl>lGi|DX<wC|RRXX5s*YCKnUX<yNRP7R4mIK+%f*+!!n(m?K;Sr<%@-Mh|sx
z5lj}HDIPaG`97|VS&5r<IF=V?wLDN$x-n_Dn}%MAgrZBNuv5$tpfZ1Xj{|uiOjz8s
zkk;IVuF|%ud>ev<oj!wn?uj9H28^qq6+yhr|Gr0E;f5PaKQ1m;7zQ|}mi7BwfwekC
zA)&<#k(7*@U2qKK3frK}c{Co{N`HbbjxnI0f&T+Na;7-KBJsbyXkZ~2b!Y{8M5ZUF
zQ9@?!sow#KU`^`(TVT&@u_%rn-#d5ApFEr$mt5^2eX*<f%23f!dOxDCB9%3}XlT1w
z%nWs<CO|XE^>T<MHA%Bu%mse|yOsaL$o<+#8HxT7cP7eP<;1)!FW8Pvz&2a}Eemv8
zc&%jiO;yzg#Xmz5Yz)z8mPxN`gF&Y~vauRq7CRA_0Qz02E)Res5{2EAA1NagkQCy{
z7LIB4J3y)R>k|13d9?CSb%$ryf`M{}!k#2Amtv1VF7Z<Xk0#n_7V?cL7Ezd@H*qyS
zd{@&G$uv_eDtFwZ>dCL8(dBHYq&023^I9TIwrbiu%W(umkwWrM<<y>8Zf^c42QJkY
z(5vJ3pGupd5T|~Hrwz$!8S^FjhW<|?5I>=%2qQjwKNb^`TP4+`BaN@J^RB;qswq*P
z%h54F+WRegz(c(Lc%h{-#5qqm%G;6+S<yULL7!`W6xksf0Q($bsuVBS(Amf<L1Vly
zj>M=yOmXD~3>vILgV=^%)&V`fCt@4_{x;Tz1d2?Kkj>cp(?O{5oYt+1zRFPIt9RyW
zsmbcR`^4}6bFm8?&D<j(+3eJPhe&uMO-^s1r3`si<7YxbTafNYJ}~2Ca99rAMXh6f
z<qHcw^l2t{AOd}@1Q=$9s6tT|&*c-$z}zLo_XK)GtJ3O6l0i8#I@m9fjO=bZ(m$A^
zIe1H^Ls1-Nm#nshp}4g5vwazJaxOoNxr+LIX}t?xfkH^`5M-UG`YF}OPqdiX@t4Qu
z1bMaC|KgR4(Z?LqpRW!ZJMjMzhJ2g*ofdyvAKr=?Q$Iw!(A5J_LZk!H7!3}2-ltpP
z)4es`Td(lXl{qGfpbGi=?}Hd|<pO@wV~c?DSzbM}Z<OqfTcSx=3<f}Fxs$jsW+Kgt
zg;!8$q{>WM5;X68I#g+<ekpmyIKDS=BM46pGjnJAkZ4=j%z9BJC^}yy!-}LJz1{@d
z<jcDVxbN9yjlBN~xD*Kzw5)U9c2kiNxbVNV)ZABGtEFis6v26KqlP&No!rxM`3rS7
z{2nL8*26YWN|vPlc-5sokpG-WwRaedOA*Jzb&m>pw6dv4uzb4pAJRW{4Og|KIAv}i
zPi(WIuH>jvSd*^AW|T7&-0zI#<&x%0a3v;?Y-bG;{k~zc446$Ej-g~y^?As*U-M3e
zJPz;lLcc^?M&lr*xQsG9du%eN7G}#aEAkd%`<Ix^XcN#$kHwstNgRXClzW(&djWZ;
z#N>*guYhAOMriK@P#t>3C3uUdVSkEoP+v5}9a)rc2}-+!B1+!jq}3g8x9ic0*&sl^
zT2EFBhiJQyGr+hW#{F(XZ1r78mnZV;)n-XXB%AjNuu}hYu~Cu9e+N^701S?rj-Nig
z7bXpKGJN7rz`e(piXx;xMZ<K8x>G%Dg(FUpPrxT_T>~|k*-hD{0b)+`0}1C#2u&gT
zR<M~E*XAhbg#z0KK7f}@F5Hw1tS6ldr5or6(vWq4{6JYfn`p2$!P>zQT=Tc8$T|uU
zE$|?n71I?=H>r5)8{{ig^|MB<nS&@S%4sCl^rb}4`qxy(iK20r<xk_&hj@L00K+$X
zmfZH)`pc=LW6rash7iOly%l(s-57v5K#ij;+BOV@jHWq^Ibw$}qA)I93#DFmgg(rZ
zFzbZ#L?Tccg0oqBez^~Gk$&q%-!o5Vr70I)15hLJSqw~(B4z2kOvLG(!l|N4tSd#3
zTIEO>Be4_f4L5oQ(oCSnhvZ<widC3Wkl{43$-90#cxXA`_e=uZd91E;FnnG3KBIY!
zKsrA_al|jiT4GHc3C7?$<j1VAS=fO6TGx&ydz^fc&8n=CMSDQ4&;Y&|FzG=Yz&fpe
z6IHjQ25~7?UM5{q%EqOUT0B;^^GyjMB>Ho@KENPIH4sHSXF@{rhLs*NbbP;Zn2ux1
zIVMmo4g8^t_7#2CQ}f~>b+18`GJFHlAhe-b!Vj|GpK6tf{ZX^z$vCX=VtiWhW4VTa
zU<m?-z#tUlaWRLE+Oj4@aJbu!B(^V1&;RbQ-t_(4Koy#QG)NUD*HA*_r|>%QPYl6S
z0*u2&r_7wB9P>5!RZ<1`&uVa&*j>|_bCp@H`ylt}9;%b7n~!86W~<;zv8|6}fcsO&
zUDQ<CAGQ&;gGRG2TTgW_r;R0=;JdaU)Nj5cU($>KPsvXJ#-d71?T$$+iOwcmDsI4h
zFw4j@$6WM;>@_swV`2*dI3L6umC_wGS<gwbGzUTG|I(6QCexZy8NNC_>ftHiR;Tl8
z7%!t?t=ifi1drs0bz?9JrJiGwjQTS<jEtPl(duz&)@fa!I5h23qP6s|8rmh9h#)d~
znrmhUsaEJ?qL=EnY$r9ro5u2O1}Sm8tnJo&9=S=&tR>{GYNaXIjOic?jaGssDAe6e
z{VwIbs{kq?f*5#*&FLZHlUf25Uxcba0D+Pb8o7;eG{l~e!eRBgF?TM?TXFnrhW83<
zU7(WHUE{^1OW-RC()LZF#OI6ureNM)Gw>OTC7V;`7)lN*KhqvG!Qe4)^B7b$LsKde
z(%ed1;pYsGnMp&<(%mcERYChtN?GUt9IK;wV-8Ss!wUoJ`>XwAG<l({6v&rwh03hp
z3#r+`j|L9wW;$6tqnke;d%<2qxI+27lU;~B?yQp5`WSRqr?3+b-;1>%W_3Gn6yh6$
z?D;UOU(fsA&K9uamx)C8*#5;+CV#d&`pO$gD%D*8P!fzeN+G}dvEK-g#<$M7am9$L
zFbD*tCv<WNH3zOO*hmqdn!fUW!BiFsJ^)l90+@%DdDloTmLF&Q#EXPFb7pMfiYE`4
z<hNkQf@{g_ly7{l;&aMWK$&nDPu}&b_ym!o!?6P6L>dwST+2<QJ1q%2l>K}1p%P&{
z;+zyqRX>307cQ_;gJJKkAd6&$a}H<|L&uk<a*=rHF?GLbD3W)Ce0zd9zYU>HFf7be
zkag8<pedT3H>b`ff$o`#5o#jNqK;;bb)$bOifSG?RN=x;l)tn@V;cYb9ePP6rV^ew
zyf+#3fmz5#$GQrr@rdXoS;6F}<e{_t<-j1S?`H(8yQJA5-X=;I!qDh7w+Kmb(bXja
zxKjfFlOg5{QA-t@y3p6nw&UeoADx3LC%xbVKOl5H+Iqf>@Z<dJYNbq4n)L1x-Fgo}
zD%K0}v`c7-#poEJ4O>17C_k#m#*X@xBl0yxje;I_qb$M<#1@^sYKzV`8jFBXb5rL<
zNw4pW1Atg12O~gO%Ismr@`vugi6JDt*+)XVR&@RlcG^-VB`IgS_$>0A$%&UV1e@RB
zHC!4y1&vcT`45y@<=qq{lPAFc<?RMu7PGuNoH<dXzL1&UnEEu~$g&hg3jO33X%}@m
z`4&pMX=}_>kT)V#p^*FI2|9kTgS?&o=j1=Q2&-&p#eED16kJOFba-D5C^Ty~O~nOs
zD;3c&feW7iM8c~kw_$UNXgS>0v4yzIh<vp}$2!ReZ~PPo|9FY;T^35+O4)lK-3O-T
z5c$H|M3iAOAzv&5jEPoG1y>gSpsRTOSH$De0Ph$!ZbGoL|Ln=rr&Jrq<MjI{4CGm2
zs4PwXTv%R1Uo00ePbdjTSnsyQ>NW%Au4;cE2inFwqUkt!QL5m3vb2DJQ5D5mZ;4l8
zUuZ#y>kF$l5n#aUJ(af~86whbIEWxIIBN80uIK>~P=0h#KJ{I=KHF#;&A6=^nICYR
zNP`hKn#fz$`Gp2fG|g8O36AqxHf@Zi;u#W}ldiU1!e}II-`ll$=tT%doBVs}5q6wH
zK*P5_z2@+fN6v?fxxERTW|;=iCgh~(M*V1=zy-8zf1*jBcA()z&pV#k-G9Z<7-?J>
zZ~+TZ+p2-x0*UP#EFfb1r)(NcyxO{|i4?2WZ3*an2O8dd8lJbrbC5zYhTfI(-TOSZ
zbMtx(?JuOnDUe)9!;w&QTJ&rN8xsP=rAV~=446A{=MoV?M&`O*>fTxm=6cIR^=o8V
zW^>l7uJ25VEaYIP8H_th5LZ#jn;j8YcqBDB130^*lK?M>syUwqJkChdjf&y>A)V%S
zZu}ZrW(6w4rOt6f!aFdOGqB_7EZ<cq7J?9ZVnX~<CJyz=s1moBi^c7)UT{i7N26q=
z5(!`HEg0)33)gdd!ejY@+NPp-0(1sKRvVrnV3Hy$YC!v6K)|GwWejxn$k!X}<!c>V
zp1tDr8wZdwmjobVl_LwA%O0^htAe!d2AfnHPJj)FqJ>2F=N_sq!m|~;&7CrfOmG*d
z>LeWuyj87XW^HWw{huedXocqa@&OLQ1#IS&Rm+;|D=8C8l`1aM+Q*FwMiDaj$^Q$H
zmX<-6rZ<!5lX3heH`~F20Zq*u)t2)hFRQF=%SXDPnR<^Z7sdN6n8M0yJL~@MTi<uj
zn0vI3r!r!FC0^h>1JYevs(3@RV$GkvC}HR}1}hF)9v;zu`ue9fRS#J`MDWu@p?^<E
z7SspBkSbqGx#5u<#G}yBMcQPO`gWt4NgDLTUvZIg)++jOJrbUC@v3tpM6sh$p(BJ|
zoNE&qkdFNMsTn7VLp(vEInoM=Wh?MqLIVuw`*uzn>4u{PP)m;1sa14S#ER!vmaF&#
zLjhY<GCB*=mxQr={_tlalb+g_&?t|`_yLJ@nea3b{ShhH2*}Dwwc1v4o8ZZJS$fj=
z%-?$F@ui<I-RC0ilf9*{DRL>&eg+m9Nv*hfAyRTaZ*pN1EG?|o{9}YH3-%mdL!uiI
zBo8a#T)u4syw42CM*$Ed$P`Pjom~F;HPdYbqP2~|#Tk;8ii^spKLhhiJH$G_O9H<6
zhCY9aYhff4U2mZ!ux3cV<1+%Kux|1~LI_VY=SZyHpDKBSViI;v)LUeHmojNe;CFVj
zrOr0(PWTfzCwtQzuM3K!`z~*p^HrH}N%Y(ZS$N^vxSBWs%_FUdpUw>UCPj-6GLS47
zzrCABg40rw;IHH1D|BW^fK1Q7^zBDlf!z~Cg+{yQ251@>j%r!eV8oa#GkpF*GH2L|
zHpKZunRA_EuoVni*kwTO(z*{>9&lYgnKVxV69l%M=009lNL9EJSxgqr8d{EGvJ*={
z<ggA1kbIZZ;LoacG98O*6Hh@PSs1St($JHROD{M*2WOBqe<U>l-XN>Q*;k$9X*gg>
z)WKG2HHSM((UX{Rt&YolsxTndX(*!!c@Bv}*oMCy>J{d^pqXKSK)kSX$~M#tpSPQH
zFwz3Nd@=3;E#SZlWAi^NhIF2K0)rLVLQQJ`wfxou3nlusq`i$w+4X`wstyApVPZr{
zD<8V{#ymF+(28Y@S@uBQAxFNIs@JI<4UPefpgh_j&YOdZ!%XJr^T6z*ch92f=&7NU
zLA0#z1sNOy4DIk7adNZwJ1%kJI;5bkykpEjTsdv{Et|e4=vwyV3}fwmIg4<^wd2-K
zj{2>#t(DKQ$#GI|ht6+zJhs?+KWvozHZ?uM4)KQ$G2`5%Th8r2V78}7saC-8@=)W#
z{m>vZbqRZkEn^M<EHkc)Nd8XN7qv=U#Ta9nV6t`W`H`&?*6V26#wjm>34Q#QL9xv2
zLn<0my}rtRT3!2RX`gCfaCqULux#Gd#-)fO=C=F_DY3TTIDB2u{aV|Bcp|=%(WSe!
z9PIvtd<gn0Q8Mta`kcN~Sla~bsrx`jUE43<2Rp$)BSw-F`=5R}g(^DE*-7#K9BlUD
z^~#vT>1Q9067UvaRTikqxtappdJ#F2O`pZcPCK<u3BeWL3I}^iOo0`7)RsaG7K(`n
za9$)INx_&Ke1kAw5zwCaYFI7xw0w^SvcAjA4|MmpK&~IJCFz%3>`xi|$MzYUU+xlf
z;L7wtp>L99qEe=F<bzO1*s6Og#I4iTi)vcV?hcVS0_vW#nD+4!p|jv7i9Pl4i4yIK
zfH+s~nbmK?jYbnNoCjPa2bT9Hk2Wxe)>EOn(aLFliHKjMDyXu=HaJKA@z40_Lnqu4
zA7av}qA)lLQ4ebrz%6>3r2(YIthGB}??CI|d5jvcKUN^PU}7{@H1|XpIzv#c%sT^y
zO-4I#%41jR6r^I{zgd4r>cRY&MWRiJouRxQ<%e1&?i*MW<8jQ;n9j84nLSYY)u|)6
zE(c+H+;6*LDWOLLpfQ}4$~<`Lj@Sy~$BqefD>#!@IJJnvsJh68Z<tR;fqElk1I>cr
z#!yUtmfrz)a=69(L?CI99O4=p`?GE7a<Fw2ff2dq6%v;dgufD^UD*gmu9MmZS4&ZJ
z$fm2qqER26#cFFH(u8m7TvUZ?>Y@!HFAq&}dVMSG`7_~*cyMZ{Pq?3pk$^;b*@fXG
zRFs+78-R%!z!O5ig2Fb3or4U(4HM=Ij^lFbeOTyEaes4iNGfZGDJ&NE6;BX>P}k&<
z*|Ev7WssUbcKyv*|L97S3^~2*B9zjC%^XB*AL3|rUYaMiyx`S_&&2|tbTq~2>z|$^
zloqww*geEN1^{QBUpL)ib-A##74GXkXtCS#BfFFE9{AoHvUwyv<ac^zaygPrlD{{w
zZmjzXeSRjvKr)k0@g_jWQe5YW+Sy0`tWM0^f#0X1AZN#+nRCKsfE_m+CVur-vchjT
zbW-T*M8oR(rY}kq<T?;9#c(z(%*fAk_lcIZ2^{-u<!Fp&kVX=9gNl65H1}f<@@=2q
zEsbJExB#$?gEj3wDaRwjxWG+)hJul*zfGH$hM8tQ`)9+$tA2wXM+o#@GB^b0El<-@
z)fj1T?6R@V^LID(EQf<Ys(|zrMy{VgOu`;pK;RO=k|?$APJOMqD<t3g6HYPjZ+O_J
zpK4~0_nRMWRI?I|_g7D4$So${odpJr3(T5<<c9(a#(~jgeA6CuV_}3I$vBgHD?thm
zgW1vxRv$%<OKhcORtkQP<%BDq4LfZuXzf!UugZOEPO0Y?ysR310Ruzy60g=ldq8LP
z4AIbAP%?V(i{OK8F>8fle#-Mt=tOGK?8~kmd*P1-zM9i$OaD7^axRhcCjgs{vNrh8
zdqPqab+}btfI(Kg6w<rFiPMHB)ai|=A&UIlW2ar*kdrv4FpD^|#>gDd(RnCN@7-;?
zx!`-o=;BfCn=F(LI@eiYrg;&TQ>DFZ%8g3oKS>JN?8Oz%!vex<0o0jQETAPTB~n53
z<@k%2<UA&E5Lp0<B76G>G`0;#DZjNCk+ejZhX%`|ZJ0m%o_8uUV_Dh~KhYO<-!)&)
zWnv#05j^0{CsSU8rB&k8aQLcbrh{n4QFj*#$X|y#)<z7@1?XzZ6s8d=DXTb9I1)9F
z@3lzAPXMBD0k?xv24!Utu61zib9z7IEfXpW4LY_5(q%%pNrqYOO-cx*JMjTGam6Qk
zgpFRiNv8@D%q6wYv+g6~(u=c-tHh$+zUo*(ro)@9#0jh?vV=-7+MPIaj3p<G&JV^Y
z;*LismUGKB=LZPBvexGJh!DeUAIv?VRNswuPlZE{cak_RF?a^Ne$(9+BV+xVc~AUI
zOGI83wku|ySK26cJCF7~lw;hdEMFLqZfNB~Q4Z@*ef$$RIGU0TO`Tb-^<=A+c4Uw#
zR4YJQ{`OEiB?<d^V-Bac1e^2>wM4;UT6K@|@I%~bfHyq{7twlYGms$l-(HnwWh>BR
zC#<ZHKt2<#Y4rHt&*4ysBro4D1UU(AqeMEWr+((WkE`j@PulO}x7Mq>lB`b1C6pjf
zt93OmwFo3eb!IT@DGTJLAzRf5=dVbk$Bei%ZtbQ?CHb|Ic8ZyHNhn}W#9fI7DDTb+
z2*B_5ufZ&>T4MN1KH;O4*=~16x3-1qgQPpSfMG!D1oy*Z*2%^%+AipeOIudM@5O!~
zY6F9UNge+vb|ahc-8Tl(hBl}iuzp&mqTJaB({?Fu9hB~~DT=JVvWJyyQjQTAA91^I
z)!)pJiLL?LaNI~I&j-f#=|Ab!3zx<PSh_8%kQg|IDbzWgBI}V5zAi>ESB}Km2Iv98
z_-8TOjXq&w2)ltdFtdft01v>5v(#P*E@hZ}vFzNu6ILr;Ul_lo0|7G9Nk8W;K-5A;
z_ip~}otNY9#rmo?qyit~!!U@ZcZ`;syL?`=fTVcHkVk`5>;}0C4n0RnK6Iff_ddeu
zC3;N83eP!9dx5-K-!Z;L9es!5`7kz%?GY}KN5lckv^8SNQm0W;#a=#$^CRclf-S|a
zi&*38c0aSTS(^@*$jgaj$;cvaJOad8Ct>pxhyjLD%NHS83v-is2?-wBcV>`HjF$|%
zmt-H9%nJhk@rZZDb51B*6r}m@u~a77!VzuR7p^7J^mE9}jo4^@nuK^4_3$PaRU<-5
z|J)ZbcjwJ4!TDKWF3dT!WtsJi+~uZStD0XEu8-Sc6M4&vK~|gau4Ei8jyu(BOuOcR
z*+i1s0b!}jFUW}f4*46zP%f6W#JGGLu{-5hL<NWD*ZF7`H@s2j@q)ss9gX-eW2h&^
zqCnK4k9S?xNro8Z*k*H3^Qy^u6(>W2A(HYIVRktUtQi2q{ZS|zY}`*ZA!xi2ZEvb9
z{Eml`kxr$Al>-E8+~hGQk|2lvH2F)m*(eItqIq;}rFGBawfqj-*_9Gi@;sRG=+<n)
z9a2EaJ&IXqy6vgVSu`8G&Dg=6d7n(Ru<XJKYTB%}NI1b7m~;7{VIg+&D3@Op(WN~^
zgd?h})382jRQl$D<|e44O(ZWOg7CE$T<IvYhD-Uz_ccUw+Oe|qBUoTxiZ5a&LO7V@
zZ-90g2CzTN^tkm_wBXjfHCRn>4QaYB>9F~Q<#ObJrs&L2GJ-GM#i#GMIcc2GIJ}JT
z)#N?+awd@pdcS7f9i99RqCH$3+wFqK;(|M2_vu(f$;P_G{|bM0c9N--Mm5$EQ-^c2
zALODMLQ6rSEocaAi4T%DUk7Vg_Gp)Yk^RU^g$XzNWZ3#~Pn)66P&z_pRG~M55^Wk4
z&6$d3maL0oCA3EN(dKlU7I%O1eESb{c5`2pS<#k@e%%SEV4UyQ`E{+e?zVIu{Uh*Q
zHzih0Ms*QCePL}(P)Us9N+Mk(aKnilsQu0rN$YX*{Aqt$$_vy#jASIoMO(Sl60l0e
ztD(SY|7zOm{n>-VZQvQT_zrJ>cG0r8`2wCaW2pxnU6e^zp$Z73lu2vWqSi4?z)bJs
zg7FQ<ZDyOneAd2GFvCs0dLY6Y)W^1!&4P)K8Ocp>LUz)0ptr0Pc2bYR3V&VS^-$vM
z(h_V>Sg<FsYLRQcj0-wSJ$f)zM5or)V$gR_OI8*K^wg=a-%I4U5Dl1`WIs&hI9pI*
zn#Km?5n#pwO@rYM<JI_@mdl5CvZ;=gadb-KSkba{J?q#qX0C!X9v;!xA9sc=1$KTq
zrLhVg4dyN1)AK}fO;|%dx0c~oA=sMR4p+$$9VMh*ca?Ut&3*V|iaOqj<wMo?ET0P5
z1-Wh1VpgeLVu+seANcJDLY}WJ#2O*>>C^>|NmNK>vYe&~k<j725&o}#p-KmxaK!J!
zxsrX|{`Hg1+_y%<Qc^{zMQ&4Q$T4|<Rl)sl#BK(t?7dU0aKZB>dTiUa`5oJ~ZQHhO
z+qP}{e8<LjZ2O+y{O4wpo5@Tv$$hxVecF}k?%kEz4?C-Rb*&$xj}qEIgYfs7>sM*o
zpJWCWdY*M=5W9b}gu$K~siS5utV}n77N9TYj>{1F0a-LEl((7v&zB=+Emtj!8~e6<
zS#l{>E>%L*Q*kqPW&pu%P9zN!&2`;d<R|Zf%;4%<#heb*a==dr4!UZi4z%WDq5-pb
zflA&zc#XzUWp2}1(b%<&jy)3TJZ6^CynO`K9z>)lh!n2=tfSViK}k&$E=Iw0boCU>
z25cVCF3jREMcW!zoE`;qGG(`!J%gf){Dy-zDU*d*lUbiXXn@txLI@fs<J9lk59Lyl
zFk`rRt^oPE?rhZ~avj5Nc?3@D1b?4T#jX@^dP->$ENZhP{_O+JI0Xz|t8nuYkHd%2
zwcD1^Xhf6W53CFCnS{#KY7IxzSSG||Nol*sV<0tilBRLlUb(-}8D~!91j13XI`F7I
z6SO6rk3%2gU^_}TWfa!}IaJKAEfpAgiV<Rwz*%@qQh~i5g(#m|TQ~bu$7Zh7N-k)`
z|M|SvbfB?=FoRa;cvXw2rcuHO`aBm&W)utN<@-3oeU0I8uY_gdF$O81Dxvm|c@=3r
z)nU(c77!sURR=p`n)0uk`w9xV^j@0^EvtFpe`Cs=!1G>A8X-cNUAD#171tec1`DTE
zz(dpd=t^2#3KJEwp=CMd*5f<aMgpH_3^6|ePSU@JDTkaSh>Ns$(WSVyBbwg40&hu&
zZQ8hq)wd24ejs33k8gm|b+jNxb`)Fyd7B{?#SUH;xKo{qY<uoksR5L?OUwkIwC^&(
z0NG;~67j>Y)>@Nt)rbN+FiUruyob{uXMU3rT)D+gS4qu$0$R7#z4dT119tuWoe}+V
zv1{9afkgmD!1^y;+brf<LAz$bBRN9v3VlP~Q^59;zKKZf(_?$@@Ndp!az0RYZq#%H
zddD;<Gk56D!4;+-q?@{Xw7*vXoJr&3@Cyq!7R1BHQ}u<X$|>K@XwP-T2siw9?K=T^
zX|nI_w0|__Nd8hqTeK9HwA<s0v|FqL(J<Z?a>y*d6=%9Yp%+7YPr;}@zUeYWT|OaU
z12w{fEpb>eXA8v`_PNJ&aJ<{2dQ?9}Pxpa{J)~v~c$k>jK=rQ?m}pl5bmmOVCc|a9
zKn9W!3rRHa&clW*>2Fvavj12ef*co;usc$;Z4V!q{JmE*{q6lq1kpkzDm+cI{qW_d
zs-?uy{1ZFEt|3c7s_gD;!s)_JUNc)VgL!xA27aI6x=vtl1BNHs=48&k+-gATR$a3A
z0-v-tE$FXl)rcgB_LYLbKK<@H{!!%7__BVCF)&7JWuTpodVL%6U~3{rRWhxDOles?
zUVrl^FfB?gRJ4<vb1VF}kG=yMRWdT@ngOSg*daJ9wV3S(?G<@mTUAGk?zbW{a6p1^
z255pTYG_tic0`ApRjYZ>QaSpc+Qd<S2T@6bXo3CxqEcBj!!!ko7I^*9vM{XLuUS(X
z&7J8#EGjLZrj9wfrDPpX%3TZb8It?NJ`%fW5v}=vTJ?pb+>($2y|x!X2J8}_Ww!mL
zC}u^i0(E7pg{RSKE8iPUE~RDDu1StDSGx=0zZVtM0DY3<vQRrlXt>ej=&GD7-IUyg
zzo*aQ@I*o0PPu^`Hlhz+jFAu*t=t2BbqUi@4jznFb@Z_A2n<l&Jr=;*Z6Nsnn7szK
zkKl}%x{Xkke<IW`40DSna!V+oO?K=PLV(CfIkK%ZjV$$HDv4$n-+b8KwvqbuA)@m|
zypJ{VfeVy0Plr*53b;fal($8_4Am_Lto9z2Ut^e-=q`gECEIO55Z8E1u{T%K%7q_P
z!AB$&jAywsWfAIadaD6@)O1rWOd7oiD%SbiI=J*$?CkqWh$wV^6?b6Xl#kxZ+IZAR
z4{>x7q(P8atO*?@XtM?jmGSbx+x=YqiIbFQ*)b+$Q_AkF)nP7PDSbCkkETn^n{1QY
z0BobI=@DPf^s1TXH(fW7Ld5DO27(c6R(!9CDziY|$foYeUx=<^)?nOEnXAS(6AP?i
z?NRn*%hnHzQm43Q7jN_V$yIEMtpBFH$s{wyj*36F?X75l?I{htVOn2xv!@sPH$nvN
zBd_(3tefE5mrvuu-UrqDRtiO`pKhqf5JZ01#=z^A{jon(m43Y{QNimVaNZj(h_TGq
z4W#uJT<|rxsj!Il5(sjSg=p_7Sxt|(C4e!fUxxie-_pmx^x>2sD#&0L{%^n4QkmL;
zk?(f7a9=KZW3nS}$cSza!-z&QLbB+*{^Zvbrk`kr#hu94c*fA$oB{vWqOImEXDx)2
zP*tMyk=HF#v<ZmMnzTvXCvPr+%8Fl-)>G1^Vo%eA(75JSLLEX<=NLJmoe<O(93;p@
z6^vbmB#i5D@BGyjFrk<FAjpaW$cz}Al###5Y{sWaO}Vda4E>f|TGag+Od<T9!zl(?
z%##*@!CJMIN_Y98y^yF2AOybW#oQh4EQHGE!`ssi{j_nbG_5MQJR|7gbBJ7SYLYjV
z)CD#ASAKW19-pYWZsCH(8W6=GdJp&w>dRx}n-<*pb^wu8@f7MjJPi^%F`KjNWLviE
zKMkbfg6i^-o{8oW@EKB&aEPCQZb~=uuLuQy-2UaSdK56v205%xW1}Eom3hipYp29u
zgo~~1eR*&7N<+k~tW%On+C|<&>9&?`VJsBM^iPhmQ|#3i8AwR)l4)$3W%jA0X@EWj
ziB2(vomG32X4a48qMaXRFAUAWB$}nt-sT#qI?6U(3O@2xvHD;yikVzWWnu(rSn20V
z9kDQcgO69GJ9qyc(qsN8zzlg%FW%~>ToeDHK<P@E0h1JtBywHDDxc$sz&2>ds4+)r
zdLBB}4r<-8c`%mkxQx!3eU&=^`CI_SQTmC)Ut$}9cq(jmgb%v8P0SwmEHMVJ)NPjp
zWW^C}>}qhQaZ22bnv!HMEnl6O_Zu#t>$R!HLa?FkeLa4Jx;iNoHw;~EO*|fhXkCNv
z3<V;3lMqZTq`{SGnp69Ij_^N5(gfB3q9m^Z3=p!kd!?8d81c%7L`{<&7h-UF{vNqB
ze0SP<3ic8MY=+ljLr_6%qg>OtYxh3BGEfAc%r(I-n0^||PyTlVm5QRHBeTNX1W$;w
zisNODa-xkOy^o64iYks$6`Ok!6moWf-sEVP5GySMnsB~NUEpsw1n23qw$_L6(9j}9
zun)vXif9KTTRwvDlr`%nXceeOu+d2R3FD$ZCT~H*{9kfgwF2v4<|Rxe^9EnUeaSj?
z^!HrYwIy~GAJr`l!)zbWAcjdm@R|#rY$waT)qqv5n3Hh@CH&$ZR8PvlpT$%QY?*E<
zzeHxx#tTh8ozKfJt(tmN>~2o3l5}?;)0|kJ5TicA%A-ewV>gaH^&ph*N%j0n6e!tn
zd`tUmJGfMsIMF3H3^q7MSV(ll-j~#sgJ76LL7?Dvihf&9)wnCkiw-N&*Mwe;&~*<E
zClc94+67h4FLt|55O$7@p_$nH{bW>Qp_6V5%}iIVy2G#4PyFM5C7hEsN;s~XXeQVB
z0R*zCnNuwpUKHB|F@RTGQulitC7CCCFm6dKl(H(QSnaJ)T#dFK_|ny*w1LCCdZR1R
zzwIIh*y=Y(JCpV$2?yrK)VdzbzdhxVk*QfG;~SGbyGLa+4wcJlk;>o~b~iKB`Qp$R
zjRO`C3UNLYjR)MkU??1brYFH;!uD1dV$Uh-O9$N(=3VA>`Yzu(bUKC;#sbO?1VjXa
zz5w9;{v^|M-Uda2v{z=_;}AK==Lt*pEmGQ83daZP;j_TTF*6PS>EyBi@m^jUp5cs|
zI|1d>`Dic-)o<?mZp}OFTB|RyNUxe^ZID2P2#V~c1p6c!qZ=GlwPI|N()0tXZy#}+
zxz7c9ur)HEzA_$%8Cv^FgLhIPynlJB@X#6LSq8a$Pm=7)7u?dx>{?K1Qx-iT3~Htq
ziOsXkH`fQ3@AAUF#(0s;cOvk>AWy=v(DKuNbGRrGIU4K)Ik%s>qP3rtnmZ=fmSjTV
z0F)0i%(A{2J%O&FrZ!ova0~$!fdv6G0o0#h!sNT4X8vIZ;WB1Kn}B}?7@Wc6U$>Sl
z1AIRd0=`|BqaO2x@$n=Abfd$-I&j51=_fWRib>UZ>C*A4OO#|d+I!WAgOZN-_0esk
zYm#r_WVH(L;f|>H;(vYv8#96`9JEZ{Clm#kPdmt6N~^8<2=1~FFtLO%BxIM!OFDf}
z)Ma3Rd7B*OwwXPckmv}Ow^X4%Odyn0rp%>0XJ3%TsiHbV-MI4KV-OF?s}Psjd%37m
z2&ZRErv#~b#z)UO*guS$DmcTOPf(0Z%8AnB$^hX$p#aouwbH6n1NX#R+E!|n6|05e
z!KP~b2R<gNYbSmD_az;Fl6x{~@{r^!K;mEmPIRUdtJrI4V!VPfv^z3a1T0>YA&rVo
z^!QM9@0M;Ph+&l6WHPeLn57UfLT_h-c3XFW8*hJ?RwQeqN5tOtkNe0u01IxnAO1gl
z*CdOT*Gu2Appi>;JIJ26qLD09as$f}yFNmI_x9`#ss#d1%Pk_bO@-^VLUwsxOB0Ds
zy6UoFTQq4E>K0J2QvB`8vHL<dL{dwPg3Cp8Xnv*~|47qXk1d4#6cV+19Gj^{FS+~5
z`XBTe=kxO0rl-CFcpO?>RN$wZBV?Bbr!=q7%VJfgUoi(M>b=+N4w1atP~NR(-B^MW
z)8^xXin4=3P+W8K4mv;|aiEBf_X+2(NByn#+o>ss#A~UTc6{dM7jPqwhZl!copZqN
zA=L`i%bl3K1wo^Ck*DkoPxg2=;K(zB86|-E#akRwTw~URL87aRF~-y*$}4111|*+*
z0KniGGd*252`s&dF|n7XMB)uQ4lQxT7q!TlDWIK47Qz?<gd+bkyAlXvWX5J48ZxQ;
z>l*OC%kNS-8DVpw%O&MTH%QFbXI?Y`NY#RmiO6y!pMs)3d_JJlWXn3Dqvk-tVLZ@g
zNLXQ71Z*_<-8D8Bk@Q1cbbd)uDSj12<eARdxB$pen+ar>0m3qPV3pl1cUIxfb?l6p
z;6-?`NhA*RayE8CmeB+${rUso+jZkdn3#>B^980;CELQ(1p!8_7mZ<@JDf|`4n}*#
zQypRPWTa1I;x)oB)9dP>3*X!cd<E=YQ4GBh9xUvZh0L+&P?pk!+m!FqMA64`2pqb|
z%_tLe1c5uU6R&%b@gH1@zbbrJG^klvx?nstH^liQqrR)&>n?oRCZcY7`cI47SZ?lS
zR}!Q*ZHjOkW~vtoJE|mHSbZ?U7VF+u6Oe~v%*6b!!ov9l45)w=*V0(BD`spnO0GZ(
zXoOj@6!XD8&^$M5FcWg;jX?#oyt;g9RrYR3xRA2O)%wdM{Qm8CfYr*oROB7{3(U)%
z_YMpssmKS&s)R$kjwQen$Z<N2;H>HfcM@&<-*Kj|G>_l7Tmv6z^-ixubHaR2s6{l&
z{U=?oQeT6!JYEsCB=GOHl!S)JHmjmTcovRY?h)cKDWL#rZTR>~LW56b14L5gSXaB!
zBiFPxTfD<0{1p6d!y~ab8Om6G8Zki=y+fc07#TWkyAANA6AazIe4CH~>g~~ZOw+K;
z0UDo`HPzLUn|$TK?05!|x4OFIk`i#st%Z!_9AWc%PGr9sL3*Ww&eoRM#2P<8kHiT1
zWg~^-+Adl!as;5+&3wJbR3pJq7pY{u>GOSt$)LX)VnVQf9fQ8lIO)ox_RvZ*Q|;eK
zQi?V_<#W|SZ-VObYe5U8Mdc$e*?zDXJ!RxH5vuIg>*5@TUES-h+z#jcDu0_f!|2p$
zUA`S%QZT)_7-7*|&sLGPJ`kDfhI=nHaxc2f-N<?|pgJ{joKLQ_j4}L&xp<H3G_qf+
z%=;U&2e%A}I!30Ik>Rc@a}sYn<~T!OQ3U=}<V`_`aqfG>)-_lL8|9=N$CI894=B=Z
zuTOXM_kC(66yf%D%v1_kqr;#|CuA!Expo7pt?^Cyr`c}&p<3KhWjp%wA*JDkycp~f
z%q*?;m{D>Q9|c@LdSUQTZiFV!zD*ux?W&}hS&SKh(Y3rWi~$e9t~C88-Z+4Qt%b)8
zFX7csKU%ap?G&_>10p=o`fiqC_Dqd23{)M=)>Rs|4pKTfnik+gB!-PNg7(SqI&qij
zmUYbZ{DsduN&3mr(d~nGO7JstOI;Fty|uT9n}TAs_@BoES`afWYY5QcWfxakwD&f|
zk;*?!@V08Zp_s#(X$Gschay89!uFN^95`7qK19Z($x&@^DOB-+?QohsEF~rZa88mV
z$n>j9nGKT%$w;L2NaX$3Glaj%)q|US)fyg;Ow|PtXmgm2lwh2V|3F*VI;kRJmYHE6
z?CwNEGT=9}fLYz(;gSZOJv1$NK60{O6+oo;6~w3+?Lo-g(}+i&8dt;;Mcq{0VabmE
zvJhe!S4xFj>h}yK*1G+Xxo5Xi6F4iyL|DmI;wh~RLxH+-&p`3ilQCK_>go<>Pvwej
zRI5|oRPkbQO&qxva%XMR5bmVQ+cG;pBqp}lBQ?{?@DpFCX`iHq9*!?8lP2Uqu?o;#
z2J9nY*kc|Q8t}2NTyTE-{%fDXQ%c^;3op&y7jlz1tUe63p7<FJc)4I!KZWsjs>zt3
zRlf&-X|bAy$2_KsVpzRQ9n`$OYOnW<yAvfe3|Z3-XL_csyj;O^rv*ctQY+B79C|*x
zRvuTQ`DLeg#j0kwd4>zw&Hv9CWTUyYshGb}K*WL+BJ{@!56Yqy`}(=yt_7gs1FMj(
zcC4pt62TRit%>qzG|@cPhy9BI?3<lPaSsM;q5M<iNJ-o#hDmoptndp1!(iN{2Bc6h
zW5=Fq%KSDS#<ZSYLKf!_RX6GBw;SVP))x}o<i#}y8!K%-hIw#j*}*<z{>S18<d9E$
z)40cyp2&~lVc9<-&~m-jbcj3V{k8p$mrmTB_50O0-Q0DKAyAJZ0~Mi*)6XW1Fqy?=
z{MEA@_3rMb9XI~w2|a-Rz5xLQNTBqrT71jt{iw2C85W8C!m=MHK0NbcQdTJIPyc?d
z;yjZ5bOkTnpkZ!#hB-r6;(%pilVM6H4Sccc1LyHA1V}(>7&|MDDpj4fIP8zHNyoqq
ztG4SS+0}utKFRLxRS13EV*n|V$6t*KEn0!cTNPVl#Ajnk>_+GBR@K^pKYmD4YWggs
zVa}(JqtdvbZ3y|{j*xK0Q>M3MV-!M3f}2^M@k+NRa+sST16Gi*FtMb;i5c+Z!j49)
z3GW3fdGGgev@J8Ktpy+{$R|Ft(aWcG5h95sd>Z`%T|XuXbK}f{*flT*aG<Lfybtv#
zP9AXRJNlg7e!n-ulNt71h<kcfo{ugrO^nfwt3^bqdk#<w4ADcw1$O2UXT>p~|K<)0
zl45C?PLsn68@lOP*xeU<DYqY+%EWDB)5N!b(RI-pisNpabV8lIHax>^BaTt4%Nw$`
zT(B)oXEh#WS%#q(^yBH=pqM$%&vxDwH6fZ8Kt^)^eyi#r5n+=VTfAIq_O#a8jkqQP
zB+~B-L$JYMJp3GI?VP@<K>*XwKPg7vb}UF;kniC9!i3BgSx1^6x|a_quS3j>4&2$!
zs$?}iInTWiCG@6Deh?*?vqONSq>s(=UA`xZ6G)8)IKIk0TJ(GMvhJq~B|mrPwC=BF
z;N*!d&Vf?M=-IwH@7e!8$IImt-|SkL`C}$Ib^IN`v-T0H#ZNqKu-N7*-2V;ABN|%D
z>jR<}VXLGLtaD|lsngcz`_hB1528UNIBPad_$NR&&64l^L~2~PP-IlYe|Ef?rQ5Ro
z(Gk#%377<u)XHz8{~ik$nkyXFtH(J{-9k99yynC*oDEGwz?|Rk7B6SFpBTQOH#na_
zZ$1k0=#P&y=xNz(rWyE=vid8dRAZNTb<Y<16BPU5s>LZzx2MzwVF^mogab<Qm;Y2e
zLMUD2d>RCsIic6;6A5K23?uKwBI(jQN8pbAy?AVnLgBEW6^9v<2Cp;4{;!!YeNs48
z!JY~|nXmVwmEF2GVHO<a{9eJdB#^}|n*%$<;ScX>#hg2{ZQ<2VEkW$wrb@B9t~p(f
zw(Jnr90H1=x3hfq8IqB>@bV`Whq8MDpdjRw0u30e3}v<tAv+$nZt+8R8s0V{M}tok
zY3h-2XigLg>KY{^)aeBWyK@K&$#pKG#8#$O#k5=2s~!X;QNBGv1|}SCPEh2f-`p>|
z4@HmI;*|9aYSC;A<J9tUJ8}kyj`Dk9<#D@B-L-E0`rQOdMMLmW`{X_&30iSX^7|Ow
zd)zDqe2OL#EZ>kFK&|)|!IUzgDw?PWzi#(MKd3ZKpUASYhE@a7F(}2?>TF13s7&go
z4tIf*0y<b&v>_Q~^O_u92DjHsj0!i@>$1H+YMil?Z1)7)_S=?1ONZoi<i5^Oz3T`<
zUj@PCLD$zma4QiH@+{lJQu%DluJ*#Yie-1WGkErAVqGR)d2&Io?>taygtfot)C3WQ
zyQ>Zc$C&ak5j!9ZPh-Z95wGds_+;fxX*9>kCsq>BfsHPf=|Ynfe<5xRiOhRe{UPh3
zi*9CD)EU^>j`XRc&MaS;0s<=o>Ctpy#c7><(YkOywt<>zg6!e=iY(UTt`0TvlQAM-
zSjJ&GUtKyCc%U)0=k?T)N?NW@QWaguHMUbm!<gyNPLj$j5y3ViAc58>Chd$rgaDNb
z)mA$yRnm1R&>Q3K+>*-{DXsrma-f%--H#hnrO1C(9>>v5(T;tc*5o`zMqblJE_w_{
z0&F*4X8llDNai#R1Z?2n8SLZ2j4i4xBWhop>lHC`9oS9;WlZ!!pmCJBdO5AvNYw&>
zrFp{@y6D@Ipd5fbx86kIxog;^Uk!S16WiLc_$o+Ucu~>FvS+U4)pa&;%5i8e<eRTO
zASiD(wrq4ybZWH~Ql1|f0wQkv$BzSwpU&1o9}3UqCIpWSin6u)*dd4uBy1U<_L&1v
zubWe8u0Z~rTxlJkh+XKA>M&akUpq{%56fl7YVSye`{dF2jIEpDwRu6gGQ)LM*0v4?
zdGpcjq>(L6W8zSa5kS#chXu25I90UdXfs3*$Ws{k$rkRZ%|}(01tdwKbTpN=@aaHA
zDTtbN&MRDm*U4T_;^6nD=$`EL69%MfxgFlQ`5b1h)hg~e9OMYjV5jBSmBYW(qT=3r
zXL2o}%{x5d;-`x9aRM9MxS>{qo3B>gnLyeX#6RMTT8^@*^%yqxYidcOR;#41XNTkX
z{5)t3C?CWUY=;)9JKAy}vX`A#zzGjJqv6tWEP@jZDOnnET(vWTfcS)^9!N5+6ITWQ
zY||W>1*|O2>`K@Kp+v`*GBbVGl{JN%W*Hx`hhODuO5<cnbovz%jdkoCb0H^@t3?cV
z`h{=#il&S-UD6^!12z68bv-Hj97@fE1DqylD$;@TgSyHH#Yt@7pInQLLNNanu}Pej
zC&msn0ZUp4M|<Oy?Kt8_Z)ghMCR+A^Q0SEp<G;lQlzN8LID!spcZ0U4KsP<Yb{xE2
zaw23vlTDim4ewvrgJ^AKB+gwoaN~p4AN^o(jttYK(;vl$obKhO-O8D|7bur8RFGsw
zdu0k&HMGbN_=;f)WU>8O*_pLmqON_et%nPyh`kDJPracPmT26RIBb0VlfWls1!+JU
zIpkr7=8nfF?qw5Y;ozkHx9kr;<SqBP;2pIL+{Ei5<U~NzMC@dw0gv>UPkkapVzrG{
zK9qG9U*+sX{i)dB^R+=ChU7Ly%*ra`O)-EveoXH*O%MR1FYP4FSLEleT!M)Nn?*Bn
z{n7`Z;?J`9yC5b;4@kQ~cu^j^ITJyo+XN%YJfT$ynwP6_H$_k!GOS>WWe4~>*x|JW
z)5|3*cJ$Ct+Ow3ty^N<eJox9@Drh!R_7Z_ToL44oB<=mpRt_0i7_5>p-11z>Bq0`~
z_^UXfjFE7&f^i(dsuze`o~!(sz^Na}bEbu#z$u-r(bD0m2(nFF3|anhs2cr~$Y+eH
zB-xxjI97_%%%S|uOz8tiXbR;OES&374QJvy>&UWh*G4y&47$}j;b}k*6!mbbGH`OZ
zZ*db@vnR8CiR|kLB3Ow4n74ieDus7(!`H^0MFEYI-r&}-hByar-t$mkcbI~VY&Gns
zk4PSNwph?t-s4yHXIS}wP~7HMyJf|-khnMTn_Z05UIwYgBSvJ!GsA`lmEn^4kR^V7
zIJE>54wRw9^9xdAN-V&!GUkc^g=Zz-6OsxM4awiOuLCJPQx|{Uf&)>=OWjg<<;flO
zUbcEyDOcS-7;ziVSyyV=ntpX#+Jq2p2s5S+dC)Hx5CRS8k<gz&K%qV>;jKA6;1;=5
zUC787T-e1|HKJ}z_m!7N2SRN6toaO6p+_ZaVlE?&<uZK!!sy5;HRF_(cXB=KL|Ns7
zE@Sq;iM=@XP6J|A1L;l>1H3k!T8RIXit!=wWi~MMdE^<7>CFgTRb$_eLB<mv=gn_F
z8YW>2g`Lt`uk@xJdAhbMzdncEd~oYwt8lDvfL>a(nNZ}!T7->kX2nRWfuerk??E=4
z7vYh`xue6b*!I3bd?djs;X**%$+%SLK(xyOv+lwhT>r`<U91y-ty13%oZ+N2BFgM<
zFpOrXX(McC9$UXzvktQ>`s|2bNnrXAuzU(>`N9o*hCs!$bPpX-FTw7iVE6JXx5VdW
z*-9DUE!W2=HK!cJ&GUBnC~DFryKlSG?KmHBdoMU#4N_g?XCr%-$4(`pC8vYTD5Fb9
zn~cQ!r;Mfj!lBtv4m4y|v1PU#F6K<=P1}`MW0qiws$&l#kecpoBBgS^FE32P!R+jx
zvK=jDcH!uXprb6w_5`e=qO2*i+?S#&2V}~4%jiGnVknc-qnV1YP#C9QN#2y3Ua^Xj
zxAA@I;K576rg|m2Iki$h#?h^vmZW2jr27=aa+rG~S)596QWDkuuaWSuIIsxk#w$>h
z)~9{_fes<QXz~Ds;q5j6c&!OtD&eeiY;WFrWSy^GlSaPQ!k&X2U+2DD!!_V7Iiy?T
z(Wn08#Y2I7WC3Pi^%Yd<Y<<D}y6Q05=;G6AG<3S!5$GRc*U*j@51alLn3G^=BnjB@
zq%%FJJ9)1f!tMssrC9M>0CUl0w`rO3uC;y!3mV3&DdH9vfK#wo6;{t;?@l|DTGj<U
zi&Ya0I97RIY%#Os4IQ-@STnYR8|J^qv*r~TW2beZRxn^5lKnrnAQ+^z-ns|NDPQ*v
zHC?>plpDMUO)bg`Eh}Ig%AyiV3*$nU8T&7#s4pEuzF@Y`AydoDZPY*+o1Fdfnq#e?
zC_F29S`rG;mC9wvQnfZq8@}wz4;bM<{Y@gvCAMF1+zs;tN0LLmD2^i5dg*&wn=*)#
zS~Dpgb1=*S^Ur$Z48Tgb7b0;98WH0M>^p9&SoQ}HB_%_pAVf^RGT@<dttu&CKxId_
z!>k6X*N0Y68TQ>WU*bsk-iF*1a8y_C1><d}np<$%?SmHe<{s#`Q<RC*mQ5}dKZYCB
zAPzP_{P)H1>Lbf|4d}VS%kC`MClSkbX1D7@UhE*fSH-yWkc>&|6KbfiP$ss<PR@=d
z1~#z2mYty`EGq{A1Hpd`Zf<%(YZDV=K|6OXhF>2m2P+*D8|xot0yYjNIwp2zRz@9q
zAv;@V6I*8|f<OP6qDU{~XlMVwTp;FX=VJf+Y9S?hVG~yiBNIij-|`Q=vZH~mlf8kX
ziLH^xuN1Mp3H^VY$jeJFV`6M!@V|Ve{C}1?6EOcq_MZ?GO`Pmp9F0tzes>Z54evh>
z1_EYwrvEl7%J^%t{+G!_z{JS-Unc9X`QN>41WZh9|MC8AF7Ie(q-5f(MK3QbO0R6<
z?o2OXV_;??r1LwbXy<I;Y(l{BU*XFCx_Np3?<D@WZ2b2midtAZn>f;oTK~=#HZig@
zHldd`u{CoxCtzk`X5{7l@9Bq9yoJN$&e8i;kIhs6X{tcSnppjKt`y*<<rK9zcg{RG
z+319CA^eAvou0&SI10uyI=~#mI;_7$&9cGZH_({Jgda%LRzvSC!66xhK9@iL>@Rx2
zJH3eZu)`dd*9(cdsyGNcqx09ZYkKkt5y9<OmHor1Hott+73{b{GS<e^nB*l7bxYdS
z3XT{7n@;v2a8m3;P^ocs&}&M3F)j()-T^?ZFZxvEo9iX5$IKzSJbAFW9VJh+sq#YM
zL;kXyz<$j=IQm~u+3Oi*2%(D?G?bi!4><lj#3XsdCN+q}_rLGd;XjT~37E9ne}#B6
z4BvDjH^;}9>7ji$`)kD(NBrnm)g=fF1O^~4D4^ti{>t^@dl-0O()Muv%}}@%a5^i@
zXg&Ugr2QtzQ%WK7Rp-=Kc|?WQ^KLgJiWVf8)pH4Dii7Edj5q`W1sdY_+W59RkG}mg
z=Ih!{Hrsl8F89?D>*byrdtr@~SBw<-?fnHWZ|n1fLbYXEqH3nAt&QEDv>bS~Nvpy}
zgP&hEv_-|=w{99}1h#!9wu~or3a3mfa{ypPDSTno$t1;v3!Q>fjr@rtis$kLrsFQ#
zf)DPvlLyp-onLZ{Klp!L4blx6#nZ0Nr_&KXN{hD;YC<c@WuIe+CMX>Z;<HudXqi2(
zMx5m%!N@g-Mab})^G+|T8oY$ZxVJ*C^3QckB98H1Kb5oMw=!S^HA~Cq_LTlCCrT*S
z22_Yl1b7cd!QViy`GUS(G2rT9j{&B#M3s{37M;Z9U7en@E%=KOtyWU21?{wyPI8ft
zby}h0$6N@|c`*qUz`7c?wP?x4lA^P_UmC@F6BSS=!$a<G4Z8RDnh{4jaR;Lt-|8S8
zZQ{-a7RV|*DboC?Zg08$$w;}`DccOH6UEYrJN#DKOn4|(%3-V4whtJY8;!}{Xtujq
zhm6eOLLh{Ucr-+7C>|&0ko2|_A<E0y&Q68>{LV3VMP=Ehx6=fgq7^KTTCiIE80zdZ
zpD%5xl76w!=+Mw~DO0kL{u=>-w4h#tq!raa%EFsUbuqRAsZbDTq5yTMx@R0$#hT^5
z6}JBkk~HmJ?ky9B2i5Qs3R=ErKJw}XP^@btW(oO7AaT*8kl&}-tVjr47|WRPy!XRU
zvNX62LmQVGsXzVs%VP*{ADK4!{IKeDM6eaia(bD}dHFW`Ddj_@X$jO3cO|T5uEaP9
zk)bX6lWJJ^HB}Y^9PZ`JOIPC_^dfEr!2|naFvc@Ue{!vj4BV2JcfM%rNq4`a2YFE1
zSq_AP<jlM`3gY!HYw{k`AxoS>Pvk!kc`Q533UTygb$DcKB)m}7WmgTK@=CFEVI{3r
z2b7`4g$0ng-s(*Mr%Y7)!t!l9I7${MhV@$y6|a*vhhDkGZ_QaMLtONFQ)Dos$c9m7
zh$ThY9-g9gEZ<!$cyZVS6`5+>&iK<+biB_s`1<h4vUdSE|NR<@UxX+$N-zBp&}UZ9
zloOb4LCK#M7D$4rM~ihePqc*(0!PH!bc<=0!bXA$Vb_@q<&{DVIhMp_Qbc?Vcr%Vv
z2Nm}#yr=i>T}8NM;#=3CNuNGD*QMGMFnRCquIvo3ITm=es7rQZwW|q)Z^h!b{l%o5
zm?GER2O~S3qQCworXp0~xPP(wZW@OG&c)qEHVkReahWc4BfHOb>2Ai9ALza550cqd
z^z$9|mQsZko_~Eqeg0hM{bHC~+SDLo6wmmA+@wd(`0YYlAQH&LZ6xVRj9IOThXcHJ
zw6Tmu+s+Upnmxqr2t<~%=Orx>G}%Qz2+c>bvmP_r<5U?Hf-<)@42?l(=dU=?a$6N1
z`d`RE>o)BsKXWx~c8VxK!(7Q+J|UdR(Rz*}4O8+<KD)?Em_qFc9rRcnmj#_pZc%nC
zT(c)dEW`#DJtjhxY_zFeOny2v93R6aqDM4L^_<=%ofXoFX5aiiK6asP;ZQ?Ic!AD>
zz0|;y-P<tV-CfwiB4>~Kw?3-byXw=6iJfML#$1;cC->15r=4&)U=;4gcszxJ2W^1)
zcrkeuY!Lr<C`z#`Q&kMPyxNGJ+*nzLcrUM-e@U>}hU|91DNp*+m9lq(f}YeEwV6b8
zS0FbQuZQ@8mzg*s3pPpPEkQIq0xP?M6jze-+PlG)2zwvMOpzr-<Qx<De%D|k3x!EL
zMI((ZOSDiNr?L1j4EMndWE%^m#PRS_Nu^u7MNX?P0qlHiz_z7YiFP!=T~g7|d)Pj)
zR7CwdM*x&91#Fmo>ZnEx?uqRW{BE9d{2_R@@N~VC%6)n?o^jO4tPlF@)t~o&6J;KN
zMQ9`buElrZf}Zs9y+Q|s6YJ-d=6vOP?HB*JjKM{?EzRv_wvsAwnJ&9O$THZ7l4MXX
zRTuE0OwLnZva_yfKLazMcpFV6A|`FPH~U><tZCM5(6d(40KiIk7Qnp|$8{Ft_)&K0
z=*mr0F~*Y9fS)_jDBCyB+Yxh0a(ammN{UBa1LnCTIt(4wkVU&n_PTuf{?eBFa`;M5
z`u*81kNiqsdau4_ml4G9EE*9#7-HKvv=A3UK+)<6RPIqjC-p1ybR%E8EY(46=nWq`
z6BVm!lWj+;UWLJ@T)HEW5FvH?^72LHvCKIV+p{Skh&kdOX&|sa+%f5nY*HhV(n1pv
zHZY9U6m`Q4bUcB#9g$n`l6mHZ(_;WaSdf%?AXM7ik_tR^A2aHuDazG6aRP@Mp+Hpn
z$c8r@9IlUig+`Qmmt7!ls46*|%%Pb$&Ws?)JI4(<Ei-_&FDJ82r58-cu(~Tqef7Ko
zQ%k>77VgeF+Gxw=dDa_Z$*<m4Y-su}G!`}44+2B!#d1&65(FLQXYIh0nAD{Br}*)&
zRbPNvyXrK6(t!iGN}XQ?Ic{@JQ12$7i@5Plpp7`C5-m68P&qftw+T*|LV#S27r)#n
z8^R2@GcUG_{A6iTonLF0kLu&@Q|;xz>)*Kqc$gJ|Z{Sxsr7Q35@mR#X54UZ<1ELv*
z>SO_g|6ycbj+z$ZnRWzXPq%3SCISy`_yHa~c(UDhJsMy&%m1aj!ZsFu^~pt0fgZq3
zzALr}z2RAB;y?~*Cjh2k0sCjwH!+IOKr1w=PXG3IIM=A9)9wbdYT*IW?q8U0knkb&
z6uLJ($kGH%Ob#SA#w&*<*q2J&i^X-DzRIK1&J$4-c;-?1u=ZLAP$wJH1;JjRdV(H^
zaE^Ea#YR2Olp0+OV~*1x+To$3u*WI<`LC8*zMRrGyKNo}@BuhWx^WK_Zae2qn_7+q
zhlW0^yLfNZ;^LfoLN^fhk^nBP(ufB}jS9lsJt4Dq=wh5)G??%O(gN1A>~n;T#Ul=I
zLiteD3ESX8P5KJQsl+!ufz`wyX!_OPww5&Fte41CXA)oIEsZe%s8+5?Pdkux<p^Vz
zA<$MZa&*M>!{+(LBcNqo^W8V3<j*R0I0COe{8w|Z3RdmI)L3`*xaB1zM8NAGN}2k?
zXc{3SdPmTCQRE!l$`B(XYY=xhKcWea`{4X*_w}Od<P}K-?oejisZ=6i3IjdyV4iN>
zqJuZDRBnHikiM%PSRk3FrFHO_(58C|{qfOr$pRKwIwZu;oQ5|}jV7l*Hl2o7Y{M{T
z%!JEm^v8t0<u>9_A1G3rVkwtSsapiQyT(%)`huAD)KRHDGAc<5+m*6VX&f2(mW6>v
zG6g^q4hFm}e4W9!2c-t`x*;S68d*NF@x*H6ZR@6Yk0!NWOl*Lk3b=!eQlAuq4tcI}
z;?*3hoaZBBD9kq}Jrx1Uc%$(pBiqwc)Y<UJ2pqNI3$F5B923|E1+sE>$`<jtU#p@m
z%a#+4gMYQ^wl}A#S%zVH7a{~(;<IWb7cmfW{$N2D!+Zvaf*}z*H`wGCP-z<k@vub;
zI6o=@cg>n@n6eIs-3vd6dHQCY1n|hXnaEixa1tA_kA3RrT-fSIIZ&4Zg2Ja<fYg0P
zcu4+JzBHKX60yNJ-G*?`xRsylL`IPHGBba7?E(zBkoF2X<*3JO=^3+W7AbiU-8wR6
zr*fp(5{Q?IO?$Qx(abcrGz6<9kMjj2ov26e215az=itTT*P3hvdcEN4p)j)3X>1B5
zPomj_Q-8hs(vdb*=BWNcRq6xqVyf`paQoWmauyLL@>2#lCeKka2nDLs9pVeMc>H$Y
zm_X4S2n*=hZGQiI?YviLb&lyuDSBL{lJP46_^(<i(-B;Vz(^X5V8Aa-3RzuL>W!IZ
z@33AEjm0d_x8Iu>k_GVrX69>veozxYCpU$;jOTv>761GPJpCU)#s5NL|DS@2j0^<7
zVC}!K;{S`V@jsdQ-@--~Mn;zZ0UHf<r5vZzi9imEidcNOlt)P((ur}|IMKCv`x{Nc
zs0ClO2)a$f{`R7=Qn*E6&AoLeqfD9K$g~!+`sP8>9g4j_y38!wAXF}==y5nN;G5bH
z-Lj31(zA*AxKjzQ`L)h*hT6Q9K;Jwp)+TQg2@0{nw7Pp6ZX&t?GmnbLC7X$RanmVZ
z?qqap+76MNj~sgezv>w=%uc@dF*col-Is-N*Tm{BQ7g)vFnB`rL$L=%Uf8sf(o{iz
zlYI>1h9QSWOzQOslK`wA&vZW*Z+Y-1L$b!o%kC-Q(<uuy_eXX@_R+oM`wv5F6ZiE`
z>y@#cI|0u#@DnJq;2Y*Q@vxVnFAOC=BBWf~<96W?T@PcxDkFzUZ^~V6Or%*tC-IBp
zvq-KRo^{>MedQo{_4mf9@7I4>V(}Z8X3dH$QIs6mT&^p?oOJL{M~t$SqURX;OZC5?
zFxS*R^*QAEe92ya-z4q|74*BBk!Mn_XkJfoSbN9vFiX}R#BOT$xmxKASsYPEF|Y_%
zUSzh;BMj&XW^fnmv%|jUM5Ql<(i#k%r}9oF1vD_33OO!`M$2Q8%Ohlt8N^}*|CN5~
zWKJZ@Vf%pWzIF@B$160u<$Q6Ci&;x@%sVv`D_d5F4itPd2}#`mIbGTmoZDx51)X)*
z`@7kWjqx{{SH@#O#Aah5^qah-H+NH{-ACZnvmFFhTeM(vmnQ~5)oCJR+cSj^=oF1@
z<}&*bd<Wko5Y97hKDxaI7!g9V)iByaO6z_)jMDWM<TexNX$-(ZRQa}l?j3J*O)j`d
z%0Hut<sVBla<kK#v%JojUGMZcgoSybi9h(!4HWkiKyh_kpypga2hR~2qm!#2sAilj
z+1+X$eyD5?zlznAx(}A{HV_RMmL;>}AzMUXU#186*q?d<*4U;4oUnh-cM&@xD{&dr
z5QRCJIm99Z5hD#%Z*tz`bHq?kcUTNkksl%+51CigB^#H#V)SUAIsF4A=|~7?>IMFH
zv#JKhIEpiKq;qFs^f(4m=Gzy4ZDCy*bbD1zVmw9BvvK&xM}hdc`PpXLl*>nwE%vp7
z{Sm|HELZ3^vI={VM{pQt$20G7#qcfMCu*D2zkp-g4EN1>{B@x-$}tobcuZA1EktS9
zy%!?{^;(LNyWwUgcNMvUdH4mwH5Ol{E@tY=dc>ekPu}|R&e~qAPN~I|pbI=Las(MB
z<EX4D|Jbk*PhIU~{?rE7m90@r#A!X(i>kD@wK>Sj>+)xL{yVi0U3wTsq)#)zELp?g
zi2Z_jwABzGD2B8B8;L_+ItL$L#99M&&bTNB$zg~1$!2NaND^mD@siQj-Pko?7p8f|
zvHjYYlEe<i;;YiN8I%l)WO7rO;i-LL)w?yZ*)hUxD_pk9(K9V8lD)kskx87eKszdf
z(@&=Z!2~sl-5zM()Ure>Z_CJ$h}kN>K&F({lV`&ok5+7_10MA~mb{z>+o-JN^}gi~
zmJ^*!k26fl(oDAc`rLc7MAr_C91mfo9ey+H8myl9eSA3y2#*UME*<ZFiPzWvM9mcU
z2X;ci;d>ST4o4M}#-{pE-f;tFAr{DHlj#w{L?*btw2jYQ4PBG5|BxmZM*-$V42P0V
zVCSHs1aWr$%tmo4)tn<7yYFtdf-qt?y__~xeeutw5;_LgJO|nBSV{^Bq#9>EYu&DQ
zFgHtrvX9Vd+!ld~RgAaIHP~ggr^NO==+5`>=E0}$yGQtGMz^Yw@-`CZPOD)FSx3+Z
zMUuuY)g>#B!a<>CYlH1$nC2JAg26tu=b&(^Dv4Jth?}2^HGE1?JQR+5th5}$mmI$}
zN42msjR}Euj_J<C2o_3@w*Y}8zOE~Rw3?*Q_OIyGEC#wYLVE?5mRLS?NztnoYpY@{
zg)sIn3;@M9R<GwJm1P(#*AuM33&AXY^h`aKbDrANzvUfGhz4*PSlE*mPtq<N?J(u>
zpP+s=HbjIoETw~oxH8*kEx3p(Tyx_7x?r%653}cu&tpY5%W7gu%}(N(#}P85QPq)1
z2$Le0V?<Sg+U)TG$0W8AkO;XeL^oN}D7@5dt%iR2ad))c1&*loU)V+Oiyx%SphhH=
zk`yTvo)+8W-Ep9_!w6Awz=J~^fK}K2@P1LOnR1dZL#-Oi;mF`uL#;vI(uk939k9m7
zoOh&%VBCBZ0{+{}aDbK@tfCc_olVXyDA20Z8M&8@ls!{*Mea*?fHNHMM4nzbRuPI(
zZFctNrd-8VXH~Ares#c`M$o9oKe<|Dt>1Y}+AT$w?Dwempjq-DwqTj~l0i%%Igf{Z
zo8&#sfQl990Q9fi_i_+n#}(Rk^B>l}yYo|SGTDo_%G#LVJ(93NB<HwbC4g*#LT`}y
z`MEwvJL8ZI=Bn(5gG^VQSRH~@axXh`{u&;FKY8o3I(f)S3oMf%qG%==wVH1u{Gl<n
z4B(;A8N*ea9MthRN@CO`YKox%1YpM=kR!cJ4+%zY=e6;N*$E(u(l`hP&>+iJ*!keq
zzuE3!YisQ#R+!Al1hyfi9@Nl1-Ihz@_ex-QR-N_r5aOZpA*DZ#=y4k3^w{3rrkRg6
zD<Whtm}68VP+wJMg>?8B<=4TGzYWIv>{2jh+X_d6A%mrR3J+yc7cH1dtXnS!2Oe_T
zA!onjXa-{*$hkdW8j7tGow}TQ{;iZfEXLOS-h5jZz;gC~zO9XX<f*K6w0A}P;w}UC
z(~nKQp9KUY<~5o@sS^l=Z@z3jsIF(FBN2V6+>@qblkD)l_htFviv!`EU5fhN`r=8<
z0k-?IHYLhclmYh||J(HO3-d)HY0?pc*qNZdhV^M+hkF+hrg}qS9Y~<yIO6au__J7Y
z(j>!|8aY|I|K<8TTdi3dG5C~g{wsf@h&dz8-cT~n;$L3H=GhSD9!O+T(XlQABpRU8
zRYtJ}Y5=Z`Ri*#fEpklqY1Hc`&jgnMdOmaDq6{1vZCov&HISffPd>me@Qd>clDBY*
zlfyK6XU=3B?5=%Nkri>NNKZE9Si)w$#s@5B#b`YPQQ=Q1CM!$W)Nc>y6*`Ts;8x(`
z1qr_do79Mizy#apx)>V`EEBU7f1&uKU$jA}+rcWw0j?5y;?%dWD%s3_pRdJYiQ!ft
zYq{E5aKTWQZw66{Kz&<e^Om!ma^$zDn^$Zp{wUuIV7Bb-=xi^r-~n?$L0f8_Rrpwx
zkfl0#BG$#OzL%y$o;Yq&FTFj~Ee5tYTm3A?2htdS1&>KLNMkka)0Gz>ed%HZd{rDs
z{m0vs&X#5k9d5Mqas3iTK{$dJt}MXQ;K@G|0ls{ni7d6gt*`Mj{C$ftMrZtX6!JJ<
z3yDvJ`A;(Gj)#zHXur?mmebNt7$wk4d!Xx!QestS?2KlkAV(*~h)qMe2-A-@x^5lJ
z7SoQ?pfs?W`(#=TLXJn~Iw`{%#O_{Qo}x-ilX$ope%aY0>lBP6B01Z>o%ly7^W)=%
zoQ|vi)(lGCEHbv_*|BDmX+AnYQh`c!DOkWkSiE;D%XQ@f`3sLKSmguLU?WrA#cb~6
zE6u}PbvpKRr$&4+_-@=kAi$lq2a0&hD7jrCHUWu>{)ydFl_mzka77=(6p~-?oa1r7
z<aB;ZZsI;+u>XEmg-wqGkM9Y`Rcx=<f<V%8Ep6d>6)Zk~8c!TJbI_d!ub3#*UDRSl
zk2~mU^TDEl)JoolQuAA|mC-{3el~jnpzxEX!-iQqgo-e$gv;`vwNhFwWmi_A0ZJHW
z0Yd_`1ioc1f>;StQl3CCe1BMh`|7y(8`B|}luE1=!CrLXENA;u91jJSTLvR)df(r}
z<ebngV9`l7gS<duo>5@#XR)m<qF~E#7%T}utnyCtChbmATG+Fv;%*4jV*Xs%jKyYO
z5p?l;V_L@(Ya-Q{SVvJXlf(L<e5yQDum<1i&y6HK(yU#!=Sjn%X3%OyYmF6DR^mi6
zjd|j3yNc~>^i%3qPyl8|nFg8!)WL0w`zqXq?n)1%)+~2<Rou85^~Mm-Vf~HP(X$^T
zl5{hC62wN56)_**>v8^Kb+_F0<J*VaZZ{5Q5pB3|gwZE?y^lXa2D@AM*QhMloq%n=
zQw=MU{M^ObqzW1;9<@1tP#s{mL`bg<dpMJZO-4b^leFE!dSP4>wf=}LM7qIC8#hb>
zjtl6p!-(F8=E(c(5XsoX)KXV2LKEhV(;8(se5t0TR1tuq;_1(U#^V^eJq-r9AJI<u
zOjjyKIZV2E7JRH7dE4O8-*tg_eXln_O#74B(?&;)Ru@M^Mo`e}Ki0}h1I06*;aG+h
z%HMc>)-^<Z6wf)X(Nd1wbTCu)v-5+NnT7gi8%bXnJQ5OOXYY*H;T`jyY8r2aq-14y
z3+(Klz83iDS0<J2*L&N>4;7o6`!HYK2843`Fv1YX0z5gnhMB1@@yoVARi4oSOz>#e
z45MxxTcNYe@hBUEU+G~D-4k-y%EYqWMOnD&!HC4`a64eMvaRj?`foU<J4x!rU~h2U
zYf2vDmnd;nfm;F1+yo!vql2}NGGgfP+%ThQP|%O!gJ4h^sfekZRZgu;7WN;lfu?1j
zpG5PjMVRL;)YoC43U7qvd%Ac3Qs5F(*7hhDoTwAEtqy%&mXWt$r2;-T$Md<!*$pDU
zO)hD6qXvWMDRh8bLEQHHJKE~!%vf5<-m9ur`}xDq>pEX54GL1Vt$Ta1<ol0OC%1+m
z#J$VGS+C^<h#2+CZa|`m$9;>&g#&$e@9-RCpg+||z695z^p$Rhv;+e|i4o|dLV<8P
zJxhHp-7l2V!m6PNLgN1FdTN>VM(;oigm<ADtGM_x(Xt*J;>N@4+M4`J)9sw?w>vG6
zo=n*UM_%}-NC=)NvPQtn=_BqG%moVFUY_J-&L>4pQeTo4wSJs~?S2+$IK*i!rF5P@
z&2q*sB6eNKw5{zcMH<h7XD@NE-uf^RFU)`4J%*+q9b`PGAX#MEm?|8nlywcbJHvw=
zgB?r?=l5G7soESni7GKfKrf9L#j+M#QyVr5-*ajPS+7h<U>p$-AA`EVsn8wU4h5Iz
zAhgz7=p?nLFxx#qld3us)i90_W)9ocl|_r0S_N8Oh%l4%GeW`UO)PK#l&DeraUive
zIUN|5ccuTX4mvt(m~;ALpa^??C@l>sGQ0bvhkr_1OPQVnKFJTkpA`-`u{N9WF<qj?
z)H@<vYF4||(9L7eMT<n_W*pJ#cUq7FkS-o^tc1Z%Xb=y9^sGxM%z`XT{<k#)CV23)
z9t>c6j3nC82lq6!*9;vaTu4I%5%+;GoE(7I8152N=>kqI60@1{nz;sN6Pn6GEX{`W
znp}kv7k!8ibq-rYD1UHtO~AuxU<*p$TqsjiH{B?+aX09r)x`V5^F$+=u9)qwiwNBP
z$N}^2zXHVF-uG%)UFX-wT-1oMvyY@#7{^Bw4ycW%|5>HxKS$&L2bCI@|5ow%|0^}W
ze1!kU0snt8^S`guursm!k4lY+JdpPs?x}T`eclfjuYI&5S7&46P**axO|FrUjsH#h
zBg_fYRK>_<hm%ecr!tVYvm4R+=XqQ+o&Wem?u6D<wq;@=_}sUS^Q+oB+Q6t*%J_rr
zdXsoS{?6q8Mcq3E$r^53+GX3eZQC|h*|u%lwr$(CjaB9<SFLi_KD#^4j*cCDqJLbR
zyvmD=@8Zpjc*mSM#xuOLM@V-U-J^J4=CkLJ$?k)xTAncqP{rpvv~MDdedGin6LQOt
zMa)8L;jl(?sHqG;B5Uer;eo88S~vxUupM*&3ag<sfFX8>WXLTXYIA(xk27kfj}%kv
zl0*iCEBraEb)a<XItRH3mr<bj>HY1X&3|Y1)>zB`CgAZGcEjc85_PPS-xT20kwddY
z4-$v*CLdpQP4>xa3B9|T{|v=V)$@J>d?7A`1t7Lo$;X^-Vzw1NCpbOV;}DRPIp51A
zbjcZI4@8|*N~6M$m-G^{hgKwK*Ot0q-H7(tMR!;1<eaK53{$qRvgK5Zji=hS6wVsY
z4TtpT>A4*~PJ!m-gr4?*5qv-JAoImIhz<j^&HGF=z(-3P<wlYYYfZAULo`V@o7(-%
z31X9RKn*4+PGinEjS~Q;Uw>UfIc_;qIJd7fC-~s8FO>R~Ak0fx*m@I9t#FAFSY#}H
z;KLd6Zedl3M@1>|ApaSNf#yIz=Yz^!gO9BCia<G21^2SebegtSRl@QK5oODp{dZD*
z16OlFhgHH_mDkQEp0i^}$l~ZL4*>NkwDYj&P`B#oFOiTEY<{}32*+f^hM^!Xo__R!
zZ~EUMILLL}D^Nb1_usGkMk3eR6bl=|_&gwgo?8M|Dha+AL#1uCdUyA-=;UE4dAp(<
zn9;1z{cF#2+qYf?+zDhQSRug6h{y*YJ82U=JZSadsiGQb=cV2Gth9_ViO;Z4{?wzn
zg1jafgPva#dA?qn(+m6=Z2*KM@fZSb@Q9TUEpsGrrKsO?_9qb7v&UR7+ACOPdk7(U
z9HG#oavhQmIiZ-$^l7xI1|MPxe4l(XomIG#zFF6jD4a~aaCw&E`*?4><kJ_)c>f@D
zH_%M=MrBz)MSCs=Xw$=z6(_a*C40TS4ymF3rBaT+HBBNNKKD@wrmikmBJHNmynGIB
zuLV|{5;->#BNGCGsC$ia&$x?%(XL-S7OQyyL<j#aI`ZLkn4pMR=PU5Bi+44nn?`5e
z%@fEFbV;$3i<gr*e%GG~fr_RD*pms{XU|Il#Qn=o?)B@Z2H^E%ZnWoOA(En?&Zq-F
zNYZS`-FM@A5IpsaKpF{m3-<Axiz_sHebTieEGh5~TjmM|Mwz8U7UKmD-;|f$IUAU0
zEUPggvK!#lbqs?Z7c~r)JV^Jpk{~$7$}kXp{a98rFX3{@-Sh!KTW=}&M5VA+ZMB9)
zr?cn|-RuD)2(tFG{osK}JwM^9z8pKsCUzVt!$d!tdC^?^sS<PXEn%J{?i32deH3@3
z_yIm!l1g_NkiSLb#*zm+8rdgW0PMxCk=c?nz;WSd;ULVo_<8Ns=(jK5EI~(KxD%B#
zWty4|ezuVXwlD3pqG`y;*yKSf0btfD3;0ZNnQjlL7<z<2%JpqUVKL@F=R%l0`5#oh
zY14~kw2A)PKLx~m^g&IfBO5tZ7A^&)$vf9F;~8eB7@X8U&5-<1wb3DD@tXxvaT*?L
zWXm_u03D<DhCRg<LL}bm<?`j6(QGiVJ{RZ}hS=(4QeUCHDzAw55@qasYF#UsYF>?F
z!C91*AN2PPcM@1&D~ci2GmVX=*!(?tp>+?2w|kll7xP&VA60tBHjyJxKh+Q3Z#c2l
z<6m+7>AyG2cTeQ8C%e1|d7O0tjPRp}b<rbjCxM;N$`m5a^`c+=O_78W{IO%n{cjC%
zksuO+mQ=PEQ(3sUX3RzMAz5WJHuhM<jfseEjPEN7)?>TjZ4W8EWPS9Q>^&TvXK8l1
zgd&INdpD9(U=>4^eYbBoEZWC_?kF86PfsyZ^o8#kPuIRms>`=#HG7fVgVXI<!dYVj
zP4x1$iUPlRpOSqKpC884olYPBGG5(XfCJhzQF!&11f$4(2X~bl9rjO?w8W)>^ZZ@U
z4W9rpjfK&^JIYzgkih^(H;Y@FfH~GZW4DH-<bzYzEQRA{w4IbKKoeja$J7{N@flf%
zu&kA;u}cqJ?)OP_>HRbPq3oT!e7NR`QVFZ~DAfqMl8+t|o9xa#3zA$bFK?wTH!;Bu
z6z*+g9Ny%AqwQ5RkYu_6ddUvK?I@5&0dzE=uTqjn((Ub&Uu*?^KoD3iK(tFLTqmCi
z4h8@Di+jFjahtGwKB4^dlPu4s<SiBD>Y&NP;PIf0z&vSsmb1+l9sltY+9Erf`IV3f
z0Jusp?Y&f{3q`gi%Ia5TIg8xbWvoe#8pcXuk8=CG(lkG;G9f_GOl!P=>2ok3FS5V*
z+^G=rY*>m?-9A4~Ogtm%byGEFj#QiHc2vM$U!UVFSB=c@tc`2RCSRTdKSc-y8v#x6
z6(!7x-2MF;ke3#u%6d9e_h_9oUgFj;Lx&j+M!MlbLpLd&q(rVv;ZTNNM=C~$+n82$
zfut24d1PPCppr*tu{4f{{qEm(pQx7+0C+BVem&F{-+_m=cN?2ZU~c(-efo7yUH4AD
ziy8-SpwV0^YK-nZs6X-eVO;XHo_fRSv(lKuanR)Vlb<VUbwFxwxUIlc{D#0?o)mQh
zsL6k}?<7U$IWg%<cey7P)+%wIMwIxs^|LxWN4HzTVgwh$60Bob#&>d<PUtgf)`LN+
z%lyK0jrCLxZ<-uB!O-NRf@foOlv0OqCSL{`<pp?8&{EcjHV-kU0PN0;75Bc9UlP4r
z1Vk~rW&?-@lKMu>-LjSlEb0AtC2b9>@!x%Rt$B<z;n14IK4q$#X$&^ZK*;*XYGWiR
z1GTDxTV4UA8y_dz`G-4{i(#n#w47@Xg`Yxzw5r@n%b6O#R!)^4yJj&W;j{yyFCfuL
zb<#TN?;<wL2x-%O7i+N#d@X+(OYz?WiqSLV>GR5h4z5W}(u0Co@U}d300BhV=T46=
zd1uIT-Vqh$PCLu?nG3sQdH0XJ$4@qI={|?}o8}T}%`nOwdjgNmWguAriYsZ}=?W$=
z7;IzCgXn<M+AwP#3j@Rqpf_tP{bY2``17BHVHM*c?p$hcy|O0n-jgj(x7hs|6_0(A
zO`vWPV2M}8A&l>46=DTZDf4vJe{(mR$t`O_fe2qeg{_Xb2-u)_`xidgtD!%Er<%ty
zI;nwaj3ggpIH+1+#6rEnoWR$r9;^#oLxkmdZBKD3&YfZ?hd_DK;aPVm7C=zc=S%Y^
zwsbEEDS(`=@exi<+0~KP1Gm126bgg;Y4L2o`joUCN+}T&K7>p^MwuhucoC<k{;~v)
z03VFqGlH4HeGxwtNMY+5iKu25IlQLRCi4!SP4yiUK<ns&wvPM_|A@wdctIoo3u%|)
zuyQ}ojD^(<1eBS^_t8UrNs#i(RnlUzB0b#Y8gMb1_(6gl>*|#ZXf%FdKqx7&t^b2U
zE&{4nGNfgij`>s}AI|lR{zX*u8CZ=h-%!Idx}{eyn{Ue!FKJ{moEQ*D|Mx<t)ih2+
zx#nan2cR4z%~Uq-l|p<jehiA=LLoFF^h+cq4Wx#yQhIWXVZ4`RdP6)Rg@_vhc9lNM
zYr%qs%RZxFpSZ5fDnT4Ijh+DZpOG00<(6~{-De%)z{9K(_<KX8+VhLbRj=DD-Nb<0
z2fM$Nl+I<9lgZ5#(=56Y@V$>zx%g#kc8gs4LU`Z?=U;_8IsOJMW!=f)ve;~l+xFWk
z5s!YsV5pO>LVP#SRsFr+&k14ryauHm2;%o=!onIqTd!B|cBh}BEaTC&54}4%mA3RY
zowj&f0_dHZkZjPuaN8fFA_&EiVChuNxAKO4P`((Nw+=kwJ{)Lq=O-^CwaY>|3-^FD
zr;5efGt{5x3L2kxM~%ByQCFi~9jHNZ9lHZ~l^cKtR`bjODiP{`5<I=bpp^SCZ7at{
z@-mlhaJ=8kbH(_8HIn`GiJNRDCeF~NX<}}AnCqIcJHoVCNUc}09D<kA2ipWu%3x;K
zql=b)%q(2oL=>%Gs>K-hNfhbD@H{zi{d0AmhzM6GRfp}VjfOt@0_RPGSK4}UA#?c<
zFNXk5LnRf}janu&@B<ECTT(PE9zihKO}By_3i{}UAEc*6N5_Os+lo>lBFhn95G|F3
z07jJnG3YV8eO{m-6{poEf!^#1yK~$4lst+%*H<+IHfne>CEu`Pc&fdA`1pqgXpCns
z3Jb)%xC%MZo3+1A@rR~8b|_AqjwWNumld_}JLl7kK%=f$Gc?>hL)B~PAAm$Ea`pqd
zMiRC~u`O=c=mv!rTO(jye692>rYD$$qS9V76M9R(%Sq!#&^)9TeT>3D@PMbW(qlw`
za3}<iShbRh7Isx!Vf)*gL}K|V*TzHl3v+EEP25-$)RQBmhWJ<ixEJ-vCTG_lu51e1
z9i~_ljH4wMsF5p3(J+Jfde*@@^h|Dc`A2taA}|OlmW8&A&DUfT>(I+E+-7m1{K3dX
z;ZFuy!w2a(Ldi$7{$$Kpw~%UHqj@CIiU%38QHv5%g9M@_d485fUF;<v2-tj`Wp2rZ
ze9zVk*VfIQR*ZoMm#HK9U{ypBdZ3Unlpp5wojUu@cf3k_Gj;V5TZF^+wrcEXIRSIF
z<6bxK+Ar9sf&KMdcp}vd@<__v%jViz6tO_!w_0N(zJIhwVS}l5vQUy~K#^yiZS&=Z
znAd5`-ilHRkDwj|ope-s^9DKn*q{N9#-Y@53>$@oQ=(sJBL#9quK(IyyQp<=D|S7g
zK5vt~PvthfdQ6Rvjj8+>E;`hef0yEhKz`DT)CSS?U>loVxYzp*G?C$~LLZv7LKz-G
zF|po-iChtDsKUV$4w{QuB<4;%I>NN<Z4LCPz91FwDtPR#6cHm#2tJd5z({<q+=%dH
zf}zTcq-|WkX^o>!AUeHFMZtxFssa?bDYC$E>P5+>S26={1zh}=fF1hsj=+9F?-=A!
z<y3TcBnC#wd5O!>7pb_dreMI_Ih~#oxk+I|7AO~Hw{59KP>jPU)9t~Ff%7@0@$Z5o
z;BDq+6X;R}G%=8V{u+z6BN&nWF5j25<4b2$C{S_)E;J7eU3!<GAIYGIo<IF~#JOT|
zeS)((Q8c)B|7RYsU3-g<`d1j)FA4zD2%772yf)I59Vz4_%w0u5jrOS(SgsDqs>im@
za@8i)N!%_TI*$9!%af&hpbY_r+*yBa9d52Gq?~*|;d5oC+yM5;Duh)Mso-lqxqF3E
z8bZH=3HrAnO!2!%Lpw4g6!j`omUa^Y#Mrm(3P1eT)AqxVQz^>Rd(-KuO6vSV=@I&U
zRW3i8u9@qlg`thN4xc>+ZcJ7qMCVP9g+d~APj@I}A#+u=^{3&t6OuDSeN)-Wy;A3Q
zWM3-$C@sESJ?@#(OV|)Taw+TRnjTq)F^h~`-#T9KdmQYx3BN**Ju@U*d({_WaHM?C
zcP%SQ-i#W#*si528YtR$V^x!&Gw1+2#POM5o<}TNz2${WsE~vJKG`j96=lBYgjkk6
zv@X66CW2Tg_siE6L2oZq6LjaQq-+EJTvVO9lhHjQ$I)WLqQC6f6C4$l5ms*KLjg(+
zD80=#{ON-clv#5!7fup(Y-9FzOLt#sYLPSPd%luOhv$e-WFGUIAg9%h7X7u-5sFjb
z=havO?K|P;tgC(va&8;BQ3|eRKV+Xlew28TnQwgQZXzcM)MP>n#MIRK@2)-8SR@$`
z^4|Aw^^vJ~dfZOXa6X~0DwrD84<MK48$;g#iny3n8SZ!F;d5u}qFG#$T=^8EV^gD0
zt$C7RIL4Dw$#19Ats^a5%UXV4)~H3HSxun7-1D7u7P{fS_d^Ij(g}YBqYQ@-tr5?C
z>DrTX;8~E|{?2aGVof^2lU1oS#1=|)`o<D|(YS~{9?xg%5&A_Ln5HABEPsFuOZ=Ho
z)Ree68o*G#nxxh1?w5VwEV;W>G0!?|FHqSIN*O7Hk3+GSqC|%z@_|^I;87^jDtbA;
z=Pluc)4GGdfjuCZkk>UT@m;m`@z9I%9Nu~24+$W6B$Ch@8EZ))k%~ZdyRQML*wO0y
z%MbebcF9T4ahGku&xlrp0Q;_Rv1{j{#6=YyRE320=}esD<TT}}k6YtT<u5?Fk&!JL
z6kbMn+leo<Mf%<HmMeJJ8D*Hz+Am$ucIq^~)PPabQYXw)m~8m!QdeeiygG1yh{pb&
z8qEr5lck&OObL9>%tu`2Oy8@IwF1?(kf301t{8YiQtWO>bE&<G+vl1DfecU)NIUm>
ztnM*p)E@lLT_JADY)N+7Dl#h=T5Re>G`o6bx?{DsFyl_lF$m=PXIh<sh@A4jg!}>h
zrP4LJKEDWV(hJ?Zf;>~s2G$RRlv20;-OBMFahm@JD@V5fek;fS9}QvuIF0{u&B(~c
z%J!dY#wbc)4QHnHDFW1<aDSnWQ^CL`oVYhq;p-5cCtr108>k{UJTp+wgQG8MJ?>2k
z>~DZW8<F@e4`Nxcq*B6EC<QeAEA0#`6w3jDnxk_H8D@o-Vn$)w+%AtEmt>UhJbq`6
zLd}AXl)(tOd#t@xPt6!noH{8qIpe!}dU>|<d9CK6{g9t{-0AF^k&X!{#ut<cU!<h&
z``trY*B&5pnY6L;X*FL$5{z@%!pD)`XSJ3v5{Ks-Cv{W4Q7@>uDk(4HNTk(s>Ji>t
zJ+*{+@QtGN&RBCDZo-$7Rw^N4^YsAjf>RoLqH;dN#ijt?zT-P2yMLQISa>(?#^tNB
z)=xtRR{;(9CsEQBd`FsT0l;pHPYW=}wT5hzdGh_~V15g+{3zzDS6pd-|D=w6ASCDR
zJhs&-=#jax!V(^cK+Evr9HMpmF33ss7y(qA?B~6_U8t@_Nsn~JFRfp4rrvRYCE2W3
zM#Z0rgUmX=ab1xLSh+G=fHYWvJU1(36<d%)dcv<0OH~mF#Ln12=`|&v>jf=`tv1)o
z^+gYGfH}B3?)N_Q_u}1Cw5A=PezzmHmH}a6&^>8my~?mdK0N4JD2j#9u%yO?jTn2#
zg;j!wJx&9+!pF3uCzgvkx#&y!>LG;1X80DXW;d=Eeb@LcEfKhOI~&Y;Dc@rp??%d|
zYEn75tr#?s=fXpHE*`rOU}i8xn}#85N5Yzf9f)60&iu+<-8>ScDBU+LLoL)q3ujt2
zjyUFj&p*)OHd7D1EC5z%5dHg?GYQwl+D?-sgWrqQjqkvGDqqAt^(xMQjoh;bwAJTO
zod}Y#4vu!X{+a>5Y9YvC?x4p2S|+#W<&~W9&$eAJwADtfjW7@^=#zG1<7kT&=enC#
zpKgA4Er3ZgTY4HH=DKNG^F-Q81w14rUufv>j;&msh#>U$D(fSeG^!zQW9vWzg+aID
zuBv-)jL%opT*9`rSk7>w!47tMvrzvmIbRn_;efJa6<H|rm&CX2o^;V9S6f;$AK=ui
z_dw9pN;r8w=eKnVMO4Nm0%N;xB&jAaP@|mPSvqOcKenfz$oF5I`kv~O-9+K5wKukU
zhk;I2s62gY*6(XlyUS<fp_mU*G3+!GOOqlF8APcs{t-m%1;*|N{P4h-zwX;utNOQD
z5Oh3s1*-$ie(6LUy!tzCrqY{GJT<8Ngc{XX3>zW~!5s}P1|VaxMwlwe$q97ECLc`x
z&@AZJQYnY9EL5()Z|y(-?LBa4dx2*9tITr?ndhSI(JFPuEx_!8&&ok5x2~-3xmV)M
zt9F20<xR3~NI-u2mBExlpTHhpow(*F=)IF^i;m3U1iL%cY27i-Wp0$lbm6734slh?
zihJDXd42+cC4Qc8UO*15Z&XXWltzRphy{esCKnfBHz4hxf5hk}bEW3>kcg^BXRs}}
z+RVmG-Yp%(wS;At3a4aa?2s0p*WJgK;#x}w`-GD0IWEC6C%#>`KRG(Sc+Rp4u1LI;
zYbk?5;GjqB!rrXypiI@(ib~Rqv*&tWWRfmn+AWVxNW>Cg^{PqObiz`ma>0{OHr1CZ
zM!bi{B#U*to3PFa3T=7&#3_whk(hoiJ1Axb8of1IS*vh>^^%SY!-=9M13|6iY-bEU
zCXkTK9mJNZzkjOq*!1*Dau?^*q>@3<4}86tUsAnR^3C%ATlqsI>x{eH35#MVH`ka#
zy_r*W@nGcpnC-a^)1Q9u0ivd!3<UW?-?)M@0K6eS1=@A?uF>}D{u4xAZLVS}@$Ju#
zuT)jhjk;tNR|iN?Z{kF2phRIEn9G`0juXQ0Tzg(+(ZFc=#TOdKt+huFJAH__Su?RI
zPbjyNfimyH#r3DP|K2Tn#`)ndw;$@KNJ<%#Gb&_5XcqKH;<7?MP+=G$1I@cxzCS1r
z9<=&XNByFyW8*L%$#IgIx76^0eFPg459xWU+8p!8;^NBse4?1f`bqfwB^I&EB?tg{
zB%R{MM$^Le+r(ckdj5=-rYi&nLlX72xZk=E%mTYx8d40&>9Wt@Ql?Aw@4#f%jixte
z+{6R|dY<B?=fw&72(bcU)y;yX?rG2bH*i%Ro=bAz6J)U^9e{=vb?dW)`q~?QwGUyg
zpICX>s%A#zCQ#9sUooGo3=!Xviot-%{<9CuSJN%^A<t_?syj<yqfv=?A81kC7aYm|
zP6PZSNBcjoFF{*dyPupeBga24`2U+|F~@&vNx<?GE&fNQT8Uol|Lc_TKMv-<R0m8f
z|7sV<-i|rkJhAl(<c{Ys#fwK&514@I_KW^J4J^!oi)!*!uV-)gEXO(0Q0M%Zkn808
zu4_u0Q*U$Q(L+0ky*v^Uossdv+mIM(H{|6e+X^Fa#HLJUVy-!XL$QXje+T|W_N~l4
zV-XSd70lrzC1J1>2>3xNRiv&{U=)2wTZegoBf>qXeb-EC5OeLf?~7l%1Z)#SSeuyS
zNbD8gfIAZ^8g@OGF|5+RS`D_aRzJ4Z3r?IJP{T?I(F9V=?@PDCVBj=1%-wGQUJ;^Z
zs<WIARSoq{2%pW0ZsgeB7u@7`w9kFmrpii~5=<FoW&FWn@MG*aj5UU%b`G_!VFPf?
z&3Dxetk)s3F*a%#emf6VvrDP-%2m+70FH`d`aJ1kcxzm|{1L?7piGs#%8<4aXxC?m
z=e?d+y!EN^eY&MDi_5^4xN6@y=12CM59-tG`P1pQeQEL$EPQl1AMNADLR(tWf5#YM
zo`lb26!KH`N~#6?a34u|`L?-vngkkwpce$E;B1__6a$bC95oaOoSUx1rErDbR_t~p
z#iDUEELFSaG>U@<_bMWXT5p$7S&iey@g1AgW+J_R9W&O~OdAAUs@!KJMBa#=6@7W6
zfj(F(C8tzgIOp9{yhwJUJ|K-<;;0;vkRoan`PW_<E~Cm_w@|3vIg{K|MbblR&ItQ@
zc#R<X1mi&|tW_26so%~a1*a~qX{zIb>hD72Oozm!dZo()!^k0tREq1|cu6@7p1z$0
zen~P^lsNmz83maTd*u(<hyWz1Fu7Vb?ssp)BFwLl!C0M;L}l*kw3H2Ix&vg5!xS*C
zG;H122;IBKe|?Q!*78!(hf%_WKCg!9^bT7UnTca%5}xlq-gpvo#k92N0<7)L?C!YI
zduD77ED2O>yK*UZ|6za6vtYSu@8gdYik2=lkIK$X35H=ICQIwac}8#&iI?olQ4cz>
z5D&^E<hW+oxDNM4z@j4DgN0E#&N@h=^6Cw8Q~H1s7Jzr|(%ymA<Xwn3u)9~$W_y8j
z(Ky;e&}m}UtKS>myGVZ2us-US$IE!5Ut7sd_h6$Vx!`C#T7d<mo3R)3>KO1WwNV#=
zHyfQe5%_JU)x0hnQ#*9Cj@!62x;Kdd<l|qCCA>KN=x%_D8=2g_v-lJa=8u~^x(`YE
zAo#55cBRTpDH#J#fIx=VUW)IFmRW4NKZhvYse6pcpiAM`-B9u*7&&#wT)6g2i83kr
zh&sWep^$^VT+^><b;a^q`M@3H_H}EjpuAzF5&|-@Y)k`j3ZqukVwv3&S_ZP+TaSgn
zEo#E&jIKIF@9;=;C=xUGQk0NzyKxo~{lM#`=;p1?!gJS2pye!T+ZftX0UD?!u>=iU
z)JF*iNF9<Da4j*SU~xKRx$|Nqk!?-K$eiv#<bL+5g$q+*euNzK`8Vr2QG@&hIoRZJ
z`m-iIB{;7enamdU1GmN181&3@DeLnu>R@in$1i=G0Zrcb&LK;ucuFK(gs3{AxmD_c
zsTdMEUE0VWxoIS%sZEMh6E)*lhNs6Ww6+_qG9Nauw0ZNO)sUQ9uhEL#pS=9UpQLmQ
z3a&9@o~-``xo^_sbxq&I3I!t^h*Ps7BN`;p-i*1HJEQ4Y&96eB-aVb0eI7hEfeRwT
zJhzj1+xNu#=g;i$mal`9Rf`p<aEcxBw`n*vn=&&=ifLZ-)fUNj$<64jl5FLXSkwrm
z8iv^QL8TJv&_|gu-JiXi(Nc-;WC6x(xhMZkYn$7Z_FJ|NZ~S!YLs3e>pp7MIrO192
zCZBLRCI>fb3`Lst^AJ{sf$qFNg6UG@IMr?+qOO$XL=C3C{VhklJs)j38|jh$8}}B{
zMyfPKfq+VmXI3h|3KLnm%!ES^iGX=6az+E=jiR<)Y9_bXWF`0v3l0H{d8!Ft|Ckh>
zPdv|9*uxXYdbm<20^pK6BXwab_9pENFBZ<BeKN-mznZA~K&7(GEPTQ2zRVKn-@bv=
zJ`T#QrtCJq!9Yy!m?NELHVa|;-4@KmyCIc+kjYnQr7S~$I5vKQK_h}h_>{^ef^CR5
zCM1JVe@UQIU+>dL1X%l#%176~B837NRQb>(p*rSYUcKjE^ghdwsN7~N!k-B465K7%
zqgl&d9qb8y<};G=I9QNzsce4sBIYg7yKAYhvKT(@RrcKE7H29mYQOXslI~~ON`_N<
z6@<d&5>PT9x>Wu(+B{sy+_U-nxJhLVECCuCb|I#iM4AY8d#$gx0$Rn2{`<C3IW^jO
zDNXC#Un7r2l8*@9*$?g>daEz-u!UPdE1I~mY2Y+^AJbJ1638RC7Q^5BIUQ3z2?zM2
zjaY2V$$4JWRj0NR(%6#n3hG_yz)%z^j8Pgrp)|h+#o~;V3E<QW`LGH#;QPxIr)%=u
z2OHPtCP%H^Q!hZw;T`+UtbyJN#?!GiCn7$EV7a<P;xBHny)dAaJDp9MFX(a$pq(Mc
zEdli+v7r`3^w7}XjowxG#lMJ@tVuJ@^UZFEipvRBPyT8m55_@j9S~$eK@_pesb?@4
zp+;Gr#SnC5ZZ0SoJ?xFFvpNl|ygjI4Ty;~#=zNLb6k+ttvQUa*S|+?Nko#nJCbvU=
z^2>#Sn8L+s<vj;ICl4FCF<{od`n%dLf1^z~T_ZTI*Ckqeril1^)SVOR-Iyxjf{e4f
zw#2JZLIRA$_V=#aV2Iq|Go=PU0<Sd!vzNgaE>~9+dVV_e<eJZHGxASy?@TCmAgEJd
zSz0-RkgsRUkG(2aRDZ+D#+FUBR`ykdS(`LW0a8TQt2iJ=o<Z*uM+fV5+{dgWIM{3f
z58sZcxeHefTMXHRqu<NC<Ngfo-@2Z0;L{A!*xq-~s#0;@Ma&l)sSJMWiqxQc{U64-
z3C#_BQ$u_O2*5MjS4D+)X4zfmssg)}{7+9Dl=fkdw(%5n$2dhDDtQi3`c2k(1s+wT
zjP!BvnRy3|t*gI=!||Xq^KNd{g7s<de{C4bDv!NR-mf1vT?YC=ett^0Xgfg3-|uJ~
zNX80=b&4E*m_-;|u;nQ;63(9XHJMoxbnr(-wPCy$%^x5|hMQ*NXJsN9BrlqB5p(Bc
zBSq!plOC=$b{QSM=j=Gq^%%J$)j}^Y?)5m`C`vZW>!zV1x?+ZuzAT?DSb4;!WfTBQ
z3CtYbCqdVtNlzlxORjEh5fLpSww*fWVlW~7J5BsAe4T%Th7q%HbaMVtjQ@)f!}QbF
zBuBvfPsohCp{263&3~?XXps<^RCCJ=X9~#w4kA_d4fW1&5w#W@5d6K6>!lmF5MuSC
zc$g|bP|br}2WiUs7?7e7*rg06%pbMd-(4lpF$LfbEiH16sY|9Sn&h1Txhh2Gw%?nr
zj@(H28{Fa|UuvXwk)uE%Qsmpfnt35k9uh)ZcjWVXZ2XL%yM9z8QcL8fC^n+2Bd@F1
z(zM57=;!-lu^H_{@@k}(0wFS9yEjQX#4UJI5ncr-EZuXKReH{Vu5CAl0i69<KA@G$
zFI$@}wW=MYYlN!u`8P+!{tu?m|2{taQ%e6|j1TPpjBWn6GBN(kM)Ci}_(1>b=LchA
z^bZ1(BqIU)f5dM2eqR4abkTnt*MB)wFmf>ei?i``+oJjFdTKO)RNm;jQNl#iT%h9T
zpR%-0IVIIWaw>HDcxddzk3XVDpw+^aC!}*$&m9dX*h@Fc^lq9^^Or)irdK>|XnTI(
zRQuk`WW)oW2Hukw#wwnb;exSXqU)40eXC%3Dd)(!^aV$Bx4eY5k^sSC;d0|nqPm*N
zzuQqd?<d5D>@>3uL>Up<nY-zgdC;qXIJeLbID(j3!=%o4ewj0bk*+wkB*pdz+PA;r
z4N{3*Da6(Ht<NE+$wybUvKK)uWrK&%XJiaSWPS;Q4TRZIa8PS0v*+y(d@|6;_@&9j
zryv`{BXmQVIYVkZ9N{^LM)s(1N_SfZC5l2+S?#Lkd^m#r>ipPa{##HpXrc^i{jfK1
z;)SIn4yDdC(a>|k>(#vW`=+e;c=-XnzOK`A2IY2p3v?gB%dSZ~jJnpU!%qw_9{p*f
z#~JIA7bj#jvVj@Pc8q0e&Nc1((>dpS!}xberm$kqsjz}Dc1ZT2>KF@D>c<|qe`g6b
zDPYKjr39&kNgk{h9_(9(0N{0A%1rna9yUU<!s8a;W~NnwOoKBJRa^=pH)Bt^Y+kC7
zCoRGv`bS1oPUntY_xVcE5kUXxT#c}Gq!s)zTZ(qFZ!~^qzKUKboDMXPzzTJ0B{}MH
zJ8v>RM@ZrbY7F()j-hpG!~$P+daTS(?K@{-gU>Qk<2nnz#q_oqx2a6Lw2o|hE#eLG
zMUu2?J$V|qM}OcZu;aBo`?7Rlj?SOMa5&3T&+_9|^R7S~)Z^E&yPLgTje`a<bW0CS
z`XU4E94qZW-6cjDzpR0Q>e)_=4P^UUTjUS>bv&@?K?<(@637tkfzAHq+VHi9fit2q
zRp1CG5kxFfsPjoG5yDGMR<UJ+W4kG~a$c&d$F|zr7>Qp7bSpZ)fL3VCBi5Yq5y<ug
zBg~^6zVQFx;f>^*SWClL!FE^@FZ_{NnY^_IPZ7y#dw!He@yOevO<|B7{Pf>6bIohI
z{5S`Gy`_rmH0aDiTBi=hxC^}SL~_1*Je=om(lVB}TtmQjt^f$|hE9{cXOV0+lNtFb
z+)BV<O7K#?KAVxVT0PgckLcN}KTx#Y!n>Uv#<ejpiUk1df%_f3dn0RCotQem0a72X
zLW(PSV6D<yH>w0K1$=JW8B*8D^Lz%2i|~+M15B(8s2zr*3^vJ+Kj;LL6KzS#QW4+^
z;t_(YIpg?^i`|RfphW2wntCeMr^`c(QP2^Q%z4Pm7K@k>-K*;AZjLK-1kHzJGG?98
znRKWmbk9j*BjyMx(NalO8ogkPBSwfxe7E#lqw@Wum`p~HMaHPef`msTS5Cu^yo9Z>
zLnrrcU1g-iW37_xlM!v<+voks^*Y#8Y6aUD+vSX@0phpCPhL=;fT9r}>GPxVAu<&;
z%U1oA`%(%VkrPDp7>UuDAh?jxeK`P5&;6dDPH`+(lFdi`vek<8jKQ`ia8GmA;@8Ts
zLlRmv@7G{^w}0jV6ztU1CG>+-s}Rw%GCli_4EJi6F%<U>x4vtnd`A>ReBXT)b4uT?
z$TPcPJ)~-e3X5NZZRrR;*|tos!(Kuq?nq)DZSCqPS&a{)2>p=c$CbP9+$}gnn@P8G
zG;Ui{>gFy<bo47$){iqSg-fS+v{Y!j176R-QY^cP>u<h(L&Q~6{7y*IQc^M+kO+32
z0gc>5$17nA3@`s?@q~%L{Jy@!O4Q&Sk78%6y@7D{!4kHIi?%a#xYXj>C3IUFm9ZgJ
zD2Tp7`1HX&AVKk>u=)L@3|DKAX}j0dtn=A!kVW%kdQgM~I?6r1h>hdcXEE#Cbq=e(
zU{io5b-VcxqugvF@bbezmA#CZu(3&q;L=i$BWJt)Yk`D?Mn)jT=B=GGrE=&&La}~=
zt|0cPNMA^p_bUubqL%?4B@ZhiX_H8}#@U<^OH#Nxj>%mQ!IinmH$wPzr2wf>8=mT8
z5R~!MDM(?xd{zrE)0Zb5_DN_ogcT&u)!9jGK;#nv<ddIUIHLKNDDz>@=~uYCw{wZf
zB2f(U$H#-6G3=uZU9Q+*aMI%;0cC_Fk3qdcYpjQqO%H$R)<PCdAC1~<&wlhmzz3-n
z(w;&DsQ$4e#{Qm21nRXZknBc?w@gC>yIhOkw0e=<J7SI^RKK0;4$#NrG|XSS2hU&@
z@0H=hN#|{aiUcU;sI=K_0xei}oP+@O=27VtJ?6ii)W}|9IEz(?yyNC+582z2p?O3w
zNz007<5Mg~0QZ;7LE@ggV90cSyTKoK@@RPKagZ?T@R_qHXA~mRjLtdC@wA&PE{u3%
z0{0UaSU-*QVFn4ZihRaqYH7>>DInb|A_4Io)^jc!0ehXq6#Ci^VrN#--~0k}(`bL&
zK73hXxQ8)Ek?z%~-LI>CZ4p)t_q5@ARc6=hp2#b<0}S#v#tPf(z^&v?68TS0_?`cq
z(D@hcgOG)@lY)t(u$_&)o$Wukh8#bTMQb}pWqSi7lYe0*{u3qm!#=e62k7uWKH~JF
z6Mx>g*w{J|u&^`y&<lUqiAK(Ljs%PhKeztBQJWGb7G~zo1nev<|EV`QS()gST@0Q7
z0b%?P+TlO7=l|3a^y(JIKj^}r$N#4c%^wL-TOk&6cG2SDE>5dWPyK!NawCru{OWop
z6#}7%mmvcgK)gzxfkyXsGe*j|mn4~m+`Qb;s%Kq33FZHs7^J0`jA)~y+tSK<*&q=I
zb+<~lHh#db)^N65mqE>)PCJG5DL453F0SZ7);8=y;Q|q}n%g}_z?>TD*kxl^mO9=V
z@~kaT!HTQgH8oP<@Y+D9Y0ipQN21Tu5rU(@{)y+Ru*2EsAt>w3NGYvIug-Y;JO93_
z`ZqT;nocMI^#@tKEaR0F{n7iX{KI$FM7^%H%+-1hJ$=u97|AgXzJtwBzZ+@mw%jl-
z+d9^9nGS5kktHRKSB|X4>g*%h=Z&?!U+|xG2LnujfRc0o2|rfpCNq=x5wI~8u|E~x
zc@4uO0A_|EfXWKn#%G#rFGY7*0Ir+SMOBBQ$Y*4?n?)je=w~3=*X0JHE-~6g6;Xeh
zTd^fRKuE>JSA5(n)1PjA@BS{mM?UPU6CkN}qtHmj$1TJh07vF)|6pJj@5gbGU(sB_
z26C=M8}GZ_zy@3bXvU-piBQEaU&{~msYB!ranw0Rd(M7}M|Bsy;M{O9O{4N_9NUmX
z4S6>%n@o|e5{74BYy=Q83{G!+Xca{n7zScOavU*TEG_`?DOVxPu;10S$F=!C9(uNJ
zRgmk+>TC}&KIz_uTF=zlmbQxx;WNdk?3{u7hWy<w@29^Kxf=|xT!o#>tOP{lu|z|4
zOsU^KqN=&+RHDuJYb7t9RgR1cnVrUw&iz6)A=yo3@&|m(M%Hs+4V6zQ+x>@rvu<Sr
zD=wYxR!Dst+QIm^APjfFC7Dy<5Mw7G4^kEG><JRR7|l=zGexb`eYj(5zxkWu*M|+!
zi=xtg8`P09u`;NDpX-HkD{j<O`rU=SZ?>{E&;S;a(D-uZi?}&?@eYAICyWPOdu}rp
z5n4*J`|>M134i{kAbDW3JdN5<JtRUa=v9St=08>FJHugQZ2a(f%Sx~h#EXae+AvX5
zCxG_Z$d&6FwqhnI$Si{X@^*SXzorhswCZIs@0k?5Q6>6pI@f|^cf6T)bX&mQ+typg
zjX)b@z~wBs)Y@)nMN-*FlLFJA$*z=bQ>@dA*uv&a{8k1sZcOh#c5`I7mAkvWm?fOA
zC@s`<gGb)?T=23eRf@Y10l<7U<6`Vz=bH=9nj9-h*A78F=}S6J^b98~*sMD$OZYqL
z+4&f%vVXMFrotLCp=FHHBjY@P+ILglyanQg8=k2T2CgR4M5we~In%-A6<mwXT-x^G
zQ)K=^f=(Agn*LLY5__ekESPMNz>qKxChU}lgpxWjD(JsVn;sEUU>20{2W>Nxf2KRB
zKd6R@GYn6;Uk&<Ec(J)1`Kl$0R}&E(Gr77}TxV5I)Xs^&l~;cW5Sd8(8k#AdOQGO4
zwn~TH6}h<WK6PP(%bezNmMI2;sAeCZY}#)VEvY}pOb(m!<4aYbMYvreT5qK4X|$vP
zL9Nm}im~1aOTY)n4Ymx9o*C&NTYDZLA(NPX1yJDqBoAZAJKbKy8OKKA7v^T-5HW!+
zVGV1N>o?W$qPG1gTv^ANOxg{iPx{?t?QN5Qd9Q;;Tri+p4_RER9qOKu?(AZ=#IL?K
z*q+;LIl}L2KWjU7dmIj(R=$UnNbsIjRr9<mxWyrUoE53aJRln6S$Q=C336KD+HOgr
zt7p~Kedx%n8qH&-Q;H4eQZ#1@O5-1nh;14m<HS>~G9V<*YrnGbiVMz1Emw0IS!`$Y
zHveS$+q+Z4;TYr`@ZGG*Gi=<9Gp#qxaM^@G=&OwiX~t{ST3STmr=+!k-d@~N2U#lk
zXApJiHGbo3E28J|JmGH=V5l&~vEsHE)G{+i<lJ}z*;dw$TRAZOznt%@I5ti%iY+*6
zC48-X*cN)7F0^(XSjiefT)3tQ-Xndm10{zyho7TY<Bk21HJ<}ESeu&qhny1}2}`p}
zFot0AtWcZETo>S%X<SLH0j*Ds0sGwU?YkE`rEb4uLUq#6#SVcTgI&~3lJkfakQ4~K
z(ndnM^KD@soFS%dH^*`sYZ|c%DUt?F<{ctTwM+8N^A)-1J#Q`uXU`5NOGi<`*Lmpd
zH=c)1E0ZVRTq9*W61V%8KmZ}0O$?=DU28*y7zoGpOFa!NUgz7XC1Bm#N@EatL}h)&
zJ10%~F)@9sB<kRUVNi|x8&H~&s0QB}?Jy@}t><2*z_7uhsPs0f=o-CX(i#y8NCt)A
z!WE%*+zapVDOmcaphB>Wm7`K7zuM81;~77>&$~nw+mdDPP2@&|$d3-#<!5wZEf@7)
z%=<pk$3hWV6x4W&)TJCJeK>%rg3k$UEv+&62s7b&X}sa((wEoQlZW3BN3=~iCj#sY
zZItSf<i(NM2BhLzN62RS5C(<AEO^C5aVr-u9*UFco+Qe#=R23<F)vJH`2i=(!)GP;
zP?O6XHci4TEU#Qx8)prdJQsDx&qt!zXZZY5CpU{=!!zj#*F*s3dTJ|odMn6R;3RXW
zKd6njDHT&1F-dy!AR%?d^GD}0cb@~?v49?>@B&L)Di(2--`KTu(%8szK`9DJQ21)s
z=>pYTWJtXzInFTg9Q9~&nlzOuvDiteKHrghX-kTrj;i(LFt%Pq-^>Oc4e_ohWhmsm
zO&1nfHw`*V&|I_GsO4!_SO7v=&ectP<qRF;cq|=4fE@?N`sczvO37{DIB0dziExR?
zcp?45YQ-!QhNuEkGdO7NH3?TIKl#CFjWdBw<SIS+bWAAC%MLfGP8^3;fvM-QIN?Sa
z(1o3%gL|hk+|YCPH?HKRGt<Jlb9a~+0dLB7@UoEGp+3(8g7ez{`10DkiLN~Nx!A>L
za=IEt;jBDv4xREaY*lE@9A(?xXH;Uh&%M`QAU?JL8YBmpES^Bvdg<m%%(8MBb3E+|
zOj{_y&r!&#Kb1+edgQtu7%oDn0)AN$Wi}Vt=;A4Xme1K+qlh2VBXZ=KB{6T2)$N{W
ze9!HuQE=4F2Bud7or}t!I3hC@L?H@LhmR(%{tEAQog;}W;g(*ai*y27O6It`3M=U;
z!kbEH;;;o|06dY^XU~9;hw|8<@b6x|^iL5A;)PxNHsKrfuZ*pPE(Hk6|4#Ch%FSJ(
zA^+`jHn$doHoE2IXq_%_KgFsIp=r{w*?WH7uv_EpCC{`Il4%@YeJcbjy}?HLj>h(V
z^^J+Cp12vS5L$!E;tz=OaAyQw>Z$?DeatAUGrdy6a?d~>JnPBV`kQ5Ro-OzWyIyiJ
z9llio{gst6SC;f;(IXcJ$j2v9UqBPWAJVsME`9{($B7<Fd%XaH1k@25U(p`8s522m
zgI*Moi>DfE8<1|LlY-b0Y_gEYeMo?d>8l(cJYf0~Go;~m5wOkyUb1nK1HZCGbNF&o
z1Ab;ZI}!^l?9R;46a|_0FjZmYa2YfH5!lbYR^w5Wr^&obxhp%%MxyPfJa*69-%yD<
z2wQzq=O=hmT-|v(Zr2mn;WnG+R^Ksk+MOy^IxuF8Ghegu>s)K|>rPE7IkD7S!toS2
z;&y9)b_3VZU-^!jCv6|a(Nn<xZ3>MXsRAm2pb^Z|3#4-S!ykSwA4ovv8eH@G4k>D!
zx5><x7mJ@!>wc#njG83&2EQ;{e#!A3gs#5)&lTO)@6_+V;*ft>-Z%#Pl>HUm?;bwB
zF~BckWtT8a$N|nT*=m_08*Km!EX+V_1Ar=W42n@G(19BeB1TqM)9ECvuaor0gZBwu
zeU6cdO8AOx@rd@tZ{@yP)1>iUqF3RvHEa1f?sf?6L=k#U*g;=&(FQ^Bm~7#NyQAcB
zi!tR|W;ygM=ATGB0Uk$@&CH9;&}rd>kw{S4wOKX+$KDj84)n~IR8#-Zso%nYD0!9J
zGZh+(oJ-<O|9%=zcHJuZt{hcx`|?Cr4*L~qS+6?#L1Fq{g6hOQWVAPYz4vX7cA@Wo
zz9v?2+t8suX*ruN*#7cFTQAF(GTv&UaaakdX3phtyfYPC-s9eHS_#JTmn$+&)n<9_
z_vtbt4Li6Zob6Y`(Fpu995GC_9Y^367p0OK!)&(poi}8&kelRXp5bhnU>k7*;BBdK
z3fvY>$glVenx=^qCfAj4w!XtVs7NHO!ZdH<OB_H!U&-OXZHmy$tVZ>_PWB{VmzQ*d
z+4JtFel<}YuO{?b3a+f{yyVA%*x(T&?bI!YOT3UgS|?=|z4qTy{nWr^(cNZH<XJ_H
zJ`fW7ZFFS(tX7{1EBeeV-`Uv8*Cc_zPZY>6VAg1zgEYPLS!O+{mNi`*rqeeQ%~b6=
zBh}C14X&g-G&4pTi1|_iCws%uiV0a8E%*J=BkGkJ(PpQ|-w`O#BQhAUCeczuKSlXq
zV48s6AaJ`!#CpLVL#k#P<Rb1rnKX3|uiwQ8++cxwk;M#YlB%_+bKeGZu~xc6s%Yb5
zs&pLHX=`Vr`aoDEr2lT3T>EldbS;$HZ-%X+?St=nWJmh+Njd6^lgUgy&8dwRw9uli
zF>WqkhY&<R_&|mt1EP83Pj$X*==tO*qW9f(LliR175`#7qd=mn8Fa%@SpKqEL=`~@
zPFC=j^R3Ib<0S?2-Q7uB=E?AqseWH3j-6J|36o>$G<H9kI<Boa(5zxS1HzMOKk??W
zO15rsMc-SWoOctVT%@ZG#7-maYF&GHKYZ35B9MDR#^|uRT%?!x6H2|0IL;$GfA;4j
z^J~z_%-S}LMw-la2aUuNZ6}mXBiW`dE~Y-3DIaJ=wn}&7>4JqO1lZ+k>fJ7BgTSZs
zhiFUvN*@g0Xzx|L-!fPj?8BLFjc|hN@xSQDW!`=FgVA&9&mEwdoBGym^pW2SZhNO{
zTq4wb2JZmzmTVO;B;m60+&U+Sb#79Olxqq)`ZT0s&b8TWa7tx|{u1dC63=(DF%3uG
zBbYTTTaC#Avd=SzBX5U0nQvbZpR}y5%%MDxDeXl@2}sHO2r(0$D*kL446Zv&d~}#_
zxfbFoZ($l9{~p)mOonCvig(7K?Yn}0VE(-+cCX#le9;x`R6?vQ6A!V2OSyGor`w+Z
zLo<9B2`Oz_BXveda2m4V!c#qTrS!XM9BFnb0R0b)E3ZFN&X)9|(AaWFQrd4AuVmGk
zLx@HhGdsh~3`dK8C^+H0)06x&UjBnj8h-zYi~5*HVPX3{5#_>P(^#VitVaW3vvbBa
z5#=S1HqY^yY(>LxR2RC81|o81eo<Q#JdpC|$d|tec+pPI3}|_lGu3$K`EOKmfB&|Q
zPmk|vDbL67jB1!mN65cVG`OZ?_{ze7djh{t_QK}oh0oZ2;FI?{KS|Sei4#3kY7~q1
zF<!}+yt}cSU@B1Q47QPP6So<UL`*felE*}B{slvth3AfolRp=pT-cy+vO0M&^=g(n
z!!La!)oN2=!ARA`<3vQFQVjvIL&jlg2fom^9U5pIyI%CV)ow!BT&?Xb45ZQ&eiP)3
z+%g;=zoy@|N|lbuL3`x|c=%*2KsJ@X>mO7OD4@J~8$O@MIx1H7fnar<8sPPDN<y%2
zLnLd~_`+`g$-UFKjMV|oO3(3EXT&4BF?m0_@ECjE%v2b@=t@qSziAX;4Oz%I2U#f|
zZi_Br-G-HqMyqwqSH3>n{DS3O2uRbNRTkqw9ARK$RjX&WW0Wq-bdd%wuwx8*3EV~f
zF&*?`a9nM_h=Qm1TE<sONEBZ888mI)NG8A^IC}Dj-8TR`dx^r4tm#h7rsQg0sBa`J
zo&1f6!$>S!Mn3mY1;6>(mfT0X0L<dxB2p*^BuYbVb@!lM^GB@jf-UQBM@ITlbjL4N
zVkT#K)sBHAN)f%r=&0JmCS!fW2!Tpn%58m;D8%j-{-?r){20e+_SzepSF;|!J8}W%
zN|+@-yK8Yx#Wll%;*!koFdkbDvUx%8C`#68F=o;QTH7zGiH}sRFI8sX+XG;;KIe>i
z10HI(->a5K0v0G#q}yg6Uc<5dMj_O-B98%;4S{&z+HKdwf&Tsj8M%dYU<Tb~`6QTl
zN0j&S*n1b&XV`ltFlJj){rt;`S`uQi3=A{?&wP~qEcC+Z%RAm;A_7H}ErB-8<;oi|
zRLMo(MJZ*PSR+=-hjsa~_X&mHhP=JzI?j3?)rq_u<!IC*et+H5!+A$?6c<>~TegN(
zwQn6xjL~F)$nS2>%OFWO@X)xUlcf*am_Fo$JK95R#_ji{Z$Kw_nD-(KmYx?e_a(IN
zIz~)m<JOr`Jv659W!Hu~ydfwO$+93gJ-8BZPm?KZ#VufBbp303>J%`}gZb-X00ob?
zO<@i#VXPV}gKr@_BCy6rR_+uxxTplXN+n(LW>z$-Yrr+z@rbHFq4aJ2n!lsHBlMcL
zqT577PZ+ugh?PRiEt|RFc>rfjnfh2_iTOv9^g3amO<hwI(W0L26T8m8#Tk5U0AZ?%
z7L_%xT%0_Q*?sBUD20l0+z!BT@n+FDEju%SioS5eJgX<9Iqwm@yC2k4tx>zhdREg^
z!-EMm3Q=F{Yx9aGI4ip)AAuBZN_jgHr{B1*##`C!_fG6tf=t+jf2t||2K%7#m$H(%
zES~ir)qNi~_oSD_?a7Qa-}0GUQfF1p!^L12Afa?Xw~s(M9e10Ii&{{rYSZXLUm-n%
z9PW%g^qrWJ)_s0Vu*u2tqp<8Yc0Y4Xx26hxaiIJ`SC{C<V5(IJwk!uci+?3i1l?a6
zF1p&gltU9qa)Gn?BWZ54bon>vx%<TXd`Uat-Ctp_3Zf3LMSChniY~^%jX-IxnrXT~
zyQKR2p*6(ka|noVd@sV33j_r08-ACty0@-Vk65COB$O}xB8UuAK^pd%s5%?;S$cCj
ze^vWNS)55I=`nZCIg0_dE9i{fA+*Y3jqhsGrli*`FBshfqJJZ}S;F?1rWidZ;S-pM
zr@?q1o_m?iATnp>EQjLMZZv>smDqOKX>4sT4u4B%Lg{!>d?K~Z>3HTT>nVaAB1eQ*
zfIvuf4QvpyErLt6`4{vD8Ih|_o$4LGz=Mci>)-;pn!dc~qu^suDcnBm5+HtT(C%A{
z3Ez+tSVzkXZOM9T2#RUm+4&8DEdTMgVDYO<OZ}K4r<G{2xu+`Wl1qKphVIi#z`p+l
zKL%B}ZouaVk|#!T+<fR{;x6pj^~TWzW$>jLD{fITPcOicnP9hZbsP12km9HfRCL_`
zpzNN4L<!n;LAPz&wr$(CZFjF;ZQHhO+qP}n###S97yHD_o|%}ty2z-^$jFGysQU7G
zVcKyL`QJvO{zhl-y+Bi;o*mBu&mhIk@9l*F4}kMNb?S|o(*mA2K^E+oGfK!z_VQ1n
zs1~%rg0>%Ctha%O8&yh7qBNJNKlw`f#UWJo?rZVudHv-RiYs1J>_M3Lxn0mGnCHhC
zY#2!nn}aVoCk?q=PbyjI2;aOffw0np%t)jrZ(%QwPXw|+ZmNg~rQ!f)Ej})kT=uXC
z*@W+~ZG!c+L3zo~`koOYKS5oSG|dcaogr;jAmqG?<63bmNOT`{urW|NPj*mSa6@39
zvAvrkdHY9jJ5Uu}@#tI$JQdfm`9P7*{n+wubl?zE;g0keSpzh(;>eZvE}z|M6_*ia
zJ6dB+1I{^iKfds(1)jaetn9=Kw8$D5u(Cemw|NqD`chH8;e+=Qv=_}*8je{Iiy9fF
zN7!cdo{(cd@<lmaUtv>{UdwbiG%3)N2P*c6i+%uiGQReF!JaEnocyE?jOow#ibGXa
zBKtVi^gmp1WrlRmbVHc{sx2)FX8s*gJMojS(Q?2)dkUd1nM?~)A9;50Z82Fwh#x^a
zBu&SctEVYrv^9Zhue{Q{d7&Zv0lIdBw4_AYWA(5?>m;Jf`DHL%_6}usIzvA-6U#af
z2Z1FW!VeK7E%!@xzCR|83mjH~6J=XS-*><EnddB?8BxCGJF6htP>8F#qHFsmD)@{Y
zl|?!=J}!+f3Wx<a`Ots<T$vqX)X$e0nQ2`QCx#xy$e|O^(=A(y^C5AyUCsW$x5c7<
z9D-)VCUvMA>B+qU9k?dEer_*!v}R5k?!nz=i&-lI(OR<G9pB?6)k6+lo+WE!K?eDf
zKe&%#hn|qX_g@_71K8}i=LR(;^~3M~Tc!5RyRv+!yQ8SZJf=`$){o0rK8V}sg|wJX
zLy%pO)q3uJM1E$=p9*75G5}6j2}zisww}es-(77@vSpeW{^ocOx1?>IIgjsfnlEJ-
zaFm!`RRQ5fO_{XdHli*>lZyt&HaTr5J3m7!lMZsyo6v^Y%adFwRXNbeib|9#?n-xT
z+8{twE1D;v0&a~AM;0kqS2FFN>B(L|N{g5<pEIU;`LbqWsJ8F8N6nHM-p3Sw9xk^(
zIgPjY=+K)stF&@PvdRk&;nu=oYTI{ere*Q2KJ=Z^2Um0C?>qQZi94NtQ<Z3bUsvhU
zS|P<F22wDQwe~NU@&)+Sm^NNN0IW?<MA0l0O{0`5_RNWp02&|-OU;~63ygPI5Me2O
zXbnbPbvl13?`@;32ilDuu^L7BN}vMG^d!N!q2DkNz1csq&~ZedI;Uw^;?LAm@uRU$
z5reSW0pAWeCYbU`a?2W|!_}yXD460TTyqeOM&eyD`%Ia?=%M*}f^6@f2iZpIt0;at
zE2pg|Tcxtrz~Xvf-S7L?`OVXBV0#JjCh5&FBB5aOx;bws<YY`{2$XJ7#v~oFgR~F8
z=Op;DyyIoL>U7S!7YPg}D9(%^*+Wh<I=pmvUO)0d_gLLUBSLT3&e8jbL{C86MT%$@
zkBxhSN7rP_pAMq1QwP8LDD}~_x1=L4)b`LF$9u!z25+l8c40VwX{T-2#l(EwKbZ$4
zZ4WTh7Xzbzj*X>F$WBR`Ii+@Sm(zuLcrOlNJyZwLPo&HwNcrU0tm8IizTt7b(L3J}
z{O}$v(C+XLztU2=HL)^YEo2Fc<0Lj#4GW{BeG@wMLV{Kp>gAO|PSDm{hkEgpmS!y2
z6j*&e!$(lR2PA2qccDzw*Z5vjVE4|AyN>B~0c}GTv6e?Q363uS7r|wlT#S+pt9eEd
z8StC$^cuM^QPHo#+>i?eejp;|Z6`u}zCb?%9kDfeg2FlFUvK6q#?qOlr?M2~jOs{^
zeo@3hzcq7)gJ;Bb$jk;ZZwR;N8-$NQQbst(C-)w^0til7Nn~{Z$c*~z=`$TeRJB06
z^<)dXa4)gtt0DLK@3zPF>yOc{(hy{&L??TKVr;6_hQb@e2PRT#quc?vteTd*lzE<^
zq5u9CFf*txpsO`21k*ATZa?+hDC0Uc1O92YL@mQ101vj4A=Wr;T0-wH4ol}Rb%w(|
z>96>MO)0tE7VYkP{O8s?AA`%+3pDXVa6h6mWzI>nL(K_3cvk$1d{|^q3ZCCl<Q)<y
zB0}9oyv|I-$G*i9bkpU@=n-tUfF`wjSKzEjGyuXu3FnGTu84#m4!n8YTTS1CC*Lgy
z*F0&r;VjnX>5S6s%{P(#($l|=&|OG(1gLFGln3SMjGM9Ck?O7yiGF`5ug{-loMDuh
zBsc7j#i9sUt|#d_ZJF)gm9rv=x}rZceObJgk_5q$)SpE8m|TA8;IFHmpH=igh`-iJ
zolfUKynl(YBGFW?MLkb^Mzs>JA?sL?)3o_NoSf0PTD#{5IU-}U<gyj`5RP~qmtav#
zbUX|b`CxE3>3LYn-mAv2pT}k#TWK%R&PM|r(%u!=sj$M7bLJUEibWWWzihE4!Nak#
zNOZ#y1SNIaQTN4^4vqp~$|GU3B}DV;5u!}->k(=_kWi#E--;I%9$}K!)Vqu^zetAL
z;&4b$Z-<3TFJS&^{Upb^OM}`VDm5Vk+!qHdoen9oQh&CvsU9LLn&_fbg}O9i<AK5>
zzI9FP!~S*+JQh=;vIIE2-^LvE_^fVLb+R|hVt5&v?#O(-1n?nfvx7jsAu;@Bsj10U
z4rYYLgYaZt>#&@MrWD(c=;MLVoPnjvCaPO+ZGdk%0i(RNsE6l{6en#>1?yT@i%KRK
zw&J${Tm_#Sb8ry4{Hx}i^l_OxE*)rg`z7t;bwp^ue!U69W{#YO7A9%74Ni}T5!$F^
zCAVAXdyc4_#?GwWlGF8knA=yI0~tze{`ujaExYQ9>Sp&73}{W6O;K4n5y7`aRS0}4
zeYNSCkcK&5UET2BJ$SMM&$+|96uKbe{!6IiV<VvlZfHX+CTvgPD>2sAL4RRTiE%$w
zI*Hm{(?hd-WEZQl;}Mbf$&llh9t!)kYm8#kk;&4Ic^xdBT3o0H=y!WvZx61p7FD06
zO+F~}8JU3HhppL*S0NT`?lnhHoe#4Apx8OE(`jkMQSrF)vf+0Uc*6bctO%-;eA~Ih
z-Ny<{<5a#jz@(Udkr)=dJb$4gu48jOr;oFR>sI0zBThLtB-7l*H$gB3>wJBReY5#J
z$CUFdA7TT^R%DMtttSmVh@$*QR!nH+`Yl>rlE3dZJ^$U^Zh(;CBV98NBfDC+hh1D>
z)qQwZHt6*Zr{n94d7(9`cV+ViJZDRf>vhqs7~mI4g|mStyh$I^s$$<wuKDDw2~z$2
z3@z(eOFeOiPvR-I*-Adg{wvMQ==@PAnRKR<Jme)htN)gTnz^W~?w);eYC(*9y`9D{
zpc-av62QXQ$k^`{WQc9KRage{aeIcgs+wD1wUzB~Ptu?TmD}BuvEzG~;Ps>kT1>3=
z`ccV?1!>0Swm07LU^>FYaO~@DFH6PL0#13xV<ut7f(tuU?Z5;`rQ}-_^~K+S3qncb
zdb#V`7-7d}x$XeCUw`z_;43H!)&A~rxi-rO0hf^y;%8gyD-H=jF`Nx8+4(KT?0CvW
zSGt!hke8C%Pyi>!JVfgzOa4W^Ms<AT;`k_udZmH)g0xfG)0IU!D-AsJtH2OBuXf`U
z)Qy|CXkj6tOxuIU%tDgbYNQB?>(bb0XY<XGpkkvnh?Q(%$L4dNDB^-!^@-v;$W<~X
z-v{k#U5C%&+qe#~bgg>AL88rt1MmfDLjGBq-n>b-oAOs@eRQRrGIa7f?%W2E$mQ)}
z751AZzXYRcr`CFrF8$Gba`QfctX|jN9)-*%bhsp2-^+HsM!+a}IZ29FMs{l7-783*
z`)_7la}6f5JP=a-3mfZ*(IHB#C<FGFp1#Ogu&E6agv0M&SS|E?2V`*rQ(XYFGkT`_
z=1Z5btia@zFQK%ncT}3#?T5A@+w`*<G>wioT|1K}8$nvAyaVN`U_OH{<qKi@KaWRP
zd|cz$p#x+p1eHZ5uBT>ru#O@|(89xcEI#fTMSF^z9iD}7ChaYzy$O;(?odya&S}`j
zlrHbMJS0O7OQvn7sEmiYZ@c01x^+Ur?OvtsyBM0u_X_?OeSj!ywI^2A&NbcUZu;uF
zJ*O-o5XuCX98Hd`9&1S1M^SkA7aN%CWzh#P=sXkLrcR4imOg+oGdM+*n3A_@@`z90
zX*0Vr^!Gncpu5LnqN?+3w@udCNaej_6t|doF(HxzTtx)aBk#nAJ0w9B9~$`c;woy^
z$Jz9&j!P0+n7G%dnTF8~#aYzZc&x_2c&xLiaFfnV+F^W9lnXxvKt!5jvZo+a6nO4-
zT%yw7B1I<7j_2<v$1A38m%#$MMK}L2+?VE!+&F%vm{KYs89+Vbt+3wPCo`+eK$Ir%
zC+DErw_h!yOqA^&)jYm`8%`#zODXxnS%RWcRrFN)2=^^!$AWJY_X&pbDX&0YG0X`@
z1-e2iH<dzR8F4mhx~QIwgYiBKYp}3Jm>b1pQ4E)jEYP$<PtL{NiNI)h{9hXW*u4M=
zW@DJWHrf7#sX$aP&?a(nC}zEQUD+=euauRv;|wgXab+J8fzY7R#fJQ1aS{;GrIqY+
z-ik>L3C$G2nkV0j5;!7lo)R_O8e`%a45xPt&d?Zu9<ePE2JA8LX4ngKVqXuo>yj}0
zvWv{XCK5%T;m>{y;U~Q-hB5{F8MND;6~oX@hGiFI`>Fe$_vNHM>}hAZ?Od{Va4Ye;
zwegRSVpCtiJPM0X`1&6L7lzCq2|Wavl6nH^t#iP>yz{*jbRz5Ds*;a#ch<V0oV9($
zs9TI2==Itw>tfZtrO9gH4;u>F660#(C0!uwwbQ=_G=Uh}63waK|M-r77lW?6i;O&@
zY^#qQEejS^>~3`S4L<fM-&vehO2DPKSRQ{L@=K3!<^B;D`h%h|VG+6bKn2o9d3vx7
z44YZeP;f0XpnPxv1FGT7`^6B|n!fwf5yyS`LI8$z>Hzc}UV72?GiNH~w?uL<H9H;!
zXcK!SUv^KPQ)2&EmqxY^K($~>Rd;*`N?k_rEr8jg{QLQR;#KdP4Y3u@kK@Vrd|{fX
zGe{@ktQcs?a6~hyZAaiZ@w>-N5xiOU0~Pq>q}qdTW4_N5LfT7|4Vs+;#`58nV3Jf>
zQf+gHVc^!{#W-R^R^dWd(r$sY6rZcaMMQ2W2TV?imkKIGuTlt~(-)~DA|&34dgj7!
zUrgneJWZ__d?h*c$HydPOPBg}&G^|~uYC}%ZH$tb4p3lFl9%Vm9_ltU$)*e<S}DAJ
z_u~z~k6<^7p3H^~d6K!4>7;R;5evgsE;B(%>_+xMM_^kSoG}ZfYbR%G)`7U|qz3t~
z3Mi4O-JISxhii0+w7!hA?Wl&1_+)=Wv*W_DSaa1^P98+x^*>aoFxhy!qJsutIs>e>
zqat6N*0Py$OC(6G=WL~$c%2hqC*LxQA6AfX_+$%yFPmKb`7Gl6+eF~MV}CHB4=QTF
zX1zW}%H`t#0%`<9dHQ54=4r*fIf24-q}(_Y&`4BDLFpU_M8Y;-pxCfzap@WDbNUKk
z#40)>I*pViiBz7)r3@YcWfETQ9$;B`WD4C&WN(;(Z!W@Cbl2dh?=KW(ZTVE<t)od?
zhfjww4eQd3RKXSq5*npZIm}M^hXJClw3I!&uHEdprvC8tw<p;)yVj~8YlHsG{2}no
zn#>q&tn;<g91wOJwzjw<M7LBnYtKG{%eA!oyi>Am#ufgGfuv#DJ{JD&Y@$+1V^;M%
zrai+r0Lb~9pStnq5blmWN7k`1UA;FX(Z3wuIqcmVl-a!~`}>RSnCtbz1J!Z@;p6ol
zzTHFFJ4M{jmAc{))o&)^(pTZJMkCV$`hEF(>D(g_z9B?aD7t;ut-h802sp+}vtfm5
z2h%N21Lvu#M?Zj0JJcr-lt20B!p=@;9QAjBaU{xxU}{lG8maMNvS!BF#c1uPcb?-r
z-s4l6y5A6Rd6u`gbjO5Ql~f!qezDvGE!OKsB)R6dbwbN4^f|P`6mq(R&mt7!7HLgI
zJC#CcQHFgBMyp9PNRNiwIf|1y2s5*iTeAZGC=iiGzwDHr2Jge@!v2pt6E`oc4#%|0
zLNyPG63RRJ>i0+TR0aw-1J5i}b;+}ty0#sA@;sNw%9j`iPui^W$5@b_famGMSX$@e
zUv%r8kj0HVXBAYDyRJ)1P)t_>!2<8(Zfx0(AG|b`QwwPc3;`TNV0+zICM=2J8b}oC
zK^>U-rrMFHz`yjL51^z?$a4@Wr9{#2fAUXDa#hoCsB*YBk|<94Yi25uL<|Ic%rnzk
zo4cj$6bt1pNpC!<_b4YT$6Ri)h<bP7ZEV~+S6vt#S93Pg1{bw#Rh4b4LeL%%1O?)p
z?}2YnMtJLq?c__gCezt-XOTGi{&0IBDNqPJoMumX!k+~D-Fk7q9E=7mc@wSzb&As~
zss3g>yk?=g!yuHSru@q{tc2*`DNWeN+5j!WzKIO^t5ZX#m_r5fIJ5DCLyH)nrH}rW
zaLSu=<7_u}l?@z)B9-n|S=_eI*!7Y3LDe`2Fh-3RnkbkoL8W{$gkq#_G=~inEzOeh
zetz0k1qV$kW*+)mdFr+w*Pm3=*iFMfw}sa^JiK;bf+O(64XT#FP*{oqoW{f^k^q|K
zfdA{EX#e}&3_rlr*V>Cs_*<t~|4AoX6n5ER(ef5wJZM6jwzGw5VU)=gDq~(Z6U{5s
z@PvkS%8OXfS{P5t#rl+}YRnicc!v)vY%U@d(U4XY@m@BvdvA&$bUD6sA(Zc(MDBad
zW<Rck4N#hEII+A`Kr^8-V)^)Tiu@d0juv7GTWw#R45optkmcf{SC>f2M#*yyE!}Yv
z)K3WXXFo7&M5qqk+ah^_YM-vAJ0cs!3a*0BP<!9t){b1UIY@20Z-%$}9(-T&Emj_p
zu)w?a@e#KK@OmzDL4MI%=%`2Qv;BNPM0RoQRCr-CCM@TgC&&F8(`OmU6Fbi6eff^3
zkLxA&;T>+oynAL=(y>NeEG+=3$Xvqh1-UNOt!ig}G$rzkmoGDMJMEgAVQBt_u%U5B
zg(<V_<W1WcL>ojK#b5Ks;DH4Gon(6t^-?2IZn>c<ntVFe8_dq6kw2ioqfVzRj^=P}
zjiwIBZhmFE5{!QupsopK;MLKbvfq&sJGC!@pIq$cZ{seukPXr*_fyQJJFoo#g4~ww
zQDKl#+JGt(weV%N|LU#C8)~<$Imgvg4O^~4Z`mSbR18+lGjzj%c^{_7q#B#;z)2mO
z@UQhvqs*=o8DiscL~MqdgwfR|WfrDC{@!+HEY?1ohcMD{0ATpcy~P0ECka_uu}-*N
zZ*Z)fsV*iqu5v`WtbO+t)-8R_9YJn<;IM}Yg&iRIzzYO8cMc#nG%*o!jh;>=4z2g*
z$K@_Y&14>m>X-v=sap1`@~6qiL+@s5hLvUSzPEE#N!rq4CZ3ztqISG6{xDgET>r_i
z<qHQ)@RDa5!MN&Y5i()arMhSc^I!P_Q*WVaJw7&0pO;o<63N)0?9ogUAVr;4oEN}H
zb=(Vt=D{v)>I_2*^B&T(Ul7}q2nj8Yee|bxcIL2wv-CZhhEg#81fARx#}}MV?}UZC
zXYqtnS($M^c4uoMqaDpC(bX$pM+e-xc^)&#ws%nzJ_u2|r8vZC=L>Uc{Jg1#-_hp-
zT|bROGE6a!8{xsp99>Y7u^xrtc1e5@hWBA2W8?_zHbqzCJ8vUyU);C6wnI@W#(^W>
z(sGMK%T-{@EACfgx^X}YZQfa#!t?mX;ow*;is;Pg4f-qX!_w?J{GNHEel_--6U9jb
z1L=mThlk^}uCwKFELv~`ZFOpAfcBJONzI)zh{agpo2ZS#&De@fL-u6k*sC|3NK1<4
z@zk%9$0H;Lbo!-)AhfFsxo+v3EAmC#?}Z}Rc>wdrVR=4mG?(dWF>1r9*O_E3wO+&9
z(?6=}LY$)$UO=`UN}r{L2Cxc)2C1R|);F-<e<sAS(~Kpr(Y1CeU@ZaQD-NeXWysHf
zk!8OGr8D&1!qUdD1*c*yNj|R17B?XfikpRR2gGa4o}Cm-vuUd+WXQ@Owb@)8Et7M%
zJ|IR%zL6-PFcu79ObAw&41%w6ZY!nW3G#==IdGVSXSP$eSo+y$A~-PX6YxavIjdB0
z#EtjwGiP%hqa}$wsP{mKv&BC<9MEfP@&9Z;l(Y^6yQ8|$iHf{5qE^R<0kTB?hJqYZ
zS`YQl%t3kAU_ql7e{-y_@rze84nvh+GjLw|PkdO7Uoz$D1EK4S!X7&7tLIhSrDN($
znIzwbQ(<@rcl?&iIeF-7o0g@jj2#V~;b)K>s189Hn5p%r+jGG?xtnf0NNe`^R7=vX
zyxys9xlvz64o8j0qA2%ek|7%9s7=%vNFaa@VCx!FFNn*jmJ$ihYj^#qu0(R2F9eg(
zF44@D!v)a74FqcWnsK9mu*s-C)x0!j!bRyqE?OsTPxYuuuj+#4Hf}$$X+=y!w=%S0
zkzz4pSfzH@sIV(=&hs7Vs0x#>_Taj&bU5=T*_+?dmjWPZ`?Eccz;UF8fNO{K4-WBr
zRWiU`fG!`-=TJT|(blWS@T*+0Wx7pSq}Pe8a>}_}4328mHjwWLZ+>I)$9=LOLzOkc
z4j+B3i?R%bg3J<=Vq2AXDh_PF9m}7bVbcXyJ0Y-ThjL#XCpCl<tlE&lh8G!HD6~hT
zoQ97C%O%}|jn#{xE0cAkUXaXI8jb2(k;LzBjB}1Eb?fV8i!54`Wf6y%nt!ZNPRr4Y
z+e-d%KssGOgf&SQO(#)_9&)2hk6iGz{3AdXY`g=qaH%90H2fKejoM_<?7!q|M5=B_
zLT&s<t>Xbg^Et|&fHUaM84>m+WxUn3d+{oP!?GO`>fve2uLD(;&;{KHRXY{vUC#G|
z&$HUwPwM)CNt7tl!%y=qV8W~yBzyuJw@VK4X_PBTYJM+~+As6;lS+X^)M3eO(6XjM
z4rQw4Okc?ELcirA0}S3AJ1EodXIXfHtbK%6Xm?d^CBA{#8eA*4WQivpy4g}(r`Cs3
zXyv0M)I5|uA4YUs$Yh}Ee130Uaq;q*6pedI)_Q%TSX~?u^9g9}FqV;zU=bZ^%-y-y
zc@Xfe@q~IYfm3UZ7tix^t9%FEW~7LMLy(%&QdvzTDjCAh*c?R%#OW+;w+712BIVuK
zxJ^M44x1U(ooO1B5oyO?gp1(iHSKROCqZ!AsuV$w*sLG=<qZA<1}-`~65D9n8O510
zO|F(g^7c#$VPp_b^c2}AwGoUj-jKF;JXab9D$U%f!fjSTQU{+56BnXoFpG0yqX4vP
z097DTu37&|ii4fswjQ<aO+mu7QGnj8|H=kCf?N&~QhalDQP<ypGE@ha3a#Wwgwu&o
zREH+W)#fDgQ;=!ikh0U2G=y@iFi$ug9ZUKC0++Bt)j~d4A{*nffQa9*ee>6+sZcp%
z#3wcwOwL_o4NYbopwFkG>Wa@RC<yTD>uTlQNG5-N)qV?{pBYs^0_7n6jYA=g#_hVo
z$S|bQaKF%JxO|+SD^hi<2*987RfREYC^v?XX_x+W_zxDII<7Q>Y>p~RlDY3s?qcVO
z-J>hRZ~H2=L+ZIsC3#u;j^P>zbU3Me0Dho|6HUmxnP9Xj_^#Mq^74>3vmU%y9?djv
ztQJ23pvaZQI4A(K^ZcaKixKIUF>gw1<eK<`N-&gpW==n3P2j(rlFkjLDW&v}g-yTM
zizg}J4gtjKs*EUwy*e{HgT!9>{SS63KeC%4k~l_4nn-ff^~*F^BX@4-pKec%HYfW0
z>Q2j}!(ElyA3q37CM(kEKG0w838^)zUSjk3LC$Pv+fUaV!$d@XTSeI6A*Kt=ud%0^
zdQQ2n7Jb_v2O1$r&xdO@Id75^2eE=JiN5KV-d#V$r-s(ByzuE@hg5T{Nvk`)sf%N4
zs6B`4b?32Q^K|<)X<Ag_b)E=OsNXa{sI|ihByU9tu{pG>xzPRlWV_K%@>LkI4I^A~
znD7gBU5qwykys5qmf=-9EP9CinE3tfXcAvH-Nwl};UMYd84;{KIe3d_3i80_#=k`t
z&fYaT^S+)0+`KCkDU2AMv1fW<R5s-xt-((nYUb^RY+)$Id?k$`c|ph(P|DEXYh=M?
z<nzLw=I)F%4Zyp>MneO+p<h1Oo{!2iDTm$9uDmqz{G+r=r^3m#GS2BHptI1%Tf9^^
zzlU>?+;816sW36K0xEint#re6hLyz#YE}s`+Xij6XBcvxmb`)G;53!_IrX(Gb7W8H
zW!a^8sO}`(pK4F1?bpE&C5hQfPXTM}12&Fo$fce9()O}_xcc6XOleNflzaa)Hg4pk
zTW_)GS^0V6;X46{yuw8f{;J;hy3)NofeaLq4SX$PIf#0oz^PwP%H(cApsG#QwSOh@
zp(JR#JJSWjk^0h)bcI`~Z@%=b5Z~S;LTFPl|1|Q{6vwT)PvYl@Hh_N6N<J!Jq+YvB
z<JWTl^l?)h%h>^JRnC*q_*t0=%3U1cCGTYM6C!r((9)S<yQvk6L;jF82@SZ7NU>np
z7S52>!@J=3Ea>K+Hw998Dw)}PHIp<>uU0rOEHv#<I$TXbUi(wCgN55jRu52qQ4SIB
zsw^L*9^Z=^ouWQeXgeewn%SCYsZ5fdkj3rV`aWwE?1Ou=-iJCjlhLd&rHi^;op$HL
z{OTog*Xebc3vIH*o+H7*CUq#28J5se+l3geXAbc~#94?;Y=+w~)&<GhlnS(+`QJ1O
z>+{>a>A!V}SA~NK7zYRY0OZM4Lk=v~iejP3H}g9s+N!~!g-gmzXHc}QhR&d4vnxKC
z7hHcqeeXTt-*<9=#w)IJM9#Ro?dGuaH){dVXLHBq;YUDuuN}Q`Lv&hd{mu0Wp(a9|
z{YtU}#tlRg6YhN%q*@28?pX@=EPd=I;oF#XIJEs^mc<0j^4fZ@@1p}<GS0na)8myw
zh-D#lT&2K$>S}`?lIX$0I0hxOi#z7S{d`F_`QtHyhL7LgiC&3=#~A;p*ot;x&b>?L
zJzLw)+Z_x2;e-6M{+F$8C-!)$Wg99QG&Vm^gJm(WdT9uLMJz>1w;upL&qUqNr_fIv
zop7v-_Gy~!Xn|c1k8Q(&Y4?><3M)4dyrVEyP`OGf0){|J;Q6~+i3QCy)qtkw+AU>r
zpK?!$rdRM(ev>Grz2l8a%Jg!ANq{hb@fclMhVP;AuKoOkXX0$fl65}ITo=&UepIv`
z9tpgEL;dXPRg<yDSDmpPrTQT{e+0SEwXA4j+g&AE1B3%R9b7^Q#FYqi3B)ZV<vNXD
z3{#R0(+R<d_2V5IG0_y!YBn1$CGb+~VUOW%YBUL?wARh8$t@p^M4?ZJ9>Sd~361vf
zPYomGKGK50vkIG9Rv(e;MrW&(QCD=9{oE7>z-dECjtzawZmwbOhL{GE@w*7ay>J&#
zs#3_D2a}SaaB}$H-EBPxzs$y-B@V$^Zw;wf>XBb(AERsq9qI4^5^;dPB`y7GqcTpC
z-pK~QCku%s0<`{wV3_X`L#P0(M$=e1{NNiB^a=mIV_kE=`Gtfs01W%*mKW?&ug{9>
z-56X&ko>X0u+j^%i-!*NQ+V+0IHgV+9kXTG@EA}O#hBve1t&_h-tOOIf^BT~mzQo#
zjqj!ByCm$+R^MSVWc@~M3?Fa2#d-|oc*stxw{(Qn`P5@5gD$tGTh{q5Ld^abeF0&=
z>!?8gEbhO#6|HoKf)VK4unN@vOkHswcy{oD&GZ{|D>F$JYp{+rS#7c=nBe5V&ztUJ
zTN4S$y`221Z{aI(3R!p%+y#d8?6bTJJ#3MV*2^66WFC+WwwV()XpQz6e+D*G?^1~m
zl17L293vx2BYomm6nXXsDCh@#2Lm&{eK&!6Fb1+(94C4kdHYv1IuH?5fTAK<_cyQ5
zhNO64GEf}-$+U?o+Gju5`Q$O7k2_(lN4mC^^A6NPTHkF-!FVDZF?J!yr>e>#Rf*&R
z$z^YUaq3l0{%D8u0m)+<G#eG7><9f~ZLa|d0tR!D845w~f-=QrU1NE{$d1Sso*cOT
z`dsYk4eGq%FtXgQ)urYjW5V106j<1z<24UPi*7=izN+Wgg3=mHDtPIN8zyrXb?Ang
zXxOTE9w5Um2+}=NvqJsA_O=9K$=2u=h0S@niqPPPNe?zngx5wrkut1GytNGY@lQkl
zxU)hOS0f~?IU%A*qRu1Ll;6z*zCw2Y6*qsTD#43queW)V)|A))wkq0g8@*tdt%e}=
zY=}n(e93ilM8MqI-oH!K_-OVJ_aVyAHjP!1;lqC+2q!Owv=2vScM1~qK@o()-T^^|
z<CI&B-&iox=8fwT)cae(R3dMU3Xe(oKAAkAC4DaF>i%F5$%Lfe=r@k!)@bFl^qMDU
z9&J%rBgQ@1p@e`bM+tB3vd}YgkS;~5K|cs=P(Yn4%wd2t+-a9heFWn0)zK<067kh$
zj^sq;lRb9hRTjt;oM=RHh<MdC!Cpfb5i%~674g^xXULz%GcSB<eX||Y-Rud!rJ2Y^
zMav`r3xcR+E#Aq+LY3N=scphDn4l`J7>m*B1$OQ`(Y<ZRwy#y(E55Z@IN#<$dG%>F
zN%(wDm}<9wvy>kcH#lr2#sr{L%}E+wT4+e##eG5@IG7te)fzSkE-E$?yNg;~jXesJ
z8~qs87ggb-@Efn`;*+5=cNQsY+T>;COH_O07T>>V(&M!C0OzuCcvZeB5|9OufZwVE
z+4J)sxkOC}m|ya`Z480Pnk;|(R4!0}&67dDfpUS9u4Y{W_~UJLE>RZ+dDuuB&|{uy
z$yq4*1S_<I7n2t~IIx#)H6+C%D7k;aP$P6C(D25Q2oUk^{Y}yRBlgu4hw#mx`WN~U
z;__!){nze2k40ZSOZy5Q2RLx${J_!ssT)Vq=vt$Q;AO=~TQgfV^KYPRVi@1zxM5Wv
ztLM~-j2J{d%k0xF5E@pZ(nGW6Z4p&1sprwP_C`Yq4qCrBuTZONArCx=m#e{HE`;u6
zN?yq+g93_)^!B47+d+z0_G7$$;dSdDUu#;ouq4?sib3ig>-{QoizG15d&R32X<bMM
zgFsv(eb|zQTiok~+#R?Qh;BH|b|qJ*^PpgO%u$hVO1pk=(yR_qtQv&#?B9RYA=20$
zwK*HEktZ_P8}5m(=OmY+3ywLsv$skLk58pq5RZ6iH<01D|NgTbZ>lNR6xT$e$N-(&
zq8H4(0%bt!CB{9lkyaSs#u?JgX1rq<B0Ah?`8YG~RHo&ie@#7KxNh|Z_NHNk!X(F8
zntS>?G$AJKuW5MeN5LGl^zhlHwt#k3m1;No#XK&&H_2xRrhp(X%pGlc>2?X#zU+87
z>^Fe}Hewlb7e8xW$dTM7UEJQ@SoJlWL0&UY_?C_V7s!fHTkY)0C=|>;RuaNk;)m~4
zKO(H=Pl=J+hHsl^)Y!gi#zUD9^Yr{3g>B4mo#>L{pW&zpIXhqEO<&qGwJ?S*Sw9C6
zXdpAfI))x`x1y#J+R!p<`@jhd%g%i8WRE2KaQe2DFegG2>~dw>?X=<-pXbw}R!_kN
zlmpCJIGJ#^xI=GtTGSJQT?lha`1@L0eZny)9=<6yC-lgF27}qrSS%b&tmNjqt{h{4
z5jfA|wx|M?h56ASC9L0EZ8}ZkC``rb@~SzK$U5Vmc5RTU-7(?Tb(?WVt=~SEtvrFV
zu<Dg*Zg;wHeGJf`fT}x>%TlhBUZUM><9fhmd)NM}<G3xDb2J96OJr1|)A}S)Ew!~A
z9)ugCAyB7@6oEQO>Ele9q<TGtW>)RiAS>x$;gM#{DnaYOq=(FB=FO&D1gb&q-{L0t
z$^^U@zGagaS8;KaGkd<61r*}lR!*D5T8*olbngJqD#t6nr3mOBd?K;^7<Y=8oH2zl
zJSnsh?aY3Fhf%qtTEF@H8p>P1v!u#8s+wpQuWH3W$c{OBn*X>w#maoiv|$?So+zMX
z8!C{(C<$D~xJ?+R><(3QYsh?H8+6uKVLtoKv|zC%)FF;lHv;zESelv$oo5$aE}w3}
z4{yGm0a@Y$`fMjpo>w=glgq(-TvcG1yeGY4jD;I{OQMg#uj;FCJnZ(S-<Jk7eQld5
zA1$gX;6BOBw}csmcfRcbh)nn~w$2LNCum{G^BZqJxphq7lYL!m(<~jY6E>lqL7q8F
z=+uvDd%0nF|Jh*=;*|gIuu45vRdgLvg|an}#Lhp4yba@*<i^^rE=ACCbH6&goH*2m
zH@<Oc0Ne@0(j901ufDFShiQsvD})u9IT7P!vE=s%9qjN^H7_H4;gdqAtJGB}5Fzlq
zx)-+~QLFajUP0#Y)go%$OnT-v^#sc6{VZ`a6R4XFDMDBrG~B{QCNbZHoWmp8pf<7x
zV9Hx-;_W9ijwsT+;78no0dZ^w=_WP96_4D<_hgeJnb;j;a@9JZ6kq04mH)*Qu0R`a
zM|w4p%2Tc{P6%${psRd@kzU&K3#x4o#FQaaS9Q&gH>kRtu4E$OcRK=qj4t50hsc(%
z6r6sPm{UC2BO}DCG*o~b*1us59VuWz-{Nub;F~GjTqb-BHurQ<-g_6JrsA}W=rA+4
zHGJ)8kNlrCe4olFR1EUq%Lomcbw=IP)?C5Z{(=mw_B_ZoTb!=0Z+-HYwZwFcl=D5C
z*@mPYE%t_NK3s%w*K0*m`^5M=C1h){qYjOgkS4N|P{m4XAH8Y;=BXje1>ROjY^S2;
zfXR_GJ3w?fJ}W=Kf6>c&MKQwK9P!VH3v7Sou7%B>IAke#BvH`?IRh_4>5?d(kCvX}
zLHPifb4Fu&P8PwO;<I$=Ri`tSGaXDxjLB>{QNSO+E368!2S1Y~P-4CbYW`<8Ozb(@
zNBp-gHtzj-o6WOnXU#I-QQGbcF4tpJowJu<uCTyyt%~1-(Jk-A;$&G``nYDf$1f=9
zNLaQoFLh(oxI2lZd%ntlHDt69VFIKrPi1KhJqrt;>-?wG-ent^ikp$7=xGZtfEVPd
z)7YlaQY50<Rk9F~CBCez9!}z6WMaGUFgSNhCDE(b;c|Lk>rlnOF3)h`;OhPmgBOZz
zh`rm@#kf1^Z^?faZH9m2(bQ_>uXZ;$;a2}nnzP?4q>`gf2Up4u`^bvt0y#0>Hvo`d
z)T?*yD{rt}>5icWO~(7a!ut}!dsJAcJN66v1tnskKV@UakUZ@36n(f`%X;|%ZmJd)
z>c*#j7^dP8p%#}EW<h{l^Ry+<>m&>@tY@%<xtBro^s$qv_l6@h`L`ft;ZyKal5|#w
zH)+pQDvGm!Kmf9~@#ZQDCia!Rwq>S%okpfOqhp8>*%<qH@5*Dh+9}~GUKvKUl^TXH
z9n0*0Gd*q=t+lq&A_xOM_$ldq{MtW0J-EC+I+;Mbi7k&jf9=DyN`;f&FjI8$?D9NK
z?%FzyNR5nT$xh?Gm<65#Cu}MylIXfb)FkYk*2QiKA77YNmU6QIy4m3q`VO}M8iIdF
zYj{dF1G=3QAG^%B#X&|`%$@1>JeBj&)TWIdC92_xDBP!BGnB;u-WDl?xoPpPlS4^|
zwH(rHKX{@#(F96V1DdJ9K4t>MQg<}sb|J#g8X9fyadW3^9Bs;TdOqk+oGZ}m#o#`m
zlF@W_1C|#!eppr-4B2e9^aE=QKfBoPf}s>S>*X{vuo5{~7g2fDR_O`-v<yc9xP_4A
z`e|*uUhj%$tLvF2c8r-{3vf|2vg&+HN<*pI)RNV4<s;j!=|sQJlf+7exCQ1jw$%ER
ztm9Y|TVbO@+BlHBhsS$jZ?UNLMb@W}OVme4ZGA&P_zPM4VS1as$XyhP-ql4q8{EA;
zlCWi(eloI^asJ5sfMdFOEE$C^-9Cj3f3T%zF`APlKImggc);&bF$lN5MRDsaxGLu)
z3NvwXl%^VC4P#nlG~X9($FQR(;`SilpqV@dX;cqO^{#TusqQD?3x8}=%1omVlwTcB
z?9p$ueql+X^UdQ(bq{#sle*NP*U_NI%L{WUhUN4wLFcxZ()sc$0AI3FN&eO(cMH(G
z<G<Q7%1(p=dhT-}Bs2)%<GqLUM^RQFJWI+UH|znBM%%qev~7YCM|2y95|r#D!l6`9
zUj_D*N&7*!QY$U|eF(-KM!05p<?6aWbV@q;$RIy=ZcPhY-y+(y9tGqND>iwD29P)5
zWNZ(|UaB_UX^i$zI$Sb6xrDEyltV^4UU$OdEgeN+-ebH0q^L83Cu*O^S67_NqEERZ
zXJog2Ax2G1P`@T_3jxN)o}ww-xx0y5cw>J}o)fdE22+!xQcUFJUzKI%gc`Ok)3emx
z9s9ZA8IkBwT3}XMT$V%=Yh{`Q@?G@TbF0bNIJgYBCV)Td+#W!E37SYH6VwXV(05N_
zgD1YjkcX>7iZ2UNpuy#&8#=4GWbpxIdLB%s)xc2cB}s@yrWyOFWkfLP%mfKHpAu1H
z%zMaxpo>D71X70>PBA<OgK1#<Qe$nDLZAiw6SV!+<4AX_Fz@lLCaU?I$@pED?evPH
zxKQzR;fWL=T~+O^`zmgFj(cbMz4-UbG3%RRx_gn<^3c7NNzy>-+NfNe+o$y^Gu?3j
zP$0w7D%*SXqTp`;p-%#8em+Ems|6bHW|$9Rw8nUX7xCZ9QSgn%V^S}ZK``4&(Uzqa
z-^pkq#hHmVqGm%jL4`{UUI-s{5)cn8y}*E_vbyzD+v%aWsLBc2Q}<}Dtjn%2Fb2Cd
zTX_m?Q3QCDN`eml9eAKdk819=XRFZjStjksFYWhkR))TfcVf}<DT*^zigfp=EslTG
zwD1Bk&UoAPtn64<oeUxI=GS+@1$n{n-!bg?BUa?nisVA}?RLFGSpH>eWdvEJU+FX^
z^kH$<@tg^EyMjLSaO7sV-}mfLqoW@oKjo1wdm|G`_D2NIRXo}3WBp+LMLeg*!>+4j
zmEgd+2YB%$%nwjC<Lm4fN)6?a1?X5uXX0Y`<#uF0@ax3^hf9%VGfCD?KJUpYs;Mt$
zc^PnYGp%2oOB_3!r8$SaA=NK*7m?(O{uo|y5USps08=f+_5FT^JNSUq<%!aO)z*!Q
zGa{roqbf*QFVS!B0nc`)hXjLTR^Ow%9YkhgoQ`W`4TLQP*m;C#OBr!Au!~#WsFBIP
zl=9#j*ne$ftCPg=Fk^WDPc(ifMB1mzMdnQl|G>@!%{fC&PevK;&#Tbvgij$A01ifw
ztVfHCHw*PMMW-#{8>c7d(gMI>CUJ9{1InV%xaJXt6wT3q;$dwgy5mNd8d_30P|pgl
zgbpcYDj|^h9N|SW%ZfW%r;QvNmP@HwLU}RKr^#RwPU{LPP3%Pn(A|W_G$o<UNdiOp
z($$->Q)a+Nh8edN(@D_0k~=!;B<lrnr|5P9f2Zs7J7}@0e@q!_x3R%EIR9bm<xb=q
zGxqe7K)f}fiSu11Ndblt8wZ5Q=@sF?bd<}n^rR;ZgL}u~5sdA9?Ke~cyCG0}?+c_*
zLcz%~*o~e5@?eXnDR(2U&^3oLL0;K8Ez|j6$RmB<gjOq*iIR-w`;1e-fWs%$b8%bV
zLw00MtJz>_S?4h8Oe;Puhe&-(7vxT-(zem9qM7W~o2bnC@bCMZI;C@n$mwsyzpO>R
zu{NSRv>=97$7~+su(HL{!m6Z)t~`N{E-|4UOuFn}f5^7-@;DUX-#U7VtJ_V|HZY1E
zWwFRFFHMytvSJ9}1W;#*YN8_CuIf$}Eq|Yzci`IQwR&3L(*w-FXj%Zl><*>{RwE0`
zUZJ7_isx*;-WFcKY`+WPmQ2v-n?%-38da+mqlbButC=6#{q}gq*_c#2)3SWfz#7vK
z3G5zZJ;ZZV?bZc^l{0q#vqc<lE=XnzsfBYxdy|{ybRVTRzW{&ON>fT(RaPnn9in^3
znKOPVZEOB@$p%%KEEhOLjh`SUdWbBo1zIfy9d+p<Eo+m}u{SVLi{1-O=&!`388CLU
z&T};5(Tlfq$F<vqtmFXq5T3idt$J12K^?eTJo72rC5)&M@)j!fn-WVU9<cl*wmeA5
z32Ftjiv`-(&3Fnqv0d;O{hQ6KcXzv6&y$5^=YxXullP!?BflWfNFK#kgy_ZNKT@OP
z!)rGr!3ok-8V8Ngf6>gP#u$DwLO0rsyn}%n^(REae*I8~-W498bi+zbt6WF{nnSY?
zEUF7~JkViAs5E!gg(i8Qx$+4bvHWFkycqQwB$Op1z_21ZFOnVewK`E&;G?d&TpoF_
zIbFtlU>YZ}2&H!AUIQxT)vPn0M}m!%E-GPebF3wVDz?wioxlaAP+xdLwoL~+@yL_W
zlA1u&Ton_!be<i{;7m-Q=Kk2{W~gr&-M+XGzs1m+=`Nnf*$G~{>YX%<6AZkh$kAHc
zNbtx_HP1PA%|Ebt*CsyEwC3`KGjhRNtrdEegu;a|ShX^WDg0bZujw(s<w|D_ZV^G9
ziAbEGq3$a4cwrnK*cj0rN7gz-l7B`OAxzMIS$nZO++vqXFO1^yJmWwlo34Z!(<(E9
zT^4gs3*Hs!OZNCwS!5kV)}7wc#TFV0BXOD+C^!)Q_}&oP0|^p-=}3n9D3wP752D!T
z6KAmrLkv!K`L*hgSA!R4XF&Q1Mgwl2^m10*k8wV%oHGHSyp=B8(Sb4Qym>>(8H>rz
z19QEH9e?ffI~7LzL|&E51dmg9i))y-URx`~zWU3oDH+nVX%jA)|AZ`?+h*P=xCh(c
z5lmCJYB|A-h1Um&nG|#UhM2IaI`@3R>B&XkOt`ztclTRX8)ZqW8D~DMvqn8%&nOBt
z&JcYj;k$9ai6ISDnwtg36&Qsbhjw828VFJ_bZ>#6;|u<hz10i9@5*v4ujrQWH6l<O
z*wSdhl0%HW<fjbbO{Yr;Y_yCu9VQ5fd3+gm;%T7~W7pnMIzNUv8fT;?tEA%!l=#fv
zuwLKy?N=7I1$8%peB2TEc{eVNg+vX5Nw1i}Q?f#|)}OSP`pfw<-^|_Vr*@*!qOTAl
zN4P4A1=H&<avb`4aFpL#$3oFlh4$KHycM|ZU)Nw+xt=J8Pr~~L0Xt$K7!mD>Gpo}O
z4&KaBHWXmO`d4A93_Rx6xSO~kySmr0bv4}|7ip41wd{V%9%32rVXGE{$};Pi`<C;}
zKkpLjNsle^eJ)P7y78@Ah6-Out3{-zH}3se(^xwQwS}XxvwZOA^s%&n4?E0<ne012
z(D{m0&8LHv4V36#XPo+2Nz$$)Up*z18!_Cb9=BLDQLNx-J+l>y2ty<~fGb#s*G*D@
zM=<_eEUZkZd*K9Bd`z_k#Jx}YEQIgYYwjRo4Bs1y2)9Y-vhJZPd!u9?ey1)Yd?!p!
z6bO19-z9!1a^@u2>4xNe6J3Sr&Rc)FO&ZB=$<5x26P);)$)p!x-&=vl--I9^RH%J8
ze+hh?Zm4(kT6mO{&~bx?Mx|%)jLyWoSfJjp9)OmUQm-6+4sd#s@&}J4wxu2XK#S=G
z%iI0UV&7>G&%JAF42Dcuj!YWY4%ya_Xm~zM5<tCix_~1N=K=HRBv9y;g`5s*aP+fU
zuoraOy6(~amlSHX$Bbn((Au1T+e^Xc-Yc73^w_?|KBDsh`)oEsuXm*@Zd+{}sAoXz
z_Z5iZBM(KZU7jyNvHJrdidedlGqxSjY=yf00Qs)33enA@$KlRCWBb-qYG4Dncs;$R
zNQMqKH;@H&+@K;oXqLl^*yk5a+zG4Rl3@dpoZ^?1*n2WvMoU2-`!C3`o0}siu4&tv
zyzHk0GmhV+J8Du4pBQsnfZoDA4587$kz3ets46IKv-io}>ExteD~0P#zsE<fIHZoX
zy`k5np`+10@W#7_GPlKp187F%_W{q(!_+{ZHHc5x8VnyqeTig~cSDpYFsqpWDw)pv
zPrIIr2^6IrqnpnXiz4Lb#L@b<NJE4WU&xz_289V#5{fi;rtxtPpR<n(>v-mzq^DgJ
zCr0n^=zt?CQm_c!WxydYXtjbg=&ZyhLq*z*dr;3~M^*mBj~|d+_kx)53#0w`BcWBC
zPT@zFsuk?Nv{<E3MVxX2!-LyihCl>eZ?}Ed_IkN6u75qE?_E{A@wNXDgiw1rb%8}}
z2xaabiZkODb^o3C7q%T$GP%$j&B6rXA^Ra+#gj~z0*e{c>>VXs(*2dmM=<PRWi`I<
zsXmSQD-yFvFY#Q{+Rx*rgq5E^;KJFp5w&yJ$B)+qMfZN0P;58y-bLdc_Cc_p<S$>P
zh|cIXruhLDAPhwe<dr6~c~Oa+bs%>_jOkS_&mh%z^f0~_xnpLfQ<IoEYGXu6J4Qp6
z)&>6(zQ27j$f8!;3Ba{b#&if7%1>gUfo!i%a0z5Dj$H8bBM=dh*_ifBQHcb>(@6A~
z4o4S9%Ia@vVwqhNr?*t|qXj$9uw*G*!Y{zxLBTmRN%|3vA=Y0m5L|&Y@42sV95AT3
z7NVqf8iy{1JPqx>49SF1g`5^D3Na<mW*>erMxjxMRTp$6=-*6{{Xa>S%>PYt{|}zz
z|6MO<{D0QVzuHd+IX_r;c(6!XzF+Vqn44rVk0n|@#NFhMlxoFvE=aWX8>T9nX$Q&O
zX;7ZbX80J=Q<RBMp?`c#3ZkfOOlRFXZ}OLDYK<mZx?np}u@AIlfmSnr%$sfXiYWyi
z^rDPeyq$&sZ^RP{$w0{0F4+z14*MkqMq3=RqOq)88nPlqRD{xnm>g|&)0VZT8H!nG
z8Yey-M-%WTFz?Uu#@LD0j2+6bV5gu*Y2x12s>zA(xrEh-VftUw1zHZ!R`#)_vZpCU
z4gaTkV)^fR`u}5<|0gt2>0d0jy@QawhxUK`b5>4PIwp2jHf92LP9{1g4rW$HU3zgR
zdsm15u%F8RhX|@nui|8A=j>qUWNK&Z`M=f9|7!Tp{*?VEfg1k5zVe?W`X6nS`Cmu>
z8G@3jv%Ra6vFU$sQ89bF{}|$83<S&^|AmOti!uIt{NH2!?@*(E-6%NO8!MZ-Xwxf*
zh|#N<dbs>=K~z}x|3Z=fR|eGoH%0z`L`eP*i%rJV&io%m%FfL6-xTRd_o7DD7yz=m
z{%x;ZY`p_kJGr{13F;rGHDDVU(Z=tok?tblO$NRt7~wu;Pd+`W35{CTTVAeB5@Vev
z4$Rrk&VpOj%F|j>1jfwy9%CR*r46;NiL8_NL4UfM#$x|4_I1>d+Koc6t1`6d64#7V
zjCnSAT=kJ3X1Ub)<e)1vx1|u_J;7bDte#nr-20i5TXqi)5$MlGg65hCKUKStiWr;h
z0XoQZx*$Z+y##6Fomq#5+3t}P8VO~b^FHUo$6w0;_G=UNI4Ata!oeBHv-v)TfW>Wb
z@mq8j`=uA$=t$lIm(~C)he<cTWds~)SBEgE5`CZbH5_9kN9YQ_^GxV7J0Sd~azYU#
zJ=Ikaj_9c+HzHX6;HLCT!sdrrakWP1E$xa95W&rHalQIzFnhYY1@ybN7IIsGbY9Z8
z#W;t=KFQr<?PxGX(OHl{O0bdSj9R>!mA}H2F{u5-xjy31N+P@U)ziK|7wyt}nV#qu
zWRN%54G>zHu_0h+BA#^?3y08N9FB(!D{SydxV2a*zs~?o>T&I9p^ycC10^z6ah&(V
z_XdwYb(bhuV;P`P!^}Pprv$fiXvRnJ4z7>py0lLAZ+<vI7-8$}Kw8vAY(Wm|kwfJj
zM&fH7<La1OXi4LDmb}DFbW^G~&o9KqJzc$wb?DU0Q#vCxb-rkJ@N+LHd<Knv&i{-+
zMG!e%ny{)=s=1!(LNsD4JI;z=f&G5D)qe<LVv%J@*tRLSS^Y2S-YHhJplj1zwr$(C
zZSQ5<_FlGa+qP}nwr%$Q`sB}lE;=WjlfLP@N@iWmRA!B;G3I!mS1-*&2!TumH6hdz
zdbYw>%~89o;}*F;dSJ4QcXS}jatD&F>~xI6YP4&`HAYt8Ay1c;WL>DjB%LV%a@M=R
zx<>zC+NBimLULrXSV+%(OH}Z@p-&4jack1t6_YtAce*}xEe?}Km?as`L9lmTU`jL_
zyeCWPuQ;YbRlS<Oouqp!L&oP3oRlrx6)IP`B|e{{;V_b-vP3pE|DyC132OcthxW+-
zD$M-9{6YUufrD9D{`bMbY|Nbh1rBCpWntv}-v9@*vi$dM<<nR1mGp^Ery&yaz|pjq
zStlS!3mg=?n=3-ivJ=SX8pMHOHDX<`Kg{(iS@bi1EZ~0hFV9JKp_Ag&R;XzOZzF!K
z!w2CWg;F?#2<u`k@7C#VJiNp1B8K3)U~sOnhcfWh16?68V|*gZVD7iXmc2_$r7YDi
z==1uADNzK0<frpC5M?`#*}D`9-C$sk+1f!@%qkS0WWur3t7Ci3Z)P1g5x?inGLT2i
z(3x;Osl+?rQNeNtMYMkdpud#4m>jq^8tbvQnyu=U2kUY`G8yj%@54fC<iF|+y@Oi_
zr3YQyWOKnQG^|$5so31mv?nPbVB<RnI>|MhtwuU31XO{KM9m1ZjtGEZcQ(uOaZs6)
zkgX3s!Bv~JKoXR6z!TquNsuq9;+B02?GUitgT0J*v+2E3u*$+4e5re~Su(c}(1$0V
zUNr^88$A@JwPuwaY36)!dEv66b43$)F*;4fFO&Q}N#4O(YEW!nPz&nxN8|rBOnX8c
zH^-eou~8V=m>=w$Ek}JMe;>Me-0cbO>SMlOo~6u{0b^!gbuDri<pd=$vz=aem0Rcm
zoMw#Agja+_YgYZp?!0XfS-Z=+ElWCSs9-&OtK6Tq)@f1#1udm3(4SG1J5HXmDzSS)
zNZ%~rh8{(xZ^=E6>@9sXEI#aAHk>t1n8B$>3&wNASasPmF*PGG(3Ha7RO=TuIVg%E
zi;gNG(NJxRha^6*1}xy#(R)84pt&Ulsj(dODTh7PKzC>aAwXrG3Tdvg=lo^=m+nym
zrOQL?1PmTTcpwnvY4T*S=qHe}ujXz*inDQ(lV~Zw;Vz_W+Y#ZD(yH4h*RH<`QVL{>
zq@Ete0q9?eEChIvy}{ZNdNJ+&X!v9y{P9P=av`+4R)!n*mEC{_$#Izw_NYNO3g;r@
z%Qk8lwq4%s?itn*W*7q0JUFMX$v^8ijNrQIE8MC81CR8>b-b9nC!8rftsu`*kTWl%
zXqG?%A81*8%mK;&_c?f7lr2&K#wesew>$+smkm2FA}?26pn~qGmNA<Oq>p$>bxVu%
zfz6jzePK&I$R-&fWh~i{?&+2=NPJE!Y(LvFZKK+}HE0$jTkk{s`e+ifZ2!?do^{@t
zl@~%xCI&)pzSU0?EX};p!Y``sLI6tq?);oMt`5U!L;8K10L8SSc$SZ=Q8pPl`ynCi
zP3zpBy+HkE7Kt^|U7&0@e&Psl8zG+ZR{*Z74gW#FO5`yb>GU|=Gw|Enr#+6kxpx??
z`8_Vob?_6~t#Mf$De{u9KMGf~pJ^Gu)N^7C`VVi7c(BG8NoYVC3?MLVkq~;a0I+z)
z*rJN}Tw|3mIF@yD&vm09ExYKr{wNy(eEq2H5Bc;(ddyz50N8Eb=Sm5Whsh28n<41x
zTUu6whm@;2QDE<~LB`;N#%WPV;z4=eK-ZSz_=D<--|2!RG{>a+FBj(`3v`<Bl8l=A
z&iu51tDE*u&P$F8b>7l4kr(uCe=tCKen=HIXKf`*pJu*ZvRo*7#23PM>O}#sIE<bc
z=142M)OLmJbL`o%Pb}jr3Did0CHtGuv$cC<E)As191HVkECiMy_qHxvQ)G?5;pn_)
z7wKHS-)gA;7EU=Hu4ggT;Q8v2%`3EJz`i~h=<Za1B6v176IKkOqGHOw3Lp^;TYm^G
zZV!DGDa;LJ%_`UmC3LZAjs>>rnV-LCjoE_`KFq@_2+-p&?C{+_6y@Ib_IgR+C^U$R
zph-)pY*Wt)9Ez)Nj*+{-HI=Y|7^DP6({o4k{6JGYI~Tdx<m!o$Gp9nr!|z2Q+~AyG
zU0oK!SpdMapkxKw4K8D8OtoEev~q}|S%7&=<SnBO8ArjY*HJ?YCyI&kizsP=YSpI)
z$1c=<C5!#5(Zfpea)AF3re5yw{9sUOoh(X~cBjZjTgo3_BDVfjL1iU$pP(57<D@$!
z;Nd7^(`>~a=JK{9Vl50Puq+nR$aY0}nwG6Gkjx3Yq=SA}UKT&qKu52T;4?YK>^@Ga
zV=XAq=Lwq`5+-n1QSw>d280a>*CY2T?t4hcZae-i)xi?)Z={+PD9p1{l#C}Z?^u_M
z{PF!LSPP|jInn4h^g`B56>#|cQgw*9SQYQI5`}YnN2iH+ctjyvb_zwB=<C(D4BNu7
z8lN8TL*aV)XM%Gy?nmc28@tmSA0bxeU$_XyIrKCjE*`KozemaOI@dGvWC`t=agsp9
z?6O=%h7P;$i+#rZ9#TlnAW2}c6`{PYImTuGy^|9{2$_eCRG1;-nACH8UcUK$U01l7
zT14TolBdVDa&+_9<iYyMo7zsIz7w4!2)4vlxxcD8V6ncDBM6>LJsqa)D~Fb{QuG_^
zj$k{|;Q2{%U5AZC*2HV)jADgV%5?{mWTDB@n1D6z)HEFu&snr$VhU@6nRnbXxR>{!
z^i?ZB1HO=1r?>u7a!9U&a$%wzzTBmxz00e?x)*~hv=sbjE?<YVfd<I0F5kMEnYi2@
z<#1)L<{X%Ah?Ngl>!LjcPFv)_Z!r?ECsS^l{?~HhurAOqG8?Jd+V`TMn3KD3tOw^Y
zLPL%&X&7RkHD;^(0zh+%JYSsaR7`RC2poOw<<&ZE81j^hQ#a%9IwRUy9&O-C4mg4D
zi=^|*#84tq9;c~b__FQx`p_Q!HYXz6kvS$D?+yrZ7^fQbYpDK-W$Ec$gXaI_!DU7p
z(;*MIneK`h%hHKukn&`jKPytKJ9Fos!^%&Rc3AZwiQShuuta<EayH5N3;_5IV-DnK
zdK1U)=WaQ^hn;pFQJZG9yz2{2em)R+onQnfuUm&py+Noa93z(Rj#?V9@F86D{^T^w
z%XJh^w=hY8YqHnqps@Ep9412m9p@EaYPPBBARR^w=<OCifJ8ZG*8W(>OCvZ`u*?RF
z*&+RDtlerh4bPTX>Z&z(I9ALmxsp;`&L>Giyt*S*G2NUddi3ahN2B3-*EDSNm0j0R
zhN0?6QM8eYTCWNGq=XYKZp?tsQN}IQHmX3{7lvj#C_8A=-H+OvMSMmiQc!r#TD1Ym
z<64nA%JJ%r)4p{)HqcpnVapGj#Z^T;5_9xKAbB)%zsJzZtV54SUrhwP<%tTCP)z;}
zqOBJE^nmVdOe*M+=PN&VdEn~c#9#KPX!d{Vb__F0ohFWBT#hB<MzcXV93=|dnU8fY
zD9k-1R!Uw=@>{x{*qry7$pBag_LP-J0A?aA?d+f-w(Y8a39L&lO)ZdRW3v`Whjcea
zA$bHxl~|+ao&@B{+H^BgHvZ^cyd+kkk&LGlS){CQk7uh>+9)`@bi0SWc>#n7-Yjqq
z-I%^=ZW#T^sNKMX@D=;ln<H+B9WuD|P!2AdOhD>@fP3W2DHyjmJh`F1iR^WBF92tl
z)cXhLAVl|p6s3h^G-&<rbSiIZWcnv&xTIKI0MS6JdgUkvGATfN2YO!@DWXtcc)qrZ
zT2-~WT456P6$GL~K+rg+fgTquprhD&;|&q`8Y0Mq95sdq2^>d$mv8X#DK?+9fb(WT
ztc6@5i;GCgZ679O1V>geem8r5n59pcLxvF9u+*Cg1W;Uz`58ac@(MYhd@~{H+V}9i
z1gA@J$50#womQduI6bCYg-WorVnyHBb7yQ;!e%G>c#vqlwb?)eq-vQC8yTc6w6>eQ
z>62QlrxW5&awmZyz`RAmO(;g7)*6rv1l=Zud&^>&cN=}PD&Kq2anvPLCckILU<#C#
z3Vs4S7o`Hd=m*;siHEfG2%F<xnmxC!7Ofw`{R}fG98rXz%a8w(<pWz-vwtp~LCbxL
z*wNgo6pwVAxQ@pJwE#e(de6gYnxqk~f^vCIlbYm~n$nGQh8#x~=Wr$D(7BOR`1k$q
zsvgp4!3!#?70q9c;<}GZutO7~drrA7YI+zUBfVuLe>d#s$vbK!2G<A>hB2qHSEbPr
zQ+{VhVa{fO97Jbp4_uIPlU9p4y?@MHXRwiSGcK`v(%9L!$*qdw4t^{ajW?8Qw)mcj
z$=L27Giv2GReF#5>{_q}Y4p^nK0&$731}~_cszwVvqeO`h(D>$pwP=-_J3H+0sy7N
z5(Rp=CIxapvk}g@%9GUDJcW*kz*0zn*<L#AmE#ev7foBjJ|25X&YISLKV~Kwj9{f4
z-iqt#vcdxc)0T4-#yAnXy3aBod?X&)XToj2^&NL}+ukG*%hbmcEsv4I?#5u`AQKGk
zb7g}j((5zC$4%eFFW%qHKDo&{>?>bnD8BVN6tNnIp)pLsTm0is2(*!_SX;?W9u8T>
zk7TRBVNt06Vh^?mUB_CVG<8T*SPb?ol2x)G0xAM%&dy!JUc0&_gf$Dkf^(1G(Sg1T
zdzpf%xY^^7Xh#iM5Dwa`6OFF=mfyS<ozW5Z8}gSuohpyDA#K<E-B?!nac99mv-UvC
zFaB8(ns+1BIfJ4URzZ@|zdY=d);w&UMAy?tbpw8d%<8ag-HRDwVbbs|zDZj<Dtu<>
zcLeIi04~feXpc^nAcY$Mf#FbO!A1<P5=-&ASp=9|#N4AP1MM~!yc*owA0g@B_SWD#
zkN$Jx?54Xb7F%qw7u-K6i67VGSO^Gq7eF_e)MPt`DlSqbQ|BRzDD&ul4;?<LL!ZxZ
zB+AWS<+T|>%PKc_4m360y}y;4+>Y0Sa<pOCOKsZww^n*u!=!VH5i1|I<9a+)ZC;~w
zY?25B??-wTT+@{7@CBmJ{ng`QH=7a%w8_^~@RMmEQot%NsEL<gODwhRC!~Wry!+>A
zy(AMTex#%>Pbp<1KkmoBA`kzw&yG~&=-9+LG;V8-%EBMV`)d)?zO^MOEKnNm)-5*7
z=dbw27#nFj9RkdN{CE(Q+vkDTg||;2Jv1Qrv_7GXLscrn@k&W2hXR^Jer@RDBtP5Q
zAFiHjK9yK6jk5$jao<xF_i}IS@wE2#y_HL@O85o~ov9DLgQwIRSKSlCuP1I?ffV~5
z<V8xGT+cE<r_7+n{0e-OOoL0KQy3mN4RXcjavSIEGKyA`PIMRuNT!$E(=?>dHksiB
zDq*h7YU{qNhcHgqb!-1+KWQYFk}ygnP&Z(5VvW(VyiA%{PY5PgL?}W06)rdd=+r7s
zvYe6C(CEpL$Uc=$FFup(_OINmmGSh*m3cX?fW_;P;1A9)&e&p@JK-g)k3@q%w;<9d
z9EuOAEbdqPdzE<JwTUy)m6cbT_{1~r+Oxt`#J@BaV0Q@62Nos~cd*jH$)nL^$uilr
z1w;kDU<qfvY2T~^>F^K4mQU=0D26Tm)4<{5q-l`MLKLLlV+=MoWt-ORGJ926``YLR
z78uV*cCZHf4jhC1O-Hblp72(~<$V)}#JKl%_g30gGaWI#iTVjqwm`Z%c)1jAR~^l~
zj(hHakALsVdH;mz6wG}Nnkq&pG3ZFF5W~;yHU2%MIg3Foe$IkX3qx61-;r;-RF26L
zBPaK~7o*NtB_QV3T+j;MQ;_YO?voJ*yqnkm^$c1A^(DlN-j_Ujx-$V2k25wFz9i4h
zbok5Hr0?>HPyUR8Ga{}Cs=>*vgvxcIY%8fq+oYxg{LBHLbuV9Gh2V=x1#$+swL}sA
zb4D2p;};6`@bjyFGcbp;+w{nz8|_79Z=~SH$T`)#QKOYL_8XEVc^u~~Be7m)S`#Pa
zb?}6t?`|9V#1CXbn*<#`yw78U3nhR3NcvYTc+i2=-R9jjnTKWZM?56uc`ltL#j9|*
z&z~ui!S&+icXpMpojLJyH%&uQ?x5q>9Z={_`r{CurO#x!8DMsbb{~~61QZTb?hoVu
z&|b44EmG=?Y2GjW#hGkpgCk|#ktt2PyBMz|>`c+T`pykzyQyk=Cv=TkSD~m)rm~M&
zUP=A3C8)+#!u4}RlBP5DDx5ViJDu68V=_D}H<XVQt=II>g-^O&*(a`uvOpVf=xdBU
zjn$hpZ-tuB%&O6S6tNVGpP6HQOPESyC6J4uSaZ_=WeR68gcJ?fS%^8_69}fj6i65N
z#qRen8o+c`F8?^7HHN5-@+Pv)ghyNkq$w!Rw{2GU5hpz?;<UP*7L_S?P1}qXmjmx(
zj1AVaZ5Rl!*b%{5)qHa1>5NV0cJ~OUQjaQM+%e3GucAVSCA0~e8>HyK4pr6%N0!(&
zEYGsva+PI@qroLr2Go=$i4(0i^{@AlJW-wOCq2v?1L84j*}tA2F)Rw9+8qgFN|J&U
z(lj<L@#NWf_!=aCn5b0w7<!eE7Hf6!GG2}Ofb!@Ovo*!|nHQBvg`#4=x9vqfH-Zs$
zev-=yItXG`oiRCcCnFgZiEhCCDB)mD`zdRi=JK19lTiVh*e1hnf`Lhd)Jt9SfEf-3
zr68l+WHKnZd5%ViUUV{~(s4Gm0iti_(d#%}kLNQpDpAk^F^NawY&Cn`fm1c@oraTY
zMBChgQM3qr)tj&PzCj6$rbss|D0p|Xjt@DsxrGJoWg(aYj_C{kE(Ef}R^F(@DN!_z
z3JHGhU;1mk$?q1E5#L#RsEB%ipNm@H&{M+f3rulB<RZ|^b#R}nf(s)g{&*gdHpsg7
zN~==D*@eG;Emqny+@D||Y2)~zAZZiR)aqO=6VKXchQS;q^4p1tsjaO7QRBtuHN28&
zAZMBzVb}HeK|`95C8J~$T%h$Ckc2)D(>Ds3)xWt>4UMC*>+Iu{f6YVm7xv6*P!?r^
z$!@<bq62fI+97HljdJY!G3ImBc4XD4Y}aj4Qofur)-gKBi<O9Dm7d`OJY#Dgo*C}Y
z(G2eY$T}(ln=^w%OG-gu6lBwi!uKJ;l#N4mvj&~r|5G8Ut17QT+J2<aJMw9yPu$rN
zH6^c>lO65b^ln1cxs0qU*L#+^kF2Zp3tbsZ8sn+Jj=Yu|N&{5EdM<zfQfmOzI<!N<
z91v2k9W$?C&|qDZ$~F*Lj6oZ$xMbE?L4`-Em<0$GgNAuVz)?gQP48tzABNTuXvDo8
zpbW3wBp;bxRFcVg!tItCYmNqS<4|7{%f~glDARpsQj`+C@&#NNgpvB~xdE!?CJbHL
zb8F>D2wj=9Y1==ay&kqa&~vFh7la@mUL2)HC_FUc0%;R<-N-oR8~z2BS=gXH6b%%8
z6zskx%#O2=i7Dd_T@!85OOTlmJcA5~REgLBLy*h0e@QiHR8i*4!*^oXvF83=F>ZlL
zcu0SWH$<n(cnxNgL}t)=H^n>0U8YGJR}fqqu^H~+W{W3ihU#Z#*-dXSy+B2QyaEFX
zf!4S1N4?pt^_HuYwcAx79_%!997>OHQj-=AehSIq_lp)4Zhh{sbp^{@!YwpK;?jFJ
ztR=`Jj%Hn?n6M=*)BJpQkVj0|de-%5Z#pOj9Lh9eU-(_Ddm3s3`|v(dDd`b4IY8$_
z2vc5k9F5L)X&>6noRhJeNWzeiSalMzzfz{@i|kxMX-(z`dSu3UIpuw6W5R3vnH_+{
zwCLSoThdHs1sCm|@EmYIvzVp$@M=<M-~3fGcSR@^I#!So>}9$Jiw@_33*$4VK!1-V
z99Au5Y)~9|F8qO$zFL@_{bR4)8Vh_E5nSAPAA`QB#58w-dVnt~L(&0(0C<P|bw71h
zN26(4q@yKX3mFb$s%Ky3u?JmrWk#C`oa(C1q!qTO#NU~7#6$3KE}|*nz2ozE6yM2Y
z>F<i97tadvBLb7dSYgcK-4Pq>JG<yT8T(Uld&2tj-0Lu-7@jSU(a@~DRA!P<>iC?J
zSq!?NCb>u#_BhpN4wum+_{L`+>g<PQWK;Gb!eiji4JM_Y<()J3^PXC%1E)yN%(s5*
z0|yu@W&|R#mS_{RK0hgWxf)N4#5NgGi7Hpk%)o5=;BCtYkmOxt2;>#%GN4z;&2jB-
zk!&^o+$Op=RuB&s0GVeV<SoUFx$k9NT+uZ}@Yz||my0DH${WOD5(c(g;impKzm1QX
zaVQK+3DHFkt0xVGzBN+xZH;yWESuY*f5ijA5(k$E^TLD+w7Zpc<memGz;B|DGeBgB
zngDG!8=WejG5PQ9kL~6?Oj26jSp+Coj|MO`$0=(V>KCrA2o2atLPspHKp!QyI&((@
z!qMZJWg##*)WFq6n60*xwBG_Z=N|Ohq%3HeuLN@lfzLZvZ(;_h6al{_d=%Z$Z~5;+
z5Ya2j_0cG!gy$Gysg*rg@5qRFpA#V@_=(-1$qb>0OaH)8o+jRr#{`Mko4pEI8Irp|
z5lxFLsls~lHzBgk^aCYthSm$Z6L*~hnL%i!R5R^ww_JwwP4-DP8~np|=~Vt))OkmR
zaoA-pYYyQo5)tyCs@9}caNZL>FsP<Jg-6CaRx~|x)jlydTaxsd=xRkeZB6&{{W;R<
z&I!tBcru0?bDxdTOJ!co+LGs_BFIToPM}Uv!A}e##&Jh_5FiUrhff}sdC3<E+>bg#
z+S+TiJya~l7F?Nk7-s4{@sfMNv()lY^<f79Hw5=@4OpwuA2X?-gpe6A&3G>^7Tt>D
zbl6D{NE81At+by!<p(zk-IF>AOv{1SN{nit8o6Xk0+VSG+I;k_w1UJ%onssNhP1&?
zXFWS4yuhIn&v1Fs+EDa94-gofj)?sXQ-UzVeh8w9Y}x2SgRgNjW}Yf_uq*HjoIq?x
zEG~s({Nyc<X^*zWy}u+3OG@vKJcy&73gbv%<M*nrX|ISPQS<ltHkvAUT2V&mXw{Kv
zLfQ<9OD6HyX52FTKm&>@gQnt7<I!#urpMI`opRtyv8C6hPc(B5?Qnt3Y9`BLtG;lJ
zb`Z!8z0hICCNW+LtR9QFjwfZE?(dvJNo>Iu)8HyI=_!dK;#+tMgW~ErZ#us9WiTx&
zsG-k%d1O_a<H3f+4bM$fgib;0DbCxF;$Zvo!7m`yFG=5}F?AB4b~SML$k<6X1CA;w
z@4NoaK7Xp37QX_^=X}&HtC7t%I75u|4CvQZqMXfQ2SygJJ&rzfX=ObcL-Cdd{=!S*
z2f1Z4F100C@i$>)35oZJ3N$Mwa8s0!macNOU9X6N*)_WzW<79~Q@rKe>Xv)b?}PF9
zLk`RhUta8h{1C|_jDA$^$;{zmecoK#j5?(G{3$o|E5Dj9Y?Z8fz4dnHE_^lld=BmD
zceVU<3=}RngAs<UiXD})v#RAJ=P9{4ha@={`@Pp-ATIKB`y~(vn<tjK(#U5c+MnK0
z7r(UftB@YC1AZ33MJu#K%YCMPgmYA01_Q+G9tsA%C7<88ilR>7N)H9Odbj8AdjOrE
zabVD!#owKZ+lnm>uSjUmG+7Z+hPu}acE%!{O}Hm9=ucHMxFrew(uo75?#;3B;a~m5
z_h)9y<b>kFT<zB0iXk*^g2c(lK68gs3`n2?aqr?>{bU2%SWDDZ0f0_QIGC1N(+oeW
zWjw#SJ;~7$39+Ehgk3<UNvhAVf$x4fxV>_Qd5pBUdJtPX4-(=01J9U3Y>anb@s4w+
z`;Un@@6+Z0&iU-xR?KgncEd?!+!ojfR0x}5R~(B$7_(SIy+u4~Ii{^)=)4Mpc-f;J
zJLCoYtY-mKzwjz{LH2^(y7r7SKHc?z^f(BNHas#BQf1W!<Nl3LO_5V!Fd=CFej%=I
z-)cGX+WbQ`^Y%k7c<wmk<k5PN37~pao@%*3?cF~*IE;?_*LEz;F{)U)pbdE}eKi?B
zRerb0NhOXiZV3NRR(2I#PwEO(43vtk{4~#^)gr1~08uRh1wh_O1R=YfDaVOBWto+<
z^P@rpY8z<#JBK#h0@BaQ+DByu-5mGez8_zd%gJnCB72h@B(Ce+bG>1puj^Bz!Xojv
zopsmcQM?0irx5P=Z-Eev)BIT_McTE!d>?>)9AOUKtfW1avVm3=eZaKc1aKrLj){rh
z!zZecmltQcjTes~H(9&oryl2n2l&qWO(ztMz<zKK*aV$xK<Ij7*$oO9h-LoLHsgx1
zi*kYF!y0H$DMq%eBYCBHi}$cL=c!?)fW_)UG_d}bnu|tp>aut+IU;lHy4sr^gU<+~
zzy35}{;+l(wE|kMku;=-Ai!5nZAg<Tva;3B6&-*9@Op;c+E7dQyGlU)hAp~Js?x!k
z4s1#6=Rpep8jI3^0iz9pw%q1*`4@6Px}cp$wLBHR8;+0<9dW_6lc23d!K8#tSfr4z
z_zK1CG#%k!9;(M;+f+&1yP1qmEn4}ONWmM3j*FT)nC$mnJCY&24lSc%r6=gqHfLzy
zq32KXyIj0=#nx3m(o6rX9RyOSkRVOv9Vf^-`4q)4aJH8c>?Fi2JkfY1Xo=%SeD;O!
zIE3T-oS?%7N-#=b99uObGF_--z#4}pKf8JTRJOtx?#Ph6=#AZ5@!gjoAXX%D+-Qn2
zb1rfi)x~J;?{qOeCE;_cR5TAwXCJ#WGYVk`mx+>=MX`X|TB}U|RhQQ58g#QYk51?I
z-{th*m{bXPVeQ-3ZR4M3b4EuYD#ubwa6vECb6|Sx9B6c`rgfH}*pN&^b=~Z%hd**1
z_y=jKR>~_<Av5*}mIP0Gbwl0llW&sk+<qxCK8GjlbB&8IE?4}ej@*>rU57>GreZcN
zCw&rT{y8pEM6IYuK~t65cqAGbh<RtPkql5=oX~F#Fj$;y#u*}`z*_$<C8me>{aRqM
zCI1R{<OTFp%wE+r!TIKUeP7Nb{0)6cAo#_vVvbQs^R}{^KDi?;<XE4^)${?Wvzt9`
z-kcz`vNOWE>PQ}de>xjP(=ubJfV*Z({R0NZ{!%6+XB6-j$Io<J%GFvZ7hHB{ExxDP
z?_SBXb8|KwBtAJKnt<(QK(Ud(;5>Ypt*u>18+zQot8pN<-_dt?A8lyT9puIT`Mx^*
z95up@u0p!SzU;Sxy}Z7kmJ<kANo6b=MEpJ3MgUc#p}yY{Q4PNQQ#A;z+gf*2(n>k@
zrd1w7O+ObW*eTvF-e*{IjGNLv(V&)+m4_m)^g$ltNcn^LUH&$^kq21%V3!%I&H#h1
zw{<$OH*fMK7F5d2`<gG{AeqqGdDy!37{9Wf<fBTu<~>RwSz<1Z!^JNH*-xwdiOy$M
z^*IW!q-JTdd0czP%ZGsR2=fns^Q*uHYs5~d#dT@WY}?PEZpj0*M9oK^8|A0{Zg+4L
z^e+`PQIc@@>&CTl0OOO>G{C_9HA`b2<n|{mH(DB{(gCpOQtSO$XVriat$()aWhEG%
zvA-TBmHxC_L^OV*07XPe>Fw@Lx0Q2mY60;WU_{IAkC4ZtoCne3Zhj*5Z5jt8x+Ycd
zy?#6JFnJd->2*B{5mO9QUdh6JgQ>O<aO+d<aGzB#Oj2}XvHn+$*Z2^s1g1=7njvm!
z5AVi?B*6Uv890cYOn1Fws8f>d6$2v@SX~?zWIa`Pr@9kAM*Tp9%@KrU9KAf@*C!yc
zZ-r5y{Y!BPLtI4z;-O(NbFj~=#Iboogr~v!+0UDd70&jdx|+9_DSkh^^n<gAAu;Kl
zO;6lagGE-CM;l`Jw|`C_rz%P8;>G3DLeQ1lF!of0va%gt`k8VttJfrY`898n#N*sX
zi~|zPBK99W=&&AsoQU6Y^fsCbV{*DtpmBrHoB280Fzi26(v7ucUJ7Eo>@RrDmkwf*
z2iM4imE`$Yn2G17yyBD$Xc@;GOqP_IA1bj3-*MHJC^$PnwovmjDVSa(%m5{*7-Vl;
z1Pa*_BI&KQLw8>E&oH--B{jluD#Oc$I{Hx{PM-FBAlt$T8Y;q!;t|7S3?_+-V^;a3
zQj5UIP1<D<HhVFNi7Hao^tm&{1Pcc%jA$T<7*4IreeVDy)cb0trg$z6C<iQWGL(I#
z$X~g1S0TfVoGZXyB@EWidmX>V!(v`W`GP-%QUe&PuYyh^?3Rva#Gel@uijztoP)Tq
zP>#MNgEOWCF(WS4@Uuchg<?Ey{GVg%SDUUr9bL_WKlk@Y#8m=-;6ve)rN7*WEBz_l
z^OL*~(nb67{9QF?^KH?n;P+6p08+b@p1KT9LWtW%s}xTm=c9yeyG@21&f|OEgsJTQ
z*j<hAa27|ra*E?2<#+nsL2;2-Km3YH%l^eVG<3w+XXpE3xx5lV8&@hjuYDuHQETZv
zQ}BW42bT%{U)@I3us=SDb((YbYZX?_i@Lw%`kzWWPL!x}PvuIvSG8pH<^tV|+~+^-
zy`Xp(Q*dkL`Swn-Y2*Vqto9^o))M}UqB<jxpeSy53bHCn<G<Gf$SfD{;6oTvVT20Y
z6?C_bH{_=TYcg-z&NrH->@)Bi2}+m3dTJrIE>5yZ>{}N%U}~Fw#fmKs;d6lLB4jtP
zFUfamGL6*Ey`R;?L?zOlZ_Kxs<iM19+A325;I(r{VhzM@I;vB?-~+Qf#tA?KwHaW)
zmHK4+sWInOT7z45md{?PkQ2}7=dob@-BXW<2Y_Ycd;sk)eVi+#Z-ZI!2p7rHPK@w_
z00?$9!%<93=9&r7z8s(hSp++uMO{XrxJoa_<ny45;mN3ni?%+bKS?9=X8E5aVNJ-j
z@jW&eH_$21gZaC@_su$$YR{J1Kklqe<=-@|-~N*32%q1<21s5+%nE=Nl=qDWSBnkU
zW$#Nb{W4F&ZDoV-X-aLeDH#L9ll;Jk!Hp`&m{$QX#6piv#6=ts&*i&WO?9^KXo>dY
z_hS}deHhq9mMBtvea#vfeMzldzI2i016T$}vNE!}KntLM18|f!(e3CGhwe8Iy=@|B
zTc0uea`S8t6xpU`{7s64!zzM(_o*F*<*~nOJ3xpJ>GXrh-=w%QU?n58xX*F}X`j1E
z%iqVoKV4~-2ym_`2>Mbm*-|F^L1~cb1+9g6)?$6j%`tB!x2<h#>2+ncgx7ACE*N?0
z!Qd~o84x#}y9Wow@FuJ$$J{6bk6s!co!CMh42aQjN)W~C#ao$Tm+SueI8N;B&-Cz|
zTQc`uaee#QZx<aOfI}IST_*7FKEQcY@&?EF6uUMApu+?)TI7C6{Hio_Lb)^=h(=Tx
z10@qPV;SE`NEmi@cnD7<RdUxQ4}vA6nu$TxzYCxfx9>pT_4)SiQn$A~{xOxBM*96k
z%sn#x3zeRo7A2g9xa-a0ddj4fi^X+T(j7V8d%b>R(?;kFZ^z?UE;!>7N@>ci6uyOI
zJcn$$vSGc!%buxpo^+(3n6n$Y4j(rC;c$kYt`a%}Rx}5^NCT*nVUfkd*F}tnC|U+?
zx&7cXOIX{JSRVWwd5)g=ZKW+4d_yhl;*uK=8MOG5lOe%>cEH-lg6DAh+;3$$OJimP
zT8l_ecu43(qXB{?Dg+3}qT3BI92x(iEeW@k_n5o`=-pfS>-_IFUyM-Ej$U3Fmkm-$
zLC*!N?M6ztaHN#q28fy06=!eVp{$=0JB+iCJCzct#onjeVL5~+gIW84(~wf<dvS!T
z(NSHDx!AbqL`047wx8X)7}N>BpqdABzl)yvnVB6W1m*iQKeajiF{GGYQ%m!p(CxPp
zIHPjE(b!(?7gPpnl@-m8vl{+J)mt<gVM<n=$<=s1z96!J%uvSGwoNiZ<LyE6ieWr>
z`IjMIM+mx3Eu5l9@Y3iRJ2-bETSumtQV~v-m08)Ted7WUn4;$Jtol-q9SWM*>9n2Z
z)i@KpFa2I>Rmu}%OIZMmgTXjNfFO?^QYQIs5<1t>Ht{I(iy<jXjm&wm$t$`oZ5g(L
zc0X}gnG$J9YxU5O1_ttKW?jPlPOSHO1f1q}KTo=<_ioD7vHQUh*yDN*x}gTh+6Eo>
zxLCZ(DXIyAng^lFqjUAc0dqqnsB#EMC{;L-eEg(iHMfR`84)c>0K%+|o?1sYsEqdA
zA$x(pi?RcLvwGDg*s0K1+J;DTC)}$Bz?7;sL~;&ly*qu<y(YGxNuf}bw~SsMu^Dx;
z;#1bGi^vWDwNM!#qW{uT{n*A;XoVnr_o_c1U!uQtz_g29PhNG`uM9isd31toGt6~V
z7T5wO>BrC@c&`N%CRZQw`#tn0Tw}zJq@3v8Qzt;>kX6(dgG=t0=wQI_8+&i(P)#ny
z;_*sINi{{%et4}UWRQ<)DRM~KLI9k%W5H0ThY9u%WWrPlWxz^2-tg#)@{A$Yrm<@G
z@Zq8NM}3Lz;x8yf%i~Ac{a+cEoB7>sRG?fBU-GM%k;NgJdS$9BEys}%=5!a!-gDa{
zxXer%yZx*#y1)U8J7I-7bKf46e05yg*ndJgt;BK&m567DNImH$7z)-%)&&@~YYz`z
zSP<Kse#uA~GG9lKjww(Dd2Lt@LADNF(07*iea@;@bT7~N>3VfI!*s`VNE>-Fi()(h
z=F$pjjKAo3<Pff^>|!tx{gFWeqa2C7Au!4QoT$;0S~tsjdrZw!sg3;DP)S4z(z3bK
z?|bFD_5NJ|TjH4pl+QT59vjffqs!~_7x9JZoqfoOa8eE=LJIT`xkV1f${R&wA}{Te
zR;}}QfqqJr1X8jhD1_S$vKd`4i#B<e<t~!p-HNYX?thKE(g(WMp9CH{<{%*^5RAvv
z#Hf2^FctEm#*W6uC_TQ=3#<~04kk(CYX<ZuYatLg#NbJSVT78EZFaR^YiOj4D=2fX
zAD*W<ktu9+=iAlFyEQ`g%#UORP0_G(O@(N<KeUnx?=A%jT&_O4Vajp858)yMK$$Z>
z<;K1^gH(fC@op=&L$`J^U5bQI>?JQKG!9HhymFys9K1Sy(PwLT0fXQ0Cw)4yFB~Yt
z&q-Z$rq!_(qq;We7`Z!q|E8!}p1ld1aN8^moD$i_%c$aB1#A9vqni6^>l2fJnVQ$a
z@8Ig^GL(yEp}PB;+Vi`x*}b?Z7_2z;RnNIhgZ{bFo4N6nx61LYh8*kJ68SUh=?&+Q
zpJCnd3B+PGwsC5{>6?;*NDP+ZVJ$K0a2UcE$nOH@!zc+sy?;kf1Yo1w4CTj}rI3{m
zhst%!pkJQ~L#ak87K}~qu6d<f>-3eWcJp`pC{g-(t@^{{*1wHMum;MbNOqn7m4aq)
z2Ixy<vSAh0A*hDG1M&_Bh~2W%14aZrLQe}z8O*A`(J=S}HQTJL=<KCxK8uxx%h9rR
zl6NOhKW>h+Khe`FQ-0YD7iE>igMK6-`61ru53u4-{($f<CS<**S=}ud#{#W@L#6S-
z#fP*u0Al9{H+FS<mLwz;o_ArlD`<$k@>s1t67jS8D4Fe&aR_)5%m(A~RWE_r-3$zF
zVrSz5TAxWxw`_w=u2la_+@9XMbuqCs(OD{_HaTvbn@*&ay|1!H(SiAk#rxD`fq+-W
zJ0l@Vw{^UL<t-BW(bxd${q1gfHY|5AgEpyXKSezVH!N|~pMNauOD>V~IH4+}zMm?4
zZ`ss2a#zY9cLx4~%uvzewaflzflRT_`um&8_1h0Xzqx!&@f1zsYK+d^1D6tY^9$`q
zd7oc*;6PLD-u~Wd>8W#{G@LbvetKmvHM@Y{68$+K`X8$=KU%>qx3DiymY9kll@?0S
zD{<c&@%LB(=zVu*g1}WyOUV_{Z!&i`!B7SeRkA0Af8Au<vK}e4Qy&Nj5KX}~7s#~2
zQa{Uc3GKI@{AYDIXlBGAQ7vJ)f>SGHk(hmiKybejW87!0k6(_+HQDvNsf@NE(yU#E
zl&Y~6rEsL+QKbxnF6Pz*Y}$C?u2~|UJY+g7AgXVzp4?7K3N;o_XexZv@4DjSO}Nyw
ze6(@R@_u3iV-u9E<)yRA<-i$LUomV)b<OG7eHV+nj#+wt6eC40k2LkIF%%M}mvONu
z<3}Pq=L$HOk?QR#9JS0CI;(#tg(YR&ifYMC*Q{Rri=(;%j#>NhMs79XuPB&RRcPdY
zEu~_FW)UVmyl0P5h^QHDq3B+`5Ob56YO9g3=8rEJS!pDlOK`TUG(py5TMM^Vq@lY*
z>*u25^$qk$k5;7zR~V|t{t45gRj6KB`Y=MVH+BR0+R%o^mM^q$ks~vbAhs<WN5iH7
zXcnP6tz(x95!Z(ZB;b+kWd<_ek75o=moAhWy1NJfglTMTEPL_Ff)GYG2WCL~NG%62
z%D#OHTcCi`hn-@)BqL;#$h|c4LILQXY1RB5ZT?wSoE_%P(J|M4z?%^1F<mSz?Jym*
zvlPv@0SV^*MXMOi=PfKYWG`gzM;#XcKxr9Z*gp~g2sU<Sb{D$~RTHe!2abJn>6=bL
zmrB|xR&tYx9odxpxcVjo2@oc9%t4I*YiFs>or>%O-sj-Z4tQkix3+M_q1$E`zan}}
zMV`@!MY|TdLAD;`(?mI=y@}A-6b=qbyMDQv*_9tBg`clxkv}pXyQpYf+8Y=(lQdj^
zJfpAuhGoA_hYh;K7!nE{rnXJCv>_XX-2lnhwM5H(vu%IZEuij4D+bDa?7$D}042Fw
zEu}cL&il_uQi~2{ojrMYSUiJw>hs79FTe;F6QjZuh35OflAc-ww(K<O@^uZl{Pe7C
z{?j&xd<La8{@YNg4_=3Mt2M+4FM~zYk6Xf4LMj_2!AvN`<-z1)1j%kLyU8$q#9a`Z
zaJ*vEvj?u;ME4niW#|=NDaxLkV>tG`2&}Vk420Sd#5<J|_`2>Y?plbXuCb5-A2KpV
zI7}DZ)Hh2zsut^z-HgCQRAV^XPg<#r{Vvp;X450!wVFTV{wP?4$df60Ss6(n^@iUi
zzUNXra|G9R!{2m(dQ?Rw<%NmOmKol%DZ9O{cn|gT+4xD%<JI(6=YWKPqi23`RVw>N
zXVQiLVzOXQE!zTGtQHCLP%-EGi7NrRA_dA_a=-OnEL*+sj3{C0kr1Bq;mA3wvogR`
zzs~pdgCYRj(kB7ZQ}k_nb|g7={vcy}?nN-Kxwe!3A^z62dif$l5ON+gi%?x6b)rBD
zWcC7^334l6g8-I+i%^&{((PRJ#ZcF%SaGF+UYBJTvol}K0a0FbPRDFX8mG&II;?Ml
zCJ2}u5FZNfnQ&Baj7MA~{0Ft-gJ%hmEls8Eo22lWvAV?F?`In@Njne&m?F*<s8Y2J
z-y(h6*UtY$*99kA(8`r<TO8l>x+g$Bv6V@XVY1S{Mb(Jz1k*(;VRm8_Uaj22sHZeN
z{F_e2g>XscFnJWFf_nCC)oHtg!-3BpUT{$TLFrDy;7is;7(#qH$|feJU{ZdQP%0uL
zqWqEBl=BHsoBr@n8+1qfe2}W<t|sxBgUm(&n=`)RcrM(;?kS4YFB8`}uE-T~$=h0}
z;a`K1ju8*lrN>rMo-kpCsxzZ_>Bv2!GkD!6Khe=0@^ltF!szoQE_L;6M0YJk$><j8
zwjL(U<8zNVNgJvr<(_7O+(Y-o0!tj~i+piQJ$A+_Gz5r?E_}4YJAM%;FkNk&^R!nU
zNy)-)$}{4blQMye<jZI1=J)P5)2uOES7Bu9U-F$nLHKpAtX_D1h?By?dH^{HVZ<J4
z9I0XGrIfd8W%af=^@>B$+KjJpPg-+^v%V&dAl3D;r&(UG)k;JJ-aJZ$>gWCv_H_6V
zCbbD~c7>4WYVcw{dq;idDRdYQqsLCbwJ>cTa-@stf0f4J9uIxyiE)x6Bcg6oZ?3T+
zA(d3Nfi3SZU})t(4d{eoP~boFbT#X9%M!`#d56+7Ve8mZ`C#K1CP6S5=5=oI2SeMk
zLXAyf5ac?H@X5B?pq!$hkt9`TiKi?K=sT6<LGrK>ut`7?>1A+OB(6^DiS{~nLEdk8
zo-pij!D9>2W%2&&SU$F>`1fm1bx}j!Pf(s0(vY*^3ChzS_wtT8eaO^6wmk}bA0s@j
ztjH@>f6qp)a?C#n{PMIgxHOx36UfOeNpzV{4wudJ#uo#<jU;LB+R58hNnOe9;?^NC
zUw)spbgKDqnC12Yx%dPVE-uAsMMvuUNgXpV_YuCnz85GVYQ=#Zy&#S8+J8SUB$J+t
z=CpVE#P=K@{DO<+A#$E;^4Yybwz`fw=)1kc?A=AjeHOvIHf@4|?z1y2d(A|u-H-qQ
zN`Mig^c79?tk$3<Zr@gZtADs2`E^OBjJ2@&P|+xolaOb#3_ORe=#CH^&o9$qy@uR2
z5z8dZB!XGMHBjhELxphY?eTr`u>z;R93&?%s128a=%Sl^kh7|Z`Di5YmV@P@)AJ`6
ze2RqTMRuUz!mnzK4lBrVp7@1+kXt*V%#P|3!gZ1Q#-?XX{Z3xc>y|=fDV{X6m$jUZ
ztZK1QmFkD4ZvsGH;GW?6;=`eWk%SodcVa+dUWp@`uSh8!%tpV_v_wY4gYr`$H@po7
z_40`s@wiix<6$cKpQCKHYzO07Y(T}ay2`_+c(<w8`rc~{)8lVmPpt}Y?u8lDGP)tZ
z5HJv^lI+S~g<9FIIs+IA7}WEoFk>dxAP)O`ux6OuvKW}M&FKNn&UI*cBjW8@bvGHM
z^U2&QDEqwTJN2jpFpjkX{f9Dl@;evIQh4tzLb5DaJN@PJ@H<jA7wG&$T_VC{(sI8n
zP;*|P-^QRm<Ye$w{;ceXQ`zs$nGNQHv)KJ!?UR<&Gra5Tj&uEbG$E%y?<=%w1O7Tc
z1XzeS@xkAWD0y=ml;TqF>mK{Xdui5!1QL{q2bJPJ8iG^0iRIVGpL)}K+hvQDba|B1
z_E1^M0c4Bu#vDgK9ypyt|8Trb#fuDx)4t!69rVeQaoRE_dGDjTNOiCbt?%81-6=g#
zH>$N?95tOR)T7!qUq8(4@_$#m@|CSBOxi{ud3&hA6zq^5*zRS_*wqdu|CIb)(@qBS
zhdG7l1`ZApi@&V|nkl)wZ7laB!)_HrLGLAm3<M@z*H^B3Pbc0aIe8>>9b=dRnUp>l
zk|;01mJ(*}O)2^XyfOVgN0G|yVP0X(OUa5cpH>-*&uMP>?5HS@@D|OW;@WZk439tp
zBuw8>zr#?9<x#50Fjh^3S3S&`u&if8y_^$M&}2W&fp0`#E~3JA)aD>{7ZrWblrU+z
zx3~tb+{f&>wM-y`q7UqUN{DyKPh;_(;J7c2^P_<+J`{zi&G+WGMj$P!B)C)DIujtr
z62zIkHd7rnH?&x41BOEf1T#)5tohtZ_Q20zx~7u{j%7$!%)&cnJFs(klACVDX_;sr
zbdMRM#n=sY^JCwT!2L+zHMs$h|I2Wm4a=<R47nurd}HLXtw=il7oZwChz&-aRBVSK
zW`65;@@D=P0)0=XwwA&-)L^lXRMHIpFmHnLUjjP>Jp-kZX*Pv)q9UPPSN^H~<yMNP
zs|GboWu6RGV>np@$`{qWy88#6#WvJi8)^hpmOd7W%EkhSx_2=0CDG7W5P{#*bj8oC
zf%@vsF26}P4?b~(LXdz*s-)>wBOmz{hc16LDl&PSc}Ni<d`hAxT5TakMWPv1^-h}}
zo(Bt|2z(DRR|-Fk8&R(kaK|?mp4VIRa@oe@i?Wov*MWWjO6lpJjljDz%I^$$;IQq?
z?lD~kyzbN7bT94a-xRz&6WkX()s0Z-Hy}Tdo_g#KofVRu3&g{!Mhr50pgxiVsIZ!M
z7S#?1boWM<GzP5%Y<YxBFvv6S*6QcLP@<(4-MBiz7S35HZ_X{WyVtlUQ*I6vZgK!z
z8uc#-n^27(PMd7lUIKkzK>lp>yL&?d+Nyv5=0i%zO@}U)u{7Q(sL@p2IPKpVY}$hl
znet0BCT2??0~ttll_-xYkjhW3sHsNzOELS6dv39d|An8YO<{e*S$i-0opKhf4{zQs
z#?rB2O@S>_4FM8WCa6@;@3Hem5vB|zB44fM`8MqLFXq1pmKnkiKT6i{65!RozhSJ(
zpdw?(qv;dGV!OB-gq2kY!nY6lGHzV##yq{l2X5$%7#6i4PGzu60H$?HxvC@4zw^=V
z0|o3y8XXZu)!HuGNc>EHG@**m$jkHW9kv2o#e@p<xC==x$W$DCYE}W#?sbITTO;lp
zIveNwgH7E~X>qh}9@yy2FPfd!cH4s%(NtNACpHpcOV|%+$c3pobzsGCKh*>SK6p5|
zw4KWK;l#$))fDp|scq_j8^hA13rX~bNThh4IoO(;>$ekD!GGsLbm)bIwV~GCJq<c!
z<TuW~zY}&`#AmHfs2cH|0c1o4eebeg!gQ?5@gjB@h~~y2)*IjA68r%C9yH5HV|4rX
z?@8!tQahv$gDk#?#qcFaariixEgrRnweeI;&wNPv^Og|BDjZV{2e+k)p(2#xnt-6O
zSYX$uNFc3BU_BUx{NZU$93t7bIYk;)voZv4H%*oOR4In1xtO8mBnj1q#Ft0A$(6hv
z-!;np;Z^dt)tZm5bk;0k*Pl-F4B_4D-z$lRLD^C<ynI&;D<(s=pBu|EiNJ520ebI2
zVbwOS(wRg+?Yt=M%$*$wj9@Fp=UE)jVmxXiD_ZTbUQPgN6KV$m@Paw3>I)kS&T3=Z
z40z}qUkUNY_s{C27;tVvoRaY*8w*;ZaZ>%6`OLSwTCNK0kEVG84TydASIdc@a~mQw
zdVuV;y%2fB>89bjp%b{QnToI+^vV8LVrcgNf6N7r|NEE=Oax4fjQ{hs#hCvM{{x#)
zqW^Ca1HBkK0Ta`ImP6_P3(D~CnUbBefwKt#!~a8zP%tnv;p2lfu{E|cw1j2<&%*p?
z@E`Vrg|)MZBfXgQzu6)tMs~&~|E2q8W@h8~Z$)>8b(_`M;^@Wc0Er?5VkR*>+CK5$
zg$i5u4iq;c3-`+R(9djcJfZ;W3=WTpc8it)YY<n+pTDUP1*c0JWoAErHo#9FZ#_Vy
z;WvhPgzGrhoz{7YGS8{;e=8Wi3ZeS4lsKH5-R>KN0T9$sF0pR^Af=KF^2EqNV#{Fx
z8&on@njwsltiPu&e7*E`GD{#m_`wOREtgaVp}JNQyFm@$3aJ@yu@GSSH<cJZt{ABX
z@)7?AdTn1J*(7#!UFqU}Ftx1)Pcj>htwDEBT$X+=Tyn_5SDtaJvIH?M+wANxejME4
zQa_UQzY(g=z&CDcUiwr>+pij0{<wgJzTJx8PhaXK{wWv)=8xw?z+%cXSCDZAtcu4m
zJZ!-3XOc7piymZ<+P&+}6U22Ldz_HE?0v{>g=s@9*N0hMdil&{xrP>g$dPt7F8wPS
z^k!*I@_LiDKjS_uZ2$7Z6a>wNar^nik&VH=Edb|(-A6{H`Kphyw)mHykn4HnC+zQ~
zFHjo<gS&qu*e@fG3RNN0N{=Ji`Nv-g3@BL4OK%~O=1LZ>Jg$gZqHOBxXy7Ho{4wrF
zj-pNm18YFUV+CgmQwxLbitm3;9-^r8hnWe6jI(maMIBleNF|;YjN7b6l5M9LNik!K
z)NquKNCR`!O+K?Gw-=acx{g)k9qLvC;E>u)0HlK)=@Z8-=7Pnzicy?c3~m3;kFQlk
zR*x$2@7zu>S#{|7snEhxEtc=@JDsbfvNURbTf6QI5)SOP6kL`4muLHxJE-VCS8k8s
z(24pcqIiF>=+d992lDiqdELv-jW1G!&~!PT)u1eWYV2yvi(Es}k$YKX(Jph{XGl&|
z7Yrv685?!!xs#oqO4EI-$D8YmoI676(aVijP(Np==;60q;$D;GeAR1&dL*f&tZ!~}
zhq-a`r*&>%#Bl3*XajVhPnLzJQF#qX-bH}``PR`nDY6#nZv))a3+m|O-(4a>UT>$#
zdVOZ7<Dx+@H^I=8G#PRK2X*hjBU%);S(a_wvTfV8ZQHhO+qP}nw(VPX)!gp>CSOm|
zneI*|lk{IW$vNkF_xtR%inPMEaQ|GSTa8Q+g4rQAN%uDFNN7~WaY)(^Hlk#_!WS}f
zS2}M8E_T<x54rr&_Q-~pP}{W&qtPcmFjM>Se4m9V0bX=r>}<I$XRZX78Z1(a!wvo1
zQ-dLftds_Q7e~HM-rs?~D<?=zxeW^Snf1r-o~dkj<mINoYZ3*mpJ2JvWnzI{t}dkt
z0`SQxWVDe1TZd9WFGq%kTqYXvuupPMpyvp&|H$r$Q1K?rBtG@d;5mvyP1{(nWNXn~
zGs?Cf@~HC{PK)3}OPf0K7dMOs1|c<WkzZ2Sq1YbF4{X?YcW=4)+|+`sNV(gxi|oi^
z>z`D*mI%&gyVk|xg4H>oEx8zRdLY_E@H@<*WLSSj>h_~>318I*9fJP*91XXv^|36+
zwCqr>-*v=5eU?9@^ptqtReRG_Gm)-{{4qDu|B&iBHOBz#vn#@z-&^nEeQ*WT@D#cJ
z%oC!O1;6cJ5Sj((%NoKA@tx$Oh-^V?otJ^~DtY7R%LLrVNnVtL+7jmG@e;!YIoSnF
zqm7#$C_>r`qHOU)cMe0V{u6#Dvq9Uzw-gxLO&<iyBpF}ts@~ve7n?}wFIHU$9JGTC
z`dKs>JbHw0vt1DwXK)kD+kL)iI;a!n$Jn6vY093?lT-fzh|mq9qU;i?1l;fBK!iOc
zX{y#`HnmO^!o?Y}H%JB7x<*tbXO#!FAY;yJ5bjmT`*>U&7i?J^UUpEYN9$1AvoyRC
zuSQCQ%`t=&%LUfYbxy(g+Ew(@G&P1~Lxc<vwN9B6MdlCyoRwMT+aD%$Ir@7qAEDOJ
z{n={;oJa@b?;yprU}V4>=O;iB9^<wXaYhAUs55P#eozE-SW=?g3qF_BERKTuN}yg!
zEUiQt@B-R{;cu=U)bK4>4~#dpGvwzI)V;YGAau2y(Y_VV)wLRXHoZA$qOD$1#CSz1
ziXr#Bz*f<omvo*U6?Hy)6>HIebfTi?oJ^1;gF*c!jYU*k4`=jTI`64haT0~@22`<~
zI)79Yl!TUUZ7f__IEU%qFw3WWLU(h7S1?*e7=CgSba`1R9&DJph!sT&m^4qA<((Uv
zB+8<DphIs~DRHTw3K2>+PhmEpZQqy&(A*SB>*Ww(qkLZ-K_h0^^_@7>IKX$xcNT;U
zllyffWrQN+S0*o1B+%U85i@tkTcN4<4@?8p{x#>!AjJ!kbJruBaAs=>nvUuHT~;k_
zJ+(9TC4X1g|8EQ00<A}BvnWH^K#dttK!%VlIKnzY4IG7WC|HN7IyYekBkP_a2+aEH
zFpzJ=;#c1h1ve47^DvN$E-{O~<za3RgqAk9MmTD?PGQ%ZIgnnPxO6Z#=`#VDiB^!o
z=l?U=Fiq#7Z(C(XG(txwo+Q))yygT)e5pkwij{7%NBM8h1QNT8fSDYzy|!?Hr1kbr
z*9v7*Pyk}gvJBI&4rVu<J^?Hc{G;2=?nUwV+TXYv-|XITGVf`QRaCMF=IK$Oak?MT
zAU%jTZp5ytr*SMGiUG+F;-Jc(c#fi$o-dab_`J5xXhf=Ks4HI=M!|A=!s6zDB&H&#
zHLWsvffvBB>H#}be=wAfz$QgoOrlbJ_t&V**%Lztz!Qi3qZ-7@rG<nCiQqQRJZ>*`
zL)r7e>aj;~I$AIQp|x%OP@NuNx)|T&q8&h$$x-Fbc8hEAa&Fuo9%t79fzcjmJhqrg
zTP{yvDp4LNlP<Y~JgJA`m|FEwHy!MfR-SCQCE7f4#n*v^xCpw_HqQKCCtb}CSrw3H
z{iYSRJ~a;Y2NO9wbw?}o2ZHBM(?NR{WIu>~zpemlL!<S3pxmcTf!J7c4DoTa-?2JA
z6@O|OI2s1-*z9lja*e<A`&QqPrn+)tPvHoG{#=N&+CTh;8E_7YR#|HAJnisbJhUQx
zG{htR_O2yEaJk^21Dw4^+;>*s1`7@qvSUCq{FDIeu1f{+v(wk~<eXZ+j_)js14{Wc
z1r$n?sZPv*i^mxq?XJ4MF2+bxy3QRyP;a~g+%%1!nmn^w3SKbm`~xYb3C-7zWmC7%
zV9$J>4JMdXNjB|6*X1-;UOm178x+HrK5)xA!c^MX;+m)qQ+5D;B~2a7Zwkxt7;sXw
z{-J?CN0Fs-ZW$I2Z;~!R5|s<jKIGTK+p&s7k-EGKHqi@$y67l8Fo4^aRAQ`D_hF4?
zLTjGy{3}OBL9H{28ll0eC<{XKW<6OfR1P3nE%SzM0SLnLnOWS9MQ;ytOrznjVwrN(
zJ6{)aIQ81pgUMkNbVDdGM;e3+x#y=9Lic)xTBBpC;c-pxsLwc-9xjoJBum$Lb%XIT
zMxbi>p@pKU)Xm(R1|%kNhkxOETu;edGle@Nz;Vn-Zoa;H3}SJ_v5Rk?S_13UGVDL+
zpy(v-{6rDkGr+IuO-nWU@<mY^R(}x83b@Y~0vx%DZ5YGGOKCk^>%!oXGO5|QjL6|0
zLf!>^?NeuUbeA8^HRqDoPc@H0d-BY?vb1<`P(jU0JH%2zv4i7I(?2_y>8e^+L6mUm
z#cGcD#=VFSlLKLaCHc;dc>~fbo@UkH?Y%TDUvG)KT~ox)tBNxm?a;#n6HAeeYQ(7X
zt*-w_cDd%bhQD8GiD?ZvD>^~Cap5oT;$x)jXasa%LB8`>D-#nStU)vZJ&gXQUPYmU
zLP=I`-g{vcULeiZ!KIYVpj<|s{`3MU5uUvUCA~d*oc7NNwo=2a7w-}kDwx$S>$$Sq
zah_`1MV?e9WxZAb|J?KlbvRQ3rg)<^+f$j`za@ljA6|yHy!r+F2|@78Um!nE%)D~v
zxm@FOpz656mX5QnPe#DfSata!YGcU$brKdY6e|%t#fw<1!-ty9zfmL_d+}2kYO>hw
zQuu&Qlq<^j92p$(C2LfKx=(dCr!qY2dbMZ>A#Hw$p-G|>2i+u%XxE2xvXyqY3<_f1
zYIEp938nhHo}<(`-bcIG-5)JhWnY8s>4Z(I8XzQ*xbtQ%9~)S;P3$&zq`6+Ai#x;s
zgRaXqvVJOv!elkmV3EIJ<}MHg@(g1vhFWj>2N|;X!!>Vcuj;k7K--d>h8>fC2_B7k
z?_Tiu;i3_y^|#a;1;Og_uohl7B9jFZ2&WbKmuPYD-1+7Jgo-`aj2u4tGAR#(JT=aY
z)`@Dado7yz++r!932|}Oc6YX0$jWcB1^&+-VCBs9p9s$;XO-g^rs$k0wVP?8ODUv0
zA3>Q<vU8{Jx{{h)G`010em#8&&25uxf!8G4d0?L!nT#3IfQon$0rkve+P}7aDsXRm
zsZ6aQ!Tw^4SAldN(G&yR2Y*uDK0PB@t$ZTYqMPyguY>jo0P(G5%9{9S_AGfN4`4l#
zi6DN|<igph;y-aJCF<(l?yU0c$<AYH)_POpJRI#rltHw_6<W=L+w?UK(9R}1K_7oF
zdY--7?nVd`@(s#}428+dWa~k-zli4lN8>BUe~w%K8^}QR{{jj8KMWc8|I7ILUmwi>
zbbMuGVrBTx@l|TvesW0G&Pkm0fxDd2@eoYn0c{+nR6u&j7p-HS?9XS*mNv=_ypstz
zWGXK(EP0%@2Ra02bdH*fw4>4APOXszgm&csmh``HyA{<X(kH`h3om46C{nuMTh0r#
z#zG2{h%E;=K6K19TD`PvS8akM#bZQ10mxQ@#FPqy57g7F?)t=_`%{o-S>opY8P%T2
z9rk4Fk@J0R&YRT*rLj!FOn~>WISx@aS(@&h+LyEfUXQcRT8w0h+TIleFC?Mb@D%B?
zE19ozx_=T7r9l$7JR7GrO9TSh@qqP6#y`AA0^yM=euJ+r;83nQcBliR$>j^xt7~~A
z;|dwg2Rj{W+O>8gV!lS`HvcA<6muB_7R{bg3Dr_qeKcYK`pDtjV4Hs3nK)s4upVEL
z9F>gwHTOJYhS1*Jl~;it4^%S?hNsxbnv=WGrE!a)vMRa8Y}|EY#6SQL{T7}%DBln2
z7I`Z|^wxa<0~Knv-H}N_%9hei9MtW(ygBiCkVG<W^VqS|m*)4K6skQvXS^KoHmdx=
zczEbp>U2%<>Amv+MM>eh=ii8N815}I%wAq?4RB@ZqDR6+;SXi)F3DZ(SO+i@IQ3e1
z%NZwrIq?z=5Ym>jR3oQ#c4l1UolvPY$4#zz@M-UptKv?zlaFXNgKsf-QZPL}dMJ}K
zR#{+BT@cy$$5uDkLXtfa)u2h6y0rtFSGSDhkm$+sIxg!zfh!(cS4p#S5$i|-*a&m=
z7N@kfB+WnhGwjkIwH};es2ZUvt*iPG5h77xO%@rb6XRXdK+mZ_catlxMJOv=6tYF?
z5E|&z=h(8<p0=S-#cJ#MYZCOJL?+85Kkn94kyNLjM$(d!c3yr6-YaI#gx>uP4{1M0
zeCPCx9Dqjp8FeK=`?!%O_d~<9tC&XR{bA#57mRI~p#@wl7XI5@!1-&9xZ?b29J^Xo
zyaklOe8P<-nU~ZRu55jJ@NPtpyx}$GfyK2z!VJS&!zh(~O02mPA~LD#44ZkX;L)HV
z9UOL+vc#TbU-txgrbx+a!R<_7<*%SMM=IKmQ1K7Vp7d|0!Z?E9gZjOqn)E8ted@S&
zwMkJ2-(bS2ey>&&q_|=m$VIaJG)?-1p5$7E)4Un{i^rpow`@)ONONO2^8Ds-cMlCJ
z{ay$yyoM9%zJP5h<#Nam-IE5YyoXpFG<D-~Iy=17Y7N;k(Q|FQjQz=?$j@?L%PjHd
zF1Sn7$9qo;d`jhs+9NMlPea8N8~Sz&UqtEIyAfP~9`d{NF9s^|LT3O<xFG2f#DM%@
z+Lb7~(LRhw&(Bwn2W6UD&1n~$+WpEQ;#zUB1k)p#K%bUJWx1PAdv#xvSu1ftg%$W#
z_`yc~Nz$Uu%^3`~*D!6pYV<(RCvn80g3`zAh-(KHs0*&-7#^)GURF_;%6^?QE6Ri!
zb&46>>7XQg4S$hGrhmDRyc9#HP$F4QS*}}u!m0oY>QbG|wMw86s-6F|L2r83UnsLJ
z8W>0zUpu^8l7-SgXkt7<e@BQs<3IvhS|Y*ktUlGGq9SRCjQxT4rb^kHHaqN;j_1G~
z+f+ESy5O4%b>hoZoZu->^l1%?5mcBd1shycB5QtyZVGsUZ=BBI_eAF~``$o(Z;cLD
zn`^FQ+@T-jhGln~iS=q4mZ2CII!$3SEQcG^jU!-cR_uqS;Tm`$rpsU?D|sm*>#i)Z
zfF5gyQ%^1HMBuXg@VBbwz@mBurA;(4c@f9p86J>^wCFl!HRbWwE(7F;2Hva1XI|by
zr_R|RJW<4kbv+?bWRyVdaY2r%5dO{+WVa76pzbBYCQ1Mp_L7SAj;h+e*+lr^gZc^b
zwiZE_3hS_?d(2o`>=VB0?;{@GPkaL(%v2tXj7uSlmP(R-=CfKRWCw4dc!IydxG_N4
zYvcNv$mhZ*Iti?A{)DH3$X{Qy#>&^lK!rZgs6dSR-!P4FmW7lkIBoSF9>%iM*Qev<
zl<sgC{Q9@k{{r)SZPa}Uo!HT@Ag$M_=?oj*{XiL-)5iEOzO8tGjO>N4Z^yaBZUVpv
zfD0A>F8ZXOe0t%Udhw}_CASI<v5{NbS;JrK|A>vycm~ip4-aI<Azq|bwJO+`Pu`X<
zXpb;sH4+UdGZa_;#Z%oBB60wRfN!dZ6pHT>P~xRmYk(B^R){$fPOcwcU++`_@;`u@
z5`#>F0fU1RhfoaT@Fo=5g#qE7%qq2<t41Vl%f-Mgkw%N=bU2vOu_NrT4-X-j;fE2G
zVnn+mW!UnuvU-UTnn09I4|1uE&w_Hjd5;lbbY;iaHyoFVq7wfapfHbNdZ%OJ?v>W;
z&Z%Ix<U$Es9Ldq_7QsDuq0zoPW3@bl-z=RUhv%IJytE!LeI+{pN;p_*e6;3mX^=H^
ziZlznez~sp2*SjHuBkt3&~PyKWA}GnE#lXtzqyiT%+7DNq}T<RLn+FNIpcVTswqgv
z93%X34nRum8Crg`5ABa0&}NBXLii155Q=tjJ=h^R@fS+(>1C%_UM+`EukQ8`Sdk<C
zg-GRS?uPCoV;S{YU{N~n$_z$AvGHR2qBPSfHFfYgkT6e3v9iTpR^h7TXBNalgdl|Y
zfmncRVYcQd>a|m{-@ro5cUHFosOj>NHlx3UXIB^BTA42y<d0>Mn3Dh&(d&?+HMqT`
z*HRAMkaSC>Xtn^7bFL1l_jk6N^WHJ;-H3%IlmgS|I2^(i_dMBY+$6hjl%({x89H6y
zU?r|I1j!lThBAHQ>^+sAzByJzei3tRm!cLHFMs85wKWNkS>a{S<-m$c2-=^Sm7C2`
zN%N)*671ETi>=^sKZ6y&B_-=0u2?vW1-jCUr_7kV6AsstMokzO{Z}iW9Aqs=U!r&4
z!%KmCGl(!ogUJ0ug2Ew_m3Nk+!Gtvhh3-@{;0SqbgX^%k33gI;&X^Y1biYgX>jqAP
zHn*<KNx|`3yHpCg?I2wE4F@;l0!8Eph<wc^2pD!)z!a^xh7bVC9Kn)9#uF`fnb-LB
z6rf~SLN-#M$YU&JZ9M?O@Q#EQUJad9ylRL~JICd>K1nGHJ&qo-@q;?5&-r55nz)!N
zMh~_hEj*5nWcz3toYh4ZndA@sJMx^V@7Q~!7l;Fc{6EOE?Ehs!@gMo?e<#oWH^TJ)
zQ3&k+F3+<3TgUtd82kT=9n62_ZU0Y0ECU-m(|?9oD<q%BgSpr;PYI(rS#;QI4QgRA
zQ_>wi+G8NDjY?wex6y;%zUxd2c`!j9^-oM@J!RZ=<}a7u4Fhc!6G*;Yvi08sqB4R+
zo1OQ@8k~U+i6Ev5MmSzo2<kn4z}c^t#bE$-xi&&E#DK<5oPVRO`>iU2{e#7zG@=|_
zCI7D`$k&<wx)7o#=ht?s<x)d(o1S&y!{eweP_;n23je38n=vn(wHTar`NbxN5IX4}
zf(-&w<@JSNSx;DM3BMM(<sf94BMw++jQ1Q5YEjE0h%WdOcArPJX}T%Rld;LY30XFW
z>Wo9+HkT{I;^^s}HfK%#_2Fy7>??CN!3T*GmIQR=gx^p;raU(yT>_wCmz93Q4S{Bo
zO+?*#3sYx<wL-48RRY#dx6Gj&EC`6vRRq>ZKM`<|?Ysik_2+Jh;8^iroY+^4Y3>Vv
zao-a-R9=%=ovYwe!6kp*We%x>$hCvnOg^RzWBU7~N)M?pgSgx`BT{`jt}gu|Zpq+Y
zTw}fg9yJo;x&TatKK=I2@PG6}tz9mkdCS5Ja+t2!!)$5dKQ=U+e|Eoa(&*5Zwf7t%
zs*D{Oe&;`1f11cKKqvL5Jj}L);GVA(y`E%OrGrq6hz{^0;45e=M*jIS+UjT+_AZeL
z(a-z0ufgj}@L!d3S4jj%sg$<K4JSG_f@X<Ou~=X?yZw9{a1*pa$B~aXWH!zC68gH~
zNDW_;g3g%^PxZ!#SWZ%ay3B+)Y+d7FK%}elSp(hq+W>|6NPqbyRte4F?w~uZ6zKP!
zX$e_od5Xmtk6~ASWzL)(XdVxxoWG|!EHt?k&P+be<aV))Cmg*)_D3}L(JfPsNp&=5
z5c;f!u9Z_9d7qM0D9n7?F<cgzYB~po@Tfdl?R}0aWx8i5<{7PbbizdMe^UQS+K4-g
zrJTt&&Qq3{8%sFIC@>D#W;WAOZ9Mu#lNHj~7)Hff2qV2c#)e4dkg}zwkeTa*hh`DV
z3W4Zq;LW>G3I=Q=m_HH^1)>Y0LPO$f3*^X{1O@gz9KrSl(DR<S?}i_hF?<HL+V5)~
zJrL(u^Wv3vW;mitb1)W}8ssUzu9yN-L0+5VKnyD_dU(#VswjcZu`{$)$ZJZQpq|3n
zNd^PIOA?opQb3VwpUMb%=2bA`P<#0-*bDwf%yedlYr>^p2<PS%h5`$VLJb-$Rd~rO
zG=pkC(H^tjCWYl?m%Ud7I2N@GPNLj@pl77E9dz;{uvV`qRrQ`WBQcm(hF|QbA~cT3
z#k`Cxx1?t$21wG<qwagB^Diqdw!dDAR=`o^(fz8Bll*ZHjREo%9AyU3R#Y$yhxxbq
zrH*j~rzHAjfv(}HPvMfII-Shoy&cScX5at%_-c^VP@itqjB(tJoP6-(kQy;RsG+|!
zCv-XSgv_JIdV&iAgLe;%ZKqiMLHf)4A%zl=s(0FS<)%Qk8tbn)9p-C|TJqOBXUOI+
zptjxbk*e!%=E#fq<lm(QrDNZzpZoO^0t5?_Hx@j<*}*@9y&JnuD}vGUd6!ej#p1`*
z6x2geo$Ai*vG(6qx%?J$Qug2N%2m~cP|_e8=L#f}jac2ci==SMl=^-4Wk}d`V1Qn-
zb(c10ED<rs(hNa9Db3UxphtZ5Yb{&3(nOEgkR)wU>cMw>3lAn$n95%r&Uo42dGn+I
zZM1sx-48q$%!F|LzH+0>Vu*j%$>G+4UZ}<xWll@D{GjCV1y+v>@QodwKA`1mK+E@v
zCNWj8`%zEW020<rO~u}*d3)g*Sb}CDg*N0%<Ic%_9#3*-lNfIL@-+!B=*R4|!J~oi
zoKNRd%!u&lRZ(ygC{q*(C!LLpZNJCKfc>A1+ZI4C_@o*?OGyp&^9V9I{-}V*<0z-n
z(hH<+`n)8mZI#pPM@I|?eOh-nb}+BmiJ|Un@=ZZ&-$1utNl6WYajomifeRAt;O7D?
zlF}Zkz8=hgiqZZsQvQBgj9Sn}kW&;K+pG*5or)czuX9{NnfL((XAO=eV}lFLhFs{x
zp2kr489<dk;K`C~RTx|KD&Cbp`|68JuT4q%txL%b>~Dxxwk=+1W)j-R#p!HM@RBIt
z0N#L)Cu$OV)bmnsfGfhf&SCv4{$n8JxswT|dk*HExd}x}`Crg91I;bDYBr<|eCv(u
zps0Q=q2fErRctT**{QkKj!zJW@;a3)3H`w8d*Vd)$v2m2%OD^6es|C=4{(=`F)g(i
zsviORjXRKKZafszE`%~iqpdXM!3&rAqGVba&MCbpom@4n(pS7dH8zjSQP?9HXH-tl
zT$$RLu&Wwvswd(PXt7xCE`EJ$yK<!GaC43LX(~3spEee4^i6K(>AodQna9g{`5#4)
z|ISwOzY{_JTc6_p_z3d<*8TW@3OW9p%j174<Y50V59WWKMwpn`{xgk?Ug;<5j<h$X
zJ!bAOz*%6$w`KdR%~Yn?@}Pi<$r6u)spOOk%o@Iz=vyhhKz7^i2kMxA%yNC5R>LV6
zEQ;fW`>8TAQCBl0|8XdA7dM4g%J|{;f|vQEpv>ZC5j_AjPN!H@nyq>IrJIa9vG2@n
zpE^!pkD%6Nl5aoQI@CH+1BXE+aJZ_qa*enx&PrH1@|RSf$K@SLhcj7+LWAzTIx&Y~
zWK~awU2RU^Q+N2hk+5L&e0KPO#IF!0*Y>h52m`s@HU=&;+W@-*e-~P}OJi0DTl0zv
zJ+_0X5|MRsc$EmApp-9faY-%H!m27hXWOilr!JRpF()f&CnF=3G#%lp1%o60_mbI|
z;Ml-_qt5{iAI3bI^&s2|>h&%Cc!2LKVcyHo8jBFfp^1!*-q{jMe%twD_``$GQb+kF
z*afuc(-7&Yu=R=$@W`<M2=tZ5`*5{kYtbEF`J?w>J0+@w`&F={%-`bzw3w_qPw(Bo
zDyWj{B(w+{aUQsjVtLPjz^=x%R7gEnSK)~{4wi!C?(n%aSswxC{+Wr_x63L!H)Et%
ze3%Pv40Y12KXWZD+@vbc{#*SZn9W9yxk=Ee@_mVlhXy%Yo+g)u2Fz(Qu`xO;CqIob
zZ+DDUzmRGLG>C(K;vd$rn^p14v61@;30HGqu>i8tGjx?nIOg_Peh}s2x&Q=$a#yzE
z9*;sqC!2m1EBhx)c+-(iIgn7I48fJdA<*zPTawEmoe)RoMtr11O{GK^UDn%JayR6t
zs1_-2Tq<<L#4{8dEd-Y$Q33jE#dXLZqy$1x3`0m!b!Zgr8|4|{=#mdDZk*a8ruu;Z
z4dtd3BE%GI_A**nDc+LGA)fC=pLnl?BkJ;eQp_J^#0pv%uzosH?4wt&H4X?~YGUie
zB!?yr=_l(`xd_ew8iu48$U<=ay%PaK)y!7MUSD9$-k%e^sjqN%mK-%?F&`WFS$T_C
z63Dp}lRK!^nvP;RPbSOfiwje=E}`?P)_x&E7tx0=`GQj|aFImF^eZmzh4UDZK@1Cs
zT#T0dY#K}b&>26xeom7(-jhl@0Ce0_Qr>{{8I~X-86^-V2KGLaV5ax|=1DLv8Yxx$
zK)QQISu7IP^q0!fO&@UtZfC`gjo$fMqLKXb70KPOdVD;0L*IRv*~Y&`*<6nAX>~$W
z?kMuSNsFyd3TjwS#ZFB*>$3MHta(oST(=@w-%YK<rbjf>?#_IFGLRbyHG){h7|4!9
zA49%^3GOZm;gc+;)Mpk+FCce|&wuIf4lDFFb#sU|$%Eo7QI&g+3ns=TG0)!$k)=c?
z;37=2B3ciTIqO=?O^$ma=eynb!W9J=c6!40rz1KuJ*)aSw=c_>_?8zAB9X@uf8u&!
zFjao<vF<bO6SH}UjLNobz;q~a@!)03No)pht$wS*wSv=>cM$1h=8Xb6ufv|$<~N^4
z*f=?&>awIZHpQky@#u}$)#KmMskf}I=!fNu9&F!<<!w?NNsxe}qPFXVYpa1H&szuL
z56&DDs{qu(DK6jqL?<{|USOeRYWc5^<yD0*Zt1F4=OCG6*WeK{-so<bd$T%7MAug*
zD8A!`+BdIw?I-szUbHLi%CIGj{HJg?C`n>vE=k|+LmW>Z4VYWCh8bFRN&*w1082t@
za%blP8SAKqpfvwV6okYmw0pH<Ix&Rw??6HTtD^3&?}o7yxf1mT;LvyG#yPZ(ODSEc
z+0%(SizXBK@6#o;5=%l&dRV|k$CHIJ(a7A$`2W%W?7tHt{jcg?{-e1kETsG&y*+Ug
z3o~<Pd}em$|GUD+!pOq$zo2emVPXBx&${@4A)RB}wnR2vI3L_Q-huDP0I8(`yIQ9D
zg2=M4j448JeiSKil5Kz|3EK>=&UL-<=M{w6{y-JW^ulyJc=5=M21fCcQJW)Ds(WhG
zx>X{FQIw}+bHoeC%~Sp1?ZxO8BC4@&Xb%KrxX@l`eTN%E&2RK+Ksq)S(B0d#`Yib2
zsU)6$C<D_W2Bb+Qj`#IwFo;!$Pvd$Zr4t#jX3aI-_sx4zV3oeshXDUjSZ>WS8qFK|
z++-M!(ZzVFFdB1Qt~55lfcm@F<tPhpw1c6lk$f>+N=s4<z5<0IpzI7(DO6H!`n>`)
z1jM3u&J~maoogLti=>MzMkg)*;QBMlWygjJNb*!oS%wDe5Qg&_y41&dvQ`a&v}5)t
z0CfSH0d($PjpStXyOq%A-;WpIU%VTZ^NBqKPFf_qAN{h(TFOf^oGRdU%MVXwmRf#5
zC`(FldCPydYBw%=JMzftf0N*uqEFbuK`Emv;G8XXpNqy*ShlHv8Z){hnz(F<f83R=
z!}7g_ixEZgx)n6n3VbM;)7COx9FMbP4T(^Gh|5Y1j5(?&^V;}0lA)Ut>j0a=KKSs^
z%R#c?ZZ&x0&aI`0`kqTWu%{8yzr<u79BS(@DZ4Z(N&KR5_p%AF1K5&><=M~%zsyEV
zXSQIzrTg1E;?Q&=n;Hby{Utvyb0@QQRk83Dve^J@o!$**)s;YX0Iio#`(XCtH$FF^
zP^KC@T2`z^{<`rNv2MCmxfmiXO$7Ti-O|-e>n&UL(Lg2BxSM@;Nh}B#nR)PSYsTBw
zeGVcP$h|rK*>7I>ApNGyCC!^p*}0(sM_%0e#j}FjSlpS8iTo+jpNy?R23$MP&(*=9
zyzSqKV`&uXGSxe+y6A3a0iRyMa7?FcRAgm}cZ*^=#&mCw#G-c$tee0uj5K8mZk%ng
ztbXCeG8%h=)<(d2|MEQfi6e72*=8fA>KH4|T9wN3t?Mxj>+OzU#ke7GD4q4lxxpAJ
zwUaAOlR=yHyB&u2?OM4+^|GvM6+Bn1p>Cz?<#a?jnU5kw5_zYyWgVEkV7Cc0$rn`u
z<R^}NTEr-!8p<|#2gMbic-WJs7Y$CLvcb3JXuNPl(BS8GH&_E*<<GSN-5VA7(1sJ0
zsjN#mn2k~%=!fdei%P{C511}Oul-Xz)lgMj`!{8Bmq>a1uxd}VFAvoihfOyYskc^x
z6*+ptWp>9EpEOxptPXBK4)T*SyO?7puNsFDDAJCjqkxKZuuoEc|I7iH2>+djQJe?I
ztHf9(T|e|NJtXTSgN;CYd@Jg=aYx%%O{Z{WI3u6YOIwt(pRwHNGMhf{DuqV`m<7!>
zRW)Q-TIKYUy9gdkHKjXl_I~f6I;^V6aFa}GMOdV_rfL9j?z0+8lxGT6r7X@rt}LwI
z?6ZHA{O8(|`(US$<V~MnJtbn|w+%<T<!0L{UiChbB&!jm4+8VuRb!}n#s5}QH)U|O
z{rek|Wr#1eQjRa6fUy<aZDQrat2=)k_M}M%d!qEA`bM8^HX!ACv#);UZz_5TYTUg~
z3+J^HfOcxsRhFn=tU22rb3GVW^^m(&BvS-#+6EXyN}CkrWbtC$$&86$BzG^<b_}lW
z2E09!Ov7>KPAiK$0rF7A`-)L5h(()Pfa2y;V2bIFtDHaem2?4(%(OVbc&UlVRKkY9
zTgt6xZMV!E)ao~_FGpY_lhqb^q*OCSA+voOI!-I@ZEyJ@bO;)^@Aj*!;n_V(0+tEc
zWa97Ha|7;%x<59wA<=g+TT|~J^6_R1SH%8O^$=)A%W8w8^pB5_7NKJ%fb1h7KJ^$Y
zD@GPPG_IS_R`>`o-~CLK&g5AOn&`0HCRh?5I@IB}oc`>U3%d_Emh^~lM1rX$H_g0&
zAI|x6O-xc?O-x$En!T&+=PB1aSlEgdB2PlHa|F(bl+jq^7uKOw7OrBm5$_i&N!-y`
zK{e2~zMNKkcKPtZVH@h3W{<&o#h0yA$GAY@YO^@UZ3ffvt-c8Gq{(z~7g1wC>Vb5o
z)f@qDUtgbSY_9hq85VJVTs|Y?P0CUsSyY#JI4YFkODl;I^|nCv!#e<p6YJbDWtTLa
zRA<b@Svezoqo(ib43@8*rSEK@b-*|~tXivIrPs$MXAdtJiyS*ANE{Y?WX&)Ok$!^<
ziF&_Qs!<?qRe1!7Cz2NJS^i_LJ+U4Y^v0YO1w4+Su1Nd7S@l|%_d|QMD9VZ52j`3w
zv$=+RM%b=`DqVI)QLpH4DjgA53ER?0<Su?!Yti=oOj9P6p^%%;hqXonHg<Th&#9cI
z_5wWn#sXxT-#m`jz5H?vnvc0Ccs)~zLDlpG=xP8jvrO!pBwmrb;t)TxmvpycNP3eB
z^6{z9z}<6<kMQp0G7pomp{SO$9Iad~A?|7uMlcYX6OsM!YD@jwA(HYL*;vom`MrBC
ziw|cKd6l|VISV|{UKrCg`mzTEwlahaGkK9O&u@~7;k6r6kmMCc+5JB(>aVN+ic)RK
zPOe8`8w4K@=O@Eo2OiCmmRCb-nFj#p+&bUYPX6cEs08aBJkKpDvzb?T934N|Yr}W4
zqaYVs%};w&&?C72B&@;$=NB(W#*6AsjPR_0jfXuDk^$sFaaQ^^PG{yFz^%&N0G^Jt
z7cLwST;wU3VgZ&GEnev+wk4vi6A*GJwXJ7-vXs3}VY66sX6e$YZ}oP<w|o&8<+6<^
z_nXSW>OM_iHN0FN1lWCHs9$u~hx3U)NU4u~^LZ!J>FR&auBDz+{xXzxjz80dD@!Zr
z`L$%3*@gQ^k&@E)#`@n|u_M%#i~th}V(~*O_8C3*Co4r?>~ERApU_QX^9r@e!UJr`
zmJX^145*i+dJ%@KeJ|qzGQfIvYPz{9*6}_)>PCb=n{X0tVml8x^WT1gqQH;2V4{vR
zU!?}-K9UEwk1I1|MjYohxmzKT=7=HRCK;}sUWK{W9_N6Yhaj!^!=Z^s#G_I|t@(TJ
z^pg@n(7+~@i43f#+l|dPq!;%ZZF-^Yi;!oS-v<11W~2!%roriKq9lYpEzbM5i)sy=
zxe0DWvLIxI3ZTly@|<R`q-!Z~hFkt-PlN!UwXfS#>-t;!Yf3uiTC9?6s5gI&d!2H7
zTEQ8ML-WW5gF0^+MnpKU|EwA~U>hMDm!5--JWc}$Labcgy>y`P8`DFDIp3oIswFIK
z-JB^FCmHG}Jjcu)Q9RA!Je3}F=9@v_xAHN%`7|dLJ99w8Aukg4FA@$4l$Ex@>1fFK
z1UVArb>&J_2fNlxd@j(9K-nT7li(>{OQAH&U({;qni~i7`^G#)bpgpmcl*6)7{hqy
z^{}-wUqKxF>w8vr$*`yuVd2>6@kz?S<j!r`bnBOr4cmy^dYHq$3P;I|?7$V53(yoZ
zd`fmGR~BtsCo1K!81{W#VLX96%(3STgQ1ZP)6#<-pa1K7*2EyLu=0hH0N7ydc6*%U
z^-&|E{ci9}kBRVW^f<BCMDF4|+e7IS_AJ$UDOU-hvp_`JbhVJWkLLMf9TWMzred=j
zUXsD+w{1>8dmR<Cb^FI@f$yd276c5wavQjkG*5Gd%PO<_%!7E0d!m%q96EEtYc(&|
z<GZVy-^D=EgVG5#%v0&O50@5IAvwHcRhb0#MLdVs=AzCCQmM|Q#$Nosi6F$^UWD$J
zOxuaoCPlE{8*(H}MCg<UJBX_D?Jrzn5Dwkgi9$VF$Y3Ab{fV=kpiMYdn8A)(HsLRO
zonU*D;iDpdpvtYCE`JdP|KsjbJyXEEr5mukHs-w{e;JglFn>QqX=}`{x^!kbc3$_>
z=t-I))C}ZMV_MmW|7NK9{SW`Vnj%$`@!P^oOc1Q&)Fw9WP+4V$_G@^mkVJgzhm+4X
zX^iy@kZ*)Als$=jsh9cWqspYl)-#INM6og&{Vp{>KE?QqM9I2>4xmyy*yjw>fS6N9
zAS(%j7oyM>9H&&rBoHcDF9sEClBvYi7;Y-@;i|YAA<H;x8)h$bJ*n1=AP&gYd}YKc
z6=d{+JpP^Y)J+oq$uv-bUqgE>k$Ats`x9%Z5dWYZQ;Z&G1idl=AJ}dCz<cQng}H3&
z&-`=7`O4WQ(58-569f>o0r3t^GA1$Ju58Sd%*|mc2t%YqtMHJQj9N4DU~8%3)rx4A
zs!GbnAP3<~z#E>%fD3U<H4!qVS4cgtMFa7;+~_0QirNVrBkUzp;NT0L2F^He@5UnQ
z3FSkP+DcQ?ECc|Dx5?HDg1-sxp7EGOGU4mT6Q7j233Mb}DXXNSb`?&@ZYOrd<Za;i
zZcoO<Xj*z-?W%nxpfdM`ThLmLOl@C_qGCkqV@|IX7HdNrt}*=2(JUleILn(=zy3Yp
z@uqBOBUp1$mz<?nJl@p83`U~dJ)OQqG)O2ElnBT5C|>?jc%PdUCu*%laa-7l3nDi&
z5sIz*v@u3)v3~8R`N89%(urE9WhP2tYa$`S{`QWR+g}$0D@V+QyPiF*F-ms~l?(?m
z+933I6(F$R?J+i|xz@4zAf6<hK}&wXjnI1s^4>H-Uh)kq(_&OjCEod#NcjPsaQ#$z
z8xYpt+_DMXzpw#d62xvGgyK-oEWj~R(CK}a{UUNE0=trw_PTMFxS+3)0{9nUw7a9X
zlGbR{PWQe`NYM(Rz{WQu4yb^M>C(L>x^(Rk#XH;&9X6f_HH#Y*=1*bnXoHK{s_S5k
zCmD212!!Xw_spwMgP!8#<m_jeSbrazDTZr$)t`PQNs^I6Wf3MoEJqi7tHI_<l%i01
zLYoCI3a3_rf_EY>-5=s2Ls@+@<3!$1-xa3M`zc#I@G>0z5f1M-jHnO>&@?>yOj$>p
zZQQX!*Ke?xAnI)_T~jLr()w$_+pyO6V?(;U(s(u9kP-uaUnDR$exPQun<^x!Gvkef
z%Ysamc`bYnpfY=6Sq;W@ZWSyAi>ng`q;)rNw~sLf6i}9u+X9-p8iPzPw@QVwp=QeY
zzj7ad_ma0OKmy2w!tZI1_Jk(5-Ojb&@1Oi4(g-pa=MUWdo9{zIGfh_kI?g5b)Wp)m
zyuiu(9p~XoIfWz_l97(#ii37_Aa0dMxTJ5X8C`BdFi1vGrUPP?PiqV2emI_GMWh($
zS(zfj21K>LkQ}7mNH5*Yd)Vk`=S&vM2(bCp*d6C<96=_^3SeqdtV9ukWohKfI~%&t
zrg1!|@K8B1iwyd>D98=n(N8r2kfVujkayG3e@y@ae956sSqWPz7S(bASaJQvXh=9=
znr>Dj_szl88CdzjLp5Bko%i^WpPbDt_5(vp(F4?I*_VHUQjpKW8w1Ll2JZFX#HbY{
z+w#mgKj<VeEfau#<w{Binq9*+O$vGgor(^|B0}M)fkT6lz&|HkX|~Rhq+i+y&w|!b
zA}hlDBG+u_;Dg!Isyef#1G_WeAq7YYWYkD@!Guh{nfg0wNlMp9ARZIxa0CH*?$plf
zq|NUh7Wb5a>sG2RE1)Qz)Ms*^E+YC9>iJk)OKsckt;U*mOJb<OMoSeUJAOtKOPQ+t
zKSgLP#Qu5%hQ{n_b9LEW)=mF?^SIy$t!l^euvV$w2gk17GAl$!2xP&zMmr3AqqX<9
ze^NuUH8{l!LSjv40Ti@#^=KN^|IKi?3gj8m)pc$(SnuXqrzEeV-In@ve)Pv31-asn
zXfb)w6!i{*O05DBquK8HbMJ|s{DpfK>HM}mui+i)EI{+2p<4BFzwm_!rR})V;h;0r
zzvgmVg9sv9$P>Va5vfy)<;6LA$_Fz=S~DpMd%Rj*Ho`{;_D>u|FdZ^Tis0{_t{<4!
zgwZr!L2Sjxhw=QjAQu`B9+PExfiR2qq`jUdWFFarGzKfZROx(m5r98^Sg)=-wAjp&
z$S9vA_B^%(tWrKw9W*EMUL+8E3%-<vJSF%0@lO*`f{lt=XnOy6X)3MzRwu`i_Vps4
zQa*jDn)6*NDZjDCT`LfxmhpY9MHoeOIuG6+lRz<~bWzH%lwd>$^)0NU0b8Cr1U{$*
zhYuC+$h-=>jb8x60EaGjH|PTrkUiuOUclf0uZ9&V+=P=d3j?3yTIt%!otV|f`f+le
z`!hi>YsOTMHUkdy?SZQpC1NJKTmT>4TZ3yR&7%^TMg;qP5HUWUvAQhbIv8+|E!^=#
zc;wX_pMjbGq$f?J@@m66@Z#5jnP+I*2zbPQl+R}<uh;QemOkQ|ZIgK!#+=af4%poj
zKbk?$jvfo?G98?NS?4YG9;|^2g5BNK!<7dy!4m?%8hF>RPHN&Hj+c)iGxx+RkA~t4
zJ~PEtASumr^Vr7tK@UmtxV<hxNO_8xxRzeB>eR`~45Mg2{FmyZFl<NA2#1~UHdYns
z>#^)54vKRFrJj-87+;{Cu8o`B=#Ch7&PC{=|EC?DH=B!=G}9ktPD}B#M))-!d(+7{
z5sKLM(Z~dyVU{~3)%ye!VVvVH2wq;Lp7CX4HqMf{D~znD?7#*#*Bi<+DXFdveFL`r
zidK8y=)eONCU1^hMz&^qQ~K#S7eECpor|UEziO_OXzvF@0WC}j*Tir9q<|Rhp|QJG
zbo=E`Gq;q=m)wR*Q$KglHC#&^PNx~1Y~2(;=LqvMs7H2vS5Hq#-3;fyOO*xr@Ju+x
zyH9W5o+$7>G$N1}!Ad2m^qJ)Bw{u8=t7I!NO~Nn;^%zz;K2aQsroM2p`d`12X0&O*
zFtffmvW`nJrErR;$0y1u;t`TFn_j?%iGT|aEfCyQ#~R3peo?bmdoOs=8TP_w6nv|H
zidf0+5+Mj+pVQ$;3+!K~O%Cd7Zwa#MBdg!IB|J44_PKsL9=lnQ_P==Eb>b=rG|*d;
zm&<C0z&9%W<nm@1=52kvu<RJr+_FE6V7n3F^j=C6_uVSo<X_i|?BvldQm;;amAxv?
zli~MUpW}6yYcNN3(QQf1o(PCB{^So_sI<N(UMgUN!ev(Yo5kbU6ZX2NlqM<769i{=
z@8i`w5xaeE=eh;5&t?L<U|K6tUlti`iSK&=9CR=tY@GK3J?`E!6&%l^U<qxsv$`2x
zeSx{EeZd*&;uwAs(M4B83dZ(O2v%s{SFR%&Z(Jc%eN!+7D5B{#7w6B+=(gT>mWNB|
z7rA0BmgsfUq6Qeyk}hAsX=kOL%hl++eaCFL>K&j20~#8H4P0@uZpI!JCnsGIvKDHS
zM$iFoTpo?p`6M0e-rIYWeX>J*S2A(XKSa-R(y6;JaPz6BvGm3wr3Ti!18qooHRd-I
zHPGWz-Q#KmKuSUH_0T$kL`6%E1Uy=R5aADz@Qo1xFf_RKUKN4^)X4jbdXJW>YQ|K8
zb0uX#&=P{bhMwP#jD8w{?ltrTD;)Z1)d}RE?KaV)juq~)NOwhNt#?c&TLuwE0!t{D
z?*B!}z^t;pGI0O$zf1y6K>(LqSX|xs3}3Ra(4maGW9VRfK0`8`Lx`@4#O4Etbq~?*
zUk6r5r)6P^GY=(T7e}i(O7&&Gl~RmEp;(onsn!pN>~8dP<9KVqQ<!X}?*~$}OEAPi
zWLm2v)|&ozfX4=0(2}9fVPHV{#>?KSKYhi7l~P2UpE7&Vr?5(pDunEcEc(f_(qW?{
z2)0CGOzUT5;TsF7haC**kwLB2^HZOKH^C(#f#-uL3{K0E{Ip=daM9t*gQsI>&sL?J
z-y2k5jHu0ujtnmTOrRZ)!@VmSY6H11U6|#cB!EaEjr%tX-Y$W(;NwQg<bux*ZoZ6y
zzw9rTJ6&!#&+Z{7RCZ-Nn?0LrG(Wx9O8$#UX}64|@Zlf8%iDRhmo}0~YRx^u7JCpy
z|2d3&5zGA!$W2ccUj$3TXeH_$c$`A$EUQw8Y-2=S8oX_r%+64w{68aV*XuGB^zSAu
zFigX;Qbzce$&99y8C@4xafVYMr^W)1SVdI(cZ8o(2dZnjM7~dd&EOrfPt6L-^e<Qd
z+}<kw<R&3&j(!y2=U%5hgK_tyn@=i|UU0?UCGFvzt_C}9-ilxBXGY!Ubm;c;Ru_)t
z^YzSJ;Q-r@aEu->`qrP#lR4*r^5nNA_yY5Fcp-?Q^$MNkYJZoiIVx1aA#*&*Vf4<c
zm)V8KH46KUGp9_WF?l7?zQ<z5mhTte^j%)n*rBpqW;dVH=V0`tg4~>JB(MgNHNKk>
zagj!Ub2|IcAryqr9AUWyEnC_lZY}E$WdBq}!V&~EwH#xu18+~0rv?b5GbvixthvUZ
zppfsX#5^tXYFb!Y)YS$3y#gLowx0=;-Tu2ew687-U=#skOI6EsW{;INX0e9gu(G~=
zV$Uoo4q-1Uiw>qu&Y(m~(}0)0bn_!o2yDGU6)Ji!Irf8O+%QV7Hvo@Hf6I8tR*!!!
zEAox!20eN{oo(f-Q{Vf9`H_4T3*NKju56SK+os7BuDgWNJX?EiVBql*t%U->LSMAg
z#{$C7Wns(EX9D$iK7Dm8F>*J2jS3hqYhL&&(6n=Lbs^gJBAZ}?S4ymAV~slDf&24@
zR|izksFR7OvcO6!2HRiCS+@CmcAFrsI`f!p!AdwoqS~26bX=A9cgKxP^QV)~Sx|=%
z(x0ygz_*MXcbFpV;kFWtJCg|{p4|_S1v2k@gyHm(rQ^cToz>EpA}NZ7`e1T0l}u;C
zq=nFUe-zfjhfpgHrj`nupjnPYcgs%j)`;m5AdM+b--Vg3w}Q?_3e{(b*WZxNQm)ZI
zk#MeO;d<Lv*y$x-Y#Y|KES>c$O=G~c=$AI3*!y?S0~QpuWidXiIyt<i!|>+Fu5_jC
zE)M8CJgKA_YRPc&f~i{mA>~ls#mlD$te5x?HY|bnq(e0y&|A>Z@=D>a-hGv5gp2hG
z8Xh<xYtcL<lwTYcHHEyGQ=hI!omC8FFhsBV`}^>DL6PuU5esHOhqVx>4w%^ZKE51_
zaHAE4;p!+)xXeJUa~+ri1UY%d3Th@={2d<=BaK^E5o;%RPKMn%px}!bbmrD_n)??+
zNRZ;9`_$`fEzhpzy*o_lo_wn<<evR1&@t7N8{~3qK1$uI82(+r@S&0MA##*J9MOai
z2pbd`W!}=ICVIr-nt6a5tM+%t(n-xJ+cVo5oBS|M5ATh&eEiIXNJ0Brb&5#scX+S}
z&#{JDP_>718`5*I$n%bf^gHHb08U<1#AR$}BjRb&q;%{2^eF(wy54LFx8uxE;GW+F
zA|Zg1%krwBG|p?n(Aq9%EG$O3sta^MI_a#=V+NOY>7Q%SHP#vFl%N8OS@mA~_mQSJ
z#yI4CQwPMHLT(<r9c->H&TZ~8cz(rDA%iS{jKvHZw8ZM_DN_zZZ-hN((5uPo3j4dR
zgYX$o!%fg&8LwFj8JD2)6aB!ao;!c5<~77=CPl!3^WAO>143o3a(<mqW-uqk-IWjM
z)y&;z%}m7Vv7+EezG~45rGGLeMyDn;`e1Im_$JzY4AM3l_>VrPY1~#;3=+iCn9-MZ
z)6**I6x#|Yd!1%d#Hp;jpfeviBs~Osr+JYo#*9~Gp@)%WaQYLquuSr2R{`8|gtRz5
z02Q4{6fQX6#ZE3@MFRHD=x>{@Mvs+*1X3g#1;;s_J+qp8jk(}idJstsd?V-5b+l#)
zuVdH3+K}Hr8*K0I6h3gR>V?7SgW2I|y`~ll0Bnt9C>G(s+cMQ#g3?;=jbc+GsJR6t
z(<z@TCcMtIcpupiL><JGS|YQtW*MEat$a(Dp$M=$`(~+(`Zrc|G2@@8A?4@tj(=`l
zEN?-pJD##I+l<7}19zNS!<1*Jk5#U2_I4f~2VTWxcEpI(HganubIIv(RAsF7z$Spj
zA4a{l20bHJEs+e_bKzx1DY1Yo@~It!2{~@MMK_dj$<`5)>6lj*8F(Tg?^xq=Yz*ne
z)SFuwLL?b+wl?zO&nOW;%ZP8Sr>g|O0YhYP<s8U7n~6!!b*uu6-j2(@$z(-IQ(uYA
zL389lNpi~!M2w<%=^1EK1`G(LD=?NDG@BiY5pWP<6u4VWR-vE^sTiH0x`@5Cib@m+
ziKUJbNV*(>&d1a8K43A$^X<H4+mtXFt@6FuHu%SVOb}5cQIJttdW!<=$D&L(mi!-q
zP{<x>Jp&CZ@#xKW5Z+DD3HUa(c!Lzr=n~)3t!yc9r6`Qq{+$T#`|PBCPy<z`iS(EO
zW5|HBGP<uepGL_5;2c^BRXD;tM?={j#)}T$KqjRM^3kuMif}r%u?o7ex-b7W)rejW
z!G#2!4BVL@%uI4gMjYm;1P^9}fUgyE)eEVb!PbwAj?M`)i`1hi@yJWgyDo7Q@Ub5N
zYN0_IK&Q5=sc8Is2s&n@R?gYe21JLb5>)7>%`Y+2{oN7VwrtO*5c6-&sh?-71=rw(
zS?q>3MJ{!yT}o%ZthD$Z?$ItV2Y<uvYyk(bjgy!7>ojl;_zo&IV%(5KuP7F(|5~Le
zcFi*|e{gK^Cm3?88&FdTRYcQdbk!?>1(CUOL^hG~^_HAzBSc(-Y(ig5>zpd8DIdtN
zMf9UT7XMDdpu}@XZ)wR>PJh%6|6fVeUBv}}{lYdO0qTdE<w^$E$Khlb(jlrks=KQh
zScnkQoD6xqvez@0vjT+4zkxQQs}lYB4IxeFbVB_l|06F)5o6{Q<d7tH;K9`+J?c)b
z<#t~wJR->-bj5Z|z#N{Rgby^uqtyPIQ$Y0sfr(g|QESa^g|K^?<#CgE(Tk#rWy?hC
z@eULbh0D;WDv#TaOM)E1H)O~~S@yJPS}5M*4UQa1r9_Ni78TAim8ZyD;ThV<ixXHP
zcc)7+dEtyG94x3;2QI<kr8|_#*fI!LaWv*HQn=G)dXb%tXNL&!gJo)%BrPvjjN@ND
zi()T6m<~&M5VQH<J<eGs#7hSaOGkLmspDYK2^-9&#JJs%0n&-V(+yAq{V{pj)D}d1
z;j}#)OSEv7rRtQ-OMV0Uzx{IK<=>z}B7wKyRKb7Lrm+LR4JdE?V1p^4W-I6ZF9170
z#J?;j$Znv7ZB=((3i>I@T(L$&wb3B28+MK<0b{DI=Y6ZgU=xeXyfs6(nca*N(|pB|
zkzn@9LK8*ow{&qK%+NI?%<HcyrMPmTNrrm-3J(o`T*yWRXGhneU)@BXFsS*=RCGSn
zvaGB*-q@e}!YHWh-$~p79Q%2K_7%RqHHCab4*p{)(DFdGN%PUUd94|wGXQ#Xfmhd)
z=Flz6ttt<qy$rEfV(=!y5XX!Ck2htCXF-UTBVNPtY~XasBK}DxL#e@zO2~0#;{*Ud
zZ!jJb-4IcJHERa`)z5BGntBS?ij|cr5BpN)VGR4$3?ExViA@bu3VzrB>ePOy*9QM3
zGQh-*a1@QnIbBychr-x*ZA^O=*29dy=kQxb1ROu6L`pf6anp2j4fMSFUe#V^$W|aZ
zeR0U4GOCrH2*qK&x(4hZvf3N(bmToqY8)N6<3E~b`ockwP#}%mk2FOUX1?LXMy9B=
zE+{X&>(ap0@#mZp90Nc9-e%QmKy4yLo`o0&3%xSqZw9PVZ$LIzO->ENunM@lsOH5l
zSNI=g1czmgiMt?u0?ttZu`Wn2oDA^Kmq<nR^Bw(C(V9Xe1MBe(*y1)vYt8SxCDB=C
z)0b?9Jo-Fu$486fCdYRZs~aBUle}nQYKj!f0+Mjim`Kv~E!48A!Hm4)Xkv@}QPYt?
zj|dbuJH!L<X7uV{BhM|j$&u}q=koTtSv8L-27k#RI9(32Na#CbZoxEmV<0jO-rVH8
zrF;{r95Zg`=!pBfLlt@{H{rX1?M$&Z<ktf;Q&%2aVTt2vdA-Dx2!T_q6PMjN<~Tzi
zeeY)^9?K9dQ>H_+U0+sDm1F#&M02U{QXRIg7Q?{9E|4koDE3c+VRMrRADRTQIaq9e
z3f{Ml{w#SZ+FpF2&Zmq<GlaBKAP3B&cTxo29(LP0N+b$zCs?ya#)tJ$bsom+pW0=R
z0LWc)=ebWc6SV1m>n+}h@+Cv-!``$A)pm$4Hy+W~bhaA^RaxeD3JJP?%O{>&P+=Yk
zzdZW{hcNu5p{K<5M@<(Azr6E3XgDBmvk*|nOw|j~Obk6niTlLi?mt+#I$Q3M#$j@Q
zOx%(O!JG>Ch6KS9E0}dPV+ljG5OEniT}Iku-z4M9fjex*A7yg(;I4X<I<<W?_wCPN
zcv8Zr^u^Rl>D@*2Pv|(SG9&of$_BrtTXT?|_wqodt+_-A*_U$Ztf7F1ZFwi}`U<&I
zAiB2+F2&t1O02J#1$ENenA2Evv#f_`W-@D<^9Q!%gs_@E_~>>;PWi8!JO^|zfj(zC
zEu?sHOw)@iye({Y#!Y}s2m9y7xqz=)gOys%r;3Vaxl{8?ajs3H2>a0e84t+>)w2+r
z01)A{9irr#c-bMO4JH66o32F}O$@iNi?j8-1$O0BZ0DyM`M9aXB5EbkHY830+hz&Q
z+v_pSqp$574*YE{H~b0aSb^^Y%L49@?*y(m%s2P&apY0PIH0X5wnd$;yXq>`T1vlT
z+g|`n5?;MF_-RosNwc+K%j8$!GiLresmr%QCa8s~7x$KH{F9&}s@hO1&=Ogc_|RMq
ztf8g0*Ydnyl>ayZA9>1vsSG53iMsyB5aqjt9knXRslSaa^M%jPH2xZlXB0-4MiI4)
zfxzF%{~wog9Tp>UYKKzf-5H9dk^>hL?&ATlW`y54mDBrC`P&J62UX@Oa6B|pN^>1!
z%ve+nz^2*s8MavifDFXjp+LD)7XD_S)Q<)CPd-~&Z-|A*W96%V#1sb~hON7GC~|0Q
zEr35bB_y|MIG~4yIStl)L=NhgGDuo3NGIlj8lsRk5PgcPR)*D`3(s3WnH&p1!i<?W
z<M^#<)*?u`iW_}9Ss+B?^GFGDKS>q9_D3!+hW1pU9*6n55h{UgXKK4IK;@S!7Tec?
zEp69P^7ZiG6#!0n4n4^6?RE}Ql=>$oK>XH?SnZ;dryI$9^qZ7R>6^H<qhjI{@S`LE
zP$hex$M)$r1n&5Ua*W|p>B2O8M&<DWjR*?^@tg{}XbRJsV7;E>%xCMNSo6n|{YK+k
zs2yc5SFf+n^}BZVb^;(I*JtnS74?+mogl-63l{knxQGhwW1dkIsoF7jA%gx9#<a(}
z<>k90S0n{2RR%Eh;12?PWGRwWFtz<icOi*<+|U@y@k^q}+g;QWuu0hvY8Q-Y`rrd-
zz4nl~n@_uVPT_6DK$J!O_zjyu@=^QhLwYRe4;Qj)FGaxV*RaPBqdNgiu^m=Z#ej98
z10d?ljj>d{_`!F!ICpPUp(84%F%Z;a!zND?)m0sOiQ$3lC<KOH8U~-~i8xCD>#MGA
z^0m3eK8Fq`XgTg=N&4b4rX3;DJcA!6^=$iSJmq#{=tu3=8!{wytbLkx5hoR(l0Z{G
z%J{?tZS<ix&jcckWrelH>4)-G2!56iCE>#){wc1UA#%<_jjlOR(|V3MU5i_6ho)-@
z3;8!6b?=}Aho$YyMd8_A^;CfS*FBq<3Zv&Q>9*oRu<7~ctahL@T)F+~sDo{dIRtPG
zF4CX78xy|iS87!l+^pnNOaUydy!v3%QLGV<oaqm)5n{h#Xtq{Jn8^gje2jo);=rXz
z;<*BSl@3TtThAo-EaD(IVq|CEXn{~Po=$45&XNbx2KSQz8<gv{(ooV{2fEsYF49K0
zGxsGLHXjMOou<yYIdZD0d(`sYNbR=OGnC)z;Cbf?C*(yFU*6UZFxjlA#rdc_zHipe
z8Ju9d#pJS{WcdM+y2QLY-i3NKZxI8RjWYO~`NaV>I97lvHC%<9rCMvkNT@8If1~R3
z`Ttomp-c1MO8{fJT?9iDM;E=FeUebIQ<k6JotWYoL4CkH-7-3v(dvFj-=*ebwi-J)
zT_Rjj<uQfLxW2z?tMwYxR-G#rEqm2~nCBB3nodFBPR)Nx6+Y&^pYbAHz;ue7ge~wM
z?Onq0p{6hKX!6q4C9Lj1(#Q8V*!~8%Q8Vr|LQk+@pWVLdBC!dPsDyFHzZ=|P{-+1?
zw%;V)>*0E`I<hGwQWjf~m9nPU-8T7AAfG9eucP3B2}h9R0j90Q$MfjL%1QB^R=|yJ
z4bU}Sz3P%#sp#b_Yb1&u`E1XOgVK|~2Y8~JP=Y8Z_**mSA0`=vfAQ1;YBS8iI<oUm
zcX}@~**o&co{aAnN2CN@hES@gwW~g{%k}7G=%D?HQPS*mFRr$Buto95(ry2<FSiZt
zGVBbClv3^muLxRsi(Rq*QmZgr@^^-BSU1HroC|uzU(qJu6;TRnhnSm<nBL{wk;dev
zZ4tZ~TiJwN4zW9yk&B52c%R;af3UscJ)_Wt9>)vQ6QD_MOPaq+XoMF#L0-%lhv?KW
zxUePG%z~D=(zrR1`e4%hajzxw<=BamNYdBQ$IF%sE)D|=-{Qf-`nP6M$HAdMgtXT_
zvV=<R*;(p7D2D&H5Bsq#Gyd)2^7aiF3yyllABrR?_N3kph(+tvmSD|Gg1GEspN%JF
zR{wc9J`IEgt}X8n>1o{CABMe-&`)v<{;n@~`Gl4&J~xk)24ezE2mD)rL+V#Vr>1%+
zF;RM=@eG%HXf-v^QHfU;bM>11bi2jxJfDK_@Ou#3c}GpbGjja==Kp%1b|(sTUWj0k
zYjlLI1TQU#eyqT1elg(DghwTN*{h(+Zaza@s9GRgz(@eUeEpNhIq&x^EEcK4^bMu_
zqDk=|s{hEeW4_lQ#S*axleXqxlfC9595YC_&!h0yojA|w!Xx?8)c7fglaC6L>^gL?
zzb=5^uM9#GIO;!zmKLu)5kc_lY{BL}0Z2&K#C^tB(Idi8fv}7dc^riarp-)-4ig8@
zidMsRzTxLa-U-CS7nrF4^{4hGG6A66k_88VGm%lZK~22Df+^NI0Ef=ZTek!hM@aBv
zFR|Q=2Z7;q%f+4lqQGL?&GD&#dls1R&;<(=sXkj7<gJrH4kzIdVVINOggl=SOO9`&
zIVlxV8170JpO85Z3wn|+&#+Cx-;mR$fro+Z>3E`L@*4DsC8_q65FIb%CD6`q(F<g8
zUB51Mxu+io^75^tRx8L$&d**@Kr*U(va^MfM3i*2b*istMwiq{hI>Tl0qu85**3PB
z3sk>-E(Q-$dmpoT%|Y}_HxxqH5HW?1x?E<O%{pOwl5T13maT^vy9Ab9d%HAH8dAm`
z$=?I6$YnBG`?bq8hWDtd8`&TbRwu1}b8Tq}RJ!C)xFYV(jE{Oh4aN#{g?B%Mu|FJ0
z+5oC<i68-u`SCUYuWslqdH)vm-VxO>rW-TqvfJaOcbq*e1u0{p69|gayr?|6O|QIV
z>tt>W*|W|*4Q#Q75kXI>ZD}xLwA2bVlQAzRnSwpGj;5j#uj_ITse&-9rW!?Dow}Qd
zprILH1tida_3T&|5CC`r6g_$j?TGdF=QWQ9R#yu3hBM|b7v!2u#~cY7e78#<obrRQ
z%rwKV4uUz5$jksRXOoeOG9Xwr#`s*xw+!*}eb<>pAuA<~D1z-LZ-oBi_N?LfJW&a-
ztlg`&3;632fTd7?3ua&CWVqn-C7<Y`U9P*UD~+FmM5xQG0-bm|r8UA}e`hCK?h2Bs
zfNPC=I2dvJn(1X%=qk6zjDd6+*J&G=hZe+LoWA|UTZbDuNw+YWrx<&Iua@Ncl$4Fv
z((24@&rSZ1&S{ABZyo|#Lp`2}E<2X~4pIRYD0ipL?dU}Cx#UaZ@G-3{X>;IU0vfeT
z<_Lt$${s+wJ24#SI00}5lbXZuQ0Sx`(|PaNPatwCZ%W0q;=yxpeF17%C@Gh<yI!;<
z_o)*<!kbF@Om@^DD3C$&G8*6p*vZpsd;Cgkpy14=?gS*wh-{)?+0~n(g3)h>ue6C5
z%+8lfoliGSc}#YsAc=ke-@W8N7D6rdOFq*y-*8;o&|bBDfXdY$qM;U+iJwOXhoBnX
zpG9CXo73T)ez>8PQA}GP=%+OQC)YspsN>5WR(a@eNxxFc7?a09<AJp{s0}G}P-qZ4
zod*qM1LnrG0OFJ;5sOplQC^M4QEEN(Ixr$AX!-(DgWfWpz__&3v*F;WA<iOJ+W{j&
z4ib}z)me!dDcOP)fo>K}n*exevLi1ACo$kBuZRt&K1+cBt}hg|s$%{!6=YgX=ICq&
zxe8TvGNpeSBf|%oYkZF%58<Tb35~f0>;yJ&S&G)EPQFe8*A{dZzb8$wrOe%TVrI#h
zQGCsP{8*G74qW>0_`Lc+QQJ=<&55!=?TDtQOuhP>NlMj=awj&TCBAr<Kc@o>y16^I
zMkVA6=R`qcm*{6BV<94&$gj9g4?$M(rBBsi5l--}z)9JM2q25qnnQ7(>1$;FGYIt~
z$_b&#2s$780nyLQ<%e$umC6n+n5;O@W4Rz_tk~+(zs*CV{pIJ-8J0Auog@z$`-O#R
zZZ4rl_gZ;!y2QWjC7{|JY1+*nonjJuld*5@LB{|x6+p5?mGWs$+xKY)geH0pLuPMl
z7Hm|G5dQ5HM~}d*Eg|mk8kNZ%x*pw$zW}l%P+VN4gKy^BjK@?fIRTZ@GPh77yOoP8
zkX4_F?_H^O_zyLLq+;;gyy+RW1_NuP@DHg0=6s96y-22Gb<68*rWvZVOhq^EvsoIC
z11PPjl$@5uglaAQ(^tJKq<Pc@6PM%?hG48t@R%oR-kpl9p;9%b2OIG;&WH+ib<b#V
zWZUlI=cX>S%o2_ZGOCl63kU@bE$SWNZMLs2`NX=Y6Yz<X==hz^*nv-`_aQbw>?QSc
z80|UlSIR%?U;a9zvS#ULz&6{vfe-hSf@-HjWwKg#ty0`n$BkT*>X&=AMLI*CDB0Qa
zJ(lg}EQ<Mr=uc7Vwm58zpd^x)m5s^QeG08$A)!W>Kt4v0!&FJgv-}@0Oqkvx=1C94
zerfXjO#pVh1WJ%{x;H_Vi~rO0BMA4#@C$QF4?UBFm}DB<WQprpXUxPVi*d<m$KrZ(
z>>Hq&`(QC(`p-K6o(W~P+W0S0pB+}7g=Gd4JP)9Ju^Bz;K-Ap|iNGL{&A5!s;3K)1
z$4YB8JkxlPy*{vJK%@U1g2g$E8cs!khl4~fv+X=YI+y&hrU687DhrXDgSwgj%j`Ca
zaNY7Mx(;b0z!R5rM(K(pT*EXQ0qE4v`NU#rX{0cvF<F(!&@(DiOr*<@tnu#z9fA6m
z8RLiX_x7`53k<5-vvJSIAASK;9TjUk0pd=l0zRQ7MN!aLajI$>49ey5(zuOKWhQDu
zUj_y_*>G_kQpgQivxN8j<ySbBenEZ^%o@e9ABV869sI{#a7#U#LhSJK9A5<`9~k&G
zBuu#cHo9*16nqqrV1S=!5Cb-?9K|0`9Fg~}8X9cFott&@x5N3N4nI?h168CRhsj!s
z4ymMFTM|BBjkkAkYB6rm6r{*`9GWDi1MpEd?kcEnIyj;?Q^A#Ru6Rz+Cskh!g{d5n
zC9<im!t8qP0X^bSd)84vnQlzv*Ld_Wb_w*NtVn}5;L(eZ^{m^Bd$;-dNl$iYSC<{M
zD<C3^!uAq-XY)sCwR&{q=hvYLrqi?!RjqkKu3IN*x>vx+B9530_Us2W?$UsrZ;blQ
z+T*Vd;%Q_p#5Z<Ca&jGLIqBm-xGh$*JTeD@6x5pav}xB#-0jKxhoIDp8|0UFjGL2!
z7C{<-v?Q1&_!8Kh#=8i698jiuMT1ri1nPE~^mxN5U4pAA_;b}GBHwydWou3QA2o*X
z-xi!0!4LX+cPm#Y0*>|Qu&v3_hhm^^2;dncMKAPeiD7vvWuyv;JNEzJ->lpCJFBEW
zx7uRzFb{9{69_1n3%Mbx{l7{E%&jkEv!QAkI5dlE{({;xWg)HzZr~Kb>p|=75{_kg
zZteF7-!XepMq;YRcI<0N*ep~%zq;JCRmd1n-veV8n@hR`=n@Ii_DMeRd8X|o@q|o!
z3<rNNh#ZNtULn;lQ?-h}4O$t+a}Mu$yV%LNA%o+IWc6T}P0B#LgoJ38Ye#wpF2ynm
zt@1G#c5w2)VC9mMRD6rn{vfWS+ErtC6WAia;7NR56NdGrq_{b4)ntAQ3=G};kF_Gb
z4%<&qRO)2oP!WJyc@V2uH2~I=Z{~KsA|)vo{w(6k7;qw|6SGkoUCQVL5duR1om|l3
z{6thEUh|1c0a8)uq&}%BDU)2?{d?fY&|a#y2Cz`xlFh?s$T4#3_RX^$IgDVJsVSk9
z3~g8;<4ZaK-ZrH<JPv`x`>x*Un&b3)-?gQBvh6-L@HS_~Hk;I$%0B-e`u%q2&t3Zl
zLnZnUI<C>zmdsb)h<{p3c%;%fS)R&(ZSu{p8Tzro59XX*8X!p}NW3E0$5X8U%L8{4
z`2Ora)0OP>sDd$*8`xw@_yd8m)WIZV+J>x^@79bqQV&eGaZH=qU+Y2B1xVeOEdfQ+
zz@_W3s|IlJt7n!#Y^mJ3Mm0biA)*M~Er{-GZ3nUr9~E7!<=u2vYrH6<GatAz+}OeI
zb4d>5$FQfRnaJ_Ip9%T_7wUaV%#EmRY)ZvK$YG0LyTNUkisSU>-3#;Cb<G)@9ytg}
zo0w0>ctuNvQpDu2EqQ;<ZqEK{tGgaq8uxC(jN~?ynvQ;|48{maF@K7!lJz?Rrc;bd
zM=+)4@Lb%ShWt%Oy`^i<p`{a{f2+LQGp?7w`I%21nC$>-(KvXwW?ES}64gB&xdSi>
zKSv!ZdLY|17sDJ72UmnuM<aZ!8~A{&lVtF%tNJ9NbUCZN3p2*QjVf2CJdwd)^B`2Q
zb_H7+*Z-N+y?!tjauaG16VL8xT5Z3WR|ERS)wy4FnfCuri&)FU<}q8~mF)O%^s~R>
zzCyljKQA=YM}ev*GE5jqdDnkK(lB9*Hu{;2DOfq0N3z$X3&7Ec20~^M=2T51{8RRs
z9g}+8Cb<VUG(*tjt)KSbEF6Dks1rXJa)?YrQ2<JSt>h5kq}Vt;$^kDW%aIn-TW<$;
z09w+=(~SM0AYuR9qaTBs88Js>BQ~z%u`r3`mAhT^6Fd@n=5)s{lP_Rr#&q3`Gh6I_
z5^ZSbG0!iJgHlGS5ttPf09V4X=ieYZo_p>mm(%q6(&)}@pcaxTSN$t?X%1A13y!c{
z6nM?jQ}5fv$<p0s)NU$d?{kue_@V0&B`FHDfp1KtsQ0ULv!HP32F?BiU)??a_m&5~
zTM)1N>=~IJ!CUM%k4TuU5`b~m+CGOUYsL6I00+^=?&C__m*a6&$N-lZ;<ZUnDXqq<
zgLddE7Z^$lpm-@i0MIv3R#ZM}m1u%7)yOzcscgWLXJ~RFohQXZ%j;)oo4A&wtY0oc
z?Pmd`<2&PJ(`XgnwGDgyLpyYWs<;5gi<(jsPFd_!mE@s8R(_~mS^A0B2CmQhk=w$j
z>*tlHq=hyE%4O=K*XRyo187B?+TN)|fLsltin*1JvJcCsMFVxdzC43w3H@2Cfq++>
zqP10;a7Wr2#OGyYLJw+tfXf}TP`uKFYhkrbMB@)C?A+dVD+r*C$X)`*HUK?gF+I7T
zn@uA>r$(ES9-S)~9T=9#EtY}c>Xb8jidG{%w89-PKSYFfl^0Hn%KYWly-^W(=`!L}
zEPu0U(7i<&=vgBqEykez+0ofyXfXT%uOKzZS(r8PH#W?fH|7zY4XHHGxPB5;QMK>y
zLQpkqsxq8?W1|Sa<ajZyM$>2!j&=IGZ5WIbV8xH;MosFIi+9g~70)8+PmrFom9gW9
zx@iEafn%w<0Bk#Cms=^WG4FHoJiuw4CCo$NUd);<5Wxf_?B9|DVYHcJCYEqp0+#_;
z`>wx?Ne4!{G|#QBMrxSQ(Oi9|xpw&6<l}$;gL>Zm3C&Mk>1>XU;#nTsab}jm=O&?c
zWvWN5TpH{m(SPq<<C%<rVb9Ir>ZESfPR4#)=3Qn^Fz;VaPr5I_^g8bnm}w~^zofH-
zW57$~7Mc2&a!UZ-)Kmy&0bzi~T02z;aFn37bIH7$@o^Il01iqGiNb^qGGW(`;UNKo
zOK*DTDVysRYGxp*Haug5C}s2k*fP?%lmzjmIw^gfl4V742ohit&Npp9JU=Fm=Gp(H
z(~m@BYP@nQWd5ZZ+K?J~xuM{m(yK7^H-KV7<@=xpk!A{nU;b}*fUEq6%L{{_^<e$b
z+x0><NE6aeAGK2^WgUs!@+jkFp0s_{B7fCAHzLWvtic7uBoKL6&jWtKxh6UI{H&Z~
zcu+2O1jC)kZDdeCn;m5TdW@-+RrJ}Prv?_Z<md}()@jIF8B=Mw71@kpYC_mxVwhX+
zhuSQr$mID&KLN&O98l2F+|~!bgP~deUc^8zR8v0fKGe5EYGRA&q@|YieopA22PkcP
z!Q2Leoe12}(O=?jBD=tgt7oX7d8z$U%NNYTQ7N|sJk6&YP&@9(tdT~p=`~Z5nOmfr
z*b8PKXe%(-f-gW$xG$y$QzNN{MITinLLT{`&f2o^&auq@KyMgyNJpI+3CymLrqf|9
zn71GU<zn|h5d4UH$?!|GuvD}K<IoNow&i)zn*VhQ(3H+rb8+$z-ye1nk4Z^iraJDM
zRS`;r=B0t^k;Ofu63QTY<p<A;!l}764MF8bIO(eqI1T8rEU9r@soFl|z5k%IXe7My
z`%!nIpDu!n4oXFF#Zc$Xnr1aJfd*CP8<GBli6#w~5k4-pr#q=5G6>kHREc9(XhTxY
zO1}g{-rzx4Nw|eY^deoMy}(BcuS?;J(vMBDjo{+!U7n7MU*z!GZdwB+auI=OnQi%O
zYj-Vc_COJ3u#g!r+4riw)o_X%RF0yt106GL<mEJnzE$aPkKy>9I(p%>Ri2|iLtLPZ
zY&wHza~ur%?os9hZ(&!BxpP5nn{lwBV;(lch0uQR64~ZZ=)s!KUhU)$BNkUAaP-_$
ztU>o;IZ7EfvC6d^onE#l)U!yKx$KEr3udfck8ZZ9+RsLf{#vj-%c28ZuR;`yMlcrD
z!n^g-Chmt;hT7jUH2lE}B9Du}GFvC1Ih4~t5xHsDWL*1T@c#8EiKPqq{a%2}u2)1T
zC)6|<DtX7ZNwsBZfbzXh;=S&fBl?oP+9&R*&?@7o*BsBQ8|%9Zd9}s%g-5*;tvFBk
zs;_9F3h}vDY_U|nz_hM?ep2_t#>Ha?)Ratw`)PPZ>=jhM@VAKS<V)c>HKp(6x?4W9
zw`xjtN}J=;a*~niyjQa39!ed%%@6M^y=(;$wqZO5EEJu6iw9Dy4v;o|(I0TwUD?m?
z2~X+k>ProhBKfh@=`@BE;NqzKv;adSIWI0J<M?~Xv{P`&>KuL#Zv@KnjtTRDuF^zf
z8Wn9nxGK9Z|B)$w=61m9LPxQECh!2g*x|}=5`6CH4E<8BUaq7Ay@Nt|7o^;nj3Td(
z*TxHVl7p(+bGW!Uy&OO`(bx!dYqP=gQ6j*)d~f$4ufB;FaBAKIkv6Gj{8<UbKg3eh
ziF$-IyVh(PSCe_PxIgDo)Ge_X#a27Wb#PN%w6mzIsfB5jKCLutqi|ysqo)=Qym%Rn
zq_vGXhH(NMKwSk*Qh}FaTCWI?aOC|x>tLJqH5_KU9*cbrJ<JKGh0X*Q%o*!4PA&gt
zQ|gJrR<`*^*?*+AQ2_yaGniySm_u;Y`dy8!ptYu><82b`uCgK*UFSKBUG3Ar5^+e!
zhO|dgCLQ$r&}@GN5zmEltB;^%0nv+lDz>~G?)t4wR{0P42C;XjoUaTW&EOPVsWMDi
z3!7rvsF6RMC(}ulmfnXj)7k(=atHNRC{;!HwWIWuHQ-b)4@U2X4QzB+_QL?4&pPBx
zV3y##Xx-E-AtT<pPK5xMOD;!3;YArl2klHcO(c0%(aH|RIwoY{NL7IqdPWTbfFsiD
z6_OsbCjF~W9q$C`tOfXGsTU6-hAb05ZIqD=vxXUnGWr&(4sY~{&K@8Tf?_h~vJClG
zPh{Ax`?$4C>z$vQ<K`N{d{u?xktqT(j{5|VW~S6h38w2O<r)T4V^A%0^``%L^q0wP
zS=7{{h3j)=qqU^y-4Ni5x05AxdJrZuwd8o%)$712CG)Pri?Z;Z3nznR4Mj4O>)?;c
zv>l?`yRHriD+9bp^qpvKCZv~=Eih}UPPmE9V446BU<Sd1&+K)Wps(}9<<6|j<8~L_
z;^lci?(7*EE+38%$wECEh>v_3#Ou0WNVgHlSwFj1N!1jxBdya88)+P7_q4uWJ}2l<
zP(&|F$j{`MFr?3<V!B~%NPOjmO<nL9E2F`tj^2|ZkoO?)1*vh0oRp)63T4@^Y;g=$
zuW#V!fxB_|lLUYb0AXW2MwNtaRoc+g=BajkbOFG275OWB{w83+Ubd*56Y9-`TXuAv
zFpoF;+B7D^H?9Pek1jn^g`WtJwFi}W*<@TP&EBeOgj9f?C&TvnO^75)BvB?-t4v@?
zT$HFD|8}%ZJ{cTyFu)~EaFlgqD=86*I@(hsS!|xX_fOD*NP_!`c>7nst)ffuSG9qV
zS6`iQDp=Lb1!w`Da3CLm+ouo51<j=lfaSZ#cJc}GDE>j;r=rZMR5!uqYDqh#)&H(~
z9o(;$gJ-@0Tw0X|L_-rUN(o$6cHXF)MfW@APNX~G0lrrZn^Ld!VG37piANNV)oB!S
z6~J43g5aR5z{Q22l#kF=-9!`KMJA1<#7=6eE4vs&u;{oj(D}rpz<^980)z~EAls`R
zcQh-@e;iYW1`%`%#$F1q+c|X7w!5_~TlW68UaS-MZg38hlxgbwUE?@bipC_xVM7h?
zm2Gi&(FS=O>-+kfXHXHr=;krLcW%X-6}Vv0a@3a<1?F?sv;G3lugTWdbLo7F*FE(k
zd1T2rQu!_E$h;V0<Y$iTfUmlp<PG*={I`Egk)+lS4tlz!hm#oFZqwL|QS>96<=S)D
zCS%5Ege)L@IV&ST?eT86tgg7d7I-n8fu=MPB-~FX?afRhJWU79x8X1EKW238%b5||
z3aeN+I+YJd)FEr|#j~iqiU4aI{#I9Q2XIB^84L~4bV%tIO~J<q504MW#Lxs)4GXKL
z(`M}n6z9YOK*r8(s^T^E>50lDsXe(c8^NFt-vEYrjC0d%3$H2=&N?Vnt1!nGRl9_+
zzSFD#k*RoZVOfd~fGg~0r<K<~I>#Fi^0#koq-7X*d&g2IGhXS&sA6+=jw=Fs;v5zH
zI~9RpD_?L#fXQDYq1&};Vax+n3Ej<yX*Y5xFO-X`QYMrc6~upIBH;ue#1>bW$dKtl
z^e`w3@x_TFwE5?P`zarP)WLDqLqk*SXKi6Jl(UGK!16GkxX!)w+QOD*GPj8I`@mwL
z;`pf(BO;{HDkNB{5Aq&=@D=if7~U2hhIUk$(DN29(^-weVpgz9DBcE8`>J`=2*XVx
zI4<0Z2gsmZdqa%a3(ZdvvpEq`xN}rSpy609Ht<^_*dQ1ghAqk{ouVk<joGxEX(xqe
zs0WF;Ro9vIihaA&F9;%}*U^S}O;hB}Iqisy!PcBdj&{^gE!I53PWA%GdIHXO$CS3z
z5rQn;)2SPb8iqEUrn_#gT$VFGN(G00K&sqn!&9wqyETG8+E^2mK*^X7of*-VfuPmm
zKrQ8=Pe~EGYhh2MmX)0~BCbxw0V>?=LYUG%NA%3%zTbwhX;3WGFI@Y|&gf2LQ_g}&
zBW-#xdJWzKAbIZ$^pk+hK3-b;-zipJzctNkz9HYAx~Q3a=tEOvCZW$=x!0h;)0=ur
ztazwkXN<MhiMqO>dw@tV=#UmblufFlErp@=Hn48suD}>xj<sUw9UDb>d%QDr;-qi)
zcjzU23l#XRF(P<OXQp+0yiVPtQ_HN>WDodCcLQ**k6_o<1O4Ghp*@u+s$BM{G75e2
z8J#OTd@cAg!!E;{6ln1aHMB>$GMn?g0#_7SoDKcZOYxwYt`eu6lR%jvB-#qJ>iJ{A
zsM^`KE{i$jZvri+7BUfglBue~!NN=n(rAEKfnRak@>INikJ~}f>|65zVOD`Ix{wLr
zR=jb>gLU&YUP<~09_f4>`?wbmPHJdGg7inK6%_7_&n+&N1%<+2!=>JU;U1yvdrj63
zXG5GN!wuT@TW)fym5y3PLeKn3TO{%6xp~M>2f}S(s_T3eKs4W)ZfwQg+jb@UnIo@I
zp@~EcgC*9v(|Cxb^oqX^t4AKiaxI^j8lA|jndD-55H(M7!;$f20aMi)R=DN7Qg$@0
zH8CI4xxQTO(CZ&Fv^YvUaPZG2m>I~==B0#6j%;_SafJ}RAR&zuimhEnHjXX^7-g}q
zef95?R0Yu!|FH~*ns1su9@+g^sW?u4#UMRC>!cH~u-2W@q2Qu<f)j@YHRz9a1dZyN
z(?8%F`+hE=fe#_vmkZ%~O#s`gs0<g6ZRS-r_KXem#-g_*{EVu?7iZh@4(H?tGrNkN
zhHgi{tyZ$uOwjIH`=Jh99RPW=msipjTHGt=*F&5V9y^??hb;R}Xp0hWG@$$q3Kynj
zDM3^r;c7_)t~E;@yKnU8q6pxJLM4kS%4Hm90xvmm`<du0GgU*mH$tfz{ERpTc~7W%
z5x;MNH;Q!9B^09mF!HY~akSf_CPMQOtJ2pk8*GgtEg0Xz2maXAvDouab^XH91REwM
z#$~G=d)4^=T9g%4T{rd$P-|8X@HR*euHO8}kt9)%hE^&Cr%=rpM_0EYyA$QgSZ=tS
zBGw%t4yJK3w4CUus&ytexp#`RUlc(6oxmG(PIt06KQgB&veN#9pmC6^%$$4pS&`To
zw_EwpiQ2#ie^=d_KL<BA5Ze;skoUF-9F<_+h8_$~in3G)XOsfCaU(vX8nrA=8DR2?
z*Ja~}Q7j1^T4$_#Bjo}rZ+~^o0QAZ#Ql$Ipuc{D!9-@%PqPwR!-sQE^o8J^6)Ovco
zeI|_fblGSlU*f%O)b>k0&S%R^X22A-D*)27*oGgxy(D&P`qjXJ=HcZ4wi*F2v)E`>
zWs-7X2#TbH5Xx-`i4<iap$$FUZWqdEG${pSoYzYR+qKG6FQRbcjCFKs@-j&i|I0QD
zwDle$mKVW%CH$Hjg@-f&SU!#E{y-Tq%qRd>qYqB|Km^t;jFG0b36f9<BpxMZ%VuNp
z_ffd*S!jBoLnMg>bo8SL??|2frp-|CNx80jHiUjIokoK9^sUyZ*AyUMhK9c8Eov|w
zJE3M205(826P=lUm^&2WG3`f916WKw#>Z@W@7=Wp^CcOJ(i7&SLfOX$<pdt^l1ryz
zZdvp)WA?Y2)=be?+hQay$bas5BcIv+!QdYuRA6mp=h3M;s5+@|-=?wz{ZIdlyDnaT
z^hbGILv6QJZ`e194)`man;3KXqpz~*2zv`=(QCSF!ab9BDL*aWqCBP5)bk$Dv7Yha
z&W^2BN`;JeR!vFv+M`&-Zt#P$R<$gRNYhOM!EYYnplhCLvtT(<Eg6Tm3gz;<h~N+Z
zn(%6-l0NJtZB0Dmdu<>g0$KhfKYJxnOb;i3`=A@Pbgr=yq%Akwqp+o$wC}V}64N6w
z7YS10dIk$Sk512%W1cC9>!NIVn8yj)@kRb9SqlfG*~64*ImQe^I3!123`o4pdPXar
zXcDLQ-tU&Ov}w3g7ANBM%fwYlWX-OwgAQ`$=V57_kflAGQSh~>B6p0F<P+?&`&=1u
zD+Q1|tV0f)ts}}L5A?X+@BtsGf3%5(vZb!me}`#pIv2rAla>$ipBNJge~EcvUz#p4
z({x%`>N_3f2`;VliHBbjL#n4_@<jzyH<_rJurG+?Q~Prq!k<((-9OS0k4kX_cG@J#
z>7(;kmRMxK(3dOdQ=cnW(_j7Z1%J1gSB2&};j)je3QiXY;V{|3wXyBos-ujphD!Z)
zI8hb<X^rq_VFDr_BL=f_ap~=s$dp4~&YmAcD9nlpb;6`6kM)uhdRGuXw*coSvr_@i
z42f7@DPJsv+d~~zwP@9x9o%Y9Kj^#TD8cy~WCuN<9a^I8L|Slp*fWJ$ln>-;$Op4_
z8Gk*e5-k0%buM4|hT$W!_BxSODmh~;io+*H&a+iO>5bWUKaF?KWdM9mr}JeeQaheL
zKitaLu|Rk)zyM`<KC{}zq>F1A4g%iu0ZrtnF!(nF@LqNWudwBKp}qr$KXR0I_W*%X
zqRKc}G3XGbiSLqIpm4~1$uy4clcCHUC@?fw3?q0)X}^})9H6Dz(?}=O5EPd4Q_}*7
zjPyNEE=lCuG1#x&Ad>DbX5DSNX3nl{!mizp>FqkCoU|YLBlUsm-q51BbbT(C!nn0L
zA26p6-yF`n(R&hAH}FI!WhB<a20+Q|oMvYHMgn{?#olmcC4pgf4{ta|1T`t4)uRa@
zsN>j0`Gx#4bHS*N_W=Ajh;vVRe3N#uE3(9x+1fHd9SEcMAvK=LCkVFMEJrq3GQsCp
z@=MjXZ(h`_+!v*C-fjmfJ<zgbYHJE<y(dCKU@bc>a#a6lo^*DZ8-)z&CHw!yFM+k*
zB4oko&U89d#=-IkmtDd|79`#*5rC}5vYmOXzcK3w;5jDkHZf@32}#bn=0BX%X`eyM
z8aCTya*pg5&PqApZUVJWUzQScqjo_Br3sYL>Kew}Q(znpC|SeHdU($YF}X+pAZLQ2
z`q>-)mr}Jl>a_Xrm<K6v?Sux|9K}e0od3m~N-mVUt+@q=;?Q+;;9A3&FBL#Di--9G
zTOMoTs{fH-jO*GaJvm8sgMgy@w5i>EqPeu!NQ_cl-MdD6{EQbp28h2O%8@8>DiVjl
z((asIUi|Ti`bv+&qB{GP`)A?v*S`puFru~y+$e`Z{;uB^kZRf_t+vUpgyWN3*N(lC
zz$W3%ZUW>yvzK9I+%47O(UUPe$D!wK<Xz7>X$`E{CGB@PS&-p(=o(qE<}r<Bh*H5|
z{(zgSJx5ccU!6+s@a8JXA^f){nCj1G5R(JRV5cf;!Sp^)d?;RWw5LN)_u~Ycr|)*}
zb?TYMAZf1i9JG@;@@z|WWs*2GDUfc)3KcQuN&}Mvb$91fi)X~<iR!3qW81+p&#X58
zWrLdp$PM;>onUVIXp+h$I81KsEzr2ISI38SQ!_UqjxmtHiN_mReig^qwioP&Q^&+B
z19Xl8@Y&jCc%7G=j59Nzu%^$r#%QOdV+Sg+D_$hR8%MQp8Luzp%KI0xW@Z$^R&v#3
z>82Q*pa^YpUJ2Q7z;n}5xDMAsae<U2Z1?%f?$$L#iU*9}u*f#rgg502QQqWiedPwl
znR`3ZoaAN6ZH2yDg%`E=l^;!#CFzpCIHqETvEl&lU>i53RC_f#`pTsIbGI16wee>v
z$5yzwYchlfsl=pv5U5EC{XJI|k4JzjjRU5*n;&X(n_yDn77-aAU*H{i<vUTS<IL^a
zenR$&bugfE%;flY@e~l^11D!KipnW)*S%?G15fP1uOw?N!r>iqV&_w(uw@E^ZaZ-^
zWAYDuu2ad{3{O@Um7~dvZTWaZg^Q$2ZgNPzIEj&|y4-(rs==Q8#54nJ{aW$~;0pAT
z2(zL^LVA1&f6dabhC$goNyqf?T}WsvLsU~3XQ)|lXd-2=Lt$tfrO;AUG5?Bt89>;^
zJhi7-IERmMj159Wuj6-m(SPuEL$Lea`+=)ufG9H7E}aZ%WvkE`Ajusl$j0WOHm%*8
z_@Dmn#7MEw?;w&*)qeT4b=dGEmRinAA{G1Dpu0d?6tLcq!e*+o4Z%(j7X*uCG(ZQ5
zMY5jLzf$Y`81~;C27_;UeRmX&zALDjm6b>FbX2~bm%4EKjOi<2|LasGVl2Rcg66Fg
zn_JJ=>>>w;n=qx`ps&Sch-(Cmn%cF!=lcJ=qB(kN{jv#Sk}s2DwKN$iW29_(g$55;
z_~qZX4lh?g^Cy=>bQEOxP{C<YzR;ro$j4VZZL&-ocE|eOF^-_F5D^l&On03w-bxPO
zen0W0;Tk(tE}Ng6&r%W<FVJQEglG`!pG;wiAoZ1f3^^VXg|R^bzd@RZ;j%=f#vZC-
zf&CD)HTkb>5M@?M-yagtrdLRlCDGfo2xE#BtJFIR5T0FyXxc^|0*&?TG0e26l;9y-
zUTvuAC~Z{$kpAA`Oe;Nq@FNspspDW4hGD-dE=~bCwS+bbf>>_dafy12^RWx^%4#l-
zV9-f<i{8!?J#Oey)l=jWR3{jQYGx)v%kavkMKiFFeIGAb32Z&cqjVKUEgKiiajPNq
z-0j&87ka>8r*W-y)O)F31-{VnK_y9ofqj~gc0IF?lC?CYCCWgjDPPQ@Fkzsa2a$Q(
z*~xQ05&~L}_L1iGCjqvH+&i4Mir7Uh%VvjMBChJs4F&%nj?p@<r)N>6%8nmc%873;
z`IpZfGtOE<R2iK?A6HO|Pxw&z<qPjnBGF`~>E3+o=<a05p@(+-(z^O~_50+?_hH<F
zQ$ygn!~2uc^hS@5Hq#v)!l;7=%>ezhbOmMoZ#}o-UAPFS$#X<XHGCz5G=kPXE<_^O
ziFw=4_qDY>#E0Qll6x-VBs@pL-Q6C)-`EFI`a+er#fCzT52AsLbnuJYRX?aBME_ti
z5ky<gl)zZ*S`c^SzAs&$Px-_%<Y^CyrCKC6ng1HhCli!YheeXW{(1s+uQ5(L%YC=)
zCmxLUE$kwP5CGQ8_7uHP+Us2v0jt8L(+Ea0Va6MW`3B&X0%iy64(z1H*~!DF>1Fz}
z7d8Cb!zAsN$cY`(k|*tN4LK%M9sw?1EaTFhmGCU9hzCYsXc5S7dI82Db3^4#9B)}u
zEuRC$oS1(r44&QE9KcvPT-&gJFyV$O8GMbvl8q>qTS#ITmGIu$_3XM1#}f~BTMeVJ
znk3TH(=TJ`oP(){3wt42sp*VeTF*&z9c<Dr6Kj{>t-;A*AgCm4bys)5$Q~K}LH}AN
zg;)f*RF?M@8Bfbfdq)hMziLWFQ@p~lO~XcE9A%h7M|r@r4A99+u>QZJOm|g3h0@j3
zV#m(W7JEXeLG4Te<Eh9i{5PxxYGQWgN|rj*d$O5oj?H83b~WK^=mb5(qfyGv0%&iI
zWR0L|rkIUk@tIy(^@@&w1}3Uj93Tfp>PWyBdOo2@`Gb7$@?n?Y?=@geCii;i4AK-H
z(Lr{4l>dV69DdH1My~La|1VY|Qv^=)vk9{Qg7fg_K|ZD-nt6MbV$ygd=CvN(+mdM1
zy@z{~IHK%%VZCRv)({2ZBrBegzH9b+enldly1I@KSrqgq<c2WXaBVqJhOU@OLH6#a
zWB^Uuwuk_sWdbd3mx3C6ERunK%!x@CWdr!8uf6os<4sGcz>nD|@K7n=GQHvc$I5wT
zKU!IS(O1xcVb^^z=RtVg5#}*^q+^Zwg`K2E3F6UzIZD10K0XYm<uAQLDYPaP)uyp+
zZggALVHR<Jr%01022oo5mK-}?1LI5wOc_3RStA_11q_H`BVsUd%(0$0cxrp=ggM7c
zI?%HUl-ETkHyyX8q`iC08^6dr?gnagDWT9fnDQ%?O+HX+Mb1b!W_FnF98)7Ooqgk(
ziBOf~vxT8%3ttG^p`nL*eQ^o}1S#QQR|JX>uuEI8iwu0dBISz$;RQP(Us8)D%y+aC
z8rkyvsVY7vWG))VDU9LUB@4?LaaLwQAw78rsgE+&rg5ha`8zH@pJ<~8?)K@+XIuPU
zDwZp%%-;ZotvCNmzjM4LT2)JlZPAD5HgtNwM5DxuGS{_5j9%Rc=Ns19ozgv*+8Xt~
zu`WQaUgT>|x45ELBU+4!qiw~t78g4-6?Lh;$cQVwC7Ly<hM#t7*r?OX1Jt}2sBlw^
zG4-cD-9F*bB<f_pn{#l@X#-x_Pp%(pmpl|t>I}%W<UO|I0OS<Y+Xh3SMJP)4`j12m
zzgswj3PBeS(-kr7G<lJL$p)(61=zrZYmdL&$5g7|Mk_1Kyd6Llo`@H{5*ZBYg2Ee)
zgQcgfK{P&=^TVb?9yEsQcB=U$yM9hIbEA6nTxc06h2<4DiG}{$rCJ36z5vhRQ^yWb
z<?cwNftlEPFkohFjQi}xNd{7*c6Gtk_+_m79|_HLB*kiB?<HNQ8ib*IH91t%8j#g~
z^KaAkOyomPUd<QR^s;@Cc?IA=<MtZh6z_A3manRvwtAa<BhOlR9`;ntnPjBwd)GOT
zrss?m=i07O$1)fsW8?1EO-{N(zK!Of%}%6Z#?#~z+Z>8z8oY1y^tU%!0eufHG^(!j
zER`@66^-{loZXdAa~F-8s**>V+16Ka^~Lm>PW6k-L*#d^qJqe~4}A~%q$7cb-4hJh
zA78E!c1Po|GK7xpcecVFZ#yQro+ME?BRbxgXL&pNu6Ivca8-q(?zId>_TYyw#1T`7
zi+Ly$u^n4y%}Zt=ueo%KrTYtedN5rx<&D}a?eanz)F?YffI9nlb!MPpz>G*)d?57j
z>9*bCMA|9RGDYcs(bpdfQx_~YfM9`_f)Iu{XMSwVM~8UNnikV;MHjjRfRzazp>j*s
zED}v;%<_E6$CDmuLM~P-NB$bF(0odj>-}c8m3uH@FnmlCGMV-imyl1Eh}5Apk#x@W
zyY^_Fb74$$bxVugQS54ONPs<@o0ceUxN=szfYl8&o&Y(#lULhPpx#L?9QjHCp}f0)
zC{a@0iH|#pYiij?sz5X4=Xt>#F9faAmWu$6t75FkH?z^>+BM8V-g6SKZ8&!}6dd!M
zqm<QhTMw<4aF1t5+R`#%QJ)<5|6>YWxGj*%%FMa>tyu^FfPfk~jSyi9S(<euVHXN}
z8D}7#ZqU>;2#ZIe`v=ayX$6^{&VQ9?{6ErplaSqid&pfuF&JBDcrINoY}=2{y|kQa
zFH1*F6++a;iuA@*FpI9`g52#%C_!7qyC@euNUnd(kcC`(sT`y!3v-|{?dQd25`!4)
zxiT2$$jUkAd0|(tY+#1C8cBi&^>8>7lTKakeG#ikiNo<gI-#j^_TcX&Mi6)8vbf3l
z*etu$BQ4OhLG<R2Wz_y52Wr5*QYB{fn0g2NE-<!1kz}YKUw+qxH_y#2=*0p(Havzy
zh_fZiwadr*^BMms_U=7-OFnIXrnzfKo28Tx<Yz--r7v_?Z|(PQfnBKz*h``)kw_~Q
zlL~tCS9Ije{SPrlPP+NJgVCgbnP1;^XFUPU>=)<TaRm!U`OhY$Lnd%XbZDVjdZY9h
zsuXZ!&HG$#U(=Zqar4mG{(wb2z(U7EVUU1OAvg6LxYR5EJ4*toWDn2zoVzS=jGd8f
zyyNmZwEVV_%tX^`<EwKhv&8-OLMQfrFD!&o`DE0<CVeJ7@sN6TwfL3UF7MU)h<&7w
z8fj@MoAe_(_wN<2aDIs2!Oti$>6lxC{SvftPFJ*DzpEE2mHN^E<w3G6tBgA0bN~1+
zB92-SEzA*}uN^reB>L!q7IgcgR#2^|@_%0rNbJaQ2;f!AIW3@w_ky?*EV1?L7aRtd
zMLbAi1i)CC@4+8@DRjE=Pt60`!ags4!_jw(_2*Hd0rdioPvP@zPZTA@sEJHzE%N@<
z(p`5uizjysix%f64*WNP+hu?8p&Ml!s{sKa^u!(?tr$5<tw!24@Xx^IPlnGSbh*>0
zXCz{h@rEeE@eJEe?aDonOm-3}ZVaE%^BlfoCxv*TqP$$8zYN!T+~|Vow)atlj?vQ^
zROM_A_VRt}Zg~e*8MRxKy;(i+NLzI6$0PdwsrnN$uv96vzFlLPq*&FOH^Q8yWpAcP
zUR)TzRqhj)84KI#Xrh)EpgWvW9EAUQVJE`>(kfU(iN17#YKnlM(ZX*05dDw>9I7>L
zccp%bl44k9haZzNJIbVD%Yb-x%c!q)LW2{A=Hr7K`fj>f{6IAyCuUJ?Ght4->Os7-
zxCx*x*&T+=PvfxvzII#~S{f!qvTH0|jecJF4~0G01(H*vt#2}=HM*7_51j}%n7LYW
zN{;_jsE_+JWaZ*vf>RBa;e1UbY3R130_S4}N#6N8SBKSCg2i24_b56Q`o;Sg{vegx
zRd3-tRJyRf^R6G8mKZocD*9z@b)&&fW`-}ZjMp*u59rnSI)v9=@9EC%Mj8%4KEYev
zlITSTKD>OWF(+@FBxdWRWkt+*C@`m|LNJMRVH2!mcTu9LWes}TAzDWlQV-VjnfDcb
zrL9w7B^+x(^C0?2zcmum5dYG(zw}yilLOuDRKtAgiA3n}d{LvRBaaeFF+M}Q^8F3(
zy{=vFp}ASlUGTkw6ls-gp18ACNp{)kGz}Z0p3PCCiM_9OH}VjPe0%I6h{!N|;L_~~
z=+lhl{?(|?@W(&z)Vgj$gr$ey(h5!O!KFcG_~_9Q&JUDVDxW>Jo-*$XyMfDUZl&#9
zag+w{f$us5>u`<{M2W-Yn6!pgS&n%d;PymT%wwy7PUw<l7u0K92#{-+9jt2Cko?nu
zY|`0J&7kbRB&4bABg#Y#>DPXK?>w1N)@Jn7D`y9Av^Z*3Qt9yC1coSxzplA#@rSzE
zZ|^LU_Lco|ukV<UAZ)X!?0Y|c>4oR+;GhstgMo7lOZ9OxNP_AbVY~m%%W!)b)Vgi}
zTa-8jQ#U{yA*nZ*rnIUchzSSa^&#kiGyE-S_@Q3JK((O&IMbxx4A9HD{~jpIb#!*X
zRLDPp>kE7MSq%p}_)z?+enqNST5xq>p0BuU4vqUHhV_CQkuuC&@#9g>Z(3t`!L2zJ
z{~rjSrbl&;aDWJ)!yC6IFOM;^2G!hH-jD6(23FGK7$ySm4Nj=BuZwc3s9%O52jIQv
zzS*krQ;#dfmvNp(Q2;$a!oQlBj2?f3LvZ4_Di6Opre@*S+y;5qxCRnEH0n#pK6ESO
zc9X1UcS!9B|C-q5hp|AlY|R`Xl`!#Z=}g%HAzpy-*4wiF`q{;=z_#)zIvo{l274U?
zbv9#++!#Wo`3#tT{|mKPh*@PKzLpZ631Y*8p%SRKBt$tL972`{?DArIdejZM3!#p}
zkplOot{t*kQYjsL^7U4oEq?{k%P9$vz=JBlUQ0_r0DGKkn{)<^pRbHdHBy5iwExcY
zefu_v42{~U;=nK9ANUk9Z8BsSY}$Mnjy|Eg@-RS<{y?pEww&h(3Jbjrg+CXhSB_!_
zLEt-=@SvC@K?;z-$o!KEmOl@<&6yU}XXon3s%X~4%Wy<QO?xv8LqEK80zM=iu)S=-
z#yjaS-TU&sX&oq9X)=Y;XG$bkBJC*Bj|K3HZ}|)BS4j9HSVKyB9v1@%k8MI|1^gtp
zKB9mZ5lKkE)q;aOSIX~Jj5FqojXZ_EL6cNgUk-kAyi-d%rK;Sie><_x=N=b;cXb1^
zfAS|4?0}iExSfG-ra7TZw6CS5<)(3k2;7Ht-oJ47(o|;jwsTe>sJyoG%0{5J08K@D
zq4nALOSi=F{_|Nhp8e(dx=%6H(3K6St^>2by!!sG^G0wAS30cke?Uy-jC;wSJ!JWn
zy{P^mb*ofKP-}0PbRe9nsQjjD9AOaoVmA9^dP^cAd8p`X6`)eP&V`d^Om-_f4Zc&I
z8cvBbG!g9)E$q$sfrFO#oV;QROGM4ek_EAlce!KHjaTzQ5UZVzWxs^6Fab<NqH~^?
zU9!17v-e|$WdH4wlG+Wxz|D7YUvK$>)N*1j-4WMObR%X-`D1_C^Fh3^Zsvqks&8MJ
zl_jY`vVfZRiEmz=9sw1Cx<Gq4rF8LR#f<rwbSvc_cBl>fhIeVklVqdhLA!0k;~B&g
z@$e^ffo4u)c&0j9J|h_}F~O{?Zwp{3;c@c#gb#QLNy)Ix**J{<Y`rzW=WBmdaP#&s
zGVTJ=+7`nTvSJ-{AB0X!vc15ex7p<8O-8|l56s)?82eIdUXs2$?{Fn*N>|8R<&D9X
zl%X!3m9nj>oh|BELP|9Eol%4GXc7!)D9}>nMAYdohi&G=HICQNs|VZVvZOwA5!=+Q
z6w$yY$0$Z2=p>9QNjtfVwPM1MvbEw7I-U=v-%az?4wIcqEvfdKioN5{uhh+92c)<z
ziSVP$+TZgF>a+=XX0ymyG7L=Xcxj3uGtrp1>K_QYto!#dz@hTkWMiU@Gs;qLEHT3^
zSxU)>T-ZAAH;=zObFoZv+pE~_bzdYQh}kGv4n(;sLhFJwltK^1#u|!6y%~uDvG@$<
z*j)0*Fnw<e6CWhMCnU$v2l0(tb~RgYF?;(ME-1dr%wOTrs1RQIi?{0sRN&SAh#DwR
zmu-C0!lb@r7NZP}+|*MZcVIJQdW-(RC~=V$I1BpLRs}KRL^o<|XyuPs1DIw#!D^Zb
z>cxzSiwLtfFBWmyMhy9W%<SXy?OgrXwG|C9ttv=;^0T#YOM;BloZIfshtsfxczQAD
zJ{X;MrqRQf<d5j?ddtma#>ALwl`SA?7h7ccxH$Ak7lX?(pf65Fcu9kXV}iVSvjaK*
zVBdr3F5e!_v2oV!!uz0h=yDr!SsqvVA6uUxo_+IRMMpmD)=Y{2in}y*G07>j;YdCE
zgAN-NYkU4;mr;O67KWu>)I6BQcsYO2{pS;Ylw5=jqi&RSU(c&*-r%RNchMZHWF^r5
z>fzlu?$lsMs+bJ<4p8StV$sM4?mQmSdF4Q_aH$(UF}lQDH&<G)Lp$-8R9WQs<V8e+
z_170lY5NntAGPER%UI69Y3poNh|s2V7h?*kpo2V6cQ~6-4+&W7IMB*vPU=^i-h&rd
zu9SMvKuW(5mRBJng*K=`1dhm0u31x?`6VcEg!|FC-06(YCycv(+jMVoDD8e!GrF{Q
zI)!1@YnB@6-?^3qtZz-i|Nhm+?Wn`w00#mD9bDc4O2#@LUEhldzO073GY#z9W7(qM
zKBV1Ns=>SYLhnhdEKfi-eXza=roj&)2q4*gUk02eD2L!l0gDNSZax6KifMY7YEVtR
zZkr>##GhDRL-1Wj=0swT%|fDQw+)IG@KDg4I$)CHsky>5RXlQexmr^?mrfG!DQhPh
z8rrGI;;-W=dj6WpjC2*#EVoI+mLveS>rhFkXop-6TbnzAD>dZpu;xqq72UMgOmjuS
z*cni*&ZG9oj3HoOG@c_+haYx11@4n&i;j6&vIVV1XohAD@I?Hu?>3p4J_x=IkV<xx
z{ZlbIF1WODi^y7;3U-_1Akw)@;Za&oqo0YH?TLlS^{-P>Y5yrUO!~RAW_S(QNk#>^
z50k(O%mV1H2Nt2@$k-zM$YLw1mm3d+zA7YQDWIHAXUgGCdADY<z|f89Es%N+h)kCY
zsAF_qn-Ik}v<g~z@^w6hL#Cn4@b`!in0C~`tYX<i>&e8~1J?`bhIE_H_b;2q6O6R;
zuER5y!5$ZjN50j3%RN%%ru`d%f~Y<f=6<wx4Q6O5lzR>;p;bTF#vLrXxSuC5j!k!|
zzpqF)Uh(B8@(RL~g+~L7_9*RPx-Uv`FrXw2XU2o(M_Zc*<<C!UKRJc2OW7gBnZ^A!
zOR%5G7&RUcA`<tK@+#H-ZwR><(~)O^PM@H{6|L}Z54bq-lHh2YD9syrik9GH4``>y
zLqwPL9(X+jEn{&IF7Jq8Iw1Pz0z53swyKcU>0VT8x(T5|$#zGDq-Ju&jI<p<63aEZ
zbb?BEH7%A&Y4Q>E)`#KkwsE_$FZ}&1XiWT*O4W+4#Y8N(LS05V!XEt4Ag}~32qr^c
zB##~A3Ck<Q_z4D`CFq)vN2J-~!o6s89ehD6OUJ97H`5)Tw0-PCzNxY2ZqxT`dXfcL
zjD_ltPy}Jp?WNq7$}1B+hX&@tN#Z0dn&UiZy&9xN@M&?dL}Gt4nI&o_mcHjm?<`&U
z5i>Jygb;=Ne-0*)2#A6_L#rzvejSl-(P&y`B<*upCkl^GeCUc%-O?tFpY(mw8!0H?
zHnm2=M+0@TV<Xl@CvScuO;mNa4^WsQFcVFzN0dK!F!_{N`YBKkc2?|N+`8aHDk{yl
zQ;jTEJ+w9^Z^a*Jvt(V$-|5wB>O!1UUsAgRGA9?=ASgVEDkX)#c!`vc1q5@TXvb%}
zV*!La`XjKyUewW(;j$6vJA8X!a76IiZ+Z6`$jY3pH&E)+3Ocm+i0KAkne9wegRz+O
zT&tdTzIFG;f7=*`U8y$o1Mpi)B1+_i0`P3|Ex=L*B?KLfu`neg>Ij6Coeich=nE*3
zL)*^QWG@LKDHM+`sX0>D<CNx;(uW?QVrvs8psD7f^hsJ%L~jy(7KxCZt2v4827%)_
z_?GDk7;Mu?0{oWp;i!#>v%BZktk#u0>tCRR^qsIB6`J^GK5o~mwU55Sjre1^J2%7=
zFp0&(cOaYOtP}^J>>cP>lTy9TB3lRF6Q3~@)q9H&l#IY7j;O_h@RQPDMYL~*{k@Gc
zXXeKnVizMqW|o01S0??@<($DaAAS=(;gF+gi#i%<=Ro1>0`V8*F_(T_=V&Z~$^1X?
zIa%miUAqQnUEYkkZc*3^-Sdl;%b$*qpp4dq2~@kaA2J5)N_>*?X1s?1DB~zQ+r<ND
zswai?R^#sLkxs=!s4I$0RQkM!``sJ6E*++0#=l7o@>0@_lVrEZEE|;+xQHGZLp=)#
zkqKl``RHBwQ0hPTfrNxxY<A!kN>Rqtr_@jGY^JrVycUE3X+5gtqY`%_SxxJE<=gtZ
zu<+%)f#kIp%F#OpuM+l%3%dwGJT%Nxm+zqSB~R>1m<7=Wu*e*TIR=Bte{NpuVwP(r
znj!Yp7$zf*YohETP0Me`h1F$566mFJ5BZ=Yybqn1;|+8*O=Wc;7nVSbLK7N1_^|;F
zQEI~#p>NF%T%Gk5K|yCwnA^E05nQKnl`GwC#D#LSjPRkEx)Nq6EgYe{qdo0|Zqi=R
zBecTWUM82cybYJE-AO}<Am6JBF9&jP3mNmhEsB-*v{}=mGRCFo9B`~8B+JMc=OB&V
zEe%Ko!qk){E8=-MLGtyL*;<BM!<)!MVr44xg0H7E?r-r+6|;B<vE~Pm*+6WqcU=YJ
zfR^8a)XbZ(mUI|G@HDx=y`*c5-ER%V(z0l<a}iQ2Ah8A2L?!R-5SZwLA4NNj!WYgg
zDOaid6M338qXlOHTPC&QHS((3#*qomnbK`WGaB(*Bp*#!q4`V6wTYCPdjXnfjfCX#
zK07?WHV(V(X_q1R!<iiRS7PGVl9)um{?q%OLI7S*cbQ|-3c9<}VCDpbmL;Z>$m6%g
z+Y>1aE>)$6htxm{Vy8SnXK-Gcesvw6Jw5bJTIXjK$SlJWM^(nwWDhv{7nMs@OU@%}
zu>$wVqOowfkz*E6DSS}z^^>qDjS5uLLAdO+&V@(<<D{9<R!)_UC{9cSl-iT@T_J3!
z9bO3^1cmrq&!hL<j@Bz9+-QM=9g)89b6nODPTxE+8Am&rem9<KoAWsNMsq6ds}oBN
z;00Hgx21r)fscf$OYxHNS%{n2+-awM^p;!irP7{2;-=6MhP0tWGz1-^?9DoiJ_}(^
zXQm`vQ(u)EBzQ<Q%-Owzjj|N?0g8a*tf|5tps_p)VE1bmmY*2)JIiEISPyF78z<HI
zL-IcNzV}?xEe9zQP-vCy2N?E&(CSttviHEAi`(duMSa&5D$UeJl8`s3c5-l}hQ*!4
z_j@venb?W4EXyvQT8s;>7jtM%i#DHyCW4@3#YdUHT*6WZe9iv_p@pi|rw2t?5;q9s
z)Rc(UcfDVRksf?ZR<`>S1P+XGd^w+|@@_f{BUDw!7fRq9l_a+R;j5uoM5+v}(xxq<
za?pHv4_yZ<Dre;TlN9=Rgt%9+G5viu^~BV@<?b}Q0X;jP)K;}!!Cd&Hbao@`6>^NB
zV1;W!Uy6!(o6>yMq4zT;{;ITv%X?V{-q@&=qqzI_hSqeHnxuA|=n*%)ts<JsJoD;e
zZnW2g5RBacxUTe)S%~)?%R72#k@t$udou*4hK;Br&8e!HEuA@B+F;}nBfZcnKcQCw
zjTY~N5*`hLeG8Yq8nVN@zR|tXj2)B9gO(SfH*{gBOW<^aEcYz2>1fTR@91sH59T($
zh;dkd6v)|sXBDZpj#_`Zj+=!iscv1)WYx#{u9JgGudNW4f*I=bbG1qX-5Sk|)Xd8X
z!`$A1;fgjuy54kE2NGlH-I{0$1-~_5yk!;wM<|uJVO5uOVyaO|23(}M*c(y~>0~SE
zQ4uB5L}Lz?{`MtYBU%9Ph?hicS!!?mp96K%6}|Q2Z-p)05|=Qsz=u$UCmb%9SxG%#
znSx-v4_r7H^6C<6*m2<4rObYvFPLJj&pvkLNVRxYyn!PTbn*W!!R4(zzsQdadzO<!
z(+$r<*hM>?VE*Eah`-Qeb#h{k^k#_)NuH}0K_TGK4Se~4_?~P0C7Ea6{Erw_wr2Gw
z>~Z(c%=QDc5#wpP>a=*0zO<*THs`~7qp(nUVVz~zK;}_z%}V#1rQ}n9#k&KZ58*xU
zpAKfImo>qpZDYf+xbx<cQ_n}b@B5GzhYFBEzsv!GP>7^NsvvV;T+(|U^d>iPVh%AQ
zIE!V5Y*XptFus^g`=;wh7&Y(;8g-Jt(AiQsYzx$glm<_<Un+`(R~eDj<s#I9bOOmS
z>Z)j~?QXV;cjaillH5iSXV(Y^g3uXz3%xFII<3K;$~CMwV$(nu5XoqCfk6X7sLqz?
zAnsX)6ou;R?hYqw8Z4i>`aB#^5ai6Fy`##0Ho10EYME@yhx}k@EuM0`XcWz;XBw*4
znTEOmVFy|#_a{mGy~7zA4ZMiz*hBg`6Enyr$<0t~W3YR;ETbo&OulkGS!jfP2cvhg
zxJ&~`iel8^zm+&HdjI{`4I}Fv6A6(X7U*}6OSv4>w3SX*`SM-mMjoH2@1kVeQsOA-
zc<fdUX(iU3MJCUqhkSDVTBDiV2`aH?DSKD*9fW(M$|^<rMP&wdNBVC~(WsnFz(Z+>
zFo}}1b>gU}Izh>Xf4q*MDaGoaTQcwPPr39l)wJo<%*A}#ld8oB+9Fb1U}j;O<<2dg
ziV@N<5|BHjMsnb;t%EnHf*8PHY^%M1l?{XSKIqb|jj{`5Q~NFKgK6l9cf0lgVMKY#
z8CayvrSs0S-H<V|JMs|3Zy)6{apv4?*1D<SoU3`9kMebWp-sDw=8+Y0wcF;o@Jzd3
z#junnvTf&SR{zquC(jD7I>SH(wmVUWWJJ_Va_$Z;PNT>ePs>I&VjfV8HI`Pv1lZYw
z0q4SnFYSO}5(K{%qa4pbjB|<jQQ+i+!77|<0Cx7_F!oXrAmcx1CE@DmUBGt|6gM;*
zUcyt|TN-zx`!5l8xyY^*3g~~;hQP$121c1gJkBRAM*f>K%y^<pYSF$-+l{OE$MbfV
zFFUCoP%QW|j%vcf2BCI-AZ3WP>bSHWg2!w<GwB(=8{EqyD8rs55xrFbjG0FYz$u6K
z4zbJqlU^G11hS4V=1H`khOwA$<?P=KKP|09d+J$}cJ4U7hSJ7gnfP)k>Go+lB?rnL
zWCtw0UKRE4Su6OjV<5<M?2tWsdkIC%xq4qJdC%e=0ssg4gRa;6QNz`1A+u=5T8AjG
z4{?8+X>k4=ICsJd-7*2B@Qu8!?W-f7sRxaqatI^cp&N`2kdIsqCYAa!7qwRR=ea7E
z6gO0}k_$Cnh{wg^)YOe!`RD?cKGbMXA*|m9hPI;e(rLbE)gK~yIj>VclcGm(`4gI@
zaCD(hgW)Y`wJ{-*$a0Ne<-m(u9EH70KP9~a!CcWdzpS<9fl(aa6mkI@+G)JmEaub6
zl<ZREI#q%C{Xat}k_5?exn?gxDdBfIZe0lc0r1G3B8Z+bJ#ibx9NB+f+`l_Av?tfq
zxIK?QhX@4@wFFp2SVouP4No?Xlb_`q6${}<d+}y(g$ggCa8>xBRJ>n8eO0`{KGV;V
zGo0uV*(Mh01$-7V3=<>fHqF^|UfOfjD+IUO=sc)NVClIVGRNIf4z*5w#fHhStxMJ&
zZr4ssuJ*EZo9YRc2`7`4hCobftRH}ZEP+Am>quaomKbU<WSU`Ba-pcrU5s}rO_V5~
zNtYD5AUoun7H|{s8;WvRMz#1;Hdeo|8&Ze$Z?Xbcb@4M)`Gl8v9^B7Jp+9_AVpMu<
z?njM@Ej_A*4_B#sQ2*hBoo49*8Pz?`cUd)NQCoLLRu$Vd*KgQVk8EcJ6*p`SYuKPh
zbl<|AF!ih7j7)o-qWC`g>9g<;{p(5Yv!mtNC3c`m>oQg-;J4A$r*l?IUAO7t6o9-7
zui!9zIDGS;>aI@Lc}J|vqfwPi2=^YwH{`raAgXLm(aJy@6($hQdl2w-q^*Okg76r?
zI++mGxw^4xels?z^Vev1vx~`Om;c$0`D4~RpeYGyizgE*>3#p@gv=o$=-}B)GL@5i
z1S1@n31mj+=DA40^ycZGUU=Z3kX@*~egAjzg}?X@qh}5}14s?UgRKGXbL^!mg?bHy
z2WJIl9?4H+010P}$hIERhjMm?4qcWh8j|UxPaz>{BrWJuFG&L%MzOC8Y^u&EHDHj7
z<&4Oya&`<~K1DO&oh$hAK@btI9#YsFIGicJc*LiOb-Y*zTo|c>1;7@6R7;x<E#3N)
zDJR*E(j5pNaF$TQt^h&U*J>9*@&^UMcDtlGxUIfO)2`6MM%TFNPqM02JK;O&{#->{
zhl}5IUBk<%AE8bUClz>wXRU`3?vjF80>FfeUiYY@5b2+45cNktFC?z^MrFGCp!1Uz
zuzsbtCNE<)kJgNW%BHj@QojYIk+M6YQ7B{rv)RbA<47Z|aK-ZOJ|Tcr!GzZQn@Dby
z5|`c3)-wJ(BuX8ryY@=5>|5zM#RU$Wp1FR^xa?m7<l_8!8t99_{7tiHS{i0Gt9{<o
z6RxxQ=kK@$ph~u3;4^Hci_1Nfd71LfMTU`Htk>{ZWwO1vQFp{)j>7Z#VI|}FMiW|t
z4t&Odxo|kFN~kcs6HysMH?bvG?MEDBMpRVaBCS=K-_BlT7bq)=D#^>`ZsgO?b%+pl
zYsZ#1P7XwvCFt2{Uh-di=ZD^~U5f@P2~YIoT+)=Lyu{M!P0R_UTjA4mc@9tgtRMY|
zR|QRzpZHmS!uQZwi)1)uF<d*@YO6<al?Bd_YlxzZ#jYVVH@^@wv@!U8cJy#-M(i>+
z1Ii73SV+<BAG<t*Owh9sjCI*FR3`1D*P(z5tz?6^l+(t@u0%K0$%y(lCH5HOj!EN8
zI%5;$m~p>*s5T;(fD#mJF~K^c5^l6~6yjoLbG*B>cXSM|*4BoV@2^TeGa%|`TDK&F
zjo&jr0rXF0gXo~wdeOev7`LijpZ+SD>V{vG&7LHG4ambUsndROgH7WTn&>v;;cHcO
zlp<PmY6`|Q`xi8w5w%@%YKXYLu5ZF3?u#p|of}JRfoTNr7fSbS_hub_GU+z7A`ZDH
zVC6dWqys$_?b$h}tfzpv>kkJCrE-Uz1YY5k?h+l1N4^s!a7Rjj>xe8&TT{S`(3;A*
z+AYoH3G+vKN<0minnrlT+5Q+<Rgk~`E~T5cyc<+2xjky;x+RMHc8y5{0yc$1<WaMG
zy9bY&7Nzim0MY|9KKBKBG=ho9fT&SJCaP0)jS5<^W+QP6Lil@rbU_BreR-Qs9Kw5d
z*i<lG(rBh%Od%}xcjXBU;O@+SBtkT-=nm+mL22!~7do>W+|rsM9LX)+#&JIr)EK-S
z94%+*)IMG;{?6jJqJ98BF{Dt1SH1CC@g!3A%UE&PCEfP`p}g_z<NT(fN2F1Uqxt~o
z7+rKvxV1)EF&eIHEOfLP8TSf~@udi;EgxMYmrtqp^Cd=~G6rC7H;Q9lK7M;bn~Mf2
z`Y|Yd_f-c)<PApYe5pGs$qyDDD1wa?dlW2xNw<2byFU=`QJIh>{k&y1w_*wU)9SmW
z*Oj?FWUamqaIoBLH^}X{(whx+Z-lJLmeq1X%~bEWoI_L_UqWHUEwp2XjBfG>-{N#g
zL5QxVyzE<ERUn!NfJ%Aubr~1ihL9)fDr-qiI3JmK_M=*QJPF+?q_HI;k1dPe^K6Tp
z{Hnr4*)wOMP*1Kw{FHM|C#uQ|3<*Pxr(kX7kKo8XCLMK?+LF*C8!E%8U2b5$w8{ug
zce4>`3x#5`GLjDvNu25x>tY6h)RjQ-)wpm}@iDgmxP#1Vv*^vR2W9FYTN&r->`7B^
zuo>2GB!;K(jF=d)m;D2=>M0S5y?8&CouD*ss?O;*-Gx_j0+8PXpmSy`qPV$r)`N#9
zXb_n+j`KhD7*DEsC@sx8nnUWbT(1U=?SYf~#e8s=mpgSquK2v9V?OAh2kMY%ysP8M
zBZ!L4x=3B`lu_kwM5%GktF9M~L=#$S@bx2n&r#pQSk~61B@={vE!$`${8M&SzINH}
zV5z7}pRp?ti+&DVpZw|mcJJCs8KV%5s7R66x^IuD7PbLlvgog280VqVUq-C^gX7s{
zSz{%;UgYpjn??~o-c!`{F;rTXw>z#`2S~g1ox$#r%xY1IdT&53mnQKcM4y*n#_8lW
zJohmF6U{D@nK<GT8k(1S-71yG=MCqb6x1aO*M64+_(qy21c;gYRb3Rf#^L})w~jTw
z1$_mSa=-h@{G-$e=u9Oj@xbIogBknaX?CDK3q-yO<?U^T-(%u?3lxO19r2-m7~in(
zLg>>&2KkM~BTQ{0g=tQB3+X*qKVYFfJ;(3ybL7)6=YlWqbLx|{_(O9c9+5CCt<p!C
zm*BVbMYzPIsBf7Tz01@XK^)>Ky;064^FSB27sz?FtTV<HGi+}WMp$fJ+V}=AEg9{7
zTZyT%TQH-6Q@Dw-tE=Is554#vT-eExbrx|HG=$|C7A1d+sW;9f9d_XgZ5=|bDevqt
znSS%tyZb4&+qtFAm0DT%wIcf=e}!$@h=3W6iq?XK+Il&Mnk2D@<@={IXINW0W!Qhi
zva7DnIXq)xPAPbK^U8SIr@1Zb0qPh`^Vt4`lSdNg_OPV~x*8r(H1448btg*Ndi$#l
ziI5mFoH=?52fQGuU3xxQ{nXi{x?0`|B>3`rBq|*pnV=2EBmlee2aK&S>t<XArqWeI
zvo$SfQ)7226v}lW^J-FGkjCT3ugAU_M>HH#j{Z6ndP=l!>7x7&T`W*@&~5eT`GCKF
z=|?gs$d|Y52Wwgg#|rN_6x(E9pv_WFH;Vto-v8muZc5@${s#{orp28l41JLu`Jv?O
z>6@fnm-z)f%^UrJJ~d*IDQ15zDW)RDdrpDJu|(Gx%lkb;v;otd91tbi7SG!5^;vL1
zOH5`gJ)7P?&Y=MOO%DN-vj$nVbd>PQrL(xO9=P9jN~a?N3Sz;7`Cp(|$xsz=FA(IV
z==3am6(XNWzG<j7nnIyJ;-PYLACGb5POKKzN0XMv^?I5bBp+?`lTElY=`V6OkPR4f
z3h*S6{VDZ(B>_|9WZgz*`-tS}5_bU(6#Dl*3ZCBtl0)|@K)n4r0q`WGkjof%7JZ#m
zzQ>%5mQCThF=(=!vR-Is2|~*z(a<Yp1?=Vc2E&2p*YKfi&HDxD9E$;&Q#A|^xOd)3
zH?%*yj7HzH=L-<CeUs;rw<*4fM4Hm9wyO595x-$V#HAwuaU{|qwo-<w9TKr=Nf)45
z$pHk}q%yYq(#^}==ML3|qk)3_ti_Je{U3t|eo%*kL}>lwZwCOS<{)IXE-1pkr^|O6
z{iT~Ub|gL0QP-Z+gD7sKKFw*u-e5~Kkb*!O4JVIjGyuU`Y!x)jof(m$1)}5ZPTo5^
zTq?!H0We-I!U=>FmuZ%G8BNB6QExc5N9=Gt_$ts0b<czz9m~ND*e<|xs-cOU>8NL8
zAScN7)k?t9Tby>l5aC0GU^&?FiIl;zr(~JM`JU$F>QugFe;N~HQ}Q|$QevKc#H{8k
z`l`?|I$bpo(w;P|wRoP+?nLu3Z+jZwCEKV0$0T$`9BO9x1)chR-von;+h<roVwk+U
z5QmK3oH|&j+;1$|IlaqZC{<o<Y0carEWQk7XPnp}ekOz06*<^ov^4&qi!6Y$bP(4%
zlzqR^Y6>V94%uKEG<&yCHBy@UjeG+C*Sg5nFby7(qM|x5V%BmHNm*l6(m?GVy!bF?
zkhx7`<Yf6&7Mw6_M|59fA9yx(2>+@xWt9pviTi2aLN~9MHWR#G2+~={pc|>X@;d&)
zp@JOQi8Qe07%+`6g@F^4vi6Q%xYH|~ABk|(3I6A7V6_@asud81CsvIxRn}7=Mt#}V
zat8v~*7xX$Aa99Ox4#6e5zEuoCz4cL#lQO0z>F;xJ~%P!48p74?9wo8k?*}oVgmoX
zl??@=MS6fKtK9rA(8WRMcFvXugHuJIg~qZnUjJkOn_WBKIGsZ)holqG_+zSiZlTiv
zvFC#-uo)0Se+kP$=Z1M@m%Y^|`h85Rzplc{QYVfW+l3fL^{feafNSDj#UX8S8eJ$A
z7Nw(c{zD-#-bqvY9kje)9hoLt-{|0G2FEcoN*0WEJl@b2k0<)7*JHFE*{zoLnVLoM
z11Jkz-YLhDA{+(i1FpYPC{4o}Fm=c%kN{}u`cb!-U7GEEq5Fc#Ix0=q%vv!7BfMEM
zh<7Adyx|0a^@_M9hd^ly%(bDYO5Vm7A?$XAqmCg0QoluGnV*u}Tu=g{2{RclT80%`
z#v~>iiUQa_sUw}jciI1W`uj-Y%r{2iJ&sz594SEKXb$asQgFZfs_B|KX$Nui58%Hv
zMRTiUN&V&>>63?q^cD|;tIOXyK0ED6#xU8!H6|0`WeFMO;a)9@py+ZMaipxJA2R{r
zo03#;8PrYCA{6w1!xmhYmDX@W6$a5u7U@EA4(ChENbL*}+?%Ob1S0VpN-gWcYHpC|
z=EIPIyMHrjIN1kC-1>yZ5adRYABQvGN~9{4ca|zpS~I{2$jS(j?)4qQHq&Lrw0dTc
zZ9Vqv-~ey-$pnjZM|BnjoTKBVfT46*3}f0;cP9o2)w7$|s{>L!+WOf)Wc({6iQS$q
zAnK5hT5t}4LFHWvVF>Cl8L%|(X&|PFEP!RcU`jxK){=Y(>KAWWXNX3qwpp;G2Q$_0
z%LcAk*0-bFzvm{KP?S3Jgr_odacO<BzMI5VZ@}stHP*DU5%(z(Q%pbYGZlDlr$)*k
zs<9OK^*eJNEV{vv6N+SdwS*DIPVQXc22{D%O2sf>Owab55d5H!D!F{ik*n|I&~zF6
zWw-BwhI%odYB-H4(2#4}$@4Y_9r*cSr6L|;4Rby*lJ!ishr-D&m0A#Y#69Xr-u27k
zWo{>1z(prmM!#8FM49w4p0>1&!^sSEu!^8O%f){c9aN6D*F>N59yPF*NdrTQg2Vaq
zJ5`}{E+S@01JO_$1`bpQ-)WJ0+Ga0^Z)DLb$f2~1CPd&66VJ_NJsBR%7VDv6h(>lH
zklmfNv~*Hdf~#S4C9pz%*n|&$oH9IATG)TtX8R{!v+tRwh0@a0FV6BGrBQ<qfe8{n
zDke$C_tr~HSld$s=i}SAB)-0d{CUiV(V}O5ywpgWr0TGWk3jX4S1noyAG&^y>&U|Z
zI#`G%`1j}M9S`I2RcLG(ZXQoaWWNCLOm}oYjgrm7VPQpwo5~V}l{-n#m@Mj}xyIY8
z*wCn?JC=!r9K+~@P>6io;Zk@ql(6nv5Q!{QsQ()ZNnbc$denWmsdceXy&YBIZ0~{g
zXTQL`kZ2wutFKpUj{-a|OU%^#KW%Z;34ZERTgSw9<iTjUgcm70>y00U3qkEbyXd#&
z0enGCsug`o!_U)`+?kxSS%V8BEbqoVP1*BN$VC#N+0`~1VianiecAYs)mL-jK~qgJ
zz_J9p>olj54c3(2__toaIVF^qEI+nq`|mP|rd}@}wn6clj~FcK2jD83MioX--bRr{
z_FLNZw~g0L!8HvwmB&120uKm;B#S&u(VlY`L`9Pi)_@ZB2J46Q(EBQJL3(2qm)~aw
z-k3k3?RV+EmoY@$cX^`iQjuc~B$<-*3<m6P4cU|p7NL2xfiH5Fq84V#6wF&i2Bm#%
zzGXhBK$-)vU#SvJ+#G1(*?=CP7q4cC&CB!(AKAVJTi^W+s#=scIS@kqf97W+uX(cP
zS}B1t=OZx#Yzq0m+UhHutQNPV+t{>@svWbYSz36IEYY(lh-Z`cd12&88vG{cvS{-A
z*4{(Ruz&8^#+khEQl<ug{q5Mi88=P`#yC8#KUS9#<Sm#W>w$+U;IexTC)byiYoN;I
zHkh}oSDUz%j$YN<Eq!KGX|~bu>11i6%Vo4r{q}q{l>%=3nucuDs2ZvzQh@wNVLtfm
zPKF5Z#NsIFnEFmE>%0dIYaU>B$0V>`g0t3tYpR!TbQ2s-x)y)p4<VQWjGQMd6hzst
zi(1M^0`l)5H)XNlsd1_$mp`yZF#<Ig!KWLp)nNS4fQa_zSYI_-n`>c+(5JFOTt}j5
z4vPKeGNHFe^vj9+IifM=Q}fWx57ev=$e;ojVRL(S^rx=@<-SWahcvh}Eho8xGMPT4
zVoMq|6W})Ld#3SfBSvA6h0i`|=|L4}k%d_u+BLO$QMxwZ)esisp=+GyvB2@b=3#|U
z=JuB2H|UM{vDTag0h?+u79C5rQu~J`-*J}q(9D0v=GqwaK~GhFU4@K!7!JJ%CDdz$
zzJ$2Z{E)nsQ$G46cG;bFQiOQe{?COf_e6NOC6hpXi4(km*7Le7l{N#X>(efS>=cgk
z*QgzV^S}$vjcQOyKxy=k_OY%`@0^}y@LO(~Q~s%~v0PPbIaVD6CtEsnc@VO!k#-c3
zKP~fHJO*%SBhT&Y`OMl0zJ7xww%zj+D1v#?<QCfV541s+`O(-~IWw3Vb#Pc?STd(`
zl_o!s(8XLrbxlPCs@P-fFp2Bdc&;(Z*cklH1i@6gmP$z^h8&t;BtSIfkM}!;ij?9)
zdecS+m3`IFrOr>wT_$xu`Hi|I9`v7HWnfTIDwW~qxtr%M5nE_79X8(*_FN#YMVY?k
z*I%&|63bGT*tPzBoa)qy_ayk^=_=L$d3%*HALX$~zm*$27-{gaWdxO3FgWnE=q!Jx
zveB*Z?bZ>mJZdE_@0;ZcgK|<<6gh)t@M-7y^S29^*WySOaim4w+zs%#h!_KDMO|18
z8ZX%IvV?3Hfm|@7+J14eE-cN=dFKZ9%c9i^nTTeS4(7i_ua?6Q2j8a%B24-7txAhN
zH4BpRn1CnGh5x{FCNkOhX1#5g*EuvPFdn%j<Rnc2TRAiNMCKZWNjc{Vn9qKj*2y>|
z?WGcB1UU=+CtI?$Bk=hbprlAuUd1=6lq093YA+b`O4BGfA`94Re?Z(R3{$n~4<K?)
zX-7+n0=P(U76^Soh<Qpa4SCw`_cowf!uwZf?N{e*g5^p=tVNfeS<v`tj(cqVp5a-S
zLQ?kgb^E-_9V5s&LS4i_LzX+%uZ;d{y!CmmvY6I7Ug`zhMQ5Lt4se5iS)$CAVr1UH
zD6G^?lwm1D6>6ONF<nUjnH~sH@}BU2_3&VPxxyK+7ivf_x5=^PS{atqFC3v$C|tFi
zqc5w{vemc)V0@$M#)!$J1$O3T)A0abe_^&26MjqpS0r|m4?R5;kXCd}n%f%^q=pK^
z>L@#3*lET=2m(0?BX;<x`4Cn;(6}-E%p?)cbg)+2clik8Z=&GevH=32v5t64fQ2iG
ze5faS>7fUJ6gs?9H$sASAa(?eY4g7fuVKoKF2Aj9Y|~Dmq~VTBZNMZxnJ~m-^nI*7
z1^Q+FHG@tyj}Xf79B9KvR_z#3_FQIu%{+qw8g6-jsAB2K|7@FYXKU$Bm-gbrs6)w7
zb|vN@n}^vr(lr@O&OgRQRK973GyUQVwhL$L&o0|>!iYYt-FHy7M8j3_P%3Djlu^_T
zG25>DAs7^GVCjO+sK37HNgxhvip2af2i80ML5#4Sxev%K#hB$e$W&lc)+3spO9Esu
zHU%r0zq2ihh*<fCNN;9y@+iWI-<#t-vf=L@wl?Gf#-}ZWH+FPH08#)ITnT8<i1+EO
z&y?Je`W6?e5C7kz+NLrOdnA6Doywg?1ILiugC37~g>-^)=Bg$8`1VT54t}MP)~E|o
z8n@spJ||a{JC1a=kBrJzhN4ZrI|Vt&hl>y(RXMAzI;6$+XMN?a0%$@-p&<Y(V=0VF
zFgqPr-hE3SsQv(=ijN2p+*j79B|obd-ZS#|ZJp5otSjOG4?Ob`hm^k7y^(!o$pw@E
z)y739&+OBlqH+31Y9O*4@e~B|z`pW_k(mv5I!v)#o@AcsT-B1)$lD6K>_AGSCH?s(
z3`EA7E^(=fZ6RoKvgtMRD~!(yfTe&6-_OF49yb3OIZ-6{95aZP4KbPOie*RLAv?_>
z5x;_8LaJxU%FQ>AMP0K!exb^kQUQ+Wf5Uw-8}QmL|DZ&^3LOL|OW-QGHJwxc!BX4)
zgkw+b=$#JkE1%hi4b-TI;ZK!9`JODEjvgh})Dav)2C()o*uMLksqKQCI*^|PU(Iyc
ze$-|~n7n`O6!aw#1<WTXx>OX?rv@TjRm3^ZF9us%3KwKrOKHvN?BKX$0x(8RH$jrJ
zSy4pWXbr|3d-rqm@kKzB4;{rt8P#PmsmBlEf+6vHQ4p;*VaPFtbJ|uk80aY9+0p?K
zB>e{`E{4rU?%upBU8gpj!8eY{QIu=G66I=0lF7A^x=~CkSI7}xoDWaddp05>-B_RX
zm&dSWFZl&@px{i-OzOzh&FL8IL2HhSACXUYs^|WfA>e+e1q+<qTAn^c5nK+^w@f_*
zJ5f!IV}jgS;Dl6y92t3Q&zO8fqmnS_!AOC+a-mbhBfx<6qOLv7E@-~oj#dtQV2kz~
zLCBkMS7llUrS>W|AEY}SyUBC`jvD6;if2a(@h10e5li3fph0RBg6s@{k+xm9KG9vE
zpTX}HiM{~1$;8c6M558*x<qt9Wyn0mitcdnUeynRD627G`I%MLEFUFA5t!m+med5&
z6144LNUtu%emhtGlIQ!wc=#8)3FXo?6`9^jb35`-8t*iSwq)%0J0T`#V~L0VzD{AG
zK7sqBzxOaD`U&XLxeNGV!L&BA^d$6m#J{}r%ySiodsZXT=rCzs@_Pf;siAh)e#6b;
zc+TrnM4$6%Ha3VvM!KcaZm!;xnsckoj^2ECbl>F|z|6wO7oCY)WAre3Q}0o8+m2hd
zn?RQ5<{jb_hCu%I*kGcdsqjbDvj^H`&(f>l4KgWY+P5fJ{Es>OyIxcC8c)L~3iOr_
zU6r;kI3h2tYU@MLrJ*Pvnu%WAzLZoAgy6H}7wgW|hs{%$Dm)fFpX*Yt7NfOWXbH`h
zcqo(q>qAnDpYYUTJq$IGY1QfPp|^(05qk+C&L(fN1&H-)mb;>!mVS!`E;m&r-Y0}?
ze;v9y6}f$Stvav)J6d?GD(2M+n*{$uDT7i;cpmxhf<6M0dPhp^N`8a)W~VXvC0t|J
z8rnnPSkfY9dIPMQ|N9-;uiSwb=`5-nt?8w6k;@(ysp3LD2^WU{%ukkIk!E<oCea#M
zlQWT(9O^y)?jVxsi+{A2<J?#vIg@92jp%*Z;eO=a|H?mo1CU&Ye<)2|b)-)bc#OaK
zYS=h+dBLWA)%35Bl=zQ2>=n;6D(G*JVX&8ZYZ?4H*$-bNk(!Z<!Mnx4H=@;KYxq}8
z94L4iR>I&&_Is@#WDUdm3}1ExQizS0gF#|kr4b#v!D7cOixyRYI^*#uGLU(NB+R0C
z0~18C+P4Sp)X%IUj(*Vn{pKc0;EF4Zw!_kwM!0vyh^UOZUHe6a%j^IS4Yu{?Unk%Y
zLujyV6E*v6+a5I!Sk%bYlelQg?@O>e$3^!d8_@z87kpUWN!+mHq|xV4HFMC3sINy+
zwVs;-`+r3+vNd@>oOc&fEG_NXl?tRV_Xb6hjgCeDWYg&|nTp|4I*?dBQg686lOFDm
zttCf*EJUe*2o(*iUgwx9qd=Bofe)R?k$x2;>3Sv8ct9l<0f~-pw+hlS-=P+H%L5Vy
z+qFA1m}xojf;l;VT)|!&tK#67Y}acR8rrDr(f@JEXoVl#C`#@<MHL77pcZg;xkMQG
zzhI&VF0>N<0*Pn&A5X~+Kr+-+Q+PwQi9XGNHE`}TWgMUAV=f3~J7Fvc1j1o$A3&(B
zFWZ+AzAe}a1o}X`A@4jljMnAs)e~aYl&5}s?yMDMGJr3{;<5Chh6n`FuFjijgh^8>
zS#@aaEE=7s9Rzq9AMA*jtNb`*#{W~s!F!7oQShZ#Q1>BD2tPl-U@=HU`NBdcZs)}o
zl1SJ(72i#Y;@|sL(`f@20+N4;fJh~%pFf9sl6E}E&8hHe#_2c8GSTC8fLCWYPD3SO
z(=UX51Mr)Oa!Ok~o7{RY-%UmU9}BtNG*9u1hjsES=zP{@8o^Q0hnmVb%H)B6XGQz6
z-bP(*s9wPdm5G{eHs@6MR+L>%Kq)vjAPer`%75fEuu*4;mUo<j&5hU0UpdkeJQhlM
z-*5#huH3u!W~JfN5cOmsp5b=OgLyzF_v0X_h<p@JR1`JphfKFEgO@lPpb3J@^8m(x
zuJF1<Q=_#I&4IQGPzB3x^cI+zWcy1;gH}x)Eo<3c^u&el(nuXOoKPhI1IELM`p1w@
z7z2JeW>`;3+MBoX4J%{cR>N};V%*n5;ZYo-{jASDSM<2H3Gt?Z%BaOWCk$!L!#~Dg
z(SCubQJQ&anNts#bfTrb2p!i3bB{pc#}md4f3A&|j2<;8Es?HIZeJfXx{0fVhpDoy
z1W=|@bx#{EDaSmZj&hK^6-yF#INhCg@YaB#%q+I>DFTmANd)nT)-PH1k``t|=Ij0f
zNDafUgi<6G1CKAImq(jc99h^bU~``lAS)5IMYf!u1lrmY%f#c1g=TIDQeg77D+bT(
zoP&^WH^WL^fb*{dKGG;ZWvv&xqqprWJnNj5{fkyE&6wHd8KJ0Tf#kNBmaxE^7R8NV
zw}s$9CWk8{kzymY$btJa@@6-~+1LzV1N6aJ=ppx`KQ8hx+NW8txEo}Jr%FQ=a{hAK
zZK#H;2#knBf%Z1vt!_JATJ(#~7nMqQ;Myf8kvr_~vmZ=_{FRZ=qx(pZ$)&%cyJ%=b
zA+5HdE27=9F#qGRw4c%`22C`+Z&$k1!_qcV(x;9DGLM|lme`(cfDHWeS8Q!!J%0E)
zgfHvPTZ;@V7{+cmy^|zcfoZvIt4@eJ22ffR*ZHnQSO*|hHu+9)amO9xyX%1RnkiCb
z`gWZ?z$S<fJjnzJ6ZNm5a6jk!fPfnr?VLhV`sn$nIa6BPmOpg#!Q?Q?gLHE4jBAWx
zHPS<tiuF}dc`ncq9JU`uI0zgeD*z1xvqOmFt>)fIYDa1FrO-`u1s1vq+y&mBo$CZ-
z$*tl3;Mubf!S7g&87U`tr?EexQ<_bhmy=kNyt<nMO(NKj-`v>?T1$DrcIL9YGWJbP
zJu-DaP%sF{<xh0J7^_PWJCQ?T5tld>7P6a+XGApjdMcvj5eRiI)f*~)DfHhLbbpsQ
zP%#G9nD7a`yp&*taw`yulw5UM?y+bf{7NG8(&3$=`<@vpTR@4I3YKylW=IOV2;z#?
z7|m3_{wUR4HE@i~4gBE3O52Y-nT~oSvewNMx_zcxiBGFrn;VpXfv$7<wLc_xuSczy
zAMTg%&C?%H$9)Utt$<P58EWx`<S-y$iL=0aUF*zRyHb~r^%Qrfp<*2YU2sLQo5FQj
zPoxeB<E-WHUWu}8+B71q)55uRIP+3PkNVccD3Cbx*s%cR_wCw+ihKt)=KF1JlZJ{#
zg3ZDlSnh$QT^Qg?AOK`2@gXFRH}W>+^XVw8=O~_7x8;3tbygdYc6Wbz>*C2sc<#oq
zII9KlTcg!iQO{IL9)%bVU-CMiA-G`a>kR|KB5BC0mpl9IlBGA8fCH$oEc)5w4IZ8b
z9MJBo89I5dk~6RWzAwV&8%w|bLw(2dP;a1+MFcjYlJ#N+{AR-&O=3?(OwBnS>{G+N
zS$c^%REmqRk()2b7hpFr-&tO1C~mJr&U?4#>X1JKx(EB3?Jg^&B78pX@FA%mU1hXV
z^UX<fqqD9`p(LZD+Nxbx1mh@r_`ah=59{IlYXP(@{79=XaDqWp%t38xZ3%_|jUXF0
z8?$M`Zz2rttOEqun9Lcb*T=l5-Mc+tl;rWuRheU0rIX>%qre1{Ka}!M%9R!qz*29n
z%#(Z(v8#c^1>3T3DRugWcCNfgM$nRofPlZ3ByMsUr64lK4ppa>#4R2d?J}Fff7#?T
zq6`<PK^Y!u+52I(zf?)zN!1<qsgJ1T&?=UVsXqR3fq>%*^ZWu{-y3O?Q2FGmD%4Tl
z1ep;cq4pU=H$vGB0yheR?a3u7PHoOBJJ<gugo_AVgu33ZW&VVJ7Xoa7q{ze&4#+y<
zw~l(xgYoFI5fNiW0y(3I<Mf{b+;d=kgw?p%F&3Ui)wH-Iu34?^gGS64SqtBaI*})9
z$9!IPgkqaP@S_};w-Y%$-j<H)pjfQF#z6I|c9<l|Sl+p*5Sqdcv$Wm$>r*4K#SYiA
z%9Zj&&hkN~vJcHN3rJ$2T<X3yWFgn5K$Z*<WG$$t8Dvp*`!KjJ-AD&bxWF^%Pg608
zK<9C#ZevV+1WeAl0=7%4h^<AF;A0DgQUgrgp$$3qvC%%x2^w(lHb51ZBeYS7T&fvl
z5cLiJo530#%Q>QZZanv>2BnBK#NS2snGG`-JwTXEN+Rx8zN0Z>e;*=LXzW)6Lo4H8
z>ECL`dxKLyfQ8E4`!j&59+Lmo8ILUw<6q?siQ3ThY~pgsYy7==ORXc1x1a?oq(W&Y
zPdmK;R@9DaZ_?mAH~6BNj+uSvkqddts_=mln7eaPRt%+S{)yu<8uqL=w`L5P8(Y^h
z@5nDLt!JDK#b5G2+S=S=^1SiC`H-y?Z7H$7l<XnLwAN@4C*5j9&dla^9>Bmk#Imxd
zu>#pp5Sq||(QYUh`<(7$9lf1g&gLvH%R4ARJ&>nWP#_}2*Oa)Ly60%MHIX$nzhim`
z@0}&=$;-`{p0Elq4dp}7%-&-4|2tt+6{F02=MY;mQR?}^ntBP50BUvgRMjWn^Q#P}
z<OoeHt_)fCJp`Quu!q+j$U9)V6ML=sM&q~RBN`E$1BRZPSq!s)Wj-z(10TtT1)cqa
zOT!2aw=A-tDrLHFir-KPYgjmOa}oGV-h<}`Hoh?{W*!8=)wIToXbM;S@5k>>Soza)
zI|@xe+xkyI(+u{`T~G<CIyQ=XwQ)qr0c{8yIVzy>6fRb?1Zuab7F$f!?GQiS;yut|
z>;q3Wqt00kW-x)^?gt|cc0`D#Zux_X>oXZA?Nx{xp?>SEUx)4%aGLcvl)N|u!-;IP
z7%`cs?FwYsW(4|Yx{Y#qI86)Tk&(czsT4JTayt2d`EIpM3=>YG>CK6Bh(NPX>phG5
z<FsPXaAb6Boz8anVUMFhG;g?YXU-gP!vt2<GhujX^>u0o5WhzxM6`L%QrjZ8MN7Va
zIG6c9Z4U7xBp|R<*U_N`hKWYKJh&3!yFUvI3x>An;a%-tM!Uy!;X)Am55|S^Vqa6W
zGgRb%q!zj4ZY!t6J<}iT0qQcOEF8EZ#k0nNfK(~5<Coa|NOR{IFB*jmv?mKt;{=A)
zN)_u3z5zO_Icg?|k|`NY@zd>T^UMSKNVAa8I7npJSDl*{&W0rVVPUFHdn}kmHUQn?
z{fe0fC#$BxQavQRo^IU3FqBFKr$VsJ`f%uZ!9+Hv$|Gt_-6BF^glOGqvLhV*iuf4k
z>1H6C?LL9Qf0b=!>hk%gW5{g>98I~KU!Uw9n4$inU7%vGz6szeXtOC)>l;iED=$Pl
zv3w#^T}0P7OVhW7b-u5rfZKWuZe>*mrMz4)1@k?;|4>&&sB*3|Ck@h=l#H+!4`zWO
zYtHrfc|nB+`g29nS>u<GXba><<~+HmZ9Wj+W3$7G!HZ641kkZ6xWK@6pHrO`v>OCY
zgOQ03E(x+yEaKjPQjd$QjRnA50Pnh^Re*HZb>7vhWD0p4OHplID$w)M^^xm-;0r6`
zi7-V~PGW`@*y@`j(*h-wv}2W9xCP5(^on8C3OLo%@+D%cudoKPxS2X=r-|T*mBy}N
zV>StdoC#8WD55(2)zpttBX&QpZ2cNlbyN_&0KwimLqr#G9qTZwW_mWfllot+&<L<>
zq_shV<SmqW^#RhNI#8%>AGY520DQ~r=>VEa&J&inC~if`x2N<r<Rnv|s_C!iLyq@;
zUv+FMFo8Yp9W(wTdUE3i(w4NJjme0<(2xQ-N(*_~6Rs+P7uRl5H!6f}gj0ECeo=eZ
zgNT3aXO(e<`89d!V#P4n?DggUj~;d#mKa<$rIR{8BaA{WE!*v!1F{^WgiaFqP%M8b
zoptZ#!3zh&l~a|9%$UJ;SHf>FlJJc~)MSmV+dn50Ly_3Jrw9(=2w`eGQ7;kXl!495
zI!nq`ZiUJu&)I?KEb=?brC!J(s>+K^VIftMhY<4RE(F-ElU#B>QE8>sB|6wCN6I>T
z*UmTd2NN19<Jf=*lR)(ElwNX&_DLZNfJPv0q8F&_eN&KNL9=Gtwr$(Cr)}G|ZQHh|
zjcMDqZQDCP;@<mkcQ-cnWgqtGWE8S0E9zu?S(TOP%${%g9vC}tn(9Bz0_TnT>nxbw
z4YSx9hnCoi=~=PP$0>m<t{h{iU1m0zl_#aZFinMJm;OUN42NS=?^~ZvzJc>jEtOxi
z*X>UcO$(Owk8VZtWOY>p)!@j_B7tRss+a5vBvwNx`4k;}&QkW9Bu%naNt*hD<?^ZM
z7>tT{5O@)F8m&Y+LO{1OLX4_em*wZ-!mP-IFcW|%)g!92evDI^<tRl%Zo`B$3YgyN
zj}<{0jZad1WjVo$j?b(A<En}`V|0@*Ra9&c-r*faeuMY{Lnc6O0c;o9UhKz1s8?-J
zTIC3SlrymzPNvo!?W3rA**0}eWgqK|-c0L8r`vMT-cxILUFJs4GW!QQpd@R@ai84O
zdJG7)oGLad9BO^kMO2j5=mC#+nD++noN{GPvC?z`i)Xp@hWIqDQwCUBx5mDj`Hbwi
zYm_rxRqt^jbrRAQA*Hz#QTaun*6EZc7mTtQa&pBM+_4SrHVZEuPQIsaMM?QioFgOf
zX@nD!A0!wRhe_AacXiq(0O({_HvCEV&wG4hbAULjo)6pX^cj?P5>4iH^0mw9FTq4k
zC|iO8`aqDwKbt6-{g;o~p>mtR^ieajXNsTCscJ{KV)nWmjj-_&Muj)oFM(7PbJ&y#
zEOengorVk~^A|fDBw<HEXtZmCt&<|nTrrv^r^3`Nf53sDW1PeuBd<SDRD>6`9PqB!
zqbsbuFlbB#mxI65KY1EgV*I5Ou;>}6t~Li*w5+7Hp3vl3hehYxM7diERcGXi9Mk;R
z=03om!>PkZnAAQc%I=};!yU2r$SG?<Vx(7@YHn@k3vSl&qH?bs0DnDk|Lmg-)sy9-
z*aA%&A^59msrVzk=Q#b$y{F<#r#6Ql3o3Jhug!**&h!Y@6$}=DLYIU$)|0b&yn0$e
zL0LbL=YoZTPCK9(iVcO4&l$RzSehAmzmr%AZA9N6pa)UXMzusYR>TGeSAl9pMf^E3
z$Tj#v$wTcGU3~Q<m+I~#_kJ}ED>r>uIfIe6X=IxDsV7tPjYUdC#@v@!6`Sf?6%}(G
zeth^2Lny`)wvb+;m9TT~zIF6CO#=n1<Ebhs2h^?p4S^-pw%yG<!I$-3>yPsjuW>cE
z2*$QD+epQIamC++#0*eP8KAO^-R81^VhW+2)drNb?mQG)IcP_OZWd1{0tlB3<$-us
zFBc9k-w+Fs09ECoqd!7=<h!!(*{v|r9dBUiK}`0@^$eeZGkVs@8N=(;U8zfEM%zaU
zyDvajYkB9xamzqqxhGY00v8sWm>nWEF8&rMK1*T{wZ2gXnN1x}OPU^ZF0_-Tu*{%9
zlZq~YvaB0gf*ayLXEFWj$#_moPZMyUo%+IJ81Ps2qTRIf7;%6y2$sw4j*`Yx(`$lj
zZAjkAQq$5gZ51FPVWxsy--7|)*z;Fl$=a7FhGg~t?^X@CpR<OiF#g|*)j3TS;cKGH
zho}YlmbS<qnWoPf<}c2C5^(@z`UuMJV(@ymOjqgq3&!z5P>b7<D;e&q#4c!rEga9n
zU%;sWX<?{s>jO41eL{8daT=>vpAxm*jc+}SG`8{$E<ymF2TiPEfMJ{6??z%&!<8N9
zmF_%@jiam=L_D0bbm{kFR&UTAS?Zi)<y-_QHLk|*ciB@P=WGldpf8t#4a0mRXeHUO
z72yXqkUb5Knw!ab5KL0b4DA}(i#%8;`6VsbP_?-<UX2SmTt(haq^%?P)5jZoW@@i_
z9AB9GsP0hyEGE2hh$V|l;vLc8kKl(l%dNI=&d0&L6R)R$Ncos&eLFM;76sLydIHRK
z7ar}*okR;A<7VP|_0oMj=esZq(iJ!jiEyKoijm7bG8D~ivMV-0cGjT0r2O$tY&BEv
zN_T1TUw+&lWD|z;7zJ)VM>@EK)_ibqx-@gwtZ+-Yy+EY<GHoonruV$kE?$HsRRt0L
z0dw7#TZJVf8?GXIfvr#CjBeRz)!}&=UpH08&~5&|D1;L!x%!;6>Wz4ckpbL9mOPCM
zXVSwIU!+#-H=SkJavmP9+KZA(_jcV@+lD))vRlKQD(=_}iojT+m&Hri|CrUgc38ML
zKMQ|eTVA)3+m=*d0lpIzSb-XD{v!4A`ow2Tlv?xwMOPq{M9kbJCCBlk*+ZtKi4~i2
z$RRhszcZZ$G9=|;)S4lPE9I?NFlOG084f46CwTIk>}EW^>86U-AyT`@I}JeQy{Kq;
z%Ez6^ffNIB=_EW^yC_90lJK0798ejRl$A$5N{vP*eES(5Hy+h^ELz#!c(#Jcnw#N>
zMzrbt#I0(ot#SVi80t}I#|{o+TWixYFn8j9f$6Zhuk=R`j!d?80T4{D&fP4gG8tC=
z6?1#n)v`J)gU3`6YJUT9a0narU?F$B#Na?ngGvCRf!z&2827|aF_n!`2{lmPG&;f)
zFnqsPu^Yf71&f`~;w;3hj}RM!#t$Ymr~53|lf8AH1Ko8-&=K*+^eAJ;C0H4|UpfhY
zn8ro-^9%$QcgPQB$ZX#o@s0C)Afb-%^PZWj?7IMXFtg1q;F6XfSp)o816h8v^LyB;
z?Xp5xgf|Uje%5al`pqXRAc;IYLwEoO$&L`UIvCY4=#2o@t|GgMhy9@(E5Tlhf{8;*
zR4gwKXMHlhtqT@tY;c=BHY>%c6fxXbU~&D1C~X2UFpq|dy4p-2<25~YA!^`IoDhW`
zxxBQqQ&JBPO~)#8tV>X$1OmTo<(1=xd7gdeNbFS!{;Qt6RS_<s0`bbcbmItEBu!P~
zgY6^Ot?R%((t6U_?Qnu4S94^hm30^_iJFO862+I9x>wkir1du)vW_&(w&ioyW;O5r
zHu@DK>$cfkZg;h7imd|GE#6>(oeKMffIWF~pyaLkuWHrSYKLP*B>lXYq@MEeBW^8D
zRrm{&m%#hZEx~v>n!T^LoKEN8l;q%5d<x=Crh1KgFFz>9GTiX#t3tv|Mw_Nr)pPr|
z436Q*sYfPe2%kppUWzG7ka;}3?aS<$UfW?v0Xl)zR3x>U_WDodtxd6LZH5;37<eJ@
z%c$Fy6k_ECB3E7TDEBjVQeq?hGsalEqMJ_EYDB$k9qZ~`j41I2qUsU#jl}-53*cma
z5_T56S)tXVh^|4-Ti~klk>v)+dbMdG674(Pt`5CxC#SL*{cQ5}vrwZ{c8Et8t!g?P
zoZv(~nZjl5ni&c4VLKt`9?p?+^bUHWl7)PHD0Y2dLAfqa*f5SZ9D85W1uUHW=K4O9
zP~Cm*iz#yb-8VD<B4?BKvyzvIOJL&*DpISlTxzpa3Cd@Xd?Ksm!@{nkN3gfEI$-p_
z3Br@+(t0EAz<rtsb`EKAxz2BaI~H&=i~Z}zrdBlf6Lo$ir`|*B35jDtu!42z?WT1Q
zuijzE=V)UQBZXm}zy!*D2GdQLSj>Fd?qSJ3Xk&6-6{Xf@$C??ZSuDT;3@=&0te7Sk
z&v9Hewe+azKR(OwI^#259v7L;T|S!X!in5C!!XcTS&9>LBd30pW)j2kbgo&BlP%Nj
z;Cz9Z6XBxN7}w?)D*)b(5!)Mmn6OTqp37X$8yyPLyp-n7j7FC%QkeW49xwJRT?lTM
zcwk6(9W<gYFNPZPXk(L-%1CH{>B=>YDfGEp&%J{(+uH)FW_JX&lv~UcPU})!kLP~@
z%*tBfojQng*|-%3Zl}_<(Aej?zJp>TJ-A%Rn+f=frCb#$@zTt=w<gqbM+*;5K8bGB
z8_xWQ1K)-bd#aNOkB#^s!EU&`>y)hUd*0YW0n+RmYoHwwO=>ZcbSkibxMeQj^8@rD
ze{D79LAD!pA6$?}ASeS`IbJea(PPpB`_R}7&2+rSB9#QQ2uOwq={-0-I=#-Zo0ccd
z=qeZ$O-?y-a$QZrqKzp{Xg`Fyc*H$8ukvmU+Lt{%=&GNbocrg7mhD^wZ%PXi-ND}_
z^4e2>I%t`B%v0>l=e$Elv7(j@a8a~W!FK|!JaNlhy8><pMBcd4f|Q~&`49+$K1q+T
zt){Mb`^SYefRq)ba7i@m6;{uZNHw0T^BWgJ1cYAM2sUHRoUUnDK#5CO=&mKnu%8=@
z&5NkeP#ZKHdX?^1OX$&{v+2kT;oCQ{?1-B$XF-ZZSlotuQjm9DT<vvOLPrL|i7-zH
z^~avupW?TqP4fnC|N6yLl?;(|izt_uG%y%DdVUw@x5lk?fdjO9a9TyEwUb#2*0;HQ
zS2*>hEpARk{WpwrqS4C@Z{xBdH;ejo>j4t5HAoNXV(U8xYv!)6rtI+E^Q4e^E0g;f
zRt2ztQPntO66qOKzxPC(dxt$SOzOA@L9gkvB;cBpp{w~qF<3Y0FV7wD=%1+VFBYqN
z?!nX~WEZBeh=p^3g3-r=X^at9&ILg1dDC~}*=0cuk}@iV-h07;h90|ml96TBUX25J
zCO{BBFxFD`YzaA@21OP)#LT3>L5o?~&!zX`SU+``X-@jylIup6>Kgc$+usPieNbc@
z<mfgPhvPWy0=XPVw}%xixIr99e!({i1w;=|_kz9OZ;9vDLZ=nDKHl_x4#}EcyB=-a
zvt?I=Kj=fL{^?nF(h7hnU?L7c=!>~V(sWMK0XO(9E?;^-s?u8u?=jG^C^0pvnpXmV
zOaW`7=&ScK7O+dnRs6eIG*h~7-5%2x4#jEN+t2w}Uj^cwAe?V!&t4U~_EdG|^lan6
z%0724=x)z4<ERS~^gc5fiTIx7l_t;uQS01kZ33mljOb%7ebH9`N4aOQvOfqyL9HvO
zsGHin6*IRu$~6?-ms#JZi#>f7MR+mMwa!(hc~y!5Wh^uG+?Lpbf6*D6k2t_M3=u6M
zYDkT_7w3K3mi4Fyu*MC=(pjmk-Jqz?MITMto#Wn^+*{U3%O4UPiRS!dH&*5&G|Ybr
zkteX#)D$hYYkw-YBi6Ld8~BvFuSf&4@Hfg&N1Q7FS^{+j#-aI;+~1g?kl}E|*ZK`4
zi$P(o?WREE6bR*5N~F_GLk6f3kzJaGKOndvQNaD5slMrN4gxY&NAsuK25niO)A@tU
zC0+dwQ^6Qm=?)IazeB})CD6u_8myq_p`7Xsv(a$Xt0`qf^DF!27bRPe9wY#F7`k;(
zd5SW4``%{ibLldj_lO04em8UQ0ICIjPp{wu(8AF@4vQ9WTGpgA<+w=+;>^op&o5{z
z7F1E}F)T9!l?AB0j>ipEu6ogk(VcsqoVVVr1<cF_I}mZ+;=%!oP`mCm!8KE8A^_yc
z?!NaB7cRzkb^J}X2ntp&ZuJskuKWdK?+UIM%;*%v;|uj_H-yW>&W}x_R!=~)h%fix
zfIo!iJ2hQVKmH8)-8_YdHmrEQ6c&GiG;*$c;fx7?6`GZ`Zwi8=@q^Vp>zrs!P~5OU
zL(eMDh6OeHM{rorIZ?b<Q+bbI_p%jFFzo>AlGt(lE?E!QJMqs^srdo_cncs1SEK|k
zT8IX7c96pfK&I`wahDJ79&8XJCG7~?<;`EuQHLAa>I?$GmD>Dk=&%uAe6wPONLirT
zDtlr(04k*Km;g}IND_D^Dx&NRt}>cuJe~{r0Z0pS_2wf<v9CA-kt_DxI%|2pu!Z*^
zt1-W?mm_u0R0@Cxp9sw&r21fOdRr5s-uPAa$rSf4uz|soErxlXCO5EqQR{_0b7SE6
zG(}gpA$!<4w0aQXme|keB|DYv9PObX4*l0z2&OWH5LYl$K<z>I+Vz1gwz@;|2FH_V
zp|+i_cOZ`L?_!<;>ZO6>IsvD-JxY=srNu0O>+uVu+9z+N2%XiVHaoqn2vQ3kmqD~J
zXFK7Ufjalh3f4V8vgTbh%SZVa%+)csa|Iv4mXKy7vZd|E6sb-ovR<vVhOytd_`@9h
zB#G);(hnn;u4sEqrq8}6#Lu7RyqvjT_#Pb47ow@97mAc$T~Loa&vKkY01L8hbQIO&
zT6`u+K}doLsliz)HhAct@rMqU+CvWhe^XehA#3<75236T7VDR73RRIx>p!X==Lem9
zcULYT2V@HT$=MYfIc3y%QtZL`;?`|{Wsh5ru2!G-AmdR}H$X4%Sf<Vc9CcD17Cd8>
zpCgV=k~E52s`uHFG(Ae_K{}WJ#6Lm<1<<qNruh42ukrrETP<~cfXiI>h<`ehPA>5c
zL$GSH#O>L02DzW6?_%}PpJf!0mptgR^IfG|ZhjSv13nij{{D8=iO!t_?S(IXUgtZN
zmOR5Oh}?c#YcV4_^Fh|}C11M!3HiA+?@XVQrdUY##*+!$K{Xb-=##jGL1)$2O`J5^
z>wR!Iq2*x3A8ZQR*4c}*8ST=?^u6-=elSgoSc2Qac#5(*62`vtCUfZ;7g0*-Pvivb
zhr~>3&#WdJCf*Sx3M=TBNX;#)Q@D^H_fTgD{ic1<7*&U>PA#8p3EnG<28kQ^4Zx``
ziF_(h8f&7#X+2>?M`eV>YHmlif#GD)ZC(c)2R=-xoL#1Cd5?a-!i<ycZ!bnmZ!n{g
zR#FCE@e_xl&L$c57Q=Tc1z-h%6n7YUl9JubILED7_uX0N@+WrW@@)0xnIa|&B|qaL
z)y~X?L?8BU@OPMF$0~uFLkqs8!GJemeAR^9%`Umg*4!UeUD;eo5?Wq>`j-=*p*u|@
z+3z&xn<pv$Rh1~tGOHP4e1tI%?9(Nhv@B{dde?!PZfBq8*bXdi(2}kT8k^lvhg$92
z#81F|h~4IvC9+5{r&j)wrAUm@-&ExGB99d_L5{F2K5Z_##;&Ozm0^|0AR2L{lkTJI
z({X<k_rCZv1_g1+y$5PMD+d%e<Fy4@U55da>NH{<?ao4{#9vc>13eIlE3nip-_SD`
zJ+*IPmcLO<TX>BClMYd#_zhH54!8DsSN8&rea?}i3(p;P*UGDC%CTKSFg_)eWEQ>l
z?7Z_|1*GK{lj<82By)aJt-ZRtG_o3y42z${6%NC{nYYX66LgG2q-E+|A=ytSSB{ZM
zxobk73I$-b=ao#rXLTGs@bO7zaaT9P!ROR(#_XZ7o?70HUjH>|BJRIx3z~i49q2Tp
z6uG}BD-fRz?2GmU3Sj{Xk(<0*y0E338!Bw3VKbQOWO_iAPZPf0DIYX0(x7TadJwvc
z8&iKw+Eo5jcV;3gReNI7Kf6pFMK!jTFK<uUdjCOwg%(Y+f2E(WwG1UeA6++-2BshU
z;&aB-Iq^N-D=Q*Fm=Z~~ZY*?P%8Fa=1|9QD_IqqNZlNsTSgrC~b0=Y20d39Wd7L-!
zk+yG2rAu=!m7{+F6lAc9l5dB(Dbw}R`@komMH{SVV(*F$9`lGW<-Q+^bhbQ|=U2&Y
zy3O=kVUv;Ob`7<7ul%K^6ZvXKgj>-#HNUECDbID%qHEj%$5yyMc%WAb;--A0;+x57
z1WmS<hX-L$J3~#*2S_&f8ZR_@VLBE0nHfgUzFtR(MK7M30#D&XGa!OcJQVO=G0?I>
zZrjD)qx9k-+J<Z2Ad-lj756-+4bbxFIjM-;XCm&wRFo(_t-%C>s(=E~H-QNg_8rwf
zh`>$w5VR;m2)KcUzbg%YlLlBHoRjS^l;pBXFd^d*V&EktlU}CSzffmW{8SQgyyC5J
zRCN{Wy>6YTi`Cz2#b_FYTTi;t5gkI}(5>I$Lg~Rz_B;0+_$)+FtcXRMgvho$uILwy
z{bdizWDGkbJx^m0HypBBj7Ewf`-1Ou{MDnqt2I%7CRa%mO_-X8KCN_%;K7T(KO7V!
z;3yBCHG<AHt+LQh`b<}vSwZs^6Li8{?=Ol6;P5q6*?EzlWh6A|@j0<}1|dQhZ+M+7
zf0T&1F0u?22zqceJknpX@McD1uLb9s9?=z1z8>dSGSpCVYchezy6m~NrqHpIb7$@o
z*Pi0hSgk_ngIociy!~TTiufnJqjD=au^w}9s?m}Hehb_aO^~iQkd>7<^5<G<cxXAN
zICw-?e6j}k+iCUudT*wo07c~6Li2GYUfK?h#&=YQ_@=bXTY_9dVnQ%HNJWnnMd`==
z+zrsPK));Frd!Oi*MqxXsNf??X>=Kpp7&r&)tcS8?)G<vyuDacZdd%}Ua2>J+_9KJ
z$*`9mF&0F#f|tpo#Em#jf`dCZ$Lfm`C^f(N9t({~`wW>V;t#$QTCW2tX%Wz}R%5Ly
z1}Md^exdajTik<%B1S5NF47C%Ffqaq*756AXYasxe7sY}3Pe@&xVael##aWvL&K5u
z*{!U+{^51ro5Bc6lRs~`pc)CdpS`gk!bx%7lZ<u>^2n2F2UT%!tWTiR{q;&Sv7<M{
z9&2a7r<hN+*Akf@Z7a1ByB&+(DVw<Y5F{NC9GGQpOpHWF;oy$KlOECR2pCDpmOYtt
zD=9gI9u-dA9tFY5A`JFer_dqk6j}wt-jX7X*8wv||1<Ol_-S!=<r2k^U)0@M_7m7N
zFMG~()P}j)-$f1OgtzKlICRBfduZtnBTo7XQo0|-uNe)|X0LVpp)1v@Q_G;mqpS@4
z_a;Hcy&v#H@^bpK`H<b&bw)5UPIT&gifjpz6R_RT7%?p`3Y}tpzc-V`Zf%bmRn%5*
zz#Jwy(~#=~%Df<KCn}sxh(|tn*l$aJcI)>E1|lY7CWnbFT-ZZ!AS}$Vs)@_i-fR#k
zej@%A_`o|{O~3BccL$THNRdyyNSKH<QQp33Mq5Rafn`(B=-BIFB~*0`g7!|7*uFmh
zlzSUqR)e7}i1=WAs%su#fP|d7P%FCJq#VCUUWD9ebV)M^b+I}*by)K0hdc<F<^#~#
zhpe0fX9DMh=O<T9`_`5KH%<k=cJ3yfg$RF72uo|-O7!i`@K5KsB{}@(Xc7rTZt-9K
z^_jv)YbQio_3>x!`Y@Dcb}!2uVR<Hf6nS(xwIgfCp^6cKk70>^HGSosoSX9E#6-0i
zmbdoyP2Ov3o}{del)gM`>Ic027I}`dI1|1|abINRPppmUFax06%hUZ5$S4X5kiRX9
zQ}ERfW0F9hJVYW;d8B9y=Au2l5kC9}2?UtgO0tkfc(|h{y~)T~2fWZ>AjhTk-pF>)
z1fAa&>fWIqKv46QFqn(z8y656Y&sQ=NMIK5pzqP{gQt5R52j|{oJPC_gk5+`MxdUb
zAYh5HLlzD9$FCX%8ykoGc`|;LE9_bCKIaR=Lj%TX2-KuXc~S#n2S0JB1F??P4Rv%1
z_tc6<^mi>|eAsb%3(Qn-7^<PYJaeCv-z*e$A`w$^Y7=lXjVOU(tPGF@x?E}Bpzh92
z76UD-Z^gH6`|Ji^*OyWE9;CH$OF7udProELSmHlb*^q_=8mc>jm><?dqQAFWrvOi`
zx*NAe>U1|}8o5wjw8egOTsCk@jqcld0Xmo;rN{5UeiCJYFW{LW`r1*0Al`z@IS2g_
zA>pXdB`<>P0ihmAn}E8AB+VS}p2Y)8(ML*8Wf)jhZ7$dJ8<DV?N=(Z0bAoEP5{Jw(
zgWY31j>xxRm6ugF>{=!uZs|GX_SexDMF<?47T!lM3LBqHIV+CVwVB~Sigiwbhp`%F
z@&;@Ao)PTMaCq>9dO|^)#;-yYqQcE)D-)yaj~eSX07ngCIPZ*MTip!ts!GcvqZD7R
z_k-h5%QfBjdRMq-VPI=Ru5f_M)UWgWUYM8Z0y`lV8!{fwH^e;#8DSoPe0h<@|7;c4
zB6(mhgKS8=Y$qNiH1-K@xg^5e#mab%we*{3;{iy-&%<u@cTSoSMP+T9P(Zk4uI(1W
z)f2R;@8p-MS3JDKp<qkOi%|JO!9mz}9!xNexkG^kcn<uv7m~yP#RMkk3j1khSX1Ak
z3TpB@Jng%BJZuljFQXvS|GM+78^!L@K$3=12|<twr;VzQJhWEXk1{fm{DdMN8_y?F
z&)A$Sl=O`mn#|EeWAItAXv)8_x)`P$N^^vuQG{}2ZRzj?8YfN1s=Cw*e_-VD5`7a$
zY-;yXO8hi(<pMNH!W>ay^&4JMG5KA@Q}G-EoHwgo`K|O(pzr>@>Q>+zfF(hs&*}aT
zRrXv3z>vucsfmtHQ-a4y#=Kf=jhqV$hO0=2CZ#4z9??BSF}PxmSXp1}vxd_n_d7X6
zup~r!*eYa0SPBGVynCz8lQ=<j-cufhohLo#(+eMQ9$p>rOZ|c{M!8`9Dou%!mhes<
zGgK72qti!bFNccrt~9rsTEnxe^Z2M;R8dX;rwaY%+Sjs@yaLKxyv{Cpv6sc?$(vQM
zJB0AgOvVV2zZ#|Tozv$IoQn#K3q_eRYETgT1)M#4%|rXb@6xnySmT$`L=IZ$F@SJF
zMu)*SWE&TIx{ID5vJQ2PG$w3jA-ja_Uu~iaxrMzW+@BOEWOhY?buSv}&cMA7=6K9R
z2f2fHsIbR>ex@DqmYlb_dI0L<BWkDt2&CdHktLM-t*WgB2!XDbR*2f{ZcRJODi2<>
zq{eKZ&&w`S*VQba#IWhhOcudLg=r|$1aYp{MAy}djjRNV@McRi1FGoU!+%7E@gwp=
z%VU%v0nc_?lRL&-KA7>SM!*>(PUfK-K&vZIY06B78>2XipqF1+==wGO<d$<bT=xYd
zSwa5|TCuH#d7h$bPANOL8KB!oClB#R7Oz*wqbHe1G#<6?yj8fX>Na0eT(LLL)Op1X
zlN*>+jd=$2tELe?!1LOn$5z!D{$!s?aV;cNTi!`YBFF|Q)mv{1^9KggJA3_-wJe~^
zciyf8!@k{xh~2px5Vf{pB+XrGrpAXBUc5qmuHKjy=+0TXC`#qw=5XJy{ft7U^Hnt_
z^3m(ax)U0@4v|xT2;Iz915iRN9b9{IAFoB1YfjfVcQJa}gg4uTq+&#<Wks7pcT6If
z^-B0zH~Hd5><zl!(GQ&KKA<r$a!-1-l+Y3D8(k>TuM>N4Ry<2$0ta)Z?h{`;5EYX6
zZJyHwID?hL17X@KR(c%rmUi!S=0$Qq3j2fm#2yZrC#PdQZ|O#Q;XNmzLJ+n5y`AkG
zCq%}lU^zpx1tkz|Y$fFrQG;Cj;hL;#tbhQ8xL$}V#Q?!NMTNbI<1mdfKP_4-x#5I8
zgiT5Iinun%9{C=h;B>TO6=Iu#DjEEmN*>;KJjy=<fWkAj9!gT;>{rm>dC-(X4i`PH
zc%CaMsz9W`Rm4@f)0K`DFE!{$pD@1wL)HEyN<kVd)qSyB*S+)HnW3Y$R=4Qck%xpU
zf4VbaBa#~w)u!7;NaB{A=FR?`KmwJ0a*%xa4{5!<X}(?P(PZu|K=as0gfB8Q>Dm#c
z*Qp9Bdz}QSx)UAKn%%OgBP6e%gz8sBwf|&?(gNBbsv`8aP-xMKe$(r=-XFA)IbkDx
zw(Kjin0SCm!uDya^&tg5u@$(Ka3SM9m&LwM@*sk7K8B+<wEV=$TM?CrF|L5~9O51K
z!~FFzr|w6;XC#Ztbm-gpHYd`C@Yrb1&6~ahi^AgW4EbQOQjX}5;kHv3^drQR9Pk#X
z#$y~Vp(1V!tNV~pHMcfX&O-Y&2mFDw?<G)IAmY)5-AVuQR7C;1QEfQxu4nw0B_1T&
z_{8Qk1^h)L;X3*vXJa^Yx`Yc4{m&r=3E4TtMd|D8$7`tPU5FuF`5uCetEE{c!NAcw
zN@vd~WV1(4mhRS>)kob-%Y^0mOZf&OceZH=&EO+y`k(_n!ffZFYtGQ@y{)u0>}DRt
zKPiZ#GL4KpyBw_uUKRIe0^>I7*PVAyjC(SmwhJzEtD$E&Y}_FuG5F%VH3?_L<q9?!
zi|A|BV6Fm2?hmVzgniXO%ngln;fwbo<1x=M>m>S~O2)f~+RRpY-I7kfR8xSiLaDa~
z=}F&V^?fNOe0Xkb7bAv)UBD{=o|bC2$yCB`p;`N;>U!N!E@P6?;Y26R>$OcPF;#X0
zY7dp7VuLY3!%)gM5UpI#uPPM`vjzab?7%EZM#tmJk1Qge>%I3hdD?&1V_8RFbmb+$
zTv=rXT0mJ!!@2D~GCv7yIMTL6-goxu1e2@9OX{xpl~HM#1)fkxbst@Axd()gsY`Yr
zmjgwF`>PsrHRF2$z2f=hn@=KAk-&)RcRa03M~y{7FOXkD@d<C8Fl0Q%1dGa{kNUQ(
zdbNW@^&C{%5R8Nfqx?wkCc717EiFzBT?juzau;KP>!WuQQ(v!TUBjH+d8!QOu#p)#
zIw%=Wf5M~}2|i50?X!}7j8W-rpC|UdsW|<*;-B@bw3J`4=KFgkve-pa09NQs7M|u`
zH0%I>9ZRE}L`kcOn~uZt&}PItvV005^Kb?}_&JWe0Q^ki)a?<~5i^3Ulti?TZ4--t
z5+=OMBwjjy!(gFKjAm0#*>r9b=XZ&N*%OF<?NuL@FQX3+$943R)5fe8WIoFm*Ut?*
zz5g<H`f_7!6`<>XP?PnA((fND*)z17pvukw_P`mh6&%epSPZus)^~8~27COpc8xGe
zn#!Rj61F2NFamoth+p`5vp(73Fp|Q}-&JQTNxc{D2%}2Yw@_8Aw1?iEHIki=XR1$U
zvlj+Gh=tEL7v-ekR!F=|wlD}eA&EX7rD={pgL+@9{Ty>Su274L1&VTx8!VClxb`~M
zb=G7yRwgL@5i*|6IV0R+MJ&nh;f)Gk{$is&K<)myxwU3jum&1dS;%dG7nJ*ZCCco4
zF6U3HnKC*g^pF(a`j4a;OE_y)bbBPaCaZ{j*tD@QO(7~2QKX;RT{%jFja<u++<|rz
z{iWt<JvZ9Vq^xuKK1QBO0b;qAs08N|yjm1Kk8~#6#yK5nKBiKJ4b^b0AmdbqLSf7z
zI|gQs`#sAP2_eN^QR^2Rg2-lIK}5;2ceeDevVi0Zft+?DlF?wE?^W2CYOL&uznM}U
z&cBh+k_mojW#Lakh~h;EDjgPXbyLGioIIW9!c|-y*OEn*xY@>Y+Z!(+7a9^R$(!6!
zT}NF5#2@<dOwgxbehU#6(~wpSQqoe*Bej_P$#yL~w!z>5uhO<7eGaP?19fABB$IMT
zy)vGoWJAwcgXWIMX?s{xyK~tv5caM`2!I3XLK$YZ(YWy2VAsP5$V=8KkFLCZo!|cJ
zJ#R}Dx6$Zvf}y@xSv6KvAx^i^Ofa$77go%jmAO{;8=~ERLFcp-ZP6tCEEP01{`KYe
zBJ@<~L|YGp)mnNLGM|qu@`(7^*6yo39@Rd(Vtrd#iJ1PLBCVZ11Y>9WV<{*3s)@m7
zot2D6y6P{U&to<C*icH+jLZA)JC~~9KzOEm5@)v6zrH~lcIyr;Gd&<%9hri7A^tF{
zE);nMJEu+~TT65rcXPijg4ew#m~{M<kN*a-#1Uu)C!4E5Xy&L)4&NLehwCBFJ@QYG
zHyCX8OLPD9<_C!cmq;Um%^`JypV^lud{s9T;|Snja^S8=SpHMRhMg2hgE@*gH_tnc
z4HZ1fSjY)ks`L8rM?T0j67VJU;!|KxR<bHh*i$lE5{6=t|FOXHqJ@x=3t^Ftdw*Du
zAN*l5z_Bi0`@!~<6KKX@5U;%IS`=*3CB~j@aH*dC6oSs?lP=*D<p;OC=0L?<+>7TY
z(oEfX*-c2WDQY%(Js;eB*+g`Bw_1XF<y8XFc?&96zoU?S1~Jx$!Yk~wDu<EoIqB2e
zJmQ=#d)&!{rD2Q83M6cnanWfsJg|T$xGull-BTD0ofyN8w#NO=u`aFT;W_M~u825o
z4hCUcpKvpm%LB=IKGR#71P6@3KWPquqMykNYjG%k)=6f%>NX6U$FFwK#%9neO6UfB
zw8v!mCUX01gh8!&*>~nV@{8{>n9KR=4aGl|;2A!~YAi%B{-Me%M;p1IPwUc&m*P~+
zF)bXf7I>8W*6`z0A%2H7qhnF78WsXxH|y8p8*d4lJ1+9Au0IiQCq=Dp7a`L8(n_59
zggu|Dsd@`>CUxm89KXKUu`@e5a4G@D(u9*>2xlgx*iH~iw^sAu@K6d287^4W@@Kgy
zpepwqg4%Fd-WJQx*yc+aR%4YvRum_;mfIf_LAla4yQ<c&KrlEzy_cFvdAqyiU)Q3|
zJOH{J_PgTF1MB#ZbB})YfHuW2{c|`9<)nIMt}IHoejB+qSgPL&fye2J`3hakyE>nE
zvW$BIm{lWcPtlr)>a}ck0n>Hq2ae7eCL%-yxHyZ`J-sYDngNz$frY82vX}LTX<tV_
zj_ST^nl?KrVndfXn)j!8p9lR*H<|`cpDU8zB#mt*itu5EE7pC~se~R~0~SCtWVAT2
zU_4(YHNO%c+t_QDgbcLTbgV5kkfJ)^0Xku$T{hv|Ku#v^D6q*c$S%Sde%+WYYp%l9
zrc9`7x+auE!j45Q9<hI(N}4>LBk)Dm^g>hfH(^Hc!xrLiRVh*WQvn)Me%tx>&ng%P
zK}N_ucQ_WyKbN=?x1OQ*I}vNtPF{sAs1wG-Zji|72$rh=5HUOWy&D$g#`O?tk1f(0
zreh;7oMekJDOm(jU$(uIjAW5ODSmEZGC4lhrEs4dSW{nst+5_WEvskL6R^Cqld#YN
zRbVJC;v5(H6p+0=!8zPi7p2DMr66GloXUgIItX+~sJ*FEK+TAkyKYJ1yJ|($S$2r}
z&8`dBh;5b6Tl{X$jTa~Y|Ixm??Ap(Zxru><yyAFw)2?w@10~$eNXi6XwNoQqoKjPR
zQKdF?^t;c@6$my*?!;+f>c)s-gM?lg*xQ`cu}ebRYh8<=62DOM>1)1=r^GnO7iv--
zZ8>zLusqxKE=t@A3qm-h@KoVgc)zvAV;ykD-cLSc3~YhXa_@Kht;OZOjlIzC5`9x$
zdD|9(Dq$+7rR99Im2ck;Ekfi=AsHiHFq*O?wYW?Z_0aVxG|Wy6R%I|y-wBdBlkBsq
zv(8pcQ^!`@^LsBexH9cGQ>=IIz15dTAkU+XJZM#B3rv3VPi<mTbgDK2CTe+Q#ALv9
zy#@nCCFzk#GT~}(wkbDs*djLNmMJL%AM@cEcN>OpzkN8>;e+n1WTrLKBI)FYa!s06
z9?$%5TZCCZCdYU#o%XWO&PukLbyKdK>Kk{+m?OWFL6b2$zA#!C)_vb8HjM3|0cn~y
z<rejmyk-Kla4<^<sCPp3c{tIO$2Q~>BscjUk-1^@7>|I<v^y@Gdxm)RNJbW$4{T7)
z6({K^ds@PY*pxitmzHV`q?2sy3Kqy#9F3xyo-#iW-W*sc6I){^XGaqQ8`!^;ouMV{
z-}jCT1pgp-c<6<!O-zi1?A)~&{+6+FveGfJv$8Q0uyZoeF>x@nGV0I^+u1ss*g88A
zaIpVvqDU|7XlMVw>>%!F=VJetwXhPsh>5F(k%^+X5WNz;vZH~mlf8kXiLH?by|RbB
z3H?7C^6}BjniyLc{4ZI`|D&5T0rTIP{bLG>CQf!Pjz%U<e@7AfJH3B=7zmg-nEqKS
z#zerx$oMak`7g=xFOu~y$@(vnoq&nypThhdT;9>nNXf)mi(Xztj9%Hq-I-p}#=y)(
zSm$q@qMfsWvk3vizoskyx0sLbKNj&H4F0`{ViwlUCXV!C)_+@zm>Ag^o6yUc*qS+;
z6EJdeu<-Hyd-<W5Jyr~)Ohz!{_&?2H-()?z+B$}+sfXD>{P&jRMXn}SRGY35829wN
z^r9D*FsobK?Hp;4`O>vhGj;GN6(RCfYG#gsCUa_Vc#42nX#f_&?C%NR3KcBue@DQ@
ziHM#CNcBAj;OYa7q{C<8?kELKqmI+qSF^+&hM1@hxIaenOqJ1r=hL*8<>iREXzu>G
z1k!fcb`8{#I3P%Hh?|R>n}nvN%pT~sF>sWPYWf8;0?2KNepfjWv``$xzc|B(6`*Fu
z)mTzH3KUw$YL^l>R=3hW-PiSQ2lE@u%fwq`|2%JQV^j7G{3Ma(2Mz**A74nRzg822
zxu0Vt&*p$&FqPIln*fhgjpN$nj~tq(V+gXDb-v{bV+x|^#xo$T#Sfo+=%ojfD&5y-
zH@!{vmES?&vS)S880jY2aPjeT>_UK#)EPGSG(WMia5EH8<k4{2GZL#GLH0wYSczRB
zDdEKch<#vZh64qCOHeVN+gz#N&ep|LV74f|tl*iC)+Z54ob#oAS03wv)`!Z>E^Qs-
z6Bt8{56a(UZXrozv~smVFHE3(;m(JuZ+{>DR-rpo5ieng#Sd{ZqF^47=}#hS+2zwz
zHZ<E~`6W}SwaD_x0JEcBjE_0if7`nvG9TViUz%Cs)9Swc@rYT;u19lno#dddb_%M`
zTLQFH?r#XIJFqFC8NhE0QJj0+e;CaFR-sgQvi=51X>ei1AoGGBF*n_~_8B)XR64cA
zjCJs&rHSLlA}{!|tdxi!La7TwJd0^zFIbz^N%qyLqA_A(+ki1}4AQbP3Z{rkCYD>%
zC1pH+2uwn$<D-5>E-0j1(D6;^DGoNv+V#U<Y#gV2V_hu2<#bt#kk`|AZ$N7W6(G}Y
zW*Dz+e_N3QLKBeiT&u6}MK!kT!%@QL#sA_Nlmr<jlmjVk2wdIX5rGn~bGgx<hx%Pb
zx}x|}98iwG^a04AlLiJ2i)37ct64P*fzSBMrc9gH-GJ7L&u!6(H=+Z;EaDM0#N`n+
zVvN1`kRN=}<yw@|-5Z@&nfhVB7#}$Ksl_dme}AaL_XysIJSfCyX-sc|tG&YrOGT6D
zm-i>3B}!$P^`Z^jl;fos0})OP?o-Elh~M*tvEz+p_w~IpE@x$uXNoctgif|9kGZMa
z{e1fNNzbwIwz=4YunOn`7}%!ykaZbWn1=S)aI_%yB~?J8E4;lmZ36m(w_W7$`i~$x
z<1qvO${aE78!*v(<I8-D&Ju%pX&YgBS)suj9<sn}mWn!>@RSB(Snm(}=vkXCYthT0
zcG}cO#uL7I)*Q8?h0w=wb~`5!pxW6FVP14d;?CdD1QLX@HAAdEGCXj5BP`qF&K0#e
z-#Pa#c-#kHtz}aoz4cwS;72N-1g-TH%px21X7^oFQdJ4f6VnyBOaf6<Z-Cx9w#4mR
zt%0F;N>-<w#$)#tyI3MdeF6*`AeUq}V-g*HebH3}F|>9$Aj}#0?;_Kn;myhZ6S!_+
z(LzSZZ|GmEJS$*7$lwVHW{Wot>j<7T^tL{>dBiak3UYRsKV0j2BL$`qDkid)c1z#M
z!Sct5jxuzznGb}XH$(6yh{;aBXi9m7@4R()|FGXrWoK>!yMWF-JzA``vsCIShQ{OO
z5hC*3IBliR=(d9^9*X$pt(7Vi4*0DyT&Z>DQc7saTWeZbK~vLw=}H7`#qiV$k7Z_T
zXEKlTo&J`m_@3l>@lUf@**;YO&MbST_Y+w#uI5jwEh#rFqP$0xlL!}TH~1S5J(<n^
zZoz~NJlHXu;CB9PHX@98N#uEG0stf<lRAXIY}~F0%rZ;g+CdAqgeu|8*DCuVX2@n>
zujG#<akvR2Z>FnM6%ZdwH}C9udrs=7&dQB@Jv~-;%dEXGoj^~rpL&Qe3D=V_!3GDs
zp}!Ml;zFCsEBtZEfcJVz>(%>LLtCCjN&!@}l8Rkt3;)OV$P-i0uO)KT<9Dvg#Izj0
z#>t6oAKMt^M1;GFtcruKc@p<%wOyU4Y%MSP(`9P{1j_spO71qb(4I=^Eb%?sKfG*l
z_5d~hL*RjKSx2Oi4w6bL%sf#3y4hb1p|ZfVY#CS4l`U9yFYIHOKxSxSdKg!1W|{*=
z`%=66Emn&y-xo`$T9aW*HD6Z@DJoD%1_Ns)+x(<WQWtBGgGjl3LqRMrERc<(^H7sb
z4E}>h%#KBS?CFnsE$f1`*xTBGEafbaLh=&8?`+(90S~f+3}w^!&)+B`A?&p_bh8&`
zNy#Qv*AJZZ+uUYD;VBYhOpvM0eo%5Pu)VA1_Ks|4+ykDbW2uYgEeBj+Nh{fMxGGS-
zEl+xWEo4%Lhfg1|R;`f7X#J*)QeH9D6(|NGxb6cb2ILERk!)1P`T+s<l?q!|Vr)(b
zWX(Rs>YJ1bG3bNsdk(c9F5AyJiC4r^L3B{?NbAxfNwu@l<n2Ux{D{fWd$@k6_r;&V
z6G&GZg+-t1CXpLQCG}Ou;2K1t1SLpOBkbyA=WHLRZG(=@3-X}A!y%L<!h}_t)#`WQ
zJo0|?y+e+NO>ux{7oO16kcD}FkIqueDKzKo=Cm@V4I3V%vE9~QscM*{NdtEASs80$
zWpQmHZ6^NU^z{c9?ys%Me9QrnlT`k9Sc>C6VSu2mt=(Uo#K`$C9P)nxtvLS)O#a`8
zR*Zj9*1tj2e?eI+f1%aCBoO-#l=XiDt^UF5e+#YHIsXf?N~EX`Hcch*&EmHje->Pw
z0du%2MJU-sQ-S)O%`sTSpw!0&Vo6_q*}LZx!Ez|6_f)Lr<jQ5WWK}Wwa}f_cjk~R~
zFZIQ?pop0KX?vxhBg@xEi;Dg=rILfOrSSWu652m2ST}qzz37n39Q0M~hyADgisD!V
zWz0%jsk?hx*|i@R#YsW~ocw5@2mti~eIe$gog16|qtD*=tv6ZINYAif2qv<n8YR<D
z9IkGySQIVffiUl4#C}z{VHacT>S&m)mQ0<yv0}F~SS)`%U1~XvM$3GeM(aibo{~(k
zMW|;;=796g=kLMjDClPZn*>k861VQU5#^BJq`u110Av>?1ajQ&Vq4K{N||h%$H18g
z@UL|+Lcdj3Asrv)pZLOl%!?npwW*sO0PWz&7HbKZ%n#(px4_8{o$Hkz<+6ONvAUh7
zQ%r>oM{B-{eq2TxmZ~F_09$U@n}Fi@-4*QkrLINB-5KTEIX@|?g1ILwe;VLKs8M#1
zJx@#WJOTVSoy=5JsZ@ts4k@JP>L(*1Srfl5v=!xq<8hjWk)k^a&iQ2pR1chn@(toB
zVtEw$6(&dBU4j!eunm)RD6Qg2p2_7RGa^P@-!i)KBoBhh=qguj5~i9x)hY~QJo<_(
zg$nk5@>&AbrT|`=%P^e_&e}w5$7L(ZFS6||K!RW8$DzK_x`lCw<u~m^9GRYa(64Kj
zw-ki!q-JEN;1%(;=1P{w@r5AIvp|Z`6Rig44}6P&doW9t0%366X7u7ZzoAcj4QMaS
zyF7&c4ESEU%f?}SFuQh`gxq<w{#lw3T!GA_BTs8SO-}Zl;O5dBG2BgY{)I9j9!oJn
zD^r@+HYw0{OUbQ~VwVJ4b13J*&9`1A93uo38X$s8rp6RE9#?iMks;Vz1xL3XbGi_C
zW#-fd&pwR*IszJUXpare4!sAi2oD}I#l4%EjaSU3qv@ikSA8w;y}^Sp$7-&ay8cI$
znmJGZ_l~jYcHv)svLK4p?0+l@S=$>ok=`bz%K~3R+nFILcq~SmsvfWLkyrR>q*Flt
z8=b}Z4_ohl{(p&CI665KFf#pz4a3GrFGs-iFC*xep{0_u&3~FS&MX^kn-g9Yhz2Mh
z;++b*cq)cAgiA)A_q*2BGm6Wl{hy8yhlOownjOp#52*=WD8NFtWEFL5?~li3;s~Aj
zL5)g~lbMYId#TEnv&#7u!ZevD+iRTeDY0SCGaU%;hz`9b`P0)x{<ZuUoD;j~mNO~^
zS~<C(rqs5|y>rNUXOlkHuci?OialkOtDY6+l+)qdLMJ7!0*_lMnCUzGIRBme|1b{!
zE&qS$?0;E_{|7qz-&+3v>+FA?Dg1La{^xt@-{$b&qXo|Y+&lC9!P2(^w~f_}1p3Z$
zFX=!IO3y-2Hm|?ovC`jo^E{(^y>PoNS2nqpelkBb>~f)T!riEq3tSEYr#yoyvdATz
zje=GozFP8*P&J0~#uR{|dHOD%MyS#_RicfzwDz5Rg7?;eIKz<uzn<K5k4s^-c>Gc+
z0Tw#k#Ka=r`4wlIM1D1@(i@QKwv*`Ve_m-Z&+h|a{SvgkhsG$mEsrkGSgbPe`1!Kx
zaSabNHf<3(aN(&kt<cOW4bIBSf}h`l#*h(^AP8l8^oig(JfmG8?uYb%_c$N@^p5Kn
zWQ?x__@j$HvY$naoa{lf0|t`2<iO0HsZqPSuVJ1K<ZF=e(O}b#^)64tFN;$sQ*Wp^
zev`y~b#=I^?0zMY6)@@%UsG8XmrW1gj&tOi-A!u$a{Ev+j==4uU`n_cD?;nyCL~+3
zWDl8Co>liC;$m-@a|{KLH0%lAl2J0O8%`R(^z4R?Iq?Jco@>?C7L19)*?Ya8P*7lq
zY_5G@ML&Zq2FMhJIX39+mGwQl97Fo15;#d?Eq7>s34(8<!nGfp;Ce5#`Vk$X2*RrK
zTj;(rkD+^$8|VdQvSXNC(@&@kJHcs3Vd30|o`-ds%88~~_$ziojTcWXVY@z1DN3&L
zXp1Y}hq{uCu%!`a_{J!!bP3&D$|3C%>Yj#9wyd~W>*@7HAO_8)M(omV4V{wY_bDsB
zj@QSx6>(a4oD(Z5>@+h7@LzwYtl47B3}X@*GYhE12ZYV;(pT+cnwdg$F&J2?E`R+p
z8mf9riWZ+YvCP6m;Z=(xH)hRVxOD~+`7!EpV)4a2H%io0h={imf+m}xKYBJ3M%-Yh
zh7j=*Ma2U4XW9NMr<vMh`~z6PQGKq*gTpK=Dw0fAMW(1mv@$wB^7e3usLr6+>dq$x
zNBm(>xOShIISHX4Ql68p!+&lzTF81k&(GYZx1T<JRnmgOm-Bi0Gt9s@O*V;C0-E&8
zS=a1!2<?aK)J&yXtbHmTg5INuUWzB}j5R}NU%I9Q?#U}&bA|S*YGlDR57Zi9C`<}`
zmX?i_?GRA(JY*Dsr+q|4cGeZGjds*z$&V=L&z>`Obfq(szU2$|lQ(U*Ha?0#=kVb*
zT5JhO{RbmjvK;$zlL`)y3m^sAywKpY1R!Ygb(BZ7=5syw22KT{;cTx1Jz3o<N%mb7
zbMcROkoJ62YKl59V6NV=JI`%ZpEW<L5^6M_BfFb_!|2{hXdC~;tT7%cB7xG<Dx<wz
zOUYgE`01>51kiYSCX*4oNQvoK8sOoIWNK^(b$uh3V0&Q*TvL;%3kWS%JW_Vh*v`0Z
z998iv!Q$$4Xez(c=|zC;8+$6ps=W7AbiZTBt5M15kNL?2PY5R^B3qlzNp%;SVM)nu
zY<~aEen)O1(IDlsrv{#3Y#1bOTV_HX=d-eUsV49Q&}Ad1%#LMJl;Kx2K<EL8_d@v0
zIZ&~Ywq%G|n_dBIn3vR$LF~AS*jE+*#ZK~lqKm#?yaR#~|2OWE0kPxzvTaiJ3{9Pt
z1ymV9{)CxV;rzJO7p9@=7uMD)`{q*5_9dO_Uyr6j#6rgq)B~gE+B%<b-StmrWe7$J
zu=R@DAu8IQRK0x`W>XN@1F-WPz5~Gk<hF#sIlU2{D7Te#_S5x34nK%k5ae7IUOfOn
zSXfNvX`P4OVWZ|HmD9Nb7?0dZx3<BWuBX9xzi(iD0?8)^h?3N3ESEH|*Y>6SR~AK~
zUbIZnFH9*z&>DF=YebuYJnTU9;_XP17mImnJU)&>qE-B=ni-aa=9XDI459aig3Z1i
zm%!N+u-Jq<qsXkxrtgs+14*2e;bW{RPx;BddH{Az7*_bTy+?5}coFtEn&WnY8sP1>
z@V?Z+5p0*;`J;dtNuu2`Taogj-cH-q5B-MB_Th7pL^hDLNRiO4=j8h(VXE32;9O_X
zpsc(8PVBQ8&Ofih*0RFT*?&AQF#*uW{D$5`iW^lIKj}Y2>1<>j>#8QY>8Cyjs7K3w
z`$|jrtKV>Dp4CvonbW%aO8+7epQ?7?ox(+}Yx8ny`V>*~m;Nwa23T5hFVh9kU6`RX
zI}X%qxDg^SvJ>%xpf$+a=sNLdj3l9yW5JnbQ4V=0TN${H0wR!uy-D#x^j2b~qW!hd
zUj-lBH-4(rMcfTFn=~PZ&}3=d_XW!Y`SW@Xf92F+E7D+yU>^|5(iCg_Q}5b}JM$T+
zNHPj<Y!wx68)4GYwtxW$tZe1DS?|@PDA;g=m)<e*igSoXfZVM<NiSX%eT^fQ2PB_x
z<V;-Cpsi{uX_>h_QeiHWU5)~XGHW^dKj=EAWl<DhyDr<dZQHhO+qP|6d)c;a+qP}w
zq$;Vr-26kobdT9%ektwex33YkI*^Byk-D*(gNgGg-f?xN3^fmi=3T};!~7vIKRZ{V
zxJHE-L=h>)&jtsOLKp#?uzYta`<CUJ75Jq8=_B_Ms7gU!S5Qeq)W^kAk!;2ZV_Ci}
zkJ9PaAXim)p>*~sb{mX=tx9RPE^s(Y7F99fIqCK=PPo29tp`pmvK-%Ow$^!7rH|Fv
zrUPdr`&4P#<|ko;*SpS}5~2NB2(jiVNLCPvujRDKIkU^AfGbajj6H<^kX7SGTq{va
z^y~m}=onF~5tM5NBPbIX*&hWXo!%v=VxPiw)y?sb;hx@kR&`cFHTPGbo0d*yQS+aP
z5LV)|7ZLt7<)tJwXHt-^=a>8Yg51*1@Zh!q$xW|3iYn5{Ozh%}^R^Kej2onsL&iA6
z-6x&J*E==tuh-nm<Z;838ZE|tM<Wzq68i$koxgR>alcmoyY*Y38Jt^vM5|leR*V)-
zPh4ot`hkc63Ox#9k0flRjz>{7(IOCWr3LTZ_lXVW`)$!`22&ogWC*J~h?Gu6Gou2x
z|Hw$QgiCz`;KhQfzPK(6tpH4{j;oGM2|dH3(4KcWp>O>x{k+oykEg`UrOxkG&)uIf
zI&nsbtV~nw!YEJDmsC!ByO7ESE0h;`nl)Fq6hmd&RIx^8qzz<3x>NP8X;AjGVWB!g
ztkHGYxM|_j+p%2M49_ry=}s50p&#0Ha_*jhRLs_eYx&+34baVdG4Z<Z0@^FkOr6O3
zgZrHg5}U8AP8l3xHR~F-f0XBshi6){VCx;W+r??YV>k#3`*(ubgCGoISacQ@*KD`t
z6|sx&4n6Ir-M(=Bb)Zc(I<$_S=}h15l+}?i5`!nQ%Jaz^ww<m2tQ;7aN>577jj<{~
zoZnpSq!6}cc)c{n?2~pfrTiK=HmbP+COsf)rXso*f~hV96#k|&C>Bi}%!#ENC?Tvn
zs{)JU19YibS*Iiwpi@(y8$pz!q~JSG$;ie}g<BBT2ULsE)_(znW^T>5Tfsa(_T(Qi
z7ki2i$p8kzH2;pZFLqWk6eOqf*-is5#j}e-X6}zPHTj5^k(Xj+5^a$wuc0Elv3;a0
zyW9l}!Yy$3xBxJt`LqBlf4;@I-%!~&Iq_bQIZ{c~Ls0S5MosXF5#S&nl*CrK2-nJD
zHmrVNTD!@+440{Za}Yz0{7@?mt?^<oQb2~dVQ$HM#-9~o=0NrgoF{D&UJ;wZTSx=u
zW^rGJR&YnD31fq(%Glzq&@#k?uDq%2m<?D1t^bJDn$wIvWSR-R4&-Y^eW}j24m;hX
z{egucXH(R@_qP>MY?8@9?O{aQvFfokc<YN($!mt+`50dd>A(8hp(ewX;79S>Oxn?(
z*RYxRc|=V!mOJ}x%T{TL^lz0U<g5nI8rtN1sjYJDDN-H*jgOa=6F4;D%A7n4mv@|O
zz$IJX(lv~kj7vIqGJ&A2KaMye{*vT`vtHQ_Tslsw3;2j9bU$-rg?f~u)>joBYP*$b
zhW0MDSNt}iu~A_yMLundFm>NSE2=kYkt$r2n#$Am;h$LVGVs!e4S7WI8>7sDQ(cn|
z2nL+YJ@FplYF6|Pax7cgwJ0Qf2v_!c^akt4fw;Q@w$VuDr2w`0eZvUgR035Shu50A
z+ANKt0H)`6QOK9L2nssR&knAJ5MoSuXIkGM?s)F&pWGNxhwiU3IEuGG${>q8IPn3>
zcdho6CTh*_mb${lGK?Lk#)2UKCiYpDm%&Qy1nux0f)r9mE<4&Q8b5VJmWRwZ*q8je
zI)nSm<y>EXY)6^?B^;PzZQMv}^Q?(VG8<aZnNDHY^RcU^rB|d(4^91^Q`nKb;d8Ix
zE@Ysu9k&p@Vt+MFIAcSo;|1^U?A(bhT!b$AuVFl9vqtF0hiulAem&ZQIRB^v_YfqB
zp3g0dtJ9<dd058IfRIfm#|({?u{ULUn}PE6eE<{&!w@WMg5Wo#vBFuw@U5B6Xl}8U
zd0lE5m`DZEC>=7kpumECo{nOrBV*O(ZR4+*(n6|y!p$qk+f0uL0G&9QiF>~uCD`G~
z%DEBZ$6cHvu{EVvsu<H)?-KXuixSsOsHjqBuhK_GMpc|D?Z8xt;V`YIF5a`gj-c8&
z(Zo1c3}k{>X+*<3hCX%WqX;Q!=1OY{n#_^x5Fz84Z=6TG@Km`YYK;>msAPv@k>Yyh
z(=zI6O&=(j`kuIoobO(5k|yDXeSJz+yPM}kH6Rl8&;cs}aAP>QPE_C7)1esaC$Ec;
zcgc0J3jWo%?-v0GBInfO-b~nc9{hsAZ3k01`pZ{i1owFhB{%83x5c7cJ))xojx{c@
z%QJx@#?26(j!U#+-yF`;=G(Cq>+JeiacMfp@sDr2W|g?=npL=mYw4-|hUd0wd>ze+
z0n1Rk1hTLa>BcamSm<)O4-g@@C>PCY>OnU5t9suDb+Bm1CAPn1)s#nATgP7iKV6HX
zZgEI1(7}}i6VO?$oV_k9@U*LjY*HGe%#CTpbn^U#+a6StU(4w0N9>{V-^^Mrtg;%u
zEeflqzSr_%n|j!1HCS@=M~9~y#2GFV{>kfpm$4mBWkX?^&Am#Nf5@Q-b<JXp@59Tq
zZwH3Qay_086jvAcUIu*>Iv_B=!|}0$YS5Ha-i}kRSjF&PUH?7*L`ZIAdO()5@0IB<
zMOc@JA3r5lzrLq3&g-@3C2c^}XPm97Ud@$*CE@udGGcs;G_x-6D_q=n2dls6FyOPS
z?TmAX6!j+(Ss!Ri??dd)`3=G1GaZR9ceILYp}7-$WP~Oye9s3d{8@BeH0n~oi5#Bt
zu5u7gZaZ5PMNCBd5?p9s{MGb*;$JvqEhexJF|&+@i%(3cWuKeXm5`s!_d*yG?ji5$
z!}-xMgPCo>l1l<i+75xbF)ojwuTL!fA``jt`iq=phi_TO`v`bC>_|19B;;Seg=%Yy
zd{xgv{_F-kaCBSr5AGIpC3uv7B9XxZ4=9F9Cy(Ji>oQU(qF^r*;yn!rBgu^PYc=(>
zU?y8eJ)ZP@=F&K0i9YF~3*`8nKfbDkIX@hdLNzy_qL&uVNnb(KHoQ_r?hCQ@Mk=ro
zEfRx!mN>~eha;uT<~j8lvbh&8JbOXud11*4ZR_KtRUKy0{kqeIGf8j9_NHj+|LbEv
z1r9;{CdJKawR3L2KKfnT#+elOdr9MS8RZ+09io<Gp)kXTiW5)`DZbX_xudRZ_VqQ<
zz^r78l@QhHH!!Z|(lv}&|2R4)v=wqHDb9r4G^!N&E^&eT_rYdx<S|M)d3^h(?-mS0
znZ`3`1fW}{GCtoZ+LgvEKZRRjX1|FkR{6LlXy~g-F6DP~SO@@1WpdD|j5RdJ*;C%1
zH83r%T1<Rq0H_dZw<LCtAayG~?{q2hnqzwcYQ>G9275=gf8V^ByvExLRv(_mZ;JV-
zYNppI{?=sc@}my|pqdkKW`C5lFmiqwZS1N+iXK%zs-;@S2pBpkY(_zHjs&3PUy}Ik
zcjlHWk*12PXDT@AOpBvhAZ0^@@Mh~aF<>>?sk+sGzk!^P_lC?IeqIaLlbbN8HU<zD
zi*ZPf>-Oj+|7)#`)ek}dLuaL}g<VbR<FPM_-V7XF&gy0~9?fZFxR;~5JYU8!Z2pe1
z2LyBv*(O8XK}n3V;+~G+YYMAJYdCF%ASyebcYtvr#%R>!TV13Agr_>d_WW?jA$rb=
zE@DNC(S}r(Y+vsFXmxGM`QbBJT>6#VnpZX>d;aCKT4l8LU=AX@w}gA|PQhUG{I^zj
zUmX-IQ5cY%=<=CJZkjs(EQZF`;HZG0Lzy8gvIUh)`l<LLD1&3_2J}kJ;A6^8ILVYA
zh0pK`{*{QKjyP8pQ4ksUoynB=G+e_pPBrPbu$wS-ZKIa)f^{>WU1!C0ebK|Wj8!qG
zzgAheR%}$|`PzE&*i~)S21|z#58Dl3W+pdn0w9!^WFM14#9Ao1&^FPieVU&0I~^I^
z@1ydkQI7~#Z~}cUE_l3Brr?oHQ<%J=w+mrAo`Qy*X7XHqV?MW&V}*s2VePoDSw6#m
zHA1B#wA6@e$B-axIaG{)Vz8^N{&o2KY0ZI`Af`-4)<y*8J_;IYzAoAh>J<-WOqGMf
zS&XKZgYS6PU4a`OD@M-{wwRO@Ti6|hqW3#gn!T>E8UX4a{)kBLV0oJ7@_8G$fp$qg
zzk9&1#6qXGGOP5M%!n;Wmc`xidz4=5GPso1%6X7o24SOi9G*OXUWz1G4VVYNc_tap
z^AAd@bBp=rsNS~hN1(wR;@E&=b+pl@zWDKVsYKW{yfzXjGqh2abKk5I6G9FPol)}p
zFi%Y3CWnjAoOK>GkxsVU-n9xa6$0TNV2a8Jdne!+!il%BQao+7u=h;79s&yw1SnDR
zN;seh?J-u^xT3dX^;!yysd8dn%AmNKw(Nu$Zf<}<%AfxilJn6uke*W$G5NMwQBXcQ
zV#M{(R@^wg0tT5vdYHW4elldfVn=opZV|Q%soZSMvL-_>9X1(xc}$2P1L+s?Ya1<3
zvzZFqm8?h73yj1wQa@K|y=5nrQE?rg>wAp_5H?FpWK+R8NvM4r53HOcv@*3!+s6@B
z4qTOSfu9p8&eW@xqfHhs^I}s+t6)ZND4oGdhO*N`;`DMVHP_q6>jXa%z$mL(NI@TA
zVeg;#Q-VzaLt8TthZcsy_3fjdIk0v0C$Gx>id|EJ$IV=BN27HQ7@qh&F&I9~0-aEx
z<c?9W9ZQ3A=C~M;a^ptc>vuJ2Gn8w)BQfF7wbiZ&Z8BrJua<<S#rgcx<iuoCWA4<T
zK9oUm=S3mh#V-qN7qhD+u-&7tT~nR5R^m783fIai5y_QW0Z%xl!2ZVkdez0hGuHw~
zEH7XEv2mjc@7=x(Im#jI>8|Y%9F_YdpmiUQaZR#N5JYWXFoLDaCy~Xs=MtnJt5EJ}
zpbZ&+M1J)HnIOf$!%=LRNPN|HhWd9j)cux*luO_?o5>ZEz#RJi{*lEF8Jh+AYd!jZ
zyJM0*VW$ZJQzB6YcXQpRb<^)SyOrDnEAT1;YHX@Brw`S608A?WD#eE`grohg#P+@%
zKk?-D1`7_%I2}Mzlg4yhm|dO_5-jFg#<uXgMgbo$phymRtNF{>kp>Y>774~*cbkzw
zU_$@Xh5mo%y#D{!<o`n`SXllqqF`lX`wvktvj5MF0(a9F$t)Rsim>;n(Ms*P*^jQK
zYI^%Tek!}RcQ*6X9wJw+$)q-)Ld!GuasM>1D&5X5Vw=5#_;l{sg(eukWkIqsrX~)a
zH$RERR8e#B7FDZu-~FoG4EuNAlgdWyjuj?SNR~sndPk)e+^17kkU}y-ndzk$6$`+O
zX&b~-As=)g`R7cy^RdCM(xRlZiBUMcsyNA7I6w&Eq^AZWG0DVE=PsO5RGYf)8%h3|
zMX@Z~pKN^FqLl1Mmuf#M=`2;VvC7Eh`g)Q3Gp<odWD7(d9icdoXA>N0*`$2eVuRcG
zC?e<Pr|jUrpYdFh^Xti?*p|k~2_I1H(}gIup|bmfulYG4GWN=2@}wjMR+EHlDPX)x
z(l)|9$oirP=j)*U$$~iMb`a{%NVRv4b0`OVAqawm?i_T<Ysrm7;YkWv>3&a{SbHSe
z?9zIbp_md~$Lgh${axHXiDDSS8Otr@WMrG|X7TjSt!Lj{&xWg%KCp2ABRcKK)6o!0
zt5N3RAe_i1S#!al@FEq{fK6gmw^j`zObYJwpC(;(WjS<!fU*3ld&kaVEm>fEf?xok
zq1b?Y>Kiu}7pm_cVYnW^L~T&?^4%npWzsB@n^Taf1r=dn2KXvU1vMj}+o!Bm+XNg*
z$&P8w9;EV72*yop(mr+FYNLK~XY@m4QzSuW#<jrZ8I_y5j?{vKGMBnoA=WP=SAiZm
z*R-)M+Shsbq<KZ5$IprieuY+*FTL?vHvO9aX)OOYB>Ml4<^P2o?40b(|7S882^blf
znOT_rAM_}eHi=p!Le9Vlv`Quap}&82w0qAnSKGk5SKeNz(-M#zN-kA0*vV-irV~Lw
z=BM<eC-XHNCXdbNIzhEO5L_)B<1rZ5=OlQ)lyaEF^@gIXGVk?IJ<oORWex;fNwp%a
zH&+%X@mBNLSK4*tj$TCp(c~u@EiR$f4`sVv`t9i)G~C)T5FI-n)0}lMuY8SLIMUp5
z=nA}EyjCr_oe^UGFQLfw1cjK;tID9MAb$xDDM26cdCsP{8}tUUM-P99Dk{uRlC4w>
zJ@Jc*5rog;PMbCO8sV&KA`2?6r3Q>LI_NpC`g@4Lua@fzRNakX8RLg_@GfDilQ-P@
zwf+UjXSz=!#C1&RP$^^YW~C~iWu{F{;31vbfX~h`{vYVh_RJ>=57_)-^$}K0=L2}P
z^$Y1-riSSj+zZh_!sSKHtPuy-Ll;lIeyt(lp4s^sKl-x+RovFO-#9{}nXFw6;6@{v
zXjqL-E3^s!S3XD&WJzt{#7@X9wOVv*r(BEjpI9~Q68(7S$E5*+5zD`#W8lfn_j?@$
zCAo;IA(8}s`y4n9^YHpY)(?qlF>7U(_U5jdXr|24+z2CpxH8FdhnpQ^pv%_ZuUS8o
zt2Ju!s^ePPC1Q30f~`Ms;=X1!t0+VVh84XSoito+XvX~N+`;4PzbLujL;85E8JBVf
z!Is=30o#;~rHf`E9t&&s1v>=$LSR6<7s5K1<=ttzaA-?a>^N_M8^I3<#lx@_zz6V9
z0PczyxJ$AgqWJQZ<4W8zNLD%+(f8-FTH5L5=!md#6vXn#wd6_n!ra#*yMB#yBjW)^
zdYRxN(hkr5p11!W5!7QdG&3VEr+$`#J>yU`7RF;mM>A&j8gmSDbz?wd21PdzCl`aj
zf6{()O?YopPaGgWtb&%5GpO2g`@<!hr<+*>gus8nV<$#Jg$`{Y5W~M#H4zzVUkUn%
zag6_I^W~~UMp!?Per~g-bPYB}Wd;CttR7e5>8dJ<k!a<7%Rh$@zUKw96oJ7bZ#{Qc
z`Ud81aGxiTV3~Uj!mhS+)^ms5got&RXJOW(#S=oOnKFI+Zksx{FNG9dhxUr*6(;r-
z*2iUx4kEuZnoddu#EcLVIJm>abw`{aYjt{_fX7+g=`@1{;uf(-?ODo6i%=z%+<J@i
znf737!NJ<h2nN8HzBR*l+P950BO{D%g7xiL+?fT<elNd7Js;QwN^x#s1%MJ<a|^>v
z+qB8CpSuNt3rH1|qw%GrOJ9uRRS!gi_PY3drK7ihbix@@|Mih`Af?yoD?~yY_8Hf<
zWMBWt-BlJ6r-!q^y$GOpWU}O6beC{H6@fv(q^evN0LL0X4ka)=N>smy4|n$XCf?nO
zah05E6&AF6V(;3pmom)fV<0j#yzSCC3XsB9D@P-l+M1REtY{h8Y9WRfX-*>Kmr#z<
z^b}A8_LBa+Y73R6&!idsqh!N0G{mwqNbby)(adx#;j7>h%*`wGGmZsR;@WA|uvk}N
z-3OHB)nBcbttxkmQbEY*FJX16yW<R!7zQwHlF4}5)~k-k??gyhg*8;4+q+3tMpR8H
zdta>$AG|j~A?*eSYm6H|t7w3Nh4ip;NU__PZHpb5NdK?_K++Q?Bz9F>*cT_AdFY~`
zLc#`0-0M`?=3c_u((7<}lnTRil&y=21@9bGfP0rubCoKF5@Uy`?X4DWj}+*|z(k9K
z*b`x7vfVgrPwS@NfCrhMDQIAqK-4LOlN<~Cv@Ghip}yM|{3!Og<S;5ZI2qiuHBgeb
zKV`@J)o#7^j3e9yjV9bMwv~#&kaawcbY|NA{nNR5r+)SHA4x8R?Uf6KK49w_eltGq
zgKhYDG&#jjl-mXXd<|<__(uQnQ~`Y>x;i`92CJo2)<46jaH#JmpKx^Y-YHlWpNwYb
zlnUo{E=tB)L9b9&WVpwcII<)d&79FnKOL!Rxyfve?Alc0QGu}P%uRe=RK?xRPRvR7
z(j%nHr@A=W`pUyn;u_Bc7W}fiEYuluM!iT>e28kP?|BH(yz;JT#GxhIn!PP;fGuV1
z#Ui`mh&=MBb!w}LaqS<ly$OPflk;{!XuGF0lX3c7R&FU$p|=_~e#B{P^%2;sK`gD6
zW1^Kwv)eoE>UXF6Thz;T`9QF=C21>yYm2Nbhnyo>Fc{{%uMvRPf!;xB7G?fg0?O+h
z&c2Vy=~iXh$nZXCn6Q(B@kM9(f!85^wA67s1D2taV%-F#8{X>^(@6k?7`_z7e-Vgy
z&Z4e7pmXTXaW|k7l9C*N>Uv&js?V@z)xbs02vp2&$Nk!p5Yk?XhZmd8J}YSaT2@Qe
z5;#B(CE}g!e@%zO&xxIhU&7uHd}}KN)ho*AE6Ue}vOH9bS(XpXyoHV9Y@9D5Cb^cz
zyhIeM>>s(VbGohf1)#~lhqDVJA-WNITeTI4tx#L&N$LG-{MZhFOXSP|e0rFX{`OU$
z-}&Go@D)&gWTFkouj+*a<(K$!u|s9(5k5Hyz7_aq$1H`dGg#(c;4mDHW3np4GNBz5
zua#OwMfQn<8z813)u1FUa|q*m$5>Gy^7@~FFA_6ccc&3+O9Nk={rs}`deZHCid%o1
z;Of&0v@;!WWXAD^m5BHr03HPqmIGbnBB2kA(d<HWMOZpu>Ye82PMOaqwd+~>1)PtF
zA-_O8ij-_`+O?-REo-RA+c$xa<{DJbDI!lcxS<?GAPk9)%42DMHYCi#B6$ttg%zg;
z0QO*au*xe1=Yms{Kiyj<#y?bDdXCeYGHH4@z#RCp1yE9sEaI*LzyT!M;{X=2ty|nx
zduSZ#+9JMq4tT`cR5<e`TPunIi56i_4tkbYHr^1JTUY>Xvhk)XIPFe{u0Qi7<hIxk
zx=GOw&BCo`Rg>xWP=~WYhFf%rL#lX`^#|5vHN>B+wyrny+VM^*FJU(EA113dw5cE!
zlr^uZ-goT7eJ&AFGD4soHXDW&Di@=?uaprO^hov$aAOCR$7s@8v4P!fn~N-=2lg6^
zbTuRDKM8H4mmo})Fn-$%5#4CO`zjbu1yU%DTBeJpHu86OW(|p$q?iU5gR7=2Ud1h5
zP0SQ>oXSD4c4n*o^p4n_BnVFo`l=#<b+#r>IeD;u(I$!<a5|fiT1ne3It%WI;s*Ft
zf)oP~zdjLUeDI9czoIe5_cnu4qO}nER1Fg8a>CnjO4qWMs&*NKc6R?gWbyxOAtrB;
zRZn?a48qb>=z+m>sbyR$m01m8pqbm;@lnPlcqHQ2)*ci(O_Ry~*cfPfgA|^?;irf#
z_?A0}%;ubauhgr%N!KM@(ZfI)PD?F{=8SW8qapSu2V!V^yibecGuL&|#9AB~WiOFh
zIo1dOI85L?|6ErKAb&P3D;28xpdKQ1=&oMI`tP_)L6}<x$NdDc0@vkO#UPG(fLheQ
zyf_?JsjamHLqevH`>|{~^kfTI{M}h9gIb{zx(~z3zpnq4wvB1E=WGpJ;H5X*V`V_m
z2!A@YA&&NR5lEAQKVVykdL&UT_0rZy$U`UZ&7owobFqrrl=}6j)w=S@1$9t-d`RNw
z?bJ)CN&929WPt_E8PkX04vZN|?Uas4gcG9&bQ|qv^x9|lAnP=A(yrD0`Q!!$tNn9v
z0;Z`oE4Rx|=><W%FXU0s_M=slqvdv1>=e$ki)q_P9LR&q6YgLw-)*Q&7^fF25?SVe
zv<5XUE1;$c+N#lsM@2@!nyMEyH}mF5=E-clcat3L+gPG*CFB~PWmcvk_9Q$0E<7<X
zX9Ur*{UBy4|H<Sou&k8Wde%SFNJ>xYAQu8{9hggxv|6MCTYgQ3^SwIFfFe7oh%d7_
z4~38zk7~#0iZM5PWZo0xU+@OP-tddCO&w{nlM2Zy+V)HXL};rtoTY09it?Q`l_%fk
zX3fg2qGS$z1jWJ1=2iW<H|{gM(|eSCgY9=FQdY)RdwH}a@jz4gjpC-R=m2R4|E6er
zMtTjIvhb}tlW|DlCPmqRR_ZH>MKrC6*%RgIRVNd5jN+uBic^P-1Rjw(OR4cWT(PF$
zKj!ANx}Ox=%N|rfwUVg!um`oZmSjXM+gjL*LWkHU?!AK%Epjyu!-#aD^gXTkNx>NO
zJi+h5yOE|v2^(_GRCsg3Bc}MKrA=fhO3&pTY4gmWw^>+cL!tf<0_2Tz7m(j{fX`Mw
zldPoHzGq7{204AoyJPlL<F?65jjl4{H&;|nHK-@927Oax%v?Ge!+tsP7@^6MtwK4y
z$<F)uPesVFyA`b$hzXSJl1P0zNMO^BjDf9>6;HeB_udHBQ+h$`5V{&BHPuQK5j(;G
zAE7t%2UfLd&iFXxLXxe9-{vFabv$I5gn;8p>&Fr=y@}o1;rmnEt5%>5vT(=|2t}w;
zh?nKC(fRqBG%T_zN=g%}I(#MvNo=zen+%|oC7>4M3Z%4k!c}~4`EHHZ691pcFbo13
zTca8<qm(X>JI)I~wURAq%b=>D6R@=t@DQO@J=Um$5x4y??4wSZCUypvCGGc+Gb^o3
zExfBBPpWX-A&`oCQpXmNNdVVDGg-IPC^7i0guG@bLlnQ<psoPN=PkiXllf8HK%-j9
zLNeJ0S16c;&Vwr^q07Xo_o_j5JU)Z(k*I))O(qAHoG95S)r=xdD%PE~;Vx0<y>`CN
zA2r>OGvN@E8{+Pg2)}U~z%US=6ad;XZP3Gfh~ehO3p&4E`ZN;3R#lfurZ3}FJ=G~t
zHJ9nA;P_7e_Pv#F%*X)7Drs?R8|Kd&Wbiz~&0_C7bOo366!!>{rcnx1<4)mTk47xN
zvlep|!W-M;En`TXJTG)zS@)sM2HO|Og8`b&Fx&M4sE0I`TJmt~TTMZ3uh=dH9P}~i
zc>}oYGX2fqWmgs0SvSHV+M`4CP<zCJwI2_RL=7V8s6SB);sFJb%0qfqbkKbZMQioH
zYeF;%Q&K(0fp|sJ0E0%|H~TubrA#~>44NE^tidt-9{oyakZJ?opYo;4L}L_EQ3Rvq
zLXMyDA6q^Te#JHs9-q<sH)@p3i$UnWw!a#fM@ORw=Al$t$zCYNmVb;K@3@V<p2(hq
z0bf@^WsjP9rQb9)!J=B%Z9;}IXC;&(zXvc+R<(!#Ex6^Gi2Zn=oCg9I4Q18iN1;?6
zHkEKk^NJw*`50_SQMgE1^Gg{4;INQQ;4XQ(5<FrBWWgQj<B%$Y^rawQ?*SFQEUEdq
zFD1}hjz)Ov-@QJcgY2rW<@a?w1qq7uZ{}vj3Y6D92rpHM5HCMQJb$0C*$0Lj3_FQ4
zG5;X#ej24k_tQCI_38U_))Z>}#{C@t7pQ{xqsfBX5+<MI3x_c@Jt)!fbyXPB4+&LM
zu}QUIRSr2q9IFX|LJqs6T=i2V+4S5D%fd{7a-56qpuunZxYjqgt+^`{VlwpzY7@{*
zXWYlYyV3bJ+|cA<OU=aFUX-EOHCoeK5312uoG92NOfb*Fbca>-s*y5d`jauJrEE8{
z)%P7z$L?8c)(iN1?<a&XyOX&VD@wH0@fc&EnEyP?WL?X=lux9EYyK<vnIbO9zu8U@
ziy%*|m3y|*tIa*N?{u%Pxc~z!k%!;$lwj8cd)}?<YTx<6aSd^0xYM?Yp?TWaT@D)j
z<xIFyC8zF(wX+bcoc6lWc+t_mWxzlajMJ3W*b&OrntR_QcIBv$)p(~mIKRa(pMu7H
zl_*_xDnu}q$z->YV-q5gw$It7J4L8iPQ@t}&5G^vq(VN%8G#T>TT$_vuAWbU5O}7T
z7BJA}eLFXRI<3omFwS7oz5Lp<{HGgi0%(zD01Rn=C^x!M!vM5l<&&od9u0eWZ~ISG
zzL7($Uznrf!#go~ZXzOI)}&Nrn(XL+K|L~G`BnaP(ES!e@!gD6oJ~1tL$oI(yi&ki
zZl9YxUN$iRU59=0B9H!Vx^&4yIxKtCfLoGT0!L1hw<|lj;`ZfEI2vxO!5K>07C$F~
z0#{)UHbIWFjyqz)K*>fI@`OI``6ig~-RsXoQ1>4JAQ{&kSO<z{sk~oJ<9pPV&9+8-
z*&b*+<C|t`?qxOFhnXR|>BPt1l2v<9;yTobt#V*+&D-A`S#HDc3twjhin9r$T%+VE
zalJwwPq+>(o%i~C)3-ZnKf06!$O$?e0=<3Gyd}jEkts6@F#?-mdAD3R@oX}8)d^wX
zYVLIh(%SwcMLIGGe?D5)va@RTJtOv92^5(;7raDFgJ!~4k04juOl@-et9{(19ZRz(
zDk-qyj!vXIC~mEMhe{o_>!vXMeHv8>=+L_B)qr&~j>)73NS{%!H<<@or81_!lU`LJ
zF)a}KzLA$Z#ARu{scHzty*@_6``{}gb@R(%5?(!>*GFncj(-R+1H!FD&_qYX`7?y=
z2Qnw5_IU)?ntMRMtkO|70BjVKr6ROQQ`u<$YO39{@{?i10Q#!-UXXxiO~PP{omxru
zv-WkD9WVsV(E6HOVOYb%K<C!orYTixV`#OqKDTKnXQ8b7RN7yft(qEtV5&GY8UI^>
z7xAH(UNo=x5WpO_A02i<ai~sL^qlCJ{OL$w`L!55G2XS)^Q*<y<Zz(TbiPsrqJ$-P
zu*<eSk7H;Qjlywpp414J_$5fhTAFC~61_P&!P(D$@WV0fG2*F*P8RJLMjF))01;e9
z2$WJ>3X2uM6bTw}0wrX!1!oE>Q7#@Z`jk@AYM2;@Il<wGB-0=RU6SL+6YMt7%Vx}=
zSP|$Dy&}2qN0(bu(3&=PL!nX?S$`$K5I|&^--LniKyp(2Z$*qN>_w(=si1#fNc1**
z&j8T;;DC!*Wgz%%p*i0wV-JE`6MO|Nv)RSLFnUU_&nf*dWXRovR)GHZCT!1cJte4y
zb&c0`IWrUi_9%yA<PQY)dU84Ke9Pc-cT9852Qu9(z*b{W*m+vSDJdVQ2|V!o=p~0y
z^h`!SpWW_a3>h*cQ;61DZtOJAb3(WfHjZvU$<#6S41aKZ2^kNagKX%?K?R;rhXb^%
zQIJ$kpi3phZE2RVosecU=P!)QjUc?OE4(1*rKUHTnxnNGUn!noC_8+wIorqCGf)&I
zKZdBsP0Gogp1YJKvUD2>S$he(e@88c=W}$4n!b6ZvO|l&7IqZ6&%1C$&u)t!YgYU*
zessMElz`@$$*QQV*3l)QGj*C(#>3SZaz1hFDqM>BoB7)&2h*amP_`M|TE2i7eU_`^
z1D3r@`wpR!+oejVg868}_nSWXbs16L+JviCqF3?NASs~X61OJmL=_#n+`Hx7L67&P
z4*|I72U+K&2$VlPk#O|a!*Nye2vfWw=*9=ZLT1)WhgTxCW7`MW-+8HcPO{F@XIi|g
zqwHDGWMqXcB@h`hOB6z}hS<8=+g*}L)754<53w!CJyWUixrJIarwtn0fzFzAugiQ+
z<MFRs{Hk>Mx2$e!(V27d*)8TC``qrWl*U%lP^wR-i&PS^xZF>Cg50jU*u2yG?2`Og
zSwcj1iKV>6-x0sdf>QfqKAOiC9)(v$?5-uR$>j*7ad|EfM6y)sseP#;!i9<fWL_R)
zu@#^k7-s?JcE_$oZkSNr1QORapF5)rR=N6hrSkXOZm72M(64$Ct&KoxsDv*Ijl$@U
zvaF-!1oP|gJBMeU<eRSmu|n-gI!fMdZ6a>V|G$?DQ9SwrGMf2oAojW$9AxsNN7`wH
zREHW?t?wiGWI{|#^LZ8-cQu=|zL&@Ip&8DyF#5Tl*z5yc!KqtQnn4Da(p*NLRBuWg
zpxsATzR7i^4SA3Y^C1i3<_^qZG?##}XyhMYye?sE5U)kxqw(zCJABbSi0yFFYQ}rB
zA`IvDDHem#+zTKrG`^`JmRseFabBv$#6QLYYFGx$h;={{1IAo7YbN>GIx>jzs4lG@
zZdygk#QyXUiy^6W95&Hz;lAXe?VZ))Y8$qw*3v)gD{y;=15s&sjAP5fl*^UR<?7)4
zk(Ustc02cVdb!>hl8M>!wZCi(ZElD@rwS8vS`;4DgqOo~yL;x!Y42pfkdlRd2sHe2
zV?939TO*h@V(|Us;3dyAaKRHaYa258rmL{n%h3I_Y_!y_tz6&<wEos)<gN-gl;gjH
z16x4n&7b5kO#o|cu96!aZKoqh;VPv7?iq14yx`C*Gk`>0kK?b5uFu(~XXOO7<2zp-
zW^;J+j`5IKvtSf2#}E_K#3-4-{Awae^)PvWn|6n!@~Pup0{ZWPunYFhMe0AOTM+Sn
z3m0v&N#o}TRG1^If$k<{Pjw9WglK~nfdN|v&z(k<3bD|=j(0p}{41O|zj6YtXQ_!(
zFr3z>W*f9b@GuQV@WXLH1<2T+wdjmxIEPYtYl?NmymV-L<_L)fR7-S#AVu`0l$f*r
z#7tzf{+uQjC|3dNxAO5d))^)`P*+TVz?(zVn<P47z4Qeu>DS{6qLFw6j0e6>h=Mhv
zR6?Dljy}HBujV0XW}&_(Lxe+a)jvialCCBi_8nuQ_vo>nGWyg*Lk?skfgI1?s?$dV
z{?b{SH_Y(M-E${-g^!8_Snxq-in=Wo+k9^>8WCJlRG1Xf^sJQ#w2Su3cPrD6+<lf^
z1x<o9+c?F;X^sE7K%tSWab4f<5(9m(CEBIvme!tow+O#AX!*mq0*44(eP*qtUv>>#
zME(Ek=H6gQ=*b^r5>CE5g0m40LN5D~%U7roUWsIoPlq&FQa#_6QQjU&fNTD>?ah2U
zcC+%rrNzss#qcFp0zX~0-uY4TJPA>g;g%F={ph^N^sqUs<Faa9NIQh9TK0#Wk<2e2
z0)~ZUt^cCh07R<73phkMW;*5TH7jWSW~Fv^1Q*lh33XB=6D1o~dze9lBcmFp?Vo^U
z5|dQ(2gr0^7ViAHJR<pUSS3y(g#pcvf02auKxE($sd^d@6JerC+3J1-Mt&35m`L=?
zWNC87{=L2h{zPP8wU%AQk&|t_^J!`@7moWX6GRv3U``a`Kq^m^IKM3o)Y?#UR7~N{
zYdA_ks#QgSOL)+HM!uJVJtyY~Id9ASG^%)>nb=hh1Q8=R&w$~9Zd8dV-v<5%_Vf0h
zMk0)jSbFjI=<w(Yc6HZ1*cvcNYdS{%ySBRjplHD)8=={<N&iv?8)CA#lr!m7p>Mj2
zzmE{dVMu<DWwoKAOL*h(pUqzrg<42EhT^`w|9B9g5w)T(wI1o3!)|7|O!>$>WMWUJ
zWxb=n`!Ef!Tsau08gY(JvtJ#cZL)NvdN;D=eb9ME9Q_%Qq1JB$E()Kd;SLUMJ=>*j
z7j8?ayk_^lDIxi{LYG5|Sy~CJj@<VBImBO4FZoZmtQ|XOujZ|0+iCy(KkO&N@t>x%
z&g)|K)RQ2JeC<5<C|J~!z|Wq^<Pt2(E$FIn!Vliei0Tt93^o||Sk!`oxG~d;xzB%)
z&5hbhk{KY;lc?$h2`OC%`Vrq|Vrm+MDSFG639mG*F|CN&FTB<ytPH<HzyqQaG@onp
z`LidCyWzw(WHI~+06eLRfCaNSQ9qjmHJx859N&PnYl#1qXXG@~Xpje}AQ}T#*;Znd
zN0dM~F5a0k5n&@xkWov(@f5kA3ZCn*{L}yT)cXsow=1G@!+5;%RkF;ZKYTu58i)})
zS6d07ny+dsxP(3~nrf{m-Wfq2ma4*y8KO>63~H<e&VRo7wGDtS;#k?`U)+dd*gb~L
z&7*Ccrcp(<#q=jP6E(VAhU{cuLG2~s^}~wTP**M7J)hLLAHZC<^oa*IaZ(w1)vo@v
z4%>b!fiCqICZDM7jNwaf0Glm#tk8G?kjF)gDbCIr3~v74Cuvx{V7Af9D6sM&oirxk
z9?zd)bn4ZBY1h5emyFpd5ZzKzXvKjDbqZDw2So}beyx2J@or4C^oS6P19Kd_JVJ#{
zGip_Fiwh*QibCZYCw4Ecf~FUzNFUK66_SYo4z38CZA&G*SIGl-4;6Q@MH1huLim;u
zvrFdgaPc**MB(Y3nh)!0yXC151@fJTLk$B2dxQ%1aq`7|o_o>*T=7xVrMC%fv=Oos
z!Q6}*w1(mjd&L^lIFFvR*5Th+zRkh+sevdtK(GnD&rSyZNQg(TOwz9|7`9R|o2wO(
zIp0o|v?X;YN~!wb7*1{_mLd#<5dB3Jg$U0rT<dj*ripX*Ks3HKSaQG?e_>~qdEfnn
zr1tZ?ibbE?fTb@RRu7Hx6X8$4geZ~l6mEl|dqJ~0vQ?4q{2GOBfz2e=o-gtm)YL*S
zwE5N#R{)FUxl<4W#gv}^J3~^Bm=R+PqfXV>SY!$pUz=mSxO4{+xJzmD0g=y-x*cMi
z;8dy$*?UNyUO5!pth4i9-OJBEb*(8+fRkI4I4AO?Cmom|O@a>rB%`lXqJ=mA+}jSc
zcEzB4Ji#+vXy!;EA<r;zoG?(H+q)-HqDE6>WEv&N;dBZMtw;%)rPAt4QxYo;?~g`0
zE2}Q0#h*tK^8K^%-YvbSg9yK!pazDzWa`?wvP<nVPReuLa^~@si2>a<#rRYv;P7mY
zzqTBT`P}##`O-)0D9EA0xJeY?8eEfF!+Co_^6R4ugde?x6nylxqcMKAO(V`XMKE11
z04yc@y(W@a%Q&K&76Rkx1W`~s320k|Bj}aQ?jZ>GUqUF(EGIm*SJ%gQe9G{HIbL}Q
zWBbe5^oQB0@C(dAFY{&iZ)L;x><E_ALI?j2L^Fzv5A~JY>TJG|5(=U%VPFH2P97s@
zDuYy~2}DaVLvmzU`N2zaf(hpZtlBI2yNV{YpY<hre|{SXx3a1r24?(F8RhIjgYsC<
z#r(>22({nEfbBh9PJjkz;LGv99WK*TkRcYrKgxj-#4RHI*qXI**2zYJv<KN<WKHWN
zR60fi9bLZwD#g6pjRVzSZxV-QkS8Ag{G)vpm%N(Ttj}Y%xZdC^*mZM$@gM&tRrE*W
z+C!EN5?EnNaBMlyB6=q|==9rJ=M!*Km)=Q|iy9=}SN>rUtpq6n`U38H12jVlI*@mR
zY9Y?Q0N|+%f5@qYDoW5W(?RD1sSy8vrbtqg8T(zYf&tMd)^c=72O*V7qQu-rkfqg@
zC>=+^JG4h1tRtN7Ynnat`D64N#*)3j+Ka7TXDLyuK1^GcOz6CnJJZz{5;qo>808*R
z;R8qkvw!+`LTe}^tYxXf>XO6H3{qnSg6)DAC}aW`DbH${1Y1~UvvuyQkrXxEfR~$+
zUPth#p?)7mj<_EEk$A12(bWc^y2Gzr@)0MLRsN)ePsZb2E=eUr#p1r!6bx#tuxOF<
zRSi4CNsTi|p#&MdS-7J*_LQtw4IS1?5>DG!wCVHCq(q5z|4GL)c^%DiTK+&+F^;nH
z9bg+kM)jnp-iS((fDfd#O`t%q_|f}T2K?l{1eJc4+fCx92fk%@TRtt?o*G(iAV`ec
zclOLnb+ycMw?f3US?NovRiVpw^T-Wv6PJ#NKK1lE9?42x3bsJDiMdW}h@)?3AbqA=
zXAXmdp8>9>P7z<N-aLa*Z76alwV=r*i0yl|XM$+oe;aU;Tv`qKS`a~tb-cVxuRxY>
z^I9q&#UT{97W<SPZ(F5;m8Cch*y-yGrnI*)GnEe?<V{1)q_GqyrmYixsL!fesAzbi
zdx8!9ej;A^xNFud%OqV1NSZR{j9+v<C7qur+`qWe+SyM`i}aO_0V4`bjb4Vb&1bXl
zBPMc@gnOdJ!vdV+hU&2oTibHIOw#JC3BCYw;B0~DIeh68@9$b{O6uyn^~Ai3U)B1s
zb4Do^*`KEV+d=}rtY8Q03GNj&#Up;J%N5c`1f>aAH{->(`vy66Jl5W~OugjKuxIpE
zw49WU5<fK)(}fnpXuy%B4peJ3L9Cdtp{75?TMuz0MlsnrEfpUkxXEQ4lg=g@UH>^#
zWE6@WlbL8N`31Oftj+-NP0+CXn}x~dR8Gd2KjasR{V(UOITFiZD|0lZsFa?Zj~!me
z?Li2s)w#rPk!Sl)si2{C!$yS$B*n|uA1Dx-*urNDzrr*fEvEFgeWx&F<gYaR&Wq!*
zN?_YXk}EQd4u66LQ$T1PFw5a5UdWaZ6Xo&k_cG;}U~W&)b@^(d#a^CYGbd9-A6AAB
z$7{JDB?M?aGe|qXOc%;<`Mq;lAGEPQplJ8r#goS3tly-%*Zy7r{dJ75QN{z`-48KK
z-I~UA1Fn@6Lq=8K-@(Q(pdRs~+f2;DNh$$*dul_YW{J;st6s_7;kIJI&al{X|6V?e
zIf47?qCQ&5qKtrjwn8XOu|NT?=U4%Yg+|ZYq0VAxqN@?-&)5k%sl)&e?=Eaw^-iTf
zLjxat_N<bfV_Qz($qE5Y={UsOQzFnsemlk9>OXQ%#QS$(p(b$kSvog<vOU9fl)2*b
zU4h5)O^Bx>L?*}*lweK08uzaQ?`3@yOr=!;NSve44~>R|cB)bK4em9|-MAUF8oq4m
zH7WtUJLPL<WfiWIx_*@!%CE-$xd;!wuD_h#W%vdSbk=C1ivqvkfMjQ$!PuWpbV-+Y
ziR&Ks<<0jaD&VUe4%5Dgjdr2)v4t1vvu)D>_&jA%(fFgv!AtSvfl~_mi~zAyg(_%k
z>4zZ`UxkVkkd%^W!L}aURgz}jb@i{UUyb5M8+Isxin+{Wmq!43Xx<kApoq3z=9-~1
z<wd^1_sC=MIg_0t#;+iy5+d=b?g!JRIPo=3jnl6~USp^x)nGd~`Qrz&J6p!AUx7lH
zt$-mz#*fRAqqUv)Se>Q5r>!SOh@A?Y$gGGGZ&MSTLnj_0ku2X3o=aAW@F+sS{sViZ
z(1#GOUHSBQC(mBI0(6fG{78qya1{D`eN1N-O0G&C1pvjEi8-2|%d3`APOTF+`qvAa
z51X<?$ImfW`ohn<3!-~GjdQIXny+x3A4TKuaCT9J5J#)cop-S^N7{^~w5VFzDafEL
zi=VzenkkhyGZtpV4}TeuDqGrjXN4jsBGB{{o@TU%#QFHNb?f)MKoQo&+@cAq;ua4K
zMEX4iu=>>kWN*Gw;l74}?o=Dup;{Xc>dx3mt*VM0l9Y^q?2jv$R<Q+guRUVDGv@8S
zR-+rT@u`Zk!VnX!8<i!i@q_uP(1<tbx{8^HnM|#J74!`VWI-a$nw7ZPL~cPL)u%p5
z7z%w_&0AN({2|DIz#F@b93)9#Ou#FKOwRmJUTVgG3W|M^Jq$ozTt`W<L5Pwwq(5kk
z&K&-8vpa{_%YPqhMfWcWq^{%-N^f7T?&3J^&GED`-)Pvs;rB#gJFIF3pBdLFm$LQ5
z)vHO!&!rgL4R=S$bC*|CW2n|J9YVZ^1$C}0en_xlBeV9pKnuF65pbeZf5QI>Aw{kJ
z8ADXg{$cI8)Oua!GhdEDc&Vcxk7`4&$tlFx$T2}OzIYqv7eM^#-ziTfmn-DBgzvag
zitGs2BFtbYZDBczBkrn~7Bdncca<UPE!MTltY^Hsh}Z0to`NUzu!_AYhD8jL7H2&=
zO%SeEpxMh*z~W>?K;P5kPV?s$-uX;i>_hex80{FqQ}5H)sYB0etY=m8K347b!KHY&
z5z9IvGcXdD?>f3AO;WSS;hb<!S}@$dmBVea8m5?S1k{H--gsQKosesjEL&WEB}}WY
z+z!-~-u3J(;=bC6#T^jY^+dEBaDD#Dh0Y{DVNppvHNL;yTe_TGzJnDy7u;jYOO^ks
zK_RQs{LGE-Q%=+df=L&bc2#P#!#<r-?beA(Cp_z^%krKVq9~Q9ipd)?hFpOaWl$W%
zyTalkuXxQ0PDn-6C}IF3K#rQ1AzU3$liH!~$YAbY9kC3!34UlO<fGzQwJ%|mNRsPl
zv4TZw<sd)hYef&`S@5}zTuDC$S;52o*;~H43M#KS(!z=USpqV?iY(UFat>xdh8?ji
zVgIyO6WmpA1HV>$-ojk61>)MOx~?!+iz<N!`JtwESpZbBdU7GzLG*>|)sWxtogAu6
z9Az~=xWtiIC0vXT0wn*H^^Mx&<4qGm%_>1~sL4(^eNMh!5Ig5AD=B!-`&LDM(V>$8
z`G-Ct#GsNr->WCASBaVZ#USrdEB81b^5VgkPscMIsFZP*K>vjp2Oqf7!F@?~$&Ra|
z$B2H_-CLuD=7R|KqA;oh27FZ{0KFKxsqNK}%fQ;PBnqs}CZXyCGr~#fi#r7_672)G
zs(tTcqesZWs}?bh407#xJ*TE3VlK(#is{Gy1k||kKCfHXNs_(r)&<-RV;Oj|jv5yT
zGzR;sBQEQ%s8xx~T$FQ}jZ+JVh%(Vt!^5N^zo4>OCn6V$$hBSQhkGI(5us^{ZxD%N
zHda}_b@YzoHV1prl2>Ee-^l72+R4pT3bz5F*%Q>l6(xYL*ge)_yh^ONqaLJv_ON?Q
z5FJDN{=}S7vQ@x1=hW<fx5mb`x*}~#g&!A(zO{|afJz8@UoraNkBw2)da^yMv<?rp
z{*r>H&mJTc!t!oI8an?HSbN?@QN0xzm4|a2(J9MiQB=g`pR_OY67NU|M#c=(_VL^0
zl)t0`S*Zw91jazl)^MqzBYGE-V0HH+JwMFCu$oFtW^MIYWVSpC!#ZoWNEQmvh<4Lk
z2`s{tOr0ldL>xjvReLCa8js}=^?|A#f@#A!rv#V`e6U_5Pt2_e`%*df4RYKB=L2b&
zijHJH;MwctJDbV~#50^b5RH}S5M9Q&=dS+v^gtS38HD3UVQ+v#R0~OOkf?t?UhJDW
zmXwHrbKAl8fKaA3fvcSf-2E~z;2AAczYDj`zI<pGnM@APP|O|);mmR1CkwsR=7HRd
zP6Z0Giz|ZN3R%xqcPg*sujpreXe}>Sy9mKx={B9)<1tY*0t$eil33$uWHd3RxBc?!
zZgb5RTQKnaw{~QW=H*>H*Of;G#0s8}(f*_J)R?pClXu-3f6?_TaGZ0zum;U}Ho>)~
zQ5w&8OaEF3ruqZ$AO5}q{iIFCX=Mo|Wk-)X_Erj<Kia8TtWNlP9%64qiD8Ud1xuuN
zGEWx6%OHkVE01Qd-G7igiM+J3E&$S=U9rW9l*kJu>GrA1GOR+O^sEGLAx1!RZMLGV
zOWRta-=3|$cCJV0v2yU?Aicnc8v;l_GBMtJI<FI(9U?-SZI6_kRrnFw^rqVTtl?sN
zBjk=EgNt4SK48P@9*0EWqc;TAGlko2d}eDQF2e@HKg;!_V%Hv000eeuakA_8!mpQ+
z+|zs3Df!MdCap!wCJ_k?PK?b&wLJZ@?sR(#hZJ*mvCOiGY&FcTU(8oY*>on$C_gM3
z*u-{mFnc9Lw~%HrM=q@o1>e5Ar?S7XgAXb57=-4vW0Jn4sfA(?Mhp(L-P3m&5<Iuy
zHO=sVBZDT(svl$rP}el`OCs?o+0^$O%2YYX<@t|~siN>{Lv+h1qQ#hNX3dSs4Gz#b
zG|LM$%a%6?so<vj0Q-f%MR(*UM5U+HkBfkdm0Ou&-c!P$5o8;tw%8oW<tT{pi&-o>
zcOub5EIh=#5ux=Kq&B%)j&g;<jNHK?b%u7y+p|8cSGVnz@>&3L0RN<h1^*eggD#V)
z2XV;*FPz;FX2HtI!(EXj6P{sWjM~A46Ok2<R_x!OhClop4-qRjlj^sT?Ewm<%e(<y
zz3#^yZV=}e$MX37R5Uu13@D|u;ILbOo_U(2@!24tS95@kN!wvrlUWwcvfm#!aB;m$
z0_NuVKpu!ognSX2XF2I{jOq!o>w_QVp+&NfZZ2<qOM;3^lxv^ts5+LqqHi-l4J;hu
z;zeey_bE~f+1=xb&uTvWb1mb!Rq)49XjJTquyw6%sh`LUVF70q$M?iRf-IgDIj{*{
zg$W^<EBRjlGeFG0=jX*xnpx1(o6laM*^*m)&LsLSX0tVizA3^WmYU4r`by5_2XUS~
za8~oUTr<(L__sd3Drvgk-rFRdqBu6F1{;|6sh;lRQqliLX$y)bj-$i91`x<C1oMSh
zI4!1^W@{+u=Vu0FWV|kkI!hjO9A$Neb)F^6D=a4Rm<&Xlc(8Z1SJkLm@G3@eebTxT
z6_wHkw+LCJH%c6RT6}brgWI%gi!V!08;zxXHUI>IXBp_VGX5Djtv+UXp_QqqKg8A)
z7f~Xy7nWM?2?tY$5H@eMc$);S{`L9sRMaR@RGT!dfNF0kGz?!z)-<|pbJHOlx)3)y
zRFlXY`Y-||DovCSF)``M!X&FMTFIzE4%VThgB%O_yQ;_m$s-3n_6>s(Vx9iqR{j+U
z-gUT-Aok9|Uml%tiwD&NNuY}drO0*_z0U_j-pmkalP6+aPR2A1pgwLJBSEZ&4LKT-
z><e|_=cZeZ)lN9w+7x~R`Njn_d0!DseDkY>O)d{ky*s0ip)?rFLH_je0`k{Mr>Ku*
zwc&d}8bE5nZI9O0JIY$oWor)KvCi!}xk^nwqV0ef7@~~B2Y@HgmMWasAj=a8$poAP
z)qlR9XzrZE1Y4$v+n5pggUO0sYjgw_C9<&E7C0#vFVgAzSEHWsV$G)aj%OOVc+mK>
z-Fr(chh<GO6(Wujjr&AkuBd!~BM2s88;C)kCOa=TjtWvwK*=g%N}sN&{8_O&@<+c-
z(a{YHcS6QfEa<|?94$)FO(YhqUS}ll=4ZKH-9Tv;=uVL|C)*a@O4x(ygHN<g*b*uT
zC9R_s9hjd2pp83>p(M)eSL!17F>R=z1~PSzNfbfWL7O<I&KjWd#IOdv@;rXT5jplE
zl$fO!RM#EcyUaPQoqEN|uaP@ayt!T2Ow-hAHafEd5STL!-ri^UIZz2@SIRIkRR59n
z;q)IbS~^nlFYGP4Ni`z_KLPE2jG>#yvBs>my5aX_tv-?Epr>81o0oF`kJkU>(Tmu`
zAw4x{H?BQ=Dy0$05@y;1D5i%_P!%FV3tm+u_a4L40L3}T`cnc&CSgrJo>UtJXmo6`
zOh3e6FyYezw-pYY4O+MnOn}1y5BWp@qm6I;y9l^i!!o4}Jk59#3;RnY-ds@3t`Q-F
zlpof6&!tUGOsa%CGA}dKxK6aEa~#?b#7LU61t7<lS+H_v6t7<A2PgN2J~v^<OD!*j
zt|p({-`IKyG+YUY7;mjQ{)ka;3Z*h*6HvwNn<}AMDtC6eWcTS+M`29oW*sJn5@l*v
zD8#=dZ$p0qsgx}<!i8IWd5~TT!pE)&3DmICLKcPnU(5KuJHpF^`CDK$gN2QMI0Qrc
z`4+<WbhjJopOQn)hQdB;?!ZqRe{kltWYw4dHdRgPxWJDh3^{)T!TG9FK;*Ml5ym^S
zgmh8$h~GE^$U6vRf~VEiMt?X+Gu?+0=({`o`49E%drQ5cSU*&jf}-YN2uv=A&J?fu
zbAA!Fb;WWhe2QnH?k8Dg^0FpNzjm}jUm}uXw>o^%C`a$(pxFSJ2qTF?vi1Am*nhk-
z&%%BZ%6|xG)MI^~6ZCY+K>?zEv~pl1EA5Lhen9cV?}GZNR8VxPtg*~rnF*;>yD+Wo
z0i_1zr9Wp@#+EMi>k-2^Zz5m%3Y&DhGAnG6SFVXicioAh9=cwV&Dk8MlCWEUGA8+G
zQv@k*6WkQOL!X;PK6n)ml85~sq|XjkJMrynaqsYE(SW0Ho0Y1JCN}*356AO*OQ0|*
za)d*gUiBE%MOKJ9H$j(Xs)d*$$UygIt^Ar=pviJx!p>DX(w)jLPDn<P9K-vc1>YLp
zv=JMTFt;^c)@D^Ex{{Sku<X7R)Ld&J8yre&KHGqj3ZKBIR28WthJPEkdUI34YR#J2
zEN%pFO5X?Hc-pqv>!*q5Jr6Y{z%5@;@S7r}B5g?jrWXTZ$incgaPxASEL;lFoOSp>
z=uBE$r3CU<x_V*1@IyV-`q*XFG-^*5YcW#KeoS9(PoHSH^zZIP6PPbDBiT>UML2@U
zE#{wRh-~q|q~J^)VE9iss|Gv%muLMNOyX;?Wt4sKsA}1f)l&oCzim_n|5t*r_24>}
z5nC_oPin@aO)tkbeMN2RwgYCQBZn=N$!*TWC?~Eyxti{$4**3b&@ht$xj<e`$C-7~
zFsNtfOb+jqLw(c4TrFqZ1)q8=zV|4np9<d!sC)ZOS<d&##{JIl-#ENSw4YmHK0O@g
z>8&BPc8_Py>ukzzyq_(o0+b<&1&tee;D4<^X;tLPf}t>)6aw<{SgKuNHyZLBV5!zp
zwxIwRf45_jaZfb^ufO4_=b1cSV@|(a{Jhz+zkpbGGFM8ypfnwL2}dgpAmIlaZlIBC
zS1pc2gsMK$q>Kk(oDS3cp?A@s{RmnT1wl1a4xY)d@oTm)vR3Xi$7#&q&22e?TfxNq
zPAfD}7JJkn_m6Kvtl)`<hekwv<vo2xhH?0SBQ1KNr7Y8&$1iVHOt14OiQM#aVt*F6
z?!{XC&jt75am9;#qO5C^*-&?9RL(ox4a%2LO}_DnPM^B&bkBn=IZqmd9&h#>e7vC;
zRa?p_B5<3&Q(;HoxPGOg6Qt_3kr>|FXiK&hP8e&`t{pMTY#U7IHgilfH|fXZHQOmd
zw2T1V$+lZ-G;SRbP*|NdH6mh&cN4qe^afL3BacyBpNxB3I}fVfVL&-Dp4poxvYm`M
zncsqpbA}sl`HZ5*qdT}M;Vm7rML;p=bSZ`3vsUa#f^_IwMwz6He^hb08SpqF1N<8q
zp!(+J%)X_s134B~PQ^&u&T?}ohU9izg`>v+37HZYz;#&3U0%^vUm7pS_GT#|YZD{p
z#B*2dO`i~_h~7gzNEEzt+7z^Xi-ATp*X{L4O0~0mQao@MH}38EGt`d1ppkaFFv`Gc
zY&D|016Xf*Q<)#d!xi_s@`%<2W(#$x6SS>fPQmJEuULb9p;Mdsiq@-uA%&`1D@n?b
z^}yZ*R3h5VEr098UCOJgh~KL{AI6bsWY>Gs8MJ5zW_Y7BKv0hh`8|O5IlFG7?M=bH
zhvRagUw+%t(3RQECfA&9A5Av}yub?;YTf|%_N5!?=__<J#Lkv832c!>jGm$Mmd2p~
zXaAqtNyfko%rtEV0B(mI1!$V*X<T#Z+?IU_c&PsqJ*=GI2{AbE9*S_NM0w`XIQ%KC
z2hpPQU!L!ga5XCKf%{+z$+Z4JHJx<p8lXaIIAD241{NzDY+~QY>Fdgfw7p6tqVAO)
zcqV-LtXEN3zC>k~Zq~2=fOc&R-8bJ^H((1~JGtgx?kA3}TBG<CMmXOjv$Q(YpIB27
zc^`KO*Y}yk?~){{YerfFn2`%`mWcv*FhJ>)ZPXw~Yu8Y)TQ-$EQ8gW(h#1qQtWY)C
zhI)lUgpO<2<`hoJL|^(2Ru;8GLZbV`HXZ<-|1wd250m3udp7Mjt?CYW@WsxU1wL>o
zPHV4lQK+)O%!Uf^<4C%H8(eM?Q_haseuZG={7H>P><<{-Lmuoyva*>4rXC2p$f31I
zG8B0F#sPN)SllTahJ1P_4;)9k0wB@z{si}*8Wt^HmY+1V+Ur)Coq7m8>uf>%=WMP%
z{p9yh4yE<yJ>^$gT+-+r&Jm4=;AMY%F<3PH$Cm;Mtb5WT)WeLD4kX8_iD}^wjTD%0
z?J{im!q55lQKefJ-8>TCRSGIZP*LOzE<P*BQ6(|^1LyHuIH{VxrFu2}Fd*qUX$Y5(
zrVO4IHnroJ)BFD(9!s?5&s9A@l)|q~lQp-ZO9|h_j-E|9A8=jlWt|rdy$~lIHQQsg
zraW{w7Xu&!GZ1oh0MrCE4gU@E8^|{5lb}LeKiCicknKIVa~&g%M(~9Kb|DlP-z@2L
zWb*7D6mMGK0v>c!RPT1DT&RBFPu>9uw`54&YrV@WDl^#3BSNzo<)d=9jr_%U#py%n
z-~uG3DG^gRs@Gti-y-kkOfqzU1!$+B93HgJkXJe`U--C`0zqk%-qo1y_Cr*}i<=Mu
z@cE#mYP`Q5?A516Irv^N4RDSyywU9W9G)?6LoF}|M089G6-_3N)m|~^KEwP*)n~Bb
z(?;DxeXL{>AN?R&7t<VxJ|3x*k-}@GEZDolYom-<On4gx2x;y!<6`VGWxB7EfQ?|j
zm58y4Ewl&2w}iO<pv-h#`W?N$apx}wwFp})f~u;H0auYv&YY&rIkijr*udcmJcHS_
z247RgP^!+ru#%XflPUDovO+|6yKZ#4KqA1@4|n6Iw@3_B%~hd*r~_?$4|icoGTN(Z
zUqli^SyZqTCkPiweCoX{1G;%dyso@8r8`g|iVXbPu7B7Ng{djfK^u5Boh>DGB}<7N
zhb!O{z?Z@{9>93BjB{vpq!vIHvxHaaUX>B}yZoF$3IrXUOIl;#Yb)BVU&BLi_hr6m
zq`P1ju0~WKgtmOMrpd`RE6q<FV((k!^m`DQtPw6+riGG9isXL@=hpyJApxe&s$StZ
z*;Ro)MFDH)|8PQJ(2_nLA3D215_tJngjP-{Js9l>2DkXo$_<H2ks4lkO9>+Vxd(Uj
z1dwqPl5W(w=M|7;CI1W^jvY-itP|FJjdqL!YGgZTBVG)Nx^+ry<1phC`k38A*XgO|
z-D`H1_Eu;w;NC1t7@@X)NIytt64|OYRhbt;5W5}L-ScZrAMzNy^MeffDMr%xxSP+g
z0{jVeMCX@9S|-NlNjQuL^R3ZAwDWb`E*B4&G#{TEUz*7>^e`U_uX<Blk`=l99CQ?%
z+<XtR7reCu+6DgGo%hmQ<->6(=}5WX$W{DGw`I1TCfO$#T-Z&CU$0QS*qiu*HNU7E
zh1+&~Pai4y>+C0LM-k(vP&%oDck<l~Mq;T8suHGmcfqn4ab=yP<qrdNCDX@l3r->B
z03AMTaOL`^pbc=3yKt5`KRJvgbqRZ!pi0SPV2XQ3*8nnir{SVD6!tdjRq42baC?#U
z*xlmDwX?2Yk;HTyYzZc#z|Cf=e2|@@I1^Rw`GMH^RxYg^oCle06e;Tb=57M87l1h`
zgm5|5pbJt2feA@9*N$C9cJ<Bo#CgeSB%RhBMls0@zziz3#RJrFXZN0kR3319c;1Ry
zCYrkAwSf3OWa@4rq-XSZQwb2C2y3yjSu}#=>!N*t4yFOpOwGkU(fZ}=$$Nm8XV?A{
zEDuT9KEB<Vc)TSUpi|(_(FLdehux2_CtLpXqiZ1EfcZd3tEZM?#J_Tdt~XcUI-|y<
zPi?K`%m)z60xI>s!su4&nLUKqmeE+dZ46sBukvXCYbj`xgB9{SlaWwWVlw97_#`sh
z2HlP3N5z#VqU9T#Wc)kmA&GtN3TgA#GtNAh#5QLp&Xq`$;wv$GBS7K5-@bfic*wLy
z^CP2zI>z~gt*$MfGorZpdXF4CbXL~L_RD!GqChI95RVa;U56wFdya<JX=n3-=0OU&
zR-?Xn%Kc1ItLAsF3}&3vI`QN>^cKSUT4?#zmoni0B&%p_P1eNShf!2y4M(rFg26FW
zK|NR9J~C2+R9>F)|JM)yAtg=3z(ito+kNi5a>1h5m^k-9OlG|gK$iZYkZq4gy%vUe
zq)7hjGj-ph2B70<!z<ICKP0O(SEz^j7DDRC6(QF+xK_v$cuP++moB4}4LP42n^$T{
z{5#U{Zgv=|)d*SSBuZz}EZGpSW*?7GQa`lg?|Kt^dZ7_lx1uSCd=KU^_a}?up{Qb&
z__LSjr5iP4AHjyCWzc(rjNQKWx}zN(crJyQm-k$eWzeoW5>H6X)j;u2xn+N<scmj6
z!l-p-z;Xxh**)imT;cejPH*qTPmBH*Z5G$XHTshFJ7(jORB^<+7;N|(S4*tpOe)iy
z_v={|CO2lp4Qk)$sZ6^dWaA9Jd?Sb-j~FhwTlIK)2EfEs_H<5$W%sN0JYbmLZGn1h
z9T;tyv14NzaFO1g3-aMRpdFHxu;Fp=;AWA6GQgc-i!uS3c3M};b1CxmGHLI;(kA?n
zm3`$xa15op#jwZLc8QbuBsUcRQl=Bjl=ll~&BXm=#H-flXbdE0L_rXM`_FOi_pB&d
z>_jjL+z~Rov7Q1YgZK{7o><de8&b13g+)Z*6JD34q8P<vlXWJyf=}T5kg_<$|JSxb
zuQyC*{XZT<J_16pq+EUUg3jpvLs802py9iPnen;ng>4<}ZoFrNf|}f<M@^k^LgCPB
z(79xafY!8fnpVq#UIji%yG1Gy47qsuGSz#LQW!-f;@PaKrQ9v&YoRG2y{~{vTNGCL
zdwttpz;*{H9LEVQPMcbs(;cEa)&1KWf<|YTlU!!6@c_IUi9LpK5abHkXJ6*mSdO5g
zeT1K8nn>BP`knq5JWQ1&LM4_lvBfrLuEu=T(>$kiGsvVRGxHgqpBLn3H^xaJUH#!r
zKyW-yzZS7J!Pffc<1~a*EB~{`sYe=<BdX*S&mF@20J7gfNxi?;{v~~@cB9Z4?8?6M
z_)KTAf_s?`5Y^uYHm|Z!M-FRt=YuX_{<<cC1Hz`n+zJzK0TsGnsnHRg&dIBb<QRjz
zcusuj%%(vBM0b2YJg(3+<bA&4OdhtEG37$RgCl7|7_AgK6xM>N_3KdAfm#qm#qWkj
zNdevf)fWv*5A^?(;EK$=l3P6+x=C^`j@gU{WK<7rg0_w{kU81GQEYovZIcTg_fd@)
z&xp3GQ!o1fS?Vt-La&=ENIhp85ppy8^h7ej$zk*}!G<@V7WlpxGF(mLQ>d8x*<=sO
zJbrCU6f$iB5HmfPg{1>t`d9lBYB?+=ZNCXoR<^kWTlQV3Vtnx4@e-OU2n7n(8GmYo
z=>OBdw0!_Km|gkNM5q$Myn~&b_EK3bwG>r&&o9tBE<`%S(;8(+G~H5`6isM?=en+p
zEC7;I79cIShE11l@}KFT1q{U$gQzK~#&ut)iNor_)Q?SJ#(4}&#i{zWO_MfZ%>~$T
zaXVX#Dh$oZv~>NLnIXC$6H={sgsE_X#dSrt1)gvws+3w~6N_R;(z@;fq1+AwlRZYn
ze7?G`HuOn%jm>pUU~jHeUPB2J^D!0=<!40Ae8btM2YhB0dJlHebRflY`fG%q9Rq)E
z7INjV7?X+P`1`{>$9)%pkouJ9SCHcX%U6H)Njyte{COBLA9J|n4|yGvd$pY9+wJjy
z1vf_>Pd0>j2kx%Mcah3OXNaLU6oyai>*P)ZF=%^(#l^~Z*E#@bS#Cs0I!hWg^mQ<v
zyXCaT^P`|s-bc1VU~&yg*|j~Z4VeL>QxN&*L@ZUx@PqU#SkrozfsTnSw9C*=FDLP@
z^q-*-VVV6aq44$LYsuBQfI-REt^p4Z&Se0>zeX_}v}>u2-W}~)|2c@8g2RE#&D4zb
zi?)Ff)+$^bIvQ}-&#F9LA{ltcpOQWu;`X_IVGXKlLxlVad1P$zy77(Y$@-AoSuPa#
zVPpJMNRI(4t_HTa`)`T`s$fmQ<vSSECsVOP|C`{CUtE_3ZCH4ViRnw(bgMFc+>7mv
zLCOk;H;jSB#we;0=Cc3iPnR5;U;WnT=+DWV%OemAqb?39;~Fk}ds}ZhD1+*REV_Sk
zRiqlZ9V?YUKe<<-(|bukwLhKAK{@`2+H0A!t9&=_L_lOU-c{=G#hs;w%|26R-pYz#
z#DE)U0yB8IXs+ek8_qiKX+;&H?=RXV{NQ3)SArDGDQO?%y?L9UmGBxvvEDP$r`CWC
z1VqM15J8_p{&Vge{J4O<dHsgaE@l?j;?!X0&BEXS$A;4Y#ABa1*VyJQ*Dz9t8lXaW
z3a)K&kcAk76l63u6|IFuUmI#(y7ig(k7QH-Ww1wJ`Gh^v^B$RWQ{GGiyt8E=EvdjR
zaX_Crw4@#`1Bn`ZO0)1)F)~Ma>qPjha*D6f8FoK`tRyT#8Arj;21bO>_|jP6?Ha>u
zaFWVvdKt6_#d#vVyM`((YFthW|C8#tt17dA5ai2(wUSm`z<_(dWL4762iE;HLhApL
zuvnc~DF}%YX_~@&1ZmqW)4Hz4M$6lJToE>f)j0<=RN(A$vEi*T8GzP>d+iP=ETUAE
z-d=Mqvh8%o{+*>V<A$Oa`%^$f#F$vJ0DRYnkE>D^`TGzUG#ZbcradX}MPAM<n}qPM
z8a-%sFr%+x6<0&W{0BVW$E#(+x9aLpkD6pJ(l@}lNn_p`57@?#>;z~VYZFJSR{*Vu
z@Ny4$jOK4S&S5FN9Zsb?2liI7{SvxFJa@_n&NzV$a%DzJIvV)48(`05W8(UGju95r
zhW~LQmL00aKpJM5BTT02*RUW~r!5dUi6Rmx?nhce)5_pkcBjlD_|~tkkDvhl!-?mV
zar4{9t(L_}VnZ#qzt0Y%-kM4gyjMRxkLKD}K!nz~^T8YxwxO7;21a;#y};99E$J<=
zmmA;mPy8V%ZdZov_6M;54j14xqokri6vL|<p?3@o?(ibqnTgDpw9bl?Quv1Mxhuk$
z>nfjTWiv@lGB=27r4-vKlhtMQ+L>1k@9%KjeykL>@39HezB#7GeC0d)>MFcQZnejx
z_~T3Dls@^$XfMu?H3l8sYwDs~urOX3+sH2J+@CK>iYB`{*;jQ*0t_bwWqQB)S%lMu
z>B_dYrxi@NL~uD3{<#nHO5|flg0w$>QgzlN<{r8ru<p2;xX^YSLd(8jH4n=7_@Z(7
zVUQxFm<Ud&`{O$OSFt=Z4!hS*m$VR4b=EvW5)Ezo>~~LDJ`nOtpKloAyGRz+)UA)d
zF26<pBWbZ`S`cnus?x|uZFfY1BGu`L#s$o1DA6=@{`2zoD#A4G=(1eUmWN+?3^!ac
ze`8Ma*<DbzyB_d#P9HP%8(b6K{2DA|-E9S7N+Ni+$Ilp!dHa?iUm)!-qE5%)KwoOF
zYn_o+slhgJ2tzHY{G+f$QeW`tw2dXep`^4vjH^O`5qSOEL(W7Gc<kIS-z_BXi2a)R
zz~BakVdMPRWDga40Rw&WerZX__e$DItEu>X-*gUKZtO2w@{&rk^z4iPQJY8@2X+f0
zFV|}jUf}3ta4*@}g&Z}?w&B`qbCo#*E`gUYe7N!N=mO`Sh#`hY>~|{-9$v9b3Z1Lj
za2j_$o=^*-bemXC=EYW-B0VEpeU<t4+SlRzM&g)ymW7eIIFRY%Nucpm6%W>3(bRAS
z{m(t9vlHA3F_5{R9*U@K%{X}XL^FTA9e8nqk~1y{8Yesutu?l6`cfulj-fCCrpmKn
z+Xev!dQX_b39y0CQN~T4=adbOLv=SMlHx|r4W9p>LktvAn8<LmjPD#Y1StWTLZ;tf
zMlXS2F}H<l!jrtGHN|Z1oiLgUJl9!QgYve0CeFjSZ-#eVq7^%As3b=Y8=x{q1xNGO
zVeUUBJ!SLnkAzf2?N)^AMbd;$1PEm-*7`+XwLbszVHnP8Z3DITNBV03pO)JMXQTgl
zWjIsSp3Xq#j>08xmM3$R)gQDL7$4<|owO43Phb2NU>5bOXTY9Q9HlF}tJUkqR@|T_
z;l_O4UVX@YgwCHgd%gmmt=q=Una~noDhD;;M2+m2VNDS#Emu0oI3|Oznck%SA!sQY
zV?>VEUGKOE9+g?!|CSEXuexNZVCzmHyv%BxV6eH2V;Gs=heJbH3{F`Wc61zsfu(at
zN_{WC<H;)>(&xW)BIArv{+s+(huo-xIQFZ2g|cRUt$WINMK-#qHo^7DYY|nEbKKiD
zU>yi&r{f3$x2io44RQ|nu^DMdl{qY1Ay2kBLI+J%Qr4}vNtL4VF7PChI()U{pULfo
z?h1(52kp~222W2BR$I=2Al4t66!>IHmj<z;o51opO2rmNJ!H!pMwK>3lT7*n;Rc<g
z&(b*q%*2HYi+&f;3=!Zdt>`uQn4?A&%f)G_fx&8sKP66iDmh5E>EjqBcd`D7o1`BZ
z`muD*Y%8oQJmgT-K-m(b<N_t)1jfku;pKs{SYft#B2#^J#T5-=K^+QUfRkydf_XMa
zM5o4!`S7!lR`QH1jLU@CoR@&19AXDKh<^aLrnD||!$LX=f2H5iArBRB;IXu77YlP&
zC`=T64eMgun;i56Dh~dAGl>&33~;#b`oj)Z6gGBDT>c;t?lc~z!_E-c7ocJCWKhe)
zavLj_VFC(?mt4+hePwK9GBjg*(|rJlm-og`n_d%=yUXN+aut~bY4f})<qMCSBBbW6
zl2BLl^p?>F5De}0I&Gok-1-8fWA8eF%GB<7Zi#*vA{N*=OyXbYtb$G)$tz<I)MYtX
z5OPDeVQL;P%wo2bR>F>!AySn`%qqT&Z&SOcak0<NG6@D6Mcdrxv}C1(wz~wox?HdM
zf$0XT|0ji{9@?ea`)_Qy6bj&}rX>SChY;$r{IGn77>{2vX6ryn=o%(HaYkb2d9k0t
zQF)rxi;m3cV<~1yr-UhXf24UFhT~5}Jm^ljmhIiv-Oxo&cuFwtoiiZgP@lq;)K>^g
zg~Xw7K4FqVs-v*;)B*5xFEw>hq)M>nU#J@xGLt2*I>eS^NMB09fLsyDLR@ARcADrL
z*ZNdBvoFu+lmTL#2}=F{)Wkb9pXx)H{u5Y|jib5Sh@my;C5>ll*nK5L7Y|={8=NxQ
zSX)UIKRZ5rMtXz3qk%6<kBsQb#`MYx3F*O*`JS-gn@$0w-hOfQVRPc9HoYgPM~2v`
zK09`)RFz_RC5l?Tr=qcHnHeC!hYgYs-s5QVxnB`@h|R&6Wvv+$I)QndHwgv1qukp2
z@eI1Rte~B6>S^SScl{<WxRMm0@INeYThWJRRR6jR$}SvY)9VCSG>RwiM5BOA;>5%x
z7U`n?5)#5{Qvvd}ISW1}Qk|T=d>)+Vm46D6XauYDbD%FO<k*TZ{MVX?S#>F_K^{sR
zYTT2M5r&POq==5FFU>E$F0RlB2Fx59(qbOYvL~lk+i^vW8w+11KUIQ5EXHB~Z|Aig
zbWwE0)>+0~(@dG1*4xCRtZ$Wfqy}RI1#9@JG}?q$&7+24EkBDkhI?rge+}kl-48P-
zt!>4yqA5XT4q4jjT8Vv1IZI6VU-U^Kzqm9IUJp~M3_$77oDXBi{*Sfh9!0}#;AIVt
z2x7l1R2d&c1_npv7dNVm<n-WL*>`{)_dGoArfV5Xon;;u$bGW;%WC4ptaqTp#K-+|
z7$coDAJJ}qob1Gcw+0xz+#WCF6{F-ts?M}|Uf_nU-JsS6xf1Ld_vkV|R-Mc5UR~?#
zF<hcAnwi!*WD>?Aqqw(YK|4>h-usMm`(J0=rHhS**(9e&EzV%FJb*{0E(<l-g0P|2
za3|vD;Dkq6E+r!%V(v*Ht#CF62FYL*|0Bt72x6}2jH-g5pc9J_;OW}8XQb6zqSqeq
z+0Hz3{ibj6z?`hUCoLYg?%6YjUJ>OQiIc(7r*#2)QRJ#tG0@W14CF7la>W<CbOq+o
z^C^R^K$@xvkjw<8l)=0x6~U=;Uw|ZIGE22ak*s2lORk=+uQ|aJXLA<7?F*~u`s2po
zM0J5u2rGnjtmW+6OZWh2|0KzQF?8%wHx?Qj!mmcd?X^we*WzkdxK=)z9b7r%&7L*H
z+o&({Hr&)PnkhkB-o_Mynb$~Il1ynEPSK)W?13CRoiMwOD(P@D{qcXaIS_R!Qu;{A
zP>w9rFra2mAU`3`!xA1h+kInoOK8)8M3dd}WVoWEeL_<jK`z6x%%=GxDZzo^vLzc}
z2T9K=d2by+@#~o}$b9-mbYdy9C0H`lNKVgd*zc6e1hvyGgMPZ}&9h_Rp1c4YP2Q3l
zI>qC)J}q3*?=#NWE!Is)f1f^oF$<1mrni&Swil|HJz5-}GZ-q#*>23Jr4ndx1<V_6
zQPF2P?>jj;d!<Z$Mx7&!CY@X<GgfYn4=J4Ls1p$ZeY7|iB?AwZru;BO4-@-&z;&G3
z>Af-&OFo8bFkJZ+(Dn2{&lELJX5Rl1gu50%gVit}8VHsi*@J#W5vT%j7D%4_{w`mq
zk$W9-y<nmjoyU$4)rndc95f?s@1=;t;QNC<guSXq$v1XlCzHLX*w)!OHlzX$&T(%a
zl0@kkxp8;R0RtbZz8ntLPjhDbnVch#xT9{{kDbmL%CeAk07+S^<hN9W>>0o41N%~9
z8N8enH3T!JX{7A!&!vb@v)H|@L@>S!t{|Gi?apXeDn_{MP5{Ka+4+(m6k*R&fljaT
z>JFcEyhM)dwH2&Fv_Rc{#E{Ek<MK=kxcqvVd<G7mfM2&@sQ%nvS`5p&(x{}*2R%h5
zYYfO%t*!#vI~#Y;r7|txwjq`bmrP{zvz)(aU4+E&&#(haz&)!?t&GLCOrZWaXi*&E
zC0gzz{;AnM2^!*nmZJQZI;zm6Ry%dq9RYbpGyX->@{z!j_Y(MDE@WgWhaxP3O@D_C
zCzbXmyLUJ?z2@2<(}ITj^{h~?+q#GhrwTF&HqbuBDAJj@f`9|4Z6p96S4h6alG=S#
zx(0c>{i{W}I#}v?LUkh5*EMmT6scVjdVW4@1daZWhB1zp1J620isKenvyxKLeI5cr
zcH+x5HmbL}?YoqPt;M|5hxIH=%h+J7p<D(jy&7}?vEvCP>IF#mTaHkp-%Ee1IV?;P
zMEU`<PZ@LB;~IN{rN1E8D)jD|+Tmtzi+!r~lwz)9<9>hX84sAMBq1i1D@T^b@RxK0
z{5#pT3im#%tljS*_*ATp{WnNItX>E6?3W$>(o0$FXAo2csdOSAJsA5<($HxFEGa=V
z)%EENWjaE6;v{K6M<=2YtXrw&C*{e-EbKa1{l1vOn?ULEOl@1m;<4ucg{?_KK^w`R
z``(Zz=PzR4dp>*vuaj`Pl}uQS%ZbgB|KQ#CumexXe?KNku?~uC-O?mj2(VqYHvt~K
zP{y>!0Osk}hJux<liW0<e^0w&1_xmh_U9cH_&cz>tshNSY~`#3@n1$ywEz{ah=*DB
zZlx=+soaG`9uz<w5<XKdZoHdgy2P)HF`|I5U0B2hH(Sz+<u&!+u&uCF_`_oU9nsMx
zYNBWEI}uZQ+8~9iA1L#IGdU}S@;%n*(R6$ZM%z8L@+`p&I$6O<8cSG#76!pJn0U;p
zONbuPUctHgkm*DHVg5UfG8>k*<5jv$bGnwJiG(B9j2E&X4)?P_R3cv#F@CwCr?f*M
z(F3A>FNDhfu$a@;Ff)N1g&A2DeZcE!DZ^u1xB33j!*A@iZCWVu*{f&b<VjiD&8VXg
z&Kpx8u|ju_i;D_5X&Rn;gT_qTM|TQ84G%$CfKVG7qKGsSR!PSa&}A#MP~(2>Dpjak
zNq3^yR>Ls&^@k!vNoUa*hOO(iH*GCUBx(wzrbau5u0YmLZ7<xi<mdJ{UN)V1iocM@
z^B?EUQi8(P<8cgzm+CEqaM8VCYy}>!ozNS_Dz~0}F?3&MmqR+j441PnfFFk_uPV4&
zz@mV-7iY5WD~EjEI5x^VR*Y<rt!p`@tBV3~SKeKXKPQ-k`{!$0U&1L2wf!6o0xSFf
z2T1S<ZB3d2A|lIYe;Q94GlmH0*9m#|Ij%vaxl^9z4hCL<(B3i?2)?Q=zC=?817%$I
z{A21SqvV<ms#|46R2;YDL7vpFYRI*;Hpb)*P5RV4N1qSg7Pu6f2l3Aqac;53gHH)S
zJD0-9x0h3_vXM1mO2!t#nWp)>APRCOr-!4gQ6D2mKi7R~(m^Il>Lp4Y{zA}eI+LH~
zO2(|sJhB1>7zev2DrXLgge43>wx!$eFSr2EWg*I_GFmu`hF4CzV*z-Q(fO711Pj(+
zNI8<R$Z<thjCXvhO;D^ajZ}|3ZI}A%j`iw{dKu1ad*#mWM)~}>aXYe1%K`1~V6eNc
z0P3V0$vmt8PZ~FRf>EURmbq4Rtk$pH=?0EwKDTCUe`_bVq9a}w9_gbILvjDc8!0S6
zfT#D>7ccCJT7dhzl*{<q!IJfvQ3IN-;~M{TVel37#mB5gBhRQvj)VmzQR!_d<t5_V
zx38l0wY>oH{`0+psy-sF^{MTU2$eP{kw)k=3Q`(mlR^qYb$~Hr6u&-;=CbUNdnonO
z6ba#u{81kI%`3B)JsuqKc}@Bqk=}YEY}?Ji#cW1fOVbg5DHQ{)G?`q13Uw?lAY}pA
zcpQfsAt`%RywqJzSRo8a+i6ln06yxNxLi9iw$y+PX~as;OL3y4qnwZ{1u1+#cuIIY
zG)6nA?@fm6ZLY`1jr9sGjKe_3W>sD%!OZY4zCCo|ZIPhwWeeuiX;NU1mi6`Lq`U6I
zbpUjODpz;&TAaP=dn67TgxQA$1brgUw#07|r>C)i+e=j(&v8ve66Y7<Pw!}75uO+<
zFV0Ngrn^6CfU}>sj1)lS3{#elQu%IrHNb!cw{h?GXTCo);kV!O?LaOE6ydZZ!lc#K
zW>1`!XI^nP%0>#^{j&N@jv4{8+Kz1Ok0(oOCv5EL7-U#uP}$H7O)W_nrRsViqq*-S
zX=+KPH2oGtrs+bQO$Y4KPkOpr!x^tkdFq6wB!SY2Swq<ETRky5Zp;|<N=Z@3KDuz9
zi=WzyeXFHSd6Iu?ZvJ&Ywr?=Yw;Gxh?61Vr#^q#BZGGIowU-QAAo)E-a;y~4Q<i01
zEWiw#E%em~hqAOkUX$QuGV{xs0)Quqpn-E|5u2swOUp}!-GDM~X?=&k^ph#B0_;qq
z?37-nzfK=iplrh|H@$?~6fk|tQL!pw9r;c#+Pe0p=d3;LesC9;N_dq?!SVa+j%;*B
zTFRG+52325c(hD02QO36A7r&Tve@YVO;<56D?=qs$&#aDw%*D~e*{NQWxC9J|4El+
zZ31_653yX23c~8@gD<l})ufS`fH*+)I+YEX0z-C77B*25K+_khW44#B4)+j`o*KzU
z7Gacu!gn}9>Hz4H8ob#}q3PI>Af_o#j?S*AJZ7&%d>R0Wp|R4bk)n}EuwW{-I={+F
zMFfOd+9~_~0;VlpcVV1#S+N<i`f$zzHEAw0#qiPpkLN!j^0$mn95rvW!cI^DB$Bs`
zU>l|md>`6p#4i@?>h6ZC1wHva`M9qjyZm$sKv3bmBxE%ms-FT;bA=1%4XZzYIq;HG
zZ#&7r^$j;(s2MQ@*vv(33stt00N`@eYqqMCtMUWkN$;|$>z%giwdtYJ=Hd-?LZSV$
zG^H)Zpo}&Se?ES`coe}{hMJUSPzYe|VSCWk{^fFgx`Z~q&JjQfsR<8Vw)(EI!|~#5
z`KenzqXZ4U=pgu_1ES%iKO`9@`$YTZKhGDo*Zms(sn3pRGpZ>!WB@tSkZFSRdhA}u
zIJa<I*2C!60;8?GI0BK*6d~VsvR1=kJ}a^7!@wvr%DT_&R~royt{P_yE$7QkNUJt&
z9N3uBha6RbyJNSbRwjX|AFZY1rWiU(UOZ-~`et?qUKx$bN@?mvh!?PgXZ;;1V=MsT
zm}pq*guJv`6Zo1PyS!-Qm<Q7l`R=aqeks3~SIG|O2#T!)*R1|hQ1ES(wr4qSTM4Nc
z;??c_@&8RU-0!f1gObit^*Eho=XRUQ2Ri=ldqE0<m2ud8Qk9;bMDF1DmI=KqUDjqU
zeLQ(?zUy6{2tza#Sh$deTlg_AumA9Gf&|G8e^h6Fpc8_mb{dW>^>vNafS9K(F}5?h
z+v_xJd^-8P6;&Q?=W!A@PngO^<EN_M0CMDaae2(G2=YD|?@dI(AME`&Plg_+I0rF`
zFng>E>eI6U1A+2|6mUzog{Xv@XzOioWpGc1U^Sm8Dj4}L8M>1+Q#z4$$`vax3w-;~
zcwI&sgwE%^T1MY#XfGp|ZrV}fF}XU~mf^fSv0_^JOXvT|u}mTC6dmidEg)p;<7D2{
zIEzq6r5uwN0p>@GQ|0e#jkqtHg2A?MMzUEY)O{ojLFbKvsCfHr127j~NKGT^?65*d
z!ZshAL1IlIXWJ9sH~f)AQRqiCum7zEC)5%n!%_6#XK_ztp)_N!^0OULweGdovDrd4
z|Ep%8jnzO=Jk$P4>AK!mNL-nn>`iTKl46i_1oW*-lR^q&X3b+9=caPxbyFD^Gl$<3
zCU^!MT#1|1MS<5xl>p0y`9^4pIYqFPZ=?7dO|v@3SY%y;5hp*F59DQe_Wnlc4J+t=
z0_sh_%t%#g=jl5mn+0s+fmBOX?OWvm#8hcI4T<j?0~qy#!i!Wz1ga9sFaR4FwMLw`
zwY=@onG1-vyqoIz-}ydusGQt&;!c82);ex&ACT`E<+)(X4vQe1ACdE1P+M8JN)PKH
zTU8!b@)MFSNOKQ>#7|*|2O4us{C`!y6KxwabUO)u5(?e>H}{o`yhi&smQ1njw&g{O
zvuj9$VMc$2woWk^6?W$biJNBnJsi7>LGyl{f_UZSO9Jr$7T?et^Ch_ks55>h_bb^m
zl*Nr1e|an9S+yoqt!~DLnC`MD3y=d&rf&i%k=n5#H<?jiPtvSCL_iko8Oe3jr43&5
z+NmLigt%1DNV(7*q?+gselQ>ttD?U@`d13BE9pM1KI62FqdZEF^`*fxOx%tp6Ic>l
zNKQ7&fPhiHI+_$~xVt17m9vO7)g0nehFg9DDi7nG3(6chdi}4ZrWiLc-yTiGt{#nx
z&_zUGMvXN6mV(NjTT8#?yUpznn%c<`=aJaCnWf?w89sbZD-!usm;jo(m8ILf81X$I
z0AgHQ(TeGQoYR%E^>Mk#O-jSttxNP3!67j=T-=B0yS2hzuF!X1v{B`2L18M42;uIT
zhwkL(z1XN&avY3Pa^axGR3M^;F~1&txid%f{is!}H&>ia%@N5NXBm$0vX(6x1Tb)j
zr48`BQWFKT*-`k!Xz1hXdcmmmX9c_={|4p7!uxZ_L7X>LS2XV?S=(4(A~!ivTt(R~
zK%s%CO>=Fx?`qSRo<8L6ll36-&~&ks6w^(p@-tG<(G)6@%z5p6ATG*0d@YvF;(;TK
zHeLCyjt-@Z_PR|T8nwQiogod!R5+y0uT%hqel23l%2O4ew$6~NyH~N$Uz{_1##*lQ
z8D`JImob-cCWCR`#6f?^-IxlhYc(L@Al1OCIA{k??)NGao`6O^T$+ZORso7GvV!~X
z`T!E3WEqdTMxoF(sqVrBdv_SO)4*v3NuyI~Xqo3412zk@pJj#H!FMvDxT3m^1AE|V
zMC%l#?+{K)8d6RUjtL@4M{1g*#jrK*w{~}D)AfKLDBib01IAUfn5IBSOcAfpljG$-
zb2l<L&S9jn7tpDG&nu!d-MtQ>=)Ty7Y$iAL-||@q9UFd&qGQ@6ar^_)-=*8w*W`)y
zbC_HEPR!f-2ZJtv1+U$Yx0dXsV~GSwkh1(mi+kaDi{+>6TND$tW&S>w+}#)e57ZVh
z?ICdnhzmAnM10j2*#H#<vPu{c0;3q0wIRUWtY%qNA6{ds%<OeAHyO+=R_@FCqbb)e
zX5ndRVqy0tUAFR_LJuJD?CyUp86J=!xtiyExTuBKmiOK~8g_=~zf>(h4`=yA5k`KO
zcFoe5lGha+(rgt+xJd?%iYyg^IKVF+?dWuffIP=@<DrC0k4louB?1dmR^z7_PYNeG
zo=VsVIE()%5WWEov+P2^cLgBdbE3Ic-fo3=)j>`p5Rri=<$Bv#UZTGE#M#k=Dw`|6
ztOtd8;0k79Yb4x@wBq)pg=RSdJhVBA<Tu{}_epRBcooUhtB%~qN_j?35g5(!Z`ma#
zHA}mGMe6W3qY--1F--QcbxNfa4eQs?QC57Gk}~WR^<^bP+%C;|ia~0Czh?f`%>zm*
z8pRvm>?9BH6wbZJFgX<!49`i9$U(QY;Q6eyt@I$tk2ttE(JN8>Av<SD68H&Yx`!29
zqO@uKVTS0g;Cv^QtGnZd4c3`W;M<C4|Dt9UeWL+yot?2H#jwb6A(+Oy^dfsk>OG2=
z4QVB-K$d)c8W97iuY*1Frj)eHGx_czewGWLeE?4E@>+E^5_=Nvf72K?4Iu}^xN*lT
z!-7N$<c_$Jp5C^5yB))zJTDU-AH3|ayGRB+GL#9*4P7vdsEu`_!=VPT);&Yi+7B7?
zs<Ks8z{<7Jqr&5|^%q#OqL;Hr>U*vjJ~X?ROTP|l&?DC5cfJ{ME3zUlgM2*HjaHL~
zntR3y<t?)nNaar;V|3aF-?Nc7jO)VNb9FO<RfNs{1aHO0vY>>nTzbZRwlF)WXf*KH
z>M$FqX0YQAMdzkvs0PzW{)Pf=6a+eU>+jS%s`+f3k8nTqCjA{03gJ@_`#@XMs>#+3
zS%*U^q_3l~F@Z=424}*=O=|$kg+Tq|pMGl7sO*skRt+l*>qC-Dgi4poZV~e7$(wK(
zl!EoXMPlqs!^7_1a%;+$I+TtcIg;+<x)M?ihoV4mQDoQw)CoAQ`A{zy6qTKUc?)go
z;!1G>6=LVrrJsYmn`C*6GlU4JNzrzcjLw+!s%Wn++76h>KOoLaWLi)q#%bm2`W=#<
zwe|OcxVx@!nD08NkHo-OsTUhtCO5g$y2qdTka#%~9$az}#WDmzEr)HnD7ZVag;Av#
zl*=6lX$9VVE&z&g1<3M@PoJHAhS@scf=x`JTyx>0wj&Kk{H@mFIJ{g1F|+%f!u-hH
zAnggSU}G`z%je-yaYgXvn-*$iEPF5Fmq{^5GOW3TeCPA%ay2#6BO;TM9Mr&qc_E&K
zw0H{X?4-oqil2}X$Rv1Z!0C#Yvv)P7#+{kC)t;suQlqF`XAf!B{d_>OQCf?o1)^n=
zJ2ULU*>jnuoZJ@ek4#KEwj-YssJi?!?!gmeK^+-wt2XnZxHd2ME%o_R>IVr6kSVE=
zQ-tZVNuQ@gExhqTS-=|2cu&Hl|CL4ci$9GC*c0&}jz?9gmT6W>PL^D<I}TiPHcWe4
z@KzA}o~Imzc;#*aVcsNhB0-HkYQ+vc1UDq(8y9Ib?sZZgg?|DO(Lr}VYJ&wOdrQTq
zVXG%_Uymm|lEfVopfuD9+iuh~{V`H7?O2%RJ{>gxsn@K;_5W01gc6BzIOv5cqlVc}
zB7Y-Hec!9WV~K5(iLMyx9{VO6ECpl|VKqwl|2mIOBZS?45|Qmr-kFqbiF1kJkR193
zM9EY;1KYgWYz;`mL&7FN(IlJjap@MegNpbx;c^B3i?PzJ0;eWo%+6>I8_#}~`;E%D
ztdn24R`Blyxzd$!*w<Bl^0~&H42N}ig2gOX9V=dCQ0-A@A<0v?h=vy3>>?LLy4Ejj
zHQl*Ye91vgJ%vi4uKqi|!?9bPdsigaM)$HUi{IJl4$~PRX$(k!rU?@rTf6W=yyP*^
zV8~jUt?chWwS*w+rt#&=N8Mj0=lj5*OLdv%o`C^+RX;M6<Tw*Z2MKU@h=1tu-DqA1
zl5p(du1&(9o!Ys+K+zCDnl{WCCMcVpNEm;~yY^Vk^Dk_;4m*zw$$aNU)drrc2M0Yv
z3z_f;tx^QuWbp-wgX~`4PMof*j9_IpyQ&mDnIn7EUhaJ`XA*pU>waYkd}J}w1}8XZ
zO<bO~J4__0224!&4Fo~<@R|8avKC4SaqecW9q&6ms}~mT1rH=pXkjgx)g|s>m)nvf
z^~m%UnyAjBF;+c%aG+LWD;3crx9^|%hb|f|+W{c*x0B~vbDQY{ykFQ6qkXY>-fKyT
zZ#_67Aea=*QQnugkBG~buU|W_R6$I$@;gG{;eo?xeA5@U3D-lRwGa$c+tzO4yezZF
zdmBM0Ih2f+<Av|to(Tp6*FU}&DcLz}%NE!nR-e@C*gW<0FN;gG9eyqpBM*xlQ^su>
zh+YP*)6zGk?I=e{%}~l+TVZR*Ro8oRipu?O#+W$AG^#RGjIM)i4>y;{-%>;4Qjewb
zK=vDaX^OO^m^5e!YOspwRj4M~B9GcfWSTe(C4f>0zktGxO@cwaEM#er6WhqC!7n-I
zPEH+oQ~^jqUFP{13+XEJe>x#UvN$skK;^UzVuQ=N5}spx3Dm8B7rCu<khxunx!vlA
z<Qo~Ax4Roq(`QWZp>N-S<k!f|Nm@FMtZc|XhaK3i6SBP)f@%F)zFhsDz+_k3(}k;@
zo2qiN9VcO>ExWj@H>O8gETy;%IZG>dfZ~K=a4=r!-2YY_OdhflL6R!XxWkM7q}RPo
zI)QKyw;UHL%f*5C;+Y<?a$(qm02v?7jz@8}J3LH<EsE=ezn)h(LD=-dN#qWHCK0q&
zlBvK9JVVHhXqQ!AUP+~Af>=%<g$2=5We=gffOJ2M$Ip$n0&x@Yvt}w`5P=#tup%Kq
zaO5AH*)Q%`V{XpCl*AdpG8gWossrFKfPiduOA4K)L<wcP!=e`0w2enio@;eW*uaK%
zyDuaTb!u<+pu(G4$AHUt2QaU#y6ooA{5O&7Yv#z{66cC}`4QDFoOVmpY*h}#!NRna
z7>s2g?jW#_akkod6qimsrCZzeJK6KBcWrW{ZU8FJgFUwrN~Q{!aNpj51f2rJG*91f
zGT@YwFgdby`d-46Zf!Y~*R@9&&2XqOFfm<P8G>S0LZHQbkjouEq)howfMI*CerNH{
z)xN316uyQ(KyO{JcOuYkZw=RPK&)(?xi=bqfMS9<sf(Hs%Hl6V;zVnmY(H4vm`c`O
z6RS=TOT@IOuqXD*DL*ucyE1&wR;Z{pX79zKVNmB{j%?PNJ#&&(MW=J2?E%xuKLpN|
z=qI!KZ*sv*s_K-}a(Qvg3`=@L9W>4;E&PneYsmk3OVk7F%^O6KuG&IdVrAxryIHNr
z(!P8^Z5@f;qe%JxHX}Y})SJ^UYx&>rsAIINI1?@+<eO#OiRmsz&Gi#Jj%NOXL6yP4
zi3GbYCdg4riLKJOu!-k1meq-G15G=Yyw+l=+zPA=+cOSi4;YKJYy2DtuZmv<?adoL
zr^aIp2>AUNq*AWH8K+E8Rk|Sgd-k5z(wEAqro%*$X{YtlLxuaqR%LB4@D_r{g=O(i
z!E;vO0gnLD+fg+bS(BV#nO>9D-?h`rD=oy{oslM`|K@o>&vyT7Y@N~A;i&_%jfuGk
zP^s;Wde~$VsVCZcxhVo#exPz+Mbm|SPW#I7^$A7cnJMVV98ds!gnbR&6L-^ia_Fgn
zZizQia>#Fg4B=3EGifjq6;3M3m#G_Bd#H%9RD{f%`A!y?K1%|bOmAc8(jvd}-xDRA
z4BxN`evO|TpU57hFTEU&W79P&qJS3K^poWy{F*`n+2-eVeQ@q3u5)w}+NJ6&hR0zy
z%0H5G4?W^n`v~83e{3%AU}js0DF2{gS&J@w3UXxUG4J0mn;bu_uMES7W&n6m^#+#}
z8?VZeP?yn3<gxl-=_K=&FL7sIsc+ucPYbpSHYOT2JY^E5*A#}<3cb-$53v%E;mXPU
z#^g?uL6h#d@h-r|gbjJS(#zFuFsU-1qy_%VGxM_fwQN3YKv?AASkkS|{QzJmE1}5R
z3yDExQacvjZ&C?iEN7@UA`IuoV6DTjhjnj$PXGk_4TaGCYj}w_5JR)Ij5}0}Iu`yv
znRaQN00f4h`@;9uRc*k30v=5m!qw|NMbatV+d54t+MPm^@P0B3Rg<^v!;~2h5wX_~
zqCr}YzsJl+-A9AB<g^jcx`-@Hlpay_ZLd8DO*dplj4q`a5uLT~*-;LI?TOk*EafE6
zdljT#cwQ;phdw?F@p)u)2eZj-zEHQ6XiM6VL-sgAV)vXXqx;JmcRe%we`&Q;!f3aK
zi8bTWQ*lK7(Rx>z5P6CKQ$Vc00+Y0<pB(0hGiLND5QNSYRRy0E<ws~F2=+v9?!TXp
zEZlcM711};qr^aKyeI3h*s?y>+w)5>9LmL2q7G4%s8_}d2?yHd=Fit=X701*wnatD
z1&v$}b^2PZsg=u-m;>xBGOI)>V={;#k%zn)n-0f%jy@5pxN%0;p2c!&%w8w>#kh=y
zox5kz$s3NBb~_IJt>we$<LTtQsA{#6R`!!ra+edunAZdi&57Ll*BABaLEV>y>x)Sh
znC;Q52$&Iy)aHfXJsAyF@|ddKN-t{CLi0UR<~#zC?FZma8f~5Yx0V&>mUlIabJ8je
zPPmQ=O8t?cR#l4FCL0j^AeH3yJ10I=SgbzH#+R1Iy{R`|C~Uy2hJDcbV+u(b=DOJo
z8<@UBq6)OC|8znP?GST^vzDZt?lJI|$`~J2P5!34$A!3O?}n<z)tsUU48pxXEeuYP
zP#7t1=y^)xX`$PTY(|S#psEFZD$$j$4+4Q;MX5(-aBIfy#uu?#E?D#W<UNz3U~s8A
zP%hy6fX{QguLF|$FVQqtGtyEMwh?h`6h2~G0au#0`t1Un$+nFo{QXqw5o?eJSSrFU
zEY~Mxy7VA{N;q%7IH3+RAsy$u6|wY@ZR`LlRuE<4j?w2&qX;{93%Q9JyE?u&k{XSq
zEvL^+bWd>j$;be1r3)p5pxpeCVUjr5>B%!KjKY?b@Met4V8HQ@@rC+>{eSf|3tpJ;
z4&-lj5gkL(PX=3+IW)fjVnUH)r8Z(5`7dHF0WFZ0fqg7w-V%yCamRgwAGV?cU!-3X
zh=$pd;lb2Brly8O1uK7U$-N~WS0YARdnCwX&<h$FCv_>asI4GBF2aQHuVX#x#yX~m
zO0QP>OKjV3Z+Has=lS*PBr3nPn_WK&5DdMWVdg)62$W$-VZHXa<`AMBX^4RSG=X!Z
zf=uujTnBvN2yibK<W|~+`U0G=ezS*?)z#x(b1oi}aOWTpT_hDpw{iYwj=ih!i<;R!
zy6}wE^tHTxjhM^PWB(XJ&?7GrvuKe(AIk}8d_>V;24y~?AB`OFD_cVLmJi^?S~nR=
z9hRf|WqTjH{vgHG-o@_7NbU93<rbM`t3SYtYi3z<UZ6A_S_VvqxG4-c&|_^;=~*S3
zwKu-)jn?w2_gDx8V+12KmYDlUcAy8nVir5wpP>lT99D9mt(_018)v<yr0KWJ=@y98
zCGOd&LV|d)<`q1DAEF4G!?LJS%-v(7Y|5|L<esFL?T0?&W>H6aWgMTnG-aeCZLD1a
z_}5zzl}!jM^&@dJD8|i}bExxcg`lM1Y&Y+<RQ}~t^+giqQzC1_O-z<Y-)nXx2VBg3
z;z~Q@k^KL)y4;G|8N{$8Mxfg0n(s_TR==s=QLzLO{X-why~$lhrrl7qk8TG!L!zHw
zoRa5j%CxlQuk$NPPm3ERzm%aqF?(GlJP44NC1t7xtE#ky5|54<%p9B|sUi9Aky-Bm
zzIMan*Mc|58AMh5kNl>6O;rPp>z@)!Q-RkV=Sh^R3U$`%+R#!U<^!K%ZM*s#JjDI0
zPUw4)YQ{Rvt%C3rWR0TDur1oz*(`Zi{GDqtnc*Kr08^AHg^{s?fLtlNqsMiZNI=do
z!AM{W8f75_e%L;6Fi^=iooWnsH^)GmCc0(2!=9O3-MVq(1&vHx!s$^SVre*jC<z~E
zFi2)BwL+MluJ!na--hchL|>0+NfP<aYwfZ8nUa-b{XqUxtY3AD?HBqsiHy@>b|9kH
zLX*BsFi;+rY>PDG-|2gvwViC`W0X1GjW9HLhpH?&P$pWNp2lrrxLfjJJKm>^d-!-e
zGzd_ALDtwSIU%?QJ^E<LlNc<{5-F#RyQBRt^ybGTR?cJH3gxbnH!{!t%>~W76GjhH
zf}1FuD&+sN%f?dX|LcAI-<|xm>Hz*uY&aJ#9XPmAPIPmUiXJ6kC{juX?FB{278N|4
zhiJme<N+F}JmLg}5}(QEbM#2{vzd%-L~1mI^#U$b;s%X-xrKel1?tSE<FC3ycZvn>
zr%FUMs}ko4Oo<OqUk9pg!;vOL2bdg0^1FXsH66~aI}bC*?*r}=WZHYvIXP<oqLenF
z%l({n>SG)VUVWR#z!=h(FVdsav=v!OSn8}~<<`q?7(x(s%y918MOp2v18Aas78rj*
z2^V9s)nHm9DRwuhK1rbqmRz|ffOi=ON#SYsWj2mzp-h8LaFSt&l}>xeq=)yYU|_t!
z3HLH<c-Rs+J-hNDDw4cON6M7S+ees$d!AnoT1Q&@18bVc-YB>WlT(FhqyarW9KA9V
znx}DWrOTtmsygW0mJQ;L+nxgK**|P`>Ki3IQY8bGRW}$4G<ifxxxcJP?-8F`PQ4G^
zkwIil_(yeoclDCMn>CVTYY9x7JzL`;nkQKRhE5k_$rLFZ5<|1{?OEy$5ba;rr8KRb
zX1MPM&9hp)5;HIKp;4It7vcCF+|w1-Cp?ZSHuB%p&tUi*{|BAVjq}nm(LrWIdfiOI
zJUi%Pw*0wlx&7o`@MPOL9zV_y8qsI5cbQ@dZg#5;EBU><_hJ)!tZd8O>w_do+lL;N
zGhw(&W@FI7Yd|nsKTH~V@i9-m@rUy*dxzIzno!?Br>8QWtm<Ru5t6)Z+23L(uA_c#
zKLc~CD3n0bu@>+QP(bXhKJnpzbgjx6(xt-SB7|$dj&x2DuCt}czR}JqbTfFh(N%Fd
zkGQHV&pB|@_7N`gAz^z&T}+$LrK-~?U}EHb0_8-X7#u-}>ECrsW|3^}VE4O6h<Q=I
zlfia$IcXNP{}=2Dgqh4S5-4fS=0D1I#T^!YEkBnSR!17o6Eerk1RyAVU3{aLC;bZP
zjpcs}iYUiu@swP^tHsHWR*KQny3?8e4ny&Dp0-JDNyXPd<T7pFdeF|okAU_S?)tXC
z8$c#dI>CFe>B4~UDS$$UQ{!KH){e}W8Z(pwgZaOTCG3EtX6=wYR<gF*8u?U@E2sYX
z<vMD7gK6)$6TZY9BtIH(Wy$2NuHV%4<DBV*`rX}fzFXMdp&c)G?SBOTaAbqE;4Ti(
z0&By+c>LGIVPB<r(DnLr5~o!ugppy&R%s|9-v5Pue$}O!{M^uB-}rxWD#l2z9$gPb
zGEIp6$?X*%x<$V#=mY+qN$n@nD*V2AxDl3HXWDrc-c@$2o<J88EixnCLy9|9yMp@?
z`rh=r#CzY}TYvF$`F9+`=03IbHo@)g-kSoNj6Zo!OBa1AfD8q?%A%_glZRoSO1{Df
zt~1*ltKr7lZV$xMIXp+~g_377&@qX_)kv?=uapwNk&gmzEjB4nTOZCI0f|Y@My~d6
z(ANSrOy&--!396T^}sZGCcJcs&1&<6AzHEzyD79D&A7ud3LmwGVwXbhl~g@52J8-S
z1;A$7Em>}@Wbudcd!fOrj7-9KD~^E-4hG{A8@FLr0u|k-PTMzt|Ko|gQjNQl0IeDB
zbn&yxe*Xrthf|5t@+<voL4bc1L*&U5ZMkK4UiId59+7*dU#xtyqNOeJW9)fYG_EiE
z69kCWV$x%B5-YOsT7^k;XNU!UrV*UhtbSCuaI4<C?k(t`4Yajp8H5o>UzNjY7EZ8}
zMmN9PeQ_Q%oy|Ue4rMAg5e^=ePfI`XYhU#Uw^d52FG$WfFHb3DD!PqosdQ<H<KS2`
zR=1rEgi2knZb>dR6yEs8P`T{5fUySy`(IIFHx_D0^;S!>s83<V8Sx21UH*J;cT4e(
zE;F6XSH^n-u+r15CrG8axCKQ5zE8p>(0700D1w<ZC}i?irTnco19noEfvrSe0!!4N
zUQ6b@A<fBqIEib|>E`MV!%WJ7`|<qmP}(6Vi-;M#tapC;%f5-fHFsKwZiKX-QY&RN
zEAvM)XPev&zrJ=7<H&tB+x=Idmx%&XCp;{L1#2R`^t)UPcDm*YR3FkGJ$7gYGzfQ+
zC?Pp~qzcwW8aV>nOYe++WrbLCsi#l9!-}GT(v)|Nw1~<Qh74B)%dlRKpUUuA?`+L)
zOES$Fy1&+HM0xN2=GT3s)#*$j+R99?PsD_wy>A0Xo4D}k00*DrzO}chA?3N4u*Cn-
zmVk{MC7oUPL(3g@<O<^r&KyU`0T+Q4-H+kSPi<e+7J70170L+D;FzU8wIU=eu=6om
zR6}H;@5*L#p7^e|r@^QYi`aCL!-{cA^MVSq`|qnYhFAp&%Cy;f);m!Oy#^HcR&WZF
z9?0rKW(7B{8R&Hl3W2_!>wcBH6BJBkg%&YTHR+BA;07QWX_pRT?MCSDi=u{Rg$K^T
zhD#&d06~Wm1u#U;tA^K#+e!-164hB7u>)IxUQ{3$k2}<5<a&x>w{`jG+>`kliR!O0
zlX=Cg>teVV-xqC*OrBtmM+KD3t^JboGzm8z%refE0`<5c9(i)pjwfl}bi>K=+1|52
zX5VNy85KL@YSsIpnBGDU$qU@i$N_rdn#704YWDJQp&89rpkkxPu+lvqGGq~~uJciz
z(o=EVnW_H~?604QkB*qHBedtLJHH(@4Fvcu|4)=E&WbP7!*unaJzYPDQI_g<{~Y`A
zwGir4&1SRuctHV4tpN0t^PZr|iq0lwjyp97XB<3MTctKTc-E0RR0IS`@T!M%b)JPN
zxW}O)!X9@&>XK^?j=OJW-ts#$#N4JfOq<F-0%K7JnFx)IbtM|Puylysv)RP$H%T@-
zEa#-_n*N8s+@|>+8x?LDz<EPON;<qfxt9E$s8Kx^m&c9+N-O}E0!(9!3~HLwJ|)g2
zLvl99R@*v9SY+}PUTvj<W84LMpO#vg5YQaonn*e1(DVjxVCjZiB?Pj6QTNyPUcAs+
zVOdw5#11^zS>~rYTJ09qyhd{9P)a<TP80;zOXe%EeAJ2`)Nzl*qpo!>twA!p1A(VX
z6)7^XRE&7Eg$w+d5hALKSJMWg_M>5*1wD7f5`-7@UOW}*u|kA58F?<ld!E)<DSbj9
zY#il=zeB5iy&kj`UkggI-7r|?ER&ar#{W{DygxMI8N;jPBIWYyS2`seU8Hng_|QT<
zkb7=$xIj@pkjJGfP+$3RB_giAQBiR7jxzZYfa~1k_18=H)6tQlf*eKj8mjKLCepJc
zI{k!r9}tW=6wcaPIu~7vo9{0k;S5R0zi!t5poihgnBf|sdf<0IPW;h-?oPBmeU<bB
z^WX^kQ}wKjA0_>aJ#|fyVTcg!_E}n;SdRIU0auJt`tKEtPx1=!0Koer<(h798qa`G
zZS>*C;=J}Zj;1W3->rp!{~3I{m1s2Vs44Bj?qzYpd-O)<D_~QL59C<*o(M?o5r0{k
zg!gjDROVe{iwD+T*$WIx0&!QfbNwp*V_iL--}^OXqe4;iu=RdP1j{o7QLC^*rrvx#
z$0Q2OCw>V-j1<D(gu0)Oj=nywl*O0jr`1%=0OD|6S)l--I-fq8>a$3SP~Xt^tst0Z
zC9Y6fHq<Uwn@g?W#1AuG*naPlG*2tXH`ZL)G-f(d^a~z+e6$wq=%7jxEVSmTMSj4)
za$%~9XNz~y-eL2dsPyR6kq*94)d}zSqp6yx?0C8?Qt_d%V-saNE)aj^CBcezs%TA4
zxZ|r)yL*&DOidtrSo@cdPO1LArKa%Nwh=sQt#tTV^pA&W{$!U=YQPrPVbVTezN9Cm
z2ZnhOJs4fMFv3AIgfZWZSK8eXs^XWtcx&%KSc_g#AQ7Zg{m04X`h<oHe;=<^8h~*c
zjVXje3F<sy2pNk{rHFZ3iO5^}r(en8eA4~LUPb&Bs%VN}&vQQs%pySzf)hrRg`5Sr
z({1;|Me4~A+)mW77{mu3u#2f%n-v^^7ac9=5of>6tFda}u^VOv-Ph$YPPU!5dtLjl
zmk%Cp1uS)m5_tFD_+RBD2&hf)XU7*$!%06q^s6wpKh6#qv*vVBYHsd41MiyeT?p)&
z;hHuefsOwr$jNYFmVm6!p8{8d)%tWita)p2Z*f{cFB0XqBGW_Z+q+=SDiwezoXSNS
zD{?$cawa+{BQC|RpcUDi1XJEZxP?vQsF1S{^8o^u_+^z0PHi&~NS?5YSb~P(;yRv;
zQxToAv(t~17-4doNT>iennEGE6s~}SC$gULj_9sL_L)g6Wr%zP?^S$7;l$aMh6%yl
zE>xcBnu*gw<yN274HBecc#}vI4)o3g>92Y)Ea=WLSm;)S3QgY^wTOaI8HrQo5QMhb
zzLI&D3NY}S@c9_PwGe|q2{ExLPn+N7H)qL@w}UuID~O}?Cp_%Sl?Zp<o*zs{HEo*n
zR@C*m1-WM4D%g~%KB9wudn;z$X_NEw%uUy+>~;GkCX=!4**rbGs;5s#hEf`ao$5vl
z{Odg+biQl`0T#ffxw^e`3F}<SdE2-#-moh+B;7{oG+(9bY|p1<0`wtjQlkyQK;d=W
znq;N%rLa*+(_F=(-yZxd#@0gXwppRwa6WH9Fw~Oug>)IY**&yXSSMT#(+l<)t<zt~
zL!JbIK$i~g$fQ5Jdq0C8jej6?Typ-h?4NZJ4wv#ZOp8z<+z7p}@u-6A;a3wQ3Pwo-
z>DZ&gK65$2!8;BBskB#KrTS_$95<Aa0tMMt#BTPOpnC*OIf1t2rNaCsCv~s%fYoYF
zMFwgzX{qv6sl?QtL=uLRTo*`gyc<GtD<kX;?8CzvCVfNaOQ50>2cM(uUlY<8-b(G;
zX1m)rO4Woi<8}z+n8rv{uyZn*fX}mbyE<%84i)W`n@8bLbDPtfTi(R1+N=^f!%ozM
zab<=cC`dADCt0qXIfIJdqp}5ny`2+e*sVtd<G@>+O6=6?8I3~XJSl#sE)LXdjxf>e
ziPOWhu2=n9C47ee`40rcXV3DOuFEWPoRsZaI2Dy1f>0I?{N_PXrss)tCi7S-6wqH^
zku*jOvo!+_*9)`nlHq6K#V(#ag7>d(jS5sHW8T}P^j$q1M*e30n6-4oGB-L5!yxT#
zd!A(5cx*bUP(E;!y~1QGZ*#JLv%R|mXLhuLZH%X?T$@L2oBv;;=^Priay<gkYpM~-
zNzf56V@BsOxQcw3&;(Qq2P#u-?TqRK+g5!d#a^;*U4MK0)y@7KmbU2%s%-nalo3)+
zYikX=o^<Lb=G>6B9K#igIrj?#qF6AQu;sH*uIMA<@s2*4tOt=kej{56B>&_EB+CXO
zH3!4J)=mwuDq6|XTe*0Q4}h)ZyZm%^=~CrmGG0e0r4tKsY&TU^7n=q#gVQY~pQTmC
zC51*lWA!+|OrU+c_s&EKzudJF`0!oNeNai$O|C4z7fEQk>b0BZXUGiUUtHYof!JHu
z-04MoJUt}zEohbu=6@F_uzM)cFClpk82KscF{4&)YGTqhaRd-zh}<d^S=Cq-kOY#4
z5prBqjd9a5$aG?eN7CZ_1P>K`Y#d!j7O6IzDG4tn*@CV54F|f)l{NRAvVDz4!^ZmI
zD_IB}bkQm{W7RO0anceG)6yq?XU>Lb8UtwH#2M|GiOC$L$G!`sCnFj&l_0cBrz=a8
z9?a?6z6VuujhE{Gn68+%d2#=v+ZahlmYWg9h%1BESwZpZ1ao6cfIq;)lb!3+3M6xt
zMuCXYsADTxLmQk$36c5;BxO4EN;BIm+vc`bw+~k$L#7cQ?1r^wYQ-UL)6T?RFld9m
znjLnQ0o%Sd!V<i5PUfXYy8&c}1ZostWQ8015$etPMcQ`tn0E~|+6QD)kf7Ky-@qSr
zS5b$T*`X!mJq6qq+LX~3iUz|wvp1t&uf9?mI`j6W&yLYnA*D{9yTT-7Z#h77g`*!!
zkNl_^k+w_lKVT<;rrF6Y>vL;IlNz0j2(!%VC&xI<=A4&5$FIyJV^y6fI?^Ja%N${R
z+SfGo8uY?CvE2Kao#1e^`~0h4;d0n{F-L=Z;KD@CYBg`@0#THfdX{nZJS{Y1fMM4V
z=%!;C<yt28PHAo;gHW2D%ASn_u%d&Ps9=7`1U|W$yf5MO*#S@^JuH^{WnNbb5O?#j
zJw+$B1nVo*DSYYdy*gRlA3au@(ON3tX^%;y^jNx4Z3lPPtM25>x44d~x<7CXTHUY8
z<q3^n7G=?gB~!kp+SO@NBB{EEp%RvA+`UcoZG~-@s%k5&_l-#TaKRvE9v$co#MN^y
z*64;SG;i<{TjnpLIGp`;V7M2IA712Yn7MpTd(qs@B)CCDF(oY}fYfxns|5{UNWb}(
z)kr9$n3$MSAg7i1i@YNQm_*17QNJq0t7K=3J1r$%732}uzVWfl5*&<~LH=b3Tv}k|
zSFLZ5xU20jhW2So&>6Ma40tLHJvX_p7B^wBfxy=xZ4k<xZG$y!%-e%T*8d7NCr-r>
z@vT(#loQGNM0ilLhu%Cy?mj8kAqud(S!mg%Qq(-RG5n`wI{!&E0?oDc+WUR;K~-YJ
z7qsb_)3s@CccbCL&5yK}Jd8c}LRuO>+0y9vqdU8GRKz*Cb6LrfyQ8QRn0b${Ro%a?
z>xCdfL@@JLPcv!0*eVxCa4A^8;m$}h@(s(ag_Y66Eh@;IJfwgui=YlI1V{za(0H=d
zDPy`4+%<oZb@X?;=Ephm+E~OdU^NQO5nL6NN`_BeW<*&iknz9`<+83NtSsP<oxIA#
z9=X6s&4>|9H;D@dbpCqQn_P$Yca_^~XGw~R(wi}oFNRe7#Q1`?wdh;W#NV76811K)
z`qJ_1o1(`blXw)G9|=Z*9Sb;TW}d~SJYdf|K~oc{oR($NF@<t^KQRfCkgs(d6d9Y^
zw^emqB+Huu)9mj^pcYLZywhd%5?`5o&IR#r^hzvl{c=;7#&@3OcDDbO4Si%?c37N2
z{Q~|M&Ana$xMQSKX{QB(QZ5pArEI5cn0iNs!IvBdh>h2otlc1Nb-|*FAu_y)NtmDW
zD8tQC<Ne$2l*zQCCK4OIG(8vz!n!wZs}lvneMLZ?roUi@nAHKR5B|Sr!_5%<;_dN4
zhJ8m=&%4^NGL`)*K}l49?Dy1#t)=B1Fr8U;x|D6_`4Yo^U>n0&?gmCqC=d)ASt*}*
zGhOjxZ^R19Hmmk6Qx#|9PA=AF65u`zBE^3(D#A8!VQmr~{P;{#1NJ6fkQ)y`Z`5li
zle_gjvS(&=Upt6^dz3@SU~;acbwINt>7b>N&G3TDs!JQyBVDMPqyo?83mqPPf`s}K
z6uYFilQ793aQXS=)0vs_V<((EQdOdf@4;zdTADY7IFSv1SV}9n7n14ASlnZL7WAAp
zIw<L9dzA9rT5@X!Vg0d^&lj|SY`Z`+pQ0>etlN`>Py?LG6-3FBaMswL|7uN1gaI2c
z;_XqumxSkV@<v3WZNxx@vkyhYQZ#E!et+LB3k>=iB&@*|!@|;sogZn7Q#I*vli=}5
zJ}3veveSR-`8LWT+Ot|B{V)+v%<t>cpH(7quj(<{urG@2oRnHMRFD?A&)I5<P{3D?
zGr|sgybP`qSGc^_`CHurzuC53(Vp{OQ;yhx6kG`TkSVRhgg-ju`i#CmmX)UQo_i}c
z165w2<X>E>!H8#NBtEmaH7M34_Uw_|mOM{Ce{olp9?}>v&5$BZ9u(``%bvj|vDvSU
z3%c>TiXwrs(X-;jV4#hNECFo`kDH~f-yPvuwRcE~y&VUFM%sm=Od9uYQ3gdgg4A|F
z=bQ$KK67=fk0LvYn&*^tRP8p&kt<&`8R2G_$#*`<iI@d54Mel{-GSSAwx?2!`V0V$
zm_3=vzJ$7Rz=|SEfWCU-t0;A=au`9_2w?2yA3>7SWtgaOMy(J?(vU2+alAF=ol5PJ
zy*`eK`=ADjI0v2zJlMX~Y3%MQx0mU^m0l}~5imMMvw$ybRi{~8_pLo+;ClEQ8GC5x
zMshwTBLsU@yYr(c6aV<FP&C=g1R!tg^0*>a?<{Tq+2Hm$=}pJ=S|}eEgF2*N1(U)@
zlQ^wBq7HELd2g3KvMQyWb!iFR#h?EZx9kBcJ@GuXVl-}Ba9SKNh?s1YZkD`Zimh8n
zgnz}*r+r9@G}JpYG6n+C1u<#lu0=2-Fj8d@oGM(Ry;3kQF~f}O$M4Req?}me;s1FL
zy!y7kx^i^rc8)Vt3DFxkZY;$)DB$$q@ry;#lK6eWVj2GV2i-e!jtqzXJvpZ%i&L4x
z@&mNI>M^Nq8Jtj-$C5RwVg<N*AJp{!UCc0p76Wpm+d5zq2UxGypfEbfx#0T=9$_08
zHBcMw>e57PMeVreFO@PuP{O`B6~LsZ0u&cFHUd^l4q9~adlv1`xbMEla<TmF#q%nA
ze4vWl++n`@vqZIa{!n>eF?T@f5z36~7BB^bQ1quOdr;lFm0EbsjdyPM&SCwYuY<(4
zdt0W)m4{(YrW@`z4!Y)fY%d;?(GNouaCd(jHq105rNQ@RyKbqE)bA;cw{A&6>a=%1
zw+!mS(AH*hwhQ3MRx1fx(BJSGdG2+EPz1(4et$TZDwkCpRMuns<ahGwBi%YNK2lmu
zkPhY7+mY-Vi?~4A3YU!AUT|(9C;HiM<(6M4$0wIvqab-3Bt233sFC1FUz8c7pcTT}
zPpIAU7s7&eA%?@PG2za78kYmi?pzyec^K?J*%7kl<|+3H#DW~o$mK^y(J*{c3NDnZ
zs#FcM+M0{ElA%}mQ(j??z>gwEXl_z)L*tMFlUPwG{uDH@ajmmKF7OFacsn%`Du$T{
z;6jmJ8s)A83U4aU`QiaIy>DQua&6V^U-G{+XBEx6OzyM~J33#=W%86^ARL{a<g~@1
z90Qu;tg9;w?xbKLw3}TJ-L<-~v(p=59&W~UA_4^iWh=PS;t2hP=i|B(gL^^FT3MG4
z;j588gDtx9QwerUKzeCvbP@0j@aJB`G>_+ZKRR_u{xB+#RGN9cm)+g=gLR(~!9M3=
zTnx$iMLlu6wqtWIwGtG%jNr>oZcvP$q&cG1A>l)?^%eQ=t^k~5K-g813b(neZrX_Z
zxaIITr^omg_n<1WFRr4S2h}Fs#jArML~d+U3otH6phpo_@Pa#xgj57tETv-<1);|S
z=z1%;i1_yXctSaGM_f!q_?&u-Yyh%`7K;xVl2a|A0lwukWMGI$Mj@4S81knZAAWG<
zOGzip&(^5Wj;BQ9*(;FpLg|D9;j$(I7_={farRP8kU~r{^=qJlQ>l2PB`y1WmN(8X
z;i1gUtJj=d!mv|lWMnQuG?WHLKPhrv@t^N9H?$*rW6>#h)#84a0s1D_$kY54p5zFq
z#s=b`z+CwbyfB7<D(%YMk}nO>=~I@^z4P}tKh!9w)gQh9EdtCa_|)E788Ck;$Sg9f
z;;8v9+4N^Fn<}*;%Fgzoe+3R#isw0#q6c8@nJydynZ5z4bmm28-Kyq9&nU1&O{C#w
zM8ybAae!r{-^Gd+@IxW3cE;cOiD($_WswHc?0ORYBM)F$pzzCD5(WiGFFVPeAXf;?
z#sW_bjB9Y}9mcPJBrX?@xHNkz!{?r;Hkg7UaeI8TG0!OA(oq@3m58PLFfiOJH@!QA
zg>Uv`r0XYPEEtox`@Q*+xia;c!TV95mcOl_)pk1?CnNm=u)6sw6X^4ic<`O=+<YE-
z&^AT7R#X&r_}7)Ea2(O8C<>{-AA?ckhqCSd=b?ewxs^&SDDQnZe#+!A5}_1S(Za!H
znZm~m(IaZhdKs9bW>uidO2CAhQIJ@uS<(Bxaq7EoZXtr)IE%kD9)i*eBC}6hUJl^M
z!TmQ@W0RrFzhRy~r6Qu%N8I7FTg#`RjYpzLQPki0l?hkqkGvDpUg@^v^KI(KMGu(N
zROQtB&^{8aKA>na3KXup(B;JO2$#uaU=v>z@aXY3_y`ig>k<aoG-cP=9}PDiGtJgV
z6sh}>h=l10;AzCuL!ia#FFx}S4j>ap95S3gWWCu=obmLO$>r_`IEIfIW&O>oV^Y{*
z185p##so;qEYf;h;Ox@u#OE(8x!xnn;DPcYT3vs$HgMJ`GNI`+a%#bzN(DTf4p8G1
zLw1+YJ?}@5SJgL1a9Hb=a1olhOS;OpN@VWJ*!9KeFZ6+_Sd{6#tUen5>8jDgyY{fB
znK5Uj{W%6e%TWFZ83Hm6E+nsJJb&}^M<_H2uO21;lgy3BMi4_-Wm(M>rZE4g|5|K-
zdIYM2uQB*^>_;;8=AW(|?&fn*^Pv1D6PX<4$ud@v2;h$+U7rY9q$qNQNt-TrIxc<+
zR3q*>gn)Fcd}T9B3`|}%)n>}s>UAN#q*Hj322cA8-_`ps5_!H3{rj51U_spUm)*C=
zqFbnQ;_y&eeu4>eI^FaRl}{lVPW+N=DB_QSe3XJ?>2mD5bYhO?uis5enLVaf_()2r
zMFwszuusn%BCdid77?3G^}#_cLLMh`nLgD9yQP^9Lhp7Xz?k!i+vh%Z+NnF_BK><1
zn!!B@Y?<RkXP9)isa9yMOf?zpw9Yj&gPp;{JXCD?*iK5s`yvCv%+O7FYflpOM<~-N
zb@%N&8AG~UC>GYv`V$%5-dydbbF>wbXR9a%eboQPx--BIq&A#kNX*aVG^cNnO+~2=
z)xr=F{A8XDPo6I~Z05lHQhwOvxUN;ZD%0(eG`Jau0uIcwYFH;pgAS3j2b`g@7*d?k
zzIZgHH?M-0z8<VUvavYy|EZg%!j?P{`5l0ajlc2^&S!^tduaq|a^TX(iKi)uO*|5m
zi4&W<%mbVHk(2MQiC34+Jw9_2x+k&>a93dsM&aDd_~$s8`U=eb+=0bnz9)(6<nC)|
zDlc9iK%wiH0x<vGh~xWw<#PfLepi8YF<$t3<xd2dxiI8#K7!S05Ub~LdDZ|4q@FnU
zmXm8S9v-2p7RH+<R>wE2Vl|<ThhB|}z!z-QBwh<y@Q{a_(3+BTbgx`9N^9Vh9+L2p
ziiiDp{>7<*4}FB@Y9rCkxk%tO8I$@n=nKWK{d5=<>Ae>anBp5JSxV-Bb={p@tdfV6
z{LaFT(xfiY5->DD7jl<?*`~CH{;joUtymu<V#?|Rh*Qx}->Uxg0J7S=nDS_Lk`$RP
z3Xi0TrtrsNUkK>9AY{}eBe#^{Q?mW!K0G;Ljb#vYo<9bf)ZK_jG%gSWg|E}+dphmd
z`roZ_$q;m$%1pS2Dji9}wb`2CKix}<?bt>u;o>0r0gnE&ERWKk1!utrEzcpYy?)`i
zTI&~1@#j|{tuGdwhD(+telAB#<$?B?&EQ7jO)x&tKi~0I-$Gqo7)NUK^?Im=MPL3K
zP`;cJ%*9fX;tW@Yi5#hIb<Jej<q4x`TWk!&Di<LkZ-?KfbbiA1ck@vH1PhBFh`!JU
z2y)~zZml)LFn|KY1yw@!!hav6Ae)EGhQ75xDa4c%yBehc!K<2CpQ@&twECTg_{Fs{
zeFY?H^k!s{FE*urFSm8cIM1&NF8x;d>zWR9PkXoDRPrkTy;G1&0n5M1;nNHJo~~#l
z){GmOv8(9beI&?gSuO{gkLfcA_uoY(mhUFnmp_oeswuJuw-H*LSBs0Oe>lS!O;|kC
zb=z$tVi~9iqU9i+>_jJ&T4}QRT5La7usyA)bpV4}sq4m%H<16vM${1`l5Ukc_$tX8
zd3>>%!F22-(7;WtheMqKR?6pzEB$C$<SOFKBiH^oHJPse0w)DYw&M;P!!YaPZ3>E0
zOmjA^rne|sw^mQSa3hdKA^Popw!jjck25WZI<|;@sRDAOYStIeWYsw&OtA4S{u>JZ
zwLaRAMYqW)Mhm0u3T}cl)jR7DIYQBziKOLQT`CC|Y~5m7y4dG?TU%U4X6TjGTsd;K
zQ;Zop=^k9$Y;)4HRR037Dv#&n_~st7Lq1*}1|}<lpNL|som~)oO)&^!&|!glKpVBL
z828I=8I?@YP@=v5`VCwO?J@hFa>)m=P}`MFvOGFSFM9#+QZY>?sRswnSYH(*1%~}_
z(6pCTu5AF*jaVr|2eHF+at1_MNb`#f0}jxy>cs=YipQa!CpuNUPqy6hDmQ*<+Bna@
zR3VHDvt7FNv<-h8%t*Q0gYSIu2KJ#X|7S5n-%1N)5TM!h&%v><6t;;0J}JfX17ZOW
znXj#l<?wRD(W>0JJgO7G*!wuEN=Kg8pyg#^f3!&<nzSZge7NGDT>pYrab%T91F8%V
z`!RRHX=q^*jDO8`=#8Q10Fpf%1*=$(dAf-2#;8bX)J^zK+(Fv)KqFx?02|#plfn`I
z>Qg}t@F;MkB%UpD=k4|MgRI6T$@X=(sx=*9S>|VwyJRfo8*prG-df&Z!ywXa=nkiC
zdOlBX$ld=k<x3(|j;fB_*POUck}%<BBW@}$C+Kl){LET(K)M&RfgI$8j;B+lY3ekf
zg|tg%)_QlnD8t$FX~~B3QZs!`FbV6c;+%EUZmZDuMl3r20Cix9+>RYd8YvKSfEt86
z{m0YSuI!c|B^F9<%p7WCTka4;+Qqil5Cu%hd{w3%J>sw&pe$^-A%MaFBu0)`s;vGg
zUMRrKz1X?eM%k2HEnN58#dk?r0hFpzpfrlBBeEf&2X-Tc@<4(ksCxfB`rl6N_B-j%
zCS~=DKv3a;`&P_GB8woIKGtSn2(H|3q}`gb0)_0jt?Mt;M-Cn^9Xqqj2En&{BLeB%
zWT_W;rG9gRu0`q052u44@jBL7Ycbj~jt-^!V5nbOUb;y&W0U}A<joJECs34~S$2Z3
zezQZ&%~-2ezJtuliju!9qED!Xwx1qu0R^5mEl`$Ko<mLV`aNDWar>Je-hN^6OxxOf
zN6~+#N1{?g(&#HAibpjbQhf0X(Fzh`wNqa5Uz19mf6i|fw!6Z-*tkL*<;1)`h%vtW
zTdo=M>BWF9RO5^`Aki*@BLixG%3ZTk+yz*LofAm<=){i3St}0CXx|x*+v<LJiS}1A
zyw1t<-#yn@aX*gKXMzt?9{F+uNsQHv%Y_Pf8<Eb!xZJas^rL~aQ__?w*B-XPaN!GR
zaZc<|OND}lqS=&VX$npoEheIR1SufSX}Jvg{1vBgY*`IdlxWd^Qlt)V{azq#->Q8?
z5N3_SA`(e?%x39zU`O}UIF@n2?DIvVJFEEiW95yt_T9eIZjKI4B_%Zj|I>XuPiN^H
zF}bE=O!PX$rPh3e#z{n0p8_o+hGmnZR*FIGP|4l-+I7ppo$lM7kJ@3Y83Bk&o|)%D
zt@j6-%vp*Sk6i7-6+$9m(dUnzULrmf)-Q{@{SIn}d9@kmBt^29v!3h1toW3ZdGrP0
zh0xg1(Z!k<9dPL96=I}|%a5(L>>Zij_1)&mWgZT;X6yf-F}%}adDMg3#-KeUzny&Q
z4k#FeiGm!bPBl1B`p_B*4;zm=ni4KgDv6TIMb~~|ulvL<@T+$9BP4q6h26Q*8HJ`b
zs+l3YpXhFb0;sH>!S;z4va&b*(<1=ac?>s5z5LQ04rtO45fwi-iz6@|%5&VN@aXbi
z48&Dp@^33CgjV+?Zc@cunw$tn7qy7$FnSM-ak0Zr-UF-GIV}%waieY0I!#U+*<ae{
zk7jbvJHN)b*k{b89;Y$tNv5g0=pt`#pQp<dpz;*coE2X~r^)awOCP&;LKbk2IpWG(
zvf}wl$|@3rd6i4sCBKs)`A1Yt3@MM7Ar!&eU=!=xi?#1#7$=yllCnKEmOG-y1{d)3
z-z%!ft70G2kft1;IyVlBPjwoGo&s`fcKa?etG4g7MBu>xMIlhv2>$ukz&Q#b#Qzj0
zmx~GK44V*ZL^tQaaZ19qt)pc{vGTGTIF^QoQ`A!uSq7-$Xmcf&095=w6{OfuUq_|m
z=XhX=*YMN5u@QDg7iH&3K)i^;q10f_E0ADgxKlcwQoro{qY^1bG=^Z+A2vi-E_zjG
z(11F9s!)5|MSoQ$30YFb?(=BD-4WvfncDewqDmJXcYqDUVp>Wfc5mR#m#fAWfd}`w
z0p}7>7sV~lvzrm)IxMc|%Ujynep%M3Ko)L9O~?!Og^iivbLTM+g9(XB&PLmTk5dJC
zeDE~rvS8xXLJN+j{A_*=<xBAPgGIRB_t1F91%a=`<i1@JYAmviJNbq32-?Onp{+mO
zvL+%12D<o!4!De6mY7$HrTLUHu#qH^Y)rTJ5tb%@0XhX+OV(<v)gt{S1qV*ke{2m*
z9O$1^XJ*Bh5TKg6F9aU9!t8&z2%fhu%%Y^16w;*zy;Vm=`jkToWooB5_1~>$+?{61
zN|)#&Ec{LAKp9<6D?bHol?u<u+GRZ$py9pe?9>9uasQn~y86%kULm)CdH)Xk_|g-@
z5NB6S`OC|4nA^sl+laux>z^y%<^Bga-PtV}cN|YZmz1#$Da{2JTJy-OnAAYJOVK&_
zIB{J=o$|@}7w(n3ze9@PuboOK1EvkuwL9|(ADO%1bX0(!k3;iQ3Lo@R3@g?h29bHz
zF^vYd)M8M}W<tY?3H)elO0SC_PS+NFGI;qMAQD|TbND6`1)?OJVY^poO;5;*ldpuY
zQS|uvRYElp{1+bKWXpK6M`ificznxT6x5n1=~jgHbXbV)tp!Uit5oXGXhgJ>Lcbg9
zS?q+-MAsg#RZL*0WBHArsjbQt#L8}X0X>F$G{ck`vseVt{kf=ma(?rjz9xPQgL@|T
zkNN4Q$QeHWoO~ss9dclizZ=>8FA1bX7{eWy+o<ym_tMt^c*cocJn<wn*ktyy*<e#z
z`<@i80DQk%B0KyBTUY)j?~0TBBf-C5XBq<PLGjnXXE>Rr)gSBMrLlY5rXzqb<(`)b
zp`D4@b~2n)ar=geduk1Wfos4D2w;t650o9vN2`#aZXj)|$_f1nmyARb2!lTGsb(lF
zc2SQ{nKiQR!+_H0O1|_ClT7(ta;h#`ME$Dv!$<mI+k2~l${`|?Fpxb)WHP^I38mhL
zabAp3V<Yt7qWo@26(mAUVwF<*2|s#~6*x^u`F3<K&N7ozugPQ*O;g>TB{{yXa;q`?
zFpLX)r{#@n%P`XlUL(5AxKCyJ{1+wd7DU<F`X_xDGhFpr-V@T{8Ti>QyIUl#@(dW(
zGBd0)59Gk0Jpox(?qN*j(RM<E;g+(4vSTC?Zl$NXNLA1gG?`vkFj^>+AvU@ikQfU2
zNzyQ4;Moo*@1jn6^bqyj4>wf(YfgW-$jA;TZ2-Qxu8<3I{wd$4UnYYbUpDHPq*ftN
z5Dl09Nv<;cgkV9UjX8168>7Z1?m^0CrE=XA6o7E3){Lb?vbZL677ZRdT35s$bD}xE
zY$X9a^9cA7*K4Bwjyz?dCXG7wf}mlWa!%JxzDGLwNgbtz{#&m=XL0co){!w8_d&j5
zY?LZ}jxS=x`>-`X_Rw@*5NC(<ailZfjq*+iT}=j?yNv3Wo<l>VK_Z2P<Y44Sm0;eB
zI;6<qwuh>2>Z^{dtpjrm{_z7JPKkc6bH7KytO!9wO4@wvY}hG4uqzRyT-wh@ub#4W
zn3paSZF?iL3qV(%7ne(>5NCP9ctzy|7mA9tccVhuV!d=P>Jqg+B?*c97GJWyQxuvP
zZPC_F6{f)vCseP3sJ?=myOs7p7$7bOpN@(w{$5|rmQd|J-8tl>V1W+<h>d;D$&`&}
z%@W=AM*ODrltFH~Rsf%EPK>ia?Eyo<m(rGZRaDiHnLjZAh1p!i43sBstG)c4!d2;?
zHCmO!CR~tVc_j6k6*$YnV#oqcSCx}$;^%WQo7%MMvu$UED~qz{tqUOJMx){etxr9&
z@e61-?7Y<*>l&9ZZU5Mjs`{C5xt*EWUOQba!d3+8M7PKa%jxyzPbOL>l}mW3e4I0)
z-g}2mQ%sNBKN~rlDT*scR|qURhFvKw`tP7<qeZqSeRTMA;g8e~#O;Mj%>3x{eNCGD
zmtsA%K3@sffRuXhCKYi>C*&YdC|^;;Z-pUPoW&XOsA2L#)68HV(w?WA{ldr=^{VdX
z>}_5{-anhU$B}77vVdQl)l1}+l@P^+e;IE6Sjv-MI`}I4;VkwADukwfh7eHP*6W}m
zoX9=@g_nj`Z&rkmwVuz(ECnrSVB+F*XKYf5fUeoJ7Hf3RlfLXufmg|ioNov;V`Q>3
zZc!(VAw(-#zt1nC@rUp2_w%t!3*y;JEB$-C=9J)}^KkiVXPL$!O1@S(hgul3)S=7d
zEcNy6@fP@?2#nsy+E?t4W$)k`n%J7(IvtyX*jZces75o()4sN9qE{B``siSJNFYi)
zSX<mbgwroS#ds2gr*TO?uAk5|Bny%)3k}NhY-&@JlL6nJv!sL_P<^EO-v73(TNlxq
zu?OA^f-~`ks>tp>V=C6AMY3c;cTG|iTQSx=X1YM=RpPn*1FA=_&z2BDvcdQ{7Pb@N
zm=86M5o?IPy={tD=OfsGOp&S?!F?G9(s5W`^lWt~Vsv<wx*83>TgLxd$rV@V#INlS
zC|8kmVo57Yd#e21x$cPZbmo*1r85>-L3pIT!<MU>-jUFMQ7H3x*o91+x1mA71CPW?
z@6wfW8JEqc7H2@x{@*7O#RWZ>QsJ^mf!jpW7~gw0J47!#NW#`w`<w+FM|LMQj=`Ml
zftHHHpxSGrM{94lIt>&HE1h7W&X(?bxeoJEmjfS-4bvD7Gn$dE^x4IAB1)FVrkROP
zF{FL-&l;k#hxbt6(>LKVEU_M{AO$~v|I0;{hO2Yt&DGbDwLiI6shxl7698R`8bf^o
zEif~}FB{ViYi!0^>O<;xG}1V9a8wfOM!?`kzx$rK&H&VXriKvkJ{dPuG>iH6{8YJf
zHUrTJuc<y3I;UNbqI%drGAiy6Xg|dd?l%mlAe&IRCWygbfQ1rf8sx&N>YWuNLZzvw
zre&V&fYx#hm^V0w<bTHFVDiJ_Rpq9y$Y_?GpH)_2<mHEdpkqAEdNYPxz<sx<dCa4s
z;b^0&3@(I=xgFEf0*n|`P9%>Ly(0N5`rB}^BOrIx+_V<mz@>UQBbW&+Fbf}&gsos+
zYG33_-_)3#DAi4f{mZP3zs<R<P<+9TgcXq1QLQ)ifBo3sj~J5&`@k(VzQwo-^Bmi5
zLlC7924dsBKK;2}3e@ZX8M@R?^;S$v<ItCBSb)#Vx3=lP<98RHyu@uXB*@}NY0gtf
z2=lWm>|FhB0gIbpp#2LNPS%<Ke%+T&&u2=NFqJj3;(JXm1=s$*OGf7~6)onyHWxC{
zxOV(Ve+6;8x}>$Bvt=@dKSvYa5LY1mCpZqfm@MfmVWP)xPG)&gf1xZsekaN8t;G*9
zSwG)fQ8XE#My_oTAq@;%Bhm@x2~*`*zSRrk6JFotxReoe8ist_sGqOYLRdVAws)rY
zDIr&e)8|zcEuTd472q6Vwy6P?U=ylI5OHdalPO(`s@GD^A3297-**|1j@vD`=<x$&
zo{*kh<<!2Ac?Fm$1GiiAeYs_HYhyoD-d2NB`8V1<!;>ykpF01xx`XZb`EoTGbkkfn
zIVa<yrOn?bAy{}2nG+DbL;Vkx>$2tJ@@6lBQ^Q7prM^oT@mJ3JX2JU5{Ebzn%1>fZ
z)~JF?QjJfwxwf=lX}@XtWoX54Gd!nT3x9ePnz?y6N<TV>?P|%HCtll_&V<aq`e#X!
z+0w@AEnsJo;36S<-J-Dbt<SR^Z0Hr=4jbUd&t<fLCQ3%dNV^7_i2n6$8+%0sn4NfQ
z>%n$qrr`7N^Zz$szUffUSx|GvxfBPs#<}E4>#T=oX=~NlG^|2#F~!|U$SngU_GZ9*
z`yPg;!YG+ao=be7gOV#47kh3i8A9J={4y+fjtY+BbazX<ND6h$INwHON3518%?0W2
z$%VHGrNVQ8COCpf=Z3eDEwcv9ak4r!kcFzc+s`R`NIB_xop?`2o{DxPJc!;F7qiWY
zLx)_8K*Qt{*10%@Fjg!RsxnZsoT7JUx>0M@g_F8yZQe{k%an1DNlA0oLFpYcsK_9~
zi{OZ)M21ZLOZss(K@|sNQ=Y&_Q5{uu;7aTVZP_L|w4u*nt)Wl{K$%IA^Fht&l^>RI
zg>NiR{HEgR_2oPT92XFxt+eOz@;mE7^baWiZw*kWhQh?=9c4cCfxAI#msc+;UCRL`
z@rpKJWtu~bWV;M0#o3fswVtFqc6snA&DQB(_(wx}5}`3CYNyxi23`aF5K)t@md}!J
z>S-_LpYFnL2T=ce>}zE}j%Y{I`El<b^~%6~hxGF#>R^AErDi?&SKSN2sveqGks+qz
zg=nR6>!)B)(YN&Waz=89gmN)WsDl$RPe$2mX%70wO1JpnE2)foV7*mx7gO%tDDYB7
z!R^Vo=ydbZTqB{Rf(fnk3M@NA4Jb^zSm=j4RnF)BxmEjac)<s<U&<PCRbSjsk>005
zf*&h81gH!_HNPz2O5ZswdORv1l6buzV7dk$?(=42b?jqV><%0VhLd|qb@K$y`TrV5
z=pQ5A)3EBMBl|4@FzfGPe4DCWfjW8wqWBB0q3P2pteeuJ?ycvwLm?A1B8xl27*<#M
zQi&v(Lbr!%)n5(eW$86S9Uh66>m!SWaR`_7`~PsJ8}K*4wA~N>AaHyqD!jfmyOV<D
zv_&AIQcyrMxB9bm5KyNE5x{N=y+WDqxX$MWX`upIB&h<nu5(5Ch;;AVSbz|)(2h^v
z@Gv5yK5M3OT{l)FhfnQIcV20kYB5J=C!;xdgG9wf%wN268TRpbl!6mE7MHkluHrK0
z)#+A4PS#nuQ+Q<{hoMUXmrd*}=rGC{1D)o3Cf0sGnM`gVoP`wDJS07@HdM##N*+-d
zjvTI-7^7;<3I;nwG|JodA5D8TFC_srn$PjTe4KuxN{bY2N2~r;vr85dUHuZCFRfp#
zzTSdC>X`~f(Pax8Z$%$8uq5m1p5vq&rDtEGVlr5Y>H0!lOsVx@>cq?|o&RcU>Ij%5
z2&xhP2FdeH@{lDoJjitJODVLbeDcGnUd8$x><sW05Lt!JSHHGeP*wva4d5E#esoVc
zraTb1*pXuGJH~1#Oh5lN<}lCW)HK9B4s&`C_8~Uynyc2u@8Gjfx@_KHb`h0dU3!W`
zkr8w^j3uX|As!+<HA~)OQnZ1><A16FT{y3Pt1uq^8yy(7^z+ZfQD^v-R=JtgOl6=1
zI4~XGKhQFkhLJ@}-J$lt%1h`9nf-fq6Fo0b=bl)qu3~2hK!0+<$qK&Cm73&dn8Gis
z`>XUvcsf=#eK^?;-HAiAppTjagqi%+;#rc?No}$2WmPlZ0#e89`UDnPUnYY50CjI8
zE=NYp$#NePKLb=rCR_E`oTfn5<D_ATBc`0?db;=2VH2)8!pJ%5Shxl4WU8B%J`tmk
zMPX@0du}R$-7NLQ*k3J-DTZBdIG!*rFJ6kY2HLWzEQDQT8J_}0Q#fMXp^|77ql)go
zV*|Fx0+5vyhVEZ|QmF68LwL(cv9FEE%wyne#N7SxPatDroyXO(+N9HzUo!RdUn(R&
zc`JZ%paF#j<aN?)HF>k+A&$W25nNs)hg>kd{rd-hPA|KB#dG{wtf9cH$tRJSRG&p1
zosN9Xd2PZg4=_k7_WNGR1vV)rAb_FPki_f7ilMtSA>4alHhUzARyl0Jd*Dw#ki6>|
z9_p6Hrw8fxM-Y@xQnH&a2!`D|FQ!XdUz~7jShwG5f^)0y{1&}~&b4$Q)-%K{nkGgT
zDfdz(<_ig;E-U{hwW?i1fb=@3!IHnnB%K4i(-Mw<)u9)ztS^s92ws!OE@<X#rcB_U
z-+u@|h{hE?iSVQAOIcP`D8qw6q13%nZzIR+NLtQeVXS0}51x<#x<WGA25isdui7#j
z<dRa1okNf)z>-DVwr$(5ZQHhO+qP}n?$@?$+qV9jh#xVVS<Egs6*p>Cl^HkB&8#d=
z2uuh0Ft*>D&#EshP4Ycwg33M}$d&#X^@}MEGw_&)3CA0Dm{pRHls7Xvs3)4CW)z9p
z6eb8f_7Bs>`wO&L-qbx*nsz8W^UHS4t#Mwg@uao0=(Y?N<eEwY+ob~Qp#RFF`Y^qR
zIA2U#cjF<UI;}wodVu7f7sJWrgeN(Ie{!<2L3=(F)4acSv5cIY*sLN7e0`yEGt3;Z
zOV~WCHh+;RkgtLoRd6;_Vg~A>l(`lVuMnK6Qc%u-ZuHSn(;fU9d$@QM@txB~xjFRj
z-HlYaqkpoXee%;Y;7L)V!QtjC@t>U{$m$-zbr8Kd*vlxJj?(;$U9{7yThWuvy^`aB
z@n#7U74oBSXV5@IE~q{(Y<AQJ=5q>Gv3G3RT~EHGXXrocHUNvNEOi84uu2Efxpi)n
zXbY;cy5S``fEHoGYbAs}r_C<3cRyFSJMx-KPENI^2O~I8!f0YRUN0uR4QQg_%TN6m
zCKT~6SlD*gvvQH3ux{r=Z=6l-9&RsdosC`*1{G-a(;P@@OAkpUC1%n$-i*yPoKSn8
zwif!gzP$RaGcMf9k0X#jZpXMan^Q}_OFP$#zqrE9uW*&5Rz-n6-SGmku1=aHylNGd
zOC97z3(JIzahWAgINt2`jfIJ^ENKs{pcSIAcqO`7Q!t#0zpQSBkL#tB2&5uP*oEd9
zk66QRx!**UxIz;D{g;aL)36x=P!&o-7EEo|Jhn03tF+@h6Jy&w$Mvq9^jaTySMt|D
z`sNc31}|!pRZYcMCQw<?FBh1J`hxv_@tf{y@yYu~b4-y9wx+ZEj6%iVua9!>$u<}N
zjoJXvgJo12vqUZd9f-@~oFb6NeOam3iPGGGu_-Pz6lCWI+0ZKs7Nkz6`vO1sRH|`N
zI<Cy&bF&|OL1w0+rMQgq6Ke~ms}2=#8F=C7<Aeg|?F9j^B;-m_1yV8nlL2jY!kVKs
zUMK3cfz6eqy^ywo0J0lxe!1r%l_9nk8yG^CVY#X@15Fsre8n7e2_;o!U;3<ea`-t!
zCh5*ACIGl<hP_j^qu0K>r!Y^9fnZ*#JA!-+*SkgEKWnpRV>PqWuF+ze5IK!BzItvl
z7PHI|+uRX)KWVt7wIkxRY*EC#{Su1@t`Iq_I3e|nZ)l;vT31!-Hojwvo1mNQd1D5d
zljZLCsgE<3DixexQxI~l+`i*#6C*6w+;%JOhU9A3ykIh{gm+44mKA{~7fl@iyPcsN
zg$b(k{yx9q<-Frd`f-skFOXjOaG(xNw@GLRDF`=Hymksq-oXa3Rq~LPt%%kw+#;Zv
zowqwC9<<<&_k_Z`v>3+z5N(tAAYdaQ+QAU{R3-(^bgm2sWI;Gg-WAVj)YTjBwvwmv
z3ZgASp+|fq^(K$Z&`?V0<WDfs@(nj@zwNa2`sf+c3V49JI1USxhi{zwt-=@Mw9HnB
z$*p1}F6OtW>F8YWrPOJO&PBu!Cz3+{c(hk4^keai*iW$lGCMz0Z%+cdFMG2b6D0nO
zzz;*IQH^q{G`OV1x}%n{r=AJ|WFds>kZfd63~Op7olUsopUkm>isCoWE_=ce*h)o(
zH4Iu0&rt6nyqemU42TV1t2;_#=C{{(-TWeV6iIUl92I)3Xx(Kn{|BdJOAbrON|Aa|
zW^v5ja|vN`oJRO_yqh*G4bi+VHF4Ro$a^wQ-9h3@ul!nX$o7W1yVW00J}kBl8^Gmt
z5h=g?Ib7d|^nIu*@<xhi$8s;ox7hJ^ep@d&JG;rGiv7FCrV6L=AFVapl+mGFk417U
zcc2b7?b&ik-pBpq>oWi*?fZsYXDCXr=|>Tg;hKD#kkeAKXimKapB|I!6r||(n^DL<
z^qNCN+~<{UaEL3)()1K@e7?|LRfq_o=N-tBr?vtjb)MJr6S6wjQ5?46lOoPIlPVs?
z52Vx(*t5m9)#1idTyk6-JEN?XhXX#=yEn@$60ho8XGz#U%>$?yq@?%l1)T$Up6smH
zZSgAGlU(X@S*imUTWEF3a9`igEqF!+4e-#sAF#^v@vG>hN0EPA1GPy4W7p1)B5e0&
zUB5L5@!)&F2Czxc2-eP<Wntz$SdLpp_QlCnL7V!Ko{*L$ry5KhI6>7Q>?cylGp$lE
zj3l4+S5H5#j)6${VGc0cRp@$v-@9ZQ-QPyGR`Vsnpf|yN?9Gx?+m*(0dp(}kx|u;?
zG?^L9uU9&c=1uLIF`k0{io?+Z`eC50$qRJ|l>a`Xh!Du}hi+-D)3WWs+?{8`Q=}o2
z9Pqwr8tQ!6NS_N+^3ZJ9?d~)9f1_^?eFu)_g$wn71z5q~Ph!srzj9R8f$Pij$DM%Z
zVum3#ridAyd*uJ6O8v>7Jn-SbE>W^Os?eA^DWL6f496^oC(Vt-{lhxg;NFZo`D_!V
zKY?yPJ)#d^<jK`VAs!lS*DL``Qu?D4jpurZ=Wbl~^3j@MG0wq5lBVkV>NqQ5Th}mI
zH!-f)!M5p~A05kDOJQ+t(np%^3^XxFWKO^sygxQ+il^h%a(TijpDs4(GpU%)Z&}RN
zb!cCwpQ~LDl&v0uFCorE_Q?lWzr`d_cOAXhA%hW^?^p|lQ1i5Gt2BI`nw4(C+m|;E
zTB-bfE9U;y_+-`M%4k7JTdiOajT+?-uDm6wHUUUaP%*3Rf&v9Z==;StMz*O2rb?J*
z$(9L>k6U3(<HY9fOY@HAd+|y<Q}Zv=so4xk#r$-ypTHvgww+gq{0%(|vv`(WykMOG
zv=1yL+thLQEj!8*AYj`rRX$R4N_Jo(44S_Or|K6Gy0M$<fXSqm+G+`!_*B2#rhxDx
z1d^BI$<eSM9QuILZjF4u@Y^zBjRn^O80oa9*O>QmA3&Pm`amvm6}Ea8o6;vyPK(pa
z&0*GMdrEX(()7B9<^8A!ekZitNgBjiD1$rVlKdLD8;%ERcdDUqC>u<{1t%Z7cAD&)
z1tG+;;iT#;yK3?vIrJWRX2Pm-wR8diM~pUx-GP;9rJEp7k`+-}%*DAYYoHzi*byu6
zD`Ly6MXjKfCOv1_kY3Mv@`tzxJb8jhVI~cbflAblj_Vhp@gK0Pw<eamKyS&xPCr3k
zHlHn^I<`vASWwspU;i3jqjq)_^@hIQlQPUO8s)LarnmAQ<lG&r#Wz(o2BA$i{By7h
zbLp7%Lqu!E7HVy`4e)X86(|^x*<yDJ9`LIK{<*9LhsBp5fD};(?YQ8kY&Yx-m@_}l
zHmQ{Wq|YrtRyO>uaCQdQ`y|ftB{T=f{GFM1{`y7nuY~I15Unl2JrR<l%f?}{tflxE
zvr=V&cD9<c$1jFw%}Xw8OpuQ(dE}?1{|nh+%JUMBac`Y&OKvJWZ2ssxIQ7vzXvMAX
ziU=C$f!I4>gkwmyBDyw0BoKQh=z`4r(E8*|`A6g+q)L&G%-bfN@H#o4Z(w0hRNNse
zKt5rP6Ixu1vEnBr0qax<$oD=B+F;wpg%q_XcPR7h3!Bvs;JEX)1xV(Ekj-Eu-4<Cv
z#sCrA+JmF7lFnLjVggm+T6=W=kwd$|(u;5uWiCl+Yf`!gy{%N5I}kyo3??=xRah(q
zVxT!%Jx@+n2+LBsF_P8Pl&}rfZerV~fz+^xo@Icw$BUpO6Eqs%c6mkG5Uwn2Ks5Cv
zt1%792=rlm+EeWWEfT}=rV*#~<BTTt_1mIg75$FdW+l+zUMVo7B3yQ9(sT7`o^|5+
zySwEqsh~T~Z${OqW&9)K@yfySKsW8b-(1ApL@lW|#|(Tl6Y*EMb(z49+jiGnX^>OJ
zDSPowNCGGOnTW(BczA!qO|7HjdE<pqSb2juhy2yI>Rv^Wd2+*Z(p~4k*4aQGO>ntb
z!5hjOZt<}$u0N0fuV`wK<#K*h#VE!Ph!JV|NHbrfS4i51n(%~{lrJ+_LIbfgOL{qj
z*pR{b7R(jg)|Qw?=u|tFCp<tFG$_#3Xq$~qV00hc8Neq3C+v*KyzfEZqVV}olzn({
zV<0b3;l`*5k}*mDI#OAEE?Q}117BO3&&TN(V#<-Z4uq9J_K&fbpy3t3*^A;-paB-b
zYaZRHtrv`PL67=XOS55P&CDB<#m6)dsqjEe;#oTtK<rF0k%fds$-_`KM<;TX#CiNr
zPm)$oe}g`aN>`U6!^S=pX5G-NstAC6-CyA$oOv}HY83NOW*$g!)LiZ%F7kflQMkEN
zMNG&aV{c}U#%!I+;{ZXS?h6~Z@~!n~MlbaUr{S$PH}t%jhl149uOq<k9S7TMf5alB
zNXwu1?fpQ!Na8?m$nCz2R75i&=hFRJu--GdqC3mQySV%`cf#wy66yVjYMf)WG+@c3
z-fRVP>$PjjluyFMW)BF*R6}sYcPY!rs_2Q2sY+dIoNhGjs5Tx(93#WuF`(f@8R6N5
ze(mDa$@3mWteW#hYjkZ|44Iucjy|4>GOTIF%L0*cWJnJ6H`&$&2$NS=YgumwzO!~t
z?<}a*lh=&LjDd_KTrrvQ6<2{OcgjS10)c(*>k8gwDF;7I(hD>Pv0mw%Zx%8xki<$e
zb12BO=V*Rv6Y`9YSR+$?{Xk*MoL8#)Wc=}f*X3(jpP!*u0WJ;P>eo}}5GM?mo--o8
z_bv_-5UG(JjdSUNzML2-O1H3o@ea<2T%y&)9?@`Blz`9n#(TbX=%;`Wdzb**kvJqQ
zK%rtdWpDHG$X3xE_)g{nlJ&c+c8iF~02%IsA<ik~$fNn}OwFnYc&1b94oHRHeRV8i
zyBF3%f-{qLi-4^P8G2Q|@cTZRX5huB;~B<6p+&DuTM~*Be!airN>ga~+scJ0utIiz
zZQJ06kD^s!>e~f8shfgdba$*GuEmsW`;_vNF3@JN`upr%x_m%~F5^*IEYN>NjL1^S
zqv`r~8nB>*m`?;q+SV*bazxj9!6%w-pxlssF%V7!&vu1X(!{bycRye&zR{(?WzGPW
zr8@Fu=Cdv388>aWK%g}MG;l?2NvxXckhkjZP6DD$im&|7dY&Z0PgXn~Bh_{&<z_4Z
z<k=D<vnMN{n#oAG+}<S~lK#rJnroOmC1UX*9cmoz&MFy<!&|tId*)rKeEDeLrg$;M
z`2QZ?+TJ=&hqoftJ-`~wn)udK(vvMMb;+@3>H{~*dko(+&KsYF|M7i@UcSBWK*(S(
zNuyhAm~NR>usPOg|67(u{BKBGbqa=cN_j_xEe#UpxCIOO1d}v5n#l$V?8}8*1GLkg
zGjQGL7U`WwSk$gf;=K05$D(u7=4BUZKDUKVNTi@T)gd|kK5k4Z9#;)Lvn|gM&fpIz
zf5PaGhESXqmy^n}$%{nkTF?li?(%nQJp#N4PVm!Y=I?e4Sgo7K1gQQ^HAmIGg{nJo
z;d8e{>V{^x4e-jn_uSFpx0s9EUcVd0*{0feZOukR50qZaT=sK>3AO&5CbLq4G>Nk4
zbM7Z6CR;Ai9>2IIQ9|ZZaW|1>`9a@9RE(7nvX(H_HEg{<#XGPg9V<ce`JCvQ(cDJ8
z{s{!*V!ariCa(}*Yur5{<j=PSx7oFBjHB?Jn-iVt=Vn&1A0LK>geI8r*ivg-Dq=2l
zH;5RizZ?mGY9)1%z+S~?dcYrwsunE5(5X)$O-l}lw6yiOWYxQ4ZxrLzsB^V;#}G{o
zB=`>UX3*6&i^L=Ci^uk(<m9<h<%T?Q_v8=;%27i6VEwvH=d^G$uJZ|#;46IF5s~kV
zNn^GA@qSn!Py|+!>8Zu{oB4{d=&qU79DSxzik`Dz=KO0F@z5CJi-IA_CR5*R)hB;?
zw<@9W-a7@V6U({G9JRwF4fLu`y=nrHhxt+)byMNmqmmUI7?uH57&F@NP|P)S%8}75
z{G+HY`K&UK9)L3^hDE&kzf5x)@Zwfe)WlzK)!G0xJ1@1H@8b3`1n8iJvx<^I8;$Ln
zBJ;>4x;HU2lfPpuPL9>l{QdEU*e}T|0jx3C!{DyhwzFYa=nMqyg#~0OyWtqu7;TnU
z*>rVbMJ%H3APu<%>J>x8=WC7<&bHq7N@V*bX-g~IP2YdAe-qa!IP>({ed4A0+Y=|D
ztN@?NBIXLAP8v29NoA`+*$!7hgtrQXTEDY3(HjvgtOUc>ER+HU{sEJEA4-vfw;?rk
zw4A9gZEE5Ns$G{VY?0=q-#)A&$g}OETdyp)o569SEx8DLtMmZ)beKh{2_*n0UBj{#
zkT`a@&gk0^Y)P9EDeFMhrh#xhG|KuZ$0WY}GETRxTz9Zjy$ROBgde+VUp)ZVO!95h
zLSa&lEiK;U;)BA-8>xf8mxq$x)Pc|KAbQM|V>PV8bh)A(AtD_(3SBS~%10(l8bng4
znsil?{_)-CfKf{z8%tCC)Kx_P#G$5HKR1j|tlgzKt`fPm9j$nXWK`i4kq#o7MnS^N
zQM<tHoo#lr3zOP^1ox@1iq3sc!X)!gYhV@Wm>x90*8$WNFBtP7XyM#+XNVo5KNQ4t
z@iG-9)<2aKa2=g)5>d&UUK^_Acokt{mzNS<Dn`Youep%$0o?}F(E61!l&elpLzc!D
zD!xsgGP4JO{?XtN`=Oo4T1*#1FWk;?^o{kI()5ngBaL7|^U~IPV}nwk{KQS_uXzAk
zgMV;7SpPBHM-Ia`idb|XSFwG{f$+cD>Kp9fILUieZcLNY16tN^wMHxNruX8}%3-!i
zmw+QF*rV5z;gr5KyTQ9sqIxk)sNO(!lUnyuU>AwF+<tYQ+*HOi$a&DGh4!W(tV`y7
zgZbTUX{JM}LLc9PPp1>Hje^n~+inS?P;aO}dyx6th|Y4Op{(r#XQo^u&&w+^TlcRY
z?RPDd`_{es=o?(|_*1c`4g|MLn(BSnNV)%SUm~A{(n~C68!Bf)=eCzNOv{+Y=n|-Y
zUrV57^kQMeBF%GH#&iNgi&g7|$48(%W6yIpzyG2${icL=C>P7a!2l{Re^io3+o@^q
z;ImSt&j5j~7D6U=%=&b)rh4=6Y-|ja_F$Ao4gSlI4yU#+D#`f$;iMV)Qb0iv=Dd`k
zh=Tf8DAh$QR*jLY4uX{7@oQZL`(lzKrY<<4X^|M|Jfe&tZ^_&HuV5Zk<QwKHP)BA4
z2EZs|*iLKsUJfx@F~+XF$Y(+_o0I@iAx3xWiJ!4`nQY*QP`s^&7)z<w!*i|2<Ho|C
zKfHNbF6JsK1e_mm!6b;?Yb>yx7&r62{bNZNELCC6PJUv1{f@8FR&Y>RVbv=x@H}RV
zL~@$5lt>Cu0s#)w-MvtRH87*nl8ZJ$F?ucq)HdvzB9w+3*-FRMhIiYgZRVrBqj{Ry
z{F2SwMkce3K^(TX6}hrJ?OkY{gF(#eKZA%`3zf<4q8T0+@u=yF+ZXn@Pk4ZMvTDe%
z`p?kRurV@-ZPKw2q<1w~>QBh#liu14f#S?0c=Jp3car*oP~D&>b=%~)@an$yqMZ+d
zDI+Kn6D~(LEA&dwf;$U#U$UGBs(4Ph6B~JJy`J5EF@=yL-Qd0FjqnDtR?RMlwQvjC
z6aZPD&}@cXVL`A1(EZvJ$(p!K`S&Fpd-QPeS0!D|AO)o5JL8AOsJ>7=%es}mn8`d&
zA}FR2$-c01kRNF$#t)MVF5BM$cICniKClJz<O%Y2kD+%CD}*AHAXWPepC07~*dD=F
zJS_m^i(M4M7J>PEjphwCQf4bfHarumo4Uu6Ae}FYFX|U0Z#qc3q67lpOlA24gb_hu
z1FY&~gK|b;T0Q?<bC*Zz56^BkNRA|QXx-__6NEWZpASA}_0OmabCQbek^~AO1&29h
z`9D<4mjlaTV_F;EGxynS(6WXsB$Ti7@G6pW!8jzL@l*;OqD>7=itR{*PNqmzyajMA
zopWg9s%WmXUBnjRjQ9wCgbHvkc0ya~u73FQ)_8X5vZZkj{R{x}cxDCWhhX5L4jtB0
zzxv#9by7~jC9kSENotC6%Nmgk%REVxiiTJ_vkj{H0x^g;;MV4k+8irFAm@3-@q&Gc
z2~Q{q(pF~TeV;|_CKh^@4%FgC6Bk81Yn0b?@N$1Ha&~`<b<8ux4ri*^5H5>#iGc(u
zW?~$YpOY^_91I6p6aTLGK&VxJa)Ie?0#7KZ@B6aRHzvFp!O_<X_6ew1Na=?__RNJ3
zrQ3KTEJ6w88EeS|)_84WVkEIs((Y4Hx_(oUyIHYt?IwIORiD(rWLnqTh+#(D(nVwx
z=`Wt!)iv*<#@?RxL>FdBZ&*PV&vEi2hY5xdq}zg@k@iDbJXZiqg_;-8D&6Hc30#S<
z<df{*MQYHl#m(081vMiY%d1E)mlHIK6X5GAL;Jlw>(rA0oZ@%I{!~Ubhk}JIGKO=D
zGz2!kKePQY_^F>Zuo*9DTd^n7!Njb%1^OkuI!1QxGE3Al3w<xp^79@9kg@sD%pUt?
z#{gUDEmZdYiT|$SIN$T#q%v_%g&DI!VdO6IB-~h(zMqqVr$*c3zJe?KtCY3+wdNZs
z1G+#JGp@(EnVwAtWEKyk_a+W<d)zd?ZCZ?nroMH*YjVB%Woww@XoQ+pLANE^a}<uU
zlcU)~Ny7S92<cj6;eqv<^kB;l(jyaL+ch6sRx^LD2C%3I^=Mv9vJ@}8_sk(nV!zu{
z(z$?M(Qh%N8t~CWJii#tgQi`tu#$@J1~M}KX$TN}#PZgmVzB4+DgyImWXSWT>oaL%
zFk}Y=6eUu~Sj3tYWTgiLe#V-VbQet@-AFAIj)Y*6SI{)%KGyIPXA*xVqfgW{3c#X`
zp#B;R==ev_^gHvP0sIt}Sgwr^>Y5U%>}zY{FY@U#KoUi=TlSA2_r~(FYOw%r6e(gE
z)(Iz5?HsVV@G`apzK^qHGodeUl@J3GcwstIO5JvHPc-N-JbhD}_44$=ODP;5ph|2g
zJCti$Yi^D{O$o=4uUAd4Exw2^!AyX<>JeJ2x;k4r@49td6WbI2<>&}4I-M7WW*d_8
zXGd6oK6Mrt<}zf41CsXf7=J@9c55_dfx^lKm!Yr8{@>JQ<6O@-h^;VDVFHnawXl`E
z>&AFC0++bydi>C<rBg`6ENW05fX#3$>tYq3<g=Y=Etox+KAw50OCXS*lmcC23AzP>
zfS`-G_#@4%)s<#cfzA7OK0HbQv6)R+Kl{~VmdC7h59K&DlrZ9@!fe=qn9uNkmW4Zc
z*=@|ZwHT~0tbm->XEm`SDMtMlBb3QRu2vqGX%%c<QhMp(8)#n8f!&9*{jy<l^za<&
zz*D=(YGqo$*2_e~>fh$>Fu>os_~2jO!B)3$C5SJ$+5kcZQaO8VPM42Oj8KXfG78`0
ze#}n9lYo{(EGt$xyuUrzJo0g;Fs*3sHC2POYPZZN!Vlerw98|wr4*i?mdHn=iogwv
z$DW)M7>OvDo(QSJ?v_@w1o%T1I~<%?k^uJI5=U|aF_1-FPoU4ECvFOEAs*uMpMTye
zG`slYl99U%`DSSxY(PhU-=Y8J_7)emx8c*2FRjHZjHUIgM-NP#u_9&BV+mJ9<1O9@
zz>B|);AQ%>&T@<h8E)sc(EBr&Oq0K(Y$(}~t;|DJnjQ2Ir<STLjDY3|P?r8GYrsvM
zj)Q73=#x|^Zyq8e`$}D^)oukU^}}(gkr5;0V6CxU91ArqJlWMFOl8$zWlYm9CO>!f
z6o+YCk;eteWj=KOyBO#xE^Fm{qwOXA$4mTG6_n;JPyn6pkhq9iq|^y|NwG?Bc6EPa
zy9PGWNxO$+Eqri^bF*mq1MYCUNR${-n2i+&L3|CmWvzSI*%i&E>0JUOuP4YU;*Fnv
zA`+2nG9sIqAD*wQ->5jyu6aDlDUP{gEIbwL(Q1FR-aGDsLyJNVE%k-R2(#adNN_ki
zQ5eNL$;^(bcufB0!kM?e<G14Brs}vTem_~}eKZgrE<$VW)Hnxoo%&QMTMTh(zW`gG
zg<W3}M!Seg?%%dTb~KJpQ}bO`e_ci{goy?mg#j~P4?I1^fG2wM!ZNXD7H*Tr)RTAP
zN66N-a02)af$S*|tU;m@?kV6K!wU=x8&HGaJk6DpAr!r_^z?&@?X+$wOoOYw)(TGJ
z-lnI95DgboSc@dDKNTBOkup7nvgf-gQWaJhw3#$V6?W&cT7IQD63E)~s?BL0?g=E8
zl(D52iEp4yEt^<2skzQDL`3Y>mAd{f*h9SBpS_p)c^pURZ``dN$(U;EIGLMLNHMPF
zKuVj9X%b$TK%X_4EA!$x{SlDzWT(|9n&9MY9qKOsAc%+feb#L?UhEdC_r+7vvBCPQ
zNN-J>Zl-t(^rWD@!Aszd=%$OkN8Gb~Oj<z1##fzFU2Sis+@-``PW;e6NU+Yy64j7=
zD41`DlM;DoPqRJt6`~sHq0`ZU-_@TXA`E49B!Xsve<^qp4fe^lN{M&_1LiD2^?jc`
zxxgrF_B#rVbn1hmc)!+l5{iJ6bqfmT)kprOh}wUVS9YMOENQ7)#leiOe;Dy|8!Sw-
z)1OGXf_JWQHrg@8&c7BsKE(HCdweag{0_gv>Wt!-e-V*xZtrJckcuBdBz-^Wr|My$
zK7VVTTFGcAWj$-2IvXBL{Ki4YXU92LY`uNYD#{gT>`Y|xsVHKzHgc^gtuP1|!~4!t
z(109859^WURI#kQbH&^MLwJUrYJWpp;LhYqa)ki`%zo`G=hrwY)7d%U<X4JXQ}%v}
zIw{}|n|<^fmDsSh?6vFRY|_#i>O%yjstMR1pI5+M7Nv}JNjV-8=edp%0DNa`ryz?2
zd~zr73)#_aoYTV7P=(%0UvN>I`7I2K2i1tueDB1HmZ)~&T#{nA0j(bgs_B1;&KJi?
zfTEjY-)3sg+pTcQDPgJ#6pg%UJaJ%)<Y#eOR9Zj3T1DREWO*z1D7@w3Z&F3H-=;C0
zn8Q;<7r>5(vNKJX0?49I7e+W^EYCZzLGa+b_BIKsU=}0@I8evH!M4jEEgMKrfBae+
zC35EIC00boHwdSesMC=YE2F6shr-nM4E3j^3Hwu+oBFI6U8(t2izX|A`RUwR>m_0z
zG^{9e^q>Gy8^Lpr-bLh2z_hV?M-km-)Q4Q!E3$2<+(!w~FTKh`edJB=HTW2I(tu5K
z-haNjOhVPAG<?2#iUu39`Qeo1g_cV4amniI4V;SX#$Lo%p;g9xr@S8R3CVO2upiCf
z8OU&>8pQ^C?;Jwq{6hK4%cfbWSB5^vZoR=^BBKnT&f`u<RP}qb7D38yzogC8>X&cK
z;*X)@6_;nKGjK{$g?F|^8%ppa2cOeMv^qz~@mo<R2gWN&@-*kt%&I?wj<BNoprqnF
z<;N}TqmhVEW~Hcmo!T+$h>vVUThokR4ap=f=Hju$Fa;+9&Ir6zzj<aLEa~r~e}(Zo
znPF15+!*9%V^WVkU*E>y$W>mD<VlMUMP9$RGh4YI&Q9Ig9S;qZqK{|2w661KnH5~4
zbMIubl{Ed0nE_!z_~(2pL;ov>YAJy*x?63Pu7gFZNL`ZAAR9|@&(XLP!Kcxjv`~Fr
z+Z+JFjn7z9*mjBW&4UU?b5G*S8{?uVPAB`9?Cq}TFou8lPU~uh*=`#~iOdOF^v{qj
zX43f>@_Ss<ffU&LwLzmv*(9Azfoi>pdc<Ycwx-|Fa^%9Q-4KNGP4OpIg^i~4L?#*6
z(DYT(1=bHLH;-FI2nr9w!|SNLRlufpnyqhg145%;$!$Fpl!}cmGRrNS=d{wRpg0u$
zgz9bFFB{$4hZtL+c&4efFxMvS5F=O@RE*UqoYzn1D?28ntk9G4oJ5XQkx2I6KEvmW
zbZT0L6$b27y8%Qx6h9@GZ=HgbW>{z~C0V^Y0w}523mk;U75-uQag7vfyHm@T4RQQa
zf-P4aZioQEM-osYJr*>BjN95xifH!{qi?NM5e1z%!=_OZuz~#x7k&JawsRWB61BAk
zsq9b=t^z+#ftuFk7}PlB#1LG%QReHpCx&uk*#y?!ofnjtZVNtdc!hi*aVn%HrmUg&
z*_U*_c#CIv+wW-D_M(QIyeJBMVxMMf(QfRw;S{4RV_d`Sg^C&DO0^G#3SZ32W*KxD
zQmAE-SBTa#bA~^L`05I4Ushm2&}dT@siKN;cbJgu>@#@;B&^*HC@*PT8jK+!U#L5P
zy{I7!<jbIWry?K&-ve(Cz1e4q%GVcF)@Q7Lxm!7^>`Y-JfQ{K_4LneGEce;L4Ro<W
z?5DKYCnrPdw_`M}hoP3Js4^9qQn~<%Qzb5zZ6MC)VjR$DlxJ&#u35uh7A73yC{F<D
zgmLu6j7JU)6&6OMzTZX`m(jH9<F}drPWI02`<35&KITL@yLv_r_9+CwQd*QAzH%H)
zhk%(rNIF@V+d?Zh+7k!_76$;>gpHld(7ilqApNk{x|c!cHO~jyNc&@}2TRi_s;Wbt
zo5F-51eaCh!CoAgqkY?x4$cDlcE?R*ZF}WTvm^Q5qE}>r?1OFj1gH%i(3a?6q9h4r
zCY=aGn6n#ur{AbnyD*KzZ6AUEvt3B6(s0bPNv5E@<}w_ntR_=?KJvmwG7(N2zGqc9
zQXi?<6%^xwrDV+#ZjnJ+`g@o7_!ki#pmWs$&F~>%&el;AOeK{Q(sfKRYe?*5y-^S<
z-*~{SlYqb|{zb@^t*5=9xdfPjIH|NLM|~&t46!ik)T>F!CE~oN(nKo2U6Zc13y3f$
zpJU^x5~4CA{88P-BRLx>fdcYnQ3w76aBiXx*#3p|JUQzqcJ5?#zH#}-gFh1KTRJ+N
z-*`Kb_7i{3jfr=D>n`o>EfxU8;PF$>(E8B%19yu;La*1WO}V}Yv>t((l`4@wbOr_`
zJQSs6S>q1_Z+9G>Oq{I!TZm>08KE)=s-~SqQg~LABr6%Q^15JU-OI0xh4__on$sTr
z$=_B98>787LqcBGur!44m7MFrgAzy;hc`CKdYDT#rXm>x_yzN7YgP+?jySQaFfIsI
zs)QMZlQqjjX5r>0O(9{CqBX|LwI#rVaoj+VsNwRrU*ufhWq+XiH$g75w5-lQeFHzU
zJA^7gKhSqtk^9s}N~eiiDS{^JFbXDHO0v2?&`sDu)W;E+;}0?|*>SlA!$w+wXT%+l
zu54T+u@txSi%yk?I~QNkuNm{4LfuPm4#yv5jKx@dT<`s^3+nH+Z{vn0ftL+O$XK`N
zvBkPI80M67l5CiXBJVXx#bag2+JRA6;#!y}<kR$OO&6%whW_2;k8k=H{X41Q5DI}~
zaj~V%q<jUGrD*=4p#8|~xocchlvUw2#3i%5;hNG>stsWgO1>S{G8bH)i9UK0jnH=z
z-d`kH$zOQW?I0ZEh2r$oMszXU)<in8d7>5bK?sYc+&q&hZ(uu^3oDH;1v<`E*+gz>
zyHLPTWQF)FWwDp;@Y}Czu`eD6*C4IB?|w2%CjYkpSbC6DLlsa(zgeD;ax42ope9^V
zy`s4R{YjOoERgWA@jFsH#J&4xeV#ZjXE{Tzl+X&fz)`lJeF(rx^(Hc=KvyOKH%Wux
zpcjHDpb9H3@N!3{#iGZXZpz-^wn+0@)Lv%~KVPOgl*xN_ta<3Ra!qZ7EGaV6q1a{n
zOOgFR$7io1eH-sRvZ~Z<|MZF4;j?jFvR9({mte)q)#cj;i@2h$LlA3Sy`V~OA?*yu
zekN_UzDnT+b(+tTdCsU~l!@yy04R;JifvZ>s-{nv1ZqF3XCX&?s>AlHqp5KnmnbqI
z?2k_=;kQ_ul^)kj4rh{l%T4XzUp{g<Y*p?KYtp|hR`pSyn_zELI*C^PthPY9d(H#<
zA)_mZk5EsB7(6UbMb|r1j;1(9)qENlC~Yd`633jY4mpQDDL%PfucNH07i~(3XHx3l
zkP}=Nfpe6}4}bpNdwtqGX$_DghptxMQqDXjSy)6tTZ%p27<r2J4d^P)<H(oG++ss1
z-pg4B<0!3^i}eLW54R?QAT9riCqePsyKEkT$`ks^UI_dZS&>c~f#d^QmU*uagJPpO
zb}(3w;nv;y+J6IzW!*MqLMwxJ#JOnyp-rx8g{vukV36Ljkma(;diV~>V@jf4`xVRO
zh^7gP<39m6?7Y6ROWrScr3$*6?jI6M4YiJyPzD=b06?ONLir7%=ubjN(wE?ujP}V@
zXIU{#4BKT!TF8<B#HlTy<{%*ON{@xXAKYKAtryU8`!_Yvz-W1LT3R?W;$kZneFQ>O
znD}10bOOvXo5n9M$}efNG#kc~%o_ZZOshJeoiy;8xo$d9N)=3;noRbu_$s@1yF%Sq
zyk`c6{ysPs&QfUKbg1)yWsAT)xE_&vqwSNj1FDS6r{F@niS?|=f`Wmk%;s&W!j&au
zQe4W=>h5kkX<+4>JV*a?&{V*7^nQtG<+kO698I)`(C9hWo}jcD^|IHT=?qccV%Dp4
zLNrz6<X=)Vocpj#4|#EXX^hdb4_D4RhIEfSa2wxm1V;o^2Ugxx`7cyt4D$$-xmI(%
zaEFl5E<J64Sb@yihS6T4)T~}&4nem1er)bco=|{Oc9u$OIt;5SGv+uGE2R^C@S;ZO
z5F9{Fk%*>a+6i=*)T+5zeT*!)fT2V-t3%8f@Flqj4?UqfB5pHm?;Q6D=ZqkJM;MQN
zm(4$98JA1=!oqHuulVZ7QiZ{TaE!=F^ky8Qw=TrXpWYo*NwE<HXP3T`avm}p*Lqx2
ziZ2l$)Z7gPVl@+TvJE=mSJ9oz-YK4M?`^brb^<iJFrJ@Ul-B*RCC^0oY#O4&>T973
z3qRn2YxUcpE3{q#6+FRRl^m>vW63=GG<me=8A$>QjmVi{28FemO}hH;6D=wI_&J4o
z1z^WNe@$u~pFCFPg4r&4(#)T2)(p+%ptzEFoGAIvHoOHO8}}3S*kr3e9&3^oj;^W{
z9Q79vEq&+-l+2mq<mER@gM)MXp-QCH5b7NZ+`Tj$!Mu;9V}kR*V?5tS*t-_G;^Xm~
zWtc)nV|X$%8&M{zp<Pn;?j_uoh)I?8?&~67H#d#AjUQk2{Ir>A@7#g8Uh<QjvJ-O=
zmLzX$aCz~0e&zEYLa6R1th;qDb9uyc^%57WHpeLz`6~%cmS>e<&);daPRjCcTCzTz
zW5x5MmfMsf=esQ0m>27bT6f-1%MA-8;!)7KlXQJGK_H%E393745sBJ^yo|GSZ6^Fe
z8pk|@awSD}HWjU><-j|(ntjf|?G^q&%_QKMG!F)1HD678ljs+SJ6#v>?l&WC_pT1i
z3y&&RAT6<gYoRWA)wu?FaD>qZwv1=BgG1Oz{4yrp+fExsE|b{(0wIWbH?t>vNsWvW
zrzH*UKXZy^0C=<xblR3%H`6FA&?{3)kG#3qLW95d=`l1s4~I<>Dg#~Pt{bIacHSNW
zjV7x5v;A}|E}J`kH{dN~3Zyf=Z0pkc*5PUon~qO!H!Kqo^RsS)Z=U&tJ~dariJJaE
zwN_`NW<gkpOJJcUzzU~PrlI0Yv)(CpFk>2z`XIQ%n~^cX^)JXltx-LEbZzNUKtzr0
zYHGNAb`YeM?)6akCR>+KQjeIfwp*~8AFvXVfE1~fVGVdA#6WAe@N1a{!XJsw#|$gK
z*+Y>kJ79HJ7nsP6tt$VrK_IfDis9jg=^)MI4)E<{FDd7}i->j+f$<9Xiwhk)Wvf%Z
zW=AwOa5&8A5t%xzEi1HtPe^>>{45ClQ*&^;**{?-mMCjyPn@VU;&4de4w1xJamCb`
z-~F^}$A{U)C<Zd+%>0xZ!Nyq##8RYUQY&d^KF9?;r15{;q_&H7uNL3GxW`|-_te~(
zK;aL0%I{LwJ8hU~sGwVSd0=j4iNN`otcP~0enYuBhPsBYFo0#7-*}IAmKGgT5yg=w
zXZ<7Js0QI6`WQ>~Nj?D7;I-sf$0ls3CjHQ_1f?`8`g=oDl3A?dP@>e8ri6Z{qO~S=
zel-lIGRVU&n6RdP%bzxftoALyfZT$7YyfO`b|+FuvEIPE;iRX+CR0>2f=sZz&Lfzs
za4asq*0VT;sQBzayjK<GcDrATxT<F<@ZnAL0HHZcx(?5PwdeXR=6ja4j>CbZejRiF
zaXl6-GP#`rQk0gepQU<vX8Pj|Xs@7>fyFjC&h-Vnlg4!}y8IgF8pF&c`3zBY0FF4U
z)^OgsHK1PYr{zxd^l7s03~SvT==<W!J&`onfZOfEbth=X)&6aUX;D-<zE};3uc`|%
zVPv!GfF-me3hwFu>;!M`;(D<^Q+vj)@0eEwb#a@0h1$Vd5BC%xpS5SfRSKR!8gWvQ
zIP3%?&4cdU`9jlFYpL469+D}Rdsvp&NOT+&H9<$$cO%}bxH$KnGRyLoug=+V{^MxU
zX#KPB<ABSq{V48e5n{5`Ngn`cY(g+%gPnQrY9K)zpQ@&pN4yITH@~nY@Vz<x?FbUa
zqI`H1ssQ7Xb6{u?4VYZmn`+6D!|!S)^0TL&+YFo?EO4NaoC4>o>-?HYYR0USHy@F$
zIloHifE2}wcAlb+#}Af`J~U_#aBkl6qAwV?47dXJv9WRX&4#gOO&OiygQ6yq17)B1
z`v_VeJR2{EhTS1*gqG|}UIWMm=}5bbiYyr|_$!HDHs8-)3^d;Hs|%H|BYkSC4vjYy
z$k&Ct!9a!L1nWHFM|nek0D0;Gf*Kv-3QFLwc_byv_0#vuq#clCp<CjWQ`?hZgP9r#
z+rr&T{^R7&;_iQpIv(s#HNZm(l5`K{Sx51QL!nd<m$fF2|MJH_LN}v~WF0%Qm|c?-
zOkh)fCrn-UoNt(FOMwF;tvv}5Cq3>Ugqr+=;;dpb?9ewEGOp-$ew;K;UY{+e-^&wf
ziYH!!9$Lhe*j$HNHR^2i#Xz4rzj}(4vYoqhFA}Cz15I+n&xdbh=xI62@w%%H)@7lo
z<wq)3Jk6sWE-=`KlI>r}Mk_<G_%-aRyP`yCCQh@^7UAR181q-KxbjaxF5g;<bK1gF
z^*|wUR9aq*Eq~rqcXBS@CzqNmVAeYKHkz@dGykYe4sO=N%M}aNJi9i|;cDq`+sn{_
zp5t;*(ZJg89)rUD$#Qt<Ox9vXO7w@Kk{0VBC+-K-_VqI=g=yrU!0*FKFbpN^!&Fj9
zb=OEj>yfjNzM=~j<C8OgDQh~#yZPAsj==-ojFd^&dnxC>NJx0oZd*96M<iiQ_37X2
z)H|7E)r7f>BWXbo)V%6O38yvT``eZ!{Y!)Cs15JdWx89@V?<Gq+H;?dol6G<0{hPr
z?gH7>-O*vN9X`k9OvrXS8<fJs^Pm95m(qbRO$_&W`^8=%T<_3v91e0EIFul&B(Djs
znXsqNW>Z-Ux+!Xh8Ui35RB|Pt{E(+?%|)Ar?tM`#|C?v^P)xH`JGxI}SwKbA&e)kh
zpIheyezJ&neg6CcY5K+{pbP`BP$ss<PR@=d1~#z&Dmz0<SPoVK27>=7xVh;?Ev%hQ
z9O*@^4V+DcO^ob}P3WafY|Wg_37FV<dH;J3N@zXJJFVNh|9z(=p-(YI;qxN!hW&(x
zPv2s`{QnYQ`~L_qbFeTm|5uHX;14S^JJbIv`aAb&UtFb>QP<g?SLsj&?CD~G(x0B6
zHRBX|c8kjQg~YPKK77l%{3UN~zaKnHRBbfb&H+x`L8gN^O5M7CNW@_=?UilFkD08(
zftS=W=8f7KCD4G7p+Ayw6}RGJkt8Lx%okeo1n3G-OY5S#r>b=H`<W!BW-Pg{x>evA
zmjeIsK;5#4nH^l&cjyblQKUw{I|Lbgbhu!kqBuRX^QVpKc;9}g=ihsGU9TBT>ISjZ
zhq4tNk|NB5$Io$r-GsTT$hZY}Bn6gF$bMea@@h1;^P&81imoi+r~vs@A5sAn)oN>3
zp7ANmO}spOF4dm<g<D7U2u7rJllr2X$860TBW_b_%JqA;eq)>+{#{i6qTT~t5B!Hh
zV2*0t?XX4q#uz%tSSaZihFQ38z0+oW9{zeI-<S!bMu-JrBi#B`j;Q9|THf#(!_30w
zCa80HeB5(tq`s9<2g4U(y3M+qcsq>^m96jt{|ULxx-^s_iC}u2lUaK&jj2ULKO&p<
ze<L|Jj$$dap@gM>V98`m<;qS3Pk*aG`A|Sl94O8nYy;}F$;0)+=Xy?_>a|Ud$IE&E
z(bJ^tZJ!~rdE@IN^GTsFkyJh=Yyg1#pd=uU+&xPe$oiC8oM}}d1-EYh00H^ZrDq-P
zNU+fd6x`ek_99a!(=|x|w5qRU`JHl{`MhzoYnhD3D!Kt11O3(v{CySU1=k_sG(2DB
z(d<02$DIqV0}DIy#P{vA3zB7vy2@sg%1&%Da?Il3d-<z4J#ab(#BoIn>+#Y_FSpS8
zaa_<(z7P16IY<9dW=HS0gURs+<t6YGD5`(;gTkkeW0NmNunR>)K>6ZiXy7XRL)XzO
zU@0?pamF3YEs}+PHrf!+5j(3t&&e6V_|}QG*yb9gy!#|9LA!Ehdmdj2$~4TuMX$oh
zEd}~+*F(kJIy$?dd|(&NF!nigyL^iqJFn*W@6zT_?7#px*L5KV&A)E9zOuf5vz~lz
zs|~{IHO2g!k+bi+Y1pN*AjI0#2+sO9Dx2^2*vZuJfr8uS{AX~)!XDDl<Wd4y77`%6
zVf_(ExgaD)1~(_rN(Z67-mg!Ke4`Z|XNlZg|1|vu%tQ2NA@NS=Pao*?EWi?B*a}*{
zUh|*VfVv2MbUBC`GLMstVpqS(peyaCUML&y^53&#US6!TIBr9FVE%(_=wbhfaN}5$
z*6(O|sS<GzZ_l;BTtAVnFST)d?^T@7j}0(khX?f>wH&PXqgWuoAeLAvEEO6M?R1aa
zHR|&-Wfr3@T1D&^hYm`dyU*X|xFYKm^f~3ZfBx-A>bRr)e#?WY&Kf1!Ij7kpQLvSs
z9qOffb*`;()|WzTm77J<v*sKLlp%U$FYI6*f!?L?`u5j$`XB4bL%W2FWK0~ONXwbG
zc$71*I0K=SSiMe)16*s)XQ`mPwp0G5+r{7{KzJ%smPS7zSRJB|8RG14aO@-AaI8gV
zKAJAgFO_4QL<H4prhfn>mN<9#(F6|ri7hBJo(iQ0o~?$A`V<8F$IF!-%<H-RKoQKh
zmQ(@jWwxl>lxkh`1FT$#N=|w=z{R*7X88csUU%@NYsM(bMdSs}{3jPs)v3x|b8uh5
zrFwtPO2MpeNKYykrmorHEHf>N^?*og!W~LNSIok56fN$XI+@~<rC{5_tc)HukZpz<
z0a4x-*%=W?>=M(N1?Z*B{rW)y?dD3rjr_lpuu5rrU@8HRnfvPisysK?!F^9I<KOnU
zoy=AK-8GyPT=-#%brhUgm))5}!p4hDYvJ}87d!il6p`tsHh*^Aqmu`)61T)`eDhkO
zayu^uhjMUys$`KjduD|hDTh_XXA4UzrNS+A)x^$dz~YNawyg)F-YR5<t9|3;p$P6Q
ztT>p`eM;qRq}PlL=jz<keoPI<QRx@q*q;Tas<-W@JY_0|njdD6LN>TiWwtA=Z&Te8
z2=tSvE`&W=QIl1s5fEkZn#O$7Tm)=s`vob!5D5=-rd%(;)6vf3%ZYh7j?to<z$%ZK
z35C^7(Mfm4fcSEk2w)pQJhgM*6}(p=lnVYa%sBjso|ia|M=CM{NXB3)XiDd20;F6&
z%Hl7Ea8i`9Q}NN}Q;nkxmgVl$r`)Sfd-)B{{D_|-#vz5eH4bCjP{MKxKu3D>FoYzK
zxwus@nlvXg6NZe&pAwV&I1FH$JOYifnO)yOh|Q=GbrXm;w}gWF%fEK__fO;0fniu3
zSJqtalSVYRXbiD*E@4c*up$;lB?+5J1Lzh@kqRF4%vk$h!r?L3n?ju6FhhLK2bYDe
zdK8Hpa_;cIkCK031YKrm5U~O0A}?Oq4sNm9f7#z~3EtEQ1)kkE_u0&}BL%#L;m`-$
zZEKG&Wdh6jJyv4Y8bBFiRVGFc9bZI7;~eVRa%`~xIO5CDrMEp*N!lf>G88B-Ci31X
z&HXuYafdykRI7HGYCQL$2JR2mOM?TXbe+VCe&wH3tE@P9@SLhL7HRI2zvo16ZdZ`q
z9M27;+25w<CZ%mv7sIV*8%GJ{@OIOf;9X8DbO0LUfRs)^f6?4bW9Cd96?2tB??7D^
zbn)_-WSG3rV(Z{DT08m$Iuo|5rCMEHmK4sxQQeyi=`WxvAB_<MAAX_F=lxD^>Ee$$
zZOXAX39xoxCj16Ypl@yPfxcXP^Eo&=txu-_r@H$ihrQ-iV+-?P`V$sZF4^zQ?GCUv
zyfxk_L}m6SC2Hf1svF8NDXpxIM@G$RkyDl5`)q?zL)r$j#>)%2YntBn*lJ_?qv)(+
zMz5eKB|&*!YYt*<xKSycU5HX1=X2miyG}SbbrO3NnwMsY3h8+ZsmxPKnsp?^h%|Jj
zL2^o8I_kBX7Kc7_8jiW8kp<waG@kRS_!j_#W$BWm(IYKUR0}J-Lj2hJ>b@}j8iLuR
zd*YE?j<IP%#@5JnW+l?#!zL#Te8OxyKY2?W*=ML0e>wPo3s<A$-AMyXuG-wXRNn<h
z{_W(PgNT#DlBg~YzY~^AzF_eeJCwxLVXQ*i(iX>n#ie$&_)FP{_=8XVzA!%RhWFf%
zbFHCQ;jUb6coAttA(+|barhybaIt8CVW;<7*2TgY6bh&iM>}=#Rz+&;?S7%C(<Kr3
zythD8mGgoItZmPf;WVZi-58}o#Rh|k)`B;$_$7q2PV4xPv20^PV;bICBKkY1_$&4%
zK{cxRHTvQ>Ll=wkdY^uqXZtyym@=n6DVvuvxT|O6@1J3OPpjhcTemL+pyV(rCxG-q
zjW>P8n1(W)dO)-f@hb~mj(Sfdvy5XiLs2{g{GE<rF7-{Um<`B4O$gQc{j{wez#&57
z*zU{Uz%W2fgHHkyrSM$5i$aa8Kcq%n<-0%0EzV>%Cn%c|=bZ5s37E#aRUk%ov<t{}
z95EBu53&fPkk7>-+c!q{q=&G6FG_@+KLx^JL#S=PKKURZZ^vOcb(fAzhxi^+(%V<A
zIYaBY90NuWqLTndRiyc;fFW?DKzyfx;JJU1EdHjnne9BfJxHTMDq`wuyLTU6YLck|
zM)Zw5I}ZnB)3x5IuNsgn8vpag^sFP+9nbPe;zUSgmc@c=+_336jmNWUd-5b<fBWFZ
zwuE1KHVOkl;AW;0#O{^tmcB}GA2i54eUJzRJ&=K^J$vF2L7P{U@Z$?@*gbQ)pQdEo
zcoye|4-f))KYGkcdhQg>47b#*@uLV1OkDh-8n{IRAF?pr$4@W9uNoma4|7LK!YH_$
zM|2A7;V^p4->{Y=P^okBRd{;L9lJ!_CmA7DX6a5CMf?C)0L<e@9j8q=573jm10o|^
zoN|Kp{=qP34P10AqJ$2;Le07k4p&JDW|;s*es=XZbl}9p!ISf2nf5LC@^2FD;!mY|
z%a%Zx7IX<DbLRAB2c^hdC*|kj#0ko!Yn`xef7-pAHUPJAz_k^o9AH=j2qvaQ_>H_D
z+$iDGEdzmnr^wq%4n~k6`KRr$`D7|I98ze1D!lCUJkqm$bEw%Df%-Va1zIl^Q6BOP
z5*Ff!7X`{+WX&9%))^X^V??-j6Z$f;L^eY8<>iA=f{xsOelI?ePPIqai1Fz?O4Gt(
zDG2Kf@xj#3>?X}s8v-FVwqt-}JbDjP>oz$J(HSGO;-`fn4w%wue~SlRhOt+P!MyVC
zxHS#0)V&S6^aw1&^9`g-Rn6vp?}Q&6^RXxWX4W&KplGHJ+`TaxNBFKiYNiTP_Q?28
z+f%WvmXVg~)Q&k1v5Y)ciEM2X`|xuoxv+}pg@4yhvkzESs*~aTe*iT=%D*oyQfqCk
z*<A_gteE{4P~jZ8Q0u}JETuW_3nSL%z%aKTDa1_M0_^ij#qmTz@RVvojthy8|3wVI
z^|KYqPVt+OpmYSL*h(JHMA@T;w){>(ontF4!rdcD;tN51v+M>5&%yD$7dZqJ#c6C)
zn_{40wpuX$L%T$<-N@gI#DGf2IS99Tk@lKv1Gsklj|fUGDAjs{%dquNzPCkJO)q_a
zQm^ke-=9l*ak)=lAB`(a-xc{=DdZGaKw|Ip^iw!yL=J%7llj}h`eO4zf~{^DexZXK
z{t|vcyNh`J>343KOZ>nHI;IZD>@iG`rldE4)0X2N!R#*~IGE;*tys){#y#z|P=>}0
zG6dKdg*oWq>zAX`^G~5jvU6*8D=;aBJbK_vwxxY#WNCsbvvcYsloD?2<rpYMN!#%l
zqIB?NBUO2x0^29R7@+?D;Bo!XPI<5(K@MS%aEDsSf^Nf=!h0WE?`ZL%PmC(zagV7i
z-M_;D`!UFwUP5velYk{fhdOLj5HHKk&2tstMWF}3)9|3was--u8e4&J1|iA{-Kn7D
zh7r!$2~QW+De31>Z!W0=<^?DM{T=^SVIy;yOZVZ5=_KBb@+|gVYw};9aPmk30G{#S
zalU3AMD9)kClp@G2|QWHrMOjHatg}*vacUR{jO*p!9nX?P`?fz0~s}W3H>r;PJ=Cw
z2oA6K@OZ07$2FHO2Ox9*4}Z4b*y+n4fq3{k8be8s^@(e1hg2c`fh@G%l}cX-XDM!n
z0L;ksxQkF#6}1v$T)Lt%;NWPG^ihn1L&4g9vOba^JM8dxqyg6AW~0!J(fXv?^OHY*
zu(gd<givwZxC6y*=Xp@x$tV4`&Zo{Eg0P#WEHcb4en`66ik=CqtPH^}$aJx{LGB9C
z7p9@dR9Nl)%ddqo6>(KKNYPlG#}e<rbLzdWl(f%eY+1^mp|d`|fP8NWuR?2oHXOru
zbQGddJ7>z6Zc0!y$K09ICG0aT`^3P~%Ku#1#R-F3#`@<X<Y|pC)A-gR&Cr=7kGHpk
z&FSG<TNF#<3FS@+g4mI$4hcw{@<O(0CR)jLbBX}%t4V|t1Nk8yJgMdtw}Rc=@?b;|
z>sQj<du|(Z(xy4-#CArAB)F$I3E{U%DxJya=E5qdt(@yB)J)RIR1y~ZCUPg&^%-4r
z^;J#b8g_TkQwio;^ZIE)LCcyFik3lj5+|p#N8~vSk^-IhqTOD>9_q%>>4t73g-3{f
z$DJ9Hp)^XG)MC=TgVYtak#p)GFN0uI2s@F)1B>+?49Jm3HC^~Gb<VA3+6Dto)m4b%
zqqsB=$*mjiYk)hn0%`tzbDyj+r1NLDX#*`{Ci2@3VSbKLe{V}R(LzOHcpQA$85^4`
zN<&OeJ?0UJG3*HO8F8f<mfDqY`f*Ho<6Lkb5_EqFP*5mOl5#kY;4CN-eJJ~ezP0zW
zS0SkE|5Zf-l4SmyK9itPQZ2ebEi&_788R%YIgDXV1b<!BaMo3ZpT$$S=n_hi4%=6h
zbL>|Fj3)xj4~0N0wWj^G(vUo8b>aUC484964^<)8bDySJjLLBK<R9aV3l0Z4H+dr~
zhK3Y<2f{9-Ltl-hTwZYJ#vzW1r||o!;sD-+ql?yq%&9Dhs+)5i;>)sOF>Ui=8D)QH
z4%Sy#bu8}Y*IvS^dW#d9Q{=@n+d4)$NH>!V;4qo|&uL6T%+gWaFSZ6ikl7h0g}JC6
z4k|h)5^whEmtjYIDdbHOA#(@Xo*vz;OX9;$;#QV3-;;=<0hr9NJPn~7m0%HNI^@(N
zrgPx&xG+RyUF+;ldjKWtD`=IaQ?%hDkaG40!~AOW0#~LbOT!n_Tu0t2{lr_;9Ze@n
zW1e9AGqA=eADylxAGmCQ`R2w!opJRb@3U=YYZH(<1BZ6RY>WwiSbe+UIc|`#3#@rW
zxXCH+$8I+AjDXf&;Uh^K;)pM#HdR!eF4!hwq1QwyPO$E0WrD_U7`KOmP494bXyx4C
zX)wjy|2~hNt~^_ql%vnk3j>S&s(tgI<AC3&BTZ}5$L+ve=B#=T?Bh9VgU5~`5|V7t
z9oFuLldOE5sZh5`Yx;O2hZ;HWaATMoz?V(hgDk9J2X3B*gyQVO!*`wo2ONmgNoE1{
z4AZK~MEjXIgdmo$k^&g=zLp|ktbmKjoy5!X^;(P82wO0Y*@(Zax=0!>J#H78-`-F_
zrZ8Qi+hlNM8*86_P!6k`ogRh`O#_S7t5gXwttLMGM2}EG^3HHUJ|}H)t3kv>fY=hC
zIP(Hxw1LzZylaPAi65CW)j<a7>K9@`us4}VG<2wh_CG*6G0~kP*L9)kOvjtDrdyYE
zs~0#~=<wg~ZUy~dU+{dammea)3V*C^MUc<|_g6yLDN)tBW?)^y#%{EV0w0D5{#}ua
zs<`*Zc5Ypg0oFHhL%Y8ml1^d<Rd+-*7t$5E9#cL$F8~fp=ab~um~x@})@0-t&Q3w?
z$hUESJUkL#`|b1L&utMz)F%kS8yU?Mh{L0}l_R!uyyvA%kOMX&iO6GS$O{47XMM~;
z$+4hfBVnYnGFmW~yr!kzJXslrH;A6_Oy$~;)mG;sJD-K54-aiULifd`tLIcQQv}k4
zXD?K}A(hKlBFSAmoEpby<tLuxEO<gN5v_%2r)}A5v1FH)EOXwb4=;f)y)$%nc!$~g
zUAO7WlL{)tjGPN#5Qw%rhqow$o61Bmp6gQ?NFPbR>Ra>=5vNKF1YRg|908~WudxmM
zK{&h1<<&;EBH+<vngE9yti${9_&!4HTjV`?X;8AX`R`nvZB<nh?XMt8H$E#xi|-=2
ziF?!_lopjH+uB&X^jtt@LqaThj{z$lN>%e}xJad&Q$++7iI4gCLte_qiS^SNiCV|4
z`7m`Io)h|-wks>dnp0vwq9AYM-Jg)f4n-#^!j@hG4^Nd<B;Y!_>-l_7E0HX(qwo96
z8k-8w|6%>rFemf#d`ZusSKN~~ey=2qcDMjOp(PWui8iIxX-((OiDH*_Kh0ax=1;*z
zjYOR_JtIGgw_T{B2{Y*srnp+W|HnHH=DL|SK3eRq8W>FB1vzyZRQ~7V(b$v8UijK-
zko~CVVid0Bqx{c(V%fgHz$Qz#q7~wU)_QtKS+C*_^V?ZQFeHM8m5w4zFp(dg&b(PG
zYQPABN7I4u!r6A}Ie-tJ2925&Ub)1Xr{K}arqK-!Kd_+8FNzh)Lf6+9Z)ryZNgI*j
zfg&Cm5okr=w@qH@ZJ_K3;Y6V&VfXL+qlw<(6gAlbHXkwK%a3a5zwoQRN>EK<tw!C3
zifLP!6L&x#mauAR^!)XJk!#-AP!#h|*@?E39HHEfjvEy;>MD=iPt0UG^oF5}>gsls
zfp8N<(FwEc9Ti6P{PqjF5{`lB5{Q+j_ibl;wne>W)R!i0m@QF`8ZtF3;tj(OJ<m7z
zicIkCy@f6@%Nt0Zgb&20T9Y?WRe)QdwOc?;_u-@c9@o&kUBKEj+!B#lb>WKy&FqRE
zZ5&(b5xcU#9*J`Yn=Gb<o*qA0l)~9?z7g{j06eSsNd`i*mNCYi)fhL_85@v>Y_{H~
zi$-U@BDI_HxI|`((dfA6@q}jwu^hPw<B%z#_n3Ts@4H_?H_ljC#6p?DYBz(ItYz0E
zUw!l9yv8eTK+oF4chO2_S+-XPj6$E#@tj`k_#m%QQ7e#+sxc}grL1u4#ZWuu`6n|m
zyVIk3Z|!#st;t1&20{Ybqh2q9B^~mL*a1``Hu>leEXpd!)ygl}2lWsP$)KVwwiuFX
z&O^+g{Zu9uH-vO@TS54~Dl$WCpjRPrIv00Hq+uj9wYQLV6p|U=yb{+-82frvtU-D9
zRK1SSEJqR_9@`1PNR2`dz$sM>Us9JVw9jW0uH8Uy8EY7-PtRr6t%=OfqrHn6;_JDo
z1P%{f5%;FAk*KwWO-SNX2<@*xsx9&hc#NyZ=rvEiJRLshqib)J49E#7`qDJ%)b(H6
zDv?laPu)R_!eeau<Wu~SrLOjfO58xf5SjuHE-7<yY0J?;oxfty&l9OPid^uhExy6s
z%BD3qgY~s2!ErJ?U1KR0Bn(niD2zf+noKwT>W^{A3O!lyAECR+IcX~$PTP!V$zdiF
z2BBpHao2NuR^VRN^b)FsbB${&7VGj%k6Zofyb!y>)hz`0!(6^{@;+G6@1Fk}*~qRo
zA@#;@uy*090CJ|e3^Fsf(jJtG*-k41Y2YahZijmAA>YXtBNxH^oUwyyyXu~VActfO
z6bAfS3hvj{=7<|JoMN2UjP|uGstPo=u>f)%JP3D!sNI_((fM#=Sg!<;wm;;4E2Xek
z5+y6Xp~mO&rXn`V{E#(a@6zqnbB~H(H=bS*6pi;A=<HP@a?LmxZLZt;0MFnKMofj%
z+9iqfs{4=LKw_}qd*M7gkMhAB99(+S647g?#P$I)Csw3A=>px8TCmf5xUOb7cCOh&
zLTxI`*WxLpX_Z0L?w2Fe)u}oK-6>h{pA<AlMtk3oUNJiKvLHzY0tWPf-eS@;^h!7{
zL|%rDm$RkWW`O=*4jXZBl}d!gxLkZ}kpg;R-h3`c$Af#o^@!g%IP2cSq!QgdZ1c^_
zo#NU6dl}jpoafkyo6x$QA*u(+lr7lJLpOIqrPcCxeZSxN6OS`HW@g2r^3$=wR9U{N
zu-yI|f0_a0{K#CQ{!sY`S+zF(bGb#pJE40cAfE<*&0qbxPmbT|HABhO6$5@ItCYTv
zd6ZB}E+z^~CI!jNP)LHx9u<(7$l0^rvE9+qKf5(pV}Z{jnNCV&71=<l=!28-Q(w^)
zYQ$--c)-`VR;W|M%{II<qxgBR4jOZ8PUC+I^@(w$$@0iOPH4n8;RzNC2NNGYYA0tJ
zFk|>5e$31WX2Gj<`VljncdwC2uaH{TUD#_W3KaW&++Z-bD^nhGw7}Sr<twzzfORjf
zrec6^0-1%jg=+D>7>)Q5+5q=2S(fwHqVhywye^z<2EHnfXRxM>F7^q=9_O+70d<&e
zRmv^v>pY`6XL~RSGlBpS+qu_A{?NbH#cL3ZdTU>CEfW^a?ye*dddVWPwNg(q5~lw|
zlw_0aI9}Kt0fvfKunXzi*L`Tf-Olo%v^mZ{Ba)itVKeT@ZL21Y&v+>29ImSyeJCQT
z<$ZNHpY%wM8O5Nnanb8=6|Lc9?(_A7V8=ng0P&Rzk8lGm?a7vAcCZqKtQZ{rMlRNU
zP$-yj9x0r?tF%t2C!~Sv;{{SKxMJxI;yVOQ*(D5GWBi#Lzvbw})4)Zf7~WgbS!Xr1
zb|RXl#q+wDh&@!y{k%h|R?Y`{?4BwJdJgH;f8O(D<FSpy!KS3FU^D;XXqtRP^TDLi
z-qb5#XrhmrUi98pm+HF)!@Oeq@Vx^~%8-2_RM55A>q5}p#-N>!p+1@=FKeC;)^<lT
zl^NHQ`CfsLz2k~uake82ha>tp%++NM=#!azf+iAFtQgi7GtVdCnb%A@)x0@G%A>lm
zV9|RMU0V_~DRn{U#XAEMP7A=qktTVE&8esta5XgbP)dfj==W#r{JPt6kL<Jq0phj3
zw1~uz=5mi>OIk1+UG3SaCA^1ky61EywmCw14vGlZ_A?L{^-v+0@EJvzFP78{jfXz2
zmlg|PNADEYUiddJwjYJ66fy!Ql{i&<N7V6O&=R1%b+SJo&7&WlNe-~E!4iQ|rHn2N
z%S>TkrN#AG0YLae3a*c?R79Ke=k3+sFcxg)5uiwH(<)#u3Y8BgY7O%$tl&@mByk;$
z!QQ*xM%>gC3(?<ZTCM4;hD-xE6Wnak{jLjtxmF-SG{M|et*ks5Sjm-TcW*c(3kbN2
zi)vO}<R=Z{@|pLftFuir8>*}KBh%??YAKaje-UjBkNP_W@(aQ4&3;rDC}_E)*%$yj
z6#<Cz?5U8U@eT|^vuAhy2?#a1vam1VR+os7*xy~3vy2_MJa)F_GSi%`s|iCwdiCR=
z7@mUjmLQ9!jUPz@(;kcCBVWeo##0e}?V^pMTK7oG#5fyQOWK=zO8#>iT{I5rkMkV4
zQs^Ypw!(EMXdSJewK>8!oF@jJxMnb)TS8quy(gjcbXv$rvQ<VP0nw}oMT$+Ip0cn<
z5qP9doVT|Pny!*agw`_ui?8H|sprR?3pupU3!lZq2uVMp`HZwQH3GnE7>%3xz5XnJ
z%O!If@y87!@2t*z+YS98cyU5)ySb8s+b-xBuvgOt(vWn6sm5Yvz&%f17x=T2r8@0h
zTNu}T*7Br~J&{@LgcfxK5|ar1A^!zSo~;Osnt7THX@>Y}^kLs_KSLHk$<V}J1s-0W
z?xpbUOoC;auwgu!kO*9&h-t>(vT0PZyP-=Co&wR~&Q2|Ckar4IaR%|wOU1)yVhimf
zCEP==E6Wvlk-Bcz8~8SdttBwD8!ATq4ScJm+DG!9ZC7D+`8Niqi=b{Q6vqPEgmC#b
z3i7(ecw8Z0Mn}2{b}jTfFsJ77g?fqllGx4G)+%&2%y94U8c(>L0tq%y8nH{c5ro25
zO+auA@3rOe5$$SDaLl-<WR6t?;G{?^MM1=A;OXAOluK=VDyjXa2sY7p1;Ujx+K*24
zm&f7`J<|*;Rs~&_aznP%y4=VXB7}K_s$sfnjwp7P#Nx#Jg=N}<nC11_GHh++u_u9Q
zK;2Lefa-uA`>IYfHYv_$xyRwZ6L*KSCHr{|*?jQ3tkA{uH1wZpYhV0d-w6s8_0tcx
zqb<HxW|X+wN8%cUlG(em_B<wMA1;YSRch7I<a!We4G;A%Px-p>YNHQ%`3tN=7x_T(
zz5jLOAT)Qsp)0&Lg9S@}ql}9S`zY0A*tmh#5_h3pFIhGXduF2thdP{=AJRz9AGUGn
z|1Ga*i5%(A@k@q+<)tTvvbd?k3Ir&#wRe^$2X~Y4lj7q0I9qerVZj3pp!8&WS8s*(
z>{WVrmMe!-!h=k%ZG~$kyP~B5Bj-!8mCR|<;q0F^jPL4IsoM;l+^DfaoRUOuM->B8
zP_^ACBSXRXYAWey80QH{vgU`5V4#7iS&MtgqM_H?2Z6;`JI0xmykZ+xazK<Wgp#a)
zugl9Jr34X*SEWMrUs+eF12yD_N*+T7hI76!V2Gr+QW$4{e>%wFB_j|8k<;5bG~=ua
zQQspHr9a(TZU+d-uM#3pzK`~T;xOb(_Y!dQ%27K$78PEXCLWvb4+n!DnnT{r(P+yJ
ztc9iosfR;~XW`#tg6bk_p|uwwvHOFZ`apuBNTgpyz7VK8aKF5G&TWJm%^NA6wY^Fn
za~y+mJsg$P$E0+0)jQ+oKGm-0S-dwT$!(8YR=9uKBt`ZtHJHtf4g=8H`{B(J9qJaT
zGcsicLf{;%;q?|^f~z%wzXBR>iyez2)e^-+5n;f&I<-P|3hi>3=}QBetlcaVTM(@#
z>M=%c&f<CFTCOr2mQxc~c+DteJNZ>t+fps3?us>0tq1A`<=_3WBz5`M@lBeex0>a<
zdcB)Eo&Fnw$-gobM3s_KqsPP8tj4uojH&_jRiT4awT%T=Xevi-jvifo06=_w)#)L9
zMs5l7%i9fVP<-u!`_)cP+I&0nkkZtQ-%7zJe&Sx75ZNOA>4seZ$j*tAITZOIcA}E>
zG6EGT+`u7yR-i%wG#-n!dzOu_V&Yg4c&CY;o=p5vlS5UR)hfnv5R+$S$Cy4a8fmOY
zZruJKeRCYO6<zxJKrys|+z0y6R^`tHu3I|^UH@SIL8M3C@+c9=y&6Fhy?VLg333}z
zbttZYpd?1AKa$PYorCkn<15*N#lwNAAQf#K*X)NS?$Hfj%4=V53xcT>p4m89DB!~p
z)Dk%^if38|=MMW+W1Myb!1~oN*RN!Uiy!-^*&%1Eg97Gx7QK&Gf+Z`vKeCn+B70rB
zB;o1clK7X2MF87yei7VF{W>^*2VDqM9DTJ~c*EuWR`m(P8K%vCkjv(;qMvZ4kLdti
zZe$XFREI+%^Z{sZ!eq!25IoC$O$dK-wsDHwJaN`Bf|g7&n{aIQjj=hXQlG_zbQ|V!
zWKEzTaM6dLQB+1@brMc%LnH|_P%nBgLl{TNW$koZ@^G35+9I-((s?>7``e4V0BwVS
zoB+1IR8?qAW!SS>Q)Bq7XM9B82IR6ybXd6XctMuGQC({Sc<06(;nEBU1OmJj<lG`_
zEFxcsu7TE?J~P*BRv|{gK1a9z<DDE1=Z4Qu|6-LN(0b>vrhyCzdLd>@3^s|e7OWQM
z{|yFZ`2pCgD$9%1>oZfm-JY1my-7o2!e)JbW{3N8f*6v-*xd;|e)Fa9&v9hLxZK=#
z^6uSFTsR(+nB+#Agl9AY=wlXJUcJjx!)pHdp_G47rbYBF5niA#<)kd_Vy!tJ!6i=i
z%|wI}OcdF1=au^~{BtgZ=?$+SRxkNp#*8C_dq-gwo`<`j#3oHPa?Us{-2ba7E1UjJ
z);O8a1rr!4yjtuwa5#Z_eYI<a6ybcS&bPr<7K}n2St~|hMi460*B-o+ZZI=iLl5FI
zL0ybY#+cZdGU%X_8`=j3k1C%peeKq%bnDS|8c~g_^2!e)IvI9h06Gv;Pkm$oh@`Vp
zk}&ZwJN#n$4R#oC0ygvlgl`HVc1^!?Ejh|(J_s!<Na;y``m)X|cCR7*b%G4qe`z>e
zQHPekh&!@+%75<o;%Pb?(7-Z1`)MI%Z3EHETgBK%;=TX_FW5dNC#&Ss=uEKAHDxi5
z%E|djj4X)AR-T<5nTmvQ=D7r#ZxQN_mE=Z4V1MIOuvL$7MnI}qNEnFmci2+v@Q&pR
z5l^0j#Ymn5&q|x~NXIRM-%ll6xOlYujCA5auz%D9#-O2dr0V441JOnUN0RiYAEfT`
z@@STB?h8eeJy?#9G8gb-;<TK$1q&)daNV1620l2+Pu_-BZ7G-mm!ctgF|lnrwrk^_
z(p5ljtndi?5G1vo`puRsg1~1R354Now&x~%>83VfL|}deRauZguv(A+S<jTc3dOkL
z#qIKQ1p$NEQ@WsaMc__3`hbA0M&@oxJq3F<0S`*_juC=rlih8&;SdJNQL*Kn8+on0
zLWO9P_4ZZEbF)5D40mFMCypG_qw6fEW*D*tS7?j`us)Q%f{b({+};$)Khg&h5!ER)
z_~0-}B>5zXRo{?k6ufxVGk1Sjv#oYu{7OO2{P_?!JWrGg*BoJWH$<XY0vX<V0q|{1
zLK-6%_9*YOj^Vx{NNtnL>=Y!cQa<zqy!Ls^Bu*8Y{z4_KY_~7g;A&#zW|7Jp8(X9f
z6~gZeK2<jDUigm@u>!@zYRkcxfIWsAB(8iUn~C(GuFnZcPC2i-Hm8nh$SLHSpKod;
zpkt1@9s48Di2n&y+-YE(<%I|al#<KaDVKG_4SnGSlwhG-IB7**aQHbp_Oa%o3ggbk
zqPmf9Qupbjja(U?NimrjW0tfyP-#X7i#*#{?M2{p<av8O03`yjibC-?NU`06)v}@^
ziuF9ZK4Pk4)dGza$~u5l5}^D^B;v8>FoDL$d%_H>$9c2#_8dz23;jp;dHN{p_3i^(
z)_8}(Iu^}o4}ltfk^RD&0!?=B`}WnT!;`0qma#(Ex^+R?z#}lU?z(*iE%@WxV*gkw
zh4G|2quccT(Mf4dj_)WSN*u}>OX%EK)d9%dwk}Pk(|J+0G;b9AS)-PUJxY`F5|-UU
z4Y2Ydgy_uSO!<e=stetBEFiawGO#~*2f0y8j-F4@@<#+~rmW=EQO{jPMPUa4pql=B
zwt<t!%(nSZWzxZ;TB3vKMQ<(yB8U635TL%nThQmZC3pTQ!U{qY$j?DBtJ#rzTJM#F
zs)KO3ej*xOOhN90_ti&n&;T_d{-L7hii@7k$iz{XTI>|iKS{8X;EZvQ;U3|EC%OS~
zK*gA~w^Qpu81_@hy@tXX$F>t$$z>npPis@)Si&SW4Ab#`<bD;#K~nwBqnM#buyRrI
zcNDm;d>r4EFvLOw8&1DKGm3@rYI_`8=n>$ddhX<M4+$VlSxkNGVoYfeD}?TLL*YOc
z$l=MBOtuEC7!S&2(AX&-*z-lPF3n&QB1^SY6Ns&yZ7iJN`!OA-<PR1A=`fM<jTU)-
zn5()=gf+#h*IecLyq4uL6UF~F(`)s>F_;vbSjc4Kv?Bm11yBbN0_BYKlakN=C}*<(
zMHX9xX&`zIo7HM+#h9eieAcv*1WM<vPRd!(v@Qg1VB9Zag7tTp#G59_6}}DU#?yOl
zj90;@3}5rM;%hV-YoznH8GI!D<K<`ha#Qp;)ca+3hI=N-)aTt|n=X-#?k&eYD4I;%
zt`CplRTR&6g?k8>yS3Y40BQgE(GY}1B_43TlzIi}6_f5aBN-2TDW++#A>^xwzhW23
zDE*x6w9n@d`+(qhU<6qxb+zMPp}FbI<n_Ph8@gsXRb`?7reW2W_*tqEx0B$kkYVI4
zS%d4eZ`Vt*yq8`G535EYIu-%hj*m3$eL!V&#QjkZGBnrvzw^?540DGnbfb-qnJl;*
zIttC<+hv7LJ>XD3viD;J-H!@oyq{qv6Xd<+(fU{gD^o=&-+3ObWCTq~NjRn*R=yuC
z5(RJR(w6Kzs_>wb1&Dwx;|JsE4S8@^B!hKkxPrgh;DAJEy6U?6VQY9W!c6WCN{{dW
z8)p6M`rJ9T@V`K{r1s!|SfuM7hL#z~Afq*YpNbsqgYg6|94bg#{x|oQee7*x=6S_R
zZuw2;{1GdsoI^INy*@}}@Yqx(>&?Ae)Rd3xg$f65IAuWuI{Rv9>r!fn2YTO~PKUp&
z7MvgQbNm1a5ozaJkFLc|;Zv6~n!x#txh_{jjw;P$`)}0{RMI5rTgP!wybwcq#2Y}Y
zb-c2gxn*FZn@NaI@j+>aLhgLooX{A{2>~;3n*-$W!a5RXoXGJToZpc4>HxE@N@@YD
z%S6An4qSA!26;lCzXrH-SI*p8-Ko5VGhw2RkV#evwg~zJd+aW9>Asn*r=v_x&<F&{
zJdyWtvr0kWoZOz0Mahfc<R-=lm6Wr_Q%yj1FKxJJ_os*j11hfQi7uHpMa<X^B~NfC
zE+Y2pn}mP0c=nNXZLGKuxM`&Re%qS%0rpHPgy4jv+nv%opK1akKX=gnj~%tYvxn`V
zjEWO+>d$S8d`^5;k5igfc-<2nSm`a7y@J#hnD8>Ab)FUz8e7S8e$;wh^;77M)p^l>
zP^w_Ck{FVdEBwIR*~;<oPm%Sim@IM+tOQdUYMyBA)X}e;3H6DBvZLdQBkrZ_owgpb
z#3U_QP_hj#NNjL_dsJX!g)wwcbWoyRX&2(wZ`D4eP;zyc#BkkW7vl@i{oc^+sj>Uh
z$Sb>C=-I$OhOuUF_kvd^4G%XFn|}YN!Of&EBB{6byXGe;B4fv+F7^>N$S2&a0gk+T
zf}I-`OQAAn2-A)DXtb+JbyJ5~bEhIj^n5jYK%BBb$L*jt5b6E})ff;HvuSWtu!%lg
z(g&xR0I<(E^=0NH-YH3TGzd$IuzeMJq(_Ls9UC0a55%%2SirLvKJypF4hvE3KDQL7
zmYZ!y=1iC{N-6*tg(?yQDTr)Nt5PAKe7=9l&luje@Npj6i#=;>G6D=NY*m;108RnQ
z>qcicDKBq7$Z#cWJmlAYF}>;sPLH=t*EpM$)%25lh7`vYeeceXgLP|~jkgfxJyg@a
zr-^VtIgAbo9QbNMb9*MBRns%b?CX<!dy%+>7IP(C9ALFD$WdQAk52P`YJ>(LBONi)
zne1zpLok~k8Fv!cJDjUlthvlEM7}Stu&O(i%h3reHU@6-B#jte&RXp-@OzxAjWJcD
zl9CzbK%){gL-sh3tiJ;dtUY7Y?ra)0M^hMx@Q)6CYCVgo^PnAGP_X77!V$ZB7<U*t
zJ1ew89dA#Fl)gCmPl8?2P&h!gqS>FYMd~6!ECnjJidl6n#+>*M#LP(70tNSqN}8Gm
zpe{G23?E4BTK_*yiFStTdLBbFZa_D!v_uGx9H`i^qo{cHL5vUSk(BA$aI^OtEWMId
zVl4BLLYydX`Omso&JPVvhARmOnbZ^HV|OjXgz7pztUE-NEKIZWB8{!^zrj<82T}j|
z@OSed-TOt4xF>C(i@wjEjPYL_MmB>jczB->r8~1>chE~(7MPC)Qo{CIli?wEFm3I9
z?=doVy$j<-t2{^jhucNI4J$EP^%G3ypZ&QBn#@A?%$4fh;5BV8NYcV@l{?WcFDeep
z;epI#Ip7THT>yP%i8F=-^kbcwW2Pw1qG~UN%lj_vs~?qgEj{>dj9OZfCu3e;J%q>W
zQ*7@v*=nMxv5r*e`;j%#n(U~*%pLX|6N^cS4`$2U_FZQSF6v+HxQ_Cg!V_|an9@Qi
zh4lWb1^qMq)twJvYPcE-ow_FthxMQXX?T5>>M-h^eZR&JN%22vGdqBOUgzEm4o;##
zZsNzS3d^I^8DhJ(el{l=;=(VeYR1Q5qI<U5d83N9z#%MkDl832H$gML(bJ{8DshG3
zzrtN>99=~F<<?2r#cw>yWP8Yac#U++dzV#yW{%0{HZj(z-Uon3by@2>>))$e;uW~j
z*vx|*#C>!DlGa#OQ@Ga^EKkba<$subST-S>H~x(rD%5JfP9wu%?Zg0O088EW=PZ@n
zMt6J;T};V;B3B+k2yUx><FDlr|7>SO!sO0&@L`|Jo_5KhK7vivE5mZoEEpz;1(XG9
zQcADh6+U}jK9w|89;aPZ(LGo@E5JBBbmRT!kBYp^qLN85(&Au=k!}F55wjEL6#JOz
za^>OY6qbovy}dpJVtCGzM;_KNJQQI33QbIG!GV3+Z{3i9GHY$QW`QwuXC@)Qa${fO
zkyXHU%*vyYGh9+vN+FLHXbq30=R0Q~b0tjf3dtsA9BySVOJx_SHY?%P*AT92g}i<|
zQlvdqJ3@2_Y7oS9(~xfwsfVZlYE7BjpMvIalicZN_ZiL(ejK>p3Im;H3R2N`RjryW
zudku$$sdl}ZQ-={!FRPd&i<E~l)Coa-$2-@741%>Gg3{x=P#5S!WbQBv2J!AO!C7=
zP0D<11VZ1wUrydZ)tKMOS$0|HsGk%X{DoT&Q7iP6hKSlJwrK*JZG5DV<MwUigcSzy
zVedpC418Km^^w*)Az+MOpqR$ZN|JeqhNyVbQ5=TXFpdRBjg&`HBv-38{-XKyCWsv+
zXHa6UvBrYHsidZ4JS#b#Jf5cvQ+~w(Er(sLZ@ArO=Z>|LOc+-Nj+GeTT+d>vzSnsA
z+C`ka*{p|rev5E%6cP*tD%5xq`&41sL&WU;7_MI~)?FT1v@Ig^?!jSjV6N{mXZzBU
z5x$Avy8uu@Bz7cA`IEj1K-*Oh1X{L?|H2NzE0nWtY+%X+DvF}s@};f>Wk=N@W0R_P
z(af>zk*Zk2Dl#{fbUfJ1VK5kI#*hwpogAVMUpAUEm!?{E0anmhlczfSnfa=m{xs-h
z=owLa)H}q7>i8sxLXm<dD3&Mz4qQP9zrXH4741eUZMw6lH^$W0%y<jx97tAy1H4%5
zd)Ey*DQ==sU~CwjOkB(UJInU=H!>&?s@JvDQ<_RVCS-hP0!zT#ms;)HR*V9#k_TRK
zHD<W`3$FLu$$)3yz}gD9pCF~|P}%KE7RF1y0xnjl%Gon!xn>sM2^Zv#AyKO=-m>{`
zPI_zamgeGdrC+{So;A<xa`vHrCB|7s;^{LZPQ6=LXF1e#vd1!4I=VFGi#axDlYs?V
zk#U9Rf`UTOhr1*uDW@V5>7(K3H`3q7-5Hzf2A*Nw=ymUtYhR&kzOqG0<4e9X%fMcu
zL}y}a8jmd%@C&O?lC9WSxhn1W?NRB%D~MzR*CUc4CFzHxeKQIi=uQse{!(2s2@(<6
z?>qC8sVPjRaz;UZcPfd_c!@mJ-4Yw`dqNpkVtjrdU{-X_%tdVO%@CC*ArlY;Xf#*g
zi6OZCM@_jXmaWSd=1>#Q^U#%A9ql>KorYwqIdPEtGFy|^JgFE3Qhr1T>$hPbVNb`W
zvX%bH<|eaXG5DcTI(j0-s20G42HQX0#$ZfPQQ}mTR}jtHa{$d<E($;)D#+BHX5A|h
ziU+orkmGY?NLEX@Mmp1(N%_`udJ5?ppX=2#`5hDYgg)I*{TaKDu$QAC-7D=%X+_wB
zZ@VODKytXcOn7RLXbvY&c?8(9eTSS>MkyJZ{XhJgW&p)+96+aOmEqcJyUj{OeKc=R
zEiR@Mw@}X)DX{_BuXGB83}TU2T(|Ua@lX3FjDjuJ5FMLG2%{~{#_Q3+t^dwlKzwk2
z>cLFfr#YEpS}&!;!~_X{;HAg><JUiUB(qq?w;J5t*qs7ZlYV#?6|t&B%-slX289%T
z0!w#HsnbgIyES%XF5jbtd}Rh={?@6gm%tR#2kEz_cg6w+g-aiVpCbF+2>3H+T2HG&
zwa!9LpU7-sxsK*xDMlsmh9M&bNpMNh+R{VNfub09u`DsZkI|bVY`PsFmeqI2|L&3d
zTN>7JdC3+L71k?WKdP;_eO(`szCeh1QUtb+o9AhG^I?mNiUjoA#fb}xF8TF(EOrZ(
z36P7GI?k$He+UCGWr2H+Oo7}-2bBy<)4fSGx5#p<pBgV~q>r#|4_ed@a!B}&y|W&v
z>elHm6X*LL0A31k3~|5CAvxtXT6zSCu{5S}QY;61Il<-t;{Tp7dsP)!R)Q~DmnMRN
zCIj5O+B_#1Op4$vY96GDb7Vi+Px#uA>TzBm2w~!PFYY3~<K2(AH>knI-g1+I2|nht
zul!62g;tI^nMoM48+hEB)S6ZNknEK(h#PqU2*t|_n^iG|>YO>@5$Wu1HpN)(oFW+k
z5Q31i8QXcQWT2;cYfjTV5bWeEp}V&U${rl<ax{orx!-STn$lg?#LD293yl;fIAIs9
z`u_CNp*qH?D6E~2Y6fdfS!Z7VR4=X9oM%xjFi}SHg@Ww+uUB^l_U)aFK;U}!@s9Uo
zcCv*q?`jVaiEF2HXk$qd@hK_P@+kNrlHWZ+*NwY3f$I>c6+6;f+K>4n?=2vJxY{1L
z=-)<eYMdb=lJVRI^Vz|EiV#xs3igXJL8zGUS7&??^Ix(GQeaH1(sIMp33A1>Ber7r
zb@A7t=n9vM&`M$v2%Dji`zdErMrfSeh!c}3%ptafBQzagFZL-y06bSEdw8e{i4f|B
z|5$)_HM5gwIDYL=NZYI8y1(TRv}qjTUei8ZC_3GC3>aEU%qSgA>Uc&swf0Xn>0N>E
z3|?n=2VWqernE^3YbFaeHAAH)mtqmKo_~;4`~W3;U=*Z9AQYJAahWS}XkJ+Xgs@WZ
z(Yi9nK}%&jIfthO#75o$tAU@$YRT_fK9!YF*ceDce)iaVx4(o_aj%qBL{IWwIL;OL
zQ#Q3Job_|#L))LFaW1lQy_g}K6-g>g@>o91!W~TJK0!+I{;nG|>0ORD1pCv5m-5j&
zl^r`W`uG!)!5663g^;RS<AM;MwDI)otoa3VF>s^<E5h>|>M6fQLG5||k{-;{Z`|F%
ziT(hKk9qeb9}+0d{xBVBLY4SCX6vE(pphaj_tkOyoymgiu#YhssL99HC~nx8jfoEA
z6T2~vz}rs~W@vLz2<Fr2WyAbi@|31_wget*!CgnijdC$Yh=+C{+qxE`We(;px|!;a
zJa@SiL2;Bc?FQbgrx~&ST#enj={j{i2O@alUB*a39u9vZMXKIXzn_U4J+%wA-6Gwp
z6^bYh<0pG)69-!ghoJ7rU^yiK*~I#0a2)u2_ra)$$2CH9`Lo-J;%N^E$NcMM$rX)W
zpG|k&-9IP$!n%2ICiUi`nC^N%qjZCQCg7HznZF8+SfNQ2D#s#f^l#NU)Q2+q`#e2*
zv{neV7p046;vEW9Apyas$WRg)@?xyF@xcEXs`M|UkGm$6M>vkgRxN<`-;@5@=3$RY
zzoJk&P`Y<lb21P8j!m}^=L5P6s^hQiPz1Vd>|{oGbA=h}HV1Je$;sx?hL>_o(79qh
z1QcE8kOuwF3M9WA)b{O*&voG>+Q==s`WFy2+I-wvj4lHYCuByCerbu5J*ognpN-<#
zP73Ea6vmy7VKNPrW$=P4wZJRGDdVn`cuSlet}*qyAnphJAn8bOLF~DYTbuOI1eHbg
zJ>UZ6$hCALeSc-%$h3I%EZ|QA!2+ko3DL5mW;egY-peC_@6X8nET)z$!Grzj>^xJ8
zP{B$NVAWJz!|1iada?9U@{iD75m`BR-3_UREJRn8+<l)Vq3=>E1CyAQo1|9E&;qIK
zPu!YG`Rw2VvSqCgJFdT$xYi|g3%fPs&`-E_Yx^%`g#SAD8+B);gRG0io`TlYg+E60
zY`!4mX&N;w6(LDMMrQp{97WD_Mjb>X^0gugW({j-gD|LPsLW})o_l$uP0%V}AP(9x
zPr<8~?{(7Cpd|+}fU`Dyt|{T7Re_ZMMf&r{VwH6Ymv=pSswrvfD-QMt;L(edkvVAU
zU(1;3k;RWZ5Z1QC`e-3jLFyts-|+3fKv=Xjr4^<JOE7u9s&BmwB*l-cO2@i!-etqC
zbbAZ+oVB0U0P02R0gD>*>AJN!Uhr=N*4;`>A(lyax~M@0Q_!V+igRAnESk7sk<p(f
zoG!ZIs^o&xaiZg*A?ES0FlAtO!t|||L;MiPb(-ZyIL31Y3Qk%i@F7b*M7;?=N(=OJ
z^Fkrb7I@J^7BCz)`Iu-|O%l<!FB-(HLmUuxW+$~~j)1A1KyA9DL(vF0U{v%~$#n#N
z&mR5NdF_-6B7W?Oyf(ZQku`<WgmMguqBESdRBARQz0KxO=Kjh`;G{?EA9$WqEc-cH
z9@X~OoX9&ytif)>0<<X8u$+2v>=LqvIL`GqZ?>yDZiytj{yC9f)s#fw`Yy1YWBL}&
z3zg2Z1#Lr}b;_P7_KX<;P#dF6Qw9+>hCx2IX95+tisc7YBJhfcL%*}V`>c;zeN|cE
z`#SiAWiZfnA{Qbs;NNS4Q1KvD`88|<)RSfIraDqqTE{F_($vWS)U<7pf`93BfvH6#
zTPd?7c!AD^=dNY(SsDrt9pva|lrh}Rc{2x|)~EIL3#5z448x9{XyE{dyt1B(SzRZY
zlvjNNyWqw~TVGp+N!F8!c)bksU|^t|YC#{=2!sZ=5jZR0!}xb#A?CTz5Nu<et<!^j
zWKL^LA6O4sre4Lp<zH(lYSpK@obEAD7lk-lzrm%VuS;W4%i93!L8?Jm+x-ctB{A=;
zw&}T}t?!iA+DH&%*R9C$WeERM#I8q526sMScFJ%T68l|sQNqqRS60E?MN3HAXKPEk
z<~B~xY>XXeTNE8@{%ghw;ED2jm9N}wVR|pv*Ad2J%=61UFQQ*z1(mI+F!CZ#f!FY3
zn1LeRi!GCnk9rTVV(tm=V3=%Q&9z1XHNjfz7Le#UJo?1=k8CQl30`I%bM%Pf8@)5j
zvzC5Q6C6k|-juihH2I6L^*0V*s-3<J942X!n4}I_sDxU1-foC<P3OZn3^r1gx(`?O
z{ioxVRe^4|kuXF|Xq5azO=1?ve+=$03nma<$zLF_6w`W@`-V=?n4*8h+<!kx_|UB9
zv>VVk-nL_r;hRs!gQFqp*ma!)xqEiIC6YXKwO8#SzuV%yoZuk_%^*a%A1iqh(uz2L
z#^(U71w;ykWt|KJyu)@O?O_jrfY5g`Ypq+e+&G<GSM@|KRQds>MRj^h!xrbI`~+eZ
z8=D(JMc!P1QXnY_?UOYKXBPJSF<foruLHZki~MU*vv{x1=YzSboIqxUrgZ`=wU_&T
zhY!y9_#vRgkx><4O}F^Y+6)#K`I4=9WblPajI*Uq0r>7hv<RqPdNlY9K5Wff#31Sp
z*fzvefE|-0a^BTHn+Y7h>{}yfn5Ddj2=;FVX~c%6j=?o0dd(=?-Kl>(_IBmgz1T$(
z{e0(&ZGJtkCHls3BdJnIEYv0mzu#V4W_lKX?{Oo2tBzAyN~3B_OYEpWxF^H%=+IdG
z|LvU^P$J`ci5Ie=;yoCLEjtL)-RmFL)P^}`e%{)vEycAdGqR{Fl!U3^5+;^;Qdx}u
zZD^AdZ5l=EmgvljpQnI|SoF*CCG_!pG~<=JU00T}E9^9qgINfy%JAMmr=^L9=*#BB
zEe~(!z?F_<I)|K<3t0208U?pHA0Y^(2Guc&_3`1Lnw`QwP{t2)4zuL+es~F2)w6d7
z9zXgGA+3lgz5Q&hvZf0cX#f|I6QLrnfM2-3HXhyz4Z=}AC4@j2#L7>SPr-rA9Tt{T
z2+u&BK&C++BotZvx8*!-excnzC8S>^;XVOCZI_7ET4prY<)u-nY7{h^rO9I1CHX>!
zqY5oK47AFAfPf>|4ufgb##k7}C~^G}$?+MyiJ4UeSV_Q#$@@=Q)Jw%y3)BmydNN=m
zpQ5MA4&D;-%?C$Zm~hyw>iCCyW-z*faT>=kHEIW4g;JX*hENmL&~3UveVZdq5?5w+
zCSf7r?(NxzP%=G69Zu+NQ!HC`{3-KzRw2BzQFcj7a$7p^4l$noTMWY{gJd$poBjRm
zUddDwr}bkAN-lw2wWtsrborH>sQMM}qP|Bt4@j%*urvD(S^O@$n}|h8eZVw>B4A<|
zz{ttc)D`d_8067@Tl>C37ac=9_$RgD1N=CTwRnhLe3&_~R)-b~DV55XGW3ZKCnf&q
z>NtARkX|0q`abG?%kM%a9DeMY{>Dgqd2&Cnlor>GV>uX}e!LUqLS3T7tkm5{lM30M
zB`S8M>$x@SO^yK-Ob>o*|1+_dUK>8?f2gB_s`~ioXD`h0KYe<FmsGv|?;L55g9S|x
zw@3!d;7ZsS2ozU|aS%e+OLEQLs!?7+db|+K!TANfz1%v2$u(}WrBcDZk*+~kpGu3~
zcWlbLi0_*XiL5qU=dY~Fu?d&>>(<>zWthySM<#u*mhp^T^dBoXvl9r`bk>D&YUIe@
z;e=*m02_OE+mTs>w9p8zYtep)m11K=UbPx;13p?m%5|93qeifPzm_l$eX}04h}=OM
zM~c%ge+#pgraJ`L<iwwheAGHI$Ybjd^T%KJ$h$?3qPT==&i4t{8u(aw^}l2yyL`6B
zwzId3fS)Mx7;{C;RK55%%uj?G6w*mmTI=N0?B{S$KErdlqFvpFyxpSMvk@=xGhVFV
z*!z4{P2=Ec-e`&bh+;t(A{Xp4;RACctab6tBtl1L+T}p>EX6fFn%8yBmUeLV%$xxN
z_{-0}zq2+9>L8me^39}Fg8`{+OOUm+t)G#Q>CPea8Ay${=^lk(RiX}_P504TL;5~u
zIn}9A(Fy=CJ8Ld8@bq5>1TFqyE(u*?_>Bfi46Ul8c{jpG3L~eSSL$dkwY;9;wt}I2
zc<}uggEkkK922FxAr8?%Hyha<R0Rnx#%+Ywl9i5QT~V=VRn|IACW(?O)k#r(opTX|
z$ZKJ^(6){k+ODc~zm&<#s}eUL+Iau`kY=KQ-Xa)tOh|o6(?`Wuc-~!l@|XD&n+Cel
ztvSM&qy@pa37zU$CW_U#oez)FB;+&hlS6pzNf9kJGU0T|Qj7JQv{_sz{|n}iQ||#9
zq3D~{quET)Cxi73l7%j#N1ve6IB9nQ{PwJ0oS)P(v3!3H@Uf~2>RDxiSv>UD*Pw@L
zmEKSg*h>FqIXGE+WA=sOJ3(dmdF!|n|IxiXhOLrZ%4Z|f<zADk@BZ+`Q@*C+w}^`2
z$Si7G%a!dSk25bb%8$N+B-}RQY&}jV@z%VJ>MREx2c!O$4<V++#IJS-Ky6v*uxfK~
zz@R}4efs9($=eJ`R@Z%boT>y3#M-q)w@3zo);UQNq0FG|nK=pRXSN-Y&UWTGHn{un
zYMEO5>H|OmuRX^3^ju88$*QZ&ZHt`dh(e#u9Z1cto~ZO24{#J=-5ApOI+XM|>2LJR
zU0b_yxox(l0EquL5LB`W1Me#sP3eH;VEz?9*&>0OzldZp8M8XGkXIc7;B(@u<V$3&
zgU)ZRvr9QLz&6&E{_EUEK$*ld6qI~;>ALp#@%cX!(~!#qY&|}DlLpU`@4;(VzDFs6
zCGSj4fkP*Bt+A=ta-6Gs;LDT6&QIPUlc3!9R-ioSYv6b~gc<)MkL4@~IR&~J2|{M`
zj*H+ytQUi&kdO`SVlyqBml_sy1;9EyrG=mMK;Ou$J^P4Hrz1}>-?;Dk;8xbwK=ne$
zJ=nTP>ygA+IP*e|<dhtu!p)Y4r-BQl^ieLC{J6^#dyjaBClQ%pKI2zC>wQqMTa167
zCHl4ZeS9|ORltsO0qw|=zT`Al>W}7%lgQW~*NbD0)J;9kKZ9m1-6y&i8w{v5&<FJU
z$sz!7EE{7N^owbSrFyW}Q}WZTfLsD=m&c_gr<3mYu*c6TOp&C?jFrEOKpt?y-r_7Y
zx+64emPAcRNkWL65R`ivn`Jp0Vx|kUpadp;v8}H<7de;mS?Gv?MuY+FMjT2D@#Is+
zD5_W~RnlnhWJZ7QpsbK*QiH=D@7bZzxGRl3z%gi;a+UA<%XPQcL`1~VmZb_ukmBYi
z*kxfKVQ2Vtuh8^nm2pY&Gd)Pd_zCgqO_Ai=FEPtI@@4r^N*YsE4kza9?y>UfOacBp
zst%wtCkfb`nw?f>P}aE3*=835ssn0<u!*?p5MJPpWfn20`zjXVkFaWm1toy!Fa#Up
z6~Wr3!RHC#-%CtN?Dh&#Y{khIwc{+Q_mD>}(^=uO>SLXPmUGh~PRaUTG1(a=5D2OL
z`w>X(kQN(POJ{zh@!z8}vW{0PzCwf-a3%NOS++<F@zp%{SmUh+_X<<mno6WCFCh1S
z@>B(mD+enJ97#smawKk_sb7$1DkhH(zOIoDIw>)-LV9Mstj0169s@s}tSYr|H<eJ7
zDbZ<(|3r2|;|B$M2TXtExh~OYH5&t<2BYq~CoG7q&3UTK8f;usY$h+-B0%X<80Mar
z@n?@fAL9NQSkFqYfsr^V9FmfPh0>jbCxH&&b7ngO1Q0B^AAyc;{J(hFdJ`HInb!G-
z6apSOtyOClsu|X7itqz6Yauc0YSS~Kdg=(ITu4ANX7YP~=4(4<EPj)3Pc*5vnrMo(
zmHs*4g57f^o*LiDmN=d$lo;voq9?eULQwoyGjU}eE$r6`#>!N5K~6)$3SbJM>2c4O
z%QlVQ4JhyNhWd!6;OE)mw?}&d>MfE|FuznYAzQq(y_oQi?R|wbaRsB6o1t`g3T>e)
zXp4$P5)tUpt-^T^<e?r5i~+=Fjm`=@fN|hD9kz4=>`2;C0hE&(8eT_bT=&28gJF|c
zjtv5iy14`IFdazoxXvymA}p6zsXw0NdX`(n?bsYeif%G-+Dh)vwatu%M1k_Kb&=Y8
zs>5{9)!aC+UAIUxEzzT0xwj8Jb$C9fYKP6YcGp#6@`1td<Je18%j~p>G_9rV-LMcd
zgxQ3Utc{@eY;n9j=m^Me0zf%4eAIQ^)TTr^1MIP90o6KS|Me-S+E?s-k8Razd=^#1
zBxRl>9<nZP?D*EC8Eu_x`VV+qn;%aEErmq%PS-CVqdA*awc;JkmK!Z{X!USc(jdc<
z!e*+iVC@vMYP{|rN<rWA7MjMT^iJL!(W(8vp8vPofh-^B!+U<BOxtHTvTP$7@pTNX
z=;vf7g?>roO)&S`5~D+P!+*aWMEXA|yphn`m)+$<2KEZ>w6PBgl+oH$$<H3QQtBK4
zML@d0p085MZ}oxB;1>%S4WysbYPN+L;QKPnbe)g?MFr)c)7Fqzl2DVn1<+Ziy_mF*
z>W`wA*>1WHM|rHTp%g8u*P7^AtLENF*O-KX)Td3k)S+LI-+I=c=?2zHhma+-4V=Qq
z@PLpwe#BG}ZWp|DJnnZSM2q7Q<;r{mNckJqG$B|1A}DeJ7Q+iAxD<Xs!fq_JBIY%|
zf?lQrB$66ilAB|gJmB>2{`T2Pzn5GDS7H9;Ni?=2Dev*S_14W{EMft<sIO_YoG`F<
zwe=L{uR?GGluz|{>ny(mv3a2GOO9xZ%V2M!cO}4C(oOk@n?W-Q$2&PZvT=-S8v13C
z7fKl@GnR)FYCCbCcLCKVBXJ>*(li91=+_!IHNgiM2%8LSa+zq4;vLJy{dvL4KkYEX
zy*d0XwD<pSkFs~m?C#7F7<zQ*-Vp83xHmMaP%QP8+C|usEnGF{l#wofOZho45wHD5
zGFPtbDW$ZyJDZv61eZ5Oz_~FuZ{P-OkNN8WQ-1J<XhrsZAHws~LEZNypR>XxN2sn)
z*h8R!#x1AKKRTaw?eE<DvH)();o>S3`1(-;LiL9^Gj0P0I4I6=9JW^tJ2i8g`47LX
zbhHY$u0l62)o$_O3-<$UIQ?>i!#o6k-wYo7#yIK8$`ASYwcHJ2QxK6tFxz40^rxFF
zg~r4gt3*jQAU~TeD1(zUIuG4Pgb<CS4lBijczCJ^C3Mp<^m6ZPUO#dxA@q*4p1G{@
zikhcKb89}s*KfY(ryY*_ujH3!Du`{F2%d5~xQC^18vK@adbOO=4JlUO$GrP<nEL(G
zQ<yu0(Udy18b0zRqzrm1_?M34me3Ny;@*)Y1^nk`3%O#RQab>lTy@ZGr9R!#I>}PU
z8eiHyvdSENlBq-22qz;zZtN^B$Fil)G@*ke1mAZiF*k2t@&iGvCuKTXQ!9xrIs``Z
zvFAxs*>HMFalDXs$u72R;(muIc(|Pv^z--%&l1hQit;A*bw4q~s8Si*vzH_BSTn_E
zi1MmYY^by9r0~-!V-K~Z0HC^m>ON^U*(RIwRbl~!&?uKs)zPne8!7bbyL~JUI`9>&
zQmwM+^0P5BMhmmZ%W6SyFj8c-fNtOxUfcMonywTA5<JAy7;dxQ^(h{VJ}z*D0*Jfx
z<V9|OLYEy#4;>0~A=T}gE9hz4sw{EOPsZGpG6xv(EOQ0TAEm1@U9wl4#U?GSQCv~)
zcWY)E$MQynJQ7-jdW9FkGm{C%X{R~00dNr<<&bu@(t4o;^2oG76PAG`shU~9Y6?w=
zc{{VMa8C!cUfq3*a2vphkBtbN__b{Lj4_eOwj?cJQ(<J$ct@Pc{p`!0Okv4ykvJNS
zS}?Qfe9RBleFIy&*<5pUC>R!s(OHsh$zL%;5BypIef!X1*ysDZ$(n~|fzJEn^uWf9
zwGHJjL+RThK(-^B;GKTmkkJJe3|K<#i86aL>F<AY=`fc<EFJg~Y-4n<_w7a;l1R$#
zklt%!n^UtH<YQemi}sq&n%KP&Yoo*@;Omr6_@Rd-nkBX3{a-Q)Vd);wHIrBr*0G=&
zYw2KT*!WLaJa$k;Nu4MyRkMpl`xV!3{tY^1jU!nl!vki3+PMzk1gs#S%AMi6f9~ID
zc|fLNL+NQCOM6J~i?2ykR7C_OxCw+TB^4_QPFB%d`VO`;VYK#y@mn%c4WIjFRH;K#
zabkanWJW1bo!Sxp0k`Ytx6u1<2F7Ri3EfT_+6HSYgfM?38C#5_Zt=;MZEpx%b2ce_
zGN`xJ3OH}*#=Bfh_8bOa52T^5&lkHdc)G=X%@{GD*-!@A-!#113rk4Gky{^IG+byA
zU#n5RPs3`-T<Xo7j#`2m3p0FrqcEZ&(hA~8&39H$6p0fI6OXBvYpbA}^p;+@ok@GG
zKoExcTdH!F={x7|s;nq&YnQ4KJ<xkeH#8C3CEDbt@d(5~c<gPM5q)EZm(8zEKVV_%
zKUdJM+N$_AO9wN7?dasrv0rF>w5rXU(d_6U)R&jlbp`GF`Mzi>&Y!1G7|ln53-(jw
zNp5rQ!La6<%t60YmOnlH!^O30T=ImynaTpc4!<lx8DLpTDA;&A%Jvh^(3m#Tpi*hK
zU|ef{g9pU<-s6b}9BcyyXqFJK%!!~h?8Sdl!u&LBcj7VR70!^jHeQnSsNqu6=Atez
zq#~SXY{bCYUzh)ddOVKd82WKAvx`wGB%|#;2EiyBD{$#U7znvI*q)5SlA7#RWUnpO
z=Xd_@Z^A8O^d}Z1Tack?3z%^yA5g6C%^*1>1Gif-ZQ<GrGS*Cs$CAYdIa{fM%&)#j
zDvZZER)3y|Q9m}w87<abCjl9lbp65Cl&bCPf|kx5c7(Ne&3V`L461llH%suRUE_6M
zP^XbauemQprI#F5DmHLROJf<1z?-aPbcz@mB-;DzMokda{J9}60PZIWE7&qrg|H*%
zvm{u>!ZCvbul&b7#o_o39N*=%pd_)v0u5plW&$uS0Cv4J7Ej!`m-qR$t}cqX+l3qX
zUTJ7Oj{YOU&PbC>=vkOAVc_BPK6Dj&uvZCEgKoTD6%b?nn4BO-jtHVe-d5*1{TF=d
zI(@I?GnC${^0E8=I62<>ek)K>6<RGx1SwGl|5)ol3niOGT%r4mtIcwKQqe<T!o3vu
zy8rvMl7#h{*vE94j-rU>kXWxu&$+-^KXjG}M3@ag$b7j_!uiXMzhdJ;q6(LqDzPN$
zOP<e<l<2s)9cHDGMavpvf|##Jd!_@E6(k2}uGaT+lD`bN2#5^V=c#H4ix54FN!C72
z_mBMy8WlsdKsL|$SUql-C?4=LXrw!rC{6wRA`<|+!nl@@hwAPa4+7P<oo?qT1+l?4
z#1$)ZhIIJQ3HZgr5{?P-FQ+T>7AQ6rlF@*##gHcNiS?!YNoe&3*9<vHzoM(mAH-<@
zL)A`qyYSAn$gs>2)lP}AlT{h-v>w#m`fg{GN{q@bVm1AnSE*<edBe+`o>VR=w;U#R
z`g9p1=5<XsOl*CN+ZX@abi1&Koy<A|wEjTvnv+vJ$-A76^YC-5jHFdx=&rZcBXacT
zzA=k6pTnN8lc}toortt%tzw(`znN4+ZY9p(0a~1#K;RbpbF1k=iJ0g4_V2OCs<U|I
zoqWbQUj%`WT(B{L@3ljrxR#YldNAGD-XXFQHm?->2;!w3Lx$@9n@ekqBSY!-j1E&j
zQ6@GBvmPLfm|uZ4zkBM6W$Q%`*!olU=wq&`z~Zs}&~t6I&1!Zt<+KchLvr;Mw`0x(
za@l_?t>H?G;GMB|zsLOO#Ep}yJttCTSD!of>xP*iB&NmB-xIXuj;io}g@8(w)>9o<
zxU+Bw$-eUgIChROSNbN&Ii}6O2ii5@KL7-l(ycF|d86o>`^P-+Q44njd1L;mK_LBR
zwi3IEXp*hd5Vh9=J2S9Y@IV9pg&8yZZKWgZesxCb%Zpd!sjoS?@Ck0vPV?XGTMZ(G
z?R6d4HP~c+)s{(6Ju2^VUCD{+D%sqdu{iI95VD<Xt43>TUULV@&Q6(WibP-0tnY4(
z_#uo=Gc%r|=(4lyL{@%Vc#bXPIw$d_I|0Sp3bXDo=&D2&&f+)Z6{y((uxfCRPH2Vn
zy;LKa$!Ls9%~|uxJfgSjn3IE+@0TwxG6<FdO6u6z4zs+kLE(yYBNKehyUlD-P=Qq2
zVdx-Glcf&>-yPNgi7Q;7R6^jgfCUQdOv&FZy=DhC|EXZmE$?KYDV~SaVOuU5&-(28
zTbYg>J0c2~`(8ncMzIFpfbFPInzkOU4AY!GKI3jz_huf#0zUw+XI9Vp*!&d_+g{yc
zgq2CH)&FJ@8m4)Wlkq!}!P<z|EcfTd#zT$HFhJT=2$39CYlR(-=X{KYE&{JQc|Ggg
zm<2)ZrtW1!VCoMHN=d|uGGOr)Hl5Z|fk1pVvkiVgGtnx{Ej*m92IPWGhb9XkJzrCN
z@t3~>n>C001^S2A(`hTJBtR#`)Ozg-YQBYNyY)C=HLyhM-y=Bb+HFDuJ8b6&cU()i
zn%f1vXkibkEENt<MrvZtAD#G>=`OF}Q`T6GT!yh|`x0{*<_Xen`A$|A)DQhD?>j?h
zKqjoJ<VH>y1fNDxkBNmHC<v(elu@uKf$jh77@-Z3k56i*Qh)x}SnzU}6D)4ez(Ott
z_cTR@BP_}$W{~;%{;uFFbDeok-%;|%)0e6Yp?lpQV2zX4BUAs$@J6K7YVzj5iMf5_
zlM~-H*D+}pv0~YTcs{V?tk-(o)seaVcM<+~T5R5w5$oLaRO$MO`lRu7SPK;Jv{$oV
zEE-e6xYU<I^EojyUY~{1)4mx<qB~XJ(ocAQLU5(hAl8Jy8!J9$Hi2`v#<Aa+2@H&Z
zmh<%N0P=&{6^s_~BW!^Eqlfg`K{Xr0`uXtD-B<PT0tu}NHw-q5PTb$`o1OupNdo?$
zZ7F9TxK8wT$HE4~^BB=`biqB6G-`4)3j&R~MtuhYu%H-(+tpzt80EQY5#y+E4S`cX
zh(h;&uL%p`ZO5UcW)RM?L;CJ~w?0sN#dfC|3clT{35j)Cz&{-L`Y6Hg;2yd3{!@`K
zkJn9q2rSFri#H}R&5)`)aDbFd1fdIM0<oN8bN<4ygQD_=Se=Pza&&G98l;-y=a)j{
z$W{E5og&j3Z^G~<P!sW#Wgko<tFNKLk1KMQIvfvUV_Ah~(^a<2`{6Q|M$#<1;4m+}
zePUz!pi$h=qWVL-+FnQv^7eZ&KW$_=VGp*B>f4ceCwhs8vX``Uz6bHA#?sY9+u131
zmOC<dSmEQMc3N$>NTpv>GJjhS&<Bp8aW7Ta{iE<0OGGLhWI}QYA{r_TA<zDZc!5!;
zi@71$yGoub!0?zImR0B0DChp~`hYvvxt*Th?!aUsOgBsUag)mldNZ}5SEZF7KOV0F
zI17>jGU3vDyq{ee)ep(x{a+`nCqu_Hp6x^XXa*IIE<;0vz^qFzZ5v#n;p&YqzaVpr
zuD?azc0E9?AEY0l5SEPOxqH2w7^NaAN=@L?MiirSnB8`KT9$i`T}Coyzbzky+;!En
zPFhz;WOH_VZ6*J(R6e?ek~t8BiX&rlSiE%{r;<)tDiB*htRtfO*lFLw)5)yO9YDTx
z$2Z0=Rg|^-bNO4$o75+T%oonIRo8m!@NnN<Urz}*30c^6or2xu$u8?KxqWdCMW~FN
zblOu&vh$zvrWMzO^HNWp{gG$_^xtDjakLbs_@zKdzm64jo|zzMh+v4zYwB*1!yLpc
z3Fsn|Qu|B08zZqG#_-ld1XuG-e{kuH`0%5>eAhD{PrIy=Y%pbA?Ll<z+%_iKIjw%(
zR(H{gqW;*QLU6_?^C3Ed#9YU%g$uI=Tt9V=7|<1rT|Nj7tyV2gQGSOgp;tv}=(9P1
zx;K<bw7A>H>zo;mxZn2%SM0BSY&!HD^zJ~Lse7gG8t=nj7`Sc}+JPLUWruNWxJh3{
zrDSAXVj<i9N62W&JvxSfHS&I1@q~jmo2IuMI>-#ytKp;C0FHVlyvz1)ln7H8Ml%d_
znZUHf_;#(~5*9H@KKZ_u*p&QV``4t(hLzKa-L(CJSD#rZ*sj;ZH5|wyZlpTeSz}s-
zQV(%<uf&IN4=}eV@~H)Jx*M%r9++Y(O<AR_BWl=Ea}Rdw*9||tC3iOjBpsDPGksY+
zCzwp|sqPRvcO1&E8C-eg&n#r<@33vQu-|Y1;YgIfVdHN052A4M`S03!$H8efVt4%p
z_%(SFP^E2=_o}nXFI{UP-U0U+5dH@T3Z!;RnAsiF+)<ic_)k0IrNB~QOZI<Y4;tam
zwEZ&~Ebj;wp@suDFG}Rs1ElT~RP}dJ5}Et3@bry5T()r^%y7x%RSD#R<@y|rX#}=Y
zZUIZVLA}0L`Q>X9w7|#ErWzNN#@int8InwAWOCRl-xda{u@OKNF(!W;XD^{=cV5>o
z>~gbGkLPb|(t3${;hcE;x@`zORqbhq)$ZjU?@`G5ZhiD(>r7x;L(02*@mwSd*ud2X
zy*cVl_1<rC*#52)co4)a(&31oDE@Ju4aB694Z!~FIq-Rb=?ihL_J*FAh|a(0O)aib
zD89}Hai_O#7$&IS8QFAJ+bZLX3VG3$a+5RdhJ|rg>WQ16t#MXlA>nTxOOUf!D<eWz
zQ^?*Y`y59<hh1GV9P}2q*&vypVmD==_ei<WwpL8WC>nO(g25sls({E~aiT)<&I<J8
zGEch3Ptzj82$UYpB{ZQ-uppzxmJqYckh{P14e)XRVjy$CZwew)wR0K0^pMf{3cntP
zKf{EgD2Oz~=<YpOoF`I4|Bv@m0a}o<*JdB7b_TQCuA_}WL@*j`o?45<pj0a|^M4Ez
z+e7A$Ne*qKu?=9tbcE%FdJTHdZ9t1saxwVo*;_rs%-|(G$`IIuayWdho{1#t*QWFK
zF=3}880MB*efMUNxKB+7e@AQ+)wKEU)>XfX1x$#j=`T2PhzUFLv>K?y({%es%ZHZf
zf{ktIL>5PI-Hu78p|BL>#P}ry1f6GOAqz(WZXFaHB^{w3=;6L;?(KKM*XL?>QbDpM
zK13-F15cRzQ-83rJ$FBS<fYjj#{UQ1`-8@5Cyg(dUWV@4sp6Nvpn0Y28U=J&tAhYa
z_6&B(s0QUz^npL&f;H(olXEH{=?o66AlGKbVJBX2;|#--Fz`x!CKjiLh}MlLNeCii
zklp-b+ko6C-yKh*el%5KF~$K#A+pgDm{~k{Lw4RRJz8gGb*F)CG!`MU6cJ%eO-~PR
zZBj_P#hnbIFtsy3)QOYjP>GI@u(c>EON<m!JSa}?-S;V}V-387VM}_8)Q#w81Dq?k
z+q;t(O50m6U^gM(&v?e=mxACEZrK$zlk1uqzAEJ+(^SwToRT1fGZUa-T&s?|P%{qy
zYR}7V28p@m(}a{ej(>3M5`mzLV;)2@qRxjLm;aSGz&0w(O!IEL(###y{KcYqt*Uq6
zByw{TB&1Xo@-#La7&y!XU?cW)5KwXtylcOSZP<5sP;yn=kuo|+U8_5Je`gCKlCJ>J
z1&VsU^4x0GL#k(9MTmU?HXAf%M-~0;+QIC2wQlgMNXZI*syut)o^z|1MsQPWKRE;1
z>ea2Y;dQSv-|;gsT*z1lO{BDcUzEebF=Ngqx@Rf`(`N%{vwGX0cREEWv+@{$r4|v>
z0OwGnY~WeK_qc0(y$08j^EdnAcYr%z;M&ymFEjiPVLMRYxR{!quQu^X0^7ZleLqW!
zy_4=$1P{qzfZAoR)VpozmK|K~5OS%ox(?>PCI`!|roem&qKo8Vgl9&8Im3N18gByQ
z^&-UnndI^9jp|=Gl=9?XU_nTX%-R(JqL?yegZYgVb#8feeNNY*7|QWZmCp8`Vgjm6
z0cq4TH174zExZXdJpJBD1<;C+MSS6(+%GChQi)xa5BUuFNPTauzgKio>Nrr?mE7GW
zq*UjOK=%M%8A(tk5|Ll+-i_J6O8`h{L^i3vqpf{8#z^3STYi|Cl6KcId_Ep|zXCp>
z;8YrFNi5zA_f>dckW2ISN3=mr*Q=hBV|s7L#4f+Md-S~{`HNDdS{Sy9H6<Fn>MID9
zh3Lf_KDPH@uCJj(xE{im_bx124w*TkpT|`wjI*8uAg%lFtFQQpx0B#H^Z>y>8GmqM
zM6f?#ytQ_tKlh&9Eai7Cb^+IaAg8W+nrm{uM~NXs+wVWnU%lG#RCWrSO2C<&TN0Kk
z?9pAET+2KFee$z4$pLH+8Rm0WfyqxwJuE=s1Cck|m{Lx^o#py)j%DC`buNjSi1@k8
z+&gfN%VBcJm`^!h=mRKW4MHCn3*4!PYQT}TehF6o&Rb|szN1@LKWGwBd<MGNk7MWV
z=cTmY0GXzhBWZM1ge<)|wlM8TrG8k%nWhMv)-eK8bO^aHfjwA96Q_~g#;_p3ufOc{
zxeJ|lK~JwRPTPM-4z8?m99U?IWw|pds{1tQ-)VgUs9~YNqxvl!I^{sdx+dh@%^`_|
z0WNDE)Jq6S!=fK$4BIGW#bSzzW>b-#jkELbF_xVL#W6WwwOAm^DFGZM8+WQels0F)
z&)uwEhI+lJe2}xCasw$4-EK-5_Fj@%yw|pz=^q6Cs(+23`8O%klESVUY~XFTS?S6i
zzNg9b+R-gNE=gSBaynVv34)<d2_DGtgL_WcwKR1M<WrTz(tWN@0BTGFnt<jTE{9Wd
zVWj*R<3i~0$+oq|<<iN;xH7Izr#r;ZVNm_8s&fOC)_L@G;|Q*bJvo2HG_;Hg=$ghK
z_ZPJw7(>+&8YfpU6EDh4$HVlv+_hE`kdcJ_0N9-^rT-9oyU8p}4&R;f)?!Lhl0}j4
zJUF;o?NE{FU1hdpPU$GniqKoGpu&L6W&2G8!(zmGV=@+{6S>Or_7fPZa@Q7X8G7nB
z6Eg^2veBWXQoZZ1SI7I`%~@X@wpl{3xPT-U@o+s!_}@=;pfp(1wAWBGnT<nukTXBN
zO8H-(tAg|ZTP^fYQn{)Gh&<_r3zDqv#W{-as_!KNQP-q3>f9b|L6>vz{i`kMu%IWT
zug@>Ftq|rJH%2mgQ7?`T5P5wMU91}Zr++1UVd!vNd9;8=0(h8eQ1N~wi0j2)4A}<&
z-J<W><9d9r<O+O3uF>eC-^CE03;n3#T*U0>BZ%mm8%Kf{x`^$Tiu!W&^YivxWPD1*
zZyrdjaMbMlVf4dh6R=oyfk5A&dy=<+2xC%n6wJ^w^x;T+a;sf%sH^=TN)2R&hxZLv
z)*@N4YA)iQoQCo;m#xlRpE}obPVSz;F&wL9PvH_WX2a)ak)2;_DxcEK^bHfJF9`2l
zPl}pr<ea#y;=rToC<CtQC5SCL+RGeb>z!(Ceh;TMGgXAIJNj&_CIUjTkc><!^%T<p
z*QRQ^ca~MyR=nP<X2u*5x`Ym|*@&Zil7WIJclTVA$<sh&ebpRhmMc|wYNFVJLEjnw
zPrsF~k=w8i8D75mJ=*V(_-I)32J@pg%4u|pw)j!K&7+wG>gH=9>i&HjDcvU5ow3CA
z0Rbr+QG7B-b3v^RsMaqSunsGm|Dh(*zk0DE!L;hP6yaUyqADRlDL;Z3veFh6jaYnR
zPGahV+}rlBKl1IVgzEdkt$ETc$GcLgVT|}RN{aR^j+R#@R*7p!Q3-z?*T;Um8mwu=
zyu}|UuUP+xZ4xtR<J<T^v?LA?QF*}P8-EqQ?~p2M*5f|c@-^mYd70{_ZXwm3SSeaP
z6Xe0s$L<NpBR?lKQ~g}i=&3#H^F^7v3+qQjE6+N<0L=vt8EyVV0^S;E4FA8{-eRS~
z`PL9(_rC#wa=d(=(H6`Y)|x1QcNk`e?__2gb{vw$>BhN{1B`5yV0Dl2kzqKTJkg20
zJ6iYvc3;tMspOXqm@~ZGfzJcG+(!8j=)jFgx72cUhPmY!@B@A0)PjCS<?nyJ;V3HO
z4Qh~*)etbxJI^tpREb((oE^+!^PgKe)3$s6Dwm^ErWRt5s!VOrER;k$QdwjV=Hp+w
zGQuzx-SZ3nS)Cqhj`_X2fbS;LGX%qirqkT-E=VOhjoiqTPdpQNJ1G;B=p#^QF*v9I
zi@NpVjg6OkYZd3U?Y8XWe^uvl1e~?}4s>V*9ZXAZ`1L#=af<=l8%h3ue{At7<}~AS
z<aqvKHp?t0W)YP9Q3v#Y)$R7@YkzKnsJW17E3ZG-BK2z<&jU6YBzp<p#${@L2v4x~
zbNpv%v7O@k;HSM>(8L2VuTeMi`OceT1fAxq>pJWa5%No{c_c*H?=7%+?U@ULlgMGQ
zYqt>x6L_bV_f*qv@06KJgjHM5N4mWfC6#01m>YgBL3trc4+ZEap}0N9K>m1;EMlmG
zGG#lP5RNn{7wdirrj;cjey@R5kAJOng$0&&V#|HYqK%x8H3-NA-J52lYK;&%TGBUn
z1w#2R)IK?`P|$f5mKf>Dw7`V-m=jv8Q|7Z|)4|Z9y{JN!>#3+mtT6(XtbgAf!Dtt7
z){rYAqA1}*<*UL}zlMgs1!W&o$Vz(=eF)N|{V$3X(}Po_=RZyR&oUn0SkqVK_T7Tq
zEML-vc}8mC?Y6^Y5gBy9nzLW1<t0>yTJ$OdM<i)@O1g^=`eo-38^yl31)9-2wcR$$
zq(uB1W0{ZGF>6-&+&>APQ0jaLd$Y{H5Hc2GA<zkUb4bEqIn(-}z;pHwn;jIZEYzr+
zKbvruf_8Ifv?2za=fGw}Tb`>iuIRN5;kT;qEtIU20_#>pQ)1Ukb0lOsg{GiHU}%Y7
z_AY9m>W6mm)Gwr!xzfiDnvq&G>FE2$*;y9Yhy%5Sqk*9d^=4af4Y)`ll{NpHR#Db$
zx5)V%8|Gu(F5j3@TEf{F{lUrG%0#fosW_!i$kzkiC(@~Nrrg=lJ>_E*Dgy;ALR?zy
z*sVeTkKqM>F6{gdb4RTbN`0{~&+My@AD4>hZFI)Ot;2C0G%%I}Nh-{9s>sJ}kq><$
znn(m48*8OFYr=W~B8fM0HiJJoDeY{yEb1sYlOO<Yr#u#mxaXXgEqm=WD7EzFRO^ir
z9uQ;@Pj45cQv(YPY#tC+XT!EgiBbVe&|he5^5BKOK-(s`2(Dde>EMNL<Ecbi3zopU
z<Fvz+k;!JTfMn(9q1<GxMg6Bn1AO303%?3R**+>OKH4!jla*7_X^Lu|JAe;O0_l@u
zpcJNQBnbr<M4lRR^vJK(6F}mU__o=x`xEJC4eTRqoK}&HG>7m%<?0j(TDhp&zPjI9
zU}J+45^91+&d#1YevXYcm&g7mlvZ?j)L2J`PmIa)Efa^_q33Q01WbVm(LZP3LqP{m
z+3;}@*qC@1vS+3U4VjTQ_0Lm^Q<M!4EDiTy{+o<<fPdHbqbDz`T+u=xM&9Q;>eyEF
zB)ep3Tlcp6=6i$@?=;!QSt7<<lBbr2YT`Bi1PBsTY?=8C#C{ccQBEhl!u$XkmbW>>
zp!{U*x++e%us;gVG_S4Vodm6nMrPdMWZJ7>08~r~WpN*{8|O2jKlPrZ<g8#er%Kp5
zF91qzlnu-yvo_cniB?L(LGl)OKXu})cwx37vZo}Ry?A_(e?C)KEC(pIbZ?Bl9MUFs
zEXJV2Y}cXBcm>L%=gL#D6~7<hNmF_+A&q7J6<wA>T0m~Sn{Esb_(ra&>v8YSYD3{#
z4vDj+aU%4?hi|KUv`eES2DpLy`c`r5I6C>NGB5IAak!19Am>1F?#iZgn>)dX@x+M6
zQ@8XWx-$?R-Et8ycEvQ%wUeLRV}v=gO>H4}lHz%*in#n>Zto*NV~j_4&-UQ+Pi=gt
z(7u;eYD(AdG`o?n-Tx!$b+q$of52-);Owbp$gm(bL_|YHSS3Iww+Ld1<qmkafk3-4
zTKH$tJ|BQ|!pkr(Q&4=AN5k&0@1)_L$E%X^<w@?h+k#95+V=}M2iGLH8?(5d)g?DW
zM|Yo012t~N@BS>AKWOV(#&$<;2cI0{JLAfk0JDS5Kw0vM-7$a5W(3&3o{Xg#TRidE
zyC~xptq6!)4e+>BjYkH~&Xf(UkrUh{1OivB*5O>Aw1vPPD#-p{5VvDk{FYNQo4><I
zF3)>-8^=NXEcYVVQRgV4TPEJ-ELq()I2qbF9yk_7><Z^0Y_IWGzIiL^$u?m_FAhF9
z&Ctwo$F;R=<HVzDvP%0OF=g`Em|>>77f+*ZWhlG7KZT>7fC=}UsM$0do!_p1{XtB~
zl=idt0b9X;s7WFoU8-E}_6PI<$hgLDm6_0Ym3hMX0PGAzT$Obw+TdoQVAiOPg2O;S
zl=n~KKfy-+*a(5u1IMnF1nSdgdfwsuD}>yo^{_wmm4qCWE}F*n07@^Wy-o~M65X~c
z5($)j=6PKJ6GF;3p?;TPfS$8*{X{>5h~XZ1NHL*Z7o^&)PG>pOqQ${Q9pqK~e+c(f
zO3TV_(M?Sm%7~o6U^l$74?VMgKP91_)#cqZ_v?<$gF>3!I%3D1;eS7FAV<~efdcVE
z;`cqH!4`DG5gbE%7S{SJX<P6WkD|b}!rTIZ9@}kJCw7A<ms_>u5kvisj!nT|hgp0`
z8M(>RTT}VFKT@QQ&Tr$?O?>tRKdW=L@UkfChfmfY*#CT0bEwJZzn+UE(hDaB8#u_s
z>LRzvu(|q{WMde+;*>{VRir&vuW=3=X%ZBhr7tTjr^`gxhi8IFZ|l4g--H67-Qk7P
z_$tR%PFG#n?_tO+4JXr3w42DLLknk6mTBUi_5^k~cY{}Fyz%#$>4zvoh`^U$mn0ko
zA#eqT3!(e>+jGL0vB6_Q%l>JP4q!JCnRmSsbI24c<X-4{;Q+ODEav#I!;i9R^#8T(
z$f>QtJri`j&1jIjSBs%+NK79UY_TpOcwfF}2hm}o-Xz@)6Rr6rjWG|vNw)s+2b!^&
zfp-M9tbd<d%=+vfoIS=i`E+^IA6Rq})6_&7!hwzW|IobspY_DWV9pU%8nAQ2t1o~)
zZoFIpCQGA8qCiYciO61HKD_^L<=~@UqeXB%i8k9lJrOLEU<Px#B&tMMi1|3h${VeM
zKdP09P1xty9PI&n{Vd?Y5P)c__aq%}<@!5r1+Jq!FjILX9MKM&LtqfpR$4d#*hu6g
zuMH-Af!_J(e`<~YK^7Vr$2V?6Z*KMq>)eJDpi`BusyJOP4P4ALNlyO<x?2<`gtj`#
zIE{<vgb|$@?X94I_&XPUX|^)NMEQx;6s9|yZ)#Z^1x5m(Fjc7CUmh`ta)5?g29zxe
zjnkGRR*d+*_U;oQNz-`XLuZcTIv+6Zf15GGJ!4RoE>g;cnon)pAY(=5#CCXe!I%(g
zLwvQuz8uyV`?&(e&iJ}ztmZ3l3cXl4uVd%GV<3_8)e}oTXqtZdo`nWEdrju8M&wqn
ze@%T_;f}}WB22&Zkvvz&6=G&+e;|aS0$S|owOoL*^8a{kb+aEs-`8vvrVewX1dB@v
zheTiq7j(q<lh(Td<@KhX{xt08_zM71Ipv=x0MtZW^zJ^0gz8`J;>@Bf>T|$i!gPM7
zqaxP)(2w04a`eCDuC0=U>x|4t1g2vIDfdT)eJei?`rd}9{524&Qpjk4Jy{-a>6mDw
z3wXf;MPe+UuibU*0LsD8KL`?+u@`wCD}4@?i~@W}7o8^y+4aTTbtix>uL37;2vXc+
znDpZh-7Q`zMRhvMI%DTQ-7tVH$Rv|zAn&l`TzO)hbg(R>kylT2!?XrD$h42rjz+u(
zD-eDpGfGiBqps&&=>@gw+rA@>d3cgtWI_YDW+@N#<d<DH1j^4B8i<I$T=|7(kHw|e
z^{Lmks7G(;3)CKj<@*d#x3ZhXE6meLd=;%VZv~DvfN(i5zdd7}sc{)!_IsA0MKi!s
zwe*0-K!U|WH>-p3!v5I^D{Y49w1seG`Qt}IK_Lefm8iiF*ad>Q2_nqOG}QyE2F!+$
z?;xW0-bH3NwxFQk8wP(a8!gX_f;Ok6IoQ<E?(F>9p6Rh&Ss{l^Z*z#B=Q5bZ&V^W(
zDf|0E5a^VBLFwy7S5ZCf&j<Kb6Z9HnfBec6ChPenfgwWE*k!1j^OLg_{DBgqs)GI-
zi-mVG4%Z?P`2y~m)w$I?+dwZ)*B4}TMhBID_y=eeVRz8GM_@}1pCM(SJwadR$C{jr
z5g<58gfjEd<&ml$f3&jCOzExGf_#xsd5N26KwksEi!KV8dKa(o>uI<+r0e*{LG@!A
z2HD>kupKFqJ&iStIF;aTdAX)Y>jt&w;1=a_Z=a>oH$}kEAT+-HRpQpx9!O})l+Ur^
z``UJMsTK*asSGjOap(3eWV<dlWRU^2VX(M>qxx`%>)sJ7sCUu1O#MR9j^hIkuRBAP
zbP4z}ITX0R9aOYtoJrjY=?5t8@K+Lts69>AI0n|-P^_OV30Vf`%9{1R0t^39yN}DP
zZHOmk)Xu+vk$nUPrF|mTxrT0jZJ42$#+lbGCV>eO(Rg3gb2|aAmc*K~%0KXrCpS-t
zDzCD|wUV>XwZVgsl~sg6Oh`u(_m6Q2YQXJrf3~Rq{lex=0c2U^(6Xqn?1b_8a<`;H
z3#lgW^Di)f{Z|exp|!&|Z$1EzeNC|4wYTYubuZ0g=|3T@jjEtg{8cYq06#|%S$>$H
zNeNR<-U+-!O8Mw1*A+f-gkg&fy<T+jA+8nS^_kzMuk1=sdzd4BqnzDW{a8@t5`#06
z$u#b2Dew@nbIYDH($<$i0WZUh*<3C^JP1K1b!2tfoV#fnxZ^jIEK!d}6f2M3(rZ=C
z1uWrPAN*2GH-&>bcMu1v#*RMS^}i8oBkvMR!PRN-?&-iX(Yf7V8^@$BI#c85D)<O^
zdkpS<%623X#PXg9He#u4t&S7`b@y_l9_B>~Ex|^+=07`MD4LmVlhEvVjba_U1|cC}
zEYcB;pGR<7M?S}WYKQi@fi#S+5uJv@;CcOumxz7d@cCx7toH~?PN)}^kCTa~!a-7r
zKSKXN2gDHIm_nO$1T4*QUO_{xm){7RPk+gB=KaXv6m}MN0n<v!dJ@U?#%qfM%#M4A
z*jct$HwXc#1S<}bzFVBD1AtthFu{I4^gZ_6Ep8J(kEg^0%8<iSd$xamVUocCyXq>;
zZh=ev*S%N)PN_PdtOTg(ZCJsVkwBgR)!qdCx2X26u-omVHW|%H{K8Tt<s*JkQ?18s
zNg&qpFF7)*aN2$MnZY&EuatO^u_jGy7D0G>8P85GZ8&90n0PU+4Vm(KuF^vl^Kfqg
zoQ)4UTe(V=A1!wOn!~qR-30p#`3}_AsC-<P0dYkbqHQ@ESJCu&3<cm{c4^+%Q1Myx
zpdT-bo}fPf^$?Zc$@XYzH?N?uc+a)x0$%35#l;?d;U^2O<9F)RBGTWh|L}V<;RSWI
zD)I+Oxn^O=ZgQcQlp+!Z{;|&cxnSz5^b7m7JbxE^=o79aeg%+EtSRWVHyK|89Fb9d
zAZ><p?N4AV><_Q#Ly*IxJ`z@j;CMnC+L21N*f?`U(x~q|2H_C;Lp1o}oI;QV{H0^H
zCc6;X&VlN4i;v=S^^QpP{l==*RZipshaBfF{NUcnPNuZp_$@uQZ9)?Jfj{0|ueRWV
zspXez=v%a!rm~KLtj*V@b0itWx#mc6&uzh(c2ehpqEaYgEA-!3xE?E1`mP!M##4eB
zI3c|FoT}!BG7f#lT(CzZ^;`w^!apT3Kx1S@f^|#-%^@>kZT}LA=1z*yPVa&BCBVAp
zGJkiJeztF2HxR+5m4*w0Gj!l7P-T?+A&mQQ{zX!-vZMC0Y@Ji5)0`i4woNV^=XC&g
z9BYLy93Qs-<LvWEJqk7CKt*!*!Jf&Z1Uof4BfctI+t(~^3)KJ-)k}0biKfOsPNB1Y
zWA~_UoLg=n0U*}7OD)0972D`Di~3zo;UDs<5G5%heh?34V-!-WvKpRs4Nd4=M<e^q
z(UU;}s~Ni<p^pPmN^qHpXs^lDt`3vCYbh6dw^O+vgSt!};PCOA<3&&$MNL|XZgo=n
zOGq@AaPlYMlon&yFkR)^0v>H2u*GFuPt`TQqx?YXyLPMF-?(=~7q!CC_gJD$azb51
z@RLzvkxXVpf47-Nn`V74RZ^V0zN>P;tbRsR+-e;ao86eCFLU!^m&j!wg?*c}c)5BQ
z-JlgGg8g;_Bu;9+Yq@TKmNA;~>(DgE9ZF%V4P*B9yWpBll4gKO(|Pcfy<->3*09pv
z+F;m!wvb4OrVq<x7sag)0u6RK@h%m(S@57Pb0>n(<`g<X-OJ({1zX=U&d2l_2el<}
z5Z1OME+?&qN3Cf-|9;XaL=tE@f4Ch1NF_|{d11>bJiof$Te~k{A}gbPktD>rM2!H)
za^>;$&L5;>xwX=i>`wm%hl)^=Yw@x!$%dsGIvOI%uUI7C3W#UK@S)J<{#X?Ons|e3
zt`>RB$|u+ZRHuyaSH$W3=<mjs)M<A~f5tLGa{KwB98p$^w8lE_$3b_>WLn3^ZtJka
z4K;31Wow-Hwt$&p%E_=K<6osJ58oTRwi_y^8a@9kd#3Q;bOK0b9&V+WIqQDf!6`Tz
zcKrrEptyJj7)UG&nG*-oO|F2DU{gdjMOfa$fn|oj;9=H&KtfAw?RI=jR_8I|4%1VH
zyAz<po_F6ZQkktGTA;L}BdiWusD?Y78&kXJlL$SLHzYjQl<oiwh<7BA&rhBx(9IF^
zSXL=q_JRB2Vka-_`@9>#2M|!2F8h>APEa;t)K4XdsX)<RhYCijV9r`=qgEZPFK8m$
z??Zc;RC9GUI6#kc9=>D_6U-I%AB8f!oCj_X`Jb&n>FLGE>|vAWW6O~F3X**4W(!aW
z9f*JZfo(6yLnH+ZVvR=l15~Nr>M$LAfGSzz3**H2%O{JKNSU!q^0FkL3MnBsybAKN
zf*wU-sRC}FVwRk$HV37g0DZ%|prb8F(cHU-k2U21ddC^-Y)hOgFqVpT=Jnug1Uaj~
z!q26JU92!N@`=d20{AM>Wp<wW<~>DWF$uukfgFFk#{9T|st=-+p1L?<SP4jA+}zQl
zNx6WAAk<olx9<01(<LFY%tkarVSo#;+KzhrST-wCrkcPrxauM(UDOmDU1tjvDLg!~
zuLlToU>ExFLA{mx7-|VjjoqoZ1|$jby|)}eqfh1E!DI`G-6!zIJ0oWC8=SyOOm2(t
zQT9h{RO7z)djvlUEB$RdDwP83;Q+dNNymiPaQfyx3+47r!Vr6txicXvK?)tK9F(dF
za|z7oy0FEn2bDS`QBt9KE{h3~0GsCP2NkjNq8GXq<T(R^<BmYxJ#%eOcS|m0A!!Id
zewm29#}EMLvuhY2U-x|IYUlHuSlam)Z&)Ue;Ak*I|MH?tozxKbt&*P%RH&LNgi?VK
z^Ri6@h-$dk=oag1qmb^Vu?k<g8acZ_zz~XviJG~%VDSV*<TcxbeS4<zONIG#fpnS-
z2DR~YVGF6$o({u>hgY7|1<eM3UeNK~s`owlHbq*J=Dl9#Eeg}lD#j`z<%Qh4$Gb3V
zrNkN+)M5!)P_Za)m7l0^zL98qZLZ)Me7}gbl88sd5$SlWFOmOa`M|1RqK+}k?vZ}7
zAT3%&IoQ5YY^eBPo}yiVKKqoiA<V%C8$bIUr<2zkHtELh^cSgZi8@GP&tox=CN#;l
z%~)(`kSRcf3M{>gvx6*udY+m@b@#LX{S-q2HdSI!+tXZ%fR+sQl0WtMH(GNHH4lpA
zLu$_g%7;;_2Qy$1>Nt0(T2^mz0ARL1DFYKfW>k1jkr3~UI?98a86PQ;af@1WQ2G6I
zs@9l%&+{?2X;b8dbdn`xWgplhK=Q*&HsIotm-#c7zFXB0m=B*}vc)5c9-+6Go=n#j
zMfwB<VsS^Qa>N;Dab$8Mm$9ozOQh%ph!Z80w^*IL@G0a;zzRD+k^dDn;_X0|1m)ut
z@w{=7y8aqF$P7{Jh@&r3y^|F(6=gorSna{eJyB5zIHGnuue+HGxXg)sj7p`C@DhA`
zD?;0PmPBp8&Cpmus*GmSbx!s1{xd<#jBhM<Sgh<)q50ZNndsL<VJCV+9TF<Y92#F!
zZveb)9CwY)@=Fv7|EY-Bp3$@q<{7uT;<GJITfy&di=~*R&{v3f7DMGAFQpz4q*gKa
zd;z=?^hhgF4eO<Ssf%-`AFPY;E$M6RR3@Xi6bp_yiZ}r9Oc=;5x)Xevvk09f?J?~u
zQ;gWOLpFQja{`MQSRn^&MX0J~^1!j7ao9?;^T>-ZUXGVGsBZ+ZN+#PQr+=8I61+9H
zl+*<+_3f?J6H`K1d%Ez*1k8MV)g1JuaDmK2kY^@LHC6tP;O#8{S?VVk$F$wx;ql|R
zAZT}y)f;1)6_6~$+?I3rX88FZRc_G|mEwf+){LUS`}QNi+>WjL)77jlMToBOp5`cB
zh#><@+nhXFS+V5wiE5jC@t#o$-SO}_T*3bp&g6}lM$$<^-CR~feJi&D*T&xpbCybS
zoMELaSCaFk?YjSDyp8coEbk_}3Qn;L5HidyqUvKVC4`v%8A3(2w00BukvA=iwSyan
z<4xw-8nEx$Wjd_Y9`nOoX~{g^%1@}EUOo0B022s}$2d<wk1r4{FHx_T0*7F=5+LWe
ze`d>X1ZYnZiy2gZ>q({6ENV|BgpnN^+vR3V`-@TYC(6&j?px&2l&-E4z)D_jw%5Wd
zlubv^zaXVlC28sHyFV&%mulexz71>F=j+1$Gax}AETcFEJ{u4;%HF&VE}TP+^sg47
zfdP|QdVg}{e|yLXqEQ&==loY!La7yF#uh*;U2p)lP_}8i92p1gymfcrbh}hXYL|^E
z?wm#BCS<X(Z}|Rk3fE=$6V^x^^Qb0!fnIoTmY|?gJ{Vi8PmiCzwb$CAo&bWY1VW{g
zI6eW&>}A46=yI7|9@^)7p*R%eS#vaq4R7Qt8T`TddWN*;OdVXWm5n9^dDGSzHfJ_k
zh<y7|Z~vV9#v0Qz4>WQh8tw_A-Jvgwu)#sOKDPqG_ZB;;o}+G`bI-C--CKNpTswne
z(x9+z;f1jX+aCCpYNpH4y|7O9dg+v@hA-0{i}IJ>dZy?Ixl4R-Bq%9nM<cdm(!M-}
zs`WAi#wyxwmsTboo5RBqwJ($eB8<m+&?|->79?C#5zP1aHusIy3X@~1dWyjwgt(GW
zU3ON}y(1A7-SbV<qOw4O6#pQNCgh4@Nfx(+$yrnA$+1h@t<pu@b=iO9ka2Hhr=*6&
zO#r3%=xM3!(!roTIND}0;lH^)@a^w{dSlM|S{!3HrU&d7g3+i*F<!msan=LBKG+G{
z{Ce=gVYJ8294%EPYAjMAZl&X&|Bj|SlZOYbAb<U(h|UD#^8!24$UrN+$id*UU*FCp
zeL?Y59gR+^(gFI7|Lg`?B`z>ri<m@O^aix=mB*04R-QxXmGH4zQxoh^?srEh0X771
zI+om~zzO|j`!QbJgmB`tGnKT@N8HoQbH#-X6~YCwidh=o$v(SpBlt}gzC#MU@>H(K
z80~#qt;*F;`hu<#4zv@s4!z|AcYHy7zJBssDEvA0Pq5@!tL!a&D?<hIz+uhqJgI~f
zNeALFt|cqNJBUDkDE-cdlOy=B9&~qoCUlnF${MIeh}Y}~4{tDgV|!bTQY<?|HKhn+
z9VtdQ89%f1T;P7hddavm_Op%W$Zmsr=u`&oG8Yy~m@P=D=(jLVAcHOoX%FQ3*MotH
z4L(EuyMhb&NaEIJH?-@qg<VB6veFa9OF9D9|2Zl0$zzn6|H!Eg0yn<E46Qn+^k&v1
z6#A-PzbF)NRfRYxo#hE-NYqub$t4Gw2V#vKU;0`&p}&dsdaVM*i;nYTTxIk(ZQQt}
zi`v~Dj3+jzfm=Bew;QS#ByBB<B_kgGtn&j-bnrEINfKgsR3E|Oi-38LIu{3g*#9Uk
zvbgcaYGgWFT~M(OzCd-5c0G1wz7pfopa|-xeBOJpV;tG6@cIzOY{TW}mrOMy8u1e-
zrc+Wt0#<4r8~R~G6mC^hv_2*HXynA1yV+IWlCwM=ct!oOcT&*JI*y}kifQSmP3_eJ
z{crJj8LwOaFnyBt6gErYwOOI;H-U^dcT328sSWOcqi9twN<@R5zIa}t0^K#O&CMxR
zewy~Po>(V3%ke&q8GG8BaE1;tq&KiG#9}1ixZJv1ZsQ}~3qe3eGpP6zD{?-<P>!O$
zIrCt;0Wgfc1xQce`sqP`X91#6qpvd|RsmMQ(Cmb(1)<pTkztB?XZwOcQ172NYtOz+
zkbKCk66@7Fi6CFoX~Bs3sswI|bYNfFE?~2`(BQ}#0Z`<TqNSvsi5*11v#G6Mf)RK3
z!eukV=1S9*uj3eVg+}Q2c8lmIAh%1}Qi<@`&(hxoaTy5ZmDGAlMWrmmF%B~La&H~n
z#apy`amTdEv@m%im~V*s@<;i2npLFnpu1KTJ+)*j=6{$)&=*rvB4r5bkPvVGgWb3K
zqTK>%d@`vZw~hAD;bX7YGX`hd>2*g>V6YtTa}|KX)Ulbd8f(HQdVwFwi8SyXw}xl{
z6|23%Q#B7Sbq_CD21T!@h2X>}xIsVEW4;D;tvJg_y^;TB=?z<SDtZ@BVRc&zc9^Dy
z`edC21m2y_<1P#-j_q}DS~3Z}xxAJae>S1oSz)b0%JBPEz!j&+jzk}%Pd7+<$*8!5
zcrQ&Of$zn3+pzo6Mg`U0#Ibvr&@>yzg}eDJ<3<Uft$=oFTU@?aOLtEQroU911`Z)R
zZHai{ze#o5_=j5%N<L0iE`FNWITLwlJn8|!yq98!NhsGxyumjc&i01#eL$Y&eQZl-
zsOqEFaD<QTw@6}q*i=>ETgY+q*^3G6h|cvlX!|eyIjMR*5h{qlfZ6Ng&AU(eBT!HL
zF#XFD8_pgGB}f@<ct}t(pQqWBvZip|cN;kWPSx!;<Nf+Mq(|YBxWqH!%H>JW&3X%6
zoycz}$|K$?kVBSnmFr#jsI?f3lIz>0zI=>M(FV=yZAOc$7vFkwU<4MJ6%@j${Ks~2
z*fHrz8RDnCDSXB}O9%#rv6y2^@RP$|kal2H{Y|Leh7dZdBUcCc)LRo;40*9a3KBTP
zM*o@G4d6B<$C{!ASq`pfPJV!bEARV)(US<M1Cng)iR&*GsB<l7fuKxRVppLA<v*gk
zan^%^&kk|20Jz3POK>JBq;+n18y}@#2PE-X_@QiDAl%cnx{XHBAQM#|iSjADfyS^_
zXFvzHW9KmY4Qr_KvQ{w=7GlGCyl*Zz4fJiCoD!*YWWNP%SJ%P{m|w9R$#GV~-C}44
z%syo#5H<?%cpQhAx9U47VxZ5nJqw886tOFuqYSFV;QSZD7U)~MXN%X`K9|`5YB)xK
zCzN+T?amxKf2!)v&BLF-Z(_`V3(iA0{8$&t7q^F6NqL1UiB8|eKxrkVA|Tq-svSMG
zI!3pj5X3hOO}-e@Z^WDM9gHi=$ew;v`=8Q8)`Qq#wfOUoFgUTM<me*>ZfI%g=<YyS
z3SSGOTSyZ^BY-x6vFhRwWu%Eeg8f^fpumO~=8`_8!MaFq(nJLZkfwV3pd~M<k+IFu
zgf*ki;@2wv;ellt#i@KCx4cL+GtVwbnukUo9_+vD`}V$5iw=l^$FJLaiqch47Vcl(
zqS_J3z4>tY4ich5lm4_k;Y4{8pI>`R+}+%_kg(@<<EO;{$NP@{b)eQtgq=EIyRUFP
zK^u>Z3TVqO`n@<{oFL(zu86DmhVXe`%jfsQE!cONB4o#(DsRcJ2&s(s|3sfm1$%LA
z;yWCvrW0PL0G_$5dZ#(5wvuuKV?1nmT0fN)xY@I@_gL^bJs_wj){+d_FTEgS4Xe`0
z4!8~QTrz|zv?=1vg4a_@KCkxx5c=D6?+d5lD(7@yewUV55}f2|sf$Fd_u~!@W<Uf_
z<>q`g1HvXKTrk64d*u&~<Q;cjtE|M(TYvldzT%P^QV!U3KLdPlK5QA=q9@%K<#eSG
zFrGgSP!-wnHse6+w#so7<kW{ML${aGX77!{cRI8n^4wtvZPeR#L_HhTp4<W_YX@0h
zBY@y7Ei|crXfzKqK9fLs^%Gp!QKEz5Kj5!&atJy&n_ju9k!8<gI$KYpXW$&akfysT
zZ}F4+ikPbc9yq4G;P4oXjtr!V=B>mH-GgASz=4<-8_yukiGb%@eR6?92*CV>6Nfw6
zIQXv!23k}_?gmie`cKRQB&rGc>$)InAC$dQj4({FwL7+L+qP}nwr$(CZQHgz^Nwws
z=R3)t{O4j{>~mK)UFkfXR641wweXVZjiM`zzop;Q<NbJ9c}S4Yl+@3nG+*f#q#f{p
zT$wj-DDmo}hFwz-xDc(3GEH_FY6miFGkR2|f&;toed4XbCId%w;sgdi#6wA&;E1am
z_0#I==3|+SN9oat!Hkc3-Pzv=so0Gf1xJ!7SfylVCT5rL+&jdJ7`Km$=)M*#`^qxN
z`*p0T*^4e*L8I+1yTZg~Y)xoT^^FeOdmhu4o4KIcckMwkc5rG<yQ`PxZ^Vt-V1=%?
z2C4|B2OI8O6nmA7$}we`N38SFA@eL8ARLlNw<66IUY}tlaE$!r9H|ltC)B?t09=;(
z^5M>j+1WPJ23Q8@C*`+3qHi4GEV5i;uu*+3=BYTOcLg6Sl5y<n*w6Qk8SiPoNx_vh
zIQVZ1v;BCY1!^e~%qBwbeN;sVEI|^}e-(?*24mvIZ{*PN8XR)21vd2bWZab<GL`W;
zVjhAEJOqqyg1A*rYZYe;UC-16vCqX}@H{ZWNL~!!edJIj#0}gY6Fu=E8&etpcSl*F
zR5reUSE`?(W~x1GFt&1P2wp|vEvtoyq}a+ri{0{OGlO-AEp_;R15Va)nm79d0`((f
zXv`g}>E;<2V<@T;4wkkv`7;f7h8)q{gB1qWXX!z1vrojr+0b^+PMw^h*88UY)(_%+
zRq(OKo3ArPvRdlJSK(VWTpat0r)$m+xweKC`Trsu9%KzQPv3N7C!5_Gu_5o8kP*#r
z)(l8aiGY~Ev{0l=V~)gWERV#Erp5&}ZM<sgd|WA?TXkGYrKV<i(q1&6df_0p&ySMB
zGPC25*6|Vne~}I?Of<6?WApjG6O<7^An>O-&1~^5Qy`3-+@Y#t@{V#DO~RNC)Hz*P
zCFEwFJ~A0mO7Bkr1QhfBY2*$vsI4GB+_Ap+9lCW7s($Wq8vjd&Z7h-0iS@JuE#e&F
z*r)qzM1gQ@!^v3;=+4k+F2S}Ly;eiuBRC_<)p!5;Q5I!R7nCg!y%%>b{i#H9h$Pk5
z7UXOCeA1m<G+G=$7wr;Cz-*D4G%5dnr<C4G(u^t{TJJY<mf1iX9ZV>2QfK?o!e7b#
z9l3f+O0<w7Nn8kIF8putvv)bo*LI9Fu=HPYMllXSZ1AvM>!20H!|&p1;cE(ITGXiM
zlDy1s6f_VM{%L(0jf4_06`8~UniJYpxhSSr>pCjw4laKs26^Nc@L|rSjRrU==Dx20
z82JXkOZvGu@ficv<%2a(qVN4ivWqk+OZdaGbZwO<9Z31^7b&8Pm)}(s8Bw1a$tYO*
zh_mUqgt28ki)X<YOV<vsFp9CRlA2%!u}Ta}cMOhVm^7+q(j8o6SLOEAs=*RY^UihR
zU-p6k;CGYQu<&cdsNA9uMp6-eYn^3{DdfMMqzOqjx32Omu>O<le30L}E1Ur#6%t#z
zHho+Vu9($Ps@fTdbtt3CyeQAorw5yfiIR?f_8^>y^<-59p?6L1tRPcfm89}rq)mIW
zx1usIZyTaZHuuB8SlkG>In5AY*HU*^J^|edwhmC$-DhF_ZdOJMFIF{0A^YTnsAxbH
z#^=}DyFxBb|N79i=QYo&5Czj@FXvz~X3c`vN)33!Jl+JN@J8$!hW-eO_VQbTdhZL3
zsZnLs3b^1*;cnM|$Mk~BwSfwts-<NNj%2wQ<?=IOIf7$0zsDY+CGa4p8#$gmByl3x
z(7wFF(?4M*6fu6_f3fJ4sLVg2dG?O-%NPtPk&gXz99MShRXu`84WkIs$>53%8vRwj
z2&h?Pc$y!y<VMBz)16P=GdyJ!SfyR5TvvrhvCQ3)>%Q0@D;7Jm6E9^|#tu8o+yGD{
zcZVAZX(EZmfBRu|{rK8Ct~2z0#_xgY*rX{_VwbjM<(ud$iPndx%-jA*S|!o>&iKUr
zHZC@2x4^c-yj&(Bte&1Ki)iGhD@-8_%kDVg+9{R1h7A1c9MTaJ7ZQQ)4AZxflgD$E
zXe~LhrdQFX46KKXR25lWR^}HQ3*imWFM|HV5+AJtaCS*{x7n2KRyPA6oubXhww>#-
z%|bt+2^P}ML9h#4p>AO$U<fdJf2We36bIE8SriPPQwP&RUuymDg^Rx&j%s{wJan;3
z=Xgf?Rv5Ut^!AP6ld+Cu#RKK)?$mhf(f(DnPT*S}O_^@_zHEXR213^2XXGBa4l;QY
zgw)KVbhGsew7o+fr{@?GtF~A{dBdgkHObnobz<uNw-B_YI{i85GnPPJU_i|=))$~m
zhQ|2>Zw2^`8q~w*P3_$CCBu{EeRg@cN+bN%(W6R{y~crbh#P=zF2jJL7Gm9XtkycF
z#@Tc$ZFfzrAoUk2d~306EIWQR$dZkfEg^J68E{Aw|Ji(Ov|N2TJ4t@Y+1a^4bG}*t
zGynW&SFK%yzYew+S9NH?Tc+|#JcXU00be}}8Lw?EUw0}bkS6XZron&KmYj_*MTh&U
z&r}}|`rQMDhTCyq8oRpsiX%@QaMr(1UvHI}A0ztPqh{H(uHGvzkWrO=&;=CtFS6b{
zbH~vPf$uiy*;mPSnF)~{@CbsI_>LD>0=J4lGAb3_(<A;Z3Gt8D6RPU@WcH>DnV6e>
zSLqZ@R{0>}B@cvxr=@p0@fomKDyuE1MyT=2ijR=+T;F<94rSahw=b6hK#8yW+@>VC
zd7TUre2m%HVS}NK6NDWJj;7K_G-z66-7UC1#vb12y+L<dX6+Z^8+FbVP^mjfQ%t;&
zEb9Be7+ma?ZR0&*zwv0r7)jI%+mOtTDPIzr41eg6)qo=maQt7wnRH45sj6CY{K$oQ
zj{JgPQE)w!$HA^NtBuxx4cBCKWox<bWVb3Ut2^yc77tDMQSjm?#^H_+_l8}*HMSck
zysta8Vd4}R=Nu2%YldIbH)l0Lp7n&#stuWuVDFF26|PSTnWX8c==Qh9^5VuP1l%Je
z7vqY+GF=(2I)HH-5(Q^)Llme>VKgH6(;E!cy|*NNVml1jTqNZEivK9f7iiTGAgAj^
zyCHQ&)Ag(`34d;c^BhZlqzuEGVF#7)4{(q<@>l#z7~h8oy3rj#(Q5Tdp<s(+pYGA!
zrt4}{wmt6h0>K%39_C0@QP-@Nu!`h!V3p}Ui;QZ;asdw_r(d61A*K4FIxgE%4XR=`
zU2OObWP?l<hE0dzEvO+w<K?}QIYT84&P}cku<Vb~+fxq>)QgTUMBVw>=eD&o{nM&f
zNKsl*yp@fHh41erN%@$Xl80O3U;C6;CS!2};{$K#QS2Dj-qsB?A0D7uo~>K`cMdHn
zS!`ptJcEdw8OflgeGrp%KRDM#+?oR)FiUCQaQ=zpDqaYyT>sI$>8Ysc2ttEyWyMAL
zK%NB1r-&fVMG6{scJnVjBjy+ghp#ReZHi9j9)-2!om$T*|0#o-(F1muk}{T8x=$>_
zx^hvTy?#RB(ddO7!rHRfWnsWL015nITac(~(0W-tiG6rzI@5eF=74s{`oG_A@F5Gg
z=P=#C3(#q-Qxgm7^q4;rutguXcc;<oB<Zx>&z7<@yLtOULRFJa6f__s9h042Q}P}7
zXlV^SIsz^_gyGm^ASupQ9_Gp$xYC}uAQ8S~T#wt#c7(+?au~bpjRNig|2XWzpg&IF
zJZFu;qpi$BRRLy;#YOZ;3hW8MfPJ9D$m874TX|7J+cPsEpZsr3dK4&IaPuL9*&b_l
z3E3DJ?Wcxq6FP&Ls1Q1gIYZ+1*qr|KwmeeNl|lTa*hBXByx?4=Vb>D<;IILdPU$DA
z?Pc%6Kk&dDAMRP}PV%?1_tnl$n3l!{14YlfSV7V49v&#j**1q*NGX*@Z8b?9O=CI=
zeU<rfH$OGJDOosvYA$1q4U}nEgZ~`pv-h2smF{f;Xaeko654!*yg#KiN>W#_q8W2X
z0U?<cs2FG{MwC>U&zLV^<q9uErlgz{t&DplDx2m2Jf7q1L=Y!fXjQSw76TgB%t3fp
zB5Ri&1ajk{sl%6rkpjpX7+p6#3&<x)mtWpY5IM2*^Vofzo#}o!atkHul+Vr(uDyTy
zRQf`h>J-0Dra($hq?kGS>UHDnnh8-7P!j#-WwNe;+F0rtxP4;Bf4D|0Y=q~hE-SL*
z+>H0@c%6^u{2;%P<9~r-5mGPy92w|2MV~+Cb$9nG65~@ywmdYXIx1?>_Yl|Wtb)1{
zS7OqocVS(tMYuMv%_-WN=&+|>gUK-DzT9Zc-g)yrdkNyj;;Lqz>gMmw%-C)EmNeN`
zsvrwzF=Xv<^5DdHJ#}y5ub0v)(YVK}f}9L$Z7zL=V-S5g26|=+G>Sxeio_cEDrb8Y
zGjC*(gG+Nl6nB>$JFy3_b2OQMc;on^(jn74YMq}*PVTo$Z}I0h?u5G8Q<!0)OzljZ
zU7Sn}ZDIeb?2W8oIoSyq2>#!KhlgIw(#FNqiC)ac(8W~5)Y#s{lwQWv&fLX<fQf^X
zkMI8+gfhWoOtYZkCR-kY7~irq3XUM5^I;x=f0okKai~_cmj&LlE`}8|dLpe!G-sYC
zGcw3V8=o~B3HXK_>pJHKYr0eiW+97cJOD++U1S%Z1c&erMvKr^?(Pr+jKbk&u(ZMV
zY_sQO24EBwzN_SL0AJLFWlLk)Iw}W%97l06qeQ^5YiaTB`mKFYs9$8tzi9<1GS5`$
zN5l2idP-Tt5NZ1r4v+%@{e`>Ijv^|MPZ2JouPst)sin+A{RV&Kf(U5>-RG?bwSYXJ
zY}!UyrtM=SgVxp5Qb-oUD~d}5XNC^EF))w~mN3fX{LgvtIi+@g<|UAy_ix(JVxPEA
zAu_*}o0e+!(ny)68=+IwoS(e1RHeX5h}IQ~M_ej|-9P$&!p!l%!OYCa@P9GK4knej
z{X*bx!(&^7<FlCbYsFpUu~SoXxV-u04%x#4>|8e@EFqqc9PQe=AB9+!^W(&js;N^)
zhAxI15*iMpFLd#WMf+|3Q&Hi%m}(GC5cDvmJ60nDBEST{ukP=qIwL<R(c0%96LPlu
z*=<#)+Ar~5B!t{Q*0^B{&&L?gXm9D(?r3OuI|s9D3^{L_UepjwWUy%91<Rx98B8;1
zucJOEejyA7+wTS#&OX0$P`H(Raox@+^@6fBI${s;H(p0M9^*PsT!T3ZvHy29@BGIC
z)VDW}5<0ZrXpLJ3;~1(G9@2Xf>?1}av#7mo&h^@Dh(L9AW?#*=v5`WiJ50Ww^ao3o
z4FuqOC)C5)eJWXMv9?;26`rNuAe^^#mPZgvJu7GoqlIiu*Z&V9doHA#&;5U5&-uS$
z&&2Y7(a&Splph>MI_L~GjA0r%8jlK<4>Hn~asCg@85tP<|8}qCA0|+#zwvPCR!v!`
zB4c5Xax!>Dm!10`yEFc8x-&B{|KH2wd=u_VJAdyRY80~$LxeviW>al1snw|Ss9meI
zn6`62m2eOQeGU&=<1k_yJ}+z<0LiJF>Tljo4~=YHhA{BsjGlIupir&nQV{3XSY*C{
z*2$KP6pJgsd%NiND)#*JlKJm4CeTE6OaYEC_ur}}dfY{!hA<0DVy8g|jz|M_2NVSo
z5g{7C5b2QxOhLVN>(Qzq`H>L;%^!U3#tKBvqe2Z9N@1SD|0s~>8@9`P4t`Nt<*~w^
zM+GS-Tg1WdR@E7^@cCun&0DJpSz~YE<#f!Hi>}?cDlV9?<>~G`;3Gh{IZ{VPw2&jO
z=tw9?yPNKp-V;F!Ix!`Ay;4Z*AvSJy!b)-mUYhO2cKD;Zf5s^S3j^d=Ot4oV(@P6-
z^PF7M1tjf4i@pwzidz1U)S3QQ)ESu=8UN3OWF%l?<zV^$yaLvUCP{A_0-CA`iEEP8
z#u@|kYmk?!R9)t?KWrWp7<Es?Nrbl5!bIbzN+ipN7AKBna(C^R!(fNq$B1rH-BVln
zSTIS|-V5gXE<E3*Y%&jMP?L(c!|sv66;sFI<HO2T2^RcyBwUsFeuZdB7T>~$Rrs3P
ziIgAxudyk(0`Dqpvl^P`Nuz5Wbx|BT*P;5rOy9`@>H&$_heQAMv3YK$D=a_-x^6j;
zanolsS5Z=diQ90T`C?MJ`+HKLxSef6JbQ{5!1bO7>l4zEo5axdx`C}tzaot9tZ+P>
z7Y1IjcS+BZj40ano>ga!;Rb<{)*=7<VRTs}FTHz+ihXFH06U_|XiKi8-=d<Iuc5U#
z`W*|a<v&AV(fp+3lOKe5AJ5ug%_PAiR3i(hKrL;%<YBa!eG&(<IYRsurbmPbCIRh{
z{a-)YpHyl@_U^=Nd-I}zhi+Y@78vojNIoG;+9AbJjz7A^>j+xop1x56b@^1G`S{F-
zntO=|au>t+xO7WlZd49A-GKt{gT3E2FkI52z=WU#e3dYrsgYR{4V|&DfVUb$H;sg|
z^Y+T3L?iilBt3g76X!jvMBwF!Gf1801tbm21*xDY`91b-y4GAEjZD|jU*@22R+CHw
z|HWpn*X(Lq%bM;^`xNfcX#(hW#<%iBmv!DB_$e3}(!dzuC{C+qCt@@k?lVF7-aV^v
z1!GY~#d7g#$WZJ<hFF@w7!$A)5I}5Q|NPpQz^gP{QL2cDbDK*r@2b5EF#M+s26>9}
z8`CSbQt4Fux_S-5zdz1^rgQm!6t*sMV$x*8vAlV6EM=^A*4^X;-;bD1z2d8aZ3j#h
zxaR4QMZo<M?>t1)s3P!b`@v4d^78y8y(5xT&6wJ%TYc#}kst>+t*{CX$&=H+0t<d`
z&M9-N`atjTwH*t(R9gAnfx2q&thdN<<e7_<$aeWIB44L*4F#^?kOpsQSX5o8fzyRs
zA%Yv<-RqBAY<v>I$NN^(9^UGULnXrM`|H1;FRn&$2dp%Bp8zJ0J?&>uI<tH@)DY(!
zYM&hrzz!yLvVH4K!t1qq=C{zY6;z9b7-sP!<BS;v1?Joo%d2o$_q>EwXNu#PxaKc1
z#w~gu|Lxbv-js=)V@4-J7pSfv54%YDS%{y;N5CTyU5L36S*L|OOIJeEGD^34x?J)b
zNrT;Ogoc@~Ue{5^Zj%A2ZQWy`d0?A5As#&>OV&hJS{=P9fA@|O<gJgkl!J_5JTjC_
zGmzZHg?{bOG5aGu75qscv}_qt0no7nF1wyIkWI55&+fgLK(q@Z2X`oFwjB9d!8em|
zVvCA0L2m$)6nqFIHw!>*5)->RQIe{J`>j-Po7WLBnTZLS&<*JQJWwrYxdN`W%)PD#
z3d2xG4q}7Rb<ls(;_WT0MPWu$_DIT|6-z7;*go^2*is7Z^?bR~7q}@KxG6ZJX+-_@
zp84C*jPcQyks<P@IV1xp(ZR_kZplcOTvDhFW+r@C5+P4KLL6UNt|nQ;;A#JPDU4Q`
z%#|w<$u?E?Y*&)8to5~BT||<;W9eYpd<n2fOmGY^Qj~~^8<mtar}N8$kbG+3$tkH%
zopj87rN-jZPN@86K)g@Xks^oVv|H!exMpAs=BanSfq^)qst9W_Us}y3xE>7!NkR-1
zOiM*DoV*DjOoHAxFWUXY;6UtqQ(1laPE$bk0BEAIp1w-*UK|RQ&zL11NYf|6_7y>g
zzM~+=M5}pkX}Hm4Rhq^f`m8&LqwH$Y-wsLylS2wO)7#D$b0i6{5m7(fI_}a@R9x%T
z5!D$6z7NKlsnX_NzH5pZ@v4et$~lW$!Ye0jW>F)J7cZ>PQcKH!0h137#T12mQD@Yp
z@b)4AE&R1<Bu2l@zTO(N-NhHuJ_4Vt$Dhu1I1V&6kVvZcka<`i^FqjSV*CEG+5Z4A
zLxtf6dKogXY#9Y|b`p66dx8W$a6v$b$*7e+)#6Z;sly5Awy0^=#)ZVfoUWXVq7L0f
z7;Vq#vnPRX&vkc{;Dp=NY7M9yQ1G85aqFtBg(@^F%5x`Tm6iii#hA(QSNIq`@kr$g
zYUc=46!}3oVFPqpd3yjMJBa$5Sq&z6$d8KzWR*qxf-+)3m_e@AWIw1hl{~pw(|mml
zrH(N<g~XpDla^BhFNZq@4dq8zv{{2<`PP2nK1AYG;I<s&qwu<jPo5cVv~vg8NUc_2
z<iZ4^`IcpLB=PI()naohAh{4o)q-qpmNxU>We?+>h9dFeG@-2%+P%1hRG*X8w@c4Q
z-!iG6W#D+2aTluq^|<zrq_r3ndkXL)aAa9Fbf4cqi4-4TeBFoHsPIeb6Jd;F4LT50
zk*#^0{rij^&(?opvGp1f|LLi)t4B5UoZ~>0DP^Gtjno)^QW3aWZo<Mkp~u(1agagQ
zvY>kaYRDz{6$d8*(dt_Y$dgitH$uN8RxPH9a%BcW<7anrkZYph-|l9*-FlmZ+ze;a
zJ~Vg*0Vwc)mRDKLEWv#=K$)n;O{A(&qbHpdIqq!)4>NE*wR+Pln>`n*Rs1cQ2WVx!
zh*DZMQ*ecEidV40zsgj#92PzYDBb0kz#HFA!nkvnAo%f;==a`_VkMrN582SP^*|+^
zMou=pB91#T(&W-6+tGEMEE;~c+`zq#W#LqQ(^a6Z_^kRIweH7#9=@28DJEp4<PcKr
z!?oQ_!rX87Qxi1D1nFHa4Ooi^?fbokXC*;ym*hTm4)_3tmppqrfE{p0@Mi{Ldv$!D
z5NjA<$Rq&jatn-M=$Q*xL+BZ?{4Z?BS3K8{mD+$1)udq$EW|z!O$Kbay2aSb4GPOT
z$_CO*O;#_ipnlS{H7t<Oh6neZkN#QVL2plK0j7&P6>W=qR{kC*a7?iOg-rUamTHNK
z-j;A-%)BvMUoeaM<uTuwZ46U%9=gO#a6P7RpU1OqS~SiKRGmuNdY3u$HLa=wM7=8)
zHbcW?xL<y2&p5C$tblWhV>mEw@>(r)88j=Kjv!~AKhB>s+7=|Y_QN~e<E*?VLSJzn
ze?!d$Uda+nL_+!0N{TA;C2W;DYH-#i@BPEyAzl!8P)J++SLm<ix*k^w0#c<GrqfRJ
zjs=tDU@4a}f{(rdo?4X+d4e8p=Nsm&3Iqr$k5Spj-+-hjDCyq^m8ZhzZ+V$*FrXBC
zKfVX1Nq%~(ey0Ull`XjQL2$4aUpOx;QRQVDytR9ax!A0;4TUPq{x7CqO{`7M3)vpu
z8ihI2Hh5Gh((=7-BO96xV=`WOI3=Pn#7?@RK8ITj(ecW?^8;w71odlU<1XoK^8~PW
z$WCpe2MX4C6~v6PM@RqqKf}WcC41NIn=5}vFmr6*tEA88x<!_jLb~~o)v}!i?x8DX
z4)Icuegb5Rp0>pGg_SD`s1j~jqfC9)0$a`0+n^g;Mt*(_!+MyS1IC|95WLl6OSQ^e
zMojf!*yQ$cm*AVnMjV>Hh2w5kS?KYgo&y_H%9+gqULbV%BT1-wQ&^}@Ma*p8Pnr!@
zST2`}SCjET$u$U+<A>F&oolu+u#RsehoP3(!-+m}yXPfe2rU68nv#@dL(>gUi9fYw
zSTlr_V4Em!#X8qwVr34`^(5k3>y`^URwU)gLa}>mZFk-^ciP3$g(1D+x0W6NH=Ap;
zn5y&nmCN%%8VO|d)#q;x-={msXGa+9Ahfke43g{p27$S52!9Id3kBRc-*5R#H6A9g
z{j04c<wLr!_x0*6VpW(8yUtYg-)-($@}Hd?S8pysZ>#ZPhe1KT9CfGD_HMkpui+#y
z09)Hl&rz%zZx755GPrQ(H?SRyLI4jUa;Oo|el}nMD+`L2PRh3Ibxts`;#!u|zw<?W
z2t_m!#tfMD+a4>T`_%X_%>@vddJKlsM0veV^fzJ2DQ5|c(+<2Tt10q(b+;g*1yk1C
zXH{k!q7BOaOS(J8UJ%tl#9fC|o!P;z{qI?;8f@)c^=e|!%h<r_{9{}cf_wkLCN|Rb
zh=!&}Vu*Zo-qgTf70UFG%zD>-ffn$2C{{d=2xbQH&%`up6WbN0)BerLLiO}Tx=~KW
zB*j|#qaT0Tkl`Xxg%%gP4=gP^L(*D@8mL0?pR{i2kHgj|8y<1&5{6IiOnb_Oscj7A
zytD8N{(Hp)3$xYIk`Mp-HT=?#U>Ua@kPL*3)Y)b*R1eH__=VsQEmVN5lONWBiK6+J
z+PeoqUn<p4CaDm|p61<-mx&g<#=o6F{TpjPd)6u@-Bdej2S*BaYtLx;%YaG2ZE+;v
zdKE8d$Pu#SFu+Bopu>rV^f<%;dbC!03}8k+AX?{&+cu2PV`KvVa7-l~<OQ}|otf%L
z;}4%MPb`Q}t}Q%`0~xj*8-R`K)Tvt=DB0w=3SW*Lzq{6U972nU6k+89)|}jlyo|cH
zDPOAKvK}@@rfIL$Ax%oXzr587WE;5@)`cfVNKVeZ!3mtMhrv_<gf2TL8#3p3*l0tF
z?Mk)I&rhNp={Ku-jfu;i%0R*nCf5?9#_c+>qQ(lK!cdSSMJGZlBVYC9#-hkE%phvX
zrREpPwc#R2({<G>j{1J7_0<X-Ay27dc;0rFi?arIihja5!di!w7NWqv!4o}{VltF#
zzAvbijtCh)wc2d@=L?`49hoPNATgdg*gcEJLW?~)WRzbW$kw@lBo4BUWZxY3Sl|y=
zL1lqw!fq^Yb7ZB;cM)KxWHtr`n)FGqe}XqdP>NyYrhK%}LTR1B8)FpZW~9wK^o!fE
za92u)+(dTWM0Vu+y87!Jz1|b4DyBx?rp1|pyCN-U{jJwe_Ok73t^5e;oKzu4wLI`0
z;|(fi0recOZi~RSyJJ9wrHKZ+U}O`q?gj^2p?LNvf+<Ln>Lyyh+h;ISAcx1=Htu%K
z<G~V8E%ic)nT?X9GpBsB@av6?n(86T{L?T+Yr4S(pw0LBs8Kx0R4H4N=i|s6I8-K=
zDUcfIR7C0wV>(Yq#Z810pu`#G>49}bq2BP=D=uOUUti)I_KS8)NRl=5zY&HwNL~o`
zfU9}_Ik(iuw06OTk!N5l+1lIM%Fcnhv+GR6f%7ukW#%GkMux%U3E*zpFVJ!FEk=#U
z&}ty*cpw|K0|XSj^ZsD-Y}?VwiVugM4Ha1?rQQ)($w}0eUohLhb!w;;+H{^9Y1g;R
zDEd$|1<;-GEaibDeuVK=LJADPyG|&QQtnIk(G`@bHHJk~JEl&Q>2i^6JpBFh(WxM`
ze^9RfpdqJ|o~pevrQaVka60bAv{ws^twr{7{GoJS8DQd8WvQiI&#%Is7>GV2AszVc
z&@F^v$pBTApvMBBggK=E46m|aR*L|IiQ2``kYbw_-emy!LX~}=f<!!VD}2N7(OWiT
z3=~|EsAFcD;%)W)W05eA`48X3t%B4*nnM@+mSu&_p*~1I($+ag=>E88G;2o6h#MJC
z7Ib^d2WqkHswf6lx2uMiB7i7ux{*;c9prY!eTnoG$TC(jWfi0)A^=<bF8$M3ll5Pf
zZkAkkYbjXpq=%P>gr{%)>E-_A`8w&uIyC8=aT6Am&Fax%vo1NqL-$~wt5vSZC!#yE
zq+|yD3#7-AQTlG}DY>0)w{qlZDv_}Tog!M_yE(P+J5YAUD(p~Js&OHsrMo<-&4ti5
z&+<fqY9e!MY8t7Hr(n#Hz$bV1jdP|_a#@`f`DRgssy#0jxn2)1sBkZ!(-|}l598O-
zM`Et%+(_jqqu<O07aL~ir7V~vdKTYEA{|J>nXF#*um*e8Aqu!Kk9Nlc`{tA2dqdkG
z_z)RKlG;8^mfNlWU>-)t4tXspQZF&<OdE`}bawd_6Bc#Kb@xBn+#3v0Ns_tqI_Bwc
z!Uk4<g!!<GwtV$o^;eeKe*h2Qj@(-O%u2dUGtbO=|GB@cdOYa*Z6RZTeZZjm-W808
ztHyNz==He*n&`UIiU^m$Oe*&4K*@q!+Yxj$+Ut-nD!SdD7Z@hm40(bHDb)o)(6PrQ
zhG}gCD<5);y+~PHKE(Q%?cEf-b5Qo`H3lb>OA-w$#<z|p0>DRMxv87$J1>$5*DoQ>
zj&%3&A&(0_>PscDP#PQyNoPreWM@0O6e7PHlsPyaEFDo9?DylF^GSPpkTq3=N;eM(
z|GvJRw8bIM7@x2FP8VW@g7pjQ+fd#x9D+aOX<C<POIHbr9HRz{m>Be(Z0iWoiQn87
z@MNOcYU?69(x`*`>N)w{95F$SQ<BjdU-OOe)hEcR=rgb&{1RGy)tS?T<J$A62L1#z
zD5DAa2ztSlF79X(VVpJuTK7o-_t9n=9Q7(WJ({+?M8&K;%xraG5UvFQXw?R+`C&P#
zjz274oN`&Af8|X5dAOyqu?c(kZ8E41GOL;V5ITA06JO;86UbBG`%l`|L#-4Ve^kZq
z6vnAR3IWU?Il3dnn#s*e63?7+BfpBW8ON=OL{BNyxqY^d(NTq?7<HD-;p2h$2yu)h
zp7Z_Y_^!EI3gzpS(ol#!JsXsJNd?L6zqgq$8S~wtHg%%8Nge?YJAwKWzH}bK-jFu-
zTCtc2f=Zij2<cYMo>{sG2VFN4Uk!7KBGp|;k?5`^HeF|7?8ot{$(R|(B&tikk<WME
zi9Ch?*ec%Udj*lV!FJacG*)O|hnI{Rsgq=q=FBOC|7OnZ!m!3yCE*-5qV)5NAY5$<
z<;XN?_K0i1c@|fu0{!zVJc3fY?W=$G*|wwSl5#yQ4V?h3%+p|qrL*Gr*VlmE0#46@
zL-Cl2Pi?@P(Kjy0*Nz-g{Hi+>a~L2Rf<#mMLbTYa92_-+uS}4ivf5O@AXX$}>Ks8%
zW|@w>#!7K5od#w&%|$4XGND2lqr|9?5gTT^3DLt{rV7h`vraK1-|3CLlOZumyc`s)
ztX`f@BG^eIi-%6}zAVx)s=_W&RfrShbTt3u{lUhL!}H&~a3wM5e*HY0ZuJovT2fg>
z{|4pmK>wL}zp7(VPo8c-)KV%Oq-?AiZ!Z2?A;t9?SkK@|k*3}j@wdmr<xJUWg$fj~
zjrhFfoYrUPjKqLSYQu!jD<~(-@muX`G?E@@$|FNdGy_`h6au6P@M3CRfwSf7;)7F=
z9yaV4D}_+T9(;lv;`;{82fl-=P+jCR7=h3RrcP}kA7ZcB&W<u~Vc)s)4TMW7a3&*A
z83oaM0j_YBG-xEq4z%M-af(XL;giG$m;8b;kvYi+1Nc*a&VjaM%NNi6hSk`*T>@K{
z7t_GKZUrjzSc@U(z8BUhQV)*(y>4Q=!U<;$gg4H(7mzPcC0z<gXKi0CJZdos{kpD@
zvPfjx9<mi<{~6s2B5g#A8Lrus89Y~B-Sh1q(h3d-+qmMsj-R#L<DI^T$n<u;-S?4n
zQ^GF<Dx~`H{n<u~HGcU|lkZ{Kyygot40dQi%X-b3QRHYj!k_RdC>uMv!Fu^~%IHtg
z>_e1RC&^^!h!98Xy?eR^!csk<Ef$=6f?y(I?XZ>lE3nxFkX@;z1xlus(f7wG<i{yI
zjssY(@tPYn41~Tb$EiyG`k)gbId}w{T4o^En>dD-HNaj;u(<k9yOxv>j%I#goTi*Y
zJqhFzUWkT(U*B`K!n9hhK8#=asb+-ap=w21h$e!3uMSAJQRzy>F<u&z9min|iCTub
zeDwE}_KGww`JpX>j_m~(kF?oLdD>l=v7ACib^MBq=e$spB6LXQ_E+1_E>zetDADE(
zy{6&qB_Y$)5*lt4{>$Ryrgv;;%@NUKXs+RfI?LJ@j$SoYtq@vZ+5YNcw-Od+xBi{2
z;UT7&ZW?e*!nr8f&L+9@r!TJ5<1deJWmz{YpI2_iLRm7n1K$;ZO#(`zq;S>fbl&t!
zj5a)@hu$`+w+dYgw#ce|MW)u6w|bSYrSuUZ+BQxItEQ6??3zEkDiYxA1)V2qDVo3>
zCnr1D%r?&>eo=IZ$dRd)i3uNL5BXweh5HB-8Ri;(UL%;)DOiS?wKQ1=dKFjT4(DHg
z5+=*Sc<c2#yz|RKf3Uu>Wjc+-)2nyAttA+z=6ZlR$AzY}Mr1Oo?SyGUUUA<n^tWc$
zLFPBA3bD2;AtohHi8Duq^K8FSlkw+eQBZ>ua%x8;RSJjshfA8bQ@2ac7yDOC`2$_K
zS;n(WGRL*DfhUUl%f~<jldcc1Ehp(6jA)ut*!u}t+uosM&^7xA3bq%v=IJi{yl)a_
z7;@;@Y5quac8m67_730zC7-xhAoZC{2_Y@AjP-3^YHDBzP>Tu2N8-3lg4ox<E?^CE
zRK@QqETnGOnarekZALuXO?m*b*=`u045(DWiyYbSzrZLzq*T#Ze`<UUz7su<%|7Fp
zZXd}+52ZVTa2T0)Ihw*+C7dUNtdPFU`5a(d=0kgC4%@#=hNpE6ru_@9I0@-8(?%qP
z38G09CrYCijDy5jB6{}Otk_O$R~L<PDDuMKf27OiQj+1Nk~y;YxGkR!kZ4bhgEoi6
z><Z@UL7~=+CcD`j)}sB?l{;f28)J?$-~^`phQ(%FyxOEhzQxN;qq=ISUjvKskiZPz
z?{78fcc80rw&6*S&RhMfMt9KZKxx>FloWe)s?iAbM?_(P1e||3AXb<thg(^O@fvg%
zG2zfoQh+`e;e<t?KaJeTF|e*8_g`tg{qhI44$ULuY*TNtK{);al1NLG<V0hLPV>UW
z4>8ZT(AVF8lv)_~?=O85E@b%o@BKAmgCbjx6!-aMW{E`e{0h4_+0z_W5jVhBP9E5l
z+J@_lAqDsLpqDGr<r55zZGj*cJQERrk{cF2bm@E{2NOf05CBZt3bURr0O*yy9{6tn
z{Z>E5L1~DKq%HG97l-vXDrqPK^*)?1x<k*<mZw##2H}t`q0J-qLai3JP*zr>zSS@-
z>qJ5{XTdT}7=os)j;&<OksBt29CQtb5C#}Trw~QK8}2*bwoDQ5pVDN!z-QTJ#~G|I
zMBDK-r-Df*;G&7a5^G%e-%RLvmj=pVpcf&H<y)R8Bx4&VOLpLkdptp8pzal$Du0#T
zscbsTEccw8hT;n(%t1R=ehFxRg&AEJ2){)es9b)ZnZt1o8R5<BOzDDA)^~(vA#+HA
zikDJv5jVp@vp}5RLf9_XESMI^edXo;<b^eqa0RDSXDK8K%G~THpMl$0(1?LO&4K|+
z`9EV)p}xRLK7UEa>6|~!fK+d>;vDLC87vJ~b7#IN%-l$kC!oCp1sQ0cR#C5ZaYR_G
z(t0Vl6#cN}&x7ST^;-=YIfF*9SI$-glIYRu!Q0?dD*EVG*fTCL%D;_FuYT<gep;r_
zF&2NAOZsyS073+yIBK!JmtZdqQRHaZS#+)RYCc+B*}!b<f%^hBrNTuBwKL^r-0uwI
z8`?|IH80QkbWKlqgVT(`4?J53UV8@q!Jzf!U_NTud+uo;ONX@6PJhgQs$XO(c`PEa
zv!qMS7C2X%!hEAEFtz|?b5&S|h|#vlcyNGv!V`&Jssh9Z#Si^jW>wH(QEylFAfYR0
z-+*gvbU=8uZ_1%{C3$s-s(H9z%BVBS)@@e7IaE9#<>EzfOWxSCToB~8ZNHQm$ngQL
zZmpE$aS0hMWTcfEqA+a0wretG<X8hC52S9>l#z^yD&$SC6(pXREBq(q8?w1B@Oh6^
zh&DS#reVSly0tFWnqMRo<zX6)l9fSBR#G-rIWi=-S)LcsGGfE>#7ZRmEx$1Ir`0p*
z4J->dE>b}MDTXxEpS(m_<I{B+{5%oaKrhq}N7rS+%EEg$w|}W}8Ze+um~)nyCrR}N
zZ24q;>Ss?X<~ffi#80$M`6$g(b0qi9$OI(x;jhI3O(_U*gGc853JDO?`nyOMWCBV+
z^03M-m3*vutS6gk+$1V37(MuP6)E+YJqBXb^t%5c5)r1VZvCR8KkHFN)}$|?Q91M1
zq-Jg}LT-{-DB6=Y-@KAr>5uN2ZouznHinw%S(L~9Ud=<N(K}Hw#l<EPn!Rn<dgyKn
zYm2pUaW>2(N#ecElhM8xk#TSX_b5>cm#*dN2}Ii1qM4-23ABIa`z>0Em2l&)zVb9@
zrKLYY#{8CS5~1>>lX&d=do~7g9LKb*rdq$S3+~jH`Z~26OVA0Oz-CR?>K9Jx4&l-`
z@Ffv6r~^#bai{n!*MBTKin<&1Bsnxn(gU}BYEy4{U_-jcw^rM<|3YP78)$A8EQ|xh
z2XdB?t|s+sNh8pf6Gm&h-MC&TF5YVH%%9iGBWsQ7vu9^}wS0`As-T*15&D9u5HCuD
z5rS(@^J=5g<TF^txe3E)%jCl-?wW=bw#NM}eT(J0FeZK9MgxjZFhE4fMy^!lBj|X{
zS(LUa_s0=n5Mo`pOMRN<YE|HjuHpO(4$t%sEbV7rlco<E6g8g)lzBKF7{o`J<V@jt
zIb?kVKJ)Yg1L}FqEsY8!5dE9N`e%yhvQwIrF?%=z*J?Q;`&prgRw`&^&(a4+h)sTq
z$`pE?lOUiU1TQ~1V0ADrXXziV#<DM~$e7R4hIf2nL|8ZGa1_tYk9S7<0R<16OR*{v
z&^2}XwV%SOq7_VsNJ`1bEJ!~3zGw*m?yTVVTdIu2!*r1OlpmzEs}SjpG>rhVgd;tq
zuN$+h5fDcGk&eJ-XD(E4F=zU+XMk^%cEk~=H0)nKK9kqHA)`aBW({emzOnt2$=a?a
z`|az6oy?I%ld;IaOVuNjv^&|QPl1pTAQD)`)3H;Yl$&R&)DPnqF4Mb8Z_w53ley2}
zN*)1A31Y9*U~O>+MQwD|`(m2e?kakJORfHR>LE(dL_n~?1HJI82F(0#i-{kRJd19_
z=YlDZO>0G>qf(Nw590hFZgA$DMuXzn`gfR|Y|JI{)U#uKu7y@G*x74_-e2{I4B|*d
zq=-yx4hd&<q!`ZpT>l{FeM2uPJAvbKeAo29oYbuk!-IbOFns7Za`&L(+7a^zb9EDz
z&KABS>pUQF#5YF4AVrsU(2C&kO-5N}{z2rw`J%u?aA?8=`puK`E%j$2aJwzdPY{Zd
zu9azoYDXas8xe@nQ*UdaNwH)EF+Rhq#ri&{jc~?pDn^rH!3&Q!m$Z#OX$0!IeER+c
z7k>48`_kaBdi_m50;y?P0D9`iUJ&2tte@)NhbaZ*)7q%FOLc+^a>&Pa#)opKu=LQ(
zGoOnangj2hU>+2tCDUZFOb^Bi2if-mV@>67ynmsP8s&M2XID3IV)z>p@OZ_1pr)`~
z>?n;)8eKm6To5zj`)A_=X%ho>i!<>p&ck)5IP#&bl;>=1{EnPFdq>M|72#$C_unJr
zknSHg?DEVZp9YUEF<SV|WhqC&U*8q6&1+1Ok`1!-O#U2ZZx}cA8Ms0MY7%uKw%OpL
zcvV)8#ZbJP4jHl5d~nLRoDn4T)dPv&?)CG2D}#1gRapSm#1n31?GGovz*B9+2s0H0
z7FnGbs=qLdN!yFjiCHrRzWZtMT&Z}m#JIje+jy-v&}y$OCe)EXQ&UQB>wIvz1wHq~
zbr=~G0_!g^44eO^te;a?d~|pm<pdwdHY_+KTf`JR)XWHpdqJ|J8k+@+j;MC{1Yt{d
zF-Um~h;x=5dF>TvFF8lJ^Oc{L6!j1%Jz!#FULV;S+ql$KG3pTz2LWX~)Wdj>k>lzL
z=<#Cz(Z1_pV`~mz<;mkmN~X)o*0jk5cHm>vC!OjPDZ@F+FbZ*5;)$hB>AUwU@vBFq
zqu;m&x146}oD^TNo2}4z<X0ES^5xrnTQluh<_|=CF9PS^+Z_NbVtv9i`WIX5vU_f3
zfKJFmjap6B0}3)!3}uV1v`1=MZ&6G2yjDb{`W#hEyi#*7e_g{v+wKWy!Jgq+1I0L<
zqTD^0srK@|64~`4qFpxd&Y1U)HhX+%zXb!v(#4rD6#TNKE#j)}d9EvUgW7z(IJ=d$
zVz;ik<?P(K8PRr0iQ9^`$b`AfKK*;RSl;YS&O1%R?R}<Lz1f~gH{f<M8&AknAjs!2
zx;ijO^;MF9Uj=RsaF!0fFRWdMJU#gbT#O_}>WW(|++4p9jWDrG+!Qb!2?(EghNU7L
zGj7<9wZk7wGCYDr)hys!fYB(o>U#us^9_iPDuf_#5mhj3K0z0W|G5$sEO`QT+lZP7
zZ%}uttJY;$*%(^x>x@cSwy(ECh|LHgazN{KzOJP-@8QWp!wD?ZA`>CB6?p#V5rYBS
zJw{L%Ql*6qoSH+!+VT^iW#Up2b@723J^a{0v!l9nDd=@|6NU8Wj>?5AToR@L0KO=I
z=#1l(c=+~&ED?!0foVcR;77Ws+H~zlQ=)ljfr^Epay*cQ%DPjNvhD4;Y2`$M**0xV
z2FD_Y$Pt<0oRxqOe@GVstq*dGB=t18TTFQ|ExUAnRsmj`kyXQOvl|hJEnfgPQ5eF`
zBq0GCF~lI@?(fsK2KwdVGbbgnZ$as%$lJS)>B(lUPqAQwx|$s|qJ;d4WnUaK>_?#(
zju4Xm+c!<v#PCJv36SZkkYL9?uFRdE(MI@6JETJ%<w;<Fx}}zD>YO`~s8^HLAxJ@7
z3X&$>`q^L=-tOr#6BR`xLg)HU_!k<0T(pxB75J2@&FWR|d*Qb2=TB`IH0d_pNe26i
z1`c$~KmcBx0Ln{27@G_~(oq^_O+67RQ;c%f{a(OXj&A8Py`QIGpN~VaJyJsn`8JJ4
z`awYcl*;0(JYj?9p#9I_%#{LGv4Q&a9G3-LD$~M-+QKQ|w<R_sZXtQ3?s^H~52>fi
zWBj!q1aaHUd2Y_uE-^!FMlLYtkeO4%U9>ofEnY6;%H(73vxzc3D)SoV-s2|fWPyTR
zd*Vu=+><E`BM?Akr@T{dW8K05|13LTY*<!{zV(EcZmWyuwI$`FfU3KV8|C$F=msT?
zwGnPmGDX!kP?_&{j)Vw?8r~{0KZVxDW*XoX@nxqg6M%V(S{dkrL70i#jhRA6AkfE;
z__z3~Jv2<~nK;|`bf^j9ZAV*elTco&qMw%7CgIe(M4$d<CcE}OtypL`@WjTlQ0%<K
znJpcx3tN2W1zXXS!vTh<i>k|O4!F2q3i(y(T?HqEDdGZgQ&;%PdRzdYs#UC$OU|U)
zdX+~>28vL<U4~qU$8)P@6WHQkniA6jWb|l|<PYe~ZK%rLFO;8^7_h;Z_yn$OeamqR
zJVyF_rxLDW5*(ar7mqF&h$Zm9+_bOrmjJ_rv~~CbKYUSX%!Jy5A5q&Pl7mTlJ=oli
zn4AqtdBonvLR0Fh9nrsE=mr+Y_Q{^q#=lyN`RmCkQYgkJCV!OFuht_8gqDi(dsG3p
zOE$~%jFtmDzPwRwzByeC=bL3es&rv!)<XTs9aPv*Z?ktkf~I5BFW=@i?F+L0Jb2kh
ztC0Iwk*_~anutbH3jvp%5b<F;jtP*L0v$$8u=>>j{ZpWQhWGOa7ODG*qgyY`+OqwZ
zW$H>4>=ymWOeYigV7U?>bSdZfonr0(Ea4FdQZQCcNsjp%m6Zs7Utv}X_K&kQ987)6
z>3KFqACu2gVw+VVb~Rrv>#AZbzXyrS2!CSE6b8u$2-lF@C1T$!`J3)}4Uflh?SAaY
z3>S#5k~{6a1dBluLb20S=PXWT9pL0NFbZQKKN3t>xn-1XeU9A#Y_C}Z`2|%Ah3Ltl
zgJHjdKAWUtjR9$>yF_|DLXec^$A%3f_(Qo2+DYHkAUVkOE&%#|2)XGp97U4!;$7?~
zx8F`1a)FY%I$2Hf4|1qdG-T)Xt6XblAN;21CEAZAK>^1VwM2ut;84!KCvZtY0zEp|
z{z0(e$p~uT%tx~V6Z)f;J5;c7^-;1dv&sT8V#P%=h!eF&SKMW<B>?v9AgqtpG1W<J
z1&z{l|KRMQ)(JJ;!=7POVoO1b@$V-VbxP;5BM5hCIw%5D2LqB63mZ2lZ<bdk>sC-N
zNvKsPT(H2s2dqt4F*APngC--9;g?57?MF=5SL1VKcc-})S~@iW-pj30Te0wVQwPY9
zAHmIMTrR)@o+SfqCMvyYCBgn!AnI~B1QH^?-b4(Vs?A6!kqZ!QED@NFxF^4pCqh(`
zthTA)0;wQR%1qVV|Lk$u=&o!RB9e5W-lIp^s|jPHUhAR4>x<4=+#!O?r(T)fR#f(u
zKlv9b#D(Ub?Bq$)_!A3OY3uvIXh?8+=V*u%NsX(a?v8j|LX%a5+5H%lH7%d)U=C8e
zsB9PxXo!?^guRJ|e41U#GIyS4<cixso?~7u)7GtBe1~D6cYpQ+RQs-tXc@F$*c?PY
zT(1cRoEMfhNRg2ZgX3I7CgWfId!?tN6r0-kEsvJYcgrEkMqqsU<9z0%l+%Xxus6d%
zF@~Mx4>`!p6f4fKIVIBm+15-klX!C@4spb0<m8V4`20Lfk0RTs>wH-P4aJQ@Z#|1G
z(V`>`F1N-Bicr$MNdc0YnOFUlAcLz>>1;_X3lVuw!%Ov+;KN^WS1C|D{up13a~<cv
z+lh<~sCv)AkXQj+76K==O{?s)xtFe(i)NQe!&SGfo}aFHt7tzL?LRDPnS}ifp&=Zl
zNiER%SQ_2*7WQF*Lg!E_Pp;1r@Y0lW**DU`fZoY_;gRrJb1PP;u#bL;v=`9HD=Zt_
z$Lc3MAwX(4-N%?4W*?!eXIiBHvI(?k9Fc46OAlinJ-+RKwcEoX2yiMt3XfaH^JM1B
zLXG&@Aw;;CmSHe#E3;hrY+6d{)?|80J@S&ol)sEVX3fRg`=-$dr)pj4e@9B%^XqCp
zJPDl&4HaI1cCq86PNmP(d@BweYj2W{FiLdujoiiHFzhBI4e8;g#Dg6a-)27pU}>#&
zDOg^{34hLQT(fA07y`E!(b3G0L(kDSYP2-<Kc?;qWT<8ER*f}3x2i<FBdS}vtX51y
zkINjg3NA_fz`98kv(I||-ER@u1f7_C0MrH6e5AWq!$%%JCLW$UF?q8ms(Jpc==v_h
z<h+%S0wTmNkI4x8WN-Pq@)Lg>i$RlAk7fj_AnSRHnTsecn^gRFnMtC^;b)ON{L&+d
zM~wsd&D0&I%FaXF(8Va9rgk?jCuLV=G22lFO6i%cp|KOBW}1}Li2EDg1wok;b{=3i
zI61q<m6<b<2w&V<ECm8RKn0T{dB3nwR!VXX9|I74KuZR0+kG)V#SSSq5=R;waQ#y-
z>|MP6JzfyMG~b)LnS+G&;kt>lX0}QOjC$x3yS@}p27R2nlQ9;BvGJiUo|27l`zW4W
z1?IXaVMV5?f?ASU@hjRdwn3eYedG=LiYSDsrpi{DyWg1NoN)_Bqe;<YRi|Ux0UR!8
zo+m3xtM^FCMWj6n66|LbVjhNUc@49dr#b-S#MR6g6HAs|So!<YA^cw)rlD@D=o$U?
zTg`fo=|as)$2F=KeNboha!r+Nn^^^Z^t81nA+;y%IH{XsPYDq1KYMFgEeYMJ3X6Ea
zb*T8kB_8yQgz@Kqw%twT9@CT}aBLl0=cDjEweyr{6~apvW*U)6gdCI?553dx+^yO=
zhCxL*7Q>P()}ElAdHhzLBL{nSO)Kg#a|I6mi2+WSxhP3jm?AEs0<Q9-a@SCPPF2Pj
zTZ;;8Peojj7H!$Q)y{BeI5p&I@kY`My`oo=qCdx0{C_o5uF?H=XM?>t!Sq98+>e&%
zd;hkL78ihQ&Vv2DxqigHn<diiBhLmKl$&@@a^ZaJHR6HUsflo(?rUnxE<c=HFl?;o
zr}Zkl`+++7GM`x%pEkvcEa#RFRg2;qNerJA;5W8#1JyO8ni@Vw0ZO>`INoDp>LM|!
z-MP3_Qf&HWhV!nuFDHXjFFiS_hwm%kOT#jB7xRUIZCOrB*qRk|3~N6Tys#^b7f*aY
zdF2gxZPnbIo?pMImy*p#IjL^ZjPnRQr{g?uIK<iKV@lm7wycbDPcyp7YD(9Bz;KlN
zY^24pqX!r2Iy{Pr-X2?ft~n#66sNN7wey#-!f{9~dCtTZgXVIFD4prPak8<@N2$>5
zLj3IRn&WqmqyHZOKS030`<A;rqOa^u*u-XWf!BZ&BrlGk%pF1dQ3vFG&J1-4g8g2_
zEZs{#lKb-iJZ5U`yT*OlD<g?PE!DzoX7*>f_;8;|9bdoInwEZJu+E8hx?PNlKjY3_
zn@1Te-$G9P-V(z^fK<;FTcj1PO#hgD^I&vqZ5e@>D6kj<^J?J7h__u~ezDzDt5i({
zC#FKD^&*&xQVW+D>r2$_D5L_&m;H0@3&N)c=9@?%WS@rFtr1jnBm6X`JMMV?9tgWq
z1Al2=un5hxy`_t<C2p1df=N*JW-~tE8pyz5{+&ciM9enELn_H|p>pZK`e{aHQ$u2#
zSRBuVN+d}cE?ErCr(hWrHOegw0)h&g34;$~kuLTb)yI<n+Z}>Fx2Yv;C;#`?#ViMZ
z<p?X6TP|A%z5t}V80Q2j#(cCSpwRo_%TP{5L!amuK?fzcEjSn$G?ddS>vs+kEqsej
z{JD^Kw$+T1pmnh)Mq}?zo-_~lOr+409QMgc#aiiE>13HZBA1)k<#3jC<?flk1H&5W
z0Aw?ITIl`Aw7iJK^VsIkeo|AIZ+{Y43>PSdi?vDV$)J()6=awq&?5@EW3h=t_6Uzm
zq#tf;rq4WwVp(mMG0@E+z7M5sZBS|hd8Ksf!)i;<d!vToGj}UOFR*pHKtubj+5Tw#
zt)CiS`W9o=7J7}c0A&kou>Nyw1~|Xp(BY`Zz0Uk=T)7xJ1$l)e<4RjS>{{*4gW;|E
z!6m5es>>~OPn6=kI7f-}4naa>ME7g^J=N6BNZ5XJ5F40qwRCFH3>H^VdJ*W^;7CsE
z2))?KEK!8YZIYg&3~X*m+O^^^(EMB#opA~JZh*e`iVOS(N?%7E#phLCB#-7?r&kLW
z4#IKK&J+gENd`M}xm3@32($|v-y`c-9<j&Afn!CQaq$F1^?ur@hNde786I8Ji?ONM
zUi)@B1}Nrnx^!Ru1#<?LdEusoL#Y@KviEx}y!ry?4(XslDF?gqx(PRX&pol69>8>I
zotWN~uhKZZ5@Jajl@tq7=P~HvR*;(3QYClUzMhE;?OxL4_W6(%zJpE!GIG<wy0j}`
z$RN!bB*t6*W4BT_*H{f*wPR@iv{0w>032eKaeJS{qwe1e9zUhSM{wmZUg9!+3n~*W
z&gC2%Drcs&V{()!WX*xHi)d=G%?+<tg+Z}C(LLZ-eX7x^J$%K1M4R(<joHDo%@_cy
za(%flsYn*J34?@3Jj+}-QoR5oRdQ|&%b~8(?D`Py%(2?6Dh6UEPv2^y?SOw)zhbtj
z|Hr=7Qt*1}@5&)|o;lp^Vn^s$>dJkm^CkFm{{~X>iK!{PH9*eud;9Zl;>6A@pGsU<
zf=wqAip~6ypdD0K%tAfm8Vc_mh~>ZC4jlb(_7m$Q{=CXYLhUiS=P4wygHh>6?uXFe
zqulFrlwnJ_Td*Cof1gkb)a*HC^i1iKeqC&y=q6}iDG1F)#FSp+VY9W`#3fkm588`6
z#iMXhd}L+8<2X?bi?;o=1wr6mvae?&=D;<Bv&|MS9NF7zKYv{vFT)7CexcM~2Q*YY
zn_Dd6>}`cS=5U`P(K`vYpeHj_oH}9^Xnl(Xoc$k-VS;0>i<m^@FEmg_#Owvj-ee0}
zs07Bw?X3AU|9R*&YfX@!08H1f<MWI3P)+H?{aZ+fT3gS~A|q9dBzGl)x<~0}LeL6v
zD0SH(PY9S3z)GJ4o_CmWPYE0D5US1GM`Wed^_Vn2uV#=!((zJ)=d_X1nYsx*Lc4&=
zcc`Ka)R@FK>}r(bfeWwAm$td>;{BTX-_e)pdrxe_p?skYU8PQ5B3_TbUt$mKYjXY=
zBAY&b;eo<jv1`Ck7?5I@-=NbHbr#0v)6BeZli_F80WD?Z{Sf6PoD2=W0*k!iA!62h
z)L@u&cwkwKv33aSz3L3OANg9)7sW=jldU$3Y{SDf=~h<Sh#aLQa2h7?8W$w-uyo<{
z7Uv(yT0b5FQ$U@a%u<3UHr;2>vwlYVj&hXi@+-ehEC{){`BoOcfpZ-!$VZ5FIBu6>
zPjnBufLqW9sPMy*Y4_6)+x{3%uoL7Fm8Ali@Y>`&XCD6yKP`=k-q<lOH-F&TBwHRE
z#S3AMp-VE5@;dP$yh2id#Ul%FKFUTna;6lOFyy`sQA{IxpArJ8F}>1G^$KjD2)SkW
z-R<Z!e^&>3(AUjoPI@752!U472w)IgK39vE82|<<$w-Jc{HJS%VMbm3&h+cQf(PrX
zz+ImO(Fx!r&`46Y^V$EH-xh;15s(>7>Z!_xGS>u77^liI6O@XCD+qzQy{!Eo)MDC}
z*T$xMG~_W(G`2mRKIr#gZj2$1F;#(Vc?!)!4V^>LJG-C>rhgpp^HZA9uH(eVdXRH4
zgbL!3On^awQ249LORZn~ss($+#$dVbP62)kX2YXj&=A4h=-g0Qh)?~*Iu6-ycIk}6
zOjRV2P^BRo2=#E*H4>)RPGIZU@0o*E5WVE|n1?iRA?}S1JD!dRS8kWcV>hr8`1SLd
z05jwy`*gz5K4(XQS`Yia&z6?}!FwM9@B3&TE%UsC4`Wyx?|H@cie^h+Trs%OqJOtV
zJgRmUTN9qqeJDGy4~>4jd!2Q)b4TlY2%O|E-KTf1l1Fr<1!S0oGLRFjku!rxIjAz8
z8o%uy&FLQgoh}C+H9`X*o?=v=pJ(j@9_CQH|M*WMiaL@w0C$g##N{8#M;zB(hP^?0
z=}crzM4XW)uC$DgmoaI<30HFrA)Hge!Z6hQx$^uuXQ~2Nm#X)F!Q8Gq8<iuNT6Y%g
z^}VHl#CJ){mR@(bFR?y^@$L6{3{bRCMAK3;Do$qm20Yz{=WxKwUUyWe1Kx`@01S=j
zx}gz4617mH>CTc9_Ox`qo5PcFgc>Z#T`-V^IvtGaL8^;_DjNj}iyl6M`(kV-*aDDM
zkjcXt-w@5Tb^)v_8KGkMzbB7UQ7ALY5fsEq%lV+dZGs?3gE&)u4o8nceVIqzqX%qA
zClRy5%tffVNjZ8QR?`MT%GPgb!6RBUY>ZRUhH`3(etAoR7}3*Cj~wRF8lVf$|JHjQ
z_2S>jln7x(Jd~f=_s%XmVvC1)tgyB%tXCg7Ytwzi>1VcZ3SqREPD~jO(Zb5DNY9ov
zSQFms{P8ftbiJwZ?-_POStSeSG&v6vFFT-uPw=}J_hf5Q!XHbGMs5Wb8~!Y3T`0`>
zCJg>Nx|b-RC9{@9Oo=mHiDD(}lP!DyUwiOJU&Ib~O}SB9Tf~WLE!I0s4fe7JEMF8w
z|7tm4Xb@Ns6Pgav34bt$DR$WNvwei?MNCokFTfbdL&@Y)$d3-wYbQ4V%_ZkV{a{LE
z0s9QRH11=$rRYYG%Ik@3p5s$w9u%*lrKd%Y^IP371N^6&8)SZW+}2{L5#MVbtTh{R
zT<vAq<2Wt_WF+Zc7_;2$dhFQy&|ZbpQHcY6Y<$<gT4@qH&Kdq5BfSl;PYhaJEQ$&q
zbj2ICLw-m<)m>l+M(K-eam7+mU)I<y`CVesrI^lk-mT#0>_tEWG6pInyUPuSBxfHR
zFI{5R45sJ{1tB+J@cMcZgTUh;vWo(2!!~u}_v-Cf%KWT|0;+s^qYu$y9(HC`O*(H_
z`mz}tRPr%;00O5+_fP-hr%6Px#(p}tS<(IFRr9~kqibea!4OBA9nHC)3Jg@rJlmHW
z3DX2|Ot>l{4D9k-4#5xzd9h%(VuUYuhyImxa!hjR-6d6AV7kxorqw8^(ZO7#VJ$7Q
zcvWa!+U7}zPa2}LBN9x7H4Rj(R}uCtv7l2u`$#GCcgS)s!3@!gA3(iVR-e8YvQ3eT
zlO`1sc6hRnv?obp&EPG?$rApz8&j#&Bx_`(2_(?{1g&?_0%V25onXFFTULm*YA)Lh
z*vUVZ03bouXp7Jkxz^ewEHzVjcHAoc{DdB!p}dW6NucdM8I<k32wC}6KYu0Qz^PCj
zGC;%g2l~HZN4<cUcRGj&fSkw7No<zRTJ8vwn@S7z6Jbe5;!Jlmrw-;Fz}fLVI^fmz
zW%gKYmKrdk^Kr8#Vd5V^4ScAHCaEJH>|&DakTMRdErp1zbG;dElB+QY0B85}3s11*
zI3@d2t1WBk;W#Ed<UOkJHm&l^G0h}=91ZVPm-sj1r(Qi%!K6CmoT?K;QRGXR7t|)3
zF(4ATGUKZhDa|fA#|QZOxeR9ir%G@-mK;Gsy5xkb-gU7b8~-7Bx6N>WaFHhtZCGyr
zXkzeSwKE}>kPIjv+q$nCLs#~s$`Db818G4<{UYGbM8KT=DmJg&!jijdpB5|9^!RSw
zx>4-9BnAb65fAGAxu?MNf+!o0&fAouwCf-6$Ad1W`<a2Ulk)1x+CiGsYVc|_jlHs9
z)x!b`(mciX)R>@qwbFYcL2=4c-lcGQ2Zwj7QftR)P_^c8xzPf2QE5sX4!GV_!qDmJ
z4OI~W)NvriCc%tJ-x?E80Zrhv02YsWtP=ZXVF?QYEnolh`OTK&vMtwHs0aSB$Lb3L
zYozTsNwI9@%8#MY`V;yt#R(y<C+h$jxpwzkk;&!ZTxjH>;gj4JUB~XPC2mgnpqn9k
zO@qBwfr-+qb@WNeK&GqJ2{i8Iyi8NwOxmYyx0A<|`_%bAg5tdHxat95Tu<R-RAR$F
z7g&LSTz!G0_+Mcu7;t48d6LTZN^N@`f86Vb^d=6X*St4|*n@yPZ3fsie%h=ZNJNT`
zbo8=$Uqd&Ihy$Z=$4=s)JF<~l4U01A+R|I*e~9IT24Vvyf|0Ant>0jEV@g}Nd2({>
ziSHVWYP^*4QUe15=0g*qGrM25#j2)%e^%jsW$Hq|*|zGJBL2<7!A)m8Uyg)4t#iVm
zp@WwGi74rgMiGpOY=$kSD`l&ne&xU&GY5hsz#{ao-tzgZ;(+)nr=dwhcBld#`8oDb
z56n|^WPTPuhxL>l9ae;$&eh9VqUVb>9WA*&7ttZZCL%8TLD+GLxXBA(^L?0VrYNO%
z1gi}&b^9gqey`vL1dQ7&nj~aa_Y=y6`v)$5Tb_p7OKqOFyP;m$gfgktB@s6YOM0J_
z7|tHmoEFVD_LhawsyNv2Z{Q<wMm1w0K%mse_WZ-zSFwul)UL0O58}dS73(f|Za>a4
z4^oNpD@;m6uhuKtoszt5A!1hTk~euQ$&|ESwfm&?ssrw+8_lT(Z!oVgJpATg%`Jgr
zhz0vl8gL|gBh>YC6uDA^*obL^_q>=64qCHaS6CIw(L@r@2?eMt*H$oXd?wT6O6*=S
zgU70@^5N^7FBon^B>IftL&{M_zS?RNsIEP?S!8j3?9i9FuNzaPGx7)Xk-O<01h>d=
z-S$oT6BY`p6W4CPL2SeIKly?!rHl#)XnUB%1`V*XK}|(bWeS}x<+67Y6j$(DNBHk5
z7k<pXvw6N>bvHx}--)&qxC)h=^EI=idS;2e=a$mvzWr1~@>C)k{W~?3)QwL~W?4Z_
z34qhZ^J6Gbg#xTT9d|nvf#CdfP&W6@tx37|`QJbK3KLrC+Nj7X{fBfBpyP>sy1nE_
z*^S*r{v}K@&euFr8)pGdy>K}e;jt;hz*Qa!`tvcsj?aF(8NYZ{{TFie-e{pzos<~m
zsOVXoH1vk6Q&l5IvI>uML(LkK{;NLREJCpkC4j|3)gh$&sO1HlC)8(z0&3$-brEJC
z5a}5VifzN}D`F^fiT?#6*fO&mQ?-A?n?-}Rb91i)u@XaP$EPWRnGw020=p|=j@_pC
zLdA_-c7T1ARGYkk4d`zbe=cW`HC`=&Y^jB>?pdsYB1!<FOj9T+n!<2!1TrHauuqC-
zMYr0$X~Pno!tBgTb*%<hIAJ3N`j+n+8Xh{w#enHFVC7g4=K16}Si!9}8Pw7kX~a!r
z;pURr-8<i0BuVNo@cyY^KW@O+&-_dsR~kwIdYN<}?LKpCv5a9p_Yyfe{9cjx+k5kB
zkRcMc(rh#{JC%)FbL|IX2Ek}BPvvgi3?aYuW6&zgoMJ$ORP$e6*{Qfc+Q6oh+;F#j
z2D(%QPinb;*mab#@N?r|Z6y}epV5uu?gi7o9<gV5cHl&$J0nd%uAfc6T#3cHvhNo6
zN1n8IpcD9}W~)7HFa_)!C6qE;>4PW!ZT2^{z+a{^G};3>n~Njb2;q6a!UuBfg}78e
zVQFWTcJjEFjat6?m}FGVAD~gtyDp_f!r=om;M0L%^`dT|z-);Ysmc^Io&O^QGKp|t
z6g#njrfVA|uV`<6L5k2Oaq!c*VmYi_fD)glh%rq<n~vCHQVUk~YQweznz!8ssQ026
z-2*M093<isT&o;W!X%idYh(`rBQ09^_hOxOi_MD6yc>e35p`x_T#Mmp%~(+pc}X_^
zH|HYBWpI$RhsFn+;&$@v%!yQ^O{Ud%0Z3-Zz-a5~o4{*?YA1E&r_O<wGcj(`qM{PI
z(rfq1Pf?sNqdCWpmQ(I~2q94){_b5caQ{cy{U*dh9^H>H&<b#w;{QwN95t4OxXfJB
zxH_C6%yOE%nJ9T7Y+bbb_b0)9dvHw2C7ZQ5rwJw5qr+>9l^P0glv8N#F|E`)a~8}%
zLJ=Z~A_c=VqL}2a;1~Av$MG>Wkt?b2h`waw{Ch!50h_3vX6uLvZdR}4W8ipCN2Wek
zq=tYvua||UXxcqat~18gO_B@7k%-{W7-mocvb1dZ>}dXF;neDBQwvZipT&#o3?PeW
z$kSeV7*B14;<uFlpCgDy)P-Fh7yo=Y;ICx%8M(*B4ljXD-Oimyxk?&-+v}?d0#elF
z($1Bq6a6i-dJf0aBm1GJTeOVzRmnc623>(?-2$=sqT%u50<|%Kz(|SBFOr=38;mdy
zrEh5$jN?NwYR7BC$sv8u*|E|D2uW-o)(~PPAtmTvmI19q7h*IXWw<}RT<J>F&Wx69
z6Z0d4$}Hu&h7uZv*tWltp20aw?b2FxAJWFZiJqhnT+E#twu}7Luqv;}KnkvirO&yK
z3d<*JO12So;k_4@+Pc*eYb~8AWDGL^z#F@OJO0ywr|iiZ=1#@OWjxAX6dW*7o<E4;
z`m}8)2unGpg*wi)Zm)On2^2Jjjrz3iQdnXhzJ5u*fAmgyTofSxMJ38c|IGRL9_{n!
zB^<qQ>p(pB)4cgzcK6okyWS(tPT$p$B6N2-J{o7$2e-6g{EDS#wy)JHJXLOqZ>LeI
zmX043PkIyB#DKz$aY+U&GTNjXdvgq#RohI{7SYw_DaD@=a20E_W2y4x-Zw{XkbYC&
z3@Y4s`#ZG?x2{xi?W(tl>451-f2qETG8h*vp_TC;b^ELAzyDD-44bLakLz9JSU}Cw
zYCW*DfnA1#r!|`=L@7dA1cfx22q^6{_j|8Dm9vlmBe6REw>1sf;h4+H5&%5hz}Gaz
ze^#LIJgzNJv?!T8%8!b&<+M&(QM8mg{hE|Za%3CH5+C^#unTe&&UgCU&Jdrh*!;aq
zuBc@|W8WAs@_n^h<+R4&9xrCLQkUfx7ac?YjE`1pSeyTJY28LLp$8u6l}eJW5^O8i
z{2i8ce|FmWY<voqk4~ix5Grt`wG*bcy3=J01zuV!(-eaiMux{x%tKewFRLVNcP^Ci
zwpj^=cW;t)s{3C>R)kEWH4s?YzjMh|SWrLw#puza1fp2Yn@UAKN8FyFh$-xmKrc#n
z?0D+>=c=g|{%>}$Kcv`jO)s_RnqE7tqbKx5Go$flocM0>+<gWVGVYlwLBE@X<>~8J
zIa!VPr+hwR94!}lE+&w$P#W^4pBM(izj3h}@URf*kw>^}v$Llg_Ym<_6KrP{kQl@+
zAF}63iCfB*herkbhKXNp@iq00YDXrL!<|QG%_@%1hM5C>Y*eLIgL9IDe{yK3sNXLv
zs<1mes}EOfCptRmN;y>zSbzgJBCD>njgB-Qm%kh3v9766Yu__JoUa-{WiAA$x0jzU
zIqe#o4mofeHbvMTAIW}@%72^Pq`rk@3-T*#8IJ}m9Wym?Q#J0t`2wQ72GVD|!zF_I
z*RWaI8?BuZKRDCPB?OEbQaPD)RQrqyL+ANHx9Sj?-OTbEcb1du{|h-m0e97VVl|=|
za6A7c__K9|<=McFpfhF6SQ9Y1MxH%DAqV=*=o5e{s~n8ha<YN#o>per0~USF4!Mse
z%Hy*!lVNOPGn2ZWE>81NJ2i&XHFt7$NKYJhH1AYyuKvwDUwVRX^j}Tt9p19v0i=B6
z-n$DAcLxlV{Ul_rgXCWi&Y&30@>rmL97P1IfccU7mTvQ$S0xL`-QO7he!#n#r?9K(
zFJKYe07Po87W;VMo7HS&C4l)sH|YbF7lV&e@Ad-`{olSEM6Mma+GV-aIbM8Et#dir
z8MeA!YK5VZGVRWe77knT7watSHA-X+#U!~TJe&w{lp+j5z)$!%w?pW;41{b9)t3nw
zdfzbQ(C`^%Chw}rIvq$KK4Jz7hV+rGaI-%3MEpi-TTKvIQqxvj3bBDWctawxm|aOG
zlO>u}I~ri{@W3IOMB@zd^93)DypHUgYH?`%Q@~=FzkFE&w+i_hC@ve`XGtGp@Q8UV
zN$_Ir;R}}_PrISrKlEaFE;HzPSG;z*)upR;US`t@6`{p$263{Bt}wYiEsp9h&tdCd
zDn`!BM2<*-IqtTM+n%k`5FyY_MepmCW{wioMe1FUd+qkB`j;C)wXV4`A|$im1rvu^
zJg#4+U&Cnr5LM6zqyPM#jFkQ0X!pv-noMr<VxnrUD$AMZli<w);hG9<1K1atWPI45
zeSpMdhcgiXPCk1XG}dK|_2^vNw_iw(dThdI*5j}>Mo&p4YQXYK0D-y`S>nCUxQ%}2
z;wta+&oUEMnzRCf;kbjCzZUCobLKV0Rmpa>895>9o_=g$;r=s%@H@y0%dZP{{c^<Z
z`eR!CW6{lg-YLOS7X)w^iGAMIf2G+38gqu{q|84(iQY>T#v-i+3t>vRWY3rh>Nf_X
zNJ@vAyUrImLth%44Tytr-FhAitA-$6=XLBZrtj{G1!%*7-*i^Ot6r3^o2pf6e&#K=
z036V$qBEG&LJSLTFXJ8<o^m+^(jnlHffeE0nC<iawOotJD<|nOmHOYz)R%;)C%V>u
z&6NZ`1cO9>`M~7EAqPPWon}M5CoxCy;6?VC?Bc|NI)^_~2Eru~nvF@%78C+u1r!{P
zna!};08yHOS(2>I^<rYPl8|{y(tSGWtDpp4A2_p5PbRy)9vXx1T$W|v8m+IoL5BpF
zZTNy4ywht?!T4LBbramO^AdBX>7Q8_vIzkvYQ%_xwt2^RfvGoVf7J=U51@#aW_-}M
zy_8Ya9HEW(!katLdIIN+p=g3u4ieJ6(_;c+-B66RO4ov!LYOKNx~p_o*zmO<be@q2
zk|T^ggZ?0r=5fYD+XcLqNsuWk0rm@<%zc&eALw8?j7=v<;qR^okqnccq&Z`7q4^<p
z8XW09wP1x1A0-j6gLxgsy)<dJRe&VY%RKauConCWJ0C8fCGYfb%OhwW-KG>_;==J|
zOaKfYCl(yD{8LgM%S^p5>d(9kleYF`@o<a2jS_8rf)lOx6W8Odg%cOh;X{mU!ecJ-
zLcMZZ5Ur{)$u!k0f6yhcNEIX!nR^}69iOg5UN+a00TJSV4e7XCgD^Gl$g=lNHGs46
z3qxN_CnC)MfX7m%(jUS22H0{CIG7-{C9JMEewYpR{Yj%wEtRwl0f=(q!b;;aP*2`J
zEs-3{3`G6F9l`|*47u=&rCE>znMcVm7you&%9DihYcEQ)<Ca?!@;9DSS5U4^GO%7O
z7sfok$w67s^smq}M_tOa3=ub=MDXQgiBxjXN(Zw2oABd$>8L~Er@>+!Mss)@p_Acv
zK{j74YK&qdZtpf7N^~NM)W13oTaJ~V&nA&*Yqxm=WWjCVvv5uoj5p1$h#aJpi4{MP
zcCm^i3))dkEnhNhPW2C5MDS6;_M>CGa9xzn{V4ss_)E=H>fB0g5X*o)$r;+mP>Z}{
zlijJ%#7a1D(^jDS-x~9H{bNsbVk7@vL%94+M4%-o+w@8#Io0JC_=SN{JY>_7W+2&!
zXL~qzG-@H^n5Sb|f7n*g^lS>9At&QkcDp1DPtsTQ*JTgax38;nn?8RIk%ixaGiMe6
zqoI{*JWUK*Jp$xtgxG)?F~eU-4dfam%XlZP9&yj;tF1cGC)Ufx^6AKa(N67mwN~eJ
zUvU?9DdUz2m)I@x6DVK?L{sr#WURYown6K}MXYP~5}0$4u5TL^J^}6FDAW|c1N>k%
z;A6%BVkTLR7VrT%W%!W+tVbkZERe6;#v|CQ*R(tC4)qYuKTU?Cz2kUQ^{^<i?C8%6
zYeTv2hp>1ryKFY<E2+ORUY!vT2a>H|HM6X<Gukc33FWtVpaO#`pzy2K>rr%yyb`9J
z2%-hi8xqx?PHZmm*}T}TV9q5OXe$nimFUkp>Kn8MTBgfr_hK0v_ieXJC5r{`0?C(>
z50|)B7%u@K`t{unr1Q(Z`#>6Q-P(PPh<NC+4*pFZ^^Xl~o5QMQl9orCxgJMrwGjos
z@K1JI>@rfw;RZ^q{ohAm>eC+9fNGKj3jg5WN9t+e4CWjy#^Yc1hxI?v2~S*Z1*E$g
zg-y{3TCl#5Rb5=+X7Gckl{p2knv&sxk#}to=h$|&VwdxEv49*?x*7^VDLUh_L3HLm
zLIGdRbQ}a=si-(euUYYCuf>9{l_2t<SAE+r9Kvcb;<~vsYRI||pKr3v@4;a7ACcs0
zw@?m1&m{SnnN<Q^Lyiv+{+~m$A=&gG(vHyIr&KTRope3yeWw`wAt8N&s1$9LNC+j1
zFyX%I>3|&`El<9(GuBbrO~{$h(qaRb=W(L)kD7~5JK)}H1dKI@axMLlEWdFt`lp?G
zW7x45A8IG)!tZi<>HRm-|FM`t=0xz?3%Tq|#fm>1uGs^kIJ{TB9p}s&KeV=)a~18u
zhbFd$SJaWFdht;O{P0BxXSCRg`s8+;6sMDC|2cqhaC;b{s;(k(YMot9Cy^YX0Ypc5
z?rlOcMj0%rC@bjT98j&>8{vv0i@~Bu2n^CSNcNVu8MAwiG||>$za_^kUqYM<g5`}e
zoWO_2Af^dH<(dZeoFP#{t3w;i+VrRFIM}DQ@o^}ZlSe8FK0e8ZoI%ow%>Ky@BB<xz
ztMVy<(Gjeookb17xtlvqNLBG^E3crciL|K(@@<0ccx0tQCV?6eM!LZJm>3T{CuKM)
zCb(ig5$=(s^o)1Z2eE>gj=k#Qndu)2#5TP|O_5HKHG&PP4qd<WP;pjjww#slN!gRR
zHRV{Ixp-<9__DN<Ve8p7F7Z>(DF73!TSWJ19n_Lul&#uK*deq5;3Qd5i2CE!r)0hU
z)<ab&zB8<Jh#on-<h4W#U%7l}HKy4}K_d7#@k|5oq@sp^Vp$*nmae;;gJ62L0?&Kj
zlTLOB#uFhoQJ=Xy@#G>1?^rwdMBRNzompmR;h@sZ5P6BLqi1h>E~o?x9OCw}r)|2G
z@0M9+Bblf`D}K(HbFv<=Jv5!#+y?S%A!X0gMyThirKu}`-Xebo4QY*E_iXV&;|-W$
zx^5G3m=OYr7oNl;68j2TQD|M*nX4*l?9`RBTxv+Q3&BC%mt5_Li&6Ql1u6nT`7~p^
zM?aJZWYudhV<rFrnM}UtFp>p`o{YnpeOUjVB??M(11>^3@M`gkh67V~9f~Qi{{LKm
z(XHdIi-x0B3ojAs#X_NM#}~g#(7uHOLZ+_Z`cij=;XP|E*aF-&F5RKGRrGROaR~^A
zX9t~Vq;|-1J*>$A?y2~@pk(Vy8=TaJ;P}|cCTNiPJe3PcE=fSJ?`1eM{l@n=&t_T%
zj(_HV?{T1fc8rTroF$x_F>46fvGUdnZS|NGB9+iD-qlU{?al5dj;FKlFyS=!{9SP4
zKpK>)WM%L=9|RqL-*Or-viWR6S@z_5E~p}$HkQ)2t*V2>odYgN?ObV;rSM^Wxi^{>
zl;c1b7nXBNUA;u#BW245_xA4mv!qH4iV<_?8v+U6F|z{{gmujA+94G?72=oH2DS9{
z1NMJ0MEy~RQLSK89YbG^Ig}#r=dP#Cd2(hgnY<g3nv)b_5|gTaGlm6_0$kX7jHh=h
zW9jE|LLZL$?pz8kuS+MJZB~4N6^!|qYb8fMi03n0<H>TLMN*tzXZbLXs*0{b{2b|!
z#j0|(Q}5i+j@vF;g?nVfOWaFRY#b>SAz5v%tU_I}#DRb4Vqh>IJbKug^1R3rB_e}C
zG1ZgDjEYaBs+D1jAQ!$OpTDuAiV#rI@DDS8{7~-NXRJAAlC-P|;&{i*G<3Eyy;$98
z_(>YZ(`Rz8LZ$_A!OQ|g=d%$L|DHVM9#8FY7KPG4rQP2M^2-gW?_^6pg#kZ(iZR<o
zWdq`Pb#DbUhf_E2B9qI;A{jeBT{lRxf+uCNDfce^XobQuWJ;T*$XH#3h(Mdb3UxJ#
zOw>-sXN+;O-w-J%IPfUmyzS+Mk_T3H*1^;Ty?H0|$T|yRTyziqa;IM+=PiePGFSs%
zwv0;+XLiV`DT>0giGNh@R`i~b2<V@^<Y%>vG$Qc*oj4&AVeoI}ElA$llyjMawx=Zl
zD3%SCao4iVzqaJF;@oo+yL)vSE3`>N^0Em$i)g_KkSb>{x0`b9i1rmDq;BMnNF)_z
z^5Rq4A^`(kwv0F;rGIrtLbJXBw)rw<kxPHecm>2!Pj;OrP{Ha*c@`TJkY5d8t+RGh
z{K@PGvLaY9!p=Toq<NaQjjT+Jaf1eGJ{EOS!I+3GD2QF40F?UNOaF5msAVo&Emw9t
zZI}E$&^)q!2}KjUdaa0=!*Xw<Wd!b*fzWQK$}SDqM7*N0I1w@Ao5lEd863tYoFBBL
zyycwTid8gVU{h4lz2!GeW_ok6)}W4fi1COc6t*DZ+*;7%HEY}!gUdUKwC1Q0Q#P_C
z=U|9Jhx<YV7>c6Kz5+IrVtIqNV^?`C2XNOzopNZ@$*oA8ETlYoLcvA-h#m8s7{u{9
z=<yQ!x`((uUdePzvG8w}Y3mSP8*8ZwWA!>cRS<^po>)1I!K%As7R)7SQ8sedBlJlE
z_4nFN?jQ{Gq}IZwu1#wt0g6eV=a5?kR->75Ijv1~U5q!|q150{368I1wB+wFi%tkA
z0icT=*Rk&owe)YPYYTiI{qxrSxuD;`LPXTIV&^qghr8Qg=;1DG0MJ=Jk(J5h5Jy+N
ztrFCkhn=yON>2$N6e}f?-7H>mkn#ar)PvIvcl|Dq*A$GT)A{(N5c(&#5pmx}vs^g8
zgL=|-k63hF3gabOEf;hdRT!T-KT}UL8jWkH<@tfkYbOfKxq!CU?7?$@X8S|siJ8%)
z=-qfT?a`!t^gkd_NxtG-c9x|1!r%`DoxqN0IGcj1I4KtNF;o%_KF4uMve`lnJqX|i
zs*ONHNgMqave!b2nwxc3{W))uV{LW^bTxnmJ8I~Z*%lo%{hlMFkBcou<QCkpugM46
z?*&EUW}wJ236JtLO$1-X&A6=$Ct~4<Vfai%bs={2muaB;<ElU;&cpns-}oooY3JR=
z!Z=w+mENk7`4O_~#LbXyZvR%E>KCnxU_&6ASqR925hT%}jDHNCK?|^`j>pismAATV
zJ6*tb?FTy$cu<CG1B=^d5Q%F&)A1<l1zc=vURd(_#+`wS2$Q$`B)l;~KFY3Eqk~xC
z94rDp95Or3x=x3=J2BHoNc4dN*NCpu36N%H{mceJMMDowuBp*NFs+3dC6)B0Ed5wF
zLBy*qK5~0`U9OEnUYUg{?>Xv06YjoRke3dXc76e931Z|==5ym#_f~k~Ulyb01+AcU
zloDu2k`x6ovwc-K|L&yUz)5$TLrUO%it=#7CCDtzB48JaxP%F6$!b^ZtRcQEnz%Ap
zt-GA@=A*qK0+P;JDP5yWr&%bCP<?+EmX6#iA-%#1BS`3f&j&wfda+Z(d?0kE|J%}i
zQErLUh=a7FLfbd(WmYS$lD3}wvv&Q`AZO40K^N=L-{;7)sz30Y5|aHG^>|qCH1SSV
zuDV`GVcD^T*zvO)tw#Tf+5(V4%)8LsPX@W?i2$8RgjK5a4lf}lp2x$LMT+*CfYehy
z`x%8Hq!TZpRQ1c#(4_R*7eg(e{9+%R6o~Kd8}ht&>>8OLgn;zQp~D=H*KYUi{=AIt
z0XTXsZ;wnZp)2=&9E>$Ai>7XS=k0PHm5n9gYQ`p)h5nLA8AJ4DrkW|o2Z78T9K#<7
zK+<G_WPSl;CWIE#5fdBn6(H^MvQA?%t@)ky!lt`+aFNm<m4Es2G(hJVq!4<PuXf@7
zjC)Ue^5Ui~I=M#f$DuY-E>rUf4?(5-)MXhrThQJ^37S-ePVjvHz!AHAT(3Q*P?V1`
z!~_a-<un?JrGfwvX`27{<L5o!H+b{(cGdn8#pp==Qdrr^E_CCz#nBUcVw=*kI-MYb
z5&yc}u_6i3h2X>3?l{-Fg$0|zEf0eO-LyvsSPnu5QHTTn9-*ky2zH4Y7K-&R%Ntwg
zE!Z6a_1GB7*wtO$1dh%fx1>=`4$PStHi0Fabd>_-CD!K($MKs~TtyDhN}ied{i&+W
zMcx$R0Gn-gpP`(={9-VwkU$ik2MykK@+vZVD#xWPv@bQ^o1`>%ZAfj)7}+CWdH+l_
zw$BQD8brtRf-El^5uhm47C|ykOloA4%`RXTn|C!6a8)msKxK?9w3LZEl{x(S^R9;&
zoxhBPP@~jf<e_qCoa)<r;W<PN=Y4-_9XgjDja?q31ZSZK%9dS+`EF9ED6W=qb{L88
z%u5=P2VLdw(Y)b@`}D2zr0*s3HW_LcghQRRq5+s?L*2kp9WA%ZrUXp4b{HjpZw}^i
zz>Us8G-k~`kd<*r?*}7Wt2D%(g?#ZOl0KBE`NjK1)?;9k;@Hdfgm#u)Lwwc>z29yK
zZ~a2&$K3sX(h+wE1<4Bf$@lel?p;yxyhrc7)eFt{yalt-p>xzi;NlJIp{fJK92ZVf
zenL66PsN*uDi-tZZ`ui~@k@`=1W&rx#S9^7aIF&MIs`{sYvA1%^)XGltO;v8D$JOD
zM5ZF5<iUf%!Iw=9)rGyu@mLqPJ{Iu%^ERcDtv+dK6vtvXO}2Y4I&2rLqXpCDYJ=gC
zl?+(3?S_$E6xh;MME?n29kbhYDIgXnZEo`n3_xsjk*>mNa~*r|J;zSmpyuBQ-B=B{
zIC|tZh@)T8pPMgD^+Nv3z)(nRLqR1mQ)d-B<ikfOa@Hbk&EmzE<O_s1U)P9)({nv*
zE^6AK{=b{W&QSKYo+;7@V2LBb@GF(n=Qcwq#ebS2!r6~L>3cn;Z!B1ZyK9lFyp=Sm
zscE_?pFtw-P}ID1Mz($($N;F))l;sR{3jrPqJQ#5=G~ol5&xQRo@IED>3%d~_;a8B
z{m8q-??@!%;$X=1GlXmrdd2`3t?nvbjo{ys9y(JkXA5+TS<LlkRwh!ka-t+~>L{ui
zEDtBAR=#N1D$yRset|xLuwLDg_nV)^BMT0E1z5I^JZK?u?kc&<7<H-PB=K`~`o#}b
zd*Yts=DOv>bm0hp9xEKo)Er_$$24)v9lJK_a|89l-2Uyic||Vk1s-$Jl}rqVMFC}=
z<L%f~-E<(A2Umly#QO?7b0G(Y>z@*8<<5V@nBze|ey)mLoMr)o>KFY$HnI4;f%_m}
ziuBg<=sP$YZVlVbSpv?scL~LvU_=iG3&>8zlY>Wb0A=+9T8;1*RKpsf0dnB75(CZC
zL_Qoc=4PRvaYp01A0Yw_5d}B>UN_+n0_Xo2PIVv+KwrJ?FM73r!+;lc?aN9Ha7YjL
z8i8sD#T#C#n4W7&p^tDqQQh|8;=wbK8&$Bh0z|OP#8|utW)T*I*MS|8HEFy12{x|#
znr;Jus_9_}zR+gzPeFdjM`2~m-Y01&as5e^_p<GyhncYPc>;rRZG)Hz=nvS$G;hl*
z3l~Ci01ybP)|JE$k7Ev>EuH`^_ynNjk09uVqKB-P@&O;wxovQO7f1l$d~Tvh52ndJ
zpC#*r;Zxr23e?3Shz0^qL+?lf(s4iuKlIc$;8%!if1$xdb_2eT<oY0!$@yE=G-k*0
z$T+^+86KH|RnDM{>0MFb<Co)G+)Q=PxFeQ2JCN~PFUjzrfOe$1dJAIwNt*R$gl*$9
zw}V3df0+ipnxcX>`GV*K^Ry7A0bQ<mi8FvJNJ#7;B0$o`G}Tq<Xn?v$pTz%c|6sNI
z+DomAoEVS*bf2hX*<*-IypT%)j_7H#9n(4Pv%;z!!WtZ()Sj)in<XJ78)D%!{#9bU
z@{Bhs2ey{-j?WD4W6Mkv>1yeA$ZnThH;({yvJ}o0bg6670=lpWTy0`XWB%R*AX&|&
zr0s|hw%W{T*!P31z<4px!LC)KmqNuwp}mPAzb^;*++y2Ead}~%&bkhSV))$RJ~$<a
ztb(;JK;n~H-a|yVV_HBw;OBIcUCgA!GFgs=@iaFL2;+*{*5eHz{4A6GGTIT$@q=EN
z2W^}0O>M$r(JcBJ&NaZ!$F@+UKg$>(;zq2-^R}Vh|1=jR2FTtv8Tq1~Sf4*qxG6QD
zje(&7`nfq3J|J5D>oGfVW>IKeg4Yy>o*}BMyj8gCTBcV|gn5Nd#1S1QF-Nmb*BpUG
z#RZO9ealrzt4_)J(7+g%geJ*^9@9z~tm&^7ls1J+1#>?M4#Jbs#%F`=T#-=DOx6<D
zIu*sTKV+2IU*0L(&j7DN4zF*X_{ei3i`X~7G}4@B!U*%~Y$(>{{P-03fLDlUXrasH
z`Ax<SmS@lTpkGFBmNmSs9|wuY5SigN6l7MEsiz1${;1>FdIZYo60SVnZ(7HDNkFyF
zW#&}+&gxEJ(amvhv`dBn2x3=&5DV28TxU-aK#&@(X`cVNi%MG9=p*MqXCax~>PWdz
zL3M<Y(>+fF5#cJyVy&;EW%+imTSL9<B{QeHW9+q$EehDw*aT&=vgLuN6n***I~8!x
zd6N@I08*>nK&u-Q*nJ=WMCrm+*<JaDA*>jpWfSQ)vmPXqcUOB>1Korg6rYhLiI$Lx
z7z&30V=Rn)`|3hUidt))S?&qv<&xy-B&(m|5i9J$n+5?cEJmx16|3s44tH}zOKo6Y
z#=D!B93dPfT@SHt*yG+1D^dbNY)Qw-jk?}Q*e!Dj8*&}^V2cI&F;3VaA2iB0^tvw1
zMWxmq%55zT968GEZDAjwbm*N~el6{QK3FlsA(1u3l%|QtigFid$r2$5ZQEx@*8K9?
zu6zy6sBaXydU93MU~+Nv%6-j<722~OVmB1Pbta?yxvf5qpIe@*Vy4P31fG6QfWQtw
z6l7Q*^T=k1O|B*oIN)|$Z>Am3EpL4Lk)Jl#x^SK9vZnYK^ydsv_Ec?|KDfFb!NT8;
zXoc5RMscxz6<->t&LNgjo$$AK?5&;KC`UXcyM=&fK(&y8X|d#bzUe#rCbye~O}d3Q
zHehF#6;q$tmq6GwU|p+!HYN_IqES##Ijf67rQ)TNpmSx)1zD-+r#aqwGBfihn>fSA
zDLanz<WkL(;SNM~8`f?s=E)IvbyqRQyH8{aqK{XIl_8Q`S&PTF>DXRzE@~hhJ4eMd
zL_^*0s;$Lx?Z%L0BZa4mdnmR6b30rYltDNI_iuy1-<V;KVV#|A0)!s78P>D(qVb{G
z5%Bb<hE6({q}80i>HRF$(!@Qpb!^i{@PpET10t@lkkJRo`}N2=`7#XHv+?0|Wle8%
z?zRD-(bu;TC^ePpd9J^V%C1t$*Nh=Ii2B$n^G5n;o7LSPfaYJeI(XIDeGU2esAnnn
zIjASAs`&K9+FCJ(Q6OdB5_yG6Ttqs!l_0+dWku8ZCCt>7>^jc~-A}c;M^=PWvVfg^
za1B$;|BIsPL7ZU!_4kzw=1g{ZFpagn#_8rDf5nY9+ClfQM6`E7VIHq}HJg;&VGo}t
z>d&ujj?hi?H{<J4k7Zlce(dRJtFSGXA1|vsqEs&Z^Ms*WxmW1W4VP`zyljY?O(h)R
zXqC_<hH>O5LuGzEkaU$&r^6SyWkPMogrvdh)3~n5<goJkG8*;6)$rtLmUf0Gaww8_
zhnD*SkO3@FVeSNc6~HDE!m#S^BXDJUc%Oe9>y=K{9VLrcIfs|A((*FBL8m!x#N^M|
z?3~TlT*|6&moLL7)kc127>eM23D0Pp-(hl3nETld+yPO89aa2&GwG*{R2#*-VaCs*
zhiOfSFK?VU?sQWNC_y%{LqVXDL{YBalvmLdS{Y{h(eeS{CVgd(=%YG=#YQ_*=h*ko
zwS^NA9#w!^ry}EYT6SPgnkLSv88MHSwbbb6^u}K<e^4T882=so^<mO^-AFq#G~>kU
z*A)`lnFf9f{y(TpKSq7u2?B@`{f?L2BATQy>*KaY0`OL~GX)DOj`6pnW!p?ew}ZHd
zh6-+5kH;qz!T#eTfRK`II4&D|*D5UHn#P!N>0t*TxK9$g=0r(N)6JA(^J%Z%vXbHk
zivZpw8RP@%)^*-CD=T>}M`8EGRwVT_nXy^-%8(ryi{D~p=u)>dmw@KM2Z6ynfpMwD
zp<3B5h2kOdkm3t{IEj5QQ6e^hcCgBUb`-5oJNsB#4(2ToMIC)&oV;_PU~0im%82@4
zWd3CGF}|dN0ul5El=yiRA6QO$a!X<AX&y-SIsj)DG!_3hB3|P?CZz_#>*J=}jKj+c
z-rnEjkG2X(%+ZcPu+Z>*{qLPNnSxH{i@7;!Y*IBW+8R^^_qwGqT)UN{5wtwP8?~bD
zqdd^maAqUrwZwVaAtd9PVP~uQj-j+Yv;11Vg0fx**m+K8TR#oaX=8G)#?1?;7?yTq
z1BvZ21{Qm9?2@ITnD?yuHI(m9P%m>-@qeE4!osI^{<ZDD=UYx<Q!6|KNNj7rur%MP
z@}F5f`{l%t85<kXmpw>EEq+8;rW?2tl$NU+^ZDd%A2iVMLqH4u4Lj2C_n41Jc~XqO
z%8J2oJR;F0gP>MxET^uKRVc}iwO_f$)uyCT6<NWfDs+)K@;)NVyVx3~J}cu&`7xaI
z6}XxIC8%AH9`VKva#DxEfiiEP+(y>eIsY9GD3oMRUfoFb%*|Q<cE;(*Q6O`PGZb1S
zo8Ap&lvR;=q(AQ|`YDy1pQa^qi_TK}ughQkqg8-so`}85AR2G+>+o)o{22(>dQ(5$
zT+Y%YTY8s5rOg+Rr6X`j7uv&4V5p}8#J5gR3f@?@Cm*26C{h)P-mYD&#&HK-0Xy;1
zM&rBGU`B^NA7jUU92W9A#mB$moA`nf1$)_(ZP$?EF4bSQIWJ8;gPHcqj@s@IS2P;Q
zEn(~cVrQR!F*S4cFFcY_JcD|ZQ+(SaH+?F18<h5o|5G~1Rt4#cU$G)67AwpMb&3<e
zD&j>!-xOZp)($r`u7Nq7cMyNpyYb^L@{AQej_2t0?QL8op3a4o<DgQjXKIK8t0sN%
zx0qu&u-#AIO*?uwaL{OVeG#A(`jBMoxk~i{ZO!p(001d$OO0rE@m9(5#}(Wh7AWvH
zt}F%nk?sQ7b_stC)vHr<NW0zW!0PdL2U-L>9N!sC6?GT+giBuO7L_0OKHj|a{3Kw1
zh4?Jn8NQGjh4ZQZUXnsDmCZa9HQ4|@U+Y9l)U6aKBtq97Iq1fgNS*ClrSt!cNc;EH
zjveIHe|ecLI;LWZ9UYym_~^Q+Vt?t5Wmo|+tRr<l-&avV0jH`kN}L`+JH&$U{s;P;
zn~_w0@gm$$|5zI$qvyprH}@oNW`nVMjh`>GI&<?ZC{)B3(hP(wl@ci#r*Qkrg@8VZ
zhX$DR*6Qb-YthSMh8&g@UFR)<ck2G-y6mfE23SmtfA7ugT@F)_v3Gd-sAQg3pcB39
zMISG}(|pT?hj9JZ%U-+Sh_UE>Z6L7lg=h|^WSSPQ8)~|Ph#Qu;N>?USlvIe$4sJdt
z(Y#J2ueGa3*aZnQXZCO}D2gqd7vl+f+@~qv4|9T&-+>9C9#xZ=yGmT1Qy=n>?#i|0
zm>w58fR}>*sFKCW_Knb%T4iY4+o5I}QnIpW`vD`&Z>$J2^1|D7mA6R{0hFoj!<}g%
zO^j$I=Sc3OA*|6f)9HvVtYdvD61~^1=bJo)EXw)3-5n-ExR>_<BlA(4hybrDE(E-w
zAooM&i0JFz!L=K&1&H~q*OF&vlLPjz&fFG~jXeX?AP-eMypB;0LW{m!$5V#tyA$8|
z;M+T7M8+u>*J#^0%0E>)7n?&O-u4V`H4{{gu`%0h>fZ+fGfhWhrYs16UR^Q0EYZDy
za!M6sD{2d}a6>3q6fy#|s&OAC<-(IKSyB{(A<9IenzCDyNf<c#A(Gzovfo=@A^hI5
z1jP+h{69;n2;C7yGqoBV(VR1jv-1!rt>V3>O;+}Ve<+3VjfSUdO^q5@AENiE4aT#N
zPL3bjfql#;M`xIjlE)E1GkP$zF0rucP}JawNw1R?(_+H&I=NEj9LksJu3;6KB+<`G
zN9MR+eXbYO*LZ4n948j$>FLlQ|F3^uM!^ynTT$5;APZjlc36LsS)^BkLToXz=3tvZ
zuV!EaPTmBZIl6qig?JwTz`<Tz@uJ%X)|1edER!jT-!enqw-1d-EtpGVIh%kj=9C8x
zSMhu{#{oU&zvS5v#zOgZwzmR6^bF*&mB)xD6B?7W(1pe`-$WIOoB`s&`nY)y`(xtT
zN7SIc!h!cd-fseLk#~dzZl9uE7|vBK`69=sMiI0vK;RN>Wl2@#mtHqguuDJ^p>)B>
z13X?nvKf?v79%z_b{i@L^t|D4DIM<ykYZ*!`kyCXHgfR`CUo__BY~w?E0{>S<Fj(6
zKTl6`NZnL$1^*T0t0U<+-KGArGzlv2vN_z9`P0pc%Ma?QO8brZue*yYwJ)eRZmT=3
zZjY(-8=Hd^D+j;(PVoEgvLZsxzj0p_hw8SZaSqG%Ut&bn#);bRADo>)*ZcCFFQYVY
z5=kY!|BBMr=!+_k@YJ;SZGa4>fDX6QI+`Mg(Xj5Q7;rl|!+RABt;Xf8*1QJC-7jN3
z&E#Ab7lp61O;fzkpNdte{74_yOPl{%g0tpnep})Jn?H*X68L7|8>nd0OT>xQpbcSI
zYG2Srl-;z=l&k|;Tjy}4T+0q{_m0HILvK((tsZsBh6!#}nwU^rrW|vP2~{`Al&bU2
znYOrpDM=@-iA47>ye2Af+>C}G%w~K*n0Z!8H95AX2Z?MJf8W&_`1+%&C6G<NpM14)
z@l;>pg!%+dgk)pDBDahv)ELFTt4$`7ot(co7IWPi)e{sRm`f=2&q@}WPe4gqaj@o-
zieU3WicwEjad~-(O;qAl50=A#)9C~TzrPF_iq0bTkNz;XUWN?!2rarY4*ca2{KtVV
z9E^S;Rna9GU6RPWRRGB>Z~%s-L}pXR-h+N3QkxV2sItOpgsY*gt8QMz7#(hk^b7*V
z5eF?>*cF)#Ev*SRjAt;c8<X|D$&wV?X4wB2I4@?9OQ4^j&;5yWdT{W^bKkAe`G|Qa
zqPoHlu{Q8S0;>r)CU9&cGR{it=Mmv5-W&;fR1^EUMc=mPVicY&iXD`R`NR}p@BEy}
zczs7w#J?m@<PQs9CXtt`!_>ygekCu=GX~@i`g}(7yNZiNc*G#Mqs*&-hj<4D*m|+S
zqfVIOZ)k*>%4=KgRcDl9y_nara9W?NN)DPXHB*R;-NTkBTCgS1v~AnAZQHhO+qRu~
z(zb2ewr$pJRaN6P-Z#Y9oxNhkBnrBec&xUY7^95|*q-oD<?t0VHX$$O>Fod)!1aS$
z4ugBR;5ax~s^ZbWlYg!a7@u2%7tS<*@zmFJ%)eUeX)pVia`oAoV^@L;EL8`SnM7G#
zxYxof|K@4lSoR2R{p_78p8UiigoLD>q<=J)milQ0OTWiq+S0v9lIlgfFiM}F0Ma9w
z=p2Zn+E`;aRyp{g5mGz|?@hV*U(V@hlJR^CQP@V44K7Q4BGuY-j`YK%j!H0wnJF4I
z+9{`)%jx2gO%>{AFd72FroJ;nPajLCeL?+EqF9=^+t*2Wq=Zp9Z&Z4*@PijL<mr<!
zCMt&PpRsqloi;vmoz}?A&%AT|N!AeWdzopIMfBU4y5N;6q$ASq>QH|E-N~HIxHllN
zf#+~S&WfG`J{P4xfw}_R$<R0%m+QIgZ`_FeU_f}`pH1v=8(FV_m_lQ^V<YmU7y-AJ
zg+AoMvO<hq*2E9E@QM200yV`bO6hYy$h8b@Eg>{Cu3tc4OB-0HHwyNTb!;GnT(2>P
zIkq7b3L8%eE=B63-G;V77`T5!_w{5~vtgj?8Ym|{dDz(wXLJ&r37z=}YZuYRe4vE*
zsM0Iy`%K!Z$xq^gQJz#iqB3pgZfKxtce>wJiyI_`!J?$!<^hDWb)067DU^i5#OsaK
z=)CKZZ8yDk-;->~YROC=w}4{<>4TR2MSI$I?<O42GRb|pXRlQ5PLDh#{&oA+;8bVl
zrJsR}imq1^JQ4yk9WoD4X^{CyA{rO!IrjE=9|sQgL&VpNM@1$}>2L@3i!1>?-|K>r
zr{z#&;&-aex3~Vkydd9qqv&4+$&VunNRk8OFD1)7Ig_vuXlwo0e}s3jOS7v0)F9(g
zZ9ldQ*?}H$r@97Lg9{AUz7OsBWq_-=Bg%30cu`KwX&m$>dV{;a;=utE$j(N?V=r$C
zH^*3jXFW@HZuWamLLwE9$2=}}3|0ePW?#fz^kJ!{fc~$VK9ix=c&TzdqY1?*g}N|?
zA_X{Y+c_O4KpN4rjdU8=><#<+*sm*a*iuid?GK}yim-0vhb$FCY3M$~ZjDDb#*W2%
z(V%~mE7Ebdwt4leTw>3$V%!drnkmc!H$wsU!YqJsW;f{yt~g%p3T;Fl(}r45X^~4d
z&HWyKK1iFKf&tdY-#YVch#hx^NHBp*rDu_bb|PM^viuE&IbNhsO^U#{=NPhSY}O(m
zkQx=F`?3{BRGW~zrIrmCFQU9k4jD#qQi-#lu#jPBEP0rTlwA7{GH%k8Y__Ip<DlC+
zJyDgJ4g`mgKz(_wl8Xa$r=bfjyk^o_`c-1g*w-z^5!Z+nb;j8!69@N8PA%}wYGf<<
z??flyuO#}lGVeyiW@5I&)@nKEs|Eu-9WOErhcu>F*etqW3m@%()he+36R7_|V>D0(
zPCF|b`G}XYj)2QFAY^nMz#&GGkH0bzO9o^csis%SfybLhjVv0)bpVK_m|Y&YlO_dX
zxNwN#kbfd(5KEOIHiRx|62<<9LIyHPacA^XY4^mxO_Di}(pns{?aRamfl6``Bm09g
zD%0Iufv^tYwbL827O^$$&Qqm&)@o#4g7yR{>M%^}<xUHdYdTzRMmAMEerrWX>n6IE
zmeB1fxB^Ld<SX?<A7wip9^6Kp@2-IXJjMUk+Q{DMdFFeVJr9y3j$htCJZx11X9`4}
ztINN$=T*Nce40#QRSrti(pn&w0HdF}PD(m1YnPxoj!7(aTq%=ba^#bbtkjx63U>uD
zCYCz6U|AJVa=7Mg8)Xbd_aDeg`I}2<#VR*)FrIqrGZ3kEqydP{Jb_JLVg<+Gx#<%y
zhY8ufx2guek7HMzzzo&iV;g4w0P8oRO3<WNts!S`z1bGff&XzNT_cM!(B7<x6EiFi
zC`=srh^A{z&Gth~wR-mm;C|&^_$;4rJF*CjqS(Md6K?ziGe7w>v;-0u*iYFfUF2<R
z10KDPO7OH@QS>!zeZo(mG(@Kh>Y<NpNpTdK3|U-#UUKk>Og$4Ae2Yb&S@15{*&T){
zQ!%q)%c?5~GS4$sVR`(aiVf0rBB!UvAQP3~CZI9$h*F6|H6>pZUvCd(iXYo<HJwHy
zh*?A{kvR?zMWw%-$m*CF-Kcc%AV>(F`j`h%2QoVP{*tY74Nhi7x<04J%O(2o69w<g
zABeUuMhUk2`B>EuYT)RT&V;&*qqLBeJ^y9&yK{>pl3ZgX9T+5pm6VL7iD}9LD}02z
zOoF_2>g3x|xFZuF@)(WKV#{s|KuchCz@{!hX`J{$Q_r!W{dz`H&!j=<1q`6oOS#oZ
z+1BI}KmufpmCS64*OSRHCw#e;ZZCi+@Tb8`SRC;TIi)Hma#+Q$xB|L=U_6sOZa@lh
zcz$N7ZNWqHtdKzorcIW_-rC8N)oHQI##y8~?Rm8w$0wd<VVMzlY^XFUF|HVxpm0a$
zBGzKg^$g$Nq`lV@0f1upJlD}EOC|Rr)@;5prUIF3Nw_Wd@>4E>iWrvh;P>GDq*5;+
zXA|j<k-~&=#%e8|*!)t>JGK)jN#+Poj1b8GY-Gg3wEuJEq}ie84VN!l_J+7YR9Rep
z!yZ^pURs$C4EAGdE$X=9!u>GI8I>+erP2(~sTKQmhvm@SZHphP#az(~a4su&f3?6Y
z{Hf2Z;jkPytNXB~;l0z@iD2W<YxM0lW9z`Pw0&y~jCE1uTe^K5k*_=<r!ShHfhEqG
zMLAh@Kr{Qe6#R<XQT}V(C-Z)kYP0Y4Hq&o3Dq&z9TTBsl7+S4j1yqT>F)^g0;T1By
zWk=;2TA1G6a~#qbCQC1yaKlAUWMy+~>S5a5Br9}7a=>0rI$A*wOMWCJ79;s>w`1kT
zME^qWxxZ?2C!D{TLgT{|cQvuw_W~PyxXeVVQP3r(h1a)0v|tsWz^zYb-rKb<WZfz#
z>Q4lrzlmOou6mtV?#fe8LXWuH(w(<++)L)u2_&q{p3(*Q;$J=L&lu{<d(Hs6*#Esa
zrk%EaK%mC1fUL)Rc_;c$f-x3>R7i3Na~6G7g@;5B;`Q8VwO_2a5nBg!mDtX#YHM#7
z!ALMsSUdT;<wVv-N9g2^c~tu6vN@n%lJO+Gy0%3_N`sD@kW51!J;eyldNDeG6eEJq
z3iJ>ix@po^tdyCT-6>z2!-Y<?<J7a&0;U`L*fg-FC~MPYBDM|x47;^D^^Q}yXE4rL
z4|$3^{w6(f|0CMrY;jsJd-k)(xoLhqTnbQ>eMPgqPWkwue#TnhO+dF`uDn1~8xh~x
z<w~;#vl?5RWRB*FKcMtL5;|ok+MT|$^O)6|N=7SWaY|1{q~en(e7Kf?Hl?V@zzqC0
zp9u-lPrvQMq!-xJF||czx?(f#Z5v2njiR^cAIY>5472yM#=z#X9=O%YPU(=H@=$6=
zTtpq1tbQkYLc#h=&t9)S&waVZ=D;8Ku|-?8c0b;b!^r?nl!BwABeUGwJ+Gp2(tJpa
z{}oL|v96gY^q%Uc8-Bak6zm{=MbPR8{$QD(AllPdq`=}}Y7x95R_wTItE%#*5ztgy
z`#%cO%>O$<`u{`6=~lH=-En3+MDh2dnP_Gjd{S_}=eq@7N=Q8BNU9LF1++q*+ETke
z=sgW>ajMxJb~la^JB71FOf1}Fbic4nVYlfvZtc9`&y^-(L(76NuS}|HH%U+B8}wqe
zF9ZAtVr59cDn7PZ<B)}MY~SQm9^qP$<<iU4kV1%&v--YU-~^laZTV(wJruH8)3#K-
z{1X<>AS2!Chd&XqumWPfcrQ}k8|JqhQsaG{Wd8cR?D-x(Ule7ea0-OJx{bA7T#+B>
zJ79q{qt5AOXN><KQr0FPQFBQNf$bRkKHLQh6=a@{HJK3#9bOOo7$y}8V<ki9Ox?h~
z1&rJLl~2icN(f4I9s|0uZ33rUaIwsC!G-PDe@4WW{{hKeinu=`Kg^b@F)caEZG7k_
zPfC-|h4bBh1+cu#GtK>v17P{z41k4!g`NHX65bpfoQxd*4^saQ4*yCw!Nb-5=*?NT
zBbC$&S}7%2)9vbA6i|i{I5A~$V6%(~M)(uoei24Iqp-5(cxL}-LQ>M%0Y9<S;`8ZK
zMf@YVMOJd}y#lT@8Z&_~DgRQ9zQxJzZAf(YL92+F<3!DTj6Y2*8BfQ)`<OwZ<&d6`
z(B(>viM@CFQ<C5QZzreH8jpq0>4S<W$11gS$ee*E%xl6Gnh^jV83E4sDqLqOx4bIE
z?EM0DnXw3qTJVaAy+m_$v3d060px(z)a{GW-dm&>w(&9?Ca+nqJI=%d?p};04gtH@
zmJLcNux58Uw>mS8yrEL+=P5j*<*kvSEaYxw_>VU*?oHuJeZsJnZ>aq*_7xeiOW$U}
zIyRVXeNcyFi)T<?V-}f}RSY<hNGgb@v#4vpi*@N~+K!P0LXoaf;DbPtoTuW%^{#D~
zF1=0_R&R+alQo4HYG@#J<O_Iyt_FCRzTmL)u1>5ADeAI+J?!_sV@OLvqvp{t2SGYw
zFNkvrKx#Or?ZW4H!*iFWQ5(BmpSSJS^^pI9>uJqyh{|(4O2JBw0FmhjHnZ+BQ`%kQ
zLF&n%LA;BA9$)`*p0#));TfWDV$Qwm;+r2P>Q0KkfD!i_xYvaVIVr!{J$%!~;Crem
zl+?Zu{IF?jl!i;_lwFjnqK~><_yOXj>DrZj;hFp58YXcbi-JKN52Tc$s3Xrsy749t
z-SPbP^J=yV0nib|NmQPrWYXhMo8jBldkSc^{=VpCO${hTv7^=r&$#%=PJS%oy)83S
zpJG$t+VT+}MFaAQ$==Gnm=5U}0zzc<Vr|3*hL&5<L`5Haugwwtu7a&=4cqH%)ZCVN
zWS<2lS2Tq~r>4r42Yr88u(Ou`<x?}@;G9Vje#IzI?5flbR_(@wIq8ZTVNMDF41;2{
z>*e9@GVp~ClfFJszMe%*i;1(SGNFE4Mr*WYbkHpS?|GT$df{zI*scys&@$8Oc`@0a
z*J5&JCwoEMu{V)uFf&Q=-5$PsCQCWzBFN-%=WTX27vH~N1qOcL?GPOS63qWH?R1WW
z+Td6%b?YeScEHUSGhU2xz0a;Q(Oskt=4lBKlTr~C??3CDI~qB#(22dH@Pc)^c-1I^
zQj*^A1G$qQ1{!NcO7u4Qb(}SibUjZBj0=kmWxzV!eu{4O-3DT)g~j2}shre?P*c&K
zxSIUv4d0n_s}u|PP=Az$GH^zAirE_CC%-@)0sYFt&8(s1bvq-4O6KwfDbg>c{nSlr
zuaF9`DSK?fBJPe#U%9cV$&M|Zd`4ah7>h8(zfY+)<o9lmi5fV%1ao{Oz5+OXc7PAp
z5v35~qa_BTQs9>jL9Z9ot`B-n7)Cm%JBe3YsT=}W8fKW9Kk&i-6;tQ?xO^+2nWFEG
z{dJCYv)Fty^+q!6sZPKy>r@pKkEqP_{B;K*G5%qTtP_jSwky?RDI$&$QWOAIw`jRL
zV|nbjN<pnuuha7R2^Osd&zZ<yNE!q!p9SwxUluo?Y6VKijh8MTd!LY!OuFyuKf)IO
zhC$}5Ss^L&&mx)3-M|Wy6Rp+NN3|0`(K|aD`H!@PmDf1BAhFG(KY|(#lB?Hepvy%z
z`J%Q9vw2ZDU(NSM%QCU}J-O@T3CcX$q6>9GwK;L*mFafNy8DYd*{H^-pSP~Acb4UT
zc?h0yU-5oubE3ClOU3QI3;^)dk}j<GMuB%B4$46Kj#dQGqe?XCn%1X39pdYxnnaZR
zI<@cCJ!Fq}S0%O6z7?v2{eYb89&b1X-kjAdK34*2q#B~WkObtorG6$8NLFrto=iB#
zfY5(0MZil1A&)usxsX*X4c4hpD7WHtvp0talYIB|rf6_oGpFmYx?j_QzaDvUMF}pC
zs_}6Bp5>Sa+SNN+Z(=~25@-yT5<%b<<<LoMilD=(Y=|^-pqZk`UyZps?zhL4aNP2+
z;LAT1SEr%23o#s`!m7KSR*C};T}N33SrxR5E_OO`-_t~of4hd-Qp3tG*je=Lqx<G#
zinXGtts#I5c_MAtWjIO4f|vpW_Ubu^Y-x(e@@8<>fmOG?Q%Gg%zG^K-j+-%H?~4xZ
zG9Yg+c6uqG^D3b8l8rSr^@Lv64WzVyn4MBZDXUa`hiDy6vo}$q><Yc)ktG6387{m=
z)?irz&X|0pW<jp;Ya#(?ea@NtK|STNn+!=~O112zBBy9JMUDr20@Vz-f1xL1@-eIQ
zZ(G*bNT?aMc5j6R56Aew!q!F-U*=yL9mVST7m20YcIis>jI_%o$1ITP#r*2D4vfKY
zG3?Q^k>nNkaz(02!YA$kFS`mSM<Y=ux>B9`bXAwg-O?V1esvRY+?tOOf{pCgT;M}f
zZ)_^<OSRN4O-%R+5xO|CcTU7Ya@_PNH{YAonwan~X)au?I=Tp}x|qwHLb5;3cR?=&
zuE_v0w%?Kmrr8D*U|MNvmz2h0d%FOrmQwhtI`@@A0d_DkG5t+jzFp+T4BAAWq7CZ8
z=kv?RIkk8Ka@D=k1rxk(eV>lmIIuR44mqHRw}6j-vDtIoL}4Uwi~v2MeakkqsOY7F
zr{8uWD){EqPtR^*_&{tdEZEpq^&)MXmek0;!}8`~UNg|bzkIK>o05G|n4E|3-9dZ$
zAy;w4^nOK59Nu`v#7L&kX2@dxTHaZR9lDEXWdT070uh0&AqQ|hZ1Ae+jK)eu4g+Z}
zCfX3blq!Y~z~$Hy`I`>lcV%6hm5?6RYqE_Wk&<)6Mx5D*X0q|1gbaPXn-vl`!HLV9
zxHs+C`p%!$&?#ruBGiv`WcNHX^w}txOE_TlIU<ox6Fn3RTQ}eUo}n6M-nR!A6~HMr
z&gc>YtogRI;$vmD&4;!xg?Ug<<zeZi#=07xAv|{Ac+o~JXlSCP5=Vemw%)ua+GVkQ
zGJijm)c=}d^PEqZ;<T&k{0vgrb9`5=ES4%R%}eBHaWh(`)rY8lcd<HzCwWE+=|pw7
z0*m!DQX%=zTsvq}#~(fuZTi*5yP<X?QXdk^TC@T|XmnqDqlGUMi_(geybw>RD0E}z
z4qqYEU<%v89MeRh1|oH)Q%~XSK^v#^OrumXJho~s!@;hrHt0=zx<7nXW&cD~t!0j_
z`;{IwSuHDaT>QUX;J+n4_Yux<vYHoNX*6V(h|dUMUmWgN>n%r>>A{eY9XnZ*E-58=
z=(BN?%ixc@TTg^YrBDS6>5F|a0ozXr|I2}PvvrLWk3-%QlQS{ye}bi@tMM8kgXW8d
z2ezBpnrN+Dhm9L=qg7(&fP)HbMHipf4bUAE%tsVN!CiXufv=Ip5tUtMt;P-VyPIh=
z%mp{;0XAY9o6*tVc>yZ4^-FONy&F;Qqwm`UWlF?}?sK&{XW!JKp2OlBb;l-GltF|3
z?k2d1ghnt=7(cv3+C~zw=st6iSm0>6ZrUE&=BhJcPO6>xUe6)|9}Yu;ZMhs80?*<I
z!q#QWeIXJP?NDIrj`CM<`~Vh%qL7YUmFP4uF7l)$gvkrAf`*Tmx8gi4KZvRFOlKmR
z^{g!w%fLKr6LYey?FZB&4vp%{#=B}cQ134oY7TBJ`6JlVUH>*9Y#|vrgM`Rhkz1w{
zvqBITeKYQw3#JmzLfS_3847t?64ZE2<J^j(MVfg`#iH<SkB!T0Wp^$!fAFk8D_EE+
zyCU#@yq5-Jl=V=Ut0*IL{p8P6_W9|cU_3G)LN)C#*ON6us!QZE984}ZfL?`s>FNuo
ztpRD0^O$BPnqYD#L?IKk%WP_Vdi<wN!c!TAE{y-)@}d`u#=9{zmCD1lgPi*l7uPCL
z{`i~qiuRoPC-q|kWo4mT->WetL+>Zuxhu8Ow!AZmg!Zp(4`5i@(4{YrZYlrJw4eNF
zmckQ0_yJ3YPug2{ADFksQ=R4G0z@H(EszUKjG1~9Dlyy-3%QcNGI7P33>x#E?VS_@
z{1{a^mLYs8!SG`c`jCmNd(T=JBTtoYI`V%esXNNBn2tF{ajkq;DAKe-k8(YERa@0-
z&FuR%zgkr&;_>8ojvT$O=ZEFw+@Ey}e;g1YohgV_KBnEd=6~%{s{E{hv>q_{<)*He
zjcSHzhKhj{6^TNVW|u;i6tM*#*CC4Rb%0caQU$f^-NqRL#SD^5%uQo@#7ACh2<OEq
ziphWnwuS*O*G*))WV#P=Z%X<%olarHg_3oWC-v`el;`Qxrc9Nz_!h(^vc>MTz?+i-
z2P`(}0!mDrSj37dO@RIlPtEBmd+WV0%WB$sqB#od&TuAAqKQHB4u$%PEk*&9?hxly
z*FLL3$Y&-dz{!Am8*^n_B->UQT={#pTA%3z-mqe{l&%)w;PSa=6k)6e8JwK7fa2Jb
zMw>MqeU6iB13IkcWX8bHziZX_`!qKx!Fqix|4iXgFHD;D8l_zhnCGe_S2=p1qi9;l
z<83s8+x2P4tEpwqOr09>?SBG^HKaPVjV~&gR{{_+2VpgzHMh|%DNDy0><!unEND^B
zYiqM|mF?EBftk7>OW5s6gD+MlextA&Ro4wqdNC{3YcU=}W%9l7jY`Gel363o;O{+J
zdQjS77;iuirNTGL+f-8U-E%PNG_<Bv#cc{r)Y+8Q;z%kRdQ`@TfqUQk<Ls+t>VP#2
z8dK!I_#QlN0OiwyW%}nr#awm(2#O+bHA*`Vxx87KzlkoQqzlLlPu&<X_GupL#ztV%
z*EEf|3(E(%NtbHhTPJ(zjd6DqNo=|$oY4ubkO>E^zQJyk+Vjuo>>E+)V*O=t7Igq+
zcq5^p1X(x-{Iil;YaR)xzRoe1<sXV6iY2p%7|+02g^JD{l1EkPfk?~``P7RR`mb_<
zfgh2+vGyW<RC0{8;v>8S5oIM-s+rt++rA=SXLhlc`-V|VV0Qb`YSP2XAyewR1JgvD
zG*j-JgcTjZ8X2Pbb@r*6Noh{xSwvYh@A#Ed<k~>Iiz@wOU}>$#;21B)(d4Wnh`L;3
zrZ-xXA<wx$uHocJK7u;x#s=B?-p4OO@oqVX9>fll1bxxU#@R7%pcgWnOP+}tlG7wY
z=!B(+mpX4$><$kxIcSJTpN6=Lj!)2$A}#;DW{6SNA6dUb*Ol-t5MWBHf$F@y_|r^A
zKu&C#9@SA{sS0K1Ph>P#B#RfY*a(e%ZF<jqmkHYW%mQl}Zvbis#^K2_vi$@wHM{lP
z5Ee<hM}r}ju1KOe(<k-z*Q#|&Hv!&fo8^qcJG;-4o1LrYX-)~>j4&n)Kg5B8YeX)q
zR|!^`(MNss4o~dJ`_t;Ofa<sTV<EaDfu8mq^1YZ|8yy<K2jPO?TyQyEw`rl8k9*_E
zJC7#-X1cTzQUMIcQPddtuW&;Z)JxIcEB$#5*)Ak7)nz}ItG3yV4NNSdDz^)X=5GV@
zieWcisV4jENR3I&Gx;nn-1Y8>fJj5W=;yLTjWUeEtMEc=UmKD$$~YcU9@2lAySOY+
zpen}>n-mjhZzt9SlZy+rqJ}JK3lHhCU6}JL{A)6kK%5xAAH9<umj6e*Mx1=>#UpXu
zacJ$iP=i_In1DS*%J7igO8<lYUfpb6|2Qy{TlF6-Rh|#_5KhhCHP~9eT%I@9Rj5T@
z=tL-TOlju1^n;LVk*`$+(#Ui^XeEBS>Vd^R-4yF(5-Iu94zSb%JvB266jAsZwAiOR
z#MxF1b*sSSPGzL-Xd(s+=O@i3N;8%pqav6lY#F@VM<3DD3-5ddsdAzA4+4O&_X#%G
ze}9s&KHnK#FY~{oC<Ev?Oe6NP#+I4#&l)0Irjq;58bSbh+-68|M-^3^a~4`ymT)c!
zf=KuY>?#rl)<eQJ%=2Z+5@B|N6uV+vF;_|Gj+lj5o9HmoEf=-Du4dEFPG3dI(45j$
z^oEOOIFS>G01y=rI2ov7Dz{lRj`z>!>1}&xuL;%}e=W7owCuN`AGdA|^GyiQ;p=J8
z>>V!L#QFnBBez<<9$3tpB$ugqIp*s?2FF28zSXfRIdL?6W!5sN9ox+|d<fS%fQWV=
z_v5@1#EO~Q!(7~W+gtNL@9^#YEZ~2c$@ENxwC)QnaX^ueElM`|{irg;CTK|K+S4qU
z(}9DHYGXg!=Y|-UcEA2hEa0Z)t#*a27{!s+F1?fumKkFy%VC<cHM#o8SWVv|2ls@c
z6O9fFgwdy}%3tT7)=C!4GT7ow)TEk5rrKw+RTNX<d>W$3jFhHnscflrAClX*4_%4(
zP)@@}#Z4u|mI|+fG?a>II%XFRMaZ+AuyM;DEb4)EhYi>VWtUHFT^_3%ezQxq0NVoY
znB=M*`~&!qtyGzthV!d|`tG5m%fn>=Y!eK#zU-KzH4huqLYa%uy)bULu?7fwAW1O!
z==kBd3u111X=;63WOd|rW>GfTYuC%Y?L#&vx!C5MDA$Y)CyP_udws?JsMB_jYtnh;
zhdt`}lU6D}j-ikGIigG;G&$&r$#S!$w^Pnx@g~r<oDN$MWgyP&k%yYC<K{Bs`6T->
zu%%M67AnwrqV{2*f`BQq8Ke~`m-pfYf#rW-&zdqb2YcaoK4=<Zo71N72pyjr9>!o_
z9%o;vyWOw7<6M8nZp#8S*X{y;`XdyAW(nZ7?1sRNM5vtrE??{3P5_x*jZw-K;O&wS
z^?dR#+xJi6o8NXFWLWlEY_MmUdlGu49pr8$60=&V;z8Jcm)!Biy?Iy$azgj08zkY4
z!p2X6{7&-|EaSaj@fKtxX3kI2eClAHJ|k|jRw*pYpoqtzRkkgFcRgsjn^$B_GD-zV
zA9~M>CK5&3Tz>1VijOyvley5*whXBGVYe*s-tQT+kmvKfO%JY9oZA0JnjCtP$9cPn
z$S`-LrC_=(e1PU@$J>f)lNe)WnK>3POg=w&htUTHCta7@3*GOiDh&FISezS0IYK>J
zYS~0LWrqERbQ~mG7kHZFrl^c3;GS*m(Uch`%vgS)eAmbYEq8FX;x}Fk%|gPdpX<~j
zQ9O-Pg~H<@T{D{&j;sFJ-Sg5RpZ8*jZ^2(~O{-et$C5XK&ta{baCH2E=8}E)^z{+>
z-up^2?7YB*SOVvXA+O~ttqDpD=Iv0N9=81sRv7HrW;CDIkHX+=&p|b06Zo_Hq<BF%
zWbZkSc?iLVjEvZL^3X{33Hsj7Ui|h|&k}IWY-^KKbs1vj1R}h)N-aw@@~heUBH&@m
zGs1UAUMsaac@0d2i>}R_8+xtdnAJv&ks}J-*1+u0lF8POL|tyKF`|_`BT>?2Ot)66
z(1N4Rh%bhpv&O4ujixD#OLW~`aQf0b!<IQ?8~CXsiEF)a=d>DzVlkg>Hn)nZja$7u
z#kWZlbRDub+mc+3D#B|u_US0?x8?I%y1#$Yejn>?&EY)0^kOp(jsLomi)fJOmNFN-
z)%JTg!NaQa0tgCpzb1-&B7`O1M-cAr2HE=BEKfv{bXK1@BmqWAlrfGsK-8<fRGro$
zbU5_3?ANo&w9%)p4LZ#L(s`CADst&(0<&hYUu)=^_!A{3*La+QoiJg*x1!9Hi|9*n
zNa>Zb4gAApgrbZ3j_zawDp|$8S2fCi#u~EgE<3F#uJtwI4u00~0*HUvrju_~pfIRp
zj8y;wZ%xODGB$$;!_t}h<KqEy&ofyafiY6d_;8r{(tZ;+gH28B=@dCbPuIL8aHNCW
zQ52llLkYV`2U^?)qwud3B3LI-PlYc9kXOg^3_s%#1~$rYdf=$M)AyRo0p~?U(u`TS
z3L569&<tDu26WVC#!WkcX%s@Y#l^X=BHAsy9G~Y3GrHq%@FVDs&2PJiLx&WdIyal9
zOLMBTs*J4DRxRY8pO*Mhs7W=a);+A+5(^Yb%Lc{DcuyFYE95kfhXGV#U25-j(2b9n
z>RxnDJL0}iq&J`7N7-b1&x#Vf3yub=RfX4*2v?}Fl0uN9w*;`r()J9K2;|^c4bo(s
z+QFw%k6y|0K#uaJ7q@}^kF;iJUgS0$Gg#(iV+=Tni5s$t1@Jrq3lJQ4?~aar$uGdh
zCRgp%W&5^^l`=)v($(n7WQX#wPhk(8i_$_HSktDLK9@2v6gcX?+_NNiVxprtV;*ka
zlbCV^kj2;pz{+nnzi?1|C(@f{*}Af#jU+D(d1!B5VSm=Do2w_30yyyD!=+#r)F~N$
zb(m%Qd-#VVuCDG!Dvu61MZquy?6+SOUTflHo;2GN-<K-Ocz2k0yhTZbCMelfBt-GN
z-rWvT3z$Q1CEWzB4leTa4^;ElGdU}N!*S~&wjjWivMcpci2R83-YpW%5058b8IMdC
z$Qyaqo6nl0;@!0=D4Ei*zhf8IHvoBMku@G;byi+;`yk+BF+m!J+bnMVH*_AR2#`)M
zR4}e`0Iq}T2PTUu*-14Mmn45#0*$8|JDB|MQ&_{RjKn%T|Gy-Y#_gXH;2X8UO0jh1
zZfDijTn0q?5Gg@v#t<`7HcfqQibA*-#>reESbPTKU;1~5MBSxqxRy_{ta(a)Bo4@3
z2mQYRRjukhAb4=_rfRid2gzqppPuc~7tCI-$A!M&r3ifHFkOn(d<&@r%1p+4Os|cy
zp06d&J}hF*ddk0puzCu~Mu1#g72-p^O|mPxx<%!erH0awEtTI5b3<TH!$AXa`3$I@
z4oPBOV7*}ayR~DY{uDI!VDX{kY!CXE$0nZJFv^Z+4s6fvP1bOd!pm#mnC14DVRPNT
z;!l8n06PNI&ym`hQTY2UHM{i)B`Vd!gyXu{!k|H^c0n7TQuG_Dk+*+z9R<YQWT%nh
zkE~4S%#zez@Qb!jrVhB@l&yY@Z!82f*O&f>Q#^q)uX*EjF}v8$PTjjaGPPm{*(;<H
zd@KC6{5O%+1ef#LQzvkzMFCH6!?zT1+?(tQES^#np4f`Kyb+uvYpwHqFvgh#rWFUv
z=MM!@JSk*4^wpW#`Uj3O+J2>^#53V}atWvJUFxfrz(dgdvWg0VpMAjjkyYM_vD>R!
zg8SY)Q-_klQY8P1N3d;UMhQ4Z_<Ye7018B6rNYxw4Da#*+nBjgYE`H%YNYUb0F+)0
zakE5WD-YH!&l1mINIJK@4A+Rxlfqb-aZ2`(ZQc}YSbDdQzZi+M+M~SX1X*7dZI;7E
z)sVfi-9M+CpGL%BunB$RI{IU}pBh>@pY8oE6TV_MUDjShYODs9G|Ag;cLdk?+Z};7
z$x9ifo<5?d(Iw|8swVb`l*`I$eA)brG}4!YLj?6CSbgDypRz`RzAyH1VuhIXgNgKM
zRnA_88v|C=(heI1at1ysZ7Bh)Us6r(ooL@EDOL*?3P<2cm%`WfssjrsM@O=#5po8h
zpO-4@R%}Ob1NayzA^NvAkqk+%5<lx<YN>6Phb~H=LZo&YFlPS?^%v=*HREpO9m8dQ
zRk?K2ZJmyXgujgUn0*g$8ml3Kopc+YsrpMz{Ct1fN)F&TZY^u$;GUS4{!R)AAFE$e
z{oqDPeJC>ocR|Hd&q%H5+YIXrmV}PjcaR3ylRrE1!72EyX=ueoO(T<L!6{8T6_$kC
z>X{elQ`QH!-rnPWm+9>o*5dUU+Vq86=a{M63;}bR2<9*D%WOae7qRJ7BQYGt(#3&W
z%as#cdiNes#L2+_-nd-p^i?`nT!aM3CsptViQl8hk99pFdVF_PU-~b*f+l-7w8a&B
zE<r194$1+nn{^Nnj_{0Fr9%ZsF#_tdO&aY4`sOO=CsVy7E)DE*D(+N^6tNX}1s9t3
zSq+-w-w2xGTxPVhA?%$O4odh_rmf^Q5h}?fJe-o{qKXXxn3r+Y4hYQAwpSMnraOV-
zT|^A()`*~ht8dUc_e9DMk(bPKOnPHlfc2SIHd_Msmkhond>x#Z!h;o7ohLxYtwkKI
z;>Pl)r*19(WEwPfyKwFPJ4T)lxdwB8iIMMXo%L?odh4y{v066E?u%kg!dlP&?_QdI
z!3G6nam(I@fD>rD*5)6B>@F(E8cY|=czT5klX9R?7J7S9_1;F}2$3d;v0hvWmjPZ#
zQ%3I=0@>k>)wDV?*_iy3K8gKNMuOU(yv7Ito#nQ+I>sXns!4Kc@_;8}RJB#ptBb+*
z2OVsF4aCDSh2E{POymPd+))C^G!idpAO=je#S{GwfQamGLtC^9G#)aH+DO4$V-#J+
zqb<sioNV*1bN08;j&7)u(wr=Sh_VQ{Cv#D}b+cFYC8@(wTe@#_z%d{r5B0O$O_^4{
z1RrzM7_n9dnz(#$5tGq5im}k~rg?^JW}%!rWg(7mgH2e(cjklMW8R-nyU0%+r53PM
z$U~uv#@w)_pdo~-WW*e%pOwKiXZ2&V`1`9YAYLJLWd5O(8bs%Mvn=iupmZ%bA3dPo
z4_56}X`F*hl7~b$bE8_Acnp_!=$QS@5a`5t4^a`b3ZOHIBlE|)7h>tm3$nonJMJF`
zV997bR;Bs;my+MEAVQoQdrDCNM}K)xw5@CWoVD`$ix39?_xlCa3`XUDMuCO0{(l$f
z-T(uy<JgkiKBdzUtDem2RPkEqnc>pUR*0OmZg@7@A;boW)pssl$%~VBfpV$)Qdgh$
zG%jHCym~!gT$q;e!bGA@tbnbUdgmVp2e`POVHVk1NjnPSbr@Wvs2S||bCZ4d3^K5w
zv~OO9TxIeN+~6y!je^8sH#v`6j)U!fuQ9t>n~+fkAA`@w!o9<Y_AtVAC2vK-Km*qU
zql)o4l0Q6@Olas#igjIoOdP7MlWA4;mj5VhrT?YvlB5?6;4c^*B@pK)_maR5<b{zQ
zS$^{YzE<ssP4`rf_}T%t6%!NrGk>6dl;6_*c<pT4#D5L^tDpGzu#q*@A+)H$x;VzB
zW_<xh(cHXkl24C(4R!lGHJjHC0xy<O3@x{;tJ5muN25b0jmQp@@B6w-=jkN5SW1eK
zktt!<ywB8%ThmzqF(q4t{gH^~72hq<G&R>*K}pSx0cJdt>YQ908aut6Bp2{F>xk3(
zMF;SeYMl?V=w+AbX3W{HKn)b<h&=TCU|D;+ne0iZPw{UDUrb)30Yn~C|3cLYFm{T#
zr%pL!%8pGIGf|hYfrp5@<BpeCwEkK7q&+|b{AK)M`=DC-ZjxDe{lG?_QTVLR&_2t)
zH>6H&ZVzzz>^4&at~UzX<MYUgtRtqxX40f++q~^7zZYum2upj47m+Mr!Pc%BwEoG1
zYekECQyA9-xQZGosyIzU9w1ijY2}icXj~A0&FJl>VTucU&?}>BbnnAKA8V+WC38{8
z?(*5>Oa7^$iRLP6pHtHi-M4s$pj~$aLaX5YF$t^KfC_1R5LVyhz0cW`@%gcH$_J-<
z11q!P*L)_JEFDBoRP31y?O-bGw@l+gR$x*9`~xb8Sm7Bd8%5Z+ON`JU1<OGluMnyC
zeh_6#c|xW?sn^|C?m`-MgFRsnV*_1s4x4uZ(sv^#n=v)HlV{ESA_g-X0dgx}v}c=J
z%R0r-^HWm+^3{Qg0v<_!{H<xhvq0pDI9~lizP7Qip&Y=9ES44>R#x~f>JcP@6X1vy
z6ld8<A)(8<Gm7H!5n$b?X5vm<q2)b64AbXNSW!ho+w_n<eft|h_+Z}uc&fQ89T*=0
zsl`zeX(WtjT`YX~UPg&Oa+2RcBY!+}ziG?j4F$*!WF?Ol5e;Elcyd(|r%W~yUp-D$
z3LnF5-nh!x2yAS7DdOR6nwvrS?Ms1mfuj17pAX%GQ29&9CNm;YtZ}2xG`$3t2gLcf
zpv1wD#lkGOt4)k9nX{NyuZdGu@s};i^SeGXu@8EVz$%K-2&Pl}yJi&^1w?x498^ah
z<~PWa0b%=kC1*ES@p!pLo0!t8vfOcab(VLodcIF?<WMZ_zb`WGA1gP5760L&5r|YL
z)#KfKtCOa7Lev0+;mTidoeuO*<sZP5Ah@b(Z}v+9hs~V&s{_NWte>50<t3{d`#^o<
z3wxDXa(o$8X|_^$wo@U;w*2T+Ze-SWKDVjb=|M8_lbzI%>Qp-yVhI>SQb<Hr5fmR4
z378V~NY=ull6{W<P9)Z8s%D5Vpd6Um5&A--<M4FjM5u%3Tlbt@t6QOn5NcF`ggA%A
z^z{xcFZg~JB%`d9CNGx$`-=Ai<9P&&jkg+p=7g-7>XRIUMN$CT-gB0VPI_E%Dg~Cw
zRra_U_W~+1!WY8Ed-ToAAJN<;r!LybHSDVX(++xgr0n<5E&ETvTNc6HqznbSJ5RGR
zAt<4l=n5%edh8?f;#tBA^m>CV$zw+g&}-=4!5MC>+$8N}q@p?`daZtaL(_P`!F&{2
zW>^loQbME*o$`H>8=iAy=#kDTXX1Fkcd0EbD(g*>34W{Rlt^ov$p_#r;R-@W(nNfN
z&ik5)-Te=Ja-0E)wp96M>$?3*=+hNQaO>D}NeI)@RunmzGg4>x{K9Pf$Z+1wJWHR5
z&Vq)V8!Df4D&av`fXh*Xka77LE`cH7)8L1^qnA0)j20SLm!^}|Vw}_7_Am#;r&9Xw
z1fAY0@-7gq2sCJF=$1+oG|REp;2%6S!k9mG@ih4DoC&{Q$0^_eJ`#K3kJVtJ5z1&R
zare26?nX43Yr?B_n80X*dL3&1&pmQ77l;hhvsI1>LZ;JHDig+DU)ma_Oc(&XZsMlf
zLJMk_3X0oRa=bd!$K7n^D9ODOyYmpw!LJV@1niDN$&)bqHIOJ#uo9N#zhI-78TeZ3
zbgMT(SY0!$$y)>UTVmool+*WVh}chWQU~BWoG9aE@oSZQ9XP}01A<2}9KWJfH%|YE
z=Dxv~!#mX^w5k|I%(?_sYcN?fnyZEbPQry4S9Q%jtMg&0Z2nV?8w*Q0W*%S2hn%a;
zAHz&zZM-@a=o?>qqSj1cVdfOD@iC2|2OxPXt5>}gcZ2@D={syG4ZX53hlc{;^zxRK
za@PbMg6qDJIsR_!#}d+&^DFC24-|8Aq4PK|h#(-R*$7vtTO6<<^=rZr><8lOK06-e
z{W8Xi9R$x2k>gmx_$a=u9Avs>S{mL46Wmvu8FQO=lLrF5#f3`UEwFN)GOg*?pmcv^
zMbt89eQ-QxEBndyML$MQti)L@`7e>LZ?Q#w&Aqvs)jXB!oXSH4QBHbFknO+LZCgZa
zY7>_xT!W6MK4=s@updT`RbcI)(xAL{m=rMt_@^XysG<DSD<F{>LK!auQ2e;CE9W15
zH?Rnmu2ZV%3+6Kg;}u_gPJF4Raet5emuRkFl8(b!fFTCB1cX_E8f~IBLFfEZ^4szz
zeJDI~(_b@3<@X22pGeR!1v+q%;hV+$0b={O!u-Ao?Su8vH0lem4~_H`(##KxNO<LJ
zvVpVPZKRpyY@89rFb&-CI2-5`Sgm}T5qu5lX{0Dn)H|{iwiDCQ{J5(bxt|nYx88k&
zem0iLdu_rqbqjf?&htPu3`t<R-<cDb6Jm`d_Fh<TD8!mLekKc$<rdpu$@?O3`)?kK
z82f;cQBlxB!=4-<uvp!GBxd2B#FwW)teK?mz@Qh}$R)4w(&qZgOe2--F0>i=F8_(y
zUto0&EA6<PJ%Bk-miWCUEFZ}@Vs@sbo@{}yaSab*3#jLyPqitwh{xL~`x_f^gD}Qn
zOm{d;PJ8T`I%S(E)JRPn79sKQ!^ZOvZCcN|0&H4IDK8$BTl?UnW96A#ZPFr>ncWlF
zfxWJj<VUtD<o0z&-^u0wHvg2{Enia#OZEE83l(BT54j<p(z&>M&b2XQNH?<h74mBO
z8_5F{olQG#QCN?dF&-}RarEP!@MouGV?2qzt;6j*rvZ0%!dX#r#oGVvMx!D4&6R0<
zICUB%_G`ve84GNCn+C`qI{jrXdwbOp4`fqwvxqO1l0I-0jcl;+Sc$~BCvC1bP1$ct
z#0_V^$o3)L(76{j&g(B(@e9%9vaJ3?=ZA?Czdpymwoj5|HX{Lr2nhw{CYmf^plU@V
zfo2kN<f?N3()6@(Tv3EV3Qbse{%ydeZU@x{t)%6K^&!>P*CJ*SU6Olib@-k{YPxuz
zaG?Cx+Rafh0>yUJ3DRrQi~3*6G4^v5H}A=L{vwLw$u?EvHPv;5MkN;`%#@u6WZW8`
z(ARZOTB96;rFzOzgy&|WIc&0@J+4}hm9(rkn!XW}7i>)&LQu^CColrF5ihr~aFkoj
z^e)Hw7y^4}K1ROIWmq*XTGifLzQSbl#muhNi>g!Z^hi92K3cZQF@`^+%102A%ZC>R
z`(%B>3evr_HWf%#2uSS<93dlM`IvI?5A}$8ZK?#5MgM(^n+X(ydAZ7REA2XJ)RTxG
z?TfP$;kNxOpZ;+U-eq{X&A$GmmIgK){Tkcj!9z4xnj4oIM9y)Y4P<u^2?QN;km1g}
zZG{?lN*M`s;x2o>xrpRId>5|fWOghTLyN6~GQ2gvr9G9QR0_Ie6d+EJ54JelQ4ni2
znq!`P^2T$XUE{P3N`bnb_BTGjQ^+k<NJ(L>$duEDNs3N`S;0E50LTG5*zSB?0o0Eg
z>Z_-53RdK%?g&|cR1cs|IUUM<xkm%d@G0D-t%^;s@B|KFsF+*Er^Kw^b90Gprz22s
zpjXNi6^HQO@|%{oTc(tst{*(#f{UVWhtm{|mNz<+Y^BhNLB+}NJ<mJLD-s^u)&Z0h
z;fx`N(F_BT1o(b)WQY&dGW?}*!89!i*E2(ekALm@DWiJJ%XI$a2YZ%j>z*RwOhdJQ
zgq$~Phtl0iId^Vffc;)N#zcf+zMSRDepNYgc^GR-?Fev9lO7hN9!Gy~Y1T*07O@v7
zk7vCI^Jt!DGU$^5YL^oTO`&74u4z%{3Fc**Y%&OY-1}R2IVu1H-3pm!rkAm;&1;J+
z=08hm+#*^!ek`?ABy@NHzrb`q;xqlW>J$n4<Hq9krwuN^+IYTjHvX!9mG#I%B_t1L
z@tSC%)U;`DvG_+VMQ;Y?sEvue119{_P$m}RkR95pn*^L95(<jKgH2xFex|vU+R}HI
z0wbBtI%p&p=G_XmWkN!7xyc^gKj)ujA4Nk2Z8v(n=@F(duvB76felkmAx?_|IvVzX
zS>C<nj_bZi!<QUEQ&>a?9;l0m4wtuOf#nu{%%GjpvQR8ivLDo02Ixr+?Ungcd}k0S
z!Z<fs+HX1(Bgt2o3)=i^CQ`F8Jpy>$<t6E_h5dEk90=|m3WaNsd(V4iH=R)SuRLTB
z<DQw9I;_!HJLW!Zeq*v~tbynRHtp9$7ZybFVOrgl2r9_JX;L8jc=N!cRl|bCXBdLa
z_UHoq5Y{kxBmZ?#J|63oJ9a+oy9><r;w{D0Q<gwwikDH8hPpRjm$1U2HCpKjsgtnV
z@<eAkG*0}8Qw!Ls#&h(q(AUK0R7&?+Mg%kIdWaELs*OFv%S5TE6Dr=~yMd<$vB1^?
zUDDl$p^l%~@J8o2tKDxvwWVh9yUtU7Y2x0We1vke*pGlC6NUwy|I|)RArghep${>|
z$Qqm;m)fh=gqky>+^yxowgm5WmN6bgVQajBzW#>`?p*>tVk%fc$G>-Qiu*&ZALgxe
zB~>qs4<qpv*jHNrhE=Zjv`ZGLVV?)BQ>3<2^542Q5$M1S!*IBI|6#1U{~j_=k}0A`
z$T6D4!HNG|c}fR%-~saY(<sjN)&dUmJ`Zp<5=7+aZunwJ*cUJWH9Uk1MpF!_Fe}|=
zXk>KPz>282C~Tv!BNT09wsY;X-YLMe@fphJ?p;<`z_dIky-cIT_uLPe<oyGt6rfza
zuuix4Z-!}WGi}gpz<$_}Cq0f5oR(&kMp~@Zr-XS}DYqi0V^PPdf{eU5rcMMF3*obg
zgE$n}Bzm|5PKLciL$rC>A;|7k;KTDTINR^g{poBxY0Q;tp?y>#6c!`wcXwg)F((MW
zT2S85iyMkn4kn!^EZ#FVOA@F(GH|h)%AF$jFx^*__HCbO3CAW9ix4*X;2H+8P+(q%
zRgK*So5)urr4Ym<^D#k|8SuXOI$C~|0VR|AJ?w80tRXPfKyMjjmv^pT<e_MlVhrF~
zH!39$Zn4zu3HLX`*#q2@beDfQ5Z@4K&g7e&ERqryvX?aVy`jh<JE;#zAQs`iIWLw4
zxO`JcWY7C!#I#Ov5mRNSh?mka9-^~?hvV%<z>#n$-a^VH5U9e#b%*7hoEf#s!n%m(
zm5iZ5&D9f)lni$8wdq>DTeEv7_L0j6-&5`F{I_x_{bcJVWw*W)DkEtl*Jm>Q-*r8a
zPFldj{M8F#11Y^NzYM5aS8$<ybnsW0^Y&FG1~aDj!>V^S-UPt@KQz@M_h8$9ner7I
ziLtO&LbV*b6ZRQzd)S{?!}Fd)i8`c{?0BT<&y1&!yt^b%cpJ_C))zsKsqLv2p*mxE
z4t5%0)MzARg1M%4kF_T}#|<tAj;yZL5m*Xy5DI(vH|5?XCwGhoB9zNR;Hsi_s6i=0
zAGZVN-3Jtdq2{SH>3ZOdT+F-@gswWLWh}Z1CHh9T3@(ZHJ3R<>t2wlRrULHFtXn!L
z3AJ!3z;ptw6P|{mZ_f|v=zOI#PS<UeS>wT369i8p9*)cqB^5~fOirHtUtht)qPr>i
zv&(FtWA=}7xQeUfu$l1q`7Q94d_MO4>?CI(y`O!$(NGoj(5U*C$8>3dCko=3N_`Yj
zQ7E<2BzJvP0!`lAK`0j;jGV0jN8Qq5^0_O_r<1yBU=m})jCBBarCid86_5aGHDSml
z@B4>wyu)5C@(Py8J}Oybu2xwKZN3#oxVeP30(!RP!iHyQtA?Vmw}Ezk?Rj|AO9V-$
zDhk~GX@B)1poJ0?5ho7IG|iZx#ObzUxli6yD|M<QubpefPyOp74vw&2_ckr@SE2Z?
zQk9@QSE2Y4#pG%ZKKEbE$q5jZ86$cgRU?F1_+s4vUc3%>A?T>Y*_M<JH~xofqGc1)
z{4mb@IKBmND8zPN1#~-!;}Z&7heI=kA{y)wLOqpS)QJb2_+}C9I=`KHH?bjprcRJd
z4I3pEQLZS%(Dv@kEgiajwC$_;eo;$U`^OPOA?-b{N@Q|JKF7HS)@T@*&Eg*vl=>pY
zNQWw?R|Y)so*KeqIm)ziCh-B-j$*G7{vdSCC%u}W&K&2E&wrQs@esJ&`$mcdH~gtP
zo~}~)YT$N3mTQ1@m;9^}IQ#^hi6{&auQ(YPudD5961tYm^`al5%2kZMAc^@;QcPI5
z2lhA~bk4p2#zZQz`Qzsq#&;|G$XwqR55sioi9@SRdkYoYtDg#ztdD^Kny+@Obp?9e
zM4N#ge@NKJEr9eyZy_K$t&lb1GQr_3{n4_$mp$#;d`l@xRoe_Q{!2l0oaFbmr+l%^
z)yKX}0dWEfV&?J7=HL=;8Z#)Alyrf($po;%wjRBw|BHj!N(8#y!?`w0MAvP0Cc#?C
zIttV1-)XqTt5kTWP44^FE1p5?I5Th0-DH+y9apSo)e`OR&9|h^DRjDakV~O=>LtJG
z6S!}ZUo&Lcgo3kj6GXGI5DgvOr}D?T!s6(ly^qrQ6e2eQnt#AZD#df?1QUryQH(|?
z3l@;2es29#oE@TF9vPsk(I&-?ykA!FLA3%9g26-^hxeNk;6o(9aADtjsQl^gKhr~{
zZBxVKaz?dc`+q3wHNlFCtj({0E|@ATtkUbQ|Ae?kN%`j#b4BR)HjJ&V%kKZPr&;RV
zR@PQ8ljqy$(eJnat`%cCfXOi_3zHq$j1<}pNqP=N9eX%{AWhG-pGVYaIHw${vW7=3
zhDbodu`xT}bjl!s{Fr6N6gG~9K0??c-(VH0`-awvPKDRnL7VURsZDw;TL!?DMd$^h
zdlGhJlBE9+069R$zu^&)-~Sgyu~Z@Kpc9-SS{>O>@wY$byEg#tSCBcqgwfKVr(8i7
z)Wx5zG1H-JMu8Pg@!I;oI_<kt*q#ni6E>g80)O81<>KRM+H#LZ4msGJH=k)+B+v(v
zOo@!oU}2D8A<p`wuud%^tB38v7?u=mIE1Z25xV?xD&@Yi=Lkk&W5WP$Y1w!3^EOp!
z7^F$BTwO|}TU9KQ?Zi5j0#`A>T;WrB2^7Gt6@*2nG(P=h7N8JYtSz_p9M8!#yln4S
zR^>&`mW4jcn0t)DLiZ#Srn$PlTx7l;mAK1m3}B^-ZlwNpHl!f?HqMlB;nNfYOVeaI
zsAjy<{N{m}-3W)N3NYXp+@cfz%vN9fn0@6>{XYTw1H1j+OzD3IElR$1n>Qu^F|tv}
zp{<B!%1k2!wwEVJ-`d^b%kWb5!QT_&si+bt16}DWi0#!mmSVOo?8AX^I*H_h+im45
zw%*LmVsA&jcvGviLiw<#{~^T$3T2AlQmyr7SlM*+d&MlAAJe$$+pzAgtnh+?*eiFO
zg??qNX%td^PsSl4y(-f_^=m0ifAqxtKIGyj4@_jq{?2(lZxc~!IA^P*e{g&Q#Y5{#
zf=Wb1tD~`T`oPyj0fOW`M!#~{taK;AbjfMO_xaBbf$nySYipuIzXZg?>2iPcCa>e$
z%(|%O-cUH1u*V%h6$+$Xt%Kl=4+QWy|KEh=Sd%iNZ2J!44UFtl&RiNcQeNEZvSVYq
zibVt58|{)$J`fi>tc?=H6mrC-uCL0@;#IjAMp<7@B^>LjQ%Z)5xZ_U+E}~uBm@i2r
zRm3CNaR0^eR+CsCF}~oqeLwDs_pWPR7zfil<IFLzbNg}A8z{)ko`1(3y+<igwC-;N
zl(|h9oUQNV@l4~(A}`B$6A!_P;&s7Mea2m(>!=5URbQKTjVy>|f8~%rht>qa9}RA3
z`duU%yCq<D(e*njZ6EuISKJfOhKC?aE+eB;s#tkMoca<sJO5s4Y#!INPc+^aU^LX=
zd(a*s<w<6^Ph0agR*skGudy6sSn*<0$&>e#XHRd|T=gNsoE^ULGp_m|eEY-Lnw`*D
zb;8K64l>ht0{4)?p_44dbM@cm1+-V)zE#7eY;Fqu%6NLC`J!dQ-|a=MjwN*x-I%5S
z)Oyu4)!kS|91$aj%Wsfa6(q}4jBpr&d^2Ghv5i5L4vF@O2vLyCQZ4gqnx1^e%RU&@
z{Pz47H{!8R;A9BDQmwpF-ty%}0s)34qEg{qeV;6Y)Y&O<aThS>!F)ISp#%do<BWC<
zc|pD<pc}a~xsr*lRY&$JNYVnX@5JNSCs=a#-+ay(tIsalXis1IG*{N68hR(*9lsr=
z*M1=N9i{YLYm@ok(2Mu8-0za&Tf=8*P|?!GVMi_mGSX+i1gfm+U4S_`lGo-&%{vg^
zdwdNXz?pt`Mg0Yhf;>K1Tp(vTuNq;bl+QnK+QS^ALvn&sEDRGcvfGsw%ZfP-4YD^=
zBpT=@h00$T5<M%xJ2A=)fphxG3>_}8PuDtOV;D&c+iD-!kRcO)8I9my8NH!Ps+!_+
zVS9mxmhBsrtBXh2FJ)^Z`k)ck-GRs&rxG?uofkZ{HWbe43MERrG1nh|&KB<;N1Gj8
zPBndkQ(^{dcyj~P1{^V-Knu88L{KG`V1s+{2YS7A#W=lcDI1^pNtXwo%0}d`zkD5<
z1j|Gh;AQPO8R5}W+)g;LW`S#WDv7S<O3*wJ$DOjK91#4BtxENXwUDxuOxjg1{6V;D
z{gjd8m@$J}kR9H|vxSzSA(9+|mg%aMc<i!$f;}$eZ9u?CwHs{tUk5!KPEPDcF+aMe
z(yNP3;WvzXUldLIQmJpyu(Ye2cUi7>>p~c&_HGN2JAT>%K)pn`;rOZwp%u(65I(Wx
z%JJW}T*Ji+G3}s>@t%9_J>&ber=vqi1_7m*)6Fq7lapW>2f=mzF)lL}4rHwzk~35N
z_8jV&9j`_={q7_m;$^<Z=}KWS${HHnY<MZ>j@((gF)<LH7qd>&<qPF8q3bxNG*b!?
zu%pV?eo)ac$Dq&uR~WJvL!baPklJ~aRGdfH8w}|^sf~Dc3e?;Xr$*j=qJ@?uwwu3Y
zreQzE`%K{0W6&`~t^I`()}o%FPOV1F^JBS;StoaP&t|gweEL16_QqoN`9qC7A5`N>
z+?H*_<9$raxN%5nx!=4ekQlzEL(3dQ8;CGGNWEcq%8AT^2xV6L{y5E!IzXe8F@N-D
zWU<eEB^UqR)HfH%64W%QqS6dwD~#D$Z~x%3bo|`c(x&3sOY2i{!-$Ua-ep#w?PJ8D
zXYD(kOUR?<aZI|*=Q&i8;Bv^-N7)$S2V+a03+n(y3}$xoj<r+Liwx)aGyPZGe%YY-
z?*PdePIqOIlR767Z!}6eSl{&xgCITOo|&zI!Gh?-71&bL|9;!KQBQ2*F`vma8;6_~
zIz2L^cNI@k&o}d*+qj9gxOC3^GNBvFQt-RpM_U{Zhn<@xAKs_y%5IRXq<SSRoHHy9
z{#;?vc}CwK_LZnYQ(qpiJ@sD4jdAv40_sN-u7C<AH0$wMv{?Gg1WF?xGS7F7+s%x+
zrE%)=20N2f+eR3bptj58+KWfIpCxz79ufOoqF9KWQUoClzQ;YPJ2s6+`%8!&MxzT&
ztQ|na4n<Yzt#aB9%!1E65#C#)gw*={v^S@WAiZ{Z^>pv>_Q!VhG4<cit9i1Pri_*L
z;hv4YUk9XKv+3_7hKhu425>H(BHv_~Bs{ms$t1fKQCkK^b3zAsLVVQMaG}D#>|oXD
zfyqUx9;c_y;Rl%}>WxO#gM_e2vfko3j2?+f^Pz^*CsYNXyIyu-uwT7lvO5lgv$@NW
zyKddPtr5$ra8#_z^oyVcyVL52;mLGdnk>YxQq7ArD#i*wfDd=_oU}zQ&7gm&@eCfl
zSiH8YR$*LZX>VN!bQTu2v$O~c6d7uif3L*%iQW|P$XB&Wx2mxfE$pM^`|6|h#5oc7
zXSJvTaDO(Qy#_S*wBpBQ*ws_48PuhJ_xnKqK8%Nw#4bl|x(EL^bZ^#oV!F-WGPWhO
z2_D?;r}&2WZb?z(FzW4oqQdqgIb2s~`Z`6u+V2X(oIFGN%QvDi(rM8E+w*v!k0I<a
zB$CE-D&MF}`daAPf4(giI8bOwBgijz3kUQ5jgCkTdm<b(rI>4RH`QZi9R%wzdo)Z-
zg@L~cCx>Km9LJp(l8&qr|A0&!FHb{6+`X_p^FHE<fn*2zXim;ks<p#%)rTuQ<ot;e
z-;9!Q1P>m-X#+hvT-CO^l7<8hX3oSuG*Lg@>`RCH%ZNa%?asgLZA%T=&f^RSK(Gi!
zE`PV5ESW!}cG5&v{m`Jg?g@tgskuxXMAaB9MR;S<ACa5fVJ_S&(iQF32gOQu!dY5$
z2~=`uCFE3Zl#=RHWlBC#KYIm<8V33VKl@N(JgSM&MOE|Aa(NYWrHcUqqBTOx$3o6s
zmPyGq(1{~ktH5O}*+{;cI5EvNkcS14EvO;w<!LDZC@gQ0OP2AxNF0q<u>0HLzbo&K
zwj`yVP0e8}n8Ne$fTkaZdI$qg-qJYuvrb0m>4`v4_k7+7&w%50{z4~4vV>TZ=XaZ0
zjQZDjUW&{{ikQ#Ls94B^-<P^Dxk#ZKd-RmNC`@V>urk&?)1Mg_y_!#h?~DxNft&{a
z|4Ng;E<F!K7O;2LWzaR>%93-~J9Ti?MCbue3gQYJ-iFlqMj=tg(ObOxXggiIh2E}l
zFS1qHN1LckAQlr;U0lsk>B;HRh;SGSWQv3!Q*y?KmIIow00D_3r;T&eX6;2}_krTq
zH<1r-Jy~BVgT+*%AXx1M#8z}l)iHr)U%nAt?MP1$RIrf-SRIzTcrX42%)e@oi?L15
zJ18*gwst43(&m?V5%ZNTRQ<0OGpy}?hwdWQ-<irk!G^Iu?8t{}WaS~WUd^xufl@?E
z&TY1gZ4)XoPXv92&be<HI8O^QnZ7ddb9KKxmogqq<ih-$$;<vje`SE7tb?^KjxT~D
z@w|#<B|S=RC0u*&#i1@Xzdv8??IKfDyp%)yO~;r;kBaflvwjsEVxLiZd^wKM;UG@K
zzB@MN;i<nrb__(lVT3%88gx?$QI6%JM|L9QSsi`{7E-E7=gGu#Bm%w~?k-`C{6=TL
zLZi>pxyDy+5`Aug^IKY!hu=rHgX`{fF>5$R{w%Fpo}s1zE5T3=Y=p*XQ!{J-Dj(hE
z^vu8@-LG;yLQhep(>9q}NRSuAs&}$^_I>%Vu$o7UB4lR7_#}J>R;Xu#VL{Lv1M=v-
zsd3t4XTbaIl|=bZTW?4VcugRF5^G*J_`n7Ttv+{47ab<a=Ek@TtKN0V^~9e17)AUz
zicjNqH=AFI%k41qlD8wQl?t3hF~4%JBC(~1yRzm100#zXOA%#IdM!c)l2*UuX)KDx
zf-NMFUT^=fdtkH=5BYtWY71K%fO@qV>q*DI-OpPOPGORJl^zWUS=(rlbWq$Pjce%+
zMEZa5t}8z}5tfq}9-uL&`CN*t;58L${j0mu+lpdDAyI_})-f;s<%Zv^Z?f6>X&Yps
zTdyFrTRq69A8)m@GN)}UosTG1+fm0s{c<?0*)U`Bd%LQNUyn1K3I1|>>Z9KyJ!531
z%}5E+<Z%Byl$=$kkA25{a1C_*s(zO(5^*`ktlpspiqw3tXM%F27yXS#UdmB9%LZ%%
zT!D2OiJ5>+saReJGtrSEYyP&4-TKtR3$6RvJPe4tn||8{4mjOeStwRe!KVav{|4xp
zox;0!OAPX<sJCI~FWnkl2TelHY#+>z-p?r27?&%!O9<PH67{s)6r6>Tz8!^v&PM~Y
zvRi0h9P{K<M0w{9EpTxaTm~f<Bwrr>vOGs6dnJEy^jyQ>$!z}`Qi$!&b>b$<6c*(r
z2HIP?AOyO0p8F)u?Rb^WhG(#DIGwQK{hMgVI*uQ+5Ym?NzWQS8ME`e5?XxKCtwbBV
zoR<RG{ur4xIu`f_c8o2Jq6SfWEGlI@<pS7~8S>PFFVgXDsf3<Q(R{SP1q8T{Fr?F=
zRU|vpKmWz$K4h#zVyy$>=;6OkA3oWNc*~R?i*{=YD&uyXbNl^n)uUv#;W<VtSqaMC
z&C!^W`+U2Hu!`bAApe%d_2vK2r$)`%v<Kbtj?GCAC{<J|#29MeT<iv>vv4C%pa*BC
z#|99hpS^&PWYa&V(Yfs*>ZhvJ|45;F(_OLd4BVC^Sa2NWB~xzGkpz7w3Bd~g5Z2AG
z_BtE>4ci-%aRVK9+Y=6M6BoHt*JS5wxIa~o==a1GA8SsTrsiSPUQDhXJG8k)@@GVN
z2u($cbP#ou(El-zE&Ba%s<-%San;m1j|I1s?cC|#){lf8{>c?!*E}War<o}N<X!s&
zixJOKPC|_9D&yum>t3YQu+U~3%=x^;0$I6!*u&R2)Be|Oxoc?aSo2re?_TOO$CA+4
z-UhjILMxynE|56Do0tGM*9{iYepU|Nf*jght*Y;$$s%ush~dd15fQ&0AS3q(>#ys`
z&Cl<*sH{`O-r0C6GqJnow_83oWR;%5?-kNU3gP>qe1}ugzOly>z-<qBm7qmZvoB-%
zLFu{bxHBZ*@!Z@`QE|wBT5r^%6lKkk!b7;MIZzj{>BtvQhGX+O$y>6Q`N%BBV8cDb
zrDqoHX=+@c+Pu`gLd}~xU^Hn*H40reD@ykIU}(O-+0MDGEIu+MgZ_P@(|p?t+a3TD
zG^xX=8Ot4uopyNrfaKCrt<J9_LqBhzQpAr1R|$Z*BmdZXWlT?IxI*Y5?S!aS68Cjs
z@Z+GNk4>{U1bEq=%UY7E%E-JOGs=Il$Nf8Ly#g_@Uv7kSig;|FVI8Ah@F;*zrXb-v
zB6LBK<)?8V<FK4PK?N)PW-$|%T6on;3u(;7&`$0aEa4<C+T)%r{#_}9a?AdZ1ir{E
z#BUW)hN!qO<&u6}Bpf1{kG%YjNru6zR;*)@QMab<Uz3Q0y|_hr5G!id7t$f{z<QA)
zUj#9W-qwoK_RKB>bCTtXk-<~G&2G$TK;cqBL%LauO2Gvk6#Sxb5HC;10ILy2^yPwJ
z+_15eBs<de2&36>>aUDg&ld|ZtqwE7A-J#gp(rMr6FX$z*zY8Dt<lW)`L4vSlXCL}
zf&abjr%9R#DZCY<@+)gwzgK8&>sci*Uq#_|@<Aexq6U;C_s&s>NZ-5FTN|q{3pZWE
z&nMpfhu99&2T9OBT<i_L?^34FCa~8CANdG^0mL5AT_it;qlkt<V)i@e;A)@8H1^Cv
zG)}sG=~F=_&A*kZoX7EX(%oU3=^ozb3{#y&Lo7XZahUF#Exon3yR|HViGv^DlmOc0
zP3Xv&+|o3o^v&xT2vQY}l8uzB>?21#2ZHN|?W|jofTVoes@Dp%DrR5w0FSq%qgAaP
zOqnxMB2|2WzY$wxV+gsn;ijHS*|FQp`$y}AE7^U=#a|*Lnv$LX-5<NVw7X%mhqX%z
z7aXA{vYhP(2oCUqq}L;ZYP&VArV14!h?&52`34zbTLW*{z|DA2Y5k`amMC?<zP^<v
zm+ogLiY!IN0s60<`>h^sY_fMV+nzt98g!$$!$#Jk<O8Y9{osUt;+FuJd$`01M!l=o
zt>?~KtJOZK+W~RczN35nkTzwIaPP48VZztxG5$#tCg4wz-j_*~2k~3h5I7?#gf>^X
zaT2}(x}8bG+C_7J$yEnvT3DUQ(kM^<gq4kLZk=kf#-_I_c|~NG@eee?j@F=~F7CBm
zq>PS@yf@YI30g`YkL@2qf$#=S(>a7<yAmj-#co(W9f|BpBF=RG^YU@7BE#h}<thV3
zyu9tFlK!~AsI^Fz4Im9pkxohT5mZvL49%aG0*Akx7WcJ?+<sX#W$HEC&HIp~4)zHx
zG0L9H>twPYsrmZM-J$a1lQ*UM;AO=(a0lQDTtux1)iR6fMO#of7ukJ(A5D!gPulfo
z6BwfT79L$wOV7PWD+Mh1kmBVhNY>_U??H1j05nR;u^XjCy*GWa-;4W1M4MQ)u(aTG
zZcC{t&OSzHn<8!*9FRb99w^a#H$IL95dk5u5Wq5;oW55y4+{H{dl=ko_K+HV#dD1-
zIH#WWDBQ^j!FIt89?AE~H)rdi(llaOni%0%OSvY=W(I#U7S5(4)ddP~LHIhnO;&5E
zU5XX|N@_=aEXir_@-TcLK1}i?dZFLhU?Z7mL#GLy!>-M7;udqO?nVOKhJEutnr>2m
zU9ycZm?`3EWY(`=fIWk}Xs0203JLU&!4R-$${bb5PyC+}c_fQ=k;~K9O#&F-t*;g)
z11{z}`3&q6&87_n-t`AHRlC@%mvS9fZ{!&_+Q=!41L%`Jl#cL^s`kqtr2!5$rklcJ
zGGf-cFTzrnszQ?1o+-%ZjiHr7FkhPs!&yFhDs=2ZN)MY$V+Av}6P1h*g8_|*hh;1}
z5K%UT^VE8W#Krw>3(t?A0QP|V^jT_Fbx+6=e>N^mX#nTZ_RHyB%rHxb`bjA3>63~o
z+`j9HC&V9uPBH-^VB`5&;#0?uCW=|>akN)W{9Tp>4&8~?dtlSS#gHP>Z#!P;I8evL
zIE0_GLGL^mAyr5x=QO#Bz=>P$49XoJpaUISz;}9Wduv=@ZyuE}KX{Yw<8M`hh5Dii
zG^gD{7XK~N26P4MAIZJ=_<hqKnU(Ls?=u~#<bJu^Yr|hv?c)tVrO>3vdoTcAg)^<=
z#m(a@hE;<M*E}RYi3(^pg18)qe~5H=d@8Cnk}EW{E*5;6L=0Vyp6gGy4S?|c_cq;N
z{!?*$`c2siKNkJm;gXXwN$i1&J9Fm}dh<a0QWU7sd@XHnI0>`Tg?70qhOd+UBT~?c
z{tVBqx#vA4X{Qy+ow2q&j`h&6lgOniqXY9bfZtq)sXvKra0+=w9}SW>KL={CRd@OR
zYE7!vz30h7A(FruX-IU}KrY*<;YZ^DWyt*-blkP-r$)d_UOSjZDV>-XBPm%D$1ARe
zr)xGj*sw>F=(^3PX&_7|EL8pTF%8VuX$j|J8ud+tl1Z{l*y#b(7j3c8KMb?aO|q{<
zgZArOX>O%%YG^g{GLwt$htX(4_#4qUx))l+DWRX{K8MZp=tJofOoDu>@HO(E#_?pt
zgPFdnvh%<)pD?`}N!S6kps{dTMt`35`;o0XiBshk4zAVB3k-Xf^u2%jBb!6%bP6gA
zDkFZE>f`;;(LkZf6V@sGoA&plkky5<X?)!>+3GdyXvXTZ@uC^V1XU*huK*h6YDu6;
zCl;r3JCVz>f9U%f1iam9%63|T_LF8&THwY83y(y)tY3Irn{Hl+DQBbLZ@gx|qXCF8
zteP#HN|&Li-V&NIG>xPuf+wias6YwQjlg)(bARh}rQbu#{YmP|q-47N6c=<*{-1L&
zTMb;_|4y;PKXAm~1k1%!$Bg#mY74V1>GZv5cSnKb?fO4N{8<}MKOQ5{!lR_qA<zlp
z2ViA)X3<h4liAh>W|*pZRyZC|>pgZt3v!URYJwwUlqYYOmEWGTCuL)$QT7Vm*%+1B
zb8j5(hqI9mVeU`NUSEQ|)!+ECxizFXt<s0K)ozDZD?`n{MB(iy;(5ag;0CDafl_ZI
zC&8q-XB<k$?q0$9i%4Tj!;G#lbOjsz&0h3uhFFBm^(_TOsMXGVt2ncBBV{rG0M>dk
zGH}+(+G3q^W%Qk9YRvFDW!sc6dXfO)UDk;1z9GRnh1oo+l~&*+rm3<?%Tqs^xV>(~
z@)eB$`*wyJ@uc0UC?^eS*c=-IYmnrio~cGZDS`?H9$Ii!QP4b0rP5myhj3!17vxCC
z0#g}tuX;|Kz){h>608G{#(~0jN)SJ%CM<G?L3c;9>fW5G>D2G}LKB$I--4lVai+8?
z6`ebj#xF+qC(-L94Y?1<!a&L<^`mj$wLl({_g^?b{rnAJH>IC?J|%?csUc<9O?CXw
z6ng|{9wtHRhw5LG8P*_BdaS92eyNi^M$rIi;8EQwaD2#oMn$`Xhn(HZhh$TWG(mR$
zQX%&i5_30o2A4VQLWRnKQ<!l$R@RXhJ3i*8LpjqefE3hvezC=hjB-rnOxjwd9^)CS
zFQlNhf?3ywf5|?#{y~1-_Yt8-=a$$YyT!s7I|a$~h;=am9-%s1?nHu&HwTzYhxY9&
zEo2%tJ>xA7qq32c(`VqEnPoN-)Y&MMZ}etL(!eZ6hl?6QWf3z-f+CHc4<Z<-BV|`g
zzb1-kip^!u$5D8JU&{*QiN6nP199lCPw(@^4L)J$B#-&t{XLR!5Vt#i9imm!zzGrw
zBgDas%3-_tlk|#;6M~huNv_PUr)~A>CQCt5hDwrk+Y@AiAe@+v3uT-Paq~SiPJ6|H
zUn}S@FQd6J-?|6l_Wz<eh9j8$glv%qP=b<_Qj2Xsli=4t-_p=1;wEA9qEQ~P&|Q6g
z31^qkQBcm@W$o=+l?TlW^Al25VJ`azve#~bR3VjtMpI$~e0MD$$o5IlPix_#t$Je#
zH$S5iQr0I&>~S(ZOm64vX7Ew#s}T;&wM!=1lSkS9j=C~qq{h&WLYDw*`Y^|3O;fH=
zF6yo_j63I<NPc<HZpQiNz{fi=uH!rEbMq$b@r;T=h=TYOst7<<b_5o{+6Uj-N;8$0
z;*-EJ4rR*K_(e<@(yIA`s;$xYc?JX9-@ewrUK1G9!w`VT?GggmGKtTK+3EuBG7eI_
zg%`+$7od#<$5Vs25@e{xhsbxC!uAd^zO*zy$C)^vWrWg%hULmb;@>s;wlY{%YML!S
zU!s<50TLtj(+ZO?;J{fz5ke<Sj0a`Ez{*>p?M%YQn4WFsXH<pPUyFP<X@dIL1_BEe
zG$$7XNsP~$ME{=#ri84ODpLFvDaMU`vj*@265xOV=AX?`1Hur-EAheCE(?!z;D`|-
znMn-Bw1}54%wMb7&1;(0W|_AdEhvKlUl(n}s_+;5nBlhdev&U#M;Wb$8b!@-2rZld
z09FGi%5O<jW&1uw)=Yt=LNMEBJ^zCfj^Wa7Sy$_H`7mCvto)HoG+wi`_7XmyR~cm;
zn5DpIQcR2lrfn$no_&3Q;=DgLR}2}*aL6<9xF>b6%dk~1aicE_CUBG72KSRkFt;}9
z+(h&1M!nXSob0_&tEMOlIq2uape)sk<_f$c4g=<Bgla=8h%hwS`!;-?A!7@{;7)_z
zj5!}5?T3{GhpQQzj*JjO4BuWRqG-y#Vln2)>;cvaA>M3r_D4zN#`2jph(q*qG0q6r
z<|?bk6`+a&%c(+(i1W3=%STBc)6^u*|5i*QB=9YF4u?-*G2}v;t8*Wn$!_Q15H(xu
z$I#}?`T4F0Bl;hMg2hujyMn$G9)sq?y2h6W1O<q?UCtRdEBJx<{q~u9LStM>+kp(P
zl;9OIH$KV$rvLm%7f`?#53)9<?5lmg_8Q$sJ1t&sE-tU1QRX$;Elx4_e>0Y}<gm7k
zT5njY=3rDPr3Y9fUgZv@#c$RnXmc&HX5+3yfye-m3sX`GBx+iCw@xq^^ChE4UU=K^
z`+v7w(z3fHrZp~))2XqocwZ=jYhR3sX0-meGzzMZH<j%elq~#wIbyXm_0JmWo+y0-
z-cmAMlq4X~7S89jQiBHTiVbUQ_R66HmeA*he?9NHLcyziwLzn=|6Y|pV1Kt=myK8k
z^8kawA4FO2h+(}%;3f9$g4_C%>XMJ(x!AX_*6RRI{ZrQTR9_(#em4o6%9e|62!Y1n
zq}Dsfj{k}d@>b9hg=>gxZ8!relAA^NU;0_U-owvM<-B!^;v^mRuSK7LVdKwBhC4;T
ziqRE|RvoUMgUYmv)JABR@wYdKZPca?@)$>jo?ULYdHwO>maGLG#_-{G_X13_6JiA`
zFKqBHpl`0U3dqiGo4ou`34LuG49BF<{#R(w;YIbnb4TM$QciEY!lbWCSP7Od^Hn1Z
zwXmwxirP#>vL}BMww*#LgZkX$1p|!@*^d#oDDlVgdUnh3N!5+pE8-{u<1$TA`^)iL
z^J2}QEfS#a+f1kszTs@y;qQD4QZIo$l@iU7?;G!DtW}8|3r63ac}|rJsJYUwJk3pp
zbWrkYvuXgptOd>x-a-qnukL)f6ETHIu5dQudqswKMLrE(++kimM}FHi;ho~n@4QUI
zGtlA`7KKOBWLmNFRAydc=#60Yjo@tdm6A;wq{EO`o?|tTZggF1j_I;f*j>0O49Grx
zPviMgV*kRjO=h$;4*=Z)^1nR)3e+M$oak?=!CFTz<wMqBJUcR_O>R^%?mLDZbL4uV
zCI1U;ujDn_7ddh9cCjI`u+<_0c-T@@@%FaQ;slai*6g~NYtXm@8;vpmptkG7GCm)t
zw@)-HauM+9_QRq44|KgP<Z^4b!!u+NUfAky4Y9r>!Uz`ASdZez31m{YA$`yiP+>QC
zf+AO#$*hBKO0%_MlDrNKZ7YTtVG$z)yM17iSPc15fRbJ=bZTj@Q&Q9uG!hBe@0|E;
zlqtOfvnnN^#+XH#(6w_}f;Jw3*Xr93oHeRh6--CkT0+@8oTZegSoG}L?JclA&<DBx
zyot+tS*{I0lVXN4jK|C>PIYq9V&bP5rBK8@X)Zs65;G^)zIrBh5vnDRxkpF`Jmd^~
zPYPX0z0qvb9Tt|$FWAH2*3~MHBiIK?vJ$<!`haCWyUQ>2@4pw;R-=1$By=<KOw5tI
zIS~DaZ~{9?tcSHo5d0k0ToOOzW+Ggt6j$QSR0&~W(RJ2iO}yfHBV1kgoTc+RxOQ1q
z3uqJx7WYGQ8sJxYlGG4ZspZLwTg<BYLpj=ruv%S2r}d+avoyK7s*BBWbV9#nxw@1?
z;n{hX-bVv$VI&XRE(gLwcd*5oNfbuS#u#aVsbY}S4SylE_tX!1Jc!j?_`I1}Vk{jf
z-48=9-=So@phxb*x`*6;x~D9Bx1OG4AfNBc{+>#F5*}-@MmUTnGDjuFo5=YQ$2(Cq
z1B|QET|;fhNmH`7#rDO`E93t4m-!}gZ%Y*`7%p0ibl({Hj2Y$f#v-ze|8nTi1Htpn
z%RHI@pM2S+h5VBOt;4MkEj;8mm!2lh>z-2bvJE;o8W$ZHZTRDU`UXf>z5i@ky6&D(
zJh^dS*$!z6tm-q*?~Oo{4&BNnptx6?#xt~T^KNc3-Z!!i?AHOzT53fVa<!66o0dsN
zPaxU%S8kT=kbS&Bz}zDBE-6VnR|4|5SRZ6>-e>Ca2Z}reQ&pAD&?qAR9n&FF;koRP
z`M$$7_Ate)*wH2_?`)W(?B5P<*eERJqABa_SJwB<fy_|1S;$348F$8pm}cUlvfjr?
zbBFBERY`RfY6F&}5-y`E35)CQ6%7`6Yq|aUsQ%#a2pJ_i3}8M4Pq3VJ)w@yQ$FGfp
z14oPKGlI^!<U)x%&~ONHWv)V_KIowAkmxgnroZRD(RE%nb}B~w_V&UH@EL_&kkeIN
zJmudGS6Q)wL%;AR3a(k(H{$5cuT>-X<Bcq1Y9wmbLW(ylxym@qt5Q|ZUWO@Z5L)74
zHP!uVXX;PEI92@Fx;zJw4tiq0aeAV3q5*pPR&!s1;JPFR=fd@SZgJT3Fk^61Jiawy
zzEOfIMgAc;*Uj=F*EcIDyod}W_%hp-02qRe8-NLfT&0IkdXmrnX{XUV=L~L{Oido2
z>QpOAU@LbabLD^2)aLeziQ<n_i1JX*j|-|)@#E9Iy|jv-b3vGOPQg~%5;^K^+uOyw
zP=<8Nvr6*m(YB$eMI=~qWOsRBf2vw=rjaFLKdKMwH3dZU(l|fmt#68P$nMsR1^A1W
zt19g`<S}1NcZbqIUmvm<AGT|qi>DhvO$=}B&S_|){Se;%f%eREqr8;-5NF)yQ8OkN
zf94y8D;)=LCr@TIN9&dQW+@3mV@VwK?ca4HU)m1DZ|s>HEa3B*gV`5u5{7TK%aQBD
zCpQOoHvjAPI)Q%U_dQsAm!nlhYNJd%mKSC=I{J4Y6`V~XOvFk?o=z5m)IMPevx`hE
zGDbLk!T)X%kSTW_@Drsp)JW8RhM*aT0pmPvpy5+)!)j)Q<8N4|B+I{LWIYi~ruq&I
z?Y#BdmjFf^N`O#81>_ZGU`FUft?!!VZTG5p<g%oeLts2R<KN?>1;00-xw!!k8?}on
zEjW#(cv9{Ii08^En)EX>XP^|ba&uW{Ob?HSi6YZ)dYkpRnmn5spr*=HgqcYJ{_3q*
zA5bw5!3nqo)BLj&PRBI{Zqbq%#fytBA?nvu1Sj4f3+pT8{vr(B$<85fiI#7<@yr;x
z6c!|0)vR78F7qM+KuSX$@;c)k<kN&jYf&R-ce3`~wTK-MGxqeKH&hKL>sF;-f&oKa
zXR<f~#m8@kqwf`MaUB$;DHg?VYM)w)n$90oilRL?dsKIgbhVR$S3RTrPWN=@l%*k+
zRNHX*0c;w~u=GbW1uADskh$>dDm+mw2@-}(k&;NQfGHyb)?xLR6}5=vgGlajQavR7
z68*`H>f*g_50`?K1Z1M{X5B?K?r@WVtZZY;3)cX<ixciKRj&feb6|h2?%<0v6<={)
zRZmAn-3i-}t3&kzJ}L|738+i!ROrXfwgdo4&{k=diOIzd%eVCz4&{6+6Jwc!3(iH^
zm+JOa&-Jyx4ruB%yJ1zVJk?Pu1UZ*;&)?i-Rf~oV-Z=-?6$4RZ5$FtwYS8j4lHI+;
z0R+rVi~q-6fD>M6{#IvD$uVg?Y#i5&bQ(N+%t&7+Ct48^s)A&#r5bRiBsZQ7Y-C1F
z{Eh|^`2U_6f&lxmWNtmCyE7H|+ekGWN(>ba_pfTMIMNrl{cLbwj#m}DUQ<wmc?hxL
zwQN(`c!$f4+O884hV+2DuvDy9?#iCtI8Ili4WBq;lNLw`g59b|mPRq)xKoik8?7Z;
zrzW?JX^i@V^|;UYAMzanmpHZnay^4oojsau-sGx{<#zXUZ8ex18kPZ4sN8l6yOsF+
z2T{6~3K_ZSGESO|b@7U9F0i?M6?IxXk#$V+d-T=qd1e>=+mU8XHzb}RD0V}B&<_E$
z#Ti2B?$j+=tCj)XX9}5(p{KK~qrA}F43aG95r9zSg|6HwBo&~5|35zt9_O2IKb);&
zWE{3`X=YyI8C*p`ub>o=@P%wfA6rj8lhUm*4oEr2*v$la;iV|WE02@MA~@PkEp<)0
zxA;ye=meX75b>WIU>JK;`9L`U#SE|d_qZuf-RT=6%R5FX+k_EzlL+M2yHp!~e(b9u
zq=W1dA?o~V#oiF$rWooqlmG3$6{Z0MYpJoqE~`kn($b;bWO|egMKr$>3f-My@8(_o
z3ZnopsSnA{F7@VvH<tOcn%vNZ5&)PUNm4yvU|uT2K{e5#{p`tHWaS_V?v~cl2LY;n
z&T@O%i=1QJC~-{z09}?>O{qZ<W)@A$rVz32T4G%-GqH-4_VbAR^DGW*gQfUp%q*4n
zT00!KvdeJ}Kj66q@xUpxD;;Wr)Vy}G1B43Tsy(_q6~Oj=BooC9aS#@Q&`Hy|(;Pw}
zxW#xIUJsx5VOvLmciubH3AtS%b6UaCm`?CiTzm<fhd%r)=CC!#gi`BKi0xn)3d8|a
zDF@f1CI9o8_Qr|Fa}T23&V3y}uqi!4`y#x_fL)yVL|mK0d1`L9^LF^=QOL>en69Xl
zp&J-h(7Uh#x;0pcPYq|DrlbmT28JD?5x)x$MtT=2B|fSQSA>n<;Zk(z%p^l(SXmeh
z&0>k0*8AD}q<dmR)*bT27qxN&2D8Z>{GvVhl^Xjy0G~}m?i2cgl6=TYhmGdO`6sj-
z@`p(+jf_0Oy8#}->->|aBh9!^hz-ElsJ$P6K;<tzRO0M83OO3QMS$_uKIWBAvpxX`
zVO4@)^Qo(%tz2d!P<R$m%hyAMvA&;+8Vtv&bH3x|fapK(y=wDlZr>P}|0fx@#G|ob
zh0_E^wAaBBe|*D=2|f7cmcq5VO#;B>q-69Qt4{FwJ3{aeclkPRW%)+?N&Z7RCK4bY
zd5t&TXJDt+${#aV*pItvv6(puJICK^^vxvim)$3~-~5$nrjr>)xH|#CVza;wH<nQF
z;(NW7IFj316sm|zE{U&CC(IIMI8AZfIb2VIdftiLaq#22ic1H5u*E5<E3KM%AP`5#
z7}~8oM8>m(h|RG{7)S|RmoAiuS6TyZ2W&~xCF$1;azJek`aY++;s)B<qra-VO|Gb<
zYXy(e%z2L=ZBO&yAz&55Jd{yYzG(JOKz0ieWaFm9eS&6N`kx@qv^09*)vTHMD(r?(
znl5y_2$7rS;@R_Rq%>BK&z&KiD+vtUn!Og}T<3Z0TeZ+M0F6VeP7}~t=xE;{K2W<!
zaEMTAX1_Ofipr|^cwaMKnt0raA7e>x9K2BpD`A{E>wQ>PY4S6l8klEUVvy!P4lfUw
zL4r_Ov}_{z*TS7wm=1YK@iVF7&Z%aYq)~ir-9kQzyqCl%zcqOe3T|%n5wFf3Fr!cO
z9@YG>IIj)JBt6UT|4eNLh5hKGLcJyy5rN<!OeWDmy2cOAYx=654o6%>1#<*pZ<X(S
zLETN<n_q7(tghF5kMPFVEJ3KT-O;p<TV@kmi7qu>ykg1?ynQyjLYY#winhRMXWJ}M
zx((wRe->|KN20vSJd{bPn$yaY&d_G&Wj~B%RC$%ff&ciii5%3gz3(8WMl_$oILjbL
zA^Hs2AfA<5y^&L!zZ0zRtm&WFqRo=1r?7Kp`9(%+4&A4UTj;2U#Xg|Ssrp2wBP4}K
ziSS*el)j%W;P&~<aM{{B|MVGn(Eb}#Yih<Nir(*MQv*x9)4(uvFh<uow*^DXCH-l`
zQ?A;&LHlA2SP{HU0P~GP;S3f05}%AL2a}1c`P4vd<KrNpo%n2`Q>jKfu+w^LDqmsr
zIFQ_MMp%gukSGi`yyb7=puh$!wOD|2w;+!&$pSv!PygZ%wNSP@N0y?v@fM297To+m
zL=fsR35^;Dtpvgk&E6x#<9JRlRR*p{jbeat`ByK&pBErDXtQV~a!3IczJ<Tv_l{LJ
zI*$Mt6eK;we_!an&|nxaxOZXsQ2z||3qpB=K&yms%hfM3k_Qmo`vZvEr!hSM683cU
zbi%NedpNgh^W;=eq|8Fg`|~f{85xkNhg$p`dH6DRXw(5=x)0UrdGyV<Az>Ym{dmuc
z%zRj%s6%Jg`uJ{^ped!IQ!su-S}Ldhh5z5nqAOw6xn;SKPp~%YPAH(cgO=uN?taMx
zk3eqVXXRwTv+gCD;2Zpc8?E-o-o9}qQ&a_BZbh|U?YjHC*{O8T-ntcJ$Znas4EvU|
zdUM0RMVs_)Nmq#rpj3;nA&e#SD_sYjj`~yM)|#SR2H6{q?_7bAr=Osgfo*Ybo84MB
z5)pKx3)J*{j3t$CzAz&K<KWYbF)N77ogfvZmE{%^K>GbPUKRpTgwWx;RJytJO<v3!
z{tF@_%IP0&c{&mg$T$U9D^~@~0PiB+XB7^Kr*{`Ko=eU70XM)<DR_CJ?nFPOsR8Qq
z*D;>Oo6AA2b#tT@9^k!;DHhhR?Q8PTAXGUFvgWV?LW=7CS2iw773gi$BklP*MA!2t
z=3u`}EtJiGCXeK)&zO;3`2NCwYgB@7jGuf-eIIWqHWxF2Q8;FjqAIK0RmIQnHl$uf
z{sCM^QG_#g#C_OCXx^VeC?$Q4BS~g8=Na0Rb1qy`Bb9&_Fw~j+DJP0QRx5NnDA##8
zdcJxtJgE{k5O?NdAhE+`>c@QCOKq!CirQ}1rT3%#U94z!2p$sT=e4@%Pn%mDeu@XY
z6tD*I(fpDHK8hfPJwkj4xhO)|(UQn|QK`Hj!PiH6HzJOANP?&4o*MSwcfN^N_QBrf
zFriIhT3_$9<U>F48UZ$PbzG4Sc?~X0><#zP+5wGdY4@py?_r|ACvyBL8QYh0q;-qH
z!7v4ymaLJW<VtvefZ`22*D?{d<-?|n<g^QZ9Q2%Sa{-t1T>R3m6t`F(+G=P=pp7+c
zN<CIa?&^qJl|aERdgFf@bVXp#gD3Ln&hhFRmY1XV3l8Co!ZTFdI`%_Y*vhlP@1?X-
zH5)|!FeiCGe*(wP&#(ZTBVFy%Xf|nnStkDninY6-dQeNpN`TY-c9@7Yd_--1vqAOQ
zX!fy0#p<u4>ZNy2{;}H?19#Ymk9|p#LvZZ=FRFy?e?1`%HFxeg*|9S|Ks7Rmc|PL0
zS5lnFFNWedC_aP^EE!KD11vpIfwbtAVD$JQpHA0t_}{`PYGI-_Bw`2~>7H)BLsgsU
zkoG_o8(t{n#j73=NIe<OW=*=FN4AY%Ri|C+&TH(>s7RJ3j4Nhaa>C%*+z}4fTbN7U
zT5d6SfpN9-L38f6c%8A|O%dOT^`RlVk)YtM48L_D_?v-J=)syL(0Jb*?&ZSxmr@RP
z&jG4`3->sUZGF*{TSw(Sh^Wdbd>536Dz-|4-$O-(g)JzP`b7;Q`a<s_39;Rq)6xA<
zYbIqohavHVQHR7(4TjBcn8A?^{RUX<7uK!#>P#yOTO;Fh%2={Hde~1|KpP+8?2;fA
zsh6jhpkWZ<q${YWC%TR)r*m~6nC~cG_o3#W_~cs50U2>r9e>#}XvAA`%|Pi%Q*#(J
zevAG4TT>w11Q|w-D<@y1X87E~F9Z@K^?%X@a1AB7WI0mheKBn0g4!E8^^RMc0J%<B
z5n1}mo)O$l=(eYkGhb!LtaFT}@#W=g$<U+yTRI^Ho)*Ns^nlHv@Sy?xH6kUtKB-X_
z$vOMhlG{6ZhT}}ekLu9G^e!6pP=ghaV!AR|fTi_Jv#EpL11rdGOKRFOFxSstlnPSX
z0K@-;w!Bemysm<Mr6wPe$al|7=^k7;KQ6ZihTsDSp9xB-A)#V9iV?m86|5+X3yV5}
zznjqZJkz%HcP-;KWR=v__>vi}3b+Ik)_9}L_7Ws-^JNV_#T5Lm4<~<;d20b6pyjov
z1o%@k-iY7zCqR2HN(~OPbQ+>nOp>JY`&8enHZ0~T=fG#c-bJW(pn9R#w%@g%9%ZU?
z;zNKv)k&ZO)6DPHqe}QK6uqFV!%v()4H%{s{ktztF;N`(Z1B-)T#d->(QswkXvZ)?
z<dwjmERMelDl5B{CWcZP0#i#BNs?(!JZAcup|bE?`K`TJh)tF>jc#8Wj0+&(cF)W#
zECO_8P1uXLehmlJ(5)_24qi~GrloMB=n_a5l+S8*M4yS4yylciv-fRsv`b!-ku5M<
z=_^W*s~iG9^f@r?Pg$T|s6?-8Ra?bM!!48P(k<!$>R`1+ol&>QwT|e2lD!mKJ>SG4
zw)_2D*-H7bqgW>!3EO&txr3P}Nvw?e`hKwEm)8zMK-(Xq{?uB&PP@J<W7NJ;!m}s{
zXo}MTnk4tg=I<fF4P0EffZ~_3#e9DY;-`x3a4z9<i`w1~?fRh?v-P|GPqVbOnwE{p
z#d4$<B~Y-n!U`ZqP9P6u?EHDQGd&^%AI7;82ZjOVbri5r+&a=~?D>)=^Cml7))kPk
z;^T>XszxyhUDqWnm{?zp@W1LsueS9OP^PXpT6&R6xYA$uLX}G=>rX-@KEXVktL5As
zLNVs>5%5Jyn9aS7_kMnJrST+QXe>P8X2(i%sNmc$t+ou}b0T!xClFAvI}%QHp4ofW
zejrMR(R$E<XjUjZ>l>q`f5~v<JEZc)lRYI@nm_G8$CLXWlS~Qv%Lr4Z?kg1QET88$
z<i}m4-rU_z)M3I~GWMy-k?Aw>i;8MIpV!BsH8X5QO!8kh4w{JDmWu{6qVZlKt{rF5
zl57PB5Nlyd>S|MbX0IGK4viu_SfMH=cH|-Oeo7cgxlN&ri<)&kgMMQ&)1sbl@qwCF
z;ta*dyn|~|8q=z=0${+ct>+>D3t;-#9@u9M!=9CGCI*%DtX53O$1gW_Se>_%lwrle
z1o9F?7Cg({P5b>8!iaT#dhjF-)+9#piy|5QR=tLXeyjBDF_S=qUD8G9%VB)^ZNvE#
zi6^cC+H)Get%Gmz+o5{qP<DS(Ht_XbSMA_EIfA5n)$18FNAS$pd^qD>k=X5k<<v@h
zh~L@VaB)-rK#*>svEvhQN>aL|gWKTnD?DY0M7>RXeTI5A2;Mu4c!f2u9zRQywBgg4
z80j!<4p2MlT5Sg!N!*qS$w7)jm*3TBLYozLHS4@}(27hKj?ZuPC|)IXcGPZ_nU)=R
zp)+&6CmCRkVv5>bJKnFq2_^TE5g=ALZya_6il|F8i{r)9epUNxyI59S?##_9T5;76
z!S?4c=-qXT+UkvnL5XcB&5VY1m9SQBmvYLy4z0wlS#+RZ*92k1>|WXA6n5e28>}_&
zNtp=OD<}c9Deq82@BxgXhI6$oE|Q|jm$2=A5AwQ$G6N=dYjLXpJbL==9cGl8da~|6
zri>6h(RN#=B^hPEagF-j`=<jTr`ib$|D;KaQ&tGBN2s$Gc<PZGZraHF(qlL`-+-G^
z&&3=HE{+e^5iuKJ0<R$V%lbY5cQmo_o+r9^jP*Btz4QXMo5?!fr7osA(1A+jva@i$
zoH_HG{V9O8?-V@sLbHlhVYr~*sO8p<<2v*MoB=(-mhzr78n1iNoOANIT5Msa!qy_=
zH>nkTiq2s9`g8C2r34+d?@4QCBOx$5khw@40%rEkV-<*Du-4u!u9uXOh3b>d4fO(A
zP3e0pf8#n5nH-0~NtxsF^g)C{@cfmM056SsOvRwMfmeOFW?ll_{RFI+{xpHJ!3=#b
zh5rHB`yf6`FQI?GTF8~!l(!rxRnP=_Ofk(>aUFT%eW*rh+9Y4w>`ie*ib(Er$~!Df
zqY#_saN|l!gg9nagiBM-s<+k`-a@f94}NA2f9O&@t(YJ<^KaSqh;9+za}xWw#<d|6
z>+3Wr(12B`q1)rWnrmOMl}5ND7&uxvCq&>vlND2m2csB*(eA1r%(`x4X7EoDF~9c`
z-}~@L_K#}FWGHL1q|LeZ;aO<}8_PRtilRyY2a<UHwqrfiV5q|RBl>(OnJvh9DP3o9
zkzV9iDM(9Fy^B_l62*`mm>JiPyJcST*rPRY<muLt(0spDa=$di1Wn>R#8-yM2Z;AL
ziZWK+qJ)4v@eBCL#ZVQ};I^=0uC9yYP8B-E^-SDs4iJK47pUOW2$X?&FdfTCm8<91
za?!_y4-$uFu1=xy3vg6d#LMnql00c0Q#v5I$fT~>g4EGYA~xLWOM<?2TMG2&b2ph$
z4{sKw$@%HgN&N*=O+yU}>MxDm18dM!VHPB!bThP3+9Pg9TNqdyPe&<u5_Q)p;F5$M
z7S4@{$@FwmW9XSw-UeDbm8*7a>Db@1n_ag3Y=1dZ8$V3?=aveDBOUZ0EGI@L?Ax#(
z;1SO9q~Z*)_}0JUNFvYXQiTS`CM3D+?j2B$e+!jWE7oYz;>TpJ@+f}(3GK`5ND5T)
z{oY0(OcHpIuQIU;`ZFB$qA}qm!T6YuOmf^+6We-~`0ZqsJ>k;`N3ur%NCJ!F#fPTH
zQ-t7}4T%om{DUCW*bzD=v5Q$TMbuFKH&ScZ^N;GH$HCx;ETCGIlNBO}z`2m^x0S*l
z;DIH=MLfSzRckvc^zY)!O3ofQqw!mHrCuF|g*LhS*L~;lMgV}Y!;zw|h|Nm-dXK!W
zc!lIYKgY+^!jyE~{;DX^Pe(NoPQXZbeK#cVqc2rt`2%d))VCZ5P?-q%L}^0W%^Xe5
zhE&PYy@7{xC7bF5j7BTA|FB}|JVFaZxpW|u#SqwAv1C?e?+Rjia#8EI2-H+eV>vx`
z45ROuFhhI~evjsHqX9E^$QHSoJdWfPJUlCWh8lv%m~NMl;%^8jMX@FZJPm;9T_~v<
zh`nW<$4(K4qlkiShj2>|$-iPk<~a5r>xO9OOY-rgk*66by^nK01O;%mkjK0fa&{*T
zOvndJftOB|!udq-94vQ)=fJ7^3!jtChJqu_=!)`|r3V%f^U*o)l~@=@d4VwO3=;5j
z>WIp^!5Ucvyd<aU5nJMVrCvMp%Nh3e(k)jyoHFLOvGdX25B0-HVkG9p$W(~CzP(<4
z=_LW#j4)@;1L?qJRnV;Q{^b4OaF)MWB9;3@H)p_kbB#&lm&l-GVq2COjJG2Ja)u~}
zRS*Mk!bSbX1oq#Bam9J6m~e3?;hlwHd`=_daLVXY)`tm>UTZkxe7i4Xx`2APTcU=j
zU@N1b&ks!T#;Ccq#JE>%MaHHv%h;G?cJBGowM?KXo}e-w`^3S5fSz4|#W|d_w~snK
zZl1KL`pOI$g0$9`ejc@@(|8WyvXBkNQ2=Kyb%zBc7+>!XLU69AZ>~lQ_ZqnVc$u`M
zpDxx(WV~)PJa7^z$2dO1U(MRXAFb{PCP-^7l8{u|F1Dti1D`nVpf@4olDNZ9bmlV3
z%sMV9JDdYLe+=4bQ4P+09epxmsKjs+>d8xD73&MUIee&@G0!RpR$&(%dW$6{4N9le
zfXjRNE@io2DL4*Tp>1SP?e*l1mQB4_2Nf?A!a6ZG+0oXX%zSyPdvwP=_@heZkt_%$
z=_gwNq@o{EUOF$8EzN94tEC~PZ;OL;SeiI}Od-Dp?QNtN3bX1GI`uq@-iI0z4HMz<
zbv&syuBwSlJ}XGx=&UllbgcWq`X6PMBt8+3T9Y*KK@CtJjkN>ier}ei7KkeqxkA_b
z;eZ#V(KctIwlDvA?Wt*JVoX&3cj=U!Ly$0B%%$75ZQHhO+jjTcwr$(CZQHhObH1ti
zt7bEcnO!zHRaxCsa&sQmIcSxu1x3XC&<%{-)vN+ns|b4MHwS-e&JH2U%)|6QPt04L
zrdVd}QlzJIogEm{onGK@8_t3=fO6bC(;sZLZ<VF5Cn=7d^$lN<K1&l9Y1i?_0DvID
zfa91P<r~mE^!AWaMi_t>J~WqQFOlxbyzH-fPPf5!_DHCC=YhdUKVX1c_Z2TZLr4jC
zx0aV1Z%pY4bt72rlm)!=%T_{1O4#Vm)C#oQLWG(L0dE<$ATVyxSZ3ij8ndedVo^kP
zZ0|PUmr*(@m;JSj>O^*y@!IGOKIat{qv0TCXUc(86hr`vu^!cTM=sBr2Q?)$A2ri+
zS<HE;m~=oe*~P47iz&Ic!N^Tk9kFy?y^&iTZRkv*=EGu(-ioM@vK`o2Uqkm?rzczE
zH?kUPiQ`em!D=~3tX3aTma8k{ld5HnSwcaJ`;ScO_uH70X~@AaL71++c?3r36~@=-
z;UcmVGwWBdUe(8Q0v?4DlB930X_B0aB_b)y%(xK$g8_B<XDXmA<IM_G?sGgH7SwFj
zBzSlB@*j^E<nz{?j0;-BFrHu!7d&8P2jxZNLoH>IO@t8Z2d|P4gi4CQ+i>1Qx%IRf
z(CG)1_mP5d$UHPxw-x<mS*|7Dy4HHob{+_F|4~?Bi5YrWv8%i~ONX<CNwBYks7gyJ
z_?E(OwFy<RW!7q!%E|2k>y^bcyI(#~J2ZG$uE4YgENhIf+gF-<2d1oryK6)Q(4q&S
z>K3nK9Y|1tu!&(!w-^j)j52}s;={zp<Pzoav>J-%;Y1ro2r%*kk7Cqr=~~YcG#Pnv
zX}<lRG`e6?Vz3Az4^v5=jc>Ud5VqquU~tSp9orVDfLL_<9mJRK$EG=jX2UEGsQr*t
zbvhy2Z4UkMCU8GlLk0dfycj1#%(ZuSHO>$nY-7C@I5qGL$RIH#W$+Hc89pT?YM(@I
za4k|1P$?Kv<=HMYk4fJlxNH^fF54glds)IvX4+$c>^3_xg_57FXj^H1KcS$5G@Iv<
zmYraALL>K!aupKLqt_ts>ONEPzvBw{JJd0RO6+FNYkI40;i;ikTkA<4&?>BIHVvw*
z5<eK@%s3u`1Yvm`CE<?H>0AA_Dju{*vfmXkE+T1Mq0<EekK=-X=N(JBK4pmV02>e^
z)mh2uJmfnrge1FWdA`9#OPs3Thuglia1#M|)ICug%FIFflZ=;@B;L1yEd#J&wGQ0H
zxt@FdV&g~qpcAJZGg=EX)el@r*cVyQ^982Xa7_3)PPzlwZCHRU$#4%dvG9;XMO7R2
ziJHm4%Fb>i8fVvGr;6WFk1XKhCkV$LwCHAiSGI)hQhg+*f3<ptcT8HqFkFd}K9+pI
zjb@y@UNQFKfw!#(>N@lQCRLMYydRG^;i&JV5|RqGS|Hn6!0s)q!|DAQgP+3vawuSb
z4ioS@Kk_%{S1$z9&20^}^Hx~uC$tQ<L(<+F;3^or3*~Zrl;|stfSMy6$=YG(m*dH!
zmhUqb_Ay^+`P3}x4MNk=C6@lfF^OiD9v2HsDAu$=rLHga|9I}#hR#N+%83e^6$!(h
zok<6v41sl)2(p<U<Yd*fm0_`RxA0lpG8_uBt5itaeKN#Cd$LW2a^Ip*h#ZhE7dm^o
zccD~?qM-AM$|v%#R}8rt9Cby+BpMkQQ3?=?4W~Haz(UA1yYFF78Yvqm)q^4cF}wyi
z+mfitjqAt6ubiTWB`B|I>d(mSq<x>ERi55#1$jhwue$k#XGpd?$23O>$=L^pPuOoc
zn^ez)6tpYBy&M%SF3kIBknWeK(<n0yz;b=XXANhXxYS%!eo#Z0z=xlFQe(^({)+qY
z(@HlH3*gO0a3>%bQ+Q1Su5taEI@nX?$$}b_gM$X@+=Vo2?{{^_MxQRkdcESN5VTLR
z$@+;tmRZ25F0_+m?81tWAu#QD?WpL6*)89%=~hMtvBgS=YWpZR@r=rQrU9;I$QErs
zxOMS2!LXSx%H?7NrJ#pRI$Q{`;cg~|?T?aE!HR|6I9qt)Pq@*`+6C36SltHXg!!hh
zGUhR(r*(E=0<a~qy!3I&Ok_(LQnO^Wf;~XBDk_lNaLS?cUS_crQ^g591Hu6{8fG^f
zlO?s}^4(@Y;=;1nGPa#`gf$mH)Z0G2^t=w^@9L8K_bSg4O3MVc^)!opE<a9%DuA3(
ze50s{UF?cyr{!-SEEuzKyuQ@3I<@{0jB$xR!_Pya{K+wu88&tZZ%=M)o6_O^n(yK~
zgGMI2E%AKLUx-^gnvd^GUXbwO;S?m6iC}-N=gV0@Zo+AGsZu|PrHSoj;$1NoLXW9Y
zTBb;@MTEO4^sVrV4Zy6>T043Z(#;Th2JG_4S{0#j!V6pnzN;I(PWVhMqB(cN71_nh
zQnSR%jM6hGv9vLyhuKC{BFKw5Wi-*N5I$L2!E0;h6i!dYWT`SDZFpC)7V}tugb&W>
z-j^1dkX*(!GNq7^Z97~V;{mB@JOf8Zll{ls^NrmF9V3E?gHs4&-?<!B)+eqi-7SH2
z0dX*|-4PqauHUAsr(-1qYmk$W>Evb#fC2=XT4uCoTce`cFh^;{br;6V*P$G!2IEH=
z(%sRY^=LnK25p%Qj6xLAIpCh(k_9-_l;Ay#udo(;hDaU3sBI}@bS3|J5GBjHAyD3q
zoB6L%ov6OnRkl0H?oyk0JAr$Z3f*V*nNym5{}py}vZC%zP-?uP*G3`ZX=xNFuDx@n
zCbW$OXGzOk(ja1p9m-OgsZ}AB^sq7$BRa;r+>ElenfWmAq4w3|dK(0Qecjhco?3{F
z@>BKZE%TFO#NK^+^Ni_dNl8#t%4ss^9FvxZnesB_a@yaW1IaBzp?)>8p~!8pj?{`O
zn?+uW$)cKY5nz9lQc>LoK9(Q^mxG!Jo`m!X^g9GDatn!uJp6AcDPJ+5i$h0=A$-$j
zp|%>-ZTtjy9{cOkGsQoqtXpYN<*i^L$K@qrRRv#SL|_CIdvFw!P@l)*$0+haulAvT
zH-vlWsx5S8lDXR-fpFFs`0YBBh3}o?2Mt6f<XWQ+XR)zRWaMUxDao5JH~K8B&)4;y
zZk`_D{2&#97=W}M*ZCR@Qjg?3rUN#uK0-!Y+Hu3*5N^b69ay}*4PHB9up)<8;24cA
z34kx<;1Ftyjn;?yY@!C<3~dLDK2~REmG3AX=l+=E5@qjK$IDu1a$X1|#{fP!gzG@}
zix%aw^|s>M(SVD{#1fK!?#R>&ZGvtkww9qhv9!0;@d2ZdtdNV;K@6uS0AqL;lNzZ6
zw`4mu-N{g0oEB&f{qr&s8eOk)>um0_*I{P)pWBu>;2xJafmyIeE^+jF@ODW?9Al!>
ziA*02Z4PmH5^J0bOtb0yR+c#s3s!hx2c*lxj0cJ2GIjwe3@x6uvQdYP3EYi%!9eau
zoXZTAW<uhpRp`M;=da6W3!1bQ_Z+9jCVcBtz+C%0d0TTWFt&qZHlL7%lhZExMY^LM
z{UMye-E(-^gnz+iL_vSYYA?C)G#qtrbqTQPN;&vUQ-J^^@1qvhBbg!2mswpH3HCFN
zjWs1>fC_o~L86sbyB9@dMqzuSXlRhldffoRR<#)9a0xv?w5}rn3S#b{U)iF(^mr$d
zy2g7*v_VJ${cdONFmy>KiEYIb;IWjH<wqAj__bp_ue%;$9^0@43`BHp%>8#XLz*q1
z-G~wo7mg<;pv?~PO52*O>sU`rwP}kEG0Bssn3}g=A}UY}Eu1*da7s{xb8WOKth&T{
z8jZ-~n<dmeL$^AF)$ffwzIDUGSc?3SV>CPVpLoe825HX-mo%xCq0bbVoI7LKd0x;X
z$AF+^7sBfDXQ$Gwy3L@(7yx!BBkfBO3Ei50&Sbvk1L&UJilCq@5KebfR&lz<G;aJE
z@veX0_V?EYjbgx8xe67YU;ukPx>+%N2rkybZZ*<>poJL_j+KDV1jH@5sz)KHlCSMW
zNq9H3I4zjIp6=eAvCuw(j-AZ=T)c0C5U9i)G2w6Cm@%TOWOiE7+8?Dnp=X;e#Nmw1
zJ3a(EK9FePW3PlBkp%+*mt4yukJK@M5gG#Q%rx0LVvLmdjph25maF#~(^JwH6>T_0
zuW|-Z628^x8P{QdBFN7qUUY?Z`dj$g@ND@Xg1L~GTHzIjHUjt5_2>{pMloqL%^Rg<
z4R3W~T|qjzBP7_hv{%jkeoOna>=7=MVQyyD!V3Eg%nid>c>#Wup4=McDpRFH$=alp
zp_<dI;rtAN5h0m;S7y>L3ye3$fAJGG!ExQRS2d!ycC6U%25Sw7B>$NhFhT>jb=Rw9
zaBotDWR|~718fTc@Lh^GU@l;o8agq?7<Q@M4k6VqbvkM)*e9n?*)|-eCw97@6LUg%
z*epgo9Zfj+`@3_K3_H376&y+eBWRtHe<=_Nz~X*6?aLURHbVG~aY~w^ui0c(dDK*r
ztROC3M8NF^{N^04R*YWs^7$4>&z82&7xxW)(k0iwY`!XaSLa(KeOma~zRb}|nkAHQ
z2rh>A#9vR{VAKnAM_!7bx`6M{k~)xL2v1A=S>a{fP_Xl3ugl!`2uxP$CIRtIkt{yN
z>BDo~zD9zs9pg}TQ#UU6t1Vltc%^^m&Vp!E)jv&Z&s-6+f^VeGK?C#*K~TE;eh!A-
zNOY!Y%6dm;HW<wyG@Kf%>`-3-tMMnQhnAR%RqnH;_~9o6+z*1W^|EBh>P92Hz0p*T
z*t$IxRPuI6$hC)|g!o(G+O$}>7SFk~Q$aMCcub=<@lWo8{F%SoWtZMSV!av|HL|%;
zQ5$Ath}F;9kDufy{*mursKw+>7TP>1vflPEgyIC$Bpg?{Z60xNK5sB^HW6B45PC(9
z>j$LOYtSB_4reLm3n}7>>O~*RrItB8gpjS5+kMhhk+|`wfB^Ao!=PES*U-FJI+Dxa
z_IfO60>y@K9ujzj@Z(2^L090*7K-(=YX7BgSZl8ccpIiM!)OfpoejF|M=hP5Thtbh
zJ2;5vx-byRKFSeEyCqm3E6`5hNiMNfbEVTwi$J8za{A<_ty>8yf)_^!>S4*da|421
zjq)pMc_>J#uJE-piJ_6Y3wFmXR#K-}{PGo9<nLCVhD1of3R#GWx(`3<g3#z-)BhxE
zOGcz8Uk23I8Fs55)$vMso|voeQfIMWVSa1-4|?Y2JuqViz$v_yRu*sQeGsE+$r8c&
ziS|T_{|AjbO9P@0yJ`%MmK~+e84@|GJ!7vSkf=W`tGq0*gUp3%riHEj>NyOJ%9H^u
zZ9{GU{h|{2y7y3*0_d{5@{SaGVR?(@7=roO6~w^(4t653q?j)h(blwdl-*)7VoGWo
ztPNxzOvai4yY@by;nU%$3ch05!M;L5x@O$}H)(0V&8ye*Go>M3tG;DFH9GX^!IqG|
zK(n@}wrfg9G9~-9_Vf&)5e!gR)s5IUS^gws+pi)AMLIVGrtW#1b3K4p)BWzCp=&nu
z+>i6$nH#A`Cjus~g^iEX#Ie*#@8I=8L9oVe962rp+lSge8__a&@pSIn2_apMKv=3#
z7>i`x);d<BHVc+JR~#TF2UAQ4I5?MPY#^-3S~Jm*?zFk@!7DJO5tZ`mE~2pD+EmJ_
z0XA&i#gM{Kr_WCaC49Ko18vzZix*9e?&@ePxHsdMisywlknr!<8<0r?*TngFWJ}h%
z)g469gu!D}i=DVIoe8d+!DU&Wii|iMOP3nMQ-EGN5RPYMAjb<Gt>R7FqV4|wP#^^4
z&p2H3ThTbA3>=*72Wgvr-}{WcgX@tdH{28{CT7+IoZHD=$Qs+ybvOLJ*s6iQj1-#D
zL;<@hM3=p1@MF`rP}<$PYa0GyJeK^-7^AkTF`=lw07j8|w(70yDG7CyjcuBe1Q3T+
z{<Xf@`z2;c&a3ZQoT|ueT?*XsDB*(t>hy{2ql|a|5wQPVB<@2cdJaEi5VW%Jc%Ags
z;ekM#*`nR5Yk_bf_x<Pd*z)HNxa0nLoaPavV4471pqfy#js~#BvXimHZ;BY!+T0d6
zMjEk70da?z3L`ex?rhT-T#c<XAs7tdd!Bj-2mud?V~QSEe)IKdm_Qr>$CzoYwAM$)
z|BUa?rw$^I+?-IPhDFgiwnpFi=iV=*>*m1|iu!Ac8n+uHAl<Wtgf-rf&l--O2-y21
z*wIG${=Sm@J60G-*N9K&R0#egKjXH_`r;|Z*TmB)Ajx65v4ddmWANE!FIW5VSHZtd
zsWmZOYHW+GZXfmAy^H^*p=gsTw81|3HO`d@h*trD7#A~OvF5_kaG0yR8%0eoyfSqB
zFN#bs`}Fx0yC!xFtp!&7<|<)+TUPOfww(R_J7WI`WUC3yH)UlCcNa1AG5zH${Q6<p
zhKA*fIQY5_p7ng4{a!npMAw-1MJ)6A6xdVY<`N@x@wh+^=TWfPXvikLL!VDp74hX~
zS*3AA%jbIpH_LOQh$Kx8nczdY)IypJJN^*M*H7-QY4J|7%hA!F%rf!2*am)1nnlC#
ze&`WDH8IwON=^gk+Z3d!rJ7j5nY}M*aU0Q48i6{uaGE-5$^C)X-j2A`q(;`Rgz>Zp
zZ}XL>LZ+(Y^+DIQ8zxMBKGbrkW~s+j_ayZj5QfNp$rG9VPt7uBm4C_t1mSf(S-^d1
z7PZ*IWxOSylYHT_IAo<XRm9-YbU|765AmOzwCo{4UkeSn9Mcpv{TH;+>{aBLoo@wI
z2YRB;7CC2E`<<4S-2K=zg7z3jv)1KsC50Pu4JluLi%JSIc4_1Nt5;zvRYhnd^Z|(o
zSTp8E79HZSW41Qo?Cogijk3BP6Z!%I;FTJl7Tt8+B;uE~PT&Ft5!DrK!N0CNCTyHr
z04zFC{W(5{KV1i{31ZI%Tr&)m#f2Y))5BIIX7&|ZIvh7dnRC1_x1Co5AK>v+S7pXq
z#S%#3E4TN(szVF7{U9{TcT5WB8!OO-)%%RM8#Gyx5}5(|AacR$FsX9dKRYDncX6ng
zEIumA9+Dyxp6nu=pdlpK-85myB6;rsmOUGgcuV-&%(O%W<P*6snB?`nDVD2n;5)4{
zi6D+03Xv!DDkyL`&_I~#C#&&2?DYA}vz;aWDRC_1(_O5Ty*Q%J?h8w?$e*0>(jPg?
zeTh6)BTHrOu7*ks-#S|+1XmuGENamgiBXEPbQ8ev?cQWK!czoJ1fU`ITEExL9iv^=
zk?rPMVN5j1-jH!R6h9J`Z$3m5=*bu!Df`TL+?tg6IQejqw7EjkV>NFO-wxVY8aM(k
zzwVxIZ19fsqZe*$>1BZY_R?+lf7-&o2VZYG&+PKl8>8rJD$h6d&fA9a;Y43Q({vYq
z=B~3S5^kkH-C{A>(E~;|e`W79vT$Q&MMZuHoI`ct8y@edBCTDt$yHruQ-lYzMQUaZ
zr_Ad~ab7lIl_Pr}nTYs7*j1}7v@ClaF$EeU7rQFenPSx0R)E<{PTcim!Uv%B6V}!h
z!~pV40gYNSV8QhOkA-jDPTn5Kx(J^p%5aloIhMMQJ)dr->&EQp%FDsWtEFru*cc$l
za89)2kNhaDOg?lVJ!7H;Zr*?MIXC!d?6lp=XVKyE1H3irB(sx#lXTlH37uRcJS$*|
z>l$Ut9iY#)YxM_B=7^wEfRm13X$_Y|TY7zoL@`@q@PiM0`cP4Lb6-f4sgmd@1yYGZ
z44NxYh_voUq`e03QrXSUd-yUYUTHxxWkWP~GNFN@m)zh+-_?;bmdIFD3HplrKDiGS
z1q?W0AfxAaI67vQF@PD;{z4qpa`6Lcf;iNX8BH%<hdGzYFbo(ENldnd)B|<5nn-u_
z;gFz&=~eBtxlG^aR`>6yslJ9W;T_KBgHJn8vO=+{l=}^QP{;nY>NyNp-rRQw+9<Of
z?sFqURVS&PWDgxmfMgg7cidkVX8RLY`+}s}E4b<{_s2&^`i;Xq$)z?>wXlFnL_uW4
z!YUQaV#ojf!Ol1#3wQi=U}OOYTY_>qX0Mbt)>H)ml{O!ZMdJk=faH9uG=6#J121ZU
zG25FpSSO`Il1y~eio<X0&SFu@;V5f<9Q1CDb~}Rl-BMP1RBRLk8(4YfNV93s<CM=#
zrSYc7mW_m50;tct%J0mU@e%GV6j)^dl_gFyO#NeUk~fuDNSS2O7-{ZMLxppALH_tk
zd7C8WwCNU4i&lSQA~N22Kwj8nuPG{E1CzG{Xe8kvqwiWk<atLC_%Snc>j=I1DIf?9
zSL2JQnB=(bQVniiF}p^{bbLJ8AKdFqy4=}nl|lG)!7?b$iI=TpvId%^T(l}S$)4t(
zC~%XS;|-OBos`+_Ef<F2h&RkoKFPa>5>W6tYVyCM9rKR%(?sg(YpwnxNm`HFgPBio
z!*5`KM#jP>>YTzxxqGyj4%&+`aP;_xtOAB7bcxiMwaTDg2DZ;vKmzcE0^>ud0SCKa
zqgNKr0HJZDg(WdfbKd`}dnPFvjhS9FlZ{u`%`OOi?&U%(FH@9fZbV$pe@LK-M+d}Z
z<Y7;QUA+HEU`xx;H_-MlNIsF??*Q@&UI2o0>eZ-&(Ac++M8DUBDacj9)<MN?3m>zJ
z<yhR#KG}y8L=Q<yMflba3q9Bj)J_W6_r`kh#T9X0RU`GrQY(}Jj-OZ-swa&zQkPMJ
zCq?Ae*Hz))my5V);yf$IJ+=QufGIoe1?KI52D^l0KU9<0^(l4eU>-p>?b$V%3#UxT
zWFSZo?n_Me+X1QmL#7TNTHugnZNa~q+i!mhWnRRW*88TjqMjRyw!tUr0fip@94#sq
zlW+aqdy}8dx192(o1wap^`5@Pxv>F8)cB}YLsLLE2bOs58~j?jE9SUg>ZcTDNIe=k
z8sIUaC)3&zJknBmWJN<ttZ}8uwiVyBdSZp;W`$@V$PR_1Q%<7QR5*KdN_H`33xyPk
z>$`w{B_|&?4SJ%MB9uP^8Bclps)+r3f}JiDoI7lVvU6iynv(Y><WQe^BYhl(5U3a;
zwSH8~XXeh>wz+itZ7&-Y_9IZ?kTsZmp%~|)JX1ybk^XF8GRHSZ*E_us9e;#`k$Vm7
zR{_0Smv)iNeo9$K>m+`G0L{mMEDp?GFZ&+e!^Ix*jCW&e??mu|3B;OTR6su22WJTO
zY{eZf5uLGybEJ)gshw7hqKjty_NetA$3}C3r)c18$xpJ#)o7sY+p@Whyw(#O)9<k<
zNu!;N+g5i||J<_4!6?cDAfuO1EVd3g*H-8w8+UoK(NQL7vOUWY%JdVXeNLby`Els2
zy9-1#KhbHLu4aw?D<jcC7v)`Y-cnvs(`Gmm-Z@{iD4~MJvkS^i<cXJ^Gxek@*AQ<C
zrxkDMnRnNCLMLy5&YHGNh}{FT`=L)>0&IBrx{Oi9FBbX`;=&w-tn`wbdXZLvwd33H
zJRoxpFR1N)t_bRNkhg_u`Ae9kp%O|v03$g5jk*TF9f)vdf#nlhu@d<P^;%P4#oTSp
z8XdE#g6!k^{@ghH(B;p>wsy5(jZH!$VDuv;^Yh?+Q+mhs7zL|VlZT`H4!wX2JyVE+
zroZvjyHjQu{h);1>CH;I!9J|n%|htp`=kyZeXZQ{YWNFxDJu?0u{`r>pHsvJW2%nU
zrI=pYypvwcusXzaj0CU=<V0(;5d|f>g$!n(&;sR9^yK`xX&U=BQ8jTi(pr5;lFz;8
zVV|v&A30ss2LwP}GI*WhZ#TFRai_(G50jl$ZAnG1<E5%U`oBp@1)ja`^_b_ua+cya
zcLrvBHRw7Ji%0Dgf81pK6-)9Lz&I?xKpjOk*EzywTgVtl{a%hV==>J-*T+lY)VEt{
z`73!(A);T;N!j2+MM8i5-{C(X&YQ%)L7g5!Iy4&*gI`(e%k%}G`ChrT5ay*XlT{O9
zmS)o|_zu>e;pKx-&F+0USB`BL@N}QP+||XR=w`rBG@IToY6+1hJ5DPWz*3UqT?FV0
zy{+R%O(r`rltdz&+O-<vDVoij4Q&9uL7Yy~+-$Ffc_hiR4i*k2nHi~w&ke0rW9ZK_
zdAy3)0BTF&QYf6gf*Z=DA!(V2!N`oigH_IKI+&-z)6qQCt$Z_u)o`Le>0+t(9*P-j
z#wCWXZ+akI6uHmSX?#m<wP%M+utG0^<(_R*5wM-I<|_pKh-gebP}$b2^AUKiWj@*e
z_<|evt=NKIiDUcr<~Kh|JGJ6U$X=lY?jY?psIS319}6^NdTpl_iE?cCq`{A!=2_?&
z+}gN>hY*|Xq&9ZU8fYmSZO@HsWy$!!6zju{8yzCy#x9M_*CF!zi9^?MfA)s>iFTgq
z5G~l_&A$?!c)kxvSK?`AKdFYK;!cz3aOwMOa~eYHHRUvr4!i0tzWB{F^4wl_8j)3@
z{N7G1zA=|58c&$9&7tkR$Rn3F@CElw#Df080QyC<L-Ch+zPb5`JcG6?qDkciZMM-%
zA9pnPTg1N-2?r$W0xs8X6H(Lu8FNV6O+7frvx$WqkyOkq2X_HtGeB7`ne2(RYMYHg
z6OsJ!OZV_znqBxWwt-u8sA^Hk&i8@P&ULZFM4J(!I^g-RldTPwS&m8;B*Ev^^B8Qd
z^s0gggcKmoRPrQbOc`^jV!3b4xi;!wsAnOhTMv&cGv^T^yFwVd`y~GIb^<Y;$X1NQ
zWnEt+>zupF5$pbz^c|!IF58w~XSc@YfevKb)p(3HPK>LhWDf?k#!YeDwFQp*ZUj#a
zm)QP9)YW9m>q@$XN}CITVlQa-$?PnA@%05%DO6f}7Wr?a7tpO)S!TkQ7c6m!S*aml
zdV6KnA}{!{z-CmR!uZ8q*USE-Lk5iR#<+erKWtE!7K!Z1+126lDW!=$b>M&M|GOO2
zN?0_n)hLdLgm=pPoC$0=`Yro>l34Tw7wRT$hwts!ERjYW+46N_sFT?Y@F=l;QaSDt
zHs5><`ZC*mA_j0UpBQCY$VtMDe}Vd?DAUOAazXy#Bi!gBObavs>RVeBH6j=QtpZ3S
zb|V7VZ4|cukANlXHCeAN+ir3vRmuH|_QbVEch*w-HUpZa9*f+jSLX;3M{Eql0=%-a
zlfMG@MZ_Szp=S2`AEENn-T+chNL`N-d!LF@qaHauhQg^`K@T0PtH|joS1Hmnnijd%
ztm5ug?p{*I>k@yI2KaMZ<NZU(Fj6_-I0SY{TGJ(d{B(zYkm**mlK=Lej2S%0-M+0`
zXv^qORMBH!y$kJ?`^0^Q1VEAW0R;UrH2-dLK2)cgyVV(IM6BCe)}aKw9<cKE6~g_1
zs_8_<j(G|i2(Eppdr_B|VMPXIyytM30~chpm71S1a(LXNMT)VV9vRJmO8if0b~Zbt
zbqmQ)4OMoRmR(-JF_T!ip1E}I){lWC;LQ^f20S#jw2?_z^~87^{BpuAWApYpw%e!`
zMB0mnRoV<@1hn4u^Z|GuX@)n8!p$LF#McmCQO0oITSf3W3yf`c!Ci^-%$!D~8yvam
zNOLk4`+NYM2i~pm3$y$R_Z?yfSJa;f-TSy!K<+7gFheTn$dwFP5uh#R4@a68U^cY^
zwY?)ZNJV_-{N~ba`D19U%&l~=eX8*30#efEW%03QrWbd*YFmd%-hw@DFRSxZUXBS%
z+)^*1ZDgplJw+$5iBmKa&|(U%*^#Y>_gg{;)2~iW6XU(>V(W*Ye;#D-AjQFd#+6;c
z7(wwZ7<NMy#zQW98yk$Y#3EzFLQ;cSL@nU!2=ya_ygSdO?9k>D=g|3`=k{ZQy|U+F
zG{*-N=rv~YA-RP?Q_boyMq~Jddi`bZCiuDtZEzQYQ<Mr$njS%))SO996)mfMuVG&$
zfxqz}SVEmN9QUMKv-aw}Suz~`V4p;SGN*{%+W*NhaZvNgl=`*K_hNLV%7CJ*l-faw
z<8(i7-%_y$Z_I0V3g@1hQ(D_S5Se_dpr9V@qskJYG+oH0p3N!Le0dTHH|t%?^oX@O
zzwE&~p%EEiS^H-oZMiUR;M~xS87VnJU*NV&c&n&J@fB}oue!zJ4~_aaI^?yRq*jB#
zKY;q2NfL!d;Cg@-VdUlOo=*fGAggE!-T-Q+UkZe;o&6xCv2g?Ip}OziQM-7r8il-E
zHbj9BjK?DuA;}<w$t{yEvkbQ4*oKM|4-%7RFTnAk9VWc59#gt^@qYGF@x@b@<GQFY
zk`ND`RoJH{b+uZRZ_9S#C2koF2}L!4>Dj*@T2l8#SvW%#-<?-ObqRqZuBSQ0f%=>J
z)SzCad?HO1KxXqJ{dT$-t-TxRCCOIo8cWKE%Y7psv8W|wZZOOg;8cy;KI~Q@#%^F2
z#3p++m=rjq?Q`C*HK2;p%e;jI70wzS#sSN}?;@uEzD5}Qe3BN()#tsfWVp1%9!1)r
zwTe93_y4JBMVS?!bfB{c!QKp;;#o0lckQ!ntiJaVhN1$nmobN<D2$My^0DjRRqxU{
zcDX;gqcJGq6XvekMC*7XuGo*D34YDU5^<tO6>$}A8h)`7r{YYK1u)(my;s(=yy}0T
z6B`wG)?{|zFa)nlxRpgVXzfUr6HWFNY@ab}imn|gdrnM4p_9(+?fc<cHQBKGy6Fc#
z(LYi^3KFdyz=~uF369&Qm&ODi#(scE=D`!Iq!wMwpswrU-0RQP-Kj-h@r-)c_{HQb
zJ!Ga0P%Rf>PjDTIlF(uJCapF%6tNIme#jfKF{i3anSQ7s*XLVZ7*%Mlww?Pe135Ji
z3-YcS#o8~(5Q$X|=(a8IpjetjrbK-bYro4lgz;XM>(gp3nBqxxtzrWVxE`z=SU}$K
zZu}Xyy}7WvfK|eO_uX*Li-~Hx5flcCb=}9{53v$6Do(T2Uy?GIc787De6Hd40UPzG
zPO50l>PtzrC{`d-xSK5)M@&bD2B_{dd`huJV}*JVNHPkM;#iQF<psCVg>N!TV^x2f
z)iu<Ovpw7V)skl$*WpDQY~J{@_~yydptwnesAtZUc8(t&;b8lvY(ODlbwc4~-h0h(
zr8rf5J}~t__z<uTDA^{>x0hw2wQ6?K!A(jfArxbpMy*uvSHCz8{Oe1}FeY3LV`U0+
zU6&m@@AFO2Ip(hRG2j)Uqu#sGzEE2##;2ubcn<+t4M_q{LnF;?qMrf_ycJqD&RZ-|
zMmgS2Sa#yTKPC$gj4UUuL|v)d8ZCUcJ4X%8xG_J`@qc|mXcpp{$<~@=EYN_x5W1Mj
z!e)<vQO(G-{z2c>Ze`hHOBYd~U~-M!rNyE`+&0&4*D6*b#)!@_2$N76vBk!Mt3$jg
z<fyP~lO?JQX8H>sP76&Sne95p@CK<c1~@6nO9AY~&$Y`BX;6j(?%8<|QYQyri&J1j
z?bcjVJ}U0`WR}08Ji#N0n_@RBDH_?dgXPI{C9#$fsU#_`6ZBmid@(!<C&wJ=&6cT*
z{_@~|k}bp{8OTjr7k1^{Gzq%jL-C+Fg~W}}G$#Y=Uep-vi<9x$pjBF`DAEWIy*)HW
zR!U40?sIMa$>5C<!Hm)Y#}AR0^6AmxoV(HF=j0T(yxsKREuY0Rt%u5Y#zeCnRWDQ+
zsoTyMCq4pBTBPTad`cz8v~8kZ`C(81s#M98w<8@O+KopBf<kmMZmz{{i!qoM(_7J}
zbG3#A*2<O)nYuu<`RX|;X9*KX{@7uOmHF_*mL~T_sh>=+eMoo%OT?=M*)h^11aOc9
zLBEyMBLF4;9iPFk2LLahLsqoS4Sva@GZqY+6RxkqbKKt-UW9{8`+WHa#8=<|H9!OI
zBW{7mmt;S1r%j~hDr_Cq3?z+0m@Eib4#VyjmgkG2uHuHR5_ZJPH5m%Z`kJ0k%YnIP
zUgwlY_Fer1=zT;!-7^SS9uu~&I?B?X9B?21>|Mh!e;a0Mrn)?kvZyotM)XInL>4nJ
za{lJ!yRL_p{>gv4{wz+nkDO#e&M_l)U&l8kWGdA@-v}b@_R|9w4-)o3F^ADl;>*?1
zgHZFEravS<b+R`Z<`DC+xODW>s(lbv*KJq|qfh=Vt~n$L^lyt8+JMD<4qW)&o$+_p
zmt1158}%8u!?xgD^rMI={Clby7RuDl#M#Bk)X*08zsTOm3YL+9m4JcZe@8q#^kSAa
zE~ZZOVm5{@rXr@s_9mwEGNyLsE*1n#419e5lL)1$34=u3+5a&kHK%4k3F-u6`ylmy
zRc8DDRle5CuHKPH_JUHKYBy}-gm)Xmx%s~;v;RLSbF#B>{7(Ul1Z>QloNWK6h;0{n
z5E(=#T#J;k-9R#Dl8!gpNNd#Fu)w_QV8+Y<T43xN>Y$A~uj}r&2Yd0a(Yy=nh(jv=
zqIkc)TYCI(lS#sLwS{)m=R(F;Uqtc+$7sZf^F$i+g9P*Zm5zUkU4#S%Et%hnW8uBm
zqDlPmxRSBldWaA0x)|ItN_p<Y0v(N6h`K=4tU@?tB$&Hb<q;_Dvocj&<8U9K-r)+A
z6I0(tbVB3*Y&A%pyicye8S|wLiVoGF-==_Kbf+J2jvX}3ABN<y9gCEXE^C<NJg$cw
z9{pc*cz4`}t;bVypWAhV%epxxL7nxk-c*^J2#QNF8FZ>^-+t{iS5(yCx8(eT1;Vbr
z{mbALKw~R#)_|I#Zw}Spi*2XTq^DpHs%R2-u3jLXjsn$W^2AA7)`@eQLCp#zBY-L_
zCcTge3OY2=Kp#r$oDDmwcEiQIhnPab--gc2n5pKwMYVU~P347A8D_~6<w#ZGz~o|I
zx>)33lr&qg_F#7LtSRZl2ql3<kXC7Cen3>dk#w4sr~SZUMH;c7=vAZ%=N#2Ri&hUY
z3N4o;{q;!2{yTpo-sQ^!zdgIEpS{q0_B1@g4WwzgFii_#&-|8WN=AJFS(=;_tx~b7
zR!k=Hi|TS67l5g4%i?O7l{3$zt=ZKf#s31hfrQm|$kWl@EJ5`T<KE+wxm!qay(MKf
zVxga4C;abOzu_dd4Ur<;EU73~?zNDr1~Dh;Z%W=hZpa|Jf|Rj{B1G%+F#FYa7f`?7
zfMdc!fhF*584MLq5Gv0EqScEqm+#_mb)-hsW1#H};jLa}?z`x{(W$DO3~rZz$$~<E
zQ{k9mD=WwaM{0N)h)8S(?+m&r83Oy;-phSxCRo?!zlT~^z5w<EfcwcrIV{$QfHWxC
zupKW*-cY9G(f0q{+$FRRQ}!j_J8lT8c|ejV7c)Uj<x$QjvlbklzM_j_98tOu-ziJ&
ztf@!K%?)P^we<%<b8@-2F<L=i8gHU(%ilIXDk<&zpiMFiEQQdkV!eMa9%n}=(J}{{
zeBF43BXjv8*+J3itsTWeh{n*ndY@>Nf0tl}kl7D@Cu%ci>;A<LQ0w~lH;snFgn+(l
zHlb9pJf>d8j-|_so0+fR)qed<AB)GZ*Mea{c<}~&9TOi@T6K+0S!#jbwI=QzBD$Q8
zzJDKHvut;_poxt1;HBaMYur>2gL$gD`q(Rx`m4-?TBh68n^L5RPml(If@<{Bot%io
zU)7`eVVIIBkTkb#yEf6Ch9Fq4Ugt`SK#d{JerEy{jr5ytQTBpsii;RNyXPCvh1C}=
z9`e>?fQXxutgeC-<!Q~}BLRru&DoOka)s1W$zEi%WVDruD*{a|Rj&lp)80u5g=v2F
z8e6JjMG5s&*-$P}x>F)fctw)iPJgvPj)MLQG14(kg4@SOIs|C9$g+u0Dx`c@BCzyI
z4n3+DJ^ogQlca$u6RTVFjKJ`vq@Kp6dpjq$uHlQ52p`USMPd+hEMZ7hu~lvZV`4m{
zj?emnUf{ZfeZN7`_gw80y>f7O0j-l8y3TeQzh+Q@e5E|wX<>pDcSC7`_Ay~5xGw7S
z8%6gf_IYE^*fh8yK2*>oO*+b0%z&fXBxH0D`;lcZD})Hk73uWQ8F+l+=1^ogLhw7b
z>IY@4;17{q<(CLA*tH01rF=lflNmDA5h;SPvs>kYCvohwhiifG+7&u&a@(1&+4&yN
zj^N$ColBfS_G1h?j6AGY6M(&~a{$-jIWo~JvavR$L!FRo(_ZqywzER1N*jY%ppI=(
z%HAvQ91j8%`c9?*o^#f#s&uBYun5&-X~$P|`D0pu(<Jbwuh@o(NO8w<Jr)Y&-?M3>
z`s?i|!0j$^kR8tu7Yy6mP!jhjsrcyQJs07(aO7eLAYwf(wZNzDVCy9va(CxfCS}Q`
zWgi0~-XLg}1}s#7S}&eCAhFST5;{yD@e6<OeU9u71p~;BV3p294xF^j;RQf5$MvC^
zqAGP!+}8Tte8#Dv!T>IS6p>~_p~D`LV%F49)l|ZpG#x0x6JZjdP!97dKz^UtrSwMO
zWX%19Sl=WOgyiWd>6qzC{>1FRB&|9_?SF3Bu42$is6K<+ARwy=ZbFkU!0n1j_4pXV
z;cAcA&Oc?y9}2ww*xx3FT*mW?o0?$l_+&?{NvK`Lhe{qmCH!(C`VazbtTA2tgt}K0
zp_GvU=<!S0j+wZR)1GR&9uBsCK+vu&9yR6A$#A#s96`@JzBI$E(Ujdyi0%5MSncM+
zU3oi`$DQJ~Y_um?sAB(9jP~_Ds1fX$GQwS8E9<XFRxK0Tx_oK5u9{;RI~5w#sGGw@
z5TxDOlvB%*Fk!5_v=zd0ga=EW6VI%3VPK#e1HnTrc#`GzS>=x_&-vLiYqE7kjB&ab
zZgU{6=*a)JTB{0L`Q7l8vGF1ESO+`@bs#-|(R^`JcV8~np8i~E7kKRBQR~K|v78ls
zGRdHhiZt-wQgN-KAmoAj$HV5Y18)4vBUgxY*B{W8ehToYtXuuEexm^+v%Y7k&~~r<
zuP***bTUj|Q$98xv_CH@?_)3;d0y)NpPLKC$=10q&Ef$4KzsD!Kh5katrVFwQe_v=
z8I4WvODqNVIcwxg%JXcQ3&uAzMO|VJod{!f*6-i|SU)w%&JItJg2p1Dy$$P9+~Qmq
zG(B}r@&=EmocVZDuxAu!-HdPYtcD#ZRZ1ZDM!=LuWD-P;3(A?to`pOAjM1I6o$XM=
zZt115KY2Tfiw~<ZC=PLn){*HtS4S8M0&gdU@dQW$h{u@2QEdkzDSSg3g1~VAIeby0
zw|(%FHc$JgBY6{2_K#^Vwbp)LYSOcDjSArSLt6r5=a@fT3T8<*)s@*_mEF1=A_jL{
zoZXlL&PhbU4qHzx0{pCucJ_4;UQH}5r0N5$Sg}}?)>VGl%Aw6$!ZJ~Z1#I7Q%SLH!
zvN2EF$Tvc-qiVdx(FCIJC~kD^na8p86WP0ju^zvos@hz)(_)LlH8qpfXAzB&xG2@_
zzSMO^9n7L*8ZkD!OcDg>TGvlBu~8S>PQxBVB4#T4#lpzNU5MCP)bHP_meu4rUbh|-
zmR%#Pvi(-R`Vit@OARdEGawfJXI_#5hWkO88!>=^Y18F0WWQ)|TECAsA4P#{7r=<q
zhoz`zQ;&O07|+Qn+Y;!RUKlgj_&?2r-8j)ACnQ4pfEx3i=#u-aF7^~0bn}OM;FpY`
z_wxLh$8@{Bpc`?@L2K!hNUNu;6Z?!Q#1f64S9zd#N+3WA&HFG^g|!8agAb)|S<SXh
zER(z<p?BzELC^$n)IC=AY?4sKI``_r=xj5apRAV|;bK<a#a*cxuK0BW`-Q67+Uhd1
zF>iU&Jss_>HF=g`wl1VOs4G9E2MOPb>oX*cuO4Y=5Y(M4c^^6YGuRIr)Vz%60?KJl
z+RXc>0}KhN*IgN7I&$|16Un{yxi3@L%9ExJX7yb+ebS=4uNkBr**$n!et!?G<i`(%
z^>NwVa0Ivin4UTCuSKi^a5cdfSRSQqiP%tA#EI-z9^7qzz}r|Yp@eU`X-)k8b7RfH
zBuP9}-r)pxde=K;XA%6_fj#2VrSkX~$DB93#52!23utUO9I{IGPV(auejKRB4Fw@4
zmrJU-_^t0BF%kQ2gpw~wglSmv2Svxm4&`&bjt|N*^r>We3Fc|rj_*HAc;_=%d!(H5
zEk7W==tngXVP|w&Iyawz=)u1R7m)bS1UGlE9EAv;g3Tmuj6e81?_%%gTCnTS9Dlj+
ze#y>BNtak};+@#uJn87CFVLTp-V^*rm%?Z5L@wVwJ$MVQ6XSwU5ah;0mMJt^r8S0_
zA={(kUAz+G;l+IIk@b)#H?}U$ejx}{6=wlSh9sUa;Y#ni^?uc-r45aFA|0)B)RaEu
zc8*R5KlnyBK5C;#5wE~7&$FQZ#PXc$jCUG9ZJm5}WH<ZFAQHW+<(TBxf|#S6Q#I|V
z3NtmjM%-)CG=#bMCkrTLBWyj^?Cl8A2&uiTJY1PfZr^DI6pOJzkP4GJS{qd&|A-G7
zy+HcG(jPvF$gfU37HRSOs)Tk`bd(>=9*;ZiJ29YU^C^F^h{ml-;(NTI@I5+2A6Q?{
z&<Tr6(_JD8)%rwiOXd>_lk4TUEnF!?7vd6c9wVn%-Hq@9o(ps9svZNg60{_q+cEV&
zsaq~|MHpcLHQRIXz_aV#9J1Sp%iqGw#aG6Y#nP}*O)n<P2a@K7v8S-<>^rWmrIaW%
zN)5MD1(f?w0N+sqE^A3ksr8CMxX@XL20)OvR#VU<OO$Zb%`ZwiL(s^9hz?OVbW(dn
z7X#4IdI-n*EGdghz{th}+sZ~yem(}_H&*r%fm9GdwR!y{le;oPU*rRl?qv3rHszOL
zlYis2&|-`AjNYslm}oK%JGs*P_Qctbi9{huaYLMv+jgox^+-%_`862$Xs-f2JD9n9
zmgb=q>jfK(AdO&BD#127lm5XcR^Oke0q)hPj>>H|jZ|P_Jm!<OcHQ!<qv&Tt%AQrs
zbNigcMQt`jp!J<*a(RCIlILG<p7tra8lI!>tT2rJ@V9GswoSdfLj+GVHzv8O!A3&U
ztI^hpXx}eGW6OCuTa-w=E-CTx<>gE|PeF=To8tCWuKLs~&^Duem8XagUHsm=V>1QY
zK5B!ZkSzCCJYHc)i$3Y`Ak1M*?JRr{0-X?8k5~LO9Bw6j39j+RDZSG!FkxgBzmjd@
zY3WWUYL}(()+!41f=r?%^GV&X68WuEIQ3`qf>OMk{gqW#5C8h32eVjdzeY5}9y-8z
z6i=u2#4O%&LRPkSm_EFp1qVJHFHPWcVj+D?nCrm7RSu<3I*GAYEe>63rf!%0NyH~K
zZ3e(-5La++Lqjod?3slNi2nn31_)|8LY~1z0dhZ+xv&j}-xe~7v@yJQ_9fD?`p1U-
zD0opq$q9WdqBcyv&P4VuWmWvXj~%E{P{5;uJioHME5$&CpaWh}3s1U!pqXms?aCPu
zQ~xsiqVn~)G}p{0N%MF0GObm0(`i&QBh|C|F{-Kjnd(z5a51H1+^_cZ0c?f!E=Y{n
ziBjy`IB5@i@D-PeL%oh(>nU8OduG)%fi&I*4r$<~Y4Usfcf8s|FqIU)mO6tIwf`{k
zn1w4M3NwH5qzEXmR%qj@_5N0CRn;2<c94%K0z6pgnmdfSQu8Mxz>b&{hjiU2d=JBw
zq?_V`sr*U9S0056A3t4R5eK1-Ec<wFlAKH4b3#3aa|klZrUcEN-~%3lvY#UsBVCc4
z6*9JvWFLXY4cBicgq+=G20yO%FW=OJoFY<7mBCtXg!OLCF=<)CnmRM1vEjE%*n-^m
z(KH`yf2l`X(PX}$t(HxzTk0PvkAC{*jU89~!-VT>gu%9|I-X1my~}6^B}6DQNKV1C
z?YUn<=M$+*q6t8TrO#trG1}m;6&$bKyjXHD(#NVm+oRaAZmh6*q8%5lnh}UczL<?R
zYrzqAWLJ`)gS`g5$IjvSQG>hVGkmaF(Q#0@Ogp6<fE<>$bxK3xQsJfD`3AxY%*+aN
z&~uUrBuz`{xu4)a2e|=mb~Z;0v;kT(D>7F8U<Qts?Zw!VzGQcUHy-aG!u;#TF)hUD
z9PSJ#&jPY=l@-Qzu5|q%#3p=Ig?xjvVT;0e?N<LX)NNycg?z?d=?%Zr7zwtHeZNH~
zG5Hrj+PC2tme)VIa{<`K)g|b?^Baln3N>hs?f0I$XO?_Y%pyXSWyw|-=BE9sq#g2k
zm^?CDcv`VF`ZI%k`0)e`VUu(kpb0vmJmH%+-5;ga0Ue00%23pZOb-!LUxoNxz5Njx
zTMe*GH@Gib;~&a9rjvs<l;6Ec(t%!R$E)TCV5M{IG<F&!s|u-*DsYO|YJUEuvaY7&
z9Rwn}h-4M~U}-@YWJ5QfWN@Kx%Xl1J#hiT{9H8H9`($P<B3&}N71rK;NC1CcNOb^B
zb`d6{%uX0{r2I6itIe%*HrI*R5>23s7RE7|m**3vtRRYowD;{J5KqGh$7`U;f+#l&
z78+yN1p^qRP+13J^?CvyFtbKy>6ZmyZO}GoPv6k~m<&bQjAR4B<yc@LhJYbZ4F-B-
zS-bg7tq5!tQ>XZ72a%hP4(egi3z2-ti;Owo2MUZ<WvF-;rdPQ8Cj3Q3IRQT>tfztR
zL~}q~f#VA#RN;lyU~ov97qnBjGi1GN^yd}ZstBOH67@2OB|OZ`oY=Vax0wPUUB2Ei
zf=AF(!kg~|7kT^Aa7sM+Q^``{n~F+l_M`T|{d)UY;OTM{p{0L7J~;7nu+B1)lB--@
z)3reY9oWo~6#y5p^TEb^<s(#nza9hpE%os|OXG9_=>l_zY&r(Y!QGO=igU)X(osrR
zQ(kA5qh9O$01(t5Xc1072^#?w7--g0wzc<R5P4}#mZ?llj6{OE{K+4lb1DD+11{jo
zWtbiH#<rNgf$`3c3~M4cf=Yo{2voRZW>aU0UN4y+d-FdI<Aa|!68Q3JiyzrK3Sa51
zB*w=<y?6sfZKAk3q>xUt76kE|W14i`^=8v8_uD4N2m29;4X4D(`3uU?MGSx!=g*6~
z-$!mDWa-i$k_kr+(gwr5mML7Bt!YaEKOg{8+TBVD%G`t!1^`GihC`z}`~zDRDaDG_
zHJEot$GS46E6cdWUrJLyOF(LS^hpuExC;;4vhvg^BFTr=cWdy-$X^70UMKwnAE~P+
z>{UhG`hmp+1<|mQy>#(A@*Kq+_rYwG0v9t3(;vmPN?keq1eG=!wzES9PC2&&`9sQP
zcod)QSzgOVvqPZ54XQK?wHB+rKAI6fGBhH?#iQ9oTzVj#9%1P_?>Cjz@u;XkPnd-Q
znC}=KTd3QWhh~=Y<soeN_4`QPB!2m2BdC^*w7}^avYp^XqK+pCx&*gZU5k3B&42Ts
zzF&L__W37|u870YmMj%^Hs(d&>K9wSCiw<A9&WkcU;GG*mx(TJKk<i^<andO!5|dR
zb#~)FZ7B7LZ8s)hLeRmuv8N;Tk#f<t6XYz@guOsjP}0iOi>2zo+IlY+*x2-^7glI;
zcKZ7rKy?^`iMNhi@|t-=4Oat{K)T|2hvGG;mVk(dJ~MP@(kB_uJun<W_Jq(bz;&%9
zvpl^g4h#`zjONkWvMw<{FdOy8C^Kx<7miw3Og1wOE_FVwHC{7%+=%{pd7a_x)VARM
zt|5%oOz5IV-CI0V)<DE^B}16x&DYY2hMV6rocDb1v>}4f7~{6tnwGx9EH6vApJ}$^
z=NMd8hz2$|fVFgj@%BCSQwusXqd^n@JP${_KIwpl@H{tnVR(Pfl}Kw-L9(Z%9(5ii
zObx%@fFjbMZ7|Bs9T5J9SN2i1*vyqQ7|p-J9#meF=LuEo<rDxG@Y6YcoT3i1dhuhx
z><&+Xs#ws<iL6ul8#{GmvAtjAk_Ph$8FiA>%Al7m{2C}Uu8A_*2&_?Hu1*bRYR+p4
zlHrdA#ctczb2$GNH@j#!A~!^vca_~n<+?VK8tYB}@A!WKH9*S0wX&<3tApf$-WZU6
z0w*8J959n9AGzl)1V@`7he#+0SUN2wUoRoh=;Xa{+lGKKpnttg%4L6AIAG{Y4??G7
zu_dJLHhd|y#g()$i0jMAnN;P4H9=)z>_~;1-eE^Q+x7kDqSzq9UNGBM>Bybbc46MY
zSwyk<%u|ZjVEs^@&s4ybcQkJSat3${-a>p{4ir(sgawWwJy9o;irAa(A|V3w_=5)*
z=mbr$kjsyiOd9B0+u$J~afqOTyER9Yp1nUI8N;-yV}k2&Mh0jcHh=K+3UH|+G!N0>
zeExo$X_};P0$>YSFQUt{%8%uA?2V+}>qK-$xNG7ZBFTUAYgwP%{qqttq&poU@!2oA
zH{%j<el;1Y=K!X7>rhJjRy#ZrnG3Z%G?>z!9qIm|4kOPJ?Lm3%Gs^xmAYlL1O)1z{
zP&cN>gS8_p#s#`6Cm#+!;}_OwC$14W#IxhPNq0dko(+0qA*k!TA7A|?shm1#?zxv%
zq7Ttf>#4u5%mX6!9*YLydX9B1ab5P`Z`GeSNN+KeXBkEH0xW<njC4;31?y6;>%IA<
zu1}ecjKMFHu55Ye1sJ8VVs#Heyq#zbZwbyNJeCZdJTBFU7uUU(lav$#Xz8!pT(O`#
zI(^XKMtIjHxzqeb>XtMY(ZTAY@WF?jN{7G2k=BaUU_Ui96|;Acm73o8A&*te))jfZ
zotL(G3#YzI-Xv_*$hql(h!5E76XSC~@qjM9xC{rj#AbsGcSEHZH7qx^gc85HEZ_K<
zaz<kXTmjM%CkwYh6CeGgjnnSTMtQ|Ir=r0OMEo0_oDZQS@qH#MG5i(!zqomdpJ|lx
zW`f^3nB5QZ29tQbP|~kNqqUWgtDD>@J&eNA7u-f-)OLVW%&pDO0hvV1l#6uIX@pp6
zo!+Vh{Kwg6p?zCbpd(Cp417d+<HZ*WT|*}kvxWy4pam{d7EGTkU~kUS93C$c?V#<h
zNhqX`Mj3*RmAROxqavw~bL`PyP17<zAD$s5`L6Jtvpr~rboCi)+%^wmieg=6RF`5V
z%@`8iZLv44mHS=z;j9@rsPWQ;S^>|4ywDO&*GadFtUyxO-M3o@1Ra_4y4g+eEyh<*
zIsDCfc~72fw6ObR9e9xPXX=;zGW@ZEth-7>)Z#@9YByI4(D6&+xx94PiatAm_FpId
z<N5*OI)xl(x6VWP?W%{VR-3#{t+x_^%L|fz4*Zdo^(lq0$T*vo8oFMY4;_&M5#8E?
zV!>SK5+mTF3N}4E;e6<~C%*`IIkZu%K}x}mQCIYZq1%Q+Gdwl|_4W~D3hCeuuNz|s
z(EVapMRH#z5ByRSdB}Xupj-|ZLkBS(Hq)+L&>)2S?|+*0zP6q&Pi&rL)2Xg4Si|*J
zSu4^Q-tso3+(rJzH4(t1uaXPtG7>GgI&zaor!rNSI%x>w{SsmQj>3u48g~WTWF4Pu
z*GRtsE>h{aZ0uPuWHc1YpPw6=wmx<mom3Q7=q(C*A<Tm<uD1C?z}Ex1=0XyG=WGpA
z#^`4zmi<-QE0=omJk8Ke-zM7=-7Eh}Dh(K5x--yA0|4{k<X`=wawYV7Wzuxk4kGC@
z4pyQd#V2PVoqqeSEeLq#Hcu{4TGV_%7ZnAYnu8DKo!;6tO7`wjBIEKggobm+3n<Fe
zF`y5~fFsUrymcD9;M+f}G5@E8>vdL8ZNPrV5LwXB&Z;W9m%IDS1^oH()uK8;PvGl_
z@$zk#`#8Ik=is>aqwHKUjS(RKvNnv~l?S+SJQfC>yW>hF1%6Fl)mLM065fDFVt6<{
z{4x5!hm}P&T(9?IjKmLb9R7J?MFBl~cAJI}!c4ciAcB!``J=rn{MK$$u8`^v7Wo^7
zV26>6`P@{*rz{HQ9Z5v6rGE->hv&nG*cy#MYJ|_K%N^Jmg*X^2^y?gHiRk+z9b<0R
z;8V%Hc3&gWk|%br!H?FsmJ~6y5IT5S#Is`><MdJD$iMg=wP%>dabn-f2f6b}dsBGP
zX~|<QO7t*Q+zD!f0Kv)iaZ8ixih>1pjrC*fWQblLow&mN_NotreQ?){+?=z?9Qd^_
z#dr2|wRR71C|e5oxMPa<L0>T{nR>MeEjXQiE%VDe|MIbj#$^!pUX+8Gvcw<2dZ?mp
zsTKZ3&p!&?`?(c`BKg;EJ<!P{y73M>PF26A`pZOzmtKi9JeQ>MG5b&1UC)hR+;NV0
zxc8cw-^6oNP59CO$$krB$qnkmtI>n%(gBg3kbCNKUFDC8FP9*Ai#@<5oWt4x>p3+@
zGVn$*VoHzX6+(c+!y_kSXz)e4+x1-j*&#4V6x?vNIwH!3pi}MDB?fb8#pF$K`2n^L
z`-Q<5mW6GQ;EICr;AYUgU_o)=AMjxiwX9*Y3*~e=&r8c{=Nx|YqwagI^{rFjL8rXw
zkF$<v<6anIl0n$E+|$r!44u8+yVh5d+W#n!G58T>iB(>ew?YErtWBPRcwuBqwd1{R
z)JsgQis~c1a@$w9isw<p@wi6mhW!OePUW+3pD^tw;wbrz)67A$8j~N9SaFSZub2FZ
zOi>w#_#2P*9s*<Z0R4N537w4~?Vi&@s6kKE7vqwj>_Cr;Ag^db+Qg5dq7}|$Y7%&O
zb{85PY-<`>O+yatx6cVVoqO&iO)v+N*_f_|EEV0pA$dL)&e{9sG!S3x(t#-G3%h!7
zYv0=Sganb>phxFu{`_F2a%a%cH2Cw)e&#g*6bbdyoo~)RnR0a?zM&kz>!MolC+PcR
zdN|YQPV@I)ULWW8)Je1;?TUExd6cQmP7n$|!48-51b3*?iw4z*yr5LmPYzIJ;`Bpj
zD9YXXD=HB&ywT<S89JceIr%rM%sa#J`vB)3LB_4{8wwKVd5M`rOJCkn`HQr3yW(OD
zn#^k$O-o>@8@*3(Pbi!Q0-SD3Qy*ds9ffZh-w?DWGYF%93_`vF1Vbx+ixz|ET8qi{
z_@A=SXRN48@lxsWn@oGO&D4ikNzzjmMTR=O5~@F$mD_Rt&#~9*s~WqGBw~0Ctw2oo
zuw%-!t;-E4Yg}Ln*kbf+0OCof1l)^sYRd&fIQQ`%A=g<y(`KLQ0tEF$?lnk)D|Se7
z7$8zKo&=-;T+dG`>Deh2o*S*HtRnSap9t?}@{_d!85;Fc1j81Od@4VNbS7wO*1=iq
zr}{N610<r{#0^rWoSaYFGwu+Dy~)1g-1YVFMiakE#fjuLY#%oPV5xD4Hg9#cV3^*v
z2^7Z8Hc0~5J0;V5$KCqP@b%P{_r>>@r*D4>mDEBY4QccO6t37!xe#HgGo=*hX*OF2
zgL;i*Xz^m?gmmP|{*!`W$RZgvC35<M;3InMFC<<ft??wAYV3_mP7CE+Zc3oCvPt=j
z=yb(m7j6JcjzMM`zd8QkX9IYv%**!R1cHbRJG5Kr<*)R(5^GiA_{fvmmsY&k=F1zh
zc5GZoD*w;qs8l--*&^ID5tGG6lGX5}s>@6TtKaCQ*8?nEifVp3r)%h-o?pT8TwKNY
zqNA+f83Qu7#(yQO_fDJm@ytryX??IhY`Z*o5oqAxwwB?(2S;x90-5Th?kHVK^_0V~
z&3$DAb1o-=ny^J;YQ58;Pzw0eayVO>?Q-586HtAA9}<}6OCU<lPLKT(&AGb{ocN{`
zf@k*`HWGXT+S1Elc+_yYgl`)AFV4^If97Rh%-=|C-Q$;<VGOM|;`?eIunqEXF(y&{
zNRdsRG@E%<){h$*&JaVLEo0=#&7H$mSlbX2mf<2+k}pWCla2dMo$SMGEVUOiCb%v9
zHaBUVSj!$OcitB(l$}u9Y$L_O=n*dui34Skbw<)~R_Zn<3&{)+K-%<=M&py3TtxBf
z<`l#L-`o~e3;o+3836BXqb*g>>b+w?)|AetbWws))4V|8P(>-6JFIW2&0PwusRs`Q
zv7gndF5k`=GphytYT4OC7Ecv$*&?{Yz}1nlXNYMM&O;OAxB+O2*>se=*rgri{r>q8
z_Os!U+gwU&rUHpuG}3?W*)=>I-P?obfIB3XH|do8Rt8u=s{=%L#^&-0nC&FcS}zqs
z1gOwM)|2!t={{P}HVMl&v|3&2l~oY)0t^y|g&gl@v>_05*b0~NI(0ELi&)z&vrkU5
zULytq`HyEPw{SLS@k*dQ{xLtM7(`@_!xE+eN&dl?U|l`m!kIIXV9VsNIcuCZ*Y<h!
zOZ28C-sg>Y*H)gu<%EdYbvR4mY|kDEjs3noMePzF2NlP90V{=}JJWwBTB-Rl@D}?E
zEOXbp%{YX*;ck!cX>9s;>jD*j(rzjU#0|?EPDz@~>C=FgL+~bMf;u7g*8PFA1rM>i
zIdwhzPkfd7bq72tWcnXq<9$mYc;p(oHOjerDDFyEI&7U@1z{YpG{vOwakTAW+}PcF
zKnXvIzwKlk^%IxWZt4B|M5@su=z*JO3bB=(Ytt>F00Q6WHd@o+cy69KA4BBY)xb@X
z-;{{7CNTtc_}Zng7!zoF3J{xLKca`}kiD7%0V|CD(rD1UIdReFNv{<~##wgo=WtAS
zA&|Q^b^IC{Q;w2H0A=}b{mxr<27>J*51ACxV?iG6zo>r=-e0u5JwZ5o*RuX0dng!8
z>Xx_4U2MWVs*8Ngr@aG+Ox_W>txFx!L$KsSfI8qwaY4oUJ4}`(HV@7|w^c%zl+wkW
z@6Q|P4fjINL$5C;3|Xyiw`)~_uw`i>$NU8$f{ya2f2+N=Hh#karkamzy8rB#1}fA2
zFjb0^oAGlVK<fpyfj5*H;o%FCeL7h|{<nah#PMOs;fDblKQ>pkD6Ps^%JS?di~M<~
z*x5RUlD6o5EI>8OQCJWVD+GCk*ub@k1*wTh0bhP!RyhMYX!uD~4AmGj*Bd!K7mFu%
zJK}as*;uN+ouiJQKrv2|)@&o(Q%#2Sb&ev)dtx{atBjo|c>>5JR!CYYh8uQxt}i{#
z*T{NwMH@V<UXy`EZf<an)L=FoOl*#WvHHA3UJZ2)v4?uniiF@a+<H|E8GOFEsC)!0
zS1QH8fJ0*r!Gm7pHLzJ3dLBaZR(=M{8O2LJk^^3@_udWtun*f<rvvD~Xd=!zs^D~-
z;ElK$HGGh^?<g)TjF9vgyJjJl7g>Tg=o>bU@p|Hf)VyXFIL2b7N2c`ZVPMDdfL7hq
zf3~ZDdhjrPEf4euZ7f{Hb4Q*yqGaw2K=4KGE2nr6O$aF+2RmKWCjMzw?!032&w?n@
zbK!|zcr8R0)PbeCZFMI|x&0jQW%2xX&)N<|10IScZW7r&P(_`Ul|gT?X8+tlMqr#T
zQJ0!8aYX9<%U5ZPVP3d;`*C<CNzpepz(GQSs~~$&sgF`HRk5$MGiEHgF8+^^OX3|X
zUnBgJC{tGNl8<D9SuY+g!a%qb0o(Yv%6kUKJzU3%ry-eK?6P{#@Zx~87oG=cTTkbD
zZjC&DVk$iy!DZNvJXy|I6OBjsWB|$~1TC$X%h_kD_<*or`NRt5MJGp{p=2N7IJ~g)
zszNe#{+Cd_W;dwW^5%GreZ6s_IZPW}d?oAs%{2arWe{02EdR&5GEh+KG3GtiTY}*n
z$!++qrxd^Y%z?<#`(cy=A#{MSE45tMRo!fiZ}_y5SCCRjBv1^B$ERWti~oB?19slf
zp$(a-TABMB4+1ZhnV>Q~Xed3sMIOGx!Xy=nwC~hr>%kG_?3%cX3Wf{>evvTgzWq#p
z@q!jXnAj7>{BTM`bZ17s5a<2m7}#e#)jgtc)6<@kg{u8BUU<wdi7(2?k(R$A=B%LB
zsd&;?roam!%AEkYK8|d<pv9^W+G5yaiO9a=>JFQ=HPHGvwMxdXPL)0Z1s9v{FLg+(
z_#^{uxdT;Mr&4XpuBh{jyq)HYezy~+f<XpIICQ*1X~rLSWB|A~afl#AVhY1PP>_|V
zn$mY!tuh-f9JF&YQVN;Wt#1uZT=wZADuMgi0T?_u$n^@AM#WYxF*?XE5mX;EV^eUC
zj9%NlV8TsB-;p(BEGxo_x}VkdxYpki;q8lZ?*=BJyASlNk(9K6>!BL;A0Hb49u=Z>
z_3cjVs1|X{st^F1iQ6r<a6;R4n~Xk7LFz*_Ek8@Th!mCylmdge;P`xu8Bx#!z1iK&
zw{<n))Ydp?uOFiplN(~EOMfS4>N^47kXZ<_1YflzOdcDP=+KfSSntb^G`BeF>6Bvq
z|9nx!R2N|YOPTxWg!xNb$FQAgVT<s$$GYJynl-lI$OXQR8=v5-$tR(AEsxDUH8wUE
z)mD6*1o^pUR2P*192tmBm^-x|Dkzr7xMPgK6<~PO9o(8H+!i>+yadE*OBBLdTplTO
z{UA|Tz&<u}%Nz`1+rM?*T?IB2c*Kuido-pWv%N-#hGM}WWR)}{RuEC)dp4+k14S!Z
zopoLvRcNV|knEFt)0}8o@dk<?eAhZQS7Ca}@QgOJndPvygmMn_`-@3&qh~F5{P9pi
z#l4F@G-kBO0kqY8HV#grqYMy-;RV^XGr7$&F>~ZKjow3Szrjm1oS~RCON1XVP)`aB
zejtxEErJrh-A$|rhqsG8uUEHx2N@`HU_QLnkU?$2V_9K!txmdqzb_cbq!8}%ZMPsl
zfxvgdJOMhuSGWIqm-24)_6X?+ULM3QGFoOP7n~b9&Wl4GFNyL`0?XxCZm^f)nnLLL
zWJoxY%8V4Dps^sq1b7D@d)Y4mR<Fyen7+nDUq{=8WvTNmKJf7elc<c4<gx#nY#$80
zmBi+4c;8@~HeeDf(+dm&*6C*!Ec1M$4nGA`<yN>?@yxk55!&!nsNGLDerCW3yFSMv
zC?1bgvO*iEyC0S^6-D)Jb}6jFPGY=b6EyIy+5v?l4=H9xKTCAO0kY$A96UZzFh?`t
z!ixg*=ePeI5Am0>ioFhd5cvZAS$fWnC%&e?E~&izdrA<uAbd~-%{x~geDWq7a8KV9
z-lvG5(2oX%Ak%h0f?T?!C;)&-k!KY7o`NggIi*>&>vO(iP(S?-cHxR!Id`CkE8X^Z
z63w?%&>9p>repECC2%9F115BU@?ktwvM+zUk7s$k#T2H^HEb4#8i{-BM{sq{?Fe-8
z?Xi#~*u^pEpXF*S`}>J?ur?C1>*55RTG_k<6*CmBeZ7+bhe_^R%x@yRf)+lF2fQuc
z+qt^zoynyA*_&3@Hm2hykG%mG^GXm=HZdAUjZ)~!_CX&I?1gKFp69{1tlB0=p4sVr
z3u_a7YG$I@QnoDihHqFSm^hG1`PC@@X#$N!^5O1te2@4@O|kgO_Xq0+m!=135v`Yk
zGef#FI#JMPDY-dJ3d8U71y?|rS*b&uYkGlAG|}}(qqIv+@hiBgjmt{_-lx=5GU%i&
zk2<s&vDOyAm@~=?LR&syxbRt0EpI35>0uL;Ommc$yHHvXB>@I{u|#N<(zWhS=u*P4
zwyRG0S~gPqR8%pWT(?!#owFdmivM$2Ma1m*$ZK8qBiTLhnst3yC72i9K_fPge(_Ma
z#pnIyRnA~MHr(6dj8T6k7H8ZJYETse4$f1QqqJiO?UKLrA`x_!L$?5Y_n<zdT)Xi&
z#RV199E&+qa~(+9WpWz<6``$bxLE8W>*j0IvohZkoy^pI16MqUJGCRAw<7RV$FbYd
zcySdU4n76cHRXbPWZL<rQ0oRXyU@id-sEg;^a9G8fO{Y2UaPx(9<%K2j?7zARgF}Z
zFNiC7-QE6~W^LKBJ&E&SDwQ@(4JQROx3T~i(m8_=uhVjO@iR>FIpe?vrFR=Z0pL@|
z+W~4g(A`Y*-kv{YoM>~WfjFXOEg0mlqs`+2ZK^%5E!M!@)aN)qVDs##%kRlTIPSbT
z4f?}KtwI)mRwdw}!Q~%MIC~LVX6L&URqA9%E0k<0qGfHPV9-I2OE>ws<vb9*M0$HF
zgFWNN=XSGPIDMSw;j*$dGvQ{zji5pWY)6vW>r3YQ@wn{)ObOyJ?L4?<Kj#!dEbl9s
zPa|G7HcpSiEmv&4*j8FJV&W1D&^mblo$&2F22Il@E*u()NifT4r9TjcoA=fXLp0T9
z9TawOeLllKD=_l57$`QFFFL=`P|~j-{m6k1y?{ipE?0;!IWqMO(BMW;8ffTT?xL@)
z?j14JIY<<bot>|Bw!?(ntN2cY>FXz(1STM#)Iru1;2S0!Y5Goi4(JIt70!f)Beaz)
zDXI#P1>EF2(d^KZ5|7Rmz*q{AMLPm3DLs631Nq!0vsdUrkF+c=LX`yyp4b^>zlN`G
z`MB|+D;{O+B51=W=A8VOr<bJYNTjJ-tl-tZwT6!%&U}d1<{WJDK5N~5{4rCxHRzpv
zL!*Znq-Wcy1RcuA9efG&ak6C$Cn6orTOWmz*K}B-&{!{+E5U8D(B1dyb)X5+WzXg1
ziyk<IWslm*w_*jX@P7~N=Z;OPFJCKxsKPx(i{=xY4i$%k|7~x-bvU#|a9?2I^Vi>(
z+yIl`L?6hy+~h@tv8rkg31>UkW{k2Th_crJJSAd^c`nc7_1SL~eE(x)Zi}F7#|}KQ
zQon8cxD^1llFoKjU%SO7>lCt|)}byy$}ZrIMKwtho_RaJJrl?bgCB7uSM{v3w8gFv
z-Ij*9bX>9r6r4v8wyWT>pK4$)!yfAmh6uI&ZUe@8A(huRb>iqM1bD9rEO*0)5ChML
z?}xZnBgFbqMUUJ>H&1CSMU5WX9q{eLw2M==Z{6Ls{&I0pfgi5^dEn4$F#SGi|FcrI
zM(>g|^}pjG2@EuX(Xa^IFHF~(giwF7M9%oU8CO!9lgkF{`#7MHKmybmosXIbT_B}3
ziZJ=(acfx`y&|E9cfRsmu6e&WGfh|u0KYCs`XAudbh)gim4owpN)_1yVusGE`8(QO
zUU-4s1gd8Z`C{O$^yz?|2i%Icj~_n;5`0|QZ8K77FQ)kD+6_?T;(i|y<qYu-5Xk`Q
zZz~JCMB$Wwwu#^9t>Dt2)>52zN8zMGny91d-3|QuVT(pR2TJX?*pF8+kss)5GM_3O
zF?+-4|2s0On{{A|J<v=&0{;ywaGtsXJ;>kBV!~8`_C4_6;H$SNL8n8u(b#hSdqaVU
zClByD|NLazkNw&Ah%`NpYt&Q($Recp=<t^Z72o;g8~r~p6K~PyV0d%;6!bHLVKMNF
zID9uDzCep(br(i`J`Z8EzL4~Wanh&I4a6jWHeZ=gCGOTB!rkSFyS^#6R$cF#;@2=|
z3l6%3nB55P>@8mMhTkkaL9zkjZ|AwzFX9hG9=uKMMG}^2PKE+}KeT~-PJfoSOe!@q
z&2*PD>|q%EKqCbZ8%qF*N4ZT%+Zi@y#v?&Ul~=iTw5xGFX!OTT;X3jRXW8G0Y=@)A
zg_`|xwFy*kVf;&!<1ozUl9<)H5fCd}2(BJ}OBfJz#Z(L&otU(P6Grd?K!7<i$9|Wd
zKL|%Q<}p0^JJChq%>C}ktX(_S{{PCf4@D@#3LRzMy&BDGSKF3nN+t7!h}e1nb7a40
z&CS0)y~tN~*$V7}PK*^$6w;JN_Q0CwiJsGETG!cQj7__u@Q~Z1V(cR%(2IqoKA=t}
zwJti4MuV2@8=*T68UlG1P@}p&CWvIoww#LXfic(5m}J5>M?=zTdkGycdP17;N+>ln
zX7U9&l*nv|0KdOP1S*(;fU-T8vZ~ydX7<&%XM+sMQf05Xl4(#+iK8Wv3Iz|!R20Dg
z{#_i4fm(bKu?+R+rlOTv*<FGF+E9pTI^U0bL0eAV5>*syxR{DgWrR+B$wGowE!G_6
zNF~+qB7HJ^r3c<WYLmj}+HfR(CodmU!{lh&<JBTSZa^5k@1QL<iEze48q<_^ZFnum
zA`&o$Y|TJvtt_Rbk^>rV%XPrt4EW>3w^w;rmw;<@L_cpHWGHP*i%I;yGrxCNQr>vC
z6AJ~+SJ8G4aBtUV@wA!0%pOX#rS)(wFR+Wd`|n%DI00dtiu+p;y8gWD=-Ir+ZBDAa
z&xD%mzFK_C+&pC)Xqo3BZ<!RmR-SsXH(a%BBQnU}m7pJqc06|^D1<i0s~k3cea10%
z`RvT)W-H$!0f=yDNUA?|uTNtu9RdN8#upYZ5$a$Ne|MIgzTANu$#w3GS$Z4OEiO|r
z`<9)1KLN{6bm}8gYI+`&*3~{d4?zoqukN!QM*K@bI_${oX0s~LU%b7cWSU{`3~%Qt
z02%oh*${_VqJ-8&vP`SM7md~gKuDIT@N3&Oy7@Ijs=A#S5wBXvBIGATu2;R$-&h4M
z;OL8W{`t;ingT>JC}5@tr0f9b0X8|zmAo~y<^0@%`#@n$-7ocAz?JoU>nf{EI{&=1
zNp5xG_3o6)@Zdlv6zzjM)i!y)G8F_<4Kc`k!EYLjWMkx=3e;GrV@P=9uJa7eBT{^n
z(5716gRRBN-?3L#h*<K%%gk#hH6j;@@IU<!jqX|==Uy-0lV$TqDWWq~!E=V;OMuVI
zrL5pVZQuw|CC1kl5w;FZ{YJJZ3W;qQ0<MLN$y~Nr$zt|)?2k6}2Yhu<ixt~WmckfT
z;7jE3U;t>&gIi9Q0`u-1h8JWN6A-tjFY1zm13y`uq=L~<uLY8hW3sxw^&9;wih$-e
z*c;&kk+F$_Rp;Tr%tM)YIyFQ$g^+K1btyr{md@~8#Eq9uS~YHpV2vDj^itbK-cOkg
zBDH2c^3!bIDpI+z`YBuKAeXO1jjO_aaL2dR0o@Z3R9tTmT01}SW~|c~0$I#9@@7gt
z3AIyOH`E!#+;`W*N;*~kU4TpC*G>Ei+hwtVXDSrSjat;t5)KZ<^@lV#nHIZNEyiYa
zqL;e2FhXvvSfQ+7tJH7RM1|POjdi@t+#hg{W4zz>;tJTBFhzM8YjHQxbwN~z^B%qg
zBm(H_mbn<HQ?!#m16!l?@A)??Qw;Dt`Yoi*e8Uo~l@cASv6*4U3<++ZgL}lQK7Ix_
zn*~2JbG0#YiDatuUX&c)l1d5>ez6S5FS<@cDx!mgroMkkZ=@)MTK&MWp}W-Bj?KQj
ztyve~y_8@w(&8$R2DTy%K+s4pS02}Pfy6^t>+?H#=`_<zO*H_XJ|eo>!*2#XMocX(
zq6=8kvYQvM77u7J9)r-E5hFpKQn0wL`d%1Hova(l(dSN=dVU-D)K6xInCJX<59-Y+
zm=P|B8a`SIdHWD|hx<|F^^~0GYW`h4E*4U5B@u-57v)$qebnp&GdQEHl|jPLREdHh
zk3M4KKE|d4>`9TicDf0|x>j8#O0tRu9ed)jY`i1LH+|Gdkr{{2p@brQqq;MoVdEU7
zIzMcj8ALfdvZKvnPkt7(%ur`Lq4ep=08!=BbGDp0T6Ju<!tV>WBKm%9*(MFRQ6?kZ
zyQpGRW5ygtsB<n>Q_s7Au~pwLl4W4dxmxVoR>lo@ZZVW~x4q}^$jwCRMu?L%e>dlZ
zkt(OP(6LfS-h?z%7g_b_%Ph#SHU0~M0t2wZwA|sB6)S5G0t!#yM(CytWKO_PQ&1$0
zFe={tho?%?WCOuXWiW_+^e_|)X@%6tSSF^%Q4WAjy)t9eW(VIHN$PiVkC{$Vw8nb<
z1o}t&^9HZ_(yb+tH+my!R!=b)7wd-~NQ#JHhw>DavUD6Y)@r!%BXhWBd5K^q=0;<~
z#09(az<&P!v(U#y?(qQ2)A-X7jmSE35SE4-_po6BU@1oiuUM*89t!`QFQ<pCp{cB7
zQF<$4kE6~0GEcE-FizhOXr9WBr*FaQ>crUCWJ6ycF`fXv-l`;tW3pzN%7j6vn8qU8
z&Qz#D%<{*s6}M#&Fsv8@b4PJ)9;mPQC^1fG(w(39!K51#L_Fm0?^U?U_FVb#@bAYk
z0?d|C@VG|SuL9P>3D;w>_FSEbmjVrAT(Lor3#*3AY1O6^vDGh@J-Re@NHCm(5aH#S
zM0bl?^jYDkoha)}o-0=Mk&`@ioRd^hk~zJPa>0!%AnYH?5Cg5_zWC)w(cO1;|5-7A
zZu#7*2C6C7;Y&ZYm8V|pvgcWJ*O|X#?TasEfE!4&g68rnaP#six9{_-hH$S<Xc}9L
zUkl<8M7E1{{Df=jS>nXpMJ(F^4a!zjrBvRg679$(VX1Wrj+r0iZj48aAc2D;2d<kr
zcXvSzdUDi6GtMdMHP_F`u;FbGO_*eNiw#AzVD$e(`7Pn5euvF#MA+koHoKTRWsca(
z5u=;(s}hH^A9A9qxS<lO?hxrkyXAecfm)aXshY@^!b)4RC<BB2#xyt-Abx4@*-}9B
z3OfTes#)Vm3W(cq_KX#9DL*D$r-YCR{coDlq5=p_1OtaO?^3X(@gzVCG-P$2e)7i2
zH-pcb$;ypZ9;!<G-Eqb4lU$0xh-BUDR@-xY6(8rOyamwfTjmX&h&j=CEv&j6>h?M{
z>qAA2yUv~E>sFZtu2MEw_cj7@n1zplF6g37VO(xZC2~$v`5$YMCUZ>2LS53WvUAPk
z75NqU{hRUh+d<VF!)_a7p!aUm<zdIhsF&-X4(H~UGTe|}9tmS3GF!G>vK78pvDeRz
zRI6>0aY2s3M+orP%WB_l9zzqKvTYafrB84otlSp4;kB{AVf2V1-o~&jk@}_bZuVMT
z&x!!m=UpycDM;O7SDL73Jqqv6jIs(|&+`t>!*jnXD%nNzqtn$O#Wh<>!=Yxd(vj%b
zynp)CFu*ZyzaG(8g4mC3bQf!ezeRR)_y^VCS{w{O+H`!h#{l$E8RdCk6q${#LpEj8
zNIDHQ3hVsTIr}kcMQEgwelc0Z^VE@<R#aQ}dt$ZCgVJ;{uXbmKtHLKjySZ=`B-lH{
zI_NA<g97Z5SW(tA*pcJ0BN1QrsaK|&fWta*tc52t&lT6qTPmIq{_hYCvhjWm`QK<P
zhLI*^0}zcjJE|1T0wTN=*<kW(BTS@&le0haDz*CTAygIcgr7Km&2U;+w~GYY4PXhS
z_ubaA^X{g1&t!^~GzZ`4EKde=1ea2=8%Ho|)7Icu#E28Q#44UAY$Cj}k2EGET(V>i
zP@P7aWRI^c-H%3}xwt8lXBSdMz8*@c<DaK`6Un?;tU^GE4No3d%oaQAg@d`aDt2d4
zLti%=x=gj7`&s`hb)r+N?FfnGu3vZ*q-<}S%{Tkr<Vxx%h<`*F8Pf+?33#H4$q??t
z9?Ik`>w^ZEzpq8>#<_*g0F%NYj&Cc-caU1+_C`V2a`HhO+pFO|qbUOPE8?ie8@I%#
zuhIne5+k<;!jv?0KYMFa%aM*|*SSMcaN4sN;4h!B-ag(73dKLtr8Vl2g%>P}Q$N?A
zCjXq6B3Z)R!5NA`&1VB#_B>`A5}g4pAxi^$zRIQuZWn+$jY|}ro?$sz{(cyIKG}!p
z#uZAuQJey<+ZdivFF$d4rN1H=`$SXy-4EKW!acHnmE;W<r1Qbg{6{u}VdCU<@mp?w
zwO;!SD5av`l<khi5V+}u|AJrf)g((@e>Iv&mwA&=a%x7u^%*z<<A~XRT&PQYTT6{H
zw0hqhJ&<1Bm>tY_j%!CHkZy!OPIMJwoPVRQtUe%38%+7Tl7$nnB*<7pJpf;cvWEkR
z>QqT6p$Oa~X~6b96%CCe6GFY~xzvJ&Lua6^H=C@}0u>GCCuLxdC30;(4Jn&TrVFG9
z5pUyyK*0p%;M*`6heHA*YeThv%?EX`LJT?pCOYr2lpnyxN!7fc&N$#ilWgtLM8Lg|
zT;M|qfM@F4+3f#`O&O3G2`9hq3rP+Ape*C8;vtn3A?A^U4y)7J<5g<T)5HXuiy4fS
zbf?=8!%xkrTbctg=yYZO5F&N9uB=Tlax^4JEbh3@=RIA>8YW|o-?C?Bq+<kmXv88q
zz(@pXaZ$IWnJw)^!@?gyu)CArCj?-nRpny1-+E{IawOvy2R*FtN2)fRgcSx$5VuV?
z(N-vR_e?X_9xf4l$Gz-NoNxdv7T{e$fHjRH);<l1+>j7MdA(1LH|kl(m<++mxp8U{
zhkn{SFelETrl}<ZwsJ>1dotcswLzXIpWRS+Kt;<K38M{w%$8O~apfPbsgo4Xx#sPv
zBXHR|nLV_Avgv)dc1I3l=Zu>5fKk7&|6k~x6y$=#k-7ca;`v`$x{j!^6lDLO5S2=}
zL>P#8-Q{q2-Sc_AbV|1Fi-DpcLKN20e*P=ml70*oVSc>_oAC?vXKB>`JE6ZDL*)=I
z6vI_gnGk;vjl9x6CW+linIx>?W?c^1W7DzRA`(1%)G*bd)N!ly#{_pxC;rYUo~jH=
zT)sds`>5K>3EVqV)+_u*Z4X#ypCLsPPFi;K{hRq3N{*_&wu;=Dfe`PDyHS!1x&(Br
zEYWFh+$9k*GZ5?%BP5&LpbQK~QGZ1tt3Jo>3K)$7Qvc^KJwkh}I>0J;7^p~&>Lu5>
z+MfXYIolWB?4$AEe|mPS1A??9iJQO-u2q1;$9061_6}Voyr}rwb-|mRBr%bo(eD_l
zhu24V&4bl=8bFQsWkBt)%KJxPhQ~Cgg$MiatsGz75Jt9Q^X=={QblJ>pe5WporY|_
zv8E9fom_G;OOWI$q9J5tW>ht`lI8avfSj&!Q#vbKUCpAy;w6-vy^vt1|BZNn?`tcn
zq;$M^wDlhMQ-b^zyqtZ;?Y1oFXW>m+^a5t_J!Yr?c!ML1@LH6PN~y~TBH-(7USYv^
zSuRM)ohBgPinoiPUf)ny1B%Ze{H>gb!aVCvq&Rj?MNKcEj#7!B2;%Us_h!G;ix9hz
zJQ|dqR6Qj4M-RA)G|lD6f*7Z&w0Yn=#2s1&*D8HRn!SN)7mUP0+7C_K5%AMcXq<6f
z<B2U)bAJEeFR`(C%e^Nt!KuzQaXXJJKXhc@TOJGRO+pY@kkZO>3cobd@>GWZ)~p8i
zY7dd)_;AluV(~mgG%B{`=2d0!=Ag-W5j)?C*Kqka2@^(H7_;B&XBmF^_l8&6fEn>t
zr@^7p;YJVtAne$nuECA!hgecV(uP(!5+nJ@`Xnu-O}GI7PHW+?L>O_-@*yICHT}*M
zNw%Y|v6boQKsY5B5N}GHQ`RYfJ8uhZR|rst((a-+>PR8;5Oq2Ku4`TmRW4QHUA}BN
zB%e>)^AMkub&-iwB3~}(8I=iGhKQA822YLr*_Cbu2E9uEg?wZC!=;8k7KWno!9_<c
z#`M2&Anu4Y^E(kJLGgZjUhS;=c^40W(*aMi&+%Id3l4k>Bh*4*HR7>uDX&gaC;<Cr
z#d50VJMyT>V=)#jKur_VV@#`nq5J1o$Ncv*G>E%grsl133LUB*gQ=W`?OYXI=bb;`
z6gUI0sUt2`F}dKOI7O^5fa|kM!z5;Rbwh{Z912`2oEuQKyMKZbxxTXQ==G>Di4t|B
zz<2J=RZ2P+UG>%T4gma|3@v`<=*S_>p77Sj7+K03E(Fj6H6kh7-N>$j0}R0>QJUe`
z!{_1chw!(34Gj_EYEXHCKC*w_Dq2FiA3h;VT>=z}{6Tr~zOvPtnj-TkQk-X0kb$tE
zrS-RHxK5k1gwoWb>V&u6a@9$)a_<JC2}fr$h9X*9@+*vq<PmmrHX(6vPTRO$pIK$G
zZ76G~6#!W@ADNPm+^A>i^>!S8IR0hef}d@#i?CLONYP9<to^>+>`?f|6glV9L^0<Z
zF7USv5|$*x+m<y7QeMk+WH^-tSKmue*s|XeR{TsaXD*eCWIkMio{LkCeFKxl{=e;L
zk|CQK7``J-Ph*4~%ZGMMVV^lVLq4=E`dXdxVnzDL0_)Q+M(EA@MlmnkdE<5F2<q{f
zi!b(f=4|a;vqI9@^()>p7BjTrp+C;mb*s5ij$BJ6oYs}pL5}L4@A3xTRw7@lkUHc`
zXD$;<>lgaiieX~=Gv)TS-S|YLsDp&Dr(0;wB(GZp{RvREGQLn6-2!;43t_hFDz!dA
zk%cwAAG^J(ehv#D*6Rv|lwjL(`0JtJy(#=^<=aH-k?pUdcM@DPuzohBgg!%UAQvng
ze}Uu!Hhb6KDI00P7J%mVEU}N`Up)^P4;5??YQK5xlK=EI+Nx^&=#oB^gSyus@6EZE
z^8(lMmKYVo#@7ZI%j_bxvd7qBVM2_)O<62Di{Pp=RL#FkU}ReXEwYqX(dvo{Uw15-
z3CBgVCQ(y4r<BSLhv%=&i_h;0asd8DirckiE$^(hSq@BGgGo@qL-3f1RGvN2Js9M#
zQ|I$$0BUj4q|56?HPp9bSueq<p;YUi`$;X*!tapwf3sN3j1*8WQb+Ja{wXD>?I85@
zh<Lo#-RKEg8(1wOp|=(JRT6ub>19|=9Uw(jEU+3*^hzL^3z9nW5lFD{$ZAV=M@F%(
zJr{vqd`OI(<+nl!8Aj!tX#aMyYJL=&=tgK11fd`<me=*DwA~a1gB>nBWQVK;-$qcG
z#zmvAD%}{BuH*<0l2r-OkZr`V8nR#&eAI<k&n3{grkdCZT6|ogQP5zH=n)-UqW_fX
zqN*D;Azoc=>Xk0}!i~8hRWmO**hG~1sAonY-e+0Hc-MN${aI2g@jQQvTNJ!BNq;+u
zM&Hr1%JW`HlCzu@0BtoJ2DcvPu=POM_&eGOc5KtEr?7sJr;bCW$w~EvrVZcLE>r-z
z{jSeEWoAe-4zaJ9D%$J!mR;3p5<4!A%gjw?nKUF4-U8Y6xAM$RBGeI?LNzIasW_;>
z2rzUM{*r{=%HI?ZRO5T=RlrGh6w(N!1e3<#HK!qA<km{_dXpjK9XK}~wD>Ku3d~E8
zTJ-<2Ya90o*|O&c$IKr(xngcJmNF}=op7NZ*DM{Gh;3lP)~Th$r^1)v5*^piS4j$=
zBv01;gi1J$-Cl&01S0CF*72a!h<(8`uN1pR`1JkjogtIPz{D)?Qc){S?^&qLeIe#7
zKx!<{N0_RTJukx|p{s<-0tgdm!?)kc%zL5&jX#kH#66anjNQsdQO`FH9!C=UOF-`-
zrnD-h??m<5f03_dSWOrH!5G|>6b2bo=<G!g5rn2ve&xp?_xP63IcZc<YOAJVN3iX)
z$Z)tJ7YZf*9VYH?zv$F4NL$Sq20_r{vvelE8!wxQcg%Hxt&psu^enU}i~%AB11~Y^
zc8Inj5%T<~i+MqqAoCB|B)f|=O(eP;w~h?(?e6HK)xn>7iVs=u<M|j527tTAwp4ns
zqVXtTrMOL7>%TBRiu@feeG|6?&S4nLclWF5U%wpz^<V3wBeTyWEjAXk)};RC+frsh
zngNn5Qvrg2WBC006CjSb9TtUx0k0t}Otc$ydx^;Ef-(*<?^F@+p+WpeGku4HK#W*n
z(m-;O|B`2MNi`z8!G4@YUW@KrgXyi9UgEOu?54mXv3QDz%MZPaXpMkP_<&Rnp>GLo
zc0NG78BPu*z0nwbB%NsrUvv?~ItbA%&M%tG&td6ta{o-H`$KbBB7~TXe$7cr&n}{Y
zGr%V&jU5En)yo1_zk0uQ4h1<-7GYs3i+ZJ<N_`4IEZd@z^2ey2(==Z|6jWzYPWX3}
z<l#tYP(UZ()2PIm!}e{*<~=yZquaK{=XR964;u+Jz4HCCheeVttr+*yhArMCU$%0L
zb@Q!yBWTUl81v3ptvO-5{B@=xDS#r-2bJ8pg@=IwCjnPHah|QRs=7J$0AG{&_OZ`V
zk~13kHnQ?bnm&sY^J7n7IN1fh3zBduJ|dc5`?8`irbq@E3_L@j6r!g`qB_60T`$QK
z4Dj)sV!lFo%4t-JzW;tp$0r~LV;!y&yA3!vddhs@9+VIzh)tCKK6elA8SpzucFpt3
zdTSfq<-I1eT~`1Q&%*T}kH`_QZ%QpW&m(NQP9_gA%fGUk+YjLxQt9#emPAxuq@&rJ
zM(PKU2j@auezH9LT$^TTt6vWw(N2hXoEj5Ex^`&b5u|gRM}Vuw65{ST^$!-URXLoQ
zr>m^vB0C3MMXrYA3i8#KbGC}Fuh?AA^L7MnvZW6SGV1^t|9wX3s^yW$eq!2Iu(US;
z;MKEr)bWKKphPu)3tH=KS5tUFE8&tS?x3Ba)p$|o%x1+WDFanhJtR_w<7_>&w1ni7
zFT354ueh3T82sH0v^8M|_|@;}GmXO!dX{z!Ug83G{x4jH=A_GBzKZsi%6Z~@`=qUX
z=5JCxLZ-)<A2N;9=Az2&l8!(Igo>9LehWa6xcyFZ{p;7$WRAa0NiT_+Q_gd?=$<M^
zs1?L%XhRfJysvK%P5pTlY8@pWO`rQHCLln%^VnvY48J_m95~LUuIhZ7*L)9dq3Z{m
zXB2$6&G79{_b}!c;c2jFV%i`e0rZ!6udV*|{r<?TUf(r@Flf}VzLX}4Ti=3Y)8%AX
zxJx2XIaVrb=YI5GQHiiUJh&}2)Qqiw*V}l6RR-cU)-sBwZZ;a-V(7Qco`)*Tk|I!S
zRh!G2@bO_z`I@@aMPv}wK%`<X%+8$<8zfeHVZw_yG}m0BkklmBk*CDLt8yNsV6mTS
zqh?_oZadqZOwlX-fVOIST^3-}qoOuIA}Twq=->cfofJbMc1;=s>Oze5ynYTJ<S&_s
zkZ%2wKqum2Gsx_b2M~S4|Bgp5yX;4Ya1Rtge07{PI+SR}nda;S5JxF^Q3;iQyG_?W
zc186`&T$FDFt0RhdIw8%XQPrOo5V-9-^_UBncE@2X_&}zgI4tV8{(PqTka$OjpVQl
zmw!k6Q&o4z8|o;=AkHJN4=+#g_K21x=a)dHy=qeJSM1nSL*^-ZQCPh}P!E}(-aeVy
zGpV0xAR>qpF~sWhldKBltTt52l;)$ldLs7M1<Wqx0Q6Onor5;K8D=b)rka{&1HUtx
zbT0$EC<UPn`k1!Z;W24(<C}BUN>v%C&(6FTW`r2cDufR_>K4eo>rfN*q#WY|v>;bP
zQ`}|C7I^H-gDOx0iZzZ}ihA89rDg#*s<tVO0JH%gJ6(6;lwK*5hcdMn&DN5N%x=wJ
zOFlDkz7iWb-t1r`{6^%f5}HN}UpR0qqZ8vMEIn>1BPzxZk}P3r^%mK!X^a;^Pcq(C
zPS>7z3-gZoix&z+bS08S`F?7U-005E6d!>1i<^YJ)>DwJM17PM|B435?CEEO1)wi<
z#ERmFqX8lGa^Q}Oryiz20MVYf5Ce8(0z>m~!LSV~C|p1KiF|AFpzIP)RAm86``esn
zw3W%|95{?C>c6(T6p{*Z!G^hC-i%K4b;IfqC121*=%?PE@8s%AZ-`>f<4Je)ins-s
zdm?~bF)?sW6%V4EX(n>h*433Pxa`tZy7%K~YO;5MR=)%N92pPz*qrgBnV1sZYAodv
zB)~c)>$s?69X*Oej<)E^8J>0>I=k>!_^Mg$;-=HW_=PZBjGv0y#e4s2Wcw<+)g59_
zq=Wv_Qph!R#v}Iq4Q_CI5sD~6pWpeoI`YJh+nQRU8sRl%OXSOFbA?ZmBYbB9)})0}
z&Ng4nWhE8pu8Bj67*}nQRmz3ssW@!BVp|NMy+VXGL*QJp&}vBxE%?PH0jBzN#`(y^
zRf=GIMPZ{I-DX4{>OUEQ;T}zL-AH`O00dr#B_iz#hg&dVg>Yj*1s`5T<1mdzKqiYd
zq!nlW{X^absPEJzcWn1jn>d$hF7y#^8eWR~#8XNGM|Nt+$^Y7puZ@+*yC^{L=?R}F
z+H7(;<^>IBz^QQ^a#LgW(Y9#O$lM>Y^QEwEQoTVL%y1(OjFue)GkN<Ch)9!?g<Kks
z63;}_v*<O3snJL_{9Q3orN&a}6AQxu81Rt$DlLIql+B4$cCe=U&ZRT!s>Rv}F%#F1
z`=pMil%}KJuiG-HdNB1(ouDsNQ&paPt)?X92a!kc)G7#R1+rh8#0CO_L4v&QNY$+;
zgz#iK=S_&hawJ@UX{y$9=u_(%@=&`=)C4Qf+9psT)`&deso!~LOtQ*^gxEe@1f7u&
zAwGh_8-=TU?I=U20*4J&@+q9_&HH(AE<z1w2;rzFfGxVb%w}<=&-iq{_>D@3`pD3z
z<~06i4u-++lYybk-ZHQ%9UmyvFzN~PSOAtBM_uhoXPf}GW=1%m1X&@H_b0r5zH#)?
zYt#JkRx$B$k(>*AQjU%Lz2&~W00K!y$H>rBH_EJ=@;5JrQo4e1_Vd1!T)&DhAj#kO
zx+VHeN%Kbj>uygQAg8D1;NZz^5y5Ary^>Qf>jQZL!1a;-8w+e2P+9RtF9qIY&6!L=
z6#W9I&leGlsC5o0NJ;$5gF;uB!5K&MSf+87TIuW@qIJ#f9_(y4p57>zo~<1=V3PJu
zB1g5J7I#D$9JOCdN)<9KDt-k8k8H5KoB%tqi|cS?8>gBc8cUwos+i`&ajpP!qU>qp
zy{UV`xsd!S(`y}qAA+hNBH}!T^M0m7-rW0$@W749Cj=~Ad<Bs_&q?{4txMgJW%jp>
zPf-FhkvMeEtpr&UCdbB^URq*A5Tb$PJwnW|!(cx^l)QhO7Qk(nRH6%gbzonfOy=c&
za-sZHs4Nc(2Sh(_<>PdghoYDhU*@zhaXXN7%{H3OpI+ZEqC5^A?49FZI{zmEU>$m0
z6SF;+V?P@$;cENGy+x^!1($;@7kFNau7w8XYlc>Lnp`v-k%3oWn^J`D5??7oF)JPw
zs|J2>dJ20~Ihv8!7P7Ix6!aLHS5K(1LShhQbkD$yT0-|xLVsG}X4{U-UT2AQ2_!of
zRH8mdIg)@blKvz}RRf$??5aD5AalaSe~Xgm{cr;U#JJ?8+O0sJ61Z)Tcx~Fs#K665
zISq}%4?HjUJp;aJDV4HKk3k!{f-lKA>ar>`wY+;o|DO_XPEsLpT=-_C1<lkiQK9^g
zOeH<z*2-&l9THC>B(v}j(8d_6&lrdNt6<B9(eJ(q{`IbP1a$Gh-VBscb{XA74Ib~9
zZOGsFFJ2gm(J>p)WIEZdPPD^<-BNjHbflyqf9~Y)-=!|q(ye-u`rk%_G%0S;0WEvr
z)7gb>T%(&p5qXkmf8)9p^$QTUIfp#3J9B&3){On-{{*~@e_Ne*IOh}be7?c<Dkg;I
zi-v%=2=x8v@|T%!xq{%<NASF^z!1w&6Vpg!m@eeR|4&ZtUpPC2d9nWt+T_|)R6O2!
zDKJ~8CDMb#+|^N`TSKMtYSW(ba29%hDb)lEx##A}$raO^+au6rn`aQth>B^Lr)o3_
zcdvOLC5%-=dZ(17-NnW#>GYS%uHknq<6wNOyYziHrEy1BV^%TnID(m_FiJl~&csH#
zrV{=5<3G<eh?!L^FEq&N7>^{aO>a!l<{Npbm5!f)s2~za^nVQ>!0pyQI^m>8@My;>
zZ&STq9;0qo_QfAO>fxbh_0x1=jh(_Uh9O^_>4m(rM1-8!3@Mhd)}{Yw=>n@Oo$C7r
zJ^=Is@zbyg-1&c3cR~?e=^Q}b7n2Rj#|am!lq*3tK**lEu9D{^{Iz3bUgmpNu5=w4
z&8ut~wfAUjr<<Aaj`yK1TPV3$vI?m4pwpv`cf!^cy4ic*YiAl;5#hb}x)(U~+OvnB
z5)3G0>cR@qLh^*qKV9lS!AMGDpMSz&58vOpF;bmq#Qi|b=emZ@XfLe#Mhl7m`lI4-
zqO&k00kBZoA<Tu=0*dIJaSC2q5;yxF49px1DP|MKBtWlUGsP<1iOjqhvy)oF^GLEJ
zIegXR!HjySNQnKsC^8(kGX<M2^a?pcYb~k;at)iz1mpQLeL?ly*h3=0D>@m1=qY<s
z<aUEdQNoEhpbO<#NCy~8EYZ~pfR*>WQY&RV$^Z}5gn7BgxWRG{<u`DZZH%2$b1q!4
ztz$cH%oW?VZQIF;S8Ut1ZQHhO+cwX4x6j4C*uP*@b<djB)fkWCyzZ{%-H7{l-*jrr
zoQ5?-ca#lzV8O_xi2&QS_x<D=<i@Eh!RojT;SKFI8NUz;kSF~CA4xuP8-BGBl{Q4s
zcv1j42=SoEURojWBg74rgv~BF(4)Bvt8<2XYq!znvYm9th8F)oADcc}4um<yRoWcH
zb0+Gc@@ZEcf5}VViBlOm1wZ3tYh|%m+;5cQL(EZRF?@u@-_||2K@}uDNE#h;u|7KE
zsevyIgjX6jgCf)CcV8vc^k^$4RcuU}M61g(+N}HQH|RcvUZH=1<C??pE(IVD00Z(2
zk79`I6-SAs#9>)X*87Nz>>J3R_(qS4e>xZKWY#g{0hs-N$S(=qGT=LR)vkZ6ILjHO
zj9hYFg$tE++WO%`Rdqq1e^dmMpvR_P#QYJ0*?H|$lrRCdfLoAWd4wk0B+-?x%}x?-
zoLldg8XRQ}kP}RZI0hUjR>4CS>jilN(O||J^P&8J0r^I4t~wjR>v!YJ`kuKr;+jk8
zy&7Tv(Z$b7eSQl_OE~sU)d<=yvk}uV5`lVvmWax?AuW3x>|CCj8`}D8`sfYi+mzh9
zMIBC~zk^xQkKMM*9I4Q14+Q$Sc^7MbaeFo%Ze*cyeK`G&r-^!Z{l)zBD|257h6S4Y
zP9#EQakgoPDODHjR*7;MRy64f-pt_Wob6Y{WQ*U^O(;Zam}X=67&Wh)9Uwb=g>BY9
zL9eP<ZsmF^^v{IcnnHG35+-s1fL4x(@P0cSPw72|+94njjcEq3;mmG`1kqt}6mOvX
zAX7^ymSoXCcmw9_tX<n0mDNz8Qis-YhZ~`N9!JjNkYvL_81goqD3ZmcfcA+aB1qL3
z#+g^A)Zh6X%1Ych|NE$Mg6mH)amUQ&pN|0?B!V=07XVvo(RIk(Lnp<A<_Xk!l_n+H
znBB|nPFi|Qwd4!gp0x#gzZGsjKxk8f_;1(+$_2igv}r8@s?b4*rWm)$$lCLbi83tO
zgG&#wO7!Agh&xwP(DbdM%jA9$7(FD##5UXzje@Kz5nEPWr`LS&-Uz-H(p_n44Bw%U
zIpa-HW>}qgC|f{q&99KIokOC|3&4><x*#>Fv78K2_|;7MuT<bcUMU1Lfe8Ndfy0vo
zo;OCXr7F`&<=Gj1s7V-o;1OLYS?e*xDT)PZU|YgHo;sb5l-TAJTpc2@I0tB{dfY6o
zCJ1f|VRm{spPG~GNr}L>tyw!FUAx-@9yG<@0vw)W&5nz6>Gyu75<s>o)Be;Bihw9+
zlv{c3pFK1q1hYO`?ZN@_87ZX)$%k}pHg~fPFpQ1j?-bpl@4;Jw#C&)?S(&)I=`;}w
zfod78{U+B5)oKb)&}2C0&xK?XY|SY}^q+VyeA*`Xcb|4Vznnk6tv4LF95fNm9du$J
zY#<GQFEkCf|LL`l6xR-N;uWh7eY|6s{pJ!CK786W_*vHeLWI>@rP^nYTb;}g0#(_y
zSxT<1mZekGuMGw}9A0(5s0pg2a3l&k-hZncAiyk0g2FwJ8U}9MO{B~&28H?BB(0Aa
zrV88tnyM3HqSPx*px<6z6&?Hiuh8v9%NQijSr2nguCh4kc)JWI?qDt=-vIMv`0}t_
z4HXd0ujA<l5RCK}dp=mkDbu22-14fhlQQC|&YOD1RnoF@acZFtrdNsVqM|}$!-vES
zdtPVv{zdqWBaDgm<MW~2oITX|Ol&PH;Ta23Y!;(Tm1`WfWNtP4sKUsMY<p^PUuJ`B
zWfR*fyld?-$fIM9dDTthSEL9gWfcu(D9v9j6%e!9oZ8Zx>dZxe!V|!M#?|fB2G*3d
z*~E6eCu?-@yn46DBjh)4Utx!U*+RwXYTg6dl*qJ$Km3xf?Fjr4cwpy^=zp0h3@vv9
z`QF7QYwQP~z@#zL>^+p3-86HD@!@iN%`>Bs;13nC&}!;4E4`;Oc+6`3`=5>f)WW?V
z+G??9X#24URpZG|LaHTt_r}a&Y+1ovbIin>_$5XV7P&ruK2Rb)O3MbTvGZ&uqZ;Vj
zNNNB#%NS39dj-Spme1lm6e$HcLl071*5<mvh;hn4N~VJJ-!#$ddVXb!$0M`~lvrn0
zI*!nz&TGdavci4<!X&o68|U>VjEP;wANT**pmgN>k%^_yfiU!>&DxJ<NG>eL?PzKA
zY0#ob)#3tJYE=+!KoL#Kjp5eviFe|q|D1X%GjepywXLemvAd+Y5=O|qt)jC-q6|BJ
z*b3Dj&zkUShg*;j@C7qo%$b<{qKS_u7A|Dg&l5{Y`_?JL6a<Hir3$0#|G5yD+H|~;
zE_Y3Un}KKN`Pe=q7g3P0x$FvN4}RH}BI1Q?Wd?M*uG`e{5iP;dCHu`sFQL{se<UE%
zj(fh%;1D8jN+M=ACe`&qgrKQX!MN#KRenc3TjG$%bAV?;Q^og$nrSEOhkJJUqUP%K
zWXNhOus$wJPkzE<t=#vbi^MfWqUZ;V|IrQMdMHyZ6GM<FZrT|}oCd1^7+ktt6G)7B
z@U+;GvZW?&Of5)n6gy;<KLUX#z~EcW(ObH;LRR^SZ6&XP%dx>snX!7Mca_9FoOwS`
z`1j-rqT<1w%9%QmOzy928ia3%`^wpn>#Ois>_dXKMt*ut6naj%Ti^HdwVDplriL`P
z6a^Qd&fdDac7z8xLQ#5|EAPbUd-A@I^;@3zR8^G=!gCyMFnkoS1HD@^W}J&oT#Rkc
zV0Z0`P6k6{4<UsHZ>ibTMT}%9(ywj@S?~u)wlv3)zXfblk-NY*9e&e{ciQ46J>gSA
z@#=GT6sz0*B?Vi`9zkFC@S;b01G#F|FnkOuW=WEp=DD06#9!q3bG*7+{-FZg!Kn_>
zpGDy+T6StjjyPip5{<m3B^3gn#1)~XKu^eJ%ZY$eY>r;p{{>RZiQ1m(z}4%lz%$;k
z1|g&&)`8HV*5b>;dd&w4{UjtJfWyaOlLiBv9o~&`VKzp^$UEcE`}SoPDU_M%6m<M8
z7CrEoMEyivc7jDZFXD4D<F&0$7)_pkqEFB=yu0{PLCDRf?tktZRdC!lpgAM7=Vlo$
z;(XwhNueW^3O|*qx*6pM<3%oOQw3LA0m8%>uBo9a%RBN<`&pr2yZl4IjBFNTczh)6
zWX8j%HyjzYK7M4xd&MAGSle%;)w&ar7Q6k$psnFJqJG;Q3TXLz6iFf$1)g9%x7f8I
zo>jDYse^c&C`N?AUh#%G!0e&x1)`2g=CeIINaMrO`3KHXuxiUSko@0k-p(4YD|x>|
zkz1WYK;L;&&(>qXpkUUl(h`KX04Xllfw5K09ipKsx=pjhXtx~F+4`=}$+4t;RXxg~
z=>(bgS$yjm{b!y&RO#0tm9_oRQ7CPjWPgnUq*}p!7JUzz9;<G;c4gQ=9l4iZ+*Zpt
zkPq?DftocD9`dOZ5p?jCZU5L{64cEP<s1*qFagum7<)MP6{4)zpMkCF+Y}*wJc4BG
z=)04QEP_&Dto`zUOic;h<k72i^;L)GF!Jc6Pln@eCwFrIsPq;%nB~zw6IF?JLa5ei
zttz`5F&iO^(W)|DHbjw#OB2^4+#$NVO;*)C>g^wCr*vRVRsHZWR+6L88mFHH@Em<8
zilvXifOj6wl#SbdqfmLN*Df2g%sQLkbsQIHhyQ9%)+W2d1GV8<bX(MB?5!m+K2im8
z$YsJmLDu9PwRmHW8GIbgMoD9kGaeAC;5ZcODP^K6A~~49*fOnN$GfsJX_Y`3s9`9{
z1WLq}#2VWc3&!NBduuzeaeZ*>nOtc+xeYLlObPL6_PY!`bu$N0>ykkqePmZv&B;`i
z?lbd&M73sm>Y-mJ(Cs|C2X5zgvf5iSj!CBQshJn0H@%``yU6`sulm!sPBTz^;5~~S
z6?OI%&<|Bm@MatRy)Uzc(P&}`S~D9ts%ppc#cSN4V0@^GbS@tVC}*HOHM=1>N^d-<
z?JlSP;b_=lm`%XF$12A5z6D8r)(Rq0bt*@j4O{N5LPXF@P6u0xB`HJEI$Pkr;1|#6
zoBa^0x2grf9<RMT@HB97M)odTYFrSb>>&x0+!g7rIS9ZFrtsVy>L)kBdB~~!hN<5d
zQP!05xL#Yh=>BdInGo&pJbQ3*0^f@x99zn6H$(=G^y~eEkRVRa*h(CYIz3>AntMua
zY^Y)G@SlB6rl)Yo%4aRElBg7Q?N&(BV=0iW_`~=oh=HJK9U@H?98MB@m~H_V<LhgW
z<Q{sYz9UNwXz70t#`L!aG2rdnEf=5dNM}4+1=X45$HrNR;hdi)bD?wYw+_$;e<M!z
z%bIN^&Y4%y9V|0v0nzf=(xkaPyhK=+X#PU!!{6(L!3(I?fVK_Ti<Pzw)~cQOLHlps
z2PfsrCxe&Em}?h1!AqI`;M=w;H1=jG6Or}hSflu3XGZXUuf{Z6X{7y<m?Iw;-q*@8
zIC$(kiGo%DAG~n&fZ{XiOtP?lH0lgt{6_w_pS~EtAmib5hx<AJQ&;KEm>tumLN@eU
z9fYnOQY=Wn`Ea_%XC2zTX5-bf<9$b3xIG-86_YZbalwUtQ$Z-}iDhqypR_Fu)P2|*
zMy2N)w3D`F>eHiKf(069|IF~K(b9n+mcc1o567hJsY0?Acu_n<t&6C#Z;BcePoDjD
z_8ZS662q}(YW{{6^0l?OSchKAxcA{xgpNNuKY3{N&ML}Xg0g?^%mFs%rdTim%-@Iv
z#h}|HlU-UID;=-$3-Hg)h!)xrNgDM^9slE=y!6uf)XhtxsQ;!YwsrkqFM0)DS@L~s
z#XqF1oA9d@#ML-z*lGg3J%7@5BPeUEMneesI9nNR<zolMrOKkIC5vWlUJSajE`&ZM
z(;-2__;6D*l553rKQuJoPKeUK-NmyW?GB}f_N?N&r}(v=mzkU}n>?=DoDsfMmuzZr
zy|YtND~pc@z9`X)cOzm>+Do{~&q)kYPJnhF&BaQJqoe2(j#hI0jT2#>u)LYHFqdw&
zN&;*AEZBqlG{_@<*Ir8^m+3!1G9{9S@bwAAH(Z}_Kr4+6HzbU8#VngNPd6%L5vl@5
zKC0$RJlGn<xjMNfHjh=+yv!Tfq2wOV6QVtg&*xawbY`ARE+<n*`U1@4xE1^a?<(|u
z_}xX>%QMlN^YzFo*k7)3ffvr$o~LTwa&Ok&)Yw*e5E~g}{x0x-96lnf=C7QlU+1{v
zxxb8^;cgmo!ozBI-uMilGef6#Mzns^HiAF!<{`1(Ea-)Gi*)$MsaDp-$Xlb4{9zJ9
z=P*3?^$6#isso6ZFd9v|`#)ABhPp&)X2yRh)GIZtFL(C`;oOZ)kva+p07GJG(^^o4
zbTJPyo;tbIti)cZI*d833_T$>j%^ax{A|6&-Cv1mt)ziJJq#oSEl&0NG@u-hGZqdc
z!YuQmr?&Y`QSLHqj71^P^j~+smox7jEYb&CzO(ITv$7_vRSjh`C!2FE>p7edXs@7|
zj2$DCNDxF`c=}ha{kB3BETckVPkfWlEu>Us2^+fb@zHv{K&v*I9G9@1qqWo^rj1-A
z>7poqEx4v$)z0Jsr(W{f8>dWgY93v?mu<71uq-nJU!QYuD8JR<*@Z3z(@Kxn-m@2L
zLL|`OhJmzU&m(~LJrrk`lIdro^!zkjSyzGnoKT^ok@9(%;IJ|zVv;=w(gP=}&q1>_
zHW@)q=pHP^0>SMHcQdlgC@>hwe_583%E2Kyhtml7)YW1+<S<&iPLw@C^kQhvf(FCS
zwn_4N-H!bE8vRqcAl!GlO0K1(jZbQz(z!rk!JK0p43{fhPk()qT6Pg@#|&J`zR}8H
zbPY7~E`j13B}NljB8PI&jbXQ#p6L%rkn1NnWU0?4(~+V2Bc$}^Lp$TW@B!lpq7w&4
zh}unmP!nAfOiw~^#@XpHK{2Jgf6<7g2*cU+(+XJ=0iBv<Gx|>QVPy#`WrA)uDFH@P
z{ywISduJ2Ni^fr0)HOmklx${Kp!p`l^KfjLsjnd}fFM0x;HW{$Lfne$ofCk)Ugstq
zRo4|0_~B?^pzbX@6+mS5MRe=}?qp`ZGYE<--{sh8(v<rdTEPVoGY<@RYuQPv!$xQB
znK|xrcYj~Umf%0-gp}%HZIK)Hr}`4225H^lZqE>iG<`1@{@ue=no@L2K}UxG@HQQ{
z;6_-(dh~%OI&DDt`UNk{O0Z(~u*ZvJsv`bzdoqFh#f5RT=b9t6n{BUqexZ4H{=1tN
zFEt;HQ`}BQBXf)N$`^rSOeZ1EO*kZDiSS$_{BXZ|TaUeHGVsMeo1CEmHq{Bc2-dP0
zK%Ht*2|@TP)dY!EHNElVyoxcRb`mtKrltpUFve=LWo#)sr9mnl2LFwr=hW&keWkz8
zGP<9OC7*HEBGm?EbT5Jz*j9p9b_oajaHe;WVictTg*1=K_7U$}E1-RPgYrs0JC^c!
zQ_3ojR?vp@ieHzX-*gH{Pb+*Zo4UOJLTz*RB9%(#9~wYkx0y5k&c6)kERB6Ukw++$
zZ^AM|FF8RpL6vHSeWM-GrK|3zc2b^8AS0R;39<^|ck23?o{GaKzq!FfWY4jn_^1=p
z|78$`W)69{)k%*H0ZS^}J&K;8U1A&IKsvc2o}QDRpGd`x!bTNi0R=JJToDb;B`@Ob
z6u{`uBpn=%3Nn)genr*3NqD0F&-VHO6YJ4z&j)-)0~4Aey&x2y=B5STI#!9Yb;K1&
zR5Cq5;(-$dmC)#xn=5|{q3x^;jaOpXwCt7+T7@qz4aa;|p%#$&d$}mQOl`dOo4y5M
zM5`Ph3mrQ73aikdL#UElaeQR^>VbGR`rnjG=f4><X2WmFTS)e;TrV3BYHYl5;_R^d
z2C{&tk^V}W?!!B5D|L;|7t&y>xi?Mcv-gLYH2j$}hQUW1@bexGT0Eb3&V%Up>~+D3
zt()3Vunp?Z4u$pefY%h7|CtjFWTb``QP<dWR(h;y?eq}UuranEO?iw!i)kaaajnP0
z_d?Snl$9k@+KUXB5Lrlh{icDzB7+0!P<~`BMYva-7h#-g%0Phf+xVDiv4@A2s0pJl
z@-~djwN^e90~nBLfV0fMJnS~N#&cjB_TOcEeDwNMTlwZE2b?b$@E*gvr96d8pl2{_
z0SiYR3JcBY)u7HGt%&<7sv-q=eCz9WWV?;9H~6X1iQN14g}2-x5iFfGwWML`0nH3>
zvDQsh8Pj^jP!i2J(6a1*3sXc9JKd)k5(rf}&83sWs_Q`-J8Qdn3&VmMXxXWvcxOVe
zLSdG9XKDc*_AwL737bgJ=Ne=nJ}qUJDZboW7Gk%r^EO$7zD$sE>Vv6M)!e9T5(GGu
zd-7y;npY{h2=GA@5+br9{<wc)=X(#cRN5NBKj+5Xd;QR}9zP&@@xii>Iu@6tl4);>
zHufXLd(Y1?{7|x*vb94*4wYtqG=co{m1v@n(saG>+1YzV9Mb&O*N2_WTdi*-wG|bH
z5&8~)8K>bj-?laTKVWt?sNiOoHXzK$u5Ha?Kc6@!dgB}tGRxRESwqZ?iqS}n%BG84
zsaH;Mveg5^VDk6iLVUf%)-D53Y`KX`o{M7U+a0v9Y0%<+peSLN-NCMOo5N8-F>Uw#
zK}u?&MyVt?t7Zp{IlGgJN^Bq+8|h2U;y;I1jcu;vWpC9ls`N_hU*qo~rFYOWPCbU^
z$x7N@p&o;~JOD&vZt1?H>bKGdjjN}oepC9ck&WA1Sa+GpozqGrVX~1}Sk2SW0od~o
zPMf00I&%(%JHfs7e~J)UaYB62C;ss*f$~=EdpQ<%QE}kyE9_eHYxHaBWXp@I*%hUI
z*ZC*FTBc6Ab~0f+igMpj>!ferd{hArWZFV#_g<}#EQp4ReJhEJXusWnB*DS_UO3Pv
z`}A6NPvubN8yYB~nQ7l!(|LNQXU>{4kT~jF&ohokxd?^PD6Y1?$x<47BeGI+G#3pT
zYltokcH0mByMN0?0?MheYD_m-|2Wqn+4M0Y0n^IbWcngrG3~j`o}vaArPlEXl*W9w
z@dtEaNQkHn!<a9d{)qmz(be@{6k;^R%2%YmF=39Q2Ul|Zx?Ln~Y)z08uh7ld#F4nw
z<L4I<xRl-@Qki^S6pFk8qNL+ee$@H~R498&ld@wr|8(vA){Xtb<@%0RPsNaEX4ce{
zaDiq@c?|A&9I0~ModH~Vj=;K-=f^m40($o{-psu5=<5eYb4tKHsD+}sx-I)7Ax02%
z5XNP{a%u`E(?Z2~5)_!y-)hP<i&^Q(A*FsbRTM(1>uVvVgHxa|w<1YLu)t_Qrac-z
zOl^Ln@aN;W%S|s#$Oe}2i5Uldhg;#t?sj&3+E&<V;b)zl07ttw`iYU95e~X}_DABE
zM@sRFb*N?Y2CkkbpNH84?*acn9+nFcBGSS5iL9OqK<Cd%gj8_p-nM=YET_yHoM0GX
z14oZRDua%2YWKZo0VK9W^ZQjr<Oc6z3JlelDFVjS*_T~J0%0Z<4BWX$F2xV!&4xi~
zgwu7={Uq_UGxOX4g{hnx`nf+$O$&Fr{pL>&<Wp8ei5O{y7XVhf+k~elRZfk1<IeaH
z^~R2|wZSMEwQ^sWn}x$`Wh7soysuAXKa@pj!r;e*O;c8VJDS+r%2;U=M{<>l@u33)
z2SxSlj3jOXnVQ71AyAApQ!TfDQd8Kd^x`FD;L0axREb9OQYXWEi4{&2@mZ5<ONR$h
ze}~s>EuWe8I|&cbT1h%sRY4U7t!mB6{okdTmYk8ZGyEY<^hg{qySg4TR5D6GiiPpI
znR!H_$vJZ8it01zpi^kRs!&hAVhR)TX!Ri&aJ!`oqQmf)tNj@wN9D-imvqxsU0?D}
zpp-=>&?Rhif>xbf&pdVOp%l_jtqF_g0R_My3Ae1VFTzxi=4RFU59YJ7qqBG*Ro7Km
zi7;iT(TEC+4J)xqfzfW<0mqi9)@G`^G9p9k=4mj~SK>i6d`>rZLE4YO5uEl?roQg!
z-67IyhBfeMG73<t?=kwffO%T<28pJfR`&z632J)ZZ2e~nEHs42hfEQMzo{h4;x>d@
zmCi4;<-A@>0%a|ZNgWbEVFgIXU8dr|JZLeDQ0pcdJ_u~H{VP69R{NwSE=Zsb08#2L
z&af-Pe=~>Mo3hoYTYBRiEe`3rCh@v)=?-6nZxdR_>E4Nr*50>cznhNI+QW-_*92<W
z#Gz`PBF<4glL>7?;>NQ6=ChYaLcLABO^QUNqLdNG0>~1J;j_Okp>FI5Xt7Coks#wL
z8a_;>WuC+5iMsOt>~)b3NptQXm>8`*crfkigF$8IC@0*ZB#i>_@blDo)ZK4AZ7UQ&
zwKra)(8Ee{sMkKv*A@XHqQ4&IU9T!ASS3cR<=r08EUg1iq{lb4|2{U&XrWc6|3ZIF
zGih?4k93Z-`?DK~n7QtF0`?)+s@wi{J(%v;QXl`30T;G2>wQ%%Y5IlNnCzVYN*xfw
z5uMacn%A|;rZT!;B)%p(gcEbez`56PE^3|!%YLNOChEGMN5yOENfap#jo)EfV3`=w
zIp>WUDRYOZT`WbYjE<>8(+JGS%~VWy4W#3yPENdC{13<#QoVADE%0&hU&E~5`G8GB
ze6Ggu`7s9to+ww>_0RE9YGhmqY6IKd3uT<iAG-R30@~)ItT~jGO{HAj=s9&G7}jug
z_iC5@#A3?YOjOdi&+3NzO+tShvqHBZ<6zx+OS7rN_dhXr6zkMUAdZsTVta9;7hV$$
zwGIA{heQ=}+PomidU8Lel|}+W%>BFC4Ec=<HOghFVY_4G?8QU(=Wt^{^3~7OJo@FW
z{?<^mq>c=-jQg-0JDR97$@)M965t4d@^9m3HAlwgj3pjc!uhylgygoEoSvw>c5afi
znhQQq3ptBSCTjkcWk(Y!z=Au9cRTcHWMRyKf|fC>aOO9gWK&Q&=PRE+D6tw=PAHu-
zW9qOguxIaZ+)}Lvox^_Ab*Vw}-1fw;9Wknf5oF<o4ldMzBksY_5W}t4;X72SOZnCD
zT}k{%WUy8`O@6Nj@d~Itz3JlcAa+{VQ%-KU!&Y5Sw!%p4;t+idmmpt<Jm)1W8<Arq
z!!_%;9|sdbuZ$y%EbH?=oHx5J>?x1lS$mRv|0|x9<Nt;yW&R%=sjWKbd6gztCXK_g
zC&*24k(qyLZ<|=|d2!O83{mOL=8n@E$56X+pBe0XG%+UTGs<7~a^pG(Y6b<|2US8*
z<C`UTY!u6L^qqffGE%HGahS;qE>>j@0p)18hBcojKFgI)yt~uy#lnHjfQ7}yU~F(E
zXvH&rvLyjm7~uO=cBZu%jU~v`K&>vX>V0yo9r%sHxYCPu2t%RSGua1<%9x7Ee7EAk
zynmkajFY02-1pu|6%GM<^61By+F7MEwL)H`M>wEN2k|3y_S;vchzxbl8Q;%&H>l;k
z%-Jm3Bdph?$M+aG$x`4r@xvZII&ag-L8)f5OfIdKA`d*2#9oJX3tSr;&R)kYP`yF@
zHd9<6ks%VTBCt<a=p7!GaPWt}LHqw}tU3QLv1aD@pHMSWO2%QwPTCzkc}Ab*>wxEe
zf0t#5;=Zl-SDr@@Bf*iz7raEs{cl=~4F4xBR@VO!L$9k=Q_Q}9l!x2|+c-C)uM9&~
zp7L2TqvNb#S=@CPF2ou+?$QO$m8_Sqa^A5T+Abjnjwh*G;BXee?}&h*a9bpw=+0?V
zE8l)UJ-6L0RBXA&ejA=ob$w&TGKF~nV;W|eOE|094x}ciMQER~{F5|0h1s8|3!py1
z>n|!ohZ+|vg|&5R<^h|$K7}U!G^^<&ou2r@>4^bUZ?sJ76|?aeh{QN`ntGwX_P29Q
zf31X&Hae@^wB#CQW41`kTMB9TMy^3$dmoBk_st{oRg#Z~iKKxTLuCpEeu<$pP92$b
zjdZGO`i)J**N#p$WP=MCTCNOWNFNN03Kh$gjN<oF6tOPmW=dl;Ah99e3K0nHf!P|Z
z%E`Z8&9Qo%a^x<O*fRCkcR=&mQ)IOo`PUiiZTD=j#X*J6+>q>qBT~Pb57TIKY^gO@
z;Xf_y@xOak?kfv+o4q#OF3gPiPXDg{ubE=}zhsJ$fsNyT0Ktr$Y;6DEGZ`^ZP|03D
z>g?)bMyF)Lb2VHWv%4m{Ti_pZJhGe<9>`@kCmjMC*wE7sMltIv_oXZATHVy!5&lQ~
zV=5Fq%<Apg2}E$w$TJV90q2QM2g1T4v$7I6h#oYjF*q5|743jvcQ*yV8VV=NaV~bx
zDM?hI%z73^(mCtz!Ar@V>vhfjd789X4{ABTsr!O>?uAY|E(0I{KZw}s7wYsaNKxn%
zebLWkw(Q2Td9s+}U-V!k2!ty!T-M>ec>s&HF&2JFrd+h46r<CAP+?BzPtVzx6H^O^
z$meW>fiI*@3D?#w?Tzr;ffxK^L0HNU!+{P2K%<;>B)t(%9nftG!K-DcZ@aA;fjHQ`
zcjwZMLz+@}jg8~4hwxI>1#;1gWEwm;How^5dE_o7n>h1pJ{FUJ+A1i>cOeFz7fjXN
zxVX@KcmKxAg|aNBSn`D7k8PlEK0%2;7_jSE-<(;Y)$(DVWA52EY#ZWnJf@KgmZe{&
z{Mc1CdM(}c&T+p{77_Hm!ydpSFUvos%5Qx&8QniM^;KLA@SpC(M4r1`5XKj$WJac(
zD-N>HwnIHlzpa&@R&$5)?A2fP5}ISl3ch6h*@v85bn}6k>5SK_AW;_#nCYjL(kteo
zc^Q9gBUKD=I|TotB>Jl$rPNN!e+&sNy>$B*;4_}}nnX{>;U&5`@>q;TE=Xzzj-q*o
zMZX@WF)JV}RB3BLZiOmTMd7Q7Ta3wBwvAEd(8lc#UA19cF${g^s`+r;m&8_QAJA1$
zjXYAA_>PoHqS%X<h|J=0TkBxBIg!waD`?%tIR8dm)Qq7K;hMq8-sHPy?TcE%FfJS~
zyQ=Dp-j{QRX)kP}eqn=(ka6;RcpF028ik$vq_#sCnFc6<B!kO8A?zMJe=_8c&Un&8
zT;4tf5GuQQPlTUg!kw@Fj<7XSCBIVDq*}Vsm4{t}OT0%5Ma=x*jej;%e*ELbtjL5u
zx5GY>X$LbDef45AaiqidPVj=6<S%}CQ+CQ|W_uB-rbYN9VZ6oZ-LgKm2LQc@{)!RK
z3<H;*t-TFR%CHwqg)8H`g;K@wr>OXb!q!MEAny%EVmj*cQF4XDRRx2JS{Tz55)`*}
zF32gHb!emiapI9JH?XAg!}g3WFUVW9VEj3LUd=d2VU@1!G(MP?$@zSrjP|LQeV{Gt
zHYCAu#`i6RQTsmamd5dH!Mo*gp*N~k)AzMIp`t|hbuJ6|nGmW$ILodwn);nDrcG%A
zB7|!{`(`v>Pr(2fAYb!T%T)=XH+*$`HXdd?9X9Y{msFN8QyBayk&SpwQL;Rv?Q#S3
zD^e6S5p?|PX>C3}2+|f3cY0~*U$A9Tk+ip7bgjvPzz580(g<?&j#w!qw0vf_=K2t9
zG8i;P<-icV`#s!6<vE|gz*c?bXCMV>$0pyvasDi{CK0m_OlKKz|Kf@o4OU9ln#+^>
zR;Kk!Hmsh<O!GDr$bG!&L@cD&5GJ%}Fw4Hxk!scxcA4GBF!P{6!0PMc4F45ysK}=F
zanLi6=p{m2<TsIdF@+ZdC0Rmojx;8La?hymJQ<Ts;vuF?UbBmk)I}JT6YSeWiq8~-
z_lad(cu}Rd@VK{bPz*hfe<4BRl&ofI)a74u(bKyx5oc>BAj7a_&g}U+bSpc4UHRLF
zqH&0zw0p*Ws%WJ_*<z2|f%VOCQo%BE$U=?C^>y2xyjKc3Pj7gRp!=ovOgYD^c?QVF
zLC}YF+gddGwI||<AVg`99;b4+%5nKyfqbazzXo5lM}O|6I7Q+)R3+e$2ss9|bOypB
zO}XZ@!7@A|Kxd~nWC@-%9Of3bPww(G<s={gWA^sLT}C)gv<}1_LcTl$j>SvXlh)}f
zcP{eR>yEgm9O{UPu#wt=i*hu#ZRVxoHTV((=Up)bq*+pEj36=Z<0L$7`}H<1n~#HE
zq~VQ3Pf^9Ap}Zc9%t-&aoA}{G`V{4w#!<Cfx*eS63X{;2SSiaNJ7OL-&xu%`QcR~G
zScI2&(@T~~Q&Gn<E7iIBFEJf!T*uN8C@#<UPneG7fFd?;eYjj@)E0F4H)J*LOtpuU
zcPj^ZqWnAQKgw-h=`qS>EH-}&bb0pyOYnZg<JfNm?+As1Ce&ChS@+XLTFk$BBGQE1
z$aslXQWhbpl43aRME!8$xsnPX`#Ga;SqiZvXP#x{wK0=y&EQTgkjOALw!{P!dnV}c
zNAHz!z8R|rMF*$NOZIpHo1O|An1&K>=6*eN{~*`}3<7lIqTSgk0$tvvvUo}ZE4~*K
ze>?*0ITE%A=QHclPiWKUv59m9U&O2dv0X9_>_GZdQ1%i&tW1~uz-=C~HGzs8>bnXv
zn|=$m!nz|3X_PA(hOw@T`Cx~u<a!4{<_3Z7=_u8<Vrgbin7W<jYQ$84)>?wvM1f6B
zE+=9rT29HEwWB!8-4H2^CgYS(FA4kMd-vW6EGU<hS3W6`@#j;@=DeLDAoY3EtLRy=
zNJY(tbr~l;oF2opbbUFeYt{<8iFgkQcMFSZ7r7mW#;$+CyJ}C?y5+ew_bvswsuz-X
z|MV0a_$Aw1)N>jy9q3~CQ;!Gxk2-SjiHgF8HavS!K1)|9qRBHpRSqg9E@vJbtFkn0
zlj#mRzAAzC`=L@W@7K|&Uy;k2xTGt$t}T4(na>^~F$&jk1rvN3aIX^=D7~r+XMQvI
z+NmD8#k7$dLp>NW1qQ3NbuW&nf9gdZxsVWNtQ(T%biHsq3?aD~y}Oy$LUUc5hvNjM
z-Kly#E2UnIV_+C66obXnDmNa7KdV_6<exz0yfgJ$Es3B<s#KyHLS*kHujcxk4<$nN
zXBM~XK=BBn_CIvX!jFUuN6nZih+-W>tRnDn&Oi7MJ6UV1f*@$UAR$($bNumpB5g&t
z#q7|hoK7{pdp$1rgdlov<pj`MgNo7lz1}{Q3-H8zC1}>!g7KfE?k@5ZZ(7tRwz#sR
zKA=)6c@nttSw1gjFJD&{C3-~LZ2VqFJSU|nfn*|Ov~97itFET=x%A@SW7P%Pe_Nit
z;z5*djS^?L-C~;M-IWQYxjvY1yAmSa)OuBoq#*>%O2j>E<9h;IF~<9(ox3W`VD@c|
zIz`3+g;5w?$=tZ3c}7abvD=cDH@n3SB2~CR%WHh9ibk1IsjTq|(~KH~iMaTg*Wups
z5N6)+C<jvp!GVa&Q<+hRN2VEz7NOS6$)^^-l9=&qus5OL41bI{93331AGbqE$jGm&
zLF@nsPTf+}6?+guWqlK$5z}`dfVd(5AeJnhM;g8O-ty`*Y{*%#-(3>53yUNvbhCp`
z11-77u_M<%!jCz(&&$m4nap;l%+)5rWe%d{@UXg0ge3A|9b7%&IM8dkTcwTp1}oM;
zX#U5ks&J?hX&%E)4>Jt5>DkX(@kjOdvY6>qa3C|46T82&dkM(<^+}z^R9Tdxhm-=w
z_xSZ0xh(4jX`u`Q+#y>;y9N0_jZb5V$DixYn4nSd-fJm38sF=oupEuZsZ1wMV43>B
zv8`PH-4OD=X!EzP$}M~q+4%o;pk-`_ORSUjc=^+em%E9qdH4`7{?Fzu@E&<HRSF?=
zqzu7cis;atw@d$D2~kv8exm<YD{9x=+q3EPMXsgGa<AQh1yGBy(R0FF;Kpbu22DkN
zeSn#L>)q~Q)Nr9)dZmA6j75F!#!R>ThL6!Nmy!~fI)xPi$2<!dy}sIc!HS0QusCVC
zGpf+$v`N?$#Y`g?a-*`xBeL0&!@Eu2zNIT~wSU*bbEnq{%b57YD$b>)Q<3TJ{QUMh
zA@`Sclw>6V>hjRvC+GU$NXJeK4!dR8u>;7!UyF-=2l2D42<vyBGLvH|rN0L-><IOS
zcT;m;2yruO6nHZqdv$T0a~6d|qtmHnlD^RiWc;RD1)!)~;1*7)PU(7Xlx|JLl|eS5
z1YM&O=>^NsY~|P*vDXcraKh2uc)E=bxNRtch^LtgQwLmgAmH@F-Y{ELoTxB=<cIda
zF=7R`B}BH02_#tEp+?-=&qOe?9tguR#*;V~2GZPr8Odsz+4IU&$Yb^PZl0baNCf%}
z*?4aYSTa5JF~#;5WW}`&VyxP&dlHq0aMG1(hJ0AJZ6G(2ugx2rD|#yVzBt3g;zCBM
z;iHdU=)Y=c4JriTZ=?`T*Uelx_sE2r)ue%4TD5moLi5+z?*25^r_>2_u{2$iTGUma
zYt7a<;|jz0E148yX7A6MbO^TC<^Gs-A+TXff$jbTpt6i?L%HqN7(g&Az|O`~U-(6%
zmo?!1SW8#1pq-97_n8VIeA1`j<v;F!F~^iW=0>B)KkEfJWi`5~U_F`EzmsGwYFc8?
zaoY=<B+FnCc&UE&icqPVbpm>a1iZ&rR7Mo6`W><dihVt3tM~%8HIAZIwS>WtlMB5p
zhK+;G9cx<TjP<(jY1p3d!HCv)@$xW^N8zYlbZCda{xVe3xerp*n-hDtL%S<Ni3{;`
zX~&5D>3q{Ec}~&f0}VF?mCEvg)%HilbP?mYr}uJlbW=`s`#Z-H!urphwEYSZ%ZJcE
z#qnj7EgT{}6vrtAlhFB{76`F}5XuG}^eb7uS?cj63I01L;<nGlwAr9$rN%iCNZh?@
zvP)i$tU!g}R;>N@qgtwL0u!;h1-2=7jZ=|3fn>aRGa{`#)%<G9Flqfnswzr>A<VdG
zEhD{~xbjp9!0{l!J}~~*Xd?VXPUfJ6t&!;FO%-)}b5V_JukX-Z)b0I<{GzBpl!rY)
zo5o}yhEHp<^iiG!--WSb2^K{9S%0<yRUX-1cq_wuagFt_oO`QCcINOPTzKZ9=^HPT
zf()m4t8S4s3n{9mmD1Td0ZA4+jKyG7g5jHxIQm|j-`&e6g&OM&l-gfOt3qFab{7x}
z)W?#sA8)-G^q}{eA+9VVPYPN?IQl~?yJl0dL&B~GInx(8N{xYXr#vBbQ;C{&(=7yt
zYP@4tJ1YX=2J2+VTsNvU9Q{4G#>{{|xvYCubx%dL7Ayi8++gQ#e`kM7=%%P>ylvmY
z^x2D(VV>xb!_Rj#PC=2DUA`BF$Xn1$ToQh{G4bY>IerdIXy>6$?x?4PgLU>HaDZVn
z5CAsn)-(N7jUmhbgeI`Lz_nCsCi{aNKxxXix<181xSnpT_#>Jh*q>=wFd}FpcbTup
zq^>CKdnt4OuzCfLz0j)`%{*%d6xy!Pt>p@?r813<0GfHs0+R6&x<d_`YxI~1%hmuh
zSi#d&x0vhl*B`#v0cI9M5CJ`(Qc&12u#J0Ot&_k`mC@{w8jm^hZ(DaNyV>lQXay51
zLo}%h>(f=ZB#lrJ)>|GdepK=1w+AXV`ErrwnGF(GeJVjRh4ote*gpOa{p=oo6a_u<
zf^5_)T39h+=*&*SgYH??W%+i6&wa&;^=+=%DAR$(JTlqFmPT}kor2zfjryGOLX#OI
zJ3&b&U@czO^-&SoeJpAB8#~t5Asv3DY52#ji<Cs$*U4bU!0|K*$e0n(NNI1h1S6Zy
zXu97LrSM<X4f$d5p`I7<)Pt49q;VP6fp;zX;arX)LSz4_T-^WMb)UviY-rlGwIJ@L
zBhM6ElC>=f74y#=CrlC)!#i<;jtLg{-ydw~q~aL|I80w1pE*A*%;bN?Vv~&U3lVNi
zO-$>-SsCtv)x=R--}fT|#C_=+04PQ?{Hz&fxpboIZyf+;%or^`B|HaGvwJ?BgTwup
zH$#yte+m}a=}X84unp-=g7Dle9NhX=X+(1lAAjF?d=lTZj8nFLH?jB|Q`)7bjpI0m
z*3UZ!nR{93mLa_|Hlj-bm**}M%09>+z3YZSMB{k#X7L+og`e=I&zG@L#YnUlFO{Jl
z{yOq%kn32L;NsMWUVgO~g@uL2H^Y&Z8}dP%_9qnO`NEvSF6Zr$cP`WU9dk%tTJWZv
zth=|&6up-Qy^LF7g`@VqbSK;-x$_|bLP;d4VJx&vkzN6$Ge@$Ut9&OO3vak4m(N%u
zuLoq&{bgCC<TWq+JJFQjPK425i!_Y(A?R_*d>j@9qFPMX;kVI!{l~W?%RV*g^5)zm
z?-*v;yJdxTv>Icx?7EXcWuM7c=~SyY<_fXD(bBs=wrUS)&MkgBV%L!gQsjc_<pgkW
z>-RQf+q@qSbC@rTz!E5N-K+5kuIkYGGz~y9tTe%IgTcwHd5p@!uT!e>YpE#SO3Gg%
z1G+L4qIfovIwd_R8~gwl!&gMsUt4OlnPA@;p!{@0Emyr`<3*K$lg^Qm9{1|S9F}DL
z0x`s>GO1oX)}NR2K2~MSbmXjhAU>Rb!b_T~O)@z=U=@%hN!RWO!l@9sclzK%<0RW3
z16_N=Z-0Mqu>EKgtE$1GX1e1yTL!-DT7mm6Dsusb-|6>%LmoM5*!Nu*`p)V40E|Px
zLL0_0@vHTZr(O?b5_~!Et?khgx@4LLnH+A#T!r=MV7j=I<$aGZfAp%LQ&K&3`)31c
z4RmFOofs-wr)RDq%W}iL0;;^nHRQnA!;{k?!xq|spnX6W$L<Ri|70=uw`KzXIo^~#
z@4>R8YY~p0I94?2!Hha|tzNO~ZwA0A*=FzUdgzL3Dstl}uCq?3(S0hM4)>Q&HR;V=
zS67MpbW9QXy|a~;ySv7`KWxOn**elwl>>pA<Dof0W3agp)>engIlA~<FJu<tz+}Lk
z?*YY2YUumh2YGD8N{g@jY8VYr_|HBS5XllPIQjbwN$0ZVk4Q3YM-(*sl$+^l2g0Nf
z@{@1vf8$XV4^z)af|vzBp=Q{8x9jFd@i(iYTC0baZ6d!qb*bDC3}3MNP+*;?K05SG
zo`_M#_7+hc5e2rkyao9e#T&_O7s;slX=2necEXKtEPe{S-0y_(D#Z|q-SS?ggY?>o
zzZKn&c>TBwPySv9n{z2QNXb8BsjG3jRGprpF6uZZi#;{NP<q$<4ay=eJ?UGMjWvQz
z{ct6xP+$r78KPoqU@T;*`o|?Tg-RiYODN$`Wi<xdGamEjh7EMglbF!PWEGryCRp1R
z=I}=s!Lwx&3p<KUn#!;q2k}v$gWO63<JYT~da;Nna=oU?fV7l_f=gB*R5`!W%E@+9
zdo<#}8;^S@5vvDWxI}*m`3pVVx3W>@tMm7dQRZ5as}vqblE5D$oxNRr@Avh_^`ZV-
z`_u)cIF3U_hh@LtmG0S5FBeW@U%M^&sou=7QJ?>8Xy8r+5d0;Gib4?CUsS1P4g6hG
z2%UC8C;-D$bW*8{c79=5w5`v&`nnG_oq{MW_f9-o{gGnam@dXK{BzGNm-?Dr8{z)M
z+qaKFKRiJ$X;GV_G93i1Uv1UfbZ}%u^r%6ihMV!@2+~g0pa&;!2?g+uTtw)k@=b6U
z&FPIwJH<KG3IU*B<zhUBaLt^3xmTgWwD|O7rbryQ+N=aN`LjwfJ#BPZt-)}C9wF)&
zt&J6oXW)qA1JH||lY|Eh5yQ18+5M&`wbqfWt{Cu{fpm&2KJ<pB(84BBfn<!4%OJ-f
z6c-8nq~q-!pz3gL(&M|Au4IKKT0mm&RaySKIj?Y5)G9m~2|gJ2fO5;?(3;QbSs_<O
zkm+_T=P+PVjO3eTk=8Vds;_E0vtW#FP|2~DgYiG!0OaFuA>)KR5*4<|-N(Ey$`$jZ
z|7Kl0wFcGNcuPbpx_zZ~llgDgG_c;Rb1c*txztfw=CzmV;i!6y#k_$hCD0}QUa)Ij
zV)lrlnSgUC^>^6jpE^(qfo1aP=dCJ_qapM{l?7oKV8+u_=v-Za^Uss4!>Ap05H?TG
zoJ{`ZSE1W{qIuChqmhdB-A3^JxDt9CYxVo5#HvXmW4!$nk)Eum_r$%v85XdR#B*f>
zm~TaKIbKSrQkpFGvU^_rkdG}zkumj3T!zfgVw~cJ4ksna951gmr-IU7iDqQ!;ehYB
z)@!PY2;LLrtCez;Qin&!t-$#c>h$o(WqsV;x4+~p7Ku>4pO5Z?i3;WAVCgeA*))yp
zle^J(0`j0Y9CCJ39%rPm+%g$9=m6N8hl;z8tyfm`4H;RR%2#*&u*8F(Q6C8zNuzl@
zoypB&jx(++)L_tBpheumSpf>nZl+zE#5~1W8<u89G=1$#0YYMzRoQE?l8yWN%<i%;
z*vQ@(%}n20kdFRHSP>mzbKx0F-m>X|bt;mM$}v7YT354!Iq2G5af|BKC|(b0k<`KC
zp#@{I?<*`%dt2nS0+Qa;N<uRSJWcPjgLuPOW#+$6CjjlInMO3Be7y2wTw=$cg_iO5
zLcUbA=6wwc>9eVBVAQ-lpP3u8&ow?yNF5?=SW*WDk}=(}iKx}+gVog_f!hyJ<C4u7
z#etj(Z*g<j_L6!T9e}5+TZ$^hljX0gd1)w>)B}NOw?Hgo3t<U6%dBS2TQS>watKF+
za~kCSo5`y&;qb|>GcWrXBuh%ik&k?;(ihUOqlF$c1*PUWkzYxNqlVY1$ySSg;ThFu
zeT3S1q~~S-2&f5>(h8X)1fr+NXsVHYh|YJ>EuNc6A7J;&C<(9@EE|xG$&R`La|!-t
zwP?1G2>*oFEoB+BxX2}|7)rUNoiR?#Dqr;HDc2CcVjvZMXqv<gN>zZte3T@!RM+UC
z&ix&gq;_h^=566pr+jkY;f_}sxH{asP4%77*&)w+;1JtBI7GG*hh~%6fhuK!fwY6E
z&Y--{pi1yyg>yxW3V0KS!<V8oHkcOxm+KxkN$Rc!5KC~G++}&2{=J^9;=lsa;d9#j
zOMdkL+L&Fy`aljJK|z>>iWU_zq>%t$x7S#zLp+)x%;Ex@Vm`b5F?w46>e}z<v6dVL
zL3Y1nh{1_l2$KJq9Z{Q)Im%H>DUN8pgTaY5-f^4N+_NZn{3|sOzqlB^6qOb20#dt~
zgRioQD!|Z@E*vmDM_1|ij#u*<SFfsiF%LQ|rF{7>Nn;`AEtK)YWM_P&%oxc4(xYDE
z*ksqg8o@UM{oiL^4XF7V77zWE9cHkHk}uPFclEN@z=Y`50DBwo=tE9QgHCy~+!ZIo
zYfIdA+N{uYGRl5q((Vz^WbsPHVKuByWV9d7(8x_S8FtKeEgp>56sUgJ-ZJ&m*ooeU
zbOM=>)Ex8sUjiKkK3;nSmNofD*SzaIC$kkaiKx(nLyX+OO>Nc?dl#G5PUhj|!@6PZ
z0+!Rm(9)h3?{J(XcDBrGPHtl%0`HUPbYn?qty$No7HHdw0kIp*px{ysVC}#Z9v7Qm
zQg9`So0vV|U+TEy&nECNb!$NFu%0K|fe^Go)qf_I>RFM?ZLEt1m!akE_a{KH^^9>X
zQZiiJ?-A8NYE>LQ#+X3W!h;}h<;J2tC>MGYC5coOM{BB|6#R+A7s!s>aGkSH6Esha
zP9#)Az?P=vE4s20cA7pgHqdAEIQrP&Im&YE{SAZWo&%ErULb403Lerm)-uROcR{+4
zB;<$o7H<9MsnPw;9M&eL5v8Xz5=yF%P@Z~50Roa<`#<AOV;P5#p(IIxKs>(4Dp^ms
zN{r(VEunEn{<ae6s8|>~Ic6LpdpbGTUIk+k3>=@6l)tQH5|v#T@#IERL^}U)i?5Tg
z#K<bMBymrP|3$EiUe*@DEE=F)kbL$`(b7(J0+MJmk8nOE3`3aZB|y^hNV3cAfWEvd
zo)trWgE$l*4*}vjsLwjXQXpX#ZSQZy)H3d*_p|{@Da`mMH_~hssemZAi;8XkV+<nD
zIWo*;WObh0CSibwnZTP@qN9W_fe@N*Xt%Kn=gVqY99^P5RVIyOIi1tZjie}N6g~gT
z+4F$A3eAeu<)tA~S8d}cOdk!Y7-Ab6P*qI<K>l`i!p<Wl5@m&b$aGP6EBF8?OFlnD
z%JO);)|t;OF^XefRu3K*Jx--UFg-B5eUE-DexFH(GjiBOHU(~WQ*FzaVj2vz8a3e(
zRn8+sAmI6Fbz%QYvByL1T@S<P7Na4{x8Cj^55YuXkxK{_VSj`(y1sa4nc;@naOrSu
zLd17_-GmgAXo<D@Gn><OHqu3f7BaJj+ZzJ`>T7ZM=vo4{gL>i{>7I<nKIh{^`u!-U
zSA7t1U~WK%-;iJv0*nE4yT>)bm&)2VUJl7lx&_iX-S(M$)lLk)0Mk#O!fYPu=$I*g
zfA^cHb3Ii93X$_Ux}ahD&x_Imyc4}Y>1etstqkwVY&J-i+GQLfXSRPfo<5hO3b3Pm
z7{$019yET~`h_XIi8`8Que7ZzQ+qlj{c48+p9Ovhzp9@C5~Yb5pveh!uwtgx0zMl_
z;J>mR4w5;E!3e#}YDgUlryu71UbD1pmi&}(nP!!fr3Flrsai9<);9ui3>e5T$U%29
zwZC?F+ZjA29<lQ0S8cLBsg{=9zc3l*ES^VFj#0eoDB}Zi$M{&4pS_PGG}~1XW5By9
zhw-dJn_Q`~;PJz%-9&ya3Xf?384vZ+7OC@iW<h1<TU6{umZ4X|H6uN*{C+I0>mHMG
zaG^8M*1kPW5Qi%NswJEGG7?MZ;h~+Dm;SX0dT090RqDTel0quGBQ%QHROS9L>=S+L
zQLga<(v}k}KoI+LHC<)ReWE*rIQ9N67at5`mW!(n>^I`>%NPd=o}1ZK-raDYWqMBj
zXwcS`01xsJQ8X;<pCp9@yI%JI{b}`t6<q!rI|28Tu0-G|x7`?yzZpEQBCtIfmu1$6
zNUdKD7eZn7ZKhA|UL#)QxMKg0v2$1wMFFy4+qP}nwr#unwr$(CZQHhO+cxLzW;2WV
zi;9XonOf31DL2j_+eh~(+(LLf-u_YDPxePBp1}*<0~9BQsSqAf8$+3O6C$=|tqwi2
zBQc^&8LKdi=0*EY&~1zUdb`-d1q2M`s9&xU8rJ^uJ}Bc4_z0JS&=LL1;1_HBVQ<pa
zw<CmSE0Q{bY}Guh85o&m&*q%$@VaRkBHF*;=b-#AW$|ifJ#hhr|2h-#?=tr}P+OIl
z*X{C0UkS&tlt-t)<peuwT9qDrBko0g>RmwRGQ^N?1#ZL}w#x)5sB8Knwm%-<>ZXZ$
zkvvV~FcS>G4f{EA_B_6GX&an-_yhv6O@l$gkDOx3&s#~mDN9Hbp<O6k0~TDq{;LZ?
zgp!un@q9hm2$8=}OmfQs!Ixk3mjwQk;CJ!^1&uf7bzq7_`R`F4r)&bC7oSW48z9tU
z3MBq}=yWxvbZKB;|BvttT9$ODnKdGPD=hfV*{(uojs3~A+s^+#Klh;5(r4tg1tCto
zJoj)_AP5pSP<4mIRe;wV`xtTqiL(awj=^F}!w+*IxdalzJ4$Wy)DjWQOC!(JZ1}|>
z14q;s6Gvm(Wx(P&08fjrJprqGU~F0ENqMp7v8ZAxmG-E!L3AK+i~L^9QGJg^Flo<R
z!)2pu@>a`#HLx3WltdkV*;T`6ESEB7?L)ZDK0C>Ks@t|KS{97#s()5<X`lrwM@W0b
z&UC-_tSX}pqnbwTgtjAz_dt0!G&NBst%`0LMz980+INmyRwZF;!6|ze-={(_WIk{J
zCB9%WUoZUBsS{YBZiOy^au?G8rpvyqut<OMpNP2-Eh*oeohw$G{dlaAoX9~Wq5`~=
zDA`Msjs|TTG%YW-zmg!F4ETK>Yc6Z00n1$>TBOJ{n88&eb6|xM+WkS3jA>9z9Ng-V
zw<|KF##r=1Vm+7G5B*Nv?`z``azHd{6-|Usl{an0P_$zm?d4z?E~sE<E`XmmUmt$m
zcVMhyr2c$Ew_W+Sr$VA|c3*tL^C5H6f41T<GO!ISx{t3^iAsk2=Kcr^#$%&~%H1pZ
zUW=CiB_AvYCIRYtQBsz#(E|#xmes%myN+Xpio+eu+rBRo!g#Di%<qSDfb%IMS7WTs
zv&cv$QXxw0ugB+3$1=RMrj@VhU4z<~2^TbIQo>E$Z0e(9YnLwa45|D?LS?9MhLKHW
zHJ?n}jOx~#FSCO|m!o`p#m>i;TU0upJ)>xqZU=;F?BJI}!>%-hoK&PM8tcAoXXU;D
z{yGmDI$<&q!2ZR0CEU&!rd7eUY}A}~&?GA^|203Y^@K0xJ8l5_H{{RQ=gMxW!dVP5
z;=!D>SulQ)uG@Q?kmim))7sV?k_EK9oRR)35uFF#e>g=-K;RwHDVFkjFG>J=ZS;y@
z=r@oki{e+FdfxS`q9CT3yBMcn%lJ)HT4zj4%_gUDe0mW(I;FfZY4UwQm9bEn5raDF
z^U~htlBUV9gLl0bftJnQ=`Oz1qA~sTeP&5c0}PEm9XgfYoYS>NsE;L0BCUloqo4JS
z4GuO3UK?tqQeVmlIFA7bm2MG`rS_IP7s17jQjriYJb$fQ-p1tSWC<VK0PWu%9Onpp
ztF#VgUOfo#EBtKDRAe}V{=7&mJ6s8ZZjQZ;7iS@E4-Pv#M>7w?SSIE2Dsn>zE_=JQ
zML^yB%U|R6{~=~1HdWjMwwlfjQtp0vXN0wfB2IY_G86I+Z$W4%(qjlR`Y{~`wR@4K
zxR2a`4Vrg?k*PEWTB4Y9WU#wc5r~>yU)}vrR>CBAZXjNI7gIKZcQ1`=q6wFq_%V!E
zoYoBDF7Gt1BmaGV;R(aTBOSeYpS5$J;Uyeq3fT8Ifuj)B#AY>%LnqD{Y=wLI9JGcn
zZn`#KX;T=Bao`6*u9fMkWl06+2QJU`Y4EJK=dt_G_U?8;INA4_DBMAU;)O<KXkCQR
z3_=EiCrLTn&#(M$1@`SH`Nm$O{OsN*K5p-Nz9z=&m(cD;IxNZQ_{m8DSfXl9gr@UQ
zZYz5NyE_qA#oNmaN;U*hcM}I=PR@l>7`s1wRbaD{@mVeI5Okj(O4xu#8*R}itN){B
z)ZoQ$`QDe*jf9oeg*;@3kE_1uIq7Xr&@3D8F!@yy`Mkh0G>rih=a7sJcT%Gv17tRr
zwt0|bgS}6BH=~-NUoXxSjD;%xCBZ;I(1fpMQ_S<$=|UiPo%`B(y`|X%FcI^-<2PVP
zQQzz4t<AfVvv2mkrk5MUs>9sOK@^>~7R!Y$rP2XUqy$F4rtE8@23Gj&V8J)V^{U%B
zDjx0=R{oJqWN%J9H-ee=UX~;Z={vo8#A;(bL;)xqZ_yQor|P2P(s{HR-r_C+)g}Cg
zANWUzK1XyuD{x23)<2gcO*sRisLh_|bVdK9Vb~t6;v{C8q=A$oM<_RFdX9y<6r3u>
z1c~DuBpx&ZjW+CPISr|>ooF{<hlZ0zx7lVscr!8_)K~W;*(?H$94n1?nvICWMtZ+>
zD?@qT2SS&8#NbqKBb%U?q-;q(Y}A;8Ht7sg_TXjR>&nkODw;jf`|e$K-8v<NknQ72
z=PK>CgAlene@a=>GR14#KQmp1Pc!>;Cflu&G1t%+i&xK}LFAtU3DLMzG8>P*RQ}wp
zu!01ogg&|X#+a~v6ofvEFT~tJi7S}uOEx15Z9gqJ{+2&b859RPwCgbXozxHjDbIA^
zKU0Vt+OwcJ)ySynM#tYlr_>bfN43x*v6L0NVG=b{#c94(`C+s9KD=jdz>8#4#suSa
z!R}aA!J&Lc<|QEet}lcr<tDM6ssFZ#{#t5_QXCF^m`W;Xn#V-bxi$E7lQt(|fL+oG
z)F=oMfztEaX_b~VzC<atbUeniG4Qe<<0SEPpER=-=C%($S*GEpnI2r~ZCZ?Jl=h+l
zmsnN^2Li|rb3WjQ(?{Jt;Uu{K4DR_-*wF%;Vhgp~8FU%qWBLo931G7SEh3_&R`1ba
zJ(kaF#RcYVyBC|?I4pgXaUWFnO(UN-hKhLwvn1s=8sD?F$Ug!Z$N+cJ4-xW+U{TXI
zF7zVLxHI&J9mssjiurWslqM(T6tR&6vyS}vmOcXq@*O;`r6*b8f!e>!LK{hmQkD_>
zR6W2d`f<!h0XDZ}Q_1#Tr3S@Tj>J&9T1iTJS$QCj>Ea$9^-rCg5OVYk1(x6MHZ#L%
z>dF<2i)iZblg#Rc#t4X~@4w~6$ikP6Uh&OhC{2As7_dq(ukX1`I(Vacb=E0{Z5#qU
zOmYmNW^ut5MVMsW*@3aPUa`%mLuv^H3pg>K!}{ltSL>+cK~W;*N&`tD!7XlLUun{9
zaEU~X&f?zu#=30@(mR@(RGT*DY2pW{zn=K*>VRnV34F8tuu1KrzvEH}#=nt(UWE<z
z=ay6WV3;Dl&D?j&DTQa7gO2pqo=>L;3loA$O2ejyWgTCH1L@p|l~6Bm%KgWe80X;T
z{W7nWAPr5A40kpk8;t*-SSZu~3k&67W@Dk3F|{>!wqPV+VPs|J{9m9KpBQl!N6BW_
zuTcz}wQ$49>8kXKpOUZ%2`p>+r=h?{JWrPqvgzD}0R^>p2i~FoiP8^_M(scZ`$9<2
z{5Llid}a-iO+G*LuWt}VQ3UGGCJ$0h3yoaP;kI%Wv_750(J_eQezsz3nI@%pdqme1
zpwT)_6_oe6r*Phl_`_;|ce6X0tx{G{&23LcnCAKoG;Hrj%?^Kb>84|52=ufVg7-UU
z<&Au+H<_E$>@GU9qpq+>*!QJm1qDxe|A62<TllsxT9xA1;y;LACL^zrl1~XtzsVEN
z-F8C^z114mB)v9GkH}W`8ZmKR4k{zMEaWy;v0PGYUnvm4*@HQRydC50{dg>Od@sX}
z<BOX<V?3FsHA7p)RPTq#LAiNwXh-42#glxHNChM!{B)3p?U<px5;|(KVFrhInIBd<
z@DI&BrxmhglP+j?!x)sRACJdf$f!D!;a+9Butg3MsgEh_T@?|f7Wi$@N0;Y{DN_Tl
z(IHrBQ~L5${?WFAL#`L^7mwA=7Mk0s4?JVlbvFIEkKUDeoX-hc&qzpIJXj|j&udhC
zYsV6UiuS!@EyYNC_~v*BV<ttxUg4r2kB>Mqzui&IiX&TEz@1#~XAOAfpkPifWLMwm
zxA|M-dq5`lKd$PiN&B9E(~~fyKN_7cFs;4@^_XL}1~G19TK%N=ZF&>34MOiMREXvs
zr0}tf;X#+yt#!l*1=<u;jL&rj$zAR>?NQ-q-TWuL9TtL`3&AxOWZoh)!!XH(&BvEZ
zLe)b%pO|L!qZyya%{K$XSdsmXy-uMZnDE4zR^QyX(mZ|kLcQpBhOr%W-kWMh>o@%5
zp{F5?tDSIcznkO+%Kf7JnvTrNbvVp-{v)%aRoa6u%k|u;59#{w%$WfPKd;5S0`=*L
zT24$nb!CK@=0%EZ$_A&~&QoVtu5ir>ELd-`V~jc<Icl$xTS;VqLOS#Z_Yu#*FSd3P
z^E^ao=6t+ah36)aP}~j@C>Bem_ZDq_R5Ygaav9}$%`LPmUah=m$DdId1L7WfS#PSh
zhRUfQ@oqKjP7LGi;X<V_(JD<>u!5NN+;5z;#;bv*0Vr!$nWm!|fMFaY0oDn{>jus4
z6N=c!!asS$fCC+hxx48ZAg8z@Hoj=`;|HiH8uz6#ld?5n@-03bgE_RU0C#15j;g;e
ze7IWmG%k2R9-dW=C$-Azy>z?ipXew=IQ4%6>||s81u}RbNFYQ7EdHKjLOeD;VS>L7
z^-Sc-q%~9JLlv0Qdf3M;-H|tyBI`6IrF}(r*`gXoMn7L--8QGcG=3D%-`zza$VU~^
z+-7S!GZ@U;MkL8{>7Zk^9(gFCvl;?Ul3eZXNE_3o>XP5AXkWDnZJf*_`V`yK9{t?r
zrVXr%n*ymK<NLova<~mxg2RGA@CNf05(@~RAJU%*Ay?EL$$eynJDFqo1brYBHm~8j
z*RpsE1}IR(laJO+hu{D?VirpuDSkNRQ=`&MrPaK$KjG%&<kx+!oO2<JaAf~pUJ7y~
zQ9TAT>cHIh5-%IY0qTjF?E(aVq|Igj+4p19F2qYSIO5kFo5mT2K=vA~IoR(sG-^wS
zbWu>6yCfZ%Lk@r9zxGf0qYU22P*{&3WOQtuF|Lg*Qx5laZfy<&Gn3!3N5hQxFUA|a
z<BWlC(VWV~hf3dB8QT^7xwftd?EDfSla$s2-^ANqro1}u{Bs1%*2cTEp!~4nDWPW<
zn~>h~tO|g_<x&Ir81J7fq;GiqK=`6Y(LJQ>KvE}*`44gx)?m(_z9qqCwn8;u?d!QE
z^LY7_89V7T&wv~zK$9F{l1mLs%cEkn6G8m*hZY%4XV!%$`~u=z?)!6sC%243@d~VS
ze5hf+0j1VWwYV7?1sScQG56>~8w!uB3Ny~7ib8w2<hHsOc^b3$Z1WQa8M8p2l*PjR
z1}CeN&E<5RK?!fSE(b_Kdj3KuC`l1ANCP2!jWmx<lpaM;5K5u$e@V$;`Lix={k=IV
zBC3+SOMf=;J`Aw6oU)7NbQYN9fK!n5LM_O*ics)|6I-|J1#vp&+vTFnu?J1UHZQDz
zX<HPq_m^jQp6H^66q`yP@ajIoR4A;_+bi1uz2%n($|ulUX-}=6_ehbf>QPKB7C6+`
zp{G&`u|FABLcH3-F+7R$T-vdniEvRpoH@BS-#*>s#i-q?CFwW?f35{xbI?E6;@V&8
zFF}b(YcX-n&6|A~`=}CRuP9|$PiR!Skcp8fMyG%P&?MmFY>UZd+PILM53nTm1Ys<R
zrb$BPlKnH|t50+Ot&b80%w3^9jSd^H*Ba{+S`UOO5uV}wljXdYmxR<hJt;IJINCLZ
z%g@eVO2NB$g^LZ4BPji-`>+BEFM4G)t<lp>TwVsKn(ep2%^FTi3(rOnY9*Y^e17yk
zBp1t=`iFyUT;422Jiw6IDr$Rlv7TYD@t`P^<v=qrc2?`_@!TP1Y7K(5Jm(IkSSJcb
zyA|`W+EC1!Vh>QOjXwnC{O&FmZ1zOfsd{$EE#vyQfB#<b8WG;&M?88h^H0%&V`ItL
zvn5)cu@96ZksB!HTcNXD2*M7bC;E{D5DkihGGdN8S=0KrJ$ZO~$3882djz%tvV1Hc
z<_<Eho-9s%eX=ju;hfv_50E!Ppsp@puLw3D`v>G8Y1OW7RZ3_M=|is^^;k4+`I)I$
zk0n|9`xK*mFHG4;30bcpN3XS;+VMK)`Gbr6`t%Bcu$U+^g<k|>0KVUlSdV_4Dd|@)
z8@^BX^*#x5>|=pL#LQ-p@wT$mHzz)P1-9qUg9j&uV^(vYuEeGu-@?M(++1sh28Hv`
zm!lZ*S%`n4$}b5`_SM)gZn&d&Umpx=OY33}W)t5eBuO8KbZm}#1dXJC*1$AZ&?B_P
z3-Eqq!Uxd3m%FSYfNKuxUW1Uj4aaz*4>MN3Twa}F2F<oTr7V%r2Mc2LCS#lB{)nMB
zJHVF3+k)1A?S<mCMe-lIG2x$Xo$25#M`1%sPI;<WH!Qt8w%RiJz0)ME)Mx7VD+-(O
z$_jbsUsl0zCgIK6;&9Yt(tt#ZZ^xD?ZGjvhY$b0W$5G;4O?(s)$x1kU?8f`qQEDX&
zI^YT04*z^f@PK^K``UEt?{16h^QXI0Dw4uBM1+Z1&aow`pWpH<lU*}gTF{e@uO%^B
zJS?rz>yG$%P1#)*6Nu^wLUM!Hqoq<qtdII&j?0uUiJm~p-%Uo{Vrf9jHdLj^2d%L)
z|NQ+1A}hwltk)R9qK&U*zh|m24I?(|G1cNQC5qg|l@lOcjdRwbGEkwt5ULDvSXcqt
zR&GRV4=4J`fI~ZwH3McJpe||n_{b|f0!-wILd1GI_X2!-%8g8Oik*gaya1P=Lja6O
zO=n`+PiKmU_?6Z>wE@~yK5?jZGcd%nk<J{x0YwUOEog%P$TXpfOG5o25hcI?@zc7I
zCVJX^<u}Z@&@Ib~k6(*V`szQ9;72_Q=+I-!tEAU+q3UDUGxO;LX|OvjC|zNvPHK9(
zi`i;+qH280vPVC-=Rd^tJV46o4BPY*YMh#fJ!?9iv;=xy3yY@d^o|>3dC~<EiF~y(
zI^;~1iJz`g<}QcL$YanPZhT7idk;r@qy)ik^@j=%U3|6D%V{%=xoi$8s6B$e%c75r
zj$1A-fws-;an;f#8lk6V%U!{vysJ^(SX>b0ZmDQG9;E?Bol7t9wlNla*`XK{$h?m&
zY;UC=hrprIh4mTYmU+-nyptP;dnNHrQETnN1rt7)_6>=kVH_(u2bBlNpzQRRu+$CQ
z=Ms{uKEHYbalP}e8KD3u5(uZWH-+b=0LE!+<51snrHcVo%!XL(+(cyZ#6?YBmr9(G
zG}>yYX^VmmLR3jgwB$8+ce~3Q-^GA7^#BCz4<cnERbZ6=y;^~xoF^hI;<BcGR7w4p
z3?U%5C<yJ-NPPzTnUH8jyw|{&sT;BE1~lLKHegxG7WS^x?F`SVeQ#Jka&N~E-z9zB
z<<y<yuP}csNDLR{JIPxpGF?rsI-6DcDp!HNZPxi=@C6$HEgS4GZ?nim(M8>dt1f{{
zj~YpRWmR6Qo84rh>%o)mjT`jQNIr4n84kOq!RTJIGqGFsIH0ivgsrq&Dl*WH+gdjU
zR2FhV_g~BpnG2X_;H^QSwWtTWUlotQl(>Sbs%OLJhuTwYj-|2rdjZC%cxwOJ`TIOc
zp!mIYuX1*@*$#M>tHk9erudOcomZ_=bpWKy02Z#wqj))V`(1y^9L4U*hHf~%j|>MP
z1!517`AXIjc|cnC6Xu%>kLig_C%qBEiihfpQS$*`z7mzH0>U~Xp9G|(8QFlDaWv)<
zDRzdi0cuT9ck12CO8R~hqF4cTE86f9=fhVmZvBjPOFIYW=@z6kL?8$sX$wV6845e2
zjRO1|0_g}7%NZ=i2?=cZ01YfE1t(-~IHlqhBlBzm3#x(TQd=rlG_ex{T!r1gHShSa
zb;051!8cZ<S#gd6lPYLexkF8N`TkddLRX+sa<0w2ChjG3PKeHl-^p1PjHlsvGtL}5
z-y<xDpZEn`5i|j)ez0X30v(Z%3pAN8Buq=8Kvfx;NP2qw=ZH5i&Rb6g`Yc<K@6{{h
z7oA7rY9CSsngEcRypl8<YkDL(=w*?!@V(Z$WExfq49?tjWN%wz6p)$m=6-8aG?AHL
zX8ns>yP+ooRR-Wr9Nh*&@!0(psNa>4^PxILE#QY{%}AMd`zvcrkD}#K-rR$*U>Ga%
zFdT*_)(h!u0Yu+*Fbdg2OJx|!NtOGx|J32lh6n+ci6u3bxXQ%-7pu{R_!9;Lb0_i+
zv<9%XK6l2XCvb#YNxD!uQl~`ej`rVFs93H+{UU$^w<WNN)+JFFktf8?cTg?vWH?)h
zli{Mq$O=l_@f>#yCCT=V?5!()<3mF!6}2R8<+6R#aAV;i$_ItlRL(MnSHxf=t9a>6
z0#7e@X>5K>D@LXzQ?gpy2Y}tiAV}UN?;bZ2{()+q=}&UWVu%v93j`ecKZq%YJgGI?
zcNC*$hfZg#h>v?4(0CyuNN+(8etz{7fL;I!T+^5o=SCy&AKbu<2`kJ%+%GD~PBKI9
zQ5&6oiXD=Jepe(6XQC{64yJ6tW`8|l`X9Vi_di8<FP~=%`q;*8g2XN&Z8>*EAXqDt
zKNO#MqwGo>JewJ&o4D2ZRkdC-=p8oS?ypd?{;Y3!=JA5(&TZkUU-sHlBNr<`7wEl0
zdKfqzFt20o5Fl7iSJX#NXb0ST0*-4M96$#1uD&;I6E;?itX8hUr`bpW5>ETGZDWXK
zNO4`Z;r0r>9$O1?Kh>VY258WCoL$-MMVtGSlW1gRIt2^PBS1uy;!OWfv7nD_AcdFG
ze{jA9585$|xGtdjA^iZGfN`Bm+ezGzUdkS>xH!`-Gim>=XgrvpV_RnKiaH60A>H{a
z5ZBJN5>EUfFj3edDbu#>F~7)c4kJdTHb*&rq~8;Iu^oZQ2$wP7kD7wtAs7ZRPnW_C
z(~~a;?j^r4@7r;e0Jw0$1Q8X@2fsvre5S)4nFou;Sz}1_5;&nA%o~>w23MXry~HwO
zXB;sXCW6HwNP@H#qf}7~x$CRX(jW?qu2YAb&$TBEBSOwVm*zdzicfjPXlOFP*4Kn!
zM3H7{$uch~9GbGHlaYF#e(Tnr&SsJ#JB~B3jA9B<*1+_I&%5kGCqE)vQp5Xhm1yQE
ztGUR#a6Os0XEJb>iCC3FbyHPgSQ%4L;k-}#|C8KLA{nS^Cq3+LmcZ2lZEoM3D$1|K
z^jcQ;z;6j~$6j#1u%03P>Nq85mhi)V1BWmrzqohhSl5u?NsQSmkGAd2xPp>%wu4HJ
zq11y$&(^5|D2s)Cx&%gb6YVbd$^Tagb-n*cb>4?c)*#lf8YB(n8Rt;aB*S}vEcEEF
zV7Z$TC}6uDZGxF;p3`qX05&#tajA~{&|spI1N6eTuF`NyCy~kbWYE3ICV&@+Xp-qk
zWQo>nm|?uD*tb3BFv%Q28kgpYGjmfp+|`opnYN`;S&&&x*u|=V=IK(U;T$<Ft5JzI
zY0?UQ3Lc``CB|RG%S#O5@QJ<glf#(CcQI4Qc8q?E_&i8f=jdD(4jcYu=>EdwwfZt;
z-S*wkP_Wi9VLd*_>^$pPe$pBBp<($HmxuHwwR`#5^b?DBX<DpyIsv0*qI!NNdTckI
z?O1>N=)B^N>PLVepRiFRgiy&Y?TP>53#tKT5{!jjjf>U`Ob}6FuaEYE6Xn*!-Fq2v
z-t{hS3j8kicF#4*vxxlH$DA8>r>h$HI5J*l|G3bv&$@2OgTRYd`QJLFNUimz0eybQ
z9yTd=O!s;_{Bhnav@Q_vpQ?96EHaM@cMZ$q(s13aH$WDY4h<{Okcpr+h|R8SlKn)~
zzz<bd8Vzp-QiWj-646FDEuw0*Z-b(x21k)TA{WK$s(FTGINja#Vi?aaHQqgmZ<Ra%
zU&a7}bG<MyqvC))tseTVhhSMlN@f~gM4nDWKaDoA4$>zDj6*9wR2($&&gECgAbqyJ
zEnDAn765YFFp1Q_bLSd(Cs`Je-2sPA;vJ6vg=Sv{+>$}1JS#wv_kY?T7{Beb;IA7T
z<|jyh(sJn^LV(rVwv0cQ-;yRp)y>z^l^o+S?^E|0Vbq&`=oC<`o>xCMdS<IDSnj`6
zsaVtmhmVa*1IP^iSo*WLoXLM+d-5ZMQiMA1=v-pwoG$%<9~?yBvn$B}J!z!SvCi%?
zKf;B#@xt&9szggHEE8SN%e#0@>sv^cXr*S$O8AK);pRHG>lspTGivk}dt(*+NluXl
zW(r`3+#6qtNKx{-pzk3h6%s|qS0VGqZ+rV6Td?1vAOhRRh6_l|X@btl6}?dHYKzHt
zT~*<vw=B8D)SjDRiarjQ=(TOfZ?<2=zc$y<#}gwa8REb{vw6ova4)=rn-&4#;l{98
zGXL26Q6udC!<jnuK`5}8)#rt^ihPkugkQnr0^8l6Uo`#m;>nKo$tZZ}UoP02dNcTs
zDdh4r!K!i9DGYQ{i2^0IlO8e+zD<tGcOz{RqDHIwQ4+S_)i)@T$b|Xrk{6>}A17m5
zba7~VMI4;(Yr2Ab*7yj(ephM#0y_mYy?-`eWU71FL7CtT>VwtTd@;9G|8&ZpiATxl
zg0!dYK&PtGnN|PlEBto$%<!|>eod2nY6AG7H0!om|5b`fn^7rm5Mghqyh0$)N$z_=
zDITDtos(wUl1`~LV-mZdOtJJQ5t7z2$eD6i8<rEQF^tsdgNa#wnj8wE&pL>**geQk
z9g^`X0v{-ryB9!d+BIv%oM6?A%>K1Ep(vpaR6LIcV_#CY75m^^GJUor<$dp@+O3?x
zYpIHjd>>Pjj438o5=Al+%F&>Tyr4Lo4JUuCfVr4|g@8d_1xEMYu>>R~X6Yk~4S`=Y
z|GId>0YQzOA$+&5z#LH94d4_61{r}Y({q>0m0v{=QRuH4f)7fmeGAO~d;@h0O-7Zy
z+6$ayDo24XAFFsrw0M<8A_Du@UH@@u9VoxARu+_t9NW<N@aFBIW9}|nRQY7z9{gF+
zjz=5~^pAa$CvbMgm!F#MVz7fZ46F_bA`L4Lw;``BE;7sZ7R)k1f*Cr<t&)<#lQ{=l
z7FoyLQ$<}+bvoh^Mr%Z%ewPCIC9gO%{oHoX5HPMdzJlz`GMfgmc8}$KOmsv_o$I%^
z_%4voy@Eu>>1TX75PWmqZwVJCD^^2`8((rv_5yjBtha+;m!Pe4<sR^{G8NtILqx}Y
zd*sd=Gx3d_2L%>gR1*T%f~o6&Hk_4Dgw&n!u+dJ@+@$;ww|*2b#J>!i`4w>ZKkG2(
zjIiXv#8>9FK4@5O?V<|EaC(O@l|)A}y!N#ZE3=)C8;niTeQ_a^IkNX&3E_R9DyXS2
z`?_=!0AXm?l&q)z=WQSDm+88Ck}0p&T}GsZP|Y&NN#Jt;I5t@(6aHv-J1GOmUa#(v
zt29HLFP7R+20`Wr_<s7gr?)Av)+hXCa{z#JK=sG=)wUP-Q+AjNV|1`>3XBq6#W4GT
zgH^W4^a_)g>XLS~b`uI3t6;K+f$^l+(qV+q+pR6BK{{yS&nd;1pp(?9F0tNmo5R{b
zH>d2MvnS<d?P6yYV(GGVgvfYH$USx)$~tw^E-@CSCloGp4fJ0>uRhwjF746P0)95E
z^URYdg3%kCL^oNimkRu0bF%2tj6ifndP5y{w0lM!i^AerT(#W*qb#?J&!#;Wq$O+;
zgibWJg0BS(B^RDiWyG|(6$LJ!qcfv1p(^V=jJ{JL#dk2$q(U$sdVZM2ce%-Kj$s5|
zy6xupDqy$%1sazTp)1ZIUUV27haS^)G}uE_jX49#DF6__d&X)!PmgCIHHnGsX3r)I
zDfx2moS^A^pXhta7tNHmtrMTCr%<0&S~E+6XPR<$0W0dge^W`_@Fz{_@zdXZ)Ph*_
znmST^^`fEcB0FZ=j*>b!?1NR90b5XGtK2nky6Y`awoKQM#HG`y6}VwhA_iN@<?V$F
z{QPz;%uVKs)sakFOb|kN4!f!A79eY1+!nnN_}rOwF5>p!s2#+Acz+V=dUNoR=ZDrb
zJXcK$Pkk=|Ib|^LDZFS`_2===;%pIlNbdeI4DhRXU2_9oPwLz4dp6DwK_%6u0I%Zs
z7#74a+gF3}If!ZBPeUJlSkMcN31X@r@ey7_pIA#yka%%}1w_e|&dD!>6LxUbfc60r
zd0w!R|L!na+1spscdqT$u|^~aop>-=vpyY7T!aM`g%b4Q%+7@(!1d>DQcr^H_A<!H
z5UUq~6~imDQOIFz@I++Xom)WtH#n8MEPM6#7xHl&f{C|FAxYp}=bvH8Gyq&b<}9b+
zold-`ub!qGkz2Y12bC-uf41LyEu@?8Rk)V^mfN2q)5&Wm$G~Z$^tZy2s@*CVdH~r*
zQy@}te-POp4vaXIUYzdDB#~cr_aw$|3YQX%?C92|=3+^&u&mtv*JPR}z|4XlAvxTX
zul)}c%n$+50e|ziP**zjh%m%_I3tt=i%R}zE42pTKC@{+JT&&JL;ZM}xBa>G_tKpL
zD<aWLjRqV9cvTfq3Y(N%Tny$FH{PoZTBdPW4?0fY^Va!JKZ|d{(6KALm!xWSfR>hf
zJGi|v<}i0+PCqNidq+Kb050Z^sz;TYFM}ZlsM&vAV66NkOV$#+jW0|(#(_r%C!L|s
zjdLEBycRA-8$f!H3_^*tL74R~_@HlO?_6X_rZ~)*+i&yHAwQG}9)-}SVrVy>Wri7N
zx;WT70Df2^a9ekzNN)JLS7$O;p}plc>BoJo*GnBhr$zYj!lJLCO7ek8@pQ-;C>-bG
zt`^AZJwBz_{el#&Q5dBR@23wZJ#kv@Xlrd9zE#G0?F5Z&Q<pm?A&pvKWt@=5waYOD
zk6581?va>AdBNzraEIzNQ28s+#Th3wb(860_@Y|8Q^&N$`b|CDr)Ob%*CPU-nbt?3
zIOd9rgjCI*FEY=#u0MJ2R&CzqB;(<hM@y<b3`7sD0YLGzQu~vyoF<f}X#L{+bW%8W
zd}TBekQ@S?Wx-&*l>KuGM%TFNfQiJOpCYBYbXBO2V5kn-?B5K~%*@;-BN1%@{O@g5
z+Nr$kDFST;0HbUPO8P?tA!i_SwAvq*;hG&9zOCj|*OStQYP?;w6lTF&9sF5P{ZclC
zyom?CwsB=_T*v8)4U@&rO+VSpns1lsD3|Gnsv0l59MWb3$pbdTf(1L?MM0W6zz+E%
zLf2uZpU>Z%J`$Q>N|Jvy$6(bBxGnyuq^n-OknK$e8xkK&ZrPf4)G=K#29Iksnyy+h
zR3PwsM&8&L=O~ZT+$AsJg3=!_sI32C<mnM-twg<D)(!wNYm3wdnKnQG3*peMHo{J|
ze3y10_ZV_zvkeO${b=xJx&5Y=lpRA)`Yu23zzuRa>cD*PDkklCQht0eSEkvBb>(M~
z#)_evSXH<@T<_l1ut@L9sn1tbL$_B^X&KkynWMcZbmId#1~r2WTFXv)BDu9^Ihl+$
zS0*NZI-G;!46jHqaR-f!8|r2$dM_=O`DpAnklY}l(fBVm-3{b>x$#1uzf0P=%D?+!
zJoA@qHCwHVxj&wHDA}DJtr7*h!m^;)fr2&u(Wo*&Y4`TL&oiSo6kA^v!BQfe<*g{>
zF$nF)s%>QlZg!c}vCC1Yf525T5a1P}b3KjAqEkXX&@T`r&uODOi!l>^M$_5NP2jHq
zX5|Xtw{RCMyOF%~>Vf{amDZ!@oChEjjpXX^>3L(mKPj;oUDxtA2e20LH=?b!omi$(
zQxg_}YPrbWUMSGX?MQL^vr<Rg1H`N(V7ZqUOP@lkzy^m32kmwAn==0I%-$hCn6#sA
zC)*8@=Hl2IfV%eoF&*P8*{3}1t}=39DLW8Upxiv!@tCO;PVRvY<&VcSf?m`7hNxsJ
zVVrW+B{jp7NlN>{j%$Dp-p8a7%u)$4Bq!d<<oYDBOj(N(=)*LLAP53ws_b~<wD5T#
zMv0SFes7rfvxm%qeoI?blBPqXM!`fG)7h(ek<J<X%Ich1FRUayz&hB5jMaFir!BBl
z!vz9MW6!ASr;}|ga_*~w{77cGSqqDK1C2fA{Ff~Nd@M1th}L-y2`V&NC?A6UgUySM
zWFY0S6zN(3h^m#T|0>hI1tn(eA_W$>i+Y>hpe5(w9Y7X}s3|h!@xDwGc2CuY)J<rm
z{3FTXidA9pFNLVFc+P==Fm2Z;&<@8kn|y-^Pk9SCO?F65<3m*a?9{)a@-yFL9Pe6?
zwZIAHA8)PvUa5$fHx4{4;eBD7qyC_b^L5>Mzp#Zzn$k$ojm6H)j3j$EZVsoLNl<X~
zIzK@vqXE{OAyBO((gn*dCY^O12qF|fq5X!8;@8{`@3ES;1N!t(ATN>>+WyE}KwG>S
zyAu}45junULXArWgCa?yjCg-L**%8WR`46L)v8$W;x5!#sEub|6In={LNXS+;5ku=
z^F_D?$wgO|bELeg_-)OXG^m1)&R{fEWxrY>=Md+OIO^U*u{3GV{keAbxDL+%Dv03`
zke+e2@}0qWRy+`2K&vStYG#S#!ZsPdc`GMurZD9ls~xdZj%?W%mfp?#v^>7da^bX|
znL@@x#vI~som_RyrQS!or1tO6%ILz-MAa~p$jUIR2VVgva{yn9>G&OVbqcjOZ9~kT
zFvbyNMMRzaabX|Xzh$<GQfNlkfOEJ&t@6qTIcpr6?0lD;f-8Z(Ba65MYtVx<w<;v=
zX2^0^<I+@%)woiO0X0Fvid!Ng9b8g!Z2b%c4(FF&kx$iU7>x$B$x=Yt%yY47lVQ1g
z=8JYZ)L9AC54Qlhjmtkk<ZU0@8%*&L8g*8G>*1e<Wqu|zfW3M7Y-$zyo92p4+2tY)
zo~jm>SG>wFQKX4%5GYle9~xai+!4yQO;OdWec<6M)7<5k@crlxLH>XcC$pg~fxGB#
zG-@L91wZ`B)U!T5mhNE5JX@o7A?#v0>|ZpQGj|T~d=LnuC@=#ztgPBg-}v)fj9?*@
zEXe3bqb_#?Ij633GC7?kKspQ!kPAnxoo=u5Hf{SpeHX5>S>7E1+XLw=f+53-qYPD6
zbFH*Cjp2?``@(8k;1+s|aNQ95Pg=|;hSnxX1dIOZl-7=D8Xu|M=L}Hw)I-Zm3H$AF
z=FI-#mS@18DdEu1ctK95=rfxVd;HJ}oB&L&7PB1S#8tYR`IF6ws^ToFMB7vH@L<n7
zJd+pg8fi;k1E<n%%2<LroZD-|lk`ry1)_s807t`jT1ht$oSq5;qDK#+vt1CVo`KY5
z2?{UwRP0^5!+r5Mk^-t3Y2PKBIMLv!BhQ|cS8h^@wQE6@!*E}jI?}I(j0HY_rSlYD
zN?F~^cg2B&`M`hU2-!nzzgKvROss@L_no+HslD1w^Gnz%*5E?_0nHg<k0s~i#OccD
z$1w@nq=js(@Hg-0OSSb;+Vr0i5HtvM8O2jccG!*UX{aFwXxlcO$VK*#bn@LW!fui`
zv)Oww0vr3-CS746*W?yRLb1${*d;+nH?hufEcfHdz=wzDv<ddXm}LzNFL7iN%5DE*
z%^xwV>QMX%#7-7zoGNdLR*)(7hB4}#aJhEQ?4z+ESrttPWLoUdFw|i0>XP3I%OOw$
zs@7On_#)o~>&|0M8xI{&XOtW+uXjz<2pzlpqZ^6O9zRoiGnc}L`Wdn;4hRD>Eebh-
zOc;vhL*D0Wwr&qbQJ2lcxm7GG2aiOB;%@aXF|0@TBK<LVkAS)!{f5X?xqL}HzecMU
zrj^Bt>5VJpyudfG0oW)N)lC9fU6WS-hzCB746w&JTE+x2gFk~L<Ql7^6CMEDgIG=W
zX#J<ah=d}lkKC*aR_ZemOfmQv6w~ibNOj={JVYGV#RPJDQ+Qhe&2Kn)YyIchk1=pg
zOqn1s5&ur_oe`p342B57wy5xtOIyCah5H(vqfiu>KzSsiWn*v$skdLEn-R19Nt_p5
zA(IQuX2aawGYKLj(e~fBj~&j4SODkynE7$w<tuz2`hh%<HySL-l7->gC`Tt;=Wz3*
z-9oXI+O$}u4K_Z9p1_;2+3sd9xi=9HDLn$P%H+Cqx>|K`{zpq|_Fbw3yby&CJw`91
zmc#w&gXDl1cUJ*rzJ_cCQ#md5B=(XEp{o|oeBX(GVzx0)%|h;Y$dwaBnV(&Nulq8P
zR1-OpXBE00;jL}8bqMCU$pRn;*Tqs@SRF&KzBvN-ImC-@o?m*pb_wOh7VS+>rg&LA
zJYwjQP2;Pv%!@#4D_E-CxPHl`Vm^7H7s63>WM*1JTU=Oc0aqF`-Zz0RgB<!im318q
zdKfXBpu=|A+tw8?s$44Mg!{c{4j5Zwg}$i&e#w#HBZ39|I)(IIKIwKXEvv>1mve%2
zY7`bH+r;|50J~J99n*1=Jk#|&tV)MwfE%!4taK4ulc#D_gwrlG2>%C<Dp*j8|AUzj
zJV?`8EaOTIw8H0R;>ItCq;NosNO$2f*q2fbJRX&=*MH!y(Z8w%=9Uj#*p#2A`uOe%
zmLjb@fJYtEA(5}EV>!4!rOY{y__b!o2>PU2Y?69Z(PW3h;{=S&^q<6qu{)eanfCG$
zfd01D{rHzQ=h?-48~L311ZnEgVeSDPm>nuB8bd*QgG3oJ?4OSfu#TBH7+SP?4tM#Z
za?=6sMQL`xl#{Dd64ZYGJxAC<q4lV@YCDX$d*A??PeB}YokqE_V2IMEl9l>RNr2F~
zVNw~f5zCt(y#Zn%6irQ+6M2!?BQ!bB=nI6x3X*llWZh<rFGc(YpZV$%<y&JVO7h^O
z$71esVz4KF1ML*z@flUd7h^~%j7baMbvE6{DR-de{b#a$VWrXPA5#?mUM~J~QSHoM
zmKn}rn?l*ZT9>i=;@Xf#4~RX7x7MG;Zi+^g11yM1sk~k_@0!BGve1pcPQtfYwXO|!
zR6hM?A}dIOQoO6?XkjMQV5!v>Ec<PhHPN$^MtaSY<Z(Uj^46}Swl<{cP(hOQEQ7n`
zp%*cGvc4l5j7II>#%hF;Xe(iBrJ#OQVQ|r%)PnR#&O{TJrYue@Ehtb%kfj7bN=+l1
z?fc0ls~05`FaXs<v((6GUMir)$aq4i{zbENLVzH1pQ7%*6+(}HN>UfQhU$=d0J+q-
z{LQ?ig%`&Om3pq+o_L9oIpDN2<|DT~2uf+4{{v5Oe0>{7{|X22pSzuLV6{6Uvlnjs
z#^&WvE|G$C(Z7?%1X@s!oLcm4LE?X&!#PSe;~&1eWU)q=Fkg<#uotAlLx%PG7KzkN
zQa@6Ffxx4E0xTz$kR;CZtHA<daan?*yG-aH2f>J2s@bn8Yco_UD7I@fZch<JXCZ_%
zfoT3RjR<HP8h7?X%b(RlBy}z15ST)OHQ?`G$L)39z}pA4Xfblb8()Vt&S5E^1c^W=
zT+qNDD7pxX6vV0TT8O%>llNl%{to%Ke+v~xM|g8(sUL-wRyPclre^n6;iVgEEu!x~
zxF=Hk^9S~Vn>jR+%A(mvbkjkY_w0Zz=*U;ci{s><kDX)-*PjSMszsEko|A^6VZ<_q
z*Q8dgbCR!E6Ocshlfl(xz7&?NKys0)VP+~vVcsyx>Vl`hhXqZa_c}QzQDH<no7ViQ
z2csvAy7^aN8kNz*U10U`iV=y*#i`%;mUSksMkD-WNu2q5AA=d?@EsgDBTJ3GUQ=BP
z*o`o?fs*8p)B2mVvY32ECY-Jde`jwDyD3`I(Prj~!p}^{uyn>TON7iyH%cyqQGOD%
z@2%=g=%xD`#mX7U;Qt1oCmm5({pMA30E+1JL3RYb#hD7bW%BR|6l=e8lo9`ZuO+i)
zXWtTmQ1|Gzc>F#3R{)1|F=GTcxSM7hL@ab^G}8obR{>exR2x|RWlx+nG`VoH(2OEz
z@gD~A+*^Z0bu==H@6}GGCY~-xk9Kk0uOd{mo3R3wljZa&M~(iK%lSamvrNlyrl^NW
zS6zHmLnfv1qt!$53Yexa5T_Tz1I_+t+h0DG*3aIv<WhUOKrQloY1E}1tLv*25;$$X
z$I`s3169YqC4sNJKUCPlaN#k()>N0p%wL{%ZaJhvju4u-q`l)uaYvMTmnsPTTbE$H
zD$(*KGnA+KWBj<lz}J7^B(tDyBdNFaoRf`2w$!V;X82|L{QZ%A1E7wp&DhdevDIbj
z<GqjGO8h14CBM&(bEpqzm58an&fp2*Qj9+4@x^NcQPVP;wL@YBbZRH8L&@kV)PmHu
zwMz(tD)VE1<w%ild`ku|c}F*z)~tiYH^?;hFMBHIgIl_1{}lu~=_+?u6jT&tOK~Yp
z2i9%Ihz2%sb;!`*H0MTbkTbDa^J&6y3s<RjY7w!g^@qsu4}0-4fv=mcK*?Ku@*+LE
zI67#5v5<$GO^(D*MDv3?&`j|QcE%dNIo#5Qdev$_e^oR87%VgNhKTvcByl-YR)AVr
zb+Vw5$j=l+arIlw7jc;^iBp$tlsMg8ftd!p3q`44ob-Jk$#oqo3ncN9(O`o|H#Ymu
zs8W<TQXtGSFT35@PB9)w2L^u`oK$Rz7-7qLh5%y|I6HK`iJZ_Ex`$0oF9@d8&ZNMg
z6q_f@B(u$6AjPhs1`rmvI8sQ`+EUW*Hm)Ssbk<YE#8q&_zRlJ&CHz>2g{ruL+j|^Q
zZcgFNI~0W44`$5XyVGa4yp}$ljpr1ItJp;k(t(WOL@IXB4L}BQ-F3C~FFSxH9f>MO
zc3$hCBI@Kt;dPEB341j@y)p_22~|^r2Cr6SBBk79Jz}r!FxoqT&GWL`{Xe6i_3}1Q
zU26&)sx!pOQW-O(F{`8q=hcxLPG?>A;*YpvRKjq<e9bcPv#I0Qo%gxlrKj1dRZ;}?
zf=*zEh-UFFj2jz-t{uC|5^6dsM9j}miO=2JiR_t>=wUyci-W<$B3Fc8EvrX@Phj>{
z^Q4uSby&iNQ|-}(Q)U@s?8|vIF3*_ea{;aoBOoHW5RmHgDC&em!p&+YeeMPXcjHD3
zwYS|>G5R!vDB$vX@X4_c#Rn%l+}5kD!9^>5uG67+)Ff#B*CC`NFJKis$#n`eutDsx
zYi+YmVwRpOt?B1AAxM1duTr!_KL~`#%<Ab>HZkZ$=jN6UEj|^rnw!H41vt>Wl7O+}
zAU_^@jUppc9^HSUD>hJ5gcPY@%BHpCIG5?6Qs;^LaCJ|KO6(sqjX(BDto8@~S-YSs
znyU<!euayZ)B6*)$dQyK+b!AXY>pFr2NwgbEpTf;Dk&tUe0_MGzb`UZOHpVKXc?Jg
zYd#Nna8YlZJVP~Ayx~UdrlPUF@ZbQ;YiI_n06szhpYZ{{yXew-v5}PD$_W^I+r87~
zl~=d9PC{?`MZ~Cl4vgX&ndu6(eTPa`kb%gzICO~;cEdWo2XN1Qw_pSjlKGlw<Yz83
z1K@6xP4@I!L`Q<_VFgU*ba1wD>?UOsR%JjiO&@mrbT_j^2%jt)9_^&&nmuKmZ+%(>
z8~V->C`O-W$@iE2szyUId0&@Ufr(q+hkSB+L}Rltb_^w{9ppg;acnFnhyen`F966?
z3#wS^tt`wPi#?slYI#lRBnbB1JVTV4e+92}Y7l`Z@v&`lx+%}XlBIwLcVzikYu>1d
z90I{aa~wo84RSjUz#Y*_uN=fR)3uGA9)OvAo%_&mzPmDblaD$wyvA&1s+6ZZo3I<B
z6`jP&WXyfGQ7=5vcqfPZSZt=2<loN0p(uoIx4ypk2tB7yxHF2JwMGyU4##tAj;DC~
zKEUHs3Q`n7Ovc61N{hoSknqrs%e(c+jH5{8MW?O?!>mr!2t`yz`!FB>B00vzP;b{J
z?2MSiYtL!wllfb)=o)0l)VT#u0?@S+;YBa$CWxXVenN@Q>F7pWW!>CE)sZnb#xM+^
zS*h=J>18b#7Zz|sBA^GRKVTcv-3GYwLJZNi_TX$XK=3*FW$WM4nt`N`>Evl+1Od3$
zS-_%oCA~23ptyX6vfR5vpjPoKy7U(s*%U}ipFX?c0!p;>Jtjg`F%;gFPG)HTLh#DW
z%cJ;$unuzT?WF>E*L+*DfNzmIHBhW^Ld8Ad7^aqh;w^4yWIp_?GA9en<wHq#b+Be{
z1zr4vJ^LX~P?g&8Epn&-yTX4b)5w(c$rqfzceI#=UVD|Y%6atarlj}|mBX-b7-n1J
zZ{Px?rC$*r-zpbZ_0+H7!CMeKA+kl!pF@zR@_o6#OW}WK5@E^@L&fG9%pA~E5-&ar
zbi{;g#h_@%fw81+rqm^)_!Qbrfg&Yk7o0l5FG%!eX=tY9oL0k3<JmWZvK@QG#{rfu
z)sZ|Lox#FVLN+mIg)YELXR~!&)h{bg9NC56T57tm{$(T|=i2hCY43!T{Ws<tvIR|y
zOjR~cUDp`NL%31uYwL-AmOzc<Ti;)FAfPo<Gs1O%@4(0V$lRGMsQH&5Y>3W`r#fRK
ze{A-PGF=kR*>K|gVV*egX-7@@PXvB(%a@xASI#O^O>Ei>bVxj7nKf$5>q0-6HH+@Z
zUdv6OMd|&8H$SssibKVp4IEUGnaC5;c!ns`=q*jO#h#`^DgE`i^5!@itm!XnkRvBt
zxo%&wt${`pn}w1R7VS8ia5OG}A7R-+n5%sK>DM`!Gi6*$MuOUbpUrhdcwuPw9c2`J
zf9#n+C#<qxF8&2f7)IbDz>ZLKN4+#yK!x1DISfLp4T<-F+JR8jboxTBxr7Q7gx@+L
ztlXp7+<%lL*@E&#u-#}jhQHr7^&K8|>c51Ce!uGokcVR-yM;mYJHBL1;C}G0&!jD$
zF^`x;7!B1$j8LniRf{-iDvAlF`%0&|4_ff{kXk*Xv#@`w{PzK51JL;6O;pYjk1&uj
zZ#Y$^d9f2`u^i2Nr+DEZun+?XO8E$zn|L`qbh}$LEq^Ufc!J2OLHU`T<UhoJH4Ig2
zLOKJgtSQ6mawFb*X<2$tV3DfD)s9_M>q;g;ZH#zL2dx#t$iowVrefG<x?J<RPbi$$
zJ5MA5>q%bM*;V^D(viGLby^3DV%45!GdoJ`PK+6tkq5u^xfCC5q5GbJ>WAFr$+21`
zt};H*j~^k{>?lk#9K|FwHDmT~oV^7!=-Z+paXa<kHbTlK3g3W774Mp?yH`z99x-JV
z^|9m858;lakW6<i<M`Io_C7#CdL9u6UE#9;;&2WwJPGh?G~}-1{hxARE}=#E7brJ4
zT}T;v+S;;@$;0kBU48yGK%MvmvX}^e81sgHL^2)nfdA<*4{T^Yxn03b*EZKHf(paY
zNSxu8&W`i72$`R%9&GWLDz%++chl4c3S9@5tPzZ)ZL-&b-~SQP3Zj?84CgybJ;Jqk
z#TUwMc`pway2h0Z(b->Z#na>iMcra}CVXWzzj|0}6OlYl1Y1C)=N0I%Ka&;<LiY!o
zB{>WEbt{N^ltHrFN;81@0jqZ|Tk?e{mP_ObY632W2@Hq-!`<L8J=pukZs9H2n&duU
zS9VaA-oOIl1TVgx8>zQSTYpoq7d8rTX(DusV?zYkt@CfSUIbIRp_Pgdk2p<>IKnP8
zr?le`5MhT6Jo>5GuhYY@+uN#y<r^cOKHWrC#;0^dYTqW3gT>eLj(E+3rB6-`FmJ<$
zGx5v?6mmS@4v~a5$jbA|AN4%{+uZat=4@-Zge?oJeS!1(0mf{+W}Z%$ozKTbAxwVk
z;Wq8Or`EQ)ZZ6`PCX(8Atsv&Y;&+k+tL8LAjoXW<jQM={AgHK%{h!9ZF*>uZ+cLIo
zr}D(MU8&gi6WdNIww+Xxiczs`+qP}9>+9RM-#>5nxIfSNvCkQE?J?F`bMG~$x19_T
zRAMFc7^L>1@>c?POBPM4rM;2$^UFDWfjXTGJIyg%<LE*|Tgs$GV??y360+(1PkH&v
z9?HsQJ+)5bSDs2egV6Ti)S|qd2`H2lrK|EG#pJ4Jo)_@2%+9!$YtPd@sb4HHBh`3A
z#FV&lbIE`%ticviICLxw#h=`?J(hj<I__EV-wVgB!obhOKA>@VC>u#S9@(6`Q`(vY
zmjnVN`R&Z#nO90&JKzJVXif-VaurG70y-amlr50f$IE3IAB3a89|$6Nx0;d%9j9Et
zws0c95Srp^WW27ulgMBOWq=*2Cb7Kr46d#vGOr{5_(J}!oMz=!n|jIrYg7tOXF5JT
z7(Oac>Z+8!j2|xiD}d&BRlF?TbfVPqNcG~J5nt*TM3kT(s;iM)@NAOEfB{jOX^+R}
zK$19Wh=C4m&pPB+*p7--0_e2pcB~OVkPt^(Fpo&$)t{F(k>VCzFAevO9Ve%^HTPGg
ztRxXwz%GUD(tU7+haKwX^BgJOvzp+UPcS<TKjAxkf~gC>XE|G)zFW%fDh~8e>m`Ib
zZi8U-r+Ik8w8uKk(rhsck1Z_ciGKKI9q^MzM#7Yl9|kBN?AGwT$%j4vU=r(OT?R@M
z*6sC|_gbDq{2<3U@1b%Do*MiOYsSEpmBddfXaXhL4EXfRWY5aA<fb4PIL~dsr}Ti5
zNF~v`*H+B@R=9%EL)3y?s%+{BI2$T}PMqS0FV{V+bl?hM6)Bzzhuga10$MD7b9_>S
z$0=|*C1Jn*Pr41tD_E(%cjR^N29k6(>BAe3dSMX9gNM3bp_e^c)=Uye=7ClNtDG<y
z@`CJoHPz923V_jv=7Y?zZ)0DW*IZ}(0!_+5>3VPf(ZOqdT4Rpo;|od-w_0-cvMpJP
z9=+Ws)jqz3u!$qAIAKReOTNWVy?Q{6;rAak+wib@#^_upwK4q48$K4B&}i^9tfk=2
zw_d2ji?dWio%%b9UFpg$lU0gHf~Y-5CfN7LZH4w1dC`jbf#ejH>_5$vg6`!TGZq*m
z+XAc(6LGLH7gGX9NTBn<#xNiZx(F?ppWgZ5cNYz9yrOMA(fOUOvqnF4lGbZ^-x0dm
zulHb{b1eC4UdlIjA5yd}nlrIHx4@mgRb`ZdZnVA6^No*W08Xwx6`{K>c&Q~7e(D+p
zI_P|!`h*-=`%dK)C=pr{;fouCIvJ28kYH;(9E%)W+65i{T-;+$WzJ0unnBRP7wAZ#
z_bdoCqCC%)SWACpR#y~g+!l!NhvV}q9~d~1mn~?~s7e55Cg_<47v+pxii7B0{szQ*
zR(*t#+_n!=FKq%6h7+AV$p?9z_w_6+WG|WFl^n&>i3S{%eVQODTnmn;<m%K^MruWU
z+k#UpLpm1>GoL_D(<a5OsH=NC5AjAYLE_qh$6N#`q^tym`muf5VD_MqT*}L+%1-<N
zv0c?BowqMQ1V$3PVC^oiD*O9g;FQa%)^pdzDc^i}EoL+sQFb02eP=GKjF%58?ln1L
z_)OlgB49zvY#jENuy#EsFQ=$R*;{&0-#=^=-M`bq>M$~V-;+hICp3pf>spT`cd|N9
zVpHskK7Nw0-)TY%UU7ll7F?4Lt(_@TteYQio%{HGfRcb~0m}lTNCxqlD8sjwRlU_X
z4}>}f?UhqmCG}{wig`yK3CdEu<{xBc$JJ826R3XGkC|G>j}=412+lR%{xgP{wIoz@
zWyfBq+ecA`EFmYKNTo?461T<K^`m%UI@LcZDtI5~!Z9>!=mk&h3GA70B*)Bh%McPg
z``rq4P-vU7b{N(Tm;6NM4Mzr^iT<y4F>p)oE`S>bF-Xyy$bry&PMlG|y}7=gaTS*-
z_0&zo&;y0F$|pKk0kyEdg?SytCdh{_y2^7hR^L=ygw~dv#N+D$#3TLC_2e3{#6|EA
zlz;63+}p257TA<m@B)=MOuc3|yIA7F<?-sguM?Gn7dH4hI1B@Rdp41(?E&?@I51IW
zsYoQ1n{22wk{BoMD5NT97waO88g`;nu3kw3TF$;JnUqYA60E=e!_mB7^)OWU$08J<
zggkGgu#)vob!CogMRcyT0OT=Z^5bW<3!%*xKtP%Yas0Fj*pn{Jno-B^T_aH*rlgA5
zxIt4$L`$8p%wZ$=^K^>bH>!l?NKI#L{g6wQmVJw<HOq}~GFgof;h^Wb(rI&|)Ug82
z^s0|p87`jF$!FP8T~uter}38}x-|_)o}Y?}ybK+ogk(bL=Ii>{ZjzvBugjc($!j?a
z4AgF~nMBi1HHzKI>t*THYE*%bYaVt`bn!&gqCRQ)<w?|ty}aWxnzGmEtdn5K45|49
z1UX1+QCFR{p_q=6EKeQ&e8StC<37B>jnlTeBj<!au}ph~>UpqFzejl^dNm1VB+2O?
z5;;Sr_=nI&|E%@j{8Am>-mnin66aE`aYc~_;=)+V25izwn-*3o`)Le&;?J-Jv1*(!
z^EG)6xua<S{!T>P`bq_ukW~4(Bn2oORZ>OAqfn4a1l=p7bg36Tp8pbBz!}IS$<#Z1
z);Ij{;l0BL%1mN+resInirj=GZ0#L=SdO+nQi2O6J`Kg{?x%<FmFsS8FCi;M4X;CN
zZ`#`c;CU*Iw%Y4SsVww(BN;fE>~DTt*jRL$BpwPwNliDg1~$L~*+M77U|+2<QEzn2
z^jc-VH1g!J`Ai)WQR;-B<ZKbcVMpr>QofxYY%iMIEx%i=2jvMqC|UfWHVBWARNs1`
zOQ2`gtCltBr`;{p3v}kcJj0=Yl~3nS@6p2iT@=N2rrm@qI&BFR5b94{wpq)Bgig|Q
z*O-*d2)lB^i=>`=D4^oAzP_~I&A3B>XQs9A=U|vXZJH0nxs}syYhfzl3%VB}`xCwh
zWs^NpU*IZ4fzK;G<2nCLmBce@+c<JJKiDB;0;=<#^ND<_>IB-36Or$j0lP^c6@B7@
z#rIW7s~k#oA7$$8k5mE4iMENF&YQlgz=$nN(ikrJMI~1rx%1aVRKF0*u1<H8$q2y5
z`<W4u{1_yoqh9l;^0$rU7^3kpoiA#D-|WR;KP4ooV?Uwf4hdm2Pj<W&I2<fU(O?4#
z^AC^`H^b{}S*Wsx9|X~O<LD5*rkczmAB^2EvLKLlw~OqYaH@^3eg!iU$vaB7_6GYG
zGioHXG<8LVcc#UfqSMncX|k+O&jEAcF%%H7kyu2w)rM!EcwJh$fzb_dp+OXap<DDn
ziEtSl&5U`%!<ALO+<e>?5QD$5wX_c>DAB{Sf=c*vl#xul1!;e^P1c9#t}tCCXR^4s
zAJ9-T=PP&~S@{6ThumW#j5weU93IM=y1UFud%rxnpyS*5{5R^MeHo@>4lsk*)bI3f
zd`g%VRZO0l6VqebDiF?`LsQC6r+CEecu^Adt~z#{3@!z(Bw)4M!BV;ZUewr61Fu2q
zE%o%-8p;HI7pr0u=0Qt&M1T(Dv0;Da(1apAk&l*Ry1Q_z@eC_Am&bd^TWR_AH6jAh
z?3zv<eoH_(^ukHwfXH(;VOX0d$Q{BKox&N{2R}Z7YXEUO_{Bta3_1&Wv8yP5%IP`z
z(x6Ek-Q1lM5vYYNzw9>^tXSR-#n|}R%BmqP=;_)*r=P$twp)eJGRdf}Ip|(jSJ`5N
zY>JQ)=Jl*m<$;zfeQQ%%`RC8n#^0-xh}Pw-HKj^FKkZtJKL@=_U|=p^U8m9X2zaZI
zB57BXlQj=1L380Ut-ZGwITfyj&WGdy)<YB99F;93Uynot1cMcOx4aoWI0Bnztq5_C
zIub+k@o*A|OVd0x1vVh*KEHYjvOt?q@no@WJvKbnp7QVXP7)wgN^cR&pbfP&8@?pG
zGBE``t<6cjPP(}=urDqloz<cj{26digy@y%JF9Shy)wG)M88j=^2Zw2jk#&Y!9&T5
z6+CIEWC-Y9Z>4EvYgRW~!B$PM;8&E1l50;us{HkntA^?9h`=dkVK%OeaoNAdPy)Wx
z09;{;(8#t(<6>=csGi{qiN`TC6*1Do*lA=C-N*BQ6@q|J!KIOI+ioOJ+6Th=s@;WI
zMi^@{r^H>D&$mAqN|HPKF*S#?`QT9PzlWJ64=5<<us#(B8N2Sb^Az(j=y33|HmEqo
ze%E~8S|*ccSqO!fTTMHtKROh)-<l9b&m}V@1d#(Rb4_kU@Kpsb0*lKDH+&k1x1E%M
zIQB88rtN%?$6DAmSD3joVEu}zt7hoazbu$q8`hT^>*a<%%A?AjCOtI=tkAJ;J@EB*
zrfCVuV=xCjvc}{m9!!8JSFAqDd<E?Z);+IeDUGDO2vUiG?pJDh)ev$p3haz;YhP3_
zY<xhcc_@ZT;Q`Z3-z8jfkP_;nR%=ol8y89aerI6o+s;qXpz_pMi4xsk(w4<av`=x4
z7<BDtqI$pwIS0)h^=nmEMmI&1{jmuMT+cOQau+Og;qRnud6U65P-DY|af(2TEA%>;
z{%NJ5A4=|dhEigzTnj6PC<=9{1=m{0Qwfwai~H8dUf7M8T1*x-_KiQEhydF5#-JLR
zeyZg?z5{#HgJ{bc?Hj!(7C|U^`uHfdu#Wa*!YycI#Z;+mPfEw&O%%LdOR%rjR+EbY
zb4Jb~jkW9q#d#J9y^k@V8D6Fn?y?LYv7egSFISIxk<!4RY9lu8H$@_)BS9deC$$5O
z9FX#~Km9r7a=<#0<~J(3WX*Wcp4imfO?m_U0>OSoB&%Nq+3&iqk6^#$7*c%;yyGG^
zUBW`{>}#TS_RxS^QLm2=6tIis$!9IghHq$%-AQgW3GRa77O4a4Vd}_Eo>t+l=!&MY
z>3M_m6?HG+(DyV~2eU5r-Mja07fe!?Eg!rvaFHk+30A;;{v8@VNjFO~bWTXz@<~>J
zRD~<`N+yb@)6O(<M>B3Ii)w43Wa8uUbk_TTrlNVghqWq_RE5s!&fEQOzBT&d3+TM_
zb#QB91v=@L{^Sm7_b`tTtBMaINhgc|rzn%$)ajx{MCW=4M~UCeA6OE3#7N|_Ftkl0
zI=l&hd}khF3mPkgPEC;|116*r{c$mHBDmkk78z$g98s@w(PtAnYXhhzAGZ#VF@?8>
zP7$4Gb-&dOszdPJ?59eF)Wd7g86@|>m(t2(qLxePDA(dCi%&@TXX510FC~k18wqn{
zCOdX;-`--{RN#~r!yh~6_4oQ)NTf!e%$Pru|C+kRrJ-gab)(&Be9YhMq!%XRMx%#d
z)HGkj9Fz26pBJj9S=~+pgTZfY2xHt$jn-kP75A}-qX4ezHaq2gPXTPd!k^IH@29kx
z0x=78p(3o6_AcE+>nE(Zdfq`FzQ64M6g?;?Z%fnw!BuQV{mfH5YD5OVr?E9vrbaEw
z_#~#I;+2@AdBZtPUida+qGzwI;Fzqy^{xDP$vRa`5HSE4^IcrBx6t4j%2VXb{?#uo
zI>}dCl^Jx54);6*>Bja9Fdu7B{dqE8C1i$hG&(XE08K)kcwzPxF+?}mLp1L3+{LaV
z`D(5m@Z(Bw)Dj_3tq?YUA_T|jIJJ~AZRzU<At1~Ue2<5dG|;`#TtLMY%A)TvJCk34
z3|I4h2N-5DNmJ8P`Kpm@;a|hL|2-<ZZfa{Zk5wEw2id$y6RX6INFpzXu-Z$kGP{sk
z;1^DKTEd)gdS9R{2_nPEMiWTzH7;ARqZB4Z>u-~y!&9p~!NQtbE|;5vrD<EvcR~<^
zFm<QzkD~9wSz?--dwEP*>-tV6hcJ=*XXVMONUG`#5Ea|e#>s!B0-u9)&IDA^jM4mD
zWW1ml>&OUQa>A6f&Nz~|;Lm%EZSFuUgl6Nx_uFk2`lSE3@d__WbOhGF5WU1oqFSr2
zM7MQmw|C|~y<4%ZcK^YH9WrDuf?7i_AWmV9((Qhg{xyfhCNrD|Jx}hif)6rX*c$GY
zFrp<>e>muuPqIY{_~Cjr-ohW0)mI0tmR8NL2{XxhE;k&@{=>@K?SYpFO&kT)t8BmQ
zQo=eTTFKHE4A8g8_l=)YqoAJ+^Is)_SpO%IKrBrEC;%PXsO?M<qq9=LFHx3XI8HS^
zOXB|P%549mmATpeS^8V&?`EsohtkBDV0oP1SZ`pJ<6>`zgLOqKxc2B~sX<N2-4auy
zkR#PHapafS)Zjvy>}Z08=;A|dL>Xp3=ne62T#&2S!Sj9wJJQZXi^qwNE6}Lv0S0U1
z&ae39t4sHe)wO%om%^M60%=~UHJG@65IF0HXDsc97(5o$fg_I-b&^J8GjG9bybi}z
zoKv-s!|~s5brR7KvGn;FeQxdnw9W_x3}GNH5<4v6jSFR4!6>bTclC=iNg&X2Q77n{
zU|5<gP0h5M-N}ULoTDY-f4GhBv5fz|dA=e44r)uez#$>qo!A+z?@plRjvaWoq)sMw
z`?WbT3Omz-hKUrXa1zK-Jq9w>5iM~5x&96KIP#_7FOQZ8!T3bWFGHsoAUJ)X^{-&F
z|9`=juyAy8CShS>{y(x#B+P8wY>aXwEUb(w9`+`T@<x`*&Nlx9BKZ?6npL|rEG2>I
zaJ(Fa!3b8H9az{e#Ujv_?%*w3oR?MQZHjg!TROh3y@3ZL&nD_*jliLVY!KQ>o^;4M
zORIcwReI;o#_5aG$?3=fuy)+xug5xRx5pAsw6EOd(a9|}-7_Tygo~k7KvxM4blh=j
zLCBo-Tipg1EZYZA@k1h*tmO-U6jlrv4*kKiW=yd#$=UW+SB%nYq;j%lY9(}?Y3(O%
z!3XULUnDx3M7WkHbEvj?jC`rfWU6Cn2S!wy$aoO(bb_2PfapwycgF+dPcnA>ZFi)e
zmkO9ih!A^W4V^5}m~e%=UU5-bpD%oJ{L$ryfM9)Sa9(x+$ZhdPEMZS^@J`!$Co2`Y
znCs0JvM=-jRXl&rR#rp=C}}38OMcNV$f!R3!5H5E9gPu(rPRvYvj#>$Ruh>*4@5&L
z67J<L#l#o^tlOo?)$xEW!yf9L@`NPz+K5#vN}I+kv52KMR#x_VG_oI@x&+lvB6}LN
z?8_`c*I;uQ^IS&8@j7(%1EaNXLQ7_qV}A>j<8=bDy-O|9{UX1}>B(&g#trtOI*O1H
zdtPomrlMra$&6yC%6O~fNu4G!gcLuYTyVGn45G9&Zx$@Pbh-Ka_i}yBlqL0~d5U%A
z{*Fbw^{a7>5<$6{Xk)kOD!UEy>$S9@kr2pIn1@}Vo>ey8Fqs;P1K~5&x`mJCykikx
zaWh{c{2J+*QW;=m-QY-_;=M+imA}{uCjf$_yLxs7eP;dGa!)_W3|KOMdF@znmvt>)
zaU?VX<46{7VXeRp`S~F)wgx+;?7qx(N1kZQMj{pt5Zz3Fm2j88=%aw^wC=2FE8=oa
zx0QtU7-RLyeF%BbAWt`)pnL;4%*~`6bJ}ef|FJl()~#4Ih4=0L2=DE)*Kpa{U<H;B
zRI{OJReAAH#f|g`VS3gm&NWTp8+?l!I1FJv5eu?6Vq_H0!*e?<>stK_`GSi8=}$88
zp`OjOTzaz)((c?|GjJbj#|$ce0Kq#um5DfNz0MhhXT-+FY?U(oC_Rt*M*DCVlL)pt
zVPDH;|KFqG2=X#C-aJ~$B>JVR^5L?0lf=Mc$DNO#hM*$i;vS%KlKdRl=Uaq9?zq2Z
z-k1?Qf1uS>O5v{JcMK(X%|4Ip`3}6<ha+7G+~}1F$*>w-d-=SDw9Ya4t;&p8HmW1S
zY9Qa{`}HB<*22o;M|Pbsq#|anb-MPnmSxcmFgi(*3de=k6aMf{>BXN>G7M>DJR68$
z3|>@k+NmVSMj$VB(_5Y@Kh)&t6j$Sum>cT~Y<74DTfm#Zn}jtmx%%=?$fxwi^`<WQ
zF!(7g!+9PPu|coPYU_!l?941GQD-AjBySw(7SUu9`>Xs%@Wa;R9VBfo6^A~<R3rIO
zncxu)$LX6>Bmn6Qe@4uO;O2QBq*_W8iI|MDB9NyeS$XRkC0MGGHg;JMD*1pgWH3h=
zwiWPf@xJl=0Z6l4@&TRDi*KESksxmlhJy&d7)IM0%RjMrRlF{t$ZBCsyxW}6PI4x?
zUe{Y&dWSKB&9~=Y>yxyu-|O0;SkYOObJrhs%tMpF(okS^q$&H5LOmF2yASW^Rq7q3
z#A!L$MNT+u29*&pOl3lJ#f+f_BB@`rSbT{?;wgno)J6z4yX81B0%wqJMVFER18wWg
z;@k0@wL&!SLwA7}Wcc1n)9zZ$_QfI-XU@0Rf>3rY*|fQrwESl#J<x6+r#SXy1~Y|L
z0+vhu%=of5l@y#T9LVCEFGnWhp#+SA^ViT764}RKJJ;}+l_0J&z^f{9P4u`R5^CBr
zo*{1fnAr!5qpk^+6SIvUi_4i?9^yt5GpGl*Z@DeD;g%6l-x7ML(;9vRPp%%_rnp&W
z7zXxQQpTHJqf>paHq7K~Hvd|&L@PvsI{sLuD$h@L(-XJtSa&IHWJk4DAiTmkyMLUy
zg)j-f#GzZ2al<RPQ*j{7)d9m?7P~(I>S;9pYvSPeA0!SgZub9994yRSOn(yxGZWLl
zXO8RKDHl&~+q0b!%Oc7T-=gyTKc?_sI=(T*UFbM}%x2={P$l;m8<=Gf+SjEpde}e*
zQMiDAQZ&5YAyk940Ak(o?Bit|RLg?ty7Hvs85Z;`6x=*cOLRg})Wj1!cv7BVp)Mqb
z>dxATVG_MbH-Fv{{Z&`$fAtF~?-dK8vaJLFOpZg0zU9DCK$-J97i&yVk9sFbkP(YB
z*xgujQs#qtxx)5vMxyN|0X&*J+a8aLDRkv-c$m&xq$?c#EY3a1X|_)*^$}=wPiDWf
zorij#EnoQcWnnX%rsq92^DWP5wYJEE6fATp|0z?e0RFWa{_s*?LWcrJ+W||mm(Y#<
z?s_ecVQg6kAM`;CGphG(k?px1cgR78CdOI`ZI-EFG}m<zBUMBp{`D;`@5#g6Z5PO!
z?`9*7>m)cis*0he$FrhN<>m%dH%uS=?pDB?`s0-6SAzZhU^Us8xU{TeCxoIZ2JCru
zA!iyN)8}!>hcYC8=rlh4r%**9BG8menN{#%eTk<k>XtbG(+*}A*zv;K@<G5s@7@Vb
zQzf>sq>V}|uu1u<8L`;dmd-#mtT{-xpaDtQdOY2dg<)4W`%vT8uXgQH)Cl>7w87u|
zBN&kwU1Jlz6x1zpe&k8?;Jfr1ql^U-|DnMZztZIP`MFZ9O-X5yM-WV~er{ZZG0QN$
z;Ov&MHLtwc3R$)Mp;&X`W?&7y*ee>GslP^KNm@vmFg-PuM(Av@P(T7r!_r4T3e%oI
zqXLUIMJRXLs8MrEojb1WZf@CX&9(`uE)UA%)y=(8y)7Rc$BJ~-I{32zUbK0}5QvzO
z0(wJn_Z!A)Ekz74Lm8p%Txnd=MZ?=mb9&t!>kRlt-tXjxR3k`oa({l+7oMwX*GEnZ
znpHKTr#qK#8BCYSQ1IQKnJu*41<j3X*ACdT(x7l7?tn4g%e&26<lH4gec9xQ!JXVf
z`PK~pkY)~MO>?2^7?iKq({D@(R=qSJ!0(sj6*SNUS!faJfUzDRt#Ui9`s(`TZDvoM
zH*HJrz7+;_{xG=aZD_O-b!L=2)*OAQ4^L@pP2=}-2^az*b*Ik>=b1yh6o01QtTvnc
z0!rgqTt!O)YOzwfhRI(?Nl)T9U&iNy?TFiVV5qZa*i^TJcfKk~#7oHsH%{UOF0-&4
zc(am0N@n>=GpgU87l|qM>aGfOnsmaYw}?C@N%PU)i1xmkwGh8j!*6C}!DaV$K5F=*
z|K8N~&nY^K90EI>(Q<G3EiAhL2&x!l!vEPcs*_u4WZoBm`kM)e=&hp7NG}_ExlJY9
z$qd^Qx)6t(R*599>o9oAVQhESrj5_0Yc04hzfQSxR(prj@=X8=00ySFf^KDcswzVU
z{MD>Ywm;q#EC&x}YG!1&tz^o%Fll@2;ql?r>qEVq!?oy#3ab)W(*}$3<=C)stJ=0C
zV5*JWo0CXPRa&}6h`5F{;B!~&lb~_HMd`fKrUDJ61dYVl{&uvX-}{QOPgC=*0uBfA
zfe7-`BxMG3%?Y+h#$$Bx_dvH0*xw_OuuA+H2mTAqDvH|)Bg|G&jT8bC4-G-B@L6Ex
zhz!3&E{|F|1Z`QO_b-agGda-@BJ5~BZjoQ^AmE?#=xJT%4=P8Z0Qsy*nTtyWRO#Rk
zM14FO_Z91j=B1bCf)LkdPDA}}(_U5^H~cGsONkm-p-=^K>$0@+?Yz??-7uD&Ym}5m
z*u}xuiuX(G{<K8-vT4DJL*%;^2|l{>7=2?X)+%*myzlp;H)^<qjx1}b^Wk^wF(3*}
z0?=_S&+_PgmUJW9`jT~x%Yy^%-t}`$L^Q0V_8He%*D-8L%+Qb*3Q7hHP6jJS?C6XD
zQwo@Um5tf0lLPwfW>11ppPffxixLueurwO{%ww-Wa53FVklyNUp+@!fISHE6{LT!S
zo|gWyMD}!SaQ&09%Jb%LJZrwIygC&%v)e0|F(I&!!#qqk?${-m;D>5@Xgqz2s^oC?
zJ`d*M1%}*$#Tgr5fNQXFiU^NEc`UZFT^+=tORTkfX$cf&ZxUM(AtCDBN60_n@Wbt}
zz6T%=Y0J3iQIqucnz0{j`SYY<s-iHh#5IkDot)O?!yj>G)nFwuK;9Duiu)Xd;*IEU
zb7-r>DFs-4aa#vYx4VPE-3*g;?FK=Ng-&CrQP8LG%TlN=w)me{kWGgV=?DTetUqPY
zU5NC4`-X}e_{G^nZ1AObuF7i*c}O38p(UmWZRh-q_idfXs?iIeMoo!;PXXV#=st8E
zaO+#glu8j-*B#dU_Giw*jn`&;=9xDqjBSEO%<~KS_r;kEr%#fkk=AasloZs?86U@|
zt?48v<({n~N)$C3G(SyP^M+j?;^5Anv5Ovc;qIZflDT^uFWt8&1WUMcG|n+0ZXSlq
ziALL@Xnmf<RONQwnsuv0S3Hc`KT<K9^Ijc7X|^O4FCX&TShnDHW<v&)9u-0=9O#v0
zOBCY^b7s@NmBZa^I1TympZLCl1E|Cv@*-N6q_UzCd<|bq8=MznrJuH~rLo?LdrE@9
z1hasH8}6{W-?^v$zEPMAOPrji8mvI$*X|;%AJBsbcH9>Pr-wp+%LD_lpUFv7d>-V@
z{r6AUkh@^qoQoW;n9I)eR8y8#?N@O+fM<+uD6m44QJf!x>Cn>gv+Rqvl$&$f=N%yG
zD~$jUV@ko!1n_PkN<?Y#O2XMMz4x`i^~|BHRutzgSoo^-i-ijQZ3Ja$s_4l}CdyIC
zKA>Eq$^`%H=Yw7UVskfunV6-~^;1#UO-$M+f+*`2OcIBg4h}j5$z-)v-Ows2DaKB|
zh47FSb7~h(ffKV1VURx57QD&x&Zk#jS@PI60^Vf&OB(8wiQKPsR#|ea_&E3SeK=U^
zU+Wysf9f1@cV`n@pc4r*^M8sTB}NGgYv;eSTN2iW&L(0e#&$rHzpwsx!_4x38)jA}
z_W$(DT>oD6_%XO%)hGF<bh)g0XIx$pG{(dVd&SQTxs^GlBA#;mcEB~_buA?#0YMtm
z$$COzr5vHdIHJ=isZwYS2~MUko<b@v(aAf5k31S!^>2$%N{jz2Zvm@k$%(F@@b6z6
zx6$$_%P}m$f%85M4lX7|pXviMW?Orn|9ap7EdJ!ma!vlprO@mWOx!|cK(jZuSc<;)
z7%lH=;b#gT10l!Ev)XL{6&55NXSuV8%fzs|Dzt0UUhs6tsJ){&|DuY(zqr1!@eNb+
z=Cd>{t5tW*rkVooV51GLnG3Cybh^Tu%{eG%+Qk)1UmBs-?N`X=!N>O|EWyxg;tZV`
zRVj+OfHMgSLB|sMB@;3T^_>7F4es@W`XMA|(NG~g%*2^4VadAm8}%hPXKP5Spzy+g
zE`@&$5!XK<`Y-iq5>_sDE=FY+Bj^8+6dJNJ|AoG+iL)Wl(An@GzJfz)6p!eO+c6^1
z#%$67=+83HA)mriXP*>Tdc;U2anwuEj|T;PFMv=#951`FW*cvy4<<Q5&Ku}YxVKT9
z3!h1nK8UBWD*$$&x!S$!_PdIahiwxFhARZoUke=_6Ms^uPtfCJr%=Evt})60rvFF_
z9I1}`=oqNxdr{kePnRdznCva9;@SEQQI5`z@5trSAa>Y67C-+TwXWEL$Xf5u9RbAW
z$ZiVGmwEiOLdAW7Y(%Y~@Y@Qhc9~7WOsfzdsJ`-a0kHQ5>gXY7)WD(vt&m*d4WG`A
zb&w8sZOVs3ktcM*hC~Ip|Cp<QbX#8CPBZha8L1az+;0ew|It;~Eq1DDgn~`+10?N6
zla2*fDM6Rba&B69OdIdQWk4O6sI7R28=XxLlafzX_3ONoj`B!rOnSLV(NzzSZBU*O
zTjvyjFSnO_T7GiG>A~<vgLNP?ZY<d0s}*Zr1Zn{6JDWEkf87`lqSvCa<T<AfSh;>Y
zwRgaX5PE%1pg1y$eRRu&ToXDnY-9l^U@zh^jq!bCAIhh!vDE+jrJfkTpBx&>TxhEI
z<ev0LvCPR3NA9iU#6;DZBYrBz%g0$vA@xkc4k=o>G&D*LgyW_5+>?~tDLIOwcZ(FI
zYLS2c8?J1oYlifuq*<(YC#D@d$fS2ZKKNpe9x9)vZ!h`@E0K0_gA!;<DcbuiA2XgZ
zBJTla+Wn;$C~FBQdG*6G<d?392u(m8+t9IeO&O#q@lL=af<}TDkf+)og0)0fohN8-
z`LOJTg8OI3VO-!JkOJc+M@uWo6OsV|iu1-;VSHUiLnF!waZ-Iboo+T8v&Yp0h+`vY
zKhGqGzwTQ6b&w%qKm8XG|Bfr>s<F&Fftz={UmLtk<ct%{oob8`*>v3|MrAcf5g^Uw
z=+qVf!&<u8jNlmA91r_5c6ndF>JjcILC2z)15b_ptLD1#QMe!va5nCAX;8sF{9nv~
z#$JU*+_$_H)6Z%UI}U_beVf>n_{!{?JZ5Xs2DqE1d#PeG9T`7-#zWY@OmCyv3#uEx
zpI$(#cyuNF=DcW(Rn_Qqnan->`L!HIkmo<iTV1SSWXj(&+1<^4sMez_COY+J#+tp~
zc=clLMP9Bhm8g$uZRd5M4o0ZT;4R5fdy_F5?`!aWtrE7mXX^v>D!TFel~tJ2*1`Jv
z0*t+z))1R3f9nOzT#%OT%RHAS2FUQnvoI9ZU#+!OsXrm(yiq)a&mO^Ru;kg&<@8c7
zk9?<N3YO^C_p<q(%!-StyiOytX@ukEc1vX0nZ+~EV+ez5{PNhzoO;jl(Dy8aGZgJ=
zW`GmYb*s^K@Z{(0nBDS{{l2_AKl$s_X4;6IW_<j;czma7VcY$=T+<NbLZw3kyuY4H
zB(!#})Kqu7z~}2NA?y9#v&++&Rq5T9A&ju{Qn}dRA2-5Yo3^h2h2k`>^I-0}bK}SG
zro>{pjk`DxsJV{%w<d%w<p5PrI$m5<#b$+mAN!nBPM$%huoDTgHpJ)pioRo;Anu-t
z&=0Z>a(`-Jk_~9Px4@gAu*XixFTdw@Ur;O2eNS3!rpMJg|K*rJi_elGP{ezcsr~s)
zyfxOyc@9*T^YPJM9;6IHzQ--d>9N%D2&KHo2Fyk|<S81JNx@o&gbq=KF#+iD3EjF^
zPYM@|q4xIIzxf6WV+D2I&SK}V&hp_wX@<E#^QJvo(s9hkV`5^fMsFwxM}8R5IiQkA
zjC!|CLpybcC#4oML_hR=@}h{3z67uWiFwRlsDQ0ROUt}-zY0{j8;4d}*W0^i$kG#_
zGmYI@jqWTWIk5UrLm4yXD6wfVhdPa?rQ44gV`6-uOdw3l!DtY(YiI2j`@<t2RAyhH
z`J^ISeCB*PZ}uyx0$mxT5f}%!%qpgPwm&c%R6YsGmZaWioh6<Y4+m=MOci|Jy{d7!
zHWSyo@lr(v%;+C@S0CX?N<8zLnJh9;%G|l|@?E(3a7ZFasd;i_=5K764}2ax%z4s{
z0<htF)f`!3*NjA>aRWJc7znMwq%yC`iV!WDjp!Lf>^z@sia4Gf!^Ndk*v?VF?Mqf{
zD<~w6CcTlxSJK<6UZ*_djRFjk-Fm4X;n;w5IF*!Sn@y__N;@Zsh^3{2aBa-2BVv*x
zaO?+ba2a-s07Zpej~T;yhs(`#3{^SJYwd_~^hN$>tVeo8;A@R5PYZ+j%my345c8g3
z)=F=56`!_D`qa$F$N5A0$Kz9s(CG5ip(J~UT6}Oa($Je}6rwBJxpqsiv#5|Cgc&Ai
zelVZ<UJ8{?cRpeI7Kv4&jTLi}_USr$zAb^^{@t%3y2myEI`)?+%DGQZ{C;TUxm`o8
z#ajI#fN2Z@uJGa}OUub9clb!@fcE^V1QX+PGHM;|o?Z+ZTJV62*xM}Iml4>(?DW-!
zgGo2<Nfs5`ejn6s;tXm^3SYGI$Op=d_~~H>Cje)QxH<}H_2XeqSwUw^2=TH15~>;L
z9`_f(od=gMGf7#V0UJfyLnoyTAzuPBs8?hZVMvhwqUxrosX;P&4SW{YNt`=CfP}1`
zxCu<?qfbsxJwf}&PHAnS%)TKTKb1qvh?(lZe%V>*l=UV7a-!g5wVoq!3ZloQ6S9<Z
z+D5Die)P`rZ0u@i|6*YN{59K09c-q&CMAJw-MU<;O8h!3SMx><r3>02UDWuRA^*aW
zhMM(v=?(hkqpRqeW=Bm_2~bK0^I*omQY_oXpg%KR8_?wCCVIR90V)Rl5Q$!mc$cU0
zhxX3Nb^Y(7qU)pSSqtZi)$kVxomG@hClj=zHozSF6|e>H*vJ#4!7~ogV%fGu$jcjB
zJiXbDCQVH}!4Jxxv~%)m%@_HsXTKx(3nd_U7QdH$H$UIEMn>D<b1)!>(r@6vO%W%k
zFP`Gm4P2>G)kp6P%L6Wm#h>$xGk<4h+AqS23!UD^#EXXMnISRz5w4~!?F2>h{H5B8
zmds?Qw_Y<G@SO(B6y)U>3C7Zqv!@CIcQ7mj91y^FAsQ^_TSuhxL=nO5cCC}E^+YtL
zeI!w0Z~<CA=kn{zopBvhJ#@0}nMvRprNQw!U%Q+Cua(|XM{R|@Fj)&VS(N^r)&#%9
zb+t`T6_(Yi7v#>(MsQ62ZLu<A?$(*<?2Ex=%O-H+x32750xD)%dWHL9#b2*L<aUqx
zmFcb)%tG+#w7EELJZexqhQRn7yojN5_mV?@L_InONuAoI4#}N`O2oTc9{9xXKU2fh
zf?VY%DgD4+>v^i#va@#JzEHjtvX)QARO;x_z87lS4X2@Hsehv@6IRzN^e+xEYl#>}
zzQT3rm^PXc0>wD5FbAXX?sopG@byWL6m%oeC`oNctn8%J_A`7d0b1Q5|J(1#ipnV}
zyT0Y#qD|{il_~cUxim90KxQ9rf1WQp>`!F0iV$@WA@_cxMz6bSTVj>u1h@izWM8=<
zp^3EpkjLmC+K?!l%d;4%nS-)<Fd?nPC-D9TUP2SQSpaOB(L+SPRGvy+-E>602i`J8
zeIuDCwgiu_T=OggK9PYqB!QdPr42gO$`tMH@U9ZI!0~E|17^%%KyB=R^Y$K=3xB<2
z@MwwjeTLu&8H@ex+dlNFkVQhLTK3JcqJk@P3*metEWj$usUee&RmqL!dy<>qndVhJ
zBWwoWX}Ia@xSC1x9q8exg>?sqK5)a&1rRXWTUjIGvA95Ts2z6A6K3XKE)0he4$7DR
zGpLMG70(wcLpGz{iYK1uI=uDss~gSE%+BNv2EOwqsQVm*Z6^w#XHR-r8ydj?F#0~$
zN}{*bfYQ+4kK^qRgMnH{#B)MQ)=sQZVvQ3nXRRNs*A<<~K&f$r)We6VY^QcX&m|Pa
zb>e<x$cTA1@o}Dz)A5nmGkrg66p<<ywh@2t=`(skrV_CMnuu;AEu(3&vp*z1)s5Mz
zP|FiuvlUMCOOpchJ3~|8{<DW;&ItOltHW@m`&sX<tQWtzjH2iuIUzWM5*r#vZUO80
z6(?p}W@r^pNM%+1&>?Tg6Un3>T1VO^{oNTj$?+2jx)m)4ThZg3vv)2ov&G|e3Smt<
z-u+{DKq%|U(H3tz={*v&bZ3DS#M!f6xtPdB?xu8d7MIxdSYq$SJb&&BklPf^mOcZ!
z%lrFTEg5co>qMa_PDTdV(8umK<_LPm$fgVEj70rDLI(*sM97p`IF=FZ*t%Ok7m8P3
z!`p&eM+vn=F%>_kujZI2Gzi*|2Q_r{0b7qo_{LxFQwHrp*gZ5C1}cKpY%~%{b6s11
zCitB8>1bmml=TH|ujt1!WM>j{-Kqx-SID9vP%EcQ#!O)&b6)0y*j4KX-`nXlYiCW(
z^7#O9JW6f9@J~Vge>XYRw=Q8gE>|p~3o|RHaJV#lmzqE1rVKHkZXS)!VRKYJ#n*X}
zNmOo1X?NO0)tjZ%Dek#cwwyQUy}+W7d#VmQe<s_-nrAm&xmd@nQ60Rr&P+7uBQ;Gu
zw5e!!hJ|amDhW(<b}GU|+S9e}Xs9|hH$*e)GHPD<<~4~>_HuvJ;hgb3)j_=p&n}F#
z(l2y$-rG0?6q8WWeOhSa`B`}GUDa1`y%MUVl20o!Twe1*(lNmHkxCvVom^Nuk687{
z5$eRn|4~Vnz@Eb-Z4g14oPgpnH&2<Jg~{q`38cD;`8bMF*Laitx!zy8IM=%c_d3I6
zDKah_ZfQS&Q*+E|r43J<ZxB5<87*{|wKgYY_G8^DJ+q>xA!$#O(e>shFl=vsx?O;N
zY8uw$Sk^U(h)7a@Pd-U#_5SKDxB7le(#GP}w!^zLc~S-3T837CT<yI!8Otv0yN6eu
zP`D^{B7T`9V6?3QXfnYw33w=KAPu+Flld7h7}U%;)v)xeQR~^}kFu<2|3iYL48st6
zJDLaT9(ZRVa@{;qH&rQbH{UbpJyJ#D+t-Z+h6NG%wCCR{{hSQjD}}M!|M<{Y#OB~T
z8w#}x9<9J-5^)e(EcUi9VgT<vY?%csLnKVSJaC3T!D`jcAjS5pm_VA?)Y{C28wTVR
ze@nN22K9<~xtg?K_+=$5UB8rlR$Y{V0qAFdgUUy2u%tVv(^^usH2oq}laYg-ye?Ra
z6A$J7uMIZ$KMnT(lk;F^{qLh5W-iYEP#*uzc%U~!a3f%stB7tVa?fG%am$8wjsVFV
zaHCo1Im+CcTZ>iUp9|b=;j4f-YNoq+rlZsn^;Z0vfcVwY!lyKC?jlnk5K$4qEL`35
z!^7Rb<9hjhu7OgmK_y@7Io&Y65CoH2-dE^sIMGsj(Qdg>*FvZ4vT9|v3Dto2G;Dk|
z)nEJV`&^@&g?I76JQNoJMj&27^0qAvXc?ULKD3I_Dj-1hZ{At0Xw*O5I%=4RH=Fdg
zgS;LNp+J=r{|y=zrvCvn9RH0B3-^DJVg7eyQYa-(@xQ(-LH#<y@)WLqDi`JKPI?eN
zBI2-0Lf8;Lz^rimxU7buzsTHTr}9}WuKiQ!uX>zKFY~h@IRT)+;@Txq37pG^<6S+A
zS@2VbF<=vDUIr@`O~%)YzwmT$j$Ulz|1rSib9+B7yk~8?;-iBzwVjP=^#lzHiNxU|
zabXw2{b%nh0#bqf$BnLMJZ)z0;kF52Zw+JwMVOBXwc33vkOLoi-)4Qd%(Ib1xBFfS
zyozGVL}S+(Q^qfz5F%tWsWE`_ld->%wd|ZawSbNy00*rS-(-Brq-Acsz@?K9sanF2
zQb_+ZPr2PFp0#OdjtgXF`V|P?D=AZ<Xyg#05;gDn>CDx^m>74C3{|Tu_#4{Wt-7SQ
zh|tG&xR(A>peK4@-|}DM!2C}f{)>uJFm$wW;^Si!wX=4yv2`M0XH@v>p=M$1Z0AVA
z%pxGbC~j-)=wa_n!piagWb>rNwE39CS;a-gggHee#Mro)m^s+E**Q2lSw&eS*x6aR
z*jNPkI3<`^S=dF`SXqR{MA+FxMMSvRB$y;bMVZ+p*f>O)1#}suY)$R{e&|0po0R^0
zGqC+71(odV{__L>;TV+|l`T9?{ywn(*Y?m*GBIUT*JdVRC1KY6hp{r>JWr4Yh$#{b
zPPI5q;PjDP0gXu&)vy3!;dJ{gzuRwh;wGw5#Fa*8dwZ=6bC+uyQ>`^=Vu7R_84?r6
zU+7010BVuT-LtbNzxynw%EJA+`pXOT6eUjuwg()2I?INzRoXa|0=0SFpsPUju-3^N
z%4@Y@8Zl8UaUbox2+KpZ_RTmt;*W#zY(-s^hw(l6lD`!^^ooB{y#45NvwtcAj{|Hr
zxP|c}NDj0ehActIeAwV*Pv){{m&65)cmH_}E$K~+O5L-R=d$(HkB~QDo#4*wxx8iQ
zp0eZ4z5C<M25`9#J8zEyA&kS0HPfz0r&c(XD$VI-C@MD7;k=4zonD8yFx|3z=q7;Q
z-efXuM#x38XcEbzO>ZW-xD79FRJ%m39-f8tBXPmq)*?%}1gS{O#USt$hM<AVSUAL7
zH{zs8LQ0S3v?IX!HilwmWy&uGNvl|fn*KE6H_|QtX{(2L@1PfX&MNM^&{UrphgX1I
z@dJ&M7jc)UA0T6S$2@@`#y7vpH~xO@>JxfX+2=z!;r&csspFB?Q42d}JYEtM3S{A0
hPW4|ls*|&!qqDoCi76u7Ulth=j*?PbUIG#Be*taXadiLy

literal 587853
zcma%iV_;-m)^5y>Z5tKawry2x+fK)JI#zdVr_(VywmP=0n|I!sJM&}i_uccO&Z&d7
z)_&I7&$G|oRTN5M5)90YoCp+ucBW<#;8;00h?$5TOso<3_yBTN_CRB2D{r6~F*87p
zn4OE0i=7pqNX*K?4G<^hW@csP0w@r(vH{foy2i}L0+1rsC1z*iAm(D?)E5vy0NR`V
zWs3Mew@)9O-2e6=1~hdr11cFi+qryt6m_t5v$J<0W(O!a1I?^VT^*c>nOOt`0OIzh
z&R&kLpRPGSpH%@!SlPM)odFWI#;(A>O#r0DbooBR;AD{y7UksNU}oYFV-;tX;A9o%
z6p>(M6JZzUWE0?HVq#)rVHe>R73N@NVPO;FV&P(AWs%@wX5|v);E-Sv&<9A{n*lv_
z|3ZSD>#uL-4xet>|KU~+Xm8<aNzC<+_}u?)H7h{H!QrpSxc+gA>L*^rY%HIkcsT+A
zS}H(ufTk`pF)K0iCn7Gc&Ol>31USnL6B9EdWFsRJBcmpW#IKq{<f8l;-=Rn|6+@&-
z5o@Jjwf6jKv$&AkR&XcH^(;ZjKLG7xy#vF&k4W^By;2#wkK)y%Bx3ItMtV+I#JwP-
z{fJozaG!Yp)5AZJcX2g#cJ*`ynj^q5A;3{kh$~7U!2M@7{<mWUI5rm6e`o76>l_^a
z6?|fDE*8K);o)Rv`K%Idb|!!-F&78Zznh(q3M0cK@tZ!tRAc%5ox=(M(N*h&*PH5(
zCgcBZ04n~tm-oxaPn68MSicNhia$H5?Lhu#y~=92(n<J6Qwl2@f)mpC!;cJonaXLd
zK;T@Qjym;EHB6t?m<xS#)!i}eE|m-)sN^t$G#&gQOyE}5ft~xtmpn}-&*7p8C@Ob$
zrM%j3LYG^lO1;=d7-)AT;@-E}R1lC;L9(4@TtQi}lNuSr2{PfZBQ06W^imJWiCh~&
z^D_4~(P^g}xrxq_^<qLx-QL>DBiWX)J)Gnpg0Lh@K%3QakY#%VK8)Jw=L9K3*3fO}
zDM132Z$$z&R4UR9oUhZ;>C~cxUg9Xrl~F6m*qZeGc9fp%rmR*doZ>e0_f<n=cAAzB
zXb3HKChOS*)u04~_;}UZQ_-i%rBGoA=2<4M?%?B+D^nTod2^<d8%KT{4~YDw8ka0D
zECtf|m(3qa>xwjSL+?bV^lTM81?$_B3Iz8@QILiJl0_nt<5X6dcTNKa4b$c3<5FqC
zk8P7txu5VO5x<PucANKdwN17&pnIA-6S?Z3k=2>qBoPYq8A@kt2@1NdC%o0sRYTjs
zLary4h-(fF)F%;Ut8iW8YYY8^+2enln~@4jvJDRer3!U5pj#0({76K94O2A4RZv^l
zS%<SZ)H+oNSIr5blUSEWU~lN26;DVTx+`ev#In&Qk3vdZ(8XDK!9~F22^@e#ab;4m
znu<Vz>U^a3&2`;`aMw(hEbJz%)pFXXr(M_-@0{#oHHaYI`)0?>0M<S~!hlkd2U9#Q
zBa%Qd1~S?g{+r?J;MW&t>!shJH7sTe8VJYV)Ub-{X>U&#5qW%8lh%hp%U9o-on*aw
zWZc`#C1FD+$QMqcAtY02caOhquv)LwGhG_S)I}f^`H61)oJ!kPT^ex}0vxXB=D*ND
z4L_@<XK)D1C@kZ2{Fk2gH!=N_I7KBsxlGm7>>qn!H&;t>cc8s1K+M5Z(Gh455S5Sz
zX#C&a!ptG?x&5nCsk$25n;AQs{i`oAvv2_vssETs)`pFnSLG|lV3;$P@{VPmdK5@c
zY!VFKgFvuh(a`{uh#8ofSUCVH#B86Q?Iiwo|M}_suS0d}d^zW!1<=489JN-BhU+Fi
zJ?b6>0|mEeVKWc~jgMzg7#e^EG26d+`)^A7mlzn^TTrjK(E#LuuEu7@uExa7%ztyS
zg0UUYg_xC#=^y;3=;mtssT+Tt`1`Vwu?0~6lj8yEF2H|X1pIaK^A?W3xJBh}sucaS
zY3pF|pYH!dCq!(4Kr;~sPu;(~uyeCBvT(A0KF!I^!pOqK%Fe9+sU7yNpD2G?<^0>K
zsI!CP|M-NYvxA%CU#g=D5CghfnF3WLMF6S*HD_ac7e`}fpuMTr-=Y2E#?Ktde`=EP
z|7h}4$UbBEY#7@=8m0ntad2}s1^%UN5})z?wPX53=I;O{K4pRHFTGXyw5{aqV5$mq
z)dhSiGC&RJ=?ajx`vgh!Q#C#X#`RO@h?)M5<}d9210~MC5cy}4{);S1SUJ16ev0zH
z3W|f7`%|<z|2Cy)V*Obx|0d`?ueh6GV%yp2dQ^7HLj0oy`3Wm>A}wE6g_<PUVb-2|
zKclgj{v7-J4vzx1j1tWyk|=`@N0$wX2`jie`sUt2YP@c#Ht$}1yHKGS{b*|s2L5t+
zzF%*Hne?nr*C`i``uVZOW9tY0VOs~$dOlGZ!sG^2{dwNw$u!qMRAu*Cq}VMGP5<f{
z!&~iF?$&z6qTNt(mL0SXHQXo5C=B?obGGW3BlrI0TQ1~A<0fgRLe&*JQImy1s)MkT
zT=yF6s~kVLVVpQ59mbv)*ch1?%uphgMf3<J=UqSm09$ed#f-f>-j|$2K<xs>8A?!t
z%b_szL(O5-E$Zp+WynD1niv1LDVw1iy%%OJBCLw;80S?yXg3KjjmIYT*0I%3L!TlF
zZbk*7&@4r`Y}*@XUtV6kLY`BtZYCEdjDd(mA5aCJ7HyYf0ba!+#olzFJy4m|4^Ok&
z<Csu5zTawKjsd$bSZ;iD;d)cK(Y12_$6^QxpBOoa2(}>IJ8}lQf8NVSW9S@v`GsY0
z<PL4~0pV+)d4iNrS9h|0ZGGAtq6fz*?c+X6@G74Blf#ekPDL$R@#19hSw;{)*aQnt
zPqM?4UutnbMYrQQChMk&YgC>I3Bad^59M$tKpIk?CiLO^xfr0WrDj{ZGo!|{T?TM$
zXIFhKS)<6VGdtil-$;btrC>>as~DF?C{X-yQo(aLSuw68@&De(jja@EIzr9uAf2dF
zbPG<jHpPsaV1JZY>j=#)9cW0Z;lZne43hq%gZb$kV1__OW|Si-|10heOqex5(bKR*
z11sY-2mMa|<BNA#+=<qI<4{iK|FM++IlN$HVg7f;5+X7Owe5+|Mf_oF=gT8{Pn2>m
z@Vagfb7*sEVFB#9z2~~_Zn-AE!G{YvTQ-C?AJ9ig6#yubd0}(~wf*=l;nPd47^W8(
zxa{F{dE2OV2dpB+8@n_KXL>srV)Yyri)qq><5p!~&YL2d?3+k&N%b)Dc||J>Qhq--
zRv}(h*CaH`W){q3JFUNR3~LYw&~ZomeqkD#x+B~V364)Pawyk-Gk7Nw1lTE`2R^4w
z2F~f{_X@Z^m|Rm?%csNjuEN4O&)m#i)j&<;M_xUFK=l^Hhs7VN_BX~IZv%1^oc#Ag
zy0sV5O7Fymt@Xd{WRGG{9%UieX=ffa5umUwJ9YnFQ}V`cFH~uPLoHC>t{<n&mFq!#
zGe>gAcIvc5P=;j`?y4VAj&(y<(?rrP{OP<F40-$Vmf0;#Q>zVnR{3A^!1Di<2d4kX
zL)QGIwY%V;#tYo}JjWo%q{^mdP#8XcWGc-0;q$dYCBKSO>)gCnIsW`zTxv(c@9jsO
zI=DgFNIoL817DxOFj$a-j)e59n62gJ&NQW$6t4CAXI?^LVf8EJNZpC#86TTAO_-a#
zuslCSQWuzppK;W==|3yXa3JQ?vNy5~JhWHN0*ia8^&LjmSYyc%F<VK%^5@uE=9O3q
zyt1)XesrLwQ9(QwI{hel$yk<)dJ2)RXi$Kh7MepGYb`5?67_5Bx$`iJ0y6A8JVj6d
zkr}E*_Z^q;X@`dEYw7$d%vp90pO1MF(U$nVwI6SQ*ZOBSag4T4`m1p&++(o3xbFq*
z{AA&;j5QRf*|*##(+(5Gn0G6sE@9c^-JMHwCFG63>1hGk{K@9Rwxj=w`F{+v{|k-(
zv-UqVm;K+x-vFPn^|Ldwn;#S~#}s--aV1A&7(-h?&o!M84N%`Oh96QRqCU<scoB>X
zjcl2I-1xyq)&j<>m`feSYz>85vB1=U+y_<@D%TTdP_{4_6;bM?WMV%OV_lrkPhRs@
z!$~;3mR=)&Wl4$TER8PCa2vjytO0J~KvI*!M!9$`!YilX;}=?)ipydBdwQXfN_M}v
z*e4xeQ3%cK=$r)8=Lq_Nshh<c)AHetfA%|%npW{DrEVEw{E*Q$ubix~LDTCvK>^CH
zqE0)P3KZL}psJK{Ih-QE=_OB7>-Bgpyx52Au`6|;xadW-rqG#S7R$)6!`3%k^ZD+Z
z>KSreJPU0sRb?Itu!qFITjT=C+(PMFi)36;xxsWY;(T9$E_N~0q%O8<x}b_;EBrTQ
zvhdV>Aob44D9X+i346gIEIBCo%R-)T$qC5w4$q&R29&R@%P3|^swQi!c0y9uLq8|l
zJ2mXoa`l>-=9-dc$e0#kLY~<h(O`u$u`zkGYgvA(qAazF<Z0Gi(wLhN<Rv&<9pSD)
z2oq|ViCJ78rD~*r3&|X~8JB(ujy01@%r(1Z9r+lw#g-(Wo?JAFNGqj9k$}qBj}wfX
z=;+w-gbuio($+16!U;3TnG~W*mC+_n$f5%7e4YK{cd3&g`&E6Z4QyIzkock3&11r%
z&;Px(053}^Z+tJQ<x1d~<F}L`Koz}kZh%$3D2vVET@IjI08!+(ZqNOvJ<u=HGp_f&
z8pddts*btV4FiQzS|Z2x8V>nXAY%YXmkgtFNtSF`t}DOv_Tx(y6heXtC6!)x@MLFZ
zEZ+#YRPz@hf4FaxrKPila#4n2%%D=rhC+~TtOBPGMxz2Br?`fF??0a;+XS5P2N(L@
z3Mng+oysC=^k@!O4p2C1H-4Rh8fubncET`%?A<Qn=l4!&O)f;|Th%k_9CSm@Wy34m
z3vpmaCZVXY5y(d7x4R>;%Er8!PRHY#${Xf&IWPtZ&PMjL&wn2)TqO(lt*!`5S`irB
z*jB)rQ^Is=ps&y&$Sp{|)#NmpKw9B9EK4hWcUdi}#{4mv8`cEdal-q33bkwT_5_$!
zfV;IApwF)zF-Ko{@e1B5iM`p|b?6zWdy<o6O)rn#oEU@7;UzC2a;I?_$n_z|{oCit
zLQxH#9vnuQ{^`j_m?a1DAn3MKQYH82i~G?5Zzdjq#6E-iLV?5~Ci5kU_IIAZHNPE%
zdZIbsWfJ3Sq9~4~_*teFTPR+Hk>U+Dx?$ZLxukW2l>yX|{`N(jFd5f!TomSh)1V>2
z2pRHF=r+p&u3n5{qro1=2fw<jh4Ii05KC-nL%Ru`><u}Zyg}gh(QPO#19rPcj+{9U
zKZz>?!=uHGo47E2o8f?`>8bjA|Bw3Fl)MGaQ|=|9g9tKqfV1$72wfA=VO^nBpYTWd
zNHhlun<_ebe$I#dQ?(teS9#G+UUE3frC~$!fV{a#WvqVVWz0LX=$lv+BXrMnqpMGF
z(-x(h1M6t8pmzt(YY!1zgko`&to)^s>1%batc7VY`XRTGCwrDr#h3p|Z+{Jl|KFq3
zf6^Pv=iA4>=18h6fcMd{(b07n<&CL@9_JE0uF7v(I;#KG`d`yC|EqO2RyOW`y>>Bw
z&QCD2a{t?1C$obylvdW}B};gjq`C}sHxAh!a%3nm?3~fa^lcj>K{92SbCqSH8e#K1
z@?Q%@xw~l8@14k7L)|M+B^ku+(=``)-C!JTrq`1QSe_lJBHO0Ph<QDc(+E@S{)u_O
z0!q7EGN2=kaVKrrP*E8RMd+vvQ9zvt2hX<MNZe*TP0etd)%9Lr65#~Yo@}Ep1>i^>
zAPkAK*Q$P*bS=?aT6_usDugX4{%(fY9%<^1gvrW>^7|T%{@i<ZEmaYr)Qe&f=%y}G
zjt$lYmd-@AWbeWyRwU@BlWlA^8FG9_f!#<D*m|W~oNpLqpUN9xE-6TL_K}@IwJLCe
zE$d2eZAd6$#62uGA<-Y*Hbm7_jHIbwef~h9EyTG-&^Zd|b>p8hGmE?=b#Qe3<%owL
zoqww`|IRV-)W3N%^V6Xq?B{xGvWoz*|H_>QA6W#x$Tx4n426Nm4n7IM3}pKlBq$#E
zCG12hd#l~x{)xl#2u0YSMZLrE4llFI6jahk@BMDr^x5DV#^nMqA((G?_B&4@D&6Zs
zU_4Cz2IkO0!b+^p1hZP63xxXsvY{<7>21NWh!Jl`*;XgH8KQ*2>b#8nneXHXK@~V^
zEr04{Y}2+$;HrQ#`VH}`3q;u#f5+}fS15v^y`NDMvT+l$vy<AD{7Uq5&b0QuAjg;q
znM$E|pF5GNf?`Ia3k0Gp3CAjr{a}ggw!;`fPrk$)G=V#t^jxeS=h%Kkryjm<vCCcc
zA^_r+2Z1n9N9t%XX3v-!-b^mC(<N<!vXvz>`t=+y$U^ThK<YSJ07R_zuqB{^dU_hR
z=e3R;Z&F#_x>wegs{j>Pvlx@fpF1MF`o$;T1+l#>MjB*X<rl=UsX1pn?GXmvkJQ9%
zR(FLDcBNqHSDmbeZk>4OCkLA~=R>uO<Du=P>%xEs8)5=qP{manNw{ynJ)eWYlzUV;
zjuA!8IRE%>;GTfbn2y&CWUt4SAe;)S@7LuN>{ZqK7rW7f84P}T34NK$Kwhh4pj4?P
zx&Cg_8SdLL^&=1kb7e53!)Y|7!>hV5dvPaa3lg0-IF^HlimfLy;N844fz0G=jYJGf
z7b6>4)${VwPu&flrU;DS*3I8&EPT9YX~pv^Mt=`|>n$I4nNa|k^8g7^XUkzGrp&<J
zrdrUlM(M$7Dzb5l*qgJC75I;%V+8kZ8kgOD4WIdab!I-sz|Bm&{w#9wAW}Mn4+wIy
zocpH_CfkNT?1|e`{R$Fa!;H?QW-&#O@y<f5pUrpqO7rY|Aj@PAHykc^Ej7QZE1t4!
z?2=)kZa=_K6!K%GDQlNH@lIV6RTT&dkp!RM&QmorQpQWf<QAyrdAC(ReWf#)gQOlM
zm7T-Cnzc1Lky20oS~sAohx*fs>`-2xLtFrKW@y1hqkC#y5UHCDzq9{0zgZXI&Ik2I
zN94vfhIB@ED}XRQ)`gD?y09A;uRsdOpYGng+BCdOoG?9wyEGP~hBhO6iq=?dIDaSc
z5d4@1BQ^yZsu_wn%e&9EcnE=x#tS0R4G*7T$t~Ne7Jj3PY8kqfR&Q|xRxkn?6hx!t
z7-jdRBn*KyeO`*Sa#E?(Rp`o1<R(4PJuUtyNz;^{)C>iTC$^5$Dead|{vIm0-||x2
zR%tnD0L4Wb@3eW2+h+5c4m~r+QwxW$Mh?hYkv=-9Tq4ggdnPC@i$XU+n^;uM<hRC$
z^j<7PhO*4ecJBQ#hOUqpxyN?e&X6Mbb0+Ys3}40gdQX)ooefL}_Z-`a4%~|I`v$uw
zTmm!c-}YMG#|+b~i?VYmUc1kZ{ZWO374@EVAxej7Rd7qRS=H|oVMqJL;SxGoMc_I7
zGncsd70Evn=o725Wp5(;h`?w;#W?9@`+hK(<B%J8yl`Lmpo}zhTNMAG%<0!uxcO5L
z$#hdkBErba>-LVL|EGHVM%%%(JUNOXMxaF}p5w{_#C<}>MkWAFQh@X3)J^MZDBx93
zp@(xxmReHSHcz+iV)_Gv>ouD88)Zv!6xDAZ6u&><yc+j#xC7Pgy6-(%PYveqE-V%-
z%+ycOmDkAHNPh0VX<pf~dT&$wjG4+1Dh44@Hq`=ZBR;>JL;U&@sj`0vOTww6nrRap
z!~P1qHp2pAbS<h;k}}`jc$h@H7MdQY?OwZOGL^4xhrz|-(4cbjZS7w+hKOy8;EB~i
z&DdbmU`YGp!Dh6gK0M^j3eM4?SKu0+bO(a5{%#y2WW6ssM<-$t5AwbbQXTV(uS--o
zoO%=#{kWfmlPGh8#=u!7o!`6D0y4k(AjBP{rg>BzX5|m@3^K{NJaldpQ28iE`d$72
zVL_{ZUUVt&=UN*QqLUR?KO4I|6GoxAsFF7=no_rbOyPO{gnCr{PPCa8Y$~g~byC@F
zv7+bg#%nwXh|lxj4?a7P6Zr~Qsoc5@ROV3@tMYK)0g5eJu>}EQ<2+#zLZsG2?B#{i
zY_M-qnHhr1r$ac?ex-RJa&myVaYwI;2~eZ6T8dkCpD*!V^R+2->2Y<vTcNf>wR?=@
z=YeCaLCA^pdGE<s<7O{?WCrE&>qw85scjrV)C1kJGw*YQY%Dk_E32^xulBD%sA-qf
zp-W0B?PKVX^ZYKJYX5g)%LAaaptQ{!1eS!YRtL#x5PGuARfKdO5uWp)I4+(QW^`)m
znkHL+C1>^uyrX%$bleS+>(#-T+Hb^E9T~#953xfbB~roYCFolyGUS=CF!Wmbd<kc>
z+?vKTwmFT=zzB2n4exvLfQ1yHDY^JUgjf7zHO^G^VUPM(WGN9v>jm8bVS(*8zt?Mg
zExa&X%L<D;DKu6d0b{?ASiSEB;KC(J9d`U5d+vTtdYTW;4kf7~wm1~~0&327-*!{j
zloE{;iyou)C=Y!#7163B=e<&mSm#Lsj%GD+lVooK|0GPUvqAVC#Vmw+2$ihIFlP60
zLZxyCmx}d>{on{6BF)Mt|ApmoapxI+_k{|!>@_pPtl4}(IO#{Z4!0{lT2gi2xI}u$
z@5HLOkA7F>m6A|*8etABAL%!{%bzSy=Z6tAye_qN*H5od+9}UYE8)x7bv*3_g7CjZ
zyya`$pM^^c>tRTA!GNno+%qUfvD(T>#*|C9H!Ogid{f|~WfLvb_oT79$o#HoB0@5$
z@J4=kqLCA;5|E$Nc*^jWaJX0_7TW`00Yk92QWn8C=YtQ=)~B@37ddLUcD22zphj5)
z17u=?=L&O{<>nS;VGKdaVC2-^FI?RUxbK5PUfxAHGrQk(mVA!oS;#C^`jvCJK~L;d
zlUTk<GT%ABbZ41H`j6KyR;mign3b@7ape91wWBS6ossPOMMXt6{o9x)P^m<ByosdG
z9qzkVZ&#saXqd)i5@8?{{Yg^nO=q-56ukhW+;Gi+0T{Nn{4Rmukumw51N`2BMfeQl
zB-_$W`|8Eld?(uFut{y)6Q1v8PVnWx`o1Ker%VU*htLv6S;^{fr*W7H0fx3yl9sEk
zC<c93R3VpC@Y0hGm!NZz7G*bQHCtgC9}?H;n4Y@Yk<D=U6`rAs1}tDs=<Ym9y{*Gf
ztSwDD>VwUmC&fg_%^S0#vi$A{+V3+;rn#k+d}|B?mWrVMI4-y4lU~qF#f@>8vhVCw
zQ0NSVB?Xp@qqp-SYIl6?Rku4tV%U6~%Ci9xN%8JH2!&{|Rf>w%Mq8e<r<8KHdn6#$
zCKq1@P{8OEMHY1AY6L=dNCn5{uXtE0A(-DJI!+OlQtF`svD1Wa1M61GVTDbbLByc)
zVanCK{q4X)=j40i+|{B<gv@5jhj;blo3Ky(uHg+oKCU6T0l&VxMbzK6xp^EGy6b;j
zdw(5}7&Z351(m9byw(dMI8zytnnAT5*_RO=xtHC!sY9+iD6>V~br0fwOr~GZr42d}
zha@*JleF&iE6T+p1NQPLFx;9ianvuAvoKD`g`+rtR38Jo$A)V(oboypVIMO6(2-FX
z$PJvv8Mr+mT(LXP$KV2?B#dtd?nlwuFB)J9K2GuEb0Bi`#@FY<_Ys{+%aH4gbVO~Y
zx#f&>;+E%Xge+^2JvG33S0Bp6`!v>HIG~DStJIyot^inG01%H7e0|?zQXWQLg5YA`
zBz}|)J*h0=rm?kXxImsMGQSpL*>qCxKby?__D9+<Xeg_qa40(NMWLDq3thS%$y_PD
z-bGcDLsiW`w8Lc`AdmqF9`^{nZc6sDWMMai>x+s1j>MQU55$9|GqG~Hsyaosb2u`%
zZ1ViGMR2XflzO5Fo7cfo*U#70Wi2;ESAUlGWx2>$R5&B;u0gZdLayPDz`#vb!mzGT
zWbo#B?~WQWPwtEq%)YA+n5%_Kl(gU4RSASIfwSuL@W?pu_}LLkHWVPID}~8?rY#{;
z5+s>fqxrt#qTh$FB4yG7J@VF@8eEwloZQNF1<KlJPD;&f)kOHNR9~;=HB!5F=kj&l
zueHrjfL(=C#cRTs(Y6+r1l9i`L8O(&l{(WoR|d_tMIAnYq-F$I;k@?R|8Q@NkLM#6
z#>H(zATA_eNJbN{o+a)vi!lQb8e)gqhj=zUSOH%d4NM<p*02ADY&Mm@z#VqU;R|=+
z0x=D2sx0zGR|IDxWsu?@-#4pt?J0IqXf|6J+avUlPj0PpYGt*(aR0cxo`}G;mvbKj
zSK3c_xHB=07x`dk70S^K-YlZ-C$=xtpha=uWL(`i#6x|vwwZ2m13RP}tGR`%k@ZrZ
zZ8lKe?^R4oSL0h~#Af(5de8Qx;CB54I37&1RqV5q<`peeD~dp@@Y)M8AiYnFU;@(o
zoZ9EQ2qzb;<4OpR7ZUO9*$NX8zTN5BxyuQv?}B$A72Y>k)YxFfu+T!=8oVnxsgprY
z_&}<KaaOJyN5v3nDQCq$g`9X3AwgY@%Pn)D>)v+7bMFkU<7|rd9c{VZ<5!znva=%N
z3ZU8>oSAgC3tPmgG3m9d_EB7|AjHFT+Qc<RM<6SneV==;*&|;o$ung!*k+U0*W{>a
z3!RUj<25KMi&YRf=a=nXno`TyZ$$ebakhRQ4TB?|U00vx^f&_#lH21}XiPX+*$%ia
z?@d8Nfx0Fk!P7SPhpEeL(Fv!xnS@5d0NjjSVt5zBo<5y*R0Kc<!mL)l+JR-^;9!%0
zwuatzPOplo<ibY2&D{y?CZd}>A|SvX(8KFkA?l&RAGj%wUkc~~DIGT3$eLL_prUnP
z=f_6XxS@c~MC}w5N3UVR@;&j4edg|fjQz^WEC(wN4z`C}TWpQG2IL(aBQ|UY46c`S
z<`PGF9!YkrfepTfLmYkHSrw?mvWc~#u&S?a_lLyYnB9kTnRRCAP0p}*Te}-)u6Vop
zFy|*F@R{#|q>uGz66jTuRR$(+CEad0Zm75U9WYe_fPe((6~V>XO7_a)uuLJ^aZ3MJ
z$0`-@)=8}oO2_g-shE$e$;ED@QmU7CC8XdOi)*Cz7Afa(JeiL#2JS>B%DH<)Q+IIM
zqAEv>tW1Rf&~@2Avu_NMGiAOhow_{r5l%`G9|t8xwiwv=Ue%_BB&-40SiRJeD5fSs
zq{`bV9;HCG3f*rcQpQ~)s|eE@v)D1tR-W({r8K12{sP?PXyHrGj>^*t$zSlH&6MIw
zLvID{*5p=Fvfp_e$ka0xbbgP!{A#_em27<qFzB6W`yNx3TbyjnrgQSg3d^C_1Iup)
z4cMDCt>YO~WC~lDa!3EYItw`=t^7(Ek=N(4i&BmHX^RZyb$Tgx&;OKuwuQzlznqW9
zFwGzA3+$ddNKo}x-_iEUXPGM5N*G1jKB5881&^;T@!tzwldT)+{9hhRAW+tw3%v0W
z_JSP4d2S`qt?uVMMXN_9;RuiCOnfoVz?wV}`*T}lPB+Y)uZ@cRDccS)GQ#zuf$kNv
zCnwBj5)19NP86rAQS=`HX=c1lBztZT$;N!F3fKn6$RIBk3nq^|;5q;>G;X8)^A_hU
z!c+AL1DHJwF#;N81sI~e;CMK)T9>|iU%DrFg5uqv-$@e~8j{vT()L|3rf+c7&Qz?|
zEO<OYVPBMNt+^5}ieC8;9D-^ErOs$#@5xm}Qf{G>6x8x_iqBedQOcvB@Gm`NddJ^0
z+Eu=m13g%vX8Wlvn8|P%oS-6qJY;<zgyN%W#!vU;h+IK~EOADElcX*uqB)wBDutd_
zu759_-^~baqRiudgHw*9jxSh?6JLVU{1fQKdBjZi;fdf~E#ZMV0%CIfGvRvpW^YdM
zk6btI`*#hBZQW5J$~DWp3JG^cl9{*Ow7$l3!;I&h+3EKFEIfzuzIlswr@ko8YceQ%
zP_;WGFlc9m0BA$F`u821=l;5E)2hl8@fF@dAX(PLe(63WQzsku`0_%`21CD$d^0pH
z_E+9tu$qt_iPfADZW9U4A>WZ0bS<0|B4ekTFv-I)x|vp>+oY(sFYME{XBr-3A_z6g
z4Ott0j)Izt{PDtJWZVW*UvpV}<^*TkdLoD>(K`>;_53dJkX=2oJT#sbR%Y76j#awu
zYCxvPV=TXi7|v6+Z+rQc+x`yjz~G~;2r4fJKQbEv9%zYrh`b8}OX8+dgVtC`^J-O%
zZXXIjg_8*wEU9)jg>|oY)I4{X0ocagx+&c}E3gu*Q`89$NLNxovpzE7cCY=~V&U7T
zS)H1hAwEFo5Zd)PnhsaQK%wx{c0;6CAjCVnvTJzL8mjvMFO{s+@hU>V%RZc?Lg0>C
zW<xA<K*D{%$)^z?*(Kwmn3`JXtXoHCmP~uC_LQtU$whlwZ7*I!C$C`ePU(6LMJFN+
zj(S%HJr0RHICaUhWfcxVQ+#2Sh?xBY#9tYf(Z_XqgZz%=q>Mf_j0%;TFFW+UE)ji&
zyIOnr{M(pI*M3jYOA4zW>=$!y2p>4~mS;xQh2wlg;7bE{O@4HG?Q1UqFIh;5$*SXy
z&MK%7&HK<cYNJB8u|~uQH(bf>%gnhb`8p>Ba}*|%{_KNK*S#g4>?Q^{N~nmP+|$W2
zX(&+*kaU&dL(S)1cI;GIcE^;dOCINXctF^P7-PyIK>tcI`ndoiIcRm)Yvq@?ZOkOQ
z`&m6eoRf8~S#-wEC`Cpl&{w>e&@0|^P--8{iArCNth%ZYHwsy=f#HNpBwDKi`X|0@
zurVUU^y%20E)hc9qWl<)=3#Hovs&rmj)u34$ZLt`i`MbmTtDZ44!g+VYrWc<xo`d1
zH{fA9Z0m6BtCc_Gt37YKdox#IpHXrOy_L8aA9zuX{|raKZ8Q9@%YwTcs_hRq2kk&#
z=ih5Qvh&9`%s|>vHXaG+2;-j0&I8DUt6tNYn6Dedlv_(oPM$gyK~v)_vJW3qsaOup
zXd*MeMi=&?+JM~jl!cxJdsocN-xBSQ)@4SwD9InN`-D^}!aaL8wHcOZgvMS3%a}J|
zRmTFwMVqns+DpLplXYXbS(N^)$;GxHw*E?&XkvBT{oP4kfXG+cR9Q`bEyj7>(yOGD
zp4l%)*a91AZ+_VGbM~ra7{&NdqtON|8O~rN^)T(hCVmGH2v>Zq5FwKl7_N4e<Rqry
zBU#ap_Y!TekGB#-p}mSWmvFH0y1`KDN0(YfJ0d-{Rm)6hg?6_>Z79#<!}!zH&<(fc
zz(j;>7qWD&WJQj4`}Tqwa%mWK)zYp_gIV>1a%jzzGM$J=L=eqA38V+45gW>C3+$;t
zS^$#+IVvoG<my!|+q4x8rE>yKSP(H+ox+Qfif=pnqgA8|BBA*h2DQJ8sZF#<uc#hu
z;Kt(TJFYN^-T9R<Wv9`uplN`P1f}fojXNJSaBj8DC_}GUguJ$j@kh{eobGqww226-
z211pD96DqeuC&?HDJ+ClyA9&VsC?szw(U#2HJwZ2kX|t(3to>a^DH&S?W)Oq2=8*A
z6||F=#W;ID#MEA9SQ4W{syb_d2*6%@p{M{MlmsCxgmFF6@8ul<xtmzJ7`Tz!U)sRM
z)(wLIIn+`ae@`PAia|mPbxx?~hg#owazgvY)&)2HBxDTVz8@{QdYR*mDas}sg+kDh
z9P(~5kg8^Q?)qkkE72sgIA5(LTkX@@v&DP`;m5*Vb$jT?rFxDB%;+txS2t~N!?_cw
z35rN0f{NQrM^Uy9)qdEgz_JzZN=)b0AY<g@;u5w+i@)h~TmY!<&{T4r6s74t@FgDk
z6!QDaBut(G)w9BIwm_t?;cf7!5gdn8dzG&eY{&Vhn6ijqHd`Rto3>L`{{BiVvgk&_
zS-+p3ds%{6XW#Pe$u|Umv08@}H-dN2$Zr>d7)||QohF2fcXr4<rJyGP)-@^{L=8*V
zY=0<@eA0V5q+Rx288QpUP7pz(7@K%Bp6*rR5j2y8F29Uc%JgS|jBuAjlyG%6*U!NF
zm^dl1j;4*+cda>76|)UKka?(!FAzVABeH#~=*<(0I)-Vg1%r6WhUi8(UljPV4&_*y
zRo39e--T%Y;64r8p4?)*53~4j-y7`D>7+YuCgZ)`*A8~();7WDPVOH8+^vP{*5&dL
z72O?_I&K=NAy*ADMxn7>8rlBZxV_Zq_8#fvk|IFNvq=fU!}SC!Eu4qiTmlM3z$yNc
z8?tQS6f*vWHSmgDr!nh{)r?8QiI)GlGwqfJ74#nXOf-@JRI*V@)017xH4yV(bly#Y
z#zyuu(v~!ko>2^d8ua5-^LU6*Jhg8OY|+52H_i>l-nxH`kvdfoBfkKmwfydN4ugNz
zgTVen6<$n3f$DJxU}LnHv80@;^T4)dPhmxll=M##PCgTarBULwM$da$z8Q4zI-heG
zDVps;{7CGEX-umyY?{6&Da9*CHPTwi3{mb!GB@T{4WYYcK1E;27$$;U+j>gPC!b%h
zv=t;F&khghS2t}Oc&*bc+wH7*l|aD~^y|Ho9$%43_R_ruA<Dg13;s!N#&b9=0UuX=
z=U3J}P%VwIY<cI?H`ujLb-i|+AFf5<1U!B4EXMe~{!SMmwyZ7cfM!M;{fk|K=@p(`
zP(2nrQ~(p58FI!`Q50(#7LFYy$|Y*uen_`*^+p_b8>OZ&b<6c3@!gQ9{n2wTe7Jq2
zgKv`^GA}f)jm1JN+8MQwC0XS7hGETrowhqT{}pt=B^q2`MXXy$p2QM=klYw$I1!9?
zqdk-x=`e*muE*er)Hx`-WLXLJzRNDechC#Xo0AVGG(ThN)_liFB%OUQP2@fGfY^l;
zUCB@T;!o~v<Fi+2m08RBLM+v$i*^_^2sLW6N6psS<3$4;rR`6`VVRaim6Y{$F;6FG
zpndk3o}_efC<tr;5mYdei|sG9eLrIeoD+-@5ldlqBdhKyCKYfSr#Nz>SJ$^um`)Z6
z-7gq*xVA5bNi(RaVI}rLEhV#VLS-`nJ0xEqBQYc~+-Y+&fZc(@{X?P<9WZqjr<RT1
zdK`Uyo+7XK2}!sqh!fS=G{v9YtaiSm_x)~;FI8}4=rz(!+F;XD3w^;B;)@Qfd+JuU
z9XwUS#jBPcwYNg07o@rVm<>(23h8lmqb?TX|8sr3UVnK?H#2|QP#exOh@W@F<%`HL
zdE!gn*>i}Xu0ZmL?0E6WB$r;bWCxqlpkQ`$XYIW;QzrL?3#oT~8@HF<(|piCb@tVC
z-JA|FL1T2^SotJ-F&K_O&d<%`53C3>$9|)H1Z2@!!U9&1=g9N<$FC5-Qzud;mU~X1
zyv9$pI;22K65^OXHuW9YqsZEg+)~G)cL=Bwtnmqs*XJcplnIY6?1JRj0<ZP_g&Qpv
z^JpvM9d^<i^^F0UmJFd0DBerlAc82h<0>bD9^?R#%&dID>sFRH7s<38@l_GuR@eh#
zQ)+($J?N)fR!=+U_gg6&>i+K~@!$_}_47N(iL=Ee%b52QBd;0Upxbta)u31a-7+U6
zsxHGF%^=i7T2p_$g-zNfflfD4r1ci3E0pmLyK+6=nyUF}$?6wL!vl9MC3T;IIfb1V
z;W3=MpG@lIaIrboru8FSwta4N!yTSI#&3jUy)%crWxdAz>63C352wv32&%sZeB!sh
zXl609cJh8hiwl^7zF76cS{K()OaVk(5%Js=sfg19oCyt~od+C1`S}Uld{k{7OEm)h
zPi-tQqH8sqV8G;;!76E$UJx8G1|X;M5EO6momRgSs9^f*y=^Pqy`GA!ie_vONGzoF
z8grU_x6%GnWy1-$$&(_^*>+}WegKagFNG+luDbvI!(JIlTJf6d(w5@;3_43uLj?00
zJN_6GIsZd~+~rmgwXyisiXHw7U|<``FopN)GI+P|RK}=5j7H+N1beZNXB@@a{11|L
z6Zk#&$6G)AUXzI3Kttb}$VV8#lnZe9p<8sWLb#O(J2?B|bFzv@mK>C{7*#jqxkA0x
zWF;+HwnGy<hQwvO{%32G3;@e!S^yCJsEHa<qZ+EE3P&^ONu^739^Z9VVo{~D4#9iF
zO0n|`z)&2U%*F5y2L=|HdzMQknGfXdfR%a(t|pU6R6d}aib0C4<hk8cc@Zt8A?~UR
z7O_t|#Oq#!>@--H+0uvK!^r+JE|$@WwM`swWJJ5oMTJ~gQY9UiA%Ol8PY{eI?E}l%
z*WGtgC;t+?wIr|Kes;sQ{pOm|&E48#++Lt^BsT_0*P%z9sts;pKCS=&Kp?`7>mk0i
ztI^_^yn${=MQMLj5?a^hNEG2&+dXhW`#pDIz^s#*;X@#$*J6HsIS_$6Js<H&(Er(r
zcW^*GtV2ip%O2CYFB7IaAmO~RY^^;28E1vXx|(l)_1@a6kw8$8u#|FQ?EpdVEke1#
zaiLybvL~6kvBqUtgzl8KhV(o7Jg=R$u5>Kni;23+=a073Ln(cj`}#TcEXX|VOemSd
z0{5t@|4gWC*i`|mHJ>H+P=4URZb*iFmq=HZY&^K6xgY{$Bb<`nIMn#5oFP|dLVJM>
zA<EItK^XP`pvf0>M>(j;_HWduv*Gb&<YzasdPi@bB@g}gE-*P{z~$Ghi=PZ^N(b;E
ztnTGbm5o|rUGtFwr1t%3>!2$yxx9bHEQ^`g2cH+@(PJg}l2;3*02#b>5QPN3xu|7e
zm*C;0^UbZ&;_^=vXG>vP>!299KhJ0XPD|bgVcYQBLzjZ|+tztTAZ5C0zPdo(nB4!C
z@9flMJEhU1OZ9Lsnw?I!Qdqq@&!i&30KsgKBK$)trwV{-h0d|zCD_p^op$dhdwuq_
z9!Z{!R-@$VX+K!E`IA^#1g?IG0tFYj?;Whbw3r+|@mHNNNYc;9G@4bHj$fX4$6x`d
zD`58x-}xWbf&`CLe=#Ia5Lbb@&`G?_n!GsbAy2fbXN?x>;4PZ%l=N$6-q+hYdU1-3
z*#KaG+))NpRa!xyI8e|lYhuYiRi*a%m`Gs?ppgbp5GNQyFGMvinp@9bu}3ol7rxv+
zEF2<B9#w<r{P97XDyie+;L6OMBa-8Y+N@1$IT~<*cqHC{Cj6!<u&8^5ob@wWQ?*mz
z0>%8f+Jxo14S>*Y1U?8+jryhetO(&OEPhU;?s#t7Lb@zQdn~NR2o8*ZL`tPZv#I;W
zs?R^@Jck{#RTIKE_P``E#vf|z)a+WsGN;&~Q775m6Fuh+nps1`y8=SGn|8V=9;TE`
z@z`670g;JA5jE8AM<2qg0^e6}4NK66--@Nrac_2M3)z>8A9`xwo28b8d(=A=TTLm@
z-(299`i5q=!%#HSun_$=m+-s?+ZeW7a;bwnaYNwv;?()UO?iz-{)Ek*q<js7#t$-G
zOzas-$tujOgnCnoxzRkehKJ@)d$Z~5r8Op@1Zus?S<Cti&XefL%vHN}w|7*muf)*6
zdrW$}X1pyrZnGK`chO~>LLqJhZ%xD}IL{al)MNOgi1&dq6-DrOSD<*OjL*0|JWB51
zQqH0eYtV%$fkevJij!eR4miT~JTa&aM+e5d#~1KF#Sh7jq(mSuSi$ih-ubtxw0K{L
z(3yVxCQB7VFc9UwZQhY}PiF|BFX0o6E40zRB?kUb#K%Ya7QG%#43$lgvwx}z&wY)|
z3_WwA+@6Fn(UpIVB<Gmuy81^f*11(uEh5n4(wKfw`%yC=hJ}=NBi1E-sTU7-c|=AV
zk)f^3z}GzMTk055*LJnw*EiIBOd1>007IRuFL3t_>HYy%&Fu7~;<(ABS#(`cwccaP
z62I43@|I_ccPol^H5UBGNblPx`xd-Y=O_Un`+9=jNd1}jH<A6UG>|{SI4j_e^EmK3
z3>(tp0+<WL1JG<T-um!alwJt@kLFD&z*3JkJ)trYb$9k`LVB9a_9`yZm+4u4rQ~uK
z$(zsW3ykp2z`czV`K`xqHzn{8?hLFYeed(*D_%8Xc6)S?kF2e*wD{(&0%MsFpzZ&p
zul;S|0m@>&?PkyGLKox4ulL0;F?HXGLaOUhCxuKFwiV&9!UZF9Y;G%WJe7?IGo%>R
zSccFLqft+4t-J~QD5cHl<J}l56J7L|z+-S*p=xFfwH}OaQQ^4YHP(?95(wy4q!YWw
zt0L)@DGr-~rdFwSdQ-6Gx3qHW6BZn(eCSy#K#`#d9=eONeG&J&P~`cYz%*1y<d)XJ
zx7^7je;-|-B=nLUl1snMdnA4@T5wWzdH(e3H6b+z!xIqlz9Sg{$0{p+bCu_4K%5Ek
zs#VYXHO*h8)iQ?YH!I8UMF-^_SuHVrs+Vl7ie_Vm^Dz%V^I9TgvS5<<h2H6fSfaDE
zQEq7yOkAZ(0}*ONr+k#8J^!l?yLt}V5DnZxnT~n>$67b1v7mmJ^DiTQJH&pEP8$G0
z38ch`lw@!)fv!Tw9m*iKZ0`>gkEs%2o2@QwSC$Tjl1VP){BeWK{tY|xpDD2@v>u*2
zEf9d;jkG*m6O&jhm}bm>Cg6+PpH<$<M05Tm)!Ok2aYb<@y>0~Qv-13Q({518C}MAs
zLC8U!SU@I?>{d#A)Z%y9AYV{>YK6%c4@r9>VI=#dts9WY%})Vl3%la0XAhnuT+rlQ
z-Gi*H>eR_lw@~DB#yZL)YTgCE$MWO3^<b6*lixZ)<6L%n7hG6XNe@M{s~%LZpXDRC
z?KidQ_&g`ns-HjV{1#7TyGq7>CSmJXPI;c-h#|0bfA3uhc}0t{x>B%aPJ5!$rQ%>r
zH5>^!A@bBVVlb5Lx2ZO+hfr<-i2&Zv1~A2l+)-gXNeKG5Uvgx7?%OQ72wm~F`W_NP
z0+)=q{ZQcoYjjfAfF~RvOi^Rt=}$6w_KIq>`t;YcUIg&nP+BEH!p0MoIM_7XBdf#t
z-88>5DHEul!J<dQ4z~?1jI!x;-#G*)LmrW1XO%&EmLoJ4OZQ2uU2_sCctyINmx5&#
zvmnqIF;*XY(FqLWQT_3{!aFlLnpZ0(n<4bWbl@JpPK)M}hSfFv>bDncXET{me;<U@
z9pqO=qUEcT+%;ph?XEv5z)2bh77ktL`b<QP5%`B+EJ*LXwu!TUe3(J~Y|Ae7B*oFb
zmQe`M)i2Vpp|0+-&dR#X3EE{r+-vi0ZlqQ2Maj*u+zLp`u#@(a(8rZV#oin+jZ1;|
zqr_~r>=Xh^+3}#$^YAtBWADS9hV_}AgcZPeo#Cam&0CSM*)EhY)Ws<OUdtiuixEQD
zm6^dcK?Xd%#0WJ&m|GmEGLBi-6q*Yn1&3cMXGgI4)=?j#aF~xb=Un8wT>G>bTUinX
z*}seLiR$Dn_RKWV5$+;fw2nmKb%;>lQocYMiSBxT^M(0M<1IizqFk$S7laxk#y68l
z6dw?2c|rc99=wg+ZJg24p?bIBZljgnp%q1qG~x$}bR~-(_{H5dKkP9;!`ElZfuQEk
z@%edXldQx#g1HLpq6)u#r*KJ8Aq2CzGiZe?s+t~Bwk!IIuQM^?uBx!aW-;xns;IHF
zijwnm@t3JN=>ChiVm})4ufoaz!mUaSlek^FFq;>QFeIVwU!XGOAvPMqurHGP-|5@m
zvFqhmvtUzaH-x8z5A#Q82y6+@T*26P>c2rPT;shmI}lH^nQ*Ex;ldA{EHzP+;@hi=
z=4(ohiacxHq1X;uFVT%%MS*xLQ-XT?Pp6U3Gk!_$0kC!k`6;jL_Yi{zIc*EVml92H
z@rVb!WkWfY(%E9+Mw9)(N`K83;tC0b7k(CsyH-}CMK<eRj>))T4{4LpfUP}udg5Cw
zO4f<ZgJh5b{pkgXc10nXj<h_95Rc8Bnj%H)htm$)i;g6-{cRP&w=SOdIw~$WzANm6
z52Z#8*(S~$j*k6J1`AX&bDdK#{!3bCIwWL!S?n2Fyq;wQO63{`O=H$vTeRvj-{SFL
zucSM-`tdeewHHZ9JeDLo(wFP7Gx)|n5AS`+tEn~iHSpELP3%9>QCb+k>|osI9Vwyf
zvC1J)G1R)ixQ*XqQ$F$;VZ$2iW=)M+8nrm>hTo0W7xG`dY7W$PF}8OK=NE(RUp0+&
z7-;vIrO8`A7hqG~+J2W0f1UY&tPUz`o8aE$JXQ3Cql_js_a1NWC^Jzwnl>=W=NnTQ
zON<`+>S3{r=n5@Y4+|znb!J6G{8X<Z*|%9>Ml8MD4*MQ(Y6dWwv-|Ok+7t<m0@rMo
zdFHozS4RQ=Ad+63kVif!dUzYs_~&;VdlAK8JGK)XCTFHn@sg0VzZ7Fv#EZz4m)2KZ
z!2>sfJg!Alo}>pR7M9K9Jtb~=Ud~(IUvlv>53!EnTZm=0)BBaT^4Fz0l-RO4i1E__
z1%NndBr?BM0k~&nud<JIe4E7|Ru`~qs-qG-Bw*fAl76z)0F=}pTT%4u(2s0_7(q!}
z8sTF#Hi5T_3I{OppfR;r*eyZU4_PjduE|_v<zsJO&s$owAxCJsr=xiv@G&9zZ<V~z
z(Y`G4E4QaUcDq?c8nR1G7eg?e>_kv&D58P#pj)97u6}Q9xIc|CcL#oljV;`L_v{A~
z^6?~Ju{(H{;*@}j)@TP)<tpVN;N^&7C~B&8Z?T5K3xT>UqK9~zipLID!V{BcJ}zTA
zmi;<GlQko6DrYw{F6vVHU~kpWE}dPlK|4mWF9^~<EMgO_*RY2oK##zSGs|lq9VwlG
z&op1+Wn)Tjm=^=cms_vSw=t{V9Le=t8EFi^I$fTd2qX6#T(OP^xv`YH^i5dv+oZ#$
z36#G-*h!wNxxi<2M2sA1XT=K_>7{o9pN2yctf#8%&Y<AE!1w^^8?r28C0RHRj3WT?
zV^XHP9;Xl#R!R-cVJ^5dAx+u*l3iIlq?o2(^lS8<)nmL^0$a`zhVIYvLy1)Iye11p
z0^*Rc<BxZ#-p_wLccNracc>r0lyZYnI>oU=S9->L;K%3(SIPEY@8^fCB66?<+Ua#1
zwiX3OoQ2W(#6PQiH)Wghq76CsAE+@^nl?y<7t-*OhTCUMgMg;Yje!sQTz_-9wm;VY
zO^3VixN?0DQ^xt{0NXC^TLEg-RY6IcL%mq3&t=N9&HPf~8@#6=EGf8JmShP@#-F<B
zsO__F?54<_3~kIe3IY^Ic8_~}^h#0_o8(+OqOL7i!+Kj3l$Ba}=VFo1Xl}G0;2hde
zL~ojp+6lUjoW(dlM8)WiGZVZEfYWIKSd!LHJ#n7VsVV*uBH)+<(Cpnaa*2d64tm4Z
zUjW=_;zbRS4|F&U2UFzOUys$Pbz30mw$B!E2~s)y4OB4o^ESzUp$1SJZ7%HUCQ;De
zEii(`+2-=}yB%=av$bydQVoUCx`9ChFvp}50I1o%oye{jgB#^z^SlIdOzj{$Z_073
zCu1#yx0tV-81%kh5{8mOlQnh)3tDW71Ac?%HH^zWgoCCeMQz4sRL{b9cf6velJ6HK
z4TSebA7ppWm<Wu57Q>ZYGRt}>f-%5Va?63AYlAVMd=<I>$&GdWq!vno3}vY#k9;vr
zee)-_k>7;+6>NDUvTWcMykuYYn{oW-%1eXQy)_N?6u=7Rs>?Q&rP{(I!QVFV(4ndg
zuA}T#v(6rzePE~#c4<jNFJkFK)Wn`<882&xYjIdxUB#hy5eZTJo$DQ&NGz>f^(nI{
zh-%H@Wy@XD@N~OZgsT$cSh8p~i`3FdD2|Qe@f?dT(zXa;PqO7)@0{Iw8x}5v08C2t
zqS*m2jkFWPgwCONyd%}YM^^Wb=REqk@8bx;MhaVYMsB8`(#vs92a>U2zs2S@wr>i^
zOiE>KZMZKkoQW8W2qE4~>lKSOKZ~NB-}sD<m=U(JQw^YAX0jiwgf^-zDI+X$2x3~%
zV~e%D*0AkyFcmjA4LbiCM414N|9)(74QoAc3{zbvug6Mj9J^4!X@tT^(KPMP2Zb7y
z`m&yGr1*1X6^7kSlIAp~-p&V|nM1GLVCKhVdeMz4boCdrJ7LN}d2xG6kA-`NOn#(D
zO@oiL!iz~rX9A;ngw2|QxXTIVWZ9$Ix9BuzQK<`Ul>0Mma9r<oaoMQ|-~R(GK+?a0
z&XFpzu%q793fZE~QMGzG=50w$zHWi)cx>xxe&a=#X0Bp(0DATSD*@PXzo3tPV=PhM
zvUc@8m9-1ZcaAsME2--P3DjA8coV)m#iIQ24&<wJ2Wl(}!1*Wj5m^3;^VrS@90`J1
z=j_VCvxy-xWR7o(2<ByDrvE><^v&%E;ma^w8Sh*sM~L>465G=M#v2NlFeH`-zxm$w
zu`qb`34BB(mWh4s!d33qVH1!YPE~ipz*HM4_v&e!kO>W|7%fH+7_mU_ai2cxL+T#p
z41>+igDU@(KjX>cYNJ{S{QTIfQ|>Nh(1OEI(?c6Kpwi}a&8atr6+zyG$e^t{Kk*+r
zNm_mxRwSail49(oKp=*XMRe|Vwx=zn=`s%F?F+nn;B94XU49dHwvsTd#6v%fY=Kp@
zC9f6%ZClEO3{`Oc+6}FuKW72|LNPY2+XDKH?-J?7k{;dp$T+YGXSKhB>cfc<=PZxF
z0b;jwn(?EdA77uHP%<!Lm$=p)p(<`hMrokE!(Aa7GOU#NwF@e=CDs(H*hUBn`bAP1
z*VIdnbU)4SeA1%;64sc5d+rQd?zoH!;Z@ZYqe2OBHN!@z!`=z7MO$PDUFc6)zrp>;
zXw)lBP;t}!>;ljPbpA7>L6|USX96tzmkd94-oIvOhkgZ0doB*ja`w+;wkF0A&Vv3n
zw}Z=bd(}e4{$KeJ&ju{SFM;7@F_>gsrYJ%iVyI}rhN?||ps__L#~u(<)prwXX5N3~
z^hU5Ob=70~b3=1rVJGO*3k6P+O^cvxsY^#Pz?r~teCiu?frk&}+mt0^tNMIYXu^7?
zq9GPPsF!3^e6|}+g_xisS!PRxIWF2gM$C2bMTteSNOGLF0~q-G-_QGiX*K!%o4RVE
z#*j~=)enZM8RAz4@gApc2#*Y2H((QNc}qvj+k<&hR}14`l{ckI?CF0-5VD>85d>M3
zz(?VDsmQnv%h|1_h26^J%%<)tA4aUKvnr2!BYKF<9OF@ORJ3SYi58yQ`3x4q%ll+Q
z=8rioUSxbjZj^&-e!{{_+<tcdWM)0n=uom{lO4>6tEH8lS~2ABrANSE_0gL}Mv3de
z3}y61EouTyh=o6|7n9NC1So_`_6g##0}utut08MIXl2RbQ5P8fQfj+8e#dpC?a`rP
zF}m#YOp(?GJ|Ds9U;Wu68r&jY4abfS8JuH)FQ?_41&TOff~JROW|YN@M%VPa;gpZt
zX0nEUY&amBoNbLNV2j#X5yv1apP8gA>!0!lfSc&327Nci0AR?&nUQwDG^NLia&!j6
zPUz}0KS$crAFSU|<Emd6Zye06vknXWUF~!%P;D1ruKN&^iAB1i-|XVSzl$RzkZxk7
zW}4xc4D-ymGeqqdz?imn=LmdUuI7iTC4T5^(qc+pXegJ6C1oS~OGPL^>q;O=D1!0w
zk)vv`7-<~(=m*wb+DL2Fw03FKF6mJBjPJ2yQo?sSmuhVjX+l=BeB#kR?*X0)IktEW
zRRa0L*{*{}Ny4oOGmV#KkR_14*8*meFHV5|O6+o(ogkl5G^KjHTSaT-w<!X9ntSi0
zPq-8NmrIrYc8CVlNbvtQ);dh<arQMqsuvsfE#HH4{!g{&mn3?l<_f{$RH8CM3}%pP
zaQ8E0c{~!CBK>&DLXui-?8PEDfN|_MiKEyvnQ9<VH<Pzt^=61!kPq`Ks}pcuyw2$M
zdcCe)zb@A`ScWT066bb{6v~8g%Wbt^gg-Uc2r3_zC#xXso)xHaBELO9sSRS)j@M~&
z80isx@0>I+=svMYn-0AG`xt2{jbfgE!>tB&)01cmQpnQXQ#5tR=!U|EOT<RE=TCtj
z`Z9L=-}$Wr$RwE0x^p>tXR!*X|2?u-_QJX2!Xi)Ln&{kdcxLd9+I8nSMHJ}_Ri@p8
z4`=7j&&ADqRwg%gG)>V1#BP9N5M&AC*!DPtE8V88CbRX6d-jf|xMQLx$}++SBH1{q
zW*p!XoT5EE)5u`CVyjwPZHkY*xv?g>I=cq52B%OlCeAU|4}~<|q05*J!x|&lr~^a3
z5I&D#Q)~&gOpn9tW2KY&IpVfLq*+>ANL}%#_|_-mxC|2CT>L6du}45ERx;Y1y+o(K
zD%j+N5<RQV5D;J0#;1rlb<=VD4+<^Yq2u(@BY$0+m=ZK^mhm{wW3unoJW+%=h4nh5
zd8RFvBGWRhqn$a@C)(qxVTrrsifq!D%mMM{4|Do2`|TBD0j7VgT0yI{w)>oCj_?=!
z^)3fbl-+K>p0MY6{}0+!=?$m!=v!y94}{9Id=nl>()*z&E&OcxORTe%!yk0zZ|?5_
zJnjgriQyJ{Q;=5cok+#jvBZ7$%rFIQZ0Yij9RDlLl@E@0j$efOQ!0>vT^ZXm6caVR
zpIiy#JCm+?))Pa}Yvfk-!8oNbFi!j9hS1U@g)Nit6D*F6CHstA#(W;@Xw{)(E)pMv
zQ7*Ryz3K}Bpm_Y!w|d2(DzxXllyI8@fv6_5q-)=ZS2f-`FO{V|>0Ilm9VTm~hB~3v
zt+$-mvbYi+xV@A9@~88<&0(xDKKpNTgh^LoM?qI~IW*}zMm{895gqn;Rk~K<o$3$`
z##{u7R06-&*zZG6=`orv%Gj6!HIY#kP!#%|dc-KSE8*J8e=E(aQRd08`(?UodZ`3j
zuz0eH{w#bmlk*pKT~oxs^_cU)b~0&MIfv~b;@?GS=ylyLOVgxN^G@@#<@cu})e}@%
zt#<>U-^F=~_KV34i8g$~XWvlV(igx!D`hDv2|)|To4C>jFnCr-2Tn*9Bo4O=w$Zox
z`YgS1+)flR61}j7Eb4;lWW}ek6Bhi)ap@=`T##N*fNQ7y(LM)cQ(fF(p93fCx5+}2
zj(a)@W)HkV7fVmPyGU8d7=T|iVnz2}c6+gjFW=D6y;x|DsvyU=o10|T$@C-`U)uy)
zJs}O2VU&^_CY~J~yddr0EC6if%iD^bTz&e0h@br$2x3!vZHQkH_o2XGt_N`^TO$-h
z9@Q?dGZ(ja(>y=I@JsVoFf(9(2MNuLZ71J2gaE?_tA*Um1>Q>)Q>QFIh89R|6tr*h
zK#QU#^e@vLA}5kNZm8yj2a~Ff=la28Mi{QGu6#j87HdB61JRA?{O@xdNxMm&BmU{M
zeC($if{>MWg=vDWB{4k<ayL`PAk@w=9)e_gMX)UY#B^s-X+vh!TQ$V4@5vV!%K6Ly
zaMQlLAjQJ^pV-a#8i^@hEx8_4Ib?bzHL527nsb1a9c&;n&kdr+dcj|?{zVvdID0sq
zta)1(p_PIN_1Z5A0JmaWy#VigEVl3X*1>6g7y+RS$S(PvvmF42f5fw$d0v_iG0^2F
zwR;*96ESo?1>uY}{M65#NYoN4{ZCd^Z+X}Wz~6u&8wkS99LWsM+<?=T%#_uoLQ#8o
z5Dq(f;QFz<%~@mkjQdH8@oi0=1ZK3r^?Lb0(@G0bCpEJ@HLU=0_C3<?laadhjEj>&
z)xW{Mtq0O%vh>{^x(3tbtxp6ZR6%|V+YLF!5V?h1MzvP&7NVG<9Y5)-9OE+s3u0P@
zI#H0<tGu@MGE3fYBUJebhZ=KY?td-T^fbZ>rQHg)Cfhu3>uCH_ZqWY+Dje9()T{N5
zD$u0CmTipz-7nO^7jKYynYkbGiAMs_WeC!0Q2b{wW%_qWd#6D#Ss=qBe)4uhOqf*s
znjF;6cJ!J$K5&Z=<zUe>tzmoZl1sDyP&7n6uqjW*3OGZ}ED1<@N#IO`V<s+KQGFrZ
zy9nVytL;_}u;eB`fGF?Iu9#Q3=6X)Jqrmw+i+S2Oh|QrzphH6ZoZI^3jmhG!J5M@w
z{jIBc3b#kz`1rcm=#Ok?_I>}IJv4kg(X_D{tLKdHBAlhW2Cfg)2V2Id3hN)W8YDjd
zK34t>&Rxoq_`L-vjm6fY={LVH3PF`v+9IQpjS}SU!Tz_bAZKar)&v815=lTP*3-tL
z>N72DuQW!lPxM60lu?Sm9Wf~jm}8CV@rx1bOz~?a<H&1XqL7+F-JBwY8cUne44_OR
zxaWbSf;m)jvrXJnCMg!V_5A7$&dBI}{~iE|EA+HuH0btPm#x{><PH+eE-0e2&r>cA
z^lAood&SCpeTO2FKye6WnoB%43a}o!@Yf^|dfV8SIh<xtDx5NEf1V_%WSnnJ?oA0E
zhyCNo5KW&+S@@Tl0&n&V4E91;qG6#_>vPwMf>ZWBs~u?*9?WbxI^Df5L3f?Yc7SR@
zEvKlAUMCWY*5@s%ylewNgBukz3h~HiW3}~b{7-JzNvl1#kvgM}%`Z;7YGSgT2~-_U
zoCR<!_kLaT?TbCj{f8_wb(ron){EVq>v6z|zDOJF%rZw|NIb}jOWC@5(laB-w6xM0
z?RiOlyVU-K&>xI?h!mzJTW_O%4)l%=pD*&f7h2Sd{W}jRfO|}LP1lRBlDnJPct<vS
z`zA?Syl)Xy3lRCWoY}CWtQxwzenUcvAX4|v+37QYs6mjhilAD|c~VyYo9w3A0DygW
zoyJRq5lX`kiCP}Na|<vkFtJDjirBW3zH$__@dpY4Jj|Fn<^vKB(D9#E3B#OGS<c%8
zPKJ81f?w88fy^*h%Ia?RWL1SQO3cP_(}`;NeG7zSxgIU*ZK5dqeG1#AmZ`|;ErDpf
zEJ#?~<sPJ}R1Z+iaof|TPt>w=^)HGL_-H{Z>JPz>PjdVF`GYl~SGsMxM}`QM>g*Op
zuv|e+1>1g6=ss-{ijzdEP)a}nuS~bb(xJy>s8s@FQpw4YP9@QCx`tKEQJMa|4ByRI
z_z$1-JgTGDWN-nbRmMDf)krc8%o0y6Q1nbW2N|A#O=Hpe+534^bJTLa&q;F`+;hn5
zEIj(7==c=o7B6>_xQqkRQsc2Q20IuheBeEf2haY9oT@D$>RN&0(iAODdp{%Gg4%j3
z7H@%Dywf!8hIcF7K$V3Pvy{porRtA!@B{CPdlMJ`@<@V$tY~e1Hy-f->FLL`Vu<j<
za7O#dpoL7s<~DBDGNk)JgY!<L7UgFi+#$fCP=vYr0xMk`HmlJ{Uh;!a>hUu0aD%6p
zKd#Wx=T2<^1xlWQ7XG=%!nh=RCnSd}!{}GsD3xOoH{CroLzVJ=Fm3X#`$GrwnYQ>%
zDe1as*VV*@+>G6J@@^f+ehVD?n*dAqY_rLU9j=gl!pwS7{1z@NFS;0(<+UK_G_zBO
zJ?2&x%MgdDz!)93rca{m5dcsMGEwQr<(-1Smthtg%HuRX0CON7->H2pxX6Pw>4U8)
zj~jRhg9aspnOArt!$sip(E+;5gmh%0ct$gqHK+J$c{Sm9iB9?&(k-b#MuubBSSA?c
z*G<<EqdC<5Q6y2T?EK!4fg+F*LH>hi(5E|U2)ErV3Z)c%N#`U>fMi7MpWI>fi+vk4
zMH-TnE?K)!mwM=xQixrSm@f2|(0Lo`8*Yd~8Csac+t2Rzr9($I;%7^kL(l3|JV_4%
z<QED8NJ<ng;XCR7J`GV)AdY(npw-djEf>Md6C(YwO@Gpm$X741O@F++&TSVR%jjLP
zqi2DFinAK5CDuq6%qU=++_{Lpi#wHh2~A~*%51JA_%o0eMD!GDmUHc4|0Dm+ZVHcT
z=&r-IemtZO5JoOB6#W8e1ds#e1OCW27d=RY&a_A|WZ6+i7nWY<Wm%v!RD(O8cGU@=
z&i5c{)zc&QfnAC0Xq;jwq?lkv;72^OANhfUde`I0$X4w@Ws9Ciq6>e`D^dw!v&675
z@t&qu(LrYSGEw9{ZN2DUi{5#W+RcWS$}9T!?JiAjIeruU6CY_TA%@$hHUf%`RkwT+
zwYkt&1p+MiWK&hXg!}76S`Kn{R<{+0LUPEg1q*$!E7tCgBBxe*kbSqx^B7;{A)&6i
z4>GOWhs83~h7Ij$gqC&5V{{G`yOmm6GkrTQnR`lwNL)VUf2L}Z%@1BF2B81KY{<F^
z^s}#mmdTJg#Tw659rQ^Z@HJ4G0JLMnjQ0Sc?9L3eC6r(EX&36YQ0ZF{AY}?PtE9~=
zseX`^RoP*W@LVUk<Uj#CxhSQoKq&wRqq}1%TjSr*m75hOm6(aYhAUhNf6Yu83gI3#
z<qIx4hBUluRO^m#QGd?({{n=3p}PNkK~?K+#?v!hoQQc>O`_3coC+OxV_g9_#vJ<H
zOtal3z?xB5yik#0c?V=gM30-6WXQ8F<gZR^%SSf8;)|OY=T6~^nix4r>Pk<CR@`ER
zV#tehl%#71YO?I74hYS@@av=S^=CeK(xwG_fjQf0SvKlV0!T6_X84^Q8s(m@&%CIi
zM_!NXcFJz0V(xR!<AjBGxui?r(~21rCHZnDfW#5bQ-1!p(&;y5XxT(dZ&DGBh+FL)
z&S-H{m^j&E^C;EnGy=(gs=QMe_=3p<yrI(3Wa=#bqPpPcAN%w^EWey)fQcMn#9LAD
z)o8}9EexF5@S<SeR0igmYIq~pO4@tv?a|jrOu3M2=BSGr{%}=X0QEH4{^uaMAz7%r
zvav{0+Urm4yto~&!c@K@^SI6iHqYMuFX2aS@g{k0)mZGTUe8w#2phC6+@y*8+BGu`
z3A0MaV{djIruo)qO6_D{@5Rei9q1<e%jhkwgN@gKDy;-j<IC*5cC?67KzS(2aEJp|
zjn_S-NGU}El<v`DQkLzTsf5k_|Mt5LU9bxI!V~qJLqApl4bczv+ljBzM!-B1G&10L
zGDEVkkJDjOha)QQyV!}(rp<bgcQ#TZ;_O~t*U-{-N`M1srl8w+==_@jMRb!&!T>ZD
zl^f>RvBf4bDjlxZ((AM{KTtSFh);35q%<O%l2iiUf3Z^qO}A|6kD1q6W>Z508i#+0
z!((H=ficyh9&v*@&MZ<ESJeV~LNwNih+Aq~(NO(kjb-2P;?NVsSosjx1prg^d_Gwg
zQ-$WyaLzu?HO~O(noEM8Jn@KZHg-x+6M-^RbQV;O-9y#8KN@U_mDuBadem}ne^SCu
zZb*87)hE+sxy$zBYd!CdHo{rby}hgQe*k+qo-?8n_gtLSOY(wPSQ|Ql;;g5wBerWW
zsV2p(<A8O;Z_5p)UmNGdE#3o<3EBRF3|>A?8?`B+|8b#s0=BY!wjFyhM6RmNLfsE!
z5NJAYGB~70n2l;i*i-9;mp}fJCi6W`yMB=5C6v6Lk4y+r!hO)I8V)1p%?L|6DsjpE
zgn7r2t9Oitqb236MC1UlHe_st_@wwyZyz=WwHiM@%-yEaDOpR+Q4&YUq5;Bt3@5yf
zF$`XTn()q@K!>k1XBzW$W3cY@?H8&shNr)k$DVA!YHrb@XxmO$(cFK+#Hnl78GlTV
z$-py^aR=+>|Gw@3MZ)$vCoBgs&$Sv(CAMs90b|svtru+3RP5jdQ?9k&3mQK&qDC$a
zOt9s-v!{K3^HCtW-}2~O)F*?P7G(Y)JE03oEjswkMae<1+o{cO(xjPrDazy^3acI_
zX9qA;e0jF8cwT(>_r#z{e|HILkC+>gu?5_$q><lLm+}GHenNK;ol+x6GxFkPES}#x
zETXL@i)tLu3M>-}&(Dn=hLk65weOZlM!GiB`n4Z@)1E7W5S~16hM9bzTMs856LSKL
zK4<)~`RO%JRjjRhNvN_FW<&J_aA^*u6hKKUrnT-axJ!KnXgRsKOj}=Ewp|>pV2r9y
zuLj-RsH`UQVCSVgD$<J^QU=EDOYG%I@85HkFCtzM_dj<3B>1ICLo~56D}zmyztUw%
z7gRIrTZ3dn{H+We!{5p7pwOTKwo@W-W|@3Rp*uy++C!;w7LJMfTjg2{U);KR$O<wC
z&3pQT-%g0;7GkV;z5In$Yp%@49eBR6f*mq#w4abb9y4DpjU=t?lS-o&Z|9{vK3nYz
zaDY>3(4DfxfbsE-<7AC*pmAAx%NihO!~ErV9XR%U&<;F^RpBjSltVjGU|Q@emmeKz
z-?9B5cj*cG1XeJ8TzKB;va}yZPwdOV^PmSC!Ez|+PqiLgek&;jhS2iUd9-MeNfu7t
zEs>butv!+ucOUQBopDg<?8pksf6-lJgI`(sQ(2s>dmKu~nLNXwY#E@g^3<yAvr;Ui
zIWXK(a#6r9tTl(uDjF39+gm(n3fifd*bea;_ELfq-(}MocSN<jJ(~D`{bJ9iS3N@L
z%Ibbk!X8xwpXiv8hb?l9vI(_#+hNUa^$*%-@XIcYA%%BmiBTxWZ#~q8Bo;$N@KxEh
z1hsv9RUUi%t2U07rf(7!(Bw7J!%Hl9R!jVUXkC+v(RrpCcs1$3>318_%h*o;?$mLq
zuIy9?+H{iE2C<?SPcDSIv6l8ss`A|$Oa)(??g5D1oj)YXSWm+1R24ZnbXkr<zD-hZ
zj=!EnsZLNYDt8qQd<Zr;G*ri90L*=bcNfOdrRhgJix(Kr^KB8TJU?E}qvKkJjvl>p
z*XT8q{6$MULO`Ko^J(AJ`|({*E+J3+<=fQ}WGnd=5wx6zp~fG`8Um<^e$}eCC0CFe
zVczq~nd&IxnO7_?9%#fROm(Va@^VMM5U8Jo^Ui^I@;J4<fS#s0mO8+gG)&UH8x4E7
zJ@r50ccd~^3kE?A`DXJ~6=~B&ArRRYrqGX5bR)4rV4GdM?_?Ry_fZS&Z4SVm7A;l7
ziuMk<qFKB133ltJc)k$ILxj)!yiLnRLd3BWD9mE4xxXg#um=fC*mOyjAwuZ_3P4J(
zh@_f;6+lwNyB#x@;jS6*J1*^#ie3<2b+xm}BVHTyG1thtFnM~I;U1%Chc{TPL>7D@
zX1fF(UxQv#@^3LK+-EvaW54y*G)Iq(;Y8pUVqzt}#$v5sxZN(xbJ2j{#u7FGhc4U^
zOqm<Z7DF2U5n0RIb%?B>*i-zuD56`S@U`?Y$xZt3(M5=tLp7T_MJq=P$6q@q0RT0R
zDlK!K>*V*@8lV%4bY*kT`n<UfpQuhS><gG7V4;ffcd=S*o}QGp4BsF>aN|)zH;gt=
zwJPbATf?c)nx5ok1lWBu4~Ni58jSzK7f%=Vk?iJcS85r7)(O}*X%)zvpg*-X))><i
zsMch1h0Y{X$6k?H%ulE3g()AqvDA6LC17>ep;I4;d=D3v)VU<P_;Q{#WAEKffn^EG
zR(5M_b9$E?R8N1^TpbTCXGv?6Ky_MqVw7Pne)nZ3zb?^$)uXu3bHG3seW!oBQFs4c
zH@EzaO5hG*#z6*ochFABgzaGZ9}TeVbHM$I(-9DoFTWu_qN_EGf(1PgItL_bR~dF9
zl_6me)j0UcB^Vs2J#!O^8Jaa^c<HNu>k^Pm-PV;X%qx<YSROlUcbBS{{wd0QcDS#c
z^P#*(klPN{S^{_fJVI>CYO!QYx?=X4FzWv4bIJu5m6xV6(bGF=Gjd`rXpLvush0i6
zfi`I!-pwl<?Ej>GR7MCR+a^Aae|kc|Y?wclj`xbuJwAZ7qschAX~xE7zL*7BKGQ_s
zDk?qwTDkRST>YpViN3AqNXy*u^fb0B79O(@|J`;V1LHGD9vM~`09?cL<?$gkEe)!7
z=3-Zs%{Q=4SC}(21;5ekAcOeEU4+I6QFyV8ggP1n<wl-aQ6WroNIz5Aov^RstXo0D
zt_*RieE%5!Zel+$&4Tslwf|)M8PXp#NBqdVWIFO-ir})N{1Pvun0y+Udg{)IGRzkq
z7j&aiS{@hHB+zhHp5OH=Nn?=M5FbeB_d{V<=;#xq&zRN}M!TZh<D<q@iqC2BYSV?J
zHw*p5Pt7EQK~CSSO?J@rQNzKjw+O@#@1?&wA!t{KSHWX<>-_kPlEsF4CLrz2M$7ph
zof2<Vb{|Y);H;Q}pl3Gedf`cA_vcQg-DU^^l_GCn0pMLzl(jMnDJgO4+6~|fjGV8N
z{eAUvzj7bOdYmcqn|RbPq`zRWkoyqNnkG9t6WI$5dK%4YIj`S~!OAVNkDLfJI_MNt
zfBD3x5Q+LDzztp6FyeveOdpduDpAQ5?Wr?L295U;9d|`u?ke-l7|nQQY253B!2dp<
zee3iXjYxv|78jcQ&bAi!-?(0IJ*=gwkMbiUaZ%P&P3?)p3RC8^M|fr<x_xb9pD!-v
z>7C}5u37<YAWf}b@IIKlX$$`YQvBI;-r;(D=`WVZLwPZv*veAuIv!DVJ*;>=-&$+L
zyivjm`ReY7NnKg;R~Rc>01Z!(bbC6lE0nqdZLw_yj$)*D`OF4|#CD4bHjn&ot2tZf
zHrFJmGt}a&wbJ;`l{Y=vJ}x^`FE@fVhAO^_6rziVVm<mU{)@ML^qmleLkBZ1M(1a`
zWQ+d6M6|TZCS}I;-J1{OVSPrNJ3b!`X(SPt@$q}Lg!x0_fuMIwo8qTr5dIqbpLQoc
z1*7U^{#kM;cdKbap~@@CuDXf2Anf~%YU2f=R=Kb<q)4fNFZk!+?~LY<Z)s5WP2BNr
zebm((9%lLa7acA@);rQ5GAIFc=Lq}t4}kYNHDx<YD^iFr(f<?<TGTQHTLU`U{njk*
z`RijHqsqsd4$*%C%<sQXb^OI1XiX}t>Q<x;5jt|>UGNJm2Gx``{vl<l`@=#sR<~H@
zrPz@(3rb#Sg$FHtw!97r(nIQI1`9sSkKE?kv`s6eA;X|Y14$TQs=mbVI7+vj@V3p|
z5uW$+>fKqR3Ro#Psq1706V>n|aFvskh_*5x%0lN)iW!FWofitN;lA81J|N?mi<|~G
zr@C}_*EY}$eXx0PhVj@9bat+yQYG1i0<cV}X{Wtn)<#?(es$j`uxV!u&j@C2C3$=m
zMHncBd?;mHns)3z(;7YwecTqPUZxfznHWRB6cFR0;rntg#2uuI$N1jhDSub01CSGq
zcp`su<CrUwGy)fR$rw5{#WqgwaPdvw7IZw2!la=oNuVs0@XRk?YR<P}KFf1O7CcQ`
zW1ewDteJ4LS)@we1&C@~x+o3UJ??H<IH#)9O{ncx^jo0v4aJb%%Q1Ny_#q9WdgG(D
z^*WVCqQ?5RY9O=)J2Zh~ne<oZD6G2GhbW+I7%bf_W%6uwlMZaKI^(0srdf}J`<i2A
zjjrjs&x3t1)`3$kQCl~zyqnUpSA(uQ<-G*l-q|NiaV5GMjKF^%&UKwuCon`C#yJCO
zXOD^Pk;6d}>1wpS%v>|78HdqQckTj+h&}e&f62+o+~syf@=OYPL^T}7nSMxjUOC1(
z1aYM|pyO5>6f--k!(x7$tSzr9lG2=;w6W+f@0EdjaIVB|r4(_m2Wwkhi7Qbuj_`RN
z<%;UqX%NAD>)0$n5G3bNW(|H5VwO1Ec=z)A=DYwonM{a3`V%q@_H=Bt^w2B5^axc*
zAqlQBecU&uIE0D#!;s|O-qZLcT2-$wpa?01_ri%ayK4QUQ3oBbjo?-M#~N$#r!bM2
z6r3Ov!F(qam|7N+gsnNc?W1;|rS?STkcd>DCo9_;?Han&OaF&6<VXe%D=>Vf&?n9N
za2~KUzAhG{K5Ut6L}FbxPe7a?cn!-Kfw0fDLyg`?#xueBj~5;Z@t>oZ0gwq+KP`|%
zw%$k}_Jk)Fv=_tLNcmwCu2do-1l*6f83(9yjifH!nF$scCJ+5$^F;bQgTN<{Er-$7
zfuX4bOWLPz$q&BwC67*@WHmtNq)%xRO+!cghg(>J^S^-JF}RUoklAS}IZqGP-vwC*
zkqR9=&9%fEJ2;8tjL+C_oy}S6R`qh`>@vh#OD}I%Pzz{N@2~3uY75rMx1z?vwur%R
zwk}V3C1G<svNgx2E1R>Zg}@E`Km#a)NR0kErDn;7hw^q)<Kb5pm*}dOdtxl0*Px{u
zQ*g04Jg&Yjd_BlQ^vFs}7cyVS*8Nm=G;ona^cX_+1k>X65Zrv)@(8SyIe>Mw{tkpm
z1}9~(kh7sUuoqZrD*Fu1j}!~|kC}ior{rG$T;Nf&oBWL^&^iU-0-~SD(SK$<wi`Gh
z@UrvO`o=jfeohvD2>t4Ao+{EHBs*ga1?rxHIO<m-5yq1LMlQjn4KJ~g1!NFj&k3(E
zbQJjB#EeA)w$m~ZXt+x9YnLv$!>z7DQe<CQj5C2PAvG|BC!}YGr82F;$_}h4b%J7(
z)uB!fii0fofrbUriDZ)OSYL@ZihtFDh+P9jO<Hkt|7DH`Mdok>6`G2RM2janNjFhm
zmX?1y4=9#U@lfT%-tS7)MZgP2BVP__K7N7DdyR=KF?Io1ME=^-y-l)>RwOE1qZ-T3
zhL_35`3w>;8zUXqz_RXYGB`P+NM*#fvoB9So@<7SiJTb4znuP%${NQEEJ;y4KDe!v
zK+KMOjf4CUU<W}ZYXjDwU#9D#Cd$=X$134XAw{RF>WJSt$(<Oom(%CforBQlCCmkk
zMix{b0OSwF&2p0UjK-W>(;rsT*HGx|;~mPD(kO6>!7Au)hk-$XtgJ&z{`o<4J*=QT
zt--_;0a<WTZo_Ijxvj*lsw6M53nyNbYpst|H#zu*v3TJGRBah<YQ2%s0kFaFf5ASU
zg0?f_BjvI9OD^=yk<o!*7Jq2)=-}Q=I;oP#z(xWFS^+tL<Wd3F8h}}|^ssUxZ=|g$
zqi2F1q6?^aj`&-chOu)^yxhTMl2hVJU@;2i!AU)vKJ`oa=0&h_f+ddzC8>ZBRFDhZ
zsm5vwUfVF@zf^|Ni<d~J6|<nDu#W*TU7~o1LX#cW`hfqyNg;(HAqhiYjnyZgP%%Ax
z#s3?|d1-g}Hj2$XumLq)jq?F7;Dg4mx($lBb)bH1odhGZq_H9|e)YDu5Z!ciDlHyX
z5aLb9mrwyN{$GeZv<aNQU2Y5a<6xoBR=*9N<#R@NWo5IcEFUi8^as${$v-2f+UZc8
zp`}^-+n-YbVe=yY4tao69IAY)aGmSS&JyT236SwJJY6H`AN~92nm^dTutjl7jH<fV
zYUJ0>Lx{RW2)hAzd%7oEMrH1{t{tQOo@)mb|CfsV=v4p=l(+|3PfYtZYoVYWu?=KF
z7Cyqn=rEkGi|bN(ffXuPU<*?-hZ)18;!`UMrRjxUTn7s`hW=7YX~jvRzs{vhyW@s9
z1iqvY;yrv|f9tWIyf<XAndAJ<lvBd3wwU)h)FU{Hq~CUx>N&s>{~Zaa!{1I~Q7qG<
zp{D;e0{B(GT2$oZDQd8J3ER=JtpSS5HC<;(cIn4>C=g>lfnC1lM2^X^S4BJqRJ1Ij
z0*x_4fMeU!Cmj1;v+YRsWrUf=1FwRQ+he#$pVd;g{s#GtIscejW%wk@D>kR~|CO!K
zESF*&PU`O#$u+x62hq-_MiFp)lg=&jLTuCjeo&DefMm4_&agO)!-b&g4`*!WIjVjk
zkaQNLhZLY4Rf1wqoVs|DC{&0vz>-|}nlj<M^MW1+>k7CnDrb@YiR{Rz(8`6tX89a|
z>}(XFxdZcjI;wO7y7f@A=8$=?<=g{LbL$~3h<9W9X@<b)aSEW?!moPu8Gl}YuTukF
z>@wZ{|C`4KAz~^sPlXLn8RW1*<mmL)-=wf#H^Px!I2|{wk7Pd?Ojl>T01hZz^S&}N
zsiS{eQO3_YQ(r34bIS9??Sf2h$zw43&?N$QB^;?SiSlF>n}8n6$X|q^IYeM|nmuFR
z3Q#+ev!pMFMX6KHFe<Te47V-i05S`rQc*Tzm62?oNjIR!fFHo*$BDX5=kvFKIT{|i
z<TrW(U3=x?N(E6z%^R=Ds#UmFaOg)!{eVmS0~q{51|-bpl_kKTaaDrK@%m@o;IGv5
zooi#*D^M&n-znM#0)YZ}Z5y2E9lrn4&ozGLZ;r{MDPRS_01!w2>~~@+dLRQW3zTk!
z$71KXW>?1>*$}~=i++<@W<=s|F_6>&^2ksNU6!m(o)~I(Y@0C-8$Gy<G|x{TB*=zH
zF4_Jqz+7=m4@|&va<m9JH0;;N`<%MNtdLbE)d&sm;&AF!x#$btQ0^P(tp}6!rGe~A
z%p$BeZjIf~pOF(HHJr*d?T;*t^sqoZq|oJ<&p?v(XIQa{p8B$zP|7QD8bX<Nb#p>`
zYuhot({cb>?-Es${Nl~jp^vS010z1#UP_*NTIYm;s(*ETjwaN#sa2RW7fU|=JSZLk
zn{i+{1_@1#@g)Xe6Re2dofBEk=zL84kd~0f=E;+8lx4jL85#jJ*S`enKBl;8EQmC2
z9{;K9`A?>5@~|K?cN21(D9($YPYATNUh$+IlGLM>)z-Du`wJ&;u{3$$NEDFeZa`6N
z8odR+v1qRIJYZWzdc!ubOp^m0@-{hp>vmCea|uw(S}(zrQ7z|zs^fYi>k$Z(Bso1W
z<Z?*#BpG^PIn_E}m!(u>ktU2D_`WNHP{jZ7l>IbBCe95m9pr?Cn0Ps@SK>&;X%tT&
zh^*mepz`8^P9e+9EDO~PL#ju%FQXJEY(X9Z<YiHOa|+$*0n??Dvz;owjB2XcTtCwB
z*m5vlLyQTK_#gX~!JujJQZxos6eJL7)Vd6B0GfAk@^Pe9>Ln0-7nDCHkz9TT+L+~j
zgNl(?UqAlGG<~B!aFj9k2{BOquCv2y6$X<PAVWjOw;v?|hY?hxeNL7{C$yg>dBER_
zk;eMEj}p6-jLs3-G*kQ$+3^6Y&s$PL&`r@?6j;nTU7(k^<Ai7W5E_!MKN^^hzd(q^
z5AvY^l<~wUU2$RXAN4mpzhoy00!e}4Q{D*m>(x-Q8HBwVv@B7qTd%;)3w6lL%~niY
zh<l40*7AI~%m=Xk1`FpZB(b-k$r-OrLg}D{_qRD{&t}E9phmjrb89mEQP;>X&B;>L
z00t^LyQd+u{KfB_f~3>Z{P>a*>Dzx&mZWQo!EGTUX0+^P7dB3a1T}Y*B{gPyiXxU$
zQ1c&zi-VWx=dOmRca~CYZ(Tv9fOnlD4e%!eyO<7Stlkep%ZNHUjHp;Dk&TGsS>OO{
zhqAW6=3(0-+SNtCPVtBL?=mbVxE1OeR>w$t3d84`yqGy-t%#<Q2!lf;Vm}EdhsPfA
zM_E|tGsUy_bRO`g8XBtGV_Pb(zZSAhQXM~gW9#5>D94oKgqiSQMHG~xD{r|1k#&M`
z*_Tvr$-4iW!;oY>i|gNTb>hTChOvF4mD}cO+m+(FrzG;<1k)O=2_ao_wrxIW@2&cP
ztgQ2)Hg159o-9+|jGUskA*60kqI{WzkyhIuIpCHswNdG#pMh1pfm4mURfkj_O5yN@
z2qKR{(j=l=R&+E3#!2B-JSl7t@nraP%CO=94PtcEM=eUm8jIuqE=>xk{_8i+_Cvt;
z=Ij=xc8{r|UP%BUI>eeO&zC$y7F77VqX_CN;Hs+BvbT~Wmn$!6mKN%Wh=$>NCW%6C
z!=iZ}*JadFtNVr`NJ|`aACCqt5V#wvv_&duXcHp17sKf!i@v{)WpC5w%_)kR=B1!X
zN0pYlajgAMQUM?Hq$kfh^pU=P9HA7pN8m33&|&^20Ml4^Igdx~HJ4?&0}RKI6O0%H
zO05~^)GwS=p!O02Jyg6o>tkUQUTc_Lhf@Ve6xoQ3v0C}>>GNeM(qe9bqE{1mVuX`W
z@zlI4234&=^7U1L8PazU$da^A>z}q|o{o6Jc%|Qa7HGmq^&%!pFe-8X5Bo#NMt5zw
zG{Wy?ye8MG`|<g!rYLXq&0AE6S|?|lGmmav_iGSS$SEm}wO1z)t5y>GaWiSzbL}}%
zv0Nt}e?gkPdF{i0D*fHCrwz=1pT!)btkr@2(du7GcWD9Nm1p6}ArM}s`$5v}nH_|f
z;C3H%KTqqC90kMTh?H9~!!pU~q!{LBX&$Qb8Vk+71pQg|E^>YaG3VJ0qv*Sk&}RWM
z1ym#ZD8*@9`coW(vp{gNJPfCvq!_wJypm+R<@I0D{U@uGXGX9n9>GB?WFL#0h+7(I
z>P9FC<X$bGi!nqia=U@AUhAuu(qEfl>w6DSm3aBb9~Gd^wpk)7yV7QDM%{XCn%;)g
zMvivPqr<Ndt7KDA5f>^0`~xATVLcWpiYuZ^Crc4yaWEbsC?3pOyYA{3!e#@W^_~-j
zmLu69m(@)UId(U}!xzadR?z^LCwIsIu65IyG8`i<QH%Y6he@#9LyoMSK@Zpo5v`4f
zl?*{sjHB}XUQq1j)%ULsGL`r4JN)t|w_|k6u_o7TW7==f{E~&AQCF&k1;oL_Cl~}$
z_1s+ur*jFP{6XaP$$PRMnCx`3)`2KIR$BHIOUI7>+J0vX3E>{gU!HKo@DH*<mb%aW
zoe@E9bmDh}f&yN6n8a&5!fFFInwmh828~y-Oe{D8YNEmUxfM_j_t<Ow7})DD5E^$y
zk}6T!^yiR1N}gH;>MgTFfyjWbUy_WH*dckE{G{MHS!LWhoA8!Xd?QW0gTtd6XLBRc
zQjfv?&N0ZG>cGYNw;Ne|VXPl<0g$9)Ng9|w@PTlk478#=KZ$%jIC%R1T8a}TcH!f7
z4@uF}V$smJG8L?}dtvV<OsGrDD;iz}Sblu-LMvmSH*ADLH;;~L3~pa~%-eXzIa{&W
zETg4cn=TfLOc8WyMiJ5Nkj6>(beQ&XW>`G*&r(I(?#s%%s$r2E)^HUBbb=vM6ePOI
zZ_FLdF0g&lDk8y&DZ3Q+rir3c@gK^+=R$tX=vlcf7DGY_lbPo(DuG@~hOP$U@)a9~
zgz$r)M=2uq>Bhdcu6jz-<ZDy-b~IRa(H3RU*G};=ST2QWW?wuA$$kC9&E;C7NVLbq
zD9!a!KF}mI4F<5u9EnM<bX89{x2&Eb>IU-uU-^|S$Z1dYM-4Ho27-^K3bx^V-S_r?
ztv_LV9z5W_7`DNz``%QgS>Hjti%i3)JE$`0e*LWKyW3k^LmZ+gxdkLSdO2y2b)wAB
zW3r~HIcb1b!5a0vkcxEo`q_nGs7xl}mE|IQH>(|WNc11oPsrr<Sd>E5m$Q0?v*51Z
z^qg$XTId==^r41rLR4F$bVW(Ou#yllel6uRI!2RhdY(d#P6=1xYO;fjVP}{+zxDLu
zM&+XbQ3D@7d%Drn3dFbm^=Jy*z(4rnH7n$GizE>mpmyYgO1FnsL4V%Ha*VHNLMw$|
zGTA!t`z>CGs~n0etSKMfytzr7X)!JZ<*vD4dfi!wCE#%eSjNJo3T|d=^v$O6C&&<Q
z(m+xmD0XF>i_~&ePQK@5!e&XfYP6YmMXRe?<06pb1~{v3rLJ?wFm-6bavOy-*`I6U
z+UOp$NF5_CCH3xhfoW0_h!Zy^mJ}fsWn!m|a)9^+uu)z3WE9N%1zB&Q_tHwt4HYUZ
zn}aWW_xlJXwT-sl-h&Nxo^QD4v@SV{Z38qlt((T%{5K|6Fk6D7z)&bODYiNX1j_k^
zq+7X#UkoJ1V#0wg0WpCsJBF#0U(ip^iEgTZ@SuD1B?K=YvrQus(jg`qgVhN5*6Ya;
zH<HNk(M6d2kIU=*O0)PnXs9|8^>MV{{-Y2;72~wdo_m>P^T1Jg@Ip6@+aDOb)h>67
zzI6q<f+&fP(G}St%aBK-@Ew$)flmmKbksymMRDZK$9co4k7cDYh%Xk+SrWMu&=tUs
z{Tx9PoqLqfGF7qWJpv$BPtl2zmW_BVj%Ue`D48{Z_mZnqMW)8hM`e?!Z9o`%2Ory_
z@qQMJ<QGghhVjwa^UIe=43x`2XL|PS-gzTt9h>2c?OqXRT~e2Gh|Yih#3clU93M5G
z>BY%kHINvP8Iu8hcX|>nHqged=G9r1c@W8^h*iAWepFS=st!}STOA1u2%?}s#?{dD
z)DKUDRKEcchZbS_2dxa8JLFqd$A7Y5FszeoP0h2dQdl<H5`pyY9Gnb)zytAA48g}k
zDwL`>MvEQ<s(MxvU$@@c)=F{kX?Qdz)dKh(o|mwvt|^8<tTOr^!e_(uR;9an+_65y
z{!(-+An9#f+#sV521Y(F0)iDW6I)*%9ib4wxbrXMk?_IoWGDL3j|oCTZI-BQwd#v!
zJQY#?IYCGVg$}C^-c)CAKco_^F=k^a*#er8C+sS=|KgMRhX@cxIc}~zEzCHLx@#*x
z<egAjljU8l`l~@1XFh7KFbXI%929g*K$up@b^UKP2R`qW#)($i$3oU65#6R9uuene
z7q40qj0hfeGjt=fy{KN5QHYZxb1)_O*3A{;RsdnJQx>;`-@M`C*S)t80onA9l{;BV
z(LaCSm-C2;>_-5y+bG^AyYg_6Rwb)o%#4LoF4O+Y8~xB6wt|fEQQ;*}%YIfQ7KrGR
z*9L6w!e88oV|Izt?rg8yjCc4hl2<GqK8iYoffwp3hNwO0#8Np>%vm{f@Dtiou?Izt
z8D@?vQRXUU)Q{V<YaxnYpFTb8>qCyNolf|UAx;2vkXgz7gk2weDbv%fx)_yX4@<*a
zvZE+4(k|2{E`|1QWcGgxHvdNES1^OanVpWPXGO6HMIp#dE$)Ng`SojUnmS|n;bqrM
z?uFdq0kuLdUBh6y$|d368xJP~GHJolyKcRAx1<I18-QaQx=iB6`zUArkr#8*%AC;#
z{cdV<W)s)<y!uDKj%Ss<c3y_~)38=3z!?=ntQIQ36l*Gd+t-t4fiXtLVKPYvZ=96y
zMa*o$=#<UeHihdY2%wQukX<x8kK&K`@z+uZ0`*AMEh}~UEaVQ|BpN{|>BfCDd%yNs
z@P&)7T?N5I9>&LUED3DKu=u=pY*K3Yq5C*z!Qxc?66c-UnRezZHtI)rDRfwycGYv}
zRh|mx5cT7`+Hvv#V$Y1>KrM<vuO>f(of+_U7$bHB+h4k?e>ApWpK)kXWm9~K*pI=G
zX=)Od4>I>Ara~S1)a#O?F_E-If232&MCcC3<^Y@i+}M}uXv)X-YPq(RUe{n|1@J<O
zThV;`uhGWGZ_s#Kk64cc7f4`R(N>YOgX)f+7%+?$fL#%-+oy>$rm{NsNsHYO)J7WT
zG~-&b8RjvJP#O`-;1SidlH~9(=lG?LXcksn(+04*V|l}95rQ<O|1s#wkT`8Ifw<l}
zYI8q2cBhtxl69!G3ArM+L&OAD050S`W7bRj%i&b1GGgXo=wIQrXBocF@sD4qVE3U0
zsDe&^8-OrO51K^E>s9E;pS$o&_$%woMfH8JpgZHyD<WJy5bb(M^GPXqHo&t;!&GJ)
zX-SQ`dZ6C~@SURO)d}JroT@Z%Lqs=(d%1iL^9JsJdSIyWbGA@32AP=q_l=HyhF->)
z(Tc%O9a^~-b*5BQ<|^K<iH@je5o@6<8wt=qRI53oT`|#(5Zl~13iAsS+Cy3!kS7#f
zC8CqN;QKu1h3jnxfo?v<6XN$LtKOT%*(}eT?uHf83k98JPP1TPc=wD)?+MjsCMd20
zBsmVLM*~4nPTWpbRQgrH7kE)K4ZkIQ5cnobJh?NFr_YW%GZSBBrYGCkbu6=mGot~y
zO=E~J`g{zGHp4s?r_Od<+?Nl0j{dvcLdi|5&{3wtJbU~Yq%LQPl$bz>=bA2*5^*J7
zPjp(7rT7b5```hARGIFs9yw?4v01;AMpEhH&e5z7=y4)8Xo6V_jtf!Yuf6~9Mm=}^
z@9ES$IVPYPqrL$puEhCUA7KxG%Q@w<>DIeL!Y6JU%+b8<Eb@S@<36&*b=Y1aZpkmw
zbq6ViPLU<!`m!V3_w28~S-Ak=T}h9nyDZOwfr>IlGAM1UQETh9K*~zW(bkBn@5RX(
z7YPy|ivY02Z9B#jnVuc~-0+-u3smZwlEUT_;ooxmbZQl_OFx_ty~!la@om=abs=9s
z8n^FH&p=nk0x}^dSHqxvh;ea{8bWpt6mbZ?Cs-*@e%lZLv00y0mZb-l)mnEGQ`Gdz
z1%%}*qpi*5jh^PwZqq*HlJdCDkThg{RFm$v`(n=obA#jLCMZ%FJNn~Y6NP~5jQjCH
z0Uvap%qvE$(hOGMx!8_~-c*yvc%5tw)Er*!omTz@Rc4LoEP-{psEt||@Q3SwHCHEF
zt<NsYeo^{ui(;LQb6JDgT?pq2hi1P_=AgbF$C9Z&J;#0ZErgW2@N#9x+5zt+bMwHF
ztzJe*e9R0F9^^;WAc-owS^%}C=esF$)Sf50I(M{8oCNA%aUjna2EruNp!Iyq(_d4x
z_gwIzDjVBtUg^~?x;0xfPM5uPUD5Scj6?0NIR5ZBmHY&s&)iwtwqp@9yz<w@lhRIa
zkb^=P>GJG)-rwlX@eVp9j`=ET%XBeFJ@c>adwA{zH@wG@I01JyMzSO>Nmcu(M6pjC
zj<rmhb)ai#kWRT$4%Tz?v~-IN6|Xf@7v*7oOzxbZC7OqJ<y4^o1;6m6MIt)jB|C~~
zkA<VO2<ZQTpcB=P<y1}=UorL-{ELyT;LufXoWWI?kdwAWe!r=M*Cw(tg<SCaTg=lV
zuE!bX@$4ERcuhMg(Fh57r}F7y*{S1pGI!?YrMZ<wBw%FR7|}c9pLDMUwj4SSi4?rE
zExJQKJQTi^7_S1)L%N>2E)1NT|NIW>@Mh&~(sEFMm_~4$<~7s7MUjOyY?ZFQ|Exn6
ze6mL}eW2{<bI7N(v2FXNKkZrCzw|nGw{~P-HNYoQO#;-HED$c?C3Y^d9Bzb=jfyxK
z3@PAHDgN>;_DdDU7c{Lv>04sZ=t5Z%0P*dL$ftM}$#2HQTteB5l7ZX^UrVc%C&q^u
zhX2spSk!LlJ2#S0flZ1L7*_e59mMYA;_At0=+r)5)Qdw!f0P79)jW|2Y04~At`dDJ
zKK5;Cg`LoQFcX(p!LGRpsDc^+P(K?{Vn{yKS5~FRDEx>tC0SOT(Oj^GXy+i(?`xIB
zA!M!^(8g?VD2poKehrM~%crOmt}MNRWE0k@k;gqfOVKnF_Nd%9myK9WFjst*bSbP~
zNLg25r!5=jQYL{J58EQW@d8Y2D5=fLA2#mF<1nAbt0NP^%kvhY6n8ldH5_(obVy-6
z!Q}&ZvdNO_U%9Y;J~aZ$Ii<OZTEgIJ=$2h^hZ4yJhbJ2tp~R#MGE+J_-djKKm6Ku5
zL1~p5mc9Yx2H#_YoBYR=6M_|L{kb(Soj~V+19xglkdcA5P>=}XHmmbi4$%8&PR~&h
zIBF=B4BiCCynOOic+V3riM{I$1{{Bl8wu!M7Da4p)>8WhfrcbOTo)U0Srdq|Emxqf
z44an?N{Y8;T&m<cf)?s~!V~GSV$~lAlWOxwH)?ceWn75gL->|0i#Q)poHK*rj<cj*
zmW%|=J|w)@@^bG_Dw4KcB+t=gII=P~K2FE2(NgH(!l)V)xinPq_ech~fFky!S%xu)
z$xXea;~#|feLWE>)|?>wDoycYWF-q^N9ab`ng7_W0}b}3rL2t~FD}7SZxvTX$FjO7
zQ2fnrC9)dH2Tt`7Qo|H%DC0Y%8UBk7_AoYMz)PVpyy!m>da57oI*5j`0J9uPCr?Fc
zqqLYqh>jj`aGoE`s&}eh{4!{zL48((>31RSJ>Y@x#2}Lh*%WWvU)QDIDfrBmf;WNA
zpoUT^56f~!I-o+JdbP`e>m!VnXAzlWH!8d#9C6WYqPiU=p3tF=M)*PL!-YS@>z@Zq
zBg!Z&x33#14A^q2Fz15VG_f!%x?<toFh)IIEiejHm;1x(H2aQ*QM>cQmlq^(V~uNk
zg&6zg+0%``;4XI~iaE8;u+dY?$sf6)2&EGSw0QgTU%(%qL)qfk^X+lgdPFVxWF<dG
zWU-NyHCcCokuGu&edXrp#RkN_0RqR3K!X>VAm+|W%X(Sj3I$TJBRHUpJ9G`ijGaSt
zCcw5vV;ddYwr$(CZQHi3j*~yO-LdVYW81giT6gdUZ}4U{sXBui)LQ3!wf84|r$g+*
z_%aq=4!X-+Y#O%e_V%5qiXU|Q@cF$hPAqPYR{GZJD#{_wX3d~5vIVk0fU@&5>~rF6
z7W#3B6G6T4pj)eSjGr)i_rb_yQQ488U)DJm!*ljEs|Hd6Ah3V;UGS1bhZE?lHY&<T
zr6ZeFE4kEMsqtbKnfb_At}35RkD|gE+H&I{di+g+&1{7p_e_H}{`rohHG5{mUDv1)
zSaqoncs4-8HmmDV>CI0K&22kS$Fd3-o26f-C;wyy(+U7p|JUkxySX{a6d59j_kl?n
zol`^2>NsA2O}i`b$-cv76E?p?uz!w%@FbQ8O8cD4_FIWl<?zaZEB6^&0W`q!e*cTA
z<x4WB)_Jod7U5JqaxSo*<r_Tab{mA8agzl>p;od<x^_8pS_B8w+whM2LcNUs_1k2%
zPh3<AU%4h9m{8}9&EV6KL8)|p)UkpoV?B^ADhnG_E-a^tBD4I{cA9>E<93|8l-G(m
za4b_V_KK5sE(W-kC*-3FbGlj@rRlxfi|9`~NVWwlYlE6MS@_U>IXF}BID_YR8EGL9
zGaH3HhoGmpyVGGULAR9b)<Ve8L7AZy!gn51x=1$wD<x)VMkkUH8oeGED}IrW^7)4%
zRCcpCwCs!IWw9U|d5YOgi{pfU_dIht*{)Trn6#-<)5dyYxW1e`Y0?QG(9l^Zz3b^n
zB-)-=zS{u{#2(uw4@00X%9v06rT69NYt&RkM)}yCCD_q8Ps1<AvfE!`Ml_Y<S>!4M
zuYaI3=l+hxdqbiHGyFJKngxMH^qJ(U^#{mpO@*5KR_2SIz<*<46g1N*=^){PX1*vt
zLsdeB=vAF{82YTbp&>GHNO{{{fuwE;%%hml8K-(ysURonY4WuWwEMZaVpgV~FD|zl
zQ$#h3g>79l7Y8{LBlkR_a~3uddEITYy^i$(a`G=G#Ip%1nQrp9PsMD>N1W`T4)}3%
zeWvW*fLzyFj9^`KW32l8#Kj<(#(>o;5JEERq1#yPxuWfq+w)Q8x1T&DPzk!&0ijH1
zA*2jaqdfbB7jS$>hUd$&X-vUx_z~hS>4rwyKO0-;tTztGR3sq|Z0(3?8tyoPWhC0;
zG)>nL7pF0GgBzQ^nsoOue6xlq7svnP<biE=vQwI|In(%j{YuFK{Azz&CU-zLn+xLe
zp1M-4Xa#~!<w({Q-tji0P<^|;q$&o~bYE3_`-?K;uSLlF@!vF4)$Hgs#8<JKQib@Y
z<`;RfDxu+KQd!^!3^<l}yQDmPp|g5TS&F`3Ck{O*j|Ive>5D3x(#_L7LlzdyBngD=
zR`t(=5X?f|xPxHI^Q&H_i1diiy~M%*YBAhjrjVIbib6|!!k5<DW3MW_J)`7E5TG;$
zPEp*4n+<$~Fc$rDp{34)DZ?j=Ma2(U@Lm8bzDe8GMe@z$0A2L-#Fo;eu=8${0aMR9
zbGJ_uyUp(!-iov)l2<>^Hm838h<V;7;+uFb*J;%?*S`lMkUk>SK>VgNS5*$&q;=?j
zL2;U#_y$nOw=H6&x7uv^bN*%AK_O7qs8YQc<nG#YJQbJ=5nyr41<T-%f=>nuLiW|Z
z(M+(mgVo|UW0<#o*?1;`5*B>li<~s5K)Ly=Dko2_L&`bSP#PjS_|~C(F2!Xf<?8^|
z#q?oz9PK5V!ReeAyL{`?79P9?%xGo>btI|Bf6hON?tX=jtnV?NeP*tc8F^W`n1;6J
zfooBX{Y8rWPO%8=bYa21h)LK~j$6^HSMb_<_W+sVXArmCj#odw^|3Bri$M2ThL$cZ
znGPVfCW<G6gh?v!k7=$eQL%1g=I4SeL`!pMk*yc%-`hCY)Sy;M@!hz^x*d=ktGNPN
z!{!@vnWmSbv3bwHYTOWS17!R1{lj~F#=Er<jb<5GLSho^LuRguKn>o*m0X(j56Yka
zd)So`e_)lfU_kQbc5t`UdFS3|OgJbQKXFO&Xm;$u0FE}gS?C3zeJGJ;Sm;~VO<j)7
zLLZnLG2W))YaLaq2o&G%q5e3VeMa~rwu5Q022<NiXCU+=x{ZKq{i^_32}iR5NVnAc
zCE{<4aCx0~D8^^~f=@Y*!z~$oN7DGX8fxA`cid}Kd#nHsrVQ=?W=$O)o^NxpWm_3$
zr-7`huRt`t*s%i3b7`#r+QQI3I2?vCsRb5?GC-d?ug}Ox#awWusIV?Apnj<ezk_>R
zUTS(<)k)s$*eg-;lz_%bwH^KF%G&(0Y_NmQB7y=7sYd9P{5gah;5+*Y%>tbU7uxx{
znotPPVPbu*U7`8bg<kqskSp(#u$FU2bXGLB65;`5OuCqOOGh;_RcKT!(A>K0ti(OC
znt=zI7u3eLQe5RCb=09SNr<uqA36`GaDc6NqWJCm*M1aY#*gh06b^}%jS1IFQx4>Z
zlHIP2F79DZq~)`&oN&!`8u&%On1Q@f>$ri!kXf=;V!jMs`>`DcWZsMX1-2)eS+ALS
z=Y}TS2cU3>sgCwg*x0@2W32`!b-2PxQ=g9pPlK;;zuQq5teQ%w70!tJyG#msr8WAe
zQ9}wD3O6C|R%*II+`MRkMobcIy6Rrg&S@G<+G)&`xejW0#Jqj_kHgJ1Z?c+O^0PCY
z>J8m9@t`$D_G**GdBh|k&dnoh2ulId8{a10Z6w0U{TJ`rxRuN+khaza0rN(WMAy*H
z9w)1WdCt6FQxXo7?mqi`7_%^*T{<YBxR8*O%W%l@CeZP&CMli>Aa%);s_<Xnm2z()
zT1!7Mh&Kgx9Fr283XWIJZ6p;rIt`h!#|efhjKZ5g3rCYTnjs$9g3OsJ_b)NRAzop2
z+D~Uu?aN^)-K}ql!I5tLp2Kw-n4X?+;B<6@q#oYwONcQ=lLc#vKaizK3tsfAYrEg}
zvcou*zWUuQBF|QJxzbXStxAvKys-kP``CeS`XpMB(lt~!rUpShtAG!-RTyg1S<>K4
zT!qE3yf6cVso$FvYx>MBt4FLf78%n;8n0@OxPs0V1hN+VWYXDy9}cX5P&STPIIsnK
zr~ooWg8BH(P}r*uvMw9Pv%ugSbGSOQtz3tw$oJnDe&>3<Tn=JtM;WfzeFae{9iPh^
z52ak_8=YuSRWt1(igyvKh}2x@bI`Z9RR|gR2g-7nad(!We+l1Kk*_UfxUQ?90^^`g
z%r1OJ3ji9+qfzZhr5pG0V$3BUZU&v*)ep7z!-M)f<vMEZanpGEPidOd>(WLl(GyDt
zPD8f&Tu5-l|5$eCW0EVy4ANhRtYQ@~5cG5&9Pn`~)Pb2S6#=toPekuCRosouw|3US
z^+<AmguDPdU+uRL!+LXLd3Zi^mD$f`<erX7dg}35m*VcVs51;*jx5zzT)?BSDoWK`
zT+3V{M;4I<?0%}h*X{F<w^C8~RKNNkn=IkLd+`P%vTOQ<=NCf_nG$zli_c9i!{dvQ
zD;kFrX-*N~)hk``+$r1R#`XyXf!1E2rdpkCcCHMm-&3wUk#cgLURmx+9h&6Qa~KxD
zvQ$y{+f-SM>`Qi7)56u?M6uiIAEt+7<e~SjQb>tbG6p^Z7VR2;H4!83NEF-`U>f!-
z1O?_P!a<#fw9c!Bjp_GQC?|=$HgUl3*gLUI_*8kA>=lh0smoUg3A98XL$rt$_>7@-
zhNO@9JggJ8dqsPmQn<mKD{?r1@<f+(4%<_4{JftfO~_c0uR|W%*}cAPLB_hKu^ORs
zB^Z=4h!qF6sJMCr%u|J#$C;?0fgVR-{t}YdVGO7hHDNkAiRQ7W|Ltlk#8+*2E#M#m
z#OLr^!EPZvy+VEgnP%17u#C|K4~%$1+7=}vh)S`*Da^t8q+{O>+nPT=XY^xgBi_@}
z?QJeN=IdqGJ=5_!Sv?s7&2-KBvUYl!`nMOI4o2mpLxcmCo_w!Oe(PCKdFogVXV)XG
zzZ=ExzCW8-Z|y<1kZe)&t{FY_WRWftFHzh6#v=$4W(J`|sg3Z5P&9vMSg7EhHy_Ig
zskee22qV&vmOyrzcU@@+E`1T?4o9^{i&x<ilyY6tMcw-n)835Qpzy##N08Yv$H8P*
z&ua3!%utdUP7l$vj?HJ=C@l2Wzn!e6HQoIXdiLrmdNc80Z@(D+5Klefz_=2XI|m`K
z3fI1MasxoeX|*1DM2Rn6bt@?xkdp-iEO&Sl^&Wcf=qk1}mEzZ$-u_mlN=?#nW#boT
z9LL9v^Hg;S$JH=c><I*GR*32suuLLR%1cH;_)xDjYaXR7dj2#Wo{GfW(+dJjUWdk*
z=4(Sk5(>lV=8i)s^-v6ftohAx8RG9>ix8BU#q#khb@BMndZf|^F_Sgt{fV^%rAdST
zTw#2~Cz4?D<ySi-hxv_=KuUkla^qu&?px#~#C`CM{^m4I6SWgLAXvHN+uPn8#E?4;
zyYH{~X|IuFx&ir+QcMv5AHa3~(NJ9m)evWu?CMlbRQ+{#tU8Rfs_P6AE3&f%eJ<3?
z6I+V2t8qVNW4pmmwK$)xs5>o?S@XsDko`k31nODQd~X5X{<S{Wx~Cp|e#(pwbyR$(
zG$u%8RnKN(0QsWT3d&8sL0{oh$1Ig$d%1%OrR%}4Np?5cym;&iLkt!6&{<ie)onsm
zkLz4Z#&eRlrLALGARyIc?NeXI#FVO<(dT@NG>~ZCH75{5idcS_86dlE$suYU_I>=T
zvTUEDvr8H-EiIMI=8?U&bwN>=M_<)v!$)OmAzP^;7zny9SW<1Jxjf&9=ocx#v_a*A
z(M_0D_=$Jp6~g4}u2_sPd|m5bn_6Zh@TzXkt!lwhiSLazL!ZT;#alg{M~0OoQvfR`
zf)#Whev}x+$nG4O^>F_<^*({mtfd4PZW6(P*jA8xfC;E(EbCeBDE09mWf+e!5|rU&
z%vxswI(nV_1VI^gqv?5~W^IB^oCFWA^Hrc^Bbg?Q{m)$56le^K<a0(G`Avb!{B9>o
z$x;N6#Qqy+%-<oh4*-pc<r6E+tmkEoAzEt-E5<zu&(!Y){^hw~q-N<b^zpbU;GmCY
zR(Q#84les0cB!-~)V^7{_X5T+k-eD!u5YJ!yf_rYnsJ&TC6#Yt%<S79@P8S~RV4f|
zBw#JfFVYFf?dc$>Y?9@&aV-K-;;MviYzn&K4!MojvJqEt?YO$@xo4o;nnq&^X0C^l
z)caZ^TpGM{-vgAnxrjnd%TXWvs`I-RV+vM&b@+R5j>5IqAe69X+7t}74{h=DpeQIL
zMdUtXIwsbH9>6iNr21;^!4~GR>sO*kG9@nI!Vush`OauZ!|-~wavRLe4E9gEh$`{e
zxMI#FUmXVKaxK95GsC9#E7MQMO1!Ka6e$3=Rz{sftHo^^gk~Cf%CR8eIdHIM?Jd!q
z3QFPWV#x~u=dTk(va8xjp2T;Sm#7x0n9u1Q2=b@VTsB;%5Nj@a<`B0cybF+Z6W;bT
z^dmtqMQWIqCzC43ZN<?#B$0_<Z~CkNdFLZwO7oKVsrl+oxEfvXQ#|}gS)0I%Bir9`
zXFyu*Z0ZA9=%4mtlE}K}G-^C*95C;?)U)|7gL}6(m-~kVBSOijU3Cj@Eb@#|che!*
z%qPJhbrwccP#cjGZ+3i|w@vC6SZr20?$_nEkhXgs=NOD4gB?XA7kjRNefrRJhvbn9
zm_2)?K}xWxgzy0#LcMk>ZDRnC02E?Q;Y#<`1s|%k(^$Sm*YTHSJwYMdGb2?5E*Pkd
zK^E+V&cQ-N5Q|=S^oJH{s0s~8-RW~Pcf-)#z)421_EGaxG;Y9qkU;0P;(b3j28&sa
ztGNVXQ5Si0_&vBC>p*G%AwJSenV{HtCXz@zPu>BlW!!+cw&4f7gjP*i3?%quYL6P7
zU3@3hUj{5Na9WSl_8WPPbn2Hz>jI8sohkZ^$2jw)6(%#KJ<Rl|VklZCW;=#LzaF(#
z-dfxwgV-VbAPk3YgyzAw$aGV-;GEX`A!uIouMx}}KJjPEb#J(0X{vk)qZpvA-5bSr
z=8GL@#W6+}+Z^a%J7Sx}6+|`~g0MB80DzoaSS#YsFORxmuA1)><5dLr+=Rut3Hz<m
zPS1u;@~TvUZZa{5-|?I)4j;HD?7I0a>6EEhaFGvIqLuE-bFtyK3{d0G)NA%yJwvnU
z)U$gxnpPA~f9cvbTvcvXjgUgnj24wi)%F5<r#V%PSi4%H`sDTU9!zeib|f}DID!T-
z>x|s}K1%vMFHr(;VD7z2Epuoy2Mue*^khn$+zYaZgAdDQtHTVz3PAU8E5I<{d{n%}
z_f}zCjW$X@B<V+V_FYNmgFH|X3JPVlpz`)J=N!UG?o&2e%a0f6pU6!6J(awfGg#GD
zCx#Pe>$+hvXgdqs>@^Q_jL~35`2Q@dN%rG-TyMi&;rj?p|5e*6wTOQXO{=b*eZaoR
z_eMCrs)ElUu1^rQaqCVFmX-Duk{=h|-qpq6oLy!0g}JJ7Ob>rty6AYe1liu5SBV(b
zq`b%pf4fU`@sw=1kIm@=KKRwYZM|8ZkLlLE;PsSR-#LW(6knz<pf}6y1^G0^8PP!j
zs?jfHA&tEy4J<JlS6dKf09lz!0LFiQJ+Cx-%E`aUpsB_DsHbOP9K1VUc?jW^szm?y
zz5;EL-*IXruz6K_DJSmHUN|#4hC~Ub^3Lfj>{>MDUAC{6N6lC*HbLh%Io;v5^y>9j
zP>z-lEc}f;x=Tu#revPy7A`ymYK!lBu9=o33n<*TE;2qy0I^em=|_T~Uucwt7haac
zc{<3fzHgjN!O<)W45*Mt#ut*>?{JoxVKAuYmo3v;@ZaAp;RoLx*;cdRR?^+Y&vFHp
zMC_C7!rV?y)3cJzIYrHtWt$M<rl>fw%o|(Bd0iks4t&MZKNw~gIa5D`A*C&2{;u<q
zs9`J%AuN940Q)CNv^)SVU({0}x00(awg+9_zn5v%C%-{>H|PwV2dR{Uj{k?$DN#Dy
z?#um@CBFm+4zpJvTMQ?PR-V6b37M2g1O!+`g*zkk;O~oiU0`U<>F?u?)-49k>(<#^
zM`n~SMq;<V*5WoHDqL`$CU0#TT@(?sz6cOSz2tLoXZtezWtXl_Px$eMZ91(pwnSmH
zI)d!#<lSeo5|o_aMKs3!V$cB{CWgNa*w=1Th(up$NnOQ|QW)qZddLuKh3LkWhmeT?
zl%;ezB9VGn=C{4Ak}PrHQk?J8>EK_5z#mbLeFW%ghqaMlaB|UEi6f(5QDLeT62Po(
zEQclFs)c{7t@F3-D)W_(ouD2r^z<?+yH2~>E;VEy>G62cxDK2SKQkptLnTktE=ywE
z|NIoIigrpv2L@<6A1a6z<7>p@zP5>2I8(+*L!A)xS2(iUkHq9}&b6p7=Tjg0#0*19
z7`Ysi!j`Y3&@8UROM|Dlxk9jxc`?V38euTAO(T!RQiC&gMb|GjTHpRcdGx6YJB`?P
zoBYdslBm5)J40<KN`i6lG^k%Z3L$<8?Jr<T!bxWmbDx!4tP1Wy-fvKV(qUodeoAmo
zQ{XF7_Pl|R%_Vr=<<D^**C@dX`K?l6(=-u+!&b*zGR<8jEnQ4dLG)alx};CNW(+U_
z;|#*+kZ}Rx*-jl5T8`#c*V~xl0<)yemJYj;48A<{Zw>(BY7}GCLL3Ylq(6p`VcMK|
z-XnpGjlT@=7ARb&3RX<BjL?+odv`k5bUALOy&Q@sJTFMbAx^93>RWHgT5;dtWEfG;
zC9*i7!#A}LQrk?b*E@W<ujmrEIS;G)IGuVtJ|_P@Geo6UG)#cDGG{^PS+YBm;d)}V
zTv*_@OeHhwQ(}<adH~528`cuuCx~>U)Dfp7>ncU9IoB#B5S~QjQtj9AoH5l!1bk^B
z73@aOP&831WPOCbidZs5Ni}T68YqTvemW7qwyl{{FZWc@nXkx`F{=Eu+GzeIC(NE_
zQa24+-Q{NdhuUQ*rzX%_B5uJ)v7%8a2|hpi+iq+OT0!78kt^uqr%<>am|tC|5cCIF
z2905d3jIZ_sk?9b%k5vMjSlfgf2@Of+G93tC)9ditc<Di49ia5iR)hmWIZD)@L}Gg
zQxGCSRqWZ4iaml$NrvmAiJ0$?+b5e|82WxOtawp`x_LYRHK_00hjLaD@26zu_;iHe
z-bkKL*1h`6q^dXcjZ#q|;w;2os_HIwCMs6=R*%^ixH%jmuSvsI1SukLx-DKDzkzqY
zs*0IEAoZuIx~xy0Hs%BlmLttKRm&K-1nVe)hSyVEfYCiL%#l%1Sfl$u-L!x5$dTK-
z;<m50#dxcWK=LMfOSD`669qtFDbcmEztv4B#$E$E(u#0Ni)g$hO3hYLhI1&lAFB*4
z9^<ZFnhCfWt%+|7%z?`_Zww1EUC;~-R$9{{c~%l_SrwFjh{9}Vuq7X?;n%uvx$$lp
z*;Oi%5wg3?6qY~F7Je^4gK~^Zp=<cy%_wgyU$u_7uZ#Y>R-!!Mfr}Gq0V2T1(LsB`
zT+E0)M2>g^#tK0&Q*p`fZ0puI4N~u!fTyg{=#%$umg&HsnfF&JO~czXS^UqN?xQP}
z1bIorRhM^Gg@`vbEhXo0ZG<@2UpD>i<&3r~)aVbAo(_HDhxHeZA^+f5(TH@_Nnx1?
z_`GV?gRR$eZJTH+HOM-3^k66bZAPJ%z+tNnMyzO311+m5n&q*68mHJ4(sY`*-cGUt
z(E=CF+Tb<nEoWeTk0JC1bff-mq`$`+$G8S-ir!&V^>tN(z%9D4>{<hjrufi>jQp-R
z9@5H%ri=R3_&ml2yA^4^=Kl5(c}{p^(~?|KKYNfEN2-J%qeS$kZge_?z9^Ety7`#)
z-ZsmcJVl1T8uuJj;_xUH$F5YchQ9gMinAq12~KQNGs-#5IWz5PfzbFT9osb?t98~8
zlz1cz7xU;~ts)w)kUKb{LC!w0u)sgnO(I|x?{S`g#-DD5l&mzoZPOh?ex54q0~dGO
zPau0jbc%*M5ZHHd`Ciujnjtp9EOw*><1${!`~PXVJw@jk!4{q0J=IE%>^|2|`R0tJ
zC6<_mB{kJBRs#qVn|e3{x?tJaz0rS?P1Oz)PDAoMZs0reIJZNN<M#M?CqNFE4`per
z=;cejgIN^jB-ge-Z)9yQ5*BeBX}Z^I9zTbMEp2tE@^bfy_JOhNXiLd8dlx!dXNz_I
z3DKc!b^4dJ!>6{Jc+_+vM3BnZ(AaJF*#?c>SXGrrK37~m20kf8?48q$GUhO2%0!-m
zLw@-q`k6K0Gd;c^1XLT@H5s{jZQwK#VybZFm2TSPg^yKoqCZ78H>uSMLf5#^s1CW{
z@Vhb*u*~nRdpBNJa4P1lurc8;{8djffsfg5%-`EyU&|&hoIjvu4|hzvks)|%jba@e
zk4vF#rQ(Ddr#B3AIee)CZmT!P){+kK4Dn#4ldVK3NxIwDppi3-d44g?q#xPeEluoE
z{mDf39E~k-;Bb;#9Ve&%lfQ?~Pdd$$v2JO+Us$jsFit0QV4Xd#me|O-QJ5N<*ne~X
zWbbHbG?cu|(L@U$!h@#@uDQ-Otx#egv4s)QIP#kn^lSBmq?(#k)9O1TNN##SVDiSq
z1avVW%I}esbIta2bJBu#24_Vzb#lrpwbO&xAfSb=pnq^*<DxW`xrtf#vq#A=U5P)-
zlSwp=-VdHNN>!?u`5G>Ia+sI=1{j!wYLD%dd`^`(b9d6;mxqC|)xO}!DPG%mD{nd}
zJpWOj)zHN?5-8Es)`H-^tLv+nt4JEj&nbB}rg;Uf@nTNxF9O7UWQKMPnJA&<3x2Q^
z7b=Aowca2dfy>T}rVYp&t8D+!B9(Z$bUz4g9G}2@q0-7CMnw2qlViNxo8)-;l<)AR
zRNyVCj6XPn1>3`8trH$wYmQOk8@@rjE9#;*oP|v`j&{cZWW!9X@5Mqvp4p>paxSwL
zm7G7lCD)uFZAea}K2k*+4+Z=(5%!`;)nQxkd_JB*a5hMUFDuVa_Mp91ooaJ54j^V0
z?C(F@1DUODxdRF?CT>#zHP%bdqw12{MOl8kgNSn@XK2{2s%slASUuirGeU^IT6Mz;
z8Hp`+RA-LKmYWokq?!<U`@av_Xm&yA7SzJ5eiX(+r_Pt!-(ZsuDY1!8Z8b>FT7Ncv
zu9JmQb8+B?i*ib+XS%LVHB3)kJ6MaqKy#KN2IQp9MIWRO$oQIH$Oav_Pyc}zF%CU@
z3j1J}+-g&I{zM%ikd%JHp=KcM^1&XDIn~$;Zr#15w#4lEhPbENd{nBYx>KMz9g)+6
z{G(^lGSgVcekQJ#00|q{dyDWp%Ffr)K6OoyeeymO7Q%MSucDR?s92g#dm)R#HaQvB
z4o3Ha5u_<B%hWkclvZgSHqmP{wSGotSl~)KSwFzM)fF?UnyIkw3Y`hTJL)t5VTBXR
zcWj@zNGzF4!8>P6Vg$kq&_0aTur$6>#T^dgxfM^??0Nn0@Xe1a3V+R~YjkLZ`x9M5
zE%WnV`PR`D0ZT=XmGpV>=^%#$w0Soyw2Gr=rLSp5<)kbRkHEs~4uWx@m-N_Y<Y}Rt
zmGaQZHzB9I4*HC8<4+3PBsW5|$lnY!sg657Xkjyau2c<&(Gt_SO4B&_Tw#;JaJ1NJ
z99)#A{^Lu|)XG5KjuRh&AV@GEQieJ(S>uC{g=cumf>i9CNzogH7}pJ_xh)Jm)Tc{m
z@_$B5Xi*o(32fmx9>2D{lwV0wt;Bo+J<)qZHbfexj+(%m`%^p1TTQAd{`{_Ckq&nf
zErG3C-Q6IGTx_z7M=ZHEGTV%kh74-!o6@#_qW!@<i({V_dg<C%v-02@i^{%|1~@rL
zNc(Kw^;04{NRLvAqYY`@=`7TW?P|t_!MFLl{3<66;so8^F(MI$K%(@KtqbV06bt?X
zqO*aMcKy@96?>?ti<d3Jf_CkYIzp25T#0sX-^eI44C^}=8lO4n!1zI66DeXq`GwJ7
z3l!bWp(xan_6jqCrL@F#s&UPtL8IxFhU=3JtQNpH;YLfY(&l}X9qPs5$qK%MB3Kkn
zeCza6uz(71Tm$f%^!om4VO&{Q;mjNZ&Y!Sgyy$fGxLI2yUnCoXR@h1+CQ<}$w;*~h
zH3sl*20HF;1RpgdNDV7?MBa8~puo`v1nRJGikj+U2ZrnBmG*;M#LNfuOm(aV{}!@R
z+{vKE%Y2P@8?S;1{5i$6g<X>>wdmu$rk&J!L<A4>!X$xN)4e6dLz#P3lhi05(V#dk
z39#ul6R_b;B7L2+HXfB)ysK$DBDs*!DbUHRy;SF;_M+;7Rb$xt_q7EOt%FhBG8saU
zJoS>iYB8jtp04On>l28)9x~anddr3_-;+pC5nXkeqaBaJ)+A6%u388E27L6q)btCV
z7+zccr0Dy4LZCiT^r*BuXMp2x-YnI*PnY^dV9oHrYMnCC(sWFI3RwcH&LUr0k6EAR
zEeUNMYFcQKP|$kr!L<-;`^bH7zoKoJd2~FhB~WB;z*tob5bPfmpv+53UZSp8>*y7(
zLlqfG%JWtj87KO5m#%ppf5Pd=PP;*Mno)U7AvtJhF&a)Q*H4l+v0<qh_1gPaAakT|
z{J|e(e>kA)!U2$ln_^t=OgqRWkPbbz;u+GptA6qY51RIqJaAjA<&}TZH6T62utWM1
zP_#&HLz0``_eh$>`?&<vfWvMGGfEvTg8KD2K*eFHoy3z*a+az*m-&7S;K_)>ZKGK8
zLD?CH$S!Fae7s4N+L<d&o8SIwwkdoWK2enHr>?VO#Nw7O3gz52i8;Db69d3}vf1o~
z3Q8N3p;AV_d68cs3{9F>HI-u(KdqiwG&v4CT231LqM+e=@Olvs-T<#9eTM343lb^q
zEC<{n%fRCA;`WR7pL-QvQMF(FD?yP$7_$|i1D7_pnO?r<cK)xIJc*h;&FXFAz=vek
z;yU(*catWIc^qJuZnS~`r@|M=BCH5gQh=e^(W*&}gbP*n0H&fET@3}}aE}p|Esb=T
zLZ(^AOX25^4MV0y>Rq3>)Sp*;k?ff)OhJ1%>twMHEX#(jWT~vRYypVDcslEC5lK)R
z4u1h6Q&V43z7g!G!enRS{ke;yOXdYR{w*32{~G-gOQ1$(3rDj_O0@A1V@!pD%#L#d
z{WH_VdQ0QvZPs&y5+Jz-eF(3S(6|4F5~)^(*R&@wHzv=_o9~psrT8)HoY+U~al2w1
z3;EOq{Ce?z<u8E#tc4_Z6XAevjWUval&`4<a0pcC!(Eh|V7qM82Hx`E2UCennkU1q
z%4Yv*dFwisPl5hQix5?mBE4lp(H_H*zY9R{27TVF0KKK18~M!_D9o$&FqAC_J2`F>
zwFXb(s)+~~G^+Rrs7@)k)mzbur*?V~Gs}t@Oyk_?R%&FFb;<=W=qG&_`Agy{smYCj
z(n57<vK%T&XEPYH4mmOmXkmsz10T{Am=X<P24D_uM;ejT;)WBJe}_6;VkWUQ+tyQj
zyzN3;@ohvA!$1R~sVe#(5$%wh#d;F-ex4CuxFBkomGn5J&^mdXIgLELN~%3aLml~l
z1IE%&7el>L1Hppn3vG}w-J;hcoS9`K_6na3(15TT8hVsFygY(*d87BTziM`@ihG9+
zEF`xUz5<NeVdd1N{Jfa`Eevk&zgvZOcBwN9`VEM3vyDnsSR-9q)mhjRO-`EM2@dSo
zI2Fa98f1ft#caK(W(RyiVJ9@-sv0L|2jFR(^zHi&Cs#W|>a(px%cwFFem*&?KY2d^
z1!8!#!iR$O&+hOkYge5EVj!MlR=abx=JHwiT)!*WHGa_jDt82iup_Gu5?W)2miFQX
z?&^V|5t~DnXI?<QHZHu>^3ijDrqZ5tu)*Mmmh0PbR4=9OBB<}bhT=C5@RW#2fZ!R5
zpgu8V>6jXx<wD0@r|Dl-E^KjpQ~C~m!n#hQmf8ML;<*KvEK9x;UTRB4aF?bj6Jg_$
zchm)qwS`2a2)Ifo&%__e1f-7Bbn*MZ@^Lb5a6^bS9S_9YOulqH8I($s{6SI8Tmz|(
z_Li=hGxc^*PfCqyyV0W~MMy^1EBm$9H|U$$f+EijpnI_a%_r=W(Qku&v+Y8KLcRLz
z^Yb|pYG&J@^3n_PdLC$+;&ou%#1(a2d*-D~iX-|UW{md*xB7{kyO&Z}EKfT^H@L;c
z84!ux$c3bqSSq*^f@!(iRbPRYrcrM&1=^#@pB!G3#2p_~aLmXK{U;njo6e8R?=(q1
zw<Cgr1PED<70+rE78_M;)KK{6&%QG=e7jwiCIzT#x}+s*e$q{&`h1bhtYRmrTa+RW
zHm9}inM`TEx}zkR2@8-jUUPQl*`=HAl_VnxlwYy6H-&WrFCKTA@0H__zw{Q&XIn%V
z|ASaXlt*y=8co~sFR33k3%T|#>j2-mZlBsF*}(|YiZITZr_)xx?X4>3tF*SxGJjR)
zM*RsWs_7r%eZck)6At6qz?YitQ2E9J6PCShwAMGok~(b>8orOcytOQ6y(K*909QDM
z{Y=W$!XkOr&hG!&uK)gPo_Sv>NV16DAL6!q3uJ9_lYRk5g^CY?mk-Y{kv!q7x7;g%
z7V7HQXfZ3wNLMh0>6tZuG)Vl%)N}NYPLYse{U~o^;>Seg!+MP_u$o}Oy0K9U@E>(t
zNVvvd&Q%(5r66K5d2&qe?;`*!Wawrvi_4AH79az63|RW(!#VYwQ~H$8Mvkor^Sh|_
z)%yWXJQxORg6K|X6l22T+fD|QXSJAFI*~sI8@W(D?E}5QX(JpIS}$Ny%*}sp8G^tB
z_@XEzlKYlT>T%+Jg9%bgGN{X2<<bdx>&n~=!Z5K^C^9avr&u8E0*Y&&h4s#;AdTg7
z^cz4eYDgS4TDbx6V1UgXew1|NW{R<f{i#b_yy`tW6sAZg{wPg3YMH9{a_F;nCw#6a
z9_BiDS(u!#q=`5cC5UMW7^(ybMm|8ALgNd$yL0U)rsN%f5me0xt#G*<gGnl~Gqc5y
zG5shm)JD3@yJiTn>u0C^LuvL892;47k4S1e9(<WLuTskfGc3ZZQHr!3o&$)*%G~XD
zgYMnCi0qIh6Bx2mW2~SV2z*e#3CigqnKH~SpjL^zIEIdV3QG$!9(&>J&qmRjg-tos
z?;rM<D~_R+3mp)PD2b1RGkXkQdY6aju!z2oM2d=4sqn!=$1^=h<2y^EARuY4CQ0Az
z&Mix_`-uQK4GIXzl*8`V(CWAw;c3%02bKl`5A<@;Ot<BrqxYO}wWPr&>L;#xHIJ{t
zJsail5?le6eaZk<M#L(IB1PORYs$G*qy!Ftw<`T0-eMy}*wN-y?w~(vP0DDn6+ZeA
z*q&S^>7=4k9GfyQV#7R@v?ib;%8@_<C`uqT{syRjF}qnVy3BwOUN3TIU4B9_jWhbs
zW2S5IrP_jwLL6qU>GyUx?u*N(Mv()}ZD2KXn=RGDj$q*E$l!R&-E~4)>D1?>AGO%@
zd|w>)PCoT9D)HEstD>{@+|KIUnSsxkx}|&vna=dJN{NJL$hk>djW<yge7wxT8rqs2
zl4;jl1T~9Az8WZL0OTzZM`@6Komk_9uXelIQqofdm&dzhN1L(1&(U2nI-?L!q|NC&
zd=Ak}ZR9vB&eHHEE;C4wku#5q!&!dAOjJ4nvnQQ}N!$Ie^Ve2q4Y8hMM3*`?l{3|f
z{CX0|zGrZpxC<gZ<`KcB)Ub{L<M*E-p%7?Yh0XLVC4UL}aj0q$Ecl{6L(IDDj<fRb
z+WH1pQ_d3sH7s<j62;=%CnCMDKqBPx60cN};EJc^N7Vd%>9XS(#WZ3KB9`Gjt6}Zi
zv+PsRd+$7Zd~pf?Poz11KEk~C!cTuy<B&?mhznkXW~%!sk?Fr;69k1ees<05NG@Y`
zYGS;blf}6^2rAeb{p%SaZ<>MBY1EK%gw7a`&{mN;#1{g3X-%_ZGT5NA_9;z7*XqL4
zuiK5Af92qzxR|2d1#Y53Z7X=CjF6#ZNozmmR4K$}f`S}7zI)5S<3V_m@VM^?B9-@x
zD>3w+uh&4dWg?$Vmi(}87)qr75DMWv&lT!B&yzoQ!o;)S_&&Y1|Kfze__U@ZcI~Ot
zLXLDb|Dv7oRJJ<^T9NpP?ex=PCyN1|f&Lz@_kXL$4K-r3O*Ki9g!2|`xFs!;2)Zrk
zl~yC93(D+yp!Rdmu-1*~k^GIrtzPC#gc`5AqR0$oc%GP2jlkKd)i%N#B@dfHdvn#U
z;t|{Fr0=K@8I>T1MXAkzy9@#IsZYrdL}e>ANLQnLHHxl|`p+F$pes}P{agS%PWXLt
zFbnNd9Im_Nvt6F>ybg)m=ve$oEAC4AKFwd|5IV1fDRHLyDO_fUsu{)7Kd2$m{&*aS
zLPPl7wEkLfk;ElvtVEEe7##tO4LX!f??XtlFK4MOkg{LONlT*8bT|WH7E;*x=s&lj
z8Aj+%haJ*sVXJmxKMeZO4x1rC5d_?fj%T_t2=Si7_aN~6(ha=(b8w~xX9g`>24qBF
z!W9m(LfwGwg5;)wc)D4CZ?Flz1C;5u1b(P61@dvQ3mB=PpmBg{{;3PJVC;9zuozgM
zlodXv`wSNeT5LSCZoB30no~796;c0bPu3-O!0E=i2v<NVjZOsH;UV#|vh!V`Q^m-?
z-HxQQmvFUX%V4AX<bH8x(17wkfWNBeJ2;3F&f~i??x;-CTcRTL#rr%`{<ihCGW#~6
zDl4JjZAh!|DxLJ<2?xAe(qQ*`+eyGMkhg4^d2<vGe#Oi&mY2Qd=Ryr^8sjSe0$@+d
zp6B|(7wx*_#{W7#jtxXY7S1lC=N8ECXfDWY|0+a{`wJ%gT>UdpkEd@aT{T=!6Lgn;
zI|jFCu<<9fyKgV~R*xfo?BA$7q|6FDQs2422qPi3_d$%i)VnVmj`laZpSL$Qype(}
zfFJY}E@p;V`iTtnuj&_>-j@*F;5P6e{Ozm?vDfMia`kWf!#B4jssQXxnOEw;y=p=v
zq2$qW8)fGB2#*3f>W1?bnHPf`n2+CzK2JQ0O|n_u?x)Bym2tVL))@;xC~WK?znI-y
z-3iT;{NoqqXRwAx5>46HcSgJeWaJrPK45MJ!!vGRc>ejUM5Ckb$;mIgN`9U+WcvdH
z{XZ1Xx4tU~N8}xy16`4SGb%{c(YcAVp;6A6+qN?Cisw)3zLrQ-=F(R7Ec)AVdGN&^
z>Lm7cMExjdf?W!H{cw<08B+ihKI|<Efi^opGJ1YfE8c|?5isoNM}uN$6A3`R?Z`BO
z^SSuEC_<nvp8MmZT^;J;PIr~rDuoCUX8%1C8LoVH#X=0z{uqy-WSi~jWvq}a)I1G%
z3a!j3>mF0+iuq-7fvXtMX;Tp_%(QMHs)U|GFhGtAUN$@cR&tSUQE2XcKZ34#Jcl~g
zt}(KN#;_OY7$0>%;gq3*>|z#<F_4On-`t3BbjD}Cm!10_>rJoT(;A|nXX=zvj38T2
z#^m-};FWT|plrTIGI4o6qjmar+K^<|T~<y-?`8+)xO8}Ytz>8lo*yy^)U_40=ANm0
z^WR;MX#R?yUX>V9vcD3Db-nOCP{5;}_pC32Y#R8XG(>`AAkApi^n9f<u<rQat*5tL
zllkOYFY)MxQ&dEN)7*d@gQXWqJH)ORaeM$WjE`1S!aoVrK$qLU)T57L_d_yWf!@Uf
zXBiB-im1rhN#&TQQur2*v<6lV^s+gsft&t2XbxXgZBF$VKAt}j(rQYW=_=#3Ptay^
zO3uhUBV`fx>9<j$p<fhwkBmsL#nIflp@wi5V!gb-ZKYsh({=zi)42^C-2F{C9jE7U
z+BrC%Lvfys^}GY1HwITs*W`DgE$O`+@JJylOM7MLgAClUj@(>e=5V@R3~^Fufc)7Y
zp!4(Xw4Fe5QvQ^m=ybH0jf~%AjSIU{>Z*U71KRks(J8?&xD!M@l>Q=#rS+@<NqYQ|
zw=RV<%-a9D?o_&==*1^~=8WBcjocpsaH<=F>#HZ$DgcxgNY2u^5{2yI0wDh};Jw5R
zVVjcmnYhywkrxRM14+Wz11W`0sD@qeCi30s@C<zmktR==D{8iNCx9PnFwdMuR>ilp
zXoW~DlTzE)%l5&r{J^SL#OX$+`J|;l&qeX;{meg1N-iM(m~<DiSIYg6;kqxAp%N^q
zpt-l~6vd~&?0ivoNcf+n-lYsKTgvpNMsbEhgrCA{vyoaiLCJgtSeGFvW?3rospC96
zrWJCHdZy|r-~UP+0U;KfQ0W)QDE~JUC}NABOXLL~(jTM%!?>(w-L`dh-90$66j||W
z!#3=|IB!-Mu@fnnIy7E}K(Z{~SmiH=eOfBWY+I6Rd}m_RP=S=93XERoBim+nQ13T9
z4VPY#F7)x|IE&AOTq~FLE(rb5j?;xuhEw1me{+}><6DMnI?lk1|3hiC=kNo5arMe5
zLVK+=y^zbHlvDODdZd9N$3Y*E>d>WTh+Sp8nK)4BP?WE2*=Ry#O=XM{&57<iC`kGe
zQ`X1X#+ZkOkl*k({>M$BiC;(7#-Y1uaQ@C8&=byk_d|sYgth4d=>|qE$kgzs!8Ui3
z1ZHPIIhIDkLliM5M`_8VOPO(NP1aXF7)Wl*fZjbHc2<<$NTnaDL!+Ee+?cPfTEe?R
zLljib)(s_q%eV#oiY|&~Qoi_*eON{>9ROYWO-xKp<umu2*Ca=L{>usj=9<gYoxQtj
z4578mTy$Z}-XcDz^|_E>&Pd2EimmC`M^ZF&6AkR}7C^hH@bhS1j~2}{D#pI#6&0SB
z+0v*zV7n7HKYoXBcI&`M-~*j<x_rsstDg^6xN)bXYfh$H^<{KAf!``lr1{8}1CCtt
z1^h`e)|t?Mk)N{xW+S?4iBSaGgh(#lu;?#Ztg^HCL_Wt}+2=H9n5*h3agCcKS5Wr&
zqN72z_2Ed?%%TqS1sZ`_#n1DSH8~<7QyKe<q|Zx96uSvOll4u#CIiQrOOj>6<#_3n
zh1E`n+>Rf7vaeA%cn>6G2ynle(%tZvqg+yPN;u4A*aA$(f<((&c<a!I-X1t8-RqF$
zWc)cqzvZzT9!`G|<0Pxzwk+di)><tfP{k6iUW_WdRkH2m!LhjqM|$p?xX1YwmJ;|c
z_z+8eil-P~rkm;^M9u+3QOTKwW*U^A<_~X3W$EE^+|pB;2xprK-@t%@#$lTECeCnJ
zU!Tt6Z3-qrRF9Y2m5roZGNRxe)gq;nmB-dbU{bRe8V;cOqvrwjB{9K2PLYQ&MG?s-
zma<rxW7EW3WtO<?Xi!cY1b=w(fuTTTNTD}_0ukCcOV8dO6PwW<jwCF#?oG^!i2-d|
zHv~_p;3D&B?Vne0G2o_2gh)_Hn63dLou)*eETLM2$fA<!-Zh57GZ{~P(AP@pu`u0=
zQFIqBAiCKAgpC7q841?pT!&I0Q~*{epaMZSzV&059EAU1f;<C$jm-{<8jk2e70a(Y
zGt(RH4z+*GF&*M1IA|GdJA<-iL6h_;fC@uM)vp%n1JdX6%O@z5bvSGc*@+XWk+Aa4
z^eZGw81}qcmO^;$pp0hBb3rb;&Tm&N#1pOz*-_+%5?~eqW=B_M1%;1Moj!^@QnG%J
zYl-f9=@;P@N>IaePk@Bz7z#&OBGjrwRXKk7%SuTcvbD0hhrw+6lWv@~iDhdepxF;~
z`_0WG-#+&2*N0V8D(hCW4MhAg*L^kHpC|BRat=3-I6r+N_>I>+o7ma7HpZ-uFRK<w
zun=^tx7>F)W`~#Ram*8bhn`@Z3tqf&C`g4D5+{ZR^TrqK3M_JZG4%X4NQY%O-|o@=
z(?(RhfZV7s8OMYBi1EE`T5ecdJZ{dN<nHqp#sRT5)*pf20OxXQ+Wc`*_RV7VOb=1K
z%u2&zIdP6Mme8#VydWPpn{&6GU?!gpzCO=0Kq9;6tuN3?aWi0$``+zq72hifEwamJ
zEDE3VT-E(lxO|T0UDVm}+v87(ArdLYL(g=$h+o`DB9OwC6vvN+qSyG;^)3tn@->EB
zv|W4PFlmRD-E+tr%RdL*>E_M4zncKd5%%^Tu3wv`poCpQuahb6+-5Ug6Rgb1uyqu`
z+ik#JizUDyS-pKpq*4Bak$Dt#9DELVzSbtLjGcEXZN{ZtlECz$`Y01<cDa+ZC)BL6
zUAjx$<~RJQ9-bIMCnmA%dbTl5$0G%7+2K%|%lg?H8L~yBG{43o9qXBKMuz-SQJAN5
zds^z!fH?3$55X`n(K^aXkM<u2Jw0FzR!t3@Cth!-*a8r!WjdHV9XFMtf{(Y@R}oDf
z?!Xl8trO(}CVc7J>j-ZXuyX@4Y&*E&1+Kr^dcRIAx;-cin=3qW;hk9G!<iUB?G4bj
z6YnH~s3%gosa`rLFZcj1*jdM#mOKf61oEC~!}@{IJ__-xH<SbHo3_P%>sDI?D5rU#
zjmpWD982P*X>EXF!o!%^o4U9<n;F@`|64g2Tf?((uoE&8{?Ce+mqFah*450JLEP5J
z)lAgP#KF{zLDtOP!qt+HnU$aazZ+qG;qUpypxaV>L5XINrEz(3NmAQn;pi&-pQm&D
ze@<s*V&Y``Zz(21E=G1{mj6|*Y3nu$GaREd@0uG_^lhQ&9K{S~1+GvA6FLjm3FJWZ
zQc0sxhhJv<FQk$QL@se5`AV-_eMZ0>TJ96z8><A_C{+Ep0>fz4Jdtr(;jVXCW?}?M
zsM8*I4j21CB5i?`>ucBWBt}&JgC3Ffmh?@pxz{*sCPeckr4)EJ7H&x5MwF}G)>BMz
zll*fBLtgr9bY?Z&k-GAr7~w8y<%;tYZ+74wP73<8;p2|vWOZx@{LnV2(pRr=4Y*G0
zd=K(6&4g7KV><^xCWyVvBqP^v6$sYM_*zYzdax9L+IjM?rLPX8jP`_Wp^NsB#Us3}
zZSu9Wqc4pwc<uRnv89|EM!fi-e(ojv2OmLM(HE{0$aMuM!&m<Eh#oQbP#&fhL#N(r
z$Txi$7OStig3)|q@;d^;2+Vb<&5@DM7t(*=vAoe`$C(I^R504Tpn$A<0k_%QPNkB}
z8Bf18UAQ$gII+Yb4np}_;J2_az1F^lGfUFD#oDn6hCpy!+{JFIP7#pc!tsQ&GzqAh
zrBv_R0H+ze{g>S4`=QSVb`bvW`Uu@3@Yh<jpN7njQ?D*D<16@Qy&7|@wxnBGfp3Ck
zv`Mh<_XVT341@}`HB|-hXj%)GG=X<clJE8JQkA|-b9i~MwZH+|nO*HayTql+ubJUK
z9j^ViLVfys7#9Vb4P=(zzP?3vp(h?076+AT_BBu|m71vn=OJNnq<Idsg3?;Nx4XO;
zQl2CUWkj@ijg9kBA*|SV_*dEWxPt-(Y#D~)@`mSl6>KLH`q`($8IpjA9fuP_h;Vta
z4`Vmb!T8^s)qwK}@aI+?c#~?Ul9M=Gf|`o(g@l4|>G#oMduiugwh#gVXrl7Yg05a1
zoCr8!zn0m{_PP1SonO+MM8bbr`OQ@(ZW0Rtt^ua=sh@sqlH1;tmaU9#L&FvV^_Am|
zsbWtM?l{ljUv0nFRmQ#38<=|B!(Knj{ZS)5;|<ha#uqp3qDnCX+!>l$Sa37lrX~<f
ztt2PB1I{w}SO-Fq++JH-8_gCL#ND7j!W|R!@ODWPN%R^IcUgTh=`VT%Y2Hp+Q4lkp
zUbZmRL+QMFcTfyFy4I>VJj{`5xv+vj@5(aK;A9H?HSH9xNvz<etOzBt;({=a>k*&W
zMth$YxaF-BlkJvle$~sUVS8Wqg72}BMxGGMM>b`J{Vu0{mkS1FO6;a*3hFQ&WFwsk
zx>gjte|0%K%9=x`bby%r?ca<1x@n?o&2yx+3bvS(FF#=d1P44OoOTh~xXg#Ylef=H
z_~HxHp^Hp96cj~LHC7tXZmq|(TV3#JG4PU;D9VZw73QJGG`o|sy2Z7NFYmLi#~d)V
z-{`hZkPn>{i_Hw>4cZh8X=-TQQ`Crz1xicBeDw=oO_+`|aO|L|@>msEgyk{UpQ|!F
z*pPSp?jDQ)%8$Jqpc^kG_bL;-aj|(FD}U%PkT|E70D=THP<@@ZPT+?cvXWekZ4O{!
zFaZ*CZfXFUd@}r=VTiJE_HHksBi8b)*yUnzD`F<2uEG!kaHP0qjzb<8pGMb^!j;E$
zROxP1rnXWxllb5YrM11#Q($p%1!fjV)IEaLEIIz%%9{R0meo-&RZ;TW_X)>`ansG?
z);kE{KP`*V+Y*a;=g@uQbFh1ac18W3a{t8*y6U{<Y7Mr%J1}7D(wEWg+s}xh@K+T^
zc>nm?r?kmO(%Eam>|hoTE1HU*NxR0}YG1Y*lXh0CKvF6RN*MXOa!CxTD^*q$nmSo7
zQjOQCtp3|()3D^#vr+l+F5g20<s%^IEC1}Z9>GMm=Jq$6CAjuoKh`Ehi&|}EiJ9d3
z;{DYvT&<;kx^AOY&`QlQCgqc^Kr*fHn&>ZHMW(2CAV~ZcTg8|J5EAw#rOlwwdTgUL
z*h0;a^GB^WG^FU7?_Xx+u^A*{bJ{zl%VnF&L>P?avcBTVRkL=<AB%;#Ti}_&krL8a
z_&bz%`iLajsD#%FZK;ft*>)oZV+pCU>Wyt-cf}O)`~?&sRF)TeYJyp*VUyvt7`6NP
zCnHo?3eX*ynK;5E(bpUqxvzb28=)wH*icz8A_27IuB7JyoU-sT$`vL92`hv+p?4{D
zuYm)oxk!}bRx;xHG@H#UODJ9=U7QFeUeD4FsJz(qapAF!G_l=?;TKQUgpFCIE54*<
zh^(%Oq&?fr5uhe^ab%@Y$g8+}p84jqq$EGpRmYc_A8{YjYeN44IY7q0CM=S<5dYKP
zXC^{YB%!HvHjFAr`*Z;y8hzCIjB;h<tZG!emWGA7eyqc%$pY0!ev;KWq(bN0>*SR`
z$T*V@(c4C={gA(3jB#aanF(!}o+?J4F_jk-QW781=&oA7dG=YwLYl+PTelj*1(4$o
z9y8Pq`tVo=PVH%!{7xazi~iOKqzI-x@|fAA2+mx+vMOLx;*p<tkqTYHzNf~;7?69d
zF0vP(ap(p_!m5i8KM4^?K$oZZ=X4c)On2Fjm6w4p<v*v4k#{$e7Be(P_<M$QEFrL3
z7!0bR``-lKNkW-X*nCtj7ly=j;5zBOL?4%H1`BJjb@Egesk8-!f_+?7f3d{}WH`K0
zL0^8Mfpr?3h8hm=_VXCGJ>$LoTDmT)hdF83P5^P<CVdI;$r%W|@M>6VounYEa$Bm4
z*@;@I1ujL?GO^V>Obnz5EU0CjFBbw&J2CaH#1xu~NK^^>?hixVfF48~8BM2S4MD!E
zX++x%AXakyX|y&>^o^?3)}?|jZX))pa0aZnlc8}CIHOwIuE?TQAs^`&^UyeRW9!b;
z1=%P91-7%_w@Y+b5o>-CNiF1dJSbfOn=8o%k@hqyRIheUGl~F36?rAIHgatgd$I4~
zj}y#S!_b}gW#g433*MRDaYZFv=wZc0$gIz;>EE<7HJCrL$1~3}Dc}*?;?zdgYNZU5
z`zuGvp30@Hlds7&$t<jJ39dod$9Vsx$!YD~INPjM_v1Mk61%WLkBGrnYL{t4jE%Tz
za#8%W=KHDZ;a6@^D4chaq?Wa0q_#DJltiqVIf>zr8JM&B?;es&U7ZlSTOdFvPb%mV
z=}B@qmZ;vRjT8Wh`{`y&#jfgbJ8>f(hj#8Uvvb6T7~r-{6CAJ(TArVY5DAyqDzS`c
zj?=<pL8hpG`5frZQr@&6Z^mfg&YvPP&GcBXNG1EnU+3n>q3Xim{Fg)pz!TdV-t&AZ
z<LBTE&zk7Pfr7_DcVIYuE-9MN#xf!jDz9YkFo^wn0z^fLv0hj{B_0nkC{~FFzHXEb
zP{{FZ=V??)fl$<ZmsKJ-xgY{<@jCccuJ(7slm7N$>Ihr+(w2BKVIR5*1pr7vPMg`+
zQcxck78aRHD7_l~cCapvKwckr5w^!P?7P%$)d3Vr@=d2ZA%Y$eZ7&H#Sh*Oo$_>iF
z259&(j!=i<v1Ks)hzRY_rR(HZp0lM^PHw0Y%VPGLfQGJG$sZ!NoCZOja)$n8Rnk86
zrQxpPm+%0_6J!`+e*Hn(>Nt*`--Fi^@??mhJ?`U?%ldkNpL$W947HaZ5JSw#tb7d?
z-9t2+mr|X*hAH-=2*bqg>r`&Bw(dy)5<Ee)$qSz88Q+aI``aGJdE1clJdBF1ghv(s
z-e-9i+10okDf-_84Z1%RpFpjpY?!bg9;IfBNehWG6o0xI6(THwAy9E*z;$K7y`3;k
z;?R~1A7L;ioQ;7b>rhe~*OZp(CN(K672SLcE3&{p#Y?}62~E`MhADI;iP#mvqeeK=
z3wk)MTRDYMf5LdeM5~(HVemqKJKV*q3lmPzNZwBGzQ$6Lp&F6f3GP8Ug>|h=Fo*U9
zSCkexIa`?>z#-0^P()25RYijbs%D#rIFQa@H+vq=N|C!`o0?I%*7_QZs_mZg=_8Ei
zU;0V{Y_=<7M@5(^JCghgH)%XYh*}pfk?*B8eBXn-l-|xq;DMfn4Ak<x5|O#o|J+Qr
z(8-GCpGn>@$e$py$r#pN*kZpcePA<F8Z=9_xw8&SAr8D6@X1Wx00OKy=P+J7<|!C-
zflVrv3RoOc<}bfRqNkPk7&X@R_QkHgf>_Od=0_tR$c%&?RK)B5w>#z_{xau^pxMgW
ztImkE6sJtV&H=ihJHvN{1b>({WUz`A<X6NB6qi{MsGku&%VHCTEroUEx$fJ1l;)hZ
zB)c~~dzaJntS^RDaPaOOf7;fdD#D_=0k8<nF(`aA-lRH&e0n*n`XI{L3DfdLH<de`
z&6PX<(lgC(pPaSiqe(y9ubKdIyaC+=?=TItf4}>_QR7q9NYj`Q3cV|JBtTGaza`={
znGL2{7X3w~@3#2&6KU$dF+eT()Ya#DvpxN}1lK_1D~uC~fn)<w>0wfO>a5)z@(oU`
zHIxr*G^g}E*&29Kh@Si9Lv1?TCmqwiWD)QMx$B7%6Hw9qY(lUb=Ncm1ztb~b21jI`
z*<6JinvUYos`Z@Pc$5?JB{!xvUBpT+R8i<KjS%;fCtEOkGCDJ`2qwg@;s+b!VFGCk
zzZ=xhx*vTrSQtkZvB0O?o5Datpm=jI?@2X$Ix$ajMJ0O7-TYR~6!r9m=6Ur>$qQXY
zZv95!3p&Fq8jYiL{!(s@C%Y;USB5sI2^B$L;Jkvt#)=F$hfUkK{pB~Cxjz#tYfb?Y
zk>#~fUG?sx_w`b)I=LwBF{A6k<MhReym?)9MR9H!w1Wh2-}T#v)9nxJW$R^KSFn()
zoNol-7-o&#%!CwbysKXhP+DsL%o`3n_X{O+q+caxclA|)3P3@jb9vJi_hSH)e1$BP
zFSI0*4>!5v@u72<{D1w^)APwz(3}x=#<0?6x@Ya1<JDK_Qww#IS(6}sE2yj|6nQE%
zEX0dHR7NNWEPGQO)-rf?O)P^^=*K{^7g@9vzoQ9f2T1P*KGtbZLDpn<2myp;io!SJ
zH@8b%J+S&4mP38QivCSv4<l34M>0_0=;q_Rz?DUm-|FTR0)>zE?X>aX2mb0Bo28lX
zK!{wQ?6uMZ@8%pSbi<+f%Yz=vL#z?1`CK1}znt|&DdZ`K#-2J7KHF`yVeZXEngG#m
zd8j=4MvU7ZkgQ_ERbGW>T-A|%H6^@L?FAqAVB2K;faSwZ1jjl;*r@<iL=`@++lH-h
zV=}&HFzEra?-xzWd~$u`!LPR957leKa&5;f4CB(H-VuhS#WqbXTa7r43OFEuN3Y#0
zt2VQ)o6goBqo`Ueh%X14kheu5^0jB0Zn#|W^GUrxL63(lB9b8X@~@KM0@?v>6o9K&
z*D$od1g=WJvbk{0-e-)QCtu<!=3}WMx@~tvaiVZBSN=tjGSz@5@KpLkoY<mC>H^4~
zB5JUKB>pL}MBW9f69)D_;ch{<hI6gTvf=DT#L0QexTTxqxObEN3y9a2$7jwEH|j7t
z1Ad@BiO3`@<Hdq=B~cGiYnlyrJ`i>jyZ>KU6TzACg1uKNfM<I<a%UJ56Zhd7i`A7d
zH97oXwe^ce9E1uC9O~H&zHELfuC{NT4Yu)dEyr)33yl>hQQTz+*)Qd#qSErkvTPiv
zfPUf<w-QDBi)oDzrZ|gV+SGpemPW7;%P(5Hfx4Rz@aE0;)B>W)ek|=ch-AHnK2or6
zXTL4K)h?Yhq3v8loVb*qM(P1m1uQL9*GN7#Dq~$e0|#=wH+?x4*Ix6_XQrgyP;%Cp
zwfn`|z)!vfX`$p2xd0XJc83JpmM_g@i$0}2uSlONnQ3=cVB&L1H4CC`2gd5A#XYD+
z4oOyXZ60(BTs=pFkhO-Ry@h|lMH9_2m|s4RxZcx$wEARaHdp7wG`Hq@6T3m8sk>#E
z5CN`$&tO@FYN}|n93n?95}S7MqkQ4Uvf4T8;1^Uz9iZMcVmG+;vEGdOJ}$@cyAhfB
zl{NMMv*jn4DXbjsgbMDHn=xAZh7u1D#2Q;NsY47qiTwu(Tr5uPnTcCGQ!qeqi6|v@
zlqpX&CvS}z%l1y2VaVPdK7!9lj7mlWl6K#$WcC<9&Kq{RAv^$iG<dhYvLkkudnbw`
z+IKsCpr!O`S08}C)anq-3@&+tZEu5F8j@A{xNWWqz2R?P0q%GuF+Bj~Rc11yhDK9V
zP+&G?cBx)!*dV_hXO63RE0z`2*(FhR&F^w~-`ZrySws6LxnTN>j(bv)9T9egJOicn
z5K0`-O5eRiM^i99E^JjM9yzhQmNobHEv*bg1%+GkDF8OGTfxM&LNT=GRE>fQMjNdZ
z&4k#kd=uz`$IO7ZJ$)8Ftjb9SpNFie8Gl3U!p!WdxX4C~jE&Zj>x#j1OQH0|pUY+j
zMTzSg1^iW9^(?6QSC*;Rt;EHP<zZ9LqTx2{@m$w|svZ#d!_up63K1anH9f$=m_OZj
z5Oz7T<AAjA3`Ez13b86fVY-T@zjzJ)4GX2Mqf%q+$rK6t!E!1qloJrmLcS2OW+Y`O
z^gr24fkt#^9oNL9HcLP;TbE67+%yM=ut?DAr0VW7?i{ts;MGk=Q&V-cmAGzlKW)q1
zs9)>-X`~J^hHARuNCId03TQ2fQ<~g63$tn)U_M(Tl%gDDQ7H{nEadEr=ll2jYh&;U
zsNccc)<zs(z~U<VL>$ne5bdB-r?z$&qagvi$M@o;Mhb31Jo)YcQ6Il*AL`$+==Fu1
zm%n5!cxcb*-Q1sRYi=<VJ-fFwb3}=M04@|Y;1rJxI6~p~vm|3O-ctEjRo26Q7O6yp
zDtmhHCI52CpKBXPTH*5hlC`6}D-dxc_1U>BdzA)1aBCd8Iw6J_KC2yDkeD}9Nsmx2
zEHGDPLNo%G$i$v2Vgu~^Sx`6d2=quogE+*e_Y@MR^eS8Re)52<Wxatun}`T<AidHL
z$oVmQ@;NSUh19M)kX09aVn5gflpkWc4OpsPj;57hFd7CnLYO@2-=WQWEMlk#&n|)Q
z0wDliS=rBRMdD%?tzb5$KfV*3Px@TFK0Qr#d=``k+1AdV27_u;toKXb2Yp4Nr;)vz
z;YF8uDHgH<qn9K^jKMp83vkOy=UAwv##C2#)VYtk{(6+sh-JolWmg8<)t&foY3lMr
zbd+NFhKMP2O9Jg9`_DXTn1ft5nC|C*n`E7fJNBYK3r;}OBz}1B3_CBZ3UjB#I=r%~
zT&vs*lZ!-(6;uiC0(4U{eBhK3J07bV72*q+a4h&oI?B^RS!#63#DVWrA8=MI!s0c~
zJEAGq^kp|P?*936DYC*$b}OES1I8c3@;??h6Ep%p2gAchw!arVSNK+a&;h;GqAb7j
zzscDKC&xkys1L<wN49F|T1S|DEZwoo94MZO@=^hD+x&g8+Uvy$qH2>XJqn8a6X^!B
ztcb-(ExhvCq1tZbje(;aYu_A7(0c{@0Bn_JzlgW5Co4t8mdXae3lSGSz^OkNdW#nn
zohZWOhf)hz)<O;6;|RMA@W6CH1d3vqin3=~`tcDHFD|{IhEQ={Wgi|pB3-*h>Uh1P
z@DQU!;-+EVYNVNeTaS|anp7NBQwv5(8_IpPLdv9nFyet3XLLl-?0va&{<`iDK5AgB
zjr*XMqo>SUu#U9xuTUFgGY6pl)isVL*1u=I+ebPZP`v0~A~%JIm@c$;UC>7IWz(2<
zix1gJ3<7<4`Jvc=4cD#Y077uCU1iosB6PQUdTeabhc%qJzhz(@Skm3l#q6gI=h3`u
z2aRLdgA4r?F$WL`VZ1`x>g6FxGAO3W@+MFfkktL-gUndJx-1TPmR@phmKq%iMckPp
zqTRXMvqPId8Ow+E-xoc*BucC+FI*$6;?0+)AianCd;c`{vi(A#61rPA(t|cW7$rKv
z9<wOd$fP!zZ{t)9<TeDHt_V3(UFbZso>woU2}t$xB89_22r)_$0luAn3{n9ql4nQ_
zj90X}iQ=*$RNzrh$g5OzgG>E~>{%yw#E4kYUuNd@6V*P8gYA0^EnP!mdT2Oc!$1ZO
zV-;F7S}gLYGbxnI3~NiwRfQp!W%cvOfmCSI3+wz}J15{7!;h1J7EU3(Wp6p)$F)OQ
z-L(_Dy_0hRS)CRi1m+I-zo)3?6U9L0#bwciV4p5kKjZT`N0ehL_*~2}!te_}_bCH8
z?Yf?u%VlC^!zFn{trxAE5=uV-ZnG${JH(67+4?TOfr_}v24-HldGunVopv{5p|jze
zCC7E4D0=Ep?8u})w*_|LW+5cbStyl(IeM{f9;f^?O<}%-|4YaB;OEE^>GxFvQ61#2
z=Ln-(pD>IH>1#UWopB8#^5dJ99|rAh*r22e^`iXy*x5Tvif=3dSU+A*$AQM4NOwni
z!<A{TI-E=f6X000@Bh(ev;zUOk7wH(gRpRMkRjjt-8b#KmxB~WG1Hi+9r4`(wzGko
z7g<OGzW6oE>$U~#BTU)D$fKe#$hT2+i%7TsmQ)(Pr>#gn@jT%vM}VN`>ugE$al8<M
z2uKf5!Ts+iaW88tQUhgkAGpqfKEpDC9g#45QEUzkK<}!GJv|lgLud8hmp>>X9bkAz
z!hXkoiLkMwZXmpVscb$MkCEpbUvn`HbOk0tWDXj(!^gDYUKsF}kqb&aRZ|LpO)y#u
z6K4-gm0GD%;df1}Zl#@XD|MSmFc>K4q>9gUOzQe@E1~`hM{+0V7!#SpTD=R04rbuC
z@}1wsw%KQcwpZlDM4{}jFkhI#B;@>1AB-%_(PgGjyxw6rH}~$n@Y~_5ODHU?)cB?|
zb4VhYKK2_p^*JtL-vs)vGiO`uV{5C#7z+ocPCw3PQsBqCrSkEuvllyaZ+)C5E-x6r
zdnQJ>bF%1DwaET3?H?WhA!+-XxtB;X3Nz<NG8&#?MS%H{Bgp}Cb!mE8rnXC4dFOUi
z2q?qCDYK}m%lK`Ul4{S28)zq^WFYf(dn=~qF*6xw&^!Dory2<CNP_9vt1fFiXwFl)
zDGcwI>F4{LuL(z%(c+C7Zc|QZW7|Xp6vhJ%@V&Jf_gKC7t#DQLF1BCT9R#xDJTwMP
z$_LROFA;WRs`kXXke<1Va&$y#QOi4~gS)U@QT!W(awXtBF_DtRF}UREq85JrfQSxu
zfOMJO(I}&*9cT9Cc>#mil!!b%!)}bISt>_+wZ;Zef7M$;xqqPD;n{;bHV}XmKnVIv
zdaH=0dal+}En-pPC`(UH9DrlwsC9MR`|}N{NI@xAGj>c8#v3Z*OtEXO4z&lLoD!?n
z072eW;Q(-H<n3sR)%e|DO=x0Dc0JB4#8u?Ii)Ky5V^+abXz|d~g5z-$Y|ka3F0{ip
zVX6tM(>5c{ihfZKt3Z?em}S}Hh?;!OjQYN=Fo|^x)_O(u50t{%B9Gi8?6&y$2ou|G
zGaeXE<cdR|hEb_z#@LlzE{0mm4KB9Yk2O$?!Yn&2m_lW9u;9UfhD1L`UGF%iAWEc<
zr9<NoJDOWnPJqkR@>EI3^i|oSRfkB&gvmRNq_AWuaCrf3Y(7URzUdQ1JvPN`uw1f`
zy4Xp_6Cx;}7j(Hq>2Ewo6{^A_!pN27g!OWdV-3GRJHpCpH(rmu=}r(Z;ijN2tU3>S
zIi?PG^C)-LT25L<PNkaBe4y6Z><3s~YmOT0`Qa0`m*O}&thPmFF|L*tKY_tWJ{=+h
z2;ALS9C$ICFib0^6TP#=KW&>9hfK5!Qwd>;VTq?}Rd_-wb~N$Y>!5Pk_}BPIOh=%P
zT(L?&Hn)2Dlyep&^0=9>UCbf-#)~!GI@2ZX&eAUK_;yf~;f5`0=05D|&*{4u;|gEG
zpOC^%rv<nsqy0qt&p8$y*4dptJ9ujIIzz=0Wg^aMgo_VQ7p!>53fk~=yBAetZG7wL
zkEe*&aSL5w*QL|;_gP7->AG!Ery82Bz=pI67l@uM%xTY8pe|5BPZyTtemK&5w@gHG
z9UryHJwnF*sx)FE%S|#-ef$byoOm!rW&m$ls#B*LOQ=(M47B2ls5SLBH5St&M2OHZ
zWQP9&@Rk0bv?k$L`%2~{Zkl;Su;uMhk6O+_OcWo@uBSLfoi64WLnu{l6VprN+8U1<
zF<O4uTCh)ZGyT0u%CfxT)q+!`Qo@SSbJlgAuvx!zE;z87QJShWkfxm3?6+!v1=-os
zl25AaV1y}u6$AHXgNl_kd-MfQCNfiQ?q4?|ha2vhiWM+Enh_LFm^}WQ@qJArHy`%E
zuD9P?MzP1n%Byl}FQ_|D**?&GbU#n(?+yYYnxTIo9%={OpBu7t01ptQHN^U=zLK`K
zq{rRjw$)6VrqU<s+AC_NELUPn>X`|glF}WZya^;}qxcxm=qdc;9FU57KfOP|eRJ_C
zEYdT1!Kv7Uj7ggDWkHq=NewqlbMCuvDQt40(>pCL*;T4kWUOYx^nkYASz9h^Dedmv
z`}CL~*6^|~QV9yqTNWZ}hz-q_U~dWnK|`>9c1?ZbtV)$nDc4}<QNz-h$T)H0ojA9h
zBb1t{-M-39esretA3WP#YMXf010G6i<%h{QjoliPI|+17YRpxIzed{$8!Cf!qj~J*
zSA$@^1HrUNwG2P`Z$`&qyx&8&MqT3e6GOHdqgqZJGqbCAkZx{cS;v>1$|^s$+e?hf
zQ9_)dmFyx7M|C<DX_IQoixIZdWf!w--%;6l+9Vet;Cg0rFvORUa6ia=6Nsj$4$_zH
zRCMzkl2;d{Ud(1G6vV|EP*z13DvB=-oaWKY540FT$%}w+1hnKzzY2pl|5>n)5kp+9
zeYDe7!Ci&<)agd&Z=!j&K7YMpJC+59I|}RsWqdhz9F)b@a_`8*u|TZG6Cgl%ta@mY
zYW@Ubrl0%4{9$wvh~De#b&Wria-zfXiN-qP&#G1HZ*oQ1L}@&z>tVdd7B_as;hTGB
z8kd>^gK>`Kr!9t4Tn|!tytF%v^koyi!a#rk*ytO?r7=Y@bT~)zkPW$yxu3bqy1mHU
z<0~m0q+jvDyIiDUD540CP@9|$@#9G0=h>AQUjCqi(a~y=i}^WJN;}cA^%ARXnZeh8
z!)aEF-kWCw=JioYJCUqd9iqXXoqJLsCn}SdCcnnqj`GUG#+X^kXxuZLjrl8ruLBu6
z!?jxv7ysJLCWBN(YXYfuW#SkEbC#$NN>3&croi$MLdul!v|T-vN=t0?Qs)MJ`28kL
zjl2{I!NOm^$T-=iJ_3NedyoqH$|BP+LY;%izH<`XgubLi7e}ad9L|i=Zf3s|sKjIX
zc^tF#zRBpR`!ofMylQGBKk#W@=f|9{qZu5eNc=gdB0Z$&#eqn(y}-uoF0`d&o=)#a
zXp<8uGm~HimSDO~3511FJ!seEbR#vgl0I`{jJF>FG;q`!qM}m-+%Ov(uW3&+h~yJw
z;>qvJge!$h3v~gh=#+LHZM6?~eYx;>R3Ml=smcwVez8^Gm;}9gnCEJJf1pAh|Jzb|
z>C>I>cs~#_DT2R6nUwVxShuQZqx}l=lNKD_Vgj*x%kq=*N&2uM=|+&A7VKP#x=wFY
z;<peqBM*RuSO_P|387(9lLP_`G@eQC{+)Ny5DQ{C&tl(~BvsO^`Zqm@``d+JD1`pr
zXl74ijxzVUl>_shM*F`l0XNMoT^c<AEQ0r*h~mMY#hyoIg@_NpFqH`qMOyU|z&m&z
zDgx3E$ZTTGDkejJHCPP!Nx_t@O|e5i@WJFPFX}Si4f_aJ$O=4#zzOC%F<!L^?p{)=
zm3sd#Z-Vv6ki;PG#r5$n9uF-yOd@96@O=I;<0sBUUTYcerA)a3Rc?vI63$41@)2A+
z_$qCL@t)*1%^lFm+r%Ii_zK;RrtOU~Yo70)azf7o@2xHMRC=>XKc1WFTcOO;kH1Fu
zjYMUbIRZjnb+|4Z-?eq(tngr|kNYsnaiYxIb6a}?*7<cqusj#sZBwVkv~klBcw)ZW
z@p#|(1l?`4sTy}FWCk_$kT~xMq`P>?=2z_Tzs!(+$CRjO7+_}-M>%a=g_Ck>^wuLs
zP^7fJh#acW;z-&&f+t;pWSo#y7rHUc%<LW16G^c@i)a8xd&pEb61@>6nl+I%twVxo
z4Ss4Wotn6~b>pXH=<g-nAB_D>Yy=g!{9$Gq$^?RthN<#7$zg<%Y)!3E^U09HsankX
zV14dU*h;!(!+IV_OLZ`+ym&!s9<ml7jez0TJ6LU$I-`ZeN@PdvvR{!%qnFX1v+gy&
zrnEH^*wx_-319?7L2W3C-C!OU(Kx4-6=_@fQR(^zMk5pZkG<Q0Z4HHO42WT0aRVS9
zkWStzb33scJ|0Vut{QhIx|K0t6Y*FsF9PoS8}87d`;M!7uv_ko9m(;;X?-Lj30{x~
zlOjB&XJ{ee2hP)r4L<@&>+8TvJB8Bc)mv`6i!}$`0VSCzy0HUOO|2S7-GQ52Mfg<^
zK|*mV4S4%|K;14uZU(Tq492mwBkKB)(ft6sYkWY_VLR?o-&HU?nZ>ibix=pV!DnQJ
z%l~v8W85%m<vcplztLVERl7>-{b{$3=~D)4cFCX98OH#&hT2;NR+RE^#nsxk%8};u
z;!4w|BUE4-rMk3v?pLMid3zM&v_f%{{>i`%wPk$?Z!^($rd+Evj(n7ip#cu@B`GW<
z1r*Cg)o&QF48~~useQo!jD}Q%m6M-2?Wz^l2q67daPfEM%~NH!R5`A$h617UvS9l3
z*FfQ~J)U02tp1>U?wxF7rbt=ZGLyG=(Sry|<wB?m3t)0s*+C{NSkUgx!K3&H7?8;x
z^c~@K#W0B;%vrrRs>_;4u5$6uq~McT^9F~d{XwF6*xu`ZVP4J3gk3tyf1j!!#Rv0W
zrS_g)qeoaP;rwvT%|D|eHrTWAf%8tEAXOurx;-3~6)XRtTl(GJKPy2){o}8hpKYhl
z(P|ZNyY>N5BRoW<p%tu>)7G7GtHu_;w_Y}1lrXIR`FawF<Pn-s2E$A_6x-gzpq2%)
z?kFjJF}jQ<?&4syB)WH4bKGzwIjc*SzD4uWaq|kD>`b-M75cAlR8fKOZjE`S&`zaS
z{mCzydGxP(eDpG{_xsybwmLMBC<4%A;kUmWRTMsTx;ci$stskF<uoI?-uixU6Ekz*
zhN7?XsmUbjdq%diMu2LlQtXAhcV#>7Uk;dIu2;8Z^RX=QaF9uboTz{-#+k$or;BYS
zNKS(+OA9BPH>qa}GqRF-O;k<Ke)lZ={Hi9Ka)EJR_^74RxeqGoOb0*0xAesHO=wE;
zVnd~nYlxl(l3WR8DW37?SUIoYLT_YBp5MQKD2UE$AlNoILef45N|fYr_0R20LXgJ|
z{;ujy{gPmf+JVrn{myd&zj@NjPh_73jGL-^c_5on%c5k=CIq|1`!)ZLj+k2plgwxa
z;f}e4CN4N{h=#Z!7LaG%2otgBI@eo3Dx>`oXO|J2L`e+D2li{eWm#i-NYWupuq9An
z%rKru8#So~#f5!dV{wU`pmJXK^gotqbKLpDSFZ&QP~b$ww=tNm1(l}@%o2)UOh-U&
zzvBMX^k8m>6+B$q^upbawC{hTuT;wL7SMA@EY3gR2FbKkwdEFaSifsp&nPQ(0WC;v
z%#zRruzqUJj2Nc#eHgw-VP`|0+mnO>nxRzS(d~<TQK;-7c!!X@Z5HgCk%lGn?SRzN
zailD!2FOdok_SvafsP~FQocv}a_Lyl<bi3Cf{(P&eG^)iYfXN(7Bv{XQx}2)ec%$i
zPwiq4nqOje528AMntU6cCtk)q*0&)VHx_J7{vOw#T(`1y|72@!v0Fdy?^PP!WXi(i
zf9;yKjn({hpX`2cYOfG+nEp&*bl8D+Q{p*AG6{jJg_?q=8-^vVJ?G_7d*mgndww!K
z=DqJLc4IKNBjkC@`A-<cFgo;ak4HD+1WvI%yXldA&Wd;oDsei9915^QU79POxCOmY
zzw(g-Rf4B{W-gm@WTmL}G(fnt0dW+vr7x-g{H21=MO6|9kDN{~k2bVWp=!be=XWzC
z>}@tk<|(lc*=rX*oOUYwx<C?--09Jw2npprraviEI9%UNq3XXqAi&9Wp$Y~u;L?16
zKetxW)*)F-`gIN6FP*dmS2&FmN%4IYiR!T;<}hLob(W7}^du{}K4I&a{j=!!{yUj=
z6R0xjCXTZXmn887@Qu-3h{52;xhDZ9oSyVzOp~hUZ$3B$f;=*tvZf7#@SGZz<fbU7
znk$%a;`;jP{BB+Xa>1bS7oA$)P4I^teX_W#-=C&3#T_Lyn`SApeJp&J>)}cFB<yU5
zN`EpXuLRe~N>>q1ORL+0+Q#42sDbbmg2Foa5|?TFIh!;@T0Ev*#R7_JB+uJ%hq_W^
zr(1K-o2vs#l-eIHr-r=rPqEn=^r%~X_h@{|h^6WB-+tQ^Xt25{A+#+YB$eyqGds42
zct~AG_h4mG8#f|8+TApX4ou_AxS~(M`V9k9Whs)_$6%mQWl9q`+lh?|cQs?ImK(3j
z8Kkf%hk%Yo2X5O77wmsP=3cyoBTFv`vsgjEYj;hs(GuaQ3hCyvTs32J@O%h}j?YcI
zh!}txP}SLN=5#>ntE(_tzINvefGo+@S5EcpJCwAJ71UTeYpoG@8c3{1(qLYs9cC>+
z#vYjC>m&L$|K9m3NJd1c46>R1sp+6r(2zd+`pETEi}dc~s(UEx*%(*D8iw4DpWQB*
z+gol&7CkfYlvHem)NRz*NeJF5nKsXCjqvW0-8fY$O3yOZK>k$1N#F!WesJ4j^%~K8
z3<M$(DqKi_Ym4Wl!r}G_&zC2My04iKYC3$#J5Vrcr{sulWI!C4_k_i->Jr0p5Th6l
z^PJ;y)jt7Be|Rl|rfx3oww{3GsxziRc*bdvfJCLep4!dNXK;mJp`ygl)0L~jKJ2a`
zB5eH9)#t-x_ZWWVoQd@}Uy-?>twP9x_3}*$UAkGGvIE{9BE&BU*j#3yk00XrvGk;>
ztp{+HN@}VSi(25P$v0>L(*mgAt)h#BJiy(lk&nD88<QVZWDR1BxjvQ{T#dQME7&WP
z8L5(0cY%BN97sn2VF`yKIc@vuKk<_WMRLTr7g{J<i!l89pq5!Fh$?hc;N8OLfCAPI
zX<}SWHsb$+fEGz{UD=lN)bw7t{Fz^LbR(F*qJvbNH7v6jJf#uORNVv+t$5!K#v##7
zMifP`;p@#^cjTwM15CKwly90TGR2`iC*I;<@R~X`S0p+S1q0qh1sGe#rgM+0-Y*E~
z@=o8>qm`eG1V-ZI<&z#w7v@{*iq)=c^?eWSZ7IEVNAzU;Jw5NbN-hn!QIX?kS*I-1
zvp|GFv#tJnqECHXXmXv9GK7u?2+^r!m!jo0f-HdbN;xGpVV>9_^ePFV$n10JBO^~E
znhDEtJug!QaQXfK$izRx?_i>JDn}~j(I-Um>z}IT@mw)(+GQJP4$*pu5$@n>4KHmX
zT*zpTk^Les#r~hg^`Q<}%FYI_bHiA_$(r&(AJcCQZ@gR^;E@e+#%kZ37@yV<wgjzc
z9N-e%Pr3~Ro|7!;o_5fq!yJ@GYd}T$u$Kgx3=}n~kQTtB;uNX=f8#6ZF4OC@=&1Ag
z1)obI!d_(t5_erQ7)0rmR-pRyg~;7~b}05K8fbEOT!`Zc@NQ+%h51S5M1n?DovvD#
zJO2g_A|fW{gWYfd-czh-o6t=6+LvpXG33P(KKx$ujfnLprCFp&6%#dMOuyfWd6c@t
zLT<w#dWAXlFT5GPoj`5&dMiq@oO<?4XjaS+#R)KaQxFxbrVZl_oyEB?Y1djPbdSSu
z`_Ulm97ANc<t4frAV_Kn6i#MT4h3&U*-_+8gJ@#Oml?fX^IL=N_s#^$z*KM5gh6+V
zZMmqIq1^Dho3Lxp(Zq8p`t&i&9Ye$iRqlF)SKnthaY}x)CEnpz?EH;VPea`hGoihH
z^xJSCF@N8C6g!*LG6$P_dPZ9>#Fa!M8`+BzIJqDSI>Rp~KATUQy4zYWdKe5CdKm!P
z2{)&^*Et#UB0xkz6|>y6Nz}=eNcq1~;_VhfT&lg>d`+=3x$G+GRq<!eyc2-wodQM`
zFG$<4S?Or`3bw8Mmv=RJ{9+TsEhxoIk0*E0*DWp%4Nn2l0|m>`N<{?AfRhZ%#P##E
z(nK2=u*zAa5Qsf_w(4~jy1q7Jb-3+o9Q~9*+3RPRRB4@mgv%M&Dws@Q8&oY8?5up9
zA7~CV;~Q0drkliP$v3}jT9)pgBn^I2T4UnfYX+YxCbMk_+lCewOi1~%486){Z)jZB
z+32Z@r)9}BCcHwlvV$emV4q<&zcMzH+nh~S)?T)^`9~9^t^WpXJmUwb^W%fc3Q2>@
zaV`x+-R<r4$;zMpr_E935B<oH7U8shZpIWP(m6{*kJLQVSRv18Ec6o0Y>Y`Qwo^~!
z&ZCZ&>{1X;w1~7tj(s%5g+trCq3)66NLluM3hs2xJQ^*<#lzUYEir!H+af<}51kGb
zSitTj_3cbfU~BQh;qX`VU&T&{eJ#N>G*kh4G=nx>W;l`9;zTkI#mJag>&cM**#@0>
zMh88BP)(7*RHjgLrj|5HJQJDdSx~v$xIXGT<qF_h1o)^Vl`+NpLLD$KkR$KGzgGOU
zpQS=91;kfL${>7g#0n+k6)0u%^;*h>=p|rIU+Q7Z1a}~(!qKbEaua5F>`j6FB;Sl8
z2$5u^DwbwL29zKMs84h06jb^aB$*pQ`2odr&+>!FuiHdmK@1Xv(8xj9t)jHOD%4b+
z%boF94tWr1M;F)OW5PjQr3jt={Zx7GunYR@G#Xq0Q`%2Z9&XdfDn0q?B$0OtVbi-R
zFsN@S7KN^kVbcen7B)7qUPl(9<U2-}b0ahcn#j|6+6-t{hq~G)L;?UkzT}E|Q;D~z
zBSrF_vR3j@&uV&0q9DdxVK0|}LP(ui8-DejEKiNiA##x~vN_9(nS9_#=;xyOj?pGb
zzOug00y{Wj-a4*{V(}6xf9aEiL?iWWkY1h9BJCE9hCl}`U6c>YcZ%NTbD{mHZ-=eb
zL72&G{JcqYNG&ZwYIEm-*b*NAo>Yhu6ySGn;mWkT?Q|oI>DG+jU1o&Pt6No<ftEa3
zYZ2mmtZvcs=IMBEnF5NP4Co3?q98~b6=Td9jp})u-By-IW|zYswT^#*orVL3J8%Sp
zgKTnonj%MQTed&@`Bnfw_{S&{jHeKB7@E2ramN%#>&L4dE@9B#NS195WydYmUU2t-
z5c+IhPQGQGqeez!S(GFZVwn7V)ggY7l`iQ=1rnBg@U|ixZ&!PUT%-rZ`%JqW^6l#8
zkaUaRHM1fc0}Yo(m;{CL_gPyi?ps8?ggg-^V~T`4ddE+V<<BcX=(mJfEga`6Kf1ug
zWCM4`hKjfsk)064lj#KW*3n>W>==I`KEkJ?+qgTqV-EJYh^jaH-cA`wfuqt&)zD@v
z_2(SY)ID3u0d?El4K}ca!|Dt1o@9k>^>bmmy^yNS*H6(LpDZYan?J<A%RZM{J3S;~
zkF!`4Ci?-`!_29lVdv~Y@KgAi2pHB34{L@kqeVNNf|PAquMi=aXWt=|!o;aKw(0B=
zv&(aZWWw$O0js3~yybjV5$<u0*^(}CSr_nJX6N4Fh&m>3datUh;a=arFm5c$NjFOc
zn;|o!h?BVi(54U$0lOTOPFTe~ABem8dG!G(FjX%fvQ43>4W&d*2%(a>JQ!)%gozK1
z;J-e-pb*-(sPK~QRYy3|sqK<)T`d<_dFay2pn1vF*?=6ok#O0V&0`VQ2D*!2Xt<fn
z>t&U_(PQ*sxS<-!^?kKdfCF1d_r=&X&fGRh=o9pu+RR#5b%3{q1dus-&WpjYnV^sn
z5>B<<L<{F~C%`@w=EDOg3+`s|B0Xda2v6u6Rtsut`*4^5Sr&A~9Yn*+&*YvqY5xDl
zNt!S(NxR=ILgeM_vi#zmGx5T%JIFa!Qb0zi2`kGuNni(qqm#=e-x^X_88Lt4@dg=A
zXh=ko1k^0MX!~+;5dt-L8(;n2w&0WOrlKC0<VzTl+b6^xqTyUuR!4KeeD6|HQFrEP
z706xqYT*Zn|Ev{9gOqDOAr$;|qw>%4yZE#9J)@B$fKm$82E@x)r%<9C<BLnhbRzq`
z#bQ8$pDJjSodUX<njKje!fAe=Seu^dR}QvV#E$A?r<6%eK_~Zi;XaAjE^1Ne5*2>L
zgFtkietccZs+D-$8WJb%0M4$DP9X;Dy1-x9vQ-hJgbC&R-UV9lCN6pI%949FQoJ^r
zc%R9+k!SdGlQ_vXb6x<cNYZH1%TZ+$ar2FE%bJ~Miulwj-J!Qdphr(`_>}$&*y9M9
z&?~!FKMW91Nyq(NP^wpDF1DMNPHJ_F$qLcck}D-b;SnxtX<DijG5o#!j|zFy=2rWx
ze%fTd4eL5iW4)4M{=C%f%=cYgCOEKX1hm*MRY0@E=*QO5_!!?AneDmM)ly@U%erlm
zHIcW%bn7R~2YI3?s_^{vGqU+CK<&t+!*T0ccBeTWpI1Tu9nZ9LMUq+GfCYnGu?T0#
zohK7k3SFS$25<TRB;%#FlJ*Pw&UuhDx;XT7DE)5e&w7f>SX<c9X!^*a`t_{V^xMxH
zsW<_IGZ(W<`fu0TRl-Wa5k2r}z1T_gJcQAFiEx%!L&G+hcQeceXsEhXR-9J%c}*!a
z>Ik>YgoMCOl=xaRU6=37a(u?XXbMi-bJ0ND&N_83gZ)@bi;Sb94y~Ggy7&qD_T|yC
zE+_uZ*Sk4uhs_<^@J#Mz2P97R<C8{o3V~>xRci3EJRo>3h8@sBe~`TxfpO~y@*%3P
zH=7(e)M6oxwz^<&h06e0=6?O%Ex;gn&&ohG(#PtU+om!POha{f0(5b(AsPyn%;yeD
z(O0n{rl5}vD6^{5HWNfeK$8z_wMax0`I30xH;-2kZEnN^|9yFTAFFYrezeNg|1ui0
zYd$Nb^zH<5GDFh@`3+FY2QM~Xcnm~Cnn2`|sezE%0#%9!cS7NQ^?MEIW!!6WT2`Db
zAt3~pS<vk$e!9!&P!X}`yQv6~L*PRO#k=X;x<x&z->Qby(;<t^gB{NbjYAG$)9>NR
z$T7~Xv&`U>U|BjbHT@MFu99VMU!n!yb>C@{{;q})5?#$5t>@Ut>tP*(Yz6Pf-a=l3
zrCD7yDym;3^R5wwP-F24@sY_Rb2Qt-F8KFzh99El-@+9SQ*vD_+}4Jk>1%Gv{ysEx
z*M?cjlsJ?u7uvc(Z?lV%K^e&2=WuaP9$TWzw-TnN{yF!V(Ao(P$^F%5FMIDzG1ut2
z3oao{>=?@jWDX-Y&Apm-Gd@7ZJ}!)_95w0ksd)X!6K7_Nli-GBuPe_JHk!A?<yqw;
zn?()0Z}sDWwIZ7p)5oR|gi_!VB`7%chnN!AC-}maSp^+_IQ#x2`fd(F-JX~%%+4w0
zHcyG4CI9`#?MfC#8`l0&c)#&37hbMSzRG=6n&f(qnv{u3+oM0!ivsH|1!5x9um)I9
z-S+XF!3*M-QCAX&ZIY6g>Xiy7i4y0_tE<V)0_+U@wh`qYmlLFFp<P8Ijc-u!pV>W4
z3iLpR@N8<&4fbd}_{R|>tra(o!lq|GT@LFuQ#Ym;HL1HXeu)rE1|&lPl+43tSnitB
zdX-Bc7X|B1G$y-6$hU9Hj>hctb)7y(pfjd7N*Er=3#o<o+G1ceEHS)fk-^e9Uf86^
zvUqR_^14q4QUT**w7EvvNezVXdq=havS?z<&@BH+o%n5IcPE}(cpdoIQ2-HcaVcHg
zM7`&g5H&a>Tm{jIqQqr2uFZLZ?3$WU)aBQWY5`@4qSBUk+#h0OKLo~hki^I-EFy$w
z9fLiM=-JLGlav1LWfvx2tI{bCHkj{y0T&b7uG?sO&D3gc<74$1L}PIDd~hkhu_MeE
zy2k?lmU_P{yv<>)w19h^y>8Bh2c2D0mMkIY?VXO^z4;N(RotcsTNJ`adYYR{a{||$
zr>teigjH?^HBgaLvfJHJArO`f{?@7mms3$=?Jx~r3h3g6FcOyhNr3~nw+m}vcgE@p
z=aA`X7VmMERgr)3h`l^#qcO#WOBI?U`XQQi5ESDp^CL|ZLwTxly9NwlnlooC><@yf
z&=cF7LJj{YNc3MrL)P|6x2kUl3IdJRPsRxSxsX(HzgCPR@gGBif;80;U4kVctK6}3
z)1rk>kH@wcl$u8}l1(M2+!(au(T8oFY+9rpD$N5p=Sv0n`$-dcu5cp(ZS8_l&RdZ?
zv(~~6!+y5s0s13V(mEkG1ggK;Ns?z@W`BnJ384z{7ywhGDDB$ZV>@Oi)2PQQ`^ojA
zh8(9MXJ#2wNXMOk<)WUuyN!jJiEBI=rnX1o)d{WZ)&DDVKw<!*50eQNg`s$OlpJO)
zoZ(V+HTnrV?xW;D;~?y>f$bV6A#VFY4b+}#npbbJab2ed616Wtk!18dxzh_wMAtXR
zvgMWQ<_|xS170EyJ9u*6YspE<cqCV|mzPEo8lZ*u$TdIEBZC*{$tXcb@B7CW8-LJL
zwc-CWLn^?8V&o8OWDE^qKqwA<c46z?8)c9jnpT(|ng1RbT8!$hXV{zxbXXsRS69ga
zTuO(twC4alohcXrN%>Rg+M^IgoBYL!m-4uU7A4QFff@Pyahw%D7@jcDe6t5wH6SWi
zlHfSMy(ADtr&Y83JlUsnA}HoNd2tX+R6(1icH``aoRF2mOU^czfj^@b+ct9O)O<;e
z+p>R+>2+<%iLT7fH?=wVJ6cB^dn-=o_pF0+hu-!#Qeg4RG2Ela-+R2}U;Ov@c~YEX
z>uDmjK~5y9#p1)mjrsQr=8ZwtDi9o$tt&H5nNl;r7iah^=cR=Tk<Azc@W^Fl<7uuI
zq5DV|x6yZ!B4nrNBW-*-lVePX>OrltIYJ(eK--h;bIY+kl9anRaVLwBvset`L@M`6
zI}1Y25s}dux?Pba#vKP=WH+$sk_u+WF3H_ow*{%Q(rnW11}RYErpaH%EsQ!fHCy18
zKXYtZ%3s^`o%y8ULGC`(4VJ^=Y}(3vtVJ&!ZJqhUWu$x+N`K^N1SJ807>x{7O$^Ga
zBuIgchQywz>%Y>2lipOA2*C38%(u>Y0+m$=X8;7<GG)sVF<%+}#ym22hNA(+31FL+
z+r5SATbsjAndU}N++e9Rod+Std{JrrBQCKSdYmz&`I~LL^CFIgZu$ZUG9`m-FOy<;
zCu5B<_3AV?=T^@t*m#Uh13{eClK;~}n~q36;vd(s8HTh8XceV42jSY9Io>zEeiguE
zwQGAg21gjTC*py+Hh8VBu(|*&<2}fpI?GvERuO@9A;Xa<cKID{dcv^krn3s|VzNP=
z-h+XcJ27SntfV=_EK)w_aM(kmCqObzL#OSz@57wIOCf1A7D2Yv!``<V^h#9A;=ij6
zgxRD#@5mZh!8m>%w-h=&0z{+_pUJLXK@<R^aclsOPu?pls(QbpaiYZ)_L+%@{;bWS
z%b}B(KmPo3Sz8~dXtchoirU>pXfBH~wWGtIwiY>Dey0k{<+wf%a~uzGzL?vLfrdQ?
zT&+pDqM?KU1I>)vlBju1dbq`N99a+>eu<zXzAk)2r3)UcJJ|!xMDP+gUs=$`N$75m
zu7Q7;P@Km^@ddDgc2Yv~LgkD=I^8hDNV)}sE67SRHk)IQs$H!x;?JLhwg279Tb=tn
z(QTag1JA--qX?=2xpx@R*%i?@JnN+~Qbg($ZkhcUQ94$TFsk$8unmK~xz+aa?ZRWx
z8d~V0M2`MZ%VJW>=ZAVEKJ9wyucUSK?N%H)%Y~}KDv+#NpgJN!&p*+^kTZ)ynr4$R
z$n-EA0l1hL#i*e~h5C++m4>jZZyC76tA3dU8M1gvj+FS6AFx+IWulv5CbBf@0Z?_v
z_$Cc&MP?Q$R|()T;={%Fq$Dx3W96S~2LB=mg7~mdgY57P<P)=e9jgYjREGyD(g=DQ
zVg`%K9VQ0PJV3)PE|t-8$(pL&c}yc-JCjjSH)fF-+$4j)tltaNF`oV%hv~t!NYPow
z8~_1{Z~v!u7kC)Rq`6IvkoGEx)J@i8r7pqRsw7fI(6$Dr^Qw{wOtA~(WnEZ;ZR>JU
zX0hb^WW2MdxfLhe?HG_rey~vtDO_ShAlKBzYAKw5YP+a;*gW%#`}NHLMJMSnsgxe^
zDpb0O+C2W<K<Fbc@#)94G?7yFmPqe0(=WYj<#EOjM7^V{!r?6y_@a|TbphU{*{8!d
zmE$B>q5XSiWw(4Yp-(>ey)f7=G!hP&caE}^1M%+BYR|U`Ub@5CrA@U|`W;QcNQ5y{
zI;8#*g1K9&zpdHQtZZzAVhdJBIj?uN9J~uG3R|&2$Nzj9R#2VPB3wS`Uu_R1!3Yq8
zTkbRFISH4xe5A90?~B-0ZOKpi*3;(mF2O~9i?coS2DB(hy47_p{B!CY;OUbrECBVl
zRjtn-T2VPLJXg1wjw=4*r%FYe11>unCw$AsWXh$rF|xvVqdSLFS;i&`YUKq589avT
zr^TLFX%{gZV=^@>TR*bmW{B2#G{zj)KUxR$h72P8Fc%$c0|Tj1%#pp%4`VgjWwI}h
z?4jBL3U-M2i^x*zJQb}OCYWrB{r>(wM`K<vnRR;^1ttJ-!xb$hrr7(8gR8oQyOf$N
z5X(!Rjqh2scl))DA6Dkd4HdL`gRD6$XKSURF6<m!>8nTHiWo5w!-m*O;<1QAC)uh8
z6yR#1f0<ijCB6#QMe)s)qew4VTS6U?w`X1sZ1QcZYZWwlc33G!3Jy=8##&=x@@4%1
zlt|5P5W;h5yo@g*_cnD4DwN&gb45?6hpk}ps_kFXGInH!>#d*z^jw{a;;U>KZ#m5<
zZ2m}~mD8(p=+y^1*k1#|!?E8@bZ4*4dfyXgIAgIipnXRO`juS4xZ5@$KfN?Z4uRu3
z%MVd7{QVo5i_oE&*c3c{quG6Z`U0LrXz$o(b&NBb(pM{=OGxg%d#war9-!wCAk=o7
z+pY>JZ<c$}raM^`gNMN|806Kkyl~Sr1FF(D9~nv=>b39P>C1pvHmKS40U{RqmMMK=
zA@8ForVJ*oyR^+hZ)<W?F>UT;S4cgu3!)9DKUZAo0?eRg8={8wqR+TRK2lqy+>rcP
zX~WoKmJSVh0{|O{-0y8HmKPLOVzx&pJ;EOGJt|RZVVYpHP$e3Kq~LMd10UfxiWPPG
z0mWO0IF2pn2OArg90CJBbpvZmMrf_r#I%ZL$*b-6D|_JjWd32P<oLv!5==+!0EZ|X
zGMMHa$Gy<M#}G`DAKRKbC_iMB@e@EXREsbrllO~(tD`Tigke74K@DV@laC*YWww@p
zTwVSr&ilD;%eY%}@wRB@SkVQ-{xQKFGc^&55D#70>jW<3UxCxjCy%O4?aYtBH=$0>
zq(&m)@kD*e(nCqy7*7%*Ui~afA;bE{iNCT#8YFPF9=(^`X*Bu5I`>APBcI8wN9Isd
z`WiimrD~rElY$qxDVB7Dnv!u#a~UqG21=e*(iK9UN9~F2S~O2bs5i#|BU1}pstii{
zI_UBsEJr+<Be4x$*8smO01vBqvUC{(c(g>eZeGY-4HL~9y{G77OO(a+LG=gFy8u<-
zCBy$Zs=A@oh#wIUL0Z;*l5W8+xVBDA*+Ydbag<8R9se-brOq<C&8?&S2bp$o@^_pU
zcuTsatA$yYVCmhFpKq}GB&2B+z&O`v`wOrEk;2j$2{1r_m>d`!T6UvGm7CTTd&(dp
zdD^G+dUMr?m0(38zHg43>>;%RUPfT;!EP(qtWrbC;3j7Y<TR?9gqTvcv8h*u)J(UN
zA;@UXiW@7Kg;A~l?w(f6$oz7~#uL@Nk~lZ;mK%kGVF2RB<wv`g+&*%u&w<zbywTJ3
zg8v3=@0D53nYzGzSZ>_R&aPXR4$o*bfoDWGZumOiLi`5czzNmR+5TMb;#0e=LoqRX
z4<~p!ULU1Bt6Ty41?l8S-ky{f|K`JxQuYo0a<P)H!nAx2r!_2(qoTk1Ga<8Z2wC50
zJpejD#lJuiWhFQ)Fs`oh5xg=14)>K=ldjL`Pcza6R0wOCs;G5yIelOxqg)3It?$@N
zV4m++Z6z#wXZWYlJ>=vp4d_-QeI6`OO=Ql!K^7@+L@Rd}CK(i8bo12%`eHWAL}>J%
z&RcjnU<jL*X8^JUmLOtH!zC;m!$_Lo<@wT*T_J!N=Sv2E!WORA75P=)=?@b^2xtRz
zAGaqXujja1x54gZ6Sn%F7Dsf&r#VN;Q(AhXCbDCc+V|`FPkicbcBjE_FyRk^8%L5y
zsGWLw5-@bBw2*-L(?JIeZ=7TJKw<;B_uKE{&3Y}v@^A#De@n6g*HyfV>p^Z^Q0cp+
z*-sS;pzCFT-GYC1IX~EHH4h4Ukddky<$){po5d|J{#iC8_r_9aUvh$5IwkZ$3`#Rr
zaa{KO{|aVR3O%C$aCtu?q&x<doe)aF#Z<)P#d!sU#}$h0exjqFqN+WQ0Tb^$`7d_3
zjkldUo1|+^E7g07lCz)!Cb+J+SQ?HkUR^qzG-Lo}jp1q=Zbm#1iS+goQ9Yr~I^ETo
zmMNcK)W!qcn=1yDFW4qdkxbh9IPM3lXl2|OW2Zn!XKN>3Lg);h-smR7z}&RIgq<v|
zrS2O^l5>X{cn>Ii4;dH;Nbm!x=CDjKc|x@qwM;+01pgU&a&Dk1TJ|vmv+xxoU#unh
z&F*N&bVYahpXnXfJH<gOY6gpDiX^hr<(J0S+$#}LWf#af50o%w8`*z_PjuztB9FP~
zD%HKJI<A)@=dim~Gk_UX*ChU0We6PJjRErYC+^KhY8tb}k(_iG7~@^^m1Q(Sp?!Qv
z+^g*N7F)s?lb0#DejM|{J**9e>-whw@^AGo&LsNCy=%(-)vi3qn5F{9B>#{?UvXW4
zkYNH@H!tyt0VE2zJ8-Jr&msXnmtSd{d0<*c8S6zscG}IC*Ov#xUuoW>WZcaT7o2dh
z|8u0xUO)41K5~Ds=8r12P4<q>A6dOk?2odmF2E-0fzyS9Qg}vm5|w%kpq~(W@}^JO
zv$I~J2z-jnuz`^w4)FBIK8<O4K|kYyB8SsJ^362XHvs_Ld(&4-^9C7kd_g~hMMHiZ
zSX9O*zyTY3Uv_g{ru=vHkI*ZfinKh9Uc;VDOGatzV%%>c*c6h)>4O5fM#qSf641V5
z*joCw#|tL<d-1qJjS~z?bx9v|9;Xyv$4Ph-`i8Jjum-PfH&*PVeRj_UGH{Y<KP?eT
zWnavTKh8HMg}ucayBQ_Q?=V(glNPch=tZ-|?U@I$T47l`5)F4{$sG&nt+%;!U=nD1
zhKTC`cXlB#N76%L>TVk1dpBJzZ!&+-?N?5)Z8qyN&R<rwR4CMk<63T3i^Yt(THnCh
zw)~$r7m$mVIl?LECk?Trwd7J-lDV5_9M=RVn)8TG0GzVY&vFWHf*T&8Hc`?UDTs{h
zDS05CY4jDR(WHubLhDmu=E_N~^G^Bo+`Yl}=w2zZsUZhd;c~tYo31j3`!xAJnBg>|
zUF*(@nNB4yHP-5+s<W4GOF-&m=F!f^{6e@`T?Y(uKT?kKOpIPItpHY5p~$`y_&35D
zfaYSK$$3m<FQ?zvzOM$EwPrAe<~~vaZ17gRc7Dx%Ul*kd%XbR47U7{ji!_`wjsz?>
z`OlAlC9NFCns8<B0JQ<*@*mxT>^-pN`)wc#LoL*)C<d?8@_S*B1HA<rWXTAIV~+^F
zp0cxq-+UpoNQ53@`&pFLu%U&4eii|7d)Eu-<k2p5fvAeTSZJb_l#d2uH@RP($SVQP
z+@kgzKm0{Q%8C8x!U6LcD|n?-wZ;_sfA_R<fXk5DT;GNNh6*4uR6`e29{uOljXNq0
z8~-3wD37qGd4uI?)Njmd)(UUCIIbp?;Y0nqPgl}~#|+PtgX04u_oi&r?szM+c9&VE
zR#h!IyvFvLkr&nZzhqd`(9=62rO1_k=*q<_%gBY32_BP+FFW~N*&{IQX!{i>vt+0%
zXRi?T#{f=*?^O*^iZOYAJ9FOBGr$R*kS`eicRHVohUwtNu4_li9dbB;+8UP<ewUt?
zWRfvx%}e{(8jwOA!IKfm0>v=N!TZEGlZn&(wd!{pFN}HN4Of$_{+~1`A})d%?X1}K
z+!1KB^mdPhe79M=)PJr=_&P4laKa?9NP$6Q2xuoid=xiR9sOCvhfSj?8`_p4*Z4Db
zd7<62ccw?olo)@-*QDnJvp;ilms<8fB4Vknv-E>nKbkT)TA0R=Q9Ua}VW^0)zh~!s
zBT?(7xKT0y1|@!W@K46x(&SZvsC|N>3~GOB;@QW$qbU)hA-tF*vVx<00(yhFh^^;v
z;r2`c)R|(y_Y$7H%hTzImWat!5G$ert3?%3yF=@r+xMXuAaaDs#daqs9QmBA#FLiv
zaSE2VFQ#ZNKp7*sYfJ|PQFHsJhtx|KRoY$spl7VeAtR`PZQJm%9wA`EjUUP(=%t@U
z8BrHMN%adLi^mI=9tCVgLNwyC!+{3r&#Kh<m$lukCUus*0q-tCjkprZ^33B`3XH#i
zl@@KBSkP@OJEJeYb$)i1le*nqFZv9-(=`y0_<zXeFRIW4wS6YOVodvrYs^DKe_mwj
zz-0lLPw_=QnZ4!Ss`$XKgN+MhbP{SDt)Hg{<ZQ`r+Sx-om<p3l<aT(ogHVU53Z6aU
z0YZZrwb<!3(U66AanO)Dw^O7Q+=(o)tn32HDk+!%&k&wR+JLtL@uG!lY+q~vKHaeQ
z7H%xGD-)G_XG6R-qyN)^@M<0l?`oZYqxm2qB62I*QwEo3fH#*UHA^T*LEQ?$N)G^l
zmM2*TY#jC+)ARQv6DRk6ul64)7YgUw)<GaN^xFvTj&Kb9P+y}oQ(G~o(LzQlJJRJr
zHteI<BP+)yw5$a@%T45(`Gq0gpC{i|2FgLn+MKO!{<q_<pPDpP)0z#1{x0t{1wvar
zOym%NB<a_rf6S|waFJ95fQ%pc8M046n&Uer0%B|~)2B_q<S&f|&m^HWiQOLb3jAfZ
z^K}=Val`5wT2^=NYhQ0&<wNY);N7WV8qtxzwu_`3hM4XjabLq?_jQ}2l^5WawqrZO
zY!SMGw$(UZHX$*e1Nn%-dYzoftQ2GsK(+F|S+icOb{PMa6omq@(X<wP)w4n&EfaEB
z73aPz=VWP)TK97Y5kXDp&gtYatP&|1gH2~#$-f_?vh3LtuBt=0ZjB2wdE^E9U;#fz
zJ9}C>`pImkexgn-)Ap?%D!+hWrJbL=5kYjUDTe<w8bA<=Uqc3f4OZ8lJK+*xRr#Uc
z^ewEQUF{^{9ZA;#zft*CG#7pT&_>JlQQHTgP`Sg81Sx7OAzEq!TfZN>;d<??8TInk
zI8la=q{KEYoK!Jn(Mt*EHlFr?ee3f}6ea^RsLT|>nrpVZdoqXlwAw5cnlds<o+~N&
zp`Qqx`!MjIbDhysAU5}<6B555n1RT6%(Y#jeKh_0a$4<V4sCtb%Bd$sI{klrhmgjX
zdhwB`sSz6XMGkc3Uouiy`8~Jn(YhM9Vvm|pY#PQgBn;uHs6DBB>{y(qaa|WrSlQJ(
zqc%x>6j!5|I63#W>9}k3?Ch@nmUYc3a_q*W8djZz+{dAOVUA{=`8hTVG?>2<3rV2{
z0@Hgw=Tk8hl}<}(S4_gARg1d*AJDYoujT`4=0G|XPc{o*Y*}Vmx`#TQN9}*{&Tud&
zEggs$Z0JXZKO;-n!f|69J3?*6I+_N*&HcXk)Nji+mrUf#;j6_P#)_LDUIfk{P`NKy
zp}4<`4JI=rk<dQ=)Hg%{qU5CV)qV$SVE;#>Ic4Ystiti_7NXYa5NOK?;bFXl$#YA+
zlwwdLB|r$xo4hTBCh)TS`W$8~GZaoEH1auK$hXx{dTm>>R&P!--7DQ4N|s{%A^e<A
z0ptxq!VZ8nT}rD-t{J0Uwh&Q#Qc4A&>oaqwLKoX`G+MNuxcB<<1rD&Mtl2>*>SL6d
zz@U-Tlf?OrA0vXo%2tu!uDb>`BMa~RFA-Gn1x6R}^BzLKRp5ZWz4u*q=~_$N;PALE
z694c`YXk7B!k{i4Kw2_?W9R1{gV*766ba)!Tz2yZi<}q*z-?kCyH<o`u?@n!lN-Y-
zfC&9+PoP2qgFG!pmTZ@zR?)O*7&GO*IKpqFz69}X%A)Y2M7{;B_u)ME+BB~5^4zOL
zQl(9~yrZ^Hy6YRF9dmg5DaqKobG=ksSvo`4x$$gKDK%%>H>&W+J6?ZgLa_ET-}kX1
zUFT}Do${d#R5P<LR-4U>c^d3mqG5hH5Gr7)nl6KH*`sf8iM6!)ck+Ihi3$!XiQ6=S
zk}`2&=oB4%VO(HlCRsf78FgQnpb2>C+fE<Ui<K?WZn5xZxU8PS-~p74*5K?E)|5@N
zEFJc~^bN1hcc9Kegbl;2dPT|-(uZyl);Iis(_^e@R4LGM2ZTFsznc&f<~Sy1-4xC!
zycC6~K=~UmQqpy*7GYA~4lT^3z9+3M`6(`8(|lh_0SL;tl+_|PiB<DUrVZ%rIcr6A
zG?HJ8U|oJZsQqL$U2@P@Wx{eY%uzY~knZdzOXwiZ11}|(zo&%N@3OFQ77LN@W>bq5
z1vpA=fm{dMvRnE4aeF9Z5RJ^-;iGJ!e-r@Hm+XIcNN?_!enB0zTQk*1U(z;?*G=Z>
zFY}UUL4xH?Mr6CkkZzp5q00?Ddg5snssiv3VW;vOE6`LP)Nja1=2FJP>vYbK6}KA8
z_t`Weh$CI2=I!Hz7!GQ0$CNxV({%&!k#U=fKb(#7ZHg4e<+ni1Q`b@)IXIaCx6#bX
zKWdAV6L<%S-^?>P1l1H!Uo(Tc6#9P@QA!syRpZIRyyz}-?r`ZZ6QXCtn2>=*mX-nP
zQh}F3xOq^sz3M3|Uirk!S^Y?l_qJ@SpW4=+Ip_7^&hYiGxHvprY4q7F)EmaQ_4FKw
zMx$f?XZBp)3L!-R^}i%dNwEJk`LR^Gh$w+^YALaf7_(6BYAT=2qEGx&c0mw0HL|j>
zOJMhh`NsYzHs$>efeuaiO}J*+(^ZUH6SEu8bV0z9Ig5Od9iMflVkU(YTLzm@Jwg;+
zCy}gWB5-J&_@SsxJ!*hvDKGy1<6NwXr05TaX-IYMz-rW_Q~!5NEx}zZ-qc@g3+PhU
z5?qC8rNRMpzCkl*Cm=}p1ug;xT0UOo4$m5op_5r{$gZOxRV7k!!EM1rGWV+Fpo+*p
z6uid%klZ1$^Lt<@STtBe0CKN2&SvDgrU>hj-%}OBLzx|MP-eHCvaw1<>S1_%wLYw&
z6i3qt7qs<E<*$i4zWd&LN6$e5!f)duj0vtkEip1XgU8O)vVc09u2VCho_mV}f0KM{
zbXG>`pbzH)v$_AIc5UEdZ>9;Hj0RinNmzLSN4O1<T*m=#mO?q66{q<O5qmo~&0VDm
zh`f1GJt}}h0O8I47<KIGAN_RjO(Xu`gbppaDVnG~w6VF%t2R3MR5o_jl&Y3R7K*sY
zM=Ay3+>dy{9H=b&5%Z1%&ADqL;gU_2kXo2p3u^(X94iPp=A>P-6^3c45lx^amuL;x
zKEw?!t!rCXn|3T&RLHJWIgV<wMFfcRV1|RJ(Q15^&qE3LILezPWr$XHHLeZ`JB8E8
zUz?h!jh}8Gj{Pp6lW;NczFtRu(@zIVHb|l_QkSJORzq|RZsGdkLbg9CC2TTe3^6x2
zM>#{A^InKXmK^#-v$h`}woUb0fqhM+F=4K7<9X9Uzzi*IXww5W|4N+*G=WR$>}Dks
z#=$zCmn|qm<UsV&*3%*mT^U)`$8e_?lWe3Avv}j_JLgFmuvw!>0PLll_soo!5^|EV
zG;}n(%0H-&&OaVeA}UuARH-aG0<wzwm5)mOh$Nx4BH^1vOBjZzcW<AdW<ptbbaG$(
zS0WobT+K=#I~8k=-*fmc)c84I%#labCsfwqJ$GtbehgOmkGxPUlO?TdX2)0<7Z~2O
ze||+b>&+!N7%WOS1V|{9bT^hHR&MirdChu`R|kSjFl%}Gwhz*FSCRq(wNr4nG~I%`
zhiIIhCE@DHmZr9lWt>BP7C^LU7}pbZBr`DJrtxwksv8nYwRF)kh_wN7Lz>YsIZ*G#
z(M@T^RFl`D&BNYs<|#Ssrjs-U-H(<)I`f8fRlCauGX^YbqnkrHXx`9Zn=~&yq&R%n
zVUbE<7lr3V)dacA0N4)FcAYP08sN1$V>qt>NUsl6=*W6!>#~M&e8>YmZU|a(*Q1p-
zeLa??rkhuv_W*sTsiJq3de{EbdcwA`cNQsZ1M&Z+8Xy33{d(K)ujo>&!uOfVX?}pP
zv4Q7W%Ii>O&h`g~yAC*&<2jUy0#wmqG&C@JVQ!d=*YIK%rtQEtf05IS>ZAhmwpmI*
zT6ju$DPw1Qdp0mt!=-IR|M}uQaA9rZpU0plvviRT?qic+SD)O?VdyMcH@Ws~Rq`fz
z;qcTp=dR)8kU<GLs*|P-0NQ)xpIGxVEY`U>(WbAHsSpM7CZBqdi^qeIF*IX66Nz<h
z&!TYN3PTp*3ZcEIKHvCGO&h<1MXbh4x$(HG`MLQv=oGx=XE-TJqTa}4Ged^z1$zmA
zeM%O8w;GqrUaY$Nkw{pzdH75Uvj_5Qt1FW3zfj}<{5u%p{QkQPJcUc41=V=X;LxIr
znV+!jQQL4f^TM))vZ&KyN#qb3I{ub`6}o)0YNlt9AF1r5*}a%yXd1n#)X~w>@w<XF
zND^KAj7$sou~~wr`7P=4NIARm*YB>J$~G4%L4Uw8Q=9VF<#=qQ0Vz=hr7b|YL+W1!
z(;GV8-@PRpG1qHRY5YaBGdV?^#t*p0&OBs28qoI${G|;DmCsadltLG-{gF4`A8eu5
zC~&?z(oeUXm;t3mm^G4Yv0p*(o)=@#U7-SX*cc$L!rQ^`p|9wvLi!3#p>~W{E2@c3
zclMbd)Ep$z(B@N^g*ZSCnFfsQ*3N$zw+{}UpUl)=-7Ljf!69l-y^OD{z4S{1q8W^}
zk~}ru<00(E28hLIAGLurqps$BDf+=%xwG4gW>FOiw=jBxBlKzBV%Ct<sj}=ijURKr
zcr@u|ex9rz_{^4g>rmYfmLbC+OHz+%E-e&<Kjzq`gL(zP?MX}GNm}zoKUA5DInHFR
zCj!OCC8F*HROW;7A?nSYu=X3(u+~rKrGSR+>C=P>i5dZ5^qq}aBXI|MM8K1LY(Tur
z4q@!HAKD3jmXfgFNkHN$T-!sx-*6&a|2~f7iAwNL{$2w*1IWZtOSK+{4BW11*#%oG
zq=nL9L5K`BlT)lIEu<7mIXg(+8YRZurc4U4+#u!aZ7UpmBMzJfgr=IgryVMqLwL$p
ziV@+`?>*Pe;p(h@w(}fn2a(}gL_xa%HUqz(`>w<NJMr?{Dq43LZ1JPQ=ZRvz>a6WW
zUb4Gbh!^ZG2l$*2=RlY#Dos}<gpZ62vz2nCkMS%<L5^Dr$}(hnq{;?M4ZU`WOi2y|
zAwP|Z?SJlHajz5jd&zU46{w3Qm;f58zXN6bAAV)034oiD*1NEJ1g^CF?Csfwpf6Fz
zvjR70h&#`VghFTn=-74xPEWDgs^h+l{FNE>)?&&r6A2{1oDM9cc=3rjy+Q4l{Q8ZU
zWxbeAF&g8;ow$dzobi(V0I1j6kw6UQYS~Zj7P-|KiO5lZ){U9gv9$xB@X9Ris*T1^
zhM%0i<^o-@X)%gS7pq`#XZ=iO6x5kbWNOL<QkBG;sZZ?#0HO9uqWV>@>O=s(UB(&)
zLwn7;eMx;aqMd<x!?J+3RzC?3_cXuGRr+#$;l(esH1m!m=)<@lNW6E{TMTpuL|jh-
zOlwV7f0MpupX>|2%nA1c6P;j)ER=95_~}qsw`=ALudNg%*L9TZ@fk(AWAC?nBSZC%
z7^--G+xv^_8+a&0L1ilTO(^gM+c~|^(foN$y<EZb{J&*xhv!3{z~+(ql#LYPHyb?B
z0O&Obg=2LwXvSNb>X=!w1aQ(OKkLn^5_R1+l4$Ah)k&mEG0Lx+vBrs+sAYnLMYW&q
zM7|}rD$8d&^tMMp8XwKr$oVN=U_6!Ykx5VvkyD*FegjBdeiS9phY<$+$C0#pNu%D_
z<~9}I$(r%>yT-!jgQX@KbhjI-eZI@a<Tu%DCHEl%@nSFw)5m)TAhxK$3f?RhTuZ~#
zf3p9h64U5ZA@{aUe2QYh4_3d#$#81?!rNF}h*dNdDfM8CK%i8nh6c9P(-bl#EoCRM
z>pIiwK@^~ft0Q?M3q?-YJnHk}?}$tfMOS(KRiJWN?P7BcOm3q<HVc0@=M{-h#y(=-
z+dUWTZ7lu|SKXNg)(jBA5fc^7%pd8)?^{$i#p1g<RJK-noQ1WKV!8z2f$w^QarJ(b
zVUd7%cwF5XczoUS|E3WmFVb(?NrJH*eQX)!0+K<-1XWoZnO(X^33#Jr|B{l`XMyd*
zdI@gBUXY6%zP_ONB(%vKz;UO$=$ZDEAIp-`c3wF60%!xedVCdL1RCz>Nx3pc*bQz`
zx!ME|aT~?65yM^A?c0$I5<2;7?cSr9AexP#sBB694hj|;_e`B^wDO}ngkiIYsoIO`
z5mdPVENZIK8q+wRrSs99UC*5Fv%-*YD?kAv&CN3LIG3|$xtG`x1-AKJdVHhTM^%W|
zoNGt^+?C}1p%g}T=*ezxco<S#Zb-I&kMq_C``pFo6y}*_YgIZKYz|lARKmqu5vAoh
zOL-3=XAftnF<`)PBw!>lRnt^2_)X?w$>@8aXBzU&63V)Vjf@fbfX1bN-@X_5RxD)K
z%kri%tMz7GZ`_#rW7JFk;Wg~mYsmzx038N|l*Zw>)R`Q(;E^-7;O^Q1w-_3RwUH$b
zKW|<}$>a&Sbbqw%Yxx+3DKgh8hP~_6)q~YMTg<T#`A<KI{mW=<9b}r|8`bPCfJ#|R
zmH8qUR}@%ebpCfP*Zadh1#M*KSCJvpC9XDj5$kA=@TJeLY-RvT!%rYtbAC3@Mwx=c
z66?Jw5jK$YXXgPPNi?7cGLW|$RwiTv*bc7cPe&fJHII<Ce-wqbdnKrqiPj3!8{%Cj
z9nE18cl%4#`vEFh?xi)71>r6L9sLZXJQsH}ipX@JN(k~MapMBu!)5H=Qe^N_r$`!+
zW|-=1H|&uM?Yy`gkQ?fN<zEM}%cH3Xz)M}FPNMnLlBf$Iurwb|7QirX&=Ivd<o^q{
zUf}ZRM^y<s`WscYR}lN&9F~8c0cb3;!h{VTpy&D34r}Yt>4m}9D~{;!b@OOsw5C{N
zy+EvtMY|7#5!d+?FzVoE2N$*Cwdm+Um%_&<kkUFT`XH!F?M>QxRusMxla9&nmb`>D
zd!g&#7p#m0_Whj=i#}abn%ubpAZ(x4eT#;p9hzZf+<yyuY&a}6J$+LLf`p9NO=J>U
z>|^f@QOs8a5cn@*?v4vho<NdK=S5=55O5M5VQ8&Y85{pNLNF2N=r`8Jsiq>i4rVV>
zlsI7Pm3vM%_<ViGbqPnyM?U54B7IH<rQ$A+!L-i6SQxw&Y|~czKs_&YNXTd4k68<*
zKJsGYWM_^~m&9Js9JjufrVv7u!AT$?ZCJnN!;{iC*_IZkzk*d|R)Slk!tIoqaWk0H
zIsxRI$8vozQ0iWN2j5=*aL?-dg=z!H{7#NKQ%!Tlxl<2KI2j+FMa-He5vHv=_nDWR
z?4))Q&*nOfuEF%Z6wFX(%GujDRch%g`-EE()kfjju{{DnE(Qzc$QF$s)X)rlbJXJW
zc&kcX^)^{FE@;n5k2UJmsjP(rzZC}STAp4h8a;A%VvubgO+}?fzzi)(G!Xl%ep?~L
ztnxc@H(i1TdH%&5r5?ELd)@eM#=j*BdBM4ngA3aY3iIHXFNF=RL<C~&HOO_H^B%KL
z=5#N4FQo;sj9Cr$f94ue6OEYK*%mN!P6U2dbeHT#uy<%S645O<_Z!Tn++kn0vyETk
z;n?i$<qq(~ycKpKvArv=2sZN9Bu(q@fD<>~ad?c8V5Cg(Y`;vvoevPcsq&G@AKe3>
z&KOo2m+LJS$+NrhAG_m)(Q>SII~*<BINDq&tG~0K<>MPsMM`wpA6IjkdXn3Ff{ix%
zqm%IvMhAA%JQ!jJdW2++SfHYvgFh)z+NS$lQ-y0Z6ayO4cMk3+4@?Q8CX8nb-)YGz
zgA=k~^LM9g2}yHX5NLPrTnZjk4`V%j`~v^i6*!(2NSl|!zj^@7&~Ep25@p!o8~WLW
zU}}%g|3wT%LN`|u*6L?4`@!|F+)tSqdf#XX{)eE()Cm6mtyQkJ3a`ZY9FD4q4AQ1T
z{@)ba-S_TE8~!a+@I|K-5m36-8`TNzo8WbRi>fH1oj12YKv92|)AHgp8m{POhR>DI
zcHgBj8wfnr$%cv^3P(_IVl_x+zzf*2D=21J?StkM&XA$Rv_=Zg9RY#DvjsT|`=kj<
zuUoofRu%9x5>5xD*WT;+YrF94uLu;E%S2HbiUI*@fMEtV(|``~Fg!+S4I713L%bqf
zGPgZ6)e6;eBM1+OL~1C*Wi>gcJTE<2^z%B?451F<)yNF)R5>Cu@M_K)7SA;P>pNWp
zopX<ynPi6k(8IkJR#MKpPdVylYpGBk*;snl>o#rYP${7W*_G5C`Q2>;w5u%VyZ%b3
z#OP*_K*GWr<#-eqg=36i-t=8KH&m|;5@aaU==Us|ky>&RGdlu%H9Q$Hv5g32$c)r5
zM22ngzaJc8X;DT2)&OruQ!rP}VoVj^F3qi5xH3oIoyP-F^_Nx#ocZ4KDq*bC8N8B2
z4RmY--+0PoXOw9#{}dVtLi#P2cDST<Iwip|F$JPaUB#RiSOomv1?<n~jk$q&B9R7D
zm#Gp(k4bQEIb%8B^09L0Fu6!A!DZM@|NRyE1Avn=zQ7rxhstD#k%N!QE|&}O<z3da
z=F=@zYo?bkI-yc8p?>5?{Q$8W$!O;@HeCw(&87)BK{5z`TYYGx#@pM!%^N#L0z#KL
zR5%#mk~~%YTj>M%K-=Ey=<i-X6w3SvXhxArIYMc8$+2JxS`Sz6@Ie%=zmmXFbsGWd
zbW?XlBZPT2QWTb3#a>XW9HQ`fjMQorP=76A`fcegno3(#@%;xjwb%><|I2g}>!P=D
zM=y+nrbw9v^+?1h%1n;iw~@V>SLE~j*!^c>i_>H7WFN&54|nnGmmoUz6o`@A6_$YT
zyoH*SOr>ax+;ujyXuOKU&_LspM|f|Q#6{-8nSaR+tJSy~XB3bKE1;?7?5J_#p?<Ir
zV@;ei3Ng{tcPeEYQmCWG1;H&)hV0*}1th_i=+i@Wp}4=i9-AHU%N7v2AMCJUs?Qfc
zxU>C}*NIzfT$c_T0MWE)Q1Jau^glO2wiFsP9C_&qWz!lBu+P2M2iK-~JiVN8%@0@=
zs6lM7$doZmr;@`PWINlv_HyLFo><nFH(@dg$*}@8bMm$P2xbL)vl($J<TlPjByFs{
zt7Gri#uyR*b}J;}0PoueKTC}W7ZV(vgn2KN8_?;dvgGN6%UG`k-yV10SNBxqf-yJl
z_o-ss+Kl{k6H?);4t=!+?<7r=3pS~c*DlW)-kj&V|9H4;ulB<1S*s2GgS+%goArpE
z_QTA!BBjNe^6A{xGaJ0lcaQnX#mC^91wBi+xzW>#<||1lZhkW}UdMb;)njx7pOerM
zg}b|!SwuBYXt*m^o#?(q@XO$_pJ095G%T*GBiY?A{N}dkOSu+kd@z<-Uv*lB-}jc(
z!;1q^(s$|r9M(!Mh(kxyb|^fcKKM`*{f)a6-H{5M=(qJsdA7E>Pz2XZt9X#H`HRU7
z)WO~Gy7RKPT`o;S@<>i%_~e)3x4-5}*t$_*&}+2h&c6?(Yvaj1FReAqJWUlQ8mQ=7
z_fd5#Ir1vK3)lztQtI!um;;>jFHl}y8!likdMkHw2#2$Exy6$Iq%4k<MAN_Z9b(DQ
z9d^h<BYn3Y55MT3txAqK{Z77;@OI{~naLfg6>Tv{PGc5pSa4<>xD8dqXv7iZpk}Z?
zwZBh+n819|mS}PAT@qT$l7VVgAJBx><uCm~-Q2{EQ##avR49TfoI`Srfjx9Jm?*;|
z-te0YQZ_G3r?1gqEa}DIB3h;m=t2rcVA*JqBL61t>9mhS#p_M5`sYtl<A*%@mtIzM
zI1Ylzlq);`n>K`bx}61@6+!Orz@KN~^MJfbuS8WQS;%PQguMg;r78g{U=t<gHkg3m
z8j(M{GNiYOq*h`A_~rTt)55O36WuDjjEuf*)vjRBs46E(<Iw`JA^Dd25Qrj`AyNc=
z%BzOe5z3Fz-9Fsu^)#`WKBF2@M*>dsjNSng<a@@)Qk%r!=L4vyIhvOKI+Vxg!`Y`1
zZ|OTYR(nz7K!hnOfTLBVndvgQdtZn@i3+CRCJULs2@`JqQyYd;i|`Lf3wLc&1O9hT
zt`@xkmr9p7x{n()?GCC+T!Q0K8Jj}c78q~jd+6~JFZcCw%$cKuN{LiR#)pso$2hLP
zj>!5lLUvVx%EDccm}}VkIcbYwMj4+YXO&a#lm|J^v{1s?O?hfyjUD>aTIjQ7Irk_S
zi;X4{?gkaJb+q~Skt?tLjYuyj<{8uEYgUQxz!Gh0O1Fy%bO&m$e#Oh3JW?1q+_DaM
z*%X5sqTJXk83}wE%vS6xaq|dq{rLRsbSni{^5gk`@utVK%WyLo<K!?<Vz`+=q8F&{
zfG##6RkQ<r)Vhh;-mRi^gr6Iy>3UiBV_)TM$8^p+u7@V@{NSnFdq-GkhAgD>mAR5z
zNT0hiv%lQ7TzwaTWa>r|4xoplb*D&mh>lRKHmhADbl^!IV2?R2`N$=v*ZcbN@p*bT
zUsUq2V!KT|F$8+k)EE?t91vYkM(8K7>Q_*_p?VfQ^3ui{W(H8QkKeySM_c>Pgk-$|
z<eA=p*9j|=00HwViX;IHMISzhl1w|9)trDDL7Ef_fVMU|>z!^o?sQf^ISnw90US@b
zf}*h`-2ItT#vAPy8xbb!YhQ(q{%7&nH`O7)l$|DeBuXO4q@1CFmVBfPS+Wa=xW^gn
z_BlkCT_dRUJc>^sp7P5l1dbj#Fht@5hTCOU^yMjTr_ef)g~w@F%_?8c^D-E1CR1Rh
zE~SnbTV&7*ZLdpgtm`1SbzwiJnt-G+J@e+TbS)w-m{>PR)tvEg=C~JD|7j^K#9&PK
z8%w*1?B}6wr6WBBhn3l+`wBiks@3+#r~=U8gM&`6a1+y&)o76~j%r&$J0uJsH_2zU
zM|6bVQ2aIGB;(F{hbnyI__A*&t?#^c3XhluW&Abi80P7mQ6Nko3{I=m4kX1;AQ)rd
zp%=GTb|T7bHC91i%YAlvG2n=lcMnP{C1J+jhc>Ay+#@QlVv)?AB{_-4O0FoX1%4!+
zz2_Dm*uN0#=_sTmGLui(Uf+p1=m<z(+ctW+zv;vE*4wrn!`VWDy5CWlTTs+K`69*7
zwQ$+040qHjZ-Xi|bX?w!vn3im@5eUJ#TNMXwmRROCA`4pLK&z1K(R*jL>a?L^P+*j
zy(1l@o`Km-$`T3T_6j_-QXI`+<g8G<ejBd8()dx`HQ~ikU2n!1$<$QnP6mIs<z|i&
z>+|D~ty|dqVN~?@Y>=Z^VJZnou+#?SE5(j;2E~h~HeR(uV1AxqBCWJi)^2s5CS$Xt
zso7X)!Rm?M*kA0h@eFkX0`JxLoWrQ?1*U7bla@g{1bs^%0C)}a(0iM7b>gx)?CZ#h
zMdEmu28(TZwM^QS|L<ptPYJ4PqQ760j_bLRSA`^I;B#a#+(EaT!N^t4#5Q4~Q4myi
zpNA$CgGWmOLXI95&G=hfFfqL&hm1nwK~7<Sa2Z~ai(ZAkf%;#q1^vrw)2iUasNQFT
zmEjdFoHl6|>K~;GJvuK?6m0EJw|^Zlfhw?)3BXZ9ot{&M*kXVN$AjALBm?zp^522`
z9K<-7YbK1(>z?!-sW>+@PGY<uL!fY2vcg0LDc{$ByCpJ9hao|BZ#$>l$A)#nP1im_
zH$(LXqRB`4c{j09`K@W4>q;~fD<B2K8i2<(YvHn9Vo93aiy+=A*9tTy?IAWsUTCfj
z&Ge61rt9Ybny9Dz$SxDMb4w}JYGq@Oez-6`pf0s_5Fj*#D)D<#0<|hcxzoNyFL0Bn
z(0RURG#cgJ2<>5#$355RK`3(1J<&fOhHXG_qhWy#-mpJVt6nYQd<nAZtQ^G1m81|t
zzY13#(z9671VL@3tr5VUN|*xiBumqcY4ni1d3Yh{wb_cqfq;V32*^};$#u#!?hAdM
zJyfL=egtFeZTn@L+*Ph>mWr^ZfYC4K2rQQ+0OmY=+Gg#uHzBQ4{f5^3`c~(Vfw3)O
zd)8+gsf;hGUH^l%qC-0L0oWe)VFF+Av!p7M{ng5!jZ$B_f=J}O2@6R0SMV+SdLkCz
z)v3i|#NP8q^M>R^Nj04gvX~Ow`uaK!Fe@E)t>OI+knv(WO6wm`n4FKnZv`4BEb4p_
z^yIEcuW&=Ejub3m1^u>zoB}|KZP7T0Scb=Xh<mrCr@>k3!qmVi#2+CVMo6R{y~I!U
zh2p}f<}e1Z`Ef?cf>@#Sak;#z$`~TTxud?uaDtZh(?8%x)Tll3!_^HPNSy?)O2sDp
z!w*yJ<FY<Ym#=z~)FCSzLQV<V1J4k|3G*zp+0Hf-%ivMN(kvfM=%J?$(I=AwR{4-u
zuvAVLuNuAwUU1&dK|z%kJG@r&6bPR@^X~R!v>H2`t0V%E@61fN&gUx5>1pb^Ci!~Z
zGdA8U+O605QYIglHm1J>(<0FMVCuFlhZ_{*CLk5ubG{wGq6oT5Ky?TsZ&N;t{D}6O
zd5BW5qpM`k<9#-;4-`^aPhzPjb-IK{zX90o_B89AVM`Un0~6OKJx#$56>~xT#enLn
zg(j&w9!xeS?FDke6yLL+h0TeM+vozT1g4`?8=(~>z)DTnpy4^V&OzXgg6k9R^m!Xl
z%Mc2(X}x+N!|1Z_cdrnoXrpe+i9o2@fmg7{D@<1!oQ-Ywc<<It!Vq}mz0i3G&2~}n
z`wFYLo1~{M1?NBTigimG-iK3hPlPwui?^rOjpL26pz5af>P+6lFuq=JWax4Z<=Tt;
z{NXkSDu7TAk5?=<Ij$!}hLa6I(7A!o;aT%gB+ePwx*RxRIgTfrOy(xuJ1Y*eri3^?
zU%U2@+<N*#P;%`_(X4EW1i4VWbYEK4txT;2gg8mr)+CmiDnm!Lv@c}jm{gEv&5iYV
zGMJFrF3>nuLM|j&IAZoZLH$-fvb9u$ibN`q&Sd~76wA);Dc>W>d<nwWQ*?G4$Lvmt
z3w+SSu6(6)i7IC@4Wq|)*-e?xC44Ca3EsOXenT8Fpm*^TH~qgqF6UM?G$%Wcp=BEG
zh~tF{ZwQ6$*eDn}?{=n$l-r~52}W6*uj>8qP`4;d^VAXnFaW*#(7%0PyxYhupZc%M
z<Ew*0VOlPLxbPmo(K;UUvszx;>CD6n&&iBpElk{~Vla5AU9`59k?ZzkfEX~<#J$o3
z`NA77ERx`2*<>&Yu>9#~F-T-85%G4<0^^cDe-Z2N5|C&L<D!28+;mBN_OJ>)zk4MA
z>9QR_<|CrLDIyfVkZenw61OEW)ZfQ$b=ocqp#7PvP;9&=;-PPmEp8a<EW0$4Q9mUu
zNNfF+?fs;;#H3IV+r;8@YwsyH)>g@-mI01n$Rt7hnJZgBUb6s-i1TJ{Fp(3r6`hYr
zx?&!n_fB=V)+Ph&TTQq{BNv9O+tzb#pAurbguNkj0Ut}ZbX*-ZY~)uKAlG1|M~vtj
zgne{6G9%i$XRseQXnZ&6^*E6jEHlp{5Ath%fuqwc5q%Z2A;&ZzY5#%37_@J|E`s%k
z8-JhJi8Z?9h1BO^7QaCX1oJS4^@!07uCMq88`6DOUjUOR678#NtjAQv;NT_aZAG<w
z!JxiX_e=h{W#Z&nro8UaP)$k~L2GBCW>>w^+g=5op%$8QX1gzb<r+5%0V{gV4A#j}
zQ2h1Bui0I9izH^t^8*x>d(~Jrn1yWs`LN|*BRw?b2n8_lZ8Rr{O99u@G8foCF79^g
z4}-j~x{prfsdQ;Fl8?4qq?KC%p>KY(FGT<Fbz*Pu$U9T^PIKDQ`KXVuloQ{2lXwmI
z_hN?1X}D6b37(sw5F74$b`wP>^dJfx{N{2{f-vDfDlK7m>&Zf>v;5n!X+4j(&(W<K
zv~_KFFr5C^88lF?UAeS}<&q6OO6Eq2d;`&9j3S)7u3|TCpwEhci@Pn2<9(;s*2b7v
zVw<v?UHWLB8DdY%NtHR>?v9B-8?}w;D30ML6RWs-BDl*ztNaPOUv$$1r0e4l@O0+e
z%ANA4JeE^IW{9UbQCC=~phmk3t~|DP5mP02Fa`Eu#1YGhtziFtf+!ZZn?NPz4%-GZ
zcvbMPQ?0m4K;qs?aivfB8VLM{!4JKlO~<vSl^b#k_hZj+HAODcz}`rDqlB)Bf`RPl
zcGlpKRvBAEga#3ASG=$`OHk5xU+fr<BS9rzFF-<|o%lbCLXH+hN7`7upIlWr$~MMc
zCSv#b2Yw)T-cPt)XAnQZq;qj96U*vEfk1@3Luc<fa_FXPR};7YF(<kIE0w{x$z{CD
zmB%~i&}4-$qhZ$Acb|08>jx*xollGH;~u%v1`$#&6zlJq$AtmvII2a4R>-_cMnihp
z#<33V{+()gFMWa6!GZV?T!%z2qEOKJz8F#zM3D0jyRc=pZ)(nr=+#sz_RZFf(|KA$
z`=L7lQnc1-{T?zXgA~VW3C>cr<1>n^PTF;Iyic13dC932P|;qZ6C`*bKQp2w7N8Zm
ztZ()zC#r6;LlapLSi#&!Ew&Y`DoFIM?j(Q6o`?qfbl^|kb;NpDd@Cw+c`{d7U&kyF
zh8rY`>V-csM=G?)8tOH)rfE-w9LXRed^^DJ33G_(qUQnD{?XPNsileF0!4zy{ihPS
zebf|rtum!oSF2CsqKmMg37-LZMHIxa%v8Y@TLnx~P~MzI#_s8;t}8Oh)yp%kz`7kf
z2U0@TLgd-K1(2+@E&egc8Z$xzQJ|m~Vj#Q?Dzh%k3_K%6cda`khSD>7&*HJZdjH6N
z`f|IH(EXqliM3MX3#R#D+rHacpq3)PUOrzI(TyYLR%55lfz`P9BKec!`mw4$$SVXw
z(w{O#c%80VQWHiEmV()MJf5f4kZCPt^jt(cnyPB@r~cGtEE2{INJkDT;9|2S#mt6E
zWk9EAm*IhJYBqva&u6lKmKyZ@y%vUtOVmUU>I1W|_L;p|2(%Qg7VDH)YgNAwybi&}
z-Yge^W)64Xk>TvYi*`P1!Y3}I0yt1UsFbCusHn8CN7^)_gCeZvoY0}Q;1y4#{Cm*-
z6|w_9O-k7mKni7|ypy~()wJxRmcgt~u7L`3Ujdqeo%86M>8NPrUa(VwH!Q<aSb70B
z6d?(%W0JOWXofv~Z536hQHOKDEVqu-{l1ePQcSEcS|2dwv%0Hkkxw!<=s@VN40aL$
zw<*p7u}x7{t^-1VHrXCjfPam#I_&#Q#zoCj`g+Hhee#<0e7B*57U?5@A4}KvJj@-v
zm)W6(sXEQD4pIK9PP7nws<^J>iE_57OE=nrS@4{mSRweJ67=fvRpnA0UI~Y{KY67a
z##G=&15WvEV9a)@Z95#$n@V$!U=c`?8ES@KlQ|dT<V>?AVAwsS$g1mYsejVzG^{)S
zGr@ss$p#qC9)OY?1%}oFZ*KP%TL2ktSVaob7B#W%DE#feoz#}KjgaKQgH)N{k~P`X
z7sFYmgvp$Y(RC11zX~IWM8m1Q2}lR)CUZ}5_m>^531N$V|EXp;7q-VW?*Ew0mdZ>A
zKu(Jxb7iTDp3Q1WLPfXgKsT;>Gp+knF6!PKJP+K?qYGM@p?Syg{UFknE41mS>og)K
zB*k}-na{)*XGy-ITIQj~M3JFH7tX(#lDkL;Zcuw|@Jxo-3YI1Ui^sDOemC4NyT8WI
zn|Y<<YVbnYKfOqd46?>4eWutv=REJ`#)TFtLQDQ9pRCY0JqHD<Cx*y}mveW+JFv@B
zx`BkNrTR=y@hwsMi`GADGg6k?NLkhQx}K*ik0-BYwms{~JWz4uchi+e*Wb&&Y(yV;
z(1j%WR<>U7l}XDVqk3V_++Y&Ijx(#@qeME2v0z>@sAA!NW9ht~LiG|Q;J)#{gA7JT
zEG<Wz1XA08#~IGzz&#gDBted>9AmbKUe$yJ<(97Qr8<#Zc9&8|H}d~JqC~rXC2s3A
z36zXxSKmj7Hw+nPF=5?e(wRQeE+<<vEYhaky@XJtD*FeIGZTk;2xa4r2=Gr<5|Dni
zpm*GA3;ijb-nmQ$Mvz>dIggwVYP4~fl|N|On|b+bLu4*L4+-_wpGm1f$NFytpQyI2
zikWEK36>W=!QULuJI}~L-VYEoG_M-QCqt9CJ2-PD>iebGE00W)TK*m0AyN)>AnaL7
z4odIimhN_AE!8ubX3z^<Ycg$ltK|H|-&FgTfbF<1nmpMMD-E@N2*byYHmhhkmgd4=
z8!CFfbJwHE+5GwpjBS<s-4$214LAD71=@_O4o-u%(gOixUL(P3D;B@!814TI;zlG1
zDE@)AAB%9^a}$luuA5Z`0NtLK7AlmG63S4a5uCZtz_mF>N^FG^($G`Xw5^a)LxJ>j
zDBx6va}y%|KQ4x^we!F$TY+hu?j?psg#mI<3MDKZ8u0A20-Y-K5xv#nMX4B6&RGT%
z#P5mUBQHP*h`z==#SUvHLp>lOb2Sno*mJ0xM>+8RRZ~!$&)VxUlAULD$lJY1>c}2w
zTz1!78Gh_wx>%|OB3Yk1aSK?`^|RM~)W6V;QP*(L$Ls?(WY_bzkGC`SR8k-5_l4O~
zfe<t&;qdMa>OK>#CkcgnyKC#&N3Ck!1Bj1*gw3n4!bA<~)h(%|fq=C#AD@a8z0&^Q
zn8IVd@g&qo2w|@uyDg$rRE40cZ$JtU;jVJKxJxDau{CH{LEi~-tx^XQTQcokif`dB
zs8E2FK$~91oqooM>wK=s|Ba|1WNU_}fazp!KaHd<wl~;+o*UXLDRbPHmp4G1iq2t@
zQtVW=XsGyzd2;N9RjFx2eW01t6HPPD->e|b5yTBnPFqTdI%*iv8;EPZU3Xm*Pj&{L
zKmijVaVYD12{LYEFijkblXKBeD7y5K`=8bt?RSs{cGG-Zo`>BM3WR^oYbhSBwnOSS
z=}Dkpumbj-b=q2cPd8L=NZCiZRM>KkX%{J<(x&o5InaG3yic4~3I{mhs`#>z2=|xN
zU<_U%I#CGfcDpfvke1nj;L;mNF@;saLb-0|*hKh0p$QO1{J{+3axhUu+&#y?RP-9a
z(K0Ao9WqlF0*V}8M%D2%N&%TPi_6FmFnUwnL(Wn#bl-aL8=L6f>x;NXM=bdzNgraN
z?MRvSCPY0#0_LO!uI9Pf6&oMm(v44V-C95fl@3l96+8cNt%Jj8@$9+`UCb0<1NBQH
z*y+}|_O<%-9yi;(D*%6OW2E{$1a8a1eQlsR<36v$+h{xe;s2RQCUHY;c<QW(b0S1D
zWkq7m`9m1hTDT4RslzP9`vBsl;z)ek1|qHO)~lNa7=wz#Ge#g-uWG=}uV`QTPSm#w
z4eU9@k6W*6*UDPdCy@?}p+(4;$mrjkyJ2Y@xQ7e$!1zHPLQU}$Wzdbqw$Mr+YYPBe
zJoektqXn?ZksBK}ZJ3A$7h@InD64@1LQ`MoV7~yDXuYeMSKjwCp_2LA^gik+RO%0W
zLCA<~k`}4iA~x|<>#gWD+T3mHI({bH#tqa!(uA@Zeaz?fQsRo6w4?=<5$a*`ZxneN
zO7ni2Z?8Tgn}WUEwbbe&wX%P-k5hEK*bdobGUjoB{umu#pjPGpbh=oitVxr<s~EcA
z-UO`l6=L~kFDNuf((OXq<rVH7%~Brc*iR!7+Nn?ti+iU%oMGQ%Ey28{aQ~PppGHhF
zF$14xl$@)1+61ASSyC^#I`$v@JW+ayU%$S4bTRTfQeIA~((%t9z;GQxn_aH))@*Gi
zM`S2I)WtBaG<g$d8Scqze5T!#t0=fv$XGUBzoR0O+8P=!rP|S<k(HyusE|P2iTeiN
z+4o0XL@TFUEDU(k0DEpojg91Stf8!+)o81;i9|**g%9>sl8hLN%LhfR%}C-&I0i*+
z841NgMMGlg8kYRtUqf&E2qUfYbaHPt%U=qpE$1OX+T=M5db+^>)lrTJ%TStcv2|aP
z0)=}TU)y8`|2FwQT+!BIjUhxrSm?a>S#X;DxGId%WRw>(0X~`WbnKF;BiCp89R<f0
zr&UE{(aD?XijY1$u1CA>{S<b!J^y-#U{hpx63#`4Il!T<!<Y)85e=9sH7o26@krjw
zLjD#6NU)S*K}w!FQDg_;Qf7uXI&<Y?%Ze#>W%mHiY&<bF)y?E*_4fB5Oo#Z^DrxQ^
zODNoCzOckY4nq2l`Ybn1R}L@Y-$F64`2C$!lv4OUy`t;_KwAbyuZF?Ot4Lk0Hog>B
zYjA{H8Ltfu27ND?;5_aLqpFx(bj`1k<twy>rK1)86etp#jCVe~H-*NNWt46`KcAvj
z9Xj6L74KO$y@1;^(h?-AY&_5ewapj$9!dL(4kYF12)4htZZpG`M24Z65SX`ARhzMI
z3YFxmzaT5501Vt+p?+}oTHvGCc@)g_fMpScPCScc^EV2c=VpiCRsg?WDNs<uTWJJs
zHN4YSLA^l{IkUHueETGItwN<dMY0%GYYu244-ol34Ebhgwhl}-`>PWwA9K2!oxy8k
zQ2J9NOhW?er#C|zcUqIZWbX-h6)3=~{pA9x6L^yzXC?{wPg(K~hX+$k<X;ZFn2d^f
zw=HGf7@{JZT=zPs?@G!#0k~F+!MkB9On)K?wozZzsjoI&GnH23#a(Q2Dc1W^m0)IS
zkyt27E1>h@QwnUJpEruOZ8Mxu*vT@N*YJ@VSeJj1sT@c}N>X&nN<n+Yl&%<PdFM(M
ze)JwQW2E#LzVS+*edXAPB?p8|FjSR#II#?ALqAWr2<4?{Ch9X{&e1e%q8h)Hzn9N|
zY#@*ADwzKWyBIrS`|CrgV5Q$kB?YfV4CT<r6@`S|Bi4rhwfBQ@=!JoA8EVH{9W8@D
z0MD;(`Z-{rnllDiqc1yhbmTrroUjnh|NnrlWg{ntJdM`2^VQrYlqJKxg)nhH3DjY;
zQQzUEy%UECh+z+!x@kPtiW)rjp733XFVT=b{q6-+^ev)uqlj<fE?ySvSSlLliLU0?
z9^j$hzkL3v3E7_uofzp4xIm}4(RP5ZNVv9y#i}za!O76!6PDE|4~pgP9ngb<IRjNh
zmq#gthQ@QS_l}R+wI@)uEB_nC=@z&xV{OZNS2<T#_MV~_W^J2gG@&mj*0Wwp$7{Z2
zo{bs(M_w$PeYl&1YxUPGf<-Q`s`8ugJRMAir%oa7W-lD$&G-}<r%=f7(3z=){HHZ&
z%qqe>GBQwN;z}Udn0zZKzlM#6omKgkuqDL-r`wL(+2}Ho{=FHuD00oo%WE$Rg5(1^
z7`anuVenEZy^Tnh11cmr;co`vPmEvZPWM|Pi1csc?-MZ4?b{C8VN9JxYZ>B@rW2_d
zSP>!o`duP}hmhT~{)Syk<YT#><U5r%ZORKNKLNtePxkhQ_qJL*qg&zf_&<tU=+OSu
zniQmjQ%?QcTJ<$gw42?$)V*VnWnZ`MnYJoz+eW4B%$>Gv+cqj~+qO|@+qNt1uK#(@
zy(hZkJ-6dV_m}%=jXf7)?ioAQZ|>(AF@|?V_2+?T2&S9Jk@K6zh4bl3Gjal=-cmL?
zSM~K=b>f9#e(0Y)H;J+lISNGr+&%3UwC~`s&b5lNAfs2pj<E~PuP_tnmmKDOe~gtl
z=t{{2j6Ea5LSHtFXs$Pi;i~z5O&x(kN(%WBaTm+<?@sghL3ICquw+(2b(jibA;Tl5
z@8AUoEB6oMZZ|X2q6DM1K8<^hPfR|u3mGBum7h1G?3%~c1YRXJKVf-`CE)uR;F7j6
zJI}E=fr}oN)U1q6fz}Nb{RlU*Py{C%`wim}qKxm96?vrm71$fbcwjFdg}aH1WRMPi
zjiG%>BJ}@KJ~n*BDjyE;g}RB`gg<N~PlN7eqkXrW#n(q6S@)ZzPKH+{``y-3G16<`
zf%i1&Q0lG@)+v5tAz+q5Whwfnk*Hq>P!>{a!?aj|Pga#HyP+gUufHz^!O}E%vC8^!
za6qrXInDZ|XeC&zW--#BYYqaLhA#OLngKD&v#_+MPdZ~3{4*WVq^n1LA^5k7b}Bgk
z@g_vDfmNNxz%0BHsspgJP~gCqiRG(;{8~~R9>mpCAOBf){ZLg`UK#QGUXTo_G&>Q(
zDc-nBr3I{CZ$dO7_A>2Heh>m4nm2S>8UlhfOoVoPSt=GuE~b8q<ZBc3?J&v6xf}F-
z{?G9<4y63?$2VLJImfyh%xF36rQ&-gEy{V&pDcrKR!`WXMi`pt?Es2t)$P036>oA&
zZAbVL!!2qBd;>}P31mR)l<M>hNGT+AYTR2>Hjj^l)Qg(hm)QQkF!gV|soh1K%Lg+o
zzs<TgJvL7}P7`thIWZrZjJJdP<@4U+d}+Q&cv=-NlAeBvry}x#_oTnAp=(3xG3qCi
z3^xO_4H=S+iM)q8nBv*I$@0TZM~NqbXvJreinntc!R4a1#(mhYCa$-VT?+Ud?M2=b
zD!BRbrPx9yEX$_aVqv#vFdpJAdZLh{g*@l1Xb^~c{7jBYM2NxVa6svQ+hP2z#1p@b
z3KSM-XcU+wrB3K;6*<v{5{;P-FSWb*atQY-t$JSoc>$1@DKZFKX>&T08+F&2EkUcQ
zUJs|QbFZXRTp(HA44Xb>k+x%{yU62S2A-~VX4X#h$R6w&4X-{*u67sC*~e8U7VDvJ
zU4E0J#W{3gkYuXOk$)4I>(`PVVq}WR5L2>;HZvo=sto5;+sC8^awBgmJ*9h1B2U`7
z#(eI$Lz9HY6%9})TSE=#ca|w&Jl_jt?A^OlCIdnXO9U2IlN+J#yIe|9!n-vf?q=e|
z3p0p28$70G9_K%Zu4OpK1H|>T9Fmu&CL(oL;;Ly?hfX}B7v~#r!BB>6X{4-f)zuWM
zPTeED?dM!5%E*;Un*QJcT7)CLRW+K=ysCSP$3edCEjEcmtF`z{CM;-Xd(8vEnl=A|
zL<?rQ_yCN)IPS=D(>@?3p!Gkr>`E%bJ<UQB3J{F%`Z4!F;)|fAe)d;FG~aXCytZu>
z!uI}7S;eWa|BN*M19r59*6A*Tk0`zp2$4Qhk7zl10KJDU=mN?EJxG$@bxWL*KdEjh
zB1%4WHeAq7AEZShqg*-)s$1rpr{Y=qp}Jda^hTfR#B5=mfi!d>LeRu6KX~5-Ic>e;
zG5B4kE^r~=hgja3+ws*K(T6kgVdpQvc5*KzoBOJeBG%8zxc>bUOhb_$<!?#e;uSex
zc!@Jk(Vm+QrJqQ}4#*Ti20Cc)FZ}i#X}9Sc@qznR(9mf83D2KjI7q=K0yKNkP~)U4
zDb4p}lv2_eB`B@dX`kiKWv-B|`3x_m66{mg;qRiLrz*iQ@~x2vHASL2gZaMS$mz#K
z@~6KV#>Kb)dg!9+ng*RX8{47nDa1(`xB8Xz+YCY8621WG$^v_6#%4E29yUZZk}<re
z#wl8=((_AS?PG@;c^H{H{a67}0kVMz+^Bjqrx8oA`7fK}E<ES#ks{o>R%D(wxU?HM
z)CvXEDw$u{p*U+7A%V0_s-1M~9!r2fd{I}h{FUj6!4hX6arNHb72slB{Zet=-`E;i
zLNc%hc%NtfIDSN;Y0#67S=Kn>`4j9Dd!~`$D|;94e+C#95(dCYT1V5#BA|wMmlrj+
zE7bVD;niiB`8x+qYJ!}X&&30!*(S$I3P;W!?O72d=h4lFli_K}ZSGkpN@8aecetN$
zaJ|bPjNlYRVbW`)RhAS0u8ES$g&3czwR7Zm2Nwg5SZgW<n(Ke-Xy~dD12rzY5Nj5p
z<?%#za5JnSP3dH|H0D&D{bA;Vt2)t4Dot1${(cyr8--yq{yAZ1n@Qd~J@pme4*L#3
zGuB|ApVhtSgYGVu{_NnBOw-p<LlOn=dTm0QD6KM**S_vyQc}e8woyF(nVxxsoN76u
z>v{B2-YtBm-NH>*K<!d@H0jT(UUjxWTj#7(`zI8C2d!O|G(58i4qMsr5T95!Q}!Om
zL41$m?GRgfTklbDf5jhmBthFn_GFQE<rzJkFU$*oLbH?5D~WthI#2%!4mI06X`NW@
zEg=A5UFVM6KFEG%!XtNAs-izC{>sQ*cK#4_`EdZE9p0mTs7ZZwpFi&1W+qa#YhvO)
ztwpMRWNk1`<h9Ux{iHB)*j30EW0gP9B$;7VPVUUS=Fp06bZi>y1lg_BGI;obY>u~j
zHj$%4TUP`_*_ElXXBP59o*iX<doDUW0IQOt|8|DRJ<S}%Fj!(?9+JIW-!=y9V|5GC
zx5WINWetTFUc^w00jEQyBY-u7ULN}00qS?vqs6`~A`$ZVJpOY8`D~TNW2P2A!Hw<~
zTNiOSOP_#M@)CijRrwou0dKaGz?hu>`y7%};%J|4x?2n-A|W&-W*z^OgS>i=3TJ~r
zDN9AW@)+2Nk8v9RrDp}a(A%p0UXjUn;G>7Vx9GmX+~S82dV|oOlTtz4RtqDC*BT41
zVqkM;@6bDr_Ee2@yjUT1LUNo%)#xiP*m)7ZEiV4COf*UKO#L#2G(#%r{qq+u20_n_
zC+=NYHe%j+!XvAl^SZBI;Du@0i+CM*(u40F*b9pDRJXQI&HzXaAaIvn)z1Os5=TRE
zGP8QMEZKSpam6+PWKj&D6z9Jh>f9%_aDFsoISagc;F=G&VgH*TQ4Oj#WTfg_)u%;N
zDbhavF+xkkxM5KDg(0(tGye6R=V`x9z_iLNVIJu^LK%m;n^h+&O0t*&@M|EM2Ko)^
z*1%Pvg1oPphFD(%L@T8x5OE3$itCeu;}V0<u)i~L#|zt=yYW59zv<^|Klfu;M{ECQ
z@}DR0fjyFw!lRNvvB1WDIknb$HB-~+t0?`RXnj4o?$BUG$ih6K6UB>LI5P(rT!8+B
zHpG@K2vYy+b^@krmpu{fjINs7hRm6QEIwEa@$pG&s!<#p4oD6ixZ6@Wdd+sJ_@b3#
z#-;qBYj%Dyp>)r~s@A0PFwLl;oc?ea?jZuYo5EOoRVeVZ9CK$k&~L8fawG53%;L8U
zbAvx$vJtT_qxJQpt2q35>yfreBrv;I86qUbkF}08KA)o!{HYGqh(QMRI-2~pCzasY
z<r$5aM$`6ewfpBJk&n6vzf!ME9)D!{SB^Am*oYql*nb#35<eJSlIS)z3z4}NRE7JQ
zC;2{>5FygaIlr?Bm~g-T3;?yJhw{(`P?1yQgc%|I>U^E@M}+i}U8HfCy>U=PpCcL~
zV*N}zNl#tchg87D2L4n0j@zgg_xpr~is_CJ-5U>9b&#~Bb8PE)pI766@0fbU+99aS
zc^PA+e^joO-AOs(&b5kDzR{roI8Ujo(zm|D*J;A=XIbQg9K*YpaFM*jTrg-|kFU|5
zFrNa^=W&+j)iVlQPUP>TN|yx)vBm7s_{lsUFq-@n*X4|(TEUSV<;{c@XB+fpcYrH;
z;hIg&j9HJC9}EL2!B&2{2=}t`{R0`PP(q$$^mbyu9jaP!r}=$A1a=&YAI3Zgq+YV=
z0#IQL_%t$^rr>WIbI-ua6Vl0to9bnJXAE?w(c~JrpO=m2nIL9}-zw8CF*eehqO7Sa
z$QwKKy+OJ3{z}uAyb?bHi3x@rTF(!|Q{aOhl1QUH>AeO;O*7!&QFuTi@RO4Sb%R`x
zDl~mrzl~oseHBo84MS(Ehs;8=DV{HLI7ffr9m-7x?0K|Y-%ca97^Fm3Q>b%U#|B{K
z_HgIUQ$_M-$Fcfbm_~{z9q@A`rdU>&{E-=oXm}`GM0RF}<Hw=^*Ai$(Fn??NBpXb(
zsA_(BBk6L)N)Yt;k+peB*O)gvxFhQnoHVV?xY~+%;|+6Um^_hJtQq1r2czkjSG{aD
zt7S%6D(4iar+0mY!+NpiIS8X7(p~2q-<r)ZFIDJnHA|%PyKida2qq%{@e@elK#bvp
zyMJj-HD-?d7;Kp{+mgj=JS(%TD3#tfq|iUvnL(|wdX1^t28l*_)EkPX|1F*ET{rFz
zjz)O~d62JT^0`6(GZ#mI)|mr{%c-<EY}JJ=%pYaHR}&!DeZhx&RVe3uF0eWK)=H{M
zCb=RVWc->{L>;X^9TeR+exzLUYKS7k4^M93+lgos{C)CTHj;K7)MMvR)joc9G96!c
z^7Li4o}49eukzU+>HYUyY4B)3rB+#bJEjd73O+3+Zg<~WD}z$*BP%95R}DNLmBcvf
z8VNn{guy0Hc--=AE;C5$#&lg3VbmrYIo8aRzydY^rR+O<&6829Su1(WGR!Xnc+wqV
z)-z?gWGe*0*DFz3UcKLjdb15Kw}G0)t^Hn0VJxPO*kx^fDfg^r?v<qXwzJ;p!l`l=
zUpV=3=_NLNB^0SK2ToK?ueFk~0xBng7kd|)UFAfRWq54kvW&CX=5DBnfOZ&cD1J!J
zSxKHSA)5f`MZk_YfQb2LFmoZ*FhK<I<|)0iyFIqBzAKoTDtc;-v@SQP?=bxgYf*ng
z-TnBSVBYWc8jF-hVc^i&^W3yGP3yf7>imiyb}C&?3;YAL#POcPfo^q~M2rMJF(K&F
zsX)ObNvdI%wvE1<c?RPMVf#cHgsNh8ZQi_>0UP?YE|$+FV9b+!bT6MVj>Goa4f}5z
zu2JTv_odma?BcEJp^{|F>RNXtWyPt@KH~r;0y}3*ej3E&J}nB!8}Iy{n3*f-%dKpa
zio_K{h`w+U0z3*AHjNP<Y%3q~PyG<twwKV8&VrV0H3rR*B3tf{O=c~3*U3ee$@$9(
zwvCTsHle6@Ix^txE6ZQuS6|bK-llPphSh~ekEF@A*v9*#=>&H)8iX~nLx7KtUNhaD
zrcvo;-hD*d%7n}^eUhI~JkV(oaplt>*ys#FDo_LPH^Vi4CO$q5XeRct#qZx9k#3Kr
z4nI{Ef}+EWC-2ncjX0k$wAgiNG;HDJx*!HR>lRCtP@hMSCQ$N!d#R$f)kz#z@oG3n
z?o|gmez+5(_s#CjuL3OsW1^Krm#vq0_~7r7!_55cecU=g+*Lb%CcnFpJ#iz0jg%+!
zuFoxDH?fhZYU`OM?xsIBm7(<R<A5mtnGG<mY<&YN!Xi&!r6rYS(ddbaq4t@+Z$}4j
zgrkV~IG9j{^r0Id#|UV4#wRQ-#;bT<ABfB)N&<z9cG_MDHUGv5`1+IZ_M!ddeaGzt
zp&mu#f6YEzJH)yVz@;YH+BxI9%QQ(+GfKJL9Ri1Oxss5I<hH+i7f<VDSzPWqC#}wL
z`nZIbz;KFQP#GUW#oWGcy>68D%oO+HiB~77L9dF=%Y)Z=C-cm*seB-(`gNsj6<%C{
z>^4mLIqZG*x18<R@)y^&)4;KeL^fXUrseL@R1w7}qkW*ISc=;>nS{hOwiJ6quZ|y<
z6DJc~PybF@JP<1HSmIzyyB!=zArQSPumWWxCL7?PL4=*DcbV+Y)Ba5k8drf;*9d-1
z<`)sk>zu+&9RrISs_c%*WT2j7KARw{g>=*WWpvH^@W<oK_L8*DqD?Q^`ev%WeYmWa
zMo$srP=+Zo^$<K~n<lS^SJu~gk8Ma9XyFp{Ym1Z0=NnkYr!R$sWj^UFU(}<Vc^^kD
zlnZED?dV%i^eW~SfhSa6XxIEUFJVd67UoR91W}&x%3a3%UE1sm%+h?lsd%tnM`_v`
z9M#n62*(OHYP|OBYvxN|wye<D`o&JtSk&eD?cVGsao1vzq-RSFr;WmTIC5bB<&5%o
z%xq~+71yPf8sC$d<+BTOJ!*qTlhtpCQm6Hjo5Qd}mFvnnKP>Hy6AotGJ!ik59U#@J
z5N2DPazb+?1nAdCS0`#PGXhJR27;J7Je(er2l^uX-Pav%iIfk2R2XiIqhs88b`Nb8
z7RbN5VVL9gQa(cM)0N*->=KW+j%Ora;Vy%&NH0;M!%(@074uST+;puXb%VOtVY^}1
zUOx}w=$m3|1S4?g>0*{;1`D1XbyORI=(7*@pHlkXBGJM=%J@~e`_g_N?m{*?d<RNn
zGk#G@9`TwP_7MH7Xgp#>Dq}meW`Es1thvi<AsUk^wtR0O(j2{%x>+M%QgqUeA>*T`
z$Rjp#&Q>B>4$*UWT}<DS+#~bD@4aNYc$?)f!*M$DI!sSfV2%!}n%Nyo4qG(1k{O#o
z>J`L_HqM-KV<N@4NH%a-FgD1gOiC|8TbwKGw(MCm;<zk~C6aJ7vk}+cH>@_-wmu19
zaDUs-GNMQJiwDPDIxf`s3^ECc(=>zyJH*o4>QIW+K@5o%5@j(WZ*4y27MfmT6j@0U
z8J?~H84ha>INX%Q=CVtQ;%CFj5$!rn#ZRZ;rH2Q=I8rUWIl0YQA+^RDR}H2N%D>y@
z;Qo*%@QgpT>P@HPyCCkI^_UZ=n+z|{ln*_|qhgg7>9G|3>XeW)cAydh`=h2kH!P#B
zbW;_(h2jOs)-h5zFZQf--dq^(6ZC~!fiKc=hw5L;>}o24VkQt_v@egQh}1ZKElPWR
z-?X=$&tkxd=*?=1`0G-oRo{pE3-74dFO(u(769(lo^5N0dEL&c-YjiOf$Rn%=1jAh
zm&;2*j1f-<){L%R+H{1RwfwQGuOt_Ex59EO9<YUW`xMOEI=eL%DINHL=@RTE5vo7L
zh4}&U^;0tuCaaZiJbv%B#4=X~@N7!Ps8^kbrPg^`hMWXLViof|K)0k`L+Wq(qVZjj
zJTfrdralC~(3c21#(HOrfAV-3&8i1i_AtzdCb3HSX-QuT#U@DkOC8vH<hj%-X)B2?
z3i6qN3s|r@*(zT5NFz`Lnth;KhG&w0n0XrA>LgDP-gS6rWkH9$5}2XI&y*2=Bbsqy
zr0r{HfLVCIwb4tHoZfcL=Rf$@NlRPYbxFd3#J(g?_V|jK)C0Z!hyoAX2bl`}l%Lad
z`g;7U3@L*5$wsB?1C>4M)>#KymYy^c{<+<6idUORR|U4<K&4_#bGxUhsY~Z?WamUM
ziz_#cj0&BW%_9*@=3!=#0ZitEy9qjQVD@<DO2^Twx{Je9+#E8J+kkklYmF?oOGnUM
z;c6|Mt!=7;eW`WR#yqT-d0e}ERupAR{LuJi%qa!<1&Z1|wc3+dc%N2r{r2-aE7fUS
z75Ruifc^NvM@{+V@mQMM;-xVWZ;?{~WjgX%YMsKVG;yg75(>Tpu@`mTbqipya+<g<
z(=5n{nJfLIGqQI8!G;E|A^%*9EqP_@zg41KiGSy&`{o$*o9c%bVuGNYQ-Fee^k_;|
zE9;Ldz83srN8`e-QN8Nab68E4<$|VWvUd9Z#se?dek1{SF0}Ga(6qX@fQoy^VvqBe
zn_-0Ra4$uggZ)$7Erl$-?W9@WU4+2i=GH6Ud<E4YU7F_BE_ZNJr%zT$TMzsJ&G+u=
zsVjat&frQ;1pN2+ufjqSHq1*`g~9!W=Hbz@vU;1c*w7%!P`ujv(`4drdl%tQWP@hr
zIB^1NYF(?>@yH(<UfDteTGPw)<$9>wT~=h988DOLPVMUT(ndWy*OTM)&7HelG8K$P
zSON5Bc!g6<>pC?82Rgc_A@!e?p0!&J87l-dkN8IT%>ljo;eV2(rmr%II=mMM=D!0-
zyx+)Inycq}%f22U-eqO4JY#<J#W$-95d=7ingl+{ChBWe>HAf?v#WO7qUfzU2a&a4
zFhVnukXJ&_k3twa?e?4<^v^$B8~kSN^{cNJ0FEvhi-4pOZIqoSLH7_`mMf{h$oO<D
zX`R8iO+A1zt#q@QMYI<k?WMbVg_*a~Jk*xgAH6RE?cjy2#B8fiibp`jze;7?YUi$7
zrsnF@vofXiAO)S~E{0RXg<LCkL#x7Jt1jwni9u)xnz#NlS8Yo6v0$iS;kbEQI8@F|
zceelzpV>9$H3feu|9<MX7I0P)%%CcXWHvA~x!B*jfnbozr_G`$OI`(LWRO;SR5u{Y
zYpOy;{ULZ)8jM+&MXG?XAkC*^wm8O5ES(3O8LEJ=k|)r(B4(kJ&Pe$x)`@Z#V9<y$
zNk?doTe(H9pI6`w&iLn(>SC|RYT!ZtPcQHojXJV{CbtQ97fTW@W7;jo8dktlUwTO{
zI<^Sksl)I^m8OA&^LJV<w1!OowfZ-gN(x*dO`b?Nt|kJ@av0fzmuA$?<ZM>sj!bO?
zdeQvS?Y+^61;+{~4NM;th=rRd=iEG2GM3n+3dn&)Bw<2qOxV45=ai#=(C3!vC|71S
zq{l-H`aExqLwQk`?xBIOI=_5`9!apXue-*|c#2~QyM5RWfs+87{rA&FP#FJg&Ut%L
z{?!L`<Du_rq46mKY13Za^PA<M>SoxsV+Y0HKtXBa%X>l-3pyf7zh*%H=uW%bt^+)b
ziLJ4dv!jWD4gBB8&d?H`g@cojk?^00hlfGT!rIxykwMJbz}ZB^#K_Lr<nNH9lQSU;
z6Dxy^iLIHlIUy4(J12u2AqzW$vWLA1gS?@olCupT-+w+81|}`SOGdVr@;EA!;8Qis
zQ!0i2W~Ea%B$qX$6O<D=24B(Y!PwGAxRLdh=NTg4g&n8LNc;l#OS`PN8Z<M}YRksU
z-*Aaeox3#FYw*}5mF4WF4|J++Js|!?_%<#EYTmY-MekIs!`&1v;@qz|XoB(AoU}>6
zV-izuZ&av+i?!Az+j7(wfBM^3T+nNo%{)X(yIuy9Djm3LY~?Xfp+JGDV}(uT5C-ay
z$ai_xB6EddYT`8lbKtr2*MQiJSn^?K?#bLC^rZ5f_q78%KHCEfx}bX5yi`KEiKU?k
zDxu<?>sUpz9=OMcb3=G;>U?arf(Is5-+e42_edj?<2rv$Z7EB@2pz^#?D>x?g}9|$
zsBe!cN1^51Lqqdh*+}I|dt*HMeOsLgDZ4dH(Xg81L7J!qoEvP~fZB!S6yc=2_{!WC
z+`tR>8H_x5dDu8;xVBF*<cy538NRUt52xs7O^kIoqty7PmjVU-+-Fiy-B+SisZZ3<
z!%`vcAnI;m7}4w`<ph(2AkYL}hGZpyf-WAmd{u9}Fq_$>SUeO?YOE+;lD;Vd)d7tj
zP#FJpt8{slFuA!0gh8|oSenyK{)BAZzM6oDyXmXsFAy&Q6R>hoq>wg0Xzqa4)FnoC
zBsbqRn;yU@{>*kp6Q(c7YtN!|J&Hf-RR({-YP=pg(kFjBak2qOI?I(!<(tW?8v5-K
zFFW)r`Y+sBpwiDMXfd_HD8+P+D*K4dcpmF=yu<a*$qNc@KDoI*b;B4j3pofi@5Hr)
z@QNw1O$6^^mF@4qJWlgN{)Y+B+Pc;8Uybp!Q2k`JTb3Vi0<$6ROWXVbEAcd|{vR4x
zoWbfFo@nN|x0#wFLs(UV%)1X_koNu09Z{Zvlm&iM744#^W}$Q`&pc+ttzP}t^WU|O
zgT>q-yT5$Z*r0r4N8V*{0D9wnEaWQ^Ppsx2m&|dp5aDgUx2;lR*zx!e*E*j%QJLp=
zbB&_*AzPjgpg~i05JZM6grLU^?>+f<MfwYM7YK5koxvL*%G^)npL$|_`e}^ky}FD+
zs}oOKs7wAFQ9fw7-&`5dpXA10Z7`DN93JG{RDQ?IKli1p7_-fEg3V*NLG8VKdYcVy
zAg771I;K>0FxZkU2gl9@ZI1U`GzN!Z0`s-L2eD&*Y*iI0(#OsB?T5<mXBRn>ti>^V
z>e*ag@5_BLR7X9Z2kZ^v1s!aMXr49OjgY-BZK2Z@wX=h3SGDAbB)G`)m@L+~^f;Aw
zfOk5uoa<2r@9I1=^u{u%BVn33K^-L1_J=^?glr~|v^1&HSQ4+rd2ttB(<2q*tdbQe
zt#^_NrWTEIeT8HooPWZVB<9_uCyhv_pRAK9Jte)#Lv$L3nP&vHsIlrNOSX)QiSwOs
zU(RBZ9fT*jQ}HKNm{)vBG%c<8YWaLzO?ObwV4JT4=%7yLw2Gr)q=Ww0c)R~N&yA7<
zkyGj1M|Vz}J?`u7A%gvW7ns7Hs-zL`W4akV+Sdk<g1uq62FXsbz3M|w{LG(Z4t79R
znD{7WgpeY0MMi-v@{w!@24lIa0l*avXuV~jZ=k0yG&5R)S2)LqYgM9oP}l)nMZQKF
zI@e|F8m|n^m)olXz?w$^jC}Va1B(OM-eoU(JX|d*-#yF)=w!@>zI|VQ;@B!X^^^-3
z(|7ixul-*Gq?yY%I#62of$yO#R>w&i=WjcHD+mY72zG=ku}orX;cF*65;F~1-d03y
zqI(8ScqyEcc$dO6D+J=T*BNQFscCWSe)D7oJ?zSMSHsA>&k>2XNOl_RGB9IF-PNr-
zuUDI#HsW#<q3s0n)EUEImYJLu!{^cnImUMS$Lcv#BSUY#W)~ryaze6Y1KCHhUsVL@
zjpOnK0!Rm%xDIKls{=wC`i!s?vKZ&iek`TY$yiNEU&Qy*N_fY*m3mF(x~Ip9um1)Q
zO#cN3L0elpXD2Nt=6}W%37MFg|2gU~2w9t$7z^3CYcc-)%*Mq=&&<Kb&O*q+#Z1r4
z$->5@!ys&D>uh4{>_qq<cQ6P$+S&gvuNQZ;bFu%6BVi>55ffJnBNIh&AqFJ|Wk&;B
zCwl`&6I&yXf5GQJF6855kTo&3F!*0S67bJ$e>uj^`p={p6iuA$TpW!|oc@8{-`V|h
zU?gPWWciP?VoZNS_J4)Ugv^ZpIm+@k<oMSp>)-GnZYnZ}vHcCX{t5ri1K?<9q-5f(
z#Q+cyV^B76cV>{ZF)%X`*7<u*(a!lVRS6mYHFLn<VLrb90pWkv<-bSpe}b2li<R-e
zIJ+2J{pBth+*{wd8ynDR_qlmS8DWceu}fod_@UXXc${^+M&3w=%}Wm7c%a5cXgWTw
zYakJP!2Af9zJj54Xwcg_l7*7+)AUF@g*u@Ul}-}Fofj6GFZ<h;MTQ36SJ&ZFN%G@Y
zibC#hqUO&055`xNQsx%vkf@LEAu%pk1sN}pvTl_@D+vs=`M~vgwAHUog^Y9q*ZG{_
zO1BhdP0i0G5{FE(hQV_@RLr#!h+nkHjWc=o?+FT^tIy~Gwk9o@-t(6^e^p7ou1NjK
z9)<D+=j-pGm@H!Wezsp0oywJlIMS#Uf7(Z@`X)4+dm1LK@8*^w9j`!7ZZboJJkyeE
ze(@hA-Z=kJt(=@Sc=9Pc21&0UT_%<$m-gSBdSr#!X&zyUFTOO8P*)*kCEMa1hhnnL
zsB`%vYVpkwPK2Hg>ZnSu`*Jvmy+>{DxRTKW{RsBCT#<=NgNV#ZUnaU3{!;Ekp<5C!
zt;)kpfVwUY&PELkXhy_t(VjguYckdlPR$39VKVo=069Q)4`p69GGVY%>1&Mg1?=W@
z#l`zmuwkbo?3s^aWBD<tZHfY-CSoFgCF<tM9<CA!tI5%>Zr|9m9WZN*l_v0HxCuBq
z<JZe8vS`iz3U;Sv%vfEjY=#ITd#J+`ra}d&nrv50WW9?)iyG9?>NjBAkSLA4mA84M
z*i(nPKOn3mfs7Y2Oe_dWF^2p>u-_HjW&5hWPw+SOs92qVk?V>b<$3p$$rp9qAb++p
zruGHF!`=_WPis<?^CJcEW<UswtRuUQO#OVQMxzwinh_*_L=ZvG7^x+0kvEYmo>h2r
zDy)zJKbEJrlg@m?!P4|SJNQ=dzNJ2r>yRdE+##fpu`z~V9W^C_I61FRq3qKScqKQw
zS61DYPJRnem6H`H&&_m6vTi+f==Yh0rWg><z|MjdgG3+h(K3g6m$xDtpoO2QArmpq
zk3+1&JLEOxSwz3nzqX%&0j7VQAlfU+DtH2KaPZ`Hhkqet0^wTeXEwUqq|tiGgS0Wc
z+2`~FG{OIj=?IiTff+(ueOL$wG`0=XKr&7bUE+R{XK~tTz>=#OWN)#A*R{Vr4GQOH
z<uKa*e6X%>B>_wRLCIt`+g9@NM8xg5w8J3@*$-9pI<ZFd_7(&p*m52$e#BSbayEiO
zd~qSCD}Zz?pw5Rzke~O04FEfD&)`5i-9R!65RDJ}TPFyVh%gmOG>300;H|})aRw)*
zM&OvQ+l`>rlaS!B;aAFl^=sagxRqZwOx?OAS|ZePtI87lB8A<-Bhtxtw$tS)kdFd6
z0S8ZlDtF6W4tY~%{(O`GG5hXip0Pv>F$SR%hQLyO9{xLwK6OGAO5zm*{IhRRERGm5
zXFj|7X7YF(k)dNy<%dc%4$7CRG4o*#Fm^ox%Qnk;NgnX;En=Nsy&=jP1F`TfHHgnj
zS7*2EB?g!pYWp@uewSGJ7F35_Kh*Ty-K^`?R#Kz(pd?DkD;6M5q}i*K<%p5DVIO&^
zWI}aalTx=PmpLmj6)8Q?*$%Y>RjP&6joI-lT&N8~+UKDP%J^`#yAsebiv!`Ia#gQ2
z$1NnJE!W3Zmj3l-+X#R9qbx4hkJk~KNRQ8Pf;2dGXC`I|d<O=!v#m{skkT@>@&=23
zNEC%_c{!U{*c|9e7F80{y;rm_e@uQsM=TZSs8%Xg6&(0K>x{47PbOM;6@@1IYmbk7
z+y%-d`y5AOTv~Si9-V-ev%m=i7$|qu=?XXN+#_^>s+1o~xC*iuN0+(9?m>tIC#3`)
ztK+3%OD<>e1n?wRh@P#ENH}Duw2oc8aOR|BzcnMxO2}9uy2O!OYEMH%9p&{Gx<x2b
zcADd1B1m)E5N(Ar%u4uj)eiR;)%@e&quM;`FBO(wtE9vu^nY$YCx<S4mTpn&APq?N
zK+fPbf3MR`^v>)~F5m0e$^ia|`jfLC`G_Uhx}$`FIIkxw7(H_D9w8gBRKGn_oP>Uh
z`tISp6t(7Bj-8m^6%2E&9<jjx8uWycRKp8$^iWYq%`QX7?XrhAP871LV&7H}TD>S$
z_EW0ALw{n~TUFeH+IJRJeb9w^XBHI4#w}18#82n0oobsyt2e|g4i`lnU}&~&OGLlo
zWCWN0IPZOMvQZ!rR!Z5(N+q<mp?%GLTeDLpQ0>w)b}(Lg#?f!D2I_IomtH~tc9fyn
z#pH&Z&D6UJ0`U_LJ16VEw?Wky+b*kaAmZHX5Fl%7lt}nMO`=~oyP5E%oUp;Uy=1+i
z$-=J2`Kib`b`ACR!=)_>h_41k*rQ70g5mqpDP)z2^_u3aZ_tO*oe=6eJQ6@F*9GwZ
z(~5+796-Ya!ZQpXHScp1VPGUX^}#dgn`m9@Ke8*at_9`6?%glQ`Q1KmidlNLY<2W_
zRVtygfdI@TTQPxX-^iv*-llAtkN_w-PmdU#!pys}CaHj51!)`70?L^>w3zEz449PA
zJI*%n3X7&%wnLX;w5{Je2Z>{6a8w-nY0)nTXosw>?;oHE<y(q}mLJ>-iU20@)cR8?
z__b}^U97pS7>sJr!F#lrJoBATQ@E0*TfS=tiXd#q5UiMQrHVW&EV^=j7G$qu^r&pX
z&s>}YPqMf&T2bkQ+}^6yf>Gv{m`C^-%3}{@CNAda1ff|M(ro3!z?H%T&o8#;%l!Mb
zvFGxuYM>0m1T%g1haJ-ruWZRMA}vW=)t4A;Z~Wh;ND&JYNIhMoxYxgcEAewbIK%i3
zj6LBTpK2o{TDFi-J5;--2o^&Ir&=N!c9~?6-m+CPcjKRFYXF?6c%^}+&wDuMIfgF#
zw%hnxP!`$zG<-DvdPGeF-q5{qIL4kA!nuiv^k%h{1*qn{rjw`~y1{}qTfUS+q{x*m
z??y*P66-uZyA{wV4Qr6jDmm;BYK2{16Wnovbb)bw$)8rsWANb=X)Z;H58aSek>_;^
zpB4_d*qSW{Gt1d3iF<hwOWP}TUTSz_qGj@Q8hDrCu>yGwhedb-I2!50G;*A<=3KzP
zAb4P+00Zt{+Z0~YOmc&+jn_~q#Leee1Ca>tV1pPVC~oeiCXRClj?+%}Pn4zEz(;rp
zC##!zEKCgElX2D$ln^RiU{Kz0X64n~{0NjHPqI$PGB9-IW-8qmx`o(w=aPqx%Dx#+
zhdpCYDR5SJVu7F`WwCTc;dA^YgU8)$W0uG+JEy67GK?T%?tviZeD~w67e<>#DEUMk
zbz4AfAwLT8P07mvh_xRYA8XDPu|puq*qTh4Slf5WbRGbR`=b+`Guh&m(-nJ)wT`-B
zUL}`l78_bTXND-bc_cofIy{?i_RZQCnXrewhTsRhR;oUQop$s4OhI)EBqp2gWGeSV
zyW_k*k1RbO&n-=#jQ)=>#9_8H1oa2Acj2$iNzzVnLB%9rIOa$&;c0&ftn57Yw`DGR
z$zv`aR#|6aCamSM$=Ap3zA?0pZwqHD6A-ZYhP~|(%msuzic^0qraK$%g(1>lvbOG`
zw9i&z`LHyrld({0tJVkkHqcL~!dr~N#%Nc)w(l*~R7hoXJe^Hft|-jkr5$-LMSMU6
z`b#(~$I#l%aUYu^o!a>`jvR({bc^Sf$MDgZcN1{1OSEqztp`moiC~)OazNNvp@84!
zK%^HjADafm`A?rH+mYX9_QztQ6#CKxrdjMT+jw;?%Is)ToC6YV7}#lStV*{B*)|_+
zfEHot4_Myin`w(>V#N>gqxSf=#^^1uIKc{$nlA)qyX$+j+d|7|2wDZLJ!f#W)bh;F
zQ1COTh?OM6kat(LcK7$<*VkCoW#zQSn-DaFKPEI~52-D0YI&Hp&Yg9m!|7d)TaHBh
zXg=#<-p2ht113f_7ae{bh_z6>tEU^(b*c(-D*BJOOgnB*hjTVJR%Gp+FiTemvlhyK
z!0&kZ*`^UzMGB4v`+dyCyRng!){uVk6#~E{-i%{Yq!%%L{Oko06kxf`1K2V4LML6a
zt8Lhk-*BX^%m2#O{diP&?uLxV9n+c9jP&ST1P^PJ>p~10&1+jr9ISs?foH`Fbs`uI
zle{yN(~xInW3}#kE~X2^bF@TFk!9WG8i$K~iYH4SB%8tl*V1GJ+epHY^Cn@-Qk`1>
zvkr1)I1Jms&#Ev8M(3B&fRk|9Rm~%kQ92v-Zb9=W&`o#^YRU6mo9^;G0I9I7@*65;
zfD>_;!whA!%ks0!0{2FKt-2=9a*`GE1U`Z?q<jPVk-NI;H|i4$P6Qr*4gQ(2)x{!N
z_Bt3QY^IVjHX4Sp4uvOS!TM6(-bwTMCEBi_&i1tqw*6!Nd-D9ugvTU$p4=>+iS@mU
z4VlNinpB&8N*}E(cBm_Ah~U^z4)AACF(>!sGXNZ!%dI}!t^8Ebfda;QgF<cd(oR=k
z({qxth@Al*XRn6TQ`x#KZ3+a@ND-fOuT6zDxj#4`phYiLaBS&>!Tg$;yZ9|<(>p;M
zRPrnI$S&;3<~QT9gYkTbz&OD#MY6fVc^{j;yR20*e9nu9N}iGJg(g$ZDbovT(gpmy
z*dWi59Xxf)I=*Ji9$K)ty20t(X?tY+n{2Nsx}{Q8zLdhY?F1JW#`~i`&GeLk7PshL
zBzyed{V#fl1L=ayhY&(2a(_F3q=%TxNM*_LZS4Gx`O(b}j9Gz%<;||<JC!8`?H01c
zP2iL3P$aDYhX_TIPynT{Se*^>hXU*~Yw{GtSG9a>(M_4PfF+b2Fs8IFnHyd2EjdIv
zL@j>C;=bUuVJ74+5uLmaJ|PmW<C~i~y$tVBOwGRd$2E5gB9R{~vCy7aZe|_}6|L9K
zIINRK12vtJJy`|}KPt%Kmp*pM6Tig#aE>k>`1`7yigAsb`jHh_JJ9B$jLp~<bK7$9
zn=%oR4SskJd*Q0&!tby$Iz!=o>_#qQU(}|I>j(O_ol5A=qWMQ%otB$>Ch?rE7ma|v
z9UDo%^g}F`=(X}d__x)2B!r)RMzw5I=<aK(t{xXGs=Smwe8F3Cw(dE@{MUj#CLJeR
zfxr5InB$u`yZ3na;&*VWPKztg9&jvTnzY8XAWx`MHkeZV<b}!8MdGRO`nQ6{__^(W
z#|n3VT<5P5Da&1?4_!+zv-%&Knf*0vxF^}_2t9khZ}y}S)-#1U=eyD-MjTwHz*OHY
zZJxIlbuvsx4G8>Tm(=yPcnu!klMKP;9ePiNH&SA~<A-f<8Cv@U?2?+oyw9lZr@fF=
z?u_$u5v2Ix_UjJx+@_w;DhIF0$sP{-B8ECYBd7>ftg<|VdT+GjR!F!bVfIR9TAi!&
zsZNQfCGV2#lIOB3<^O=Gyq%RVI&|4WuUSUNrzSH6qPds~l@MGMxpB?&&)fRcOS!{C
zSW!jy2Y}TX`SJG-!PjuZ$J|oKV6XwZ1>#<;z$ogJ*<j)c^J%XF;aMn$>(*%x`9OsU
zXruh?VU`C3eN0-ds!^<3gB&PbRrLDEMqtgIJ;}ksz(_s<SnZGArq7Yyl;$jO8pNZ;
z;C?nb1+~}UNFogjfQj4s@nSZN%pgcm(=5fNp!W@&Wv<zM_3Fc@Fl6pH1+zTGEp2s^
zh2QDd@<!D>`M36>qba?tJQ?({v8rpPaDL$Ds0a_OQFuCkycU!#7i!4|<bBC=;m^)K
zAFIgP+Lab@k`?Wf7PzuD*uFXr5|<h3jnz2F6giC;K4=Gr2bZpEv}n#6^`<#Cds+9x
zz3u(7_r_7<KlNDo*cc^X1FTp-*(;fu$6K@psLDXQQARm)8zXWr-`Y}U>TJ=|V+wra
z-QmIMu3^MC2kkwY`-P!#43my5uBNZE>P#`ir+=mIJ|QVp{9Zu>50aU_#B~v)$9~gJ
zVu;%;rIxrWMN*m+sX4VjY9Rvx*+)v-Fpi#t&u0xb<%ZT_^o7@>)w~EFOQwiCGL|B5
z)^h4Px){$eeH*@q0G_E>LO-Xp@d5PFhnL*6gt!|JE?|Fd$v4bfFH!4jrRP}4b=#he
zw9Bxu(2&tCZ2lhY(Dua|OE7byRtG@Sg+5!k9%URbn;ms)e(<($0sqeW1s<`R&U!Nw
zef-4+$;_SDu8|R0$l00`l#3w2bGl**TH(CBNu9}kMVuyTQ8p<r^rg;U582Y(I~*T$
zYEj6K+Fm1+krIB-f>REW$cv^9hw8FSj@UV(dYn-9N%aM)#gwi__{Y^ke4QI2Yfh8n
z36682%pqO_Lvwq)BE?|}fI}&=tQhY4K;u-4&xZ)iVj>S9Mu*A&=mY(Z(+?MeK-Z0!
zqP`9Ubl6%CuxOeIGL90m8xiv?LMsPm_HngPa9UykO~O7!aIO3I?qmtqk-rr4@w!RC
zF)g>eXBrN!e`z^OlQ0mIusB`?)VU&ym;MH0^jqZ1^EpYZ4tpi96_!LKDTbN-@+9(;
zk{a9M3cw?5AG6s>0fh^_hf*V!Rjz<B%s1O84~fB+(%KC(&+p6sxouR+MUaT8!6_pK
zGjUC)3t<)3TT+0vvX<h?Dj_~RN<bKuR9mF{$csA#GDY^owskcsqR|Hv-S$ItUrQ!D
zEm^q}(i;BX=$`*be*e89_b*fIzdSK!CYHaJ81uh(#B8@MRL*~-Zyas1*BJQybm(U1
zo&5>%yQE+?Tzb2W^Qxh1=L{$M7wmU_xz#TrTmygJgGF5#kStzO7<)w^ol#3sF_R7s
zfK()diQH#sDR}=<*$z#lVsGFeujZ5Hd^pm)sxrDxz|%xJUBjGDpt)~~=vDMDTZGD-
zb(TM3jc@gtkIQ9b*_M?0Qa(o^Z}{myv;+@9g<ffkVXP!f2@ab6ZoGM1z!FoR&#@M}
zwt%?w_+@TI2>rmu5nPxkp9mbT$@PD%L^0CO1G{HJf^Czj2>GD=n<e{4S^du?`=3(r
ze<-K_TM{wbKT_)du@dqB&${qGi}Bz83jc>8%gDj{U%K$^EtN3rj%0_p#vsq_SFFSQ
z$lNmOk_0AAIkskmNy5#l%BZ*+X=Fw=k3n(A&w+=$kx^q)SKjN#J&gd&c@F(n83ppq
z-e*Pxg#jC&!+R2no#OuJY=a0a{6b#HIf9z8A$YhQ)%Dzwd-SJjTHFo1M+v8a>YKD9
zZ@C?l+|$=O>rsZxUIn#-KO%K33R*$+74w&nF{39;qi4>;%OBmkE@gK03ZZ%WTihxL
z^rM)K(}oh59kyC17T}m>Es((2ugf-bDPc8I_4IL{P2MBH_ZT4dWr}n2%Jl~6fy-wz
z5Hh^+jZAX~^;!EE;F`u^KY(Kjz40x2kEx4-4Ng_2&AKqep@PxxH|_DP0o>=HM#>%S
zIWAF%`i#c44u5T$h08IuHlK|N)<FQ2+iEbIjCUp$acN#Xvg$880*#qtER>Q8vaC0i
z$HZ)wO8>Cn{j3v+*~nY8UCAJZ{T3q1Rv~XMRK4$p?6?Z^Yc8r20d0+68MqRJFkG!)
zOBn1-#5j1+3)ls8T<v|ndudU88{UVR$gvCrIrUhfd|~-Wl30|S@bloI5)ylL3H7WQ
zk+<s&Vba$E^I<RqZ$x8<*sz)~o^*42)w_vc;fOxUIP+80_Fpf~czrCYv<b(PUyPX^
z){Ptny?BV@oCbUT+Q3Rv-7QKLx*h<DRYWE~f%)d}GH7hWAkAfr{IESeVuOMNDUo5z
zm1^vu(sVCN-ofkNig0z&obVaBrVB^6<9FLd*u47(Y=VIIHjWoM3-_=0l!)sV*jc0~
zp_`cZ`xDhkQS6qHRIV7E(CK^^UF2!f?}3_whIrlU;zg564n$BsRFC#RA%=Gwc@@&_
z_+A^B*&!z@g9?a2O1v`X?t_7Z4gK+DqtoT?Txpre7dG-G8V<0y?Opdl%7ebieiv$=
zh-H<C?<ERnUP6oK8DO=p_f8wYWaLcka2=q4`aChQ3gaUNcNxW{l3>uR!3^4jTaB;>
z=;a5j<d1UZAFZ9t!i8~%HaG&*SEEnt4n912@I5~2Rd15>!h%qeQ@iO=<6k{HG+nyk
zo&HES<KmEp5QqT<4H#r&RdK8PJ*B~MlO+qVF)In&*=*jcXl&&<@7@9s(qY%(kV?O@
zey*d%D#xfG9Ksi!TwObr4A;gI@^4U$6&I7Bu<P(CeQsS?`T`A=N%|%ITv8U4*du3#
z*qV!5K20;+k+A%QG<uo{G2}@l0-zYvX_uh_hFTBbTX~$^<DV}XEh{0kN8l4buUQ;0
zGS{72@YyMrZq|z02WGxHdc&r>WK~ja)aB4^PI~!b4&Fw44654(7|f(^1NTqliN@tX
z^r2MC8g)k~7xF6oXu!vqbCtT_waH7fhd)-km_zPK6(_tA4@anlWE>T*OM;TD%t4(+
zS(GT*w0Stf<rdth@1pW(ApbY7@_)Rq|Ng!6FZ!|n&x8=RfAT??{yqH0@V<3)6;$_y
z(pa;?v<pQ&4Lh9C<DR|rWe4WYsSsSkTbWak-Kl~Iu-P?5So4_p%_mt?+w4%_sH{5l
zQWKTR5@$&W5g%{EzE`4%e>5(@0!O=VJc;}uSm|tcw7GaYwv#3mq3~)%o6iO2=fM+e
z*a2PtP375|Mm#~VH{WR9qP7Ajcv#An)=|jE8=omXv>gTYy*WAyb?`y7Ao_2<`acHW
z|BYgQjn030hW{Hr=fAAM|D$})|7l|~h_MqgGyRAA`TxPu{9h*({SR`nF){xaxvX#l
zR|lvArC(aht$CFm4OTYFGOVsW;!U_S{LItRpT-KDs`*la#ybkPA*f@lBe364Kx-MH
zWY|}KUrXYDlhM_5t8^MRCWKbvKGg8VKb32c(ru#@Ece1m5lC&^RY$ZOV&0oX_vSU;
zzWC+tC)%;@mD%#LW2&p)V7&k-?qA1o;qV0Afo`%rQBzK5eW+mWX><t_hg~y>Y;Q^P
z{7CV?+GQAOo6X`$-9`TSAtb0_Pgl4S1i-GEW`eb|*7)OXQ7cZR)D;~L{(4Jj4vqT<
zIeYhmAbXKs-Bk0L!}qfs8?Z{vzy_RydnR3918q~i4Zj<c)>=H96a4FNi4;^L28{z4
z>Aq@JZ#ot>7GZ<XzQH74k_5bY;j%{fOLPyCY)bLwW)CttH4M_!u3B+1V(P{!ltmj@
zM?m}(>Wwqv>p<Y$&k~w~A`MGbcRTT2`o~7C^d7o-O4ITxnHh^;<udSvKavBrKtFCB
ztvW(nBVdm~(-&cPm)rqWrKfmOgri|KCzz4sH)Kb9hy94m?Rr0gQmm6!X;~y(gE%y%
zdF{(w7V`IwB$dRD0Wj$YGIxVGZQ$5z+6pn}<oo301m9NbwqW-fdJkjkd7HIs&`_Ft
z0Ed1bDy|<VB@`4;ItX~9na=6J7wJ-lt-Kt@zS(aZD#Kycf$nh;wQvNv{6T>p6<=B|
zfw0vK>i+j>_yNNxYS@)MbOea1#FIeV14-jZNmZEFdK0;&dC~)0dHyiBHjQ4$C}t(E
z_e7xA9$l5FRb?MGFIP$J9Ja;Q?I4`AFddT%nW6&D_iBZ5?;+%|bhC;s_T|7}{b3-g
z&pCC7p)6bk^frI}wcMZ!twK_-SZBL^=|I?ct0UnklZ9o~h!n@yJpP`iR4g68Ts+~(
zPjrDXW=|V;mRrW=wxhOR*!t`hsOeo1?gy!vJ7ggAN63j!{Ej-1ubb~^gCtPCwAnu-
zC;G10?YzLDhMu}M{(!bHTx&6$1yJ=sVwq)$%E8@7h>1M!;wi9K4Wwt$NNB5=H3fMo
z;gaK;Cg+C|1cz!!6`!p#tZ~4Ny@Aau_7;Qp?<aWk%{_ben=gl_u)ZZZ<Pi914It@Q
zEdF5@K^(oqolkKCLG7-NIA#*`Jb}=X!4g){qp4?Ej!f#|v^FI$58MzF)&_HVMAkt)
zK}eITfFRgLEOpw8Y!EWKakAferFQ9F>glY)C|uHqZ@r5MXOmVohHVY^KM9YbsYFeN
zZ`6BH?XGT8u-eY2k{Hc?3@|@Up>LZV$rEpFil#N2tTlz*s?4WW)VGxkxf*t~Lj+!d
z(+B=EY#$95vRH+5&<ii0V%Y4#$P`k5lVdHF{24otgv<Xx`lX~WQM#2iZm7EHqDa`$
zsJdhp;nB4ga8R&(FVln%b4VJC<~1E2JG>4N5`0fu0>j?QI1giK9s*;2#?zBswq*R~
z&jF*#`;%AWEc6$zHi;KVTHH#gmBkN5TJ};G$`K0>v_3^peXpA{XP&<eXdq2?1K(w~
zo;2eleFVI#*4a4L-Hxi$fsFAxNPg<<Y{svf2D`}$QV!Gx`VZ6vZoUUtW;W2n)Iu<2
z+vTCee-i869`0U<u&!xt2)eO1L(7t{5+Sutq}|V`oGDEU4WxP}o-=sZ&_u*YOul>H
z(KpG7(Xw#ml;z%cgb9oLRGht~LmZW(BjtbQS%L((42v3z)LSWpvctURr{j!01o34o
z_4h_QHQ5Z}DW#5Ztw6U`0~aMPcn`ZX49+N970dWR4C~gt1RP^kL$Qtl98SERZ&%E;
zJ({Ic5s>I$FOSC>r3>P6@Z9*$<`;2<hYWO6u_fTXZjtifmKQn1nd#nAnd;qDrc(+Q
z{JaX3!niInyFRQ^(4+Zv@}+g(-(Om9ZfmJLkUQRH0@j6yEY*_vzg+1!S${^o2@zLL
z9<p803YAN}{FVi7`UqNa`yJWDRg?k$!=nYR&}$qTJ<nJD%dLUs?g=ix5PjlhD_yY2
z3T;K|-$3`D{F(o^{RR`q-{kdwrJ%C0F#q#+`#)1@<o_QTs2_JdYXr0FQ5)s(o)co&
z0K@v*+DM~4Kcx@2el`@7c*PN*@;KU~2NKH-44dUZBEQ<UZWy<TJW{%MYVy#K#Of^c
zczGSmB0!HH+5bh|I|bPmZE3=3+qP}{q;1=_ZQHha(zb2e#z{N-RNbzq8y&Z+{*J$2
z`fWe06??|sbByt6;46P8^2Xc=UgxM1=0sab)j7U#W`|i=C`N@kwE;P}!RH|GD8vIh
zoK%$<JBC3caZ*Tmm6F29lr9F*Go4|bu2lf71Nr5+G-bYCVU<W~%&}YIg#z3}pWjh+
zVL{NmzK2CiI;T0LQaFsXkqXet+556^y9&)PpDU9K$zY6=Zcgy&be9FfU|yf~&5ILj
zf+>9o`=Kpm9Yrr14|*m|$>3OExyA-3D|1ucWov#=f+^ZE!{U6`(jw=XR5!sgtF+oE
z@-j&aX4Kj5q|~BxHgOr-ftw0ukfXxpIqI@_69{i_!YJHQNhw~cKh5Zh4+zkvUVk$v
z%IE^DJ>pvCv5y*TRL?U0S#6AJ20SwzlA8YFH;s?KUo^0^EJ#>gwfNPSMn!)8wPh5%
z2VxCCvP&ScKM4MICEH$60V6c#>J4^VfnRyj92eR_r^L&9Se3j=P^amhZs6$swUI|R
zq2262GbV;OScS+-R4<l>Eg_daB^t0)f{sfzGq1<@Xr`9bq7$}5aWza|8BkHssPs0b
zWyy~LML{t~?;IlU*<vw8Q5VF-q~>jgw%Hc+E`^-O`aZva--i>XbPz8}S;}}l4c0xi
z{x5!WjQ=KA`(HXemjB~UkMZBdaQ_eB75|s}yMO=Q|NFn}|NNt}vHz1|EzJ}JdV^(d
zH@Wn8uCYCIa#M2A*nQj;c40*S2`)xOP4Q@w$g?upC<4mSj9?=nBX-cmA3L~T2z_YL
zt$>|OW_>064H+V4xNt`*U2zgtc+$wNjxR%aGkQO^$dEBIRS=nVPLY`!0N=C<g?cio
zY#;j31iQd+6|EYnZ&0b_mC)+=l7>I7HG#TVY{3O;GG>r|hM##8&XPV@G!=r{ti_=&
z<l9O|+0W~cRP|pOu1oR07Br)+y`E|eZsm1>rqh4Ox~<8d@Y-i~K|;5@TL=4AU?*b-
zaJH|#YI>|XwEP*M8LVVw-(DBo5oJZ=Ud)*viiUO*v6_aBkV<E!kJM*piW2Tfy_pIi
zmz9oVXhncs9Gc7Icr?2Jo+yEeUFzmPyYD+8ach&D7>P>j;(m|gbFi)j>&GNhanl?k
zqH^mGxP?`PmHpums*Crt+BmUL+I;af-aTbBf2}V8TK=6K!r5f8a9RXcJ(JN*5HVPb
z)Si)jwzxkylx)n#P_jI|xtx98OxHt4bQB&(F*Q)0(pJI`t;}e<Nwn~OCN|zH@AkmR
zw`C;<eYg28abiF%PJHl%$E9cMeIPFA`xbPrB;YhR1)Zcx*I5fQsXD3{K;?BH-Oz-)
zbmw^?-7GuYl^o_BQXkybm^_(Nf=>vED@3Bs>8RdJ;|MGV6OEEG-ntuN7d$(AtitnJ
zz42QeFl<x5c@|ntj@;+m+^kD8xep;c>=%5_F2PojIGH^TB8n#yqB2V;^<(XTYcFxS
z%P5AEVhewF%<moEs%X->5|AC0$F&##+m>@;bkdT*9BA;0qwPI<XROO6DL`mFTHK(g
z*F@g3Q-%!;G$WB9f_^+`C@Tr~t{&P75#<9-uWbh@H)5fzRohyCe|1Cr*RsrijKNHd
z|525g7}@{L7xAy>;O@dkzcD508pyMbdcOX&IV)Sg2Z!-=4XZsDX>X?1?%1hgFW=w$
zX#PMDn4Mu?+9OYx1S$62sXh@|k{Z4bNXgB{yjA-fw$jgVsc!zAU_4j*#JM83t0C&H
zCn0xtL2!#g;~s#{Pqzs$V-;@5m6)`lQC>n!f_ntau=i90_4uZIL)A3CHwZ{2z$3u*
z7F4y?=qE27CvDxXmSP<X#qc@o8~qc+tJ^o4?W<sbJHvS)ilj!RsV-#hoNL1B^>=uj
z(;RS)kvWLzVuvEiEOxn)Q`HSR^fLeI-2MqX{|6HM*EI4E;q3px49)nDyZHa9A^M-h
z!vB|%;D0}j|MtG+;P@vb7)21vTn<Mt+wnHd4C*pZET{bRR=56w@!VN95Tzav6Ag2@
z>wD%LgW?kwI>>hc)*600{`W!k?w@B^;!(TRXmK4tsB%?TM_1A$Bi7Y@-4u;(@ID^c
zZ49yO^B2Sig8P9WDQ1$|+5Y%W<-D`k1E+~QG^}WNpwd)@38yRj+pR@@T97SjaRjw7
zxmY6hBmaO4Uu|wm_{4OHFqi$`LWfXyyb=7;IF}xBw=eCFt3^bIT|a)?wW?(uj%7xp
zZQ<_;Yx9I32OlTgZipd-c668D)jpgp1?l;vD!-?u0Q~ldfeUs3&|_c|(z|dxh>0bP
zWI#I~bBagN|Auo4`lHu4>B`JluE7uWnTwB2jW)vf(udM<YfC#lx}CHEn{?TYa*vrI
za($n1GO&I%F@@Ph=W88&3_O9722&KDl@S`Vc_(cIi~t#14(Q(zm5n!6pZuA<4Z)`;
zyOT<9!aGw$M=d|#X<m|B603_eA^S*3@p4&nna!z-Yq!ZGRcDtiMQjKv8r3L2P3BOq
zsNDu>-dwGn*phDFyRVQ*(SC~QeG1V`#X94HBE!^!2lBVIsn{Vi>ml<P2uo$V!@J8n
zoCg$Bbgv(ZBdax#NMn28f&Q3L_JbHZnW7U2v4d@1K^w1Hhsb)AXRMz8^;x*qQm7>W
zd1BUXgi~i??pB~aS_l;e(qn$^!w0URyR?GhbOFaU;!OW^n}@xLz;1o>XX_g|RhM&>
za{{5CuJA@P`EQQTP2;X+=8M+v7?%pS`v@hIf~+LT7Hx3QE&L)AMn@T1RN@cTkoEhJ
z$8VW(qjfU-Nho7<@hHO)yj4DT!pQRzn3-UmSG_@e4?8Fuau*fw^Bs5!P1nCKKkm8D
zSz`dQq{Mo@NWp4mP`EW`s$A8Xa~du%^WDMWJdk@C*&;XhB~sgaY*{tbMuk*`vWB6-
zDhfG8=w?@XK&*QFlXI)Ak&)YF#Yu;Ob&FV1^5yILG_nmKN(=(u>O@9rrztb18aR@t
z1eATtNoHPEE5?)QPyJZ33e(<<1@UOJalDH*I=RtGqg#ML@Fz?TLHrpEQHjLS4a*W(
z>t@1}CUD>G{-+29@=%s848(*NFuD(v!uM`17TC#)7TegGBaJ8dLnMsa$A;Q-O>$s-
zOOZ<Pw}t%&WVwsd_gZ7X9^t>b4gYHr=YOptjGX^A+x%~;2r;{uwmBK2+xTkQSF5f-
zw^<lAmUynD<};9Fc3ETz`BezIqa8pR{+$)3$KvYORCFFj76ikK%)l93uRZ7vj)y2#
zcv!X1NX=IziE-3oRe4>(RoW`Pk34#a31%0h1{iTF-)BIgl|+>=Ag+|EG6%$s10#Qi
z_pIzwv@gpw`B%<ef(HlbJ9W24!LN!dNyuvWl$NeplRh+2!~SLcs5v@(6$}{jMp`-?
zb@yLxx$b9FU-Tj@Z<@9|&~=yOFaPRz{t0XTk7B|4Z>_oF|B11L@gL>o|J7pg-#APD
z36iB3W&exL{=46VUX<hS$A3W0qMQUw|M27d|G;ej{Sg1#8pFiO!ug+|Ewn24oKc|a
zI#eX7Yu80st;sGw8>7w|`KF2M+_kfd++-X0F%O5tf!k}V$|xh@&lq;*HW1|oo4Y@H
z#9blq9s^H;(95y?hxQHkvKBZ%{rB(sX~2a3D$A7@C7BrKsJfEoi_Lc5NkX)3MP?8p
zw6@M6!Lgeq)$*`?G-E_Kd_-X9KUfUn>X$z1SHMtq%s|Rq50%8WW2(AuPe#Fvu$f;`
zUTx~s@oQfAqe&^(u(mg=|CX&69>&jD2nfEwW4{_$Y98U?kxlPP4V6=S<1)?I+ck;H
z&1GF2+B3Cs>iublx8DDpFO9&Tns-jvPI~ueEF-|+l}`gM0+JyA%OUbnE}eVZdB+8e
z#}Z^)l-91DK!sYhZ60QFH+?^44o92qG9t=sSTO>rf_)jtVH>E`M_P$=GE66_6^b%C
z3JE!rVSci}3uP&c*6A$kx5j=*i?~DK7~AR^+S`44x~Gf~ou3Xe&al?Y7O}2VN&|Gu
zE(F;nbOBF}S@UBL&&!6}KHB@ydq(xp)%yFr4{6p1XUrsT(qaYqR4H_do^2oAweuqC
z<>|669YUUQ?5^TSwI8LogC5?P&;(OyNu?ptoqi9ZY10EyD?=adnLv0_b#DJT1ExHD
z;%sjNK8lhxs7}7gENXP7XI*s~mv!Qk4Cg}8DxO%E5toLba-I6;dmA8x2P>Ku+D9la
z(+r9bc2koiWTn|z%uEL8R?2ka`nXAR++28t(fjCgyT5glINe<KC8r{&U%jo5;q|Tz
z1Tl5s*CXGOljViXZ!L`D33){hfShvdQ^mwBN5YH`213PpVVd{qrs?0<YN!ORXudsh
z+X=*CB)x_VJj!zq@<=bv>t1X|^yw9@cbFGJ7(pTB>S*>r6uI<Ri0&-Hki4vK=#AvK
z?3Tv(eQD}{MCp5!iACpAY`?&bHE*Q?h(D1Z(q39I{Ql;jW$V7jFI)Wu<KC$ufw<d&
z=2f1m$LEu`xhUkYvs-~mG5VVjKDRySTNI_XQ3!^cBA*_qtZ!e+1cJD2JTU~zgmnY(
z^zrNNM8!NVTy;fFaRh3_8xQ=E{DDt^I{OKYRnV#B*BzMn2As^R1EmEt)ugzrf@73p
z7mei)(46w^kqT?Sxhr)~<|=|MGBk1QaI?W-H+vlV^Ls&DcQMm4s#z6nAcp{J6Wr5A
z_Gm+r0_c4)v@U-0m?2_U<o0Yk8GxM}3&=6{o5nE{n_wS#Mdy#h<@Omyft5+xZ5RZD
z)^-{}P@->z^ltJEAQaWV<^D<ZLwsx95NPvS#m^%HXB^&Eih@Y%_iuN^-b)Xa$stPy
z>rRhjph>?(@D@SQoFQC^k<zDyld+mzPLrU6HADy`zWs`b3r3pJnfkWYE-atTt4*T)
z2><=!TppR9S5go0o%gL_!Sn9sBF@aWCisX%b)uz75V=;%P*if9%E^*_8;5^+8mQ`|
zF)IiaI_JVw-L)bmO^krsxbexZ7*w1<W&t~o>E+N}2-nPQZAFU6o9n0fm;}t#s&J^W
zfw-Vbuq|CIs>|D(1;E=o7?c`r?PPL2((6=)BY9Iy!u4rv%wWZ_6~tPf&16?M0Atn0
z2GKv_*?ieu-=K0yAbRkU@1ydO*bL7DnWIQ7**S+>M*cy1Tqp`YXYX83QEY_#f<+eD
zjh=+nDsqbUWeHL^5mGVo20+B{#m@i^MP(ExWS!uYJJymf#HGK$8dM_-4UAjyBQgW%
zaW^R~_}t6}Xsch?_*GhE0a4F>Mrmj7Vlu;oT{nL84t+sE&RxCFSwK_7IPl_^yz=9P
zw8bh~Uuvk{8=oK+G_4E?`JG~tf_{VR-o->*I?v>Z@83#d5^4ks+Z-Nd;2GL;tzuSD
z^#BGl;xrLu*G)H>Tn70g?fk4z@+K9kkgZ_=qCUwY*>%BmbQ=J*s@rDPNZtFo<;lT*
zRLsRJJt3?7wii6IbM#FKBq;tzm5VeHgv{}yFhB6<1_x-A<Jr^{jlysLdlpSmE^e5F
zgl;Xg1?Gag{nNE}$&y3>_<_KMc(mXTlV6x?gcwpV1E;t1>R{Ll<;{=-|M1w#m;*(F
z=xvkJjS9W^%LTTqf9n7!C0&SLN+D4|jN;&qVXyM&;`b|%>&f+24V=By>PV7)zBa(k
z7s2K9eTL#DOcjcXFW)q#YR6T6|LH#R4FLTSYrAWy_O*?_HI@AKNU{WlqlY<PEdDir
z4`gEUZk`@Q6-yQnrT#jPCMl-GOLCDUazNvB!q25iae589?yP_E>IY<>pVh(C@5h6a
z1|Zs;uSQW>W56Yt5m$q>KEjT(FfAmr!|=`>;i2Nbm~BUyP@p!GTwfYtpDySff*j=l
z9i+<{NE54SDzl0a_y&Q31%**mZUg|>{_Qqj<q65}`KuP#AxoULw!&;4x?3a#tGMQN
zmh4zKqqdK8=L5rs_T9wuKZ)=4Mfhs&DeI>>$0$#m*2w2&7brh@=}^I8ujHJluoUa2
zzz}i<^i9z8)9MI8zXhO-az8ictA_~Az;AD4$1Y~@c$(_y>+i}Dk@*RC2`%E9u#yAM
zC<PI!O5seavu#x4_0n#rH&8K=vA?>NVCbknb&rb4kaq0FZ;K;cOW=i!VI&KLjTC0y
zv?hx`H&EOAKv-p;%3RHKyG^n#05#UTbL$b<_;jg!{MYX+kw`*R5(o;R@H3q==q9bp
z)yA!iTTbK_Fu%)Zws#U^DWvePxZ3kJ5(r}ODPwXXEDU~nNgPUL*BS@La2jE^&z?;r
z5lP9|&sW32X>0lRJGqB0)33z=s17tf!FmU{oZchmE6QZM*66DPiZNmZ(7H^U)vB5I
zkNHBqCQJ-GH$;5g6*J{;T7K-B9-H$&WdJPN=4*I)%#i0^sTMEf=0A+GBy+Bwz0vB8
z4MV<Qk_v97`SSX2&|2?MV39K(I1Lt84g^Fm1%ws(5M3hk5V6jYF>cgHfQFhpfVb!n
z<DG1Xgop7qF?AU};*eyx=Bz|>RXfi?*u>40yB}QofRk+Fo|uw|epOzOy6S|`K$6%%
zHf>_vME3{;?VHLoLr$&tif4|Pupt$l+d&fVe~cGp_#AZ16t8rg#`9_g@J9EmfcVHU
zt|5JqO5z6QBgTS~_{TD1UR#q0^*#A-#<9mi>E!-GA}q|TvtRBpM%(|w5o7q_C|i8I
zN&qs(oF$t-Seqj{>>*T-w|sX*laP)>=#afgNn#)O;?M0J@|R0=G%RlZ9e^a9*xIVz
zEhbZhRKQ{WfiguXMuy4z+d^RR`3HU0&x!$D=Cq(YNP`S(tgpy0hcl^-F}-T^KAxoH
zdwosVpkY!yI`Rk=ck@1IL;^=p<G2d*PYBMC0Or015zsFd^UQD}hUT|Xk9os|f7QnS
ze<S=k{<Cx32?D6gE?M20UzC}EFpd>7IsaFW{jZs!|A3iUm{|WO3di_YuEEH}`k${U
z(*^=_D$KuUts;l#%L_RMUF!r*M))-)NCl}SD~$>3AxY(G;9dhu{|4hW)}zK1tR+Vu
zICueKPH1&a?rcZdZ<>OrDcTC-nelR6<Xt%LvmF16nMomwM#-*ibU;a+n6H_G0#H^*
z)wFp{ayfvNjYY4CRD&7?%EkgR?QUD7o1Li2Q=1N7z~T6nnJ>v;?~RyRTZ*&AgG0Ge
zpeZGVazf@UA?9xTx}8}L-FW9hgw%hfg{Ez?wSw)-3Mb8juCmtW>kRSGWCuE!&3V_|
zmfog=+X);@5jCHVe1AEIpdjbdTnsY+9D0wsg+iifwjh@?+8V>$P`(91=z{oc92uNL
z@*b4;4;TjBJ|=-`iK4&7WdFsvLr*`K+T=k>z=igQl+vUdJ|5lZ?RTX!RyBBt;VWr{
zysE@@$wsJgg?uH0dYV)CgnuH6H~rKeSUC+d;3wSGoCRqI+>TuLn!V_l2}&h+=?g^V
zYd;wm?=1>3u`exCZryT?6PKHBINIz-6-!-*#o6F_h@(_IPw$OqpCPSO6s!++XV8^;
zK0=$%1v?`4kHqg5&A{Cxqo>C<)}2^!4h(O&rf?B#f;^zEZ%>j-N5ku^p}%z7;|d{@
zeC<hvOU>@oBvA&n^Gp@2$ezF~_+N!ue4hmF%NNJMOXWzLH#zhD>=ICKVKGbr&4fE?
zWp@+%c4m$eepLx2K1Ghw>5iP(2u;zC{j9^BWXNZX7hJLUXA5L-G$r{QRZMdN5$l+C
zzh;4N$nn+UD$qJ&ttxp)c&$R~eMb$9riF)c#ywWSW%2T>uk4Nxq8-)?up?1MnmNLW
zwTFgGgc+x<>9e0-n=wZILyruJC)Juvc0nmfu8v?VyCJ;(2^Rxu?Q$x(O`f~A@cN+M
z2Jfbh5WzCs@@m-F0M_zDZq6^RkXLPm(^cBS*RE{Sr-JOTP}ZENL93fyG7H(l{g3C5
za_wH9ne!&ML=;r%pUm8}?L!MrH1obcFW^`Udpra;s-8DM?Q<J%OGl6d17SqYtl)!?
z0BI9TZuzgA9-x|NlJA#LwS35<w*B`c%?(jIsbEIqN_u^ioV{}WoOsqJybd?n<R99?
z9R;<fBU`?NG6gCYGp=!r(#gA<$`vo<VbNrkD1jvyY8X%xy6o-*Nt1>vrd~pB*LcT>
z#=zvCIkK=tm;hMl&7Sm84t}l4{v0FJf09~&!sE_&mI`oVSaenD-K=)Cxqq6bgIfIv
z_Yebu&SdGzR|#rNi?vR~8zReqOYg0Wf3o7ZrU*e2CVASNj&U6|;pUDmSpd?o<TVaE
zbO9qYNFV+2RF(X8rtRp%{!Cc@lD*2sh9`OzcH_#y|Mg%qfioPRt-hc^I9T>9#CF$4
z<m3hG6m>skUyCKD`KlFgaG+(_k38%y6_J|M5y?~!J*&+W8)Vv2ldu4j!sTSoD1M+@
zd&J!B=e*H1uS*UqPt*ZNjFcrQP9r@TtHiIkBd;TiOJYmrTJsBnWm=^`-#xc^?jwUQ
znW@3y$BspB-Gx3`N7(DxgU8aGQ*lTYJN618WYr~@ocVXB^D>EJYaC-fCNNu|j67EI
z6I#SU`S}}Vyrml($TKOvzK(6K1Q}NF6_JQxxys8J!^(g~?w6^QL{O~4QXDF*YYo&W
zCOJtjwTXJf5}c?a+slu=G(h=F8V(1-M6!pZ;f`Ewn!^EpCjR#TnuUE3-jGg%w@}(E
zDB9Rb4o>9mVE?UpUhA+ubJKVeOVQN@3y@8s61~!t7onC)e%}UoLU#t_@e)z*udWCV
zXc0R=5Em~>OLzyn=XLU#1GSWRO(Q<;)SD|efQa)}H7!31HhwplEp;=RKW7yA)fuqC
z*P~CY+Gc*@@_)=es-^xop!(D%GSyfa5Ha7EdjTEx8yDfrV>M=*5EC(lyYM{2MoJ+Z
zuZrkP+BNn)40es8s)0lXtW+xHGX<_Rj9ar@Fmo9{iF3sG7rHq;ad)=E)t)qu|6Z)d
z%mu#9EB^>!A|YYGm-L#5L2rVE`?NdAE#H381w8LZO&N3KmdRvlo^hG&fAk@|tP38`
zQxb-9HD)|%)J=h6<jEz0B`u=T&K__4Hj=g19O1FTg&dW%F=8Q2yUG<vIEf}tNW-XW
zctpi|psDPJZb{fnW)QUnC}|)7gqgS@Tm_nfyzZUP?lxL6bF$`K)t{LWRaq}r#WQX3
zu<<h>xz6F1=S@Y;6X6=A0P(~$fxc2G_`|6b51w#b8ckp82}<fBRy+%_RSHi4zhA}E
zHb2B9v??f_z}GwB;eInHgwn&=1k&j}@Hg*(O^`&%31)PuZjs;i4?=aW{iet+pmL$e
zAvcF?J9aE^p97g>RJQzT9AB=hGy6)>q%&|QWO7J7j|IIX_L8+vdHj{$!G!-MP@;NQ
zzf-hEiZ0_m#j!7<QJ$~1`r+xcN%=MBHX|JXyv2`6hB>cTrpC~2#d-4z2%kX#;S!-S
z)B(`aD&M?GQQq;DUEy}-{tqn`txU;}WG)5ZqJjSV5;|_WA=CqVDYth-5FhD`Ry6z@
z(r$Jr5&eZ<&V!!z`4t>$A{=IM^ntZB4zGq1OEd$_qR^5JX?aTzqj@LqoKUfuyAn3Y
zSdhvItJ0FhFXoeGv_oIMF!mIzP4nOWy!v2Le8bSfq^hx_jBf6i`4L?`70x6xO@Oaz
zJaY}vnN!VvN`1vp!Y>g|#v`cezcy6YW<)ry>H?*%1r<#cM&lC8U9wZQF^&y!L;<aR
z!XY`xMgII2T&wD5+Y3bt^_Ef6+N%C7kJ`~#8A;K&kVdF<R|_0van;ZQK7KQ#lyYDj
zCE2mfsbA~%DnU4b;RX$XUB8kmx@3s@%Wtb7F@?vq(w!7_WT6^ERDbLPdM?euGp;nW
z>tHBB(|9lW@st;LPOsz`^K|+oOEr*o%!kChc$Y{VEt*X?DYmLB-1{awXJ9b4DINbA
z>QVw2Oc7H}SSWv}1?@};bm>D;^!R8f@HzdpUDi*=9UB`-6TrJo#={5(Tijl23nQBt
z4vbx++W`Xd(m6*5DMY_4UVDpvX_f~CWY%maU?$|5VxlCWNikVm>LgN%$8OP@%hXJ6
z$nEL-r7BG`0&bn2=BKV2iyDHMZG%zTBIuX)5yf$Ws|Avozt63-Jaa%iu}pAB*7SsZ
z3Q=5L84Py;jkXVIe+A5w2F9|q1YS|*v2<x(>n`y_#m6_Aq52q1PiZ}f53yd}Rg2hg
zzkm#+8`Gub-vsC(Sp@tBS6D}m60hnpEJioVp##_$(ZeBZw9CT-tC~CocyE`vAUT`J
zJO7bj<%h{BltM7BUWl)q^GXoevbXa40wT?DXX6#VW~%(}u%TEM;QKXo@{R|`M=_4{
z%7Le-yF=Z6O$818Jpcd?ldR|1S_ut6fr(`w(Nf*j?8}8l2X~h%1GdkW@Y6GfN6xBn
z;pGsUw3G5HEw_ts_4%5t*cdg3qNG<cnIQA-;(0|``J7$_l^3}?8W9)BMFL2MT=m`y
zKX49N!z!MEXP(sGu-7RnWG2wX=a5ogb}|Lb%FGfKtR!7(N^UK#-I0H^d)^(Hc2<Kk
zW-_D1NrXI+b?*uJ9zSF1zYtKgPRO$Juf161!EkPC0|s^O9l>ybOX^v<Rzk%v09vI}
z6^z<DyB!ic;Y0B;THs!7u8chPcV&;k18|tRVcyu8RcCyAEaab^0iMSf&FTcMjP{aJ
z*|}Lh0hllwY;&>Di}hnc5ZQ7G8(wVElx%{nE1AYHyJp^ZH*YVJSBXT0H0z!nM_vnQ
ztbgUIvmzH_vaUpHx|!Cxz^nwrQ=O2&{2_V0mHsX|L)L5<)Djb5h2YeKHYr>#%7}xX
zkIuaTCsBpoJW@vVzF+1k&cCpVCO?nv{}hiwJgQ4mQlCS(o?H2AiOv<>_ppE|hD@<y
z&HP0R9xdr$v8}mqXs?^3Bq=dl`rMUWT_e+2GKd35<$TjO6wjANN2<vbFheF=8^E9U
zD@QMdV<x+%wynf2Pk)!usNddva@jwTQe^S#K%qjTXeOI?ctNC#g{e<Xn`IiYq%9d^
z>pX_JO^ao=y-a-4GxnO*UTnjLaE3nqD`)dF2itilP?ZPF4KXiL=45DTKgE&|IN5i~
z^zK)AJtxeqf5r-a#(n<TCPLMt0pD3!gMExf<kE@vuH|Cf^g?#=%IsSeLlm0bXTS90
z_$+0o3Uwk-Qb7LSHQRce-BMZ%s_b@29-<33TYu1Sp~8iYbZYdGU7&Y^<w-@e1~W+=
z*B(FHhY75B^NPX3hSS;0P&BhxWQOhZj;jFy4#V2XL|LmCorc!D9g`YpLir@=HZ}!r
z9$#76LHYVKu}F|=Gocn2{kx7)s5vh#g(f2A&|3X|n!KDg^RfhvKVKLl-|TaejK%?6
z_XfP5jJk9J$|Knmh)`#c!y+mT*bw@*`oK7*wH!!1{I+jE3xu^ne}$sq8TK1@;pSK>
zijYeP7jATpmp$cdyh^^7Cbq2j3hH!fms@|_ilh>Fthhm3o>RMH-d6;bxow2j*}{Xr
zrxF*NSQ~*H!`soTz9;zA*AP*%k;mX3VK@a0j>TLC5bAwe!$~VrJNx3Grdg>cY7*EF
zAaWvN=YDE>>TsYtqYTIKFFlsufMvJBJM?_yMomy=IBr$D;P_0AX{ITp9G@rX$JY`s
za{>I~dBD{JE}q9p>*SMWi$9JpzpTK=qCYY;$`%Us0+4G6fIt{x^ei)8r6EKfu>hP#
z20+r%l+X?}RBJ`;i&#>2xIhbsEPE;Ew=4i^zlp1eVLva{mRWX;#gmcPBNxFm@n8!>
zdy2q0po1>xj-tVl#uj>~TQ{vHGEs^*SKkJn6X6PMND<uC>r^EGQ;5YKL2BI7v0Ik#
zTe=Vk4b3^@GsPC+r}_=uD8%aI4jY3cBJ5qqDOr*W9x$pM)*A={F-M;$I?(}24T1#z
zs~Q5K{urbiB^L)+pXnXQ&C^~-xn!nZ+T0Lc=3Zj!-p_vZ3Byh9zEkcpQVJ=ZMe$gI
zZ5KD5oX#c)nAS7F#l8vQ<|uC<1E-OrhYx2A-d`20Www7~R|P7HZy(`=4K06`nu-n}
zxmJ2#F@L89f37u}Tn;OU=hY4p$fS>3k!A`Dv&r*bs`J#tMc4o7J^?CTy#p#1_`xng
zls+75UE!@c=a8SL$AA%6IbQq$Ua=5{0OIGMJBXF4cqdQh-VWBXsE;~H7d^CERf;}I
zBmhQ(3ZUiihD;4>-T=~ISkGE4DL(5wZH{sK>d*7EUVDV`$1Mwx1Oa-NOt(OY+D$VY
z#HKwihWR6ncvacWk~bZd0KZQ>ti8MYQk(s^Q3YR(<wJq@vc}_HuPs462(9Ko2R)F-
zW)bcFIuL^z5=Lht7?`2AJVGf6c#ov7$}Q>b=o_sU7$`nJ(;Sxt6Sy^bo0c7<XCjoG
zf7!O<<=*s{<ninsH_+1e_YPm>X(vN7+(#6O^eY3`ti<Pv*EGUae0d{~nx=-o3o}65
z;O^Tv|H8?#!{@rS7beIIT7;E&-it~<absdjd#SsC;7#K&^azs<HZ6u+K1~7%<E<ms
z!X~)gvGOrkybn3Db>de}jjql4xgazljh>H<OV8Oj|5`+O=FEg1(E+PTF;Iv?Jo(Y~
zXUUb?hwqo@W1Ktq;HG;EGj|Lnfw&GV7*n?vFTu4SHFc#Jp?)wN!7?*KVZ1(>X6Q8c
zFf`*~XkJ>0+yQ=U;2${yeFEUJU8Z}V^*{DOT1r7EtrTsA2w?0vp&9iq!n3hGUZ^rK
z#$ej=_<p;j-3779CQ-E1Z+*LvKlO6HD}m>PVK2MyDh%?mquC5i;cqm~3!}cygKqLM
z_rRk}p_68c!ZWs3^zBq8Vj5+>sl51z4QBJt&JVA0b$Iety#93A2)NJe+k*{o87Y6|
z47U^eKl29mL2E8osXU?5(paZ-R}1DupF1Q}sXISy+LibuWj>kX5IpdZw%+O9x&gc9
zQK{d_q4cX%m%j3FqBpPmpo1+p%4Qc1ob-=E&_bxdSuY5a`*5`Pk5kqCeqcI+d2=`>
z4`b=QnAYOMzQ(%3bEbKdzoukDgbovk=OarGV%E^f9yI8Ek=h?_3*LMRuz1|ogP+%C
z%_QMCNl;ZN=E1krjRw4c!c{geId`j`ma%M%;>I}MIzB!8FB~V#pYdg|EPQ>xAR~16
ztVEtoeU=EO`lB$;C8L9cDtTivk{)ig{ygK9f;$yxWCk27_bt;_TH)nGc(J-oaca=R
z@~1jvuI+>cIAws1J^qc!<NI{pZNxanrHd=EpoKpM;Tc4((CyDrKX`JIgP?pnoXCe%
z0$;XCcR@|@G@dj4&X^HQgYIOUVrglJH>GZb2fxdI9?8%Wy%mmcFlw^z=Q=ahdzQC{
zjUF0)cn^&9gHP*ViD&ZT-T(q}EM}@O_U1ec>tsm;H?vt9#jZo<%?;irlEM4C;tmSe
z-OC&K{1naqnmL0b4P~Z13yUY3n2G|X876=_FM0+9b`imRTlvDY8wbB84chcO&-L{9
z_%1wKV)hJko)WFVwWhge()b`F^eFjG?vzo#UX^(3at(zPNN%F&OGLp+Z!RISi(4z|
zWChtG26a4I*m`rI4ci-LK3q>rPhNn~V;^u_yF95r`)qz5b>1g3G{1vRbxJ$mHDpYp
zp)foRvs9e{XLNN9jM2^nN2*FG7{j8ev||DEHuv3HMh%H#&O$S4<EUmT$ZNYrs4{++
zfCHd`jYfgrCHw7MNaT|y`GATSUj`rQZ@3=7nxIf0dwHX-hpKceUkxr*H9$Qq2UNe0
z_L{viz*Epug+TyotP%@bc|iO0%`Ag{$ZZoo%<>7vYRE(5<XST;S=AV?HKfi6!>UON
zzv&o3rKbt8d}bX8iDbCy`ELK!67^2M6;-|3pQTZ)UF*Rts2Z4yS?`-~@EzLKpHfGH
zqR)GWh@TuqSy&D_jm+?igSrF^QA0goF?i^p9yRZfG4=If0CgLPq*-U(^wLXs<>cA2
zgT}^I0~H>0EXkD>KZS)CO#gNg;z^1#P->c$^fLn#pYe1?Qf47>1G94-d|&^n5V^`Z
zVYWffycM(O0id%YPQL1)tR`AF@s;;{av-@sXb7#^*-_r8czuDJQB}LVURT9Y_+62<
zdyb+ihBi8c+Os^0W=@F{B~Z@e>HW32+ojez&;|6e$+Q!#e?d!d>E#Iu8;n*QyM(&^
zXsA0hG`YOYzv+paq$<_fjKG}8bU(OLdd;RS`8ima*Rh!BStC)PZifhUBgt~ZJMe}X
zm*txZ7Dd>*gAUcJweWY}of4(NkZr>r+<9rm3^h@6n6I1cklmA7dC%>)(CD7Z{Q;Kd
zPLBj`K~N6IZKrrr!MjWwPk!2;1S~cIQV$BXlGg@iha&(Hss=WY@D{-qhs{8YF%q#$
z80ey$4|lmmUS{eFOF~zxaNKQ~qq5)fyk*KxsS4qKHlgO4$ds^n8uvrDzs|ymfHq7q
zkJ}cb{E(~Jk^!Ajin^b}MHgtDCn-uc$tw|KQ}$I2)Aru$&VSJ7gWh6Zb3(1)RqARd
z#W-6mhHBD)tzM?5=86LWO4|MeE;D-t-Yt@WoX7;I=aQ84NhkWe)G~Jv#lEl%a<5R8
z13}rs#qq)zf5VUFaLf@rqw)EA%mMLxMel>WWS-Tf6*U?iwJfS4(bOdorWF+GS@z3l
zGEvy$q`}H4pSNnWp;xC=pW-7TI@gMjs${3oL5W5#?6Wx)Jti96{Q7argdEJ2_7(?*
zC*<sZ%*e)1!bzeq4KjF0%^A-c05EfwQAenH6aPBS3Nrj1p@IbYU|A9b_KuKwU^0lh
zHI_WMt$v0Aw|)GU3ay41Gf61EdeVJF^@d2mW$;>Qz$AK~|K!0Eb20s(iC+u-lS#^J
z%nn4L7{-BMCBs>L*WGul28dxr|5LQPq+iPkk_I3OJbwX2cqMe<Xo;zrFZS7R?6L_o
zSqC(NMc?9feMJS@ir}CTEggmkM*tKb3S!C*CxAAUOud|!t8BVquSDIIk;f5ODhV>K
zEE_0g25@zXInYoKb)b=52w8AkZ3@K=e~ocEGe%TdI?Gzd-G_$R=lKB&f+>=8`;NRz
zZ>yK~$+NDAJBB_!H8nzVh|~RN7q=GUWNjnda;27Y|L+>vY3^!8=b`SZqj_vIUZw*o
zKLcv~5i!JLkIhI3F62Ww-a9I)z*N1nvE|AvPf@)L_s_$bPeP22eu>tcG)dUsp-hxd
z+H}OD<0fXM*ue@dG&|G=om@v3{g~JG;r6D+gxqAaxGHs?H?kkOpMk&bLf#Y_dr&&f
z=e|25E~4S&J|LQ8$SpmsqchPo%SCRXT=?&ev_tSsBL;4x`{6kzln`zLC5<WM6=3wo
zaJFUP5fHQ=fjN-L75FF~qK5`QD49x(IuQD>j>zdIgGkWkEH*b8rB>ygX5v-%jG%8M
zs&4Q>^>XqmLb-cnO>Xp@X6L!~N2UQ|nkJgI?f`$an9bTV{|mN->7OhS{~`+hf3hu1
z?2P|OuN<FTCI^$oJ360Xz>yS!iKKRk&2kaF_nKBrKGa2fJ=Sa(iUH|G`l7dHv}lbC
zH@|?xF4&gP_)$^%Iz|3nJ)?J@1a)i*>@t1Qf*%+6v1n2@^sp4KNHqkqYh{E+?XjD>
z_qJ69wTSK#BIBYPH#IP+DXp?gjkYFxcE?S;S%pp{j7@v~b^M*Y)r@d^6Bn6gPu_J9
z?drbW{(FScFFN}fB*#PO^-%`J+m3KF+WELc_wmQA{j%z@e&FnLz|y3Eaq<FtM#{BW
zrSOq8-n3U4%`-OIyS*nrC_&=256U+_I3=FeoWq|Is@fH8vOd=s9Sa<xqURMdq8!05
zDZH9g@hEYtt#&aBy}AT1{9hgFzd1zyTU8a~KT%c_ufZ8rdiWVK1;{FVchvvtng6vi
z{Xb|iW~TozY5%3gn3?`LKKQK*D$4~<KKmIfTA}GubaF4~_7#Jre#x>f&ao$IE*s|i
z%-M{f?)!AcXtR1_R7rM#zWXT=j{lJrs+9_yOXTD+qX$WJUG;V@SP=+I#wE)6@4`ks
zb@GRMW3R&W>>oJ8R=rL>*?<MjQf?fFzC=UAF;`yNLt1JXAmTNv2eMu~Rw-iu!1Z-<
zU|nL`PvcRjj2Gp$)9dTxOd9HZ-C47XSogHNj+u64ujk(*xAn?Yl&x|x9{m&?p~J6(
zpy_>p_UcL8v7&5DbS=CC<d_XhPz4~whx<zO89N`5BuUK7rH<!Q$_ZO9Oq^5!%gO+Z
zI*%=`cv+R$0@Q<ppFid4QPxCcb^8z~@#?{fPBRuM`<UTGzh<N_&ibJwtL-)Feng-F
z(D0*^SG$;Zgsf%WWfG9)Fyras#<!OBR-SEDAQ*4s@(Gj7Zrs%@v(h&;#L`eNOZ6*y
zS-;8pJE4Y8%(WcZ^WDdl$p8q%ZD7~R!OQZwzsKye@NtvD8p0%?>y#qcN3}Df`K!M%
z{5{H8pVC{!I2zTLH5?}c0i9AfPcUenROxH>$bR)$b-U8wE0EQ-?BeO@%_fLN9=ft6
z^Ye%nsJra~!M{Uu92C!q3wAuxR0YW>Ih%0Ty}1a|fZSzW_fil#6e|QAJNVCH!)%;6
z+AhW)KRXa%Sp&3?SO@e<Pv^r5xtq!Qyy9KDYdfZRygaZJVSI+pASv=A1T^9W#Q}Vd
z_fDs)NFpbss4Ftub;`x~6_#%hv?{xSl|m@CV|*uV2#|4u?gdCA>usm`Ot>9}^`x|Y
zl=OgUz_MG(8J2VJ+xfaNII25QtEV#q^;^KaK;;@g$pK;GE7p`%q0_@Ugf-`{r$9*&
z>rRBi6Po}A57l}O6G0s(c=8lc_Qw_z@ZsOwAp{}G&Pyr_kDU*^z7!<nPOM?eM!;Fl
zDSyRM4ziB(6U+2o>a(}$tpaR3CGPE{v>^rZ2f;^<O@1SS(YSM<m`^b}4R-8-CP_Ea
zC<*?~4Y^Q?vmu~cn{;<Z6LhtOV(5J>77$&r&Dtc7>b5wcrzE7t|6biFu~`ho7g3V=
z6B~tB?;Fm!=~~ZD*v@vKo|Lub5SHD}V%ORtD9Z#TwBUc445F3|M9Qls?U@j|Hi~4T
zonD+|EqHC(T*`J62|RZ8G?sprq3@Enn3JJYGEY41$yDBT%%~#!iUp<eT(}q|sId`k
z7HbpP1hJ%s1OuxEB*`2npDhk3^xFSR(D6^>$DxswZ98QcwogO;7>Q^l%*|>W<sSK`
z6hFSe+i+T{BSEvSRHolqTk|Q=HoKHBYv@1=`8lmmV7>F)xz?>D8|Y$ZONtTrEbFVI
zG%ef6af-&Ixsl&cUF;cP=XL*9_{Y_JwXDT(lW-wX@2C2}(Dko7@IL~X3c?HnMM27d
zL`qWAqfVZT6Y#Ql@+(b}vrDnvpx`pq+iP;`;a(UAh6*1Hk-nJi&O<9l6<<4jlPwyB
zS4SD$yy@Q@Z9?04++02Gp)vbQDXXjTsqd*5?`y=)Z4s1~$&gh!e7l|u$5d&`a>wbD
znvse9fRDr*wcfkoC;++(1~IRGdLn^KcPZfnQ@m2jw)mx9PZ${HDL3Kmk^b}u_34?5
zG`aO%rDghjhjmAD;Eg{}anCj1s@k@NAK1DZ&A4o_#GKvFs}`8`2@L5Bs;sE6F={~l
zW7(wz77J!Gnhx%qCa27|c;r67^5bLdSuY31GEx!yXD*{mWR=|wXszMYV8mZe8iY#g
zU^i|jO{-Y$Z$oxgW!=BKkwsy%geymsUYzb>vC#^LS-;(Y+%8*17u3jk-V-FA1Id+M
zW+Rt?P7w^02A0sl$DZj!9bU)uSaMeL$$p*pBZngHU^^yqn%e@_QjzM6$2PMlz}fwt
z`#8Y@VQS`tzv_(auu>_>4n7q0KX5fgEg{=XG?4ZIxwn|nE%Z+~qrin?x!V#Iwas<1
zCU@H<W`0p@glKfWJCwzz1_o*9F*V)XvOZEcGas*(JfC%UAq^-8p+^_`(M%64Q{#dl
z_nI#AO=<Knwt610<`|lGjE`ckVOYT9Y$qhqB5g62w$cQO&{oB!330p_tsd>)=U+#_
zIY=#i<4#NGgdrM9I=Lq%J_YamCEk^G(URdyoOQixBdS5q6y`e3a_t8_3l$R&8<Xbk
z8lP0$rHx<$vhvZ?hN({M-mDeq@Y$>eo9`dtEC^NX-7`#UHr}1x`(-N)cqt#sj5wdd
zkmF<|IeE0k;|T>_5ufPUHR%vvg``bw%K;`HF8xv_+{bLx4#pHfV72;GgZ(3us+Nhq
z4ER`QloPFng}6SQ{VbrYzS|x9<u@hsc}8PWJpxURd9rzui)<Mld!e<yiWn#hL$C9@
z+dq~1+Q|{T6)OOWt_%J8jA+BXo>bN>L4M9(C_03`RN$(<Q7RStnPRlp#ii^R5j<PI
zt8eqHT>&kK3J)i78V27KSY&@1as!^K*9%CXoGD8&?*=0VJk1D%Tvu^gj!lH%8h0as
zLD<P*p&M0^E5I-tQ&;;*!CtxIhIk8w-a>{YYb(3w<mV}0^Cc^hj3Q~at=7#!Oj&g8
zx9Z}Zijd5g_)-gx>6v(--uK(PH0!Y!GAbQ<K9)nOMi~>i-+k(cYlMTH=q5i+0xNKw
zp37M?CcSe}*$Z8_gA!h}-q|n(@+QB{9hDmHubE5CL&E7FG>kw6k&IK3po*cmq};ur
z7~12=GP@UiDV0Gom7n;K<5r~Ruqp~ZYoVSoMg&rz#N@S8%qKHc$g~=LT)7qn*xa6A
z9u--!(3M*R;G)nFIgm&d%aJHMq`#qsm%~6UAOTrRHU=0-gx7Z<+h6ZHn%s2a$N_ZC
zf9FN_-4N;uJ2@__B*As_j~M^mHn2H36-2Wo%g`N7=pE|rBO?r`$<;9HEb%Hn*=0rB
z+%7QG#|@^R60La&SA<o&GF&$@cEYV<lCoEn$?|t1?4<+7_;vYgXGI%c>`OuZk9$@f
ztBhFI47kW=-f9R&#l%?dm-FYuF*663Uy8V0m&9Am3~OuG(2vxNJ)$Yf+?9;Vhxc};
z(ij<96M_7&UIe)#M0G#zig+WtSZlGqeDczpj{JB=Q(?mz6p+d-Iv20CQj=4L9}}1$
z?I?*(g`43aAj#(nM4S|_tKmPRF`!T$yD1Ql9`}YKp^&DIC9584X}9*hpD-0Qbf|ei
zcy295L+Y!?1)42?lwdr>Kj&);e;|!}CO>>(P@?_8%*!~gltAb|aMPYt7kGo6>#}GD
zU0PF`M&{Tc5J)N5(YQtft=WH|(ZFJhudg~B{2ksG$KPHak2uB4ZGH~E57kecEM;2a
zMCZgcgZ=$(xqDug-kW5ANA?RoUkM9R+sFLeWhr`cn0pbGHf93~q&sBlj~i5@)l;}n
zTbjY!hO!wBQ;mz_`d=Slc)U5Ga!_O8wmu6Lya3q=wFVIv&1Am=*$M#iG&{tr9DQf}
z(Y>gkHJ5a>sjHYMGf4o~J<OF2tuqdF%RjWST1^aC&!Tc1!hM2LaC5ePd&MaRFxR^*
zH=XXDBt+X{0H^Aa{oSU5XW@CpcUh5aC_dgiNcOV?`M~FHB!^J}&p9hbc7Q;)$?%lL
zIFKg(f<xIyOs4oyA4Xp5PYo=F0=Zm*Kd0bkq_}~uBh>E^o-N8^NOX+3e2}^xAGCJA
z41RHyXu+R{P8~ElMtynl98Kdlk5&%8*w+k-?s3A}F)PH*8-Ph#M9IiJQhD|f&hhe7
zIbic(MGuPaIoUnsW$9Z7>!^|_3Usk+>j<6g!F|@u_B_$d_17$gaM7Xv6HvZM|L1Qa
zrwa~r*a!M#t3U5E0X`g&w5Z_#Zb9Gdn{4CR8FaG~vbvz6PiNF9?pY;t&|6TTibv*>
zMM|_4iLyK01O8xg8p+9+)0^jMBR(N{Efe9#;~wQa?|P667`pb~uxL}nR<pl1vSG19
zCl+|{fPwZSZGa0ypJOOnbu$qmKkcyeI&!S}qL2+&_>uVdwpB1g#8Qgd_KM|3Bu>y%
zgg$W)F~F1{7r9?q@YK~MY1I{!!e48D{9N&ILqu`?o&cf<xg!3awSx#mL(7U3u2RSH
zI6TTXGqX!AL@la!eMpZ{u~Bd%2#FqCQDd<7o@CcmcUz2ko(rntEOpJ3WTy4+D%CYp
zraxT=*rp1ffIAMC{cHvB*pvJzcxS7CdLXsd+zWxd{ZBR<R_%D@29@A17ZpWV?Np{&
zYUL=krW9ohC_yS!anOsOtZsB4s06g5KP;<}TqL@CeF`_ZH_S@Jt!9hhyESPrhr~(~
zDAxoVSH!_ruil)e#JKsa_|Ni<EUVIjYIsvt)sGLU$HMJ6ZPm+NEk}W#O0r1jo_89Q
zRhOyj!XJ*YW`M}Bt2PHc;X*s0lh%h7Ypc25C@!6_(zZbJz=J`1HXhOf6tYGVE8C7P
z>Cd=+tT?OPdHQwHUp5QR?-+lkH(faWm%X@FuCnb`o$Jh#(>t`QfHfGzSW$wxP|tBn
zetAMl__)kn8L31^+CnH#0dV6WE&!2lkL2zOoyn9Y=HD?#5x|AG9pq8{60uA_{VSWX
z7ZxPIQQbHGqbxjBcs^Xc#}P4=r;U|h3xz_2fgZN{eElshXBeNntLp~@cybr1)K6to
zP{)2NdN^(J?IY>8u!?Tu3@{7Q1V9R1YBGMQS|kLct>)9VscF25Q$H;21*177SFH=t
zoa+mo#SmEG#e_6_Og%YzTh~4ov6$^CaJax2=Z)Oqa_HMINx$%yb)Q8sKKbFHy~BNH
zI$2ue6lr!h;#!ci;*-<FLJzi#&O_NMzi$j$S!}=(Z1{qkR{haLq@d`2%5~-4jR;rm
z6P+o;#H7^AGU!5<Q3L}`;l^MsTzH2lWg?ssa+LP!j9jtbzc_LM!ar8rh^;UA&1%mK
zO)iR~G;aZ$k!5pt#o3ZQNe9@uBcv59a0OX<Ha5*BkmM9iig9UPwD;b(Eoj*2BIA#o
z<vnwUml1pl%dJ182@Z+sIb2y9J-*?|_u4KGf>}px+BH4Ni`Vj|ysVOcL87F?0@mhE
zWx`jxkhV)=8^A(4NSOugBOaI-!<5-fXx>qwRECcth&hCZ&Fe%eqcq+rSS4ndC*vy*
zL19c8j`>UxHDnG1e-2<XKe$H&AMbb^TM)g%TVM2D($TH4D~Sy(iE=;BxQVgPV(kp9
zDVkzvx%`QF&Kxv7IB*QgBi&Q^Z7M{&pb>1U?NhyD%`6~D+TP5TlOCof{6YyDQXr!k
zg3aw|8u1-gkSq5Yoyd_Lf{WpUJ#vC!Nv+M9`2}x@Q4z$mFzf6LU`CZE2s&aEWw#;8
zhxup#ftdYqEv<Wa28SGH%4xHj61x(wFCNms_bXXq_x*N3#>O!~IMm9Vv;2o)myM`7
zO~v-fs)<eRe&x4#X;%o*dv5I`TxF|BarT=+bTP`tVhyPdeViJo;&HucKMvM(wez$$
z)Sk=M>8AThYzWW#x%4&Q!<THwAOb}a5?sn`RwSTOAE6T@R?&`IE`ex5X1Bc68RJs5
z?p3}k$wvLez~1x8GXUIFkG#R<=*@^7IOh5&fD>G6d<c;Eq*6II*{iMgpRGRfS>0ia
zxR^%+GPL-Q*^9<$uRI9J*H7o0L)y|h{!(-#bfZjmhG}EQUFnLRZ&jtO;}~OL(oN~o
z&FS1I3&lFu`z#&@V3{w!<1^`vt3yDXn?WtwE{WwP5}$ZMtt?!jTG-;jzv=qf%iqHJ
z-W@A*h>V@ft;)Y^*yBF8P4}sORQ-I)WkFXRe69_Nm%hWyadCfr(4;5zsz+c+2t0C}
z-pP!m<Vf`QArj~-?FerFHAkn52&}?x`S>&gfo}!;d~itz2+`qP4`A1y_6#Gni#bWi
zt*BZ+>LdoeAy?(`F4-Gpz{0$K@(d>o-X;6R+d?L0*9p8JfH6?X%4K#ccBF^!*Ikxm
zinD1*Hrf>DA{v=|`8K)Ngf-b83%5Y13%Y^YW~sKQc8P_pW>^zkjHQ9{XVgPU8s}HB
zAM0KO-x>yEY>vs{)FY4a0YnDOoaRLAeC9AHy})F2;?2U%htY=ekxUQJ97OjL92L`V
z6f%n}l}iD%1D40(flESg6nLlphWsDgy<?kTTbHIAW`=EN*mj0(E5o*J+qP}nwr$&1
zXT8<f*Xi9={dU!tI)7oTb*(wq7|*!xAIs^~RJ&K=Q@$e@1}is(&Q&|+4Pm%-y`E|u
zpS4_#Sdj0Q+QVV<84c5Huv>GSQ_WIDH<m5aWP5K}{I|IDz_R)>++*ESsth9XVNj?<
zO@nsgU*ERIrZ=wWZ?Q9~>&TweI2U%5El7CYL}UXeC;UU12=ds{d0+;(SsW=gxZr}E
zmpq+MK2`$7zMpUzTNN_SBD~M?SgsVN!;YfQqU?*pof>cKVP^b@V87~~NWz>7<Q$dG
z4P?2s?h_JOQiYuY3^Nu6<_HP&N8Gy09XOLvsV!!?F+P%?d9S&ClP`b+vIu{Qf<#rx
zJjXF;7$pjsVRpV-x3rvsljLDjqCm@Y+y*G`Qb`^bNykvcvzwk`_Ik>ZCA{jU_&YYO
z@7#f-xt8j@ZOTDeh(179_+*w5V|Bc`+hJK0EZus{pm0XAV-~invHytQ7Wn~G@~NH(
zO2Sz_eXLu#&Re&o+2jqSO+u7Vh?`kBTcJp7XBUkY^U}Ii<4Go|<BpbTRU1qQ(V0G%
z0yo^TeZpfI@!K)2=#=MSMQR=9ZvQc6J+9p&?L(3;w(b`#0qFu~eap-su}O{Dl@~E1
zmO~zq7}JuYYLI-hFx!AsnzWRSZ?9;pqJ2iK?gkLOy<Z)twv)Eqr$|rvO(OrI=2WFo
z7`4J-c+9M6#Z*f#4RW3ls`EW2m6hCxaqSTFwgaI*UmkId(p*#@k>uKkOTaUEmFn>K
z&t=XrMjSbQxZ2wV^HGvBM})>lhl>c8Qm#1NS{9KXtL&VV1TbvEsEK2vnP~vl9&O9b
zWBzRiRTLeaZJ&~TXl>J0dfj}(zu{&RlOX~=bZ_PSbYCAtu5LoQgvOlc`4}r%1QBSI
zq$2FLD?{2I!`f2c25Zx)JZ?ALSilXq83oEMqf&vswN=fdK+wCs*(VGY%N5yaS)Y5!
z!|EL>nYRpa+r?6X04@uqR*)`Rzjhz;OJ6EaeIa!Kpb<dZ252ECg9yy+nxqEwy!)Yh
zP+<ivLlu*QHtn%P4ZAu<G}TL0(_Y|}b-DG-<PQbK@%(tKcQgW@oolGX^))@)SKuA_
zzngy-(Xa=~`P+8D+l{=j=m~xS5!<BlWNoH{@V-VhukTWrp9a$-pAP4|e<_uGY!x9P
z;)Q)+2Lmz!Y{S?|8YYnba*~9!3p5BGr4!{U+1$zf%yrw}?=B}xp}_3;EpAWEoiq{3
za0~DQcl<R&(8(u$O=5)I?HmfM=P<2fe!rdGqAzV5#*pEfXIKh3-3OvU{1r>}Jea6s
z5s|9vsKg<x-<~)Pw?v}iEmis(aF!B?5yShex&}c2!!4c)2vU>^JYKjA(Z0p~`IpJ(
z+0Jh*s``k8FaK@vR&CLQ`{n4Y^_1mw6;%|-MZwb!C~yHt#U)j?LE{bnN7Hi0$LvzW
zr>Jf%4+}#MR6L6uK@5rX#-fJh*<6r|^sa`4#gY2aV4IxtVpk@@YwEqwA|_P(4h7$8
zE}J^jS);K?7+Uhf0>)I3MB958cCU%ytxzOCX$C|jLhYDX8$pdW+0sQjq^iTE2n0{j
zYGGv$*Y>naX?a)H!Q%zD<-UpKEM`&(1W<FdqBur@W`B%(-ofR=W)NF;84S3L@wPfF
zdFYx(w7y7BsfHB5O!Y_=8o6CqGe!K?;ZE$gi3UYmRCq=-^1u|FvW>%}OV%wM!5r?c
zY=I%;T4P4DH>41{HL5!)o0iB+)EbNH+^BF8a`?V+`fmn9Sqj~eLlI}GU{PRIXJjg`
zbx$qyd8=%WBcy^+{k#DbrG+-&f>hU>hn{SZIA@GQH?Sj1yH*BE^ONqwD@#v#h0o@O
zPwSe#?^p_F0h>PAPY+F}LnG9AXV_o*Z`wYqDP7ysDU#6z1M|&|KwE@R(*WSy{RRf|
z?L57HNIt2z#rhaGi4e6ZBO|`2M(mRX-cVOuv7)F}86P4n+2<CXZ?a8_$ljn6RKWJC
z`1<-YT-oPHM^y_s?5DG^EFyNZHFhX`-!f0tIk3UITgM~-?9Kw93d^gDxFmr7g}D|$
zwVwshfIlqlvLxYry9$R%3dkDC`B4%Au35YYTaUI><HOnnKiXzbp!q@)u*huTooRWk
z!{-o}@t}-&nKPkC*c+!*hLGQ-dW2#fqE~`Zenh~cw_tuIUIAiK&-JAlyAFM@G200f
zuTLIB!Fe9jxvT>2XlXt3Sf~&Yn)i9PD$4_TNCl;r7-2x%H#p|QL2GQ*8%i0n5B%))
z0-{AGuA&56l=!<*$X{SH|HjOUiS>WYtlEK5+j(n6LNm}uv;+i~NyJ{}1!EJE)tS>Z
zuRNnYAi=Q52fiW9k07Vpj#FhB)U$ZYtyA0JE=_RXQ?3THA#WBb^_1yIH>h#1^Lkf=
zPeFI!Aycfc!=E^mQHlbeTVn>+R&hDeBlWwy4iCypBh3nXnREiaeOm$}D)KV7UPHF@
zh*zp?nqaupg&6Xn?$={4jpVRO*BI2O0W?M2KzU!tm8ty$`$-9*i$GspNZEZENObo^
z)Dp(!{PpubsaK<=V66qFmO~GEAPES&Z;+ZXXD7wiYKKv}>0VrahMnmc1}&R=9-Ycg
zo!_FgHD_vf9ehbb{9W<>!fgMW;{7X|g7tqAj#!xgg-yZ!_k<%F{t#Z7Yq0*Ww4Y;8
z;$$cq^WgSa+(&D!;}}62;;xfYTC41Qvuxgnm<&6{VV6(N8q;$zDK1|@9{6mORl)=!
z$5i9KiRoi}9**h|o5R&WC2~ArnZ#<gZ(gvJZlG!YADuSpC37FcabP4FDG*gP$Clvb
zCpfs_da9N}uUaWFd2hm-i*B%YsIN>J93CPFg<U@5?w9rlMINIDR7`IeuVGeMPQbTi
zBJdg#bxHEcN->1<<zYb>9n6m?ss65_yDl&(bCB;CwwYT1xCAfehj+`xr<|FTmESmk
z!x*zzcSI^o^AV{ArDYJ`3dA*j!Y&tttgTDK57zisZsisIqkL@J9tA{kss0}zZ41Ke
zfI2R7?&F8pMmsPoNcnuQ7sq~#Jb?)QK|(wBDdBSRl19<h-FT@FZmor8slhoQqH<%B
zm|umjQ|&DDzvZ%+c{2;t!x+iD?;K<C_v>^obGy>Zv8+nlAH#uBTmoj&*afGqV<^P4
z^nODvbk;~Ba!#7p%aemJ$!ko1kk63q-BOQwT(wIWPDokMc#5)eD`(rAiir0Mm@J<r
zlv%fn8w4K%$gmB<JwP$1gSYJYU9UP5xLef!L`*31nXcm8s))FcfFTucI2AT|z5?H;
zFlgXnEB(wI`v&X|#9F3Jf=T5>(IQ%EG_OWlYq5AeU?+x$LfzbijQHc64t^8zf=fYz
z_E9VNtZ{fSNeCmxyf7byZNisEMvWGYPXIZ374mO<c0l-%4)Uvs9CQNu+RhC&A`jA&
zK{>4{ywON0e>p4?z*52&?YW$n*l4li6e6IL*2M_()bx$AdFxZxQ2gW2)GD3NsBEIe
z{D9(9zVyKpMtR8Qws|Ju?_Tx4U|9YM3KhdYK*;|E_<sLS%G$pmME(QZkbl(Z-<@zX
zGO+yx2IwJJ(Q%rvhDMLvnnb`|S;s}-yltW`MvBqy{|H*a0<smSw2Q(+fiZbs6W9GP
zwOdoxC<6?e{Zfg8YpnXowA)`Lg+mROrKUqfif8teMzv=;vSA&eFv(aa%mWu33dHTs
z%(9aH$47d2FT5d?$eD!Ws5J_Qy>kUtr35h6rt1!ZOCCu=oar{M>^_Q}koZbphWw}z
zE^vvigwj1RfjT?DTp@?#v8U5rux!^0@#UQ|p4-#ig|?=<inhr4q)Cr3C>_9B52q~8
zN$*2S#UK491`q=g&Q$~IGfoj<4~*2n&|GE$`DZs-Opuo&J`~=Z6GL*U4<m|7WF)IQ
z`@UeY#ia_E|FZ{hsCfSXIJ)#l5-1n>BRgoGHYQs|2V1xIHz86Cb$FGH=2?Mt)~^q=
z%4qiLh3oO#_+JETA929DwSeOc7q*dzv~;N{K;Jr+i=Fyt@|lWmXpKU^rGA+*l-kof
z{<+sbx54)J9s8xIgiKjOc53DaYGXU<Qk6<JcKUbqqlw>Q+8Nqn728?7ev4r2<OBd<
z^?uQWng^2MoKZkTeY~7s8BlTC2DYJkI&)Z2b8WKehA=9LJq2et@8_QPu_UM?YJ(V7
zp_|=weHZ`eGbar`PI7LoAlY8!YlcTqLLDh#w`qQyKu+=3VpwmX%FdBvC5^~~FS1p>
zbXGw*RS4?`Zp|Cuo~?N?11Lyo?ocYXRB&E0oqPBDZL=!(W8PdLH?HMVpPtG{>@7~X
zZo`f-4jofP<V^p4Fh<9%7~|B9T1KA6dn)Mn=XH+SuQOppQAW)~+Hc+p0-8kN&U)vB
z-k2|{0V$d5spj`p1h)6GWv4%Dh0~m`5@MVl+r=5RFLJPK8$w{B<YjJ>AO!QoBWm!H
zx-nU<`J$g@k`F`%#dPRLrVPwphV3F6&8!M(r$9{ney+Ti=HT%~cL+M>2c~Iiofs{h
zwE9`C9HyC$MTl)*3Ho%pBc+=kSpwk;X-Lyry8Z1`GQKyK$6^s{{@1*!Rr1Q4=t*nu
zhQyyFic4Z_H%fuRbX=ZePKJo)W;noRNiP$>Tfuj1c9mN%{j!t-F&?agLT5(rZX=TK
zQ!3R*Bk9hP7fpN;JTmu$)*2gA2H{YUgUGN0g>iWIHaEB;_u(kpU~ll$^>RF-jRv9&
zE4jlb9=^BI`3h@Uwt|NgPLRNODP$N;=9&9mk#4Aa;?s=@?lwl?aMe#(vXjw&rW{E-
zGs~j2fU3LWA^>+I$+{xbmN2`)@~B|Ld_HY!M0r{XZW~7?$i0XvWQaZLY>If~J2Bzv
zZ66?;o^DH0bnC=s8n(G@&6e$Xn^GPlS~aMYLA;(nE#?pePP_~(v(81P+N7blkBdU3
zfRJ+F&AsJ3iYKK%enVbVt^lgBUAd57I~tv24Uwpw=@$76;W1(&vYw4l&6#~LGtMC`
zcj!cUs`lQtuL+C$PrBCnNeoUy6Yu#5H?2P2v(GtNb`E0m<pLkQL(+LA<|q?X_VK!q
zgS&{`wRT5Y&)A%!51>Am<hH3<w`;mV(e7Eu@t!4m^@jD!?T{OtpDMI7p9Sy|$j+Ks
z_4mC#BOA{Qc*<Ekl{k>q<D+pOl;SZT7~AE*zxW09d>tAPvZ9@qcLtVZx4AspC|_U1
zV}J@rV|U!yws+iLcc8rXCdw*^>zOPB*H!|;pTpNs2;*>=GM)q=WSCY|FhBq(IBtWl
z;dGyR&D$NS=u?qd@#|3>uWtq-D~={6R(x(|8Li=HiiTg{G0d@fwMLu8Zgb|XN5?vn
zeQ>x>bJFC(wE*-B2#=1N5BBQA<am@na~Xv*lv{K@-7JFyJ$q#Ztj}HUzT72VwQ9w2
zpI%*TN?le&kTbH7OkUr@6mk?mgwY+Mc0uDfW@`_Bj#bQsG?1;Rt=O{u;tRRMu6|*V
zWRV+^bfc78<573DA&La4$G2E}RgQp^Q`|BFb(v0p{3HOy;?lZS#>!q$hnZx{9p3oO
zqlNLqv@BS8Mn3af|H{?TJ5GoW9|)~kE?iY6vN<I${@as1vu(~#l8fGi|6V<AgvN3m
z()EiM$Q%1Xw||XcMx<OPGOfqGp)>%j6mv1s^^F{95C-PX>&ug{g%Zc3VB;o>a;=NC
z)pyV_J?5jy2>oIrf~9aQw7%m{98BXu*x3cH8Mr*LNydqH-5m$KrtM%^_&9=}cNeXa
z*xxs-TXNAKG+<)Cn)D4*97-+tZK5lGu$ry{f;YM=u~m>XbjRTj7ix>kVz3Qh?CqHG
z=M?auswvG1s+>7#wnVuOlpC}uql>N34>t~pkC3p5UY|+WQz^SVA-539w5{55tXE2R
z5}0#bfj6L+^ewUxxb?$7+z}Y~j%q)$aEW<}`Gq`^oGlYc&k>N_;0R7ZGJDbF6s(K{
z1>%6xWN2KlwK6ny)7CQS8GnE>HC$OQ?icGk+n#C^W0w|M5jjDAz)k-$-Sb-wyQjKm
z_|fdobEvKbDZlzY)pL%q^w{L?Uw_y@T4Hr{#OJ3cm-Afyw2=(p?e*@MD^efC9HSZs
zQ|ou&F-^Q__iqArqSOm{fO5G7Aw!Yx5Aw$gTIXT_wPpv-$JfQ0O(pyQO(*5WAuAGt
z1A{AS?TX}B=KWJSX`-ENdL!t~aflazoJ>s2X1M7b5NY2RfM$bD?xgXc!ZdDu$Dqy`
z$UHA@2D~$1fXV9F987G&wz?tI9~un$wz?k9I81BCI(o{)B;#yq%QY@nbH(DbBwtMQ
zKlU)Rmo*RLll!6tfW8Pt=)ORJ7*@8E+0F|`;Ek~ZiAkI;un&ZHw<TgTFhM_Q3v5lB
zvVoXFrbObzu9e=IsG6w(<=&92ygxKKw`NRbRar#BgQ4oNwqIaPV4>_ca5R~|sP3V`
zdewf;^j4l!ph`h<fuf^v$8oN?p*c_ri{OeS^R@UL-kU_@`&u#7G%G5U?rs)23Y`5c
zX9ie21XJB8sVMW?r6X+`cCBDLn`CFqP{CH~-@&>NxU7E_<8WtV)tR{xuxA?EDME+j
z)VRyr)m>3FBiEyW$zzL^Ozm@n>+HBzrPUuFQytv|{<1HW0&jniu#s_@S{RbAjQm`Z
zfPl^w!R0gUz#1Ne9)r)?fpd;>L#If5jnPHoR{iR8MswK<N(^7J)WY|e95<)9s3!_;
z7_^gyr&cXY6*){Sg%cdRC-8QgQXG??e5k4jX}hnNr~N_tTW&rc#2-FLJTF661+3h1
z+?c0bREw*Nxa-(Bf}!!P^w=~<jbnw(5U~sTQQPi7h337@7tMprpOo$KIa!@h69*37
zkk`7}hgA+<KM7+=Vf>27j&;q4vL9okovZH-YD$qcykBr78BtXj-ngV>d~0YymDk3}
zdj}XsjpRrxSqP90lCEKnh0Sp$(G-FYM|kkp<(FJQ@%w7wD#v21-c}Y^q(Tl;m1xik
zO4uvx3&@9FnU~bF9Znu?dxUdJ@^Il;-8<Zbg|4v^(BPP7gV&gvU@5ZxMMZ1=XKLcM
zV%5DJdCNxM>+JwnJ`M(|sG(*rF^x}0oG5-)A&K^`LJuz#;k}W+)34-?J~<p?L2QXX
z2;)Ma=7v16zLOXl3D?YScZ_hhH05aH#6tB577cdD5ZVEvdXe0!&=^5kGOPGMu5&1H
z_=QkkO<L9zXO3t<iJ<B5=Pm!1to*_WMW+*=8Xf!yYEb0F%TfFwRD?Xn&oF6ynh+E6
z0Jr2??QMi3XzKg-2(e4R&-4co1^fkptgkUP2M4A$7l)G!38WUvy#Dd98EFQ#Q#@>Z
zrytHfN$p~0^9~M^(3QH(>$tW3R)Pr!LL)23?aF>ExTJ=9`^;%IPJb>rTc9}dkp3z8
zKQPLhoCe`Iz1fE|q=cV>`A$bHcgU3Um$$P@6&EdMA61|t*yFp<b7c^`42-5w>T0F-
zYi_xdzOV2o1#@2ry12}02=2b71ZO{g$m+e67Ksh$)kXIu@afUXx&YpFCsw<qe|)*H
z&6;`Fwp(!)E8z7gaSKs#PF#O-0kR4S^`EL&p=HEk>rhA({(cNlOX40FHLk(lNdNRC
zALVZ8$e@dE#2`fR$2<~C0VLfO!#%O+DuM(msnI!;xgMJ9<01)zaZ>cAw%=3H#Xg&i
zT;^76ln?f{?qd8FN3=-J7FrA>?4n*ad@vW?69my?Cw-)JJTPpC{zHgR5u8A!vivm<
z;Y8HJZ%f|<WciC{qs7-ZIZaH-Eq3`er6cc$DJ~4g(T3Z)W><*Z>;vYco$h07_IAwA
zDz5075#|>h5EnK4D=;Luhe2zx>+U5((fB@z@T4Axp;+fPk`IVbkAULv>a_YN`m3Nc
zWDF|MUtg>IWi^Fq1v-EC$N9ghgf!@x|3Pm2r-XP6|4MlL|0&w?Kl0o8e}^1mq5n(k
z4~QL^+28>bE!<u=I^NVrM{839oO04>Om$(B6mF(|v#3XigSAfj4XR{P$fs*elW%o&
zQsUS_H^?x_BIwETWNV+K@q3MMcTcQLY>tL>Xn_WxoYPNFEY1p@wr_%WiHc)Y7DpMG
z0%q#1_d+<PMXtm)_V6H9DcgnNOR&4Tv&{hRxRMA@R~d178?pY;sh`Ny=X|NwSlp2X
zsJoeIZ^+T~r(iOg+cSLN7FslCZS@Aagk6isGMqxpH79*4QV%4{`ZOp@Rrf@G9z+H5
zEe!gU>`lFBELgLTVT@d7Or(`~H_q7~y_%?fp7g%1aWmII$e_MM)N%n6iX-r5BuYqI
z9;0^fK%E&=JcgqVHEPG>9?$;Hni_X;Kf$Tb@Q`O?T$Y5KD8$It@Vvqut|C%l_f-v|
zs`b!V&VEe$*I?n<k)#=e)a|#^_C#V_K05>%L!JN;Dtqf2gz@bS2g1O9zo5LFiY$g#
zS|2TaeJu>OPy>`pB-+4<u=Vo}NOO?v;{1^b=$<jF#O_rE8pb-TJeWYJ!hV8)ch?py
zVCndN<WB<nQo_YW`=aHBq|}`b!jXOE)a8v=aK-g-ho7am4D@l4COYZp*57Z*wGf&z
zHCV}k$3F4PV&3E7U0M|gTv44ol}e@qx#47;rW|JtF%jE%NgqMhuAGG(0l!iBi$?0*
z3&_wl`StX%ED>iZ3dmNH`?ug!rU!LUB=aQshzZpa01L99)Bw>H4jm>+hwXStvxAi#
zKv^fPIld!Htq*=&3TTMfqb<CyNuGglI_nmW%hO98VnXEM!<%%?+g;0fO}-ie0N~fC
zyi^&Bub1a0ry+#lA*T0-etGdzkdR!Q?bW8y39P9NUnpUm(vS8JD*HvXAjfE*?(QWc
zq9$u;ge*sGM9}?Y0f!{HjpOp}$kDOxEWGj+BLt8KZLZv-qrtP_Xbw`c6254|!I$k;
zA`{ZY2Lji15aIx&!TnjqZtZ8`Wudg?sYkr|u`}_}3dXM`cW=T?qmy(Z+k-yX?wrT3
z?5|@aY`1OP&WrpTfaM;?!d`lqC9mS;uu`RIczN<%xF!~wnEv&=ibXYn5g%f}$zF3}
zwTRu51zav`f&-a+O227BnRPca&YOP#j5UA{)>`?kXC}F1m#~`?U(AM8zm6kg9dNi1
zYyKSh%D4k=B}Tnp8*khVX@X(lx9FfX%=zy*-{$(W-<(I(FyL66BtA*~mK!LmXGv))
z@ng2jTZbly=~*PnjZexy2LVe?w+EpXwy<&`>>`#((<tyT;RqIlidTfU9pEP!Dn=$r
z)NDurxfz3)rOsgMQu3%h*oLGeiOZjn@|ql_CdIAyU46sJPQ!{$Qp9ZRObp~sr;k|=
zjE+QXreZBEj?6b>s-{n(F`<Oy2dO6XMwcPk*2X6`<SrG}dMhS$qJY=ksx>r<1(0%T
zD;_CZ*-nTSRY-1KPN0ja0LSuMx1=rm2ynD|U0xLHlO7eFpzKx6>ri~up#Z+ddI$T@
zD3aO>kx-*$S&&BeG|m5r$l5G59dc@^QqX?0$Og?_`~mmu*fkTcknckThvVyfG|==q
z;YLZCwDwwtMD=b13MYq5Dy|THuwc54Q<9|gp~#cE!~<Yxe)S@IU8e4eY=qjX5cp*Y
zkCy0_Yx)(8dp<9${}N%x&~Hz&<lWykzFs?-{+JHFRCb7hLm#BqB-7psF4dzB<C+uj
zBYXpDhW&}V_Zk4ooB>k5`DAwx3SWll6S)<)N99fukdf&vkr-yM9-r>_P!;Hp8{8Q5
zOZ{A5lRL8<^V$B8&`Ts%|5RLrdJYvhg=rE=fO_|vmTs;|C3z0m)eD+Lt)N}TEPOp9
z6i~jOH0@A36kZ@k4^u@LNPJ$`_~BN6FkGX+8iu9HW?;V9jy7<0n(^CH6k3D^Ww=v|
zz?%CxOaHR`qSBs3S3%_`%cD~FNt0c93Cz<0{*|S*4GA4BLKazNUsx|Av~w|~d%nJz
z@ui03J#$#Ld*~u*z{$^%LLg5uaBg<!P#_f(9ei>I@Q2?_TyIvT-4OidyNq6w*tgQL
zf_-gmy&5_kANNlJWWS?c{wTJj^?}@%((3CN>EaJU;v75qcTC8Q?AV<GWLTkoS%J3N
zE892KgvjsyZKwI)X4d_G?TIY^GE@0K*c06}7m22D@{3^Eywonmv-`{l67kIwk9+}E
zY@c6=IEpBD;Y!5fs3(3fBlylAl%Z8kgj{9POktLrrsGR&XmYx_=aXY(_)jS?!iY4~
z5Ri2Yv>U`QP#thc;|X;(mFIwD{XlbeE}HD_EU^C(fIZIEmKV%SVq!&M>r*m&jENgj
zQqCS9mKc85bt)gKXBeJB8l8Q0$2~DEliw0&-h^7e{5SU=#=mTl{STry%Rf!@X8f-r
z*7^I!`+u_j;UCrbcU$cA40L~4BO5Kr;>6$-4&@A<kV~c-MhYMAVm&2%8yOaPWgb$C
z>MZ#R4~LA-QWC3T0>X}zXbyZ1UZ}XN=*F>2fq9}EPpZ`O!&@@Ab53hZoK1NrlXj{0
z-fRgk?aPfUoaWs81NhVvg83k5!t)!LW0TgUuB8Z4ea?c+{o!{@)+6V->q=CEjE0v|
zAci$0Mwgp?aBj-#A$H5dP)mD-B2@`47BCi)(cigy%TGo~cK`evf_y}{e1@SpNg5U)
zElciU*elI#>5@GtkEQmU4-k(Hz!8g=24OtgvCA}hI8fC4DAjn^vjcMr!x}uCiwmX>
z?icm6q=fWp{bC0{C6VYg!f}*oMT<d7ID`!)U_e!~eGiWT{eEaH9$L05y6q?tEOkql
zbPYJEYOLC`g0Oa=LgaM&o<@zAT7`t(<<O@G<!@8K@IkkJ&(@M5O4?n4{<`I+Hgu>8
z2_=yGB_9M~g!9p7UV7YmZCLP#spaTQTn?fOOfZ7+8xH*<bkd;W-LKB+l0FP_btoxd
z`w)!u8t3$)aqi?IG1~S~I5*(d162j!rD(X2-%)D?FrAgaSJ}0@o?}|mf<$Ykh^ApS
zcRC<Jaqt;bu!dP^=tVk;U`1)o&FayDT1}$)Rrr=gJ&|@zdx|gyV8JiKgpGFKq=cz<
z`t{nwynxU%MmvyiNu+MI<jI7sc}La2ni6UuTW2GGQija}-lm*4=Vmb7ROZaZu5FA8
zruXhy1KJ$MojuaM1;OP$2~90%J9kJICdduy!o~tMNykIJi7UFb7~RQ6Sro2Gtf#uv
zuKol)MB5dw-701k+?{Hv$OBC%M{Derv@2t4=ia`J({Nl|j}vvtPD9PfBsaFd7smwi
z+cfz1X8fO>wz}fNGuGXy!x*pU*!vSdUzeKa-oC5K<SFLOScr}{8FVgtM8RYE-?FsR
z9IxM*n}-P?=I8N4`X#HhE+3!#!+Go}%!Fh+D{?}Q!{{98MS#1kW;C-pi;!cs#oT<N
znh_{DNcpt;uP%#v7GN17dHAD=3M!er7|fzf6wb(e;T_<k^S!f-OsDU0n9+Vd6sC~m
zMJhyx4Ab#(Hk(^mm1(_`CJc|x#K~VT+qc-f(g}p;a)k41s2&(6&PNJsg}?Q4<a&l>
zuF1gQNBvo6;MWXgNzlw1vbBomxvpxWC~vdBbt)P5T29aw4NPRhFR|}o&<MBf%r``R
zU3#j=049SHb&g~4A+9K|Ypg#xy86QB2<nQTa5Pbl;Yo)$@9y!}2FmGEp)rOT8-T{a
zbX8gDrxY9OF-B*+ETmXXY2f%xrzKN4a<j(v2AM<1OuBO$LtH}FH9~A4)=1=w1g50_
z$#*l3JdcdaaETHQ3OP78K}YYkk)hh*FKV(6HrFxsCfjSO(AmSi<JI0S#^Uza3-_}k
zBqsE}n}B37jLEHO7bm!O4g0`cun9NID<W*qTakMgSKVNXVZSRK&`-5+Y_BWyww_}A
z5Wv{@v1ZCMd-N?n_Dkl}aCY(!<2dUHN5>`zShBHWU>02KfqHnOHEIoRSe=-SI|CG#
z+4JinG84scle?rS<<0nZ+^D5Vp0RqrXINfPeE&T2@6MBdd)f8BhZN}khlYuf;a@aN
z|A&ymWCOA&8dhsZ=ohMkb;My(j;422uRFlegjw0ol8G*%dQGrSMyNXT`{>YIsyNmY
zLMRz(Sug2Lhv|o_yJdiMKn=}JX3OFwbot+p#FmD!fA$`3HS>fGY5Ik@_t})wqadiI
zY@*ju<D`4k8&*Dh=8^FF@9MTZ%Q(HGvWj#^e#Y<ocu0FZxU#*fSYlA5N<bb1$%vmP
z8`?DWG!A~T2vJ50>#2KOUvEoa#%*<O8CnFMkd*sMOTbo>A5J`HbBu@;K@48K&<g*0
zlYLHIAWO3GPARV*q9T9vfc`Latqm5sw)_UaY_zbNwv)tLYZL0}_0SFLQ+#quxjPM7
z#f5H~;Z~(?-fdGu7(WV()T}m>G|b5Y3NbIblm$&w;h0cBGCvaf=C0$TQt!_wdU>F2
z<il^a=Bc8Tf2i)rb$PIP#(etQr}UQ`&Ob3<XZ){idHSDLz5hTT;~ypXch7b<y1%qB
z>MVOuxv2<5i>OruZsMGF31X!O#%L!TV%)h+{z%D%VxE4gFWvS^=~$lISnQ3!(VDG(
zBjY^+-(jbX*{Wh&=0PMiq1OPfgU0of#9MrnPDU0VTBDweO8r{lMvpYY!NOP$$lHOZ
zQ<?}o>+G;Hcp|sTI&P9;h@K<9SoXt7Ayp$ZV9G_^x<W;WcbE|HPv22os?^lZ^q*T3
zvPtmD7jgwzbc9=K5s~U<d$oal9?;V+ZK>Utp7+p%IG^EQ(D{g{jdVQ@`5~L`W**0E
z1+Kz!h`{vpOD_8LY|Bb8aS;=@)(!Xa>7>*M<cMBMAc~t7Un`s~R!Xfk>X_o_IT*F%
zo$yO;X?}iWMt0h1H?59?c;n$TuQihz&*e1(Djj&@IxbvbKjHc2DtN2!4RyA|xRBX5
z2&}RZVmC__AjDThpiR<7BWqp5-my3EarMKM&eSE>Tfx@YI8U__<C}=Inu@~QUcB);
zu`5M;<4MSSQFQcb2#sMAkr=NU!w=K>OSlXqva5%4a?+bsK3gpLizolvdLAYQGF-B*
zpbT%*1C_|e+XzP*Q|@po<Et5CVbR!^Io|IxJys9DEVD~X9SV3sMbMA86o)JXCm!XB
zEP{Vt=Qt4c{W{!v8k5F{-So2?A-J3-9)v~$k}+T$EgTMj>C_o-neuVyY>A8rh)KAE
zhQGAvRgQ`+*f^{xuEnut)fSr)JpEFVh$^9H=zO=U#2&{)hmBoY&84j63&@}21zQ?1
zF=t3ko`foU9oIbzLW4Y2d(;pqRh&laqZg~BjBW$T2}+m&>W%e1l6wm>*IWMNVrNzQ
z`v}n*`E4B;txT$}CR^*>Q6w|oQASbY^{f0R0>Zu298*Lmy2dTcJCJIzaja78^|LE~
zuGH+BA!HRjF$Kq*SFgh>mhXp#PyarnPTnjP!a?Me(!&=C#iGiv>qX4M5Xwqukd3)W
zJ2=4a!uIZS%wq5%n+g%bUTS4d^Xp#Q`Z*kd26aXoN{By4?w>t+jzj+V)P9%eU$Az3
zGb)Bc#MgfNt^&0{iu=(Y){+xGckJfK?E*6ke|MPtzr}zU|7*v9{!>0v|5Ac~_cO)7
z%=VXG5a;yO({56<+L$O`L$DjP(?*VokEM#P9i(<Pdb8bbN1cXSwc1d{*eIc#$QmAS
zyF6&^86CQp#%0JO!GRwVb~zQ}wUMkvN!06pi|s7kM`B=7U}IMy+w|}IozEf;p#x;D
z<~iPzViW_*EycLQem)@Eb(^-Sl{uMY_AXT)m`XnQwAt3Ghwe~@)8moz9u?j&c@zpI
zS2Z$3`NSia6J>@%$2T?O<oZ*^)IdN2#)V0BVxK1;3{epokQ&+9XWASPSUfKQRfRi0
zd*o$UuN|r)7NS;f11`?$l&ZHvF=Qm@MZALq6<0E~gvxG|HDQ;Zk=(hbOPbJvLe>@d
zkio(tY}}#wcfdl9G+ES91_()|GNFD{rzR#mhAHs&V$eCpDvt{Mp*Y=oR&wzn))_y8
zK$8ygz?dNU-0_)&UAl#YJIE%~PT|ZPYU}l0a@bAfjr#jQ45=#1mK_M1C9BGEvNwm+
z_agA`yQ*jC_?Y3zdFdpos5!k0E>!YjD$Ki=!-Q^mO!lY0CwKn7`9M%f=%y#|;I#p@
zlGTxA933#>>skI{akvej7G7uus-+b5hueJT0(VpBYHPP=TnBmmvddri={_8!La0&s
z;x216HO6sV02c8SeBvqP;9amG=Bod^pT-ncbBrqV_2FlcHLjqF*i^hal7t8ZFL6XQ
zKTN^Xm}~T;Yt3OTIpcq)6mQ8rYX>5s%gw@UAgYsEG25evupJX^pHo@smz>pH8fPO6
ze3NSOH1x7i_>`Si`4n}jdOQ&>V_=2Z_3^cl;c46+pTaZm4I!qhC&aUt)OIXPD{+Vv
z-2SVM=Q!^2M$@-uFisBOSM;cmlgj~&NVm|6`nv+faJe^_tHE7yPMV9N%wSC?X~f=I
zXA=Ahy|DLBq38|cvjZetrEmkS*JAUvJ}CCSnSl&-9Ble5Ko2+Z65qP}j$G>aXB=LI
z1};{R{mw-TBec%2rlUWsw$$N{_n8vC&YI%HI`_8SSYsT^FaYE6*nQe$*e{EhG`H!V
zqYuCo<uYM!z@#W>B<uW9wROc&bqRp;zWDc%@_{J38c5+6)O4K8r)%1vl6`%~OKh}4
zA?!@b=Jw)n_k>uWnsz$VOqF$AcPS?5Wg5`J)a$|ktW?A=s%p4e@g`@_k<g-EFlu~`
zAs#aF{Jho3O?Up_S4oj6f-&q<Ceh+WzSTjg-9!qInjKd$D<_)K;Z%{g3rTg=CPkiv
zm={yHdP7Mk2E7F=gks-D&Cgzc#N*FO2>!YU;|IhLWnXvXtSEfn>gersCq6CN_vlcz
zEJtv-Cd9P<37!@3Lf%S5cgV<t+6^ngRj>dl;yO6nJ})Q33Av0Z@o$$!%(3xR5kh0&
z8PT73MCVzDQXz~Zz*ATv4{b|gStNv#-IvHds@n)CQo0czSAky}A7H8FD+@jI>vQ-{
zLO3x-zXsaZ;WS04E6jK}e$+el4_*ih+JG{&FUd&8hKwBMT3bY9qR<^mV77EhPc0^$
z+~to7H*@X{&jd^n88u(0<NGqyXbM4139&%MKr?wCMi1x9TbfnH74!70%C@#g>LSad
z(>;Bxx7pZ(?{n5+N1i`k8r|=U7lfu|OiR2c?Ax=$%%SLl^*j`AK97fgGm32VPqBAt
zM~9k`4irNc%jLQ<1fIKCrkW&hnmcWzu_RpRMB+L+cUU3p$FU1Z&`@-oNc-PTwGH!6
z^Xk5_g?<St!d@sMB@FfyVaH>`y!(k79DhVMcvIfJf5T}BV{0g}Zm;eL1u<2hEUjgE
zjytPe71h7!vKX<2ARInNUqWOpuzGe(+)$xN1L9rm-$Kty-l_Pdp8NYo;S821{Z6SF
zBc+Ai+m-zun$3A)G4P1^Zg-SSvxn^1ERmQJKqr6u*pAh9VZI65z?B2ltAm2+ZqMzP
zoF7>^!e0aUuC(+&2$(cGXc+gzb$<qCiU5SbLKUsf!mlfA`;cA`bLL5x2_!>R*o9L1
zrZ$11pxEqTqnrCI4OnHbPzcTUrKBf3Jv&XXpz=oIpE#H%HApS+tZMfbDVb+}h=(iJ
zb@F^Y5^VPc-DENZE)-Np-P_9Ux6RhZO(_+#BmT*!Y|6}_<)v{ubGAHSvEr*y(=e64
zldvRgLq}8TRTy>GX+L7U{7bEt@rtANx)qm@vs4yN>a@Gcgp=E3Mx|C`c&_Er-UTOa
zi9AV5zd$}+bJ6CZlhqX{WaAm3j_?K7ZDFA>x(YlaS!?Y&SDG2opX8WM>H2Cl=%Fxu
zn+0(KdD23L6b^@TvC$!KI#T*XOaS8DKV!wa+7eABDTn}f&XlpeD+cTLWzPc%nLzL}
zTsNQMd9t9yJ}aFuZ0iTBTs?Qgq&~v$dxjUY2-0XJBA`=n4vtaje6U7G!!zE}P{NA0
zd31ulnF}nnA?A;`3a6_}1E*`_n=aGbS;HVH$Qi%FA@s1jpiLM+{>eJQ7TZ<Aq_S9t
zW~0lCt|SIc5DL>cuw+kQ-LLp2ULqdiA7d5}FQg;3(VJ|Y$hiz`?i7)4=hyiT;5L|i
zjN7~9rj7L_Uil00<n3tiM=Mc~TFog6pECB>X8DnY!_Ah%$5yH%ESwb50y)}d-Aoz{
zgcbZ0Y1m3J9pc7Bq{<upn2}Hd>kb~Ml5dVy&W1eW1BiFsjdU)9g5fXa<);L2iv)&T
zYNa4Q%Z?lJ`Bs=MTt2w`gyEB)vOX(TJx$Qwirnx<UhZtIL74fdT8Lo**HVetITfM1
zWzQuK4fQ85Pzp?r;M*TpfqQ{-I7ta&GA0P!YD6E-NIID`^`QNa`91xDqg_D`=*Zoz
zS1ldFc-~O&KPM6+Kh@_Az>I@76cdl;C^%TJhR?kziy*?1zobx&4+z22Z5QTJRxf(+
zLuCY(O6Fn>Ph(<(#7@^L)nzt+ZTl^cRoIRvvgR-Ar&-(gfdTx040rMCv!uM#U2YG2
z6}*M74}ob#A2-(xk+J`w@5P&7bB0hGlDwSCJTm)(vXI4UCz639wviBX2BGU!o2xaH
zF}dPA3j4Q+l%BXoJy8qasPmILeXwhPnqx6aMv}ZMUK=(?aGj?m+Bln^lj8etR7Ydj
z4#nU{dU;+?UxILSf~rvWslJ+@b3{TrILo{M^1o*;of+~$F<vKR_GRq`Ob(q*8rjAx
z9)Kzw;@ELluPAo%GQ*Mte7GK^uDxk~ggjLZ#htoR5R!N>D!;jMkX9X>)p6~)D9=dY
zMxM7gh%WSO!a1F=C|e1eZ13>rqNWr?3=)VwR$9I}C<a3D^r}RQDnTG)x-XDfcWquD
zpx%_%o-&2RiJS8$nf%@v3}|(@one)`Y)6^u?R;1IL3y^LCLGg~?@v|%Hnr^`s8f4Y
z?SeK~YH6#+I_*$jXI-Wpu-fs+(kdoZr8{8`g$dzRM~oeWN1@qaiX6%+Rr7Z@^ZzX_
zfltr!ucFI;rl0U%J1y~_JvR8iibycB)3f}q?WjsSHqd<C)1^=67a~p#jr~~zgYM~_
z?|MAG6m?V!%5;W^BB&mK02XL~x%dN5$hh(AumW#P6yO6(xdOlJvDzQ#8@e#uIKFid
zB1P@ql{W_02q~NW#~@#>rsRgfEMUt$@47iLmiNp>a|@|fqtkTcF~H=(7n_wwRF3k~
zhm)a7MC^n!FxO@WKPl6lRRe^HH9n4vV6|DJGRLQjG(+A4oXdTMpwClip0f_DC<B@z
zAkGY>`ksg=`+wL<Nd;}XfU0|x$*8>6+DM-Q?%~-gX*jv=YrXu@e6`82O|$YzMS2Wu
z(EEfPREX+3`Av=TT>I$?1_P-!TNWhWxB>N_h|H{5=_hoX44nr|TZD_);}sOO!I;G)
z4r)~~5W}cL5;?SUF<nETOwY#g=;Frik3S7&b=iPFg1!>S2bBjL^j<rpU$_~Z$+4oA
z(Viq-7Cz5&gzH_5$7lz{<HgrgW2g2#Rov+$bjZBF6TEP7w_iswGdf6gxMYSf>KZBg
z!AozsB`$sQ;6{iD7D)0=LmFtaqOZy4Gew`cq-{uWay^AsOo@B;W&_!eO*%(X%}`Q4
zVQwbp<KL089%*sHv91{|3wzf($UKipH0s1wL2gqv@opxp{Ib~!uTeNOvfj2^`~4XO
zmvFU3ksZ;jfcO5%P!>rdXz~^oF3z`<&b0LFyW5`i#9t0|x~l?;cmPmjvS`e*kzs2~
zk>^P*@`}3cc|J?!$wVp*7RaynkSKn@lDj+$SP{y23;zQ0*-IHa3V)}j-wq5Q(Rml{
z5bi8BL0X7#oB0Ddr(@O4AJl~xL!5XtyHR>qOS4}u@Qbk8>Rmi0jl+`tfV&vwM-vV~
zS~^70L&Clj;e`Y<YLS!kK=I0!z!tI^A1XR!osz}EG%Y{Mj03V<_gc(BxfJOP0!y|R
z*R*_MzKJjs34b=L&Ci|swYlW55CNsAti{5PW4NSVx(24??2&kK?uUlQ^x3aU^q$KC
zXS)?I>V3T(*M!9m7DUBz@E@jfd-Ygt!ldt2nUqw_0{e{Ykj`v%SNR<pw%04gN$X&4
zH@NIsnkaZq5pV2`0!uN}`O4^=z6A({X3#2d)4-1P8C-2NGDTamnTZ#3vQ*qVKN&zW
zmLT?|kh?psQNU)&{D#ZoVEG4`SXu$xqB-#&C`7j2ITobYPsjGYEQrJnH@(-I^pY&<
z^W-?59a;vjXDF<stTSOowd#TiwdScqEg(V$zD1eH??JubrV)p0`UHjaZsI<0o9UJ}
z+Ab(&Wfc>H-q&+E4j+TB&!P&<f>|=q?Aw^>N*l!po&4e%sr7cF+Ibxw+s$YCW=OeS
z^$?9iu|fIr+DaO`i@@3T*AH+dqeqwgzABe6hx6Jzk2m$|P1(c1;4~-Y@1Uwf>Wt|z
zph=CGiP4tEzJ^BYpv~umM;=4E**=OBoY0I;3S}<Pd0CGIsu=D(N;hx0_^XrgNs{?2
zg?jeu>a=RmHbdPQ-hN&7j(+XCZ}wM{+vWr0YuT?Q?w-&i928T5q9E4y?)*q7lGQK-
zB+JE~bPe*ON)g+erlxkUwKapJFClJBqt>K8VoAJ3ffwL`ULq&~kzMSc0Lg|8tFJXx
zX!NsT%J0oIm8?bpagHEjc;4Zpq{;M1E=);gg9NGJHv?9oz~(B}U*O%uIvwC*2<9{f
z%4DatfsYmaK{Y7Ok0O>Jz9Vly6tl?ZS`6eS!YN^0GF@4Wu3hMYq2PXHCa7-V;s^Pr
z1nojnbjgyuOx}Q&;%e)L&X05BaEBgWn?EdSensW}KJJKrN$fR(?1Pv+tjozcrH%07
zH*+dcx}?gz%>D-@+OdR&>j<KPVx0NL{~9#~OXFA$mWn4?ydekARzsEOFeFdX!?a%F
zadA17pN6`~Xqz$IeGexHTlC#P!7-Y<C4HEdJNbf;1QRZjVWO#uEaGa|RPNhFu9C9`
zt%aw8n>0OH9jRk9_5{2B7XH9LHYk90bdRqP)uijtb_rqiGxCH0a7{6#{`;4(K`JJF
zcoBmD`W7)|^E28<D3hg#U9*9VDtf{+%ovLAzUTnhQN=jgxQoc9p7to&rvrMd0jh&+
zyEeo@{2N^dkBf=|YA0N&6ZbfVkG0Yb$T{b6OS>L#W?wrib$GrHLj*O<+?TwgGd&PM
zHp05Zc_^C<NVZqWn06LGzz}5&{jTa$0NTpEFr~%@Mj}!P)G-95E8Gvnp;f9Y2Z#4n
z>L(G27D-*Vic#3eOD((Uj|OQ+5H0dZ4}DL)FKiwwvklS?Dqfo(@RRaGO+m_cR1}V@
zFSEtVoDHqAt*y(JuA*RFRF;G+FuuVhTP-(v$6`Yg&_Aa@*G9w!3d<852R$_5qIJHI
z7k!_tto}d<NrOtWoQBMHb!?pACW5K^@K~9BroYBWBDvR;`Q3W1oMY{DURtLp*!=L3
z><;UAieb9=4Mgt8pcTjBZGA{2VjTovo3=#fe^PKz>Q*&8vcHp{lBzYn+uaM_d7mK0
zKa&+sybL3UO~&Xi5as-iBPKUR+ApurL?QTe?A^(kqV?o8&EfOPF7duWlK2#K=3}Xs
z6*g;yf#i@-cs}apxPg32CkYD4EGtJA4l&~c8dLsy=W|q10@kNGku3#?B?4-kbRrf0
z@@JASHOyE-C#%r9I5Io}2ZcX2$Q5C7c^Dej3L75Jau^e=W_79yW#&H-+{yB3Q4Q}`
zWh8kQAf#l69gf$BCboGmCwM*9jSf_MdcZJ+#ph<Am)@LdUQko$G@q>hg?^w$Ys`7$
zTd=_G)_hWhHukH5W$0oGx{i2NC4ZbnDGMUGF4=wceYo}ty9DH|12EGF3L%Rd>6`k#
zNjXXC;TQaX5pOI_t^229i4x%5usWODNdaph5QPo&vi8-+<1&r`E2-QT>=-DEAb*KA
z5ngFX!+Z@GVz9C(>#Qumymh7`fRaVwu-M0){pYHJ@awNIJtWn6vtQV>))K0~Dvk!9
zaM)9j!$aL~XhNQ>_=kTU+bJh7ekut>^O2|p{lUdM1Y6Lrb_T3z-n;?`11<foTncgO
zOGcQW)6JL$oM(ALHN12XM4*-j0iCe^0LkMm#U3YauZ<ORXXqy)YJkM%MvXo)QXVRB
zf(a`Cro%-cAP0!y*fu7M&Y_y1PNQP6BoW`PF%$YmaQ95pN|p>~2&SM2fxf|6E-O)c
z@)-F9m<PLGZaIze>4Ia8>_T#k#J=z)g_2W#IGnB6FIUu}&XEYtWtQSz0fz(uD_?G@
zQOm&F%llYaVHSeia$G;~&l}pC9#w>N@)SVZWypH)LuR~Kz?4Gw-p!A#b=L5+N+9Cj
zGu&`=7=>H8dX_LK(`Y+uwHFr(-W#GNHxmn}P3J$H!192=t~4Yt`FbPu(xDPYvpYL=
zl8+5|-pTt>$p$Dw$#8Pwd4`P`gos8fx3=A}WL8cDGH-fM#pTdp5utTB%?eA^SVMdG
zq!7M0@?KIlBVve*KZpk1llvpc0^)mmBhCawB@Nx}KD7!kw;B=eB(dhu45cW2&*5$#
zo%Rx2UMeIORibNpxP-36yfl}Itkxz|ap|oV`Q|)4VbU(%e13wQ`VOrp(4!W0dfI1`
z1`~c1wK4Cd>b%Z1Q=BfGxKK2O61pu4mJbD2=C0;jH^g5^JI5i&!B5T`;3P9=6yX%d
z>mj7%71S2aJ5_7TIbCiJjPZqQ?p`7+C-t4r32tyv6-|Q^Ls7F$1^7Mio0+#DB7)bh
zid-&P!!+F016rkXXffHB3Cmp74|t@Geb|cZi>4Yt!+aBXOldwuyT#{_N&&rbPkBA|
z>8hQ@7Q)x+3E2CGafFvM0T3~Zi#|?H2f{wYQ@SU*5jw&y>*MlJz`gsd?vJMjUk!E~
zbdVSLFDaQ3F(w?ZN@J-Rc>yT!*q#LLYTA9jr-F%8>&n9VPcyN<`QD;&*JpsemaZ>t
zmUFW2V@h+IoceUt0~lwaLpRYA0svN9lQ>4nvBz=7@+Cy=m`Q5BgcZ+;(e8a~gTnEf
zn~ps71LOVbbzk&$Bu$>dNN8gip&SZ43U+y5cp7g&H#~@xFoc*ia7g?P%e*Ia)(3+D
zaI%`CP4f(k)C$JXA^~GvH8`&C-PDh+j!(<-S6qn}`-bmdqaAx`u`9H$Bn<h<dDmCk
z>3d(_3OKRP=;1?^P^>0jW#+R_B#&@pm*RxYK@t@j5pF|SiTzWU{k(7+kPZ=nzmu$f
z_1COm5^?diELjPqf6k32I<r+x(p^hD`W?c4kK~D?8YUp3cNT11D=f2JjP^+;zd6JM
zPLT?DoSr=yH+{<ll+S}~1aK9Q;oE3Z@a6kyrY|WSF8_pkUJTqI@rL_P=1Gj)OAv`K
z9{Hs7XcWqp<jTu_u;=^SHRYPZLz5p@2UPC*+zE4Y^sl+g8tz#Oj!~Bf6i~esf`!lz
z-?>gS1k-irJ<|e^{LCUkNeV=jmJ1EPyUqd5L7ivNUjtwk_mOTz(uvhn7z8OlSU_1g
zy5Yo5d9bD+CO^Vw=YR%F#@y@1kIj`iz)?1S3rEGw35R#%=(!Z3zfkwV<)^Khv!1<D
zS`?gt|GX<~Bzirv%VL#z>30+tlmDHL^^T!L74J!*u)idKKhWLdvRu?<Z(S;_IBJX<
zS(~Z{Iwo>eMyFN!hu`9)eYk2@+YGgIqP*6^?zfAa$>^uP1D}E@hYvRt#`}6TS2&H7
z>^*3t@koQp<S>$|-^Y8wOzm83Bf$pv+LiyQ;(i3o8F=8#r~+(|+3^(uVlTJNI=-4e
z1kChl{lZ`SDep8YvGVJ8eVR5;#NDybHV4)3!CbGC3ZeymD^r^L)hmJ>L-{DOZ<-IC
z!s2h!vC);T?5n`3gQ4SdARZP^n(-(`S5pY(Nx7-L63fF0xJ+Ie8$+_OG5V3ZzBCX&
z?ld^_KIKT;Lu4=`W_sJ&Qtv*a7dNDrAQ6a??!};NU-Mgz-DS^+`2WV<I|T{0Zt0?F
z+qP}ncBO6Gwr!)*ww;w$rES~hsouN$_KLWxZ+D-2UOM8;r};c$&hd}&e+p~i>gcLv
zmiFe#8CmaqDlV-WA$XaRjrcAE_b2>*0&z%?EPm!YrmprjfLAgP$&PfUmx6w8U7H)a
zk6&TQ4_99>k6PnQ#|DMx#0Qi&8~}#D)%er`Q(Yd_(USNnou9H(J|T=ZrLx(s4PA0Z
zNPiq{4nZjMe2^@GlUtri3EsN+j>Wkn_j9$lW@zA#OsNLZjiO@j>B7A0Qy<~(x*M7q
zJU)K$@2)xiE9_9F|HpEJk(1#Mn}zxBEjOOr3*gos?HBmTB$CpOs8ZVk*=?W`EOp=E
zZ4YDEH^UKT?n-EUalr|ii?i$ev*^mTO*aQKxDsuo_Dm+t<PG(o+0V<*pngrImQ0^y
ztFVK~jAgEM?!mC{6;Xjy7pufn;qkLT1$7;`>RZA%P&B%xd5_1DdQ_2mJfJ0BouQd8
zqM%KaEX8uNtS0sz)we6yzw)#MVY8$6Y|z4XzV!ih8pOSm6Pa4D3a%X%VCa$(<zGF0
zWI*4-2o{<m{Y`OL{$JElEk^c#q5mlTw<I$x|Cc*z!p8?|Vr%>_c<n!`@t*>>j4X_Q
zv1hQEMnlyv7>vJ)C7lrxZp0W$LSu@3rxC1IpFVhu!9#LS%Ei*4a0>mL(@v>+5$YGh
z2$5Lp-$+2U$j{3=a_ktLkyzVF^+KeXJidWG$CkthNdZELj$!QSqP2fRYb+vQ#im#W
ziwd!5Zln7;%3K!fUn4aPyD}{nWTHAx5z)gkzKt{y0l4L|MHZ@{q}ezAjVYtII~_#O
z4=vgtS*8MBRRZ8E(6}A$1n>gWfNk0#KeZH!;3M19f;t-n@Zh)Vq1M<gbK*YdxK>;#
z-7H%R#(cdsT1qyuJAbh#g@R+PyZk!~UX~DufV<w8QK@bL(F4$42^gaX*Gie?CfE!K
z{!aOHqVQoWN(nw-A5YGBv5yEllgG?lryrS2-rThNJ#L@`>xWx><V;G9a7QXHMVZN-
zj*XIxEul?JNzKJ~DvtA-8rih)VFn<4qFy?!^c6r6zI%%)WpE3k%g7?DWoP)q=MZW{
zh8uRfv^%6&f?|R;85_$<RaU-a^?AYcD{QIiao(AMGbqimEr4lHXMrGUYqF{Tau>)x
z-GzjLsS_FJ3#xXe+|~G>J=<c-a;6UN>az59dUHOHYfkIi(~uqzK-iu6>j`BQ8(d$A
zATB2^P#aKTs)rL<)^bbu!xQjyiXB_gHzDIZ_|bl#`~G?yKa&ZOtkS;ewdIF`0|O7g
zxbLs-)=4GK30Of}vThzehaE$iq(!wZ!eJ5V%p9tw-80zdz$L62cSY^xxmLPh*#pbK
z6ss}&1Gp3ntqAt+b^H@tsCEKpu0}*yGBQQ0LDwjNK~L8}HZcw{iix*eqaFhj6Dh7d
zS1ou|A-<@1@Cy66L1eHJNoi8XB()V$k+(S=(imT{rJw{+2#aGCN->Zfn+>R`cZL*0
z_ZAye3eWqrpLki@Q25)r^A(`v-Ndxtd1_td{*Kh7_Uhc1?~}}<hKJy6UwPV4ec~FL
zTi|*%RgyA7fc+;J*1n9OVd$|IVT*m?8y@>YpCJRzO>sFjg4St2rJdc)I}Oy(PVIw3
znB%rNz&K_XMDrn+nvRf*Z=;8tZ7rF9F~cnB84C<rKL~D06s>GALobiK+m&h(nCa1I
zu4y~Qf?9gLc4UO!Z;SI`^=G43yp)a=Gy{x(pTaaPs6X9<*7E~3Y<_EO3g5Y&dg5nc
zu%<hsoHIjG_KCC2Df7`Apm(YYL<&iBZ4Q{cRGf+Cl0iG(87*OQsPl{`Y(mhV%_~sK
z?D3OPx)t~?sE!}n;Jld?m>*`LAReh0X@Q+gEaeRNlXZj!_ij?sdZOkce_clbAk2Fl
zuu7f?g%9p;+P~dT6H;Ksu@Tit&gJh5#b)GeP$|p>jNo?lv!f<Q0e}t#&9okDmZ@&^
z_Il`JxnRqBlVkg&E!*0baYp<gz`6{!a!qJV8&qU}f1ZVPY!3~v@O{?QRPn6-$klC@
zbg3N;QHV(N2@=YtG^%7mel{^2DsLj^RG4y~xtCa5WCy#t8nGxyBLe0O1wcYE7Rerk
zfmwGUD6dkMt2^=IEJSkhp7BGELx!!M3kMIUz-hE@aEC({Kh9}b6H};G)dUv)wFfX5
z5bu;#J9)PDs`cBK{;gXE+ao|_gVgQ>w|tF6W$i+-c#S5ZWwvw%o>$VAFpIH0wLSd~
zRZTNajg11;;Z%Zifeu55!qi<fZ_&<Bj@^S7>!DPuFhx&Z8iKGWi~aZ$00JR#xgFZ-
z?hVQ2KFLR{Q+;ze4b;wz9S20WztEvDdFE$_KhfZzZoTX09Awgn(p00ZEqMdUxyNdz
zdq2Csgrmydx^P`2N#95qBa#(A-+F<TWGHCZbe1r4@2JW|>CY3{%6oORv$uG|%2K#J
zm`&Kep~f?jO3=SM9sest*ndlWAz<X>{EvktFlT<)t@WXrv>6Fb!Nal+AopJnH36B9
zCzT_#zc*^$3dpiFrSp-(UvRbbkZL&rlnY8+XR@4^1m2(-Nyr&oD+ey01Y#yH6eFi4
zf0WZ_l4zpuY8jD)b?yW?7t;TJ9UyWwF_Wo^XBf%fh^gQ^X5(UaHei&{<VE*)Zarfj
zw4c(KpV+1=eX6n%{0Z(L-`DYieS?2-TZb5S$OlszJ|1p5rTm@0+YRWrlPB&ZgL_jR
zuGzdNlquwj8l^j|c_FybDqUatcSZW&<Ds(r&*q{29d7i0#@y*2h51jX2WECg=6{Ef
zN`6r8y|bUKaO+X-X(GZqA*K3K@j0?^QUn%TgzvAq`oobIX`kHrRv`h)cP!B~rMyUu
z1G*4Ig(gqxx?g0t6Vn~J)VO0am=Qy4-!;UN%!9w#H1n!3cENtGtG=1Io@bX~?G#K=
zg(IA0Ou(Pop=eKO>rvIho#0G^VJ&TX(4CFtEm%yTL~9@~-k3A2Zx`98UXU>DTYP!P
zVf;StxOkAFH{IHK?2}A?6|+#6sFOkD!|vm9951~oXfV=QJqD3jOyu;*13X$8MboCn
z<E`%XF~d13Mu&4X;dr(uKky)mn4fzKr?{HU(dgtdY`9z*mn?mO@Ous}sm-Rse<!k-
z9_hRC(UoHbcn?tu#xfoI#pq7i>tRx&<5*+@=t`9yGny7o<D+7&BfL=RW;RPEuJ1^s
z!}$~(X|&^`Ameum|8mZ7Kn{46gXThQLT}eBsm5@n>-0y28F7NS^YndLIMtZ(zK>O6
zyUM;(c;CPk#fK@q@AGMpLA8@5@NlG(6?$)Xq0@}$iXf2$MfddmgVfp#J?06)kAmgL
z$RpimyQF(W3sg`Elb+n_Ncxs!h%&Y8)>6cJo)imU{`hU^v8e^{a@*3#?aJFJ?^Bw%
zhRze%(7-Uu980ViYr*B7T43mi?Ghlxw#6gMDj$tO&^-M;JK{uU_e}g!bElz<&~G4{
zRjqy}EreH!pNz9^4`X%YABNxq^iQ%Hrn+RZz3>D)pdxG)^-XkB_yzn>82lj5Rv`@7
zB<CX=miuIyTG;tWQm->diA>@POUpx!j#$*a%R!_&I^t!t>m2w*6Ni@7QcsLM*>C%r
zYz%JdKPSD2WmlCRetj0(Vcv6G_$zcBFRCYgiIf*yWX6|EeD6sk!zU<EVfI^^b32jE
z3!tKesW;8v1mP;l&Yws>i7o)LBbE1$VXjz$+w`?_y$9J2`y>h-3l1gg7vPJ9Ek8I+
zil+XwE|={1njQrk=1CPn`1y10QHWH{rg?b={IMdc83*Tts@kL$pB_+r=FLfPBfh%H
zoWk6<Kh1iG6Q`k$FhY1~M26K35m0b7XGiJ!zA0~GUonFz?nc=Yojy@Q9nW=fK3EO!
z;CT-%atIB!!QciFK!xA^n?hLL_yj*0+?F9=Da{-0{cIh_)P*&5|6x09ff=xQF1o|;
zee_mIYy|~IxOLHSjtEXH|3Q8>mTp>F2&SUyna3Edy%HGL3Ss9~#Mv?#rr%dx@H5z2
zzekJW!ZTQ3`=`Iadt|nFBw|A)x9hOo%xte@7_~9Vp&h3V`ivWAHEg&y*db(%Kr@N8
zRDGs0|A@T<i8bt32?>rL$y4E!9w|G9k;oqQr<f3nfDvL#=_{fADfPIJMK#!|l2p_C
zC?Nn*WPQ>2Kwa>6kw-fkTq2!zz6BKbQ4D*!<EkSAe`dD>YdE>(qXq&x321v+d{SxL
zwtFTM7#F}`q~9NLk(>kZPxr-qAH8+oxyPVEpM6C|vU%N&+Nz2X*QManio|k9QWZ!6
z@Kjhx!8f6%AB5trMP$ZBZMDpOw>iAePfO7c#npDYka%EA%Ve6;{qHWa-n<<r99xLp
z=kcS3X&Ic?U70;vS72uZiV0t^qYf~t({APQvZUW1@jba6*>p40hreVCwTL*>{kEQK
zesJIKu^dh*&kfFnsVC+#p0j%yZVS2<^v8$)Xe`i)titSsIf<|oI4DY-1lqYlv%Bq}
z&&r_`anB`mJeOA6fdeGLe2L7eWOxk|V|JoDb`^>4A3QRo<B>DbWV;}9Rpzz(nN8V`
z^gGXvJ1SzIZ)5PjirJ8fQbi2Bln5((C?X5hRq?IA9%=s=6kCTd#yV5&M#&;;W-aV_
zM<@k)owGQW>=RKlR}+u+ar=4Z;DOu+S<^)$KB)!Pcp7%YpXhp^B1puF66FWTgzKsz
zGeg;hs`dqSFL|;Hk!dJ^M2_EVfcb;dw#tv)y0KB=`yi=^+nP~iwh<~&0-yunJy54L
zxXfeFN|c`X!AMm$Pb?Avmt9#LSE1wM+MHTMh|0NxT^`X=fbT0+q#Y878q#KV^R~R4
zR$v&ptF!cOU*aXyNQ7&UdF&;3cdH{auAS6=RVdRe*J~@T#h|*9c<oe%1GOaS&~fln
zOYtp2(6vTGj%1L)fYB6Ac>?p>F)Mv0xOhS{Uf|d1s)a6lMArue$TI<Lzuu+A31Z^e
zpFQ*Ld+)g~e5m#pA+7Ah^|l)~TqP{9g3;cTkPYo0;WOUT{y=vPJ&R-o+cJJVJWACf
zDL(WJ4g1A^QgipbF1l4;dI`Ap3!^jqV;jwn4x^ZM8Y(8KllGGjj6Ii1S-{~{?Gycv
z5ZW22Txj~~ht*lf!0$o2FQy#*oiW;)9q~ZLdO<LF(FIU@#MIwPP#`T3Kd;uR6sFaS
zI%m1m*<hB^5-yy1FnPMvL(Fw;z<432Xf1fB)1|*cks(XW0v#0AjZr^o*A0#n2nR{0
zGC8~0?Lsp!6U)qxHI~5Fc@K3H{DMe3Nz;<z^uc^3C!&W{6Ut`mOGvb(A+fL%2l8Y$
z0Q77+G=lfl(z2=ct=THzU>CDu^_V?WoCYRBJ~6uG<r1n2O4yET9mK<G{HhO+;wLb0
z7(v;XB1kQlQ|F|hDK>{J%6gEIq8uiu1&mrj@_4Ga1BwB@=?8|lr`eWe=iL;KkP4k$
ztN~ZEK1tbq{86&*2qC-xtRl+0&z4o&AI-lOd~0+h6o9`SoqakN9=Q%HT`H%yTkCoQ
zF5Z^|R4S2r*LeQ`i_#G=Aj6+Ir(to@Z5wSGshaoo70y8xV0Wq&(WyY{tSlGjD`VZ^
z!J|L{i0k0lP1pu2i>B&dmy9mCxjy<a{6z3H5J=82=c_zr``KAl+{VvC64i+Zv%%>S
zH|PmV62|?7GGH=|uV*dB*VN;U228d`kg|3z(YXZfC7cc+r3yrpN3&prvtt$h8v+U+
zQ^j)iPa>epQh-}5#e6Q4KO*6U2+(CJ+jWdbnsKW8xXSW0DpzHsY<D%`+J4Z|zG_k(
z*z2<iOxGN=JFq$$5N9<-9IPN1xUM%50WDa*CmrTNDhi4e5z<8GmTdSYtS}v07GqHX
ziHpo@G$c(N56WSsK?b=<o|R$>DH353N3hC13i_8+yE8K07f2=52QJiMg{nZVCO9?4
zj(M@88!Vvmc<xo8NULH5I?FK%>UvT8GClup_qCylW*dX>oIt1v0I#d~T*@funZt0%
z8TT9bd@`g^Smbg|4$nY3qK@6#PF~Z`UPc4;tf^6R0yRqMXvSOT>>mX|$LdciqagBB
zu)2V*zP39o_q-K~2v~xPU5U;7=_i<CS;5~MYt?#4cS0U93)GQR^JqlE=AJ*xK62Vj
zpkhu(G_%rF`aK|Dg~QiliSW(qp@5k){NpqdMd27pfQ_EPkSZ#s2&opasC+V~S7OsY
z56)G67yp=U4P%@LLF>et6iH>_(XQ4KQ+hj|Wz6`o=U_BL4q0~wlL@J+DT#l=$VEqK
zVztul%hSq7y{=gLkO!&&;2t>)j719L7h5ROR`p9Hc|lMW)6(R}-E+XgeN(L_OF}bO
z^mb)D#GrOMQ}fNcWum&XT5AfBV%utR$OO@(o=R<EDmr@f^>G-){<)r&EyYjfO+q5Q
z2BKtwcHp=E)9avw<4AJIpQ}N^NzgrEf}3|YT3QEMN$lq&)RyHRSq0EUJn??4Vj5sI
zDZ^vbIjJ1wjfv!a<e0e{xnPXoJ{AC2%gLd2hgd3vfkREbYcnxDwzZJgipcw>!pKo#
z&JhW_x0LFczu?alGw~tP`Z*hOGDU=kplcKiJwXg#RHc4@M8&Eu@+3FGzi9UXMemUu
zYN`cvWA+h;GCe16%zm=3$a36%XM^Qi1F~w#TXyYPeZu*bNDPZk>UYDs9QZbG)f5g+
zue~+I$Q+&>e!wnO5=j#GX)q}t2`;=aD>H>D!7Rj2T6W2YM-RM6Y1v_HVn4RvdLpH)
z1=E%>OhfQsMH#HJsod8)XJJT_JZM{NZ<1;z-)P@NKtx>~)#He!OX={3lJ)>}#{w6l
zbZ)H*Ek<5~4gHDJVCoau!=GtlCxJMO1hBVI0+`zZqM!EM;nRfa5t2aclnWH~%g1|X
zDK~Ps6zzH_GCa!YJx4eG={rG+svG)&N|o3D^B1{=#S^KKbXb!^20;(3l&`1#ulX*K
zh3S&C8gTzdkDy$}XMYs)hFD>6-6udrL}L)372hj}92#cnE^r;vxLajaY|UR^&<FA)
zzXY<;=^%mXsq(V=5zBv@I~G8fp=s>_$E6oLAoIzpkdW~`8(JNWxfyqo6D6#Ek>jvT
z80?gRZ)x>|T-Lm+9kp<U#YJABBDH4ekn;9xGSe&7L0>I2D!s|Q8~S2;wY=DjSmjz6
zImF$4+%Hn<kcnC3=|az=g<O$uFdpLLox$}wx?*w*DK!@s-+97y<>+SmW<}&wBjls(
zHev46#e9i0PGEsE7k#IwT=E&C&|8WK1A)*Zj}<gBglCk{DrVBkil{;zE-Ui+MaAWG
z-VECxwCHnb3;k>}AjV?S+wxVnHL%__$h$L>3i!kkEgNlc%J+!;B1cG~=lf$eo;n(_
z7J(rR{yx`OQY~mBa|3ViB;g2hD{zgRj<@5xl{0(ReqPO&M9jbc%BYQFkn>e1+gy%-
ztLNxs5v}ax%u-%d*X~y6wcNSA7+9HudXs7QUMWC)W8z*c@w1fVV3&RUxwZ$NpYY-r
zS!f;$_6<J@pesKXsuQ_fCBkh@j8$u&eNYDoSb@;1=44p2o9!Al^~ecwvm0Jxyqn1i
zgGlMBvq77?H)c)>|F-XmSU@0D#NIhItob<a!;Wy)-mf)t_QLPGa-^iicKFPvsZswZ
zAPixV1)~b)02pI!--6{;O(dgVp1^&AWombScQ5e2C;VdhzrwG7l;A(T0bpWa`U`%*
z&k%QRVIqioZ<HT!1cIUv&y-k37tMSJNF~)ZY1QWTPLZYyWWyas2}B{-mj6AAghgsC
z24&mq?-P15Kt=Q03)J=D=5!+GamHh<8n*5#4h6JcUIr&u!TFTP3Mq@eQ?E08DVb?R
zdM8o7JYU83v~$O;4}>Gu{$aP6tZNZ7INfa;{;Vs`MtR_q0vK30ksxghnB8WB=@;x9
zm@gs<k{czcdE>o<u=>{EPYYL8OjF?I*cVuwrppt<6-kN(Oh$N$64u!$FRt9iqICeV
zxbIneI>x!0I=TbOL5w_E*U?4<V6DLy-)ae^W3g$v-}n4%)fs!yGPe)UXV@%dat(ej
zMfFOgMhS_MIW{<8saQ>8mJ8;vzNp8oySS_4J$kv>(u3zqkvl^vp$u7)wc$d(K?nYu
zDO&<hzbtyRYodh(b{YnQ*>8+zq=dR5dj>kcb6F~~?Gf0n;tF+%2t>49n?J#74H=hU
z8;L^0NXfowIPRKv6+qRBuwyZ5Wg=`)m|e}&{jX+;II>?<#$fyb1M@dX5T`;6Sd&#5
zjXY<xIB73%c%qrq7hx?NxwH^d=__^^wA~WuUu+<}oK7%^lrV9$N|tBYEAg0LL|^|T
zrazo9aqJYNMrI8R%D|qaW_x7QNI|)m<#Qqu7-bJ_oi%+MGjw?{hR5oI!}r0Ilg3dx
z$L=@};~&}2kEX^z?57Wsy}yVc`hPfr4un4I>VwKjJSp(-7387o#*BYB<>y`r9D5Q$
zY#mz;UxV*JW%EO!Oqvo4TX&s6BaX6lZ32sR9ToT-(4eOER=Jvir7)MX_`^<be?K(t
zpKi+`2JpoIL}Q8k6a}|JTMb?p$_p1KxbwuuAK`?(*V;4y)OpWqPv|-<4);@v5w}zc
znK-2Z#Gqo~&#-yL!J?n-FbAuHo>-{#-B6jBQ{mnNJc}?^&Zy;SaW8>BXhRaF%M4zF
zI9SK4odI`C;bWkS*n-P#5^rZIru7>4S`U{p6v6^USBZ$5MvPlw#o8`4?WhPUTI;*X
z2}+~)&M+x2DK10A<ea>kL%ze1DP^NRADDo<PYqE;@#IkK_zV&<>)gDbwt89Slyk^v
zWtGoIICV4UH0p9NN2}Dx_F9}!$dKdBeTg|Fv{kuuE!loBqmP}$mC*Lc28{&}vl4_A
zPNlGDb|nsq05L~YF!%EI$+2v17d#Hd<zWcChdMj$S?%GSzNxT!=YjMdG{9|w-b!#6
zC!aq>`ZB1y_IHVvyuM~MMA3D5YTy0M?c<VyElzT4sOXX_sDqA^jS@=8H<QVCa@VtL
z@BpL&)mwy_zl7m`ySHw<l;c9^=7P};Hm=!G{XTEry&K{h*0*|2Sa3@<_&Zl_w-ihU
zO&z6Z)7iNb9&j#NfYLP`Re;`>kiqZLx%(i1yMv=)L$K?IWt}5kbM@FoIP#X#*N-U$
zb?a}E^O#8MvB4crkQ_w+--+qAP1zS<+f;8eyH{%Z%r|MjkmCA%4?Q!wO>w<Vpt2SA
zA2aDeA1yq}e(%d(;$*isDD!gmlglR#>avnA^TxotNbS)axiq3IC3))Ic>C7*&RKy8
zm?@J0Q${}%r%;dsys$meulM6<!zB72*g=5wm@o9BiF}maO%6XYk0Y+PZ)Nl%>>(Yk
zg5372NQqy?7EuJtxDEA2*qdnda^swk#l-q0-F=x=OJ+V=?Jxwzt{B<G*{s!@!lB>y
z=gFV+$~qPVYd~~w2U(#rnIWeFz?pQbF!c0gFE)3Z?LK8!jPGqgTU5POMXfF`xEs-D
z59;a^X7o<LwNb@emeGbj0HcAVvy-IN+yyc0_4|MpDCle$<x{#lVOq<?EZr)hueUu<
z#*5x^m`hoPhmpk)Lf&o<ylBC)0>}{<qIK9;4Bq1i9U=)mc7YdN^BCaIle>aMF!dqr
zg+Q<DixJ@}(;+j<=S|xsR8y^?NF}HN%DJU=#vPA&xD9ppU}_r0JSxye@yMz*Bz*aH
zqN;s>f@pvE0NH3*OaKh#Wp0;0&3bLl1Gm0l4i^FeAOBLP?g}eUU2~qucwZ<d{q+W+
zUkD;?ehvj^u+VrdDm$4g{W@?6<a9xTSfBE{Y@!01VnL(RK;+kOI)>Wfak?s71V9K+
zPjg@-5Fh}gC4D{mThLmZ&&6}@_sK7S*72^X*3+)}weCJQ$?xKc<$@9|Qjj^_yCf0}
z0twE<bwxr{g^AH+3V7?@>A=!}q+0asT^y_okS7}MSUu<KS$<uLz)a6<2)GI%ReQzf
zxpxx^Z({{6R}h;)d?uR%tFlP-KY7zFQohGIEk7Q5Jqc1VQ-lJX4R6wPIz2=KrC@R3
zYaR>_7H5d$lJ7K=N-P9IE~i>V>s52&SUH*I9&?10-oWC%nuTfg-P4<~#?fWRuyQ;M
zx+COZpO{E1O<6QHpE7@vP-~i2-!xUx7~dO}!>I4&a>?aoY>rF697to;(7zRaJLqL>
zd4k7d8$e18irCGekCAJHK+tWV|9%U&P8EzkW4kkR>NK+q2q9xY!SCit_z4)v6U}HT
zIR-P@lo*JnHVkKK9j}K0iSzdArU+d*hU5+#(;kZSNkl=$T*1k_&jPQI%D>1j6Do}X
zd5B7jJWO+_WuWgXeyN3%G?nZMhlWj>6v=LRn&qK9!h^gG*%yI`N9L0bV^#EbL)Kq3
zJpT>R4$J>Q(GDX60Ta_dK_f9H0w#ukft{4-#hCxR{!0=5y#AjM-T$L9|M~32%<z}l
zYx%lN%#^Rd{)%r}uVVT`C;A!oQ9A#AJt%6Z8}x^z^EMD2HuFllY^e-r=d1|3Hj0aU
zhb%cOrMUW>r9gZEnLbM$yMYRec2=0y9Q<OIQukvR>;*gN@REYPgg|zC$5&{+GZf1~
zMOo3-AcruA3BQ3-pF^;R<PYFRYvll?s!I@Xy}XzFHRUEf^c8bkm3N?lTIUA~`96Z>
zg}!2G4ubhIT=*snj%Y%FlwQ~*bYkvqACe(iCWK(Lt+6{-%Rw-)-^wtsvUB(R-ZfnA
z2_8EL&rNc{Fs6kV;S;u9A~0bA*d*zoTZ}Egy!WEA_(w5^jA(H?-LW<Z*<98mk)LWA
zf2n*en(8s@#8OggvxwZ%`h{_J_K4z!j4FU_V6J2Z*a(2s3RjSD<8F{5u5BaCC^r>A
zUGzrpusRh|lC`Z^B*>_RPlZ-IGXOZ{jN{SAbdizii>N7Ef)Ryemrb5tC(_N`f6lmA
z0w)oC^#EgzuTy%kyLz(z;hT8&(`gL+ZvDL->t?6`G{>eMC@&96HyuZvqZ#pm^{Zk5
zl0E#Jm6rw#6I^mKj<i$qORP!?NR~%2L<#cwR5DG1VNlE7lg%4wqeUm|p8wqlAz4~_
zyEv&Se@&=4HbF~-)5kJuc)d_2g8nYdEQe@~cmADZByfHyc+bRv|51nZ0&d@+ZSYo0
zIC$lgsTCM`7(+`vOz_OiR&dA~AVbHK7UUN7v!o?M+7G<ckP=w-){oM2^;q~z`7}2%
z_UD{H2vzvcVM|q$v3EH4h}N`$QacdWdi|4FG?6@f=<e|MXG3qR6IN{5U4W<%MZ$Ps
z`Odvd7J5}&dyhyt-##(G<;nm+@2_9PLceheuz~adO;oSQ+vE`ie(R)%Zv(b=2csex
zZ++|sP^O6Z8JPo!GN|c_bkpS#9_|!)EKZkHiP89s804Z)ouwb!au`whe0*S|{RquR
z>+N@np1anITVdOk@(6Uoe^lQM)zuDc#c7j@+0bIqUvdRZSLRoe=q4g&)e4ilo1K%e
z<84K~`?2RQ2(BD3!N(?XECv5VwBqdPJ~4g#DR2vknvEvq5+d*Aa?5PiR@HQ@dbU~Z
zDMeA43{M-Q0+@#2r@9afW(MLUZNK}ma7Bg?q^)l2K;r|+Aj#bZ7n9Z6MoTCWQlqGj
zO$r$f$d<Y3DB(6VkV?RG-0g8C2D<YtMLrJIU`2#>RtF$0af6{wdW~rx)Z}2OTC6Sa
z@^l5>F+lyJi#WuVOnZQ1yj0?OZ6g8TaCFsHNz7U^Yr%9P-3rRc?uy~o>>e1FjpvI^
z0p_7EPocR8+po?HHJgoQ<!=b8WfR+?1E>x%NzIg5)mnsZ<WkUX1JdG;D3{=#r_<+E
z++oBku(VII^a-TpJ1;RV(>ieaOT0dNMYi%c-*KeLi;nC3^Lck2ZfBms^#pbOu}i!2
z1narjWG;x+XRX2b+4~EEZeXV~GnpPB%3+9DjT&#M#USS(LC#I<gVJLWk<$#qXc~}Y
z8KNxGM2zDZ!uJL{Dw!K^ClI^4h*WBDD|>(^k`=c4SCuj}j<cj1!~8m%VsLZTE$dYu
zdC~})?WEghVdl&?Fuq*%7i0}Df_HNVM$rU2=}}dvAuy4YRIH1hq4ik{F&3J}g$0PX
z>bu^dJXv=nvsoN-0QJ@F-oxS<JKuFxF2<mur*kp_@xtGE7~#~#2>vB3jF=qwi<ya3
zk9CxqS&wT;DjVy_k9_1}cf_RCvXGbE{T!kl<7p72P2L??)E&bZiV?v5MU771Sb?Kt
zj{q{B1w}0c#W)?DO+q8O+Q6@D2Uk3X!$W`_rmC0;C2pgr%`17gww>}zT&|XkYuW4q
z)2HT7@2o$E{k@{<4%U!3gIuK!alA`i9!w?jjR5Vp<-eY928W+mwBUGJxNa&}-qd@?
zFDg`1%1drkpG`G}yGtyp^D#*7A2OM_SK)2JxI1O$W1Cft)X>$^QLo>W_}+9fM!4%N
zR1EO6fgsEwbg2B=^^5>VWU`fYQ5}y9%HEqR+!-F`KRkOc*@eCcvZv7Y%c%^f+GCuN
z7!JAS?#)ZDx%n|N9K$SC)N1E7Cc_w6EKCF<E=g(DV~6?pC{H<n*7IY~y&8m3k*aLt
z_r^1{R@piG1(3FI)s)8APh+@q4IkZ6zc@Wz^9*rcosMcfbm)0x?T+)sFTa%6i0SQ|
z^Y&qyQk8>x47Z4FC?_pz9QAj8d7s)Sm@P6-eg9-D42IkxwtafXYA%+b0&}Uo-!au)
zBM9m*5KW97w)k>IIC_85Bam5YRLbvC-F)Fw0)A$kE-7+gm<8SA2*5L(MBTV-`zne!
zq~ZdPME~-P>Z)AIU-0KG!Kuk_K~lQp8@-D|M3+QE<M~h)yL&2GiR)x{SCV+j1zf;L
zX;!2}DxiGJvhZJNb={V8gAq$g>2~uSZgyqN>{e4?MSER0H0+>J1x_TAgNl>ht$StD
z`vgzbQBT?sm?;Zx&7cAm?LdosMx+s(Z+Bcn!x)aC*eUa!{>B?64FA1Hu|xC5pP;!<
zLo-%N+((P}rBI4pLf##ZLc%3<k)o_#d|4J=Fm>%KM_;&TUldlcq+O|~UtYIBZ3S(J
z9`WFMAho37xYtU!s+}k~ybKnwm?=gy#{UfDa||ShOA-r;qyx)fBSUlgEZn$Omlzp&
zA;S8Rk4B+?5V#_byJg$&DBHztS}1tk3>RJWab|5dIo&CNus=z6x)!Xp4h|Ua5N7@}
zl5~)v9VaU~tpTyRdZ`^5g}I_uUpM<rgn%-kzB#hr65G@Bv4Mu7ZcBwe(Kz>wPlff^
zf@T~Ks9h{{rOm6Qzdp+(E4%+Qb9U93#jJU{WM5QUn4X{?;<UX<MC^(`S%AF%Qs6>A
z4@Vg7qnKDeL~T4C!Qm~awvW=bp)r&M=x7|;{u2ZyvrV-v?Ac!JmtF8mE+T=zW4|G=
zVJfar%xBOeI&L~ksu(%{G~0J_M?_;Kv5-+Rs@bGp`?2W+?89`oh$%xY=EgmNeAQM8
z9G;6#_NzU=ZmX6d8es0@-_4|dAzc4AW>VIFI@bPAwcY<eF?{}`1pn#q$?;d-@V-11
zS7X#zbIr1&pEqMcu=u=)XTky+5u|Ux5FQvbxZK@Mu#joftYls%3Gr1z-N2-&<HfP?
zV#(vP5?iUW60-ue^L4h#tP{}}zz*4DI>vteV7h&nU|xGR-EKoIE7acaA?8+hKx%}&
z0#DPXs}n)`C!Wj|W=<k2Z_vp@2|0MJ{B{bxWqRAu(K<y2bz6ltK08~nR?_kDK=A|p
zD3Qgm$Q@}-1)P8!RS{63r=SH&^ehEQTD>XL#?BWgdkL1X5P`x1(5T{)Zs0WSrk~6;
zjnSfY03M+(V&Q_noJwQ8?R$r<<*Y{GsSPmOkn28Q5LJGkJX2CwbkNSxpMYE2<G}_-
zTQ#EgV$fJ;RpPw{36mH|6WmGJbH({bRnu=eA1eoY(CY?KBw==6P2E1wNGhf3F8rbe
zUCN|%>m-l+)^7p^4LmB)`r|;ojm(UJd0+~YBU*8X4sqU6$;{5ZzaXcFMbw3irJK)g
zL`s+I%z<vJwV<K+Be{=-j&*FQeOd}2r8b2J%l!1}16ut0$!q|5$Q4I(=Y)97Io}bx
z`UZDq8uewqY6+-TsJ5@;kC>u9l~C4?4|51fHbgk!oqU8Pe1ep@4`f>}Jr;@rJ4`@L
zcjN@PeBL1x-1SoG+G#hAzRo#DvvZtmBIThhD)D4p_Cf_P6jU6Yu8-iv9{!g~hQV$i
z@xVL=>hE3|rB6#woB&65-6Rm2QUevSpho{%qU+q41FFuHV@JR@^A6G<!Z^4MyR?95
z5p7xpcfPmMr&gCP_eA7LpLLRCGZ=UJlC!sjrIi<UEvIc-d-oN7RcyfT^_mBx^62yv
zTV?dj&5;Z!yzhgtyW9MhK+2O7)w<1^#ir@>RH@}ADimHTl!m>rZwMS4vtDMrL6!F#
zTx;fB<;?bJF#Si+VMDTq@tV6n34juv6fN|fyNvATt!U^1dN$Cp3pm5yH+V=DZIjG{
zOhRE=^L(kEkWuy@Npg+k9gWOF6Nm&h%241oKz!AVya~;w^J#gy76LAAIbL;UYC{hD
zKf?JbNMohjQV^D4Z|~Kx4({VA5fi(X=j{zW|E5#1{)=qkU;np%8fX7eKm22_{BNlr
zSpOlI_#Yct`FB*t{~zv}|ER`)+Qb+c{%V0S#l3-vEX-wg!|}Y^r6!51z}HDkp0O6_
zorN@MWuPYEhqV@ZJDd%=fZR1++7<fXO3=@e28pb#@PqPuUH-VMXU>a6c^OHRHn?G_
z_S3cw{ysS=YD|{aDKSPB!4g2vqrhEB*`tYrjB8ioJGpgSr|!(2vE}X@t<*I0gy=0d
z<tbZnV+ZPq7m=f=ygS~|hYkeOkUn$vW7K`tv>vr<qHxy{jU?Exc7p&>TUt{O<MjZ^
znTYLRTe~9_zTfwq1isS2lQA^j?a9aZ@|Wp0;n=4DL~%p%P8@cVoEf=5Bm>oD2kvdk
zFWRwp>tdjBqNxssl`OJP7L>d~haWVPP!vZ(1rg#-YMN**W%9#Jh}eyV+!N{XMYb7@
zoB(ip@N2SV(U~N;wzvwtRn@H*z=$$@v)S;}7sAiZaWTw1er!~%^Q=NT3!Pw_j>N^u
zoSb~|^Qw6F%<2d^fSw5Z2-*sKDbPyHg0b6lzjAqGo30^b60lIhwxr0xnQWWDJo^UF
zRqLKouu52JIl1^>WCmmbZn5JN2aJq?7uZTfp#;Q8SHs-d#su2+xoc~pkC7v3SwK)g
z)Urw%j)xm5038XGM%Ey``ef;X%5Jj6!4)oT<gMUlkuN{ukf14tAiJf?jAIl$qx$f+
z0BjZk`*{TwGJIz1w;7;*TLG#3j2-h4)a`HGloND1FNUx+Dl0c|xf}d5k^G6_e4NHE
z@rBM&wJfIEnR*X&1(5Er>m{+$#UR1?%5_$8gSkg1&sn^LoP|=vHtYY%p;yX`w(RxR
z>7p&f;mgp2xHD(8mDeG-|2im)PiynegQzTwMi}!ai?VTaMP&)-$}P-~Hf#&0xsjKI
zA~!Leu;AJQQ?&XWdGrZVIYIs>DgL78Q90NqRgB45!$D&IJB-|`UX@KvGK#WI47oNS
z@KAak*bTQ%Mi;iRs_lrwSs4sIjB@hE#2vg4^wAc&J4ZJu7HhmZOnF2`Z@rVxvgdvU
zFQaz_<gbaHwuWlFA2`w(WSV#`#gZ-ZU5J6+9&|;M$F`%E-f(xR7V(ScAi34U=q_TI
z@OQ{c9h538GV_!{K!#HSwjNz_!16g;L6edO6ehR>Tv?x>Rv`AKFKGgF3#`-4bezTc
zpHqb$pxkTfFFNOeXAWwPJQYX%18KmJ6bfM}E}wXy)^8f5`DAm_1mfK5n8`+jyQv=G
znB=~#NK6;BLYT4Y^$}o!$pHmh0xf1678BR%Lz%KwK>Yaz7K`6x#|}=F!QyXEiImvr
zaPNane;_y-h^@VoTh9vywW2!HA7cIf*Z>f0CE+*=+G8{$Ly&>lDv99kU#QYGapcDh
zjr3xsP=D8x|3WAK4->NgopaC5@*i{VQ}YTt37HM#D8k}5oe@jgNY{?^ogw9Efm(-D
zJI0{&Y6XD%uBzGKH(c(Nu0A0d8nSs2@lgbwo)F%e&nN+7u4#VZoxM$o47LxdD?QB?
zz$e%4l+oY*{vr8Th-1q_UB@VWf>yPva`D#W8;Ab}Acp<Z)^gM~%<*<zqaVj)*U>B}
zDSq4T#sGrHbU=U-DU0&7zaKCPbq#7iQ|br_F}eh}D}Du%$b%?Wywm>gYVnt}@P7+-
zVE^Y8=znLh{udx#>Hi*2{}ku3{)LwCH{X|xiLIHlIRPUBJLkXC>vs&DQ<wUL54YAI
zn1<%w0P#?2t(67O;(;sFI5#LYlW~gf*}?6Xw6+Gw@3Bd2Dul1}vs;f#32Qs8Zx8Or
zac4AmKGzv2U)R%a0%?a;pcth}EElBm>^C*($=WtpOoWWflUFD5&Xn23`ls-(=A=2Z
zP}f<yF90XGv`KEacKTxpuI1gIJN;?)7Cx?``N5#Qh>>f^m07o*rrdTB?iV^JD!K-Z
z-3mGbpzlQt@E8()r7H3ms{gKxy?x7oF-rc;@Rq3`j1f9xQV6CEyD?e6id|^Z&b<Z!
z8+Dc&&MhcJhKXNr!xVa1>l!LT$M-2B2??+$s%%`Ip|IU#nc<h--RdAwapNsonE=&k
zJ;l>x=hj7&vrjGnUI}VCgAtyDp0#?tRMc8E=xG^#j(_I3@q>X=I+$s0C)Mvn$P%IW
z7Tk-D$CH{*SP<1j$Hsw*CB~o?WzY?AW+j5nDhzWXxeB{)XaFpYs;oZ&CGfm%jIu@%
z|KaP!K*0yQ*GKQ1AYSZr#(a7}#F8bTejI1^#cyb;3MT{sNS<*Ow<kG^@2hezYTWGl
zDem^u^$7D1TNw+Lkewmg!O*7PU-DNTyqD42j2=%J1_^}&DT_hNq^ZcIdpDjlHQ5pi
z*mpl(3^DBHD%rZ2&>|$zm{qheeKNix3mtaoD(0<T(%Zp<RAdCHyNFcOh*HV+KsEB-
zJl*rj1crt1hhhls`T?xTu}<3fE5`e>08H_2D5cTxwFBHc>HQf9<4{mPFA$N}vgwx3
zxofPfcD`!IyCJXqA=VB?Wqwz1t<<qx5LIkOzZucDJsFcGf6vl(EwlR=2z%6iTIniN
zPo^^Mz$-}SKp|^j<_B$Gi;E-2b2hT*#=KxBroRYzFPHU`YGSm4WN{9{0ZmHdnj*<P
z%j_j}YB1MZ3qQwf8`X*B>+fI>#v*NMD$4$0?CuuF$Fh<KjQ#=ahRdw(=+4Bdv?#X&
zey2)z5t4#xXK;nFZAkD!ucIQ2U$k59#7U`0SV8x0W`D*m?LDA|vf4Z_@#brr&$R9l
zYe__;k_Z?o_3^Jb0sld0;XvA~RL`kuOZ_-TO*?L<+A^PWr?2pZW=eze{!&fB;w=o0
z1Z`b`8l5B$tBbQY+>aMg!x4ryrktWOo0Q2D`BhtJ0Vgx+Ibt`x5O3LrkO>F>0H>tL
zhmM9za44@Ecy<;0&Sft_BtBhjk^tEJ--%oY@<og$N9ZJ8aA|=*Zscr@dlx&<<xJ?u
z)dTj|q}#sglnyPz3@2UUR=%H}VhXG;T^h44zh6d;-H0!9papTBn+%_-kgDtp#7gzO
zQmp*>zlPBkrH-Nf<Zd<mC4uv3T-GDRUEms_Q>r+xQaK4%Om~Y$Qbh=T*I-HF+o1iI
zlp76LCxm_Bu_KgIpk9G95N(QX`W0+3+5$>R692BF|9^Wr|1(;FmHFSI6__~K{v2=Y
ze=kNK`?2F;VLe^vEnuX=E5?+@vK{4RI?*l>C>0K>$a5-%Md<F5I;>}g8f$2=P@|l<
z5g1(7lcj7G!E!iV<f#yGcq_UuRFh(kg2y|WN|Ee&9o902hu1!gBFEPQ)XhC;%&%5@
z_Zgpt4|Nl5<{w_{6{#eKIVtCS0uYK!haMFti=*AM{5bn#XkGB``ufIIQd-F^iQ*1Z
z9F)!l9-ODNqgm^@a3;;4Xap4}p!j`YS)fE+g==$PrbF*GS%Ln(4V9=~jf&dKD}zHu
zE>P8mhChu|JBX&N`{IXm?Kd6%Zbd0Q%$DDg#p%HV;Ufp4!wNA2gs6v-6J?D0+RifQ
z;FEf#6gp0=;(0i*AZ(Fh&w`6zs!vX}^56&z{mb7K|9=lGW&Ixrmi`4G{V!ci(W}cF
zTACO+^YGA1G7|hVG?VYoL$74#Y~XA{!0^vcP{F|LFFN;s6z0FM>2dxgNMU5WwY+;-
zPdGTkL`ACW@{Wv|Uf&bZsyuhFFCWZ3UN^Ic+0R}hQsbtnv4aCLCQyk5v;MPBmO*P_
zx6TUOSRgKbO;&^K_i!a`u8xKu^D0Rc66M}d=BZV^U8FkVnD7S97Z0pC8`hNXxrmeM
z;5MqSap1^}RKsqoLf_*$j+las!!OB{--jBOaGTAkP=McU5t{cu7U4?EFz3IYN1@<~
z&Q<(u<@a^7&XI2mB6P<c+>jOzd8hAeZ8GDn$A8~5>}+~KPf6E{xnt8<%=;Aw<fQ6;
zczacz9{tdwtcUb6OA8%BaR{Eczz4~I$@Ro!LVg{krEW>_T!kF93#BcaH6^R>;|L(a
zlsw3GjBk$$FY0#-FGVaNn$xihx})meliOQC&#(aC^#mOl2VGECntSyuOUN}|im=aS
z6-Hi}j(%m-A8&tCd;f@;LaKI);?>M38|$@@4v|IAK-PkMfu~U=kV)5DysivH&Xnrv
z4*0MY+Cv-t<xEpFZ8XeFRF~o*t+tV#Q&klvM%dJ4eY1_InMvJ0g^f43v)WoJ0W;;S
z?H=x{i_I?`9}pLzm>!6Gz%>y<xlg>i+`YdcUZjc1a$B(pjWCgwq#eRB@KCivhB$fj
zl~t^dr1<+3oYH$7HYDEPd+L-02snaWIsjlumovtTfqv+O7JwUx%C1OL>0Uy<GOW|M
z=!~wm)M2alGYG>puz@N@4jautjdO-N%UDK`f_ABQ50w7ZQ$Yk#k*`1cXqgM88tn6F
zanjMPEDmA|w(gBdu3y<Yt&dy@CH%zVVEdFsu!&*#(E!t*^{3ts=DytS4w@jeSxzW|
zPpu`npvymDqi0t4yg%orl^0~65M0IB6!=SxR&(rI$=)v1YRS91+k+qDbR{RxXW^(i
z4duj;8kqyFJtHF0KjjHELGmVL$J+2$5|QNZBM3!RBoP}|LAZa^IdXw$qrdL4Z1Y~1
zrqKCP6h_0)l@#Dz3b29-a0!@e2^R*YPKq-?w6_-yBAhvlG+pu84dw-oYPUn~2Jl;6
zgn~GbU1_9i{qn5DueOD3qw+_WUji-X+c2h(tP!xdOiElnDicOGHZO}@0t+{)caJ0b
zh<G`}@|P=1!C~X~T*~%QcRgKGK`h>@!P{}wuvr;A+JNO0z+;1}rDW!|X^~^DateAq
zDNehC<;sUL2Yt7LgvXT^|KlJ=o5uFI9fhuMC2CfN>l!w?y`p#0MllxC64^zmoG}-I
zPVA3{IC6#+uKGk1ffWTB(-;tEjp|IMCVf>kF9w>vKAt*p8@v^@<@|J|=m!}!w4%e1
zjEA4clW_6$U?(YL+i~#)L4AWx*vGgijBs$Mty`3gB64bP)tP5QF@E*O*Zg2ly_l7|
z>D5m4d2su;34F=G*h*|5uoV}<=Dg!~-=XvYi32UiI4>|O5D)G;&hK0#s~MIq-v-?`
z|G(?+e+3>aoShU*9EI&{?Coq#Y@G=>=!Na9?HrZu4UA0aMNC{Rj7*foh3Nlv1rQNd
z5iv2cGd7`@FtIQ*cP3zCWcjy4n2m{pnT1~2#n9Qq-h^J#=1&j&XE*%Uo=LA}Vf>Gk
zf#okN!(|<wQ7uPm;Q&tR{_09XK#ZlGY|PGKyrUduAz}UAfs&X2$>O8xi-%=Hd#2;)
zC{9y;UK%r(q8KFCc_+||_9Uum<()3F0X?=CJ!I)zlOPR9eh=_i{E=GU4)p_j%Kc`j
z-|sKpr-DO3Z(p1^wpnDf^TXIJMIqD`s<vz@yVYb?6p;X*OK{v<#X*r_g`WZPXuUz_
zJte?Q2TCJe7=)6(UDcuJP*C*C%C}@i>3U;~CFaPuo>dCbOVPixQSjGG6Tf{<uIgqq
zSJtKYHHjUqEWsBF(mUBbyuJ$2`!haA(H6T)%F5=H7ge>*PLlZG1>9=P92Nq)I5o^w
zoV059K2xXSLNy_k5Y~Ty0{|Mh`v1<1N*=|utyS>h^g26rXzf(b&>Vis<+IhwzGaBl
zl6p%3=x2RL>(byRUks@5StN6Wz3R?9j*8T{L{KAuMDKWRom5|k*eixCAWxzRdoQZ>
zez)}m^8RUXtgHrx6EoGaLkWP+jR-U5?(Pbh<m}-$5mMT@xLmb})@!#YmAer<`b!JI
zlo7rpC*DhYDQVJ^GKrPWtrd4dRujv$V6t;4a0H^VyRw>%f?Nf8Ilg8N$Rz|s*sADE
zL!GBiBn-JN<F)4M_XwS#{hG}+W*2XW=MLCfcW;!XC_R{Zq~7;iMiVCTMi$8Ok99Xp
zVF7YL?VskDLK6fxf0&3pYGXvZpZtlYX{KkYmpF5Zw*5bVP1HhKW5`YQYrT0=R6^@7
zs9B*<Bgd?>ZdTbVM&r(?l_^-;#H896`1e}jSePBQ)R{U-3nZYm_?F28sBCcr$^V27
zI|fXnpHIhUV*u}dkn@AaT`?C~4oEldXI+iyWOf++QI%mQ6}r?~1E=ceOZI`024CQX
zd4K%qaio2?qwME0QRJw}*$EMyn0h7?NZhVH8`@&~4X6f9S1{m&NQ=ZI<LC)`8s6*J
z^>#$c1w~`y=i9=~32MJIoi>gHJ<w*dj1Rx~hpcvhzPr9^f8)X+hc!Xmgx}1isij}5
z7j!)JGp`@~I&&(=ok3^uxN9sHA~SBr4I%{()eg;-WT7d!^Nv*<(&OE{v{Xn0ud9(A
zR)}{aQ)GcintOpJKgVlJl9gHc0WL7IPieKyLMO3)e8EqVeu4|?5etF+>=4M$P{aAy
zS!lNI@Wtx_sWjiAZ=kYoA}cC7e}x=A^O0|@N${P=&WUI(&8z{qk8~R|o^FjOsIS&O
z&@oZ$OmT2pO?nA5H=ivm5tAF{HQAH<nBXiJ$lh*?={lc^rkY+&*jl@x20iBLn!B8C
zHxTcG#M4n}Y2v=P2%XaUvxgV0i35%<y=h0U1<uT{t33YMl9e!n!WFvQMq$_&B__@Z
zaQH=s(~GYlMt7)IkvJo35_;br8z*dWA1Z&FU1))qN+l7**=}eN-7V=Evr(kAMQSm2
z;K?s|0nnakFS5Mr?PsBY^vAY#pcNjrmc3szo|1&4?TLVT&3wGQpHb+k3u=QJ{l^Ls
zzf6oYd1V<<T*eDPVgt`>u9{I(YTXIG;HK!5z`(-$loa|tWU|tiXiSo@;WfTXkAjV)
zGdIY?V7+)pkZVVP0=1`fyCjQp2{SG_vZTwl3cH_L%ay3SiI${GSDwy@t%;Xws&ZX7
zH4(WHt8~%R*CjiuH*{22Em6iBqdscfOa^hH9;R`X#7Ys5lc~kQl5RZ;Hm`P&@{`~=
zAnr@MdB*ArY3?(9$|`L*H`#RPE5<-7L`3yKplsP#rr`z5r;`@w!0VJ|#g}pwowUT`
z)g(o+{=%AbJy_<Th4z8;pe){z5!)onn5C~^z9*D!KmG#3>@D>GY*=!#HD_MP4X*gO
zlyA0PkW_b8*3$)J8&Ubg{>^^g^+~Wcs4BVYUUndvybUd}d}fBm1Yb&)ql5qlH^h-I
z^HK@}3h6A7ne!an8Z#?7?wi)oWOnnfcf{2yI)a@KKCgVGrK+(*YFOrBDCtoP;-Yar
ztnx(*`eTTSrI#nAjD!KieQ`oOuoOekSU>jIRut`Jaxil2I&!0MQQX~GU1I?2B!3hJ
z^@cn9q~8AGgX#nf{OH^qx6Q)i%TAlw)9&+=3lLc3QlNHnM3J$4>_$i(NFjHWv7>qS
zKY<)gqmbK3Dl$x+5`)dtw_T?}rdk|^urrBjNA%!6S)Ku(uKuL2)I(7jFr+_3L~hBZ
z;R!k^{QGjfwPjzA+nCL4@*XOMa{d<pH$ce08gafk$r;lSL_r2Pi-m)*yAbgj`i5oD
zobmw*@hl5;f#$p}_6IMTFAM(>s>9{SrS!d`IZF=r-m5uUK|@gKECK6B;Lxtc_5*uM
zqGkBn8s?{=W|cdY5LFv3Q5(p%{XanB*T@~sgX@I1(o*;c{-}Gv&^`vp8uyQmKvBcH
zp=PE|zP!{6Ih$E-fbCqM#_Obl`!9}*Q3@)i0sMKNu0R9zjnao4-qzb4W4?}bADXQs
z*xg#1?ISkLHly1(drVW8$vrp))8_=5z#`W2(nFvj3xtvIiV1`If}CaTTXmJLEAwxl
z_3Iqkdp{{0<bGEh$7AbNop{Jd$Olhwk_0v}Bv_lic<5adlA&vD#_PdaFhYk^fU{x;
z+l$>1emVV{pV59UgHec_U@8(_GiYY1*uHL?)B{*u(e<|O=lLU{J@lZ{%XrPD1tdH(
z$+xF<X0MS)hq<Fnxz2KGrkoPc(V-Kn*6@l9gbrBqR}Tue4Q$+Pv}|UDDc#UHmw|$n
z*$CeRscI~e5hRgw?T>)vFAn<ScIZp~sV*M1KijMi*lYxUMJ8d!Sa#7NBm!h0H7Xy^
zp6-vIj`0Q?u<4j-srZ3BIi&)+VHc`zO9Aob^mnZggi@;;EYfpSI9gyxA$ROt84V?#
zx^v|wd9c;jpSF@ziuU?kT(&eaZ8PUMgIop7>gKu5kbd7Wp|G=;AG=#i)_`M8--pE$
zx8Z6;tRpvf;0&n;E2W<KyYH)rKN|*~Ym4e69@LqdDT{5%j>y`4d3$}d+mmczH!`>Z
zGXBdX$v*ffpC3qFsd&vBJPCFmF67{HJ5hHE8eLWAw2H-=vZp>RS#lAg64IfQ7$ZZO
zXk(604y=}yA({Tb*M0QW(7cq;9%4Z;u#NWslBHj1X)rR3w<7pR0U4gqAeE!zF4iu5
zPyAdFxJ7n~CerWP=!hqZOUwWV@qYZ9sWfHxzVBI<4B<k`nIq&zUdXAR`E-4+doT#V
zSQ>D?y5VE55-7AMVWEC$yi14|Z)w|0wP;E-klFts>;Y7C$|c%{D`h-N6tI_rGqTjW
zt^n89m5f!so*0Eo9=v^%Nw$~h(LguJKb~kc0(maGpd}4H^u~{On~$pCjdN`~)Jz)I
z)F(=M2}m(MCi3A&t<{H5z4SV7h2S_o&4jJ1b>wK?oJe`rvLVgHct%IA%Qc!n%os;W
zN`g_vIjwZ&kVmK~)1yS5))@3VT@x`A*FG2-Nk!S&aEajT9kZ~_)2t!GDb@sYL~!`$
z)(Uga<;gbs{%EJrqTn)~H42&ZH_dXJspc(x)>DZDX*6+V3~Vo<UenFL;!FGNL}sqA
zsACoYTF^$JzSmGjkULcL_p>|&rkaU1GnEvX7Y4-o>ECf7Yh3T^#y*aV@+eIiOh9}m
z_dDnGE@xf6#ZzV34Q?%|!)jb!?<xM0RS0oLFNheM?&X5?J<MlvO%Z-7l<x9Pz@*Sn
zTM}<YWT<SLNM~^z`9zX$&z?9(*dbKUvNQwVwvypQV=$^fle=p@;*oUDEzzi<>`%tU
z_e`XCj2D_bm0mX0&KK;Z-gemzKBklU;0)Hw%$x;4!DlY4L$k9g{I{K;nx=Wm??r{J
zprh19Md3({avtywSJ;!(&CMx4amh=1)v)Hl%vr|t*9|7-Uq^4&7Dx;0V^NzM2;ir=
zx(Jbb^>tk`V*=JSO~G7^6463snEt&3jTB!2K8wP$udJkMkpQ;Yt4an;L&r7^u{K4J
z`~1y=d~_?!>7mlTBsqZRm&&FgDG6d9xDEi6_uc3+zk7g^SMV9XpVyQW_Thy^K+k5A
zpYqzB7G<_cg8ZSstYj2)=+|`Zmefp(hK0L=42mA4;p)^*>8DWh{@Z531uG;r5Y}^j
zYNHO%XX5FLX__2dQR1|;NxfzF2tT)R&YUY*^`3X~+{oclVX+6@?w+dY!QI|G>YB80
z`gPPU*jXAxEX85<y)ksR8O%gITEGV5QLkxpB0(AUSlD`GVV7KjlFh!fGJzo`M8`PF
zc;P1iNV%YcpS^W%jUg9`sJDAu5A9p25=h*eKk3CqA-oJI(@LOD_Rozk2i7Rf#Vz*V
zeE6XSBAp?3k@ssCC1Wi2y#?m7qMf=GR+N(at5@kqmom~C@q;xf*GFRFX%=T2{}2sj
zHCE)PdP+YVxMhwIA-dD21Z(XqbdT#5z`nJ(!ccWV=}xozaE;a*WZFM~-fNXJq5(Q(
z<X3Pn*le}IWO#o!Y-Eg8dm3;9x(!U>i=&4wE{uy%D58e9ipIwXRJ$%si8i{3`cgJ$
zfBqS?HSty`7rktHL2Zg|qE*PsBEFs?!WdxN@irQB7(0DVPsEJpNGSN^UP^`yY=~bc
z6Y=6JP+8j+i}Vk#Q!9ZHAEyQ|i4pIri7C`}j+2mW9gS&x=p?rz;(lv};>ln~KwFiA
z?IAU2xUaZ<w^d2Ti!!()CLUUkONTPQ3yzW^zOS{GZJdErMRBsU4x}ek(@WJNWA_bp
z2#+|Xpx!l9<d(n!bI6)NvRSl$39@?8xQ-L~l`4=3+yWbD6L|mpzho0CB!;GdO9Xef
zhF!G#A)?lOzDqSENkF7-^8pS@k_$b6h+dAC%Zh?}84cTlpIfZ&x6`SBSl}c~=1>s`
z9mEOKtzSryuKi$jqw6~aG+daj@*2Q4Jc0gZzA#oMY(ljf7xlk&wXp>3U1~7*>G54E
zRHI6qKKH>)=tZ3puQR7bq87pAtdlxrd(gKi&-QFa%TF5S#AKKn^VOSujd)jPa&z?w
zt(qq=&OFl&i>cYHvS$TOscJP=4k=!_jYDUq=58M3%7e8)tljI$P`#Vr_Mme>*ut8%
zcH&&*KIyM(godP__IN`2#*){;`fn(~>l4MtW1qeIDfTVxaykw#^{p-kznJHan9Tr&
z2yO82Krnf~ldsD-8_az>RNu{q1Rzap0II`d!Ytv4B=H3*?4B7BdJlS;HDgaBP|_ZN
z&ycr5N2s8?QaJ9e_E+Dn84H-}rl9ciiKw;cLCp*wZeyQXr8e{A1NPd-VH9=p<YGYY
zRW|Z9;_zRQzCyKw)eop=(l&Wly-};-*a!m9Kz6OZIOT6Avd_Rz5p9fNG22*}pF|N-
zS3%-TE?b^!a?OVeIcZP*NAU5&cegU=|4q>qBHglcoMR9aNv7ZdZC`u>s;R<yrrg0I
z0DKf1@FM#`iO<9FWIGwXZz6@i``~*>k<z-|U0qn4&M}gSHO7FyA)haZmXC-js@nfX
zoa%-;AiQD(K1&26%)V*y&?SdgKmQApDHIsuP<Yi&S^niK7>Z-D8;;Iv5FH9!lBDFD
ziZt}g$)J@!qRkvqtZ5I}eHUtYm4$V#gBwlL3or|)&=C|IcPVB|x}G_>Uj&<A!M}4E
zsf)JGqb<om=>f~BVpFKqBT-YR-D_`{NBz!$o9HJg;p)u`84kqH3*hR)#z``ipjC1Y
z$#H3UO^BbzFd@$M^KstkpTiJm4S~o>N9s$q2t3?R*7VStn5zXO0fWwn4B!WKBl^!&
zR|Wlp5JqzM`mCg<)ZA7D+K9T(ik#zOdW+SY5&SiMOIE19a>#mzx9A!#M;V#ssg+o<
z#&UrwA<-l68Vi+#xI)v~Q8^@`{{yR=?ODk+#ZTjVc92e~jY+2wK3Wn%!Mub~>`{`Y
zi8tVobDw?G#5PA<->`Ah2Bduhyn9Upq~zR`litkR^(lGx=-p$QLf8O&<@JPwjcA6-
z&*IPkbIG(TkqF@zSaw(E3(V{opsLRSn;|kWenPXb7lIP%7evF2WTVTQs-4wuJ_qtV
zKt$otdkp-#*CO^_gG<P9+=?*VdkOOz#l-eUvIa}!RFhew+`SCw6>^aG&Y<9&rxf&h
z2_lWvZiaW}RC#$U2z19@)-CN@pt*u_LC|L9?BUDhi=5ya%%apTd$UA7^c5QGQj@xy
z_w(}P;G@<5bl7wE?cZRcl=TOS`If(|EpwM>9cZYb4Q(cmbGGt3aD;Ln2I)cI+XC>q
zbAt=xX@}7igZyff3kWqs)gg)CFK1wdWxnhA0YjD-qdyX~k``M6vr16&!5eu1k<ZNl
z>jTfi3tx#kFs;9fDlGUwgb)$$&LyswtY|9q4yg%L>2z%(bWjiQ-!40_Z5QN$cvxa|
zBA6;-)XuHl?b<F#!W_3uw9lb>vKOhyY9mCw<=OwOlpAl0q~ccOy|GR0jTru}hh@s$
zZn#9%qozt3$TkeLOTJgY-Acw|v_}(*G1w))ysx3j{rj*um0=!2I4c}Rpw47Hce}$u
zZkW1ZfC32gRNA7^?!$R$@XD+cWUn+bML9Qt(1<)ajPN<8st#57MBy_?0H*_lC7D;e
z(OPEb7qW>6MO(y^L*Wh(;y_d>#K1Ni0x0d|o`hAVqC%KiKFuE@-4T;cA>gR(NcgD#
zyhGCkg|SxlEcq&}bDgO&CVdAygL|S^<09F<P4yeOd!yS7FD6uHszr-ZZ_S&cc985?
znH*w;+MaI^M2q7pQPEOKu7kFiMtf!MbadB0Uy&ksge@oLEsrFxrn1C|_?<|}-7aS`
zTx?L0djQS8z_l!|(SO53#J#SV_cJY0WZA;KN*D@QQVDmef#C;zGLEl}5|z}R95@@E
zNHJab;fdF|J!hb}*U5p&$RW&&FZd;62IgE7tF2sY#nZ6z?o&Nv!U&GObZ|4<9IrAM
zUL?Lbn(YLj!FLt5%%I>$0fw*d?c)}p_5Z)8`@JRrZA1H?A?VYi&&p<2z;fd~A}yTQ
z7ZUEfQw2G|+S4C)ZzhyIrOJ_<zLzSQag(_l=~UP?=TS=l1SJ$KNBfv*ZGa<Wa+W=t
zx`V{Mn2?PVV<Mzj5y5B5tGB!19#RQV`-V*~^eGP@sJ4xsz|4NgO~$&(%pOhhI>Px#
z^4`=0byGnc%^_<!3|Ug<L`@M`aN$EHh7;!jeh{(eb_{1Qi-9so#xylNrS*zA{F;43
z4i8L)mm3}HAha@*Pw$yC0|dpL8=sBwej=!fu3I%vH52jh3n6NFv>Xy|vVouoaeF%%
zD{i!(_)l_|ijBCnJ>)&}Sf5TCg9rlzcI{Y5z5c(FKPbW<Ppqx^xLyY;KfSZ)p6;vT
z=s7sj83CTHPY&*iHgHE5x1VjaC~<AFHz57Mr>ZYhMEiWY-EkI>KecN&dujdEG#v%a
z0JxQ+*%V8UMaS1&W!w+u*_-7j1+ja?%zElnzqu9Kwf*TumAYV`I=Z~Zu{_G`F=#j_
zrEG4<*oZz>y977p;$!to&Cy)oKzW}sCbJ^i%62piz-#k#rNEFmN}a~JWzokf_#IV|
z>V1$`xY35h@lqZd82z0=W=hH3Nd$AEPor-C(RWU?!758%T3smDE9j(kLwnJYgXwhd
zfX{_l)*!lhRNhty|C^(om$h7)(UAJ66FX0*1OUAU;zs#IeVQneH|k5X^u6;JHK+m8
zFSa0~@=V3sv-RK)?24=?N3@vKYZg@}cLp2xI2Vg<(vDYAwmqWK20@rbm+><u5QZK&
z^ZWX^C*4Hc)lO6ICu_7Udhml0$wZBR=6;cMh^wW?9zGkLFlhH(vQ3FV$Lkaf-OENv
z$YQl&(&+F~EvQckzA~e;H}kvPCXNTd&Z~DIYV^7m9i(f7WY|A%_pKvaAr!=0p+dzo
z<ssSY@^CM7QT!=CA5hhA=$BSp0w2rpJ{!=(R-V?973`;g1Gl(utaxF*M#Lk>?cOSk
z-CXh~QC;uPwPRZd5A?!4Zx9lXa=3{i(LhlEx=1AOHzMRh9<q$}q87w=jhi#TAkm+R
znEw3qs+lrS!!|707F=s0`Lz7DO%7PkJqv3XLy$f?__^G)9J9JjHD(8d$?^@6xP2Uh
zcxP(W<(<<80$+L@NF3RZB6=iGsyfx{cwDlUD$t|4;2PQ7>v)F6-=1+;Ueh~h(G7a{
zz1FKWD%RAt{)~FO8ie=y3WZcBtM2uDF;Fm$x<h1jXtmlJgQ+rf5MvvMN3Li|-**pS
znK-aR;**2Rk2kF<#CM4i7V7-5R0!N`h093yeFtHw_*pFIRe*DWiY+)1_1$F!xTIi$
zKWp$L9k{Huh|72IlBx%AqB_&J+S4#>^b2=6scYfw7@MnUET*Sn5*a~y|M{^Z85;_7
zpK1I!2TD5dD}rxl{Z+K$VA?PFcO?z;#K*divw*9}+f8rgWz22bO&^7=C8Z!#Pay7T
z*Mz`Vo4_&H3osnSC)N=fZ{>wzSv16OSALCoAy=#;d*mHiT)A6*I=?DLpaML`HuaR6
zgtx35C=~F#ES++7sCZj@)pfz<-_|)^r~dvAq}dA>dj+!otw;=l%@oe!3-`qfg=|_K
zv%;Z7=T5jx^SoJrvnWmVL1S;nC=OLhQ7i#_RZ$A^TKiE{aCC?!UJ}^%@_m9PH9+UY
zT9W$&2qao3O4NT8oW!m1{ra%<!}L6XBBjpWwZ_R%Pa0ZkAjdj1(U3%fh@_;+ZKDVH
ziGf5j%M)wpn5CSZm^rVq;=_`PX4x2DdLB1qYa(TvS|1Btf_bA?b>pcN68Hj?-t*z?
zbjlgh8{Xl}UbsH#yk1gfoU-+8PbQ7)&uOYb&oQL`3cg~>^Fmf+#?^uee+sA6ZIG$D
zsE?L}WoRy@juC+sEaC4z(Q}&t@<pyTf=v<9yTa5))f#I?9IoK6JVDzXmaz*7thp;P
zc<0rF*L0<D&Q&X_q5oO9n~R+=m%A}0^MzC^MCgWNTCT2<*e1F%5e+Xm9Rh7m!-9<j
z^d!rCvb%4ihNf&6`@30xm-}#B?TGa`pozm}t*XaG>Ej}T1#2WbWI#^(70U080^WMr
zxB^MIc%jLM<`8;Oy(wr`qDojskiyJNy8){dhrI20lZP75j~+3rU`4P2J9W%<j-bj#
z1ST9Y<UO%SJY{5hervteh5uaY(@69x-vOi0`S+%XvR$_x4P~-Lc5zqb1IIFiCxYJI
zkLml~^kOM^L$6LM8I8J*D^mr;)tD!xRM;j3(M>AFl_}L_teM^#cXdBD<-VQ}O2jZ&
zWHe-Z4qG|of68It;<y!BAf*RQidmIgMw%TK+7f^+ZImNP-9($=l}mH_V=lZzD+)^M
zTAj!fc=G%=%OUW$(J{u#)js^73qb!lLD|@@E*(H(&fVFT9sO2B{)KPxjvHLPO~Yw%
zpuVQl>eVv6m6%rg7`kjBd5B(GjKYw)1T^6WAqLP*1INF9o_||lA#PukrvbF*MFxGO
zF9DVKsvAO*R239Zgyfr9q$&%(JKKwq5T2jQ3trrHO0eCH)fl+Y)C{#!SD^p%jU+Q7
zjtWSEQUiFofYaHn;gspj#v#e%pLIq88@<XUq5=KC>jzZ__eL)AZ?Y&NwrCI&bKDOv
z|C2sJ@@~|{YFf~a5H7T8;*vfZG-%OO`-YclI43n9K{MLH=0m-YR_6OSoJ#$j)LW`(
zk{VO%lZA4^n5dvsO#8@l!NC~MKdSa2Iw^P9!$SsD+|A*f%=|D13$i)NVadye`<+*d
zI!E6V#e3M@r?aa<GKu6c|7GMe(&f$(-^P2!h<yuF-qM~_8Myw5TeNp^fNFfI;A+yG
zIN}87&h{5xNvW_feBcBzh>j8JxjlH$9Ysty0NGqdsNxbSn9XWyMRDhl`-rNf0?~i=
ztLVTxcRfnCs9!ePvqQF9PzhGHwJK=+(XOj&SM?3402V&ujaZ|NpKCVL6Bnmcs?^6Y
zN7G<#)PXxJa_~S?1GIdoP<DTJ%^uLda`z26M@kzf-I851?c??!ubT15m=`KvH3myd
zKq(<PVgG{6>wq!y4r^=$GL@Ql8WoqGdyd}lG3~eoHrFuG7@|!M`@WS|CdD#k7SZIr
zqDHHN{tJ*@um7+&te(0XiI4%?1DY>TvD%OO_Rq6`9h$#68I#(Z$|djnP51thXpuCP
z(zhF8Vp+$bdE1{j2`=j1SYuf%6M{lnyZd264M;eL)T>5GpvwBffyA{a<CO<aVl^=K
z{I`t>fUI@rQj0`Cd*!Hxbs6w0Une8)b}$+pVhAQX8q>@~H3v7oR&dU{t$-V~;U{ty
z@MdD6%m~#DJ(0|_hVBU8w=21f<tSAI1)>P7MzJy(05C?L(k)z36C#~crqBk&`<i(n
z>!iXW&>yVwQ`dOuoJ)zqk`uqhj}#?%TQ^~f`@5IP$z;8{A76vGC;Jpv6=bhg@n}g}
zpBpFf`iBy0&cuQZ8SqYkDi@25x;+7oTmB8huga~?#U634DOyHG!l{7*wbhtKXX?|F
zBAAH)M_N55ID_X!q;?wJ(een8I3ag{kRyDLzl&1E+%gma5uZ9_L~$pBi<hnM^_-8c
zJ}}sPOD8c^5vR?`P!VM$**i?5?W%6m)Nby`J}s41$hR$50af#ff}!lPkX~c{)D)ea
z0=IaF0jjHoy?DOCtqX>mPM}S-sO;wR?=g>lA}W|#y!f?&kQv;fr(Faz-Olpu)#bl4
z&e}hq%T}@9d;GKhIAsg3TIURfRj}r`O#)^KbLiadhsy=N^sd`~Pvsc5{Jw&&teIN_
znopT_%<dAb40_kXf7)1tj4ECpUvlyaMiry-kmt--c4acbkK!~V-8N^hFZ^$;t<fM*
z1Y*BXLjnai7(UN>z}ShRU=glE0T}G}E<MREygQ{=2#Oy9E-_OzYo|YLfYalnNK?!V
zgbqUvtc|rTEU!Ry&a^{cbrn3#7yFv)TBt(`n>B_DiO+NOZYTUy{gD|35^s>)lCEPb
zYu}xgxI^mZPBjybTj*~Sfbm|s!<DX!qBp}zhG=1?cW`MqSd^_&YVk=RlPjO!qz8?r
zG8AM_Be~dvw<UkaMuQ%U&^J2rKpU(|0lm%&EZ2cVc_mZ*BdUJbJOV&DlHDA@m5bs)
z!xxEeIPlJo#lg$dmQ|JKUczCYy*5}$Xjw*;FR#(c^3`y8OVVTt$*vt2u-b_>MP1wm
zs$l*RnJgJNN4Dh6O{^Kl+SM!ZZ6<CD^QttdJ-Qd%)Xz_q5^$38uEEIm1<0^x?6nAK
zbGl0*GIiCoOfPCE52uw#5xMCalY-IYU9s_P0ad>-9Ozr(((GbGKNgEM3MNboUYDgj
z^#1G^CSPpKgvZ8S>1ARZq$U~bJ$FsLH6O2>p)RD0S~TZGDF20*VjA8JsA3j``K;cc
zBBibofx7EHF4GjNFjp6LP}pxc&ifkQ;DFY~Ux1xu2F3TZSYc4aC<vp8998atAcL3g
zj|=GRg*P4<zgGNahEl(un1p!twj#IjEZS6Pt?Fe5aTi>h65?BEm8ju;8O$N&COcRY
zlT2O9ZIE$D@r|&)*ZO{Ott<)G!G0$nqLg`f@jl)4&TvBjtH1%J7s;9|m)e5?-O?%s
zn!*}l7}o=?=vIuK@0Y-t9sO!6;!89sV&IR((Vq-Wv>*q8345Fd^sG>jbxjPtRmFNd
z=HaR}&NG;a{G+!L;T@(Qgp(Nd1<O<a1a6fdl;?uPBcZA8JRJ}WG~yXok-`0T*CDI+
z{T~!p1&X=0kc@9_XHj=km)0V^w>T<1h%hVpu<z^>Bm2jiyJiaFOr(N@VY3zT)T~vC
zv8$eOKH9U=JwF>bYzc^yB)>1Z4dv}dm9p?tGq?RLW0BfO@#s_Hm(okq@n1hN_Fr#t
zDWODyG;sY!*2<eya|zvzG$@W^7x^ji>1#smc-U9lOO4>G8U)Z;1LKkK<>r#R>>?74
z=D4GRbdW!&c*=c=cV=sY*JgM+)6r;hf>w5^zPm78S3kAV51jy3HFN5T*RnetYNVp5
zM};vF;(3Q8xx%?TT#OSRl_849W$przvawLa9+wl8MkZU**^&M4kfjDQ1=?w(Wx&Y;
z4-eCyWSco2X|oF}_FTwEc?AQd=<U8&aO9a;^JH42J3TZ4#YO}N9(3P&LK0QPvb-&&
zy3B32q9LyuQIIB1JVLh7U$8co6Z4i<d};ooYTiS!?U6C^c?bPH@)a|EYl|KPPRS&g
z?HjWdJ=*I(u$5N})>_qv8k42!u;18!0?kuJw9bDF^vU=T3Xw0%%VxnIRe{32{2+!~
zby~<aevVmby})O!C>5Y&7t&fQ;0;v-3JRSwqY}SiUDYR4P)uge$hS@utjH}oKhy*A
zf+a^A>Idbfi$3U<1_|7-Q8F;*>&o7y&Q2zSu$fKonXkgJJYPQ{Er*H9lp<8}_vZ@T
zDF_aqd!fA6QNf=AVO*5boC;;l(`6<f00q=C>txaT1nf?KFEwJ=>{V)+D*AKFr+1^K
zEY2Fy_GHS|C`QfDUlv|s!ExG<V_cDMD@FV)NX-z|%bR8elO0Nv4oKzOwBKQ3*d$=G
zyrT%DpaJ{hu_1_KS;>@S`>#@HT5nnjf7S)VbwdR0>aOoaX5dns5P;+hd<4GE&&^n2
zd3y33=RpwOeF{NMl{PD_7A@TEEaSXTh8Gh%^$~QHZZz9tc7rvpmj2wHR<Hkvz)SIb
z-2EM$x}rm_cI7b$Y1+t6<)U=KbvBmdI{Gm=O=P1bEO;*f+ZU7C!N=pLvBTPMg;l}D
zNp8oI@E$1tQ7#qTY&No^wX&03i|%F0Wnv6K{`HZ*KwpeFLU3o)Ihw(T!GIxSIP1U-
zlDAQ!a~xZ=e$SBle>l5e634Z2iDws5&vJa*CQz6n8yA#vRC-y)i}`;&<;cVof^NXE
zmtt{Voi3z6E!^+%9mH3|pIH0I&E~TuLw?Lmj(y}3nJ?ZpL`0JkIt)8K?s%C;;};X3
z)ljr?%zJbW-pB(dYSw^EKOkg|Trru5Luj0^0im?QAgxAf1^w3(nr2c!l=~2R@<9YE
zKR&-&)5}^T?fiiYxnq_b!5D6n(ZtfsAI9`*AW*hNf~iBq9YJ~iUXu2Fj#i%Vwj`Ir
z?Jdk-8JJCM;bu2duVX$~jA9^zv&~w?{9<KI1w!}}BX<8R@-AtJr_+Y~>RBYM4K<+B
zm@hPi1UcRRJiq*hLG{Cy#veP=1ogTmIpPU0mPFZQVNYPwo@nR~r6HB95o%XYdth)W
zI?Pv!TmQxHw}Osjc!qcZLY#<3nBUF~o89fcg+!iUqo<}bo<F;jFSV`{B1CqQ_NLDb
z>YEyltu}+(P7eBEr?nC;^u$=u(&1ieXaH+Kl9#7X4!SkbkC+5|#(Z<tc00fC#_xcE
zT~`%{sT*5(Ltn*VV6zgkx;0_P<8>v2W;Sn+2#0ebq#|}{sA2aQqB2KGg7%m)GD?C(
zj(0EB9;|ox7tCi4rZzEwLN?W=bF%dtV1{F;U_2CJc6q>})QTQoofsuC80PjOae2y4
z<=!JJJTnuG$nKU1%_@HONC=bz#ijZ4C@D6&s&JlGK2j<2JH?8);O+|05_gn}w6@=m
z0P8O&I0+Z`8<PbY9;rxFbOGwfg+3Z;{Ci#MJfp3+KligQz4{k=FwM1Ij8+3PO7#+P
zzabl;FH}=6zCI9Ij#$wh^7N`PGEgN&N`t)WRwi2~=b!l!6WQGf4>QS);>y06k2(R_
zC1EQcUcKA@-24b_isa!vs4S&tqLF&b_g(VTx5*2Ip8DG)fmC{CA{u2rK)~KvoG7o_
zX^!Jl?oEi(So|O~ymW^iWB5B44Y^e!i1xj594g{BiqG>bLRk*1PK3h_l9=|z`%#(j
zxY;eN$H8`sgL{6i27i&>frZ20{+bd{7XSSrMM;~;qt3meNkm9)S;X@|>>fXfcByp@
z0eIir5rwg^!hds)_Mgg2n2=q4-(Jhhc9AFy&S@SW6&kEg(Pg4l#|S22JmT)Z{2%$+
zuau9M-I0#;hV6MON(-in9Waaq-$n!NkYJJ_RB*_fyj>Ug?Gqhwd{^nYsp=q#$L0W(
zIvFcR3HMtf0=3pukV*DI63i%RGdyH(!RNE=UF~Lw{%_lKixttTG#j%qVt+nCXs5^`
zd>2OYZHhU~do>|SW3QsU)Dfc2Y}PNFsZE0NeWwV<SEhCJwQ3zDcc-AQBVTz+<*Og-
z;EkhgUWY%`@JaG~K=+0$g%#v2TVWXniH(hSi0W{Qd;j<s#YE=8$8@*7cfmJW@cLR$
z8mzpyD44<LaZO7PsR<b4?q7(xUsGo)?*z6IyVOp~lG}NiCXaOK(<9~|>m{F^Zi<Xk
zj3Nxy=`J@DL_dSHppAoR`0RfV>y)3Er>(a!qv46dOsC70MEZSdpd>#IlkNcc5!x2I
zq*l*{83|Tc#A)CAb>u_j7hu5fW*~mK7_JHt18hRSK^h)xi(Otq)1TNPxF*1iBv47d
zdu@aTN)JoK06obtAOS$<iF6L--I4i2`J<Hw5&HDxpXkw0o1oI3)w+F__epF&bz*rq
zKFgf-u@I#Ml|&L(Agj<TON4Bis;kzGDGX8|tMDR-jZjYZQ>%@cH|rvytu2;%&GAAS
zxpOk;DkT8t`LlbKIVHUc=9YO;w-eaSs*lj&94a*r@t5Y1{Q)}+i4%)z-c>Tq(4-K1
zFQd&5secq1^F;dj+G*ANEj=7<G4nh4VXCDsD#w1UaOUGw;%Vs6ouzlf@EcJ0*&^mp
zIfYab>YMuC{pOOC)7+DLiX71>@=U$Btw%dO)qfkR;)XnltP^C8+K2b|Fyz1h<|S%S
z?x?g;tUXL4GN7-Pw_Wmid99EAbulC%H?(s1Kj2>!-P%yNYxj>&U}NH_ix7FO?nA%L
zRVC5Hh!z)@F(TG$+e*L=@1!H&B@l`(CW~{w{}Y&INJKZFn_|>uTIvUD*}Q~*F+#Xf
zr&nK-o`;abD1-v7QC2`S{AEh(+;(l=YW<GB!i(y>jS_EsDPP6*JA6#jVP2_KaqfvV
z#3mP+Sza&1ONc==BWi2=ym6iI7^S6YKlqD!*FZA>n#72PDF<<K773#%>f>S_<E%RB
zYoX7^T=t+*hMcGUu#X_^dNX8}NHP|<_yJ_-K4!yi&|umVGqy=j%84}!aux{Rt(e3q
zXJyxRa67I9^oEx=X@lXOh`xOGjF!<g>^Wnj+@s@VOw(&;10<<l_TY@-=;DCD6mW&y
z_l@)$`Nhr`pj%49;7sdQgiZ3cp=Xu80C^;oHP2(t$Wqt&^Ej-|BC?p81{&8&SKBO#
zrQmEvOJuxDj0D9AMh0-r?j`SDgi*&wy$D~<^;~(#<K=)!)zCw+HsY*P>4B4aH~)wj
zv`!xqYPVznw6@RPslNVG%*~cf5`Nj4A#wVAkR%qNh+aA4?Av0C(0hnS157vbt`CPi
zCLPou_IfyRKcT$m(~1NkUUkJF*UxpPRH{LyH>z$tXrwN|wo8Ntg|o#m5K#3}(w3D~
zr2@%o#YT>`m!ddB+zL#uVQz?`fHz5NezX2gmV`GmJRvOl2=cY-V979(xRIhtyuF%v
z2q*sXAHPksQih(&L-!9RVDP^|ZThy2zn)XYP{1|i<U5fpF;+n{t}vkdz5DFhLSgO^
zgASJL0>3>Lo+{xFTO=gzakDmBt=AS1`3L9jnPkh9W3vp+4e(cgf!K({&@xxkNywfo
zR}_}qG;__X)V#K4sm0adg~22QwuvAta8l0ZCo<<Ki>UVh@(~GSDTLCYAV(G}k!ljk
z&GYuRJ8Rwhrb5nC*i4KsR5nIYlKFJ|3jk}<{YI`&8qT|Tko*apCs1j@Or=FHa}mf|
z<BK}4AoG-oI0tpuN-Q7};2oV2>YZm@Soj(5Risfda-$?^E6@<6Z_IbpmFmM;2N^ql
zt0x>~D*TK6RQDivpt(W7ctN)ZZqE80JIH>h$LXicBZ*x)l}R|gqE<^oUCH1vMi<og
zf~ew((!~u%wO#Py6MW7u!guzgQ@5Z$A{EW4U&9G_5qI7iuTL5THEGUTe&rr#rp21}
zhC_yCyCW{e`xGb5V4ukbiFOC#Mjs89zRvvh`b^*TcD-XWIQ=p?=7_*6qgVYV*2M_=
zARM&J^@vJ-BjDI#P6uu$uW^f$z@0wW7CeB^*)e9%M)J9*{6PGv8ldsXG-7_?1YKkF
zAKt1B)ooe`w$tp?2$ymGm+TSe(QtCugbZ+lh<cI2bHa3(gJiF^nC{vav&1^ykzG%#
z@?3imL0XJVi^_m$6ckQdA@+EP|36W2;q8{m$ZjbF?#+0R(Ab;II?`!~1*APs(+v(t
zNwm1aON0BeE2=*NOL7n`B~3kV{Tgbi5%zL_Lr|2;@eFoDS$D8R7Qh_o0^<Eee&cA=
zrZV&roe6Mk_xog?MLp!^!{`0Z*ao1TVx7GN1$NgL=3v9@)ftubVtXLp!TYQfc?mWa
zTWy+VQKKS9%q{rdWQY0z01OKw@8)0wvex!hm^t8KmQx09F;Y18q7xl$R1!o*A3?vS
zk%AU%Ls?F@{Bt?9BPmr?a`B=7JZA}ykk$vo->W5ouZZAqYpNSSsmOrH4I+*l{OF^R
z{6@Duf?7zmz-+6u(-EoXK8=f*(VTdpmMhk%Z+Fkde@!%h9$pRsMV<sI;g0FB@oML$
zV4>nT8o-<hjLL?)n{nN{dk^5sGRC73Yg@80lj+>RrI1}tP8EbYHfA0(m>JC43nF<s
zuR}T!8LwpAE4EE&%CMP8R_T<safaf)h<%7CvppUkQzl&NV86rRWinl{I7!aQ#~8;)
z7GdZRS&QZle}|He*L`Ic)VMeOP?0E1%04JJuMa0%EdND(|8Q+$VIM{4fxji*a?<4J
z`JJ|Yp&Zzrfdu&MA3JnuOr1|<pN%X>sqy%V;_t4x4`H+}mn}<XKDHLgRrJ1Dhv8J$
zt-WHC41Roqq_=*fB@u{R)T-n^B0n%=o^sz$r1Kf;>=n-0#M|o5`_1Hf!}w6_^(@6U
z*VVfEKA5`8rnTPrC)J3QStl9>Ddqlho{9|>%59qW9!oWj7O-TLyG+Vv*vU3P`gHlE
zZxcoQE&u&FhBpE@ob%ADu-oON6QW@p=Q_6Qq*w*{Kmr}605WYDGN0*kW`~_eq3y{s
zR+p<sm&t`A|3BGgDqN@%^75}<1Ec&WK*{YtuW<Lvl)2Y7(=d{cyeg9Yvi#mPfctf<
z&2i(Z?AnHJll$+0#lM7B8s9#`9CIoMNn$KmtaJlkwnZ1akz<xQ3cI4BKA|&v*D4#I
z;_F@*qJ2Aed7s)e_By9cV(zW72%12rjAn5CM^6)a``G0D!Z-*k`*<4>;zvPUHHS0e
zhTlq)Fc$(kg*)5#EHra~<5G@U$p`C9D8yS=tBV|MzPFxhSD}ZH^R8-_qw!UxD<+)l
zm3<DXH)B<TSvs}Itpy+L3S&kXTK-<k)7V18&yl;@IZ4eOo_DO21$kTr$a?cVasgJ$
zyyn#4z*&^BGi&#vs=Bo~;SKE&-4|U(>+k%41$b7Z=9N}vnN`&48t)Y1{jO2OCs6w{
zj88gb6$_gP{GDDj53Q08;22J**VNf&9BJ4(E*hU2STN6T=;nueBN*U~!slzY*@pb#
zpYH7cOZQg8MURw81pl3p1-96(IzA@nWh4Y=k#*_a4|+gANi@r}%4k0LSNc-b*c2Po
z<O}d#YW%j{qMWl5wmZ<C7(oWud!=ZH6@mWpXo>0MRC{!(S=<%SwPUHmrIZSp@oIP)
z@k`pAzrvqrG-4CV?zP*id_zcZXs9KLhUJrS#{gLDSV;J{WPoAV|6uCjrE~H23Qt@)
z0y^uTY|;OupcJgqo58RH^eH~)YXDert(Pi6MuAlCGq6C)*=$v|GZBdcl-diCg4+Kr
zp@SpPdPAUl$Ypg%?0y52Z^FlhgHhl_WSsO71%1&4{kOWO#yTqERg$XV95f!T8%GoN
zX(^o^oc4cR=ON1lS3ypKHY^wZtd+~*gF7QLxVFl`MnHB3^Yr4_?<R_$)==nRdy!p|
z&ncuJds3$sO+*OvKl@--9TlQ2)Ll3Fs}JYGYxvN<K`lOsbMAIx+HwUGQCOZ(#JpR+
z2GH5MP%%?Cc#2ED?g_Eu39CZ%C&*V0bx<edQ)+w6#vxZw<&`$6lgKaiw8$=SC6v%3
z$1FSMSax}d#D-}V^9UdfQl@*RKxud_Tum5aserImXo`y1-Kt094aS9gP>Khy46L*h
zL@MGF62poT*b6!-F4cFxhGaW@qC3|1h_+9)*I@tz&6IlBeamltmo}MLCq?<!fx0j}
z<PWTs`Z_VwNJXUCtyDMFMr0pA%8FdWu~WPrz2d}N#(=AJXO*XgxQdQ`vvL=4%BU~}
z$WC9lEs912T&v}16a{l^CX2|JpD6ti%zpW^b2Djd%h}*U&kT2pGef|zk0@Eo$p%%R
zzqm~1q>?h}p&j-Fmc8|1!RF$}lR1ov=!r3{%e@0I0IHFYDq0tm0b<(MwWG){Zy-(l
zK=D_)ec0R=*;MrU9}A^Vx?3C@#nW5T$Z%-VhKe^rf?;2KNo<+L@bSB%)otaQgE9iY
zrxCRmn>NK7f&bd;0>qj93kEs72F%T$WFSdm$j8W^&0PbePz2dXbR!r9^-Fm=ig-dW
zl*TNa#rHtmnAdc#+?@MZWeXZw0ryxV6bBi+pRnTyHRU|A#$%^#{NTLMmkSxFQ2i~l
zObq+p+Ck={DH+FIknd^Q&#r+>k9-&EO!RWDW>NEw#8ya;Kl4P+3H?8&ZC#w@*40)S
z3T|+A|6VRtc&knknf^~;Jww!!$kC@V1X%XyXeY<xx9x~+?CLVCiSM^kA#{bP9j7({
zB?(!fN7=>%V)HCHCtO@OX5WA`i*H-K{_v#o3#8tDBKb-4Aw4vcU4<CVTBmFx?-dN3
zU@<d7N4ks6Gv1ztPcj|K*_vZ&pHin4(hF+iu6G`-D7u)1-hh7v(Hg}pxT0(Swc|rp
zmPY(;2^NutQ-yrD-|Y(U3aLB0>Te61HN(9i5e#ud*Z#<DSv!zemNtx8j~T@q+&9Lt
z@6>27i8+plU#~*l75BHy-4h-oW6AskvY@fP!-HJmQq}=-I|ArznUt~=V0@loG*Fw&
z+@E7-SN!4=fd0e<J^7>gP^GH#&akbR{c~GDJ!TGBGZq>rrv^_gY7D`e&E36ch#ZuF
z{_l5#)F|EKTD?GHB3-`J6G244Kh^ddJ3-d22cczTuLnKZ1n>KXAlyOU@-}TC#vp|v
z@q+3M(ynpRiZHO+5W)5sWBwcuyR)?CwkCjqB5ZA&n@(8F_DIGL(5h5qhmb*pyLrFV
zu-N@>4{)Q+`$Zk%WsdtT!)cm(hcs(r+@Z$7+|(jq`VYv^`1jv*t}HM=Hg*w3KNH0n
zkGj)Z!U@MX*!n1UPOqiv8`df?flwFlf@IHkHA8{YJc|!n=d7Szt@_#UfRwG<bL?uo
z1OkoTeFv;&l2nbi%cO9D&larP?dkQ?Z?<mXMO)sZoprX7ClO?JpK6fvWU9KKYj9X*
zfs$tG>IKt`iSk6E81%$Y*xN=JXi4aqVi>#GO-K5Jga`(LK%NAos9^7qmrDGJIbW8k
zB-C<Y)_fAqdj2odjuA(Fdz#KOuID7`#Lt>01RPX4-t8l^vWW9kB$88tZ+Iu3dfNBh
zi-9^!-__`tcJS8iY}SMGnPPfW0-6;{X<^nl;#cD`pFX8NIrIg541jIQrh=HpCi(K}
zG3cX|`bsmkU?fZ{m^G6ChSbnU?1K1HicEKe>q5-pkAr1vaZaQ!R>D$I35KsAw>p=D
zx8?qM4PGyx1es`?w&S4F(W3&SbM$<T_`c$iIuJ87v7i1rO%I~2iT<vY!-iX`=)El|
zK{_=E;GrC0?zqd`YLdJfF8{16jsYy~EduD--n2Z!Dlnyj;CmMN5&fp?V>!6XURp1S
zHzTGZXgek;BUMp0v{^<#$L8fyiz?@!48b0It$Sr?|AmQ9Vm^|gae-@eM0|zq-*5%3
z#u9^I&%J-o9@**;5pu4IXA=MSUYMNwm0%yj!8MrJFUUdrrp<<(Wr(zi^Kz8onMWL^
zX>LRv_M{9%osQpdCjxU^YGC`R`ggfnpK!oAg?~#a4bXBKWPeJURRycF34#$0Vwk$6
zgLS=5MP3Cklo=8|Jt5v&Id>g7uyuP|A~9CSuxP#xAVn;t7yj_x;pSv4HeRtLI^XXm
z=@$Zhz_O}=6dwM<OvKL0tDKZJ^`3c#Sc4EV9bxYD>A8RnXr3pV>n;5fF+Za}T~F4q
zSAGZ)*Rw-=p13CLFo#OO{t>{P%C(fFbj=p!Us3i~Zm`+nK@D*yi?6vzzD=X|Y6Bsf
z|6pnaoYJHCs)%CcAgbzEDdF@eXn^bGR%xV8nq6=n!0%606k`EQ?FKNgE*xNp+1Y-3
z#r>+UR7`G?`Da)@T`QA3s*yVs?NI%Py(eo?-bA=D5!#2Gl2$mOQRLAjb;e>9m{@nT
z@Ts2PLM4k*rznT)T}OZ5HnYd#Ht$$U$d7fA6I|?dG_y<L5*u&n3m~vFvraWLz-Ea+
zR+XjV<wtDf@4H+fqIBSDyePkC=elx_gMji%M3~r)4#1^Ro|+a$N*#5a7EJkM>2XP?
z2^<Y}Rd1nQQK_<gK4P$y$e5eAp;e#xR<d^`Dvk9*>d$m&#yMvHDjkS4dLcA(wDM|i
z>%`YF=&HZAXUHm>ro{sBA2JyCl+{l9p;okf@ILT<#kJnz#|x57t|EiRfs%Qdg7T`D
z`#TZUX;z;T{3q?O<Hyk$rv3_?G5r>pF0cA2f!6-uGM5*ufAGp!sSiTDbx9hH3M0$k
zals^h-7Jzc3$@Z8Po!UrPiWR@r^7nomtUTD8BZDstf=#L16-E*jwrQkfbFPf7UyzQ
zh_^)2r`OJJ*`VTRTD#xD>O59DfEel>+#opVA_UY(RC2Dnq}iqBs6^n&BI)@mKY=fp
z`H7}l<oeVP4}YnK4WZkcw=)#0LvA>uEedN#@xjL55C%AHc`zlUnOhH9=O9Eih~+%Y
z0a)AEdXQ%Zrol6m<OjmLe&lQo&?iCCZ;uhV6?8s{w%wUpmrf99UlgLo2XI$B$dv~d
za_@y0HY-I3kTU-w@k<D!fwoc#j_w%jD4{7b+hZcJ?f*D9G!#<z=f*P{a?LYkWYB&|
z98<+jyWYtLW5h3up@fBkAJ2Q&m?{2Chqq!%ik956=+6?1La#3k(eKnl+ATs3-!mgO
zkKpJEahu|#yv9USHIj48<4OpkWtpF@T&!GwGpGDGE*9M=)kO{_eDECILUg*y!oV1{
zLKErzALwm{x=iZuQ9K-`&3DYvW?Y{}XNi95DYhOrIimaPhQ*G=EMXWbWwUubYCH<V
z{;+<vaON%W3zUfoe%v$hbN*~1M;%VpF#e+4UzEVRPHeOrmXE5o^5o+%>h_)@BAat{
z55XwKr&Q7taK%6MQfbLYUCZs;d53GF*a_Cx)c}mC9gi1HG39WAs7QExQYe|kRwM}o
zM4QF0F$@ukT-&Gyk)!gr4xqj=l%RS_hxe7&mr<P~yJl(Yt}`l-+OEp$Aahvs(zkrF
z8yc?PjH~@Y&ARX1`oOS5LqdQ;R?X7d(`fQU@%4s$<nd+K%EuB$>$YgTo*(MqOKIN$
z0ldrn;;w9#HcwMD6q8JtNcy8FVc}apDG68!L9-@?x*5t0N)z~I!3={3Dp#6Mh3FC@
z&YR+;eufg)Ud5qz$9KaVQs+Ua3x6;;iz8fWHU>y(uXXxFgQfx)a2r#i(Q$+M^7dd`
zxRQ0aV?>?Gyc^dsxrS5fvQ{Yu@wsqoE-FTK<sH)jS5W_{|5ei@P;<o1$DpWFUH3Oy
zfnHCGpTstb3ux^vb*{b}du`@s#$M9Lhh$x-XDF+k&062__L1!Qg*TYKm7IsYiSlNO
z^C*A}E&mD@Yk@)f^JQ=!x-a;d-)$|-yP}1?|7gqNWMKus9vkaz5bnqUXqHX9T1J%P
z=O5s0C_2-pWW8AuBD)G{FiD%qoJZN>&wm(_)zW$O#(#t3CGYuEJW~$+++W1#<TJ?+
zp}ybqh~xWX3n`!2q*U+Bb(Az=!Mt$jd!E{iM|r)6xxdEWjGsxM&WtS&8h5}4XSykX
zS^s6FLlzwkrPDc_dI1xkPjI2I3FN{QHaB?zlWp!j$e?rPfIn35(f%2F#Yue_LF(V!
z^G7iCz{4ToVvXe(IEDmZTA$4@QM8A)9Dz~~@`z}X1%&zLHp3HD8Idh}>8V(<VQ=09
z`R+cgj-ko}V3>DBYJuc<DB<ZF&Ld3X|8Bq`1%<5OUllM|k<16F>rtOuzKtkT!n83^
z!m_s>R!x>zZ))zsVzkOjE168A5U-i_##zTkNR$rtA>&3zl>j0j>6ao67Ux~a)WClB
z{nlKHWaAWS$0cZfKmPIxX@5ol8qxb10!=%IOgW)=;Cutital5mMlbnnhCP=S>Nf0T
z98u(u{~g#bnT0z$)At|2;^R0Iv*%I#4!%#;DZ6Z!z>pP|oal&C=uR;Y@M4CnZznMO
zXj{08W_C3!T!@e!E7u1qwq@42EJReb1~&+SG39N}w6!yPz<NnR4#hD+_~bMKjSGk&
z3LQh<??XK>sn4s6kGubEM93E-sMf`A$h4(7!iAq-)y65+`8h@Y&(18;Z%_L(%qFm#
z=B6`=x1S0lcNH?9Zyp=Mi>psG$H*VF@V9zgMlEXVU=*xbrKi1{#zIeQl3b*`=Om-E
zUq*I6_?eA&^cPS^>huY%2@GyQSDpDAO`83cAYbDRJKa``IfxeL?28-F(i+{RZ$sz}
z$P_j%h5}%76se0B15>XfO=!%TeXTc2`G9Gcpt21jWji?dtPqGM?$MY0bkej{b}XxF
z?*WqdUkgAe34}S6&Qi%jI{UzIk*;jHg2+oYOQzRFh5ls;Fl$1LRj&L<!Q+@fEXsNq
zc~T4*#94Y1EKfRa?vkX$b&a~bOsqqrl+vb+3O)UkI7f?XO2d15hV~^lCGXGzyfc^j
zQSv<LR+^aZl=9F#+`_R=kH?t4s;<MR5vTn#P>f72CK|{wU=3H8dzwpNwZm9BB7ds_
zhYtUE>*!Pr_Ew(D0LB8EyoMYssX-F-@R8JVN;mGeXDHYOAd3E}ov@Gu_2K(OtC(2V
zL9QzAz4;0y&`O`x%MsPi$Jsl5v9M-xN8QtdwYG&}6vi@ATCPtiN<eg!HmPbs6cNFS
zJN`q44rOek84D+gCCE<3Yo2_U6MU`B>z=PdPe2F320ddoTp;{xvD$Vml5tH)?EikQ
zi5HbW7~|ab+ZQcw;Z=Xt7FIfABG%ZXm;)*atV9e*meD1{ok3b+#r-NfOGG9o+VSfd
zp`qiqHGVmQAzOpD!9)S%T;f(p(9pHlk<6mp557;8%WH5N_UHe{c@0nCJF|At0spqd
zo1v-uihaAElWXZ-8eq)P?wQjj0cKP~rU}U(_IE~_e}Riw&5$#G#m6gwJX-XnbRI8F
zKml4P@#HU*sK?(@Fm-WFz~M$i6g>vRMgnHsq`U=oY8Zm6hxm~I5HL|&2=8FwvxvJO
z?t#Rif;|1>Yqx_KMbfa+H>_1`V!+6koD)g3g?Ar)!b+hA%GTk$GdpErAqt1$=9^zE
zy_k}t?Zv^Je0x_?NP7kbR@o4vua~pX9gf6<Zuc%Q+Bz~U*jukE+Z;3RP{|$?0UrgZ
zrSQ<wvgT<lV*hSIv1y5qC{7aDi`Ux=3{**;mE&<j1><Hl6`=-loBnGxWPZ_(n4*FV
zdy0Bsy;Z{XOUV27swtO`!Ub*`@1v@u>HV_8)LWDuf4mrYZ**lozM_P|lrdIA$xWXL
zj`SFH4oc9XVJZ;LiH{&ZdmL&<kS*19(6n>8D7xev8x~UlIY7q0FjQn!a5mfL%(W-~
zYwAqcDLI<XYMdnMj6q~=e4AP%L;I?*F<fw*1{1kHEq^!rXD22tFb(+$<@-b;CHdF+
z_UrBQ_I7VGO@tF<l>2g6G2Fg}b=e9|>XPE;MR|PPy!EQy2NOCvM*Ndx2M7#R{dSI;
zLEEgq)hvP^z{O#wAsDW;+aF^LuMcEo8!(JK4?!nMD-D}=D$qg>LHeF^CKtN^-u%|W
z{0`@_U`8f2i79P9nn#I6a%2^@M*|!TOeQp5i+{yfociAagTmWRAy^IsJ$`_hNTs_c
z<81H9uI4li6%&>r#`Z&wA%z^>?G+MZG#blCbK)l~R27#%lGm~5ulWA3P<oF(lAkGS
zJf=vVimiB#nb;(`gG<uA=|ivCr5m(BCJhy24CO$DffMyf_F;2ZIrIjwM4oBL=U~d;
z1)^nTJ^nn{{ocNe!yUm9>aCbJSMC18dlV$gcAHEp&VVdElRpgL$Q<a!t*f-VU@?wp
zXRU-7k<Qbngjnhbjn22)LO&EN<<}TqQ@E0n9hDHo8i>k^XN5V#8!@YM`Cs!5r#%Jm
zoEu3Aukt$t_~L!Gwiu~T)HURWd&_Tv!TpC_@qTc}%0}M$!1@#aH(zzaY%nV};ppX8
zVCz?cf#E9uv4=3_8JEzE$d{h}pnCXg%S22X%PatrMiS$xG|N^zNT`ONCa<wHiUO`(
z2WRNgdA((YQ>MSNloDI4nt0LJ?<lJ>vpG7TkU4Op@N(p3mj4s!u;|$bCD<XLa%W$>
zfyqUp0+`a4nMGN`Eru~;{NgSR*V=32!OcP0H~5)GU~)L+E=2qB7p0jB(`)*i;mXGp
zecMeCuJ83@+>h(T?VBE-RELnT6fdfqw7Gg5K7IV*QSW2AzN5Fi3Tca?<L@|rPeohq
z7#}EU7`jlLxt1uXEh#Xh@NT~yM?suhbS<AV#Jk1T>K%7P4TH=arPP1()z4Cvhzy6M
z<eTn%p4r>oW>%N(8&5LatWBBd#xztHT?`BUjPBosEAGV(03|X$PoV_kM>(@W?rhMx
zRK(>QG+-!+?V|M{XZ5KVv0A=b1+T^!HKDVtvaKyxu4Ox*?fVxX5C##m+c>9rw-{jK
zRWIX*EHnU|FLGizSgVensrHlB8jTpM6vua*sC+n%?j&ZPj1tBv+NYX_1(Bzz%W2}4
z*X6EX{O{%w7di7OXS|vr=SoMkR0i~KKeO|S72#ThKOM&1_pLkSOtW(i2`OL0z3a+R
z11Zf>lwYx%wo(!TPxxzKvFqFi>TEn4Yn=u>LzlyIuIZAgxi_RoOh@xP%gpHLuey_v
zNkmDk&=1flYLG^v-DJr8_oN#V$yoBjUI`?4!flS#Neturw%>|G<aZ$opuwHbJy-@1
zt-&}Yb+$0O?3eKqa9m~i-E_!gB7)LUN(!8WH%T6#mI?itx^uPYJg>c<sI}>cMQEL}
zVUGV1&@kp3b!B71f!7qk)<y0E#*(fgaR508Anu>9xxSeB)UYQtD?nL!a!4XIg@0Ar
z&OkUs7euDPczXtyMqvYRR!tp$slUeB|DOJTTgqPp+DfEcuC9YCFa}5d9U=@l{lF``
z94DMK*e^Vw@b0B>P-ED*;cC+Cx)uftBu^-329!K0hIit9amN{Ec#rNj$LRfZc5>Ig
zAee`xYJUKA$XVUn>QD0R{%9G=1@K5TNE)f*42wkR;IZ>$!Z;&lo#~xw&B`bfZzIhF
zFhl;S7=&-vw5(2_EdiiwGs3uhd3}b=L5C`a7RGYQKIGgZ3!w8bvp`6o0zG$~n>sJ%
z*9X;`=x5-+?4fBNduZ6d{lmPZG_8r)M>i9FcOTzpwA+ES{Mox=MJb31)S_wjzbAJq
zZV))cQwP%JryjeR?arN1mmtq=AIu5)*A;+~tw}7)*(UA`7TxVJWGS@`EH>05)}}Sz
z@uA=Ur?2A}ehv`+XDr-jcS*F%mF96aMU=q7+#Eqv;vQ~zC4O*9-3}h3kT|`H%JSnx
zQm_uUC08nRDyUgs4vGYQzuv7e#-lM0v9ifI-Zc8L+6CCRpbEnr0_;UF&xOU-JD?6X
z%Ej3P{SG+hA1VWDS*4u2a?hSLy_3Ba^i*{bB{Qs53<_E_oj#abJm>63IVVZ9R*lBn
zLD(p(@$+Rm{NE@Dqjc$o;QQ(JjhK8A2#GR_BL(li|FN;ONE>Oh!1GB}7xy@QUdk}8
zA~@@qtY@dpL4-AgrmOkv;kta9oH=_vKC<Mbs&hv2e0E&~F~xR>Bpa}m>iWquU$l@(
z{D&4d9~2cZOo)qw@-yIdNbtJSMj$<T8nNH#`61Km7lo7XphQw8$dz_WBVRIhkF$9P
zdOAC|@@Bq|)0cPa8eLcjBkkDU0T=oUHQd8Hv#fSZx<SJhB|ss<5O(Cnbm~>Q6I%sS
zP5ae0gCf2Y_n2n}sCU^>3)tT7prcfk1@hJ7b{+LnHwk{8%Kp*;0-uNfN*Fr(wR?o<
zB~<RYiUnyw>@+e-k<QurveB?A3n|lENaX_PFhw$P+_JEH#V{($+>@;=OCC%zW{$;%
zu+(=*gPIO$v)zUUBioYHfSrc&ZS@Vmi0IRGcC7rlxIzp?uAL#H^+FnO;-biF?k)%1
ziow`%dZtxxdAAv=e)NDvj)0cigu{Lx`qiB7JbrH{s#W_jv?KRaPEv^yq}qHyFuTdv
z+`uB+A_!~%Y3lb*4?{b&r%?kUyC)+nCNV`|QaATZ>!IHhz<0@K#!hRFtRoG*pM|7(
zw5pGyb7*ASveJJ%Yw=RZK|NP((F<+TVX#!<?4x<9@m(*GcsYrRdOV8%eEW+AN|Ja@
zJLEx?h)`vW_HldMb{77?LtY2S8U_p7u&lpsHFY^%d@)K!H6$*1$p>){<6#gk2uWPY
zV?|xVjs`0|639M`>&5T7RzftT;_YOy=aAtHii3?2ETK?2#Ea0GR!Mv@I;5+>`Lz8g
zB-n5j2b%6x+n_(dE~qBwOY*{6WR^8``P&VOV1<2Xa&r4i1eg6F>)#u>gGBN}??+74
zWDb~CtH(T!&b20B|L1J}%Lf~v#~`>&dwI!};!B}F!609vRl-arZ!s~jBFW|GNwC8w
zqFI?BXPy_5EZ@r<bA<(acWTn-!Jyp7D0jLty;O>dld1DcK3aK;^tDN&BuAf0%aWmd
zW+JHlj_p6SVFq<=mYDl*KZ-l%#=pXB4dBg-!n0sy8Z4C<!aa{{w&-Zh&%GzULBRA8
zLNYh<_(g`r&WmuYG6v6dj3^p+T9n?FX9&cIVK5w+q7|Ji+@T7tgf^Ca?XH%6#xXyn
zQnovuJ{^=a#5eJV)_t{h^Bzh#TH-vwY8*bBWJ2d|s)LeLMHN@Jx9)x&VTLvg`a9rf
z68d%ROE_YWlZqP)n4Vd227J}Kw=_A0Cnk({-0ha;V_~};2TVWA2U%DRUy<@|HD%)!
zY)M5{F1PbIju2YUBJRQ}5)gO!KUJxuLV}-heQ|{=jmY7FQ2oGhm-Xoc@>~ww?y;LR
zF<c6XTb3BBUFvNfj}C^J(lv<3wER_2LeJd5!o}bWsW#$qBTyVX69dPlbXi(Hhv!D|
zlw*<hcX!h;Y#YRhW=pB_f&e4xiB9{VF!{O^%aZ8dAU53k*Ks-GAm=p@9xZ-UxroXQ
zC%dSX+tP^HWq8YLtQ%HqgpU+?qfN`=PuBj61wv$2pj`+4YP9Q()#1|Pl<QqWlCeAc
zZ0a!&)K5jgr7-p`HQNGm!?2QWBiw^Pp^1>G3q7p|kzYfGm1qd}6_&S+%A}ol6nO9$
zyGP472vXorO<D`Q7#r{X`jifs^)3vp(<cHdmH;qjm9E!}mt+qdEo-jrcYZ_wK>_r_
znAd^4myq5VjRdHTy-U6+ool*S<(DCW;;3$knaPbihCa|8X%f=Y9QpTF4@Hs|Q1`iO
z$|44!v2lZHTUJGQe=n%yz^LYRa#POFjpr5-%-TK*MH#ab?@!$P-<-__7@XW3E56s-
zq07xMoRrxi2z5F0=4=W-DCf}pw1Q}h9+z9IXhk8xBjrZ_%5-!PH(8^^z(--^-tjAu
zca6`-X)bmzct$=?kQ#i`-;Zo;GqWsFZ;++iMN<pNt3nosA8lNmvlI(|hRiv6*r3d3
zENVSF0XT;_+uhsjr=4irBtWX^brg}yI@#P5qCC)=8|Py>`aa9=JR{*TX9$ZqGNyfj
z(IFL@?^l0dI4btn8=_xT$h!P3yaiG^)2@ie7`~<|?2?3@EgI&Z{><Jw;IE6!8QY{=
z_F>~%Gn2^j37{~!pFu@?iodi!DcohFhI{9^eRu00bgL>$Q<XdVyy$QRf^LT@M%lqN
zl}JYwF-9g8+fyrrxtM5%=5!qrybOUIak|VBoWYpS4s%TJzE4CGirlj(h<$lTdYrr~
za)MczS@+4ZBPf@XVLt58{t;I)Zvq4LJxK_dyh+&1b}fuPiQ=>@(z4E^Alk;94D@Gf
z?11w21hjaWhgu>=7}aQdllb9|R>ht`7jQfh5~O_V&YNzTda*8~F*t-YSC1j7P*Dtq
zKGf^G|DDAr@YzQY!^*knJ#7eH_oj6EL0?1a)22E6PtkA}CDcInF!g_E>H5w-qz<S`
z0sUUpyhf5k;({0<gL7p{lHf_F=G72bJ1ImH+DgQvW$TAvpJh+F$d>?xL@5{hZljXg
zE}nCxC}ZMTP$dZfXaF;j&MTfULkA$x^?tY2FVfbrHR;{u6`WxDRHMnmW!h^zjc7EW
z{Molu>?6x;Im~gU)JnsTV;pj|Y+KRD0C;5zUGo8k)x0Od4qfGp0)vzkEG923yC58U
z%cZ+j5;?I%C3S&?h6QDt3}W{0YxfTwF;GDD;W1H}dl;<xL^n{(o~rA95pd8mZEu-#
z^9Gd8RiAbM`Xe1;D=oG_S+k)wX7Ok(?zP))Exx$_S|UH@_uXPG@ZC9jqMY-r`sBtj
z&~r7B^yk5QY8udY#Jg~+*1BWfVTd`WaDsqX2WaGWe=QJjHnK?Gowr0oSQ{>s)>a1C
z1!uKovO&t?c~{1zVqa`UK7m30)2D2xX~l%7=h+K|k%-6ZU_}^L=(_*%e|M}Co(uz8
zX@U;Ik{7BXN9{mL*Dj(T0_g*qZ?qi_!c%&t?`eIXwfR<nS4DK|R{3=wgq-!)1gJJA
z)eH-QMhwwzxh@u`=olfK;nYw!*s1c`jU6sF#8suCt1Y=%Q@7XMwl;uzpVe)Dhm%<g
zLz^ZjJe2_o9;l8i8;V2h8!pQ~dJ&qJn~)njn>IxAgUh`hdYrcFC3g!2y!%4L{HWo_
z{wm3IBg6RD&E<^3Y0?4Sw^M2`aa4vC{Bp}0^w(~k>BJ*ne}M-Le-jDU;S9l@$PTmV
zdPIUxKN{B%>9i~5%6%^?SHEVoum?k=VRlVMzT$NntT#sU+y13><)J}sU}DB(7hI1J
z^-Jx)0_nCRK&UqpQu9{J?cc&EBoZQiJP?6)%0@5Ii-))nty;QSxgy9mrM~U)^Z{9b
z$6;?~%znLvca{LlG;!^l8Q<QdN9z4e!huku+jN=8k5Q>Vu#s%Rt7AEC&QRG4c;>?(
zH3U8aKS1EI<}X!wQy>4Fj=QTl$!%<fKE^lAUzLV7D^@tK)`ujxiz(#7=JWW7jJixT
zIuS`6=0JK)WXP&dfcmdj%$@b7gk!f=FGK8PP!*6MkE{vLthePjz@%hdfRmf=V-rY(
zFC$XUgtVAs<@zq;xv|tR_mG(mc9L^IzgQpU2vN>Syz-h020exrCmS&`6|O1pX>(5b
zYyt1%l&SR~ijVl;W-!Yj9y%gg-liR3eJwFi<IkA2LV_-|9Fbe#Z6X}TOXQ*Y@xlA~
z_|1Q;N*1r7g+)x2R9elo?#zdXV1rn{K73u!FHUu_){7QLyK5dKT4?yzN@9S`Oln9K
zMMX}vazAY9T3=*Ba<$6FwK8Zd`=)JTLn*dlHdEZi7LU7tht<PPFp@!K4wpy)MfBvf
z*w=jUl(D2o6fD}uGT@fI239$yJ$8ExE3`-Q;jhHR$d1}`Zu)(J=l)J9%xaCV%8j}m
z5P1f*&VWx2)O%3fuKvb-bDbXb?L3dw3ATW14wK(5#L(gzVc?nchfy-tK1d*XOl%P*
zFX+DsgW-wzZiFR{j}eO+W*!We&C7xEwF6d;qix1-4eaI1#*DH+>H3^*IO-nC+CC!#
z<WVF4OoU%MTDg0WurSY$`Q-#rf3?dx67VX~ItrCh(HL2*(7P`{>8Fvj{0E<qH5+D@
zG<?Peahkw?-;TzSyQCReEbDO1jGBwb?_|acLc({PkIR|m`T(P)?b6{1kVBp*@I2y{
z`fEb29EB=C1OM<^lNR~TW%E~NN9?6_sZ@f`mxdPR-D;ncIANG;j+q<ZH!jsPVTvMW
zJ%$~Tv@B^~%y%jjyid1Uvt=|sAgM<gM=v+E-4N}a<cmQ1!#lA2J>>we10Shiy*a--
zF9AO`_>lEOn*Y{%JrDVOgj|H(*Ks~)@<6pEjSw4yB+#TatXzpnWk?<u_C|Hf-H`2}
z@TOYySX*C*d0Mj`n#B}CyKdd&sfn-s!*t>^bd${=hLUzo>LA{rU#|e!i|{>E0IOJa
zx~TLDn>$!gA#Y^*n*=i^Dc$vho2?6>!T5;H!^v1OV8=fki!btF*3p*P*>rz{J1;n?
z)>WuZe9PLKt{j?MNKYPKH{?AN=#4;Cc_Mr8kCbg`wD$wrYxZvwbzD$J%ywR2q1GaY
z91vDehp=X71vpIMtj=3N&&P`CD_qwHt;nENE*VN0r$<&yAFdCN9xkAlPu5U@QS7_2
zVj3DeN{2cKp+m>-w=m7{S^h3&ixDmeQvJa}!H<c)D=U*z%v&r$=cNjFkpR6E2b9N|
z8esBsXI3}f<EgdlGrMw`It@yOAPAe-*`QX%V<=Y4H~iXy^!L>gv2IjoDE&R23^0s0
z+l*6mja`>H_Aw5Eb=B_=#e`X1bYt?xP~MhYNV2l~lZ+LqLTxYr7m&KfL|)^$a@>=I
zSeY~X81|v>&Rm@N_f=2%OPpwZ-+xkKov*6Bks+Fz`RUTiOWb%wv50TP&H~@hxn<b$
z{#p``vWv&g>xTO!HcqHIcNYw24p3Dr!3@@R*w~vk(u|U`;4gt73-v}g)w0oLxE0HP
z0o|y8&?Eb_@lwMUEZ_o<X4wHx;X^hx0KjnL-+Bqo=6=?FwTpYp96p?21!Us3>aq{)
za&lSq^-6Sc94><JQO;-9<!}sIRg^7x3cN!s2L~<5clx_0erLNzzQoX73t==K3|MbR
zXa0lzm~<bPEZfy1Wng)gGr8^Yy9t@7&f#nIZM50ded%!MbVq8Kg@P@+J6U~k!aXOe
zXhWw4D3G>vD(gm|+5no%b-4dxvV}4De4MqOb~$Rb+fEMl7p5uM;^wfUFPhmvz1%|^
zhcu|D3XR+Pt|Zj(H+G1*Mor|prJC<9na5`Ia>FDa<jpwGXu~~w7xNrI?)i6sVabQV
z14o0u&MI#bmbwh!R-|aI(6i}%?WO`arf<2W*&C?sqE+}BYIra+i+2kcqoioS`q$7l
z#UadERw&5cMq}NT!nV=b8fT4LJr*N5>FwxD>|{n&rtd%KyYvYGdV`1MC3iIcC8(MK
z;c+pe{(xG1@@#oe8y0Vzr?`InDN`bnfiAoO-4N{tvGT$-I<@1LND0b^31-p619N{N
z+SN30Ok^WPNc!VrnXS4&kX2c}0q_}4+J~P0(XB5Y)JN_s+d@FeUhuNz5MeavUsWG<
z+UV7=R(eH?exu^Df;K17MZ5v5Aa5J7ITmcXGedo?j=cvgum9qp?M-bxo(=w6-C~S!
zXCz}i;XBk0_7t9jRZAm<a!kOgoqpgQg~B(U%R(Uzyu1wVEivVVlXEjg&CQX(TMi;h
zD7UOJXF#CA8|lCae|N3+=Y6g9l)&m|sG3GOHt#PX-pFIjQJ@v}vetf6(vYb|^<1nx
zoQ3C88Un|+Qx1k{ZU&uFrL5%RU&rTC9oye=MF4PFfQBbwQc(^Qx@f1tWBzmbYnJMa
zm>T*nJcoMlsNOpf8zcsJe6On?^WcICBYdf(Ic^e|lJYer0X^sfr0n475h0^Q5*K?C
z{Ip3I*lL!5O!H|C3Ys`QIWj7uKP;Om#0Ep%X&Um@k1|Vx$D!^A{~%_%eNyYau(D(m
zx0AS=<OZx<NaiNg+yDj{;qC)24N=3^^!9$vYdzru0;Kk{*euNYwH^!LN(bCq^JTn^
zuL3YUU~scEDx*nR_)@H0E1)-XB<&!f3mf>Wp2_kuQce#$IjYpPsSA0YBlbAVLOaC|
zRp8cU<9-hY6BNGJ%w+f{6G)gL6GgIEA7e-Bcwz`!KzLWNpiVJbIg~U_J=Ra2BR4Gz
zki!jgPwXN*0==$`isJK#Xvgn`#K@foC3qoQ?cHC^Ka5L|N7qDaQvG-wW+U|w+<TZe
z0ON7n%5w}v=Ehs<YkY>a5V<jq>W;6B^{UM$Y^#t74>jHnN{X8~w>h80r6UN1oAR+d
z#-wM}nuh$3CQS>B-LG7lRC|G*XGKRx#f%_%d8L^pZgO47J2_>an+8O}csk5tg{iZS
zq#l;HfDD_`vk_vq&+`JlfGdm)gg&-8mz1`y#c}XLhid3N^ezcW%IIV+m#y4;VmaCt
zOIT0Qzrht<qe<ywE5KZUc-#x+cP!c=>a{J$=SgQ0-e`cWJ;w2}H@~MC55x-$^X88W
znze`EeWX2d3!e<?g$dJEE=*+;_6bc;2hldDFuSBn^)uUvo{b73$Pi>0zCB?S6+n-c
zfiQWN1V2V`tRgJIWy-xP2#ulz7H9vaf*mNHWPDp;Z{_!wRQ5R11o&})s2&VqGK#@6
z79=MEGrWnds3pzgqW>Bqy}L9)7>tTBd5RbhC%0tji?jS+*=<Swy*XBQQ(Wq$kr2jE
zI|G<dwN25vRBFh$^qRdy>6wo6mk8BdtzicYbvm=){*nh<0odxL=>ryydZ5r1!A=O+
zQ&HdDZ!xpaewPqKtDa3O>E>oPk)Y1l;-wu8_>Ae>l9u|8oW#3YY*v{!auE=#uG~`Y
z+f=x<Ac2`iXKB)-9`WRn#Gwp0#B3Nl_U&ZTmORKwv=*=NL!&#Z(82l%uKPP{AdOe(
zI}fpB!&m6p7o5<LsxM<Q9w~@5CL=wJ@2xMb&bmOZc~$|gX;)<civys5`(Hri)!!-J
zUB^;{t`#eNWQ(1;8-&B!oL@b`ax2_$QsODNL>bgJ-vXA}9$4vZb(0Rs<T#oKpRV^=
zQ%$EFEo<u1HiSCYFAw-o&M89pfVoNw&S<qtSq6}qZ%|TnXl@&c?}K6;;{2Cfe%_s`
zGW>D%0S#eEI;GSzdwyvXExvyY*2Ls4KPWk4$4O?gGyY?1nMi+b4#(Eg+0WS2GelEY
z?HRAu+tMBF%~D5C9q>>HkX4A(`N=`iwmSz$B)X;eV`!vuxK3yB{$WQTxHC{!JClG{
z-&$0{)5y(NXeb3g$Z?R!K%a5?X`t==xjx%YxGy(6o_fRS9bf~dL!8pTX>@V(0P~F2
zA1Vv}2OOx9Ot4vRvU7gvi=y{q2@<L5Q$Td^MYe`q5{-$&VR4rIu2fH%skjq*l&`GG
zQ?c#spvfVBAGE?uTlgBA53}(^`TY{q(G^s~>JZmYvjmUksAoR?JI|Rjo&nFv`Y5(H
zD*a}iIi@oP>;<FzhjTxMHI33!cqg1r=AXs!A|KK&_cg-o>os|@Fc|nY=70}Gh=Dh;
zdY^b+<R_JI28JCb@<yu7>S(65cg(96nX0arU(>wEw#0dK32?3(Z@r0I7j8O9vh%KM
zD=;^Mbd3GWKM$N}1$*rv7b^v4mo0wA&QfEd%KZSFgGr_p$xt&4`^^JvXR&1(VB(ws
zazkInnUykvjSQifo-~Di2qfyO#9gTH*GH!GuL+D39!^b3Veuk$U)RI05>z&__ls=r
z5fO;FI`e964DCCtmF#xFGbwOVt%9Rm+*3~VIIFZ;=1Bz)gOte?ztqW@H|q?KVAxzn
zGHKAY3&WbPhjjy8FfGy8%JDeNk?NpLzn$pobu~-RhcKGhR5MkY2eRA?qzl&NksXip
z0yrIJk9ZG#Dq%K0KBU%?mlR#Cg~9u*oetFukf<y<i>L=o??4NHjLVlpff&&vM=u=1
zW4KqIn;o{^spLpTOkT+%Q-j3}d?iF$>P8Ryu#^=YOp6)FE$~d-Ga(a%kF_U#!P3+l
z#Sqi5`^CYTTTryD9$n(Oa<N1+Ljt;%y`^~bBg}3d(gOC`XH0^)_>v_1Ac>`;i?aI6
zU_`}1EGjo~Qx0e)@IxP|=)yyXL9bG#fuFQpKZ5LmLARz=;qq=~B=aan>j(8Xc@St3
zbYV2|!92Ws62#YY(+&5(VJ3sP9lcG0@+!0O0M!T5`FxzW)*k+7Q&K!*kwA(g2ruV`
z(Bj;&%hb+A;Hm2uSuX}LH77;vTc|BwiQ5G^45$LLxbl3yW<~3;`zx9OzXT!nq{~ef
zLO5C!4%%U1p4DCiOn*KoyLZBbX#I?5F1TNc7I{sqn~GIDMH1zwzlm&#%-i8*aZo#B
z_Uf(td<$3p1p8beO+@8851gP>w;H><jPy@NgmeaPfyUqKs=kNJFS$#Zo77#DyEvtG
zc_ahsDAln1pwuyHFpaHHt_f&Jn*HlkNtY0@$t0p_7_=wi0+@!`$TvMS2thFAY@lr(
zo0y<R(yESvOw5mGfogbfKPOb=FydDwjvEyeU*N)uew9Bc4%wp}Z!i0dZX^(utCM=r
zSU^^lkyxR&DK6Ap=lz~n<xfl;&gE6hp45sNYcc|MF$=zgg`e84O6Z>&h4;M@^Ua{H
zd6Z#H0EJ`R2GgI*E#({DY1YCZlM5@gvf(>fHB{V^HD}b-Cqs*46^{LNuoQn4GYpDD
z3a}0lMN<zus)D@%;G)I%sMz*yxpS!`08rN=Xj5H<#5C$^QNls?oa?L$j{uYs3NMAA
zI9dQhauQe%B6A?Vu(q^<<Pg%HFdC681>wl{M!j#CW=S%-MY{;@@#U=K{rEo&xu6`0
z@Gk<#K#ETbjD{@$=rOM_KWi@{j$Cv)4Y|zS9$P+?TXx9q{wPB~r8}ia{ktK>z`EhA
z-GQ!NfwckMK<)eq+ID#pS}}Grha|!aIQHfjPWWh749a=wF<+A#)7uS?=CJA|I8qVE
zOT^umk}gc(js^xrKc;V5)@(nnR#mtG$(WC|(rek{R`$Gc&ySjODBjJsr@}>?<W!_I
zl2ZHCQ_jOBYe={=%wopyKE~4<q`F+aB?-S{--|Eok53U${3e%>*Yk^(CDOJ2Ir^1k
z{<W-&#V;X$pNKEaxOMI!f19_TIp7|up`6~Tr3iKef~>MFuJRUe=Ra4+C7My#ddD+d
zjWq@X{Pw438d(IEiNGKeb6J$HMwW;T=_Ul7CBy)^LHf->4pCgMDfi}0t&RcEWcCrn
zb+e^Qm7zQx@mJ<(1zY3dFC4ndgVMo@1wu^8Yx+IqWQ;vIi9O6RcOiw~VLPpsQM%kZ
z@DK3g+D#$WnX@^jrB<Ap!X`Y<G6L_<dAF-9`1(E+Fd{nzk-p3>{1rmhoq;+DcHSqR
z+Tj7HFND=n=2tuugpj{bcjPg?JLQdcT}YUh{|+&9XjKi<k&@GWO}mUk1aW<W(`3g4
zWi^$OYHzndXI{4^8zw`vv3Zax-6NWN;Rr-<MB$`JNX>lMT8BPc7nDPINwyt0GDA;L
zb~NULoS$Yrul-)1i5Y<aW=@Iyx*(q1*nV{mD|UZY9utRLRaJXl3`Bh%Ejb~%#WzRC
zJOhd~u|C+wfV6Q?nF9F+rgj$<h-9UmcxbO94**as&Q=mwNi{TKgw+F0*E+=J1hXdB
zv)@dcNER|ZKxms0>xewN9I~<|DtMcEqc5sD1*dL#jGNUX=~d=Kh={Mw(>`4%C-aK}
z_K(oOiM|Y;&yk(Ngz2{bO~%^j8~j;51@Lpd$c{YXjyNrTWa`GxBF~Zki`EN06lP0}
z8xbF#E+p>oj!_`(;}3Y$wKK3iev!-AFDtuTNYyC%t&Ynit1dIdAtQ#PL4)kVCpjRJ
zMBuMzf(V6W(?@~kFVYB!Gx}PDyb-S706V8pL2zVJF&v7VC%Vf7-%rJvOc-Ucx&S(w
zUicU&ZBA_1!nD+?e@zD5Q{_zW=rC))jv4^4YF2?%$nzd49=Gbku#YIqgpSD#4D!Ap
zayJf{C(0%4?Ij)~H5|vF@@{#3hd8n(xs49k{&h(@s$4gd(vY&MvEgzofcXJFEZ!Fx
z5^!}^j+SUGt|;e@Zm?l24?)Dm19IOEawP#e%39Ia0PCa{YWR4F+A@Mq(EAaWk4uW`
zm7;HAHU^bKsW;Q@4Eo(Benx%7lMT_|m5FL&&YuP@#0`Ry?h7A}pqMMA+<aoUatLHU
zrHr-xWoV;tE2Lr<L<~<HSav`t{9m5sKAfc}W(j!M-`EV+$`(M_`9W|Ve$LS($M7wN
z5JIAS6LW(Ut@yr@+&XiT6l(xsr%T%B*Kr+1Mf@Dg@~4cVpf|62cCk59eXzEv|2Uge
zXCpRw%*^*vm;Gg|s9kOGegKz@{CQWW^F~}_O>7tID@+a+<iqdQMN~j%ml{)VzO$;-
zXZW`4PV#=8r<=-^PH}Ok77`%WKm?SqzHjVaR6MKy+o0d)R$0NvM#7C0jahR>2SsG#
zCYT-rlGJA(@NbQMnK1?tKRd(HWCFO@Hm#Oe9+Lb}Gv{S3w0?awsQ{7tio^xtLnzt$
zGx1RheM%s3#RZ^DngL+=x=RYgj+0fjMThKUSm1!=PE)=?YY1Z_-dpXk_Uq(t=YZ)W
z=J~Fb0u<qojO<d;^YuAoGERu6i8(|KB;qB9Yp~O+j7N&m2En|m-=>QC&RVi%O^F8^
zkBhN&tvqJpYmVotrorrQvHfBG5nuiLsN8|rapqg-Yc2#WJWkcTYRh@<LV{5`Ef37}
zeu9=?H4LEM^Rk{F)a{!prH}1okYcNbcv#OazURj3+p(}MPU{{GY+u65zVzd>Sr-pb
zXpgrQHej|&qnk86o>AfM7l5|&pV6w|AqJ+(PfU+{FkLLRH&!2roSmZ^kz-bLt3b*o
z?@`%MTcUWQCJen(n8z44QEUK&+D;H3B5#if(VNv<#QG{sgF~y#8m$nVt2y-&o0FQQ
zPe%UMbGQC7U*qw4A1#~|z~7bjl0ievV>luYW8P1c4Wf6El#hnytB}8pPVB5$dXl2S
zcyxAbQSthDE+>`hwry;TCsX^>`KU4kn!Qn`;U!&zbG9j$;^8FJVIJ{mR6TGFF}5U#
z8=Po{3Qx9A@K7P&pEXHW)eg}m2CXEmqh(~J7fZ>W4k&c5=MxJ`fW4Fbr!8MD16z>V
zLET;rp?MNaS5U5P%amJv_2g`)sfU#yEi&TNdoC;o!Q(yUE;M+F->Lo{osq553<NZH
z%)_=q<ns(S9C^6UHw*OlkgW@xHzW<y=@d;R5Wo6~&y0-oNoHwxz(4=7?`Gf5G{NqG
ziiFw3Rg1=*8DU3!ocpy~UGeP4S%hcphlsvKjba<p08-ar&<8EFI_>_Ur-m3%0#WwT
zSrkQewExL{l*9`#9?lT4MS$Mq;IrM&ErHOIBks{%;O88v8zSX44E<TSp_%Yu-A$a6
zoLyGE1|Qh<FjWlfvBC9w&r;%GDv@irUG$Gy6`#-l=i+!V^f>74RQGh5Sfv%)r~?Jb
zUFk0E+U0>2Hh~_$RbLu7NR3?0alV<wj@Q7`gNql7s6YxQRz*Lu7uaT94Uu2o<iJ;&
z0Ln9?^CG@+?-OJy6>k~``hir0wijwbZ+55-2qKvRLCKkc^*g#Qlt3{SIt8Y?JtU1{
zdcEctQEUKvio(%c<E7>s6}^1V9&3VGGsC$n=6hqdIVeSt*y(5}#fhkzZaqqBdzrXy
zIy@Qj?M$R0=Vn#}wCBSfPOd&?<@DSmn!bx8DlgdFtvbYrOKc2lw7LJN3CF*E7|?H0
z?`h+7Z<!{CDLHyJsrPjQn2lU`jqi=?5Fw%GqUC|_gm`UoDu%o;lY9bZLfEB>gE`2S
zHL6~E>p)qzr=Iq<7~)%M%8kE90$j8F>2>bdrxeH+U4?tGE!t{*<fg3*TRynG)LqeQ
z)fr*>EKvv~j3J&Kfh>5ESV{Q<v<~d<VWp4)NE>fl!rr+D-Je{(gA47+LK+}Zc@E7k
zgI)$s`y^!{WVtkfy6`BfKX*uIy?b5hOlRD)trS*jd?tp_kTHGCvR#t*gkg97oF+W|
zm@y{2228E%W<EtN{1@ZkFvdY^cxwz2ztHI=Y4U+Fpr1UmDSM^2pr{<$!KQ%8z5i8@
z<lw!~ny*68?Z7t+uTh91-qu0c>L&{!kIeUQGqb|Z*~Nj~5R@X6h$-9NSGX4lvkLoD
z7d-xWw`hEo5sNyw0X7!;f@=(s83D8tk|i8OTqhhMfw91gOPh9qBOF`jP_%=)1iamf
zD-!)iOq5g39D*%pVx7dP-tiF6(B1DuV8;-`fHa7pxZZk#qS;@gheR3B$2ahQ^f7qq
z%%bhQCt4JYjq|thWeof0^veq2AF7-p8>Fyv^8it70i<hb!-gDQf_22(U~RQW*R{iI
zR0|8^UC(4Xp6mw+cdi{|(CuDDr6;WGH)<5BEUy-2%mn<2pW`>nw+`e=Ma#aQ_-oi+
zsYG~#Y7ty3g4cch)-H>~b>xj5IN=8)IKD+AQJaGz#{UpgQRIH$H2;OcAh?-SDnwqc
z%cv4ArV1D|d(1+KVs6+9B!Bl^fCO_lCN<4DXSB#GRB2Ib>IEmOu%}z6AF`p*AN6QI
z^%_Y=ho)C2t0)o~0g!pKO{LcRokrS5hw6Z2{LnOmGx|F?-zTfO3nbOse?dFX&XDd1
zW98@SyYgeE$@zN2Q^N85&=2Qfl`T0tYMF^^<jm`7f!uG+P@NxEcXvk@K$y$RF)G8W
zSF0f7q}M;Cegbi4o8byOLIu<T0IU$?I2slX+CH_epZSb9r();=dN;<3WtKrZ*Jw_A
z)%df%?f*+A%ibIQ-ET{5WA$@&dcBOujwx1|brSe$E80pBe}oj8X<6itX7Qu3!Z}Z*
zm`q*cy;AF7w&dz^e_)R}TCT4`BHYJYAzglY?|GpS!gF+v;j~_W7GkN2?U713rgks?
zViO63J@RW%{L98IysZn;<>sl+>-6q|YZO!ghc*;~s&ko<eSMLUw<;GUFyAO0>`Ng5
zSIkLR$LB~sC5>6eYRb_QGqS#uDk-F1b)H}3(JU|)hvK`5XhbFLJP@+VxNCI>c!$JP
z;i)M`hy;n{&w=YFk6Hoh5ucK`q<Qq*_!r!^?vq+C>mLa(NQuxaE(u(UBO=4h!1_=q
zI)`7ptp}%*^cnVKr}C=ZU}+bkpkX~D)#>PyH!S>@XT;ZB7)_32&?^s)QCY?U4SdWE
z;m9^NcpA)09LcU)bu1w;Wk$;nCc>D4B)WTk{+et4L8R?BQ>c?|SZ7>xV<y!@MJuq`
zibl@tw;;xC_Biw)t^@%R4lS||K=#8kp>G=w{e4b=cMw|>dJ1wauhxLsnz=X{;;S8Y
zIcvgR*&1-9JTPCSP>iNiFGpw!JG86^+!gGOVgodq(x$@R%*MCIj3J%kU^1s5vuCe&
z*c>2p^e1fUng=iovEQ(Od6Sn^@%xXB@j*e>r|EGIHk)n}Jl3)Z8w7_TVl-)HBUjhe
z!i*<8i1eK|ST=^C>sy1^C!<zzJ-;mw!`xvWNd^neLy>0gzwR15TfDg({%C)?X$);}
zk=`N`j;9TtiD%<k^M8oIh){SB`}3yoCKWi*I&b&QT83_aZm{YG4BC1!TS-mw&~1oW
zOzwWRKTR08q?=fwu1v@lKO_@fD!*H2=F92ILIi54%a>|XE{+x2F{mo;MZ1)CW@DU(
zFJbUEH{}LLLR!2Zqoo7*_%Xj_;;5G!{9v5EXDg^*VwI6V30s~pC6-*_m()>@J-Q0f
zm$nCHP%&e_3|6I51adrKwH|h<NGEY1iWf;1Z8Ge+E0lh~_^LLY(JHGpLk9e$=-F}3
zAHX2Km4kHuwJ*PMo<?=$M$QBcnKuE%Opr1##O3~e=C!FyfJf&_?xF#sBLTsa$F#~H
z`bu))y7O>WH1h-cFN1<~CKDU{SkvM(;f{u15J`33UUfGenb948=Ea*4|4MD7258on
zDG(88#jwMH+JaiBI6Bfcz10jU$pg3tW(|d0A8b$PY`aH*g)sMp1eO0CIK`pujD0Fm
zY((U0^!1pQv(c$lHvUBjgW;`N6VKCj44CxvuU#9Ww3F^%Gw2n}SZF#?PvJr=1ObVQ
z)+R}j&+hVZ2b>rP{=z(3HjRsx^rqHGFYmhkqYd*K|4WdZ?}k>HfEBAg=aFp<OLbi1
zRa{kNRr7W?^ik<X2Mq9@SxZB^UPAAqLm{kv%^Ruhl1_UMdw9@H`u0qx`yFFic7VHB
zeRpE>h4Z#}^dqEoEKSY$Ws^-T>mM}Wd+w^!Pa|VNIHtKrzhD0si=kspkK*^v)nys6
zE@TTmX987E%$hVf?`~kS@f)@)S7V3cN7M!CEkSz3Tr*kV%WVoKjjbGYs|wd8<kavt
z<B7p`lzf+-tJveuo*vEm13+iBa>9R^NFDRb?E{9@gLFb2WFkmt*cNnbuZ0@KWmN|T
z<PkWHE@<8WP8>H#!0Qn<cKljfoM|Kl5bT;{NTHi>z-MR19-hC;L>E-5*CE`E1sadG
zTOoY-?7fm^=hiwe3bs>a0keYs_%N&B_o5&>zZ$ZN#;qy9K0XIqUE;et!`Fv*<2Otj
zM_tQ_+<Okb;$E5S=%D(G(v_}I#t=woDG6*%rM{EP(Ebc_U&xUha1#blz5h|=uPC5@
zNFlcaKoQvN+YSu-_Z{x$<w*Jw1|u-5)@p|oOUw3u_Ro9MeHd)wBDJ2xQosuFUlZri
zz%v@LkAaiq;Q^fVM3uxF*+(lZzX+;pn7A}SoFlY<Q+qn`S|c&Xw?EPo@y@${k!)lC
z^+oz0-wmd)k$|8+8Vx)C1%ppf<%g}un@ruF!ax*_?X-LO5HugF_kh(-J_+d*8QXpm
zVtAFW*$p9t|3^d7iZQw|<hfFAJEAX^vGq42y{+#<EA>kN5<98r?iXS`tf~aw;e~Lh
z_-fw**+`4Ql-T*@&q}~?n&hBr#DXjP^9rh4#Y+xTIai|xComhU^mm*tzF$VR%E$H+
z=o4E>OqP^StQ$|;XMtdqZ;9#^9lU&EIyZ9g_Yg0hrC4g-ZV!YWOQGGDw}fqNhSNj9
zP1Alf%c#1H?4K|`ze&GGasFA`5^j?Q@v!_*StYHW9NutPMo3R|Ch48pNT{e&AVBsh
z#mVEVrFZyJCOd`=mh~n#L&kZ0dSSz9Vovf$8gmQr`d_wg@`(9q!0ABEi6c^xedd7y
zf$lPuhOp1I+r{nv76V%K%hZy;mVYa=5LaMuqUGrP8Z4pLiPni;OnJEkHw)*0J6h%z
zMM&N10?Xa4r7MsOdFvUD1lAsMQthF>tn2{vvwq+(tBQkAUfI**cZA@$?N^BBF+D8b
zH9c$gS3<;eh|FbH4TZL_BfI+4c{JZW6I{&co$xts%Xk`S3LAe&sIJaU{iSwCO9201
z9y*n&A3w&(|H|btOO){YGDPu<dM9Y`AZbN5uEt?l^2@(SoTpgtcDqWD5;IfoyZ7PV
zqim|}c?`M9OTwis9OA&-#t_ZQZP%WH%0eFyHwg6dFlZ(b*M9Oa<^1PmigNx{hOrk=
zlsTOd6Si$~?Q+L&0%h{I07ylpp3WoqqQ%vNl1Kjw5Jm?~xHc}{?ZW)PiZqSYfiNH{
zZwW=da+LC{Z5$XN<7zR^fOHCE*sP&evu9{tTjmn?3`difDkSy4dU3rVn}b2x<*3Sf
z^Pg1P4DjBT&Y;xc1!uNgRpJkYKOT%e^}--p5<j7ecr?eZ;kU&cTe`+rPC$@v^YUHA
z7;yTQS4{MRG{o`UUe`p@P6;R}b;19TnO#5yzQYP6T%msNzaoxII3+gR_r~!CQoiIt
zJ^PghXsz8Pf|%O*Ga(k#a^@5j#&lG9VGv42-><UhJ-jyC61D~t7I70#e&#tM#bD02
zxX|A3cEpBXrk*`Q*QzX>N?VvtW>Y@kCK83B@-TAYdYol>peHX~GlfWd7NZHP!;qMV
z&=N_n&_A=)U=+qcxW`Lb!IPoL%)7ieT@__~Q6@$$TFjznq)d(Xl@9Y#;%Jbg%~_ZD
zOY!LoGsw4bcW>>u^6ZsdJuP<dhWPUYx!JQ0_6N4)t>%4UC<5j7m0`vY;rM#z!+~Ga
zJJ7ilqtQZgMvS$l{i8VGa>E6ZzitDLSIsc9F>CkkcBxklf_0)4HZnp=^ixm+7$6n6
zxia&KoQZc+x`2ROfy^kc#qVKG?5UpYl+;+e%~s?fc8J=VP7OFoHMo~BYWfl5pcHNL
zp|-*GDT6vM+%+f3A#KN}3X^=Z5keTQCzjuOFDuZMu{{>*?LkH$vKV~)bUA_-s!+xy
z_GDc#p^YdKO>?}`kUsZLOF(#U_u4ycImi{vk<>%?+(~Y0@h&5{yth-U>6$9$%cL}o
zcIiU?VP;O}UQLksy+ZhA=4>G$uF`7@<t9r5r&+ON+c7+(;*iHw*3(;<WT5^9u;W+n
z&81EJj9;QGHnUk7r!s_X1TGpdGUf56)cy~t(&1pHlzGsNoIlNI)Y9>(*W}A~^vO-^
zS-Q#-+H4E#n;U^m=U`t6<q<F?BpoBOk47h9lCox5Pb?ssmub391hJO>uox3470DtT
z;}j*=aWm`u-b?`%<$mYIgk8VC@~+;@bO1eYr9kwtJ2o(m!cWj&X<wcfKGk3&pzAkV
znKi{nESuLelLVSj3X<VA!kjAEF&!qnfU2l`aNX-d(Tb?W1w?pKR+B@U_iKN5#`qXi
zLC{-MfhfC`FH{P{{6g;?c|2S@8=(S~&QrCLXK0b)T=U%~_p8*gI3iHy<Em;Zaz4@i
z^|_vlqjnVsqI^M&sSufPuOG#wbfsKn@RC>_NV+>Z4sZJ<InaJt3Ch+D6!W)oJtu(f
zqbNg=>?2!Psgf*ClW=W6DkFrfY}QTvVglo+C~b4}ChrW#mH_&ge%Y!<8e5l_7F5wm
z`qo>6!UtsD_RCuzKN?MF8v*KCp)LZB1EDfxvy@=MIFsN<QP+L0+<xFHiZT@R;|3ww
zW3_)=GUg--FeQB28e!aOTvGGo)DN2#kh@`UD{A!!EDUbF7XVfEWvlpMC}?T#b*Z22
zYChu$K9WCwal}4ADAN87lH_N0Q#t})8BRVBE#_nYm_YU9OWLh`h61NBEio_rBln!(
z==&0tc(GM#9cU>ro78Gk^*HHZb*pd)mEFL@e17Kh#Sj6^({IvUJwQ}*W;gn(jKwth
zR>e`%MA%oL%#qNAU#uT&fbBZ>__Nk^et)enm}PMr!U49q;~`G=r${G_NQ8>Rq=2v{
zy(Q5+iuS1PuBc)e$b?9~ItdohV5^8oFaxlMI@?^Yqy`Xrgeue)tUNr(#e8C@+^Iw=
z0j)Lb<?YxR`%rkHU{8<4i9g(|bj}yL-{HL{J02vTadS_q<-Qw~vtQ~=EBSjO7vH~b
zu%20(2l;H1%{kYI{Jv3|qPXn5W0xIN$Y}k)t$jUu)~NRril&IEi>9eOq#k%ZKx_oQ
zzAEbqgdC~(_PHy@znl=54<GjoUBdlvU7VgD<>z9o`wozFaVL@~A#lz*g`Pz>$9@Nn
znQ{<2e3{Ob-CP{v9z2Imh@s}93e%09wMBrHeW)=3f+}S+?V_e5;6dC-o07PG@SJZo
z5eyGFHP_e5zNIjiQ<QA@o+&nXqCj<}X@Lo+Dg`JYz8ohK5A7T1mT?eUxv<f%6kz0%
zgiO(<N3FqqKdn&Qu<+xn$P)M5+V5Fy6tIpp6=+~!b45wA@f8%LSOD{PaMu}K2&oTC
zPO&o~`)OvqR|TytSQ}P_{O#UyG854nh>5XzJVv=0!7H4FjkJfS<dWL-(k}*%uvLoR
zrbBe7cx(%+f16AM#@`k7NZ6U}Yt!#r2~w8gQjs~?8Lyb3Y*E@u=~ms<B4!=7EN`)4
z^YC&$_{F;Iyu3<h`<}g9fT^tiO{?4J9nSAD-HEn#gK8)9TtW;-fNP5&^N^W=hxvSW
z9}BPYyqi0!&$@${I;ekYA~$V2DVSorVO@Orf@xSQ4_8Ry!#4``r*0x5bYl0d!R2&D
z-v@B9V}(J@Wntfz?<Iefu-CcJ$2>e};~u-DkI|9_(0aj8%JkhiHr|gImd;bEb7{Si
z4>uprXnPH#lNgeCx7#s7=w(U6uP{!lOjOk3m>xw685Osvsr;Opk5u(4=5*Y5^%D$Q
z(viEU0?B{l*|WkKsksi3u!e*-P@(n4`dx912&m9WI#lVCu9#{fr=2dQJlZ;jy{?6h
zPUGG9^Shy6vjCh*>+><T`~&!j6b(I{pmW2<<EdcJ_$nIeC?bGgPQ2Fl5M8f<69T$q
zk=E5rY@+ieC@8H&n(E$a?IF0~F&-CJS~ChF%uRz6=dn~iAXUT~KLZIs>3-jY<YN~N
z@#K+FY2m+*S_Cii@?4<QxBaePp!R3XFJ<9{(eBidCsN;JFIJ`uJk1u}Mun3=vs^rT
z;SJ&-qbqHK)al?y)WT&J+Y@KAo=FTFQ@~q7nRs+LW@Sye6TlC@ZEQtCv<<;dA28I4
z^5tvW$_-F+Q#bkU{8B79S6xep(vFaDidQ8|z$W!qNLKP}HS#O^w?Ohh2a_6<f3g9A
zhVD};<^h#$8awVrZztiEgP$e~JM1(ov}n%`Tqa5=aOs$4mBV;zjW=Es7p_@PT_z-6
zM`{Ls2x9~9O^OrhD|5O=ZZtZ*rO5mSo4V1}^?C7bC)lz;U`lyshz7-%HanLZd|m>;
z=1FnsoCF(bfMA?h&&jXoa<hO^b(gP}0?tX*er1J~+gRdrCX)XY)bT^9kiZeb@p8#6
zs3;XwK$XB?kEb5VCPpDCV|ZUor37?Ba0H<8rIz76x%4PmWE0l_r8yiYzESR247C33
zl6jlJTHfq2wuo?!f`g(8IIy-_rZZ#aI2UpD+;Mi&W&Ko0Obuj)F!LN^rd-Dli183j
z+A=rNHUdN~K~B~kr|2z}O$33A1%YWFz?->j`89>6sdgfa?3PV#ou{4!Cdim|`|zwo
zi05itY}BTho<D>NE$Uje9#dE6>w$0juA)<fCyt+^O&Ol{>1Oa70r0GAGQ)z^PPMcl
z2STa^ag(&V?`|>P?q~Hcq5BNp{L1;_jh@5|VnQVkdI{o^m`U(ip#1BEGY|;-))Zt)
z+b#afzq%=6^jFMXUtox|+gwbTC(R&W2LX~xz=a=~Jt&3DlEP9mvg|9!)UZZaYXX5y
zivftwsj<mXu*}Hu!Utxtdub3g+RrgZoExw=cquc8{a=BgZwGd(8nU@!4(p5?$H$DD
ze<vB?*f`4iiPcfy59y8y5O#W=ptUzYpsIucFoX?i?=owlmj_Gv!&%Y)QVD1EtTZJd
z+H|7gFu>uKv)I6&K+)#+E6hs4F|hMN9J>WgFLmz}L*E;3Qy{~l!Z&#J0gfZzp<z|a
zv*ZyFDWbv79wTaPr_{t2`-eT`Qa4KaKrvJAAQkHC-09NO6?OWZ<{`f>+2MU-tpGhh
z!oMkyIipa7%Sd2iz4EqkliaUv!n3<jyfzK)7y!GwweuCV-=?8u)$4z@9BJN=q~Lgk
zw1t!KaH72i^P9%4-0V<-p_zE@uwv~s2}0+mns}1OYXn-JT*T~cf#GjgW2+B>_s1QK
z_kW%Y3($)(4i=@aC>@^->VoT|O5R7|PUWDYT5O-+)Mp^V2OAf)ql{(PGcF9rR=2a!
zWYR#)G{U$e>?F*cjDpG#xs{Ev8tg$~I+P1m)kxnOp%{L}jtFQ(08nS2Q&o0t)ohQ-
zycH7ZbTnVIRG;@D&BI({A9yzCc&<66o~%1#cLdbeen@9VTvLrLuh7?0$1bryzkrzC
z6tRrLY&#p(95H{v#_V-DJo416h9&^+<U9ATDl^YA005BS3R)}JdO=n6{fEg~)-!pZ
zNP(WiPJ@ZXaL)v%OHenhvOF9AYz`M^lnE0E72>jl_l9Gd$r=cm(y^5z*V{y_ml-L)
zpvyMFxibk^N?foQ(BTgMQYOJ+P(+Qb9978_R#HAOS8J&j*SHN=XBvN0qC$-nwyjBZ
z1{i9vw_kGI;;>yy6D3fVmftJ%`8TS%PK<bcc*LrT^;Cd6)$tom(UmlXbvEUjEFqG5
zSm7`@P*LF)Q6~WS=FI3lN2Gdr5o98yJwyX%1VtsmJ^x^N_alJ9RFhss=eG!BV3uj0
z=XycupT#f5<n=&ioQU=)+)N?P1u=8bd<Y-Sg){99w^JssOvcd*bRT{*<L@OrQiul{
zT~%f7ln-olyb$1Q64V4*pDK5wHb@Q4kG}vuqO5AM?tiiLD+4}v`2UEHKH0w~!_KG(
zak5lz61nsd<d%ESaPE6^I=t-MGb9l_SNGfAt>CbrJv3*B^-u~_4V||~gzpR5*=Bc=
zH^nEBmN-7I$4@x)e`!WnS_7F>SSb%K*_4M>{y`Imy<1~y=ZAI<ummG2z-W`g`}RHU
z+4f1<Ee*)Tn@F5k_VAotFAktS6lb?4>cgTQ5XeEzZdXC#-dZ%*SRW@a>XAY=pcx|-
z&3s27`~1Tl0;x&Yh#V*+OlMMYi`BY_RIr+8g9+2qoE@c6sg%uQ@L#0dcMGI;{~U$!
zQ6#TS>Oj083PaliDOWtMdG$qRtGg*5Z!HROzfnrR2i}3^QXL2FY^QUNZhzTV=ob~X
zmDwWpan@|c3V_{nv5^{XG<swZ)B?Ih+n+E5!j(77vwuR3tryIk;{Czn5PC2H^~AI!
zr*@odk<T_%_Xpv8wFLgBXf<VmFeg72*X_de(!N3;&_dA|rn$S}MwN63By@(F^V}PH
z67NbfeMTo(uqkA7`F0pd6H143A&N<0a-Ledm4kSMB`+M>(AE^@O3zB+m4)E`SR&F(
zKfUfXTTMW?Y?V#tIzX*m>5SPb`ucw8>9WT)i^}PxAep0Cloa20l;s_wKa4)*s3!;f
zW+EdqLx;gz%BB+kIfHbOZnGb@PABPHK7E_@JP+oayL;y!97%k?286Y1cH0i0xkoJ-
zW5_!hcNVZ@PBgT4u~iADCf5#`4>p%Z60UCt?>lm26^r`GEn-xrfL|8t)L0C5t%G;1
zm0K6Ux&zNL$G&uO-vZo&lj)IgcjZMR1>p4(L~2;sfrN7d7Tg#JU!D2{{2r|oJtm~f
zcCRQDpXLQ1wnf1Q*p>d4=9*6=+3<x-DA_SXiSIY!iCKQ2rK8??ALL)bS~GN_1BF6B
zP#iP<4c>^&0Y>%!?m%lVvCWkOO1ovW`lgBEy#L-z(D$S0U2h!}0o!bJcD8*Lf}j1P
zl^7kSqSD1bdW84&@S4#C)t%^8@VHkM^{7j7`xuE~9L;#_BVTS5hJiKw<J#C?3njPU
zF150js-LEEwUU3DBfTR@*6DGvQ+3HHB~a8|eBUxX+-aEI16W$wVwu$B`w=O;aE>L$
zsv)Hkb{p4_%I+qU)6H$%LuHha+W2UO?~Ko|e|y11^{BA1JkL0DgW>s<yvwE<l+9g?
z1iO{o>PRUY_c1*Ifr$_uyEw`PCS%%k*<!~M(ywF=F!3GAvFS9T0@%bCVYdnv5**>#
zo!|$Z%wU7tfcnZ^V(=CV($xg77adwGsz@<fe=`hsvqKE?by^6Qc~HsoBmJ!mY90A6
zB!FZIDk3a!w^#rXBn?`4Eu_JVr=MPr-<7mVWl-6eWzy3dm6tv1obD0Uqt>&i=lg|d
zmSkp8O@`ky+|>g?0B6*kDok|m0SJ%tFEr<-5HCiIIh!&8A$?JTwZRiIY?A#2iL9By
zl&Z*_L_3lo#N|7ommTv82bqtsjZr=iZV!=eC8ENH^dSW+A(RUtODFTM-o;|Hgd%YY
ziNf5Mzcqxf8dh|mfqWnAqvFh=$2BtLC2I!c<Hosea1bOWYzvXDz{kkPls>bFG2?ek
z&I{T=(}KAlfkL?+r1Qmh)Oie?(S=uOFx0;aD%meUG7|O`Ke*f7AYb@8K&*c8TfddK
zT*<QCONgE3KsY`|>|C=0V8YpP`T|<s*W*qieXvSG8vvj}{(Fci;Rn^&ZfGirSmW~(
z6f|1;<?bvIH^e@I`#7FA&`}aPEK=hb`xZs6w_Q5sAlhfoJKX$3jE;DizsK#cw;llC
z|B^?9xBT7>`Ve5TR91-U!J_)~W~guc0IES8kd{78@sc|4EP=`hFlpKtF^{8sRBL&~
z{t(6kgigHii>m%YBvvz#2ArQWnu#2)FmGVB>Y5@E>*HZ=xnpJ&Vy?K}(jSlJ{LWh^
z^K-LNKU8S@a|zL$aZ<GZp><qmGZFX#?1^6uBhmCFVT%ZtV<>8DOzoC$1m;aP_|DSQ
zWU2z$OM}O2jtx0V&(Ni?uGn{{kskTgYeh%=<`YFrz1i`@Zk1<SEc-DNKx%6*(gj-k
zLVez<w6dFDjdL}1nmbO8Ax^IRDI$F|X9fTLnIJCR<5-nOV7qkjV(dnxh5l~r39!LZ
z27Gx~6}@(+I>KmYE&@@`?!T%TQ@hr~cn>e^RUuna$u5?o2DP5TvoKP8Y$A#vrCLN1
z5g*sNJMqGSV1quH<ZkRwZl*6Fpfu31#6|#iTCQ+<tpkDV{vfGsKjeE(bQBEDMCG!F
z>;E8$`HfGbyNl2v3|@|ta!>jCp`)CoR+d?#!qjPblzyu`dPFW=G_F-kd~{olEEI8d
z+1!D-X(%1Wa|8g@{h=f`nF8${8Q%%``V&N_4)tx`vaagobBE>x()A+?u+9-Z*f30x
zYh6LHo&p_R``$@J{&K>>;XW}4l7X4$M93Q!g_WhEN&+q`GDh($w{4jdNl|zTKTGs|
zZG3`qA8!M}t}nOOTo&C?zr+y(i4xuObk#q0kioN@pCeFt?7QQFWB*4_pal-)2&j8n
z6+o7@yjMa3@#r%iv|8kCWbNDy#s?l=xxkW&OBFv!hLJpWClqK)cZ#i&vd@{Dz2cE@
zLlpatcv5CPf&N$}-*I)TM6o2b&J}Y?$!mPeW`-k`VS~@bedU%Sn4#cud=X0P&|26;
zP$!ovE?}sniV5;M_m<ZhF2SFrT#ohi*mm9~)`zsHBK@tVU4<H>7woi#y(np#S`RI+
zp9&F(eHi?(g83$?F^m{fTY!MN5cEw*@u%-?Y=6Z$RcDHE-A!x+=V4&>lp;F=&Z<dh
zWr$d!uMyj*E}}09zYakZu(dK2mY$bRG>N8RjUlmm&SqSTp6SIX9tHvP$a*ig5e{}H
z2;y5OR(D)m>m41_^T`kx5{=QYwZ8h-W>5@d+L5@RDMt6-PYpLqy5GyPM_g|#^OQo#
zE5~rCoOoeJW4;P>!B_}A*0#Pe$`mS+;bJJFjQ+*cA^vyg%h6Ky_1skP=UEcR(;T8`
zLNse+y6Vi(eDOD$?R+ygl9?B%=GZ8z830E&M4>leZ1m45kjS=<rV&NDPxD$0p5ex>
zByzFQVZXdlOH1GoU0;?v{6!Utmk5#`ATnc$hvO~OKQ-r|$S?fWw6-%%=hXK@GToR9
zO;i@3lMC>o#&i<tHml}{NRk+TR5R(;-DC`D)391kzh%V1lL4-V!4mx&3Iob2A9*#w
z$J)@6FjlU~N=X_xnv^q>-P_<aeB*tz(^`^VUU<_$g(0P;H(=(mDzbEC`|PQhRs}?e
zSG$xwh5C;ALfZD`P>8ure=jSRG$s(nt{AitO5{L~T}12jO8<{R!sCmLkY(hf0u>bR
z(c9AKIXAeM4QpEe{dI%2`JZen0kVZB?nTVROjW6*-Ax!>b3-jll=O}<%gt5wc7{*A
z^0lF?9wx!d&WMQow-%}5JO9wa-%iNaS8H3&D&)zZlaV8;>f4=(uyB=O1q1e4;Sieo
zwUnftvHH<okQkuD*q5<(3><mB5jQfCq{{xKqR}Pe|CH~Xw<LwG!ug>O?N$~0+=Tr}
z0>0eMUpIM)e=}sL(5#H^v&qwJ;Aog@xqZm-?Se?Db=T`R<w2?+9L^D73iNLX+ij5?
z$fP{3x^cR}wv!m%uP%(*&9Q|bBpuqNU|zPd)J{yx^CCmXWD(7LxVtdojZ;p?+cL!+
zzCI0I;??{e$OD++xexS@_(yxTJ#*WdPXw*1XaqRHrS(JamH9}!W|>Tl7Th^{*9oHX
zLBo)rlM42@O3yQTy_SLPu4T~hqConMvK;BY7rv{9lI$D%;`rpCkmFSu51G?s0%!ZK
z@{07Zz@PXxcE=|$zAa^Gj5$G4@WD%tHo1=0D5Ql2_Xe)JnnoT&24^pA+3E3LHR57U
zh@w=0IqSMZx5SAnVxF}%js=<k3h4kQ@IP5>_LnbM9d=}$-w)!aYf3NvFr%wI{=z+|
z(Bm0ZtAXWnrXV9+raMRf*Vmre?thKeVakN@S7I=x^I_sCR1somLF!l2u1P{EB6Z)4
za|u}sq@eRb9DY7U9Pb;pe-SS=K2DgVk2wC#C%?utB3>uX6ZClv^pG}4*^zZS;Gd9Q
zA4e544)Q%SydrkYwn$VDk)E7@W7@>`U4M!#4xE(>L17@~{3w8^!ArW!EoRgQT8me>
z@MD5CvS`sq+1pdu`Q+Ux;m4?Y;hA*7JxP_%L%?~=9JABEnk;&!)HoV6)&-XYdvf^0
zRm!S850dAdz?2S@tE^aChrDCRU!r~uHU(G2`S7(`=WsJ+#^W$pKw2whmOD@=j`qw~
zGE|9WJX@TB|1oSWGIz(eit=XV^j7yTWO%gN3$qFsw4M-vZ#B0HXVo`Z&xWMP6SgRM
zh%vYVL6~TD2;7kqyxuEV)ilKqP4$pR7=-&pKvV8yHp|VuH?X{CVP~t`rw&d6pjl^5
zq`8*V!Ak4_Q}S-gPk;}59}jK8@*njjakJ^PD!}(cwhiA0nHNVL2*t=IY(L1f@UfO2
z*xl&a7<xA%09|oPW1b1*Tkv)e&I7)}d-2fbNx*Q5^NJ56D3EkUsllay65BMXt=Ka9
zlHkvnLYE&(++WmY4#L$1h=gT+-Dot^K$x9#odLLDrCNqst{4atIQ1*fL@a1})Qg_B
zoEH!@?3i-ty-qY+UL=HLzRMvHtiiQ2{;p;f-H406K7Qs|YQsAU!y%Ric$!~OF#03X
z*XU&J*6ptgy76G}L>-BgBrb*Tbj8J|#zp{T<c+VJ78;9@7lHm|40lr>4^c1-{{sm7
zr{rQxS#!oQXw?Wo!s4%u)uxplez+odnwIa_V*7@kC?g;FxrSpm4yti=i@3Y^=?jzv
z(9&eS_{EZI)1Le0VcQ;O7YbnTxP4fla1PTYwz`tt&KUg1oWk8$Lj-5Pt*ZMg`7Z(R
z);y)~ScR)iMVPU~sC?*iBv1H}2ET?2dMCh)1+JAcd2Q`LJamepD1Wg)(~|cqInJN^
zcW8#2n^=iv5k#+iJ`{5g-V=MjQ0DlXYsa@fQc_s=l(z-P@{5M?fsd*|vHqb9efh_j
zcuEw`pg8q;E=jb04va8nF19wo8JbEjM_c0(+fqmOj3n?ka2v=oPGq{B5d&RpZg+R5
zmT9j&+vFrfrFhQ{&VQ&iBn9Lj%d8$018b}uWG~#?a%?VKqnGIqTj&%ke0inRPlW;D
zEcM-c{NnVH44snlejjCA5xwN`e>UH;<b#r#NLK|qvVS_X*-ul+5f^Q1XXi&oA?zfs
z1V>08*n#mlNLt&^qcgr5BEo6Z;Ju;#^th*$4(Ik4`Tqz1C_A+@`iAPTTg6|q*N0tw
z;M^|Ngn^vP+2rlimM-aeg#nKVfgMbcLCwc-SBZrDN~2P2LuZyK_L1C0TxufZi=z{l
zPibL3t3p#zxv#$;nWaw_c*Dn2Kg^eyHv$7FII!v&H*t~9T%T>n7~0%lpR+c%!V$53
zcZh8Q4@sm+Ca~7PP#O$!zZ}6_IB{pARK&;cP$CBS*ZS9nPExv6b^<c_zZ}Vo>i5o4
zQjU9nMGs}Nw>0P55&nE(E8Ob|^(E3f9`$;B7v8|=nUwJ#By^gMOr%+3?uZ-ErS{lw
zme!v(G$QB+L++>hWa)Hxa5Jcv&?vnI*sqe307imbH7k)zBDX*CSFaS4uwGG<^ZCf7
z^Ept~3REe_ZOTO3ai)77=fyT=?-ODN)<T=ikG7Jupqw63DiuOXlzJhs&#V-m0B0A<
zW>gVbq$FVo?Db%b*6se0|8C-%b-SDb3Jc~r)&wR13V1SPI7fP?_bN3wWV?xNwID;q
z{k60S1;axofb-7@9cr+^TLNU~sK2qj`{f@_lSmTYb%{Bz-b~N=fQ>Ypk}UD_%AR}R
z&r-$84Dl4_M>8yMx)e8UZLJaKkEc606_GS-X*8?SISOP+=kWQU$G!q!n<h68nA|GG
z6rry}uQzVBm{4V1ZQnl?k$c-4-#3yo#HkL8?NFp^(lkbFBy~z9BlLT)-^E>0LW%wq
zrxy^y$*IZBh`GF(1-4ZE^ipEUzZ7=rvF^{alyW1lV06^0meM9M(V7f@4$N%cM!ij7
zNPwI?r=?#KFA0We=sq0j*zfS!tx#;1Y1kF(;n*7n)q5j>>YX<}ga*on=7k|G_g`=z
zOsk|zzP;_07V9nBqgMv;3f*bEe{{&2|Dz$|I7rs%4An^E?f6IO29!)g>&UE+BF5<u
zMi)+0lc7RNT2MBW(GcnNt%OwWlhwG_TGr7GZ7hTka(_30UfL<JCvgF&tOWAs1WA?1
z(mefEEPs^xkNp$L8@KTVLglnkPt6#iRHP0M^2e?<$GZcY3k%KJ?%}GZaUJF5c!rYj
z=x6k5yUd-Z_S#|@I@74ib$|`cUs6t##dzLi_>v5~=-P)Eg_j834}$YXURre`%2Nr;
z^_1|)zdfov{`A}JbNFzAh<mB=?=<kfnFEnCA#X(kX0O{o$yr)ogh^u9sK{RBH`s4q
z4`P$R5SA&s(n$VrQf#{#Esi&}4WBv>G*q-)j0c59TvemRs#*LtOjRg>Q+!hOgt%vh
zrJz?&l6D#>BOr~`g3yJl!YDa36IN$O?o}P{NOosm?qRt%Um+UNh`(3EZG5{UDGg)B
zm91~&LFnk9i#c6P?qmX$(fYomINMuP<C|yl>3ijHt|?R0S%6bGVs=`is;e52pOxGb
zTgV}9Es_$t)jbPo&320O?CQph6ZekzI}sXuU4le<knVsBVUJe}r<#SP+f+kuL1ph6
z2YKUifNx$~w9t{S8IOPwgonDQGzU_*aFpL4LzK122TYxy%*JIFW@vekgHc`h;8^f_
zXiuKXJTc~ov*mSo6I7@5sW*-Dmktk5ZwW2;(8d-DQo2eQjBu#d4?>4ohi97qbnlQL
zHUqf>cs=p%Jb#%@t~&;EctvsH1J7TCMexlvNcJW<M=S~svptgt*p8>kUhOim)-FH6
zHpuzAM5C~AIrU|{MjNZ>Fe4=kSd}Z1#y=*jL%>tS$c+JvwB=-xMrt>gF9=Ww;kyNW
zS77hj;A1)dn)mxacqBLO!}yjirin7u(qvu5aS<M8;^i*eK--dV01FUjuT>zQKgg#$
zRg@r&83M(sLzU~n30fg6bBw6bx6uJ$438Lxh=dW3d>{4U<@+Jt)DKajf5ySI<+D##
zD`eznq(3oca;A#*tDNLd5VmLlc#tJlH!54^(tjwfEc<mFP3j9HemM1OLwq1u&tC$M
z({yK0Z*ESqKhVWvI_6F!_@}~GejIVA{_4@(t@ldexGXm`?bVUrn+j$kJ1FV{E87i{
z#*P2~5lilm*ckMDZ4Tk+z<aK3VdZ%YsP?S<A532lGG}Rf<<T~Lv)A!@)6Khe0Og<?
z^!<Z@7>l97^lyKdfbfB-RphyTsc$b+<*w}%G;it?OCOY`ImU_I_cg!u<nfQhJj%Q{
zNBH$jiT$ahSUwudNl!kuXbVBe$9Xc$w9?)7nEVPGl)9F5M(kfQMV4!mn{olg=x#*k
zBP%(IvnqVFg48wW<b`WFA+B6zqC4e;aN5NZNhaDXr+?lpZ=lx|R{l<S3;;m3v>cs&
z-S`j3DS{K5AzMN=9=~yyU9nn<9MIjqit!nv&eJ`VM<Z0Ls(zvtXG*Jrg&ksV0%Nz7
zA1;Sxgojo&glyVc9t4o=ioN|bkj#TZ`E2wq0~O(oz4|RWh*4=qt#MliGV_n}G3TU2
zEcpqX<PG_~tb9<EG+9>q9U5N}rd|LU`@YVc_t6*)S=u)A;0qwa!IE_+<C#cy3#Twz
zi*6IfqEXb-V&BxRl*6ufgf?M;u=a0bsc~o%8&}EzaU$5z@R-*(On3-t_~EjJoNwI7
zJ_m={xs@AvX5-tAC8`1gTsUz4xOb?48Ef_#V+!+)^L)$%q2EFZnXtW0^JO^^^Uj<2
zoXHkl1?g!DrSf=TSeBPy=O$ZKD322k(1l{1=*@i!{*nvrPYx)@1c=+GM(R?)1Ae|K
zMP1;UF+Hc`0o<s;t^%_imsZjm0wAG8cnaAc{{2bsZXF}L7CoeMBm}Rk^eEXjb1)>>
z2mmq7wB_?0&1Gf409l*DT>+PHlGQ`3%_SY_flV+<BxHg&PX^QHD_`hYd=Ea8QPDov
zXB>?Np&Ktx<Btrul+VQ){;r^nq?z24Imqgr&cVAf5qU+jf3R8BzNVbW;+A$MML(3s
zo#llAxE5_Sg6WaE>5e;o+j>a5^s-Gkq7-*B9Ky)=U6z!GBNaGPTDO<SP8rCMW^=Vz
zq*@v2%tC9dsxY(i97dQ3%7k)rZfdcTvtR7~{kcPfkZu>?8+}5!cQ+%EDV60v{$(iA
z$^EI6$``|xIgMdgO^M;gcHBv+aJ{4ls~D72i&&8O1;^SGEt`)XJVXW4hh1$~#O&ix
zHh5$s$ki=uda-~Eo{;Y+G6N)!#CU5lsYj9pvE7a)$k%<l$Cu1O!lI=a&tLfidmv=2
z=E80T!U3^$Lc*HEkYwdrg#yYys?R%_1sZ@I>_rYcMjf*)WOvV-d>ReBlm{GE{n~U%
zVJbUa`n#pF)X&BQu8*lQ?s?@H(0yvifjxj*-<#&S)ndSKj-fM;sHPax*EMIh-tK!F
zRS+P{MgJHj*5gflonPQlac%F0_ivvJ<2$cD2HpH;Yk7FNMFFElOzAk8dk2t+F>*i5
zcWj89_^wzccm7cxrH(5ZS!=lPlj7El1eJxZ)*ZddRW1*&4ZD&!D@VZFQEN(j>(D#v
zh$Ht$=(eZ(aF$XCt^ZwWW|CLB_q9u{=XyeR6fR~SC@iGnEPw7H0K|0nw#JLnKe1J@
zSBF+d`RiA@D*?w-K<;S^GX;XRC@}y8eTasZVB^Y6TM*(!#rc{urlnzsH#f5WKv3tJ
z!KO6TM%Q7{D8!y=UaOP4Ix8or;VELMz23c^oje%gP@Rrrr|s)2nSawro7xL+mpY#)
zhVn`aa6@j^y5VTV`1bI;27H@?G1E^;U!eW{5lFqQHIs%$NcDA0jAQJ>8|I8+D^cO6
z&s^iBO%oV3NvZvMy)SHJmwcHR8RM{sbrtxE9=1SF!9wt{`Cn4E(sQ@<kRVCmc>st_
zlt^+)$B|21yAPPr_frr*WU!4o#cjl7LBJ`?7F|6+_y8c;U{z4LD?>*fyu2ond!Ll`
zX1)B!l$05x*2<G7Fk0Ah$UHE6$RCu{8<K+iCANV_`3^k*3qTk+TakW_s<Ftt29OaZ
zJod7(eB_-?_0@C;p%@FqRWeP7h+m(k-;YSFKm{j5ujdWK&i(6BQes}7BN8~TZ?MKS
zO9kmnKGj7cEDg9~!At=oB1~ei3eCYJfX~wrnsm4Ymh+*f;xiG&+&&-EDSCs_GB~kI
z!j8ZAHxK41KFIRd(WS_5)U_~!ip+#AEwWSRs|jmI?F_cLKSEXLmT-loUjD@k2+=4e
zn4;f?WF1|q`(BB|P))bNWXSgC7+@v7s_Y!*j`)xP!PYvo>1rDR*%0)xC2!QUsQ91+
z=l}$D!yL^aXhi&nwE}&js78~KmVuZuyi2MP;LUvOm<re6J8mN_1R%vX*UsxS^q2X-
z&M2bQ{F&URro%naSMk3%YU(}^BihYB)?FR-Fw3B}v0{~6Qst_I(5dfDg05sV?G`Be
z(f55z85-RMwoEnEk2YnUEqr5B_xoAS8A{wryF#jmA@X}^17e6`P(J)>_y}U7VOcT8
z(dg;hAF&P$e`MuDqMoSe)V(aQhFj=Wm8%O++`cSvKosdD%V#Beu%NNFWKX=DO5HU;
z1bysJu|Ijz(7&tK7b{9vnThSy@?#k`{yN?};5pNI{Wt}?(mnCj!fMH=j<cT^AxiDz
z9)h-0a)!Oc^D_*D@v?01SWI+Tm_t&TBc#s1$D<mk9Gc%b^Ed=Fp;Z`|J(7aa{ybaG
z2hy#&=Nwk{GszeR>O}$7eBkGjF2V%viST(Q{aYSPP)#;65%|O=H|Ud@QJ!jOe(3^6
zzwF;Ih%#sJ%Ko_(=@w9APTT1eZjxd3R)|wf?i6wa)<6~liNjIZSiC)RF8q8dK3~d*
z9sGOzUtU(P?thnaCR$UEr)xg4s=Bymi_@uBG~lB(h4t~g+(L25hJ^B9%>aoDnBr8!
zqo)SAkxZ0LUW!<8vMdk0famDxO!p{;M@8~y??C_1jmNT{>wXAAY!SNe>_tE9kFiiZ
z;Wrz6tbq7IRxC1goch)=Jc;^(?%dbKAN|Od$PF+5fODwBV0Whi7ORj62MoVNA}qBa
zOm`govB%-Tc`6<YT;Q=gwn)*XR8%D5k$r$2@+TCmam42}_A)*qIH&-bVJQ+k9$dZ7
zqefu3CWABkb{{R>$S<EBYwJEzD9vXMU+<4VU69r+O7Fu+e0Lf5BgZ>6l0zBxmty20
zbik}f3HYN>&vQLp(ttH;IKDHPx=qV>>$S?I<MrVQI4(QP&qG$yy_BVP{Z<)euLP^q
zA+47@u)Mx73I;5~7n|L0sLKl*OaVZDuzO?VNkLYCl!~~?Q;_{v!`L6YcbijuC=8xi
zJ~pB`A7v6$ctR|_*$b?@k4C?Zdd^n&ceptnU7u>MG}F_aSWOFB_3Xc9*$@@88V1zd
zduoS%ca!)EEpI|)GNMHF_Oi_3#pgA%C?PhX3b4!6TFFRU<CADaF>2SiIJG=19OU$p
z%DfBApS%z}F@4EFq$Sj`n=JQ}1}KF8<;AzfzZUcdDgh$4pPJw{XpGu3=sSiWdC7TN
zl4Z%Sv)4v*pp)>HXku$U9I~kmdxmInC~XI@+g6nPV-Z^M=SQBwE~iP$F>y--z7~|H
zZ?+m?6=^u|h~}8E?plPHG@PKWEq<rn{z^+u^Akv;2)zWFd*bn}bQ~MUD+4G(dwon9
zq7vWVfjZed#)3HR#Yz|;6;<c2+c%jiZ7+-N!tyPA3=UmLOsGk8&I2cjD6Q69>Zbw8
zKH5;eJYur@3>(v=w6O6$2(^flz+t%*vvilnVI&Unq+rn2j0SG{O3{DT0d6Djw$zhG
zp;CiQ@USiuEoml9KZ#VmdEcnFpt-g}|19%;Ey|=E6t!%TiDj9>dVxR6krk6;aRD^q
z2zRW&h{Dks8CjBb5%`<AchnmnjZx#h31RH+`*Rd*vxJ;pXuHWvOOp>@j$M5wM|D4x
z=&sWNCPAIJiJEXmJ)R$jt-wR<r5)c@s<;fSm}Vsq4KtMJuFC365s>_GF#FO#W8f4G
zSLk-K5KNAY7u{&x%+AeB>6W|+nWQRgCEdS5J?`~>UgRJqPmqMhWBX7(yTuVf4WYd*
zo1HIpQ+hpUO9fjT{<vWH@Y+1y+3c%(6Cxb#Wzo2@8>B}NVREQ~DK-!t7eV>=h7cg*
zd7Fq1fMPQ-`>O&r)y@eHbu&Qbk;FkAqM{`?p6-EiNmaZqDuI`_Vd&~OSYmE@rpG)Q
zS5xIV9og(^xQKZ)DnQ36p>JeC*ALAcO$vM7t^yB;P9|~=kax;)*%tAsAhr+ttVT%m
zoQsQkW@e3tmI@Y^-d6y~8Zx3`uP6m}J+?noIm<q36D%d{7JYCEP7W{61ME0g?458R
z{CJ}@C`1ixfe9q11X<%WJ{~DiJ5bq0zxlU9@EV&C81%W*GCjST2ADKC?@mQ+lWQ%z
zqassrgeP;_9oE(Uz5qawAm0qbkxgTl07*4BVCJuhi1Qj98U@k{3)ip=dVNxje$U+Q
zYFTgc=UX(JH2;0bsomS{gn{j*S`>o0#fOC4HXMrzrY6^nVXFSqWcF0r1Dgy=e#mUp
z=q}{}?wK++!xG(MGV1TLb%b#qUO1fsxnuT;xu?8{5QO-5hLd(qO2o-XEIeSoH|nW&
z>EZDPWj}5v(R>(jS$R}#|0rlTR_AMSL@$!%C#7Rs525Bn)y`I9@aJ_Bv!ONRO>6jW
zc8=eAFy!dH1p;@V#kdIQgoe+SBDnT|L>{s3Fc^9L19$|oHH#yRZuRM>;X-Wcfq#_i
z+3!&;sYg@%a+ShEK4qp})=M>`+lNu8s?KxKVXw{Q6)&aU7!#ceG_L3(aj5i!l;s#2
zYv+qk8DrYt-VZCAzwtQqd*TQ(o~^81XVXqAdJbO*pGyl{Cpg0JPCK$AjLon5Hr{Wn
zBhpvR@YM?^F;4jWOo2<AU(%>HQc$F`19?oQ#m3l~g}sYF$^~i3kE?(Vx$l)<i<}eH
z^h%+@qItdIEGL@fy%_V?65(d>lu^s@xLdj_Z1^{6-eQ9uyw6Q&)mL<ZzsE1%378Z%
z5hGj_Cm9H7ORYUxS>;|Q@S@1mu3G!Yi_LUsP?c+1d-ua5ARZz3R79aFpBx9ev0A4o
z@dDN08HRmvk{t{-2$OmOOWk^XU*E-k+Y<3O*ikqIk-`(-G|k}g^%Tk3IJbF~mVFj8
zUX2R^Dy&S{UG!L@tKrBm#IT9o547d_H5bAdhK~}0?4GHciV~{1oshUEgGk!4+U_u5
zmXErDS0U1>5{Oiw14eMlJR$Mn(d_7U*l8yNmnuV4u&0nLB}z&2s5urtaQo=-3Hp#&
zu^C?7*bnH*NA59zxDTNKU})IU^#moZ<}?F&oy2YXJ2`DhmZP&UHuQUR53dywCOUAE
zbCv*-BJW3j>C&dEI%cFzAvuzK)H;lpgUy`sD_1H_gsYVbC=+^tr2XraG>9kFxpY$R
zYZdFlcnE$z{5W#QdVvv2ai$g&N954LV^TT8!vjHwU9*jm%ps3!R-W@s4*9zWjCDtD
zB~<ky!O`jvb9)@)#ZxD45>;@SpbvABlw>j+u~`n-P!WQ{ok==l5*<Dd@$YH1L8XW@
z(Yw%9`GS+AYW_=w!c1Q&R`ks7cI-_2Gw>z^e*0Iuh4`f_yol`5{UcLWu|lAN_@iJ<
z1`;Vm&pkdb7hQ2(hMLr#>*t1rnV$LSw0B}1D%2(0HD6%>ISTJ!BOC$Q?`-*~tCKdM
zLXv($#dn7gUP;5p+gerr&3h6y^@WHZ2>E3(vzX}`-e7b$FL#DXYED-KQzB1e-(cGS
zfYQno;BVr~?*~3j07LFHCc0?+wo<Gp=}l_8pcDh@$lNowjtl_8ubFLj7_D#BwHI{h
zk9(Lk8!y^VgTYz8vlRV==<_(jdOG4;t^I!W;tJ9YUz0QNru4f@pY8hdhKm+-zp$@6
z@wU=~d8Y|!2(eSsEzM)lDb6PuN!p<I+|4nwI`-V-D*yn%+gnu>iJS$ROm|^aGQ}cF
zn{a$V1I=GQ=Sk-vkKELBAlsziyKW-Y&Bp=$vS1<%n-_1{Z(X>RpY1VA<Pd=xgAO72
zOw=Ke|FC)n;-iNbaqKOVNr5IXM#DBt=)=5&p<G<LC(xaokCj03h`d-lag-A4E@ImL
z_v`no4qR2A$KxBn!53Qy1&()w^9pF315of-Qot&DFf7g=?D_%>K_0;1OMed9BIR`M
zoH0KgOJv$?t4kcwLrRY3GWq`Frb<Abb_C(lZZC0Yl2?*^TO&_rQ&~xA`=I&Kcn9kM
zzsfEV;yaLREZPVv!^NTUox&IAf)WZD`!;=J>Pp46S{9dhDmNDGx|<h&B)$4%@_0x?
z<uzNx-!`goA}s>0v)OCn2)wYJywSCz@3ReAy<}3o<Y2+SSFN4|C@?$c{1~D03j9{#
zw;%|Z!oTmz&+?ZDy+2;5KTRlks=>mcorxCX9WfH5{Mr1RMyU~%|J}yEP*CHXgd~fz
z$->gD97OZ{a9$l{UHCup*>GrRaC}T3@HAqLd{b08r5n+d_0yL4QvBZ3CfxW2I18WN
ztHUnsHy-Nn7r=&lHcYggnWaiw`IwD*WhvBPL_$L!5RzEqS0;BpgQ>@oAiKXjm-Hr<
zyiNh_MzO>VJ>v}l@-B7%`PK9>1mr$75Wp8MVYkzdkIwR~@RR0AnrcpEg1~V~5Yw`x
z!uo4C!P=U#i?o;wLP=QxvlV4Xw|W@MUqH_89VtHfh`~Ce!76;_$^cMXv*u&k61#z(
zr6*9l>OOgE6i52|+Rx*4r!mTd&8V#xpS~jTuECJk)K&UV4}3Q7^z#pETvTV9VmjLT
z4fDm_{uR=F4BCg+i?aTsDgD+iqESuFXi4meSH2_G1qf@=kxuy>-op=D{u3^YFzWAP
zt`04Xr^_fsP_eHr-GxO3;Q0&bIkwejf*t48y^;ugZZ98Put|(<p@)zG%k_9ZFbNH{
z55u4Y@b>=pDR==W=@l}&W$C^Ys@@n)t_7%7;&eUIDGKbojzbqXr$Bd`Bkog-YiX-b
z1yjBKkgPsYbw~z8qnP>u(Y6W{A^ES@)uIYoQA(I@$r~#)@UcIrV0{QRLoYZO=S}7~
z9z6El%M;t$;Sk*qr?%Ei{FWi9sNJlJaIA{5n#9=XcG2c7=|z({q}Nmcly6xp^OeBn
z7BH3JsP`^5B7RT`>(7ttT{~K-fi)SQ<zaz^AM!-|Z{JD=>-sA_X=d3x(+g0)GA@7U
zyNZD@h5XJ}0YFjEX88y8xN<P5(S8^K^KLpPdZkRIYO^axMH{xzeBduRO!-(;l8<d1
z4DwHKt~AkCo?|Jx8<jDaxVwDi5!ZZ#EZE&_0k4{LwUg;N(1`C>JPlHAQw=2dz9+GN
zd#AuH9PhyLMv4ibB_Dfv3BI?<e5(-FU3nPq9c02TA>`5BaT;pDRbWgF1TA2)TM;kT
z<;UA(fV&3ekH9QGuxc_0x}?fBLKY{P>Wqq5DR^x9(^z8bKkw@x|1og)*(K_Y@Rc%C
z0%?h?;lNh1KV3{%l+-SJDoM~&SD7GV-`in}0u4+<?4auwqWB6PW!vl;|E~D2bM7#o
z+*?@Jd(!jPhh>NV<OqW(o)|WBXH{}1Ij>bGIfehp)gC8ST2brq<OT);Jmuu}3Q<WN
z+633^B)LuV0`WN_k5K7pxfquK%y}URRZ?Fw{N2ajD}O#N1_YXc8{pWEB$liP;Q9c@
z?SB>`$xLl<5l0%hy0l|k-Ga*u_XcfIknu}!j6GLPlD~1J3hAL&TE9<6y}kjJR`dSG
zYa{1EVYz15=#EMOR6VppgUI&xi5Jbzlj5CF$l7J215m+n*B{Z?YppU&?5qsSjtU;y
zJdyee+<(Zhzcj?HmskLf1~9!OvrUfnl6`k^Tf7+R`jiTIZ}_^oOcN5{J|5Ua^J#&4
zfO5h`?}O4&AVGh>=N|gb^~xK{zdMd@H2Z|;TWC`afT#m)KUEaADQCW2hv=qSXoB*b
zQZ$HoEb+4N!C#nNabCp5V;F&^)krytz1wSR>$?cBaGw9SCQ}sj)qf{dGRW+8$0q3Z
z%seLHGWgI{YA-I1;RXkLvjMPtdMBZ$2?&_%?<?8=Yk&||S56}aXvci+)r|4h*s7c^
zhs=+bf!}Ql45c|hd(KC;YR>sl;Mj=uE%D_3PQI;;=9>KdntbmYt0Rza>wh%qD*qA}
zrk~~f8)xw<lS2Bpk&TGPct15@jP9{ex{dBcMV+2Q1lhx`foBRqy{TacH_|Q=qv{4V
zl_D{HtcBF&y^h)>nUVG6Bk*X6LrZi{{>eyS+?Sizm<CZjHJt&pbikb>l2Bpk47dl(
zXG?kp>52*{jpRyU{22*QfrBhNMjzG%m@zovJnV(0dhYgbeJesKq2y7@_l^h{)Zky0
zO%8qjCp^n5_)~N)fgb0aSNVdzPGRvDU5?6C5Xr!-xejmiVS-8oTb?kGwX}1U%FrJ7
zdXg>$S3l&J$+kCwO2{!`UDztC&h|1@3c>Fh6EJ*vY=3-yozmAIgIhKM2|mna5aeev
zFXFo4K>69BSpB;qDo$fvqE9-VR>NxApzH`{t;ZjH)1A^Nik*lp9oj++2OB^E=%_p&
z_`rS}GV%c!henoVJ^*6X4lvWy?$>e~qMHVwt{Wrq_41K9l1z(;P1jQ1nir@B{O_b4
zkQxu8V)zYm`2Qkskv56DB>K5~YZor0tJ2aZJQ@mC9x0wel6;cvyp^%&DRGn4h7#9<
z?;AZ_{bNz{^Fn_==mwnC`Wl9<f%hgIBS+V^y$~Mwfq2pf+H*l2$u&j>S=I5`pVl)I
zzVGXXuQRKBDEx<{$#JCFi9g>xZ_Q7ijG``te4K3)EHt&sMS8a=yOs;9jX2h$FCGxI
zJ<gAaSelZ+tVcf3vDR(LS1Phm3Kywax+>E#Ue<qn0vpWCPX$ogP1!SwOnhC~NFguq
zQR*0vB@PZK4}Gn}4_njmZ~;1)nt^R#OFc#O{i{IU>wW>0g6h?$VGyMWulmm_;o<NK
zLO_c;V3ynpHIZLo9nTZh*Zu1p&frd@5XHp9x^Y--HCGk%x{CSF9`2~L@;=dc9$eGU
zA|te$7{0ZcJJr@qzn;T3mE%}|BHV2dYz5ixds6+=s>?eVra<fi{Oe=Re^ZN%ky3Wp
zry7RF&%Q~DiubF_aG4037-hMtAQ8T@G;_wJ7lGf9CZ3Zj5f(!#mBc4zjmUe31tk?d
zr=nsBLFN^^)R@*RN>$h}$>-~<Cm*zp1?}V=tQ$6_$DYmfS}S!ovJPCiW)%Uju>~nG
zv)DeL3Ay@0%L`z~^)s(HD$9HB`bg&QYjC|eI?*-ywV)j<S*28t#9D3TKrs%MGRjg1
zyvPy4M5ONGho+UBrUo1H>{sd8^0G;xs*E)|F5lIvtz6q@0t6xfTt~Cb{#%?P&v1;G
zc1rqQoU5ZK?*tl;1bk!+QX^FS;OY6vyz4dno=7IeaOKEbHuK29)>j2|lLQ6nY(H6%
zB&Uy2R2zLvke7FP$O$(uuB2<^h4A*;#Y?dUn!!PuX+>O>{4ixX{Q`hpoaPQUys^iX
zc01;t_wk;*CqqG^Z0Dz+VUf5T@_R@#%VE@yUjZ#YJT8Ul)eQ5a<;;IkFNrXQbGxPG
zE*nkI6(84231>)Ff*oSYwjh4~{4P(lKk=u!KwE67B2KDE(j7mN)XOQr8(uzUgDmb5
zG?;q^_)Ivc0S=xPo?@#9UqwR{X1jkv-v*ycL<&`aJIIBI$|*nZHx|7}yAF|Bl}R7o
zf^o9nVr2uh?UNMih7?&?4uOAUWV6MinJ9XrS>!E#vjR)8%L=vNw0KSg@k7b=JPH=Q
z&(U?=L4U90`cBCW>~p#+j|-8Weph9Ngi}yvyx_}42vc#u02xcQ+s15@w`Y;_WP@@E
zun;r(W2oqJrf9k4iWML{_SiHzgoFem<Ge4=fm_PxKe_rawsz*pHmQ-Z>C7Y@U8OSq
zP1^E3oU_<)#OD>s9rC{pt!m(9W%;$b-h3|H5lexfLan=Z&Y=2rv8nE|O<&VMR#@YH
z!;trmK!dAt=UyB^K}jSXw(8~_x{@c){wNTIiYrD90p2)mzy(L2RtfM}y@h$swf_ty
zt<*1HrAdlYpn4oma<L|Gz9iSvw*bz>ZsYpLu*F~Yx6)$bS(^ejhf@K7tZCn8g;EXY
zT)w2Bnv<N943LX6G)=34qcj>|148sJ*L>O&Uo<&eg(*;>n!cOJDn9lKqpW8NR)-pJ
zMgEC+yjg*mC$!h9C0@`I!YzKwrz9aqOtIa*24UAY-5qYGA|#*NrougPhUtn$zH#{p
z^;8QMzuvg`sAQwqGkPk6paDQo4MKigYaCvb^i3Qy9Y|Y!>q{!nSmT|Xju~qZPay{j
zZw(Z9h71$@XXa=)J1~wJzA<N}BooDv3}k=*6gOmIgg7qMF5);ezK8A3XN3n&o<N;&
z8AiJf3JR(4zfdFK9o!3+8vghjYSSa?_a*3iL-WopKv(yBYnjaBH-n`P0GZRhjY!)8
z0PAESo@d3KO`6EaWSBwUN?mZ}r9~Tf22lz3<O1r#K?YS{kobg@$ml^9^1QC2?SDns
zCMg-_#jMu4o=cY){Scj>a4iL@2z*UY3RCyzKHg0P_!^d$_noDU=YxcFALFl`VB3iQ
z)}I1u&H<{sFT)>OUP}uy9x<*_^+d1sx>Mob=+*>hECL7hIg~5NG1CMw#qKt6jo@cf
zYFzKV@SXY3R)RT=7<>d-tlk@uKBKp<MI-nyEk8r31Kkqb#}nPWpCGn@kxuVGEpiBw
zn$#dM&>45o_>?(PEG*<9dMoo)ZeIe>y`(^3HaYz<JAFOS)951anoqh?#x)0@N{NkH
z+p+n`{+2+KI5fT=qgi{{kl3&0F8o?@-@-PsGWcQYPZ>*=(aWw!D>unHi+s3wCrppW
zCNT<l7hm>926ktCcvV?+OX;XcGSs26>I#-V#zImjU2&S2i`1>i3=5m@&+-*%rp>pE
zrFAmEFd?jO`aGFO-&frZq>{axfMlFEg}2kI@tTNP8CHvE6|6qdyb4iY)oVxyjRzkz
zE{(!MonlRX0hWdL*92&^3#~3p<qt9>DdvI4g&rV_;uDg$Rd^AZu%wfGFaE-Z`};yz
z=OQ#xftfeVJ{QiOR0qxjo~;h+&?7a`6TkPWqj|o<DVm3+E!LOZ;Es=0Q@t9+<%c{*
z;^YI5&Gn@RY@xceOHrmkV|ziu&b1caTyy@b)>CL%(9!%?By{y&`&vH=GqIR!FxSP1
z&!~*5$C4d=w8$c}UW!VfLrHy@)&wb)9Ot|q;Dkx7&Cgp`X7-}7plb7QG<I$2^H2U$
z*Uod`zI~JPFPUTyDf-`Php{bJxx>})k99Arp3Mv^@0P#(E3P4o)G39a7B!kP3Agph
z&@uD+{ik()c&OCstVbHDgc+wkVr@16DL85TPfL8o*u|wet_7O(HIVPrLD+%flTY2~
zP>linXBMiT!SQw>GS}b)CD?RW=>4$sg3%PND8H;Ot^oKAc;>j4!g=QB61e$mBvt!(
z6MblyraFPi)%4Hdb9M-*?CCq6l<n_&Ns6ctL~A_zV+?t#L7XGfIcU6n$CWiWK{?l&
z&IM^~tIO`k^C>}TBu-v#qr}s>-{@yrTUX>nN-4^3Hb?*p`u40jD|6|~Cr(>yMj;7d
z?R(|wN3nVum}fqFT8B<K;(AuE{|9+%B+<qSG}xhL00lZFBxmCL6QIvqk7e&cYnGM$
z_YhBkRQ%$qQ~UO@5JIQ=P5LNHC#ApDnkAK5`!5j=1qrkH)^Te#4f28w3ZD}Yh0#!i
zA=4U%a!K#Z!=>@5;No^x=Q9vL?2|34yzq{@jWF!*xCZ1f7t5%Z?hgr+(Jbl(=Y<GM
zq)YyP)`Z?jSLhK4Po%?`@2q96VeQ2``G7MQ%VNEoaZU)^b!ELY_jiXd$b~jKV1QK&
z{Z_j4S{OZK^)V}~cUFr|kt6p6u`uGZbO@)z+zW@_J;87kd%lrE`um5{-qByPoNzeQ
z^$bM%Pf+z|&i93?lh>*={LtnFs5!59qoT3b(^qg0u`;)lNouaX)bm~|WU_9wF2c3}
zjs`g`V0K8}pInp=MEWQkxIMJ#g0_Adl$E;%A}k`7VP3%2nvT{*9l+{4t$O9&jlLFZ
zbqcvuSrEz(Py-rXZ@{zY4@q^t$N~gdFN)|WyRbjN!fHcLjg#hQ!R={~Mqvtn;1}oh
zPhQqmgJ<!#En+yV2XObS0<XtWQr;R>N<F+z)SyvEBqz7~_oV_jB?z8hO6G}nqFf{6
zIi8xas@%MJKNwVbcSd%hax~V&Z-uL59nyacYJ(Tq-MU`yFI_TRp^IY}M{Px;yr5g8
zi7y$L%mf5ON`CCcI(@J)^46N=m;8)#UhxBk@o-E#27ijA+ul0ud+!EZ@$Z3jIX@Js
zoyPJ(<kM%^5MxXJ>qK+*cR4oxJQ3~&PY@9AM<(kW=6ck{C2)$%ycTz__U|0FO<CyB
zfn26h(GvYTO0*IWXs5$K=ev9u=hZg;a9VeEl|gxv@)W_4FaAJk8p;^!cl#qEN#jIz
zTwjsiTs5I|Foz5lIx!t5E3eFAf6E&-hjMSd{67<vGN8$3PD*aSV4aK62pb|Hw_C5r
zaF03x+BtYQJn?ddMl8wTBF+e?!*F0x8!|SJ8esSGv_hh$HV<2JoDVV*YaQbd#ngz>
z{*+A3RK~_`u+S_c?!AA&vO7af&LG@^D2#U})-mU3iboyUYMEMVF7tKPi)`Ie(SmvZ
z6IqWuiH@7R2j$Q5J!lTk;a;pfadWqHug)iIev>B=M-%W^^w2e_bELL7Gp)h^mt`t9
z=w@##cm70ky48*e=cFwbRKn5NS55mnh-_38#U*y0cU+H7wuQnjPsQyzJJsQ2io&xx
z8`D8J@QEzSR_Hp9SDw>3x1eJ-o0aJwiuy$19Pq}2MzI+MbyH!TOKdTBm6z8r#Y`q&
zvDmK8ZLd?_Cpjr=^7VUhspgfvioK#v*T&Yhqj=TDxCa2$0iZOcg#fMUUxy61Ed!gt
zc7l)`O#zeS(R1Oi3<R!>s;BS<dZ(#sZ+Ea_<ocyCW`NaK3e-cw)7yi#-}tX6bAC|}
zubpR<1R}89oCDla2Y&i*qoE1wrwXEIfy@V5FwzIui}FE`a}VKFa2+QNu#qg+`LPAl
zGgXP=<0#HUIHiTZZ|mfT2%cwM3-?xe&S`Lzq&G!EYM0%t2K^?jUn#$0Q~etBnVV;i
zAyqH$hzUr3aB8xUg71VMQ>~cAwBty5bsot8;=VdEXlVF7UM;T`<+PVY6&F54RQ(Wk
zHo$_111w>yL9(|zcyj%->|LHG2A)?|n|6}S6_ncTeqR^-#F-ItHW}}ayVZB_pzRoQ
zyhdlj&45iCCwV+4eC{aS{uD4qu^CKOw&F8_p7g5Q<i-0Q&*L-HzzSEV@UY1W$GKam
zWbpA=dg9US1(S5!<}_Q@%%epV>9j{~aA(f`xGFW^gSSviysyez3%QhP5%hdAvl(R1
z8s@K8>4ABY{9%u9<*yCYTmc8FD5}-EL`rM?S;9^0(fh1t{krpni}7pB;)hIj!=<nh
z>EpucQf~7v1-}xrxUfmoy;F>6VYe+<wr$(CZM$~awr$(C?b>DAwrv}C|L2_aed*jz
zKlDRCt&#a@W@cq2BWr$Rtj))*()W!UFAK(J_picx<hs$XVQHOB#7qu0d^`p=+)yv%
zGnb-@+s8|ygqC!iVJt+qWe5tAkk~-{{TMz9b5CXqf$*DpW8KC4Ob$nHWdbbiV%c&3
zIrhG5p$sjZW3@UGIxb2rUf!bB!n+UlFEeePZrm4Vc0W!y4h}<Xl`YpVM#eJ)nl$L9
z?snJ&ckgMW5Ar-6xVB$a+7zY!r_L~px*CA)O6}(-6~hW$r=1{vTf>&+H<1}aOp}j{
zkna(p57c)EdgSUF$C8c0pwJKtzqiKQ!6W|n^=jjylT<Kn@(6~JI`5oeCSctWTfWAL
zd=|w}zza*Z)n<uV<$VcH-01Xi8b7mkYCkTF>^&MEu1@}^HGwjN+N`QBbk!#YG$`Kd
z<{4#vy1(gxwgJH{Tzs|Ik`GJEvKDlhXJJq>;Tv2F{kZ&BGnV6Fo&E8-NALj|ZW^#-
zln$BZ#gMcBImzq?-+ErRvAzVYoGij5iSA}~f^qJ)%w$2|i-B_Q$3PUBA+HkjV1+VH
zckNzlN4(KB4o$wkl)C8s9pCG)A2S2cOnmM4*`C6*pSgI$g7>&Y>}!DP>Z?WH<mob%
zbyy10t9(RLa8`iU-)DzGWsf+sbQpSauHD^Zeobp1Gpdo3wPQFEbuG)l5zMsDHLt)D
zvXzYW&2&t^B)Puw-{s1uLhD0$j0*A-06CgBS?Ul-Ql{RkKBJy?Ph(2suVTig#?&dy
zhHYD}zO_vtij!y2g`FJFJO~FTMq%`Izw90+6tnQZD@km$kGfBK5fHr+ZHZ!bdU#do
z`wA>CUHh^gdXK4xNMBPvUpIbxEv$Q4iRc#f&!t~4M)~3eSTvCGDDdo@Y}oiZ!V9x`
za&^e-A5E?%ycjg&T}`R>B3a64e=4R%&J>}k3&zVJ<X1J>_ZomM$zn0SwF#O(XM1Bx
zw#By8&@dXTZXDA_YxSN`%{vhjI&HncGh_V_8Z2g|40aw=#pkgH<9IY$DaQPs^^Sz0
z#ZA>ZJ1@ZsfLvf#|4d!*^I;>@rO%$(`^a-NZX7q^PM7|3dOC~~NHoPJGBxoO1((2%
z9?>+bz3O6Gj1u#)5kFwR5p9vduPS=3wrhMk)6ws*H1EuP-&4g*?)L~0MZkjh22D3`
zW{n)*``R0_&>xHe;vb1nx9W8aVp0tX%P}6QBGf!E3JpDXo3dX&Hl%S`BxfFFTQkhF
zr~@Tv3NQ3o7;FW3?29)9Kzgx;Ch|M!gWRi*pxdbA*0sAZ8+2gyrtdD9-(H>BCz+5m
zJ!`4S?2|I?&gvVBaTx?-8&~Y+0Y`3IOg!>WvC6PmOu`x8;zH==*&ZU-{N*LZQf0P#
zqg=K++t|gTKN0RIpMlDOKyet@kl7F#4G~3K%uvluxmOg8FW^=3l=9m5c~PF_9E30w
zTgBzghQO<C9^<e$Fg>}xGYw*30BB-fqko6b+S_h-FMP?iZI*ScSrBnQ)ODMTid}l%
zCMZO<T+=^@rqPS}GXG9b94aT?>d@lFuQztWi#0#3KZVExeU7egmBfaSTgv?vd3DFf
z7ZbEyF$Ped>DDH}jtCpw|9<?sQ<0D9vb4@F==qdkYM#ITBawe>pM-zF_L`b)P=q*4
z@RLpZcN$N&pjeN+98w<el7BhK{X$<ue`<m+)7bM~kLQS@%<=}9!s;+*R3Aa=?M_-F
zU4qMO{6*uM6wtx9ZAC9SXTP<h;Tr+MvSTusqB^Ce0hjguB2cPCDpf*@tWD;w1Mb!D
zXbWl69Ev_8N$3#Xpv)>kir*jUE}o3-*irS*i-(vXgZBN|n;CKCt@=9-sXYc{k&zKp
z&%}B#M>IX8GH3}C)|-jgm&75dW0fKe#5tXSfY*9w8k7g_a+#>kFw2JY0e5@9G_=Hc
zbJ}v5+(1C%BLH61YfM%nDiGq}O$~XT>Mw461HRWQ$9adL-if6LQC}i@u=^##gRF?H
zkP7`hl9DcEqdPGEuxxbeMYVkFs*|cL=3J_665Km`EOgP<mTP%{o+nl92Px2=S|L-^
z^f+JOU_=;_i!3U&#PAy3&H{%J196%6FY!TW6yS$jXhN36HA@_)X3$!ReL{q@gJc@<
z#Uk_m&uj{h6s|b%SLhqr8absiye589xj&%d#)+^xG}<E6Q_a{{8BRotD-@b&VrMM0
z5M7msXJYFEjQ~KxKyRy#MR)meMUDc2`69<Wl^->0{7NWhc5^=k8z}@pHJi%>Wc7Bt
z3m8Z!MEmYE7lqg`0*yT@M6RGkb-86bXLdabt$-E#1PA!_1DBLitKj%m5O!OBwe&YB
zMuy)*_lvB{k%OFQU}FfzOzPh4?CR^R@Awod7pjB5N}Y3raIZ1YoGKw`WMRka0%9d=
z3yjyUE2K+LXJ%gCCJwvsgpZ*ONyRT7Y}UQhD`I70m7xy(I{Qg_@qwPti>orGf&ab8
zu<|xyKhZjvTeRDD683sqh?7&`*A6o%e+q8np@T<2wy#1jBQ)5CIcpV{Rwe)^>|rgK
znik((w1ZYTFe-mP0)vEd#>w>bQXDbI^zf^#OTH_7L(~3}Kqv@`F<tVWNWAmAn55`=
znHyi-(YfkGgW#n507UQ1?TZh#s@zh+IZ{tQ4{~L99z!{;mcMZMbPw|F8q;&_7RQ`k
z(7K0Os98>g4X2+sutJbDY_gfZ@ukDnK7~Hw219a4UQZHNx(HmPFS^lmh+MX_SH}a_
z<uR-pb>Wr@tY?#$VqK)t9dsw>1JG;oy#W9V%vcjYf<LGe{ggW+7_&kuL73#462-S8
zxK@Ge^An~1^5M`a3*^Xt0#VgWVIF}pm#oOvqd*IR)VFfKa=jr9Kx8u4Uh#8&ZXUdz
z+KpY5>>IUj{)5VJh<xR^bTTaR38U_jqhsK;S%v!Bqi(OvYgybv*G@A6|6XIz+uF$G
z?XZ?0*vA7f(`~er_K?t#<VWSnh&#M^WlAPuEAr2oJkzK0mHL;0M<%}Aq5f5o><f^&
z60E1bDc0Vvx5BTiP7kBaRFx?SIy_rPxjhsmkQp60NP}(A%^Tq*x>2dE>7@!W935OQ
z@7%l_0-qG4G<ExrFAi{i`l_z@oWbev&FbBnVV~mD-`hhcXV87gmL=iqt?_hTRXApR
zRODYf5(Crp6t032e*jvm7scrT9x2t}8v`d72TAtu&-YPtn4sbsHj$o;+}3WR5LS%F
zGVPn{IxnK_4e7b&?0!}&cZX?t#p}Hw9+pT!c;lunibwSza;I&)p_rM`e|D7D?+~5y
z&+<1#Mg>EUnR>o5Od%=WNKH!u7}!9IULRMsjkyv>b@%yos#soH6S8Zz@WYCK;4y_r
z+3#O2)y#XTeG~R2bSsG8_tHJ2lrxEUJ9e3k$?V$VS_l|Z%?4?@g}>i5yVLuG+^hb4
zmHg|!9Kj|R9hpT>tRm(Lzh3UT>!-iVACE25q}+%;h#9vFXt<O~=&9st)j^)nPubqv
z+;DmWA-GKYVulr4J`*ypg2pztlimdnwtlrfh=nXxeYbFv1k%j`C6s0*umE&J7oVIK
zH9#p`D*P_l%cE31#^Vpa(c;n=5=H}}-P=}JQ{6OC!}#|iU)0Tm(8N>}8Krfk`cWDL
zItPM_8U}Z&5Mq4eFmm;mlZ2esd7drpd>_L8i9o`WjlHVkl;6rxWZZUP@>!ju4i)L+
zDMvsD!bs42{fb!nZYALz@@#pQa2MWb52SED=;X)C&1BOt*hOIFRZLZjSqzVEA*Tl;
zVMiG)1Q9D37Jm?(fSoM%TYtw>0DOIcGdr666XFc$i2!6aa;Rra^Py4qL{{P#je7FY
z(Vx<FQLXHp;q2hevn8Oxu;e4&ufDKtRx=}IW{8<&+ujhEsZj^rg51J=9Lp3>FIR2A
zQzG=jV{WoJOpWaRvu<kBUON@#jhI(Fh=d<4*eFuf=~F-qkcI&3NgoFsCbZe(ifju|
zYlT?UK*mx{)?trlHphUu2z9L=0OOJW&x6hz?Ytz@$-RmPX#){x{LoebK%mAe*NBs?
zg`szKNe6>kYJ;P%8~T`#7%f-t)!^@f9&Vd-eDeim+AV>2SKKlWMNRPt5UOfHMRfJG
zaV}JyFs<6PFUKV&^$JhO&3Vmz*WWe3yvl7JjO;cCVkjQAsYiF`Q}sLNJbVDlhp&2s
zShm*>qoHqw2Ej#8{7^&4n(95f_073Zs|*5qfr<o26R1CS6aeSBry3ewTlGW?xAYeo
z$^#7$KJZCqn?8a#=;^QdlCdP&rn<*SbM;0<v1fPR2W^y~9^QWO$Rs-ka$J~fK($u_
zW^;ncYp2BpRyC_Gb60-P=WnszfffQ`sS39Vk#UqU_~lZRB)-+o%tB$(Is8>UWALO4
zpQExAc2XW+!REy=HO@3$5UUCX{M>kSzLyPBpU0AG((VoT<13?i;5qKcNVAbIjWa{?
z-8KkT<B518gQZWqg+--wnrK^VxOy(kLJC1f-@Vuylt?Gd9K){H&-@}5VY~h5K)Qe+
zG#HCuP73#rCZ_y2VLJ}3Z{CVRM0j?h^rtD<Fs^lG!tlUSV7nzI1NP2S+8E_Zfj6Sw
z9)ux_0ptZ5QPZtZ5@!m>7kA>$$oa$dn`tNCL7kS9UCOaeQ@~1$#BGLm_wSQZO{i`V
z3WLa_B(DmDo(q~%^4lKnZ6oWGT_A#6SafZn6~C}=7>L}?59>nLkoVn6pBE=0h=SLH
z5|&SQ8!>!OPupWM>qQ|}$`u)mC^Q~mLe*;Z9|=IuXM|w9I>j{>WGeT^hly)b9J?25
z7Kz<cr&8+FhHA~JF(xMN*0Q>%kNuWel&IF5TF+9rf_j{-TtSIT+fixCFQnvB64_Mp
zDh~wtG;%A5PZu!2GW?#a)5{U)fE&l21POXcneY<Ops4&$RvgZ&V;z*4St5IG-+x*R
z2S;LJctIA|=eY<3=%{y6NpP%*r8;xX3grr1Y`ofLFNpNBPd!}(`p;>;>u@n-01o$e
z2_cAzkK=x+j|v+i0gy>PIolB18CHK4NKetsngqu}f&6~%bodITgOurM46jej`T7ij
zc|1lak5rSDpep@g6byw0NErOvYIrR_r*c%OuFt&q?4TSM83m)!?!0^8n-AN>VSP2m
z7we6%9@@eWALsFPpwhqtCp&;nt&^`Hu9gT+Qj4;h`C8~0us7uMt`F%rc3e!&vaU!`
z^m%HK>FR6I=#!4aQEQ&YWc#?l%*ktP3$HTs+rDnfDm~zJCUYCiGX8myq)q{Mbeln6
zI2DIXXEWY*27Z>t_wUdZ#+9YB3}%3kGaonCxq@3-hXK~)PU!``E2fsb{&5J#IwQBP
zEKKX(_%>;aGXQt5WQhmU3Ku;qn>-(kYlFMM?lwJ+Mmaia>9(Rk#lm(%Ju2Z7>`N0t
z*AbmD&w0$8Dt3g3&Vqg|9O#SS({5s7EOm2orvi;c`IwsDTY<mH+2{}>oje4*-iLC#
z^a(2hqe)lKq!Yt_&gHrr=f{D9Z~kqIxa{+gkNm54zAjX#v--vps$j#0*b@0jRu>(-
zqS8043DkNLUP%PunW3f4;e0w=5_dE3M1JPWUtko_`OxweFRYH*^T9bKdlHh%R$U(g
ztS4>Peh#OI_LkS2#@P|75k~SFz^9RZ4H*9&3}``M#21Yd1e8AAom1cRe7!{`G0*S)
zyV?CieACKr-Mi!K*TI5P6n4@AK$;ci=gu{JS=IBANnKqb`*qTbS^Ljt<%zSbkBZ#V
zn%wW+V39EZv`N^b852w}w!Gucvcj!RFEps`{SUt&(?yiu2H4-FvhoOp93gF^Oz{Yc
z-q<+QZ_GSV0o+N^#wo}~Xml?}^BSuh<f!?y(5Idr8Uf$zdwm1c<&B6(b?gAYaWU>V
z0)q^NX_`B#HUBD?XP-Gl8%(L2>h=sb4#wyJoz2p7vth`CqEsJZ@y~;WFh#M)>=ND4
zo4DrrKkYZG4y!TV!3a1OEYaQb{AD_P8>`G1eqF_C7)e0{&oYJ>T}0zC0JvM@Mm(vv
z^~cSdSPz)!pub&_G?lb2_07)w20OMku$tTZP|It%F|UU(!(^_U3H_8>?)^g$@&F9r
zm$-rAz!=N{=qW67VH>*fgk{2LE)%pTGB1VoN`Qz(S5!WDD;*s=aOgX`3pb8QK(_l2
zxPJq}Y_WP!s1@ahy_)|{#4iF8zqn6d)j#VgE<rZ*QQ@V%BVsaX(TEtV;`2RUwu&MG
zYH4Kck`;-urXQ<`i_y}xhT4v=l8!9=VY?fJS4TKhwK8&}fI7Gg`I=rn)hcwG>UQiD
z7z~2hisXsjQAw6e-;47ybm2>w{Y)9J>u{SsYNea)P)}kf_WVSFB5^YF&|2%O_bS$7
zB(cB~?=e57Y5=q>$VxIrv)I>*f<-+SmyOY7G8fA}b>SV<;V4x{3$|K(JsM%*F7`oG
zKTX->C#qTA1yXT%tGJx_N!%0G(Eln1q|8D`6x{^eI&NoH!{U3?R^V-KtT`3~ohu%)
zS-|c0=qA?Q;+sT(k6{c(I@N4iAE7I49Ba_+N>(KQ8pQ+xY@b%KZa8~YfSuC*R>5(^
zD0}7;qk+q0vASy45|ZCJt0q}mGDNo-wHp9oO#<YMh*`sul4%?%i~U3UV8}Q0o+(d#
zq|fHVD2U;i<Z$Ofg3-~dREJ*cmE1xV?mqo6C(+>+pIw#1t{aSOCq_1%L}NGn3V)^x
z+`VkY-y)+^nDEa)!Ypd_$+QxcC3!>%oW9%RDwwq4L$h*>s~M4FQb39P=UGG)ak2s$
z$Ky{u<etW(Nv_x&*dM^N-ZVMhFrS}2oHbM@wpTT5&~z^0r?G3$<%;qFi84%TsR}Bx
zzGYIz_(df=jxkrRo2PL2*b4sKvKG_5Z3x?xn>XxYl6obMlRE9!!VNH@sxCg7kabF>
z@}jJ#6wKF9X=6w3%B+(M2Q-_+=sU>lV}~$b`0lG22Aspqa*v$|0ACUt(-URs#!syj
z$kodrWz!rFOrriCgWq{eVzLNO&OZuUFO-s>9Bo-wCX6Pr2$<HEYmz3=xe%*R6F`rI
z&hBv?-4tdv%dc@~iPAu6-En;f?$bLNkgA>k#D1#l1=HrI5zBP=9dO)r1Dz|zTG9D+
zt}l8q3c#?TP2q`GEr$R@Zmd7(nuw1UsUn<gAjki{70?;t`8X7Hu`Up2!BBbX5oDpS
zfqeUyJ<DWV_Nl_*=Uae;ih~Nms#KJmqieehvNF{Q46J803K&u&jyg-e!jiJpBo)9#
zTsPp(%P9zy1NyuA?oB-TWz1ydG&K@VSt53yh4>&VLm8jUlsSS_zoD#v!LupVv?N6r
z?1opdV7ei+HeL`@ZgFtjQr^7gI*xz?A|?J4wTugBOJf2Z;RN-cn_~qXI8P5F%xjI$
z5vQ6OP?jqdNdaUjV1+x+HB-P%Q4CS6j1A6m-MPBJf=+|nd{CP85flFKEIg2)!T-AG
z!%a;<urvuZ6jKh%w2Hs>Le{KY*uAs$23NYA5M>V+ZMm_WR#~Yd{Pb3@GbfE!c?qD7
z-;H@L3#pm9p>;iE>#&3|n8h+3@+OF`v1Ovh*|CV74`0N2=Lap1-d*e;4U#8h!?q#m
z#qq66efUC!xO>MOle*OtYBnv>f|n7$YK4mGk~pGM4_*E8>29vHxkkRz8!kwS7uFHe
z8U~$EBb<&iY(+-IE@XF|{xZMUPE{t-a15huB{B`<7GH8*M&nBaXozcuV$LF#h5Hc<
z-^(3c@3%F3g5WHsq0fQ6K5kP+PQKLlBv}VH)K3W1DZ=qX;g=#*js-`f`vu|Nq=TCp
z{*!c5b=((fH6_5MJw~PkU@J5mS6g+Gs>#)@JJLyl`G<QxW~;pch@t+PmIBv5q_Yao
zEf4h%&ovm5%2gQ+<g9C`>GG0~f^Ot#bm1|0D4u}KTNKcegkmZM&T)7+XI--?!!10r
zD19OA!Pw*nzPFti9prZHi)@_S@L0Z1BN>es$LqHYXNLRIinST;Z62D~r9%r2pTmM|
z*uSo7t^G720eI_sIC-oU*uVrH!S+D?BAm3op7*LJ8KA(@k7>Bdtjy?~hZn~gohMOh
z%qWK#L#){Czw<b1DhSWLQ@Clr(UkAh+TwABQl!Xa_drcD+Nom%^K*|3tD6u{K#FE#
z<wKBk2T2ZdD;15jU~1_>_O)>@ST3-s=3FKLJKhdwbpGX?+H=3Z6~fvKT|YI$L8U(#
zeai`YjeU~e#j5qOqySu}2K}X+xqQ7VhWfTMdHg|Ka!`Z29E?Ql2zLjTMGk{YJK+~`
zxzHdXV3ao>Jc6T1NuR4(t&k1S_lBTQZzE(&zWYlK$c=Q~FXwE1mco5uWSj^3V&{V&
z><9dHJ{+BgI`KsG2>_x}xG5oxS2(>793jNxN9sr0lDJq6T33Iqhl%QyXT7<+dX3OF
zA`iWjrtVhIDncrclCyHJxn^Fi?hS$(NpAq+?6TAT2*Y!l9eo!MH^Jtuxkw9>$BOHn
zLck~v9g!MOqB{cf#)fdRNUkDIEE<l<u4l~JfRqh+qI%xKVrp2a6hM6a^BCk7Cn@l~
z+PpHV0}1<Z^7QbugA=IN_t}f-X6qhuRbd#a#R#*uRFXD=8^KVOEdahcP!aqVwRm{Q
zH3U5WCqPRSX1BEVI&{O1%o46(*E0inXW=)!k*?QscFU`;)-9y4Ognt^MN3ndmswJ>
zetW%5;DPo|{WD7m)(oIyAAQVd$YGv~gtj(~`gcD0f~ND10iC=Y4)drSvJplA#w?#I
zbr0FtM6j50;?KuGT^x`2Zzo*M^jsv>GsH`(4!?29(?ckuwK>YAUl>B8Mjl|e1e8Kc
zL?uv$<6IwG^x~@{B>}DhS6i6Z?LA1Y&6LMQ2H`>O{7JF%ozNjGZ8fPK(mD^*XcW6*
z!^HfAnaOMUt{!jD!_iL(xjK|f#9!2~phD~M)UioCR>BZV*HBCYHloyaFAa=SC`>$H
zEXngQsP@(|_$$^i>MP9f<(a;KhqVUWmR_-YE%e0bk?iFnJCWS1E`Lx6MQxqtle7g3
zHKWw!nND0fr)cx5%0Fn9EI2JhcP)l$qiwPdHVb-!$}4JK#kv4hxIm1hNjdw@q1R^~
zpwPBaE}oXDBL_dR$}Ttd>la@zUn^yCerG40s(4R&)kRl6H|auh-<yDijk5&S<}Q9*
z=|mDcyvwG(VH`Z99V5>hFruCc5*3qyx*XldN%gfW&;X*Upxq1izs6m-xt6oAV<h+`
zc+XP7Mnd*vc~*wWtVjusb}C12m6VRm{v8}_V~Ag78mh+T5LeDD;dswF{#7Z4@~6LK
zPi@vz*t>7ijP?ALZqZj3;K`Kp_q!TkJ8jlC)n7l4et{e2-)4Usv#=^H8tJI+*G|gH
znle7nI&hm6ww8{V60`rBi(N&rg}4H;<tKIv&Rrmp%9wfCO>{|ref+gf0_X-{>`HtL
z<2TjFNwS&biQ1nnLV~O~2GS7m&5Mz8o$fpZ6QA`fl#{AWb~+2p7-dWyLfm8=xc|(3
z27R+T0Gh;!vZD3Nega*=B;F9eFsmLZq04&e?47&)%pJkG2S^#JFK}05FOun|ur0YI
zpKk=d7c=(;A>PMp%2DpT?*_kY&~!?(IwHifXC7m)F^*weupC<(SGyegyyROV8Yn9>
zw!9m{YUY>vMuj9f{u^Sy#r>~SlM)qguH~*}81-9axz;g#UF7OBJ-ua+%*yl;h>9jY
z|H@_OOwi?C!QX5?0J-UW74NT^QRd?qEMGj&B+p0w!$=-5Q3J2?%RjfShqjOk1II$;
z-(ZKK8}h-1KlfXUL1m_5Q;H&)Bfe3o{NVbS))s84*c}HDM6wT!;7W44lYNu?G>nYY
zvzp;!xYb1Yhzw62olE71FH1sD52z(djc*e5Fv;&${Ja@LsA%$0C;O_ISUOQHUn92e
z*us-1UC<T2GNwc#MAidoh!vxawE|9eGXeRh(3Vu2U_;y7Ixg@yNR_RJllg$<=pXE-
zLDIfWXL9$d%@_|n|84*!eM6o)Px9&}%10;p)Gw6~v=~=X5VdaeN+4K9a4UeT836(S
zgTC8<AU(S_^5;f-g>PiR#tdV%J(ls0MUijAs3n1$FNMmX1XV|g>CqW??|dMEe3r=0
zwGYLEcCmKNZ2hdo`~}VTVJ>>UC+-82S0i(MNVs)bY<tUZU82%CX1bis`9c{MhKb>m
zU{V|Ddj$Fov*+nF2Nb~~H6wzZBSXWdnAlG<${G%E4Aum3$J$r^=s{YyAK69e&w46r
zv5;{<A%h+@zU8scMr*n_cuR`FT%~yE-GUOfvLBk~>?hoe@%>4rP-yej;k20OP0LHv
zc|FS%jxuL<<~BoQ;+K;}MOl7H?-MOpVM-~ysyn1#<|%or|3$&DD~(@3Zyb*Z2^U5g
zi$$_-+IH@MQ0v&y*__CqWH6VW3p3g{m=mVRZoNe^5+f=QKDGw8T%OHVj25`_JCThC
z_Ls{!maq7(aQl39DD4-Z&g+<C*(4A2Q{Atnb&d;hB7HDT8p2~rAB-2}cTI^w(~BA-
z^TgIZ^&Tl$QxN;xfu(|@WWy{Ge5;9Dis?|2ue<X&=6Vyi9pcRqHVQpXd??A6;&Cf>
znzl*1DHB5oDOjlI*a?-rt@*_&8|GJ6O|h(D>pfs1=D+_yx@k+Rkb=1fnBKO~LU`*E
zhwjNZ@BvIyA5SAb_~l`#cZ#;ch+=_knVY!-SkfD;8Hm!Ewgb%4%_W`hSh~YYMDkv^
znzf<Kgi8A*i6Yx|{!|}QFH53!-b&X`zLg7cgo8j<i%Tw=w=NCA0#+LvJ}F_Fr7yi9
zu&%yQulN@u??l3N54@jpCRxS8p$8HtNsoCjlFp{w;E}X?3$iHGo6uu@dSD}vKvS!y
zZ+RwwB%qQm*|k>Wmv;B4=P^Q7&vm1nb~mT?AH8fQJ~T>xb5IeqquTK_>7g5njEEUT
z5esY!n8OBI=FpqXp2ZS$JAec9a<Z3jVS~tbp=m>tx1*!0QOdK=YXJG~&p@;|Qk4ev
zDWk{*Zh*^kP6ok2SXDD1FrDNp7Yk%}<Ro#Ze<(3;S$rNY{Wid}34og=b#@ghV-GHq
z0ukqw0W<)TRlD_8CaiFILPx^_L5kxo39pYQoNk~&4SOjpo%^8k<o=MTid9b(bstM!
zgc7%$?}GsDT=r)~%k&_T#VcmhZ<a&%BzjihLKeWm3YMio6SU91!E{O|w-QM7Ns{3_
z%Ac<AR6_T{uQ!-Lx@V6c>k`y09s0ykQ!0c&D<5krM9uQHa1k)f6uE1M7qU})hE6xq
zchI62nW!5?Ea}0wODv0Xry{T_rT9#WY#!xLNoY=yK)H`QRd^RcTvL$u1U#vY7V;@8
ztb+>#gB{EgJs*6umTkc;(qg*Q)M_mrxxM66X^TEYX1Hp)*$N@0X8>uXc`xVYbR3tZ
z3A3+Kj$ord$8xnKtqnvkNk(Z?(Q`nl+&zhY)eO*`aQunm?$xM-3m$7Qdv&r=)l=!?
z(N}67AzJhITp&7J9SN4dwpD-RB{O{V;B;N!4*~>P8-Xv$ExP_(DepMNW1-~rE&^5~
z%UL~w|Gl4RrTtE^nE|itDDwcl|4JF5QH4z$UZLujo0_b5R|L3pkFR8P_XfC*9(ZTK
z8b86H>w-zywBZk(YS&xJ1hqB40-)bAU^Vvw<8w+ebLbekx;RBgHAdum;&XU)7Q=Ak
z(f;xU-?LMwNgMCMAEjHTAp->Fcsv!+rqG=c8qsXMTQMl3ih%nW($Y)TcJ_@7+7S35
zPpkOlc2wKIFJPW8OvP3p<we}KvUSs&8P1uL#OxE6h_w2rrHkth_qp$BWXfoW{kw`$
zwQuE+=pa2!nBDY5vzh06RIb!9&dw#5M|b<QlA=qgp$OK+^_HxY164%nOPJ_US<YqW
z_ETQm@2DSTNi@#04PjC}C}hsy4@v!Vb7?yrHKID$oF_~@_?6VOXoJe=Wlg2Di=EwB
zCg=V$MXav8=s;s)3|O3JD#{S~u{t(rcO1iZQY>I{?-@)BuIEF2DvAgB0Pr1r7i->7
z0>M|pIIId2>Nqp6wus+((a_gSKB^Z!kX{Xm`7$%QsQhCn({CeETFszogROVEvoq;3
zV#dw=ZqeYKBMiT@Pa^<?YNa5a;s%c~&0Y|-6<mS{Pewrs1GA%t+`rg4!z_|ue=+)J
zDNGMo<LhpueO0iE`KA5?DqM9$`W{bEA0&c{a-CQ?|5a2K&-T%6z4cTnma@QOKW7{D
z`zu4!U-*UAOm+$#K(}<0l-C@B`}jUT12q-1;;FrO#rt(zoKaDW=Z;Va>3s-ta!?(d
zBCJaTjsC(2Xvkv@s#{kO5Eb0Q_b#TzMLc1Y!jl9GnZF+g+&{$jg@c7WGV#*{znv{f
z9Ew30B2<<@9oACmvdDAA^ysXBpX@XI@(!(@JkEU3h&o#Vc$1FCQpZ-gdxAwa0GtzY
z^A0qkj!1dlL;d|C6n(IJBA>!1p)?bn<>?`UaPwZC1vGXQDX$hYmp&Ywlpva8q_EEn
zMaY&6k!CnA3!k(@y8X&Ty0W7O7}HO9#-+?)sj!ZgxZTdyN@Ea%d{~_GV#p5*dp#}+
zg%hBpIn9oFpK68PG(XA1eARSai4M;s|C1FHQC~gQfg=_y+WeB;oxb^Mo2&bsQS!rT
z?)#490xYs8PL^h5%$cE#U_%x6nyXI9y4)b)D&*J`hLov4`25ao6~@z>_FF8Pqv$SX
zwmVX-w3b{v<`zFq7t}0w5hUhz`YcM?B{qcI4g1J24c}O;S29ojUc)`Y*{(?%RlC`N
zv7`xz3!nU+ceu94EU&4p>D2A5KNV*v*eG~Bw-iSN($;(5FGpDe?j?FvIP_&L(cS(K
zkt0E-f-3|9|JiO9A8KyBr!3F^(rQ)J=+9<C@n>Vj7Ic?Q&V4XQM6wqz4GXJ{o<y2q
z3}dvTFWoHMGfv5=Gy!yeIRY-RRW3YJlrS2S@CX~yXPVly8eQFaE9g>PB~&peqmaPA
zuUB@%!143z#cuBO{bgfK63Z7wid37h<gwgbXFT9jnRRNQiLu9gYf^+6ZqP{RJssr{
zMv)$-*GnaQhk#tw=gRBtrZM2K83rpKk12|}dL9`M=B!jLWRP?@f_5fZPHmBa6ldXI
zAa5ccsmtG=hp*nxJl+X8A8@l#1il{3PIUnDJ4A#p-hZmshqUVTL+N#C*e(gHpw>LA
zq4s|{n*G=keWtDikjrTLbbnt8*$H#Y7K}-asUkbTjHUy}sXe|l8NX3y2)nAyvstuv
ziaB)u^yPhXqkM4S-IFNEdZ<iszyFne&j0JDeZM1?upq=^Fq8u{@jxX?|Is^Jws|Z#
zZ!(u@Ln`4@Saef=&LjbBrW_V|mRZ2buFHo6`a6j9yxIZPKy2*fwC7QVykuzV$i&wb
zpR#&yq{4+nwgVy}28>I!iTLETuJGY@iB5#01GAme#Iu;^QTlA_o05UILy2NFKCw8j
zdmu$QEFV9!i5+#15pt;?yX7Sy^f6*IejKwc;M8KA(Sgq8%>Bde|5Ib5L}p0;<=8}2
zr)8KGg@Dj3+d-MSFEO(B#N)JPH5bRI%RaMvV)WE#Y-L{CV!oC<gf1Cqk?Vt@Fn0Xu
zI*V{@%zgt3*rfzy$0HfLl1Ns35xTvP0l{Ecd}Z@$SIbz|vkMn9KQ#jL+JHygKA<qN
zK)G%N%prZJoTl@~Ab6Hn4BLHN?eBE$Ish5^*rc_yUGJsQH#e{Gni^C1x_Ci?1rBGv
z%?56TH;S+2C%&Eg8W&apX(#IqY5X#%Y=`qeE!J?q&SC3t9I6wcnG+N};gaQh<QF@B
zEg~6S7132*WsB5;-EM>=@QX*SNd`H^t-o_OwxVitdvI?38D?TjOzu4>xT5(r+mH0X
zcpZi{SedYAYHE(xOQNt^F8Vv}ICD#wV??DJ8rod@8cfrvY}T@fNl83$HjYe;%2I2*
zM#=NaPFiGosug(2=>1umV#>2M%l-?j-sbuFwh)80qtrc=;cM8M?}@GFawF33`$zr?
z+-%P_HmNA$@#|vw<7@bA0{4eI1x<~c@@)86kwGZo8qiZqcBTMksMTJH9ac%I4I4yr
zpv6;R`a70F)D2+D@UZ|?*of$N<p3<yi&I`*L~JN5hV{tFZsJ)i@a%QSweiNw{xk8?
zMH)+O*%oD&rq}y`ZG(9#`ah*xV!Ml$Yvd`73<};OnoriOK#~J|c7L!vE&p@x34?we
z7T}{t5E0%V*lIrBP8r67B?j(ff9-a2ZmjQ@7s%j%LW7FAVu7luypd}l_#`c^(pZK7
zVebK4xV{7f0<_)zNQ{AYrlG%uZgOftbUQGPfK;9$?4Wds=zW*%adnjC#p;%Y_v92?
zSOs>o4JlH(gVdlHG#!68a-iIBs_-?FiqApQ5;~tNah)vpi#RRmp=Vu7oS6z%ZJ4-Y
z6py}yzwFXJDG#`3r3UL947)gjD=cB-pH?-lYa0l}%dv^Ci_7iUQBNyUgR|_|HiczF
zYi!k%@JXms`L!u1%IG^m>6qqv9W{54&uRk0T(?5(qFENOvk+|)&zI*apy<0c%H>i|
zA>$|)GGiQUt{rK6=V@wX`Vs4Br#c9AJ#DEzT7Et8DQqVV=uUp<q~!u4M*<QaPo_r#
zH1m@Y-KX<VUNB4*Cro7gzFfpXeHI6dFCbpB``D6Yk7!xDP;7t*z!%-guIs?&&w0Hm
z#iNXlCdSJ;@RQDjf4q_J?5Lg)&3tDsnGXzXV(tl(s{p5dqxDLmY(J3(<(zlUVrKWY
zv7=tHI6*G{;Nw$e4%4&4<4CE4Y@oh!Q30Y2=%+PosL?ns77^P_ee>%1;WH{+x-GMj
zlYWsP?`b?C>8*K1rcT<^?NcJerVzTv@Q_`u+e;Mz8?M=URNOJ|Q3nA1B|-__R($Ca
z36s~!;CcfEf(+Gx%tkWSgz<7{w1au1VWFlmdchY>-U;m6SVo@%22zvB0KP9#SEumq
z^(o6^Bc)Z0|2(fO=|?yBUA8!GH?h;6U!1SNomCYa?U%U-j6CO;yq$4fP9rm{=jQf0
z%q|`1^kLEa3~cVc0KZU8OE`SK-H}9SyT_+bS?~s2&dj%G@_~fBHW?g<*w9XM!Cf>M
zl1N~P#;phw|7?Jj1oIUQK!bN6p$deNV3o8h@+L}dKW>5G>>f*OEAJ}od^NG6uy#eG
zhIWx^eE@(g6@L-nf;gb=4RTvvJKUMMhEQ3$B5gmqW?n7FmnGm_y5lAZUnEV`3469A
z9NmeXa7cKos(bW^0A@Hjr5&0pE5%+*#wTyAEL{lqw~B2uq``JnS>Nd3RrON35JBnD
zY2;%$11>P}MtK%yKG+tzgJd^PkS74B$T*BVujUY*9+4q?6L*I<Rjj_tH>E{(BnM<G
z`}*nYA3l>|r@!hYDjOzs9)0D6OrM-6E2=05riw!#pxVCvQQUkFtVGf->|K*vx7dr0
zf`H|2EVE=k-mYog)j&nNlI!`akBETxk`>)=d)eq3Hg3!(u-c*$5zUsLoz|t%&)$Kc
z>a?4|v4DpBi5c!+7^b($afIQLRC-|!dA_t|4L(XQm3v^WxRDa_94kZRZq@oR42%Gz
zO9=~QVr%T=>}X<O1N#rz8Ct@!F%U2i{0H#x&<k0cm>3J$xoiI?#>&Y`$HdOc#!SG@
z$wbG*!OY62LoaM+>uh4{>_ouE_-~35y|AO5{r_=+xTBqm{lBe+mFY!HTrG@Dl*EPT
zmFZO+4Q!q44IE8ujXda8JnT*A|7#*2AHA%Jv4z3^aZ82&EORDcW@GuU6qHPy>|7j;
zOq~9mBK9x6|2!B7m^qmLYgCN!A7uM)$V9-z@IO)3e~|OPqZ|ZGj2!=g{|;Ahv@=pR
zan`0+5D}wSF>!aMm$Wf3GZEJLH>PCgY~XA{!0_McD*Oxc@%>*#{7*Ihr-)(}*3Kr5
z^kUZkW{a2@*%_PA%b3`jIhzwOGcj@S@%>Nvq5PBdU5CkL2K|P6IWCdI7;99sNnuMT
z*}njc0Vqav^?_x0O396l^K4?97_$yswAO^o5ET*mJ+CnefN&v%Y(g|K?Qr|X7wF)B
zPm-|^E+(e<iqTsr$x%~JZai5ljxAodzb<*P9Qaq$LP$aa3|w?}h3%Y+#t#$p2_yp(
zqhR?VGg(yad@(QiN+~`t7#kN>?d*U7izr5TYjcLIB0t{c{`ASy`ay?1Xxt_>l%s;L
zAdN;KAd>H)C(0&5tp|)*_Y0V^)NPDEQ%Hh-B<m|C$(Uod=#3N~m~?y(K!7=t&d`vt
zicC@GSuRF=1W<p<KaB;E@%r69ZvB)e>;6?zacZa<l0E6R14Www4RNJMA4UqG^R0Mw
z{4tykRZcmil(37w{Qbtr8$r@=ewZGCR+fR(9fO-W^YW{ir{PFlkpggZPkJwWrFASi
z7Z0QmkH;a2Gyb^gA!|eAAX~y;q4f&Xt@1R)pBGji$ZQ;9ZvbM1&(=K3Tin>d3ntag
zh(WtA!rN{;c8&#YbrSqOh8y6%uio<$)!=?r$f$*uu%jVjj_JhXLIGb|Yf#`+x#$SO
zL9-x$MIyH=DrM)9u=^&n8VK4J5i)K*?!VTWKie%c@@OfHXgi1dq^Zj&1Tft=Y;M_=
z`GFww;hz*~9hS4R!v_A$OOwH2rcj>Ks{>CdKv=qgb_k@03C_Df%$G{+pAkFQAjvjS
zxB&!)zsdz5Y)sYKlOL0EBH&&9*s#lWx)1UqFmMcrp2(V5%PZuZLmXyRrkfHO(g<)r
zl!5|VHOI@ucSWe5+(E0pt?M4Ye6#cs`secONZXDkD*Kb4^ZNU<aDYyv6Hqf0i~JV*
zJtyZ7NgFHiNQ{`P(r)r(4I9rC3PBb?nf<V}Khk#g_9!2V8{kiUM3(Mdkpuf(h<nxS
zaRp@?rexpDx1wupC2<+awf)+BqFkP$Zxi}yvl0UpRqA1x<5cfWl6O{fi!mLbZ#Cmd
zQy|44wZ~bpw1;Jxr8%~S@vrYbY%7^0LpZt}wYN@0+6%O!Gi}<^7k3v0pJE`A6BjY2
z&QmHkxBfX#5Qg~pq#HF)oPy^eKUGPa6~PwEAq$iO(zRs!JH89h+N<)Es`h-hv4QU@
z1ckOXz)}Niv3b8X+e(8U?;6cu)}NbCX!>-)oH}X`cAWODI`H^_cs;<lURS2prq??d
z>F+?xA=;+xVR^oEyI#JCCYyd|`s~tJdthD=7UONN;whiHE=w<Wm2G)do^NO~g8~sz
z@J6m!NhyjR&~&{2o>37*4cGCVgTL{~+(UHI${`KppiCUst;Aglz)s-MiP86AJm<U2
ziOs^9k#~Wx>T6!RWqbe<<2<|pVr}3ErmD*k9vYGoNYAcfkAP6CE(i5fWa^l6?PC%q
z(eZ|T?1mowDui)KkrX1VQ>xv5;}y)D3zE-_9oM9Xaj#4fMkrl^C==gtx4N{QAE=vY
zxg;MdP>{;#9}A@2UjA;j_a9M{XV*kT+^ZXq=*M^#?N()2Oro-yFYx4J>nA_mX-OMR
zEK$5Tng*8EA?FZgq6YjDHX@ML6otmpXB9mIU0!)|YK)mZ`lcEpG~BoO$mdbiH<MIc
zd?`H`sog2Vfcc9PJY=cTwktoCZ?R(rh+&cD-e~J@W1j19NnjthMFV{nhuc;k=dltC
z6;rWG<U}m%%EfTGUZZsB51nqE^*#u4;o$P+JbAxV=QCF~cU&P?Jv5x@<Mx7}%)+Y)
zz3BAp*Km-en>;yLUb0IMmWCv01z*<|2pJuE2Ivzl71We*#?N$T9QEs>F5GD8I%3|X
zBNt`G+jk-+{3le-z6!sHoc$uam)v`O8kD5fx>Ai6wJrA)sZYaCMMT~r_>IarU%a13
z$uxq_$G@rT&0f<@v~Q1q6&9iRmRzACn>$OE1Y$b6>x~A<6-s3ORQTFWfu04@4{Cma
zF7RJm7NpRi2aOHkahX0#m|!K|eAEig9{{R28_5f)Txw{q!{)EB|Nc&^Zz<$ClXrR$
zhuU!U#@-#tB#|rEm5BeT)5x>9{vF#e57>TSWk3fkUFmSgjq1vx^(CByj<jZhvJ0ru
z3IWvk9M~aCd@)p`F|+o3iZu2h1TolDw58xEEwMf)9#kkE6%w|&hBe*6N>v@C`W1dY
z*bMWyi(1YGM1BO4uYnd8v4MN3Jtqm%{3C=)%P_^UNqfV`&Lg(8udek$<WoA&5{Ehf
zH2NKL7%uDX=$Rpk%+F>J975wS6DX*g(W%hnL5V~%UKsP}*Rh_9C&t26Ns|Dw<jXbb
zNq|b51&$R3Uz0r!l<vS3!^~GvGQcsS^O1Yg)9K7fyc`t;R4whfpCd5}9x8#5sT-TP
zDzVPYpan=sbW~E~@bz>!kNyKYCBj(k&y2Dy<|o9lP<2=y#1>|A2!2)~Kj<T!4Fp;|
z024fENsN=eEC(r&%`59d<=aN|y~TLBgsitr!;dj)zDI;GK-=QrX#*v5HcD!*MlVJm
z{kL!Y$lLos8&wN+wCMb}hw^|}SLCv^xkgs&9>Q5;ZFC*QnfrJY29&H_l5wG%Wn4|O
zGCsfkS#VmZ%{|cUcSgpT)H@%L4zO5?2gZBA5nVSUYr#;wgLo-$ov-My;i5kqu9jA#
zJZulD37CUC-G}u&>5}?{FZ;qbt@?mVw6sI>%WL1tK8kaq%`b@*Sg;l;l=N@UIR=l<
zK>^)iq!6$VH2C~9yO+1p2VO7g3D``@c1hJ^|6bMba`)~0s!TYveZVm`h3@aVh1s2R
z{LIKG0oV0-+BN-scobKCr*{#)rPv`>5ff9{rPLR~52yn<4VroWrkq3WF(SJG&#f5|
z@UL*-%mByNM45?V&WYa2w9IJ+pn${~@@#La^CEzhjpfwk@cMxO+D_T?R)l)v?ob6$
zbO{#3j|e*&{n#C&cGFO@bNLb#!@ge_Cj-@mif|7~vcM*%r;~WJ02PL)hrfdPqA;+D
z`Z%<}Yyr1*#uPPkme6J)HmUM9NHQ+}`g%E6szu9t&(A2Dt_*MKlL;cyvONukvaMf!
zf$FYR64sgLAln*>fi|=@&(y8mLe3?m@MLOE*{Vr1les1FhKP;MyEw4#)N~!A-y)+u
zMlX$fK12jp)g&a;@gOs}eMvFA<zF|*?{i@vu!<YjxV5l)O(|kx^>q5_ssWWsHWRBu
zn*e#HLNwB>Kb$Py>augvfH%~t(i;{Ie2NqVA}IL!!#vDey$~L`LjiS{+LQk8!R$*)
ze4GT}EvCHVQ3xIfOGO3<!Xadj3G7;&+=q@<nptZGeAg~k48mOF`G751gUu}O4YRi+
zSWv*F+zEeqH1b}^yIEOQkML*qr1CbE)IGar_1LzfEQp(}%>pk*g$OKPv&rxYwaaDx
z*5kD;Q?}!HiuSL5EA3u_)!~ud2L_A$4MOVBWvcYkgXC$pnrTyzAS)TJ>rg@zuxaN%
z@~9BQ$)PMbu!7+8TwzA6Dg^&XK<L^)F5zyoYx^pfI)Uyn|9u4Fnr+PBGcOK$vx+O$
zmFkI-Pd1+}mYHL>myY=$w<eeOP(k^S{1c)2t!@4I_34ZTKm42zBJXN?nY}Lx^`7(|
z4#lW_AxNQAF|6)b;@&i8-}nK#2g%C43FEONzSB|=me3UOFO|-P7fqrT(S{1!#)5g-
zc&7)G*cBG`(f(zR+>HbbT-B-pF=IYRWK8=7NtXvH?qNX{AO0##>SGJ1LAN=$zq|3e
zNYXZU_lk@pPC5M-rjwlc8OyTd(`Cb-(VpV^z;p{&5U>oM?Gm6v=pn6}NCy0Mf4wUN
zf&H)H4v*}bK<SoodY7(7b;l>+lmyA?XT3oQK00oZNzaPZ_?Sr3IDLw^&)b;%d+rx=
z3*jGOCFRt1yD3w7Xs|^5%|6^UT)5!Cvx41h=kY8Wlm*)!K)YWPdoRHVNm{{Rs~Z+U
zcjFOdPG;o`F0jz669)8jHinQ-_-&~r4{^|MzHmkeDJ!1Hm{DW~4)cvBGhS_6mpb6)
z5$p3~AQVo$eSAl?D`<@4NTYlU(EV?%=hp;)^A<mmf(<I)6R-1{@QmY$#}9N$eGXIf
z=;%_mtPe9a2_+#LD^L!gAay)nWHx<|=uk6ZF<eV11iT>?aL_()Faq%QW>#$Gb!MkP
z_@7PM%mp43<IcdOCO8ip=cPj^k3ce>W|(picmf({Wpo24)+Zch)D&VVd|P#IATPEN
z{8tAzu=NB;`#|o(TO3e71DF-B7LQ)gJaNt|ibuITr;S7Y?|359|E4(qZ+PN=6R!VX
z@kB-j0w$*aCYNIWA9BY3RObJYGqNyqF#K=M7zdD`!2X$gW19&=Vfhdr+#pR%Uc%;9
zZD+J7%&XlV*o(78MD8E1nn|wEozi!kAXXY2qHPjqU_xLIxYL<YL?umB0BYg0Ezu{q
zkcHqPw8W^L0nzSWe~o6ZIAzfp2_<;0hyHp+Q;zba2&|v$Zb$&mnQO}LKo`=-YiZ)~
zBMmf{3y`6c4_s#QhPi)`TOOP9`SD>4tj82B3fqpVoqy(R*z03s@Y)gM9Q=YZLC`S5
zb`sQpMq_fZ*>%b)yyL9CA(dDuj*64Yj_2HQW=?G*pWk)AwUL5xSLNr5xd^7$Fjjru
zd4KJkxowt{pMN-hW?VrbXRTtXe$da`VWPj>&rDs&TZzj-;i1uRMFE2OQSgZ8@4J1k
z59DUu)5XK5LI-bzq|=G%euRO(V|n7mGCHOGYUG&ZPjLGpYPnibooSS-Y4>c|y(jC!
zKhP+)9VLK`Ve+PCAR3`fp1Et7+9x?`sOB9FLx@Ac9NT1yI+ynXCl560ae)7+oKD5p
zg~X|~qdS-mpCfjsvN4O6Y)@O0_Rp#dCX)%|HAY7R3c<$^7F_*nEW8@pwsWy!rBER1
zjT6mdqk^d9Yi5|5M5^l&cK7Rga}T-dlq&Cy*b`~}qYA7Py@<_U@k8%BMTNXaPKkyG
zcE<5_GhjgGU7LULWht+_!~c{hh#!7mJ~_+GhG~swr-YilTfvens7MaEkEG%wII0yu
z{#UnyB0X3?HQt~i_lULnF{G=XhVcsV%dO}#LTk1X$k=KsEn9?@1ghy74v3;0JR>0y
zPYq^*k?U4#T%Mj7mpQ%#D9fV|R5@3nEKdjYD3WCDJRELzZn}ukF2Be4D+NAIHsv6$
z9Fk%^&HM{bFF+`<H@y@1LDH-wuQQrlFR+j|w^79~jJy6FN9MeLJ{zxsi+#RTAp|p}
z2)SwMVQA8C*HCI=^PQ-S^*~{#z=5YuW&6eh0t0A?!-QXCJZsdN+_yHVL9agKR5#aG
zjz|{&xAe_*RQ9!xmimWDsm|y$VQX%C-*7fD-H6N+4zF|4FyJ*4Ny27f#{j^yo34J$
zpgf{fV8;6TjqPN5>awG4Cbqj8q+ie`wM3Fw-A^_&`LNh}Ec|(rmrKJ-k?-eMJr+xM
zuksF^opbqgAOI=G1T;|k@%+wYfOI9hRxYUJm385!Y`w4t94dg*Em0UrfJF;54F6Z&
zA?2UkQZXIGPIir}hAh^%(DE0d881oMgC;`uFX8N?k==4O>0s*N+cbsoJA6x^eIqQT
zpwo|oQ4gKVWDGluC1s=vW{W-s0Xq_5gBX~I_ctiVMJ2R->B&(fd%CcgxdJ&k>b4*p
zo{j2;2SW;1yJyy`njDiE2v5psyW;Tmm}A!905p_)U;xOhSsoy`L;1%-0*lpXL3Kv6
zT%EOk?w0U5yX*IPYEpAs;7v_2HfwRAs1`}!5S%Pe)Al@Vls|O6m&jMXO~x6Hl}Ob8
zqVAo7Jn6c1-?D9^%eLKR+wQX6r7q)Nwr$(CZQHha`u)~A@$ERV_Svyd>^KoCuks=@
zFJ{b$e8w}!^Bd!m?M!??4k=5^s`^j<#Sg6Y!#vlF&C=*^D!R(WoQG$6IjJ<Eg~`j}
zrF!XRW4S$}m!x6TCUphrOghT4UuCNz`?kU015V$9?)1xtdP5)~5_L-SE44%yvDofB
z_}EPJZy;rgG!HkB;@e(VmDG$oy!F3_p?nqp#`^l3Xk+BxYxKvec>1o$YQl4jwy~{N
z!qrZ)o#0`+_Tfs^gVs6@9uF1-N9JK*6^=MSUSwf3k^>_g53d2FJ*eO!_uKM2MnL1z
zTf3Sg-|oqv2kayP(OMmNt1HSatOJ})&qR|276R3Wbc4Exbfl-uX^D~cs_8ie5I_h5
z(`SWfXWU&QH{oGvb@yjhS4y{t&hODutl~4Hra=#X$2*C_XJq4QPud5gPx@)?F0S$?
zSt^NJsusGoJqrWdl;w*&DBtA`8-AzCQ_4JB1y|~F1>CfJ;4<Lv=@H~e32={b=S!{3
zp1hRw68BP$=A+5Zdtp&xQA=@{d(OZt$2~2q){a!}^rkMKF*VhjorAqn00u*!IWomv
zhaF(wD~zD)`kVIDox$($v!ROWDo7|tu2sXlq_@}YiO&!&^cFU^i*v`YEm7gRU#DSF
zVAgD6ER(*T^zZl2%zF?!&koU(u8hs&yin@#f>jRRaGmbd#aCvOs*|b-@{ng#C)XzB
zJEa?XlwMJF73N<yjkB+l^>#8#fp{s}S=u&_io8qbSQ@vANS77YXh$VVOSpzv`_z6+
z2Xb_|0;umc#gnLY>>x6re%xN0Zf<oSE5iQ~%}o#fSbJKK-zRN%Um3WKsDEz7`gsl1
zJ>Tv-)F+2z)p{!#1eM=qW|srkVKPljn2N-mw3pDN9MP!YnHIBQB%gdza-9fuu!|k*
z*;&bwZ9@WXd)~9QUWQiq8v?RDa=9|I#^RuLZ8{qCvx<X#H;$f^aQfVMNs>Y@RsI0S
z5V=tc9DGByx|MD%*?~1&?BRwXQmm8!LycR*2S9Q2Dk}N?`1dp(1=v!RX#<b*{xY2U
zE#r=d#%gAIZEP3fC(j|{h<61Lb-`~m0oKnz+uuE?1DFa~x-nCY9d+8)9fTw_yDzu^
zEAV*VhYi*T^E_F)yGW4<ra1S`o=Z_=+L{EZ*gKXjg)+AKz#WoQNErmKJUM(9I(8Os
zdG1GMd5|U;otGtqf@w1VXPK|zYn^efFEOU5nRIBB+=gYGoV_${4Q+^#2rX-U&0a-M
zLtm@S0+^q)v@GniIrUwM{ZpfvRgaWmM<Gw_&s)bQWl>a4`kql{w$fg)luRDeFl>f<
zNJd&4yBrvaV)6hP@|+U<K$T8dTD2|S^@Buhga<Fm&vJ?LIi0?pn}p<jrE$iImB5qo
z0|C^SZ?05q`{s)5N^Lo3{iy&RjS1xD9_*Iyz*i8axJk0<j>r~fy(=z?OTJa;use^t
zvD}(^QkW)OPB!hGk-^Et{ket=DW9SO@P_!fF>=P9zWwaV`I3bvSfyafrMHV6c`Ww#
zN>nGU_d}GLrqsu;&?<#fgBEA?@vqYNcW%J%rj5@->==Dc(h80aU+d|4=Nk_pl%un)
zJW0O7!aR*@1}4?UFV`scOjOOSkEMq5Vgb>{2p*jneJ^jH8)sPUirFV|SU^^MAySst
zERfq^qA;gWP6_Ve8ZsjwW>q-iI7Q)-ocVSevpZgdy-ZG&=Vhh9h8H4hZ!G9pTVK<V
z{_?!Av#Nv&@A5=z46eG!i`fxf`J`YG*RWS=E9#~TjvJK{0RzK<_Vr5Wo7P70iq%Gp
zyXcfC4ukdUx&SkPlX!$;^<+Q<Ip0pRV7$pdKa6Nh#3OqHnUG>l_(ob_eX{`9Y#@@q
z22<3?hY?jsJ=9-;FDqjyi))X&g;m$glkuk8RV|}wmh>Uv5?7Zd{7#2E5hs4ZLUxH$
z(BX&X>5CM~YA((co*ke4f~DU6Oj-1tO<4C0iB(TE+;`-N4t8a;ZAoI#dcA0@%PyZ(
z{B$l(*L4dGPRc@*>S302UiR>H2po)k2;~Wg%7V93&*DOcS>LDjlFHK{wzf}jDU#e?
zrM_aG_3Z%RdVR^%#PJLM-H@MSGmWEOx55-1{dBOHYd7=mb8<sB<@(3Kj}41dF30LJ
z{Q$pH1*I&@mF}o=n`rR)1PjqpY!)=+)^Id(^*UA7rLMpr{or-jOx}+D7uXsb1c6J`
zG=gN8eofaiY%jK>URg;zIrc?>MZdSQK@KBN?u|~RKxS`N2~;5rk0G83A5dc`NK_tJ
z*jCe1>p4e^$Qc4~Ok)UP%538R=#C`OB>!hVdWw2Ve$Jz8>EW@w6CGi5*ggWVa29_k
zYY7|{DNNyM08>vTs9{BMt4(cFO821P4-tJglSQL63cuUXkMNx!u_S$(f~G7HU$Rf3
zcuIR3o;gY`n=t9#^K`GE95>LcnC*F;dX9X<xP>q`syUy^C)Kxwrwn?a_mTePJ)OQ1
z#CUNV(h2PLYH?vTFbFiNzua7cUb*e0fg#r+G&IhkOFrwZ-2qYJwW74f;sLQIjTo3}
zLK)Pyo5*a#pC0x%Ve3?E%~vd7WkYWg4G~!|61daglN?*w8bYDhjH!puaqkJE-(s69
zwN1OGQjj{{Puw66ucruYktqtLUD02jO)#QTh%IqyvWY+Ocipj?{&=@0Dbk~)_1I0M
zdF<bbC~P-~t1i`_d7Ao#`vSk$-L&Yz!2fB|lMcp|5YuFwaP}8$mI>Y1yPez(hKHmn
z$V|I~uEYA04v|kPG?c3_hnn~$l3O=R84Ph{w)9e#Hw9Hp-tQ>JS3>jfU?`{ovT`}J
z4};Jk%!xQ=ct^JCVeEU^78GQFj#R!nY<pb_4bEQ43vRooxMa>2J<Hd(ILIXQ5rvf$
z0=1g^^f^c3^0aZyKX&&xaam4#wP8kS+a=I#sqo8whlmf~0zSD_`SO@d9I5+`a>^-z
zMw>_bkTS8Mv-773|H)%vdo&_XlDU0(Alf5d0U5oVYK%$FR`c?u<yQM%K>2-S_-Nnf
z)si&3@OoGu{B&8F6%Zr!&hWEKRk3A9CD3A`SrBELG6}XD8cz!dq++`9D@04Ow|z^(
zLagWS#Af&7>IHAYkw+yr_;2{p7j`J4?UD-LhtReHzU<YQeX7&+xsqqn48@r$SUZHG
zzHjcvp*O(Qg@1a(!PPx0YIHYeu63OvQzAHu5(9V^ktYu?Fxbm)bvzbGx7$EPwZ!H4
zZ+N!#nbjjxkeM<u&(cuLuMKO!J)2kVp|RJBlzG%Cgw(6FT85yHdc`cV!LVOk2JPqH
zVMDRRx%7Q4f%WS>`zokHO~qwxns_%Um)&Q~W+1nxhDB|9Hp}mhXP}Db1iwv9CPz~-
zv1y}bT>GzU5REj(3dtY>e~olC;QpfYe%Rb5#HcS(eW}A`x$*npb$@j$K(wj^5oP(@
z0Tx{Hl-CqoysXY39&UxDjA`|G?BTC9@3`Q9{^c$V%|kH8vxaI=44qbrwSi`awxe@l
z0AXHa5ozlyHjGzGRYDHG5l*2*8rsPwEKD4P^t15-<Y#8B3B$mu>ki&X4>i;RumpKI
zs?9_NSf_Yj{4dVS_LR>m2rItNe47`ayoR6d67lxSF>BciNnP&Pu0L!J6fkF8AFXR6
z6~wpBrl#JBp%jtNKi*bpiAM!g<-53@pQymZ^#hAT=(!EVdsp=ELy1qe&Fr#luikNR
zFZ=AadRF};<TKe%!q4kUS6*@%UZsXD6<}f1VIs>qZJKuE^NO#+q}h(2o6=96Rz{h0
z@RH*oS}~Z)rlk~pLO-dKi{>Tb@PA*prg9EZm{s*-NrW&btd4)E583*A3<I=SbqijD
ztpxM%O5~LPVjRP6l)5i7Y@2jNMa;AXkVrZ>1$U)zO)e>qeP5JYSBj|z?EQ0NKj3NA
z$A5tZ9Xr&kty_H0nn7ZicE_sFdtssrlEE7rg3TV8u5-#gh0}fzXNx_RoqWa^X7=5X
zdA<8W(zDngg&NGuI#UYG36U2}pdWylfOOeZK(?onLTpT0F4uNzTC$y&CM&i@ByhCD
z-raicj2QU{N~k1I*cHEW-wgo(@%Q@HON<lkh|cmffnj$wbffLd?O&Ky1V6gnO{$<5
zS+J6*w=4&I^K$J68O_P%2=8ie3ry`lJAdMVI*n+Da&HF|9XiqBnL@827qR>vf~cM@
z*g%G3%K$9;h8U`-(ea+xwU_Usbv#1#pTE25EZC4|k|z65JDdEV#|tego4j>T$v1BB
zgxzW}j-=g7Cm(1_Q-JEG@^+WYkCbK+!|>OH_~1&Pa#>irCiw1b9u5GhbZ8gk>q;@4
zdmOU-uRN=NOq~A@y$x)CU;A&?+wlLBXZ6p@{4YH#7A_9fe|uK)Nw07Fz{0s=iXYN)
zlwN~8Z)7_iLT(7jV6|`_Hx;SY3Zb7Hge?}ZJ~-X!sr5ZV+@38{H66ennVS-oShXTR
zJKUS413y`Xxk%Ne=mGUJf1v#lua*`$4#62-pFx?Z5W;Rz>nE8mZ}rbwo&_h;fBI${
z<UOctrL6@A_Kl}@j-8yP+N3wj)ta4H6mwY0mDdd7h7F1ubh7}>Bi4xq$+v$Djf@mZ
z1YnXIs2BRvuGY9@$caTDR@(9=c&aKYz@<<7W_dVl@r5@fU&V}6SGY4!<i&<dItHsT
zvFlG$tV%oexQ*ijHOyN<Q~`yOzj2W#S@)5sS{iSdfA~09ZkKrra5|zkT69^Fe^j8(
z);|RJ_fD!sQx_<Ba{Wy;oUExigWXt)zLMv%TXVZy%8>;h))d_Ky>^?rM~BeI(Ehw4
zq3-+hb`A9aHW=JF)ULyPqQVS&g0@RNc+2$snRtDpnBzG%t=O+t7sAZsg?G&;jPc{(
zoY*_yknk^oXBJd^|ArgZVh(X{z=*?Dd^0^1mASJ=l1u1%D~Qn^v4-wg8Ub5ob;M4I
zf}Z^Ru9)lDIogQ^Hy}xq?>1V-z!>cb{0K;ONV6k4`r7Y~MQIK{?a8$(k6K)qMM>d|
zE|o*WPY{|95-+~+K4k4QeE4+(63?2&;&)(!COdAanxqIaxLE528Ox`Y82`nM<ZWux
zNKiL|;`E@18c#MnBSr;hgU!g*N`MBs_>z(FNc1Hbayj24@ybLWU62U5mO|H|JJb}O
zm=XjzPsBMgH7HM|nbGXt{177|AJ6%PT_&<l0&+j_mms+VcOrijV#Ckaj~F^$#ioPt
zh)r(KDj~vH5xAo1qWDG5yTC?l(0s#7pX+DnSNMw9cD??Cx9@2VguTrfSs5MY9aZF-
zW2B?Sj46^mn_W#zY_Nj_s21ZNogwOX=9kLTh7v)pcAcb-HNGx~Tt!0IErv`2!v%4!
zLcTEjJ$Mo_rZt^aeGP6Rmm-%uKoekBS6BfcDj6-|xo|bUJT*-TGAn+u-I2Tu41Q6w
zFbYRAFxx(^H|>7gWG@G%>u;K5Gh?eJtGj;(bzZ3y6|g<5YH=)xboE39?}Rd4iq`rS
z9qMs^9%z&+r4`|&N?T0_+@rC?JV;=mAjaE&Y9H~_s$GkYdyDF0rGIBhuY)D}g=~^c
zbhX=qkpPoH5T8JwtivlA&1Z7iXY`U#0QDVdGq~CTGRpPwYB`$^|8@t%Vfj1~0LMk8
zQW%0jp8o9honAA)t0Lp|CT>~vJc?Z`N&=bpmFPHsuE%Rh{uY(d^8ux=AClkMR}$Xv
zAUGcR1Ik^vHf@(V*gP`sYw8s^P7HChE?WJg{Qv;UHnepboV203Jp`$TEp%pNJ(o6J
zLETP;9#dQ`6x8y{Ec`JTfvDcyMCn27?gKo*K5VIRb;e<}_X9(M98%q!tYq)wT@Y?p
z>^}0>Df5lO-lTLklV!u%w9;nAmE10BaCwC&Ptv_{rJ*9!tB;H-GBF~L#tkws6A~9S
zr3I@jw~Npecg!-BoE^`oZtN*7WvCO=lUi~Rr#i?{($Dm^A;-Yi8CG4YiLr~Utc~`=
z*onM9WX|^Sqzk`A^pnE=_WIaq$8!vKb@#*v+KkfbQA4Y(4lnexm&<%a;g0h%p2Ntt
z<Q~gC>BehfV`-D8|HS^Ogz(J~;~k}=)FOuYI4@gJDzwp0%ia(NZ=>Q1+a+w{L}cmt
z(aVN%1;&I#U{WrRxQc-5Uz4svw}#gbCv%-}xIijUwfeM$#KQY4P}U3YbB)U{`8HN_
zDMWZpc}uDAsaL8(Q4yFHfa<M4$!}GO*2^@E?<qqDDtGjp(eEdnlo7BOmn7VU$Wd#)
zK`Izu?JDab4PWmgF^r@91qgNJ9#4zVso>(S^R@>b?u?D8Gl%!-1>F^IUf_@TQ9jQk
zKutddSP7o#Gk)7&G3SAZXQ2e^io;I(d6SN-;l#^t+_G@6U#8!U^Y9yJ^OrduC~2n7
z2vw(B<MdvDD?BLjoFTSPw1g&5tbVj_AUWDq9a|n<L(^I;G%Tby&tjwY<gF?~fP$HO
zyy#_av-OsWb7Q9y{LEI4k0J=yR~wLgfW>IyZ!p(jHu2*6^|x!Fw|1$7g9A5nQv=Y_
zl&u~iM6#3?#FTF|rgN(he6)w%jCQ;Wy%~ibSezm03%+`6J1f_A3q#5jR;!9n;pk@3
z$wj}6dvuwlLm1FX+7JXutO{tT1zpZJuTa&b*Y`^VP*j);#wq;-8vSiRxfoGHtjyF6
zAV;2{x5kaCA2ei>5>tRFf>ikQ(v*CBEk{6U0}_2chpBI{TL9OyDJ=Ho21T12n8h~=
z=lzaI`;dt@E-eMacWLlsud4;B4(Ru>YizYyi{DoH!5|Vuoh@7MBzuAQZ<`QUd8<Sy
zH)dApTrx8>4e{OPG)j9C??uwo0`VcNDfI{h14dyMe!N)|k)|(%%DG>n@4e_qT8z!v
zF}%%!zt~MwMS^!^-MHf9LxHFYzYn#V>3<!8R=gL6dBTut{W)W@qty~lAe~AW*2|c8
zR;iRMIEcv;r{JyogIWBsj?Lf2VPAJB1`lF~gV&(6psw^|zIYOuTV74d{b>0~WB?N4
z7KJ8#$n<SUn=4D2J0+Qqawk&az1TkkaIHgpCPeXL&Gq=OpHb$8G~8uN#Qq(ZU>wmX
zwgU2=h8S`4YISk+;w6th+#;**4o#cfTSzLl#CP{?Eb1ONH@BO^&)kdo4>$!}P-b<r
zM!vz#CC^CaLHQ(JZO?S><~o4O0~G04ZKbuv(;XPxCeay>`rwF901i?+B>!MtPYMRZ
zKT`t!cdw+n9VFDyBmkHDy5XSzmu}TvW@3DX8l!}fbAeXYqrfE04@uO?u`q<EzaaH|
zVig2u2WXfvRLQxcUSM>ZkM(=PBC6qp<nSMz@qAvb_K%4J-ZDxTYjI=#vSCf>mXAn2
zAYNXyGb@D%40HaVUtkxDa9D@Mhc-BD*8y4*4GKOM#sQ3do`J@LNE?p%vDHeoALojy
z`0nehX)-#0>=!*>qcQwVt2ZM?-%3<p^%PYGgh80zxdYn=grcJlq_QZ3W97h!4A=$`
z$MdyK?ub*;@eLJlwDh7by9FND3Am+HL3R9iwJP^2g=bO!mOuw>%}G1Go3))#)WhpB
zqUdlOWxrM@oEpMnO)Pnk-kG>IC4RUU<;nuorW_d;(YXW?>JePrN|4>A-TqkW@6&YM
z%opOyUg~pT%DgU}ke3P_d<jiIdi#NWrZ0jZaQAzY#B<jJ;d-K7t)b3!1sQ1baxeFj
zZ~4lv2T+0oYcg<4aP8p~){^114?6<qL1E_jm&ZHw0UV-Zl*Ng5ntJvVGE#Gbu9ABk
zP6TOSEru>!tF8TaFq%FNtC+oU@A3wSU85C6-W5h1)oeRvYmyMBMDrX-?oPSUcZKn?
z&iEV%fp_<!blb#{Jo{d2V0S%IBL5WK9yMm)`G73$(PD8VGDdJEH{^5YPzlf2^pq(X
zd32iBhBV<^$whIZe1?(=ii3-IoVn2vZ7JdLjEc)<i<Rw1IYLy1l>_EUX=O#yxK8zS
z2^*&55x+^DCx~&h-C@*U@Y8GkP}Jqi6lJ25(2ggRp++Lo(dd${7l*S^3TjIrGxF04
zO>tO8r7s`F{eS1$S0a|5ZS>gm2Lif36&n{598ycawHB?(0;^X~;zIYLv5PpXJ+qmk
z=DGJMAr&oHmsx9jaaX<(G5W;nWlMG-nFVL>D`SCN=}h{JKwWB8*(i7NO84V*YZ0m7
z+}BLS9r{tJV<al4fO5ApmC`vw?-%|+pM=OY{Rvo`+W>Fby@no*c2N}G3%}O(Kh|BH
z*j^3#bGGsj1Nbuann}xJJE965n`J~6?XUI4j22Njonzp`Q&z!NDjPb?*y!NfAHrAN
zY^04Kc(RrC>^h8lovC8PeMH{K-}0@b!ywzNsa?>!e>AAe1?#TW!C@My7jqsiiXPkt
zuKSz4RvzvNZARBEuyZz>6-bM%Rrh~1lwz}n%JROjaC=j=H$YJXZ|bWivcQ+1d5DzY
z*ihLRd37dnE^K$&bqJA_SNay9wf1=8LJO^QN$~K4zhR26)n)sWzSm@_iZwK?4YptJ
z-nr9Bns-k-xWDm=^$^kd?4mNyd!T)9G$D&~Jq^l;1zvI_+DJCxRt{rWR-tO*PdeU(
z-`QI4m_4f)nHo7P^D?MY|81`vM4MBww<nr=wNNSS=QyOdZLz(7;-2@t^;Wvsw$n6-
zapocN{(14m^}s-+Pk2mS2$cR=1oU#SlW@F|-s!S2H6OseI5|amyx_*U<^D>^&l;hu
zS9WmB+M_JbFhV1CEqAX^INQnd<y_~}jd^{KkCfkCJ`6qHkhK@cSzeBgCNK4v1f5v4
z3d;f+)Q<GbuIqwqz&n={n^{t+*a?c7IF=1%aWR)u^`??ms>TIjT#GoCcX1wYCe0zw
z(?_u3J6utpK=UTE861|>#;|=dhl5wF0pFl}uMuQ?QxuTAHD4MhRZPzdo5FsAsF?V2
zDsDcK!m!z3FV6_JzrB|TLNcUu*Uyi>UwRl)%6%a-Vli++_bm-;9<C&Wr}EOIn!aSL
zDw3x1oGvgxIUGGq0$nN}LV);GENLR_U0*RzyNkeb<K67UHj^{r=EuFqgQb%bEn+zh
zj3b{}N#44X^Jl>*uRg;yuJ@h>hoHeB0iejY1<u6Jx=Ag_oTLvSc_FoR^85{2tUHTJ
zpz26H+NrO5Q0k9R_JnYGsC-Zf*dkJUC@JZ&87Jy>aTQJ&o0hKZ>^NB{78h?=EGQGf
zXv%v>!9QjK<G^#N${~&0i2}xG4f0q$rj#zjl3(xErO`eLJX;Woe43@$AK5Gp7D_D<
zmFQkDtjXPo7qjclUPt*|u{8}5=yAy*g4zm4zrK?4>*Uek5goC{b^cyQsYe%TQ}Lek
zoccXX9P4fC!9P0iv6`TAJQwTRWBhb6T9hV=wz5e2{sAN@u>x?aI>6_5Gt|fXdF);Z
z_cPz-1`KS`L{~AnRX|G7b>g$q{g%3>te$ecr~X)D*5k|;e8}aRBPvkzVf$fl=fbr&
zkqPCoO7GEya<?}nPFca39&rqq!O-E9VO$P}N4~E6x3SJt+Q2sK9}1J?B#RgpG<nyv
zQhuB>UMlOm(Q;jBLx;3?Zdu1(Ue_nB+*jCHirV4aczl#sI_)Gm`R5s_)=b>Bi;|FW
zI@1PMSj&nZ6@C~uQL6uyJMvE~;y;UdAzNF!zo`x;&i{yY{O>gQaQyc(Oa6zZ9@f7>
zkbk8=7{vZhXF~p2nE$0$!pzFd{BN)15Js)!1v4^RdgAAfxGrL5?4N3nQZC7q*@k+9
z@9Sozbe(AJEjy0>3ZrabHV`3tQdB+_UViF31neIvG@E#6e(Z?kfuZGCXkxC}Wn=y+
zFi+FPh%{!N*v~j-@pki;B;{4~hN361bcb&@6@6S@g@5pzHHy-qP#kJ{LT_ozh;Fde
zEr5b3kNW!5Ds-W;+Q=R}3)uX@0(N)3=$nlPOnzsY!nEszPf${IY~o@cysWEVb#rYH
z`ME1daD8*(M@p=c;8D2>>%S1%B+g!$bGhLRc*Pn%KoFfR^3ZD(=3Ri!2KE91+-*~G
z`q)GP&4Xa;CXLIlF(}KsLYiUtG8yK@Cn-F19$x&(vFN_TI1rA0TMe0tUVnTeWPO)`
z7}iH6OQA26=((4fpU+xW0>_wmroi*hxKN?HYgbC_S>0a!D?%lPYp_kXw=1Swyg#k*
z$c$x}RI5DFij_wkK~P8w%hDVmpm8pnT-d3js#sNLgF4h|$M@Jko$dGYnMHFHMc(|m
zeFJeF&x58mk(?N4%w<5^r_f7?b_KxgUm7}zhuOMno(4!`uWCFM3vmba2k=Bb)f>;X
z%O7@u#*^2z4EFr$dJn1UhWEMc5PwwV$0>+z2JyG>B)+u%j%3En_K^*LYu773*CTK(
z^zp1Oq1@bBBN`qS&LW4bbl5z!VQT7bWLr`pS6kv+9GB*8AoI9g#Khq*DZj_uToIVI
z5C#Ve>wS2T9d|)$t05F?oEUdkTEDloX%$k3)jUAQ8vnN10QAhC^96gIJ6rV+4GGiH
zk^X26vpD%PFur9+h~KX?;c)T58mTiw@JpxT&wci4hDGs6mg5-X?H-JiJMjsHlXG-t
zX=_T<Y#&st;l(e23apbye(hZBHPCa4xr!3W(=PA8`oe+~sOh}F6?$=jNU`x+;g7RQ
zhHSU4yHy4s1zEUo9zsm}2yUmo60G_~48cOOMQ)18vX*7_#k|e~u(fFe#l4vkD&;Sk
zv|HXXr8_y`kT=#n;}P$i2{cfDPE}a??+)EQz$hKv)BHO%UGJT)lz&h5?lX_g48#Y=
zX)!p=NCqulVa{AqCbj<v`pM}B8WmZXNER^FYhS?o=X7r4ts9718FIK)gMoGYxRAsY
zPaNr#>uZ;+(xfGL@MFGZt#$ot?&m@Y$?9@r^z<A%6H60{mTxL_k2;c{B^VWwebo6^
z$FNG!qAgYN!!perfeQyLJ-N+pver)`G6ZsGFOqPofM6+qw~h+S#Nbi<pI_9Q3AxY!
zUf7kBy|9@O_rnB5p&dpfbG{ieik+^9HkoykO}tTR4TUC1L2o9=7sGnTDJLfkphwFv
zinGYEpL<mwbRLi$ph~0S;&%q*imb0bI-u4WdGRsFEt7VJiNWBR%y;v$_j2AI(haXV
z4YiMY5Q-LnP}+~NFlv@kB{4}ouJk3di#R6Ao&#kl+75RqdwdV8oyt_aD;KR?&Ye(^
z{&w8t*Lw5OlrK50=Is{ejQJ!HJVsTXF7rvUDP#ZH9een0lotX*7(>=Zd=fw36q&|%
z1KXMxA(L$(#5dja{+pRApJ=TaRBx+Bwim136AHPBDSFP*!D~rx1a)pKqwI_%ihf|C
z)xPO*C4!O;k9La6E?`XUvRfZDpGG#h**KoXbcUzw?IZ71c+bCNcD)u8j4|p&>I`Hl
z%C9uTbDr4nJ?my%cz=OZLQ0mhM{{-S@sFrJY-W+8;>)}>4KvzR;&qU{FLxVRT&Pm*
zMf(vuRLxa0mqFqfcrrufraI^B@RLLWIF&F~9U5@<&)5yjr<u6U+T))xZqX{X4(%7g
zd9or*U=^Q#BhIe$t-uP7wS0&N@km}m;UfjC8gkyxtu4(fj=Nz@1dXlGFtfjS+E#${
z5wL{A*yvHt#fWeKPyDvz(up@%_Ints{i8WWR>ac5WKl}6As_Taxq@q;9FfL#fgX-G
z3sOUWp!{X!fGp7Ax1eL~!E8AsHo>&u2zI_)LuNcy<g718zRrkNKBlBh>+n2mk+}iW
zVZK8vB>F?Z3LPHBt&f<`b*76XWN>p_)RIr5tfqB=sXLg%OtK?fwV5-hV#)?pi5fDA
zGI*J?nqNsnRn#IyCJL%7Mx`I}63^h8UBW-gCv1dIBQFuAxarpi?q9>7qLukts8&Q;
zs&)YRMamhv*+BqeyUd=74~Th_2Az!(%AWc^&1C{k*Lqa#!XoGRpSQ-=u0-;(F{Wl*
znDJA9A3{WyrV7I1Q9Ag8+5Gytbx7<#N^q&-C+VJSJ=Y-?Prw_z1dL^wwaQBF&8?`i
zp1&+v_Yv(4?t$H1p6nDvwE~!F>2?bKOhj7bxY^nKp%>tnlX87m$U=H*9WG93Ha}#7
z=Cq|i9RBO-E%_H<^B-raw{skuq--bcg)Rot<WgZ$8S}aTA#Ys|c<ma{EFW>C8#=>3
z%@ExAd1Xk2KHr(J%CN{dm%QO!PR!e>)uCHLLXNh)s|dVkxI5jWP#SMZxG&itts^MK
zH{UXFZl*sF|4Ixqap(ThQ{G41JJ0kT?l+5U$ZHrguSVH|{G`WPNpR<0=pA8<7O_}`
zVTj}4N4Z3%zN$a>XsGK4O71K%0g!*ab#LOmg?ezjdIqz+JY)iW3Jb%eFTp$Q1DbD5
z2c7syn|Pi1OF{#!S1|WTNYA8TLhQ8@3I*1rD3)Y67V-?nBf?gDf%hL|7<oW~=&QPl
z#}bmC<Deg!cDwgA{YQyO1wHBxL_VJw2crjC6(4vK=ySwCkOKaa`i)HS9tJvm*WkaJ
zLsmB+eOf1vmP;qncGomsmxO=P`$Se^V+|{x8*gQ^`YtyqoT{%i@fs52eW=<Bvm1}^
z@p`D<U_gD!C_GLY8~zToG{e`II$emD^oCv9^z79rdi!`j2qI|~he1`pEj;>O;|tK5
zj&3!2s!oz-AbejP59-K(nKKQK2O(sqZh%|jBthZx)#*9>9TWMzHz3z5426W%RaEW5
zdjj$7-sAD|Yt%~NXK>posEa?8+3z2MHB22eMN<;WW2^62bHa!h--jPAqBQxy3MRB9
z`Ko;2Y80)mEA$^^d1j1k>sv`LKRL)?uW%H%?_UNE#CR9ZOFv%x%k9BcXGl2Dcth9S
zNu4Z>m*fEl6bOwWQBWjNNs}T&Bzvim)_xFFM9*#Z8^lU0K+pBFQ6CVnHnOVANOI?a
zEOl0G|CKiWM-%?f#haLgqm%RB-0=UM>}6(TWsoCc`HyI@{4YyoXPbYEy5x%Z@nA#D
z``;g%md9^FfUJ35HDLY}L9MN%{Z1dASlvLz@v)$9GZ<ejW(5&ud8z5wH7>Y$=?hOm
z4M!6YzDeWUyAzTo1W{LVD!|amp|o91H@RT~Ws%WUF}<&LNaMT<!z~>}WVt+HCDWT&
zG>>JjIGHBgtgduM8Yszy%m*E8v93%A9c~Fr0cOg*TOK(2Vzji+WLm_Rt;lsNR{FDc
zAp*>>a13KC{KG1prDWDr7~b3xBx<x!gQ`Fz6A<aEnreeofLvuS;J;d`e{$6S&obga
zy668l$_S2sBIp0j&RqY`lo1RXe>aSY(LcF$NhTtWe-&W-f3N@7!1=$H>wmsK|1)sT
z#L3R`?|tYt?%D$i{#59MdgpTMV{>7CzkOl~QQkvznC84>u^xJf%W}3oe{)&<u8WFX
zq^GVy^qQOIYp;Ixe)-8)53$OCPj=e*HHBFWp>HvUKf%sP387lwAKAD2!B>_QmQfJ*
zu`KU&&_eGlgy%jS3a=WRrToh4&Z{P1wXZZO5GZ}H(JbyqHHxSs#qPb%@-TsZvfiWl
zlKoVPM~Nn}hXj1O!d&T^oaIwMANk#{_UCtHyC#dG+TL2|;f+4K7G8o8G#T3COI>&L
zXNTeVue`hsz9l>VADbF2Xc^+@kO5TbTnH-$qdt^;%oQxHSk|@`w^i7~#EzDgxf*c%
zbEg>WnmGh{Zwih*?P;vH;DK6;M*a?>iFvF})zT>yuT=dkJ9o+h?p?dFl8jUXb%Cm2
zD}GOsy9TPCy6J~L<}lV#5nCA@JvZi-8i;?*KX4kc9s5=?r;La6uiN_Hq$BC89yEWQ
ztIBu3?_^w{Ujw*~E%UI>8g)axp%gWa@=5JY&(R6OpM}$UhE?QwJtAmT(wA}iQm#it
z`LpFK|I7xucIt<8Q!mquego+(M+a%*NFpQ0me(kr6(83Zj!-XpN&jM84!OJMlYJ>X
zUywT(M~{_#>-Xueaa2AhF7K{6gtJ4<YrOJPM(3=-rnv++YxlFQ^CCnbqPlA7C_`3w
zi)7j6@g{s6nk5}ZUoLB##_Mfcz#+TNfF63}LJ5n|`<A;oj?21Mbd4gmPP6N@iCYwh
z5Jq%mXtqmT5mMCuHewaJit30L6%C{Y*X=t8C{bye^?k4FCpzFbZGXc*%uaC&kG1N+
z>JevZ-{j~fka@lclUva2hZ$WHSIzBxHCgCE;7w9O->^w@Uq%DY;WdUjZU!)gHiPHQ
z?K3?=##CGoHc1k*E)>k63pT#mbY5Q!@_e_yt2laSn(=-9y#HZf;hyiB&w*smlQ<qW
zkbTxy`oPCaf^4VBMBc!I8HriHGseq#Yi&(UPxaM|GI?p&$>k5jVykd~hISp-fI&n1
zUbF((hU;!<FIoaQZ0j6EBL<Wt8&0J>_DKb1g=6Nc6_5<H5ot9trI_@yZNiyv`W9jV
zf81@hFJ6PZzIB&_Xt$W2Z1tVIX>kwzWNg6QoN2n^XBNzX`o-kjGp*OC0|M(hj_79$
z83nXbGqohSWr`+Cj7Clq9SlN39ef=O!0CmdhoKMsfc9)Hm`Iqhu<Of3GDE7H*Ov=2
z+GQ)5jI=Nc%ATkcPyBBGdU&N7bbq#uL~WqZP$1S?mO5QkvajAb_LK1jQadej)z4et
z*uOd=ceHQ#%-Rvtc+3r9^Znjl4}gg>uYRMm&PZ>gP}v6f2A~~nkwO#?kJF)&r3eGn
zYm~Zr(z%kV*#KDj8)~4a+oAar%puj!w|dvI7txk^>P90&)%lG5fG%q5UV%S;_$C)A
zT8Ce}7K}i0E1B?qwUfU7wr~ot@%i;6@>Si_>(V4cW1|Z14c5l&wbW00vLXOxck){i
z*aas$!-mHHI($Bb%mDolw%~e)g>mH1ivk2uRoq?yCW(#l0m^}+G`o!>KZ)Hu&=(RA
zZ`9^`vtay95=ouh#4YkuH2Cv%Zdfy$zK#ru1TvzJ1m<}wF4F-yz|qMYJQv306hxz{
z<QTB5T^;hvNr^RLTTYv@<8xD~?=S2K`uh<hG^uS-*lZP{X29^maTP#1pYKygAi2Aj
zAS3$*uQ4`iL?@(~j0DMWDjD1Mx`y)h54zFH-3*&X<LG(ont6y~C>hKL=~z2y@G!BP
zSZSS=uoX{*TrEd9<m>dgI_LS!K7yI$$_N4!*}`HKb<Ddc6wNo`A447f3}godSnZkW
zVtXkS+!Jw)8+c~hy66hMXkUzeb7SsHjTzXoReugh3OV*fah33i#wRBsdk6?oJm}R{
ze|m2s|6g9=I|Dc!D&Ax2zdzw3)Ob)re+UZanZuq7b=~vPGp+4GJ+zfWE6bG^=SJ}s
zKU~gpbEZKRm+N|XZC^46BCL)_G=m&b)5HbI@1Hi$7V}6I{7n7UY(!|r@5oTRm=(77
z1>Do;DA(*OT6OIK^`7v>_ibrRs2@5YGBwZ#imJS>Qljd%x5kCAnM!k}=OPaW;V1%H
zb~Bwt*WQ+$=cs>l(p75_Vj>U50$l>Fmt?T47yq$3scBq@e*mMuz|RfN`T4f8pp}~w
z)D_@9uB36yfHIfWB;bq!oBw^XDG?=v*S1fFWOlTOS-;{Z7*XY(1IIN_oRqhIDC)D5
zB>&!q4u;HAahf-Pi$p&NH_8vLhv1=uNvj3syWd$Fgof*?P??&3p5@16bDqEV2aAkS
zg!QO_)NG2S@B><i5ik@LW_7n)sW@kSzXmD?+YhdXAA!QV2QrW_#Y<!D!`)^!HnW1i
z1j~g|nmtznJ~mKOacQyw*yA+WV=Go`WzSPxkuePh39I&infxF)pH9Y@+SAA?99Q};
zB+$Qp+W+}C{%PUtq+sGGY-eL{XZsJQhVw5p$J)+O+1}8|<bPn`{0AE5FU!W}A8^gT
z9&!4sAphRD*w{J|v2rl}rP2Il;TSpFITA7b%>Xj|7ho9)6ALqQXCe+()_*HeE;eQc
zWtU&h|3G#AMX&h}Rr;SQgF)TG_%Dj)@8|z53~FDz<r$Oaao5_~{c%&YvmEa^cCqcv
zFJv^D_&;ZiUh@0B)-oNJKEYm(TSVdj5@ZW?Jb5x24%J9PKOa9T&XJyeJQR8P*Y#^w
z$kJ<nRqZl^xLw}0Rw{he-lrNF3D8Y|5MUMgfmFts1MmV#ogXyG!BvfdGS$#_1W;$M
z`g23>TTBxq`*~^p9)yioDVb`VoJYYZ`TcBLm_}*2_y$vLdpg*P8ex+&gaWy>s(17G
z;c`f|(-CQdgd6;m)VYG{yFOVGy8%a-Ae?SPqjHE+n2_ICjgnDE5)i|t#Or1ihv^7I
z!DMQLRQLy178~%h;~o|ZZ-<j}XyT%6LIlkiV{6`Y;&dd+%(OX+okl0uYSK|X{oUZK
zNN;{Q7LAM}A)uQ4!IyAb%I$8zcxR`rA808q3p1@X(0C(Drhpx;i=LIJ&s=PZ`h1%0
z`+GT%ZB`k?^3{p~Q0c$TjMdc7PMh4c;@GgEDl9SUOcG&GPM*O9PSk|u$6pk3p@x=Y
zAzULkZpWQ+dOD}O?AYq);b1y0gS%X^9+W|{@yMQRG`QUTqSJ-+*ZhjG*3Nfm<y!J(
zC=(+aLVACbO??Vzme*ba=3KlZUNq7fe}3yb=|=n+>T_@n{#2}RkTo&Pc`YzVH4t;3
zS!FoT_z)x!mQd8^hMKYs9r(szh5>AjMWClyxwjqBS{$d?k1_A2bTl=2e`S`qkXqvm
zZ%dqN<N>otbExY#Vf7Mf>i_YqiSHS_xix@aUJ@%eOF+ExhpMUkved2P<z~?5Sm^3~
z68R#t^t)hP8R?7KOq&CoXU;Cu`!{Po*REMcGNUxQp2L&lrM48^Z??o_+>0{ej(Dzb
zqSeanh3`@E%kOF}pgc0t#GJMKt&h6#>21XD^b7KWzSQ-)^kntsKecnccUa3?M=B>f
z-d-NPLhWM&&&>*3;m?5pUA$`w<MTe!n!?U?Lj!RbXh2)>6hYVRteaI?r&EA8SGF0(
zG%Y02Rb)Nn1icxVW?_5l8*@~5wQ=Hf6LQ4LIyiKxL`YT#ftTL0K6?B$7{o6V>>(%1
z=kRz~vTnlVYq$sArm?B^kk=tO>@_K-DS1j+?L!yUchE>DxM5EQGwf~|<6*ua7$TDJ
z4*2of5bTB1bl7+cQt(bP5*wxS{rF{B*tf4+fBW595AY_g!m8U~4$#B+^#szU(EA7T
zdoOeh>+`n>sMhEnC28a5TD8i&2AY|XL9Es-DI3(F#ke%-;mP-fdC!?X<(#)ljU0lq
zc{J+zv)HcKKQT_|(3Bw?FQk$<%Qz=T1m7FwK}`fRlm;mMY^6lfx&122k<cosgA&f&
zWV<OEf!E*3a>7yC0cD8kyzXV#m@l(GxB1#UyehS5>suso-=Z%dVC0Yq;^1P->iYN|
zN!eBjd(@LsQqV86mp1O&wN#&&r_G{ky3j|?3oAD(UcpFfO+6#!%%Yf{>Z<!bufsVV
z_&s;|E7qiBB7^w_V&PphBG<k@s`aX;xh+nu(rFe%p)VB`&aUBhWe_J$h7~&0Td}hz
zmD3N_AYJ52B1A)Vo$vB|fq%lS7oR){1)(lqbbdkSJ<@h6#Miy9N#r4r0Wq1BudNL9
zA~gqlDL+R4{PMcGy##9>;Cjj;wzvBXoOAOLbNn^BAunP&e@_`c91W&U49|aOagc-A
zwC3;w$@3R+^=BS@G57^-W<-FY<P|c77)lC5`qIQsk(}?v6{Qs03WM_~Pns-Un^5`u
z`D5h%-BW&$p~hkO51f^~tt(^SdlaTzSZ$U1qqi`cnUbhqr+#4)&?O{GL=gPU&EBI~
z8zedQlKF>xS!*gaJEm^3*#;QLYhpk*Qn5cxeBbgbsf6NDmKA?j^&@AFHQ{-=jo6*L
z?-$NSS<cT_KD2crd&Il97q%YFK#ph?OTr&iE2#wpfK!_v&23i(ioDip*%Ro31oPQ+
z|K=0^O|a?$gcdPtjYr_Ru9mGe?eF8Sitm~W?aCPZ2J6l%rV=4|j5p2#ZCpOI95=jq
z9SuyAq)Ty(k&{>NQ9q%Lvwup!bG*h=H6f{ABk1*7rV+Fu%1b7QXcuDN0F61lP*N=x
zw9EHkjuQaMyTX~dQ)tFCn2-|VI7{lND?A3ZVbh14qna7M?&>xKI@?DE3|C>znXy)2
z3sdTaZoATAtAui$q}-sk*x8pX=Nc++V{<G#r#zi-yXlW>MKTn)JcQucF8hiX+1k^G
z7LxnuSZch!s0;tlWm!OnlWJ;j^VBI$n^q5iEgnYcrIYMBxtzs%)ZV>Uj?f?)$CJ-x
z6fSSy%`Tm*wEpn!6NrUTS>B+wyWipIhNQq7b_+#Uc?30tBC?ADQj7PyG_-Q6<`8Zd
zX9|0537?(8oX&bvyQX%_pLEE7Z%N}~eAo3p+L#L3q9^3HD>OgwKq)xzugV;H{lfjE
zv8C>^o$-VXIb;3P;BL<ucH<R&6X82|W$%fk$}j7pAz~2j(nDp4z^t58@a$)M)9LZN
zOno0dy9AM%gN>`f3*OG{0k-{o;Z;N<HdX?wO`^sCK?}sHfG$#&zOF`7n&FpRe?Cl-
zLfI4!&2PVKpi<D@wD{K=Y<9d0OZG^4+R?+1rtGT^M)-&8v-KdOK%n|&OKp;4<=Tlj
zXn7gE$46_DgnhX3DPk-XZqBa%`&7u}AnUrW(SG_*Z7*>CZ`aW|7`eYF__gJ3`Q2k?
z_yR7zXum27f{C14FUN%J_4#x6$UqU}LUNaMaMuTQkEaS(gC)`hfx<Y%gO@?QoJlJ)
z62Y!Ujz%cF57N!M2Z;ivxT~oeAo=1{Nht*`zdpn8_>}SL;qT@Iz_m9CINyT{TU_Fi
z3?Q#g{j}Q;h8>@s8}HEV3<Py7`GIjO!h3G{u&$%9_tKah!MX<{_0pnlkc%{c=4%l+
z8Rp!x1pW4UGdi0k&#>F$^|qiPKwq<XgY}}=xf;SZjU9InI&HiJH&oagd{$$=vTrLQ
zD}ucN=ZUUkMwO8R4yk{hSq3_0!TQ3DkhFi8#P6inP=Yh#rzJK;A2otxEvQx1_6i98
zrk{wrC_pvT?-omi03Z}C(oA$0jZLW%qC8F9Y}B{&K5369-vtl(Qj3T5K`ch28Sa&C
zAs)SPwEE#`hOlauAj*s&OB+Ado!NL$TnN8L&EXWbbO&NV5jHh*B1<^9hJl!KWd7SA
z^Fh%Klwo!oMoX>7B2#Hrv?k+8yFNZOuhCOC-cvyzx&uBI43K@UiQ!%6b->nc3XB#k
zj8*|Vku4_sXOBSolf0vF=_T`6hI5k6K59=H-5at)9NY3JskwG^G4|2C&s3cYB(lmy
zr^Ym>i&-R{XhqxqDGmm)*W4>2QyumD<(9ppD}T5G4=pNPIl8{=Pb^3iu|E8!vQU;D
zj)6q(fuVUZO_m9c50Dyh1B*{C%;#NhtEUCrnkAw4`uo&?nnn4mp_Ex6R6#8_QND`x
zo;H>{9-~Q`bSJ*A<+(FC9v0p;_YL{GI;^aH235chponfnhiWh5i=Y*n`EC$c`YT5!
zW+xuN$FIYNsCit045|rTN1Fut9->^O3-&_iW>^$R^hdhcfsajdq*{9pk<jfarqOZS
z^7`<tf)mFXsPW>khCXK4Y*)d<Od$f5Nbe8jc#iFY6|Fe+DBAGa;XD3Su)QNEvM@}4
zwF<k;bAp!{d{C)&r;oBXHJB4njXQ?TzIyvuO~LRc>+Ya6lcAI>Rm%=JImp=c!K=vM
zY1=>QlVpCJhPmjVG>-3-QY$pALGHSXQrk|ao?N|YTxdlV@8?FE+(5v-!EfIaQmQT8
zLFi7kg?}7fT=CJk|7E#Pg#|TSYCD~5mw?{Gg?~@V`sE)iP3k>&FBWwdt<mWJ5<ekn
z5H+=-kM|l<d?6lewLGPphlW{o(x!ey;Y+inx(pr(uVfp;pXXNnbo2q8JeN~19>KoE
zl5_VL_MOw1m{NoZMCaerZdZ1!pb)Ba^bm0}J-vq3@5Uuju*gE0IOc^Ptk*6key2bA
zflG@?Daoiy{<S`8C};j^nA!n*VNuz(qJuyL9qiOnl>=iY0QVyW=<U8@0kviPRV$gd
zUWnaOn%W+MGZC>wBzsEL84uwrNbc7K`}txkt<rw0Em%?G$)YeBDXD2g?Rd^aGP`%d
z{7d^rd(Dv~pggJ(rzGG-sTd{4;Wq!c*tcvCjbDfcOl{Xco9-@=OWYNRFXLC21-wMi
z_;PBDp*4?OK7oJ#fTOvK6MUVQoZmS__t)ayXPa`C6NSRH7ya45L7<j@g%hL^r?{bD
zM0U9l4Ycs!#fs>OIPCMJV-R8Aru;eNl6&n5hU7zlSc8YVHR<k1MN1PmA$Nsm#KiLQ
z5DVn=<<0V^Rgn6*i7*&bu_}@Y4zbUkq!iKI4^=U+?5d{u8eKseqZB}BxnSt{&uQ>v
z7-8@C@6#9s%a-She(y0x89Wk%OVM$;bLLQm;j`mL_#-*I>?^7yiEDI2Kq|UEsm_7}
z5%#hdA>wnr{o_%6Ip%y|P^~(yBVtVMtNg&0hfEs5aMC1|_PmblFg(zjSMhX`ChHUJ
z!@Tcd?UI2QEkLObbb{PNg3UD(7+sqL^e3L1hP&rOH%LNbnK^ERq7r<(!aeiL6cyTT
ztVR69^&hch=*(+B{-(^risXC*6;t^xDCkCfniXk~o&lkoOBW}6L%QqaHfhNt*oF2k
zI=o<eoJn0hRMz49lxfAB0%Lgl3Gw7wWt(KBqUEb4J@iH9h^JRw=YC|3cxn^P-Dzx{
z3w+-yG=FTG3*xBhuC2<NjMP0l2c4-xj8j+-3<IPQ4^@f1QY$nBOLZ+HP+;29xsM@*
z{Kwyc?riM8>~^^-+H*o`zp8Lc{hx-A_4{BJ&uZvji_iSsa2ZI6rqW)xZHC&q@|cen
zHCjx7qbM0bevzBY*_U4Z=32Xc)qo&d!jRy1fQ!@=wC#i*p>#!{xQWk3V6l@xkzA1l
zat7Mwwl;*`LPC}+m?wvIAQ1>xF9u<FDtkH@zQyPzpaNotHe}k&R7OJ~ezy`WN}@gI
zcQ19OHklnQys@2-w{kqZgSXdaa*x1!5cnmUO(XH$HW%%md04IkkA3v140RP347l20
z@}fy5sRMmehyuDuK9bY`5DQ5=F=dH?G__t$ZF3;q;lIfLiaW0#+@?__&6Cm)#n9N(
zMYC|CJvpgTko?UK!4Xd{(t?Ao+e@Hje%BT4!Lyjj>k#&RjsE2DjOukB|4@lV_>Ng@
zQfiD#(<i^4M}_4#EKxn0+qGk@33SS13tLDz6DG)*IZAZ{_;NvXaguIX@SMTi46igR
zk@<aFKErGO{)3DP4iI0Q20)^C$Jv|Thlm9hY9=UJC_QoM+2T-n=g9`}IavR?CGUiO
z@4-<6@NnVtFLsr9qvu<$3Fa|CDHHc6eP`#D4~|e$#0rchMvEOk|Kc8NdlP0QK^E9I
zHXuNOv$&v}<0!MOBF1DF;B41M>s#9!ftCB~f{}o~Qj9GvkK<aFVD;uOP4r7frJ?`f
z`LeQAk%V7r@n#+d&OIdB_do8<tk<;B^pN<Wz9=OSK$i8RTaVqmCj@*b$Mu(v^N?~|
zM2Xon7pjmL>Al3`m18yE@2buR@kI6wP;jEdr+yBtSXgqfC<%)uvP2vxtWd3_h9to>
zL49pPWIX?1kN$U(xO^v*c2pF0wLb8C^%ivBM*;3-Q)#;no|pXxF}uV#(HmrCUcDj4
zvu>-5MXXz-v1gf9OB&AKT9(W@6fZr`@rneogw$F2x?AgUbu?5$Lmq`Jh@_W7vDWf0
z<%cZm2qD=^l=HeV1XxJDk)i$7Np|{`E2MjL<~1k5BfNE5JDyrbQ~-1g0pu!K5Kt6a
zn(~jo)2mj~Th>G2=~H!|$jWYBX{2zU56|?MFW7YHX3_Xj5ZlAv0Em5Qx#@d)0du91
zjX_mOBZh>Z_zeugU94QAUctk$m}XvNrwC$+1m4w}9n8UkcPwH8{})^5)Lx0!M%kod
z+qP}nwrv{~Cp+A+Z9A#hwkxXGww?63=%@SU`xk4?cg`^c%={}X!0(Xa`Z2XS5lDA^
zB%_t8iT1gU9mXs#W+hwKl;)995l7zh5NGs%qqxkDTPUj)w+6N@)#tXSbcJ#DAmL)A
z+!upI_$N1mGtBvp5l1XW<Xjc2N{2^?a&r+9f8fP8qWn2`6!`?JCJ|L;8j}|_Ks5S|
zGQ6kk_if-XVGlcXY>~Jx|E9p~R9z*A`+S&)9{ZeP{q`sUWrqjw#!+>s%mK?Bb^uc=
zrp@&E2Ql=u?Wcm$;IxK3E}l5~P6kxq!m5D+3a#nf*mvLLlFHJ#Jtbw)I$Dr)xE<1a
z{3o3z7=vf>l1DmfmeQhw+rt_(ZwLRikbA^eOy{Sv`d}(s%H}vqF8V3wq^B*~R(V|O
z%d($r1sNB2HIVqer(jngDG8~k;v5JmbGGH2FtL81s+-uy9yIISQ8P@Bh%{^Fh_nR1
zsP2RHS_$qx*R0V;1q-d}m*@=PK?cdtcyU;W--wz};1SoJbC@or50X7~=D@}YZZ??!
zB41TU(b3m#-$reV---GFz2X20GZQZhf|`g$0{%wxJsWeRlCZEUN&(`ELdv(H&loud
zj{;=9zs_H%=`{FrGk}%kL134TkiVEL#2EZ#8$>;lhukaZ$uIm8=#e&HQ29Nhdx|W2
zB4NZ@lUP%TLXaiJ(6NG`;*_5%xIStVaD``hNZvImS;^=ExKCw{n@wAt%0JsGmYA`{
zM@UiZUuuY*CkM;wvZ60IkCFkoAkl1*HY37zy$E$dRh7v%LEFr%=AI$R#<}Qm#H#n3
z_eayV1{CjAn$|KFynWMw2g2}mAXn|13#f4$moLz@Rie-d)D1@}L`^6#8Z*gxmdCc*
zyv45*hYq$eB`kZwM%_dzsFP8I@2E#&gu6sx#0EKdhEaij_Exa?a)=MA>okpa_;Im_
zZdN2kE4rza=fVy`w+!4XN;2BVzCzZL>!Ba6ml<ui-cCbs$SB|^21+Gx46i!iubZ!s
zu^IU8Jtq%|d?GyG<&7?Gj}m>GPV+#V!48Qoo9PWO!uKeWfTsJs=b<upJDNnbpCC+&
zDVO@+r}}##gaTwU8KW8_h8q7t^M^~METjNj9ftbv1nB=&zp&XbAWRrUEuT6J`%a7P
z>Sl}e%LB%Sb$E;qt42BDea<yQwwcVe&Il-^Nh+Pl<#lq_+cX)q3D56gS%5!O3!d5~
zg}AZ;yeGDB0vS0`q|^<g0fn_Dln0C0YA2(e)eJ}8-^lAG4*^I3Zp@GVh<i)rPPcCn
zP^r*&n`Zxa5B^WS?xNL?_$F{jWhNmRE)IMV62jW67~wQxaA6M{t$_moky~YsU5@Uq
zji4^Q?9tsD=gI_EP2psM_j<J^3dg&#+WBw#owZ!LwV#dn-ZqC#2|--xDf*zK5tz1*
zJ-g^C(PYnhaGTH6#!Y9AMFRT`ZIa-ye>#3Arb54pb1`AVw@Y2J_LCl^rA%|uCp~&V
z`k)8p@6uSOuy0j7@c+9WwnKVvRJDBPizr7g(8oeoPI46azcvk;YxrGA$vxZ}dkYmv
zpZqihYcOOcHbEZwp)?s8FQ51hv0ML;h)$lZ3=5jLGy<+QN+|klRJK@9-F-xY{%HS*
z*yJnA;PZRvV5pGgw2j$ZM<<eh{210*!kJZ0p#jsaO`711k#&Pjl7K49hlg6CfM8ed
z8{J)z$X^e85J7atj40*<ZNf)LIFd{c`vwSLjejF5PNN4;Rh+Mu5m6F;H3?R(@X?=q
z&6-`pp@%RC%+s~L!y(gd|M*d7-lUTq7jxmVo{nK&ag5A^`6$t6+;m$R_2m4zcA^`_
zWF~sEo>U<kM}$|R&E%*Hy%@R`*0!Bdu8*f;6;M@`=2`z+(&bc)H1ohm@s0IQWJAd`
zdp5Jtq@L;~#Jgl3%1$K%Xtup?C4u5jLv4{yFBqYP9~`Ym3&QgD<PieDm>Ipuzw^LC
z08xzfaR&ED|0+&KHEA4I93c-+#iE4FVi|V5CXz<}U{)e64S@)kWDCg+De30;kfIEv
zFD{K9uIb;TFozd5EOS_~VCMsNX<}hGbftC4iHbghj3sh^_ab&($DAMJsbg)oe8T!i
z=%~4^w@~Z{6^CIa^z7fz_)TYfrt3NJ>x<SL{c`c!TOcefhaN!5LXT9^#)aEZ#L<Wu
zV<K+R@*p1!_Jl?^;LwGq!=y>9+VGM*nSs}@4#?U;`4b0l{D&!8o-SkRHgBUt_Y<hG
z(>H7AGE>TW|H&O8-*BQ-5{V&6Y2Ha3LBtPdQ;!A_k!_C!oqQygzoq5H=aPC~#uPKM
z$Qc;4uOtDryVz`L2X3u6`>M^_0OY2~uL~etZA|&uV#o(`uisnw<FX|2XY;acfyNFc
z+LO=boY<=%!y<?!ERwRUH_KXze@>)Ji_)*pyB?9*Pf5}H!1};j@;<tw8Q{<-eERB0
z#`nP*(OGS!G*V~ptK46{gRst>1zA>aZi)6|n<JDOsg1B;i^DF}NwO&eQ9N9lraZwE
zQMI$#IsqHuI^atX$j>^MWbiQ>zN_Jl>&T4=?Dwb4jwEPgV-WnwuH|dgMqc+LGqvuA
z94A*a9kFG{S?P5L)UY|ZPO@y8jd%PfxInpH?!wr6sw7%~#?1KU<54Y|8jCoB3r^@c
zKwO$NL{snblMpZ1;7$lYHII8{hUx4^j5_+J9olPgU0P4@kOP%8^>HA$C4nKFk#jEF
zG{8^Ba4CxQMt^X&asMKb@n=V7*78(}_z#3a7~~TLnS_5k*k{Xls=Ao7-I7+*m{~VP
z-@$KCmUcwBOMp`?{UIoj7?#|M1iQtMplsxVYCXnPqG>I7C;riCouqU)7eQbP`%Caz
zJ&8uy4*)w}EV-8<5nuf{u8RqY>QLq~s^}@Dy-Lx#P8K;~DBr7zNm<u^kyCH|sQhlc
z<NIqx-f)6w%&ZNX%Uwm~3P-G>@FUnOa#3gJ1|4I^VE*a#&Ccr)K*N}1nEwjLhjcyD
z^9N*u0-qS=_T`Q0&s++Lf9Kxz-T2~Y<b(E<p^Bfq?xwR|84%}als4_Lda2GLvO=m!
zX*mdXQyk0-qXAY{USdvHYfq|fXeI|sXL=dNV(-kor<blqZ40=mw9eQ>PQZux(^@Y4
zSz_&hO4kgQ0##`&zZ;G8w<_DTuuCiJ_jt;0Dl8N;3{9sqmQuGWdm$%ccayLgezE>*
zVnO$gq5Y%ot;y9yVw;`a35-n7`=xss`#_{RkvSzM8GUE8e$)Fz&X?oq_Z||)Bd)o}
z4WJJW7-*|=o9d527G<N4R|C&1D%Ib+cnuY$k1Q;ca@GxYx+RX~r5SH4EL<D;)T`KN
zM!hibMM2Qj*-7;QYYs|mX4yJ{N8!0mLH}h8wk80a?}04y?apMER)U`VOVm)#7;Pu=
zEz)0;{vB;Refx$7Cu_k*>KWReBRj}md0ej;rA?guzO_1`*ABaz9wMPm+iZEjBpw#G
z5izsslY<|uEKm!IApw@%%JC<9UjxRF!^;VrnD-lf$XcS|M*tkHVbbkQJZ`n1_U&}q
z;y%n`rEfN6RQR-!<SBS-eUVMAPlR!E`lols6Rm&<TxOU>mNZ?M%X7n|uZgSWnOQU$
zP4>aCZe#~zRcUuy%%l_7w~IY+xHp1io%8KKv9e$AV}qav+#ab#`}Qd7^#&xcXhu=q
z6e*NLT4VsA+`piU;D%|5ikUON%_-)nC=+}35}eSL<!$zGCbBJNfx*xKPC(s>Ld16Y
zUuXX;xgy=mrKzZsYyCsbWoegAXQPG?f}_t45}4`5o)!b=!)pSX3bvv}8)%L=rMjJ|
zKq^=#@(UIQol1b$pHqfiEJIBX$PKVyXfJ^Un?>Z_9$I;dHeq#;nLl;#)LI4AS(gw2
zfWQx-d8WYDrnW}%oBh=ZJhw`wc>(YjZzY&r+Zp@Or*nLbzu{(q!=Ja!`>L|PiS@NK
zSw*zsu55o_2Gf@iwy|;vJK}V%6$ZA3JT&>gn=BPC25$@!n18od<0dbk>vX_uxpjdu
zDemaQLMho)=k1@aj4G-9aU_(L4gtnb_Yf${C{{hTa3W_|Z%ED2P`qDLjsdEvNF3gH
z$x}Gh&gJuN7EyQ$sz#aci1p5s%Qpn7443W8-^^WhB~)SvYgK>87DiW&nDaqsE``@l
zXbl+DIcOf}&l>6Q-05X%n65Pecoj|=TsZxs<<M7N0wEnAtG2ObQohMDW~MTfa~!T%
z%dvG84>vkVX~H!VHfp+w**PU_NleWH{XLmFtA+Lk!E#U8o61N@eJhb(U`3K$Ma*r}
z6aqbqeFt76YFaJwXih9+LlAAHeW-DiXai)Yn>=7AyM{130I{TJ$XP;B^jI_Xg~Ht|
z8vG?&`Jy4pZVI<kufIduEaVUDwq>u}(kB!GOc62wrQ{}kq^FOBrNmu2K5fTt<TMO-
zv;IY3ae^2qZWdGIe0D)JD^zNGGyR4Ss@2nRFTKLp(A{l_PpUc64OO=fEdkXLp$mkh
z%ZZURgdevsFZfL_Q<yDG%J&e2=>1|tm2}_I$;<6t9|nza)lnL~30F-bVgW>ch8mH^
zsQyD3;KOd%$K|EQ*THfPeMsAE8ex+}VDxQxacQuzn&$5jxxkB)?;Df;I{=tW?EHh_
zBnu(Y9vlJz!|O#$_H50zIqu}Y=&Mvh$4Z`i)trRoL_HIg74?h-V|O0_&w4ARoR{&f
zd3ptjGrE>+iVfJwf%;p}t-RKv1(&;gWQZkt)s!Js$X1s}pH325n;-fsW6|JkK|oe>
zLD8ZCLsrg%3RaLsl|0<?eCcA!RlrWn8R5r2UDMelnTf5}fId#mRbd${Y|`!WZs@sX
zhE?;gdSL18)%)vSU$#er>c7q6j$!du_7a;l-3H+Fa6E_a?Y_bc?{cy2-|`GFW<_<)
zGM#>$LepLa)GCNmN`vtES_?NeQM;aPV|~4#QyEL_9&&ECwR3Fuf}(=LGg3+jGZldp
zh0j!qCR)txnn1clR-6WK9c(CcD$oRfitoET1e6DxiR$I&56^Vx*hR%%*tlf5gWe?V
zTHK@GEUG`T8L-$U+kCBJ&W*Gqlie`!y$<Rjzce?FGa=E5oqs}hLV{8x7(RMl*esD7
zy4Cu*YKbglc_b$YjgB`Db$b<dO(BUY@QlFio?-l?M!KXcJ=;js8JH{7b49HY9HcS2
z9NK*UlEkv@YSh!GD#d$b5fPww0a{l6b4uo*Y8^d^>30lzOk%D5t)jn&nH#`34JB%s
zuW}kxo*9%psWs2AmS!)(fce(n79+Z%Fak8S&v#Yz&`j{mcDZ3eSTa};A{dS!gprAV
zZEm!=i0p7eZg>>QZ~TRyY74iL4sU6Gsn|*=#)*k(H8zKmj94)e-p-wfxk+viI^WhE
z*bv6}eJFOAvt-d76uP#5^&bLdxY^xTo8|?=gcYp}bzAZX_tnqpUGxmI&9d@RA#r>H
zYE0`8Q{T&s1a!uREn84WTX#i%prd6NwiGU?Np+BVfJ?5scJ<q@9NBKOg0U_I2h{k`
zd;^LtH3A`Y=$hUep-efB4H%!fHh7>FB5Aj|<m?s%xiGR-{&vg5<aUH<51QzH^(K|9
zGTkvtDFJ=YW<@j@vhRuyH((qXa#ORfAUmOIV7;NGw<76x#23iTE90Tt@pTFX_H<8$
z`MMyf0!Fz0`ZN|!?GHd1V#$|DJ7`1IidSW!_A=$)PMXt4rV^?K_udou3<&cTwc#Zn
zu7=6rgY8(k{AhI|VAZ01y(M+=z$?ux7Cg!KVfI0fN{SKCTRb~-({VFX9AZtUmC0Dm
z3dJw&+jnDB{>Q^iZ|T<xu`@t-l}B(WTeyiw8{r(F9-cA~!P8onDu)(k7guPqFqW6D
zSY5qPFv`YcJspj9tgN8C2pH34EoJ@4L)ldn)-;mqA9k1J7x^T+$@v1~>>xaDV8Zcs
z|M~85b+TlG7afT=4nuIQyJ1)rPR<Njruy5HNhLlOEY#EptB4wZU2uq$bAMrED~?>E
zI&8Vf$LX*Ey^dI)cQ8d$Lw#UgBtfMHX`)wY&4M{&U>C8xvW(`R;o(nvvRv-EMt1oY
zxwOO`P!Kr%_?`ueg|9|+A0YrBKCsc#xsa~dJLLqgRBLlLN!?4X*c6R=Yo_eu6Trx)
zPy*Psc4#FY*r<OSCTFsM60#KtF$M@LEk+^ZkqlG&_|3+s3YQ^rkaLXQ7h+ok4?Pg|
zk;oR@_@rJ%G4rLDtre6?gx?NXypAo);~TZd=fZx31d3*QqnOeNSvE``3bfQNiMhi&
z+hqW=AzUL`^-XC_bIrF^E(ce@1NyI}AcBSV8>G3N?2@Ins{_@=EP+!ZCUeq_LF6RP
zBEdTW&^7%quYYnuyD@6Eoqne=AD<fjv0d9yjhoCIVJQ;Mbv6p|;E62ACTu1E?-wd<
zVGtOJh&{pbv6G0hU$sMG`8onanEQ^nw;8h8+h(W%4^vcyTZpaj;$Ahk{ip0_P-ruD
z#RjL`nMU^k;|wTIu1e&u6O8WS=kSsQDbTG0J1O4YWb2?LIvnB2GyBhXbbMgQt%7~)
zTqY%socioUq|iAnCW@u)5YPLC7-2;*Fl?6r-KjACmm)B*>7<#<=sTJPtP%WGI&~^N
zFCfIF#y6<1M=KcZ?)<z9ro-xUs$g8BhTUu?Cj8ILeNuf)5=#TU{1_z@HzPiY{BwO!
zfWnEcj*$LP`tk!6mbc?q?LfRS29M%NoS!)2TzAEfpKmv2V3Rinh7+r?7M6D-L6g=x
z7?RI`9!mW+*NhlLl;cS57||WPq`@a?;AnaWWzlDo&^UN6-aF(wM{jNmJ35KL2Vl@c
z802=H8v8jYFDzI3ajR<$4H+P;lshws)!jUA{12SUpHGJ-kzM5ZUTNKg;-fwP)yN~4
zgZ{QTkAh&O6_<d&x7sm}i7&wWHIt$qV#u@&BMYvmki5U^AnW~T&gG$-F_RVHv-z?R
z2wzk}<VcD2^GZh7Sb(f>6yGT}YvvRqtaBddfK6hgq8Y9QZL;`=FvmU}s0}>PIwTNg
zyd}kGX!@$mWU+z-%&Fbi6MJrq?$DonCt0q4H7mHaKR_0Di48}(R=Dc#x^-$~T&6gn
z_OhJV_Kw2o$LYj>CN_>r>FK_;dTD(sM0w$6HCW9@lG&4Fy!;*o>-6<j2(|5`ax=Ef
zJjePSpZH9p$yXosdtQ{e-!fd}+}TyB!njAdo{QAd&m1`)^ix{`;?)HBoRjg|MJhbQ
zFtLnv2e!#TBD3!LPZBW>&l!|N>w`rWj!aUU%?s}s3qHMm7JFq=eH)$c6H{nprgqd^
z4q}6M{NK18qQ4?f_cw<m=yg1h73O`XI^FQTK(;l^vMM_2(YE@|6Ac45t&~5Q3Ga#{
zVdrn<U>zggM0y{iwH%Vf5&w-!I9qq&=I6C5rnzxedI4B&=s_0;y{4Wv$}e6K26Ico
z(Q^GIMPiHqb*Gs38B76}z}_KuERlbL^h+_D8(sbSH3vE{KRHq^RX%3-jOSZ2wp|B8
zw?Yz3m``8yf63X@|G~kuGqTa?N_M}pE!{jPoqNPX3gYkoOYLMSD{WnGPMVnH6JCs|
zuy_1IvGC3`rGqbNBlJ^4{yLqYj*zNQ^sb=l_4XuAp-fmDI)kQFBY`_C+eEUbW_6-Q
zfz*(TQm<qo*!0G<WYF-{k8B)Rq7G(EO_$S~o<ow67~W-C{*6aTfhA_R+lHEmmQukg
z2M%k|%H0nd08$6ZHzasJ?Am>_#$3J6d_e-#t6Q7n-n(o`kfbSJL7N2Vve)yP9X|gi
zN(r(v*aDWwTKvt%{TQ1{oJtj+VHLtm_*KgAN%DPHk0kLCS*oxi@UW!mG<SRL)4uog
ztYdQOOTtN(8zki0aO{_f$6T9YVaoqY8wb5c3oTUrll6AX(_rFPnfv-`3hnFpSBMWN
zwIA{?11Y_Lp!{W1GbLdSir1UF6uNBtc-B7gI8Eq)bj||fm-m3j=7~sdO=pz%aDp`!
z)R-jrJ6ZRttm*^lW}MHUCfE0x7R)M0tp=I_=n_{GVEyC2<pMek6yCLKYpO_CN;{E$
ziy3m9M}xX~TU^eQQZ9m_UR>4{@wv44i9D0GWM{Q?&vZMza?4BURym9*+%X<q(0IY?
z*wm4n^Sq<@y#)#BI*@UTOmja-2NN=_(vtTC^Aq-KF~QlmlHaCZ&Z{w&@nE74n?u!y
z=#->B@G^|G{p$h2+X6|Fzp8Q|N>$)%|LMxJt73R)*0be77FLMtb93hl`i!D5KdrkJ
zD>r_r>4*sGiZQF(3&gD!#X`Kl6j1=wEt_Sz)9hmp{GDDKCo@V2s9I`%G>;^Hhr@wN
zEt40>$_f8Lf5J7Ftt7_VzVvP}{-O*^qBj~cSS6BG75chzES@69s0GzWp7J_Gp(>OK
zlaWOk`TV}VF)?sUrxu^71iG|5{|gS4plF#mO#{;|_AYF9dfh>C#(F|HGQwt@IaMi*
zv8%@RaP?bm53@fJo|%ZlQsZ6ybS4>7p~h)#<CP-zD3zVk7Mw4B>-R&{wUEYfqemeP
zt=PdnK&1!C!nO2;A)6SW9d?0S^|Fji2K6w^9DH!#<H)lk1|??Zx1s1kcTY~7>$~`Y
z{0Ek_!c<I71FbM&kb4wf3%mW9f&7Q{Ne)DpK08<q-BLkTfLO2eT>LdVB~xgSySAUT
z>rqiqhN$Ys0?I{+EmVmAPhFH$B1~L6Bi-`}%Y0P>mx#4L)~uZiPl<xtqm9jOl#>`=
zk7OVC1?>>K-`|tV)Su`ATw$mJQ1}<ux8F@M5LiN_suV1$mz!p{>~DZ-_2tI%8~JT8
z3+R@PVi;W`t)f?q@5G{$;vX{Ce+5Ud80PP=$WI69$xs6|%}yfvp%%G>UGU5;eQ>Qn
zNhoY>3?`B3DRHJv`TY+M$zweF?6;haN?1#fm@~WzW}2<qlluxu_AzQk2DlNyp>Gd@
z;X>U<*A~Rn-Q+P0aISu3$W(%r3NauSgDq$_rrSmlzN)YsnV)NZ-)u|SR0#YhgoBGu
z%Z52cFh_&?DnadTX7#JGfQS!=!8~IkAc&>Pnaod!L&tXw2-bQ_f31}|q4qv3?HoKc
zZb{TeG{0hd5Vlp^?ijIpX;KpdgYyUE;QfA2)fg{!HCt%@42XOQjnq&@1?uo=Dd03B
z!_FPYt0)7Jt^|@%May->is-DVFgW2dsx&ieASF1?sKOH3*;Ac*ZiTlknc+M=E;if^
z{imv?-?Bbrg03A7H>2*bN~ICb0}wUkZIsZHoIueJcJ?4-rbz;_6w+^u-c!XKT*RcN
zF-DI+;kC-II--F81@BhGZK~}OMAjcFD2~ipjEelJhI#>UfncfaD$kE6AD&VDJP!uU
znFy!Ea87A!yPwkyf;G~B5mloy?xY?vC}YOe@)M7Ax+)9ep3{aqvHOE7@Fz!D5k?Tb
z8jIh^Xs!zZebND8(wHOL39`sm3R%=bA=9$e|MyKXhIP=*F`*q`)}s|bp6<xd7%Hj0
zM6rdMV4lR2K`K@;caHgp`U@btxUB|S>=+p)lC=LAwgGpa=ZkC~a-@lpNrUh`FU16W
zgHKcTzi_*p2(?EO{NcWI!ZVUSG<%w(N{SoLAtJVAYu+If?g?$VgT0s)<B6XBZk=1T
zYZQ?j$8rGHdnC(kN&a}0wiTge1q$IckqPL$Pbz$`SevLBoyZ2e-nf}Vq8khTRI?($
z$e>_TnG}>!eSh4KkUJS{A`@%iE)d&t;&xCD5cf|1T*1>D)%~Hott=t_o2y}eiz6sv
z5-<Q2iRu|^BqHP-)6P(-sIoX#Ca*^rRc^+vclvCwI@k`<rEBW&H$Cerx=nQUH{GOS
zuqV(Wv^{09_yb(L$cljVC>Pv=qMbFmtHq;7Z%MJ@MLi!=|B%M9aF?*~+Efy|C?~s;
z%o{pc>Wj*ZcX$W`D#NbNV!{16Yw?%RaxGJFK|KVqjwZ^TMtrpleuZct-S#533!Z%-
zWLDJVgekO#X$ksbkZVDCuTjlSLp;%U=Gwq?)g3%~!-bEu8vQ}r1NqmGS&3rUyU&{f
z5|6`Ivvg|X7fCz+{w}{PKt~5dTtBFlQQUo3)v#eqwd_l@wSz{qFzC3HC~2eYmwfBz
zWz-H9Pqnci+!bzHVB&fUTvQ&Eh}EIE!&qFj;sEa<(HrG-f;~GY7<^b5`|v8o9BXr_
zWyT<WS|JOawq?_adb#HC4oXdz9@!yZeeZ+$bp^;gCKVg5Jc2Ey?G-HpbM9ym^OR!?
zz8Fbml?R_zF-s;^2Lp#2Q5DP=^z!PbgFie$JL*!V$IDzmK1rermoiq)hpAg<k5ue*
z2Cn8VI)Pf8u(v3nSmvx<22RlPZKXrYoCc7}t-pAd2*?$3l*^VdmS0z<jZ=tiEB5n~
z!opG<M_R?UC0m|p(k9%%^=TvgyQlg01I|pc`VNP+&s|RVyqIlO;Dx}BaV?YS=g)Y<
z)3mN5E;PKKAoPMyT`O3GhI3>L+i6lm|9`n!2@cIHEobv36cUoQSFLI_i$KV)i&{`e
zqj6Qb8h*##V%z%1SBikLUaBNgLtNVV%dwyy0n7Y+6;($V`vV^9Ji=e0JIy<7zeBtc
zJ{Jj3SJg4~#D}DDW36fY7$E!XrA55IbI5yWf0`1@rqk;8^MsT3N@jXlgD*{7l50NH
zwi{Qx{+9Wi#e|Dm2Z*)*6~oE`xUZz!wNAZie8MLFh8z#<Yof|Lx`AmDYK#W7w=!OD
z1>(F;D#)K7OKO)cSJlWN6@=|($!M40Z_egGRfriBqjG%ALC}so&#QDTp2Bu?1pHC3
zuRN1h$37_bd-Zopfwcs$3)h7(&wEtEMgqj&_SfN+3r#k+<kFf(LhARwq3=Wrnhr!F
z4;`suL+EG>%W1IcVY=_r8PUgZhdqA<-;3;nGmlM5)`c5fe-h0+Oi_ckL4%8l>_v_v
z(r{1_nTgBw^)WJC!{^|pIbaCyLXOHW<oefp#7X%Nf(6O&VZ`L|OJc9-UHE};k~P;x
zfLL2SfaS=8+sBpZ@sCnSz-JQOSLfwjjvvGDLS0ATOzx&_SLIAJZTSvKoVYamJ9FnS
zxQHRkSDe)o^$Ih3$LP6sW6n&XpQ?nsA`h=+^khdgjuZOsL-lZ%RAwh_fWZ=f{?M&T
zP;gLV;^;dXv_%eplcV_&nU3@YH<ccegr5A=#y+od!l+~{K|_KBUl0UskDHu7$v%5Y
zRNnYUTg)(2QiW?twvSWHb7dsGtOQr#u0`f|ZSIS(VN!I>5?+w+Ve~iL#(0V*tGoMw
zRpjZa20@)sDYPFbNrru;Ff1^rnDKmkbKSUp^}TMOWY0)4N{TlDU_DAGbf{Vj=$%tX
zZ$<|mq{oVg;!w6fJoQNgIZu7=P1tBQNXFRMInaZL=LT08<5jk&ColATzxqP#6pwQg
zP?#wP#H~-_t_Fc%;$Cf;8IsEs@d`Z2M&C636a{yQ_6`^wysvDJYvJ6@&!gQghz5L6
z9OJF&&}26>gF%IxMb4%+hZ4zR#rj0(_X%gR*@D?cx?>_O(2~M3gAmgUx9c-KVdkh6
zz;F#`8U<vy(uyDhLEiGl^~u6Efy*3^2fTw5gDSgxB4(lRxvW>=phFVZKP9!1BevZ9
z7jXPml#_h2IH&(|N1hT7oU?@9Z(+{*TQFW@jN6tvq&X<X@$1wx`LYIM5>3adt|4cB
zM1V`FwX%jkZuuR5n&g|n{mQD**>l%jj62|mFNC5vLp?Jeakd2E#_VB*y<?Xmu?))f
zX)cF6*O=O!OQ4A_QWWaB<KcW+qzX*&zKt&>@O!G=pZEQ}SpIf+EE_ji-`gCZ8qZYQ
z@EsO{AdmX~MB))8bJ9z98+)`r<*%0r5<IO&bi6hq2l&~xS`+xckeZ2}{;jwrM&}_t
zhFW^JThp6$uvxBP1Kf9?_q1+hQCnEn5I63E=aM|P(=!#9)CDIE-F;|O{U>|}byp<E
z=~-i*r)u4|6+O_6kG(R$4f<XXEUwVOrK+@wJzOboD3PO0^44OSCW5Jcy$MYkNX0^A
zR+9p5$V3Ojb*$j@yJNUQkQpMel`lCJ<H;D8BsIr?McsH|2{tYG@l|Iv@s+@=mPpvV
ze|H>m8DBqGi>HEkA_g${j_H;o(TI(2*B#ggkk8N1Hi#*xnqDBN)EQm)mAg2_$m`Y~
zd%tQQ=#+o<l*huqk;{Pg^eg7y`&It;0Ky+s6@5yIFHnS*SVq@2voOVdHYU+{UaXUB
zqi3c;>y3B4)t?N!Gqoq+PNz%0_`on9(YO}nugE95!n3`m&s$R9>J75|ZRN9zc0JoD
zSf~HneeGLW8_s|zrqBsL=@@c+$B%7V(9IA%T$ntC`n`d5SU9v_lU53f&*zEzrhZB}
zl(9__T$4%TE}S+z165ZEX}kBPN_;_ng>WKts|es<)oDky$@6cMoj?SXTYu15p_jlz
z`;+y$Ya2RCrZJE+b)-AxK0|r<ztL%oQG;o0{%C6l2}14)wkWUol{?F<@8aai-+Ayk
zM0g8brxZeyOS^lQe-+Ho!+4xoPFxLgEBb+bDjoCDwMh3y9XZ+nqA_`B^HxYMR+Mi6
zHt<i9W<{?s>6*Ny;wKSw?1+q;XFN~%_0ni2LkE`lh-D<35p$9VTzEh$mTTVqw{_R|
zrrNh=#Le85P=io29YPBgqzl&;jw{623!PzLXT8Ub@+nxI8aZ@|DKRa1&arX@XDR}J
z=xwPOc(#}-%HBD&s{wXG5Hb(ga#6|3^^^_BUuwbo9BYZ0b48CS?$Zt7FT0UkVFqk4
z!(9&z0JIw4XDm4$)REMl!?`rlpCSKE>R;>zAi93>aq89S5rH!}0O4l$U!PNgdnm-+
zND5%m#B21j8GAKEuk~e*(LC}%BZ<7X<3UiHdz57Gp0NFMQd2w-R%iw>uLP^ZN2ntg
znc4E1xAi8`LMQ`tsjSOY#A`~q;ySW`pTkqwQ0;%kTr2|`@<_cnio6E#hoy#P37;TN
z8*c10Q;Rj6L7u01A@7JDYjZ9ge&x$@QYZY?6^f8}TB<x+gl3Fg-g%e$^(>!^b7G!{
zAo*bnMPVzFi-Bz%1XI7}U11%7{uqcj-N6-r0=uZ%J5XoErcaT71r2=)qEA6c0qf_?
zOII-v79)^1spt!BDdMx9hI6;gmTN<we<&cApWAa2qHj!;qUDxgJip!p;)_B~U%Mmm
zzVXbTey1tKtUup@b|pMR=fN|t>a3T&CLd=v@%*{eq#XIqW`PT1jadiV9xA?!m!<fY
zNLr1Cto~bP4t>C+d-Geq6F-IcFqJeJE-+6#+7Qw-iSLO=-(lPd&p^^57SN7;0N{1l
zk@Mtup|}(e5NSgTh)+=_yxaxDW0ISp*a(8{mJ9XyKw+?g+7yVyHt@0X^w`Qhk!*?6
zFylYUnMo~6DaGkvu$hAh@FW?)25oh4EyO9cl7mF=shvUz&eurNYgUTRpeJV=$BtTv
z)&@ynWp5pdaIbIsZg4{MO~&SJGW4pGF&!14gM>+56B=)}OE7vc6)OI>@M&}bgz+V%
zAVrK>Y<OM~*9g?%L#QU4-H+)kG7Aj|0K(KHUF0Kq`%J+7{wdG08`YruNka@$6iTLs
z&(tZ_+Q=i`YT7lp?v2)rR!)R_Ak%@F(|}3LCBCHSfOYTs^|f^(d57$gU6#N`iJ0iY
z+w>8xP8?1~Fy=d=?g}C82c4+T(JH;72Ur*Rt$!pm*j(6{m)e);YoEd+Z|ItJA}*qw
zTm|t|(Kx>W`cJFGtr0%}Ol>_29sGJ)Zk=mV-_g5&pXyWbXE6od*?k3kvdedHepK!x
zy+ASxZwevR%HpG?cl}!ozPi?xP{jmYV(g=N_hvmkqlHK5PW4)6y5{kTky0Y;6nE4R
zlgWO%4$8Zvi05WP1^eM7;qQP`@#6XlB+&>^R@P{bp|<h*8UJz5K|4(;nau(r)D>s(
zzs{8LoHCux>GLBeI&oi(eC12Ddc^a|**V8GWxl$~R-M~%+Rq^lsPsUp!CYRUp30qD
zJq&f>`)ZnPG?BEfKm;Og(!{+S{`E^5o7JaE)(52idj;XU?jD~gNC4xnwl3y{K38Mi
z)@DkxJTnkpKKXhM#=AOwHsJ!BKN0-RCmtuTXjURwHZ4%1x<-zwQt_U-E^C$W&J03j
zsbYuVW_|2|1=Ms`<)VKzEUe@>BK`MAmR*?&0d)s&-cKmRB(A+7&n0T=oM#;HXse9K
zpl&z7<4De-;^Bqaisv}|@pAHmkx1Lrk>E%l2*t&Rm7}#7M^&D*cikRYMcDn<W&1mi
z%<4iE>asS!woA-{f6LLszgS@+h{n5JQlTro1DfoT6pZ6kvywS`@A7k8O95ChviNjv
ze^{Lnf6s8o$Q@<DxiTk`xKn=){dP}q*w)??WW=YxL1{)qbynT*(6IkJRKw#YVSEYD
zl_1V$MO(rsPB4+&^gt%u(q;tJd+Xtz6$Pn1uTWOx9EI5@oQ0!ow(5hkESuQz*)PW4
z8Xp?~2U2xwUeO+RKsJ07XXAT4)NxDpmsltG{W;ymvKv)Erfvg-=CvuUoRgKhMD|p1
zzM>&5z1)j5POxZmPpPq2E1)776gb{*Raq%*U)_gOm5AU<II8v042t+GqGXGH+DYl|
z2?xl;qm&;Vy*U}!K5LCNx1s235Wi1i|0lDewecSTR@}l;@+YqlkT_RUjLOF{G7V9Q
z9YAfRmk6f?u+q+$7yrmMoDE~P{c^o`@R&vttw^K+{%Q9ig1SM)_-|{DmeZ!$Wsc#4
z!c+Azi#_M;jFFcl(pXHXMfsz3F_}$rZ$9}tp>{`Rd!ynWN388PKd;o-#+))FQRK0`
z+u9~^{vpl)z(XY_S$<pz=-bfAa<qM1hxB^poQT_{qSI&RT^}3?NfR>r=}V)r9NSxe
zw?JIiM@Il7;ifbh66O6-!y&=5k_PnbAuBw{{9Rb$6r_J8C;_8Py@^3rmV?fVmTqNW
z{SOoA6dN<eRBGt{t?R;6TB7z?%V4=c;8ZUSLVy9}p$LiN7Q(ujR!7P%4c#*>Na%0z
z#goF}>DCMmVjkEt@m#>?5x0zwnmPV8`wk--{79LP{6c-W!UX(lTJPwH`+1>W$RMYG
z-+6=V2sL5Hw;9+S^fzQSt-4B08u8(|pQHVOr~GY>p1}J#LWe%5_<^Y?g3x35@=$<W
z7wYF=cw;QEs%MSHhZgig8Ko?mE!{Ch4t}io#9Pkla6C?EfwL);6g5XJ2rMb~QGM>4
zu>RYHNe%=a2bEsK+b5j}r(u=^%D4)F{cX+d^u+BtU5Ul3SaEeF6{N<dd^0plcVDfu
zLv0bis0%3F1On``-)Jk>wX~Gg@l--5^VpooCnpIm<DVcx{l1N`>^w9gt~0YZ6Oucc
z<HAE#2e_8@$a=cITJ-f=K8>Po_>_1$#~#LI-ROFL^%6b~>(8o&WFGAj5RN#Cwe?E{
zd8HJw8z*umCwhGopzD`eg+p|2%YFGqVi(Lu3--ftib|8_+KqCna)!ZLBnwMlBMVYh
zF#9A0PD#x5C|~mH{3wd&ooe<BM8Q|RyEB;Z?-p*?TovVk17l5jl2c5X;EqMIioRn`
zSC;Qz=(Ilwx&0Xp=xMg5dA!`5CyFNB)wi3gY9oqfDG|v%HN5O1V;GRSZj-)GuNuE;
z?;L-HSGx9gzSxGF<@z_!ngrrJ`p}q;6&oLw5&IRUhwONM_`^<}Jq7p|+#&`@P4`qp
zZBVgh<wu9hi12ey&n_~_N);CJF3=z3bND)oQj2zrByGp}(KjOf5=u<EavSR`p|=TN
zbZ0kR=1TH<cxrCmFPqDw136Z=Zo$`I>DrQr6k`b$UqxuICwtcq>eU5-+BH}Rw8q%^
z$ALoZ(bh!=-p-3g$lKOq+0LE{oTiFtjX)J=erAWR=W}z@rc@i`+1QQz(Z9ja=@j`d
zf@c8f7O+{DvD%e-vDEr-nPk<to#!_sOu2~ayNTeQOon&VJ*FE-OcxWnnmZ59fNOIu
z^V@5t_1);_yebP#LH>6Hl^hSG>we_^$iS+(=pvO5(~vuWgl?*j3FvcrU}4_ni3_X{
zBBBWlYVA3aS5Q3jX8ubqPXyQ$gP`1R;Xo^9t5HJJC`1Mp-S;=QQZn^qzN2k;Y2uax
zPoOErPl)5QUl)+P1En9;u)>+&#$<zKQ1-hu`%{0p?C?=>+_%#;2rCnjk#+@zj*<p`
zkGTP0`J5)t1k}o=RxQ#b9JejoKA(oUyNlIG+yW5qD!49Fo#GQXK{pwh7X=dii}dDj
zjtLb#SIQD-VTp-83G=7Cl`l9Du}{0PAeFHl9q$Uhk$pE5)5AOD>*8Z-G<_p>j)u;#
zW4XaYGFka8d@U(N6O#El8nK#{xj0fXNhq2)&Rc$H6Q=!6vOb(pM%WaLZ}}P?OiE+0
zaB|+(#McX{RpjP1Eg#DU8+Ey-Kh8DHwK?BN=a|rk6e%?HCh`83&Bll?b)wDkiO`Yr
zgR{V8GSIKCR1mc?S>od4JIIQ0T|<2XLnA&LKG%M(Su{_IDyEK+6_=Pf3%*Iil|TRc
zXWRb99X04B)e{;GO2qalXug?xsxs8YYxGOH57|Cx@@!8I7zItcCUE~Wq<U1W>s=Gz
zjRPt_xB}DvD^vH5QOP$5KF|875%^C9D}Gc~Y@%;KWKq{hTTQi1SdJ!POlm=Tzg13+
z8qOgN{J}FIP9dl^-l67y(R_o}+O;$<vjJVnu(QvAbNzXRM2SlKm!N^bQRv0#<<}o>
zaf&B&BjoD;VI|wp2d_JC?D0VrUiB!x&_ThzeA)69UGYI1bNmNMV(7$DBIyEX9$nb<
zC>p}D&_Y-pj`<+&Xd+;<dF8=v6FGohr$FZZJJet1iatubX4qUB_ixAx6rI?dN1V$e
z?i8*a`scL*2a*(5?W6bWitK1VNsB^ShV&$2_c2aKkj&|-fd4>GI0b&EJLqG@aw%o=
z7MYKo+ey~y#o&`;W{}_H(mnobRd_x|d@3C>fFxdl{_tC(vfG9PM%8F;58*?xKuQ9r
zhf$t9Xw3l6gm5cYcK!I?Q5upE&E!uth<l#Fegg?Evegx8CVtbcq+eduH;F7&W4*RN
z^?pWSXMrnW*+bR0RCODgjvMJt%hQ5KUdsg$mKysFBfS@@2D{LEp7}8R{x_s5e&?l3
zAq*>jwz_)hby$1~t<%$coHBwBw5WYp=zfX|y=MAy$kp;H54|GYo@Qn-z(pWf<3DOf
zd80tS+{U~|haF9ma3Oy-XEao^@cWAc^U~8FR2>Zy_mpBp2$VN!idBHQ4;V%A%740I
zh5-eWy1JO#F>j@`Ni^|9W0(W$3tQxoO{_)JKOzwt7rAqK`nM0I@5(V-2QaFhkb*+q
z$jj?dV%wA~QELgn$nwGULk;n~p-r-{Jg=}%wb55HZp1YTG^sN(PYn?%ABTE^C#~gJ
z4y$Of7ADeqtz$Km!yU0;n=2^84D|Y9_0-1ZJJ3&}Ecfnn;(do-;(O%XaTLkLmYqtX
zqhhl%tV$l9hf9^mW>N1Il6;I6xW>8z9%Qo|$AxQ}O74)1p(s+QYz`i4s4S)@+wVjZ
z@wjdhOz>L4`&!Hv0s{>U^!dBy+XMr}mROmXM#2wQJC_M`2*1r$C=%MqY7YsG1^xsM
zwZ3rMB~(8O1@u)o+u78mpUP^YPxizl4s2H`wxnq|nR(op^L^UPLTBjLvA>*ik()w9
zQ5#3lCtHbnknsH1nOQi1|K?rw%_6Zz5|jVN9@hGdWmy&Uo@UaSR&_mcs)Lk%FDLET
z56l{u@m#4yjnPH+vj4gz4l`{4W&}gl3Vdn?*cDL@AcXPm;rlU-!<!rByPEVu?GLH#
z-#@2{eoo3dRMVViIF5d7zhwo9Lwi2)4Pnwe%aZY>X?4%PEb`G}2jiMZ-26Qzv;WJ|
z8S0}RW1{iir#7)f{~Nhf6u+a|3lbEjgiDP;hcx2fT-BZM6XwLy9TDblKJw$f<DDh*
z5eJZc=H!nS;F8Vt8s@{9nV&D>e<@ZAviS&=*;A-FUknm$oi2duw@TFzQ4ih<UMRNH
zQTTi0HxgF8TvOibmd?wgPr$vS)zkp3Lp>95o@Rd1IhYaAW2-4L51Y&{PcD`y16?h=
zIh+SvZNV03_p|clh`d=W=7cupZ^WPDGxKt2lBHwH(RW%ml>)H{_a)&2ZBQ~H9Rqib
zW-E{fB7r^%VHaN1nSdT1c-yu0ZlCqYG@#ABdAv@)K4=z!jb3A*gn{WPs%x>Y-7UkM
zyYLWXWhVmPjx+c2lj{~zR`Y*-eg7w65zv!H0P-{2U%8-W(-*PLpNIEKA$|HXa%n~<
z?Y<Q)tJ{udmhYncK(3cR)w=QbH279EIsb04_1oqn-coZ9B#?A6^tH|8fmYMT)y_C*
zi9aE>e~x2HOznMlr70C$K#UYf0<}B=YS#Xx5|7oy1|?<3s5xy6fqh$xq_Vo;#xSpU
zQAt<rd>nlgLhjTbbu<(UG~%(3D-IqV&rW&oTt@7yKiY%1w+Iw-XfovQl2hnnvcE;(
zp;FI7y<rg5cv5)+Lu9Sh6@Fs43-_W&o|Zp`XC4`~B7n1X!^HWaGb=d}Ve}l=+A+$z
zla4onuoq{+#VH&&BWEW@XIfiqmu(dICB2_RT6A?PH`|n#y@T=GUWxH@Q7;$~J+M$R
zzZchGc0h5~9i1atgSIQK_1~CMv^qXa9Ai)U4@q;>5uds??N(rqMIA##SJ~RjkPEk#
z3Yx^HaNAygS@kNWr*aA~?7-0{iXRf#Q@(}z=$rGyD7bB3=+@dB1JV<7hXB3|5EsJb
zi{5{KYO5fR5hf_T^wDMd<Nm}i%=Nrto6;{eqt0uU-UE-`TD3EIyqMjvIB(RRlRT%7
z*Gj?l%16WC(q;-k#!egZ^oy$R>2gB-LU`hn@PxcXg;=V#azkU+hwP+72AcJN>hpeW
zDib5_n!0b)v`XhgSK_p|VI9{5Kls~(6T1t``D$%LA2zH})<(YgCgPEAK^iJLiaG+|
zovNd?%BjlcjM&w^RU74`-pvlI^ea#BwOO?IUFxa47#aNlT`Mh>n3Vt4-AT?B6xY*t
z<RxDC;ju)Sjj01{VA`z_q$Lu69&8HzC0B^qM{{f|L`_oDx7{SMMIQ;HkKD`)`O7p3
z628GwNG4D)a1s5Uwy@G`->L9css_93XLi=xJ~o=Fs%Tg5?G{jVb^k5QmUz`D=dkpQ
zvJ+IOS74NQCUQN>`hZwdXg)$62buaOeVBBA#<QW1@v7d+i1}1XxGK?i_%azPS3jT$
zOcR)`k?rm4r{{Vq$j?;Ok*};W71o8`47s2mbW;o+t-Z%KmsVoir08^nz`8UBGCL7;
zUJSCq(Ia)C0uj3(FUw$*oni!iw#<cJYT`J@Mp3<9cJlAhYyHj!*Avd@m-hPF%!R!n
zFGeK4tfA9QnStJc3gH+NIS$WJ*5*AS1)dqd@MBKVp!26MVdna=*g%H>4Xf2wg<mX>
z+4L9LIK)4jE492HwM;1C9o-wZOOrX>#p9Dsv<4M3=&8OTLii3id+$tv7(ga=Wi}+V
zx<fy2w|Hc*^8aS*^#{vmDQ3Gy!YTDmA$lI&7ELRO`l@hvTgf3U9au50yXG9SRU{KO
zYTBm!@!NH!W>4k}OK2b%*^$+2KHShVlmmG&#z}vCj2nIf+ACkhiy1}fQinA{`KcaI
zbB)+BBlZjnLM8Y?J<}1P&B`sM!&Q%O|8}(sH^qn@q#JW>)2t-h$uTzbz9fcB9NNC6
zYOOs%WP1-^hHY)&N;8#O@Y$}r%Dzjd<2{`Yq9nP_(R4XE@G%j9-rQ|Qr>cPuWcxK#
zWj51Vp=eOO8vTO{gBNkJ<j+SHC5q=#Rn5C}jC$|d&6R8<p){73UxWRkP$5h>pcF`z
zXlk#VeD<9+8h+0(huX3+D%vTY`oK8eX}xcb9ozY_W5sWm(~r>`Nu_@Nw+@C`Y87R<
zmxXd|4EYpr>55J?d?gXarc{=;vq1X~;@~*OS6#7TYpHr@=MAc#0yzfy#+&J``DB~7
z5ji1dHnQGxGU?*J@zT+7n)>>I5`zajn(b<9CQN2mSI*^o=b+S;#B~V?iW?-&LwwBT
z9LuTI=O7g^j}+|%NdPnUKVpWCw<0n4XpG<JRt)<WHl7Xg2i6V+L(#V(yg3{97h*I4
zJAR^kHlm^+P5haw5O~vHxp-w86Hv>4q0K|Uy|Li(jW<1Y6?Is8Uw6&P{nmW?zX5MF
zYz^c*D<UKKWUvaO6brWbvf@$I94yV0uD(?19bSzJls&)a^4uz(=O>-fJ4p|YlbH^X
zMMdDv5nNP@qyx$=x07l&YgL1IM`)ap<$3e>kXn(xZuXa@DwJ4Wgcxd_f0tN<>HTCM
z?2zy3OlymVMz;0KqXpeA@oD0Oz6Z#fD{6IjU;&l}?l&J0QPTcY3PR)F-WEu-=%xwY
zU#UJFYml6zmQlnrL@I!jSA}cmEQ7(^3)xfGZ3+AW8k*1VoTthi6E01*VZm!WyZGhA
zO@muKB?X6Mehz@;-rxc9z0J)(%E9z|EH0$=bv@g{zo~UR-46Aq*eOdprPXob{OP6`
z(h~C9!)v<57^kmLu18;9^Jyp7C|I>;*j(GSb^=cX21>az`BpYp0(=k$)eU8oMJoXO
zhl1tRaQDCgl0GM?5YtUkAE2(jxAh23qo~mp7>czY5NwaQl|uoqJQ!PSO;=oWAE|dd
zfpb>%AyUE*bCf?7{El2;qhebU2<}AVJ4QY%0hlObyt?&p-6n-yPvFOA2qHL;8gJrG
zT~UrJOx=+KqaOi^FAY=!BkfyGR-`Vgo)&0<Vi1v0EmVYIAIsV$;T@w$9v?Y@6*ANE
ztNxLP(Pz&dYJUXaGr-S_c2PLPNZn527gcfUja=9JdAV=)If*c#$v0f9gl#qpcnsy;
z!dyEUd{6Jl%*ek7+J$qXi!0}Fh>PZt5?J)a(@0R}9eq~MmX^3Q`&8(EbyZ-$tOiAr
zhxXlggTvXmS+04Ah=)xVnZT6Gdm@7cNU`GKi)Pu(Ta0RQ^yrMf;2Kla_;9b|WhZ=c
zg<}Qe)w8|QjHT@rI*w-wH1(s!CERGbSHYhOKHK^Vbr?Zj1;Wh)4`BNIs^yVL<o~cR
zmLD7$X6C8pQiH%E#s58@dwVS|(Z!+UF_nlDop?XC$xj0$fz1BJ-*Gs=?Ge)~oUrwL
zh$Hww@I@)ZmX?uBDXiBvyAVt$xm>p{@sbjeWq87=4p<3!y)06%V_ZP^$`URtfZJL-
zXqZ5mgQffxZr_MW$5&|bHcr`t!&u|T33#{Y0{TCBb4~oHKJiM(dtn*}6NHR;Ee7L-
zAj!aXRkY5$I+;^lGCF|DfWd<|Uy*XE&4ShpG9e;tWHsi;2>=E!vtgpVfM%vp_H}I2
z8o!#>m7&f^cA8N6KB8SWf1~}olci+6)@8Qo?}#W}Upgyg^$@dxs<OJZsb1fs>+kZo
zu&5nUi%M=Fz#7JT7g1f;Db{~2nrcv!kKB$xA?@ZYZ^fyETw0zbD?=5a(ckWecws@!
zU|6I;!g{{?kLB^k9=4$s0RC2({P1>}nORAsOsRdf0s4xt$%zpG9w{la{C0cH=k{i{
zH5}mb1s-JSCtO<R6(goK=h--L3Y*7ii-f+Mh5Nqtzets={~y-<KX{V=mut@R|7enI
zEdO!M+5b1!T-SylB2}sDKQ!+DVeK7*L<zbE&9=?kwr$(Cb=$UW+qP}nwr$()-uuoM
zG5f{F#LjHQ{>vW~Rau!4S#?gHe4cU-4=If3MR4E4?~z=mBAvo-J{X2d<=8TH92bik
zyp4YNC1)*OB;~hZsKNeR<-^;54wH5>EEO(CMT;`4plHd|^r0e%Mw~xaK;UCMB$yQ+
zZXpR=(S+4?Z~gPg#KNI+V;NTjiv?2yp@*@fNNY2ObCl`M;+IjfhT*+lGbaOmQ~URe
z0+R$Y*K&6Yw2Wn<g6HJep38fV?h`h944mMVkhW?n)#QZGiYWfQI|{!28?{Bexw(a>
z%w6!Wrf1tjZW3*B0+0QyHjxQ%LHBRCAAkgJD89#Mo@*2Tt5Ib7zen-^3*-F1sOUlt
zwswNHZd(5#p0jYU&@!^IurlGZaWK*{vNN$T=+KEd*gD(&2MVh6-*}-)bjl9;HjZ}s
z4#qZy?*BC-|Kq}cWKfxZoKXG$*IWMMjQ)p3%EbC#T~IW3v~_kcH2x2IRMghyKkRW)
zdVD7K|GbwXohZY<=6~c+|C;|(iuCU>@(#9!O2$rFbn?QYbjrqVPXEOh71H^CAk6=V
zKKp-<F#k_i{<jEoHm3ikN8*qIr6CerktH{lj{FUv%mdkR8|R7kq8uh~tB#ZI*6jz)
z&hB$82h<%m_gwy$c@PKh-P~jw-R<8J+fZ0HtUG>vdeYnlyB6w|vm`6L)d#s=7>~o_
zLT~`v*oGiVyP&$bvn+-=#FLz4M1N3RjToP6NTw^&_{>nuC&`KSSGF*TKt^N!TqeC(
za@Y^LooXR^rS8et`J^1CpZ*!rdKyc0=_c5we=c5gYf;ezU2@fP_3m<8>OO_4qMrk>
zm*0Pkcw5f6b7M+lH6<1NYkz(%*(96JZ~Pb+V#lcoWk1f#66;|=Jae~2T`URrWXkaQ
z6gaCjd^@B5T&4ViA|vV&g_=X{wpPnY^p6y#${GXWrCqC;)K72NPP9cII*NSe5Crlr
z!98}vSUT4TmA;XIu;OD&6BnjO2OtQZIHu!{s=>(Ia}eL8&wRfU#<jlVD>kc3ZyJ1R
zDUF)`gp}7!1GI@Q;>*0PAy2ffQM6_}cL8;+ny0)vJu<%O!6yyf?5o&yhVp9VWHh*<
zKX{Hdzv_fuV*GmDy=Ll=Wjtxq+f+XfY1!egY;CkdE;H>sA~L$eT>7Why3_2GS7G@Q
z8w*7K4#)VbL9=Q_Gxze82B4VqpFfCiz-f)I0$?oR^VHkq3~<eZq{_YwT%;tH&N@3d
zTR_!JT)oAPoiI#a^{>Fjk-FfbQ^{m}nz(CD-0H3;mZAH93dJhT^2oC5Pq<U5c3A4M
z1gYUVAW#oN!(Xqd?b$2-l__K$i;Q|b9ioBrz!@jQ2BZ9Ks=gQ$YV!ZpQr+?0!}2R}
z@JirT%TZbw>x_2Evz&4+JL{>0Yh%sBuKaRF9GzkZ?DI1&1e$HDW$qbR_W|!FL`JMJ
zBhV)nB|Y20dt>9iXg4mE0JieYHM}|E%b|64ia-xT!<RK{V<YRjp?n}|alqc0t(+$-
zOVN`^Y*bVHTi`K*?Ze&j+4#-b9`wIjX8xOP{r@klFbnhlIaZjJ>3@C*7+9DYIQ|c?
z!Yuzy{0^j*^{;?u@SdDO09IssVF=h<bgt)&OhsGM%z%VeP%A*mQD#+NKGt0nlMq2%
z|8^8Js){zIjw~=2mou@R^A%lzaktWLPYnm}dUIMRHijD-tsSuiZE2V9nHg-`?(_~u
zoQCwQZkEzh8%8uCMRUaMuD`4myaSIzSY{9r`Se)TF(=7Zt49>H_ZsAoL^;%|?~k+V
zA#v;CVdO+rZ87<je}{>@(rdJ1YnHgYN8IpHdIf%Me)(dLtPa%FwE;6ezwixMG2JZV
z!UPwHmG#R(6}hqN<=ct|Kh&fJ9({1A<)!*<{GitTJfkR{;ZV@`>>EIQw4HTq3972;
zsCzm7=ElT5mlfv0G476aDFCU_cDp1X6%?R)INpmzXvy*^G~kT)ybju3-IP*x2%i2B
zW#R+yzo;9Lp($dNDxW8-GAC<+&nMI(7!@s$#(Szw%D?d90a^Wfl**_j_b_=h<e&@7
zbTw^tXAOxk#eRSd*B28w0BCVcR(0V8Mn&sx;-7oxl5Cad9%|{Lpf^&fdtH@3y}3ih
zDEMBDPj96l_*D<6HDWWvwED=cUXR05DNDamzDojV_agB*G-Z9mwSm_Td20Z;ncFc;
zr5u9HJF$=Q>RVD$ID<xuR{c(2s8!KEx!31m?Dl#vi9hT0^`9d_Gu^+Fe5Yzj%t?8;
zD}FXV`<tqu`7`*^i0jkhlVYSVNw2^i*X;1Bq(ozZkMw0-&9$UNj>B9Sn-T1>^+BdJ
zMo1xh88=FdfHb8WFh9Ha@zBkDj^H8V=3aO_p~eDCsE+;1;)r-5n<snfPhEnC7Y<9L
zXm21}KBhKFvw^!#|I4p&38WLK7l8zgYT69OVK09`iN=W{eE#I|-Vt5x9rWG(OLkkt
zUs-cRMEy@x7M-h=r@<o{Krx}LwNVi8k1S)I7<ts<darZ}+GdXpjHs`V0~mP%jtBuW
zs<SO$Cap(#iTdqKG=ve_P)3{NE^7BFw<5cB3(zwr3Wq-#TJaM0m{1k^fAQ|rKv+yZ
z+ru{10|MmZjO@QAN9LwDINptW!oM)pL|d2g)j|_9)JSxG1-?83em^nGHlz&Y{wVh6
zwF%qQoq^q2YMsB+A(F)=uRh}<ajp4|=tu-x9y}75I;Z}sV92jA{>=Ja&Z_BueYoUK
zIenm%a`mYgiSbQpT7r?aa&Auyuu~&HA`;(MZAB1WusW6ZgYVY!B{w*|ANYgS871p(
ze1dZDdXW4qN&}gF`TluO7hHh<t=2i0n=;O=DIm<UtQuw5ct>>P<qOYpv-oi3VZ5HX
zoe&-`?rGTBMM;%)`+{xaLKg#tJE-^swf+lZ4V#1}Qvm`=A+ed8XE>68(TRYER<0qD
z9X(uhkGy~>&ygSxa%!Ac9WD92_<6Yzqu>}O?(ofsMCTE}u;8TLV?qbx5V>*bZxt(U
z9v7gM8AHz>E-qxOJ7UQ|zEi?2A_YqWH|S}LSAD8!gVTRcL0zt}Hr_H`umh$cW<n5!
zYH${t(yu9VIt;E73qmAbl}P7<oDYQb35tXQ$}K5xO`1DE_7w9#{kWW{!QGEXIAj^B
z1#f>;nkx=E39%dg-d%U7{K@HLmcREnPRih=?C==B?b;iLUenJvxfqyN*GQL2isdr&
z1PX4hE^a)gv?&z$ZyyMAbg~5dT3R9ke-~I>dkavh;iQZQkCFT`KReFN<7LSfW6SRh
zMcVXu-ZoSaQpu#W#Irj|)~qxJ#gXpa1GS%_o!;QfUzIMG!Bb#wI}nX7$EVJ5f6Ws4
zI|5z`rq(Guybj}EeeFb93}gBl3>p_=lZ&Zcy_nI{ts8x%sSTC}UKugs3&tCe>NYBJ
zh^C5aVtuCuCN6Kt*Cc*XboRSMl}NSv>@e{KOh^n!i$R8?C`#eIFv9T6;i>S{?+Zj<
zrq6aEq_YXp5++Qh6BOIH+}D}Kl!cPB@T`7qBIb5W(d)gZ-L6A9VO^}RdYwwbBi=D#
z07@otOs&qrU%;~dFbJkIST1R&c@gHo+*j*U{Sza!T7lCts^)YL?~CJ+Jd7efSlOv`
zXrJg&hwKOafc4J4H`5w?%BF4(!Kp*fkR1@XEK&nnjAoTWw|(aXOuOf^<jDrNsY~kz
zx{o*U5|hTXWsl=5&=aKrJ+LShGwN3SH1mz8;SNZR8aoUZM%}Xan}KyKhc3v=UANoE
zQ`mq5$;0H3hW>`V`ptM&%IYK)lh^dcRRGX$Su|i!A$KE~TZ!<1jeFY~7;+2v%Ggji
zI4T#9a||CFW(2|bWRkELenxuUDL6B=9#(S-T;^^k3aw%c8{<H1mAwT4hS6ALxKnga
zQJB#S7%=An9`qZ^9>uAfOg~||5r<5`T4v+nHCpVa_PxNDotfKZVO@6nNbB5!14YIX
zT<dXEFy4bTt{nE}DS`#h9PxQ%oKD&#C^e^}1pEx!r_vHW+~V=HI+$*Y8X%!K;ekR<
zhd%GQk>s3YIbCeA&C-qWry*AZ0BZ|)$uqr3HskudH^&o%bCIwIvA4h6xK!)Rz?x7y
z@gF?uIaa(h%PSe8F>TxX-?8d$iAgC^rE2ysY|<<5_m1J82at;Vs<;#8bWFtL(gsR(
z5@OXXl1nc4g{Ah=JLk<e6lFA{USNf@v=+aAzeFI2vALL3VluQoVN6Hx(tdrej$dqm
zZqXq+k=piGS$AVeT#gyXf;mDEZUJ+<H6DFmmj(tdNT7X2p%Fo~>Bd;_MwGgx<~)Z5
zLScrSTB28*enef?7imgI8uE@!9INrlO~FGU9S3y@rolLRfEbqCj)@F*eLNMpuM*Ph
z7Q(hF(S-^Z{AYrC91Cx^w<c#WDzE!?m?8VXgzqNYUDscfDi9Z?7j`1S4w?VKF)t;o
z!Tbu%9=zu2MXyqw@cU13k!{XgUlRaZH}`<Hmb|b}Yt&b+-2PGZ3BM=p><vczq%%z%
zsUjPLx0ozLb(hNI3>`aFSF?4m5%WG>V3Le2g;AE3s*L3%e-X7TPVAE|C+Jgt-nT|N
zxkj55ewVqjp6+mI8<Xj8P_w-NGg>>a=Z3cuugJY!>W1zoKydw(jIX|I5AHm2iqv1X
zTV@360DXXqu@4IG`+syZF~0z-ic4#=4D+Y<I8tB3e<XWydNgQ2p+>~=?B}@m<MlQD
z;H!82eRjI=^e{aq57o{FsrzcCM;oKk&Q|t4GcI*QPYT!HTy_vt2U-(gKs3v<J&X`X
z|E103+3Cz(KRl4r=KvzC<H+gEk8ptP$_(#!fbPY?Rg^J7YGv3!tLCKMkxmbRfDe75
zS^<IHah-6QtMbM8$nhA<Z$6VZk9e2Dia8+U)9#z;;XY-ZoIOC`d<(ZM!r61Cm=eQ@
zKEt6@`OwWCGCMx{_B-@CL`n_OrEd}9A61GKp|k8ki974>X)4xaNKETF7c?$H=EVFT
zQNFHJ&G5v5PIG+XM=4%V_JnVX3Gr~5wik!d`p{<hTx)k?E9n8U(p$PWaIsW|JUprF
z9hIcW?QiX2i#~i<l8kj00;c)3Q#cy=v|d?NZ)RWwmi`P!GhQ|W3+0WEf;OmsXkkvK
zF#%gqSR!=y(wi=ZO%V^ljYIVrk@MD-&oM(oW-7HyjY_Ov=BvxqDr~-<bL!m!fkEz*
z7yvdx1@gNWuC6FAyrhQY>qF#rkXr!E5jMuANnNKzj<!9+BM-u-TEBlx^jwUae9=44
z)><GX$uPRZ8X<mcegg-fGsV16lhXF;q7AFar^BL3G}(h$&2{wWS?TMX!$p_XPdO*Z
zng{VpjvgfBFIks$0DT=~EDf?&$n79}f&mMkE^2ez)Ws1+lk^eC$tJ-FGud1K?Q879
z4?{p*VE&pd-x}b|3u1^)eg(XC-~!MlQ79s(`WJm+V_P2kd(sOn!q#ycoONjrR6uHX
z@;fvYQ}hgh)fFo)Sx)e6@HJUKPe0tAdanJhYKs7NKGAr-N^sM^SV(3=<2E<%$G==O
zq3hu;=zg2*AuvV&)=7+$$)?#L?q_59cv9E@A`(mt=dFK<iexX8ON3T!vWxMNsYT*X
zOsjCcun>-=Y<V8}FN|9b4fSF`S|sQU7#quGiFk?f*<sXx63w0`T6bi4qMqo1+7+7u
z41Uk-%WNZ7F?DBhqUU^YNkF1w@Vm(cnrY~vScZq;-Px4x%5^SUy7fkEmFqzlq}^3|
zR$am>&L3?hj)lzs$`a5v&q%)aSRb#C2pc3}e5L$x!zjv$a3a=~zH-5J$@`vpO@|>|
z*wM~N1W+LK$n(KzdIe;<=rnBy<o8@xt6+;Qkj-R`naw0dNKo^R2AY|_!tZ}2|0R#5
zTEiG7x9Khgyxp&zADYyF5WY~vGqDI~^?xO1Y;5m`I_{{;pC0C56hGarz1BUNYNg*{
zjghtF8U<kA&M{?ntcY<7%*B+mSnItd$Xf1Si;LRBF1oN_m|oo0;fj#*K~95)*t0nD
z1-?}dj>$Y>iUkY}2h7;_cP^g43}bQotf6HkD?M#C1sSGh=S{dQ$sXXrFkW$Q8h0Pf
zS>Cicibxh}N9#DJ?Et>}he<#^`dp<*U$466ZY<|Mm|ehrhq8%>;ObOV=37SEkqC-0
zwlXI$kF(pWq{grAk{zGi`A{qwxu+XU&P`1ziTd(z*qHqGk?<CMj_lIILa>5!qCKr<
zoCLY7p%pD~ou<VTt90!}Tc?<u=xUZUv<|9cstRi%A_5i2%74iO7qq^)7Bn=!8b2Cv
zMjlZJEa-xC=K1BgdV5TBY9f5#jlm9G(<`6gCzG>cPhGlPH_Z`19sth;o%l&>F=sxE
zUr|AAysV*q6;kf@{?j!A2t|d;z17f`7}3>J|E~sBemMiba+-}S5j}V~@dux$$eoWo
zuxBxr#${cAHukZY4-WtSJyNxCl|8~e>na3kwa?Qa3Qv8%^Y8L11$F=>rMQLD9`r|r
zR_z1z9h0{i$r$X#z35mo#2+BtZTmik0xKOiG!W@dKEM^V$M>6ug%ShnG?JXK)7l2*
zEkJp#IJ{ciT;)!k5Gs#>geHVROPZ-9{z$uJES6X<DZJvJow`6j8CPGqAP2X~3uc$X
zp1T9#rHn)|`285O*+f$9X^6j3U}g6?aRdCelYS)}%T+Lcl24i&$%DSUKS%;PU2$Mp
zAS01!RyELly+T%_#uAT;^ooNC&F%GqYss-|uZq}WlIQ@YXC9J+3&9Z#yZDXYWFnH<
z=%X}n7gi4`44C<YfeZIE$n{%|BUVoXC+roV3+rJxGN>!|S{E|#5UeTCQ{W4!TidER
z;d>KYwTRMU%Aj}%y0Y0md>$mi3X1wqoD4qG%xjh0*16yRgfe$1`D{UmrsXCX{Jg6|
z-MRNj!XHD<td5Y1664`1m2^915wkdc_x_OBvSzRIPo5oc{cWU}nu*1a4Y$wEkW}WP
zGR8nyc-&~Vz513a#@$n$%|%sM0G%Bv45;6X8_CbA!+eOGpHaW77a#RpAPww_VLjuL
z@beS5jPM}CL;<b$E+3V7j%>Qlnz6F$ybdC85c9cm1{|QVdY|sNy3B=b{ezR62=q+J
zL|x${?p9Qmzc*j!R%3-Uhnc(ujA|sWS<*O}PP+T(V?vB#xiF$}^hZED8Wvva3q_x!
z>fjY`+B+US+E?MI&Z}`SiO@cYWti6WG(wi9aF=?<P`sA*#~*w+GCL!yzdGleXp=q3
zs5*str0LP{fsWSOIgnxiU(J;UIyI&}uV`8kZG;g=y+JeFWG-fygR&6<sRkhnI7nkz
zL8oRqcsGgeJ1wsZ=aJgtDfi6=IM``^-bj80zLbjvi;%S)2+#t#iAew|(bj9+UHvO7
zkB&A`n!DX9jcIffu%?w#>hOb658lb2xyYbwr~pckSX-(<C3yiCtxI`6-$>+2;4|E)
zR)RrL#}$Ricc)g07js%%5N)c4x}G-v_&0rbNLa5aZ69@dYpbxlIo0guBq20-8o^75
zjSEeKJ@5XZMrsiYao}^YoKmKLDu(WwD9OG#LV5V*i2@-jeJwH{0yA^n#Xg2b7{WiP
zb?5$ea|X1u-rEj1fg!^KW-As46OSu0{y;@N|2fQnBh9K?%sNz<hMi92O7<4A#ueIN
zccnM#RpqbAQu0B4N5LhofZ@pGbi;F6iv;}L(X=mMm!qw5@{^0^jNsad?<9^cHv^He
z3=TUIyWAuR<)qbKj&?V2QI~N@rQQ(Q(ESBSRIWf{lg;QAH0bn6L$Ch;7#_gmX~IMj
z$V6*K*yAzL1#DTnT!g{IL7pUo>oHb4PRj{}L&O^D{6mzo%6Win&tSGPcy5HM1QRKL
zFfPp}gcJ|VK~J&~@<ZC$J{YKf*(;s#GX94-&+Abdfw<^ILGGsL<F8bk9?NHCx<)c3
zaB{f)mvsVZ3p-%FojM?uvMOX>(2-@$=L|%BV!wWSVT@w4W3{-<8#91NiBA$d7C&I(
zw%kh{=+-bA+_QebZ*fdf=TPKf=i}$<gEl(=o0*(fW^qs1gpFT5#AUst9NwZVml1DR
zlmA5`4~C-Kzf@SBX+prb8BI@7ek*(VpB{j2Q>d{Ji_hZIYCN3+1VP{jr?k?e`+fLM
zPAjS&IrHIzDtce{z6a_NM3$Q~;J*O8GW=P&?6aMQVfz1~5X}0JBIZ^*`_WRa<iU?_
z++BC>{m{n>Q1o6#C#z*@f6w{wfjpmB9IV2X<Qosk<iOYkVJTpeMyc>UPz9#gyB~km
z4T&;YCU6PTq%59X|NLVDQV^_((1yjf3ZYx?eSO}Z7VYB-ldjvL>`c`q&neq%O6}oT
zD`x>;2dCodkj_USmPM+&-ymbb!XhcV;1wNulUV)SvEa{h-OM<f)N!SbQpchr1Bhxw
zJ>n+ZJnxb&4ixLrk+aGdX8R0VB_w1|2^Dv7u0XW6x6r~_R`k6T#P4r1Me7B~#Y(Ld
z{mmdS3&f1^wc5p#FSjtTO1`ihmlTb<A9sw#^y6gzEM!v<s774)sMdVf_(fY2AH#8+
z3U(*nL;^+uBY?$t`meM17jtJ8%E8~9bFt+TGfUK4<Z@;SO4&PTU!i&X+OBiTHJ@*J
zgH|2j0rzv055e_J?e_X9i)KK6Q*9<dk4Y=!g9L@nOnHP~K}4knr(OMQy);|`IGaQR
z<kik@*AgQep%4acE?hT*f2qg~8Ns$D;s!+rshBNT$Q6<Oa??u#%3N+uL-XF;?>E=E
zI`r>;-bCa)^VNHPcfTTc_ee(sN}woOr9v`_ZMupZke(WDx=33=`%ZzzBz&as?p?A0
zNC)<C<_bK77oC(+n*;lfS1Dh0KaN;mpK3tJC3DI1*+}pqLyK?c$J#Y*ZG9Rx%bl-v
zn-M!nW@P$-VB7X<dlzx^!S$Px%}^wIce0J_1k#{>O*b^dglMksQ86Pa?fI0z4-)hj
zT+nDZ#n!xb44i-Gm7Ce?S!MuOYs302=ULXO0U>6kc%edw!2sH00qx8(PzgNUI;xZ-
z8BQmqNlU=-0&uG#{{YEH96>Oi+?RmsYJ^W&x^PW)`YzPtHrW^5jwS`4!~%7lzPI%#
zeTj^<LX@)H)R;?-&&S2k>QQXy<>pV{$6+^+DC)KvVF05#2>62v$+BS-kDtrFBQJbj
zn6?cOaZj9_w|{mRuP(4IY?40#si@87(9QFH>;it?b+Fq_@Xwq#hW6!#I@T?G861vh
z>}SV!$Ofk48Z?VN*3H=8`K?#q1qda?(lkXi=T2e4>QzYnI;4BMU31|--q9AH>V~Ls
z#2?2z9L8OtO&|s#iaeLgBK?qzpJ7{%yA?W4P^h#%ZGFh?fVK3a<#~JOi=ieIoHmL}
zWz$s(<E&#pa)kyyq_6DgAA}1d9^jcW0U{kZ>6mN8#|?pb_Hb)OSDau715{;`bF1?n
zBNgh?9H;#@z``f*Pj{}D;zG38kCuVLw&p=94@-SL`Cd!<jS-l+<Pb(}eGr00e2^=f
z-AUD`Y#0v0f?I90o&KwM;MXnWBH#2AGJuzko{zzDGdy;}dm@#M)81Bx*hnxJ-l`HA
zZ~uYeHvuBsb0;uLuSza<wN2GzD+%pC&|OT^+&N2aD~<R(d}#W>DVH=klOtgo&lsCI
zL}U`xm}|KPJhk27*>%3Le=Z`M*U_6exZVfT*j-`Lr<N1)SqjFM)h?R&F^czl)J0vn
zbuyJ|#Kj@NS^3EA^1ChajH-kJ(zzGA>C%Bbq;$OIe!smDREP{hsoTIoPxn==(No>e
zJ^vtffshJcB*~y$)ng<lJa;_|2I>5Qw*lCtFS5!*x64$>r^LHQGDx@aXWO^uNo<Y)
zy^*w6%qaVv9xSO&NZ366(=d|A{W$Xd<YL2gLr<ISs+EPlCYO)~koTgnJ_QKc7A5zs
z672yeM<Y)yd)fysF<V*pC-Ai&_&N{)8P{9#10VKFCvp4|03e5juTM-idJ^$2k-a8P
zgIJk#<ghy{nw^jF?(RBQ<wGwa9E<(0=T|629LPt{#<YyANVa@7&y?bw{~_6^^+P&l
zxl9UP`u7irdww-7dkZw~DXXQKi_y|l7k-y!w+rE}<vfBRUaRYe-HvK{XA8M;gF?O_
z#aC2ED9VO(EHEAVe%7|LX=1@tGjGyay+6*{BbbYn^<Cb+Nd9C(WhYk;^|A;KA{Ek@
zh{Dl~jC<3)dpK<Gk9^AaZyb1Sf9Ck8FV-At=#nDFYLR&rbwg!B4E|Fo5X6B1e0WOk
zXx`GG-EJ<uMqw+o?zK<i?R^X8Vyv|Dc<iv4{i9S~;UmrYhy*D&;2s4*M-CczmEKAi
zZ56+52<Tp73<2SIrkE?SbQi;1V_;r`^8{Wh^Q4e`=}VsiNl)b@{NfJ=cDsqfYJ%kx
z!S;Rf2-R603qVrgpm;z9&9@1qe$KW`B@Jz!>iAw}`MCAhDk2}R{L6HeJg{7kTkiIj
z_*+}d<Xjb7Zed6u@<i!TxwQV+-_1sjb?#FrlIf^q=$iCK8D6u^7Sd&(AbY1DNwNE}
z3f%p}eixwyc9wPM9WSg<9G4zW6c4M?2lB2{*ph$i1Kt2ogn|WGjMHRDl1-V=+RZny
zq$vYd=dge~V_U{hD=4u)56n!0IB<n$4C(BNV<t8<Vp480UhW?IfkYi&kL>-12}>fO
zk&6))2QvoYm&<|x^0r;1>eX|&myG6@-Lw09VmD<rqp*({C_l5n^`;uK1msm?)0+%D
zP?f0;(u9rX85p>oii=tqR^<L8ra{(XPlwnk4t8QqZCW0aW%w`=@07{;ZfFt}V5b&{
za%Sx1b4NZL9u4}dXIZw4WrdSZAM?Jpg0B4g3K||P4svy+M!ouS#W&>ZnJar^1V$uN
z+`lu{A$f^Y#q36580x5>J_LJo3HssXobO(Qn>HC*9$ta|o|r^>Q~{pp4IHrwj<c!B
zL(@cUE|+&`qg)GlTr7RIn8}}@Q?)8i!d*<O(iiBF(I7T;4Rv=Zms>cFMOke%ru4nP
zq57!){pgn&W^3DyC!*{9yJ5dMh@+6d`Up`74kI@am<<gO>t*_AQmA$CN4cN-*1>hG
zo;s9GDd~f8Zi9*YVXL?VP3lKg?=67?V4`3!73oIFU3tu4c$<<-cGmxXBlp%poXxOw
zHBM7_`CDg)JC%OB>xa3Xz|P7&E;X^8q1_BCm6iP92d80E4t1oo7$(@is>~Jj{rK&8
z3jO<e={4p=caUe2m<4RXo-C*oKdciOT$$mxSg{|LbY{pP2bs2JdtwOq16^YFkWHC!
zw<>uorDP52$i&1tWN3>(GA}I-vq#mD%ZQ?sIDJ~AZLi_<CSodxOMXPX?O4rBK+>Ub
zbB`ypKvCiX2;{wi3C8?_W!9qX=r`x1MX-XjF(WR1<p7%{7|bVW-hh60R7XY!Y`{*|
zaeFoWY`-q@t$!w{Lf%dpLWF{Ha#F;3@s*@DK~Z)&Vq%Wd8G9W%-X=X!FjE0zAPZWy
zRJ3Lo6f}lYJ?Ly&yL2;dj6%=a78h410@^W?M^NbJ_V2)9$v*G@MUUv^Rc7WVHGbe$
zY~C}s9%L&Roq6q2cX<GSAXo0)dz)0!j_;Z_9)~jt-djgkD`?IgGHaE(`%BZ`wy}x0
zYqzn`5)+;rPAbELQBAyKV+dqHcBEWpECzIb*goTHEw6i=kpY;Q-zK&FT8n-1T!{&c
zu`0!(c2k;F6uGr+RYrgFvwIyj?v8s&IL|K>hY%p8yiGclkSKD5U(#37p?S=iVVjHW
zfl=uI{^9A%&Wn$x8)zqG<43IxcbpvutiDxYA~dfoRXrq2Zj*9f-s!eoyID|Kf`<s4
z*5U?5MtSQ7-IO#R7g2-kzUkw+PvyMgr4@R6HyD+9+O%DziLsw2ZT&Z_m4e=QO{1?+
z|8}N$x${qKdHfZQVsbxo%C}@iUOT?l94PziB_w7QuQO;lT|`+dX$@tzC;33wjt(td
zv421_QGE-BPbb?RrXQ4%J_-HF^t5&*b}om6#=Q8&d&AgPA)S&Q%$!*c*idm4Ma1^!
zrEGXUywtZaw@3bU+y{H(qC@sYeHfuD@1YjMskxiELwxK4TI|w>REMHN$xw5#-2@z@
zurp`LgoAHCKBWiG50tPmstxPlNye}#IMw6Hk<sw^v?QP_pdhK(o{EQBNl&<D2`MSz
zvYb!ee5N3T73sWQoLVpe+Gj<h7@|P<m0Uikskye<QIbXkf*u{n5Dbx{LmPoJc>_~4
z${z^QoiDo7C3=kW49Ym8Z-(^T4o2*ujuG$tmyVunTPe>^FV=rO!xr&mt#ushHJFwl
zmW0}N;UZH8VC!f<)^Q4>20&R{c#f5TV`#fAIv2H%AzY2vXsRoU21LG)4bHorMRnX}
z-CLtJ93gIo6biQ!C8lG!N#tbv0G=&7{_;hyS(NGKOiFs%*~m!A@<TVFR>Jd5&7spo
z8s{xOkP-T(Q1U2fLDF%HT18#fsA2kV!PqV(A3l{`X6>I2>L0xs!V6_Z4v=_*tH0=K
z|Mr`#gq}AkzKq!dVxrFoR=)Z;x6#Z3tWZwHvLju576UQr{xB}+d2OWr{se1?dE|qL
zPv&DN(Hen}19zf)_z=-z(b`8<JFp94#P6CESxqK12Bnv^*m_5{8Sqn{$?-EQ0gjT9
zQcetaFqjs-QT9{(2;Mgf3wviBAsDkI_$iVA@dD5U5#UY&c{75nfc}P0PE4BKa<FjW
z>!6*F8y^1B()4F+XmcUl>!}W#8ET-av$lOQhsF5Zz}3LbXrB1uoWJE!K^)is`$^_E
zyLJ&IT^OZg7U|+;&Zpnk$DM@ykuq_MmE13RnF=zKWY&VLOdOXi6{5d*atZ9{0Vs<l
zc~$vRqTXQEGpA`a_LVOH6NO08cZUBidw9WuY6C*tZ!`kTwD{u5Wmj@`2=c?9YRFDk
zDvO}RL)trRK_ktS2+gIw5XRNDTb47<*P}Q?>Opq|dgLzQd9F|ynI=O$ALsxlB&7$Z
zUi8El`*Erm*@+qw_UM@-@!m2;4?f!$CGWc?;SRhYd$qQ20`|0c_J8HlJ(MQ?`DC_3
zFON3MlJ|1<%_o0xJ?Sn!TUi7JoL$(Kxk|M5`g435>6Fu29?r2@u_d!i)i%Lk?Uoa;
zc^R+a;Z2EoqPtsc#2`vgt<yAo(F~b0Gn$Y&3d}GgAyfBouAl<qe0<Y}S)WTz_3a<^
zhlJU}@^@W#_o(};$RyMq?%{A|t3@g0RK|1cnOh)tAu$m0Yx=NFAoVpv6}M|l;<|~B
zu(1#XB4dL^+8BmhacyVmvYT1UPUeu-|J}akJCEjch`%UiD66FdQ37o@17k#V?5Jw^
zL4qvkgCg0iOYprSDIak=;tMmv$=xeR2)WzBm|`ELJr)_4sA>ld<t*cHX=RtBcdgXj
z3<DZb;~)OZ(qNu{3GSjzqD}|D=V({K98yH~+jJd`=$Tk#jGOS-8tG}%`^B8I1o2%&
zM}I)eiTud;`>~?BuJZ*~>y;ce`DYEcC20kPBjlz=U35jFZ;rX7i3C=rX@plfsKyp`
zH>XX9q|E&Fb)-tFiuJxW^~`ots2j1IN1nAkp84K<${eWM!6=8ZOk`{5!hTYz(Lj@(
zU6(+5|E8>Jd$qEU0mZB?e=B7KC@G0|XdqCWWoC!9)lnc#@C>#&*nroo`~|!Ro!tLR
z3VVyw_8U@wkFgPm1JV``ba#LBbA_Rn4-V>^kRS|i&!L{s*JrvV02z|!x7>jNODD7Z
z=rnxDcTdC%{R_b3ePw7lyh8l9xc!w3)H1d~rV!DB*n%H<(5?#z*0+OroV*h32TpJh
zo#-KFU^IN-GRODM6qFn-f~q|kUp2O9{J;g=j{h>za;Xf)Z$7&a3-<C|sf1?18{IXK
zIrg^q8?W8R+vzI$X|{&AdrXiV92PxTkN}QF%eJ(9n3{?}!TT=HN#OxXjFi0prJ$CA
zgezxx=_&U%{p{P>b)_pfNj#Sk5MG%;ns5elfI`y^@?Hiqkm5LDe?&&tGStQY=I`{m
zI4voP;G9aM`po-XlRr9AiAsxo<T4#o%auN>O+R|O_KkbK4W>MlAMvy`J2a<yT|5#C
zecOpP$0qBNJ&JU>SK{O%i}I&Qba=KYzEJ}rLP<u(&Ut{S<Yk-u-^Gi0e8!c_n$**N
z`JH#1b+*|bfG6;PeXP7m`Y#RHv^X<d3HSK)GhM2A!~8pXxpg4?uG21jk5I+_OY73a
zg=D0-g&+_~$5lKz7b!1*41-J#itU`Tpo>@a+6)JEtc8sFi|hf?a6QPMxV!7?o|cUX
z16lhn<+cRx^0?NYz-?L^8X26PSg$mJsDaD1AU$~;dHZKgzX1<Uo>{$Y+K3^J&k3xJ
z!GPf+f!|sFPzL^94x`{sjR6p4bsUP~`2$=F(WAc6nl^7L67$Z~8JZO2)k!8VjdRBW
z;Q;i0D1Ez#QJ6GLH9PN>dUVsnRGk&D#r`cDLxpg~w6B&TFPH(Dsd8Mc+S_5kFd=Lp
zk<?&+%XNs0OkQw0{q6JaeDXWsZ?P!BlWqaRxM7?HgtiB7tk}78U|6zd4(9IH<SL;m
zOF%K-Gi08L$5fDJWG^IzLSzIG=4jA}zE18c_h1sq??VA|R1<y~L8)}unmJ#fWVv`|
z3<ZA1Q#bW5#F31>FQH9fefL=dRjA-(!rfQjtV|dBS&I&AEzc2-W~aiwtHEKkF;&*M
z2^7!i``|?bP+sTSLR;1@Sm}kdll0M;Z~mgJ=lMe0oaY-=DwBE1>q^RPRvk1r9$rT3
zSWl6eRzB#k9gr_U)^r5UDpuE0*k*4Tr8wNl{xCH#>?BFWvT|Eq+w>ASyF-RRO2Qta
zR;ad2ZCTnMEl6L3)M!IBJm4XDY8SWyHkxAcF<@oyZ~AdY@qd14{gLaO63C<Rj{Cy!
zw#Lu#WIqDdQ<d1KV&fJBi>#fI*Qaf=U>!^Ls))}SBRPk|){>eUU0vrmko5Ol7=#&s
z3XxP}*D#GBrdXCFv7-s=lj386vB$m`3qJj=X=JQ(6uP*<i@0enM5nYz_+F#9m`!bo
z1i$1~TdkkSCzrj{#$3+F09~@86jER#SWHf$K*2c@?N3TVz8ty0S^#4@FJa#oZSrfG
zW`j!%udl0Z_G0adAWzTtK6v2!2|3hv2F76n-ZS_G!F!70E)|g$>%jiPJ`(`8VYIx)
z=vNuA0#vaeSP6l$<B1SJe^`A8|8c0*mMWG~4j4#N#D^(zxQHD4=#DZDyxjI{B~^d+
z-4C4T0pVq%#ZLj%S|wT%7Z*V>i39Fn4R>sak_KiEja-<o(u8%kR5OsJ5q!9O;F#l2
zTuRmwS*TDPDVhj<8ABe|OcN}RayF9pt;jB`rwRmK{Zwmx&WV&N#n@FMh$$nS1=Up0
z`gyzUuHt2u0wewzZ;voL5->sVDR%S`b>7`dj>_KYz02Am5n@nueK06e=D2KzW&Fp5
z<3oTF2B{A?rNikca_vH+3Gmagj7ho#)$0mvn)em?%(nU|!Zh8*%Z+}19_UuZnAL2A
z+f*-pPidDNSOqh&J-uVQu$pp%f)}#vjV#Ey&~Z^<1X8PY%K$Yu%|thm&{^wEgU}-i
z4>x9AoUK(j5yJFCsl(0OcV*B0wfX?L)m?t^Fy-2NhfTs7z^Ll543$6?-!O!rt)Y(i
z<jRIS?9dQ#a)U9j+oxJ+5@c;Y_T7Zv@>M+@h*&18{%hTSA;$%8ij0{czm0TZ0YPG_
zMOk@`XEf3t)b{lJYAGbzM7xvFj_-k&_%;gzmn^Z+i19G#DYX@l^|q=NNpz%KZ(o7Q
z!TXvk;EVF;efe^*fjx^VXav}gK?*n+(9D|tjK3#hHnof`!Btf&p&tTb*oJpNR@iL<
zBlI)RAz;%VTp8e7DyR6n$AYUpCld6U7M8W-HGhW^AOkm)^9*X9it;9RH9C}mLgyQN
zki7{q2i2TtWbk9%wU%O{g|dc^Wa{oT3VtM`dL)3;aF<RJCK6PNs*PO|3J0VG0bTaq
zaP$V)IPwpcz(66`V=|GB^@b~G6OaC|GlXeDpkcH!COQjTq!CXvuM&u|yCnXTk92$9
zcNWAe*L2bW8P;QnKlvmDGlN%CljRb0vY6!~uO$~oIWlc&k|OD^Ohwq);`#c!V7+I-
zfB0l)oN%pn|Dpcbc#Ai5CScc{B|LtsyLFo!^Os!$#pP<a&#4V*d3dA^1}7Kk7<eli
zH1p$O7?0P+8<7p=VmxRkeSN(tQ)7HYg<Ia?g<}SftqhgD>v*jVvRqHU?Ck{5B&xIN
z3Qx!xRpY6+1o7T~OHAr*Y^S0vP8W#O;{svkVJ8tlA_Jugl`@G)f=s@E&~!c)FM=_u
z2B2rL1^9F_PX<ZD7s1**Iq%4We>c-B`*nuTDH<#DhVYZ>&T)FQr^Z2yw-0vwNt}J0
z*8d#MH&*d>?T`;i;tzpWvjTG*y6+jb2$TQIUr597#yU=VU=4!J;0QJUEAhcE;E80K
zt<x?;2n`+stScxcJtyHO`A3$d9>b`Dl4%DW;nxrS(&iYYLh$M&5s`&OWaQR=(I8>!
z>F`HX>HaL#m%*%R@k4>O@F!vz9<(NHlwssw+}pFF?t_<ikav4!aCF1z%-ha0_>n+B
zI>T_IL8CZMZ1yeKoI@<Cier4}5A?<<QLpevtRY?|dgQUX#dOB#mCtW+VaW2j9_uPD
z{r+}Y5R{_h$q$Mx9L8oz$Qi0m_^1SV=FtKP(m9dUu{VW8g?c0ZlZnKBc`Pod1C%sW
z;ZOH{zqTY)UJh%IXrv0&hcOq9{{eE$j6co6I1q?;HH!^K*|j*m+R|OM@ns`H%1PL|
zXwP_V59UKFij^V*HzWy*L3l+2LVdvZY^GDCdZ{KtPxwmRq|7%Y#6h=NF<a*|(OYiX
zriuGz0AW|6eU3ll+Jt3)md_yvuRXZ=&DO$!{}f{J2Of4*+%=qvwvc@$j;m%Ban`4@
z;crqjI{Ufl<yl3`PqZRBhVrlir~NWr8?jYbb;&Kdc?Fy82-{P?D~|VxIw#$(%KK+m
zFCK^p0n{#lL2$tIy4mI4Ll3N8%|J1zRQla1fbNv0WkJfgmy2*RDfy<cXtMoqnr!29
zi-xZE!ao6h2Xdq2r?O`u5}Por5n3IcwIre1slMj%b~A_rH?=n2vVNQyX`!P5dR4h0
zebVOQ3pJSoy}5X4lh`S8o!}NF;gWlImFLL`iklHh95XGDiT0ldgKT)-H1k`Ju;NQC
zkmOLXj6>t%NvT?Q_4jsX4o*Ox=r^FXgu{Y+vU|;O_a-Gr<Kn6!l?K#w!vX3@x8#uO
z52O{CAc?)SzWh#6B7aR1BG=5_09|W5N$H;V2Wr*gi!sE437WCwtPN+A!hQLM!Ytr}
zEY+%DdrL=Rl7d5kMkzfdpjMN|FYz<q+xS2gX3wHYbR!2L3_8y~$k-+PzXfDx&)D`#
z!P?FHEVB#gI16AO=4~fo#i~4$p;*#KOi5{u)5lUN+6Lsn+IRBcZc!pk>mVfj52^V3
zTn!;?8U1(j;QFNh%*|5+5qpxOI21sn^H#9dI-sFPyWNutT?AOo7ycCIOC0`v>-m6e
zfyPOz)h*&OYNv_oKXVS|Ma@Ki!49xS@-MJ(@!akwRB=#5pkg6p2=<c9eWdULphMBS
zR!v@be(E@iQUB<?!EK+d5RQxhy2}Ar=N%_*Nf6}9Yz<?*__})(cSQ?jA`I&8(==D2
z2)UU$oYn3(0$^kfn7MLVJ%z|DQ|M3DFpgw%g{6g$at8pY+>=$MWx7lmp?S|gN_hK+
zYD=kwm;-TUN)%!dO$SaCqqj8bk+8{68F$tQ$1&e|bdZ2vTlt2*`Y{n-@ic{<e|W7y
zW*|_%`o0DTji?^A#A$pWkL*?AjIwq|z`9PaK@j~|6AM5=XIo=xCg+E+;7N=<>V{3t
zN0Mia2)-N@99GkCw**Fivptp(p2`5!1tagF7_T1XUo}{^W>~ju1T{%NOr}2f3|>1)
z(iMrJ#On-D7Ez#g;G;)5Z`H>q{q-lICP*7mw%0$$za>*(sTkRNj61cKLeENBu{yI4
zxVD8Hoi|qN8rF!f$QAnYS-?=gRM82o4DVLnH_=^wy941n>i02jUk&hLP2g2@Hh;(e
zAT*nmjV<674E-eQFLX}@z>QWXMdeQ$sS^IEe3nKyt>t?}=6&tpR;oLAY*nj}tZtD2
z`QY*<I(rkLQ3f8s$iGoNfWRx{)=NTI+xDl#98%+m8uksz%=Ysq=v%0@!Vobo)Jx<2
z6imd=!n}W|b}8W8<YeQ3Kl(H~cnv4C>cCfMZ3$naU_S)9cV0L+RbO8vdy5GPx1K>0
z`xx+EzXK38O#poI;)4XZQ`x4$NNy#o^AvFDMFpwBiF&7@V@fAqy*&py@>H*dyqhRS
zZtR-T>}5-+T-?MJ=*ykx19ResIxJID_CsE(7>De{li~1OHr6cJzSH`RUX3JQ<b8>I
z`*i_t6E=87Mg`d%xYbc(P$;;oaOJ9yg`s9<45=`?J_l{?cIwa4r0j~8@mMSZW9*ho
zJYKW5`#Sm5@~AgDS_ujs-eRdpGoCHHWsQAksy}YFunE=AyQ0dtp-%k`HZ+BdCYonW
z4$;v#9osye@<e@VubqihIa^$uonl<V=`BcuaD53nyny#d+oZ~stK)=PQ3i&=vST%Y
zUaI)pyJ;@LU#KOV?NK>Sk!>`<`5KxzD>dvb?uNpp%S8*s7zZ|`$g7=<$C*SoMdr#4
zOK=KjtN}VPLsa_HvNeSSAY%6)zaT4PQxIi&Fb#Cff<9&@1Im@|tja@AuCHOgraw-(
zG=(37J(E1tdKP7uQUX9^Z*<c@tRTSR?n!ID&XaIwKE!7-DvFC@sq96iI@Lz%%`b-@
z*Zl`80q9rt(PGlAr4ILcwa8qZeRFD*tXV0e+OUHmJh`KXW5#4bm5SOZawQnCLVGxO
zkfC-!8Y4Et*h7Y3EV6&W_Amiu{`eKqn)V<+=WR5aoXE&dvBtO{Wvg(!;FXrVuzkI6
zh3ib|Ca-eJ0rgHbqkG=hlnKs58%}a6fg_&0c~n__RiX@7V^Vux$f5SS9+8o9PELb5
z?_o3pJmB;aD(y2!{$-YQU<daa?wr-!Tdah@cPssK)Kc`*APDwaa4WPoS%(Ew+Eyvj
z-o?2v|E)Yaa*5x}W<fKsLqX8c4`$wrm}DM-=)&7O${6uF1>p7|Ad-B?LkD>>v$d0>
zbPF3`<+n|;g*>TD7NCuP`O&pFT=(9<>5h#JTno1dtL}13&9Kz!lga&I+a2wb>2K|g
zpMC8{I6NG|Nnnfo1s&}%-3me3-O<Ln<j_DU=M)v)C=qIaAwTmYFJG4t=i`GEl>hpk
zIt{j?2qzB=JHHmmQW);j)<v1x^(==@&erF>X-1xUplbwYY7yBKsXKfY!w7r@-NQWo
z0%^XikwVgkmc|siZI8+d)0PZBb|yHrj22CeZbTgXXgN-OukPST-uPA?`7go_WIk<5
zC+C?br0|`aV5d3DB_hM8tr^|Tes+N74sC0}WyEoHhZ5hn6&MNEiGGl1yU-z{nqwFL
zgLt_jx*Zot{*9XK4lo_?<|U!LSACYBCY<NS@7#jy&na{eZ`eF6>)i%#JfK(r+*v_9
zf<@P%PC8-0(`!4i&DVvwa@RGS(mBO|n~>aWNmE3hEd_u^UGkT1O}Vv&+6L1m^~wh3
zbjs<x$ctr_@V1~!-E-Ob<vmf?$)ZW%t|B*YPs}8*!Owy{A>l8Bx&O=B)@{J!v#vau
zMhaukstq(SNPP9vMt|!8^1^aR?VPpfd!ExY2BEjSr>58~9-B<)9rm!MWn+?Cw)%vN
z{~P5%L*#O4DDXl!JH147hTHtEAS=lYA)p|L!uBVj*bSjrvN5R<GYIu!1RRiExqbgk
zkYFX}SG2(~liGHFyWrnQ%PZ@44$a()^Uv67>jluS(=~5mwuN|?IR2}qa5#$X34GDU
zIq9XgxL#YxVknQ?@KS(kg3oSh&RubZdPVG!9PBz3?&t6G%-~b3gJ%U+s-mK%4(4}f
z;}he1<Gybuh4eqa^z`<_D-2?}^=7R<^{(@XF-}pnKtIt{qzBm3!E%@%tK8LoVEdNX
z01ZrRjiC4&-4>p|vq(AFP$U-%{NljK30|)7AVPv#v%HVR7*vkQ_viV?yB!y;Vhjbr
z0a&|Gk3Dimux*3_yDUrXwaTLb2tH}PQepdAMaUC9>oNY9P$YqnN{U`|(S0BZCmc>X
z7S?}bLpG;RUt=IveVmn0G=&-5Dyii5o*816B&<|b%ju9A^(1Oy8t`ogwmN@k{{Aa*
zMdA>XP3`W<=LG9@anBX8WKE0F5PO_@S$ro>dU%oY59kly<!R_dBM@%`2<F&Ix~)h4
z=mdH>-gw(n{s&`!4AaE+;%M#TUikH%dk9-)sOcy1yXMlo)?Via>Hf8f;OWxJhW1`S
z(l3Q2ZidMIwzVY6A|6H(FXf9YrubE$N;#J@52XUxC8|ujIQd5I<B;+AJ5$H5!0ChP
zmpJ(f@b?t<7;6xjj647ll`SCs<NS2~c*j*A3Wj`#d7jpGEKj6(X|36V{7(W-{~J4C
z^$;`zS=SZU*u59=oUe`7$HuXhlBV-%Sy%tw1UIbI1LlTt;SyDv_a7_HUTbk%4N%)C
zxjtM;z11QglC=TwQiHJO4{3mBqMA^sJHJWaVs&b~{F(Mzv4O`rNR&2CKo1aM*8<-!
zs%L9*&JbH(LP-F2?qj2r;v!Pnu$5p8u5F-5NPooEjDx+V7%OLQDSr)a6ZMLHG|nq(
z)0q5Ol|uyWqSQmdS<}vuZx*1_g1`kz_Y6^hk+D+pmt+ZZ6+hO-=%Qc?hUzA<B6uFD
zmr?YI$*2R+*?HX-+hxXFNeXkwyRVH>MVJ>SY)<m&LOhoa+^eq|lMvI)oq@!<PqeQ_
z#2%CDbvWs!@|d+Ybp8*sL>x`?9$$Cfiy10K3s8HMpIKi<<wmJ07mTl#1NJfzKW&nb
zMW!8OZI`wpjgfm*xlr8T*uX7(6H=D`sNQs{`z-<y@hYMF*aH&gqkyFh2UIrP=fAm$
z=Fme(anoB9q=tdFzhDJ+xWIN1MgV@Xk!5eQ>Jf{`v#FX&iWxx(_3*0z+Y2k*#k)({
zEomi_DvjHz#pKvtQZS#`O}l00@^%GuBqisVi@Fy$u+>8M4KEzfKwA@V`k`!ToNS_z
zn6uiWDsE-G_hnvL?B9QkUN^+UGJc=2yc4rmrnArnkHeQY#b8?}1x52nU?l>gB2t)!
zeGY~DYIlermnuyAhoDDDoXTfkej-?VQm&N;WXF4nq(8W}{)8a1ZR=ldam{AS=R+*U
zuQ>zj6xyfPh?N((^ZwEOD8DqY*?GzqUH5cySGmaxotCM2B1v09v-JNg06`8Dv5mJ#
zDH+9UlZ0H&SmOz%4)Bi(zqvp~%Ueo7O!nQ47*2m|thIt<5GLk$P?L58mMVN#0=N_B
z<|CxgITko25W^541>7|`lzu!Bc(?~PAsCNxTl1$10kb)v1bJ;FmqY1YLdV~yXGCgk
zC~O@9C7U-`tBI%!Wn_<V)dC2z#a)5dFD`T4f(av0c=$XXul1JFgQyADv&<TW((ZgI
z3oBDq3uOETqT^*4jCf;a5&y8BzP*GHV75p1Z5sd$2#CYW4N-&V(50*8-ichrhRNm%
zKen$sS=3G*-0H?!^H~8bMR0Iv0|>XImPR)n6yz)PqgUba6qDqOQ<Vbc%HC?C)`B{3
z62K(3uHJOYZyn*!!jEE53W@u&&cVly)n*PDp$gbAT}<p)%z-=qzo>i1;M}7%+c&mX
z>=oO#?c|MZ+qP|E#kOrHE4FPrE4gd;>3h3x)vmL<Pn|FQ?XCJ(y;XC5m}As~-(b#N
zyN8aD5^--rhJi&xN7aEB04YmmVIzozJYT{!{EH5Z31u*VXu&D%H-dx%k5E*P{UZpw
z)AG-jq5lCS_;*~ue}}oi{%;(E|53~ZCPF5Le<v|8|NZ&DPVgTj26{0LLMBFzf1K-o
z2W9yCP07yLz}bY5;eXL06b#Hv`1s&WY>oeMjqLyU+kc5)U}F2v8{MCvwn5XMX^1I`
zAGy^tcLz5w6v9*m;sG>71@2|H0o0uqCQ#YoY5uQ8FzVE5a=F)u{X#+|qzpzJNg9k}
z_*hQXfYHe;7x5A7t0*cbqx#MIl&?E%Jj{n)<q^!Hv|N`|zjSq5>%fhi@-qD_R;iH4
zBic5gP1PhZcwABH;Bka;8W+SmG1l@=Q@+?`MTOSGzf??w6Y|$l$l2BYHQU(ELP9=D
zydCIeM|u4@y^fb(H4cvo8h+U7reS!e;|*C91W9eH2!dRd9ID*(e5u$fp-*awAeF=@
zkVYrmsyZy|7R}rIv(MbQB*30)udA8T$|USVXE%YQ{*!62bxs)uYBj9>4N8~rSCexC
zm{i(p!ue}-?7P6dAtXNv+=O>HWexqqvw{>AGnd{d4}i{pf0M0?y0K<mSL^LEY^<cs
zXJc8|V9qMlRM_w4A^xcPKHZ|W+X$_agT0Q2o~#X7%Av@FF~jgK{hJTn&DX5L1uKCH
znXc+ZSAj2KCLOF+!>&I%JMn16Q_^Ad9IQZw5EQ$S?72Z>n#h6N2zGz{tLw!kizXz3
zqk<jDE#a%@=0_Uk`d@WO->~wj$1$s>dp)l(VVAq1O!v9(_AK-lxs5aE-R~4n&4NVa
zPM1dKy^|*!I~)ag<M=wh9KoNNN`e81Ow{VWx{CLKsNQf^;|BZnBccRJ-Ia}5eLmJ+
zxoPLD6VVG4g=`FHNJ<9Y{;1nI5qVE&NO=;gZlK%xWH@7M7a`q3o>7~}koF@3k0SHq
z!B6_LWInZLxMuMPu*HUdeivr!XFQf~CGOxWWpR65e77<;9O$sr7yICPQ+a=7op=g`
zanY&%p;z<?7{%>DGf5v*28WCogt!8m(s_|mlx+XF;djB<K}iVq;ZCpqQ#tUa+O-Yf
ziH~Y38k;c!wi7U>J?ZTz&!9;14Vng41VNc3HUEj9bEBy|?q3*yPO1=z3({eCgB1J#
z{@`x;G<>YxP2G(Q8xjz;V_bOE`*8)|6(qA^E{M9HPF5?bzRW6?&hojz>y=(E`*;%Z
zslPF|N_=C{9z976uRc$q(y)Dm!1*}Q!9M55*m$lTMOWkr8G-LZq>$4+s*LW~ql-qC
zzRiu@=r7<P$h)OVbbYp=T?ZfLizyFscTv=M2QUv!A^`uh1V~PS11$Sy(^RLXQ5IsE
z8k7^_;+mH{87F}lYzpWLDcC=?-!B`uO+1qjH>zgO{<d0e^IC2&S3k>Wyh(#C9%UtT
z;;Jznq2YzC5i?+v>U+Ys^6;CryokmRM<nU-hG>5qv{eK`p-fS;TERYxc8VUxVN6H{
zI;*5pcWSDmwAah}u)hp)(}*5XOo35E{*tEqAYtc3W_^f1A~^z+r4$@v?St2e`@No2
zU~#bM_i?C{Z@Pb7I`;w?OxsBe#Ug`*w!ZAjqguu^ROd&Mr`FN(5##amE_A4#>Rwq0
zbM(0QT>=ShGWce$LFxz99AcknjrrjiSs2T%cZX%6sxOh{$4=^2x0;))uOQ`|!WFc_
zFxoyZ%Q0TR$?H{xH1sN_?BQhi2NowV$Pm3Sj9OWDC(mscp?>n@9m6V^V=%l0s3nHX
z<mLV~Fn_DShbTE6F=~uh@v|Jwyd{7bzAeVLCL2zTeSzj)vf*p4Gbz}4xg0u>eYBiq
zJ7poVfW|)6O`I$1Y;g`I|3M+Ci`9omO2j6GgxN3#fVOOfsYIZ6$upUO)1I`TP7au{
zl;R0s&dv~sc7C<j__^aNr{Ra9c>7e{2B5%*o#$&*lEQb{(BQgPk1qF9Xd(xB`32^!
zOt~Aa+A3lh%fqt7SV_V~FSqM8gq_0(s3RMgYXOZ5JU6>SjozuresQp-BVG}^W+>04
zwvlwB-Jg7=`j7+lW|Le<#+A(y7~+D1ic(|wEV#;{fv;LdU}~^cV0kR8za*}gSpVwA
zo-lmRTR!ofg}>Hy<XbDgd#uDV*o2aN4ha#`Q;iIywnTWy1oNJ(Cch7gDl);~jn+;~
zqYa~55gxMqRk}tAJNhHZy`^?D2E7Eq%~9Nj8yo7RY2hnYER#@u*CrK-gc@W*%+(Q#
zI1EI)H5D#q$=EUzJLyD8BUsBPNYqtQBE4d`<(CzzuWOQxDxQ0<>(rH*ykIpGJGAcZ
zyKB~bs|TH)7U#TRwJKLQ%(N1<LDpz_18P27n7cf=Wb4MILd4=*!kG83=Tkw)U?*q&
zh{2;lI-6Z_tKHg%z&JpB;iCE4=GI)ir3G=N(uo_R=xknh8b<_I>v9GoRT|wCZ%nb(
zjv%D_Tr#*?{mEJM5pPRW@&%ctR5bTfT+$0r!#I4&jx)~vtr?TR{05=$#SC(Ch|8G@
zvIdHRzGY;dDH0;pcwwgT<ZvJgSfoyd0%9}_i^%96IGwR3#dANj<2&-k6MMJgBw6PS
z7Mq0ZOo2Bbt|}y9vv`p+?$Z-CQq#$RAzzj};UyJ40@z2+y+q#GQe?(dJW$23ws`G|
z9oSZ~Ra*oL;+~fzd8s5F+U_kb#0$Bdsa_GohzC!s?6$rKk+rzPUp}mth}^K}=790F
zx9iy6*wV5NrPS=S{qHzo&kSGsxwY~@p3f=aU<#8KWx&EbPfqz+Ffk^B9Y!WRtBkmx
zkh#o@h?_;y?Y=yIYOJt-h&U`iN3mzp*l(jcii4A8!E$g-3HUHOeli7zA5Dw!652s`
z(%!z)UFE#!c%j!>M<QIne&bF*@M=&l@B@Y_eG*><id%#gH^?YVH}umEwMGQ@_vBfK
zh4+f#7tQ&$R?pvfA%8MzGP_b=#oJ+s-G|(dJV(&)UbexJVrr5@4?~@#+y4qJE^Ix0
zPr}NWYW&nKmR&2LMxb7QmTNNRU<pV{*+%(p%FHE4x%`vvGUxB$=Tn>YCN1+ZY&Jf}
z@=ZGdqaCWp-b;I_%5EQ|l-?F8qi1e4r;Ibe3BVACthj+=oo08Y5`u!Fjz*Y|e0Rwj
z%@>!g;$U9E@i`bgu0Mmrym9hwfzC^wF(TiHhKge&l9x+EU)xmPdPvH2I78^(fEqpy
zdXiz+d$!OplJGFLzk(@q&>$2TPdxbES{X5mF^T|@-cMRh28?b<wZAx*>cMXtcZR~m
zLf$)(%6^862@ekAY>?qlB`e(zj#HZSx9v}39~(#MDCYEdk|=GH`HIeKTc>?*agV(8
z2`||*LpJGB=TIN~eZKu<*&p3nn19R9LJ6F){0+tEjjxA~b+ZKbGu^IDfv2@4wXM;x
z>WP(EGniIPh~IFj$A-o)u^<WqMd}P9=3+vX8^YhuA-Oe|P7NlstPQDk5Y-{BtAYC5
zc3F+;^OpEJwiX<e5@>7x(SFMR^%!O#>F<%uGfB({+SsBL5gtQ#cRrwy(Lsz<V*xV6
zv2+&^Z;`lmBM`kN|Lb1Ame5fIF1RA1;aCIwO>B6kdA6RC6Si-G<aSQiBw|P>6I<Z)
zDk~b^kx%1MlAJ3V90#S)Z`9=Ta5eq%3Ely$QBZ%$T%`YqbiX_B)2=kX#Q2|?{(rdK
z{{z#{`44kU|3Av~|Cc~(|H{+<<J|w!(=)QMF!1p?IXjvd*ucX8r=}v-cDOXDZ((&b
zT1691tgfo=`a?^{=5OmirsvPoJymmyQ+$(?6XqEg?u1#JIX4E#sLRf36oCh*GMpG^
znbn$}fyNq{4LY~M6nH<ns6S3H(NK8_h<%(oEkii^6|9J5AeCN2HD*4L>xw`N%lm97
z*|=AJsJe&pg*@>HxcFFbWbL=ti#dVC5qdi3B<^igeE_ZwU1R4Kivf?8kTqANd!WNc
zQMb=_Uo6<4NA4y0!5=CDOY^|9Wj5S#k7zqW(Bj`fIggPEHQ|VCc)S;CO$#WuNs1<}
zD0WP-LBNYw0|bMj8u@lgeuJKT-VDuwZh|AR_g#_!+`(2vG$<=yIjOD_N{J*mxAiRS
z(y{I+n&&-&G%q@554Azcp<h!pq0P(%bByTcDQ}mPrG?tSaa_XDCO;%q9ZW-!fvR6%
z{b#46w@tJ1Ue2u%r;Q>kEG#9DF;s?!L49itHi<DZdK~5Ql$BSUGlVb+Sj8YmqB?&H
zJtTN;p_{4m!_zZYU`2(3(S<6lWdijLb-glt`*)8joi<GNm!jYIW)0AmPaUyx0Y^G3
ztd(rGKMP7WFD=^b3w9_F6V>WsSG)IMG6L~+br#yq=G^TRrT&!vip+OBCj^)VRWCh~
z_!Et{mQkMToKJ8{>d&{UvhiE!JcUI|he3&MJ6L||?hP1j6|KL$QfRlnTY^792lrKK
zP@>LA8|%N^VX`w77w-9R08_LrCV8_!<zGd!I9~C?pYQ|YW|no7vilwrcy~=EWDJ+z
ztPCf}0LWv3B?=^n+5Z@ZILxzb_-AQ_OU(fF_Ws!?hu_?9d|{>|$lar<W9VaD7`cs8
z!)n^Gbv^|totm+dpJ+;Z$r908M<V5w-<^8qMOh0!UzD*rJ_c?Wk%f`g<<%*0pX8lC
z{la!b&5$=koXd7JNuLi@TUw>mTE8!CM30mKi=n&H%seDJP#^3$&Cz#RB%UxJD>A)n
zjw<8*y><HzDZC~>sAd9e%pJj^yK6?hy4%jX&T(grwo_3sw<Nt`1D*C4=Fada<5V#2
zGs4=%d>%n!^dw+!6K(F*;%TQcX%<mVSfS*fW8Q9a3i}%&R7YC7&0+%>$(&Gw6TzLp
zj#l7f9t>3c!ll#vwZ;oC52Kj2d}f|<tRoE_+}%npA)e{?$BW*~tJfkP33>p}EsG+2
z=rOytl2fqSTAv>G1>&2RJ2>ld!^BIIP}X5|94|NK-aWUh$at;<kWSvS^n(uQP|k<v
z>Dg6E5^AVc4NpA;Qz(1;IqS-)REbHhmT4}zX5AWnU8Fxxq>&`r`z+rix^a%)qf+Z8
zBlb=i#Si#~MlG8_JEIhE_702syuo?=UWLv)5LqCFD8w6*RYtQlLUq!_zr!i$<q)1H
zqMuI>-#=E?)WZUq!FaX&^I3a^hLD$@omLByK`t+^X`Y}$o^V&|N`uJl(QVP1a82D*
zyN&X=@L)~)6cdp-FWojOo#QF5N1F-z1z#z<apF*Sr(=~I=Lw5<3y!Mbm$8`=Z%!O}
zLE?-cKKE%bFxPmLyY@JLm#q!yUp*!Z+Ki7p!)5YwJ0`AMmgtCMv+|yeg~@f&SFFDy
z)?#=k+M5Vy?#3v@Q!_>Z?7n!XSO_l-S$E~md%byZD8Uj|CPII67kFO`gd=&j+#WH~
zc4f0km;pm?Y41?R$tWTsv`Y_Ln(s%I(P9y#Px72kUb@{0vbtMl8+c}iQW3(O70Vwu
zEHNj9Aa&GAs<Rq62bt%YR}DKBg15R}L3hxl4oS3eMk57$o$6MbhqJI(QjP7~#njW1
z6p#_yu=ku2`*hvIba&eA56sm*6XB3YfC%VKJS-YkOfp-JlUDg=V;-Y_1ZbZE7oiM;
zb?1`MB=9#CKiL<VxNszBhEt~}?Za5~q0UlAc=Qp7fi^MV;MQ4P8e|EwZ=5}m1NGuH
zKU#?AtL(~6z#4C)IBlo|0v~RZjM06#(?Y?{N$^fL@s15V=wbqLSHx(o?rh0!Exo8`
zck*D|ehqQ8hX3|tUKsLiQo$iLVZ6=9>bv0Fy6=S-BQUAYWRmN=+3w<tRDTw{<Ey;M
zkiFQHR~*$5HJzPmiWG*zxCV_)4FB=U%g`1x?Zb&P+tW<%{TqX5mRHk5{Wo5y2tP+d
zSklrX{T5u>yN;mM_Y-R-@;^~`j(-qP|NH9B!T3K<-TzZb@Bb6}|2uWOf4hx;t@-R6
z%>SYJfY;h+rCOg3PCZ6&l75<^0M6#?(!!1tuwV2i$+n4!MqC%}WPV?gLH>U?=At{$
z=voXSDrnl!wXmf84(3%nd1p`>aU*PPr`5nl#QFQJB7e&K!kXY+-H<E1Qwi*idM#*7
z@?hqzgD_GfIv&AvAV?ic_vX4wcPVh1P-OoSl5K7IN<-1j)>wR3tx<T~7e=iEkY$9t
zTDChDvSQPLYejg9+^`2(jGkvMfsL)#-#?_%zxK4JaIRgTk!!>CJv9waOxk(+?T*E&
z61X+8-b{^0?0Q5UI}a>e|G~tZB7wE7F#>8FrP#(&UI@vLN#jM<@rg&TSQ&o5u$Uj?
za#Gx6wXY#X3<<|@+m6Bj6?l5tGBlE!s(5dUOoGMMjq^Khv$KN0q1GhLmx`W)yQTp3
z)_Um8BgC1AA$=HKe5Ac3?iXoRfX~P5A0@Alpy=ee6O~Kq?%yy&jMXyQAp<=`O$WkD
z8VO&3DhbX<)hi<V3N23R#Lkvx!!_f6aD<w_4Bu*1VSM)X_cAa^=8Bq|D4)EKZ_>i>
zt@o5(UI!3;TWr3P+Eyvbr|Us9(<BmX{<>5UP><kuQ)BHuXzx6GA(^yqBH&)~Ay(Sv
zUR1oSkG@6e9^`ez+3G7lfkcLQoESK1_pqC8jkpmmM(KH(T=^i^b*5335rZF_&e3$J
z;R@*lCMNo<&O(CrR1EG9<<pJZ>qSBZ$#_of;ZNGH4eN?RU@C{mkYh%Gdygv~idUB(
z?=_whFA5n~_9Pt@R;hI4T^+&VGjl5#JzeZe*t<Y*>e})ecx?;rt0!wpFzq0d0R0vy
zxW#10r?b8Yv?w(Av8DAPN<_(%q(7Zdm#>b`MHO2ab4#E6iWL&YbXTMScSYbI$Dc+o
z<0hc^3bxl6x_U7-s%fUA<8=bF^USxMNE|KA;gmo`o|w8KZ>aA>*w{K#MyL?^j?UC~
z|H$?e{CH%g-1hI_^6WaTHN2NmkIj!}sENCix}kZLCC@JYS#E}Y`vwEEBy!b#u&kU<
ztJue|w;eOn^FS|T7^DfFzy0USza@caQwN`2C4w4gwy~`CG&(PxrHdcGLH$N-9V~2n
z9|ujnBFt*3cZ6XaoDdy(sTpJpf1+;IicW}1zFRl?kmU9nRv{if=66@^2le1E@3U^^
zgeut)9;C9-4qT*K6>+!lLChv2J{X$kY;6()t?hvLqMIQkS;1bf^PkypLjGOwvF&49
zMZ%6&ygz(|MX(gf`am4>i=oT};Bfd4<>1F((C&mzzwN~$thA=#ZbyESSS(y~o0-(r
z_mYpftuv4eL)4aF>uk*SR?-7DzdR6J1?b=|?L9>&$(NTC3OZ6#9J5x;O&wn@1vf0u
z@v1j*68Qsc)C2QTh<h&h33y2iQ{A@Q&K37y_zSSP8cYr~NwjJ|BU&lw^qQC6$t@hd
zuENQC5!gFdnTUl8@R3ag$tRs8Gq}6tA`Is$)~;K1v9gC1IPizhZ(`CH$UU`9benDO
zqm9UrEuQAp@FqijXpciu?3EjF8v(49wH&<NALMvR*D?E$?%SAABRT=0xQVf33g)1M
z-gAttt?nDd-4qwIz}gyXMTl^|3BK`xW^-#xIol?^Iof1==m@E^LJ}hCA%MQkE8?%@
zs!&~!p88j0V#Sej1dB#hGZ`Qwf!PSkhJi=ZTqCkun)Xj?tmVjJj?Ei4JRAYV13-;2
zBYnV9z3*8$O+w3#?^a45!wesRCjo}@OYZ$`xX$zkjUgk@jaR@!QSEqOUmdB1#5mP}
zK<2M;8SqfE0yTqmBQ5Um`Bdj?1}IKNp_df$xe}g=kWW?$D@NJJg#mqFN#<h2IS+UR
zRrSS|7tZS7<&16$)uvhl?mja>Q?h>>{Um@@?Dn31)m1?6bKP0YMn#>1geqCO)jQ&c
z)PevFWqgzm<f$QFac%ZHTlq!Y19ml+$X3Z2bjZZVwBa0&*RZsYr~sg&7p`tnpVIK-
zEu-3_!JUe&y4GHV1H^a%*Mi#e2rwhT<52MqWN?@5N2rOaEfF)6TJAO!nR$`KfoN6#
zy-ifMqcSX-GhvY~j4F@F4Ewri${4E(w$1gBNwWWpv$@0#CZQ#m!_ELnboKPxSNgZ|
ztcz27ss2Y@U#v|l+5nQR2^Ruy1JNHiy;oV<CEV?lInYRqnUm*Z25G;AbfyV2(E&@s
z&8CMt{RQrdpd=)LVH08BszPm-82UjNR`UuuBOEqQ0(qGIi1d+KDbH}LKqt^b?^tOd
zD>p6$g=zj`?TDi(i8UD=Eho-tS#vkw6~Cm9CtCeoG}0ylx7&(_u)F~io61Am`s_2d
zBt61P>#8RJu6Ly8NJA4(Sl77UKeHhJiHHB+=qmm@DE)s_f#IK7kpEr(@c$2W=lC~p
z{J(^{|J%j<Yd6Bo%=RB{q$9@GiTw10Wl4xqkPrTBWM$ACOFACnV#AQXpvB+rOQk@b
zY(fafC451S<Dq?vHGS#YIA<P{kttMt45`DV8&^?2mf+1QXX<6rp9-tWX9g#o*vgI1
z;Uqj;>iolI+f;B;TsIetf$r;Dg=eFU#pO-GyV{aj>)m)6+oEP%i)4D}zzHJNR5VUE
z#d$9t&1V5K`*P7jZhT(#sneAA0pepuZej~{`n4~%|1L+E<~Kv4NiG$0Eq}s9td8`#
zIEFI|@i)WQ&Zm}L0M#UMcwNbb1Ox|AT(8zUX}hc>nEAt7vSM6v-Za;~<Ge_YbGyM}
zqdha8hbFIMwaA?EwtFUEhpT{NAjgfzk*mD9(!=_4Arpeg80`^?3gLjTA9v15NA(B%
z`l0L8r=#f(NFPm_@kna)FyTQS{_qi{tBb;b4l;mcIl%=C=A-+^o)C2)6&54&eP3%j
znNBsyqZ9bhroOt+MWUr3bgKjJb_rb1Y9TFhR~xz$?h3v81)%`+1%A>A(U}0%PV6L2
z{xfu`9cmdNX7j5Mj*nBEA)=mW)6kzecf2tP;2cir28WcxU{Gx*9&aY-%%@$N55Hg<
zy~nx;gy@GYe_ftt9{{^Q0uBmTl-U42uvGyuwvhAXWpOO*&vX2NzsnSYPN+!0{jwF+
z5Bdl4K=+ItEwhDCQXfBardfd24P~dabVv?r_A>H`F~+wilM9un*%t~~tPrVFwr5`c
zK+9m&W7d_Gz@2dl7dM?oAwb1@jlSvdjR%%lstGvd``_bce1BQ(R=*kVgHAIu^NGqR
zXVfip%Gka19#EzzT&xvmxmJIp$yR}%YO5ekHBY#FaJ=C{Cg(}3*CVK!8Jb*z>PXt{
z)tzkGx0T9ifV%-Da8ZB&;uXfqDnT)9A{R^9#zUYV%kM5Lo&{$4Sp>7LaWUtsqlTVk
z;M58GE*1#&4K;WC_^Q2tjz^qX73OQI8JMUdOgF7-?@T6jcbh~fbcz(XZ3icKzbriC
z=SQ;4fExxD!<7$wO6fT?eQtxrUYCzu8-0#LPf@V8JdD@+%+lM=E=(X0j3_8di`F<B
zd{AdXAK_R&N+wpc+uf{nby}v&trqV%Qet(y^jkPCE6@u(9JmDX-}2MT^QFoA<wSsA
z4OdVX(EtZ4fx-^!>W_vXg&Ds_5@WF+dOWnI(W0Nqu$cwrSZ#F@#p?Bdi;7r7y;gR(
z=BH)K5C<HuAPz5{jMD%-kqS8;an*3SxhVnn@IKK&_dj`&;;yqcL<U)HpVJLLc{r08
zx6+)Pp1IQk%>_g84m<9@S2594>%(a#Qw>I{6t#^K+6b3Khv1Pi-<W4r8-Hfb)b!_I
zV0RYdH7<%lNHR7fhobr@u8zfS+)n!FRc4jdho34$;5)5*lPcQnz`d1!mKwXQ1==v-
zgBmSXHM*IDkWN}i_V^l#50o4*S5nPG_JcyxrLBEeycw8*Vh`{#G+esGwjucoNi&0f
z?p@ghLe<{==D;e*<1hQocQo9&riPl&$4`bvjPAwr9e&-XeIK=FImeQG4W#C)fI{-I
zEo&kKw-GKm%F=e@=K$n2HrpN+1e46^Qj$y%r;nk8TEb^BzA>U`A4GF5g?UPA%>R|?
zoVO?9SNmr(XE+Go<-v*mrLVj8_gCDz?vhXg$f;@0c(KU(RqZ+W{q!uSXi&-k1$VeH
zin>Pw_V-9?<+&|X-90Sv{wcywd~oyg_~&cV;lEL8!Tk-9HS)7fVOO@8{rOd~my#N&
zEkplI&i+%T#(y<2;NN3lM1)mDOpNS|P3R>|EX>TE30XK;{@)lFRwh=?{{sD=mGwWp
z>UZ$15`o=~vc9Un0ukJ%7~;o_w@SRr(dlJ9hH}eHkz+yf!^v<3EfqLD<RzqmY_kL}
zPCbMG%uxMvT~j{DLpA%E<n%H!t69?c3W36QLNbW(?WL24so0clolB-|j$|1AqxIzA
z(IEHVb|jo&VIJ~90^)x-IhE;zf2&j~<)>BXp&gwGwQkqI=;ewFLMm>qRU#%1|A4|i
zNo`ap_kGvX$;-Iyh>#*VzeQyG?TAtQd-dv}E+ZLF&0HqsWl(4#orXp1_N7C<%qNDA
z5)j*<4(>-A%i<jXMxpbq9Z1*0A3FXW6v{MwmJ&vA-+q0~!E0KkLiNHUWvD<?<&gi3
z!ancnTRus(t2O{&gQfWc?(!>u+(UIN(8ex*Cr;_{7|-d+Ee@nuIB}z}oGiOo#u434
zomTs0Qd+RNIXdAtSXxe{=G{RE8OWNocNS^f4+{Diq121e*e)R%&AU66SYI`;o6dr3
zVT;nGRCsHMh1AQ8+jTiN%9YLB-fN&5*4qXN!B{DKJmnf_)WQK~2<h{DFvEVMxEmy!
z@xv0;S46x#p{Xwoa59q~3#Iryew>uefV};Nq}dMpx_K;?>wRo{$y6pkv|e`8`ad2o
zB7fsx$w2i$5L3}*+{SeFd8P_NQuPF1!g5sqe2}p!{Hh(AJjcp5MKF*R;xQp*#$dXe
zVz&BnXS=?Ninb@7W0p2$^)E%S8>40d%T0)IpeQ}&TvXp78ivSN7lHNEM-(LWus$p|
ziqh$K0cdM`b7-3KOlW)9L|c2lr@&|Q7IEGuQ`5MyqN)&K_++oC@9!NLABNW1mSK<M
z{NP<^LxrLEDZ0U?4KR8J2RIzTc0k++`W^{yeO*a(js0A<c`Bw4Xno1MHY&xd7;xGi
zsKYCz>YTX&q970p6SqR{eV)^SKLQeZky0RhS=_tfo+tWw#VW>Kwe5bacgTY)cnDw4
zTCIUTWd2z<5xW(Lv8cs6$KgZ$dVFlSPo?7j1%Gg=@e>r2AzO;p6=&($ajK#)R-jqa
zqchn7b}_EY`}$Qw|2-$1wrVSE=ts)p!;HxE*cOAMoISaL=IO*4Fa``$tO}<`>*4P0
zSu8{B`MG{xQL<bTtB?Fo&_yO9+`WkSm9%|&bPIzVkL6$xuazz;@$P09_?10l3yojU
zW=qOqy`UX8Y>;Xmv0;-&I<y+vn<nG=h8|O+53I`s4CTYTY}$tG6fDNDP9EI5OM;5w
z!XRKUUU2q~C+^*2tAbb?xOqojs?87iQ)Rf{j!I1Z0ga3?XVI#?KLqD5I-)a)VSYj?
z2$ej@=A#3LhmU@6?Oxm2ncvzP=>SIrW~|dh^ETQwOEeimu|=wJG3QO(C(-j;OZpNL
z>oIh_V9b4KRmx528TG?pw!_R8oA1{|XQ0q9P8T?Zn&Vb^bu19b9OZKHfb{zp%2o*Q
zH5nCvhc*Aiq>{KJ5w+uz<gR+2fB7zC>9>~iQId4d1AebA92u>aLVxqB-}~KsONA92
zW|JD3PJ-!5#+$&!fwAqrnNrETOMyR-cEJmwJ;-3}mxxS=Q<KkTM`u)i<D??>+u!Mg
zAQ54VKz;mUH?7dkRYL=6ICs+Ed{Z5~Q@m^;9n$h;Bqz}16+BN2%#$vLN*Hc0H0YQ9
z_f2piR>0yN9S^q20g4vWh0_LSAaI10&Bq=L@8$6f=@hYVNN%A_7!6wsFx;6JM6Kao
zeX2OCXKw=TG~i><3nBJ8V<tfdPMEvHPGo<&={xSj1m5D7S_C=&2OsUsJ(-B*0O(C&
z#L?vntK6Ix#@yKV>C3%sgmO~@^hS3NPw9^SZbKsos*b#7J5YOUUG%WMGx9EI)AV~I
z^lJ4zPZ|R0=*CKC<?D>kX?d){j6HPQQa>DO+gy>nY|?jBqRMKHS<{;GWgj&3!8$CW
zya@1`d?)IzZ};p|%3MhTXKgmpsC!GIeLT$reqg;Q<ufdd^3g|b1kcLODWA+1V*n1*
z7Nn&e1$y(T(>3|NAJFd;R^|!m$};{gp8771HO~Gw6J6FFfdy&SUGm*RnHNa9&uY-D
zyW$A*jj!c;{1b!DGn8Si_hTC9uECn`+juj-9G3^*EH9n<3bW87?B)X6Iq|D?n~tBm
zo{Zhv%2kVZN#qwVgV5-w`l4dSiU+7^fYM(EYf-gyG&M~rxDPB$$yp@7;#j@vJv*m`
zg*eQYTcX!9DGADFX_DA%q(kOvNLJ6l-l<jm<cJf2E_87NwL*b#$hnTRTcP|6vSy~!
zG&hMzo;yGXHSiICI&CuUaPy_`ohlxDs3hz_jn`Msm^=g>KzaS-erTPU?VE&NZc#B^
zm?#j<jf^*<TV$DCP;b?f+Ze|=1oHyuT#N}@=q`N{UkE{6EW~NfySl9YL|J5&MKyzW
zdM?AbEmDI|k3IUH7B~AsW{LKgK5^Y6fcaLJu_;CYmd4}cC<|1yPLsSV2W!o6^Y4T$
z1!;a#zQ2kl8GbE-4HS!j6c&5QCRRSHAR*b8pADLS7e8PJB}*TATl-<$g;`DCERks*
z{X{N;8EZmD?`1*DCo0TIm94aY$X<m7W%Ab_J7VtLyayVOt+W!|T{2|v_O(6+uR8B!
zzO{dbR7x@!Th$U_&CF9z8s3L+u?~O^!5h!MW2t5rkhx7kUqqX_uW^&0Qa3CtwtT8<
zt-|FgWi<Bp#)!pBEp6qc`#3PgwM1rcUbsCpGDhJ3c9qa>QwPtbf;^&TW%&_@etKP7
zCfD#~t1;C0sx3fvstiAG4~HPdq$aZ<Y;m+GshAJ!TT@qufwK)5!H+k@e#EqRR0tOA
z{-aU;r_ne+Y948$2|Lp~?jC)qh#s7xv(pf4>6z%WQqH0;T|zQD%8&H1-9^jtR4z5A
zJnGrKYz3eA{04Z0p3gZd+V6AMwZ-3+jt0wYm-rW@DszLtQddB{8F?(Gq*F_kTh+kE
z5vyq!1z={{5%gO1Za)hA)Vbzu5<!cPUC??fN;$@BtGL7z9b}ha630B-6mhklaEso^
zB2AKxI6M5y>!33a!`+=0LaThkM@~axj9QhOO1lCfo^9v%yXVC(_CYBrcfGY^;_%%W
zLkttJdv>rc(b5;EQ2f=oR~hsy*LDpgPupyk$*Zr}Xx#miV8K8jePc~it*Z%cdZ5|e
zL2Z=Y)`)TehDAJ+mqikm2V{5o+u1qLD>NiFbNxqZrKU!=NAY9DF9}v3oRyOK(1GZ9
z5<lTX-_raUYBF~dRa5<^dv#0_pgsH(?XWe&TB}(v10-|ExSvT0<>!I@K2?tZ&FGXM
zdk(1U-l_$xWhMMm<IySv$srI1&08Se-j%`vI4kW1t}r^L%sJcSR!=8<@j``P5`$IC
zzGc)wk&Iv2b>H<Eu}g;Efrx**RD_t90psf<dZ-(D5Pnx&N*i1R@~W!4OHe;9jU=;R
zWHy|D9lzHTMcXx1CSjQLmIE#@iquPp{OOO8Sq3Gd!SHQe?oL=+LmE#xxd=V_NOIu}
z<Hlx7zc-7j!bA(M1e#3>u0P1TDHBVl%n6Ea8$*fsBgDG&&tF7Zg(ZNq6@}Fg&5u^+
zJj3<8lmc~=-AiL%y46K<K^X3b3I$iVt_<W;=(!<jVtnoN807EYK__n#5fAQNe88zl
ztPYWx-AD^(;l;n<%85(vH>3<d5@-@$!g}Vt1&}3;ekZMN1)XJ<`0vp%c4CEpbR55I
zzd@e2w+;5BnKRP<$lsEV;p!9uXhFStm}$5qt_YKVD$W}rC;ieoPLvuj4~z-8s!Y&a
z@r+gn8vzolcYQxw7wliD++i60D*GiW=mJ%jmu>+-(?;c^(N22v>R`7D9(E(GbV=39
z#}q!Y+l)q^0+yRzC5_!=4U8+Z4MvKHbe?ezS~+bK?L>|g@oV=ckxE1a4+_Wk&_Pj+
z&qgh3##Xnx(^e7DREQzw5*c19zG#$|E4Ch#Tai3c?;5u`+*jjt+qPcHy&$*HRz?Z;
zP{6yb5QlA)Nf@M%Z<6l#6_eC_k2HYw=|$Qps+W5?uY!^84i=8uB>yXCI;E_6R+NB|
z>EfWxGn_MO1R*x2vqq=Si)iS6X-l7EnxDqDsjF@(1Rm;1ecWWBCuJr@m2NPX>)HO9
z6Dv)Y4kCrth-C|tSuIRfyu|Y++#&yP0XZJD0psj_<H;3%j@HSxp}~eiVm-+`Ukv&U
zpMT09^*gBkyzFCEz6Myk&axH1@lZ0q#u3&SM`ohZq*@or#I51?<pYl?{VH0jBE|CJ
z>lnBkb{L(+OVu)`TPJZA<G0l3ylAT#L>5`ryh%NM+#46xkT~+HYN{QAcdDme&611{
zano@jvfHmfu!*PPJ<oD%@=@l_Dq7IlN9va{4d6b|k|U@GOjJUf-=x$@L;?FPGznI~
z{MXrbgW-{Sa0$H|xdppq_bQ;{1LGAX-eD62A$4zhK?ZFjypIDtLRC;kdpy0JiV|_2
zGp_!wfM!6xwI49_7Z?4*JeI-j$W09r%44aLE<4j|W7}OJypAq7%`60sWqKZ`yjk=r
z>n%v-))S7D1Dv%FXVu;fu;R6AXP6xT2h-;i>?ihjyhUqlixr~Cb-7od5eV*aoNT4J
zuxv?fb38wh&5c?k@`)qrUzporLQ(IyOtF#TDt{&K^=X$B9(E26EJQMd1O*m}FI8>y
zbJKa4f}#Q3FAAPAAFj87MO=e5L?Jv1R||CGXDVa3<!YPaHJI3ZAumM9YKYC!5S?ft
z+lK(ux3o;g)MVUBif|H80c;dRGPSmz<bF#Pro(!FDY$1%izVQ%L(W6j;eF9?svp#s
zk6TS6aDa*20-JHQckZF%6>;De5=AS4D0&3F9dj{L&9<lb6{QZ?kq!6eGQ`8dp%ZXZ
z?}u?T_hJ<=*M#rtj`xG*{ElZ}b_jS_cKE~6=|fd7&X>S2Uc~}tW4<N?t|p1Kh*V1u
z6hRAjl?O<@+>2AqV)##a_QQGQYKH6=Sp+kGOL&Cu1O62PfB)#FOZEKH^3s$tfWm;n
z;9_HLE-gzh+@fqbm{RH;S{8wb#Ty(u+SD63zQFLLMGA#5!^mRuA0u1_X4{;uCFm2K
zEie^mUivI#gtn)BD@crCZkqzDlVa6h#Nk?wGj1|;v?#D5Pm8d109pd>R$ZsXSNaLK
zFNYs4+OspiidSa|q-oM&jS(fb{^SRjX7!fxWO9PC;CYr}abV4hyk-qTt+E(N*FYyO
zo+G?Z?vor!di|`KhY=9mQ2B&#Gby1IRv7ce5IpVObg(#113GQD%oUYz+7yTK;aU9s
zDV31eaBh1tae`)=Fi-y{Y+}Fmcu7Z&w!{cS^@6xr7-5IE3INq_jk%lO1dWa3&*@`b
zQsPIqYs)y0F&&(>s~&0PXgA+8%awDeEza%yc?PS|8<Rf00D{AN->iZkfpfS)trtj3
zZclFIH?(!8Q|TS8R*OqyBoIH{8wrmGyJcYSqC4X(Rp;=$ICCWobWC(OnBPnTyCu~b
z6Ct{dfhtf)CiiVxFT!0N)|8<kKshZuA~!MRoTf1ac8PSTZw<zlTp)X=ZXWU|wS;G}
zluKL}lI4?i(M2I^)cRFd<Lo1W@`rW*?<mWWSpK+#-I%%O-{813T~t*eI*fX1O@+sk
z-VbO}-7Km~!Z5Cvvg`(hJu^{bXC=w!3{W4ktSS0Rm;q-bow1OgLY_O1E=Vs3s)m1R
z6~axuR;yxw1UfV2NyRk^Y%N+nYBye!&<`V|YgzSXS#*jaAj{E3A$@@8+tpclzx?oM
zi+%t<YGF*Uv#%g<(gd`9Xz@l8MDHRb?cjhfmq+`Fzr6V%ey(JWGJ<^k9eZL;s}Wsq
z*j=J3tlbDQWtA3rWR!g1Oi<PoFD-=;#3K2YWsbI@F>0pjK+Z<;N5bROjiIVMN}N?y
zLxElOq_)3KjU8bKkx;NX$0WlcnqT<AaFU`o2(My+Qewk^H1+cRmAZ&Cu7&-!LAC9F
z<|<IlcUpAF{Rk#hc@t(a_IS)&t2nYAOtZ(*+ID@VAUB)P>5oOwEgVph{(hZ+FyP5J
zra>=e|LE1P2wY+G1a=f{8fe5ti^G;jpE)Vg6&3lg3Uid#+P_xi_fG$nON*`3K;Vdw
zIup^8T@BBF;14cRiP@HU6namgWuQSAo!*Ny#o9Nuz34tW(*WirQ_|nX_ARIh;;(Aa
zPl9jBQ-P48_~$N&(uAx+O^h*jyyi>cu&w>82*nNly0@}p_TG93WQr|K>?aoK^+%A-
zp{U_<EOPm8y|uL*3U)z*b8^2egegg*3|Kzl%is~Z-h!t@F0v+(cmq~se45(F7m4ls
zG*lpYTejX%O8}&|y|mjW_HkT@>rjcW9x#^CpON~|rg9%(jAhq5B4f@074=|z&prgd
zu}fHMl~OL8OcIuj?jPhvIqewOFhjVOFa>^5xYZgyZ3)$W#UdkU>neO9YN8nZ;JP)#
z6(ZxYXVQ2MNpHybhVkOQf;BiL#r<8Nzbuag+#B<w&mTzl!Kg6jm=#_Ijunw#O)3P-
zh=JW~Zb6)C(j8$BD)Yme8<YuPzl9>TM?T0;tYXTGFQ<JC5O=9CD{?EuwW%56emXqq
zt73M}oGBM}D>4gn(&O2oCW$#%$&tjBPczlKre+RxDcgTS_l^E>3zpE2|1MoulrHaH
za@}m>mH4|T$>(oEZFxyP6EXJQ%d9wIA+-*qdC0SAqc3I)Q^*4yH|lnZqJ=ohg>&N;
zOD-OnjW`5gjnG2`)>BZBRmZ=0R?CTR%fKBjyqC!ZxT)X&_=CNLh7=?qtU?O<+FrN?
zFy%3}=#zfGCrXl12f*Yo;;>MHKe8|a!F!kPKuqDkyL&~9qd$v(Q^0Oh_?7oW3i&6<
zh1~w6hc_3NNJZ7!q`wjd8;SL8;f7m$G^(sq;=2lL+pjZ5z*yLv??%H@^KvErmGQvy
zHMs~m$v|4JbGr}+J6#YXxM-;*;%4jg=LwChKtU)1%r!<Pn$46PJ)KqWju2@>P83lm
zE`%xKheB4^%QJ>`?YJJL<=t=%&Q4y2dq{G>8D{#gaOxh*HPy(dJ|gJMylm(x>pQd#
z#BZUF&@6<fF++cf&s6p2fOO5dJE*SL-a2C-E2%8_KU+6&mHpDf_#~%K+)RhJ&45Y{
zS2WZpBN_&{R8L1Cx{88r``wkD$K)q3QMVet6tTPy(qJ4v{SQa8kUz~};b7FdpjRD-
z*nv=FQ)ZEC)Om^SThZQ*US_b&E;#7G4s=@w?&;EM8W}y>#9O>78*8ancH=QQWaNk0
zV#QpYqxW)4W!L3^(WFb8NxQhPBP$7-w6VSyo?y7hOs}6jPN6|Py8#V3kGz&#<nB(-
zAFiw#<6xdO#?ofU7eko2q=cF)bHVyew@jqoHIapf?Dz`C#NhR<fQmutOWi$~VJQ`H
zQM;n09<aF`MC`rbw{$ESmwhUkAe{L?Y~$2|5+9*^7=Jd$2jJ)EbO`zx8u$$UgGJK_
zQ4F~=%jD9oj$0^mNe{HKfY;RRBLb;Lk`K=F95ff1g9X99k8`)fJSzGms=zO2q@ApJ
zjKl$KY(}kMf9PfZAqRY!hfX#ho0vtN7HL|oA(3*`wy|f+GLmrMMODOcplg8bB|qDx
z`B8Lk+>c7Qw~nq(1sCw%2kT99j3m0m5E*m?EP>TU+qxTt6|{xfMqv5v_Acp~DA$VD
zpm_-fAqdN%##V%%OwDf8glBzm-am-8Os(@jkqQ8S-`+u-4lOnWRa=oM(ye3pfx&pH
zXF%d(WFxUq)ZE|T{uhf--zuPkxwmafFcm^WBP_#k-w5c;MdqbjP`#l<eJY<h_B*<M
zI&u-ggy)wipvxEURj&sWJ@jBo?Hry&P<+QZ1F&;qE^nGF2x;a4w<kv7yEZnPK)-hU
zruj)ZpvN&`6j$%u6`EMa_SrbwQxtsy?JPB1AG75R1Xhj&9ISS3@(3ZC1{lDF>Wf=|
zsUeGFnNWY&%ACW-t_d0K=7*$pv!jps15e0;jMO+Exgza_6@4-$Ig*=77dwP>{G@$n
z^5}uSq8_UF%%aB;R94PKgIz5&!}bx_pB900FvJQn;X3oLzxXrii+Oo|KEPzYff_Al
zyA{{NsW!va9Ci+#QSf#zExS*uWN4-IUS<1idIt`{=#qvn5V8K*dIxk|84{cJ_t9y@
zi3F^h#h^Py!>$2IbAB^eF=3Kg{W{vLJ~AE{cVw^^Kb553=E0d+O{Je(0#IBEnRypG
zEpgJ(heDXs#4Zn=hla!11k^Le)exWW_#05Qb5a@U*HJL`|7;!Lg;9}>4#;4K3%=G|
zvaxb`1gWA(H=px}0M$)cwJtJo)`YM<Zw8wf3@J?Xj|ma+q#*4Z@O$|i->?i$i4G>Z
z)-gnRHyZ9*g(RX=pW0CzdhdWS+Z!#!1==^Nj<r7^#Hbhj1DdH!SVWlmO^rZF1{5Nn
zWV7l~L$WP&=S2lt5qIaU%M&E^*ka_5X5ToV@XvwNq=cN{4W3X=2L+9?H~&h4KRwxr
zja>q!qo7~Ng1~s*EOIS^Js0EOY)U)N=?^#0I(vg{C}5gC$@<r8k(QYKDoq)5-n1CX
z??0Z)RMG1Tq`F#gz31clKXJb<7a;RGv`xduwvTAVqQktoUWGY&9nPFpilJFW)M=9{
z@N2`^v-PQ(7#s#^RGm(^1KS>d7N1><h?Z_q73Z*`+sN%R*w$IReIAfzRw-+>AK>B!
z7+JWv8|P9b@UkfX$qC9^FE)K>es+m4rPk;@?>y|_<6B2D!@u1q-Wx;T>>t-*Sp=bD
z?}N;_L9)C-?He9#lSm?p^#mgwrk1ZrknVAe?^!y><k0F2NExv|6P_QKoM${^20!Q1
zd^EuI3A|_w`)zDYqy_?1OrBVBZ*vw?LeWda(q!m(S4lvsrse!SkhVoG+N*38Vq4_P
zxj+g6roIB=D%%||>`!|BBXOM7kX`X_By{U=l>lp9Jv|b1;FV>VNS9~Bc!`e<-Prk4
zmYa(R<#9)A3a_gUkFwl@$JubT`8Dk!SF)=}L~MeGeNqK4Y*cr$BJH}!x`}VoQ_x7U
z^&Hnp!Ea&w<6KbBX;w<%fTTSRu60~fvR`qN5Y6-|kAkVV^53C91`G9YzypN0)1g-d
zf5)xG&E%Hmnjq+;ukyb%uWwY0K^+_FQ%3LkGaFgm8O-Eb94Cl@iUb3JrjsW?6=l-H
zLRBdEs6jNOaz0wtG0;W|1ekL#3{rQuLW?0&wf^R8cm0MJDCKyD4o2uD+0APkl{p7Z
z5Ylf*w2ta`Kr#G0x!ph6blb$sFs#f$mp%J%d+H=4FV6(yV|;TI*Zcf~mmzGXg^H*J
zfcUf;*}S)0BI$#T8p7vGbFW$S2=&jDv*|i|IVm997vE@!{9E`*#A#*4DNnWZVNJJ}
z=}VGNcKzW*WJy445YUglGfB+6MMzqem!hb?r_Vn`=%FP1sx*qZX02zX&qM-(6NmZ7
z>UW1-xErPzKKOF<a**^Lt{4kw#3t;Z5Ni%&7x5i2IQc&5pppi^#}BYQ@dZ*K{a0k=
zU2Eq)t$yPQO%oB5v4WqEj3Sp%wOBFvXe!62<%!akp&%8LPceWVan)SCa!R~VQBWAt
z1)E$$tOFk`RlpzNqG?p`V^`bS<mo1u4G_TASyeU&22cNx)Zk?t$eD50B9t0ag_ESs
z!3Tm04;<S?xaAd=FgJVqHSsKLV%Rjp-H)%aUBdnlNn6=^_GZ$-1|w4f!^-|sFce-Q
z-fQJ`h3Ul&+eQCM>)-PRx<fi%51Y6!S*`{9iIsw(drXFQh;A>38V}Lh%U8v~W4Pjd
zgJcHnyK3$LEYVK#-!83?1MNi`={|w%VW!2RQxP;G>b^MR#J3v6<Z`YF)w4fuq*+by
z?X}2NpEfd7tk8K~bKGX@I!=f07d0Ke?5)xcv!%$ps1^#XYD4jHD@u6vAK2a>vA(EO
zjWYq8IS`x-P%gKivF(^^-RV2ROv1J4$k<#QZX1Q!DCr~?uMV%O{e%6lrXPyEM+DA(
zW<`ASXfvd*s1+sH0cHs-l_(^Ev)GT$la6q;$L#YxPREkXdQp7zfuu|(KjYH&D#0ik
zKgxv?Wr3LvK=3c=DaiPgg4u8y6b{Fs8&g<$T%cV#4=nf8CD|Cq&Zu|y>vn~`qK&WI
zMgvI&?gm}#z~(e8T#Vh2xsPE{`8B7@5aE@Ahdosz%MC+O52BRHD<(YVJskEXd*SKj
zW7S*OD-jLdJY2(Yfh+V5Tisf(-+~767`oYSQq;|=Jh--PyfZ@^oP}+eJk#`H7nuX5
zPKT*N<HE4B8@}h=uL-VxF2D&F;V#`+RNF&v1>Ma_=D37_6FSMlwC3ziLNKsXnv(Go
zV{!$u8za8@gJ%X(Fth|{Gl7F+49gAGNn^M^Wqi-D{ygB@sg}oC=Vk*zo(~!mG?=mM
zT?*JP0XFI${*ECSM|^cq&$>6853~cu;h8j>ujOzIL*Mt7)+bCoDoZOjL`rn1y9g^?
zJ(j#m<{`YFe50&Q+OvzYFFynifyiKgij47meez7v7)dsk9xMx1vPL87X3QC?cE_^k
zGBW@)**$^qV1;vI;82Q8a;r<~w0!~Z&%{W1oQ8Z=kp=+5&mJ4aq=VQ<rmOeHc#Sno
zS4k%P#*s>beQ#fL66ON^R53>RBQvCDu}!QirHNlFCuU!Hv`wujgw=XZZ_ZH;Pb1?U
z$VCY@m<H!_C^?Ju0#z2!@kKoepkJaDFvxA1YQ^WYY>RufZJ1MpIIYw*tHy8f$K$p8
zWktgsr}r>|f*-+~HX;J(vp>S)^cFdQi)QMFlm)e!ga0U~&Gm()rN~RhK44R@Sb)+G
zcWY4P0Oi`xfcv$42KSdi78O7pS+P{jF%w?nlBviW{)xFiq%4x<b|nRyt`$g2{)PN2
z1trn~Yax)p6odwgy|yd_hD!w%>SW<@V{)(1>-W}6?u!Y4;H)X=`@mSSUyeBC599dl
zOwHUze>5k$w0ko4REpwNi)x=p_3AK@2DeT}eBMyb?X21nn%R*D``l}HX#=zp78;$N
zU8I{s5SkqVEDN_<akkwA_=Lk3RtW!8w1f9iz-8_9Xg1CuT(uf*!=AJBolycg=iCH8
z8CFO6o8v+8VrtTr0cd{iN)~&35aNQ7qvwL4^uS!}4v%NwwCLjAnv$fNuKf2LmpoK#
zoaOjplk&jB*F6Afg?;;37q=z#oT+ptL)^dZ8iqekeTja!M@dNQ)H|zkQ)to6)o0t4
zR*5kkBwh3z)cfS@?`E1b>#ZwT3>gaKUB~OFTe0D=0=n#CO0sx&5l=ivY!v>rgbv`o
zRM)EHN}WA>EiQ(;UMhrkM#M){D{W(cCcA(0Ed_&6<yL;IK(#diB5=d1Q~tvxeuP=L
zfUZz~dMP`YHv?(7Mo7Fk?R~~*{y?K0GW-bQTKZE2e%UPoyLDmmbF|tGFv;{<0i&<|
z3Vz;YEZc4STPW(3R4*#vR^$tGo99U@Oj5{G3EdcMOEIbTsu+8BSgEIr4y{#D!$w8X
zQ`ek^o$`%xALq>rvdI&-28}x8L?V`6-mrY17w|&Em%o|p>ioh@b$|aFhU1|E2g*0E
zsA_i%@D%2bdwN@~6ZP=dxsUAL6LvzxOYU|;$3T@3jEIW~zneLM(N#*cd$(p%Luk-|
z{IMGP{{TNgz`uCSpM%sTV{peV11b5`cGh}o8W-aN*UPM*4khugXr@o^B;=kLD30@+
ziak-9$Qtr&xWf5L4;LmOx(x|<k7slmoVf(7cD?3~`u(xCr^E<45PsR|4)i95&%aGE
ztwHvM59o;KI>}J6@5~EpjEe>`!8k3~3CV|pk{mM|jG+9YoBv2W-dTHU5%U5noBPP*
zg6|X@7-kft{=>K}b!C(9%Vg5|#oW_GlJ|8=xHZfH12nBu+P4$S6CJxsx?8D(20V&g
zKK5%7<~XzLmh}=9uSrIzAYDOgySp|CK$Z})+{@iD{7nTQHQHSy^V(z#l=r96%@`36
z^`QSfsB+aq5ja+B({H*KP}3R3lZ?)Y`y_%1jYjm+rfoga`!dQQ%NizE$%hVWz=T#h
zux|c(F10sOj6w^AV;d*}x^RE+UVw){=s)@U21P0a>8+6foty;>5vDU3Bs{2XDdYyh
zob<@S*8&D&DKdC`@y1+SyN>%K&|J2&$x%^YzD%1W%rzuEl_V52v(IqJGX^$nIcTL*
ze^P5^<>pom;OYX{DQEIZ+kZfKA{rk$L!jAVRYYNI##lAp#FBOI&AZ-ARbgWr0^oD@
z>tHN@Tfpl!)}d|w2yoZD49-%+n!^Gxc3fc=8tO!a-E4Ra!p0jV)8m4cvNa;NX}=T&
z<mQ05xB7R15$=Mjx!N?$yavn*gdurse1DFf+o6e$xM1otxVKzn&*e4mzW99&5!nk~
z{I_RUaGDmZFF~`i1)*<QG{@G(*I`yNhKPaq={)JC45(Bw<wub-*;W33oD&ymf%LbE
z43X_WJu@#_dVxH)+J)4Q)hw7oN-{z;rGu6oX+1Q8y5>bd^3$hH<zyI0t}i|p^L{*k
zZA_xH4#I@ef0EL-w`l`K=uotkfb<i&*sb9!0yMG9aCN+x0US+~I%h~yhQ$*+Jn|Qv
zS1Zm_IjD@U*)ywf${KiUf-gg9!+90+5k11_04GMoJqYh)tH(!X2RcVMP*n<?ob_oo
z;zuPXu#erZ_u@!N!lF^esbhtD=h3j16%bzJ>5CKI%Jl})_w0TnFg{p?vG-dZk$?QD
z%Il=&P#ra%1g<P2KZdq6c6MBc5ya;7(&)zlD#iT@Ksbp>Cl$XM2GP_m!i2hLKDPT)
zlS?vE%XnAA<rJg|iYDX|wfX0#y?js*8Xptwe<u^5*w<3C@P9aG%DwJql|gDIs2)Y3
zhKz6Wy+qH`C-1jKymZfliz6#HNGWv(TA5_zJuJWmujj5#!|+Ohh>+xlkB5G}d(0Qr
zde}F<-^-CElT5&`2z-QjI>1PT(n-2S@kKeu<_#Zb2(DgwqV}hcM!>A~hvO1pWgj}4
zzTo;ruYA@uO!&b`rld*!K!~!G49fVr`U`x%XQ-Kh8}tbn42iL-?HXS+0Lz!!Aw<TO
zqY~IwSS6!;9mG`_Mxug(KlQDwo`Vo_F(e7S*juB18^lW3Ltf9O!D6P9@?@>UU9Cu)
z{~t{hy*B_eM#9T3+sgtydD}m}(w3!CXSp?u6F`65^-zs!(a0rG#82pEPQQX4=&7^)
z*6;?{IO!(oli8)Ie*qo;>#`wj0|vMcS$o1%K|V2Ub$R3E6z^(czdWY>q@nF~T=YYH
zAkEnGTOMFw5yxOgOd~u`YToJI6qoP`wGEz=fktRp6OXYZ&((^YU^vXs*is4OZ0qZy
zECupUk^s6nK-%zH1mg>AmJ?)>@+rL(7q~uvGPwefTPa(vHx{Fp>WHoV{ZrwN@I3T|
z<gRiMZMUT5FtgI+$iXRr@>HYfcJ_1ak4Q(_7^(rV2(G(TRweQl&PKbOm>(v$-qYny
zCl$Qc%ZgZd$kkc%TH}A+pvgUFG*Y(tRiYk;$$x^5Ffj@MnG;0jC=<iTD@UTD{THs`
z)hpJkk7{uSjM0W8t2$wxjTvdHU!Qb5ugE?>WsiVJ)eloKJrRR(OCPI;YF42?+?xsX
z90)uC(u(JYGL=ah#&7~f3YqeWoq^vuD@Y2JTs4yuR(LOv^kVNfe~^z?^ehhc_0P(D
z8A=}@L#z<W2K~f&$cnJXoY<qw(*cl_Z<C$6D|DgS)dtRS3<w0%vckqQ?NJ=ZD6q8J
zvANYVOYK%cTt#&-%$OAd(WAm9GV;UA&GG(#QT*in_sKIKv#nd%#NyS*yY!ol<;3iR
z1TQ1<%pE{BlZb<;7#%y%-;1qAPl3)~11Mh>jalS!Q1emo$dm(0IQsrK6|dyd#PpmX
zjRa}Kvd7OP4sy224HWI*HY?Tnpk(9|=O%$k6|7Xd?j~M+jEN393Ii8(W;q<qBmFVD
z($5mUv<2l}oM_3e;<!hs%An;b;5Pok<Qe7mnvKQ%;ZKF3z^sLB(FW0*RO#-KI^Gm*
zGYlE6%PT=|_qNfb9O?senq~SwHkzRu@hp$1#qg1Q;P`_}hORF^%D|>gUj`ak@>bbU
zZE8!3sSG$<HeX8fIYjctMSy>Lx<+zM2PmF#JCxRgTSy|958_zl9wnELoAmoSuk&Px
zLzvr4@708#R~1Upt*S0+(k0k~Us<hfum}myF3??akN~*UU5DfKu&C82Dd54J^D1an
zeFN{P1(hYsv{S*uER=ll5KgW|_>$P4bc?YHcLC+AYJx|1GYx}*j~df&O_&u>)8S@J
z#eObyPnpdMG@}MYSK{jVm04NWXd79Vj+3zS<ddC!l50A^KJ~a-Ag1lQxphcFi;$MY
z!aH7vRhOd9pU-Q~(}nS~i~q>hs@40cMIwxdihm$1Lb`=MMO6a8MD;d`PT8nd?QmPG
zo>-<Ije5s%NBv(b`H+gcS(js+*$zFvzH$!H5glV4RssgvY(y9h;j?+&NLfE*@k0in
zhC#mD$Q&Z$wC4S8*J8L47{Gp-cwJKK)gkAhA&}b*QY4l}m+Yu_CC3&FcI0{B`infv
zA`Bh2x*&nS<E<<efnat#E@HI>l&0kvw7NDyoaHe986cUko$B`z{~SdtkRh#%_f93H
z@gHg3(Y@eQb4hXT;Vik=4;mx+V`MfCnDrYGJgwJy4JOc;gjgH0Bt}p(+1qT<PJ=V5
zkQOWa&|iFpmb;~%<STqD%&;$@XUVB{X4(d0_aa{0;K%+*NK5i6(AZEXmEYhyLjT}7
z$i3)s1@s|_gZ0OEU%CwRb-A;P9Y3CtMx%@l4h1%YzpU6|Qx1TDN3QGr{{<q}1NPe8
z1;0pg!~VT>i6{KtQ_nN-GYTi5G{8YEhfAeB&tze_!fzj^gcZv|1Pkg5Md{FIHyQ{p
zB}?U~E`+Kpqyu4~!O#x}!(?rBZ?K5@w^(0RdQP}T*6-mo>;k;~gHj-?u?=JThgZY4
z6HFQjIz*|HHqC;ox$vqc)CN;Hj-!9Foy=sO@N`$>ouW~-N8xTL@fXK6C|br;zFF+A
zNr1UCsVV3Q{6*P9Fm;~^J1eTvr!9+u10+$#d4_HEpxl&k&=+-m!f#e|BriFx`e?`y
z+R`?au~k}siPiDdO=g_An~C)tTgz<Dgk8u1USQ22RbO0ytnNzH`%KMgBVM_X!ilxg
zrI)ulk1V^#Bn}Hl?lfDioQ(DjkT-6AdPf+X*%VIH#mL7i2juy#zNuL>)uUW=96H$S
z*K;79aDNm2{tfdB5r%Z#pZue@Le>AaoM*n5QOD7!zgt2Ot|0lVWw8aKvI;5+*B6(f
zuVsRKzF?Y>HSk{S_fxL8Sy&rXAkQ``ebZCnI!1xWLwnoFP2~)DK?|(&D^-s5OoO!V
zfyKL30_TbypQQ&CdrT5ar_WHanb|i?YuKig7)luUgJZSN%Q?RnM-4{Db;?JoIRkUP
zG|;;SyuR4vW7;LF)-hn^9=Zmc(MK(Ag?|d0ICBT^*O%cZ<W=FlGQ6NN@-d`p!Shgc
zLrmR*#~Nb`(es{~kevd8GHz&U(PYaJtZr7Mk~-GR$1-SJmVOIwg?_DO**VSEYL$mY
zL~5&vW|kkB0Z5vSTn74i<b+_;R|kH^@joxk_a(s3q4gAzWKhM{OC8zZzfYQmtK<lv
z#{igD=#YS;Yu5nMUE<yez>9bY^N_mVuLk75@Fmw0X94lu;97H2T{4<@)Gj?1nsd_A
zW4$TG3g6hRtT3RVAIU>X=O`6~MoxmQH>)%}x&e(Ob(+JkLdQ`Hf2I5J`mTH``YhMY
zFk)2H^Q7b!cf<%T;adfgOo0ao<Ah2%%#|~(;u#<@fpz9B+ON-i%YR5J_!LAyOq|&B
z7b>HP8eP-@1^zp4&)sjRb7(8kyfANjo-i0e8;SY*SuQH=5*L5)Tue#X-26XGF)rBn
zBU%+dSg0cpg0{F{xxfx%T-SFuE#3C)_AX##@2wnM=K{6${tD^5R`2@xM{=kYA;i4U
z7m+xhqp2HG3a_K@3)5G@z4Vu`!EHX}asYMzJEecGUIj(uJXo@hCGQYJL;y#}jjC+#
z*t3z)Mqc8dl^5N6ed^%oVL-|?WU?jRIpEVO9*RoocwUKQ<u-B=sL<2%B8L_&`TaP(
zh36QTjFd3mI=Wb+L-KOsn|tr?iacz_;Zvo6c6RHM;jJi-)wzi1n*lJGoCOkATP+KB
z7&8p<s6kq0D#S|>ZcCWx6=^rp8pE5Xu_PdO@07sZ_HrP}5RZQ`_9~XK!B?tgXxlZ=
zVW5OMccjNJM$#9^!BVnO!L$AHIZ#QNPGxCDx-&wHj)R--PgO-)ezB5l+oK1gq?Ls)
z;vgioK$N!{G@7|EO0MNU@lorqfZ&gTGl}IVYL-|-$+;nj^Rli%8_)lp!E8X5L*G_m
z*JHO<g?91NX<vKfObgy6R;W^Mt9q&0ip;!M0&)cz-rouGjl8vd(~8S>LlHTqjbbcj
z-%GfgU@8CzoihVZX4Nh!m21Z}!5G{gRI14>6G8{tDB218<|;G5+u|qDXAs&bguswZ
z24IQWMmThpYXbn(9kW1?@sRw-b8`9KmR}QO9$V#=k9R9%gn#?z(&l}HA6#W_9|O1`
zcRK^KN!EY_KaeqDz250rS-_^MESEI5cVlrVJw^g^2mP|jfvbgiqX}8P9xL;8VNJ<)
z7tOg_5)TAI2hyBaQ{y%?iZ6e6_ghkSCu0;Cmjb|+fig{UFV9qyF-0QyxrU0KTf%v=
zp;9njIqb#hCv;L~3saLhuhhqiNFPk?e7e+^b#20eFz=WT6%Mb|L}SRweKPMrTq0}%
zA34-fBf`YJ7)AxRsdlY!0k)|yEy89Ei^y_oGSK88(3!Rd?23z6?3yL;L2<mojz+n2
z`b8Mvn&Q{fLfd>(GQZXMWx_Bxg0ny41LN|_;^w7<#%K%fwvq+D_y@lY;pSu>)B&~?
zW~8NyE@#fjG3Lvw!Q5q1H*AQYqn^%aA3^KeNc`thHA!r@8020*T$o}w%)~4vaQb0e
z3M&{1^VO&jzir=Jfc^e1UwrV<lp10rkURm=kR}5Q9R<0BmqsLW#*+H(yf0j5WS8$w
zv7V0o=IT9O^XUXSl#9ii(1ky5s^8H*N`K?d(3MY6&5_iB&Jwx^>AQIl^BUiQx(Jjh
zga1@zsd^tMx(;%sciMJJ7>dc|84);YxWaqyd4DnN!U9!jqU>a4{S;iE{x7-qeM^Jo
za(Na;zGgm~)Ur&UOH&4$uogEah#bvbO4I6N6=%jDMKT>Jnc&G_z9KbtaIKMqC%rcA
zfL=_2%w61+xwZ=W=k#(wl4D1Y@WVP4e1?^hZmMrTQN6qTTQZH8<wk3GK_81_img3A
zJtzKz%>R*`)$^44?V>*mSTmGatK&WlY1f<&;!d|H?%wBH44)J_*OT}r7egyS3#u%A
zsBon{L>-)8{R|_3ckC<_!y}2CuVA}>LNL|peEF~h3NSYrX4F=-G5oM$e_AE3%h})q
z5W*yQ`9_m4PspMKnm^M~qOF9FEynkaGEVq`(b$*3T*GblkN1Hrr<kend3;-wEfc_$
zdsazjA6r@zCf<JP%ngy$gN-$7RMIGO7<;>Q!P)EwLNP6scC%C%z=(-ZV=wHU-=J^d
zWQ?V_Y#28mp0kz%Kw!&EbZ^hjvn?k)m-9?(W~R8Lu?+-I6&$v+<TC<91EU>;TsqiA
zL@_yBTBnzJsm*P?)mw|-1g%G}^o+h!n`hr$`LwCAXAyCt?l1WQ8=-X3Inlf(smGB2
zT-VCOq2=|?@hbez0;$J7c8dsJb|%fDrem$T8NB`!qcY!8v*MW{f{N<LpVs>M=<2!z
z>ndW3bTsS3Zz<jADEBCvx^=60*alJk>T$~U_JGmyH1tX%jmy?&7VGTZV)~udBqofz
zirR#(NGuA|ohhuxH?YD9D4fgSU{cz%n*^W0v<c|GKZ<c=e5ZIQwR`jE12tzZ@WkP6
zG#0z4rMQrHoV8ltT@O~0(AXyj4{-6@Vh_lHP^g_UxDbRI+JJAFQe=k&-WFP=5<4gv
zA$$_gUB%C92EHd1^;72nP|3LP2;nhCt1H!#3|Rf|ty!uMepMTVxghXX4rGbFnP<E~
zYeIWsg%ewRiQ}6$>FD6-;HpK7{{fzW8LiLk$F5?QL+Rq$1Zr-O^U|J5Bdesfo?fKB
z254qpA_T9rhyD*b>n<5xD3faqgaO5>ah7?rr_o<mw$k#+AoR8vIkrojYI|2p!G_H!
zc{`?iC9C!U*5Z0{H~t>Xw;8Opr2=sGE<Y*NtTor1__O}Sr;KBRbaIDe5A2k(6O;X=
z;jioc6dXg3IS_d;z#;?yo`2-ck9kMj1s1O*XX~JYzfZp`pnuGF=6aKWW3i9?k$EU0
z^NxL^_L`0J=3HVo0M;P|JtI#0e_GaC0~c_xwyHGeNZ7-Q7QTTO`|cDPO+&J>Q%dA^
za<}~8u*Eboq78Z{<hAh8-~z0pDg26?pWU6lu7i>26)l>YUPf7JV9)c4P1@fd(;KWT
z9FSw-d}#Ue&9RL$(u2E~g8p9p0~!I&(Z#%-6j;_SND3`<D2lEQji~y7S3i?8y>?c_
zz$Sq-=WX{CQl+6V(&5Q~$~VYN-ou@=KPY32l2SHI)Pn#dUXh)#Z+7L^#pG`hXq(C@
z%xJOXCA3{SuM1r&VN(Y*9b-K7%+U3%V<Fk^V@ld;Gvg<;a=ip6K%UKByADZedIFpd
z9S6`AAcVc_BgB4}&KS}n+Rv^%D=`vXX*ubbUtI>`U(eSrwm2!m?1LuJfUG*n+*?TY
zZL}cK;?g<NnZ{2JhQpD}$_>-`s~(C91qrS?{I!<k%&L&y!D9dp5q479*_q`{($}!7
zJ9F*ayHceDq=)Wcmk4vn`wd)4f~&AN6#PP7PdMP{>QasDx1g}iB~u^W*O%KDI51s?
z`{r-jgx=w9=+z+L#~TCKl*WX&J?E<vciN!laec<TuW^s<x)YavP}CaTg{SuQ3iTM{
zYD;~do*!4!7~kA6$4LnC(IG6W(LoK)DT6zaJi{-B5Zbbk9Ss&~d6i4ewh$4_OQOMA
zJc+uQRHTBXqFZwdS7KH(=;%9UBMW6u-_|)ehw&29B*Sq;29ha{Yi0BwAr4^_oK&>2
zJ}*y@SlLSVPfBoAZy>EwBiK5V#tV}<naO&rP2?5v@tz$>Hms*-dsoS#LNCCVDZ=hb
z24DOcG~sA`2MAcyg`}Jz0FsGd0~kG+NXZqChRhY;^t)CcV9EX&i|y;{A%T$fo3r_Z
zPE$Z;9xG~kz<rzm6B*NX_U?dCl?sl2j!Pc`il|J7JWcSuZ}(ZlNJ^%9WGr}5;`=8K
z5`j@tVZ!dU4ov9q!hbGbP^_Tum+#u(2NR$2;x-i{da}DC5&GRzGW-$=0I&6~3|85y
zAnOP0>js@py@cxEk!l>N*Yxqrn9FdASf*>Bxd|}~CN-6Q_uwldJS<9ste8Lp9!fJ2
zRH=j6Tdcaj1AGCt&8sGf4N%bTk<L0tdKaqkdPE(ZzF4#o5vXdh4d1b}7j!_`)RWJ@
zviWy*TXG6sr~Yl<+&B!RKCvvVKrt?^%QIM0K4hbo^Cdd$={VF^u3=;8hikmbW8YL-
zsx7BfA3PlN$x83)-iia(Loa-_w1P-Z;8Gx{aiF0X$9)0vPKr*gGle7YF4xlSe0e%7
z&+)Mk3#Q7d*J|YryME@W*5-=>;mTPBNP>^@-)$8_F%hQsq58+jBO?jiPW-0I5k^II
zL8omh{;MXA91fURZPzNLk(xm^iLlHbT46pD@ZB}G*VO#=JztV{p9~nh2!qlbACM(i
z3%=_;u{L-*ypd)ic+fGdO-)Pgj)27a{<8C@g^E5tVkJ(9wWd<lAB`5&?nnA?k_I2g
zn7WY{+GkHB%D#iJV$yl)d(%c8N|4)+;jUQb#~(DZ&h?j9F)QBt%s}F&?2!fM%aC+y
z>@io9m7&U(9&95%8^rgzReZ`|;r4VgBLNq08?~6|6cQW5y6dy~8x?O{<#<YXm5o2F
zPt4E1{vEsPO;&=VDGvec({JNjz$m6|(=srX0TE{1m*r?HyC9o$q0D`+hJcf1FhbV5
zegJ6OAj$Aq`z<6SglUb+bA`O5juCrp*etli?W0!*Mu<BTCtKy6fbY~rht6wDyytgs
zv-?N(YTKjS_|-#pCk2=}RMV2;7Ae;K6@#gX<R>D*xZuiQ-6T?`f;D}vL@Z<ofDX=7
zRrD(cq`Jl3#$`#@+<zt=?B4C}d5gJC7OQA1jvwZl#vji^-z%XiJsf3fx;##)Gm-lv
zR|cA}kKd(M!_1%9Xx9i(FL-Og_M)*p(aJ_^eoLi<J47<yekI`(M$TQUYY#CF9@rpn
zwW?u=Y&c6)h`avqEfxVCpo>bX4AxDi*<e8J>8|A+|6|%l@Ps;j3#^H0yh~|3tS8mj
zFzR(iSsu65F+hSeqOMy(V`)^6*}IOoD=+!MiShMvS&#wrw}7t8kZTLZFu}vHT-kk<
zcbWl!!6eYraKQ6s!&THOLoihILC!VQQl<)FhK%~uFu+=Fv<@^4_2lU2N>tptlge3O
zVhy&LiZYK*-Dd19A{a}$lZ<l$I2qwiP}L_n!!Ezl>?N0aT4H?;*|ZVA^7{|g-&C<b
z9P89I5~ruzmOf}u9--{CtGVK_QzzO&Y1&0lhIHooy{V`IA1T}F%<CE3<MeU(%=;o$
z8Y3#W>ttZo<lj$b)V`zKCO7f{RXx@B>)-lA<Ai+!xghaft(zHG75k=F$h>t;T}y6&
zo5Br+NSM+a(o*xgpYa5(5|bWRqW$F_@t70?46*nrYs$b7%UimV#0{Q|5cJFQy9_?*
z{+wlWynk*!m`-r=fFfbo7QY+*&?%~uT;Ex2O(OZNc=IX*z}5*|ddL#%DgwlVmNf<E
zlTv)yE_Sd+)o@Xy@^Q)I{vi;AY-Ws=9g^)Kb065^drc@|CG0$3D@b3>0@~dX+a9Bq
zw$-syC(FPW>6WDwm%K61^OR5ffOLBPI{F4GAr}xct}*&gcFjBFck}9`zSfXB0`J#C
zWVZ?VG%NJ9%mH~e7HHPLyblLl*%}O{s2jtcMlkh~&2R+Nf@PYv)xaSOnMPs*j``r3
zLSe^|Ebd>e%{{JumKZfCLZO#*(^b@3e3U{{0$slhn2!K~k^m@BK%9~i3CtBe#`L0K
z?n^=J$p_-1X2QG@5TNVT$H3Ttw(B<A((LOuo%|1STd*kPucc<{0=qN1;U)j2`Sdn%
zV*CyE7QRTI8PE8v9BD>WvGvn^#h}_&>U-OB*n_V%8<o{E?3olb3Z*l3WbrAV3@(1N
zCV7Mb#mqU@1Tm0zz<I(<D~<udnk^cf8+Nee3n1>KT5WjWkW!DdTN@E+A=@pc>m3zU
z{bVIK9OzfD!+4jan~u3+C3I8P?sy`<(eZE47PbF36TkxR4)tE4aYI(EE|zT`)WpmS
z5a~UUt;V*3%g0#}KY2D7GPr|re_-wA*+&^l!6zZ)CgR>dOr2<gaK@<Lu8NHHFzgNA
zZ<tgr-^IO}r%c;m{FA<DtP)RaHy}~jJCYbn;S9}atsK)^Ym!5GzWL>yu5qjn?sAhP
zepe)+8M+%`qZ>tnpb0h;-n0vbhjq{!76KO{@TGY~8I~IPL53gSnSV%Pk5LWj<!Ivv
zTC>9vd6pIEhTD^l*IUYeP!0C@t{VXDuJ-4~tAs9-phNkJdqtxGD-D&%Sd&k|jfX1E
znwx!|p0jkdz#O=?Qu@2N)wj<JC}d42`93(geGV#Bx0x*Rzc2CB>;ZdWtZ<=AG#`+T
zQVsicp6D~-l6-i|_PWyrtldqAjNUE0G!Ae8AqLHa>0*n`EEhq7G~{tL3&Sy8FfJuI
zAx~fHYLA7qK9$}WV&oX=RUfrzG#wGifmIk=0K28O5BXdYXxP4+EAD(@$gglh1Vcol
zC%UDfkvz<ct<_wVF;j46^|Af>470?MAL!GVI{otk9UEZQgZ;t86VY?vG(i}IQVsRm
zAXg7_3X&G84%JGv8CBEL-=ocJz782xh0h29Fw3(J2IJ1OROnu#HS#?#3Q<PjMs?~!
z*!qHc*I2tsOx24+H<CROotFj#=3`~Sx#s;i$mJ~zvzEnjZ}RNX(Qj_fm8dviK5X%@
zn7|}w_1VKr6T^3yI<pTmFnR(34=fZ+u}^x^8p_A~Q@d7KgwR18Q(PqhCT7k>%YD7s
zr3X5`Ngq7N0zJSZU-M|Mxg*%exiimNO7Un9#m}*d!0(*oOSi#ZD*6e@`<~qcC;x@V
zu~kyti!Av5F^o5zW;j|7W7-Zr86{FI5q-Kb{7h}E?<F0$O0_a-o|#lM`0UT_dn=Yr
z8~iu0Cf?w^k>5$R^jbrjHW>}M7!b8DWK7vln(;#5Rex8%UXaZC37lBJTk)7ufIf@a
z{G;v+1D*G)Ub5pc#zIdmgEjfPwNVmWyl-()c0{owaX-sYDwvFZvmKqeNh)6(ihkE+
zqE=l-UhlQde?d1q?%Dq)X&wdLRdj1kz>z>9rX?RdLGYl1$N}b`Iy~HOl+dLa3*7K|
z6_6cjkO9e(hS920*)njzQu;qD_%5^au)v1BSgO}LGpwB?`<!@a?D(2Qkl$1(<0wLS
ztI7f-oCJNOx&x)ITksd|stm}TE3_710h6vP@F0J>F5%e-OnX3IL$$!zkJC@Fg+zdK
zTm(>(4?9uY6UbGj>m7Rv&7LPD!X_*a!wQWfcYurNUzCg-80nihH8TS@UhbnbTvkBM
z7s?G4SqKRE7B@j+y9xlfAe`(}rLpPsDW2bgBu-D;jH=37KWGhrhhWG->fq&Y!5n!c
zi|e_Z;rIeCk%D9k_@9RcpYMa}!$ko-Gu=t`m1661_Z@~v6yCF+9Nh7Usfid`ULH2W
z(Vn5d!v?!UU~%2+SHi?Md88UEp-JH0#m8b*$bm@v0)a4VV1;F(+~(cFe@VQynkP2H
zG*$z#=c&yC1P_>);aMSxYf_`jC;$+qI^Ed0?691G*-TrkKKi7AZ`J9Ahn%%yEYNOm
zBo8tF#pLjndQ1V{=s_NfwXkm9eMkl~GfW0SQcrqIoS#Y4d$c1|0%BBn+7(}XoAXF7
zXk6@3Hc|vBZTGw3;tzAK=Iw0``;3wg|4QH{t^F6nEW-=4oWN7t>bgP027oY__i`Q4
zO0PY^XpsVxhBs;#<&S@(R4&x}KJsIR75&}&S1$+TP~nxPPW?9*!FIF72H9PiI~S}t
z2Ki^x9Fsw!Jbgs}(9`S+7oQXBUAi<IX@!i-lDMjje>WvsxGi@DEoaogJ&I@eZBL3B
zV1{X_pw_TlV`)<z6`Pb!RS~;wvsM{G3_6udbY7wy7>|G&@3>MBUj1x2j`wbK^{Bt6
z&CCU-DkPMGgb&8_*!u@Uwiq=Qxcy3Bh6i-oTdo4yYx~6Jyx;7;)sQ#Pax2qB!z&OX
z^VWjv*|EsTG#c0?0O)Fs{v&_2r9$c|CF~5skBycM0((l3Y&dvE`*$}B#q=OXN<xf8
zzC>kLfGL0WFaK>UujyZx%n~NSNjw7&sf$r`w}6OdqQ;zKOKY!`7uW)m3B<SeQNLR@
zwAzp|p;*WB(U1#}@GvjsWr26aL1qH3(PB4om}~&(#a`%O{LY7x3Z6Q;Nd()80jUeN
z<Ir7vKzE!nwG9W}7E-2zE`tXY@m>wE{;?9O=*ncbl*Y&8lq+mW=^D5CLW`$E?XcdI
z1hC$Fz*wY&`dbIBjdTg+gK(^zT23>|3ro>;NL&2cZwp0t2pKe?;K?iAU;k1nCYJw0
zzCtAZv}te*Li8{FX5f9%un1>X9Q=3^5ho+|iWK#(Hz3&PVv{!W866ELIa{@@Ko8Lm
zg^Uz>%Pz*5{hECj9WaN`<Ly_n#rC!SP*!mayXd>d?W$L(%>&*urmQTT6;{wq8bliA
z*O0n;&zR$2kwj+-;fF)gwURb!=aC>+ZZPk&<fpNij2o#4zD9&>nnf3dE56h07{e4k
zk>51?gVciU?b&`<i(e&$VGG0#T1bwdN3!uLw7y0htM<h!P}~K0F;Q0hd*E7?(Ye-+
z+E3UMknXx!di{;iflJsCh!+x+lYP|N@N~4+l|;eDz+9s879Mo+p}QZ{pB1I_d&diF
z@BR-@YQh-*Y+Begf|YOrGo=%H_(sEN?`Z)c(^;Qe7#E@$B;z_N^4yHD#!t?SG`Mpx
zQWdb}Ea}@j+~o8rH4;?hAhG#W90WR5M*lzrVNM}Ir9yT%JV7gz1X;u!Pd%GDi3q=+
zh`3I$GcwBoQ!=_Rsz_?b0ql`-fnqM=N^)6ws$}T@u{~=Q4&I?aVu{Opir1C{@!b<}
z7(YQ+TWF~kHb-Rp{Osj?lVZH~lT-Zxg8HHTGV)8_6hS{9iEI{ayJ5vr5&9n1Zyt*o
z$|uM;xWtBN^PP;yU;_O$e+9cO$`i~gpH`BnXD~K=Hy)I3CwN|(Dn5U+3?+$B*0rBb
z(U5MWphM_P(wbatJgX_LmYw!rR84-tXu?W{?!xLbP-0|kqQE_Q<N|=)oHR^)V=lX(
zK|alfbi82AS7Q{WM@5pd3wGiryoydRoK>+^PkDxVe!zm^xcj8NOB;v(8B5MTuH7bd
z2HLTqd?jWU^|s4=qCZUh6eR_FXTF=dN&p(Dl`9H6Ii<yk?ce<*45lQgzUSqz*iUU;
zkL~gu8b37UiN(XJ?cyq}wS7apD-IE)R|%0YVIldzAr9OsJSe{H2^R`vpRQtP!yz1~
zb9T+|DVTioX;$)(i=PMzS9+YY=Q%t3E??Ie<5_$jKMz5dA1BtZpJw2{_Wvn$cT|SW
zVgq$a%9KQaPK;0swXxH<9}H2w=p(pe;{sadjGWf)R%!5N_ya~T9{4|3$y<wy8nP$J
zlH@G(`~1h9pojm$%nTIIP9RI9d4gAI4v6cRi21C~?XHDac;r#C7afV@vVAad$BhQZ
z;X%K>@3c^3z$>bqd!to3JiyYU_X$fTAzS$ru{|(N4pi%hvWZ?h@3LSz%p`x#r#ole
zdJlfM!aUY2U>-=*(7qpl<^>?HwrTOr$hP@ktes(5s-+x3I@*^Sd8ob1VU4pnjQFx}
zlpUs%E?NAF_B?e&4|8QTrZFA#6m~2K239`da`S)@4M@!RsTKis+%7&jN~uO2?dS42
zZ1kZYZXS>vdaHXDz<W;xX`X#c<-q(YuF@x7)3ay8!E`hxbQ6xsHkH%&-qYXvuq#`Q
zL4<Kh@{T{)*8_|3LBWyN)qI^o4Ty*mDn1N(s+|P4i=Udv>saMOQ$xw1d=CbSwZB~9
zAqU^z*h=FzKp>KL?m*&yfRcV&wOhFUoM)|(itm}Zb^=d!C5~cPNOLhkcJVKbsdA_-
zL+-g57x&WNPiR4GApoGn|KA81(Eg-msD}tw3)^}-StQVto}oN+C*=}#A0jzfVUH_t
zwJ}kgZ2Y!6pBv&b_fUy0!3JO`ski|3K*(lIS1&EjXyuANxhUu1djfRrawg{xrN?oH
zL07M4p!kGExaj{WX+A&ja`=hvigpb`#rCE2)O~kOyKZ~ps8C~OgSr`e*AWS2y9ULi
zf2l8QKr(eYK&iS@pHgYIS%7os$ovdO{~?B3JkA;RFy<oNklAvO5|$4@SIS{xQHCcV
z>?qhX5AjPFaIRNtUuk7WE|^9AzrocSfm_Mp94r7wPYaU$SL+*AwDs9iEcF+J5n9q-
z3V0hnSsQ+OKXQ`OtcU*K>}S97=NZx*R<-IZoMR}n+<3K4*(rp~ToEyZz2WFBtUqtY
zr8X<9P0Y`{>?NS^PwT$e!8d1YgnHta^{@Bf{XQ))9}1+HO4L4skifHK&I(=X=wV#-
z`}v|L&DST5gF#{smRFS#q$^s1A^zLbxS7KR_q|h~g&A`4us|<;Vn(4#7=zod&s^*4
z($*)zT)#UTmw#tDSeArpc*6ly(F}kcTf!%k_JQ67CPKKoCI&rIV4mUuPu#o^|Errw
zOUP&&1jp&?S1|szY6LgOf1%s0U>hSvRKTe#=(0|zL?OU}qnOQIoL3GL{3P0%@V6=4
z7Ggxei)vIyauR;k$P3taQoirk;7zL~p|^HuVEKmk(Cv*JPhnvh3_Lg-DI0-OC)>(R
z9`NSXK;mw(mk*y025%SEVR=}L@!D}-81f5hd|y~%Z`~o4yd}@pZj~`3I^MQVEqEs_
zCT`{=lx;_dbA&NH6al=o3BPr5*uVGV0?W(GF@NaYhJQ@vWVQ1{kCMf4!n3-07{E40
z%<GzgiG#C=%-3(4$^j*xqzyM?GGtFFB`)`|LuPj?b#AsQhm_Y;<sv<Xj&;LzP_UUQ
zj5e7{1W&je&_Aqjcc#4D;xWL#Gh1#v(x*mn_C@wHZPBirrf|%Hz6a$$+m(@Uqz?i^
zX1nhg2iHte+x7LfK&TP@ZDTm?3ivh0$vFzNS@4i`@%Tzoep3}{A4=1pIX6c_DY3Ec
zh1L`WX<TWDTVI(nn%r%J>moV$AmB`+(Ev%9F)950{-7fYA-stqJBhglL<A39SCx;8
z)lsG*F=Ch3Nu<I7&k5^LQ4Jc@*F))j-~a8g-V^fbzlKwi+@SS?l8G6%O#hqzP~@&0
z-{vGR<F(AMzJbO|l(X!(v?%BfPkGsR5~bc44#~n;aKK>zwckGbm&NUImb5ofdF1<l
z_Hp%x4yL0K_$us`5sh?GS?2k7A1Ykr;l3J;0qJ%Y*6e5~9HMTKoOc-&*#pU{$GGkd
z?@KEy!%N;DlTZ&YW)uTMjPGaW<Lhp^-Jf!`F-Q2?sM_Vx8>iN2LLfpd+#uvN^=g9w
zQOuLPNSdFJW~vuP&mtIo4v?j<u?<`NAz!*#JxBD9tsGkS6Dj*!yX7}&tCZd`A3oe9
zuTdwD!on&f<<e_VK7iIiDK}5tFH(c=NwV!CWT%gML@p#sy|dq;oZaA3oTP$s@lW$I
zdz-bDaNo^cpU`UUpXZ4;uTlRH0Cmzr!H=FSS0#hKx`a5PiDOJ7br+I3kvt7N{u;cc
zWZRtD$}*l(Nu|n!g0T&78$)|OX42iL=8Eq<98yau6D{A2l?Kri8?pHb0sUzr5K2g4
zC<jMRXiopVBP)d`U#`!=SO9O~CbqJWw6)y%dig0ainSr#nb&ywK@AM^{uC}+)0^GA
z4%k|c3<*T;;rQXEh6$;#Y)ji%bGBidSQHAzFzR2;_FJ7-Hy(qq@fLWaz-s{L&8ENP
z>hVtT+|Wa3(DC-%x3N6E;vl?Z9jC812%#x+al~-cTWxs~r!;FTfW{t|KrNWYh8Abh
zLH9!PI1%^zW2@%lj9%%$!6Z};{9>@nhh>VEhQdIt7b(}zwh0>D;}s8y$KRCIFj1y<
z2C*nprKmAIbcRmgX!rW=tr$=P`6KP2aAb+fo*UkRg7K(C3;l}4YKVphh$4Q1&}ubp
z&o09u<F%Q>)<D}{?fwoVE!{|Gpjx->HJ!f%X%u{?kd^WeH%a6c73En$AB0Nz>vc;K
z{G}{@d;*hpHQrlkce0?4F^qjQ>#EOSpy>$>1<yU3{O1oGpY-8Kl=`W{$Z(;~P?|is
zb<W)>y3F`hT+xxT{vnS@`Stj1?+<Cj>trd4Tt~qXPr0BwZpZYyHyIvad@?Ac1;|dV
z;&GtMsZ4kol~tmp<0l7%P!l(7-@1tdmcj_5JoI{zkUwu!Z{6ti0kg2`t05Z@r-_3H
zR-Farko@-uAJHXmKN!xGP>F2!v++El?UAWVImlml1{U0i$etAUM!QoQ6#OGU{qr48
zZ2Bt7@puGtya>Ytq|vPD0#=_o;&Qg|auV%oEcVb3`bVg2bJ!`Kw$E%jW%((q#e*`D
z{rf-R$Zux&q`X!$S#q#o_Nz@2o^Yvk8EcKA)r4Wv^F`Xqm&rjqn=wf8ycj=!{231_
z*pt|9FF_$nO^C5>dv)yljNb=gi_$pdU|xBv1+6?vfTCQfIzcRtQDx*v{MX2yjDiK>
zN%NK~n0K2E)&mDM_gq#NNbz%oL&^_m&k#gGo$^@mm~{nrmqUEKv>@s>47h#Q3BIkd
zDH<?x&7apn&`zj3kt{xW1YG5DrvirvHxRDyV@Z{)W}1Je44aqM?^R<KL3R{=a#ztU
zFHRP7aWg5x##C#Rq)45y*}|o*E>-X0fZv?ED2OVn(yaE!w4%*~_2xY;zRWHDa7OIv
zgktmg0b9$1^<~S{-N<QUdd83As^3jTBHcI-EY;+Fz3+<Q;2wi#IOLpClyd^T@sD5D
zPpJFBAv?HCI{1>lYwcjx0#Eh(kWw#ISj|=&u)0N|GBy@UydmLHfa)SG<{j0dSo3B1
z5!d4I`N{b>g}1g?|FbAz-`{a8B+0EZ*2+H_<`RT!r>|&g!qcFcve-f~l-02YQV<VA
zAaeH<udrv7>4ve~FS05>+wzy21?QxBuZ?W|iwzt^ZJzk@n!$xMZ~vFS2H?JjWK>R|
z02rR@15J1PYs(=CA6?`(a|jx`sMh4h(3Jv8ix!Q+Y+YcL_MH3o4$@)tq4uo8V52w=
z4EJ<&w<hd!R6Zrl2X>Nij0NU1lGJ)@eN@Q!7Wy1yf1;2{4Fdjervve(7G-ga>b;|@
zoxGzFG~SuStq<%IxbduA(M3SkjUl%>)i(Blw^%E^X>63`3uq&m#PfI0)L7Vq=7T^<
zzURKQiM9_DKX$MK_{U**UTCR8LB&r1C!-7A<rb58>i52T&e7udmUX$<ty#-I@2E=U
zb>L)R<--at8{OT0@sANkS6&1rd}konp*41FTM=fG820Sf%flV{L`l3A!5~&_m)D-2
zbZWWLq;4)M30K8=(rkD-FvxanT%l>hr&anlNfyhFI&l&e9z0ucbMaLF_5;u;bo3-F
zD^KNDbTJ&4EzI=Tg#`5-Bv_lqV)#wPn!{$C;3Awv=};<xNBj=^8Bj&gj+mt_l}VKU
zTX_#21nL=p#)y0Fb<NPqs@0y;o|6aMBDd*(a9bb8d(ZmiC9+R|U8Xw(7`FSRa@oc{
z19IV5s5XF-a#IUQ)g)OhGF+#;$ygsVOAl@I#=fA>N(wa^2iuB^Lh!}2igb^?lbB<k
zVR(`uQE>*{DO(9b?YCi8KiSXi77-bmOqTF=!)7V}PSV5j&~|T5E242U0BJlST;ul9
zQ^20q4f0NjMK|n)O5D<IA=k`N3V#}kZdhNldU^^Lb8seqo`se%g+U55xbu&M{VspN
zar2(&GBHhB@RtT)p3(8ih^OPLd2)2?!TgR<Lc!N$Zv#V0nVvcim5`4=OYemg7kC$h
zmdzg{MU{0QXK_#CRtryvvzC8-Lxk&Lqn*908qfid5zbkxx{YK~r=6f}(KAotB+Ix9
z(BjrUuti(&6XME1-x$@(No@(0wxmCztb(7h@XGBW)aDHP9>VkEvvn#%+DnUDz`p{B
zY;Xy@Lll7CnpVq_`FiLsuc7`Fux(L_6dcF{y@pn&1=3yw{UoNQk@lifu$VI4sj29<
z0{%a`*I|uWPM(2oDDCIGT<S+m)feVuecs`4vZWlb_JGT)*g^kuC~K@oigynY8=*gc
z6v>wuf+_{3l$``r%_o8xv8mw$zFx67W$yq~li(1ecH-gYE&dTkus?d^?FsSPqx9{$
z8F_|1=F2r|UFY<D>I1l?Yrjn+ukEkKvV;5TooxOojTi7)(zAFo2%I%v+VC$oZZ_eT
zoGFjk$`yyy@%n0hAoi189LWpn{;v{E#RCJ%riUiG<I)jqfe_AZu<Vff*iBEeOKFm+
z{E+1t&S2;pGU!4*C>Dh+E~n;hMhF33n9jzOv&f%M6@ctZhK7}~Y~lrN9?dz*Tw@&0
z41~&5NIEcsKO3I2k;)Ai<1uTEAe}=9SYrWIcQ8$tZ+S=v!>M4iyl1Wx=E<G)^G982
zSjgG))Y-X2Y?w5-!yl*wm4r|ZA5D}Spmj$V7!wRDg{A=~>Y*6G8u1rm0R91%%!(!s
zlv_X@bKA@W5u_c+FT9;AY2>Wei_)&H*;99HY`=7y|BWy3rYkNZucqquUZw<5&UyB=
z&C#fn@N1<w79=VLTg~3r&0u#@^@pz%aUrlAttDVQ!Cfx_KD#X$vN+!(FQ(QV3QjrR
z|3#c~<>Qwy5HUplR(Bv>pQKVz0I7_G$2G&l{ZEDH`;#6#`|ih>>6nY)RjX@j5M3rM
zaUT883`)dJofBt@o%i&c(Q)a7yZfoh8j;o|(N+-XMS0GzJD7h7<eE%WX9xy5-(P>P
zK^TrH6faFVftCB1t@HjeOlt878ytGMx=}$V%sxOW&<usLt7z_rEbUP$Dgk3Hq!kRR
z7@k}S>P_Z;wjKMPuKYnQtR<eqz#dYQlp16YBTP{<Dm!d1!FHbWBpb@=F8E$B$KP02
zwP+I|>~f9SE0~s5xkh(gmy<(a_t16pU$H0oSUQSr+i`|SA%;#n|MUs_)#hDc_Gawr
zD?*tlW3*0V@d;CfhS&*^La2ud0)R#@zlii~RqbR&F@Pwo?uw`>nA{`57?P(@^XCz+
zVs*~$UXtie#V``CCe|#f7|W`LGo48PQt9vQ<NRwdn!tC%qxd2p-Ri0u@Ur@W*oup9
zU`|}=W;vY9hriMQgGWAx1;+@S!1qY~U&{%L`j@=E1J*PNa!s1gV^TOJIs3)#f>Fn{
z!Ktt9rHhnB#bN#;vX6H>)1v*xz+M{_v&oOE8u$JAS693Vl4@0}v4KgB2p|KWJd#V<
z?clR}1PAZ3i9><waR@KaTMB!xTO+xHkApoess*cF86S)d*}JXi7$a&q&s5#^5riBd
z*h&o6VYL4$KW_f5LWS&OQCBnX&gmxh)+H-Axh%K?)@D1i7!;wRo^-kuHMs><DlCSr
zUhZk>cy_525PVbexdbS!cL1ZzA>Bj4tXS&z-!a@J-3qLNXWY^?|H7F%>VFZb1f17P
z$4uvq`=&aNH%y!#3c#IGv0ut>JWE(~ONsbuQ#N6DtyDakNgk-HtBU*Ih6;k5^-%gw
zE<x*u>(OVju&ATCJVJ6DWuhMiX^+C9GgA0h3c|e60+PghL~<mwA6V7#Qke^U4oH;l
zP|&n%+-!cQHTh?|=MmseTrSTBmha=hnMOqyF_6N<vB{nWFOp2pY#Gvy4C&u@Li&Hv
zh{yNo;396SC(T!+PmHW@($rvsc~5RC3JDJ1k?GKJe@c*cf|dW*fhHKi!;Y_TsUxJX
z?hzP^0;qb5R(6d3%VrIp4^YWqO;AXlwea*=xd32JcykqXcd_W2u()nCCU@MoG)VbT
z0a!As0YjM0gy=<fa($ar1`k}{fs$c2jK7$7fVwwKArw&5gPu8;O4MSenjBlAK0y%Z
z_k*(dFNv+l)ZI)X0+;ica?e~MzO!Ino`f|e`%0-~_<@-cfIS=%42%4Hm9&)*kie<E
z4{s&z(|1iz&v54}qMXJf=cuJ9yf$M1rMt^xisjaNpwFj~iM&4_p?)q)!eB;JVVpA?
z7qN~SZI%5{emvk|5XG3O`^4An=i<<?AN8>q(k=tlZAV2K&5gT@zKFpl_ePpm*Qw^z
z16AJ@E?wMoYtC#H47DUbD;1WPuwTT<iE2l$x=t>r7oCfkPr;NqbKNxJ12{*Vrl-n1
z*1eb_me%De(DdM5{Og|`+m%BE)335D-v=ho7cfy0N7u(qj5zte#Pj*7nO{{>ZvqxG
z^w4d?a^DK)Rft6V|2&WK4U&ItY9IrkylnSno5~Dr#Pg*puvusNEu#<VNAEX-q<pE2
zHe1mO$gylDt>xK(OkGa;<zNwU8})rXHLC3XW^ZQktB$9Z>DGmJNa4`>^_dczNqYSY
zVH%$w!nhogoKDa=wVl{F(KatK2VOtb`<9sd;uxdA?q!+dF!;K2_YAgvo{`x$*z<Lu
zn!h1~VUaO)a{b<<2S&T5JHU!XSldZ%pLTYe!2Q6dTi3r(Xj`?5wjXM1XE0)}?JWxF
z%f1&jLAa%d1HlbP^UT5?nf$|-$sI+bM}uXcH^IN`TIT;?q^b3PM|&YX4(oU~Hl)j3
zz}#JB#Hi)=E#iiSFI<8tTKV$*rZw($))Qpz_=i>?EkBAvL{aJ7!Nvc>-QR=++k7@f
zB}ewq?a~8z+ybh({S&6imT!)b1t=$~z;_(EK<F}K5|#U+mVM=xmj&^ZP3j2B#1tV<
zDY4yC`5e0A_}klfZC8%5D19j(xy3+g1`Ape`*#wvQjn=I+@xcjN${hiVgT1;KE(_Q
zJ+EdTa|EzM@V8_DH};D{cx{!6_}Gk>D?D0v;t4tFq7E%E=-D}=44X~Q0QX0O3Ju*p
ziP=8o9I6CgCm6o@dGQ(A1$;g$2=f@16Lv8zo!FK&{1U4GF{c&i3pW_Uhhx|W26z?x
z|HQ?*KT1iez2x0MeJIovCUY!>6(%8SZKDDROi&Vo-UuhiFJ{Yzx@v<yU!Zo%?Ds)A
z`6ia!=XyTf2w;EYXoXk|eTTC(y3sd?G>^SevEUP!2e*0D<c5bmfICbH2OgT1le>I3
zu*$Y;O>>fEuZLf@#NAlz*z2bu!4Lr6x!%T+wiErN#g({j$(GTbNS#uao*+p+r_Qj(
z+2f;SJQjqU4BgG;_?IYXeQK5nh$WF&ur6&N<&2x8DWV_K5jsze4YqE?puXhKPr_vD
z_j5+wBtk;YSITA0TZHM!EDaS<2{V3$0G+;l&b8kw7hW_<22i-fPD@s(H~2<5qa(%L
zS5Po8J+H+fbVguCi%7CvB^Oa?=~aj7drRhc)BZ5-JH>8t_rs*~o`e9j_MC%Ya1g;v
z(ny&G>wlpZE<5AH)}>ntCarI6K9LRVTDD(%7R@lE`~t*$^z5;}8z;u_@4BN7T8y0k
z+)1c_sBkRwv2jJQ1uI9^{ge}K=FuuSF>{EJXc3|FMH!)(Z>E%u9o~}vG|nhs`~JtB
zB79T3D}Ma72A=56y%_0cODZs(dS$BK=4d@59rM2;y&;QFNMA0iBRRga80?dN!-()(
zW*b<Y-ZJML!$EcS3%Sx<uMZwP1s3v(aX8ou^1^os2pmH*P?+>op42GEAsNt{RjSMo
ze5=loW!qLJ3|r0zp>%J+b@c~i^bW^Ev{I>h_Sv@?z&9G81x5CITI7Ro+q*7smQ~{w
zC`ws}of(ri3#xcQf(SCZnqUY;Hf_$%8h5xPa=z(s!z&U*WKKqIGIK-TMY*bW-bxBi
zzyEr2^iGp`jtQj3is-W=mC;r-Alf&Ic#3#g3++a72zR;5x+o&X7|Dd>3;-?iXl#2M
zU-abo>OKyT^T|Iar<ZZtD#iV48}d2n;Q&2A!oP?+*d;HOcMogGQyao*fkNeOz)w0u
zvdTxTaoi3%tnULEc4^!Q`^H6Yg0&c@jSq**TfP+l>cM@wB~avO37nn5>$AV{W>5I)
zC%Ce84^WP;H=?Un#qKJlw=w^#+s1>MtejfExjeBQMr35CJR}g-T}fJa`?Rae`N{SB
zebuIzqNqlpM9Lm{bJz4_+w>mpyFh5kdd%zPf8P!=kK<fsdiQ5<o>rFUpWD$(D~2!x
zlWVr^5;}>WOW!4R(2jW_Y8Cof5U$&|w(J$#-JdRo@$Ab=AtDKrY4t<jyR)G3xUg}!
zx6kqR8a`3qlU%oApV~2jo|Mc34=Zcv)ERb~Ez@fgI2!XP|H@D8`evqCZK1yN8S<JZ
zE4Y@XE$2G$^U<MpF@m;xT<+tm5E18V)Uoe=0`|#kiz`0pU{RT!be9}W8zaozn#t7!
zVl(@nq!}k8SCcO~Y8UoQ616<IrdAaoZbV+(^^>bSPLRtxYkZ4&IGknsiy)!av~i+?
zbW971J1KH(m!-jPVjc<$@1W}nnlCigg*(}hvK29MaAM*FK%-xKTlJfW^u(|B%y33P
zuinefKXT?0(g?;Fd8$>Rgs(a+uTGYphGNgh7J^P<?Ph-Wj|U7V7xkg4kjw73H4ID1
zH2S;KyTY8JMx0RrFXuI>W}Q_;6<BeEAuZa}O(+;B2oy=?Vex6p5jqTit$bcCVFje<
z(L~y?d28xHJzZ&)d58lntAgM2PkRp?!1B#{JF^)5FLSF~-XY6o?U+|U4~pJ6GvWQp
zN{hI?2do<D1qHQeW<T$O2C;;{BoGPHFb(=(0a5a5RBvNUs+kt7GD%iZe)0lbiNx9_
zF2}Re5sAy)PL{CRfUm_Y^SXcgJb%dEH&EkgP*fWddvJIP$bNTNPxTDl5IRdcUi05g
zCs|AeLqo#*h?z=tdbE65AJ^1WEOJ`_azEnn<Ewy2Sv#7wVktCj--WgS<cQ2sR{NT3
zA{dwK`okV`k@~x%B_$~9I68xz1`>*2tJdvM?hHcS#SaviR~O@grN6gH^P=W=BV4mR
zj&Th0wuG0j>m+ATcR!viyk~!iV~w$SG;E|8{_U4hFWtb9e))$Z8O_V|cGsMXo<QQI
zH=55(x~>BU``)gP?);C1N}k1&kD>L!-{J>2pv`Wx$=e=T-d~j2w0b=z`oRkJSSX~g
zF0%-*JoXi-cxnnB_%CtmHbkqwT;ww$(BnEp`y3a+PA(AjB5S&0d>_LvoK5HfHl|37
z`@=QyiL;EL7yPmk{$y>4SHS5G>Wz9lR*6(2m40;#+^_p>6uGs`gkt=UBWTb=u=dx?
zV5od|)qfp!&>RG;gw+%n%Z48vTWvGmSTB<JhMgAC#VXMXG!US-%r(3M!hU&i%s2N+
zc#YMP%cnQ<Ha$?k<R?`TL1w3VQIU9Tm~2T%HXa$u1^wEnILa=)Q&XNN*@aT3i}p0Z
z?(JBX&Z~`$Tec}FTXi}THG>ycSypF>7uDAXqKMlyjV2j7?l1D6GCJr7*0Q2{WhH+3
zk^RNW9dGvH-ReLqM;QC-=g~Sw68O@{gr7$Xo(=|FHT|C}sL&~SCe8b~)et@GWgEN)
z@hFq?gcZ$V#YmBXk{np}*+)g5(}fdr4lyYb<O;>#<R#r-_f}fR{vv%K=8(jIT=i*^
zPhlAoPN4!M-O20xZf2oSwjMp#n~(?GhBY~ovPlA&Eg*cvmb`TCfE4<~LJLu|$Bxiu
zm@__LpZLO5;y7MUm^ad-u_Y~`F$C$XXF2PrSEazp!4%ZmZlbHVa>pX`hz6FSHZEa0
zY}fXCcfUF36H3^(^Cnp^0TY+EKkDk<%Ks+^aS810Saoip&o>Mfda0#cvu>6cAG_qK
zfex9-5f-WzS3PDAkG83T24!m`nZ-`eKcW4$Pnw%px%9+a-eVHf8G|&JV<`>bVt@LJ
zoI)2Go8G<kltlJ5W5^UxlL&=3pQ`yakh>HS>u6>hmpw~o@~v8A<L$AkuKVm9UHi@t
zbhJUJy^xP5!KR9s8O#*Ebv`X`>6@dYk#Kj4Vz2zdevKPVS_Fm26DuK#n^j$Dql?jI
zW<rJV3k_$l2;g~;J3TIa@0YYR4SHf@{v8M7>@%uW&u>E*WxUqGuY!EhvJ=B`=wIpy
ztnYWIW4wzg{2W!PObkl7)xELx(Tw9FTc&*U*631Anm@dVGoSK9cQ_k5)|w5Pamcu%
zC2$;JSl+r32@UeB4XcRWiiyJg0R;&jFruKHacRMo3@l^Ae^aCiuGgwCb#ccwuzNy`
z0~}wZXkMKgWIED7s>8fc3CV>WjnvVMx{F=hqnz1JH6`=zFchsRF&!ryJs!GLH4O~s
zO}bR0fDoLILu&3KsRje?uAt(FKDldC8YDg07;!xaxt@fLoZLw$^!sX(zmy_@m>sm7
zd^$l)r<<4y0t|rwk7MWgwrPWY{Nd#09$~bh9gA=MOiNIuduJ%VPH*8D`Q&QZhN2cz
z%{*@d;de6$`|zp(ne~z|#?%7r@5r#aHTZe?l(+x?mpFAQz<zr#5Q-^@f(Mr*gxH4m
zO}>L~q+yM#E!!fV=$3#;cKxD#)lmZ&K++%l{RKrQw=dQ>hTCy5W<8Lw3sF|ud90Vg
zou--R$K+H+sbEOJy(s30vtrS#zfU^wp^fhoq8%=-1*<_l`i=+W#Y`TKVIsLy|6AJS
zGq#`gQHk-)YWC5RbO9bp8srG0B(jpmD^nbwlo06c@KP%Wp!La3#OpE<`u>&h|5rib
zyx!5p3P>JhwfBog*nKln0`Xf(LhiRH@>B36ixKnmZ8cbO4vV&b|Ez(nRxUfB)N-u$
z4)K`i+0TIcmbt)nL7KFYtZa=fVdMh)>CTY(f`gN_0!W%4=n#ORlM}gUil~LLhW{|p
zX4HRPkHDCdybt4*pU7{#8+eC=tPxvG;9p`r-tN;dF@yX*#RrOOy)l25`T1iC>RH7H
zj>h}JyeSVj?r*)(z<=<<if3ndF13=E;zPL)o>mejl@?N?E!%oCqYriNw8`T2&<N7J
zE*&`MP|80?I_jD%ASebp%ZBqcj3+MFl&d6ASRC=vwxXjOp97!u=l+<h>t1S(f0YP?
z1YCjjAzzUt2atV5YjGzPTiH;ta-lMcW@ZPv*O$OP;GC&<GuUiN0#yLCh5#VYD-+aA
zFD2T+#Jz9JT_^y!?K<ukM4c|ayGi)$P<qxG_L`b5_~P!#E8LF%epsw+Bwb2SS#l}=
zN?t!oNE#?=`8g+Us>{7wL`!``XsYZUBp2Tv;37ToX?ZKofh2(vSm`Fj4B`#gAaTRd
zYZEXrG)0N}1u7i>*=nfx$MYbt{?iR-G(Mq8)lY4tiK{3k2V)_E&>OHPwHq86fX%1|
zx49LrRXslP1)7V!Z=ZK~oju0|O2&|IcU=mZdCwDOzxjl!E@sY)p3JL5a)iLr<Iyh1
z$=k_!A7E{#c8`-fNO0C*7N*3IH9?HvV&fB;d2hVmcb^~~)%xl<?4QltkCh7(43WRp
z{#aNz8r4=0;bguYQfiU->sDea0Xl__U$R#ec*3iqvVO^!(uBgh92REcDQdFK_33_0
z|J07hwP|nkUE@Ey@8?+JT979%jycH=eN5wraDelpm@v1guMcK%V^5|*LHf7pM2$<6
zip<9IY1B+WA7=EYy*6(T@82M-j69x7TYv+h1*yO<iD(>BHRQb@x!BrdL{H%$Df?@G
z!qCi7Pl7{>^a;ElVjbkelMWh5Tju;elJ(75Lr;z(W?`9^aWY+AuKl@CL=kS>BY6w!
z{P&qK;U$bEILV9mxjx<Lsf#h%){VajDfG)+4|nSOqLTO8@k4L}ABxtXBeONJ+As|e
z*ypXbL*)@(jCq=$c!NLXCo2O9{~8<v$%*HW0h;F~B*^ShPvHog!ldC;l{!7ZooxX<
zPJ9WTPwp)<s+26!Jy5j;fL)62I2S@Y{vjfy`1)K0DLXcbz<G>jUmD-C6R$ss_r&`9
z7&94BHY35qjWDP=mN+|eLD8o$Zk+2tyNw>;DPzEep!~-8TMFbx4+#!@43Ybn=73Wz
zP}2VYmdiAYHRPav{r}RLaz>?Ghj+L+mqUievO~gI>{?yt$ZHy87D%#McRQ6dVpZ?0
z7js#oLlb;>2aZDhUfPEANu_OXf!b@&hNW34fy$<1gR$R&0E{v83UNWo|0Wkm$9+6E
ziab!0#&l1i3=Tc#ps=&v;+%@VE?$;ehLP#m7f>vw+Sgevx7#(kmBFtEo!J@aL+mJL
zXYH;(`AS=nzj)4Qd284=FONv3WP&>o@rVL4@rAs>8QDJ_cIC%~>%LFlo2Q~Me`!^E
zqDO|}Y=`?A1Ei0D;*w5)+XIWRFDD|8kC7`C{Y-(~f>4he?i;*UdO3Fb8$^a*r1DeC
zoHPFNtiDD9e~r+MypJEyt-*FpX_REIdfjo>5#GZ~721ocH`RZFXyuCizsW=9SjdIb
z7M3v*XedX0&N*6-7uZ7#+2jWG4d5t=;#Sn5=_jkSK>4an=Y_3?4gi2ayjYa2pTt?<
znqM!1)c9@)@P;2Go^K1Kps(^fZM5=-F^(Y7>O|x=TY%!~C9v0H;KG)rH~{y%sg)Rq
zZdIvfxTo&Qh}&7#-*T#>ISHn~@D)w**36k3lCg@{xkLc)^j*8aEzc44evdKbyR0Mp
z2%xk+i-Z-ba>&k9GWNzr11Z7jy<dj;HFse+kOKK+*p^$QPBjJPL=v-<`dby>&%1!B
z>zgc|r7iy!#3gKc8dfM{<;QQa4e!j7OZn>c20R(pXa{A+WEE#2r$!gjM9Vw^anvH<
zh9AKn+;;E8uMZ9=X}=N8n)?NR!0@^THFo0S1xE}M1a!=(h`0eBl$$J8-FUc1*La4T
ziJ?|<{OY;dmP~-h;C*R1y%vy!C+96*_>HVL2^!|hw@*o&cKe~ukz<$45G`EN55-#c
z%2TO0hl=W-_9S=4E6vbrO2X7~vq<v2BD6@&0MTxqUtms?n9D5XNf)<c?#{c6Xrrfm
z@h-ioxvW=hgz^C_w+{wz0&n!YTI)3APvXtyymB(T!8T4-zut4{zK+GGBn_0j^XJz@
zqXW35P2e~1T2*YL4C9@nIw!@Oa_2odR;p`KBgBWE8l!>Y{El^fxt{@TmejYt-ZVXK
z5VNyXwZ?(C-C4JKuqnjz2B?lE!M_ph)OjJ;F0X_}5X0#l#K_FAT2RkteGZS$s^_<}
z>7@@{ytKG63|+beD?$U)b&LtnHY)jEu|*d!E(_<Dp&&<ueDSV|;R?3vrw?O0pEno+
zxgr0_W5=tyB>h0+-U3<4k-XtaKFT@T6%fTfvKm|?0&zd-qX@##n(<pfF~OY`Akvvr
z8!kv;gGXqU#Ne}z?xf7i1*o~6?=9S(QhUKS>c=2KWvq9Ql10fi(e$H5GqnW-Pp_Ac
z_(ldF7Ve9z)vn!h(Rpk5>i}b@!wwK-qX_-%OA@?k5T&7I&)FTQG4CtNv$6g_I;8cq
zg(z*iL(RGw3b@D-Q41BsD{>+XMw&I2PEaqK{XxMgX-%&B$do$cif>9KX9x0@T8#x_
z*?+0GX-K!eY7hGJxmF*$teSeUG!a#C^vR_Tby_bvH}*;f04UogZ<kL9@==!?l>}bi
zlO$w1rTQ6u<9R&Jm5h+U;=)d#A0PGMqUVJbt=AVxx{o75zaLNZU6YKUx!MR78eo_K
zWHX-Wd>?OR!PiFL9t(IXSQ(Tg3cw55bJ=#oJt?b>(qWhTlD27EG^w>D*95b=`X5Lx
zX%2N@t6|5(^B+}O_>mn78g@-Hq~uS?NLAkLP^D~Cc=eyyRX{0)JuYN0xiJ{y{c0?9
zH|=#VxIN8?wKDYN&q26zEIg=`{hOGPDf|7%e@&`i83=obHj}^WW4+ghg@;XE@`H{1
zbxQm%S`vEAj2KJ}AOQGKfjV`zF<D;I^>xhXN%9c@{pZCD-^@ER=Rdr78uCgfr5ICn
zmwV42D^yk@2bCEz>u6IKx~VsWL-8f}>z!!ZiN0EaxC0@$^-uwISK_a#yKr)R)$8nl
zRk0&jH+HopZj)A+e^Mo5Tvo4?i%}3FF@tNeumh~(S6~6UjjZv9i~y$B*VCc}Y27<T
z_Qm0lI@|M>TTyL2y%G&aCz}Fc|3syLkW|TR;%!0?e`{|T@NfWMB`z;p`SnU@b4)M}
z5##h96iWwQ^$z^|MTLcE)#neOuMWTE$ZCK(3U%Je(%o|bC}328B-b^KZItGn>Wtj%
z!2|OoUSnvw-X!ot7r>;IUso4u!1RAv#dDzz`BX&t8DwL59~X{R7@y`;7?{RPvcC6}
zQ9irV_X!X=qxR!14kLdO+rm=5>ci6ko)iwb80=FX(cFM<o1wD6;zwvN%XxfFQ5#JI
z?@*K^#Z1Dc&><jd2r%Hol~F@MN9_lPKeng+>NcY>v9YGtdMm3}s*vzu>2AM(UTWhq
zto6x_U3B+qN7pjvSzqJYO2JSaK}aoh=afJ{*Hmf63$QS`He*r`YR#v5?~L=|jjMpO
z%HN79lpIAK2z1?#zAmDampa704LsUp8BgJ^W<(0+wSt^&kdU#V`$B+mc)aKq(#Y!t
zgB|Af3~fEF16Hn6RID66Fa2OP1X5|r8DF@5+5dY;#l-E+w`7azvk=H)FePu|D2f)G
zbfL(Q1_m2!a1_S7fSjxHr}?wcBOI1-1ZI8@&*z9gM!O}riyw*OIl-EBeQa;2&^nQZ
z<G@E0AWY~Gm;p!Sj*i4Ajbbysr5I5-Yc;>oDuDLVvx7PL_vHzaY6W(!HL>CWDm?>J
zis}r~Lh^t?FB>NOi|_cg*^MCbi4vPeETL^;lb8j<6mSrS24_#sWcxLVwLaSR;>*m!
zZ@Fv11KEn=B_}fJJtn<o=!P!n6%=&%1K=`e)?5*5)G<1hOheBQXrVhT<KNUN?TCjZ
zDJZf&>pG{S+SL&DWsCYNyzF<UcN1qINXO7GTIfuWI!zxDH1K2pxAy0d%fNEi^zTp~
zU?-Lb#Dv^O!R9K3dV=`0G`YF`%;~1R-9C{stBj7?$j@Jfe2)$poqngE6MdspvM=II
z{fxGOM|JM2WcP%ZtYpr2F%dsGSJebq8M}8@sb2E&^ACVjhI7$e(ftOtWWC87UD1bz
zx1}Phu*pHHl_6SS=uA9GC=pg*dA?yf*DRG+n3Hwlw|5%*K~I<yPcS^%qt+LZI1Z@y
zw2r3ykosvDenT@kK(F(93Ket14ftGhxWz-pdl(_3A}qBw?pR?6@^g{jg8%?i-y;#^
zL)>zZnGf)Mh{VIP`csgPLuKl3176RBW~Dqm41g2U4k4I~01YHG^LN$$J}FvY6K!~r
zbsJC8Tm^Ykxr(;88$TQJ&6LL0-Cv1B)d&94h2!ZwqFWtycW(M~4|k?%ym<fIN1i)Q
zl6l|3)I<+Q_;#ZnfJ<MLkDoJZ(-%Y$XI)RIcuwGEoL%7@Irv3FC#x4wWa$%s*#6<B
z6q<h*v2U(kwaFlnu@X#wrtIgGFV1b3zD!O#1;ewc5#>w5_V!7Y;S)G})N#pSwpwL`
z3I+0Q0SYGieS(MhhK9V!;?UQwhc9yXr^-GSuS0`?S#Dv%R^v89S3iH$=M^On|6qyT
z36R6t4q}*3<Bnz+Je1vTC%4N=m3fKUuKZ*xD%F3%|1%D)lI8F=((%hvq59Q%fKAhT
zvx|^kbYFgszIzxDYvc%43C0@&+sM48y$EX3EwL+KnTNM>))(HA!fsJAKR6||YB%2%
zHTGeI{h2)0?{RcUdMOcxL;4&)#=lVPMb+VEK9~Ng|L!!)&?}M)cOHa9?DQIgbgy1N
z1c5xi1iTxV$>S@q9PXP_zb!mAT)HCKMSDM5O<kb*-+ONmj!Pq)<AKd?9JnzDBBVmY
zk-e1eMjke82kny{4$pgki;ma?0ug)%VZ&SZ1+<VBF+Y(jz~F~NH`bYoo7ogsbBb9I
zbj7&pD_D}UvCqlLVayL1bj7fG_AGk72zX5cLHLylOaFZy4T5r&?OIpYOBIf4s{#B-
zot4yA+ugZdedc^~K4j<<h_dU2JtIjDb92p-PwaY4D9KQW(i<O+(m?_teT6H1nBGM*
zoyFfdpSpujca(NcP4h2!xpZ-Se8!^EG?B;9BivDKMF%nSbyk_u=ygb$Qdo~Z3j>t2
z_#Lq7`LtCOYK`#~>7b8k{PYZO8EJ?mbAKtiRPNcBU1C{06#E8UiHW1|+)J!k*1(N9
z#k8oNR7v=Yi|RPMampM7k0AMk1QdWvak+?crl+&9+V>$Oj{{IvgnFJff3U_CdJzBJ
zMCTwJN`fYL=EMh!<bwEjbTDGzB3)iT)LptNN-Bma_LD8HB|0tfTx*<lB;RjJo?I?;
zN-Fw2Td8ByWw~4DYxH||i|Xw#gfU$)5lNZYAdjHwsgb=J!CMjyXEc;}q$(#Yl10VB
zq37LAE7)4gH@<U3DL@Vs)3C`Vxvc|^I7Q8{<vJCCpR?rln0+N5Arp+cg+l8Y{f7I-
zw5f(-es-o;WFTRI22F@>q{g{7S!$f?%6bFYRIG>Qza25##)2(>2<j_UMZ$G<=5H_Q
zz8m^9lpzLoiZ>1v<aOGQ*ZN<GzxQOM{}b;=2zG;OYoSNk6*_$piz$Cj2_ZB;YWzFc
zWSpElJsH3o1k-)ko!DlJX&=rXAX&)6<E-NUNT&@kZAt^eG<wHhALizKXU6@G9qG{M
z$TkEH{d;e7gb&jtk{>p-+`&gQHWnC0*4VD3Px4{w9)c8gB>X2$^?a<E%Xn-KYm->D
z8uceF4^5E>VB`xOHZ^d^z|{~h3oGZpS~?456WqRW(~Q#wGk17?1rrNtHr4eh36Vna
zw<m@E8A>c^clqOwdw-tBM_408ti7O=j;KS1&oL<lt2MClV_0hHQ8Gixz#zCzoz%o=
zm6w6h)lCKRM===p?;?1VQdHl}{-m4PFqp_-Loy;Dgd7+0uWb3f(-j>pexb(~gV==p
zT_X~S4s2r{{5`n_9=))4viVsIxYLja*WoP<K^)F9E2~ok8HVM!`8vL<jw?)@p24!5
z48E+l&0VViE>)~XB>(R&>B4<;W>XgL?s7|$y<e@ibHBAm;dm+iUKcqxk&I=png>Uc
z!%q0DbcZAdce#QHQztL4*Z1hcss;gtygzLC^*OymZv}t1PV$zQpt1uVT)Na7`5B?b
z1`!GF779W>ih2lN+$6qMR=T%#fD))?=3J$kCffekIUiBuonM@DNv31oA>m;i0s#Z=
zjX&UbzwvLqKCOV&+q6utCN5}gNqw`yldEK{TJ`rfn_HnP=~0PVEq~@9<Q3*szW0mT
zmm9hKkeTbWHanYIPu^KawEF-4Wt^4#&uk-c6G%d2Qaj8<B@}ws;fewM*$7mjANODA
z^VRigXlP#c1(r)aw<-FrYR}KIW=kq+E!Ze-zm@i&kD4P>*fV&h{39JuHN3dCLH4&&
zG~`-f)9Ox=^pnvv^`%V8jX}S62ElX*i2UMx&)?~W^alMfLGqe<v543RT|;i#;w}Ow
zAtDoe%cO469eN-!t2E|7JNsEq!@SsT3HgsOCc{{p_lmJy2-(Y;>;rzSW!Pv;!;sfe
ze7qx!Pau@1`%=2rtAM)iZ|%23S-)7f>cjKRwpqgoRJKzI$-177okYQ6A=x_C&xsxO
z-;D8qyIU~z$0D>{Cwr)t_H$hQ_J}h0L%$85m|8N+r^nW#<p%kudk1Z6mmVZ}EQ02W
zW-<p^9EI*W{t&$L`GSowtok(qzrwerZDc+7Cv8HVu_xQp5IJFaiXS|fl@Y;x>r=#~
z#e=gWc;sOnI6&XEsbRUM{9GTA?CSH&b9TfLReJToj;C1XVyV>W{ei&EqvUsJdkuqR
z6RSz;gpbPtw;T!IeT#bLA3fez%cMe0%Ma3$cmukv!;Pow?nOo}xWoIw#rBj=M%pQN
zVqFaI)pUr=ltl2f-siz7+2LkirTvn1H0YNHU><S4W_eNY%Jj>tCYTMu)C%g9)l;Zt
zCfVU@RJZnOt6^-O`}f0E2A!ejO{k^zxmFfd^^3_0+2h9Pw^^ObqAB4HP=^!G0{y|y
zbv&y#TJK~Vl0jdf`w?Q9>+=4GuQb6$po4uE*#5np_GZ|W4`X7Cqvw@Tkp!~y{!4Bc
zZjs9Di;YQ=&;LYPSfuzN7u=KRKzS8Y|E|6YSkF4yrhmu?z8DN+C>e9N%h%Wq!ic*8
zFWO>0ZYDRu)_lRB67R-h>%63}#vM-Gq@@6cu8s{54)cSxa^2lxDGr{~+?1(-S_q1D
z=U3i5#=*a{9(a(gP&ALp<<AD`ts#70;7hJAReU~GPiXyDy=jx^$uBiFU^L|%acLX1
z&VWX~pqW$BQyC3cZScHT5G)n=7KWsI13-^L=ZL=}5Z<TTnS7}xxphgwwg{AWy$1vz
zRINoU#;SMvD}&UX2x@u8A^~^l6FXrTgHf2Oy{7+CzkJQ|#*ZMhg@(XkIss_M%20FJ
z*Bx~ifSH9ACkb{14+E~;m_`<wYax~7Eo#l=s`iDaC6`bMQ($SD=#Cy2pvgXk(R3xP
zgFF76>xk4_Ir|qSvePHXH2XRa51|?H$dxYuZ<1LZk3cPwSW;fnEfGg8!bg(!&JT9D
z<)fpdm66)=#Ib>uJs#FMtJiw~MGn^9<U$|YnMnZwn!49KE)o{=F<PhT7=OBKyDd{t
zz=2%H)L=F<!7s#6MobbFX!M_wHfvCOA-rFZOM7yFE7A9ql!H*(8i7Vg9*(TfpASag
z+7FzK+lGb5Ersz~3ZC>6H%F_#W)R~*6Vbo}8W6@Ol)>eIip2alKtcMHRaF7p5!|UW
zU%*h8JEl>3>Hfr)nu)2Sa^&)A-&~G~F%EI7*{;vfDnC(!f!?*NbPXTUn3n)$6mx`J
zYEeu#exG~zpljrUy=ZwVRp*Adc5W{@*|w&p1aSPx)@o1M(q|5Jg^j^k6jSOtgP+pq
z;SZW4Z(bBFYwbz3@5*CWD$bh34X`O$aPlD>F_ui{`^1?fiplypZ<}@N&Sa;i;8)t|
zf|$IncrM-!`@<M`|DBuL|7q|in48*ZZU%Pyt3<d*Unq8C2}vFT;bPzBFvA~X-Rrd6
z#p`dL*g5QJ<d`vf$BypLIN-;r5=+YbM(9X3PC`a%>h2_j^p%rT_}BHBYiFjQtb+XO
zNQ{dCmOuMxS<gnqfBnjWoBG$g((5g+mJ8GwrrI26ZV&O+9=~m3*8w_i$O=dQhCS*d
z*-^t4N9jI{FxV>L<w+5FuDDP{xi(VulaP8rN4hgR@8jgoBOz_EiJuK?<&0p_iISiQ
zLC!eZTTJqxB2b#EemsDHV3YxNUSg}w<*D2zP96+yg<X7>#L#Dcs6;LZxeUgh#7`4q
z@9v!^Og;2rg*o)s{wMDgcwV1~A89e|d;BN~@Mgxu`BPyPNXaM^g$S8c(xk(U1CI8p
zUKf+fJ)PZ|vDr{e2PBU}vFwqsrv3;8@7o^D7pXwQqFHe0fC8OIRk~FRUsLxu!UNin
zKB%cEwX|ETEm1zN#>XwB$oKk3vwA!c>oxD{cw3ubozsBk`;y1t*H9154a-lqy(!al
z`vJ_7yK=3JwFn^zvnN2n8_z{C-m28VjScfC8GUE!wJ?z?TZX0IoB#C95)&28T!iW^
zBsk>Y>`Bn2p2JsUs%hf|M`BlU-WB3wLrFzfYv=yVC@@$^rl@WApAyXn1Bi82vPZrS
z-vEOkX(llp$E0DarI!s~UAg8wn7v8}yI!^_svWc--Y2B{j9_c8=G87R-?4mWP1x~v
zwx^`y{^K>jeF>h=amS7UsqJljStQ$zNqmoe8WY$+Ty=pP+;6gWr&;ZwL&SFSI26To
zp(p3YjkxWuNS+;%BH%64B!5BatSF%*g$ip4soHOW)0Bl^uWSFM6NpmxM1Yre!-Nkk
zbXGs%zlOpyRnV3U=ZOdjHnuL)nOeQ7)S+~HYccxnpOZFbqbKePb^ib!l9cN^?mD)L
zUFcj*oyF$u%O9@nlsS(#w=zr8@;1zU=n)l%i(xMo(U1HWuP?ZwgW)q@n!5L7nMv_Y
z2DU%OfV}QPd)4^To?%ei>Z~V*t!g>;tqS=KasLFxjLH!Jos6#ZVd9>6m51voxb`lc
zC1u3ZS<Jyvc0layZ%9p;ZQJ+SK&7n2DFX*VG&Kde-<v=o>W0sc+2Im48+NtZK_6ql
zL3v_zv)<Q&gm9246nfTbq2h{H<;b=sa9J-WHhc1hRAqgvB(Qaa_BcBY&Gw}Y_$ZYg
zOqV*0YUM|motZRSxUdcWhA|-==s<3qe4t>VM}Ijvi0*_l%HPbLwI^c5rk=4tLg+G4
zJp@@(3k)kPk)AlAM+$6NTYHVIK&d$Bfl=--6=nl>;$5?}c;zD?fmk3vc2xqtIg3q~
zT(o>qUEZEgrnGtV<Jo3!t(lqQ<WgENb}&}|qCaG&mZO6Ndg46(({}K%^%?W{8nF$3
z?op1$MA=jo-`?=r)D)ah>B<c~pzo0<1&o35+{2K#d~*`c8cou0MC-4c*afRc@_4((
zLTnIP!B3afM+kgFHz)uUzG@SVr66cuD;#VLziI!`kEwD9TseQ^G-@m5rj~3FuT6_y
zN?lO6lwEQCP1<TjD1#8Ho@SAJwkU$0WV$R*7*KAcXOFc8i|5yk>je!~A_ZyTmHBe^
z8s;VWhS9rUwZ!P&l7&hqz`nJ4BIodd!g2Lx7FK9!w|zDI!&bFkrp8FYo4JJY#QLVS
zr~|3U7I_AF-J{)n)SBv?LUk8K$RAOu`$v{(rme7COXVOSuh|^-S1NfZrsWJf=XF<<
zDyOyghK7O$2#;*;m|gH6Io|PpBfv||o5({p#m7#*ve;TmOU}U{Peo7b*yvW2zVl9c
zM8Wzedgw<bqN$()YVebfpGgu!s_=v@bCv4ImP+KtkOM=j{A5TP%46|w6U^+zUAe8X
zb=^W>IQ*#2YHY<newkL3#NCrbim#D|K5C*nB}iu!H-#MSq-Tp31UOox(kuTZANX&V
z)RN-Bv0s)<YODk!Vlwan?yA7<J|Wvh2YkmvZ_G}&5hi2#f6B7s{iZ$j%-1RSw;)=g
z!(b38-112`zJNV%zM@v8=&m`4yWt?ZR_p=mFApv8+FL;0wsorstsGn)ndoV`FDF7~
znQS+^CgWSDPQ1fMF2tKY^liq5m4WTq{3C~)>bZ|hjqn_UkvW@(tlYS1jX}AJjG5Km
z-?{C^M`~IA!C43{)PM;9ce96y5EKd3bB%2d)y_^eX>L*CC@o&n{e8%B4={&@!jPNF
zlI4D_d%jU_ra~m{sc)|Uz!Ejzu%8GwgK?C5vZW2s>$l}Q<{Js5{dk_k$Sm6)1I3f&
z3`zOBR+COZbHnmX5V6@P64MDV+awkArQn~a*4w~SZv%7uWjwRKuVj(WK?djwQ;KK{
zCDM72F{Q{6`pRQ`f4`rP*fL@nLph7?pZF*(ql3~cY+gc5`maDaV-5-3Eo#r^%puCf
zs^*Nn+whX{rue8-M`DxxM**ERGza}@N$qm`{HEn)7VQX6BT-^uheJ26P!$bm_|V{k
zCo~7Z$F+MorsHKLh4r4OSDIPpj{D%P62`SZtaL!w=r`(fWJ&+IU#=+Av~MY>eI$fR
z5KGx{jRmidO^m7#YcLwk4`xKo+9l0Vd(0J6S{NS~_V!JKvBfH<w26M5M{2i#jLP+V
zWiVhMJO}SLuQzdzlOPFhd12IZ2q(n-sNVizw??FX#sZsokNMWO$+VNtsM~MBh<~N!
z-?*f_Ye`%~(+*i*!)9r^<>zMu?~Y$u34w{xCuuY!&g{xUEw!t$dpM=EINX^3kSa|P
zbYFW947I$k6I@7jZqWVZ!pQXu0S{znxcJE!QjH6}(18h{HLW+Z)PX!o`r3yD@~Y3e
zXGTIbgV(u_9i>r^IdwuYH2#$$&w?;3Ayn}UUB-CJNb@1Z*~%|ELwd7DG}rLoaiCym
zJ1^aX^KlcQ8&l*f6!F9Aa3b-6qstJ>a8mD0yRmutfO@sTKV22_=^rU#UWq<0t9Y-x
z`;+w<9Y>qkOG&IMlE`uZSp2pfxsG?#VD!_ZQ%;)#SA40}nZ*Gb*rL_ev_H=l@zvfz
z>t`(G2&D5>DG)Ey+0PHBYQ1&OMS53&EGRYL4>EqQe}SHz8U>m0YrS9g5`759RGsLd
zaYuC|w+Q`FStI7})TIjC8vK>Na(Hr8S9YBJQ+K~z?$dm%H^z5FhfK+X0(M9u`tSa;
z92gJfimRhs!Ju!2ixtQo?x2JIsOss?>T0~lB7|_Y&NjLamh>2<*5ilGL;x?L1(mqc
zl*{skjlQ&!;M}Oj(V3uFuFYZMxNWy1ga!C`&S9|15mKE!Ga4Fgw_IyTF>A+a7-=F#
zfLn(<wVsGBE4g+YrYed&LGR>e0Uv_l&I@rS$T%{8xmHf|`zYLp6+ra*R{<J1;xd=m
ziYeU6bHxWi*-5G>HXBYqY-77B49Gwi%8*Bjxvj~ks+43Q>{9S~Q}XJ2hP)t`jLZh-
zH9*&d1Cko-h||YJBD+-<4a@K)&yA5dYK7-3Rbrtu9}yifDD&7P4q*AJaUU!C@~)dH
zJ3?l@_@lI<hs*y)(T{Pzav%pnSM)ltYv**JCkP|em3l&b*%kp$OUcrQV`oQ0_<f}x
z(yRfA3uKUf_kyP74FK2bo{}jf>&84tD$SfkePr#gZYpPd9jh`NJ+9e?&AK&5Za@Z&
zy0>W6U?lc8TwqaX(FfUKw;$m{>e^3DSs%aaF9){hLz`g^x&K`}^1jgQL6R;QErw70
z-rLo9^Z+E(rY2&&TlW;PW~P4?#_V1e?cXgi=_Mz#?3m?*Ce$oP-eCIs{qpUV2lK81
zk+RZjoDwt|f~+Or%q%xK{3Rw&;g_}1{4Xa1gtW_L;;z@gcZlU;F;Q;kGM!(n9XFTV
zEFx?1?t$i~d22)KEQk1!(=zkY0Y+2p4CP+oS*IHGd@^r{;5M2j?^w=7ttRbTrrN&S
zu)Tfxqld-_Py+b<Fe<wHe9<y1HD_5?M18EfJ;!b0BSnV-fx_^Qim=gAemiKHBgkcz
z#gb9?Z1Gt3et;=q#g)#-JN3X-jtZu654KO->!V5>09!9T%VXzajnDr0O!9L;-gpdU
z!n|A1k*9$t|HN^9VAJxl!9HjUVQJy7s&_^yZ!;Y7t0mdQ2Z5_=K|(d}<xM%$Zov%(
z8+(Cg8+7st-rU@da&p(6b|qUq4Ew8R1J<|cPa{Yw?h;r6)U7Kn&EfF6mbLv@X9|`K
z)SdU2hZZ@5q$cS_DoB9QI<U$At+=JVc&_WvMidBe1Jue}^6ILg50M*yZ@qx9Z8loM
z%iljc)DHgTe2mk<ZGf@`{Z2cxnT)3RVm&-yFR%P>6!@U|?;83oRDq3b&+Yq5L+!8y
z((!_(n}To!sGwt*JtEh!6eP&m=79G=hHUI=qpPLQpAZ5-$Mm>|iCt(rK?*A80Eh?q
z0;rdMt|ehSL~OLii~1@7E=xQ`oOzm%G&WR%h@Q36{o{bpP;0N>m}n9RZrJZGf1>nb
zxjWCvp#Wn%j8XIFL3o<HEgF2bSfb?7vDzs{E4=YZM-Hmzr;YrJOVMv~HP|d^1?m0y
zQ#SIFy|xRtfT`>knZwNs;)s^ydT)z5K6^Z|CXX0+M}xR)@gh3-?Ix|1Bm}hNLR{)X
zIU|6^4aYLw`oc)wmx|KQ2`R)ewyNA59~wgKoAj^2kmy=3GbA?*<BwA=HZDT-ic;h{
zQONHFU5Yv@q|m%tUvBUw>oS#>4b4zSxOrc{$lj?ASwF!a7fo4%@h;+WRIUxifmmD<
z#|4A=neCEkJx;9)6$4p!YH||`YDn4A%_x)?A>hbwphcOFSqVF`?itwg!Ugx-@uqg%
zk(;VU{C}2#*oRu^@FWBLtKCp`hpL0hvKV`^GgKqO<L@55jGVZb!OFN>bczlWx6N*;
zAj|$KXf=hO_ce2I&5li~ldWl6S?2OsD(CCcBDA?}b$s_ftu$+~{jx;n`?MQM%mnC1
z4G?IfC$n~DLRW@A8*0aOclnWmRv4CqQ_5i6Wtb6;%_tEH9KOfq`*?Fb#SA3C%~gxr
z75RCwHHLOs1Y!bRS*coQ^FL(X2B_n?x6FtfcYcHRr!`~cO4`{1vK!XE^jK0oqX%PY
z2Bx(p6V24(Oh-T9d{Z+}Qk+sS2A@png!;!iCRj2<Mv=A2rGc#KA=BFe&i0bS_n%;x
z<MmkRr%S>BjK@VZOg=;EjPpTjr1`)2H@2!cGm6g?PeLX6+2(Msbyp4x)f)uO#P!>^
z;A?boNIgUq3SVgb`=)@m|8HxyR+u)g-O57nOKX0WF;M4i9srWbh)#{?zF1)oYmApJ
zG{c(Q@piYeXBCIY(Z5KUV!S1TDWmosoD3|}uw9+S?+F-sA+C_wO*Nsa-YYam*7kFU
zF;MzU+;hMBCb!`Px=V1LT>3QiA6`A#xZmawJ>5#N%fDhw@-55yfh-`HK`j$qB{4YQ
zYRmnHgEDpn7!|^?1K(Armr<`QdBar<Kt8(6X_1vp%Z&z49qUz_3ac<M`dLqhpVPdp
zLkbNRiqX%N*<+}&+w5(GIp_ch6?YP7w+t<ff24Om)^aJ3bKvb%R#H%qbgYUKK+-*e
zT{6H-#-a3$ilPczLotGaW`?Xm$ECZ3#~+r6X8;#5YQte(zoKxfpZ_(y&S(ZMCEf2G
zAy!>RkXMu6TiVB6hni70%3OWzNG{ipMFCO0vUYrN0%s>$p|kZkTC9uJkur+TBnw$N
z=F9UO?!A7YtFyekPpFK{uOx?v^BFr7O3}F{rKjJcR!-jT<l2RWKW1baT)ndvgfS_#
zlI8&YHyQF%o3vO?@#`-z$CYHm69MbbYd9QwaC`u@;?1hTTRNgYHG6SSlCw;sad)17
z^HbFEi@Xz11%@pvz>?YVgzRl#T+#9GeLo+cEp|!t28{yBuRV0!P9<`bbfJ2#Kh3VZ
z%c8v=r$SFw8Tc`|S`gDyrbHgf4`r@LR~&iavHe_Q7el(g7t6@wmhy)CcjsaH7P3-t
zVsmbjaHtn^?SH8M+FyyKoUE^`S7`E`bOaDr8$*e)qpqW_X>^fpd{Jtp_(q+7bJvZU
z=dwF3eZ}<C1s^i|<EA~EV=y(9lKAgxI~pk2L~=VotFb)J&-X*%Y=7vw6sz;{h3all
zM8Z<QeeBG~>snw)*4@`_vYg{3bfco#bip>$k0@*2zl==7zOCSq5a-)iW`&u;5rIef
ztafJDb~tS~MiVL_nTVs5x3JZ4tNnD?wn$$boaNnqtD?w<0ZUxn&clif7_D{9Ikrc=
z6yKRW*Q3MEL^Zk?r96F2Wv)G=BN&U1U5jzHdqcg#Z}raeV(%}oW)#AOwMUszHYlMi
zc-M4d2UY8+f5CjNs=_TwnWHKun(t2jDG#y#R$2}kKaor|1~3aqXwd4tiW#IgN00YL
zbea7$69B8lm+7UVSZ{#)%iC{j5F{1i?OpF@nnk@w6n9KNJC9a_!^!Hma(#{0>JSX0
zI0urduGb-pFvg>)>L@s-V-{Sr=h}i#{Y3=wzq3NC**4V~xQiu=npYFDzKY}e0!tQ&
zZg1$kC?HqCKJmSH`<ecyxCKeeZvsqak)Z<MQim@11B*NP2=Ohb++6<&l2RD5%@<-&
zTolCt6_#X_-IY_CBzMvG$2~&RvVWMW5&P%X3xXX;209iG*#-*67<Xu!gZ^SKHS*9t
z{$YFZYkNTa%pJjUk!Qqcv#gf(dOZnLTkKS45f+6KY|?ZT_9n@Y@1w+P*!nlx*3za&
zZ(ZJXt~PYgYmN(93a))}iCZNMLQnz2mSz#+{jd*XsPHQ?U6C(NSBAUSYOfCNUA?W}
z2F@4l2JyLHV>%CrS?;jbiddYm)JjB0fHS!PA|=zx50W;8)I5N;BnD=?`mdS;wzv&u
z!u!_G<nr3oJQw%cb9$?*`?g=?MA<b0=MxoILSFtX!7$k*$UDeKDSWL&@`QVT7iFGW
zTceAk;oIyo8Y@Feg}nZ2l4ht%O#*5s!92A1Q;Om<?qmZ+AXm<i?3V|(v+}YXs~LnG
zX-pX%qlqykn`WS8{C5wKT&P`2uSyAIp%brI_b7-bje5!TPLrqhjbim7w%}u+L=cII
zQe-TBmn=`c4Yti5gDkN%{n&(yg2YiCGfvhmmS8#s#0)B;%0>8_PauZHdnbK)#=rWQ
z@sCFpK1t%z(r+>umW9YEQ1yF7pTL=%gz*9-8@#tZy6V)-UP9Mdvfq6P^U=l;WrL9$
z+^N1do6FZeX2c>;s2|;eip^DLdD251$5=-aO2Vv{QM8@}UGo~zBc9vAWc6qZSBd%2
zL)aR0(}Up~ri@)}7H`;B6CQNQ0-=uX_ZI09QySmu@P#%!n!`O3M8e?#Fmaa!Y&{c+
zO<IHgh#bJ)9F)RgVx`r`S2FWnI%2R>zRE&Mu#Y%u)&q7H{8Hyfrg@iJ8HSQwk3e5>
zP^z!I=;L9MYGy6CSgO7?e!F7>*b0Y+LVb|Sw0@xs1)a>MIAo6iMg)hNsu;@;TpMi|
zVa6^#2;yhwO<j+4Pzz&26UWC{d~YtdJqGJTqrX$RSDiV3!SZCCwpzrX-4u+u@?tZ;
zGz1>Ey)Q8!(*?|$aKBogc{O6Y0;;~modb|(`qqnF;S!F}kF$1-_JZazLlqQMkuyk9
zmb!ktzS7GQ1#o+NsSm-!Z|YKP-&dGx-UJTzw0ZYX3N07iIL#G}@oTE6gamH*=aio#
zw$2J7kb@ogiZaM7Z6h%z195v5^8(-@zRT(_pJUn1LY^Ub6E)r(8Hwwb?ud*c%OD<^
z4>k%HuXD*@^=;F7RqG+{v7h=~*jU~oz3jUt@zZ$2&8>U4`JU#SfdxoZRjwYuE6Uz#
z52`?P|3t!AfLj68wsSJiS1Z^qA9MqxF+7W{N$fV4qthbD71tn~zBC~kpVxj)-8Hl;
zM3c5gwD(ys-Rfd5B7)IDz=6&%Mye(=dhf5;w*jp;yURIx!K@L4d%>z6&RY*VkYW@X
z5$5RDS}F5tz5G2l4?YyM5iy%T(;E|<Hj9;@qGRr8`{fWYW^019aYyMO=`(3<>BP;4
zht2Sg4_s7Aq1;#F8O#>23$P4dfM$4B)QiFGedxFM38CTIB^sMM_s$!0RnzuoQ%_>!
ztAXb}U@acr8yc|@8sB+9QV6TCyxIQHqFj>P>1D)H5{t!zrw$s`Yf`8B&)TrW|1Gp=
zU5H<#942%|qwK=oR2^?H)1EW)SA|!!D#Mh(+(SrFLr(x)OhDUkwP2301i%+g*O{zu
z$u|}AoTK{@BE@<IGO!0oAL52yRK^=%66Og5wkM^MK0RneQDs=A+}7Rb^{M9aJ}JRm
zm3}nofl^}UulPi=D$aRwIgtR;sjCIdA{#s;Kq@HO{exGB;yb=fE+E*fGHpak6WeIy
ziZ$0FOWPM~h(BCHoc{-Z&~K>Li?0^;cH!e03Kisf<e$`zPVI$I&ZZmhUXNyds?o&k
z9x;Om=xZSPH|0v{dK0c$rP$;v2Clc{*Y{f8#|%Q2-VKST)URa-(pX5&%VK<{l%7T%
zdvMb^UOk`BAiQ<iv?$>f$4X0Mfe`xxbI<~b@{X50st0&A0G<Ijl?G(^@!}azf<8a`
zTW+SQ{Sng=3%R}9+5xI=1NbrLSZ7nq4A8dyD^S%F%*4Dp1m;qG+Y<p%!J&gX2jXUv
z=)oJ*oziSGoa3YN9E7wSI}lQYzpeY9A&egR<w2@BrnN7<FM>TadsY(WJZOnqkQ%|-
z>eP!SvMM@IE>KVSEaS~kW~=-EBnM$<FU(?z)MVoLjK&EoCNk+rx_~xJs7<s*RMN;!
zwsHu1`{^X~Q7a02+^qtsdcQ#mS~hK*QYtUx9W;rAH0Om}Y<sfCDcHona@;>TpCh3a
zxYyv=BR54N8!Np4HKn^(IV+VZz*a^`O!XMUZyIAFt6qqFMBNiCjPeFKRN`F(ObP*v
zGq&3V^!$0e4>II+FEglbQh*CGV?pIv`EjLqY0fS8lRGevDs8Lz$b&!g5r0Z)Uo^G8
z%Eod@>gj&rjGR?gv&{2>A^V$7F6VBm#-df^Kz=8ixs)?v#i4y667a6|)JwTo)kLJ^
z6&Vio#T26rb$7EoXWl^z(c<?f7G`;%k*w&z7xmcv)P<+VQ>N!$KAx!7arB&`)?u!Z
zv^vl(+CLoUu%5550ge0aloNgWghS;D2DG>)6c3b&=)M!*5Mj+aW2!oL%Qi&NV<y0`
zkmhCA?z$O&hh@MFj~dAYYIXUU&leV>&dPUQrlbs1shLbIVHwAMMzeBNNI_3l3n780
z*H-To<%1Lyb|1?;%@<;4h8&Zot?eW|lQJ;zj<k&mLUSV3JBlDVU!37rMw=IlK9;5_
ztu{_TZL`IW$h;F6r{8^cwDORkip#s;DU5M0iGjrRdLhtJ0l-##&xT|yAxo)&f2c%}
zRn~`Pnik8fE$e4by0~?7nMb*%>jCrXJDkXoDm0MT=i0_<e9~$+JFFsyu=S*Niu|tb
zmN@4y=|;~mY!ael1frr?mz-&RBbKarv8~1*gB4d&>mFCJ8erCZDjs7pSIZQoE~;Z)
zn4{WrWQA#|_9-d#ba(z|xpq^wuWh)nrv6*xlS<m|R&DpY94mb#uf_7#OGjKjDC%SA
z88xPTHKR`5tCYDEjA=Rj8H;E1al`^{D5-K)xQhVf^D+C&J3MW}aUDC8#BBV~w(I*R
zNnX)UF#7mH5nLIqR5b6{ZJ1D@AK?VG#*CEi1IjIF1tP{s?VvLP*5zu8RbJ0-_Is0e
z^zsw^h7}9~xx=EzZ3JCs&q(}|+aWL!)_vUtuL>`-27)1ww{FA{q7(}Ip*)Y6VctIG
zI8UxJMayIJQj5*2z1i^KL+A$ONVCj_w<{F{Ds3kypW?FfLC^(Z%mGRUEm=kEdVRYj
z$S)dM147m5U@WzlaE0Zn-V;wupn_;+#Z6V7$v}I)`1<OnW+yB0IJp=*bJ>)clC4Le
zin}!M@J+EIWaB%Gf(-BlninH{;p>Xdm=iEZ7aa!6#pqiUi}NJ&zm^MZB1LFp#yLiY
zT^>45+daU#@1@o__8S67E-(?O+{Nhi{A5UZ0WP`5b(!^L#pQ`H9*#$6Vh><YkVDCY
zPnJknETnjj2){2ctYMRR0V@{lVGmFZSB%6&WJ>%mjq4X8TF6;pt7Aa|r)T%RDMA?J
z=PrByxDjXGQ^>KtKKpo){Qgg^qF%x;1hH+k27ovEknjP_9eq~M{W)wAi8aGHJ!T8g
zW(0S(Yu~$y?8f<0&R8dT&?3@JlwX+@qC(<Zi|%gL`ccQ_L;UNl?mK@56BpZnUmY07
zK4W07Ke|!dC64)Ca&IGWv2Bb1=kXLPowQe65X@BwbSj#^v8_Z|6eJekc7dWKr2%OL
z`mdvg_!faJv{Snhl_pF#8ma4a0Ch9CE;K2Pe^0fu{=u`o-@wTDZ^H1foTuLo5*_q5
zG>&!rm<7=GU$>gRB2Kd_(Na{Got3J^S$+hE_uxG4Gi1SnH66EvA&si(ew3^f=e*$n
zRYSgZaLr0oiG4qI4`3w8RkqF5U%EdpFYbC%JMWFEpE*@%r^}tna8d-+ePfU)QPbYq
zwrzX&u5H`4ZQHhO+_iC6cWv9Yz1bJ_C6)S;R4P@e<kxid;q=Vud3w(2ZtXt5SV=sU
z@X)4vy~h#^&QoP*=I+%A4DI!9ha4khd9^Xhrkk32$5(T)Yy0+L*(qZrC|M5)<IB%_
zV?j{}GeBEIgmVYxh7*BT3ChoC<pp4m1QUx#25^iV#2LJ&HU@s>4J6=BQ=|fUtwUMT
zz?(M?!c{MkrlUDwHh+4>@i71Uw(lz9JLUlHNE8j?U2`zQeh0DzQ|F)m28R4Q%*&19
zoP*}T^lu%(N?c>^x__%!#k+thk_va~olQP{`d~pv(shlRZ7v!wEAfit4tZ~nnATK{
z-!k)*ifJ)C<f@hJ-F;zo!Nmgd>Nw&A_TTB1QXDSi_7X9-5c_)l8!6A#w*_J4i-DkG
z$ktVUa&mi+^O)$1?-t;Wi0H<cTG}CLOUd$DWppW{`heLj>({KAa7XOZb$8F`$QT_|
z8rOvoHe?93VKt)iNQZ$ZKR5!}8G7^4B;25It*mRpkQCPp?q}H{y(g*On*UuLxA=R4
z=ILV|&ERMEt!}DF&Fd_Fjjp|6?7&8f?OKIXAPO;lOE#5C40(WfK+6r)Q6(%OrA*zd
zV=$Xu3<ryw4VLNT17Q^I`Gqcq#>XU~e0m6Wi0BC{;&GfvuNfTgk0PXI(Z94<OPTg;
z07{(heH|=8SxH~UN)NW1RCOd<Onz3&dQ6JeQj-9tsl6uo+tjr8bUwqjW@kPFC7dZ&
zz^V6d%yx`8>Uq;k!Wj0TwF8OL!^^Xt=Q7PI;9*INiv5~X2sYEM40tab1G@9ib3SAt
zLQmk<ACCJ=B5~haqG-;kI>X|9<u?a^MFuZX$4!3Mq%sm@=Z6>mcQ=s+Cci<4htvkd
zlQqCA>E0p@6xpka19WRm#$rgG8cVdgQ$L4N?Lx*p-h6;%oeRC{z@858U0E;qV8Mjq
zz9I$GXF@%rDn$$I>52Qdn}6wV1}ivj+&`P(qo!gpQ;#|5mJRBR0ktVqdx*L5y4Rb7
z`AN))1MDI%=4N3*fuuHg8p5DpbnK8`*!sKG*)<^WACzh>PHgp5+F5QIY5oPHg|c1%
zHD`A*M!;4?jpAEcH;~{0(5{$Ee%)>2)7_2}3SD(;`cKJc<To`$yvo3IBKM?Fqsxy7
z`WpHM9Qh;K*JXMIQ_HkfE7;RP`tO>Wtl=raytoK>(#RDeixVdc8}h1tI+=gBUV}sr
z!LXJ8=qNBHqx*(yb*Xhnv4yvwwryj2j&QmZL}8q2##9DFJ*b}+4;qxKaR?$2$V_H=
z6X8XM^B+2nVyLN-Rs-NFjG6?@GyHAYSdF!!vFkCl7GWRgR`Ou1QM-|fsDCG(7xR#_
z$6NDrQ2&r$Kt~XC@ugv7G9Q1!SmFtC-J2cBQeTjV3c>N;TmM^mb5E1%Sf5yyZ-7gv
zqE7H6kM{c8oQ4U#WyaZbtvZ|1p<S7|2UDo!A!&5OH&k?DN72hO!zLVg2Uggr%CaR$
zAJ7X^Q-~(6wiNzx*rieIAjQ$3%4DB#D}T6#mnUaW-l{u7Ha18O#Ba?-0N$#QWo`kI
z^S7pqHVxzFcOmXtJ-Y`};8GOf3Of(9rh%2F@#_~iNjtG0vZ62H*8K=DkO{-JOw<Ya
znEGrHeig(*)wpi5-Q+{E;E0yaLm^8NkJsF;EcnYnb0h5pTxx_zS-Z!$--;C!eJb7&
zF@QIWx~c)wRqf`V)u(`q$wVLMQ{{vM#+jUUL-__)An!NbZ84J6Jt<bA<m~QKIeF8(
zZwnSQweAAP?TvcMgExKYy#UCe#Iel1Au;4DD}sS2|GXBY&Fj5qE^`QS*=RZopjjqI
zzXl&ya0LJ4D1KMX%Ri#^uV4K}v&_F`>u{<}kST_D?|l{Mgv_qk?}g5IGr<BLFeQ8&
zm?L?rj^Yu*E2pAJ5$>A_{jQnal0VF0gI-}I0X5t3dK&h5{H#*sJhbl<)$T)l%J6V(
zh_a42Vo`sTQ)n4!LTbg<>I)bJB=7W^oM`VEnj3~9qtBrli*4jm2mxohZvDPb7BJNp
zl0E5eHpq7p1&aFTqQ1T<)>=((La%`Es$|fk+76rb?x$l64US230@G<)hvfLl9%)=F
zJ8W7jE3ADO#(B(>?9fvLwtkmMO}$ForDL>6FhDrPEWzYC4@W-Plcwm10)j#KvYBA$
z8KWL2X@Z~1v`HYyOC@3My8UbjdBVr6rWcqpI5vk=wt_W8E+~Te*P*6&)0cT1e`eXh
zsZ&eRej$}84)-Zj_}P)xvvuZF+o|bD{ar67RzZ8;WjwTnn_uZDR?Dm3qZ1NR?d^!f
z9@r((mIAj0u;9xUj7q#+{lj`V_oYo<605|u15pIBmUhF^Y3S+SanGrm>>$nufxfse
zy?1Zy*t2b_DogrnIE1kt1aHPSRoh}oG*SlZrkn1_bjk2Rkj0gfw(QqxEz8Wf6A1>^
zga|?pnx-iXuFnAi3ItagxZ|mi2z~hcqwc?=(PlDDjf|Un7@HF}p$6_LBZcVYLmz)8
zT=+fFQVk*{W~AjBz4cL)H*5=7m~b3`rKar5W~hI6H(WB2<NY<d>2mlQhmJ#m)2~&@
zF*(25t*FZ>pf3}NdxXK{5aP_@t`-^|e?WoKdNre_;j1X~eFCs52lVD~TNB9E@2no!
z^6Lt$A?cp;5dJ-=S9X8rIoO*5g3eJa;ctl?F0gnT%1!jm=F~p8(+huhuEZ<{MS;Ot
zm8Au>8B(r)J&&`%ok97bXkqsGYxeVC)(Z?Q@Y<^{2!gR<A0m=cUa@F`1D&R)>?+ZM
zEPXIWmEw;1>3Al?8Dh;hN=29f4d8G+{aV|9mqLUYjZhM>)Q2=XqFAdcsuzxsic{k!
zsw9As9u^o?a6{F8Z=~`5AOMRM9V$=8no&2KndShEWl=(X5#Bx3j3;u+#x<lv<zqN|
zOak_)Lrnc#`LV4r>)^3A<bKy1vEA|v0A4uisUo;bT>52W-{j8TR<hln)v&*qR!V~s
z0wZ&%Wh#5@hWrW6s>82=8{uW_NN<+6?k_Lkku01^bv_j9qFD@ZFH*D#1O2Z%1A)!{
zKPSfax!RzX-BGY|dK}GMtzavTOh=_r7RayrFjigPMoM(h-3;!tSp+w??GVd#H=E|U
zedq8x#R9uC^Uolxt<}nScfROS9OkI}P!EzARmTZdaqgKx1rw#pfT=Iq&6rtc5doKC
zmz_2k%R9X3i_DfLpGD0J)r}IyL6f)VDIkEEpJhB@eod8Uqt^b}@4cHMpM#*Pf|0fY
z4+|?GXjC!0<C$LAHAz0nSJ-4zlZr!9i|*-;gVCJZVKd&!uWyUU4Q!%_b}9rUzSaYb
zm}Ja?xI8)t4hi9M&NxOiv%C6=SC=G)dhO{PE#;rMs}x>%lzSEbU14$5U*97l=CdC7
zB_lcn#l@r=d&jZ889xr0#q{v4UN+TVj=a4tw6K4Dh$^x+eNXdHObjozYAXq&P7YyX
zAww<ZTYMzP981dxWx_{n5mn+uY9f>35Mu}7YC6Qq1?2GlM{{_&wcH_0hxmHn>O_is
zwuhNBlIa^3Z3R^zrKg9%2%#ptacv9cSRw^Z3c$6aRl!gzz;H6Ot<aQ4AQN!MH9ic(
zpmJE{-P0AcIkY4|Nj+@!dDpCD5s7iM^U&fE!$;O>*Ta4QuHiC({%+EvHLW|oD`z<h
zY+k(nzBa%(=wQ|})`z+&K|~5Z`<KJa^4l6V>#H1)^7z{DFcbLlq?^E%!f6ajL`Pb$
z&a*w_uC#PU>o23aW2PNLPQDO66Ll7vZN>`;rx&rjg{Ry>V70G$UoJ?~b;#_5=S!tc
z?(wIEfQ9Qf&9cgu-8hwN=sF?#&8YnlAR55Qsb4jKpxjnSuy<E{u<oBda>eZAj43QE
zu%9i=6>-DbPei`Dw1Byw0`cA~WNmB!ew2hBII}(TE3K)T8A-ist6T{O<8)(G#GA_k
zt+e$X%Is9m7K&AR?odDkTR(AtWLviPFFT){#I^4=g;!(|`(5U_LwsMy{Az2E=)z*}
ztI?n5^YMCp(0VWu*TDnNa38fj0x%G&i2MIAOBhVL53@9Gj5u-ZQKe|?S^u73<BtG|
zzRhjqpw@X=B{+}^l$+-me>^GQUSQV~^`&&#zwhZNtmrkUjO?28_cgvMOxEA6Y`HvT
z7Ps}}Gi!Np)|H4|2P3IuDvJe?U};B*eC*J62U4hs$yy8CfffP1byu=ObR){mNbitU
ziX_q0JSTh?W{00-6J+E!20c;xm`Dc~6*KI#I5ss(ZjPP8h?4pP_6ty@v5;w_k(P~H
zHn%@(QwCEzJvV3n+EtQI(2l|-11|GUM-wL?%rr@45{f|Icttv7=~7%Db+fUyY|a%e
zCN8GWxlN~Mf(G%uXBj}=W2;5?R)vB2!hzr8OB?KP;;rEHeI`%+aNKINQu-%t&_I&~
z`%_9VFh&(TAcA3q`<?b<m!+u-86#vNA;}WHPsKuJk6*a>R3YJOXC=DE&S=GwGlO76
zC^VlpY4jv~Vb8`_*!;wE47hq&>3K=_?niM+>j$z<(?_8KROXt72gM=~v@z{KUm(Y3
ziTRufzr+WXXP67@SLPUh<Z@|rv-zhU7kACA@Kk#tDj_k;D!q)~cWD!Yts%5In9VS`
zn`E~{?niT;w90{o|A$W1)EHRII+gBvVA`-A`y&NPHI)e(gbRt!+1}wL^_ufj7Bz+m
zm^XvhoQ51r<2|E%8D4S5%4+!VdN8VB7wkCvC{OdxL2=!&6nNxuqwehRL)?Ru`u)YT
ze%=R%UZ9Ll&^=rbAvZLm1ZUf(gOSgD!=}!-(YF=%S`Et(LJ2xSKq7_^POe3&36-2?
zoD0-ZgMq#mE5#iavucMvjTNB8V2Yx(uW78`C&ci|zu?Wsj8J$Khfc`%_aXW6Kb;>-
z7=eQ&ub&fIW`NY5s*YC7x>+WFb_qhbsnp?Mmc?)sFTPMd8%jqc0KrEY$Aw~xT8PdO
z&U7KCg~2&1Zp|)UWP>j+Bh=4_U^G9CfW8@mTt6>~6#J-*NC2j<k&p1~aEBaiHNu3@
zkhR`0H?aXI(i*l9%Aqi%qTg#_!N)#o;UD-$zRfub<M-&Jdd2}U5_Ibvsggw*PaNA5
zcZ5BkKc9C>H*#*a32hwc^hz_Yr!pG&Aia~vou>hXV;oRbWNeK=E`27dGQQO1{L<58
zel_339N#87Wnz$`S3p{lv#6b_Xkav24N7cQEmy<(5iWgNpD@!cWdvUWypt!2fr^-O
ztinQ<VsffLvrjhut$M1(V+=6k^j{CNKM}jL^uPAALLUbDn;Nk08P}W?${5=Ld$k1Y
zG%aexYfg=p)r!xMj`&S7VZZ-|R{deT(|q{LJNoMUB)!G9Qub_)mp33&P==CeexLp`
z+~5mC?EszsQ9IVwu&fECYa)-+e0rJu5<-9s;Bsd{&X^u_5xOTJOYj!fbh4z|M5L-w
zr$2%{how1=V(YsQN3jXCZ*+<&6b?mMus&2tGtSY%n<eOHpGS*2pz2+5AiNB2_TJB5
zcZAD(j%Pe$)QN{A-cl?sI3#q3hOX)p#uXBi)IczuB|?mO6L6|ja@j1RBtqk>z{t<V
zd!=4hc$gRawQn@_CKWeJo7Xgtq>7P|<~+K%1db7@AbzZ<{+1=U;yZM-&quh%f`;Qs
z$J^fR(B`PwfE?SzUGbKo^LsD<r0x?a6Qa%nI<;*#uv3cTO}u>vg^t3w2dE&mC=Rp)
zioy!Vu(<g9oZ2o}sXUS-TxEe@-{(M6H0eFimiqi2CS^^rplzvrK(A4ECL-}2T{oN^
zo!)tAK2%Gw1Ce}BJOKZA&u|Y56dM$$b@A2nymC8gQGOXSf7yW)QLzuBytc5QxXydf
z>2Mio{z()j&mZM`h^qx+5iBLTb52dq@lnHggH!V{r(=VhClX-RDAfWMQ;t`^CBMoK
z=3;r5*?tuop=iw!3oU{DykzFj{Dym7(=o~N<rbgsc539^XPEmZYO;)G3JvYc@pc=q
ziKE#ab7JQlVt-X5I;P9rtO*#m$pKa&5yu<)3-w+pqP*yQp=U9<R9T5vAu5OAXMqG+
zEk-Gj6(kdf)qxWL-)+Q8mRB4BC!Ap;&;($8KoTN#i{(zsVlkGE?y)Llz7&G6q~{WP
zFy@p&iOg3sLmdtoDeFEMkgrJSR7X0D<3VbWrE`Jx(KBC9XuY3#0gQQk3qszZxM|Q9
zR2($A9fvVDK+fOAkBn4wnotZN)<7h^9@WgnuJi(9l&LgpQyB<C4M~io2-P!Ed6$GG
zC`p5eN4myh_3(P=UF9O9=p^4GT%x-_XbT8V>;&WRL%tucRustY9gvgA`)R9eRLwL*
zB!iy!Y@=Z5;Z#N97b7I?v1NzAMEsi9x2mTohIO+rRA@3TEgo=A4O|PI3no$oZHXT3
z<k_sZkq;MekO`VjgTF(UqX$F36;ualW@Z6|tJSRo3L>nkM~KDi!t%-<`;GN8CiS{v
z>c;=d;t-T4WQa*j#rI2KFl7;luld@8U%*<_SW5FJ%imZ)7_G2YPn%dGHD<IMy>uke
z@sE>xs!3D3q)62WjV(Tz#`&5YnQ4bBn%Oi16ZU2jVayRO9!+BnPF)&^EKnoMR?xuO
z@CLC5p0zlI>DpBknvc{U=;z%29Zn&v$crpf2ou5FTr+lSCb1w(z`zd(*mQBr2r`iZ
z#xFmjY{%<CzzT08PO&qDqU>_zPO8<DOADv|{5G1@dTPT`$xXp<DFPntCXq}2bh6>2
z;$kn|!cd7K;hfPaNHYE{DeUuFr+LRHyS(tp)OxWKlC8Qu(#Av4Oo02TVAXV_X=6IU
zFbZtVsJ~~QKvMn^nD;k}RU;tPu&Bz(pMxFtUA580cEZ)E{4sU%LI3ynoB%xq1CcDQ
zgk#l#1(cJQ*qugM0Zb1ea46GOq^``0lOAeX3?g;$a=``g7<m7KB@&4KR1K!b>T(&E
z!Y>|C7$xs!ve#j!{kKCUVu#u&Ftu?~u(H5f@6yz&DGlwhE&44oTW}>apDm{$Gyl7X
zJ{#id8L?OGODrxu#f_#gct>PwPGcgM$dIIAIfn>aK8bxFt8cl|v_`(H*NLD9EItCh
zYPvHnBy9e_{y%vh``C@?%5*88lKtK&iGY;{5jz&_=}*@9D4U=Bbp^?6s6M6^HFg1%
z%+76iS$&7DGJ!2Aeq7l>548J~+2s%2mEhdPl9A$V`)q5`@zmrpKhSGe@aWr8Pm0W>
zWPSWfTrhV-9bHW=|0Z?h?!Ri3dTihOZa<AHNn)$XS^GjT9$kH`zNPk#vSuSf7A?l`
zc$j(IyTGPHx;5$Fq37X_$n~Qzoi`-tMR%)weJ%*pbnVn7{BBvjL`@)FKQ%~L0ryk1
zeqJV)@@T<P4QHCP=#?TFYc6FpA`%<qWIfheRjW%)xqm68wwGHu^j_~1iBA-kh*=o(
z?PeP+WvG7?5L*#IYKvmfZenUY7#O#xdhg7<`2Lz+lQONO{Uv0=++dc{ayd4Pe&v9)
z5}o?EfzWDP(ym9@pghM^89dTq4&t~Y1%{0RF8geUs@>m^7`=r&^a<MQjjHAaNIE59
z-EZWqV8P%}+S+I8z{2_>OOaeWd;r7GpbEmYOxc~xSouJ-+UgP$%Me3*w=|<mTZ=4f
z&Gv?ng>bf84-%9-AMksV9hn6>g#3ZGEe&QL?RB#mta=7}cqjmhPY5}|1n;Cu$8{X^
z0+(`)<mI`_bMlnYI|;EXH?H88Z|41yAJAM`s_r@0sp?F5n0(pXII_gJC}^h%)&nk{
zlN6Z4FB$2Y#ZGrL5>SkM-c@|zGRJM;fc~J8Kw}0(DTI6~Raakai6$16McKI&<OZi?
zRwP*Z57eIVX3rPW89)!KviP|u8KqUFUClA3WsQefvlPpcwn$W2Nk8R;5J5@7&({^w
zvi00qGGq%X^Ws<m_=&$`I@Y8R(K8nR(tjh$&wHWPv2r%w?}bdk(Odfb#OM5UMBJ3n
z$g_^!&xlZM_~YRxyPq*1&e$1NS-vfAdAYDY!Lr#PU>Z-d-iTo)N5=}H-1hC@{Byp}
z3U!2bHK%*{nQ4pnAG|KVnEaCXg~B2ltlI?hTz(z_Bm|jcsTJ666&(t+=sG1f*ZAcr
zj?#q#SMq|<CrwF6aeo)6a|}pco)>}oS=VFa;HvohiN<@i)l$fPxEsN`O~VhNA^pB)
z09z;T{miL`Pr-Rlrr?K|u&&9}Gd$}UG|-}?O^#CYa^SJ#I5&K_Hs+c~EFF9s(ET!T
zdLY0rNY<e35r*Xf?_WHm2@+VK(Y;$&yx<1{nBs)9N3JU$4b>K@E)Msde=qS<qz&9Z
zgEHQRX(V-y4B`);vzI8w{4PW_jHqMu$gt(`N04pn_?HNaR(H&-EVFIsYRt)`dY!H_
z2$e#jtI@kMN^jZtH7gfw64>*_`LU6t+cT1|9P2%?lzd)4TsA0CIqjK)T<<H%0w8%F
zQb(SLgE9Mv4}zmkQ0G|hYqc!^{05QrTwF>%xLN31wugDOyDECT;V-!9*QU>dF03D+
z6wq0ZdZLGbxj)A69JtF?rLb9GKy9*8K%@B_HQT6E+pn@@Vs4KobYJoKXmZ#&SfFcN
ziwxS@u{*X9Z$plGt(z=4fG#6VdryAV{C!n8z!%W9Bd$pupRrybK4n(ha~}piy-Yq|
z=*O)(eq$DG<CY1Hc9t>H?GGN50M?G?Rw$l@MJL0s1H<{Ud$}>AoMM1^tpu;6-dG36
z|D$pVND{ZUJTlr_#s$!giMVMDxYZN>u368Jsja|L-T%sSbTO)h8MrE&Zd;HPtNM!?
zHe>@x0y|pg;YJca@%*U9x=`pAdb9db(7at*qJk!IY!rM(4>(;0fIkU1`6o%vIMv=d
zoAUdUg21`2;7UR&&%(jIZmQ!2{jB7z91_*;<blXjd3cmW${wpS6ha6rXL*zQNn;V8
z(Y&8J^(S6KD(LRIU5YFJsd-hGF@Nz$IIVOEt*6dD)VU$2F^IJ*q3sTPfq0Tf{RFkz
znBrg9YzG<9#D_70`I5rO>5}6w4P$frw8tZXNasizddYTHlDWV39*?-9Z^f__k~nB>
z+J1hqf{;Gv38_x5mxlMljfh=fdGh<Jsq&T{VNIkmDy#R#CnQ!ix4Gk=3_@!)NsDXQ
zVyx6LeHpU%{;vlNHy2|EiKd{*1QTZEj5hsEP({=8q>~I51p2cAKmL;_350A5GR_h1
z7HX~(-|^oW-!Nn`#4dL{p6W5|-fdMmUeYBIY&JV%)(GLPggMe$^$RH!>mxM+39(Zs
zOM;7`HwF*kyl^_DL?oDf=iyKUeTaDSU@>FiT97=7p%rK3LlS*3pdZtiQ8hL$7K+$M
zsJxyiIB@b3F5A?FlN+7A1=vhj^5WKw?_$u}Nm~L-bF^}GGt+xyD~<$jA>Wli$F6&=
zYjbF_ioP$5>>HHDy-7LDfxvAC&23wL@QRxaxfwEV9Q6uYyK}Q$cX7Uu?1};U>&}3Y
zGG(RXz!9O*uAhrc-#g@jS$RP*;bkq|Q0JF_@kC9kxQC7+nomIb9I}hBZw4AP5Hdh%
zuX$HeTwQiv&kwQ$&zRnVo+Oaj5zo&H1iySlD8Qh05tU3k?1$@&&+)dIYacqIhecF1
z_2qwjC<JkEP&$+}h}xB?FLGtOi;=_)5Rf#u4{4c1d}aZ)V2!GC|A4U72(|LUQSPyD
z&ZK;*#jn)+m5b1@_(61rq>HS|ye_8FO2g6dr^FC=%bvCfzMlop&3BLJ_1HW))-w=O
zZCf6UvV6W;B2i<!72T6vS&KriBo=<&PpDr${qlmpEcVuo<Fa9e2^|E;M&v_I#7o3x
zqq3DQWoC;P6QzC1oN2JZeOefPdPMM>5So#<J8^QLTMs(qo42a?BWIEhgoGGqHmo*>
zgEFXkd~C)FC%o)M#mx_mOw$=J4{zh9Ez8h3(myVuN<oR<ofo;_0Gi{NjWwJWBA&K7
zJDHs&93=dOz_f<9L%dNxf2gBom-ue$7%vw49%T0u#F}JMVl$SR5Dzm7OT}lDH|@<?
z3lYEej%C`aE&S!HfPKNQx-W}kxZmbUTX#+EP?4V+rdr}i4R{})%uKuwzeS8m&feH2
z#!qKt==yyz!$*T=6x>Ez6l9tu*`DjU7&DS<o0*PGi8$*fg)dU(BP5UE(sqL#fsPmC
zd4AvbyM7_vJ}UPDEsT}Whap^_22tp)+aLyK!4U2cM7M`7ir~i=31(oPpi=%;)eDQS
z2wNU~eyBAfU??TfSasJ}@I9&5fKl5*&ABP%f@@m;P8nWHARKZfj2e2B&Y6$^A0eU4
zJnEBb#zBAhFTP>52d*J8*GU|g76cTPjYiqP_wCrhMR-ZH`}3m5rdQAN;6;o5OC4BY
zdTf-M#8w>zlYW?3z+t?%hv<idYoC?Z@1(6{ObZf?J>>N)zVuK~2FojKM`pB$-$-2c
zHp1IGR!VUppe56Z)vk-e{ja1xF%d)A_pljdb9ZVCV^3aiv326eF?C^mqF}%O`0*%R
zO7051%E5q>Me-L5%z<iEEBOaBXmygE^6j)o566|El2vn30TYz%qxkfVhoZaTeNB%!
za#@Vw>Mh%KVEo~ZQoF9Z);v&_Hh=wacVo#xg7O86)=zFPvObZE9f1TxjFd$L|1BNa
z;u29%7?HN4jY+cAS=g9O2O-oC{TH-`@D#kt7E|+~%Pw-rDUP^L-^4<BLx13R7I$fE
zPt``pE9v@@X|P>5`Dj_#Upcq{N=JVI_SZ=JiI6o2=|*TybhLS*4G+VfJ+M%<7U2k8
zc=ys2C-E^j6zMNZ$sV9uttb#)fa8ma122T5;+)uAiBX{?_<7_WVC@x$@EXxJb%RrG
zhKKjshEA%1>w^_#dQShKqxbbEwH}JOa@cdR#s?X>x=6FPH^OIN8~INe5FOwckdYx8
z>+g8{5Lsi%dimfRm~>W`9zD%u=}Xr{^42sJc+q!eqBVOjoj?NO_BBp5cE#{=(UAB-
zM4SUOzbM1RfnI$qb{X5c2BP2TQ#3IK3i=mTx!w98Dasl-u-s<{$vY<O#^bxGDHc2W
zqE6j03HK)o_;43wvmc@0gOh&2wU6RuZ9J4K(sRd6vF$+)C!-5(L`OKLj6j*lI5Dnt
zFSKhoFj2siIyaq_hdL0%=EsOb6t9}#IhZOO_vvUmVF;<WCUC^gXrQCk41rYND{NOw
zI{3&$)Zucq1Y2l&Sw+V0=uD@&!GLxU+n&(h7-$G&NmMrU?_it})cGYW;b7Z<rxb?0
znfgI8_aY3AfjXt#rv>}V26=!t&ZzBO2W7mnnzi#D#Gr@mMs#`tZ!4>AT@As7J<kIu
zVCuY&708&bcYrY`s3GDm#?3}~;eS|VXa~#T@+eyFar={g7LX{QcD1#9thOqgDXLvx
z>?TCG2Op#Q(2!jy?PTMI3JHK}FoVQ|&eJN(D3vkr!>(MgV<q^eXkm5*d{0dswwJYy
z&!o0(M~|x|OW7yj`P-;px>VOS5F{ttk|&&>t8zuy1J#UAdk^sxX`XwDGjabxT~c6M
zxvR|#PkPb3ae09eE0Hh2@d6|KbP|S|RGZUfZyIe_Ozex8s{%vqhpzVSxfXa#NziBm
zQM}GBfTQ_}mtpOZ&sxstum|TUA4f}^z?kMcRIMm4@>zW+h#JhHTHc}-e)Vn`baSsL
zd$KjK6AC5Z7Vv^1azQwlH`cLy03@om6!Nd5E!0*(R`By!wcj0e3}g98Hhe{(biBj?
zMkM8E{On+>K}NoTXQDB2xgVz085P-*K6kYZWV8s!NN!0wZ2jbeh_O9X;mPx7FVpF9
zSg0AFF5ZNt@H?a2Y;EKAm!My8m_5-)63$5oyGK#dAq|54k&zN(MEHCZ%h=3MHTo!e
znTF1m+oNA0+Vhn=x7u|BSQFIXpgo(cQL{IFD1b@LfacGa<H)XrTGtQ$Vzg0HzvaOZ
zx&G*}77mwKdwgn8S5WqM61{P<J=r4nL3N7_<E~m3ud{=$;^)nWwn`Jt#!bJP9LKh_
zZ90FXUe?!G#Ta;Xa~y@abb^~Gd1dXm#{!6%;WVx~yase1U!t&xA!8&`N!WwSueqTE
zsOKLEapwo5CbosnQD;nH{mqM5MNn*3Z`K7Y<7ZrcP0i>?SI-CC&&;w^6GQY_FxbGI
z-BqC+thM=Qj6LA6&w6_J>yA_6$%-7L_Tm$7$(*+U+f2%SD~Bg8KI+wFK)$t|{T5>~
z;4TDGuF=%2Pz+PmpTTgB`PVLpb`IK*EIfNI%2}pusavk-V-c8)ngKegWO4{I#&71)
z7U7t++_z{l8pPBedSCn#i<xqKY9<)u6%QV+NswqZP(eGi{Z%tEvT}DTB<Z~g)287*
z^kUPvnVOc%b%d&Fg$SCt<m)S1&G4<<{7-moGb80F*tpy>wQz?@m;;EM0_hfVzpHm*
zD3~0Br`;SGP%S8|T^g6Zz$HG8{iAc9;c8o!V`lj8b6djQNcF&(gPO@56pWLF!XxzX
z96)g5n!i@hL4QkRM+toc<&L9q2Tv=o!Mok{(2599hf~Xv^SF^K4(x@W@y90_huJm*
zf;ksgqDWcJ<Vm=!G;1Z|t}>J0wGQ{vv5k*C25b(D7COvQrzero4dYY}Fmt3DsC-ZA
zopPysP;Oke_%lHPQEbw-|Ee!wzGrVz?P(h;sDTm#lYhm7!#1RX|9bF(D$y_pn+PK8
zgI*#dJo00FK10h?8L|yiW)^z6o9}Qpeq?6>3x%TwPuTNW4|0pUaisoU^Zi@8RaOyu
znuU}8rSbJ$tRXPSNGfYkWvq*))0p}ljLMXso-mn<gLv0|@sxM5_{7!(cGY@%2k)8R
z1BI{IYc}amefsoTaH+uKADS*eN(qKvRUP2$Vt=|d+F;PpimCWGb6Ja}$%}e4h!J)-
zvZT@(1aNW6IOYSFN=qdDTjsooPJ{Nly+$HMfh|}#6<#m?+^|XD8eeGU97!oQml9#`
zEj2w%NNY%^C!;SDfbA*pE67BHXuer-s@>f-Z_j}Q;oNybf?vT5;}|`SMcu0lYX9Eg
zjIkcmMa;81xa)h$D&w$AJo;n^f_0;D`m?BaRl;!}$y!{Z^=`az$rWsyj|P|`ifz;2
zd+5?Yhm!?l8pa?fI6VyIj%$Qzi(%=D36QTUPMDl!tpg=ab#@ly$VI$jt{^4_)55i^
z*cmBRgfN5Wv$hX|uA_}=)m!+hN2E_wnLX=hWE2JORYx!pqM_9CEp=G$+^3CmG_}O+
zHJ!$amijAPNy82^$aGvG$5`>aDFw!VdAgOyj$JkA=Bl-JSvZts#pRo-ZV4`drAXku
z*4wQH$%7gM>&qA@&SLNn*Q`{W_I@8fA8=84rDg+z@_>+dFnbh(pvI-^A(a(9SI4UD
z{Xkd`Z+t9B%#49nsN6k1PxydfNY1ip=YU+RWLBsCJCCzefnu0Du+d<96YfM}LYh(t
z7z&WYvNxM^&3-P^ORJ`kQ+^uS<g=iGqneUjqcYp0YBQR^Fv^I<cQRhdIp=Y_Y!&)7
zFA0jZ{yALFOu*xrqMjY2dCx#d3{EJ7He9V=T_BGAf{oeYr~fO(>1mRpeY`N3e%KSv
zJv!Dz(ATl6%qNd96jm+~=<q3+*7wqV4c><=>I0dyqG5_wKRC6}gutbv;Xnx^=N0~|
zn~K4*Fglc^em_Q0(hMBA=+t#1A$<%B$d><2DuEZn;-IU?1*h_zx6bkgGLem#XHJ6K
z*dGyP=v(R>_=sl$FI1w0G3ATq7ar>ioU%jxnK=OMEid~nBOR3~)<LDV2?1OMq_JmN
z=|gdm=N%cjB~7<X4G$E!;4!O04)pClb_b9ILr9qla`FDVG^cINJi<Tatr#Yt{Yo{W
zAAGe_)ag||{Vue-FoZ&Tc#UXTSBgkFIO=_)DzspYp3m9dA@(_-YK9jl#u2U+e2-zT
znprB+=1JRK+@c_qbApCpzkG#QomT*qxP6zgBj`WGEPef(9phbY3Jx$9k?<3Z1+c<U
zvUGVKdX+9)nT6^X#m5oD@kvIie+3?Sfp5WEoe>V@<j*=DU$%}a=AJI>DKhT+lCzd)
zq}sIQ7uORBYaG|%gnAK*X*F%1;k4O8Xk5s6>WL`=%|^ePOwiA7&<)(>lzn6;<#m5J
zIuS(AbQ?p_%*V)e^!-r)TAw#3K(m1kdZ;UTyY=YZJJpt*p&Ny|k#2lb>DB)xf5FgB
z2;3-RTq}$9@LqYSjFu8{1T33%U~WQkNZk7cP+pG}EwEm(1QRI8W&y6%DZvUYUED22
z=v$zAX_VU*EFaNX*RZ3Kvfz|v@I(`81VulW06lEKF}MtgWN*V4M&0`35!8}+`=o?7
z74VnE6Lf$N?jtkxsJt8&%EZ>#$=T7wzy|h*vNN=V<zOXXAovHt%}p<8ZDL|9Xy>lQ
z@WW&M#Y)G-&dSD2!2XMgj){Yrl~IRY$j;W;#Maq~fP?L)iXy#`qn-W#w1JqTos0cX
z*FsA4!X~a3Mkb14g7ixC%8mxMPWA?lCbmW%^vWLgCiMTT$jeJFV`6M!@IUQR{vXYp
z37FYf{y7Cj6DK<tM<WxbpHW1AruUBv0|7G!^FK>PnFyE|{!KFfknI2Bvi^|2{zY;S
zFfnrcgZvp>-qFrT$;4TUUS3#~UfIOmnO?%iz|2HQ=ci23&e_1(gn;2+)0O{W^YZ?O
z5dR^Ke+yC6!rIxykzUmLr?#+(k)5##y|js~nX@?o<1Y>dUfzF;AFA!K7dd;Y#ZK(}
zbTE7b<&~hh#0rN>!#=B(BGF%invvUj$iA-d_e;EwG^st&DMc(X6}{HoBz7>Y2a1$h
z&KEs#dP^|il@7wG{t@F7Sf$t)RNq5gso{DZ1Gn|b{-Ub+FS|Ge6s;#Gx4(>Bb#Bp_
zNZ8`pR}evd&zz*{uQh+Eg2ZS&u7p#+;N;|(yVXM|`5Hqd)Zcj0s4ftR3BlRNM<T49
zj=m87%&M<nL1!x9$k-e};x<TbIX_u}FBpb!T|cJi!b%SFKZE!A#&K^HD`8#HDyzxk
z3}$=GK!>rPfAnl5^|BDA<*DVtV#V6nH;H;Imk@be^^fPPU~h8hp0RE8IQHoyuZE&v
zT*dB6Y8(<5+l~`0hF7VSXu?hb2;e1VF|Z=}eTh4e<CA_bT|l6o)p8!q!%fQvzX5LX
z^99-|#5Po1A@3DZUQezsN$B1_O=(3=v6KLDei6fg@eEEvk($LcC{pPTsXb1Wm=GnY
zWJR=6w6x2zi0*MGm_9?p@3`i9wE?8Rp>QohNSv3oA}ZHS=%-u+!dd-p4^H9Ns>_#U
zLQ-6`>h{`nLYgdm729nQ6+rET#KARrHX3qZ#?pK{@-<R%6r%({TxBgJ&vTIyec#*X
zaF1=_gQtma|LSMBUi^mr!}M#@zCd(_<uEM<x5BP^!rHgQC}PmxKeJ)@9uCmHiRnO9
zg%}5NC3g3<%TOBu<Y1YBZJg&Z;J6F<WYE4)SN5?4_Kk{K=v4t0G{OTfd@vl{M<U~*
zjFKkVdKJa*V|I)CQWg?g4`BDiCG*Bf2~A_}ks_Z6`Q(~n7a2zqtXn1o)*rF=u&833
zDOoegUHA8%vZnL?huo9@zHpk%lesV~W5W{<Z$AF7hhAA_jS~7+yaym@VYHi`K|Q^9
z(6c;m^Qkzys^TsqrAfINJd|UAOG~guQkZ^Oh2{L&n_7`&lQ{~WsKK1^RzimiKCNL%
ze_gD@%p=hV(C`>5?u=BhQGoKp?TJj-Dg}*me!(r!Zfp*oh@iY_<z5qpc5I%0#i(CZ
z9bZEcqje8O&t%=f#&W51WQA*eqPw#==|afnfAZO(`p843=u(24lDF+A*~1fC8UxVC
z!<+)cHeVtfwzXE6Xl{~YG*AwIpKWoD$P7h%0Itv1Ab3jd>i5Hn@)ODk=gkXtOsNwA
z(+(#SMX7meKb0V+|D^~<PA3xZZWgdoVN`Ds_{s0e$)Ry)dTI6TM`^GoA++!dvxnTx
zwz2jjL(a(N22|eQ@|Hfuj#&yfQ(lc#O%o<7>UXjnOQa^_=O530YEE~z7EOEt;zM~K
z`Vs4Sk@twqNtRq5F4v_7;6|GG{6;QjqSMimu!Juego=|7sI!A!=@);HspP3nV?r!<
zJ)+%@GYHJO)a<XK$~|C@MjuXu;sP~EU``m<MKpV~JsDASX?C?%{xDEc@QECW2o834
zl{>4-wE`(Z*e4Wp1-;I2Psdh(L<qxycYaiyM<pcr3^{8iOA4qC<CgnnpoW~v?Z`k|
zfkqga<t)7s_x2%9Iist5a+b>&8FZ2x)`>+g#)18*66vf|m$KA2UD3#%kzOKYI&TlU
z$=Xyb^oiqBwZ#%J$(8{Jbj^skoMY5Sj4EK87)N)XIbh}F>i&$<U~dj1)UN3gq52$w
zS%j7wWj1m3K~6(y#4(a3KRhWn=Rzw?P`FdSWj|F4JXo_h*i`Igz9<W=0;qKAp@*-S
z+GUK9_WBYd?X$$rK$?=jI&N9{gu6x+k~!Nb7R`5Tw?RW?N17(RX}#W18yh@YbEjqy
z>7g<7j|%SBUF(qJ`02hK;VAYo0n%zjh<T#dDv42NSf-1=3sg+8gaYt|r1=xyg^n-L
zCKjOPN3N9SXj7O(UJ-yNniE3>x89`3%sK>Fgiq?%5$Oa#5{Yq=J|KrY;RgGsedjy<
zW(e&+#EkO6R(94?&VhN13s!SA-);87b4cNjnmnsbDpRlifLQ866=$^>TRp@_Fsj}Z
zN+AK+HS9Q=`~LYva%85v9M8>+WtF)ECwq3LZw}l6yYpF&@Tx}Va}hE_QZ&-3yw$V~
z?^7{$08>bRx)iBv1ke|r;CwniMAJng_=U#FE>@y7?U`4}+_9kL&x@7t<WjKXn~*g$
z&~fWIC(4z|tYA1vD|B-2T0#qb*~cO^uy2~eOT9V+uXT*2QM~m1%dSNYy2;x0WvdV`
z<wS#$`VopfFP4#D9a!;qWWsRa=l9@Fyl87$j>pHwJn{FBn~oq{wnHv~1)vE@>a6Nq
zh@+J<`1+|A+7m!+UVBw^BhRU7z=;>!HeOGPR$*Jc=<-oNHRwvz8y#65c5a-%iOj<#
zzl?wU0<~wbS1rt8_hh$(_b<~%af;Vzh15wa1e9(t#rZeKeA&v|Y$@9GO2OLuLLW&m
zxOIqFkjRp+nCmO!+h@^3+IIf~hxaH@TiK6txdS3*C}nw0@`X#5Z=Q-8TdMI&!tCyM
z&KlJda5xyooh9dnz_?yw!ERI^VWP@POoV|~@&vFkg{hRE95OgMUd-rP`Nk?IZ4rJ^
zYqg@g)*_#I>J*)=gA4d+%Di^1;7Mbm`t62z*~gXTc6<IECeT`NEnK>eIr`lkIsX}s
z`UkT3Hv|x{wYB@fNQ@l+#1;Qru<Bne{@;gHj6VqLUl8!WMOZ99u<BoTAo?E&>;D8+
z{iCn{C9Goq#qwWK)dDW9@c6<Q$bl&Rz;EpC;@&(BoM9N4>p%C*q+t@R23Y*J$Mg@s
z1-ZUAzIgdPXO-D&@a1Mi?@o@2|Cn&`ZW3S#E9EYwnE72bQAqX#D66CJ)$@e$1qv28
z=&AULdL{<57Il26qZkodZ?CtGyHLAs8{nTlG(k*YP>M&54+v@xmF~Itzc71yPTkR_
z#CS)lF<IqKKoRij&^S=5iA=~ZJ#5lmxO`HaKCqNkzl7f(Lb(i$vB;RvQnQgYgY3)t
zKI=EJ|BVDsOH5{`CRttD5)Z=iq$p{_%s@2P4*i9sc>Tv8D~_O*k6|JQz54F^GE$Lc
z*bBXzje4Vy!$tbui23gy(FqeuZK~?}J6zhi6Bdf=8LAhYuZ0a1(al+OV$hD(c9mKT
zQR3fMvcprXHx#a@wiZr4F>b%rl~}mkD;7tuK7xW(;}X(%o!g7sz$?+roQg(&aU!WJ
z2t^jc+wvs^5Pxm)v6EnYsn>N3Haofv)V6}*l=aj`T1eGB^<@&{x+vZQke3aKkXfLJ
z9)@KoSVf}#1&Hz&6;b<QDAYfjcyVc^G3zJugCwxidceJT?vy48X4R6{X$2C`LR;z1
zL00q{=Hzz}HQ-+Aro)g#FPX~=0DR9Ty#m>)o##~V7z)oDE|~sB>Q+CHn_?j{Em?kd
z!!;}sd~rNLBq*ta=6mvpX#Qe)q$#*g=>vG&wK=BlF3djNM64|HEI>6Z_IRZ;z!73q
za%n3hq%ya>Y8cw(Q6zE`DuURQKx*)*Dbb!0U6kt<z7d8T`>H=?4qxLv_lCI#D&c^!
z6PpyL5>7#^vpC_~j>C@d;thboVz|vB;vT~Qco)^4-~-uOXn-mg4vI6TY}4peUG!T1
zhd;-FEO7YQRtrXIU4);-L0Q*Ds(89MbT0W2)vaP)C$dB&+JK-Ff9(r#n}i;PXl$Wp
zu4nl&=MsKwL~t%)I*A!~QAlh6mWh_;rTH1`($>T%2&ufd?BQr50LhV~O)wv@gO?gw
zVY!wfGR9Xprloz3N-N<>9Isp~%8+mUe(RNt{6EuK|1g36$LmYf!qLf@fRX7x>=!mh
zdRYRde;Gh>hL%dsHve_u@#Ey=JO47&l7bV%7MAv>przO7eDSfud}~6pCW1a<KI4Vy
zG>t=I*w#Z_0m2s+<rD-pKkc9jM)<{%pOA}=+oP@#N8<A9RxdbY0>YX>;R?U*hX1vI
z%RJl@C6Rwljc28?7=|rlb{cWHLR1AI<Qs;#wj&i##85xBHQC6hfPOiH>LtUyf?3xs
z6>-{4hWVmDo!L&A`ANVa=fpXOzve%=|6l*GbN@S?{ZF3a|BlZ7#rV_9{|~0{{}rA6
zPig#*->H9_!Yu5J|Bcc{3Kh@2MR7&*U%_g2y%7cc=0OzR*tP})b<6`7BASdgDZ2?n
z`h!)!9O@iNcJ(?RWjqP%C2v&I&9LDpG%fh$%Wo`L{2EO=x%1(#3RFdfu_{I9Ayt<R
zH8x9(hq*u<=@!5fVa3YKxFPH~l%ek^62exjaz`ZaXrhkmuuW2OWk^DG+;vzQ@y@nC
z>wLZ^i7<lH>;0!!(B=A2zM7{l$ESa2JLs{*oqnSER>##Kiz&8^6^)7)e-n#(AX-65
ztZ1nF8zaDkF2$!Sq~v6@7tR^WwO}PIQ)x8LkWlxS$Qe_G!B$aU-BR)M@Q`!wqiMR?
z2sGbr<Wp)?U59OmOQ+(l39OjiI{Bm2?DQxe`65)Jf>g-G>;4*O<Qa&fQMhn&Dy@bn
zM<B$8pmRNc?3hcbaCl12sN+}4$HGV;b}t6}fhu+}nwXJ@{l?dnz;-c%{{f5iP7FuA
z!^x%+zW4N43RBFVLxVXeux@ef<o=us@<(M3$7X{rxT6@$Tf%;Xr6>&NO@}AF9bl$;
z{7ADB++L!WD<jY%GFDxYUHaeC>CEM$wR>ELDYJY?={r+YAeN!_0TP20DMR{2cOn!K
zg;1jEmy}$8-sFHS<|BH%u1y;DIwqZ%fD<{BwRots?mcRK|A0N)*<I@3Z^>xfU^j*@
z<2U-Bq_%IY^+EVmD0chW{iLiia5ntic2owLH|;T^N!+uP*Tj%VsR|zVDON%Eavf&g
z9tp_dkH>z~C7}f+SyfxMC`shp3n(mMPBjjJ^9iU*Hr&OEi<Yl%WLno=V}uGe@`rD>
z1u3-gB7F8;;rEGy8u?*1*$L16oW9<*(ysRXfK{%JHKxj+ViHwt<`#NwG>e7Sy}^Bx
z^vVHB6<o9xVK#M8NlGUL25$a&aA&U)D1ff^%gCL!qF?**x8PuGO1`eTzR?++$o|9#
zfLq8{)tzf{IJeU2S}PI84s$#0ZpxFP@z!^H!c|zAltd@9`K!ULg>UQ}WjyLzlsDWm
z)&ju({J0P0XyQc&Qw<8TaDh*Cz6VAEW7uizC=p;bC1pQxWhk)m{I~0H3!QW~7iW;X
z(Oh=M`0YpFQ~39g7$ya1xQ>ZZ{oXtsp)UrA&&PA{ALokk*CE1f=&VDD(fe2;-s?f`
zZ)J1htEd;(hzgBh^s_i%F~eAsL;S|tteRP7RqD@n(tXG9t<2tqv=GLUZjeZbTZwJg
zsq6Yt9%}0Lt(iyZ-tv-kHkq%l<_$)4*7$Y~-&YUF3fnOai%GG!S#h<av?^4+o~45(
z@hb4(xv4iD4t(I)<*6bi#Sp4K<Afw7+VB-SGZRMGRYf(v#4q?-v|M@2-AB#c7T%Lz
zU7Kdfgr~wgM(#R^DqmPZcs`OX-swG`UovaD-+06hRVoMbnSJx@z@$e@cw6tuq=svA
zno-cnvLFR07IY3$Y=6;Uw^Vf%H1<BP@kQ(&f+9peEhG`XLORR`M~BL@;skzNeE}Yb
z%kE+dufmdLu8<t_PWK}6H;2@L%p2YL7;)iM(3pk<VnEBY$qemJzk;w%BMvcp*WUBQ
zRBe9gv&F0Y(Ti0E9Gdkk)uy=3(`?GM&Y~KCOaFVqV*LED5C`f6Xo0CAE`HSP1pF}f
zVDWs&W(nKqtpUt@NCpM*2<tX2<WJY|N+Bfa4v3d0<^CJ6%oP0u0n-WlLkF5sAj&W4
z<zkK{?VNiLw`!fFoHR)BP!ujEr3k^5=j#@7*)qppeFa>6(qxT~?IQ*^M9zj{JPJri
zYXi)6-m)LJrjv=N)Jf&m05##oqy1I8Qr0fr<y)q#jPz1E(>abq@njRyP(U!|&(eT#
zq#~)!>yoQnSugEriLO%uKB!XK?^mKSH_(>LGLZ65EeZo27pX7N=nGr14rCCCJMzb$
zFqgXp_jBpm>7pMUyuh;2IWi!VGD3z;HQOD+MVWq0m;Hm>-CGXQ6rVi>J#Q7Xz*{oo
zjaA*|R_ux(Ya~o0o{!2yrfBbW1(-X&p|9+WbYvw!RkuzNA1Sw%a(9ocoMt@Jb&_-h
zRyVc@c8`nxr58^#&O$2%t<7p!Y8Uc|yIzdQ<*D$2_6C_fh*plxO244?I^g#`mm}rO
z8m2Yw7PK|-UJ6EoshR<1p6_3|PWY%UbkG>2Hv2*OF1%2$C^RsJO{E&W0Ly|}736X0
zOCAlnKZ1?8cSoXKe6Wi6;B#Z1-UgWQDj1XrFGX^NA<4?C^204bfx0sKnnIHo+-UZl
zCWs(E^n|dD?k5%Ea#dl?1QGq9YCXHlYEs7%%ymLO#;QKCrPmB5vo-hC0gZHVE|$HD
zhM}6#Y&phbsj4OS`_WdM9l~ZK<7YuGxpz!NPFBuwR3#Fx)t?ILt!h|kSWg`}-6~LV
zK(jHFx1>ILA+l~IoIG9b*auZElG{@(uA|xn#swi&cKTsPywyb2^mFHxh-EcOuSlu$
zSHF54_<_8mI8eCv*556`8C0TxWk?1A1Umx-i*mz(hnYFI4Ta9Dej-DFgl+<8FSh&y
zwO?0`tMz8g+d11ECr%LSR)P$yJO#RMuS5sevT}SD`BrK&SGbj|d{qJp!Y%s!6PM9~
z;2YRv7@m<fw44%gWjhRRs_H5qcaL{Y)hdjMzrNPZ!g})h+W&%)=sUcDLg29!4x~SG
za!@;sGaOG)&!9<MF9MhL#21K;H9~ViSNv(5Q@PKf#J)Dc@d5w3R><nA#rm~6W~@zC
z=IBn?Ujz`c6EEi1tZd>}q0iM{Zcc`8(54BDhcrE{?#v@<s#7_@M%0C9N9FH9bEw}W
z67f{=?aTY$jwK^sp)x(#Gx|;VpLT4rQ-{$;M1ylDW@P@Q5azBA5|AkJ&46~A&@m6;
zP<6}%dY&M(4a~YQ1LjP{>PD|p0t&h7mgtlIzB$XMCZR&+xz#w%cNg}qoX%9vko%qO
zo!^qj0Kq#EEM5552t2pD>524Ru;6rB?${>yER;ZwSKK0*ich;Pkpv54^EswvZ2A0?
zt=C>rq{00X@Z#w=?`P?u2nBc2luFUNz7`T`xzO?vfFxABU|ubSvvL20uyY6!1Za?T
zThq2}+qP}nwr$(CZQHipJ#Cvi8?i6m9{z|u)vfAMQOL;5uZvhwFSXoM%Wayy#VS~2
znN%p-P<#u5$t?)6`yivXu8(Yi4C75|b&oBKD|v>^6|3PVe31#wjl#*@*Rjf^2YS$l
zV?!k){L5d0?W#wbaV|kGGm}NYfePbWi54G!5))K`e=e7v6Yvc(t1X{c71#lb36k{s
zosJ>e`Vw{~aHsDbzAT6Laxa>a@z&FsZivT7=ccyjN~Iu~7L6W80S^dgi&5GnCSvOP
zkknF;Q_!n&dMYZ!SEm<hJ_eU^)L?(MB9XY2D;Ff1T{6D+si1a+J<{w|ErWezNqtr*
zgO87X6HwRv2Uwm50|5b4_VNN~&vf(62#@r$C_0s7fb2$w`%?vNFJGnAg~qt6a1%M)
z0cQlQX-yt;9#}9x9&-!LU{ACD=KefeJV3$6WywO6;t2+2QIP&>Le*dACRQ+&GY6*Q
z7jUdT2P58$4^w~P#g#>M{C<@aKQ_F0)Y&6*50{^>#q2@CRavu!lIUF&T-rzVS0_lH
z-%E4^uwXLVNUEbnjy0%lb0B!2oDp&No*1f?X)2!HU!$}|RE*$Ytc!t8D@Goyj5Ez~
z<fIls$Q#ikVCY&FVK)RDP*5caAgL6epcx)Kl3?41_3}`9{}`QdOiv%c3#icX%57aY
z1%OVc6(72z@R?5=!?g$S^O8o1U7jTor<W9|5Y-hvMTCYgwQ!9Gn%(foe>$@WyUewO
zNPY=R+qd&T;8gvOVm^Uy#}0PS?mioIOo(wxWc{@)e!&B6S)2f0yL*Yh{OuC}zy@!H
zgXUqRSzi$$77Sq%ZDW;oJ^+r(Ax-|um1)1>Ckz*hZ;RF-D?!N;7>GtJGDi1%c`6oS
zxB)pPj}Gw_DdGp3cGg(_&&CD}Gc`l>o<oot_uc?&i9T-7qYPQxD%ucr^m{La`Vl)#
z8loK0G;B8QqQ#A9ce6246xZ-Nx+d7M;MBFO#~N%+l-PCH<w(A7HuW8)w&A*TV<H%<
ze&<L}cK5`(s;<4_PO-}}gb@aH!-Qm*z~$G<375b&5LaaTp^YW!(50qLl;<K5rQ>L{
zOv~3?uOjhxhG2Jvh~2Wx1@3I73=#+EP?Z{4bm~T*5<wZ<Yu8wmINZZrBQ}}J0ERHR
z*>n<XSXJz@w8{gCc{`o~_qXlWyTf7IlXcYI$BW8=a-8G<@JzX%0_P`<JNB@;T==IB
zu+9+!q0D1UoZ_n^(h=-3)0V+Xe8L$@J{z}tP8Zp%J)X9lhpIlQlSo{7b_u`=Y#c~8
zFk|x;sHNu|v=6&dTHh}#Q~dK)bk?3k25TWZ|1e6zq(ZXBtUIFNZE}%Dn_~vEG4d$*
zalBAXu{E*uE;!qHf#%?KE{jS8@fX4*hN1IqD`ls4uR28W>zdg}n!5mn&c1e32HT+C
z?}xB;;%OU&q^>sbAx-r-%%)>9How}7{n=s)34#k}@%Al0MX6<D>#_LfYtAC=nU=rm
z;`t{WX@(KP$C*pzvFerxia%*as-xD7Or!)O!z66i!grDWOW8|yGL?~(zPHood=a`e
zIz8cS)$Na=8qRzWD~Q1&lBQs6r}|D7M=^$&F!7aese`ZbV2@!y144G}fa(3Y-Y>r3
zYP~<b8Sc;fmA1#9PPffAf=RR5QDn#PB%&6moagNYTl_pQgv1-KP6eLUji{mU(Y&~H
zX9zen<YPHc+0V!plqP~eAKFh>Wd9*Kgg|a&B%Io62%yB~xm@`EE*wf}OFbJuQEcno
zPH+^J(6Rwac#LN4NP<#LZhdwo^!wD1lsLf4Z@X%=Ud>Ibd7~?E=ls7@_OttCP|2~5
zeKU{f8-Yj3eZy)b77Cl#tY?jn4n=NBDeQ_r)$CR_IjQu5GhUj=O%+f^Er&D?CwR(E
z!cEwB?l+{}L7E7MW=MB%K+9do>UJHi(*?l@VQTxEeNN{Tzqw>YV8mV^aD-)Y=)V<W
zzOW-Se?ZuV9WVtk-UI@eze}wm**YF_KyWW*+(BDuB=4nKFK+&*`B|g5)u;hSW%ex~
zEk%&3h%$$UdmT?7Y-twQL^2qZr|*?=c)G<}{u!_Iq<4hGpqD}yq_R#3>a4fG@~iU=
z=s(+V601C7u4S?%Q|!bMGj7@3rH+UXlI~65py_hKgMiUTuE_MpmPN|UR_MP1mr5bT
zf&RhV->49%zTqeZTgj=|V5o`<*ulsH(qzOzyFo<{D}>>R#)-R~5SDptYsn}CO)70i
zwGM|#pD;V`iX(GzT=A`W9ob?GqwdfRKJ9rAVLP2(lxTmv-h5_AzRWT;nuNeDsdEzu
za<hfB9L(5=@j+;xk<%W8yB0isS*I7Q5ZT}NdPA2fK0@ChA9Si^%oxht+4nD0z%GR@
z1mz`aM%Hj4Uu<Uh=nPz=@S~hpnOB3J9{HF$(rw9PRe}Uk){hABmBoj9SYSy;MLar{
zhbSr%dS;-@FQ4p-qze<_>~>ellQvV2?&H2q0}n{&Vu#PI-CT#?R3!pmil$04uv*%o
zug!9T7rH?rnMm_ip<|9$(m9V-A0tLcw95lS<Dd`Zq;G}6sc)`Lb++~AJD9-ygC8D3
zn>46Q*N*svt?}21qr|<mC(lQ69Rf*1fWc#UNJ$fKFwDt>3j3|a-r(S!{!E*~X(_R0
zO$ip_#SC99<C)*Hh;?N@xCK43dleB=f@O5I5<o0+UX(%oE!F^hiGr_X?yss=cY$>5
z9ln0gXW0DLz9#5EQnZAZ<4*fz43B(yQ)AV3<|y8b@Bj=lc37hhs(UB0Q}Po(K?=7Z
zGI4!0>Oq!sc!q_cd1MV~AE7SI{%Sr-X}2z57qZ|u5RavyrQLbx@e6{0$SU>$Rs*|S
zj^GzxRGZU-&Bgh7EuNc(1ZV=?s3+@3j|xlc5yEzAA-v~NVZ{}8K+rm(P&$R0LOvrv
zSORP0j*Y>!NCR5Vw^Oy0MNLP{g3g&Jc0qO6mHK!qP?1yZcma6_opjYD@e)$<w|l;M
z@eb?JOm|8`&$90Z;y^#WMnnHnt5tCPW!^W#<d4>)%ZAmw+5$|FM762d&7ydBLmjP|
zQ^bLS6cS0`O#+(`042J&7zdl5+;(0M<fHXhTe^fA+*2pzTPRa0%vCN+EnW?z7AvCc
zn$nMuhPdoVH@2t^G_5?^v-=8=5yL*g=7vvx&K76r#i=k*gZZUdEf}4j<#~#m?0*sg
z8UMcs_#eC*|09CZv;996l$n+Bp9;#r^q*zWB!#njmt$fwIw7a&nhELNtTO#n1A1k#
zA4HnAkE;Ba4#LfJ2Ey~O*kVf=Hs5DSE%eORxhGNktzQ<4#*wKj#b_DSP|->^mOd&i
z!Wr))H=afk1AzwnJsP&B{trw_c^(r#hCD02FO#iMIoI<M(wA&rwWUNKQg%snOQjWo
zFG(KwHc_DdftkD@X6w|g)Qhkk&XZc)j<~Iuqx2@lt!yt_yIpiO3w`J-eShTZ<}mNY
zccPe*^PQsAihIKAHVsk)E_Q#o-{u@%tSf2TC;VaA7SFodi==$^%U@T+PBkzqP*29k
z&^#bBkADHzG$oq22Yg+>YG1_tMG-X;wGj~LZfExP@y4w+$5ezc=!<`8D6%rH`4$7(
z(?0H1_3YuQL+;OVydZ<S_3_X;7{jD&4w{^hfe#B5QP|avDN)@V^wrB$mE~(tQiZkW
zVinG&3FI?a3dmz&Z!~glJywVl>mx;Vf1W2$1J9e^M)u9R>6vqJ@fkGGSP;&p#we;l
zO=9dsFA@-&kMTdsSEVUGT77(t+z%x~oXYu6hp<e8hyt^EX**NqAhEfWDn*(QDVX8P
zfLRu=52~jdBmDFwe+ce3!VFP{G{yeYcKL5J(f_G$GX5{4&txzOt<mg-jG&+KFs1xT
z`E3wZ(|?-yzwJ!_=fq4L%=GmCvlSWe*;p7k{?|&C@K{Mn?Vp$p2dN&SA59||ve4yF
zm(W!6LS9T~1_tyF^nJG8N?wM@yJ|~#K$`#;D`Jcv96J<$85GUC3tYwXWWHk?7~0i{
zDl)a@)k*-)vvVh=3mYAKI@pZ9r{v3-$&qijJ`y;~Zb#3q??3+r-sT5QT2B`gx_8Th
z%fjjp>S|Pm<qY-P-FA5ib!St&K&z1Lgf5QHKpm8{fPS1m>_HIVou8Q@I{tmhPtJ+b
z&#LzrmjsQKww$Untwi+<FB9{Woq%arXHY#5QT~E32r<=b#OC|ta!yG{t)GM&h@v@<
zO^JH_H<IcRdgl>YAiY?L0dLEc-_zx_#v1%?dC@x5z-CT}p8D|wfwfFYF7J(YY%^3n
zs-?bPM5m+FIP2qM=M0XW8)q3_^5bq=$p)%AI}4Q)k}dAR0&g4XXIp5X&22>-J$o6j
zHn3~PXag`zY0wGuXv>Z)A%U^&M9Q5bi|{Vqw3u8!sdCSUTC$ehD;UJsDbA8^u$J>v
z)S6GF{X98sO$L#l=3qffGIcznuS49gtaEL2mztvn#?D#I(Lwa}_~CV}NQS1Uf5ARI
znR_^#D~Yi)>oEckUy=fWKR~55O9Wmsd;DPp*{+mj6O4Z9KdfVebvK`va~cZZNGTc~
z*Qx$T!WfFqP?6D3DGy|t2C@O2%gky<p~j*h(>V@pgBJQy!7mwgvk=!O658^9y}iz*
zSIAlT2YvfS8yT{Lg9aoLP|DuvPUUeVaZJ4Ae4ZV#1IyVef9P%;i>%?fO2@vKmam!&
z4YxUxA~JvsRD>{m`cRHo1RjN3@uKBR>($-L?}w}f&fGd1{+x9lKT~Y_X(&!$&|Om8
z;8-o#HBfBb)An^&z8dd>Fe3ZccPX)Ckc@dxcGP5@vEiBibm7zbCidY#YA^(eLN8Z0
zmY(VM>MFOLpTG9_f?v+Jh1Lkn$OTGUg6A6l(UL*oQXE19JN*t=oxZ*!<NUd~vZKUu
ziJN3rgFQU+cFkcb?^YU&EB0XB<h7Y<;W50IEqp`d3g6%TAzA6n|Ne$+L29HuW?=Zt
z*ybZeUH%BP1;LKq0So2OSXD6ER%AUQE4YqUNq#?Q?j2Fn0*+(N&ZLH{q@rYULFdt=
zVx>-X{acX(;^_kagb25(R+57MFxi-zgGDN_1Es_-M{krr{`&1K(!DOZMiKO|G$)2&
zN42B*zL2c@7@<l<GYr>nLj9U(+V9va)G|j~*(*JPz`RY-^uxN(cqTY%!!h60;}uc^
z12WT4cou=QK1?&L>Dx?V`RC-vl<?QKOxS?wX8#ddafBGO{JPvD**jWV{e;FqZD!kN
zJ>L|-Pd^1px}cj+!j9nu*;SxZ6^ozUfT2Yij%tKWD7ASrp8w-a+aNy1Qq;0e=%oov
zcdp^oto=(q#3skQ{T*AqFeNp<@1R(Z`93z<$i`oX2#<rFf%i&<m!WQvgN<JfRE>{)
zIS2-E<p}=P3uvC1gVsDNI*5+-wFq$fT>27GF10$G*3)QjIw-DN6t#SF6dLnW0^;py
zm$7oOLW$pc-UlV@aYoI_y6C5IgDqUPqw3BVwk69y7*evusiV1@j!x4xq7@maHOHOA
zZS@5sPiH`1lbgv9!7>Hw@0p8xRrdx$1X!OL^Hjvb%y1N{NsDGWKZ*&B`ekZsv%q;}
zcZV%7?A&*m@-B?77p9QpV4LV#T1(L-ETc*Ils07qSmbMvk6nUP%I}@U%+S1qETy9V
z;`9<G%~Yo_10#q44BW=27@u$1JWNb{j`@^dX)GURK=M%1Rg6jbYxsg{eRVqyU5xk6
zh-H)yYEXitXay2Bfpvq|xJb&NrXc~BE}dR?w7kFwaXIWl1bN0ckai<>G519&R6r88
z2J9rzfbBCeuwWs9>+2f2z*LeQLoybzp6*8EZW)6Wr(?(>+GLuyck27y8qN5p))!0%
z?s50CExrx6bWZc6i_$FQ{^-1D`vN@GaHmjImb?aM9P!8dERfTq{FAORD2i|tU;2+k
zOvH6ROP=?g&yss``whD++D|FHyEnEOy}YB7gPTK`%XWK=;M-CIv<^x=33C%&){s<6
zkLkVGSQcz+#~j?;dQdUGD(97K0Nv*N4O-}w48G~4h!vFdj0J(PGIC_o>O<iAFT{si
zsRI#mP$|SS!`vIwtx3G2|4FgP>HSR60Uf|q4VuYr@AH69v96w-9LrmWEv*6nxOu!q
zw!z)$P|j@5pACxP*mN(cqVj=cVXEYF#1(44XGbQ?4h2bPi&9l@(#E$vGL-iRwo^LZ
z7@6OE<cHTk1qDBrU0$;VVg6pc`s=`v{(X7U1^pn*X)z>$?+()M@})JM0CH7kZXGaN
zH|W1{LKDKQ2ZV$WNXhY2k#}(0Rc7k6wa@ky+QDp3ssMVVw1=rE$PP2sa}Sr!DBvWR
zEUqUPajBj+10!?yCt}*gmv6np-0vv47=>I&*<yVXlpmu~q6ng@G<QC?DI<uFMGE=1
z&tb*4*#tJQ+}ieN5wM|ZN=oG@+@$L}cr(}3;M3_w94Tx9@mDs@NX^Pxh5<+6F3>WW
zZU_DqDXAGt8(%1H7NKi__~bLVl#Z13+EvA4I#k_Vww52uW7tZeZlR;LJD#DZDqdBc
z$}3eXQ-{p$&}W?E9Txg?{+s~?11ZGOt$JK2&yd~i{!~({r;=+8cq-|!M>y*I!tu<<
z@+BV%x(ue7-R$jUww4CH8KKnkgkA{3)uF;=)l>yy{xllsl7qK2@ni}V(W&-)lhoA)
zaifB_C9(*_j)EPt+ZHM5qSwLGu%7=8gVz{GtsBlSi}dVr;5(gZPYcZ;T$adVc6iRZ
zkJj6meVEpWM)_^=7H{r~L->Z(>fiM($N@gxY_!=7+PxrA-`vZ$8wL`UvsScr+;Tqo
ztMWBy+9t`G!t+Z|`=o6=?xo4~PF*;*p131{_rYlS56IZmd9X(0CQaYVX*E&OxvJ3$
z%r!`Eiksqw=qtd9C*-hjH$F1^pJ{<&QGWXiX-0Ftl+8%{2uC<Sq5JRkXRPB0AchBo
zLg9F6&+Sn?Q950sVZ!ZO(ZQU2nG<jaWit$QrNi0&gqmgOL}q82%euijuk(kric<Fs
zHk1ifQv^QebfmxN1d3LL5SvY-A1LI3iwln*Vy5B}$-*|b1@zYOP_oJ&Pj5~8nb}Ay
zCLJX*FpKr_=P$ogu*=BK-OnsO_f5{pYpa$$Vj71D0n_A(L_N)Tt!Ptv8)yQ4e+W)X
z&$upXlP96|<)H9liVO2r<!0*Qt30y!K^jl8NL=lr%9jk>)e{bxGKGAAOls>xAn|P|
zo=EQ*L1SEK^48q3mKB{=m!0fL>2~_!s3&}Qc#3EKz9JfUQ;Tk|<F=ra91%61+Ti;O
zd*-4H@!GT}<?FhIJ45}uajOw!9V^Muq$L+AlB(#=MN*>6#d?!Hmasv?XP|2oSVisj
zaa{Q}iv+Kt4gZoj0h?E4T)K16+En;!e>$kdVy0AdEEX|odNtojpzoMpQ^R=i<w+>n
z@aBEznC^)B^{a$gj$NOx>U=HIpH9#kC1(Jb{!3VAL?TgOKRDMm;4JOu+2|BlJJT`N
z?9vl-9NzT}DEd$o5TR-UkJdgz4VA0(QHNyPNsJOCAuXseigKi)o@m7>r}J9-RrqxC
z_$<ULrWv6@oByuE*Nm&fTFN$tw8X!({gBtylPp>wqT}B&li__@qZ*3;-kXrn(5IS&
zmJpIqYiksXqno$-s0m*%jB?y_(JEIxn6+|%y+WquJ*IjJu$_H;E<bDVfRe!qP}LxY
z?8#QgY;(;W!gZ#zU-oQ+^U&JzlJ!lQ;9y{mRay84s-*nAUHwQpka?D<SU0Klym0h<
z(QUnc=j|?z11SR|%O3&O&@MGZr+~6rTK4Y#3gn2}oI&*S=uGi27zx-+vHi2n_*@3K
zYP&7@1}F?L&oQbyrSbb~I0xc+!cTA_RkX{Od})ga5g`oqmg<IFP*Df}VcV~Y=jN)J
zbes)%dMm>|IAFE3r(gDH=Y`h%-L%#Iq`$HiW(>y*LN$nBcap>|m7}Rh@0MnVXD9g0
z)s@aVlzv9d!QEY3$kp#607~H{4+E~B;kl3>;^L)ugvfDWfYhp;OkBani-*dUTN9s;
zy}KaJYbB@%@ffsM&vV+F3k+N?AiRl#&kAr;G0*?GN=+FOQok;+7vDRJ3^Jm)ZPUs>
znohl06Fe$9HjT%cD9OZMddxr-I(zi$4o`@<>s4ooP(}T9NMfTlGEez@{Y;-5^k8!1
zF|p#R?cdeLMA`4#z<sYYD4V_W>Tq~iABELX(hX6rs(WMGtRH~l!_+xIwo;FjE9y|J
z6Y!w@M0-uAI=0FkA;tFS%%1g1=A5E9i;!@(h-Q-YLHLKgc=^(;he~HhOS34&yh^G~
zWBlOQ@q7lhM8lVPlb7SYY|2#nF@b-Fw&+cwtSpQbW>bU*3te~4AbBn@?lRnsgGxlD
zBmmGyTVkl_4AGH#%IqSob+0Z4+q-G9Dshl!K`matWaQ=<^aUINxy-q1{)vF6Cdu|;
z5A$~2=w1)(*~?y;ca*{)^_$O6&vGlYUB>mV@yq=8G*kF6Kqk;0mK!vWi|g!C#KDkM
zLI9qC;P8+r`nbO1LAjpVGTc!)$Qi5uK@PZg@4RXPK_@cyU+2{JT$)C@>}EH;oxkh1
zb!cKsUffXQ;~6A4bHSCV<4aMKo5qPzrBtI03t;-JS!9F8t;?<*$u7}ND~&Z7=*aN?
z7|Q}}XPEu1p|mhGgx|ed%^Llh=SDSBFCrFhWy+9lNRqQ*lA>zX@+pV|Qy>y}($~bb
zFvjM81RzXvv-=;OjP#kd25RdhK(yJ(?AKib<rJv%g|%hI#20b0-=ArGY9u4=EgAhl
z`PJHiiKs79sm_*8#3|0yL^d$M;70-RQ)+>yN9=tfN$P0XLII8j)GuzQi+vB3S4v~#
zR350N4v@4t^?wZnr<cb$X|nvjKv^^mH<`PORY4<6*FL#d#l@3NmMn~pW%*Er>j@-i
zvUm#7lSh|rZ4$9kfB_{Xu^fiNWaRwBsG#2evEdN{3Mlg_db}U(L>k*fz&gJ1#66-z
z=dZrF>2BxSM*x!CPqQK+XDR;`I;>U=OOYL)no~AZ`2r|!TkZD*ko9dZUBl~UNwu%y
zgI$@M7>Sx2nDI1w(lsd>BR-z<moA2w4FVGRP3dFjDf2h*f0fWOL1I?rb!u8P9v|!4
zV!n6gfQ31-W}TH~aSb2@tOa5hlDh!VSI!=fFf6pD&+37^KcH)Bdkf2?H2E~dDb<Jm
zM)Jg^bkYAcyR%OJQ^h6IcwXQau40sYVM_ne5eK^s6kp(it#{~b{GFBcXZWK**)JS0
zh?O<At@blJku9OL*>Da=hK&^1&3@tu_7C3RO%2T5%DoICej3}yPy57CpQ1EE&}zDr
zhyGz~p)!aY=?2y7L#ApO<Svb5FgakG>TJr=??(L=V8<ch$y!O3F((vXqe%A)G`xt=
zRht_1vS`P@uT)IKa#uR!z+0mM?t1(Q71Zo|+ER^#hG<NxvMy!@<Ox?YM9&7Y`ay&a
z*08HkyaYAZ(ZhX3h7<GLhOX;MdW__Q^z*?J=BA3J_87^1XY1s~y1zFUy&hxQq>t;S
z_3>M7_1ere3@i9rlE&rzhD?dOT`SfwGeoX6;7d0bi6cX34q3lE-u}~@&*mO@aHC1?
zyoC<;`>_<F{lh&$l%6!XvNB1;x+$LULpU5HB2V<cX3K0ypLtMlRD;AWEKj**zIJeq
ztO)&NuduKMTB}u1k0k<iKtLV$e$A)b?<n;gj%waTM%!bQ;oBfnK0fc?&vY4I%P->G
zDB2@$NUiX#eKjJJ?vWvF8J#1J+i2G&-XzHNlHLy&m6!@e&^u1$L9w@NY!`8(+r<rJ
zN<bW#%^Ld7R1}U`%q;V>Ix)I3Q3B3|>Ev%RX8!j>IX=k2zbl5trN7PRN0}Auztt12
zG?>0qMsS&2aCYb}Zf2Nn5Ut>g6Vlh)u4!=cE_DkX0ki*TWFIG4Rm@1PIAydlxyXb{
zQY}F*p!n&s!Zxm^e|GWYaZ!<Z=lJsH<S?S;eAR`-f}?n$Ef|evh@ro2eHM0dY`Tgr
zysVW+XIn)xd!%5Up49mCZ%KSvQGlMb_`@WTB?$fnKx7eyx2WZn4A1qckSpuE9AsZM
z23Sx%lqy6gHdX^a98&TW6Te45EY0iA`$PeTn)3^YlJ(mwnxx|k|K-HC^~$HydRBdt
zD7Go<bQ$+MW;}h+UL6yuj4nESAXZe8qUBSHd(kZRt&%miWK2?wT3i*ysIi3_++V8&
z=G#suiL#oD?<#Y><MwtPaa@+(39sLAYeQ7~WCw((+!;~`_ESlXc=2CZnM%>PM@Ad-
z&e3R20@o3i4&%hoR@9t4AIyA)D6HIlY#75u({NT^1;tNiTut1Z82Of^8bJ9hP1NvD
z(1}LOdGSjfz4N27oUs$d`S|RHbueXEjbI{c3>wTm6X8CGh(|~`{^T}K^R)TJOp!ZP
zoU``oNJ3jL+~Q&0EuilyxqRef5FMbe;GmLrVm5AiBPLmRO8xMERY8f73q|G=SQ0%L
zA8JXUL8sL`B_@zjta&~QyYZj7yGw{!<=0|Brq-?UR=7|N;i#@ac?g+Lk!mgXw?ejM
zr>gVv-+zv#y1n%U=+ujxQ**S)Aq)CMXUx6>bh|w5Lfy-<f8&w2Hhf-Lu!{K$*RWSm
z2j(<cPejdb&MG+^<P21nWDkgTUzjW>x!SSG-4%tvysUK_>?Hcu%iFzt!yUfrVtgY8
zCC@K8?B_zq^kxrxr;8vV{ydvEM_baviLuD|S;$-?poK5~0w!rLT_;6`D&ws$#vxis
zMuvp$ERkh9mdq;aLZIX!-XvD=QJ9ecj6NLtWi4^pFfvWt4jroo)YK;>it<&Rps9ju
zkX>JLV|B!TasK5_ETuZcsXw!E!7l23^>kG!UVtCGoMK0KRc6^|6!LVFR;tVpa?v%R
zC|23e+N@f7M>+rPdG+qV8RJfmFwK{m#v!B!5nC)i{Rd9NeAapAH_hT&JE+86GYhfK
z`s?bX<@_cCZX^S+_2QiYo^DOsbmj)v`-_sbBOPsD-W2g5|6J+pK^u7`-<@bRk@I;A
zYTP5pCBU~LaSZ~nsIFfIKeyh(V<W^NJiH+3u(l&NZ(^OZ^6z(;*$8d+xcnjn`CM9B
zj7LKtFZnkF`&5w_p5zRf=>F=D!T!4!U4gOr@<*S~ptV9H7AGTFfbwNim#Y3Y)Y)Z<
zVX6?ODn@^QQ39`gd@rk+M?dKsRIQj(;!H-D^Yy#cToGE`$gT>jfMSVog}RCvKi4Ql
z5kG1vS{@5+ew5&DYUr)^PGroVr-h+})hbCj12^ItB4|BwclolGNNgGu$iX9VEAvi9
zCzz~oZv7J0#m;rbS5xvg!JRu7#t}dQcxKYves0jmFvUdV)d|$Jxy1>?tWl*|PLn{e
zg+|{d>b^g0nZBspWU|0Xppt(O$ZLaf2Ia*M6$(i@;k{KG7~Fq#+Dx}%yz~{z9ozKG
z#O0VAFKLzP)*X9x=k5UdDt)+xMlnWq*Wj-l;Sq@T{C<mX-5H}w@bq1mu|Rl3?|{e0
zl6V?3uJe$8sS#J~xq*KlT|4U?eNn_<vIL)hW%NxmVL+%1IB$O`M^8;~LHyTP>KUrH
zhhAgfSHN^7Vr+r~iuSBd`E>~R1c?tNV%4v#SQiYc$Q{;}_t(DpRe$FqV+}ibAF<03
z5|)cMw^rhJG#|CIKCAK@H|TJmwDViD$lp{(>6R*^hhr<conw|+IQ{{%pz#i6`;<Vy
z_-Q|!?AunI-7T{L>^QCc@|omVpF0>hYc6lvB323ud4?ufLG7{b!5Ce+rW+%91vaXL
zznS`#-IlW3-j<W;WJ%&<1qYMY@IN>O%OQm}{X(0SCT{7t(6hI)i8O;<+%wTV{%*pF
z)ofp+kg7oBU)z}K*_c{^LtU^@kpsB$yu^o1rJAARE7x}#V58}#lo=U~KYocBTJS_~
zGoj|#IG@Zlg<gBV07N0ZRvjmC&oV%tVZo!mgsHws9|V6+ywFaBQw~S0&diQB>)K%1
zD}fw!G(Qg95e=!J$v9<3TzC6bATk3;;0_QG^(<5<EzK)jLk_rajlJp%0c#>qtn^5U
zQF*z&_Go8J5g2|~#U+?5PdI@gMH^76El7#KmNb<7qmd-4OG!)v=DZIwaHnKXo>GD2
zTbjYQk)#zU2OJJ8Iy$NRxifSy2<<<|cx_wLWW{u%O|Z)GTq-k3!Jv@FLf0Y3aCkgP
z&^%|s4Ssi-BcA|`T>n_}06&(SK$2sFUK2;~e3HJL)$;B6(YZ|o>YK8TP4);Z_Wa|w
z!rXGp>B^(;7`glWTolaYBN$UHYY?>vk_BLw*FZPY?YN$3_+bC*4y_!hctutsBgt3G
zAiw4_fe-NH-3H0gllaVA4Q?i6upgvd+q;?L@i(wy-%#Sm_&IY>!jn#T3dNo0rq@&U
zMi~0hSjXXYQDRb4!j8T5uT*BOVzasFY;DqZp&4NVAxq;(YJjJecHi|&aX6v*rPJ&6
zi3z2wzJ8!A)`8AMe#N}r8+QcNep(;pI>vl@#wo3SN%}2gs9bLAKm4IchT|S)LNUyI
z$plglaYo?Dn@zRiK)Gbj4i)3JAp~s}4+!uU93;lQ&PF?;D{YGI7N#9kmWN;Tm6I}1
zqIEfw^*h9x0h-X{DM|a1&UA+qW3o|~Y8&!9B~dPoDGDGl#A46)7?W0lV{;#2_!UpI
z=Sh)FP*PdVNfFA8=>2c;B#q%#Xs}q+Fb6x(fi)r&YiV{%2Da`RP0-C=ME*r=8lA-Y
zSnC7%B8`YgE9)V{Xb773BDXtmGb<?w#Fb3;5`CIxzzgg?wu&>eN@80aL#9SMU3G?Q
zn^#d-PoqLmwo5Kmphww^KO31)4<^7s4s1#~pfidWK$nB}p!vu&1LY3Pkr9CJBXP#9
zpU5lirF!~C^gG`t1}9V9pk{D0LGOvouEr?AK3LYorA(Rp>Q@)`M3d+$MiES?H_pxH
zR26;lhSVd8JkFZ5<Z_omYAE4pYCGVXeORrD=k%rmhpQw{@3Lku$(Dihx|cwO_DDA!
zVifNt&#JXRb;C9MLL5<y*gta*m~r9*M%RMed-SpjVd(Ln9OdcC>+8&^dkrg7<_kYz
zt8PU%Q~8D&+Pd#{!|RG5!AG7MK+?|TRuI~MmTh<^PO7hiR`rN=NIDR?WymbIE&p=O
zGz|vd4)O9glLB0tMswF@>PBFzI$O2Bsg3GsGN#za_0|b!4eqQQfQuXsTMi*191HZj
zlg_fAQJXMAWLQOf5fwv9`gb@Z#zTg`Ge5seolJv!y}`7X0k%e<uI1z;d3`4Ev9+rZ
zDae0EH5xs?eW?$xTX06JA^jBL1eRzoWG{k0?;!=lz)f-<kOV_~iwYybsh=CdI~a54
zDx6ik9PGD({5Th&4G|9)Z1hI;A|fD2<W2U}n>XJA6(qdHy?j=bN}z{6iMP~7FCTeV
zj!#)WziXR>dnN-eiOK|SWu1Zgz(njA&wo7)c0A?#lHP$62wTtq3$StlTuK_PhA)To
z(;L)Zy=i7aEe)WM#CC^dPp*G1nmm}62f1f2wNYL85P~T$ybG`ww81CqQ~$6xdYo$w
zVt)0VLTMoJq{|fA+|5-DN403&*)#4Ov|;sD!ZyV0DZJi_m?O>zka8ERddi&4v>1Xu
zupn?I-o7Am`NQEm_C>tr$}*tnXE7y68d^k#Yt7n-m6ed_#XrWWq@ugvz-FATnE%H3
z%;e^cim<W0bE@H;XfcPf&b_s1Q03p~O)pn4%@%fRXe00!(GMUvUBOA7RJ)xz5Dd^P
zQx+#{+;s)is6eML&Xpdt3y!`f1yyNFm|n@dl9xTeDhBYTC)JRvJ1#SSq7L0Y_n?Du
zqa`lN>>>KA9Xrr7-)Acgx(l-R(DLL9cE*mvgud+bkcUj<If!&L%u-r=hGFiMkA~f5
zYn{8a(ELH6pIUjIu8BV=kHN35lcIJSvfO^q(Y;o#L<8P$@G}nBvEGO`IBtxS^J47Q
zEv7t7MVvY4uwAxDC1~*L4ahwQn1_H!GiY4NT^s1%JZnwV9?|ci5v;5{{Aclrcc)Og
z&jd^8_eHrc?{hBE!zn~`0&V8aA!*K552Vtq>HR~u1J^P^&f9x>Xulgmhh1(1n5`si
z@l0zUTkQMCc;hwdW}FI!{wXe#lB*ZtOZ)mZi%V0n{z5Pl5+fbO5Y4#R#QO)0bO+#g
zb$#gh2N(o|`}OorQrScS{VN%yI77eRpzxJ_J?E#n`ym+oULZCAW!lSpf0lotNrn%Z
z9?oH5(qXpRaXKQe^IuvFs6KPVe%|s}rCK!VESVZ0*BCFJrSGS`7E4d~DB1EMir8-0
zB-?(F{s+Dq(!b=Jx<%$^+m!GPVa%e*%d={;1a`-#Xy8{3>7@-OT8dVu#6ebY88X9`
zV?nX7;+8ph{VpEX8U~dfa1hFYzj4UO%L1Ochg%-Kgo5x%YYU^WnowB50q>3mFegz+
z1-(hZXZ`pi1<38NU10NB*Ry0$piU=MfuIV_c7JNo*<Nm09WdQT*=1Z2i6-pDNts`!
z7{yrSrHt;PT5iL^1m&2bx9u%LCr23?t2g55rdy$;$Q4oK=5}2014eu^c#4s{Hzo4w
zNfHLPShQuZVwHon`w{A2^JWlYHCE`yGXrv;;JQhOD-Odd3^#GDI6v8}qFFDi4M?8d
zmR<|jvhJ75YhF=*6y+&tMgVIkaxxV#AJ~Zic6??|^q@)pI@a_<(L!?|NxDvqPzG=>
zZZM3g24iOc8UM$HpF)S|j+~bYPfz26L)BVtQ#N}6IBGL^)$ZXj5P1gDC3S(tpq6u$
z1*ApcYJed_9Cs3wtH?H3ddeC;iCha&);#3;ha@T>qT`J?+I5#mVQVm1(P<ed>)4Kv
zT#ZuXR(LF1rB!!~idaLla*Y0*!T_`3@(%Qj{2)KgC|0iFoY79X|JD)&G2WvyfK*H9
z5i{SG<6fmycYWKB1W-tupPq)aQ9wU|Ap7ta>x)Qr{weG9R=-YZGD4GT-NgnO)s#LH
z^j{;x=yH)}WTK6+WD4R?(~(kdxHC0w2%&k#Ztm<;DZ#UY1?lH+k0(Vmn_Ee}t-7_}
zX-g<-F-wWa*v2sO5%ENMCEd{I*5$!pttJY?lbve<Wm!GHrMsVT^7|hSWKexod>wGm
z$@jF!xArKR*W9s|^_h|9bj&9zl<yInU|uR8C{*hKB?~Az6f)(`;rWa0G@bgDSeGk@
zl%TkP&iY{>9z??GAoQcE&u60{QbM6tEB$SzZm8WO;9Xj<^pg7H(~-{N+78qn9vW?s
zN)|I~(CqPjlcxZ?Jy1-Wo0N6@`(@{_zyPk1hxtCc%u*4~PWef^srzw`3Q4;XpaG<$
z)9O1^nLABU0BajSnPW>#^lc?<V`)UhN*B>bpkQlBdatf%UrOC=S#Z<Vq6vDMFNVuX
zU$=3UmIP4wh$IkpH@AzM>1kMjj{r60&X^yt-D9I{aL}EQ#DXU6GiRJ(Fy<?7|Aw|}
zg&50oB&3*)8IXf_2%PeI^3-HiNZ#BHR&=S|ym20(`Oqg`+wsRhV$}Ijws04B5YZjP
z3Kxkz_ThKKmIDd#up{fn+KH&`exs@~k;mzY7XOkfn(5X_2aN2LLC-J!82|`(Zf(N8
zP#g90MgCs917@>;R1zhB(eWAO+6}3ch<6?hO@7tf=2z_iOTYa58r_Gm(0e#lqoYkn
zv&bMn!QU!i@gmEDjY5(;-%S^B%2*&tR?{CJ6GTMUHd~sfft#26YXes1><%n`gS=W5
z3odk_%Tr_LpLx$E3NR%-DD;naB9TO9auEyNN|8*~i18$(W2b{;(a-fok@mihj<F<3
zo#{u{ZU2m<4B>xk*_ybVD}0LN$yz;hDfG<v1+cv^LW5MFyd>+r1bPjD+XZg**gmDE
zgq)a8bn7wQ&=;6jspX-vj;I-za+lsF{*5}7#l2d<O+(%Pm-|&OD*!-f;QjfXXlv0}
zHLe<<k~y8BM!k83Xm*oV8BPd4rLxH1C6J^jez{wSxW_RT-mrfv+}yYZ**$t4_|XDt
z2CB0+_;ul<jN<-1QFnDX=xjTZ)B#VUDbUvN5z;gho+|5}WlrX0NdG29i@o89K~5<#
zcKM5T<N!T61gFlq5RF$lc=_w%80<EYWsvj$tae>N_Q15zymY1d;!%8jW6H5c#*KQy
z-|!v;pL*&PtTED&^jdB-^oj|>*!jh`h;HpocZT1Ij>~8UaYdcLsJgcfD9Z1Z%qyf-
zAhxeT>HxZiwbpY=amGs?;AKln@Y%x<&>D$Q*Sfk=R3hhGG~@be2u%1p?;nGgHoD`d
zId@u})W%SYD8`O5KD4bVsu?zo+HoCF$(C(e`(ZGtQl|<Oz)uJ1=(iKN$pJ*ojAKLE
z9*?{?dB(TLJC&)lvpwkq3ko3SOT^pqy*dx^p@no;pTK$_i9W43JK^l>gew<6G7NRW
zqFLK^->cao88n4wja+ph6w{tU(Vb)lj*su>@QW^Z4nWj<_mPzdy*VscyS{>cYvf-W
zuKtqRp~S|!EjaG|EJmX$Ie0>#3|~`nVcj7ghJuE){wf=ApTjJ_ecuyk9wFK>dh>IH
z`AjOP{|9iH@U&VQC^>-i3^Lz9B&2D1nzb`?{BCSGJ#|Ua1q6uMT<CM*SpM=m6J*iV
zVr5=Ek4Zb8&a`u>4uVB?T66T=yS64XgZP7DwP8J?RNF_UmOB*d^&T!jZHOp)rUB!{
z*InPFE_DzU_a#5C>>ssMYf|mHe3J~KgGg}SY(_OYtmgt;)kf0>*BvsV*Bs3pwooP#
z4hIrp5xJ~#aT~f@mvF#VxM4;&NYmLIPe*j<QdpE=U|1I!vLRd|b_C<`YqQyzAoG>8
zRfZ?P*Qb#6NMfp4V1BY&s)~kR)~$wKC|B_8Qi5Q+1;S7w?^fDPoqd}LUTTwzU*3NY
zT95EE0Czo4FgA8s@T)*iEFXADugE9-%W%qvIR^RdPZ8p`-UbiN6^N@)JLyY1sY97m
z+;i1na+*rVUmya7utPvZ4Rzy<Ld<KB!PXeF-F$;5<a~_b@hL=U1E?X*tORQx#ta1j
z|M(?ZjTa@}4oP>*s)Ri|x-&qG3|M=B)H#cQayh&hx86^!KE-YC1VJB*GED_&i#`lc
z+pdk?Pc^*OE`BZUV;%$gJKy@S0=M5_e_VzMIqCHMsJMl-dD?!e`<0NlN;TqaznWKA
z532=_wdB{?wkqCWP4x`jvxY~Lw~3z>CS{D7U9HLpj{OayJfSVLc-w|a2DJXa{IErb
ztxz0NlP+<Z(U)UA>O;Db>1X3OFg+}KR+x83`rc#D-<q>diKaesm0%Vy{5QYH$W3~=
zN-n!1tS@~|GBrAD&fH?G{fG=+Hu&R18xr#aDqV(Re;1wf{kxhpwCOW<MOIylgQY41
zNo0$hA3&#FAQqAz-Z6)VbHsy?`Mw)uH#^Z%fcBbc&r2JA*|xVyA2M_1fMKJyL$^!g
z=k^zKUfcKv8ro3N=&2+3myDFR<4XGaTmL~_vJ5nEThtblqNuK?(beO~LERya$_E^{
z(0`l5)s|MN-(1~X%t6-oGav=DkHVw|fq1xUvb|Esy|aUUtpU;gbQK)@YlZ5x)r`Vt
zH=geFTAr~uF)1Aq5?O!l9tByN?Av?O#rY;Ns?ju5{Y&aey+jpdy3V=C`D!o4?-^Fs
z7ZjVG$n`|%h$0-vKc|`XX6}_^t>ePcdjlYVA4WNogf96#M#vVK83I(QytI)X4Kj0k
zy_sjq!Zv;liAZ`w1Up;cFT=>%%QL~&52oqO2%BusiA>x?Mu2t6nN>p^%b*hXcM|18
zI<bo^?6<~_Vi(y~^#v~9%?1!9ZG}nYH*CTI9s|2vcBLhe00(A36<KU<mz4*7l{NtJ
z(&zLR7PqwB0%J9Lf@tr^MHsx6u%l1jcT?9Ip7*aY7-e*cu&_UrvXZ}0_w;X?*v`<X
zDaNtcrGqkYWisbNW>4XWBpMAyPhxZxeY@fXR0;S3LL(2Uo8~%QqbAyxeVeutQ3LeP
zi!0j5%I&!YSVH~oRHG~RORNM8hAMIqy)ibyOq|9U6v!Z{m>&KQuqwD?TW+nu^#{xZ
zS`83`prqCtCv@_g>azYYs47Bjh}Uc%G}UB!=EWJSayob+F)SA)0|Hco<X3IS^Voo!
z#$TkcTe<CeciM3M4Jg#K2~j46NC%6zhE8--Ls|Z;Jdk)|K(zWAomN@(gFY{cqJdK2
zg(edx^@|-p_}mtv=IL2S=b<|m2eRKqG~T<a_^h?rr4WS4Yxa<qS6NX!Sl;>F9;Gs1
zI}HTJ3Z`wIS2V~R->vo{5mPhWNUK1rwd+;Fw`Gjbo4F<|e*g_=Y;-KvFglq+r*;A4
z{Fb+fFMUfbr-^(;;r=q`PdLXAjTp5fw`oC)QX_V!HaB5KO5VBdjIAXdxdHey|FzdQ
z4r4syCt`HG#n$#^oPuAmX647jGqWAy%)!X1*q4&`d5B11_f<6@>QV`s@Ig`rpMqRn
z=*5;wUF@<<H<#hh6N$>I;5v`crNgbdmVC<$hwi!9wT{Uq`;O-4Y6QLrLl54*gbHIQ
ziC>!10URAedWRE)b+#1%D|c1l>fI8x@s5I;3*Ux90V@CQWj%?hvavQgzZR#~o!!Ky
zr=`bzII9QDCNxXO4iII)h6c@I;u9oOTyYn$#ZZX+G{g(zb`~rfC@kB_jW?sqXFD2`
zM&Vtw4F83w*w@&gTlA82-iM{adGmls&L1>~*#bv^$P-rZs!<lczB{kh$5S#Ly0s~E
zw8gw|tsu>gTz><^%KG|&5`R?qvQ6U!RR?WE{kgja|Gu&(ADD<zP2q8Wkhu9`!YD9*
zLRA+z)W;LR+!mET*`N)&MGy%;qG;^SD%PAg@%ge31GOn#m9DwFYd@H)Q>W67u`}Vr
zFB}NatVWxR@09fBr5*Tai%$Fx6r{-Q&c;x)Ejg@(TQX)vv{2koLxq;VU4T$ymzb9{
zRxPy$xXIuu^yUBxA8>Icj~j1nPDJ3C&k1&~4^x2o3M2}2;D<0h$#GBF+)TLc$$1K*
ziFHY`fXx50%1E^~f@EW|YFVcx)2!gs+j~vZ(mwDs&M;g-uX?OeNoAWf_gdBEe~Y7@
zXLi$<fY1qMG2H9A7!F$6BZ0#)qMm9bNqn^ET?P7d(PHcPft!9XG&|#xy>yzAPVJs>
zzs{ecCOByNhNs)rQAaPkt(p^hTPld%s~3(%pZR)jMKqCr$~m|${?vT9r1ON4*fU$W
z%=mdblq`5?;Jn+i(yyYjtdVyg+c%poy&#=^UPqa9mJJmFz<_lm6)^h_l#xw5TCCSc
zaPsH;6ejk=7LPv+HhB1cxeU#}E2KLnKP;7jp2ai9nwT_X%76f7`;Vkc2W@ukKZ-J2
zl30O%)d0R3?0c#0o%BKtUGT@$?#IuG*D*uFFwG_>@xPtOuaRXMHqi2ipxKagtuJ}?
zGqQ>9?a_3N(>CBS$Q1K&poEi*;aRo0+WlQPvafdZ*voWI_yL&JfHIH6=pK2?|Fmne
zOmS+t@Gu{Fe9V7$|BfVyY5-7wUOsUO2Quvj&u_i6uT;+d><xwIqqTimUxoE8#bVR1
z@xyRoe(dBr7v<n5ENqATSU7OB#5rgF+2yC9)@Du`<rgmv!W60B&9QG2DWaa&CH}g@
z)B+<Zstv5u@Jj=nZocPAFDrw4Aso+Blpk9?3aTZeRgs7`?A6s6Nr3Onx3B!-dpYFW
zU-RNXtBsMpPf<VsM8eaF`1d-gCbjxVYvOE%{kw_HKEFc@NYD&1u&dV+``XU=-7Q#$
zF{ap0GrH`xdDb^bhszdkZ1(VglnL%&{Y=zo;PkP^5IL%*;?g?G&$qQeiA9enJt@Uu
z90cq>=8To<nSf+Kkpcpeo=$n2RGXJ;vVFyuJZy(6dHfeP<}g;-%>hXw>J?Umpj{N%
zRf4%wPN3IqZOjJd!py}Dn;hO3Mko!MkHM<QJKYoZN5stm$~oe6-#6dsVnO>>3Fk<|
zpY{B_-kNB;6cs+g5kyTRNp1e)x!w)$PCP2PmJE7m#K|f3K3wK-_A4}&5ahzJ)f<P4
z6ce0OUI;uK6$TdSff#@f{=DD#-F1xmr)Ncy!W~Oih^35kTR^2&(7Y)2-BKyx>7s?S
z|Gwu^h!J*6tPI;%V^SNBJFxi<nUldS&{9i{$Ap2e4(lGN<9O2D&5U6(w}8ZU2&sB+
zV`lK5(^UsMI7kQ4K^D;vVP~r@SeyUg%|HBasz#X1Nc{#g2r>6~I$a#F4p#`q`?4w*
z2Bi&IEnZ&kE^h&K0^hD@i1yV<D~=78XQ&HOUM`tO?c8sQhc3^SX%yHeNTus(fUpl}
zckrR}ouObA+^L^l)+9V?HFjapy{20*eMY@oWN5*0MA*X_OPj9F3KdRU{-v~s;cH~`
zzt#b~9c;W=h{<rE_6qQ=L82;7cmqr7ZHBpix*p>+d~qpZuI-Fg6ZL;Q$Gp)Lhb{x+
z<A^z{lY%0`Tt@l!Uw%*pTj>%&;C=b7*ULvUK6gf7*io)T)G1u^0C4)dk*l4!)p?61
z)0i+J4R7~sE)RkcSGI5riAl@r``|xgPq{jWn%D^i1m{Ft*CpwLq@8&S5f~n!%nfsA
z#D5-#_KiwPuUwZ;rQMEHF&U!)`G%J1?c7mwn1)hP0wUeH5^nxpPb#`XfiY@Aip5Qz
zaxStIg9M}4h*>JUA1xSQh8R1wLxF$~c`xi~-Ey-QfcET$0dy^_-kuSmAltT@qsd)N
z!(yZZM`yq}IN1Em>|p2AaW^xxNI-HR*4=1pOnN(Pk8<h~CN0SUQca>7LU?nXWo}+L
z+~%?fDxKKY!w-z39p4?Iu4WMwiBN^R2{BdrNE;pCNZyFu62B9lC7Z^pY5ZKVn)$o^
zw!`zoKrCqMcA}OzQ6XI*L?(#KLN~oZntSy{p(YJlTQ6)~&K4Izklr!w<xqsXe-8n4
zm^dWjx_Cb|%j^osr9VznTQ*`JEL0Y7UoytwFd|9h*<2e_l4G^=2s~p91yOy(;E9*@
z9%EY0i%ecLofP%glt;gvIA^JKjzObppTG=;qsYW#_kX)1qP}hrUt|aL9jAO6O}&5e
zq<%U?27ln)T6wk?erCsacsD3jno;$3{B-?|L7XBMF*2!C?F^e@1`D~mxoc#Gdol~e
z!-y~;#Q$AjB%B2y^zV_yA7?p}7{dWEPcKv$@@w&`#)omuWkCbZq`T!{ist}ZgxRKo
z0JcN7O9{Gnt8mCrs_J*!c32D%t_^a9pry!LC*-uscut5y(~mv<pyjo8mulzciTOg*
z`$i~fbAHAD?WkD(ONWrBhc#ookVv4$kJdsEA18Rj9afqtqiLi@#U-M7e{>XvO@L5b
z`dV%W*SdkPqKs4&S~aN%+Qta=D?=B5s^%*Do5e?3UmAXD2%CVm2OE;CJ?HXF7VrDE
zqXK8@r3PJ{Pfn=`u@KPQZ1h7*GRNc`I)JePM`AI2K_L;#4b}QB_;Ig(4HQ+|wA(5K
zGYxEkU}TIe^tTs85jOgH))KcdKG~xulL04Kpne6wx+xQRv-S21=teNbo!Bby&$ODM
zYo{k0{fP2?+5J?n9MkJB0r8hF(_$t^dxW`h^2BD9SIcho%5nh6m}V70!FkY!BcM(q
z4wxAM_X!)=41)QkI4eAa>qGV*&h}`dW+kohoe&~WqpT+e8Hb2Lfp#dF4Ot7-0DCiJ
z-2VbQK*YbEXt1|b8eTqZBmr^@^tR4`lX=x70cFVV@7sU;j6F0k3pP0Yaxlg)lWMLR
z@%E2--!^e4(JfuGLlekdTOjzU2Ax5QO|mXwhO9TdOs%5RWkIjWF;|Je+np|+{PGs`
zY&-aOpfFbI`JIRqB;Zen*jD5w5o~zPfQub_?V|!t%RX^g0QQpVkFU&hc8GJa+p>?(
zYzp4|QcA$u>!$p#p)*ru=~;L?Ao$Y*GsTEvt^sOZStSfO7u9@J@CYQp7`W~C=b!As
z)zaG@vn~}vzH8dFiH{TlS+f?`CIj+>+}LVc$ZiA+Gj4RTHBddAN#UWT7^=J2=>CrV
z%v48UT@VMbqiX&)ZhFc6T=wPw$9#X!X<8`D0*9=xZGu`^a*0@;)%&UCBDBqmWxRaC
zCmL+T<(HfHcA%vc`WI%muBtQ#IDE_`vr4v*FZw}GPr$Qm;ZRQvA$YoZ(~Hu59&VAA
znfJ((l;^{xxlsMew;{}50I`*WgRs=uwRAA0crClo;oxPyUBGgDlr4aFoZXcEuz=&L
za%Nb3q9N;G34aZpp<&S<*6Oy3WMMKou$z25+8dG_WtqIjbyzLT!{JL0V2@<tM<s_4
z3CeOpcDgZQp3`HWMlAks&0D`hB}jHJtJ~`E>KUc#tMnCfo^gFOgt#9bIqJg*ZC9v`
zl1^!rh9Ixv%1N2L7hlPPfKE?!Krea&C6kyiPJFp641Z*RIgLh+5*_F3@6n?Dz9WEO
z2iGF($Eq940oS($VmDtNz2H=eq-hhxq*vH@r_!T70!P%Nrb@Oe)|Vz8{=3d<MMRCX
zx!_g<jj_T^%feAbnjplq7@u;w6(r`>q|wM;y(TK$%iTKAcuPCAPGQnu6N^LVX_*?G
z+?!Snmb9N$zE^-DEtWZEb3ySvDhJpL-4?mBuqAo%iT~o=N&&x;Jx@D9b0Wr-q;hU_
zv>wR<7s~%OG@8Qk;Un2z{Id8n9vqfypc|`p#O5~yz4I-`Q72*>74hNI=;jgMqom9~
znq8nZRFnwM*Z}myv(U{QA^I$nz?XV;eRen4)wunN+vMzF^n5S3faLw!0s(NcBuSTs
zK(zkE`|>0{%O~4uRHuc*uKio?4CnF;@wBwM(AVOntD;=uF9<(-Mesak#)$Y{$>!U?
z`%&g~7itZu4ft!4>YGgb=giocikJ=ChRNj=WsfZl@OMaD#y4CLL>l^tUTF<SwjsRY
z{z5I{9P$meub*3|vsO0vO8?Tn`zhdrmx1gEaKVfZ`7!WO%|GQ|41O2t3Fdk+!Fsc_
zAEC+L9;tvUG#5K<J?+>8E$TB+N4TFy;I;?Gf|9w9!Of3KQ)WzO*5ctGkiG5X8f{8r
zJ6voygTh~Iyr~bJ4b1`|oXM}%`;b`}^CUKE)dgRj*ipYAm8nO;Af`a{?<&+1PrsXo
z4ry#3BUsP8P#)s3IMoT+nEAA$!Mh6JE2=YTtppDbFM8Vrew|-9i`p(og`4yw2~!yW
zo#>w`GG2Gk3_5Qt0}Q3~mYql@bOBrqX;!3NN8hjDE>rbS8q1~c6LCf}T9B(_(>L7R
zLxTn+Z<dVB@UXv2*vS8;k@maYC35?QrXF|$*R*=~=L*HX&B~=k(Gd^RV>HMm03uU2
zt)1x9i0rw537njEf4?2KyXjh_?>UP3S!mrwZxODOHg|Cay57V~f)_itgd&zc*&f>3
zKxG}%mh%pN>kchmzJqDmX@X{0ufh6KkpFzK$j5z2Yh_iP)&nQ>hsu+c=R@-K!;NW9
zx{vf#-+Y7{-Flh_>)T{gSqSF6GhmN>>*ybnc&h(>DU^zU;#oDDu1%58;_vN6Tk#2!
z@Y<3*NKpS{>H$aYEY4?CqkEz11S~#a&Kz%G`Zki&%p>}a2<iMG((wd8)pf$LNn<C@
zY|v;^2Uw=_NCZsvRRlhC0cAy2MCQT|?ONdT`r(dy+^Ko>fTM(Io^d()tLo#0s~bz%
zR6VJdtwWwF;>VcQToxR9Fb|FFfFyak`7mak3#EW#22m=xGti3eR;Z5tDQuBg^1;Mo
zpp0WmZ9?uuh~eH=cFdbp^#dw)Jzho2$G!p^kpm)PeFR$aze4$@ZCk0c50}qN+Ghyl
zp;KWAy7T?lgSJfB-I(2rY>Md%v6^WfTU>_~(k_N()#o;;iO31yF`40w$y359?BE>G
zBtYD4+{sG6b1nbBh5(~<7Gv#)G!UvL^6YMtc_}1(fg`pp*%RF+pLuzvnB^h1*}F>+
zz`C*h<bG^djth@_EqPt#9y)$@+-*D%F*NWTEJ6WXQEj(c?h`@rt~mlVzky%+vgKmt
zzg#sc9!3dO5XV<raFD-0Lxh8K@`dI^<_;&ypaH(2hnbBLNC13hiwa6Vw|VXH?3xQ~
zUPQs>8AE<ajevDb7Mo=6LS5SmMCE46DNnW??{+d`AXny#Sj8M1U{%Y&$pEwB-7=nQ
zvx)Y+VXCisoCldQ1)uNJF(k#%4f?C9Rts#bmmE72Th9mDk@AgzzeGOUC5MFoT-&%c
zq{K{@t}|enteHUQ7Z1IkrE+gE++6imsqus^(|0k62H87cS*%-~>koswf`qoM%_-R)
zWduPqLDd;h*-o`Sb5vJ6frNx5Xf6M9s2eFe_e^4%!+|&l=w9oFf!>kxmipw6r(dUX
z8azbn@oIAJH*<p+l{rCt1AF6`D1^zwqqKmd5IGL@?C}u806qs0xe^o<&8YPIDr0T0
z;^@ssBZzIHhxp#%szPLBFYSoe9l(lEoY&9C{gjkVG9#hqaA?vKai>bQ)*+~CDE0sJ
z@tI)fL5LSuz9`pnGJ@AnM2P!j&<w0>>Kqbm&o=szd(kqiRLI^aSLFcoEt6{%tmgS0
zW0ypi#!>e1o~>yuA@#$Gpy`~1o^R5<^WB{d6$a1m2fPufJVI5Z6!w7UgA%wZ`lk3>
zb&-wxsGVP7SZD^FdT<;Me`=C@GehW&KcG~9h*@UZ!;H<d>_T7!T1Cy>prG{h7hKK5
zwL<-*Y)JU6K^M>?MF&CQ7tK_@iHA!nmLWE*pQ=bb|5VVxs%sk;ZZw&IZmDKN(U8i;
z{PbogSx6Q#*?4h7;r1%X@4<QTfVARfg<E;H>Ex)(f5Q8@1zW3SmNVyVElk`r2>TJD
zLdHhO$=mHfW&kpuXNl7TS&P)N=a?(a5sVyM*+^PqkNN%RdirgT6d_02f;4{ecW3ST
z60zm4AV0b)pBg>Q6Y9~lx?QLYgixp0LKLbL_>L%XS`p62me>sNZ=uooV0-4`F>401
zqbC_<U5}*{q0mZmto;ZjNig+TZ*E5hDQw<unsyAeS*HT(H*`xP)<2XXe3_E>&1(MB
z$@Nb5r}h*YBML}CQi{4%`v@bQETqVvOJUDXYO!u3d;9*^I(4_V<4AjoVK;<GSU}3r
z@^q25vY0djw*-9Qn>0J3eq^jQQ#<Z&$2G0mAhzSoXBhRiu)w>c1I?WQBb|Z<(BP1=
zCMu#5L~*C?VFy8E#phd@!yH5J!^VV97l49r<s^RjF8cAhc^lN^Qfn?;jT@ZAm^#u#
zp+jscizr83_dt)>6~L)2NG~Eeo&3~yU?S+04pE0pIa|t4U|O^xuRXRptb39;kCT<5
zCpPyal^$E@Y^0nO#&C!IeHjQ;OCTe_V1Aa-x<>o&%3$@aJUKH$qe<+-_F*%tGp6T=
zGn^3>n8bINZicW39g$sFDa@}5`N(j0OcSOSIHUDiD%|YNruR}dMM*=~E_=@vuPM+y
zLQw6>2<Ge&?-e3_W?ua<t;Z|S{dQ?+P;Oqe5&oFNDj#!`rOTUMW-5)WW+Q~b0Me<n
zx_1%^A|;QgB>R?)MF%)f=_Y*ZRyxsLpVv)TzSF;<=4CHIRvria@c)&fzS<qSR=2-t
z9re+Vd1|}p2eB}@f}5R#iJ?7@^|#~1B?2d8ssX#x#C6$!M!FhL7T&Cr4j%)fE=Y}y
zz|=R7yJEzzr;97gqbs9r_@mXf7aw=ze>A_m5})|xau<o~PB_5BY{mQL)>&P9|MJiV
zYG<vLI`l6I&9QR+saIsKa;Hk<;MAysMC`FT_t|RCma=zVPC2w5xOay?|5aL?vlqOy
z(@rYHE7-Zb&xD!Km(-9-^H9S}<(G&?>cX*Uz93iGJJ>M9&S#9{4#-pFN6~4q{_C>z
zn1OvdqC8g3nbW4}q&mg2w|DCIF5PPmnrB)$k!l=ALJx6C^f7|CXd%k1aQJdSc%uzr
ze){VdD!AqMzb`QEB@4e(##r6~D}OlAk)kHxcH)0^YJ>zP>>a)9<fGarQ(n%D6;KKM
zfFKecQ&x}dulQY#bwoPqL@bl-3$W<a)$#0|*!UA^MhX&loHxZg&ciiB*^4lc9{oA8
zK#Prhy|5kL68-7rPrY+A)NRFnA`1pYBc|YO1YhsKQx`rA!un75+)6OC>5$p@?{j41
z;4$3`2m!(LH&P)_>q#;KCm@fh$lPu%5GmU5yJXyR?90!*T_uLlb+)Yx$?egjSIE@S
z7woFG;yDlAR(gB1^8mUbLP_2RM9YajNF&K?EOwJCQWf{??P&Wbpl>M?@@~%>>BAc3
z$KYWm){6JkX6xWE{#>b<$zP)@QtanFELrD_GJC}{d|%>R9tet_`1r`fRS5#8UGbky
zr%n6SxBGD`&n;k6gg*Cs!P<U#Brd$xL*BB=e8MyAl2hJnU9I86Y!1;0e*t#Ng#7QH
zCbC^_{`L}=@X)aK1`!z^VVA0nIY_V9DtJ;8rOyiyZK%!}&ZkEnG6efw8P2##&I!cS
zr;IFO)df2VR`izVd`Q`m3k`4WEnU5POr@^Gzhi&ucP7-$ig1R2;7(xO#;uCbP=!8u
z0qyx_T5D@m5Dku?mS{yv76-h=4cceVJaW09YGuKk{DtZje7_3)1<r>=Jdss4D^>;o
zj!B^)?lZ2HT#X-7N*3PKU2Y9VoT{-wbcBi2h+sgMp*zSdaDVyUi;YnbHt!Ch7-mQx
z)zObtL6tO|ap`BK=af?;TD|ekv?rjV9Z82K^QyZabV;NKPhjyv8-mpn%~}cT0);UQ
zC_uv{)l+(rUY8Xw;xAr1`$XhsbDuKRecTMjMUb;N&}$G^$_1I&dfSDAvmu>QnBT#V
zEujUjeg6m-p&W)8v;ls<dx?YyDloruf256_efIDUteC#&3^@<y!CW39GAiHeQuI-v
zVCAlaLBYjupXWj4;tm^wYGetN;W+rt2~`|5AH@wlKa~Vb-D#GUgIVfU)?5T)c0GkF
z_Ibm^@;{~iq`&9fyq+iRJxhuLGTWjr`u8|WCu3lMxk@Pz#QuhsdDD!xeFfB%$lCU0
zM;>1yOQD`EA6iGQV91M?_b(K!FPwFbPE1B+5oa*29!`_+zgFJ<5Bd-h$#>u5C<loV
z+EIlTMlisLuzKJsayDyf&v)SFL35H;VVjlNzzgO41*4UKcBU;iIy&@;m_(@euGI3k
ziA^^voe44!z7&v3St@XwhdOnf2DpMUBN?;+FscI&MJiTV5XAB#mDCy$l*v@vvdE~9
zmYHrPz6+froP9Xo=hMv_)0(1ufwSE!ph~Ohyk5#pM|C02dtNuZ6Iu)u^t&u0uGNBa
z{byTaG1MsoF4x+d9J!rt$+N2zU+Uqjyb1#Ea`RfmI>soxY*s#uMW1Z^Ho2Z@Hd#vv
zt%Quc@JaFE)a$@k<ic~8c;8KPq=!-;u)+imDojN43TbXlYSm4c>M5hgnbh2q`@4=k
z@T*t)w2I&5hwDKb`~h>9fP*oJrA@2-vb*N0wq0c`9h*BW{A!T{5JO4j+J3A(-Ur5f
zK|Vhz!_K4y!zr-qJUm^bi`X%VFJ=OxEWS`}#F~}wizOT*t$-ma!P`0JPY76zQy2Yr
z8q?vreK4+E?tx=8fpzcrpwR~`<|G5X5W~aO#PmxULF&8QVCOk#hxl5sQ0vse+wcrV
z5^*d04kmX5p0%G3ctVz$U~2}H?3XnYPo~sjRfhZJD8l2N#=}8quND^pj+XjONv}l$
zwWs-?DPX>YT4MYd>gT+jt`<yP<hQ}Nm6dMO%N=%STKTuG%@#s5_eoh_XNd?{jIO2-
z$_1&ZzlDJH3k0$Ldb3D&*3svdbbtk_DCa~WKyLfE9cL@I2*M$h+JDU<4BpQoV}tFp
z6o=_w7NAyWA~~BQE~pr~v6Ktxnojc?o*GS{fqu4wcm#EOzQIrNu`W=ZyzHTG&C_rc
zU(h3jSQ8y!n^(GDfDtH@o+w`m9&FMArx!81%q17Qq~R3O7Aa|bI{xetS=0tU25}xS
z2k3PRBJoKXsmx)9CQV?}1|qv?sO=zZQDMrGUJD<fe@@TSn_UvINmz%<`(Z<vpX#{^
zR2kmy1DMMW0RN+HiUSq=dMd#J(Bg!@BqO&g4j|dI@yv(KBjxBUbDBPGOCr0SBLpmC
z_`KSq7&1sT2eis}oGyawYz5DUgYs?e-g9XqbGJ92zS#6We)$K$Idz`seK8T0+Whye
zQ7xp*Y~yL#i{umSh^-RTm&p|_2rx%wKl@o&I(ShDkTR0&ZYcozn>0L<Iy}Oiw?&~(
zr0cA8-Tx2|7!f$V)5qC+S~kMS__p(9pnvu<Y~+k;PfMsn$Sa#Jho=WpdF2;ws1j|o
z*xw*4(XGQ27e2~cuLmQDfI_<vWbmBxJbig1WLX?Fy32YYoM-YkJ;*Ww^(gQ!!ig|R
zzuJ{IuGraV%fOHhNLPTnq1AC3z-e7aIxrEDRU6@v+@Lx-Jw4DAF63r+A+A->G|ix<
z@Sn~wLh6WSoZAUu&nwR<l4-Gn1jnJ}z7D?e0Iw@*Pm&N!2=L5rwi>Z3-d)BLIpQC&
z&Urv;aS!Av45U4iMk>%6Q8Z|QKkRwg2;qQ0)a|{ge`_sVt->*(wBxd)KhRHZyByZJ
zDaD9{CDNzx9qdH83(9Iv@6}6&MB#!DWFjlzndm{>!qP1i1rub@08Ze*nB3m`pieHm
z;<CWt{Z<l3aSP?Fm~e2Kl!HxEfhxf)i*Wg_>L3lnmC6qH28Q-uVC=_PceOmXBj2mX
z9mL0VHU&DO-xe~^>O)54k<9K^XcTz3UQ+!x$3W%#TN&pLaiI=gh`a;K#&HIz@e=^d
z#^_nd1Cebqw7Py30*@l-fs|?sOeCMdZb&dNVOR6@0&*GJXez|M%{8J&mcFc%iWmh0
zAP6z362@B2p#@vNwWsx>wXH%`(TN`S6|aUYb8-JkK8J~mTj%TiL^O1raX+r1>c@$;
zs;{g3&-g(u9)vEuMGl;Tm-Yt;a(Oul;xelAAe#ZzY*Sib!OFx2m5(>MnJ*mAy$gv4
z2>*9=h&<J%(m=eoN55<{<nl^RgJ<~Zi$5vYa+5!|T9WJ8VMB1NVu>La!IY*foOA!H
z5FwXf9sXOPBr_d5Vs`^c*M~^=MSv5az2>vtCuHCO2@?=rN@2j6y@8JG=)b^9e~h4p
zz3iZxnY3s1FHb2CirKf>GNBL1igxc!k_o}!(*+l+xai@5Gpw;u#1=pcp*6QVB=FE4
z0Rl&^jWK*j@xxSUsRdLA?fmqed3J21=z>m0I&5iZ(#F&1E*2go*fIy?Ze<(4yiQQO
zQdl0#v4w44uwW5mT1=U)zRS@gj2V%g%>@>~-`H_p1>e>bzG6BrAUugXzaw&(cC<Re
zIv1}3RQzEMi(#w^S5ye&a8N}dtA^i=_?ck0k;4ABwTr28YpX2qdWDv&cy-75BBg*Z
zDu|)zGyvDTm1Ux!yeY#o=`{wC&gjlTSKeOaU7+F`Q+NJG5~uFym7FHn$w-jW72t{F
z<uia}lD6BM;W$P4mMh*!<(8FFQBY|JOTwtQYDPF$`l}s4;y$$Q^K*K-Kx2;|cmX(<
z#Rt(dWN)fLS*w<7>n9wbUg_mo1cglS`i@0=V~ajRYLHrwpO_V5cfr>lbEq1(emK97
z%`rDkL=2|i?|HOCDEm$J2xCq$5tfYkbCGd`d+D4uKGBHNk7z`?#9Dj)vE#yly<;!R
z&aS&F3I;)w&_sKf3h}v!<~_mAS-<}S*ggQPH37N7bPgyRsZve{2G}H*`?HHo(=5`x
zH+*FwCqeiC-B)_0vc~wY=f;-xHAJONy5o1nbGX4CdRm<mZzQ3vHjpy$^1P^fh7!$A
z7v~_+-Vw(}CxHZ!T&tQt(qDb-kUCOwusy7dxjbASv@aGC5gDlz252mWhwFYbwj*>~
z@Nb2_=-)mK!FIMujTBX?6^Ok{jADFHqIy{|UUM3MW>$FJDW>d1t5}{-BoM)4S#mAK
znKrQEurjWJLb&}sc~@^lcT3bTgmC=t$hEZBBAa0vWWwcM`bZoy=#_<W3hwu}^QXs0
z#tjUsPW*rs%HK~e*h6cYs{@?{v99HdRr7DqB+jB$_Zu74gYb(5>V^fyJCr2l(Z@0I
z-l2x$qz$@-2N^9D+b&Grfq=Ee+uA84BqaA%sw=r`%^;r^dr2Vsn&r{ts8JG2TN$yB
zjLFM9mc!vB&TO@oX*~}wkNB?TOy40(e!0wHmx<0|9BgURW$Q`#INff}kuUN=S4j~=
z04C75tdc!cw3~5$_|qmfisQ>AVMRU~pVaBWIij{7WCo^!-G?1198*LWjI|5iR7U=O
zgy1_^GipWPb3kaQ(QG*+`h9Sj7r`1j?HSO4VvxYS?HvzlW<r3gEZKN{US^-z-;iR2
zJhn~MEe?pcxIJmV2qnzDpsTlTz-wgDGpwFw!#vn%xb_S%?#C{oAk*qVFzTK2!sAI!
zzhd(c<<0c5SKy1RPsZRcC7j}`<IF@x>@g&vw%5k<3^LYXA0EqC*cpqZ@{8Oni`*uU
z0Ux+%P+6HQtv0bw`KFkwOW1<|4aN~bjQD_gZS8&pIyVbFab16Cd?VD8e+!R#1EO9z
z(e@txb!#DvJpI0Dz0vnqP3Iig9l*l1q8>MduMtEmoWO<FSW)q(HGO&xh^>(PaT+TD
zo=c6j-rVxyYs*S$sgauS;9ctN3JHH?N<2gd;bmYx8hUayAX&?ALKx^<`v~E*8pBcY
zT&Ltd^Y_-WIDabE@I`5b^C!$~iD--K2B7(3{-4D^Hz=9iz@n${V3Yu)-sm^)$tE#X
zIZ$zveeI~B{$=VTnRGM<om4tR>zPOSWP;@83U)wY@}L<b68;XqA<<T%n@5AjB>i2(
zy^TI8R;U7&m~Ms{MUO?lX(t|Q9jxFtT2+;=P|g7}Cw*<|C$}0#SqYc-t^ZhEo^zFr
z{-$RFyp<a)qj&X6e*d5oA%I@iC*5)cW;wv7Ui%S}7w}o~iL=Gqi>=eg!p(*afe3g`
zBB#&F;48)9Vgj^Ox_!KB&)&)?)DVMMM2M47?y2zDWIjwxukF4JxAoKf0D-cNMME!V
zWUow2PWDkC$)`#XHdaw1)f<xdAfydcSks>Va|fw_(=<gW8iUvKu_YGNHt+2N#zZ{+
zG_eEn72<JoxYP^|2Qv^{!3HrwjVE+ksv>lX@l2fL<S|D=f6%z>;K(>vtiEw1_nOFn
z44O=pl5}(dv}S1YkgL_ABQJvK^+<Lr)<;7dVO$)7U@TYdVc!JgwTJI?7cZK<$q9^N
zY4d7?!Sq3v@9B(@wjMPkHm!<Sk2Lh!D4Axfo;h8llUv4N6Z50YW=m7@SG;Zy`swR>
z@2BPV{1sa+W(Xxi(=XqMT}8SsQf)ksnq$BUkhn4Nwq}o8JqBp^pZ64$7xdfAayaFP
zOP1t<Y_;DpCqL=y0BLONKXt5j3jB)e)bzx#@P1H__Xtx)KJ#EJtNj&Zm4J{RhsBdE
zBL$)B#p64RmamUo=amqGOrEyO%UV}pim<5T#%Jf+{X1>Iq&kzESkS58K$@lR5AQ=O
zPKa~Sg>1B$*yM>Sx5zdqA4cQKv11t&#$XDwZHscyoBy-}@XEONW?3=4LP0A^-Tlz1
znvP+eFHK2FFx*s-NIU77Ud%p_0*NjZ3hp~{@1foY&IKxuCK83#7hM|8B|eAuPtVpy
zIoK_Szm8+NeMY_`(CWaWq6)NGdA+99!Ct;E50$pXHpCureYjo~W3>du2sf+jCB8RQ
zi(XTpaLNG<Xb)`ypir?uoo#33aK<yxLG^`XOewazY2aKMpPgEtf2X`WCdXH);8k6L
z!B2hZ9n8=fO(t0xJjpnOf3*FVk{jAcM&RvN0op-V9=`K+*&wnGgWY~1%Ux*|g&nM&
zv>u%0IPx0Lb1O^}ZU4L)t{|=cnN~8*9Tusu<N=|)oWo}R))OsbA(p+i*l){$zF!b{
zw)Hf|(E_AOx1!pN_2-o}!V_T?QHv)HK3x4H4c$tr-}SK|dH<0ezTI>bLY~bGb*=PU
zkR-6j9c6qjOTZ7V!i>y--m0x-e>>X2{x^8f9f-G<;>#tJI6|9FiM99&Z6QpOVCw6+
zyBOvrHKe2X<i~`XFvGH<P(~v{uOamu!8Ost$h;$tzctj@$cICYx<25qa?M?6ilA@P
z`UofPhHY%Vh*kY^kvuN#3m5Oz`~Sw+_2J1+^5Zyvj)c?edB$lk3}s6<mMDPlze+#u
znHhCL+gmXe<5x3pvt;WL28k!*1BOG4w$}Xh{9<tH54cBhJ-NeM+I?;YCRVCogQOM=
zZ97TLk^^wn>w=l%I3Fp_k<GhNsJpr6jqPq<RjpKH?v}VV56HO>wStK1Dy##g05Jk7
z{yFG&Al8r=$R1(dl>@`4VBH0)A3_sMO%g<G%ao1!7tR1?4t$Zc0h;kV+<3b$*33fB
zzsMTDL3+o8`ov8C(d~*BYiAPfK?Mg341`|3a(J3LqCmDZ`e&Kl#yC{+^kd~8msL>9
zRllHWUt*?l%8=<SrT2VOs7n7NG=9h_%&T$3dH1F)>4Tmax)wY%(aNg-Fu-M#X6)d`
zr}LpM)^H}Op!qOsohcd-&@-4><oL3I`Q`q#`L%fYcFc6#ht`KS)ByKZbHwXKn9j&Z
zIf+xKL<UAVxv5KUSRu-rWI&1AgB6yDGO%8@gqCcz9?B!$z^KA2r!sRkwgS7cXibHN
zVW)psjg|J!2vs)0jc?!10OHTVrzt@V5pmH99J#FxDQ_-dGttxeR2?3*Y<16*6uKj1
z#jjf#Ye)wepn6!snt|DVx8&v*2fUU*t$;c5pEUh2PgLU*@=0>0DXu%G;2hSO=9`;9
z0nJ`zJ4%KxEw+2mVqI<!%1)Wevk@)Ub^z_nVBzA3F6&A_=sI;|g*jcadn9w+Fk?H&
zZN&@0Wh+4oKX7(+AVZ@hR2&+}nDB7YB{xzeHE2V(4i$y(uMgX*+wT16>qY?4n$;ZP
zKDm0g<3pX};Jd)kxt&|!wtm=IDOtFHnPQX)b}S$EC=6RbB>q+&sj;VhqzrN_S$PjP
z6Mt3>i_uPAlhpsRBB4J|<G3o|=~+ED&0rN9u`~Zt2N0s>^P|luB5oOhl7y`1k96Dl
z{@m>{d?MW_=LK|6v((n<x*)+F+@qO!NAw3-n<}ewujmt-uk|^uWKb?>0R!jX-$&2*
z$j**mtHmO4#l(xVeEFX~4MpPVBmiuO&?l0&eX6GV^Z&6lfIRtOA>mK=xhWjh@FF#f
zXq$l=Ghlqk;X#9WRdGql;d_7sc!H!63(`BdV!?%J%+E)ED~2&idVjA}yIm}Nsz@}U
zWKD)KHFQP6=DgifBOB_h&~bL_gp3e)&yT~&jvX2;iwm;RAgXxUrxs><dgghC$Op99
z4D}FEq&N5tY7!`~U#j8sUX*ImsG(96R69Swya5Z2_4sGZ@vd-c+?`0rEqf^;wn@e%
zh@C9TXDN9=1=hfiVz%S@#oI(BT#z2HtZAJ{Yq~Ms6=Gm~1QN@Mxjr_PGD{@A=YaBn
zN_U$-?p&gsZM#g>WL{N`BlYEm?b3|QggYNg)i?&HO>U|uM93JSXR)dUc~lHQCAcMk
zv><402`=C_7*|fJ;N6=wF=lX}vcYoAiFl`R+wUOgS&?axS+}rHjpfk7Rs20>AQD-$
zdFanzj16k>y^`ja@u&Da+&a&kYhF0e;J*!k4V=Rqp#Dmpp$QLv)?l(oMAE-KZzKC%
zbSB8o<%>yF<GcGK0xE7K_oa-2bJE5;5f!9aO-u(<Td1bELUL``FTXZpTl_Gl*g(i=
zB~7%-AL6TzF;L5C&O5*sG5Qg}HAZLE?L2|Nm*zPmcNC-xV5RE1ErlgzKyj360JE@>
zd`H#X%j@{lr%7a7jRtb2%Jn*>@f`q8+QPT>MuDcr)@{8&gieqGha?SyDec)DvOqz$
z1q&idirmK6{E|g*5D_iNcao1fq9LV}+&F;6&+bgyvm)|}On4f$5~Waf=>u#YDdieB
z8^0`O>QJiMp+G=T^ez3=RP2m&LHYIXZIGVz*(!XBb=9_^)Wta~JM_U8;KjJu28j&>
zS$e+t@Ki<f*F$|#(@z5=Q=Zk{*?!^)Jf=aZHKQrNgi|VAm$;PAk*2=xHp{wBPs*U+
z)xA_zARRx?_dERb4ANE`Wz|ZElKC$?YVG|C;UhuLmu>XHO13m-w&huej8tadef#mc
zlk9@eag`rbGXlc7ne44jl%qx114db)OW38Rv-47E?-~=>gn;8-=UcUO^fRptbT(pz
zLW)Yo)pdjcx=lWe3$*5CVzEijrmZ}x%5tBbFd34vQou}T3$b^OkeY_H%Jd95s~u&t
zgx0e_-P=-X8NU#sX1vwi_4w7EzRj<s>JiLRe&MBmS5a_8O>}s%!C#_n`3q2<@IKMI
zg1bro*?xPNbdsm<)AmJAS!|y$!P+Dcl+D4N$$qF~H7bl2c+h5Fj13`2rKS}Y$C;il
z{119cO^4H_7J{(1SVv%`6J`tuoO&VOloV`2^8Mxev6fRFNHM02V~fn@4VZbZwZCoj
z4fJ4&Q{e!|b>_0B(_o-D9<omH$rbpXDXKDrDDX3bhPL7b5=B=D+X9>(fNC7oL}6^I
zxy@Vs07$fuAB{>12C=^|&<*`xHkW8J$U8!*R9FBB_W%6wn*Q<+M<5^|U0A;s$W9K#
zt8tMg?B@nDe>)FFET`RCj}VqQl+GR)6CS02rykFAYAD#0KN=Gr3>L=cCSuN7VRmEX
zq&9Xh6>}wu;-FBgMu#Iqg&dXEXY2oZcYkmD>ar}HA6K);t(tK0>yQUJ0y*nJIN}iP
zg22CQTegOzaT-XdY^j47^RV?1jjJodW`geWw2x0C)wzz#mojqpG}IbO%^l*~Y!NJ_
z=2YLjB6&S5Ll$ZhB0lq2d!;QEORL8Mk%N9ATQ)rH!}t;&5OMS+M}xPRSyr8Ni$moO
zG7K6$K@<7Zuu_nH68npn8+$guEh=o<x``@V*;|OE^M4TlOo)LJ<@jXK#=Ayc4^J5R
zU7k)!;|1>-@Ct8A#?$4W<rN|#^W%U@PUqp$1lE52b_vSQiEnXc5TdiuYDPBY{e<s$
zBEFKlYhVStCY_PbA$^Ka%{4b5h0SF3o<|^iE~t_q%d-W?)(mWfZgIC%r28f<f#eGj
z;uL*juy+|{^E!=Bq7bZf&JbKC);T1edf>9JS$WAzL1lJJ-|+86QsfkWIe$OYF&iX@
zW+603`%%;khhjJhKVegK%oto4FOd5gja#K%<6)0b!hg*IqMm-k#yhBv?hw(w<~l=`
zUzB~cI>1WezLH;WL?%lE(N2EuSx-@<Ldwck$<<&`=KPelj?tiYAlzBhKKqhjTs6i(
z&pPcU&n*AwK$y~<CIu(8(Uc(WBM*s&b!V(4?*&!IE-2qJ0E2Z~DyH}Ucn%-e6S0FK
zyqf?dIvGaQRd`NW@|g{3QeU%P(Y-Gbt;6<lAVR9qc5h(>*sWG(9GxkuK2nA?I=6OM
zyPT(})5O#XhL9W&XUn^&>7<*Fg9a1b^?(>c-!hioYqt6G*mtt&lbZNbGd|uTNcS1L
z91Uunb*HA{;a>JA%xzU2EO`*|WaEtbE49U!xUp-^%`*)XfSe*0hq=y{mzV!lY=Hy4
zm(qF>JD+jOLHujWPaFj4=YRP~ha(Ui@Z*#!T^F60Yqqvuv-x(Mw~{{<ck+IJTAw>@
zZEH9Lx!&ADYs&2lzFn!OQvp6V7751a99=*}_W*;;%G7Ar-cI0waEFboZ<BC|Jt`IH
z@6F12^Ld8)uP*iAwDcPr;02Au>l{-d)d*S$ptq24Ef>RID0Y`z6azRio%)B2oic62
zvXmUuee38(f}*5#e*2n9PgGmTq^1xFLmMwoh_QlbWU(EyU;+VNMpG?_NJYFLM>L>U
zCa_5ZM$r{qg1wip%m{BG!+b)zGQ2KBxa=<IvGGYi^gCh2hn-uwG`}xbqiw(%6o86c
z9Zmz;5Jw!mJJ@jo+T$9qG;I=$)z~eY1$@G_e(HDZYC}>tuAb?Kuyw`}clNxk-@o&4
zT_f-_XO)Q^dr8NwUkyCN)qz3Id}Zka><_KZK>!cTFhbYThwWuM6^3iF|5nOuc$N-x
zns6KBB#*n51!X4P!ZB{A+<tSP!A+ef^ADnrQmP+YUs3*&Y?~Id2e0d0-*%<lqK(?{
zpC3nWeh@q<wDK%qh1jYQ34j4soX8HMBpH0d=XB?0%@%mv$?E}_CpXj8{u^`%Z77rC
zV%x1ih=ip9**?TAJva{@OF_q;2sGVY&0<&36?iiJ8c!K>HN0^>i_%TdtSmh;Mkv`o
zW1{aujXt_%)cMr&XP5#EXtW5yQ!CN#M4PVJ4@@1xh~j*rU7e61C*}YL^AD1|X=HL^
zc7uVc%kP1v57&RjA6Xf}Am3nD;?K{lDno~da)rU!iYQ+-y{Cq#7U%H!UbotTa+5cs
z45|7`*ts~MU;xIxVI9XxI`PC|YRlm)dD{yqWs}3WS3(q+5a_rV-j^%(l6+}2F?i#~
z4>5qZCGsa290+8c%^!7nar>cSK+~)gD~k-QO}_)wKCesV{FSFG!aNSYxeXmuRI#Lx
zBcHJ3N#ROpuA<!X8nD2U*_Wc|L!}Gcgy9bf5>F)6Le6eq@MSJKDb#MP;(?dv43<;R
zit^Dsk?7@Y;+f$ztV;A)bYWH-j>WOvBXA8nq(s;t-gA7ke>hi$IS!1Nml|Xs_u)Hn
zmj`vLBM$pkzwr+4q3TneXO?1B8_inVY)_x4N>BWMmu(vB_{UHrWuPdqqwO2csH!PZ
zAt~7c;#U3=GG7^82{=#fr+LR@KG<Gy?;O$KsUB`LmZBP(jI8wS8r~QKFb3_$HgFlr
zr#;NX2jr&qx~3+q^ug3w6$DNPu2(1~60eOC8Zg1_ny>XgYV{Ey8|o~(M-VXi<H}*+
zbQpp6_R{tqgdz5gI!^`aa;6bi@Uc~#A6Jt~OT3}_YWnQK>H5q&g#P$X!P2NfAJ)5V
zR%qVBB99Uqe;gaC9NQdAd1z))kbD@znKkqK-wzx(65lxk*`|<43@GB?^5oxrT&TOJ
z&A@BX_61+r%d(d?8I?0kzI$erZvoLyl4Kh`9mIW_q+pxNpTB7^%D?l<L=%Rtx(HGe
zbW^0zI$Pck)uKbCia&NELTb09yP50sLLV9IB*#(MACxk-RRxG*E6i38o<J}ZL8&fg
z!_bn_D*W4jj13g4M~ws(0@+KmpiQm2_|H~IdB0iyjjoM4P`bWG<Ad%*LO?RxM%C|k
z-kFxg5l53?Fp06gQ#$|qHm*4q{OZIXn`U9OR%8iPd@?Cifd04jmxBv<`dZP31$f&|
z6A4kS>J2J|GSG-Gqy2}M$Ztji`#@2rUCr8YK%b{Nku83WQU@JwK7x{AtzhV@)4g5(
z%Bb4$AI`N&ibqeFjHXpxo`FVZJ9S=SCv|U5Qh~Sz<fH)}*9quR4$8PLvZ1E@!e?7w
z@1ELAhJz-TN|SZ-c*W*)Z3&})ERzI66JD+AGuW&jj!hVfAtG^!d#VoTF8(l=pzJ~#
zZ50w4tV&+&57@$@5+Mm53)9-I_ZCIz)bbgUsv$Y5{`JEYbCp-g=(7GSH=)S1VA-t$
z#z;&VpN}Q^rUFXqn}?$_rk!}%#E?h*9D%8<Eabx>V_u1TT3U}qsPHumk6SsU@z+(l
zha6a!v8DpmQWIVUhN@hmeY3<8O7V+SB0>?Lv`JVhicE!h@Zhs?50aJ|!#VU6a7htm
zDVLwoDFH4nDh&AXuWc>kLAz~+|M8|jwO-}Bi*rl}?f`sFP9LWd4VxiigC&l&S^bH7
z%f!t2#r~ht(9kKiX)obp2dW&6X<mWu(@lW<vDsK6z31)3%UVsk8_si0dn7`!frvH$
z-vHnEkWh{Sm3Beh*=`E|+ERvD^ZL_~4TO2|0R22p!IegtRtGb0V9G}_AEq4wOizz>
z_T^8JR+6%G-8ioQPV|N`9f1~T$*Osytbx1(g_W-)(_@)}VZyqg%d%EKK2YIh>kz0}
zt(`&Xi<Kj`Q!F5!8n{!TyzG3)p!^IhpzU|yH-;1ID3jos5=Uiq627oYliT$b`A`-<
z>cU9}X8DDuhp-sKk!-G~QTDWhXxdt87t%+Iu1b}X9oMs=_xC^n_a{fo59~utfyTj}
zsmM8mLR_fzJYf@f0u|zS9d<y^28p!F3R)FGKsnkwzyiJSC?a!Xy1m_^LDQ)(s_wy9
zt9pqN(ekQO$R5<-7X;-!!+3)Aq`R2(FMi2rML@yZ217sbUo)t(sTgs*xtg@4BR})|
z6o|QlaQ9+uAM8n6EHY<}I=&cir&G*EoZfmoXHLW<q{Q+Dv)GTLr}cM7ombb*wm3?T
z(rGL%`EQn^y8KpE=T7t0!KP*nY~62QNm&ygTHe+*IY_>nk6N34d+V}~_9dZt8}dH_
zF+7~|TEhF6LoOFE0hNtN3Usgii&~Ilyo5{)NjSGt?+555w4x}47?|Lci217`T23+<
z93QE`a|c#+0bz-wAo2gMNcosPL-a`0Cc73C;8M_08iO^_qFUyG?ohwuE!RrsQ?<^9
z3)_nJq<3)EQ5Na(99i*tiUxPj>0ns`VE*Wl@T*2`QaKn)YM-&@;@mALEyo4*umm{V
z;ortgfs0QbY7S_wYbmmNl@kcEpe*=hTOs+gV_8H`zxTO#X<5?B85>sGLiGd}g)k@g
z!OKZu=;KUICk&$Z;w_UKigWBG+KuY|3bo`3Ln2RSpT;efWq-;(Yt9P()+%vb`a7_#
zv!6JHiWg13nsRs`v57fR!}Ur6Zc#^6ykBzdZU9=fUdu%ehn!1_B2dN4x}U<U%acEH
z&kLV%29>Azw$*O+tx_n{0NP<C_putg^lxLL<@u#B7s@Er-7S5z^8#n#W{7Fa>E%y~
z^qOZ!T#9$YT#&2_Ku8afWelDtl;L>N!B`a&3%ZGmGre;1O9f-3*YN9}5k3KbF_@S?
zj`<pK?eV2NtU2CKrYO;6K%>G5H9%HvJSnAOx^?AZCHmafeeK>Bad%{Q47>%uL$l)1
z-J%Aoxom1327gu#t4u>8p6qG-IkrKP?XqN5wPDO{&=MosW!rX|d9vO>FdoqDN|X8p
zs0U1Z%ifnU)%Ht<1R_T4pv}aJI>&Sy0pk@WzZ2NZgsdXtYN%)RRh|DZQ$f*kLGJNJ
zaxnzyA_Lb~mLS|EqikiCdE;sozs_f{N(=(O**ePw4tWYKt<__n=_y8n+%;~3n#n64
zwk_5fDiZ$MEy}LBe(FR*u$2hUHje?l#jInRk~<(jKPL{WBN=s?jdXPqQ3H8_Lo^qx
zF5NBoPy88jB}5UcWjSyDryj@KSz--<S~R*Zq7>EQlDy;VSI3PsI)w?iUjI43UNoS$
zhZSt%wo!?%2!go?6VXV1k?ZPgAl(HVR>9DkQlW=*H@#Z>Pp5Grhl!%`z}%P!&$Ez#
zX=EjvQY*nkyKodXxUoS#2+{Hv28Qofbw~MW8EJs5jgK+LNc>6B`xW!CWwASNW@xGR
ztjv;?5$8J~U)z0Pysvv&Rbc#ABjBu}BDZKG9d%&oRuz44y%%_vUBHCv*sgX5qrH5C
z0a|n_8vB-CD$xhPdz7!+Y!%yBW&$!nw1xy@OiX$P-O+}amz5FncfS~`ln}~g@5I;5
zeEeNeS_1by8q)DX^(E*>{*Hk~4x%C*A;k~pAEKYt@*&~Ia;_O@&QoQM_(t$OWFpyh
z2HCaXn;I+xSzSQiKFw@`de#G#uYGn`7Wluia&dn$Ii#_$^PQfnXD?N}=w@|G=HfB7
z-TRz*9CMEqL6DACbA_+p!)q|f?u%H2X~&$GoO$0~J<22#K3|(U-eA?_Z7}IDn`jSp
zCkG1K*iI!09-t-_)gpiYVd2zav0i>Hf~3p&wtyxZenRBW*r=#s(s{l$+;R9V#1i?y
z0h@qzwj7^)wHkQf`9}ff$<?N9iQh&5eqMIVW-ws%P3$jY#J!pvsm}gv`Hu<2=y+%D
z^6Z)x>tk$5i#DTuJrC<9VqYFMg|xZdMUs64IAFDKwYuz5DLQkv$9Wa+<D^KPNYZ>4
z9!(-3`Hs{oDysuu#t_9SYt1dh8&)ou^xVqd;{R!2pleE<ex101-(x_EE-}4ak6hhN
zt0v*IBx&FhG6oJw-XWG<DrkA7_(C;LAH2x-vO~C$U}bdv_!f7O-otvr27L5AEQX<&
zNV@;99emk90$pjSGzV&8wRQ~uaC09Zg7RYNx_utpJI79*72_SkyReo#pavPoN}(Er
zJ-!X0nDG^;Wn93DEW^zOb`Zv$ob=AhP2*eAdTea!EujVhb;7iMg_s0%K;+W(?ur%+
zXTOdg*rY+a@uM$Q103a#qww@$3gdm&Voh=@uSa&kQ`fOC_D6!<)HZRZAwD<LU~Lhp
z#}n<`vA>{EjnnlQ$50nr#FZrGU=rofMQt9sRm6y>93WMs;Ay+y%&JVhi@LVn6#b+!
zuT#*Az%J405WMh36FZ~T5|{l$3BL|LSrb{bl1*RZT3LW=mG?~jZ5MCDsOBE)vzIjb
zn5WbZ(DkOVn4Zf$&t$}UT1cV;SN}9Q8K#^H7Irkx;qGxBAC5fHK97@6zY@gNrzBC_
zF1goA6V$8jSUS}Y#GV7!>=tWpZr>h1QB(e~j~#XH7xH@|7CiuKn2d16vSVG1bu?O|
zFU^tN4RO*ihjI9?XJwDGE;2&*(^|(${Zc1ngl5GTym9pblZE4ZHqufk<kFV{-_eM;
z1<|W}+xR71ehBTW1g=cRkB@o7&$QM9tRl;jK#N*2p$dDb#mpMmUj1xZ@e9505Y+Em
zF_6FZ5u?a}5tQB}OkX#Tt>J>=B9u##!=}(GHY*4qFeAR&2dGM(k%lE&Ox4urCvJ6v
z(*?%j%#NQm?$ZSL9Hgd{lIL7fMqL{D#Bv9`#1kotN|BlMx=(akCv8O|Hb6T20t{ge
z^XW>*9ILbPeXgecc$$vFBLQp$=4u=oM{22KvmJ}&GI~3W#Cl|B0mUU%<sg0ryFg9u
z90aFio_4)3J?vDKDmdTI)yw<_Lupr-8ek*G6RCmyd;qTk1lJB7kLr&-6KVmV2NpT9
z9}(hP&Hn2#LEt|5?$ZrNjhGLS8Q}Ms3)2-QihGl_MkC1m1{?8p*$rXc*Qx}Pk%1GD
znPz9XqWYzH#4aZiZ;<}qfs>$7#q@Q-B<U?u=q~C2M-no`KpPsx7S6QpT+cH2fD*WC
zqM*>2wT%>_+`slCwYMJ6t)0~5{vnq(tc}5#+9yenD~K1*Kh^5DpZ@Cpd)x8Iss|Kp
z%We0-Ma9)p2~7%FA!#zqkz3`Q4;n9TXsdsx!|xrm5fXhkydRPzhU4*~2;>wvT*+5~
zH#+N$jIivqR)T!>qP;cFo=uUyR|mG1t)y2P(CbHMkfB6nRw%YuQ4mpR@C!@LC3QVP
z6ln0CQ2|Nkzo^jV_BwX}Antczm(SO(N1<(+cvdg~M^;`{Cbbym6iIj9w&@Cb_s>8W
z)leR=iR*z%3Nt4oqdXc1UZqu|Lv*yhF}WK3anrHrO%KA&S8Eho8D4Z?YZ>XPlVoIF
z>gX~p-fovhKyst>l#BF^8gay4MCyt%toG&m2wei!<>0Q@{tZ$|o0BsHNJFK2#5{{x
zH@v&q&0eIJra6S|4Ao>CwG8mQ<8|rGC0{~iYo<+N4qSR-Tb(H86aHCbK?TnlYfE38
z(yDcMn30j-o<T5A?JX!-oHlbWa5Dzh<2`xhqo<J<sf+CnEp44WHi6R>f#+&RbMvJQ
zY)+s8zONGOciV4Y2!rRicVr4QFU!XF*~Osq<al`J*n4_Hc27QHT#uJp<T**f-;;W?
z=P_xlH|MD+fv&$z(xKx<+4NXv>P$(Fqkp$!v7+|InR)}*nk&xOF7zlVD;9bDMAEz;
z*m3tLOf}B?2kvi~wNJvcLJ@Qt2UwV%{KMSk3nlwqj2q<de&=*(HhaNt7v;jI6M+>8
z5FqwuzT+-;9HcdaT)Ds)LFL?@!=CAuU<lvqEn<@%A;0kMZ_7J$`3uO$0P?(h-i4En
z`_scNG1!bnT-LJaSJ_4L#^6?!0XPWKIZRvioDUrt9rwiRejGbjhDvZ~cwHRUjL#a)
z_r(OJbf9_i{IDCZA?BQfWXh+I+FEi&l99w=mJ!ZiX5{^AN?1_7)cIi4dxn(WOYp7U
zvjI9ce{8%fG~pVBdJtd^+%%Jc(Jh0t-PWAF6*cU1{X^tiZBzCpXK88>aj@CVe<4IV
zt~uAk!DlkHP3KY+ts*0q4>NCQKS=mIMxX`h3pNL(n~^ASj^?MRl|m*ze&C=3LfYlD
zQ9hvC5Noq7+X2(p;;`Pr_9ZrftedgcNv~l9Bf@erT)F90(+LPQj3--U%9Vg3*#s)I
zw)Ik%0EyE=G29<LM>!YzLD!yG?l^~G1;o+A%XplZ2L{Ss-X#xP55X<U?n*m)QPdyd
zJR-ZpB-{1!NlwJQHQ`a_(IhT1dV|M{jHRs!V3YB%9&&?^tuJGLNOkm7n#tqQ2cNlM
zf9ksG)q!@UfuTdBNQRkYuv0^h!NS4LLHL9SI^;&W^hTWyl&|fiaIE(K-Q^gZt=jnT
z=V#DCuJ5E6H{Ph<q&JDMCsr%_wefQaYHhxQQ7gU`2%auX(E<TpyoWxGS{RXM6mSP(
zPx|B1us@5f{P@AjbFz)10;dSy5Tq(IhtvsB53E|bEb>QT7{5he6v%&k-Yk$&T@Wg7
zIA2+B?a;`2su99pREQ9D_|dTM$Ktivo{rlO>i>-iHe@s2bMQH3c433j1E^*R39WUP
z^YM8!i(hBHpYCLtDE(RoD`WRxuF+R*Ufvk^Q=)B3lluKbU+_MB^qgl5Ic}@-rgp<R
zk-vP)j*FrK@?*SdVGq_Y=mrm<;mKxUakRnTwa9LtC%}VBON}B+S03C|fME3X{0E$@
zb<&Zp)lUU>pWK68)T~!Gxsa{n+*iAa@~imG^$ui3+s2>iFLD8GzoWa}OW{4XmSVep
zrL-+nZ3&0;g{Ne^X6KSb_2Jy)b4RPC_8t_m9i)1z;J@zmjhBo+Aab|oluReJQ|>>S
zkU{|;yZ3?H=Bsnhc(T!jz>F|T&$jx1-|k`Ij&aOOi{jbtFWl|1vAnsJ*5`p`7SbSK
zJ{=_}ALV-SpPKjiFTPy~jWw_x0!eo|LCTEnnp*r(D8qj#7?vSQ%rO0ncchwb@Nrsc
z_2a;ax#400Cl`>Ct4!#rc2QFwTYaAzV|6^SlWbe4n_6f>;5!)*S3ss0zA*2u4bqg;
zfV~=qkhAd<j3L{;w}+mjftCPIK(N2&!GnZ6^|l0`o?`3`EcmZGpiFjG1$zVvDs%p6
zvHoP|hb&yb4gUH>v@Ne2YC#z!gdR<7CjvAp{o6pGH>&b<VeOL^Sus_;mcvLwF~8M?
zFaeVVV|3n`21ZkJ4ur7YJX^)1g4wd&lDo?wKesrOln|B6^@M^Iv!;$)AnW1*U2i4S
zJ`o04&>NUAiF0;aiSxiZn_nt8z@NbFV(l+VDCxO@gUJHs!FEpM0mJnsu?U6c_J39a
zc6OpoCj1^uYAwO>bzIf}O#s{@^l=$m^q3rJ**&tR&VeQu)F~E}{34_}<IL3U7zS~3
zB2`$HgF-oVlZK>1Gtee@tBCp%8aOi?b|En$Aq)=}baojcuT0SRVD@!2);GPgTR$QU
z%^xftE2O9MftpLs-NYN5=fe72Lv(v92Cdc+>rt@i;545;23Gpnz!H#JWR2jxKAjN2
z8G0Pt@6@bJhu&j?Lj5%K$nWy*i-i)w=XwYS!NafjAsE85eH;nvp7LKljiC+X1K`05
z`!sO&`YXXj+Z_ss>hBY_SMH~QGYDk|beKAuxzo%zp}7Q`e)z6NZDYa&5eDFIm?;2}
zeyCnoHe&Y2*4X{GU763>;XP!JGZ$SWr4aA7Ud~Ln+gp`DvWyzTrof+XNaVP7$^bPn
zo5OgqY6Vic%e1xE;BlarKt!v;MZPw1*quqhvjBGvjZ;q`oas8ju|3R&05{^Wj^J|P
zGOIcdPX;*A9-p{VIkoWpdOyNE9#k8Z|G;_uA+C?rN{$cvuBTD4`W?gi)OQPSp^Dh!
z$Zgp_S4kM^1J=`hR1B!HVo=Cs^+|ERknd$-l%#pe#$v4a-X&=)nte7l|81H*-Lo#_
z-xJTNP^gPf^nE5Y)b!kT*ctOpyha*F{$q|*1%iiR#zG}l(ejL;fmw|(moGn%pD9OS
zx?&&6<ZUI~%RC725}OCWs#N>6nD18&4BbPHdS%3uJCpo@ExWRJ9q1E7te#X<@QrB_
z(lUM@ZOryL{k4j>XJhLZM0oS#i0bSSp6Qh<GHbOiThDU9DZ}3NjGts$3IpxbInluY
z5qck$-9z&N=xVk@w@#>vRJs<$%cU`4`j{rLMJGZ}YsapP{L8kiM<GiyIu8Eeb>!|L
zjOs@N^=t8>ZMdWO+wPev^P7}>#aX^C<Uz+ThD1bMUaGeIB2cS7ijg(lTh4;Hl1SL^
ze=G|{mI>Z6JW>;3biwb+H+){!;>;~%bmy8`HN%=;{Mv(sU%D)*uNB5G5bcwcyg7K#
zv{Ks;SHAhs_iw*ulw$-?583zAxD3yJjQxBF^)l%HBr`W=O|9druvCT%+{yh7)v+Z#
zl0gPK@2N$$Tl288S6N`TZz_R?4Hz?a4Ps?-=YYv-YR^z9(Xu130$>OM@`HcDfZ35W
zrn%Ap?Jnz}=L@cky?-H-Ir)Xe*17sfXR5qNI+L3YJnWW=xNG`8=8K-quX5&}c}%vI
z&__vRDr19aN_W~>vVd{KP6m`cXl)4{A2o0Y4DyXSQ0=(v+|SQ&OSB1ylEkp|*wmx<
zrDIdGisFIKn`w!dsc}kasm4;~r8{kg&wr!zoQK`w>fvDs90t^7EJ#w+@kq~3RNdwe
zT15crwo&>$aRCCn_8xbHqb<-R?atzQC@DJXS#=nF)bJ*GsrLtgMp7poA<Pe8ZJj2;
zzI%=ZW$hJz4&(bEq?NNTojbKVAxZ#+Rgyap?OMc~%}~(nh3Jhc*ivr7UM4LBqUS=F
zUv;R^nB2-c(lt`#!dQN$B9FPIv~|^%W48tmn%UV5THB6F5vBSUTlGus$sd`iapf#=
zqJr`~v=1Z($E8$A;-O4W)Q)O7M}Ps`T!7}^0K}zg6ohUR<PpGh|FY7mj;$OX=Rpa-
zaIr0~HsVSpjru<&gz<AqLcfyecJT7bOiy?PNBYt@*r3HUjKj0%8nDNLOq|edClcT{
zaZOlfit49qY(*!&tdba<wiWrju#83;IaxvBRYl*oxBMsh41k?d7T%%Y4b%3lgXaMA
z{Xn~vaee}%s8LM6m7PjJk!;gx@9lKrIhn%C>yaOsvAt?wGf;$SM222+&^!4gZ-|?H
ztYGEZO_on{0pq*`AY*y*KRyijz;0KO9Lta8B(#NUSFl~H??*DXc2+Li3e{U98RlT1
z(PW9+oS(HRR&a-ph}YF~WOlo>#%#sc0E}u1=Gn4IV2a${B^kUWsZ#8C*|r1HL20_|
zAZd*HP$Q^j4{+byIAOyCK@1P*u*{10vG(%>`q#1tv#+p8MH|}s5wU;|tU`;Pxy6RV
ze_vBT5jy%=8BC>M*Oc>I!jt`ZMCqsX$b}P76@w&QM&QM~OnxcjzJmj0E>>3-&s2%l
zkj%#6MT%I+l9mi!4t5+~Q!ViMJClj9Bi_%l+IX@wTLCmx=!mAN_}kdkX7N&OVO281
zMn(?E%QOY3u2(GN@jVQOq4TsiY(0&GJ-n3k66ZuUMB}V+vpkVlJUR&UW`mhj7k-Jw
zNPJdUYpE1pzdCf*JCDS$H&ey~y;A=3Vd%ej_`g`8Qz^QF8h4}IqCQo9Ry7LX%q^3u
z84uP5dR<+;P@5Xey`-UNZjUJTePaIlrYXsyuHzTkX7$rgKn7c`ES|eaGSe!Kb2e`c
z4lE{OTG0*~imVwT3V^yi7Yz)dqDO#dEuPwH&vAmH@v*+6cuT(4`LfN7q~NZa<MMUj
z*Fvqdg6z;)H01>CxCxS1Sr#Hptt<0C9tkU1^3N)SobpFHv`%1EgX+Q?&JdNrmDWF-
z+2+I(HihDyfGp0Dd<Sh2A6;<~Va+0NIqwA(FYR=JU5k69=_`63ZMy&fMuD>1JwO0*
zM)bQ4spNAu`D}9%%M1#zc}LkL7qzp7NQu_;*>^OPn9r+(*V6NsDg{eBs+%)&9m?LL
z-e9<ZVaJtMM=a64M%meQN9u<uP%3D5y0n%X6)1(@?>CvYgM;q|JRsAtvLRsr{h#$A
zIsz#M>Ua8oIfl8w-Ig@~zK{t@SuYubfxPp~p=1&oyIwgXX#oouHRDS4rF6#*kRF2s
zw?PQY%W+3_dQMb}$5z|zUw2k_WaP3{L^Wk%IWCq#VF?NxOIN)fv)_)^Pz}dP&J`-a
zvZM@{OqF;EG(>ZyAcB1_&OAENl*mlpL7sXu4xcbe0l(`qc#>&q-E4LNyTsE0V%D59
zNy*6S2X;;w@Tb?Q5%<IN`~2ri=6oy@UJQ_&8N#|v;98I|>bX0|aS%C6viB)q9B*BX
zcV}x`3eg3yo%)+lxAtvNMhrh8SR436;%`(r|L_&z8KcfQA)<V4cmr<3g>kAPVWC;D
zyX`M2dE}Zw{r!YioSmBFRV>%H*G*vzmeya*NS8g7Pv`vXi-?|OKlWhHuG;506tkum
z$^`r$PMU%h(8F7F`!i}#9WPcU`!m$uIPCd_{ZRew=vA0GWX4xdYu1n7)SK=%ia;`e
zu~VftM}Fyse0S(<(4?bn`k9nDUs3q!jXF1XyLy*mxj#3O;<*yeg%;&BRAM~j(?n5)
zdO?#JbVdbB4!5Z91|oLQU_q><pUswU3hMCOIa{mnzh<IDBy3%NsXCW^rYoNOt88?G
zn}K|7d>F&n#vq`L>=9%UO4_XMJ3wU>{VdhZuc9(keDaSfF_;_3;<wQ-EW#1p|799D
zPfw+2sv??=?3Q;Y$~VN_>4_y?Ltj942CLCI{vK&!7krh}{<p@P$DpKQj3Tr8HXj!Q
z$Pid}UI$52zJP2Vu`v4{(ngwu13nZs#j?MkM#N+&S<BL@vCC+bcNmJfz?(lQK7#O|
za2GdAgtwf=^g}IR*c?BIIfTr$h2!hn1>LzJ=XF#IMkld`eCd8Et}2v}tamiBI&70P
z;F3(B<#KI9ct!PrC`Dd_4IqWj#opdcz6V-(iTp&iXfqQ0`pNw(b6H((jaFGoh8WZg
zMufAP_Pe#3e9b?uE<@Yxskce?Pj0sZl~fliWpVC-ls9h$B@|0{IdhTaENw?M@oFz-
zaLRT-e^ZCdft2Rt9QX(v!g#)23$_=QQ7gyKV>Tp`Y013zvL)G{sQ-yyxn(i=)z^4o
zX1DN+4I_o!H?g8dMTxkmic+ntj1BWog+XhAF`UW47HC8JUspdklF6Q1jIq3PJfZyo
zG+>&<zPI+)UZO=D3;h5#`k<tirbXPYh<C|X{k0zdQk;-v(<UG~|5vCW`1fa5!}~z5
z)(+;phCCRjq!l^qZoe?zFpXJpAzL;YAIEjCw7#_Lwe~P7l$JJ?#XEwF2Y{&7Urod!
z49C!X0lxXCee(19?(^e)F!9D8K|Wdk^W9fcksrUHv?KwNUdUran<YnB#uxG#<({5h
zLZt7pm+5_UR^DIBOthYW$M}Rs;fY#Y$|t7+75<Zbuiou;a~wKOHi!qSPaYSh#Tlaz
z>QxsYHA2SnEnmSn5*z|LTYH#6frA^LX<y%d5MpLlZdxc&kkzfDX&s7CN5KiE?NlPI
z(9hJLqz6>+<zvQsY={`Ie0cXwm68TKkanc5>wfEx5}2ABxv2u}oK2@>;j7%C%_kW!
zkdJw{azQ!)5V)#T!j3tRA!zZsWqWm_I1xKj?PQ6%{aIy^C+%S%eC*eEdj1S>?Htvi
zBS?p}MtuwuO>#*Ao?Doo%kMQ&aH8PKkGLJ*LG%mpl%C#ismH>78?BraO#m%Sx_g2A
zd}Fq*4fom!@O7EQIEx5FsL~A;v#zs>y{WUW?1e1gjk}DaI!(v4Xz&Pxk@HKtzqSbk
zZ!vCGsQr(RJ$j?d=YY;11H^NyENUxdZJYpjKQh6lV!e?XkqH$le6(Qj>7^Sv?1Gyb
z<!n{i#tgIxg0LsGrKwJO3LH6WX<JJM&nT<tdFr`MeVy`}=Vca#S|W;HV1&|X=L36)
zrZBXbO4tneSns3V4-uCraptpTM2OJ{3?-LL^GT>V^;9@W)LWdH)Cu=}XD5_DGodbf
zcc#ZS^;o&{`sHvY?Cf~#=T&;^!yt^mBf^@5tYU7iDl9ieoCvFTtf1j}tY=ifXe|;_
zJEauX>PU4!hD$qyJjs$mrWDqM8A~=2<xax6P4c!n@&5ho*Aak0_Tb&Peur%);faOe
zyMW-U^X;xyX6*L%I!o6qu0LZQRtKwTazvhAMPk>DCXI=9>;^kHK6wzPt{lha*#KKa
zidjOkEn~pNLeygfN~Xpq|IrmlRrk`QrGDPwotTE`Cgn}8D+jrNj}yiZMHqaj(l^MI
zX1JGroMgq4r8m20#e&?7qVC;056VngSx`%><A=yc@owOSd?g!%S9d@f+uwO&J~$x}
z>FpF;oe<`?m=;)kgGIlw{)-|G1aKD&)8>rXoD%<0=j5KTgj_fWZ_jq)Fg&-1t!vp~
z+a-5EVW-~<#?pUPm)#t{D^4UR0A3x^b5V{scHaX(Y~YtJU8dODm+msXp4woWHE2@G
z;B4;kmYlBQC8mCiKI%cc(*^z0i$8s265ocGU^RDF{X#tk5mMAL)Nu?UBroY}i<gfc
zkchdq*~SS(V(<H#!)H<kG8m$|JPpMVE`_U2)8{6Bh;##z0qG{*OUNDG5LLXd7*T^u
z6aN`8_1ZQByC;~qpBhr1HDs`j`$K{W259yw59VC9Oh!oxWHGaYn_N$&{}oJTT);*{
z%w&4tV!#X~W3#CHZrfn9ui_Q&ABq@aBlAp&<580#@UALdsnn)1@&JmyPfiO%BQct~
znQB)S9U8Xg3rx)^03wo7QpFHE9&`2!O!{egoTc$k91*nV&nXvnt7{^P_*n!Nxo0tA
z?KJhWURss`+l>E}5>MixBeYRi1#qS)xxxFf@1+7@^P6eNMjhbO-z^{lLU+(V;2xS=
z)gO2;o?2vjp^}_G0DR_IuWBl7^l$0jY%E8<w_Q+8kL!XhQhbG*8J=8WX*a7naN=c6
zGO|rhKV+6UXld95q1Xuyk@Wk>aZ_=c*qaYvxW82|H&+=@Fx_hKcz{4zcL2HgpcGRx
zuBOr5ZPXz)J~1$$pcR{%S<nQGt#0Fk4~sYRpMQh&Dz6gqi%41lXQ4=~?KwePrzgIt
zcj-in*do=}F$az*FcMvOI>Vp74l<_60&GVj7(s&d^8|0(oa|K%rQD3;3&Mh-sIdCU
zI&P**5Q=Jw*hUg%D9j@fjet_La@?<Q4nY)VzH`XAyK1<w0J+ljl)v*q^Ccj{Wx1tD
z8W4M{$%3;lci87aYDd%*t((s-w!}h7fE76fKaF-XJ#L2aNxFv17|u{*(F=7adM$Y_
zULlvfbe!GR9F&S#9IH))U#ty-17jCcReX|gG2Q%=sE^hB2&_1`_MX7{8(~HbD2MYQ
z+QC8-Brq9#m4?D7n@%&MzzxKO3G|TFsDJ_WLV;EoAMY-iG@h!Yefrvq&%g%oDN)KN
z_Wh+tV4d=pi|V4bbGqi8G7I<lj`4$dJi_z-MZuqa)4Tqkps%Y-yBX@h8!S{v&c9V?
zhQ>%>rWAr-bz5Ed4&3}5V#Nfsu2M3~(!@V9;p0PDKu>*632}1Jrb<EaVQ4aZokkf*
z0B{2n(m|a$<FQF(UL}qEW_(Qec4K9Q3F#F$z~9dRK6lR%<~%zK>z83Eecr3P$B4U}
zsUlK=Phw471I*}}3mPHkIjqn8S%5VHtcN~<ZL&VYx3r?>%eY@w>s`HEYhw5K=V*GH
z;j^G{kVeA{`3JfARqw_3{4VTap*lW=x2^@^!Nfs3520kazcxOK_b!M4R)_@*N@i|0
zN#U8zs)r|6aU)LG{d!JdYW=-$BfQLQt1R^5p@|Ll^#_`%?HHj81}GS`=TV4J$E(P!
zd!R=7E(II)d;G;_(wJ(e_fm-C6>lRxpG<G^6xM3p2=R1Zh1Nkxqbmrf>5&*4S(D)l
zIeB%=TsAQu132zdw(wR7`^el!513gIa8qwcO9qPcwE&N|lv6HoY3K)rFWaTxee%|D
zS&Bde&s4M#EGtZ*Kk$UsXub(^<+`MeS06|Y679YvehTxGpe$%!-&~$k!yVQ|y;S*g
z5^!=835f4NTsaVvrzl!3{<_nLnZ&v>(Iwl|NA*0~ppncWT=RS<)t~u8XG}J$d=BCg
z6XSr5^M@{S_6)2rldnv~{kOMIn*EKzBRd$b99%U0{E2Ef3b);6-dy6(z_t0&DSryQ
z1@+sEFoe>VmmVo(UQpg-{dG@zHbefF1Vy<PD(5-hZSdkVdL@7L_{bB<VCzuUVqG}*
zjl8EiB18~a0?>utlCEK_S3(XHl@SjBTOL%YPnvqVDXfWz{rI7)H6pFIkyH5|c%6)*
zvJ|P3(i9@E9%)LuaUf!Juj|1#3PMi>5*k%brMSGYsshUtAnB`jy5)*i)!FOru{Z2f
zko6%&bd)wTMgc~W^0K?V{U@P%1yYCU?jKZp+v8EctyyC~y#srR<DUPG{YR$Z*#6x=
zt2j;y6zeqyPC7O9MZD=}4jw`>YO9oUZIM?oQGFv>1SyCzzoe>VgpkSE$N?9P25Q3V
z1-%R?lv`PVd$*a-HXQCrm)TbPBsb+|ol8*rwJJbH$l{OATd}O08SgK2NqCwM8Z)yt
z<c6s3<vsVKy<dVX4hCao>sJlY7isG4H-OU!NElXny{O3$wGf<7nrpIiot)$6$y>^B
z+uV=@wcyfUoj4z~grBVZgEc}qO3)?_;)&uUuI2#3AFBk`vJ;o1Mh?2Qc`v>4ev)I7
zsb6J!)X4Jrv86yHmG}YD1zg%^Yep#WzPFNI;<HNSM(TnV`;l!Bc9Oh2!zo}K+GRa3
z8O$!YxFi}@ze_sZb(mtC2!$g7*^<<@8BI)Be2}g<l|Tjx??*jdSAyF}!l!Fu)eq~s
zo}Y!firc?Q>Pxt6KpSc}(xp0}$zj33R@e*ELeH1)W>LF<K$$uTeMo2o!u9?esyQTS
zm<JhXu-vYc2ru7`Ls5i%i+GOgrwhIz9t~BwDUO*;+1CSP(Q4<J3EpU=DpMaXq<=&q
z><;<n-xV{Eyqv-+G;H9DJ`1WMQ42Gim+F5VRbuFw4cEtzRKn#NiOM?w5x9_+zc`MK
zOZl^OIhHcrwxZxKw?P<r9cW4cTP~9_OL!0iI8rE}m)*lmpcp3M^TKU&3@KeSA`t8O
zrB2DxcRMj34X0y#-%E0_aI9@G#_Z(dek%!8l>ZQF^I6|0b@SJ}HPN<!LIDe6zhqhR
zf@knX%X92Z=0W@qRa6FAGQS&v3?;AikZrq@+AvLVY-H-<Uhc-}nPo}$*>x*6TuxF<
zF=+_b4o+Ms*2np_V~@jnhvV-)X~OyaO8NbH&Wb?R3$#T#%A?U^ntn`yQ~#Uw{+`6`
z=`!MFP{UoKP$^DXRUP!dc&LnPEP4pYLq}B*P=PkG$r5XCw9dge+clHIDw|$)yg>b5
z2iA~YW4D+HqO=y%)%K$z{#TNGfrEyZeY(j-A)&z5?aynW1u(f76{Xw-sq`Y7jGqC(
zAPD#JBGN4(ds_dN1n#k1^Cv<qjIOdHcgfDM;KboB=JjY(zm{@<p`P;HZ3`azm0P^l
zm@PC0S!~#e>z+Q3F+cUvHB-0t-lNWlD!`ks=X|*SXnE$U%6?Bp?x8Rum`Y*4^`5h)
zdgA=vbt%gW6cNn!!9cgufQ0C1-MaRM74`ZjzMmH-;D~9H%j1SEUD2i@Wu<)pbx+d`
zKdNy*_E&A}_7!%)t2`25hxrg(#Z+%qvjQ}D`U2Q%;Mb$Mt5z%uB_o}CwkMRhj?J+b
z^kN7TODSxK;|6Jr<rr*;#QDV+XTK~5yjX2~LD&-Tc={YOx^nejQM9F<w7(22>wuJ#
zJuTsV+@Y_VRQ$=%)}GxnZ_%#i{6Lg5m-G)HK0{%Rc=MN}+-_d#C0&)fm%MxonUBkk
z(Qa*&J06g6f<#AA_}ca(t#Zb9)FOWjqBi#y^ijB0WrmWDUdD-Kn{Eocs=&+TFKJUB
zfLTx)9^^f%3)Wj(8rj|u=Fc#J-1GjYCje5PMd!ktYZ@waYP5Cy->Mt;J$jwqhmraX
zc2bhIj_$D_P*i<n!+)tA!q&~RjFtMTwX}>{Ri}qHr*hWu7n>`KO;5a($yh0WV_J$P
zp^E>GQX=%HuzaC?M7xcmE_!Ykh}P*0QW4IvX9kAgFKqkL!SS4{#Ja;CfAy}P>b?rY
zGZ#kx(n5W~r*vZ8bHi;;-!lWlGr*#GqvMn6U(1EkUCx^PT=gJjLQVodU6xKf?T$cY
z^$lDAa2dky0bK~bm9}mG@XE<h1?JdbsF~Cnh&;$1x=XK&Y<5B-YaDZJUX)%%omGBO
zMt_reEKeuCyXrY9$qE~@$8|1msy4BW-3s1`!xbE|N>NcnO?u<SSuRdk=GI;qGfC8<
z{qu(fJ>=KMuuAGt)Z8A|9v*<M1=RZm3N=cn#j_CIuM@98XLy=iou7mb|0@i;JJ)1E
z#LMDb9Pa<zR17IfSU5B^Lm<4DGMoMaGIi%uEG5c`AF`>~|E2RSX!Ib+x|z^<UK$(I
zeZKWBvDl^oy9+1D=QS8OW_3Z&;~su>l*SaCcx;m^j6sLDCh6et{{13rh_w>hB0?1^
z&dE+pUJVAKvgR^;B878HWR^mboRtP3_K6n#P7INH!rNGpwjQ|-Vibv5knN5DqA|ba
z=pXHI#^Ba43tyy_-$Vb693Ykhg&Kzh4NP^7s>c$J-2~oe`e4s>C5sdgzRmk7(G4}H
zQF=K<2C?#|l&#pTJZ4slL@c=VGc?x|lFH=N`R`FxO53ifF+h)I>=kcb2G*k=WaC_i
zfD5+o+;4!CnhM6by{M`+-;8=B-=3-TTVkj!j*8Q%q3_h%%Asw?*{Zmu;18JXMPOtI
z=z5Qw6B@&o7;s#n4Xqm(*KM9pq^4|Q(WRAeAYnjWyVK7~sU!}Byc%j@3)RPM6sN_f
z*UI~K+G%U7W{pv{q)V@EZZpIopeQMN!yN;6^*Ebwk$BHeA%?PftgMB(3KbE?_j)g(
z;;>64&2AM7gx#g`e?vEcLu^zsP6s!!%To0hpAO~t3+!QlFf1`yc|Sk=0tvF0t3C@~
z+jJyzq=^TM(d}{$tU4+(F{$x-3Cazv+q7`u0x!Nf*T@h#6EvmJh7Z(R2$Lg6Uf4g+
z&@F5f4X4}VzL-E)vfozOf9b|%$5XVw<^F;F!b8q_9*^!(4dRL2I&=XkUE&>Iu)Kk{
zwvv_($k=l4fsS@|ug1FkdyI}vSPid@UvL;o9tu2;TVI_KSh5&~9)5@jpEE@CE#@yM
zTp^v4t=i4D2~Ui06<{>`Nk-L3(iudrZ7;h$+Qv!qZ**#7^XmPdvavoL1a!W`R9A+s
zlhbP^LpVA<N<dm~KxD&8a(LoE?jyc1xLBvz4oW4{1+X$mDe>mKV475u!bwXoieGM!
z(On%Q!>V{l<WxlTap6BvQQ(ntEEwjcc5B+k`HJ91uYV)^q5{JliforJcHxuc1j)z+
zs#<;M_&b?@u(-<<y0!mugRNp-72(gxogFmLKUfN9!uG!2XN+VR0hyBOehZ^+60%ML
z>X$(bjKDuG%3V-~J(ZW1jU33p-5D@@o;Kc(#u%d;*LpdK)Fs>TPjic{|0zOT*gqsA
zC2<}D?SdnOrsN?-tR3+KR1WIaVg4hs>=%&z6#A<C{`Y|}QaXmAppoXv2zSS`b|Awz
zlk5)b{pT`I^;~j8p|%5C@txvw5wet{FBxDo5(eYGj`XN%h_<77@CJ1HZ*_PAc*7c}
zqCsEJHxqUp!ulN=p6_)IVF@=uAAO2>SJ~SP5dB4ctq30;AQ66Vtc%x~us9YRW;b9*
ztU|k;|C)W{!HhEo`fP!zZk)89NSx3ntM-!`djLt9N+V?NN9T99@2-=S#d>qVEHo=7
zG6^60=+E%kZguFJJVFPigLTi+zv>Iy5t0%~t-B*KYk*q%d)U2)bMj?*wJFTvkrv#d
z3I9ai*r^qhi!x*Hiwi>x6+S%S8`MU)JIANFBuy=0udBED+L?j{Q~ixu^bcX93vk$&
z0!?2K7@oKboOYmktgJETT=p$P`ttnm#Y-e9OL3^CMc}O1wANxaINo^eQ*|@v+JZdH
zEOmmVt=w2iiaszUBPq|mWOq$EC?`k$0myei8`KptN-d1t0<>6GrndTFP^lqb#+#e*
z)o$zmC~<Hr8L=Zvs!&Ie|1>xz^QL|n;f<VF`Uo^km^@>>Zf?!&v~HgRAwq0{b{W4e
zmuu9d&uuJ}(ZMsI#I(lE&t(MmM`H?AYi*D&2gXN=tyCP9YC~>hta1>93{Q5%DHpGz
z(B>yTs-(&oYbnV_SFqV8cPH}8acsld;8pVMc4w1OwvVendr{siY~#p{FO=EV+>cM;
z86#wTbh-Y^Wmzylx^1fH@?GWQdaQm0{aDXOa24MoD%}MGEjLI5AIWi5TtwjpSgKn`
zkT;f%oka&cds%|H9GX0d3xHU!C`^-tr&(+_fQg}7tEE*5=sRTGiB)N*F}>H^YI8&N
zzRFn~DHpGzbzqXhk=kCAKuJ1%w_M~*3BNUfSGL6p4VV2Qj<PA;tC{pPUTz~@+^Nlp
zy96GM;qZ;pj8}TJ2ms_A2jckB^{-f>5IewMO}H~;`(ep*z0p%QhLDYqkv59PWMrvb
zJ@#jbs*efzNf)j;&uX|Q`bz`wy=t~SZHHq7P4aw7zj-ta(HB}V-KkrB<q2Cbx%;hT
z!nwpo>TK=4LV3@w4K41pF1Wy_LQ6i5j%}lz22VBl?@U)B$PbAj<))*XdJ-lF*h@}v
zIt%z2B)wMNVMZl6{)9{VKa`<D|Mu7>H9u$2gr`Z_s1?yHqV1$j@T&qNx)mi5cId=0
z>!sT~2d9LX<Fg=1y+}2O9tex;cS)jnnQ4=@|Mm+n6fUHH)`YlG3dgVxI3kT+&Y1}A
zH-P5ovGaT#3__Lxsix({xQBitc&%evhJ&nKxn7@O$hcuSwuB=9?3%jHqc)#8*I@f8
zB*J_yk6Rts*lMGFJ_TwDcZv^Ui=i387u5Wk*l5>Lm!pcbV<xpbykQB89qfTs88(53
zkJn29f~LfUQ8o?IAZ{NNJc(x^Y5lpaqj>UxahE)tC7#e#Z^;_)K>lUGsRz!!ZlVcC
zS><-?IMr#6-8TLv34{vyIN`aIRU#vRhbc!jP`dS56kY>Hc%^|KBdJ=-(9FVTSh}H4
zw}XitNshRbY9ExftDb|-6{0l00o;(A&7hxM)ct7>`f~OwUKg5vCkWEizo=69b+NM4
zK3AqzJ0m<s-`a=etlS)^8pVcKM2~N?Fd2KJAR103g^KM2Y@hodIm{1EabuF?#xXa?
zNR>zq%;?T2=x;?)JIz9wXJc4~8sxQBd;0h~+e{bbS2q*$pU8|9Luoje`p$f1+~bpG
zaxC6qgglr|!w#1Vzv`xn8D$6^wt=H;3->QYquu%L%47`+Wo~41baG{3Z4G5^WN%_>
z4LLO+Fd%PYY7IO*FGgu>bY*fcMr>hpWkh9TZ)9aJOl59obZ8(nFfcecFHB`_XLM*W
zAUHTQFg89ub98cLVQmcx<8efsw6tt>68&a<d)t$78GjQ@k4AJmN&@bYF`}Y|gasp}
zh<smOAq90j%#o;1_4#@8p~uW+#{8a@fox?~GX7(#6*3rle|QXGY`z+oVJ@aC#9Ekp
zMuHeHW2wXhoa-K<2lMGA$7#%ycL`qx<ZiEIkpm02g9v&8m3yxgp|SAV1bJmdB0`~y
zX0q>)L^cG9&vIJ2W`Nbe1T5_lylvw~RWib+165}bA5DwpB@7FeU%tb<JD%JnviObt
zweS{}Dhn{at)^o3&ay7)f|hvK*7Dr(4-*-fz6mmCu1)K)1wR-drr8*UCzT_k!e@lH
z!zPKtoQh1-Lr$xH<0xlhNvR7szgj)B8u>x}wl^q~<<7Tqt{8g@gQgEgzIMPHj1Gpo
zZ}#GTwFzZ&kB$Rebk0nlnvujfhKdvC^pV8Q1&^m9d3SZME`O{%1L_PWd3UKfUVVHw
z3qIE`Nwcwo4DwvoxE&e8AK+j(S!8{nzW(1s0;EJ6Szv#0k~PPOQ&ZJ`X2-#YRUnht
z?;{$QmH{oW8|RNi*g^1P3kVj@Jc*W&Fs$;VQQDbL<cO~=NYu`sPL@NDi5W_gF8;bI
zc$J~u0Lr0Cvr>IaA$2m1n>BT(howB@f|=nA6Qwb)G8Gg!A%Na{*g)8RJ`&1zg4e0#
z|1Mm6HsBiELd|i22Hc0A-EvY!{UQQGfTcG}DfQ+IjVcuw5hbf7pQ-)WVsHw2-xZ5c
zk*0L=1uooNqu&D=-e7aQnY7Q73;F$=lox`G0Hy~=o>|qeq|J*L3n4?o13gu<uv5_u
z2y8U!R-t!Lsp$GEWgImas_-ac_V}k9?jzdNjNS?|pry^pet|||SGVN>i3if?8Iu1C
z>t5rHKl!wiD1RN?&W%IXTL-XG{WgPS=5D<zM&^m}*El?qDtwGnZ(5~Je_cvr<=jjr
zULHWrlG_R}U}51iy`U&)mgtQ46Mv)cH!GyaA-X73I<N!yw;3(88^nk}LdRzR;m|bX
zQ{c{qPu!VJNC>W`s!n(Z@XW4iWf1pEK+H{>2@L#w_Z%HFQCop*vsL?D6iHNa9z2_2
zeE>h-zFanbV0*IET6BAKX2@fpi@ke6kd!YA_Qw#@PJ3Ul_s@>NhY3-<ii4rVWB8^<
zLO;-`3PtC%{c~p>9}>Fax9RCp&Fb`fZfrN*^}P5!{#*-;4H6CCn>uBMi5{%*O<4$F
zBmx~jvUgeq)K^3~=Kk2w3$0xFCNCxv$M}SKP1Vt_ViIA<DbuWj!f?3V@i}NyFLg}P
zr}*XYtREp%8U5<~9e__EkWFi8h&#3aJVBR>^%iQjY87^K5?Ii-p68Xn41$q#?_NLt
zg~2<27R#XIgR#jq73h|Y*lxJKC*g23ta$Bu$LGj#4y7TTwY45au9QW0#opvs?k$^O
zMyV%(c)3r;(Gb)XcA~*Rb#T~^71LmvUUi}3gKZkeY4gFve>Wr`#aptl|Hm=PsiX?v
zB^yJ5<l2KRDHp4mKuqBsQn8!+@l@)54cWo>Ob!W@ZM5Mux))SA<~Kn&;<!bww%8dJ
z;Qtde6f-$o*C9Y}Eh})YMD}Bj>x>gE-cJ96FFnD;&u~31(8<dlYl4wgKcBE50^uaQ
zI@iaAQyHN~^WFCR5EN+PGJ9vm1kfigZo6oeufh1OFrPMmt+j`JTv0C`hkLt1BE}CZ
zn6Gjx{~YtOf(Fvcx|kF^T1cR==Xpwy3-Yggk{Zfr(}y%Smxe0jx$J*)jUVA(DBq&n
zShJ*ouPm^eOD#}C*U#WON$1i|hk6qbGz)l&PjiY@NK9`J*&yLNe}TM+_PKno7Y`wd
zSA~{1q}O-*>e5r)uLE#>_GmZtqR1BJ^x~p;ToR=e|J4o8BxdIxd$6_XoJBZRHW!6h
z9D+zsJJ0Fgkuj}M3tUWwP__L;M({4<5)%8xAe_n9sQ$KlG`<^!jz1}W4l86`H}D<`
z*O$AD^D$?gNUad{{&bxDWg@>}!>1gVHHXbuV5)>#V@*OM%$7m<B-Cd2vx}=f$b-mC
z6b(0&6AB=!&jy$3B0NW*q{o%>8qp{(8`w}QQxBtRf5nq_cTTC050oLT)<hny`f;-^
zOo5gU*l7(~+sx!cQ9DXdHjD2(jAi(K-k;usWnE|F()d#xd#hgud%~ZBHN0<(h}hmH
z(1y#WL)X<!TY>j2)*|(_mA28eWE>f{`}5P14@$vcXn`x1%#}>{zI4qNf%|=PB3BTc
zZ0oPnYPFFzzVt-WK=L*6DqkkVnP*9yQ>5aj$<;M#?AF-WhFqmd;q`n$g$0j{WyezM
z#}=MW(eIX)LN9s5YleHeZ;!MSrg755Yb3694IME08uPUkU+Afu<Ej3=J_H_YQ#j?F
z?ee<;t5}bHYpstQ3rk&qXM)^2HwlNzYL!neg2}gn%wbi0Wu)58X<`sY8*o5vQufYT
zh1!Tph-)9*cJU;$*R5kf@m~VoI!ia*9ohTXMpmDlYQ5djD>{|Dt*l**tPvM5;?L@i
zRhj<2N-cg5S&T3Kcaa>G(7tFsgilLU*iK3`f%~XXz}Us3UzzfvenN9nH|mhq&4)&B
zNwE)R*c;M=HA#*b7*lJ-_1G{^4!GRYS)TW?hXNmrm25cIxnw(~u$X7cN#opAt^M*#
z>~VjzTFB#nMaBT9r92D}aaEUJi^L>;+vdnQUNs>m09@Q3|43GSeLJ%(q`pmEc5>wh
zmsUXMCetQq^h>WRDRnI8vT`u>4Cphy(lfBAX!%n<)vg@MuWkjSJK3)x>moBpR8_x7
z<|cQ29a0PNz1TenNuZ4co0mr8(GbGYg>9zO18Y?)2{w|K^l^YV1)-T}@x(CUW$(0e
z(Z(rXI$hhb0G(XKgxEu3j)+V9d(-sD@5Icj+;*-5ig!wiiIbk-iDvzm7ds*4eC=^`
zxIy4q09D3@^~=C8dctv7)j(iT1}}q1wbO1)m+oenkh6bQ+m2dUC{TBddvCTXcMf4Q
zwD^Q>bT!A69o$ofWreaoJqFD`tZmGq^aFJDC3Y{@2E<#6II`W8!AE6eBhydy3Sub&
zN-f~{lXIxw!j#K4)(W2!wEo~0+jh*3*JDxciB72lmpa$K+V6Kne;)2%NYJNF+(<M>
z-3}XV1!BbK79T&L&M(s~cxWa<{<A|{1Y-RLv;XJV!GT6k7HkV-TfOAjd)pvowLYHG
zsK1Fq_!0|V1W9{dyH+SmUL2LP@w(EDw$1?p<^+<;YRXo62m~em4k+xm(B=^M@LQmO
zL(CA=a&FT^qm*(_-HK(1Iqs?W&jU|$wLCs{bilReO?o<DUprUJBNBoQJ{3M6t1CdW
zszBaMq9-VeoFEyqQ~<I4{SY>?*-;|jZog-O#O29TF1qH=H5!09hAQm&Dc$IwrLcJN
z<}?_i!$T0=XQvv~-pa1O1vS-=kZ~slu2Fp?RHT7@lYv91S{1_ow`NBRi;FMtE2)~^
zI&?QLtwHT=eqcREe7OxvirZxEjS{&(Uz?DaN@56b9}(czCoHEVYJETtB^ZGkkWSpH
zjZh6^B-dfTF)(P9+GV42Ik|=~p^487*Mc-|rm=VHV=QsxZfFP1-Z7=*Jrmhb*^f*(
z1}-X7>|~|J^V)tuN)H;Gk3@w4(C#jJ7qU^dnnMTKwviW0FPEJ3W3Ug`y7Gv8QR;Lf
zCpaijkd0leVX1tT5y@r1q6c!Z1vc0QC|4w5`;D*>=-#%Ap;Nb4Z%lkAI;P$W9&=Da
z*0`BHbd3a2>P87J+5BNse-`r|mpDV8lsd={BbAj-h+V%50=)t9xa_t#<3=1Ze2o}J
z1E;Q-e+ntLDl1{@J)m^b*Lx;Weo9Aqi+`3cRWJ9??e$ErkNl3g`(`h3QSl+!^Uau^
z^5Wz3?2i}yt9+#n{UQPtMKGUp@4dOlL4Y}dhQ*)`F#P&$<Af5q&e9d~G<q*(g?|nL
zTN|SdiFX*RZbAVd6ZGd*9EyZiHJ^sdUZ;N|8;vLf8W4b)-A%kZ7`~5Aa8>G2T>@^<
z;uA7lvrT1wb9=E9(B~woaR>Xtx2pPaPRtf7g_a4Ra5J{AqV)1xj`i^u>CYP=m^i`D
zMeL`xCiCn;7sHhpI)Bf$-#n2T$BU^Q-xP`J#s{m6=1HG{3N5#Rbdc)||GriDI8I0A
z5~SZ=XdL?hxjMMX<`A=%D^QwUU*|~i91^bGlt$z>L>eb0rf2kvhVedIO3D@RNc)72
zP%~)-BM(@BBNVGvllyTrv)!x#03@H}8zxzmY0V5({WxW_M@l8ZlT;TdLS1!NuRUQm
z^79Wcm?Cz`QVucRXw?U8{(e9_B#pXon%NCQ{hwE8=7j;fF&fW&{*7Xu*MfLylc2hX
z;a~oz_`)~qf%bX4NyBoW4ciPR#D*^341BGij3HjnbIT+gor!3)Vr*8rH=;PfNzh^e
ztNORNnsHAlzO-vGeDK+QN<#U9q9eA;s$^PP2V^7xWt7(UIY{fsRiSzZM*r)JNk`(u
zDk`8o^SE`naUQHhcnjC<6%xI8<byb2X%OA@Uy_tQRFa8rx75Z3sAR08^)X`=<Zq9{
zoqwv1p^WmM`x?rD&nSNqjB0`UCeQ(%v{E=1@?$8*x4d5T>ll-nDd{j}C&bK8=4p*t
zr$w+-_ge#$?bHlQCW4lP@XA6o$l=#c<xAr*n>*p1^n?H4Z!03Xer_W1tQlt((zlQ}
z7FEc_PeI5}|KrIN8gYS*i!apsNid)5i@6Z~%JsB#{$fwU8BxY(gu@`(Z7L~$%5k}&
zq-Stl_raW|9)I@hnzZhFFLH;7T3yH$O~I&so5j?c;&j`KbP-8HTM6lqlJtxYt^r0o
zEni4!2KECB*<o(>vpS{O#*ijXZMh_l^)Yfx4RG?p)*>zoqbzkMgk6hG6=*EQWxg2D
z)%Tk-eMBWLxP{rxzNW{ia<2msM*l^yAR+VP;>Vy#r`G-veJ5f$$^SnHUd1yI+bCHv
zp;BVD)N@bUvyscQO2CnDx0nhy5(e6&^@y%m?XM0)lh%37UJrrea^zU4djRDiShr;q
zw&SopHjP2xo?t5-`DUyU`32)7R9-e!{42cGiX)KPC^VEp<orCS@+qm^*>=Kl-eEjA
zeHn|6gYNGpI!vw8|BfMdK~I#l%QtatvfLr|gVrGt>#H=%1veJJinFCASaSmy{K+p`
zKF0DZl`I#lrorpm@i6SmDQw;*zdXx-i^`T&Sr3Mk=RSe(juDY&P(J^1V7aGUz_G6t
zVCJ*8ie)Cec9^H@;a!pX_jmNqfZ|N6uS>AE$=Ho}IN=*j$b>AFD|MV(UX<4&qP^!p
zZS}SBVa(Hl(^6c8$tR#Yyu<!F<r(j1PbU<Vm;`_c>!T1qEkIf(q6%Ybcc29d>hp)-
z*71fuXv=UryincVe)Iqm+~NB;umc73kkmSPz#<mtgwG4_fe<6uS3`WNWG0PrR=&OV
ztdmmC#VGqE5d~Pd<IFCOx-#+4)+pR18nw)W4=LPsmTw@|<J-1x$ay~J{aQ1xS~^1A
zS-W9<?Fp0B?6n17k3xMARRFZTWA^;OKI>mc1Cf*TaG9E3<MQd1T}frk3l9uhEmD)~
zSSiPoe_URXb%|7iySsKhSYL)!^45si&Bj9rP1mtGaIXReYv!w9j@?@wIch0Ve{_Gm
zIPX1i55QI8%$;!ho%!nv1~GprxRiE`E}{7~s|l$Qy^UaX{PkqyFMGJ8Q5I`ui&91Z
zxIdG9C$fq}yUD1x1QSV;#?_`bEN)YlG93ECzE)faBL~mTqD_wTfQywHa$7Wp87tHb
zKqNB2ZPXP9LS20T-;t-QTr3%w{?nFvMcvFB_RgDCt|Gw?g7At1;+;#CqSx8<7SG;8
zwFoi{MEN%400VmjE`I6RcPMqPkF+m}Jz=`?0pkXIsP0;VK+wA%NPWck$>a5XRrrVu
zFWs33jdy`tOI>xLgC%L)^x)9|nt&UEVi;SMP$^CN_y$`Bw2YiJB+IRdf&j)ETqrH@
z>?GmE4<LKS<-RX6zM6vejXt4kS?e8r4Lc*|QDa!N86*ALM_6e~E_RM~G#w|%?Y*LA
zjXy1O-G(f_L#d@MJPobvHc4cKN<sITv30u=g&T}kKxr%IwyF#p5bS^*_5}nW$vzu&
zKn}I-usb)J;YwWBZxrnh$)R@f6F8{s{R5F3#Qe`CeO-j5AR8^kx70bpH54NIKDau4
zN-*z&i5<Fd(8S_2=BUbs?FH9Jk8bJdwV+x-EQYoGUauTT!i(CUyXh$&H5G83ico!M
zpH37bxLjYI;hma6GEe9S<uNKdC|kVx)=WhhjRHs8-0!A>Fx#pqpqGJ?sEgOgj3Joi
z*Gw(=<-Xi&W)qI#bAy~hdCjV*J`CfEWi6ZRq`qrc$o^!V0dNGJpElF-`rF|;I|OKm
zkW~n|hO5hOSWa&%O!$k0t^MI?gC-Fs;&i5*CEa@=G4BK*x-<9$8#_&_H~c?AOcBq*
zoZq;jzp_qc#DA)JU)*sPOG?S}6XepUC$_Ch{(jhHA&_$M5S2ZO-ayp!Oy@c=9`A7m
z<Isp{ZH+JwnX-kn>WXZ|ND6T}&|WV&Kj39`>z#a(uWGhYbsh7BAd9d-^t6p{>1~>5
z&awEhb;}$8qY!w-p^FO+g3PD2jaaPm9xRfpQg2argzhSJ?k{hsNwv5msgdLrU*Phh
zO9$eAL&vuowWQX&dZ_k#BcPR*cJ>iXKhnZ`qdas&ndA_4T2jDKI?)dA`6R;SEe3eA
zK*+Yv(eOZh@J|Ewk)hP<(Np)NoO6noSa@eBpBOSDYKYJjjx+Ne^7{mD14(Rn&eMIp
z_;qNoxqQ~64`aurCb45?gtSe=G!47DAJ=;$VL$rJk`NlEK=MwIdHZd`j8f{W`L5m{
ztvV8+;_4cC=h*-vqFGc4?7ajj<0>?&^?xsi;U05ZH$~2im-&`Ke|7<7_f}dn`?i4&
zXQFA%PQ-C}(}))|jIf-$kXV)XVAZ+F09{{p>1o<kwsyoY6u)b%4{F^N@ToDeAAn{T
zA_VFuNH&bHPuE0r4s>oGYDAI3;)c^k)nmE(N%(V6R+`V|R>`s_8y|u;u|&Wo^{pH7
z`+vr%)((>moykKtO8=g9*>`Xsz<3-oM}p4gku@VdXy_YFMx1c^VtpR5Rh@yfgWwJ0
zFp{D=4pcQ}job0lx-PBW$8B#qrJmRNLJrGxa708S-`H)7@+q5;fm&d2pd&0p-B*`p
z3<G8tFzc0t4AYIlilKe{L<scXZ>Q>VL_-~M{BHzbj0it|!WL1Ek6Euk)&|vIXo6Bt
z44629e}!j11YS!nxm1^8`UZIBPxzt4Dj&wM17FbkBtJtSD<#*2gQypW$HDpBYxI4|
z<TOuiv{#1jf`v*q6n_O%+g0&(j;AV?g-AE9)_t6_Tg89Dp-udD<Y1Yf;*sBMJ907=
zJK%jMW7+8wB2&tS4Fu@I`!0%*G|GQXV==e?o*6jTO=gbT%}-xRb#UBT)!w}_?k+qh
zu3JpD6!%F<Vr-_XH<zmM_pxc0+4Br;DOMh%lDfzN*A@BoX$=R@h13Dmx&)pl(PHDw
zK}%92SQFQDqC3z`i;eXBbfdd#pCBXeQ>Ob%jB?m)Q<}SajsC^(*K6+8T3cOdM#sE9
zYErtaZ-eqWsqGwschj%9l;E8(7ViQlM%?(y5;@t(|1-03NVzb2YQ)&?;>#>(8&o%N
z?~%9gCgl(XGdyrqmsRSMEi>>T?Kkx37q`xW4{d*^<PKkgRlg+6QApOrYtIBPm3ZN`
zj6yCZV{VZP(ei1mnn7wJR)SNk8lG<$&}(`YJFF|a=w2VH=9Z@5?vFf0+ITfp^MZI1
z0e*mSL;^**A%1>DS^RZP^&Rm=QMSnGT<>-LMNjfh>tpa<H11IB$UilDSR;Hw!M@iO
zgXgZG-$5%wXW+ud=i$hzS>lh|p{q`jV;BlFYhk4bnyR{dvk*f9T}j$%6iKeg3&$hr
z?9}Ktq;~#cva4mt8HOHl6?NQ5!06c<RwYyfkA^M~J|fvU)`k&W;b*+(@zC~4SKU@^
z=a<2t#A=z@v?dE8>Lhi(Y+B15xqtn@s0A;3vZycL$(-YXU|c81WAJ2fmY)IXGGu{Q
z*jH;|_!!W)?=!kJd*-UR(i@FEs~Z*&zv@ETZ^RGYz}d|sStR;FbWU=&_r=v7cC+!(
zazSrEHh)Ri2FgG|a(^M6D5C$bk58bTYdNw#{pq(v2V=cqCIQVEAD+#d0nL>-gufX5
z4<gx(5naZfsIg?MmC8O%!lZDm%$7xa*NV<!ia^y07v_mUjHB})p&RFezDiIBP9Pb!
zkxLjUpyaaHv0yot*QvwjZ0y*|NscK7o*w`a7={uNdL4>(igQ$onf*rfAf+NSw^628
zO<~haz*rsr%in3AVs%Su8U5)}P2%kjBv>C89zlTQstgFpYweU24B4x8u{$u-0)#Yt
zCIdOHE9u1Qj`GZUQ|Wg0S{NR)WKhP7xd>Jy<N9DbCdch@wSRo-y6E`}^90r@$i;rS
zM(sa80YFw6x(+XOomUX-ODc%K38oaS6LtGPQ+6ZCi>2n?SWP;?P=SBpHvKf&f4*O~
zd$gOvN{$@w*URsOm9@z|Zr?kV4ClJ<)H-?;pA$`e=S{mFFxRea^xo2Miz6DxD%)P>
zNMG8U?NKncVGNsx_ZRHpzyw<a=XsgFFIj?I13~X_@aQyrG&J9nphU{<D$9dZBp8~T
zOYXbhVW>D$>oG1CJow}x5{*RnQ^AYSH&BqwHF-#?al^;aWUa;acN;`4X{GQS*KJNh
z7@LOpsJTKtnFM@)mBO5km3QL4IHHZv%SXam)mh0D_yyWpVwmG#-yM0rTpp12y_uxj
zkK-8y=rJaZ!e^DALjC((>G|ORZoCjiqxJx?3o495y&bSgrN{n}liV+FuDp^!PC74A
z>*;45DFUYDnUgSv0)f*{!FeqSOQYujdw~m>JW;I~g^^ImD9WGl-W!&1xGx~Cq~Bk(
z%6)kNcgTML*J^V;n+_BZ<v4{M0mA4^MD_PPY;!d}d0s?v{4D7QrFQ)2BJf|JqfzTb
za>ZnIt)}PlsONz4QPC?kG7lz+KDAM&W1?@lN+7Jk1OG?5-2#@Z(s`bZ!fEO6BEM{K
zt}6gbK(xR4EcB7kfe3fOUzL;3TGZ?ntB?EI0!r(XA0=TQb?p<l)id(gL|q}OH&hD@
z4Yid&u3`N}(8=p8AMA0O6)i?^f^61g3}O;sZzsxme-KI%(??JI{~`(B>5hRkh_Keo
z#m3NgPn{w*FvX6}A^hj$n&4P*KJf2#8m&Ec*m++;AX;$b40h!zZSUyGWYZ5^Y6E5=
zx}bQ}@VkoqF4Ph_HiqbGUF%Nyy49_U7r7rnw8LsCHs5c|D^TCDFIA9;tBOhYFlzD+
z?D0fv-ZF94*l@i37HJp*&l?~Abzqa`Ik-tkg5(M2ZX(eLoz~VdzmfW5#|OKH+seJj
z{<-<KYB2R^Y7I$v4&EXQnAaKtQ`;mAZwVKH>KQGRK8P??IgOKO%vO2DhMR2uTjU>!
zVP%Ewbb1%w(D5#W=o7>XZnXT|a}?Uz_N@>&46u!PYp|!G01vg)aq~Fkd6c&GG1T@k
zefyaV^C2v57}XbgXv#1PhAXcB2?0m9s2H!PVvRj0XfupQu;ge>Ftv8@eDjGt=0A~&
zjAa4JtLSkA?;|w<a+|(tV|73Y0b~^_&NTF(uoiP{{*{ViX(A0UmR>-Eut(5d_W|Oz
ziYzodUo8b<GmAFBEPox(C=_AR*Mw;WjTh9eMP~wG*SEr%PQaVFYVs4EnK^}~lU9TB
zXByTn55=>!Xm)VUbGh_MbL<|Mi(jR~)c^oB-J?wf!VqX%D4ISkTw#B_0M?L?p4u=T
zxKJuBbN$ZS2e{o9JqXq4@!F6)==v;WORe8|h}n)ZifG+D_fSHTcxbvtNZIura-!b~
zQNOKuLNJ#xIcvhemlOS;x2UblbpcGP1NfgIVir260QYlwpn~g_v8B0VtFj{C*Bw~}
zGQ%?|k7LN?niN6wAS0rCd|UpJJU=4Se!8e7))^cI@pDkOuM^lweRV7~{!6WAYao5(
zo&B>lvZ~6bd9C=4kYOCeIN;)u+66ouCaJEZ=PrDD<Xa^<<JjGu{t2F|m&8Nt!*x9y
z0O-t!<E=02W)WaY8Mt+?=-0_cTOJ?+Y{IGMv;W7$O1c1uLx!Wn$E#WHaOp5~Ap*}w
z+80=o`?oX%rSQ=x&=ganrzCEVF!}A`ddhw`x_8ppXL<qUN^UIEt#kmJPnTHBB+CP1
z*-uq<!>;}TjM|`0@h&h<(yeqcV-oq(n6*gI#PsniTl61%ELM2p*<nB^nmR48Z94mb
zx1Tcu1A#vghElC~OUrY2HRU79qkWv2CAP`T@r4;viU`-OqvjjzS})~YxaFF64tGHN
z*GN#KCxW6!TQN?2<0A1X4fr{0II1;VWV!feWD9lD;-_ZiHB*AGxjURN5C19&%<7_)
zQ<rv*sUFmKjM0dgEPOUKTNvtt@vNalf2dQP*|G|MpGnZDWpWV5>Tv%Nl`i7iF}Vr|
zct*fbe8Yn<j}3%(+D0(>Gy^ChHQ5FYA*rcxvH6I~8LVwls+KyU2lrZ7CLu0HO}~0n
zW<t~EkA15?ilC9GZb+>#uVN}ASI#mCrbL#?1Bu)LXE7XtVw7afW_-0jIt;Kq+<;^4
z{sB6C0uo)sl=>OJ0jx51AnSmI%NjFC$!mIje@UMc4MIKI?SrjkbOoYjaJ2yNb0*U=
z-qx}kjgp7r28h~OqKV!Nf#i^h7mzEN`=YofTWJ4RpykcMa&Pd!-$0rp0skP&n$|`M
z`N!W(v%%rn*q>)al}E>I6Qxuu^r@CohRVGzTRTO~uk2jCSE+HQk#ZF|rR3?C{XM5A
z(!W9Qt{`LG3g8B;$$P|}ce|AZhdI3_9mtH$fF_<|l_;egVAM$*o+PcgH8%`pb|+^u
zEkVI<ap8ZvdVubxsLacL3w_7_MLscoGXw8yhCy)=frjdEzei{9{_+Xo;z=i+B@T60
z7HJJEbT|V!;OM7c5S<XbU>B@(YZY}h&en)x6fCWdsTP?0Q|$<W@MVHqA5q4+IH7~3
zR}NcNPEBZ<_jf7Oer*{B)r#o2@aoQOB69OW%-=Eso!A^Q1NrqWpaqK&28^m~3JDit
zsq~tGI^fu8b4dEai84?fdK%Fax{2(}U@P5nXXE->I=H|AdY<1#!r3Hy`;S|fqoD=)
zFzXj<ZzE)G90>hGzLB*zV|4}ZBgX(=q0ytK3}?q$vlm@6TtL&#IQB0o+lwdajbDMU
zWYev-2c}&bnWbZl2gG3690K&4$Uus|ssUVs_5i7cu|E1R9in?<x>XU2-Tmo5IoeqE
z$QE)-x`&8SqeG;K#plhjNf18Hz4xLe!@$j@DNgHE?|6`R+cCcH$Z<v#HFqHpiYgL_
zd|2IDYzxGWC4#EGZDe+azi4oM^M*0Bng!9WbH<q^5?!x%B89qPZI3tU&q^G{2;8SK
zTo<7qYRlyd)aIGayzy@QLP|2Q6Q<>-EOsRj%)i8iFGP)PfG0xib7W;3vMPiWX;keB
zq5Eh3>0?Ttzc2bo#HjviF;SoMb7n0&6cb_abhZv_sgFq<(wJ^NTeh@uoOSIuk1)9T
z--dwg8VDe=ccYbi-<Da~n}7O-1QufMw|OhG!I}K}T8*PFU8wB%rcTKfT{HCj-jR4*
zMDVyE4`GL@{@OMK34FszBi8MX)t|WxUM2{PZ@=a`MDS$Z5-0D0wwG*U?%QAoRkcX$
z^P4)EH11tTTe`(Cq92vK2)0V$2B+Ic*rdxF>8W^8wiT_Ad2i{TjvMS%88G6^K}D*I
ziR+&x7eyRnHq?Kb2H2g`xk^r*HH=$FqwP&-8FItpDSu`>lwFi$7<vmZ-kBFNeXkE-
zwamv6nFpTkMaHq1?_NxcfZhF~SKr95P}~RE*{g7X>@@qM7xV+Hj1vI^b59HeWRs;j
z8#L5r*tsVJ{D@$Wu@wJmgqqaJMVy-k7cg_69&wL?{W}G>U^`gO7Zfzv4zFQ>GGqDe
zWbf(xpRR?3-`lUa1qha;?<DMrSS6sb-kiS$u3-|2-1Lqv%nuQ%a4ubRD!X(L%?kM#
zf5VRMS<ve$L7@Eu2vLb9BkBV=d*o~ZFYv!mOk@sDQ)=ns!`h$cR0i42dXJ{Yw*kl@
zrGHaUVNbR2VvHZ5QWzP_1;~G76HLOta>9@lQ^9aV&%x7$(5tv2r!q%N9|CJ0_@&Gr
zdHw(@%#J+#ePFN$fPXR7|JdSB?4cqxqV*>-ieV+CNLYIy9cpHY+;QEmHt+U3{d~dA
zn-jt`bQaa0%o%i)2GR=Si+?BVblv*;IPWoX(K?~&Go-uF)Cpld;-#tL4<U>=T`yh1
zd0tBxS1B-^$=p}Lx8>ZY`EC^b4Mu7yl*aX0br@v+5wZt+z(2f0m5V9Oa+E}@J($m!
zb62bZb#L>Z(%;+U6d(Wm3C+okNJ1|U&YtCS*syuN1{?^!yX{qG!Ad0oY;n9){$K~Q
zTK8v65mG^a$(KS0vEeg(sH+o-c7zC-kK77HgF-c0@Oyu%7X=o;*C_lZ{pk-y!mZ(1
z%k+^o5LF{0f}$hh==A6OugR6|dy(~lly5SI^NmXbqcZ{o-cRMUxK90{8k9_6HvDHE
zY*>}}>LU^?DfN%=O@&{GYGvuB3pD$Ugwt#-4p@)@Vg-$M;QsVM>;=>~2peQ|#H1>Z
z@X>ncTSFwiw?o|uvePGEU*pk|d3Os=;hTr0T=^IzZW_6Ymi14xnMCa!4~K&`!&IA~
z)Zi=%W`u}2AmSy}%cTs(MHa>U+nu%{nZ_FZuG2;Vyz$60SuR?HRJoN^h4I+WFDyYt
zx7t7k$Ld7&1-oB+kM`SKb9DwhH)2r;k9x{-1XVr)^IJ286+5pSchue~NxS&1>`0@#
z9}=K6uYYCjhk;*Y4ih;IjEw(dx>fv=t%|$)Z=fsY^9T5F#pGU7aFa5U^WLiz=XWcM
zZa}f>?2)H@_rY|x>wa|oR%eMXXI3@cvm;$gx%V$gEdT4IuXdhj`dT^~%dns#9oD63
zJ3dy?NR=wT#(amKos*be)|3fl5$!6E##fM`ew{A(HO9sIa27S%WGxdF2=5(cEw_3i
zjvANjFS_~$@&8<LZ2jfN$Qrb%zwlIde*~0h+%J+fhCtl#Q3fH}jVv0S=Lt*%PDG^u
zL)5YvZ;+cLezv6YK3uy<W(BPtJ$VVebDPl$TVi9+siGheDXHVXzk>Oah@~&-6+Mgr
z2k(Zkt(6JSEgxd7zg(f>c1on5X3!Hk2>2Ai-1;u6D!dEORW^K~zM02!_PQGn^5i3s
z9mHZovI5<xVUHZt58EVqLPmvviIQ4806*s0TTJq;V;|@(kRLL3Kg<9Tk-eYBP*t+<
zcKXhJ9=B*95^)PKhgC|^MqjJR-7ig!>tKu<tdkrvnVX00aqX?DZD#+olDTgDlaL@q
zdsnpC26?dZ!(3|Xr|BA=e_IHOeMg{%kSM7sJ|SaBW61h%J*>GAA{_MYiZ4sp6RmJ}
zb0DK$gD(ZBhF*N8ikK4I{D4!@ieu%NxW9wSzN_iA_iP5!0Hknl&2Y>*M<C%^Nx~~o
zWt1pSD`vuJVQ`jYf#~Yrv#C->q;{UmWSGBTkJtOrZPq?k^*$Hc@uW~Khb73S4BRht
zY%H7F4F~K0OUzo+avIDU6NSEHuFmtqJirQ}aDd`PD#6^$2THy7;6w|@wSMDN*+a2m
zRXAe0=<koB8dCt5zy+{{dj@A{I(&aR`_5t8gBS}OV!)cYuQj#lUiVihIR#n`VD|VC
z=)EJ(n-~dW-plQh?$;onE`$9C_m+>ek}DS;BV61l^)(=l-r1c-UtJSvf34vGUml7+
zH{U(fU~hEf^Rr|1#6$&`>|A0}2yE!lQenAoQEP5Qi6*c{@Bo}OEIJ;JV(6BcVi(_E
zuEz9cO60^hSmyCiIxdJ!8Vl|ep~bvApFpig49HPmc`7e&36o9Vq^B!==f_N;jFc_(
z_dAKO*u;;K3ED2vx0YGFYW_g_OD(%%(vy)=%G6ZSph_IjPsi&IAI0@L4OXrAi`+~R
zVcb8EX)W6kwVr5E+|;l0uUG}a{U%O!@PTTjkE!o#G^$|5=E(Bn<WorS^0oRYzdM9;
zn^3}HR<Z?1Qp+}~&Pf%fe|1OpbHBeM2ZC3m-ae#q{%Kl&AOVH1w@eJ$8ylBWLLvm?
zH5OCDz`oH$?lw4t&=NdG-eGL6>QnRe_v!&1r=94^R+-CTzY20%g55-@Cecu?sCphB
zPo+3ztB-*N5)9vDDgG1v<0J<?r&E@RO-!;Un#6UkJp<i!3~?!jDe_^RR-Ebd@Dmp_
z2=Lp{()5il<ajsZ$vRya8>M6NH8(G7B6#cMZa>-)LG)a{8Tp8akLehsfz9rdlQMnC
zmKDL1tNFJSdZ;}zLpzQ(Q(i1{@pu_`E_dhVwofJWblG=g=O+1=Gmfx6tlghy1~o59
z*8LTbe1u9NFCyg52$QB>Zf7-xx%jIET6^H%I(GEsn&%+BLIilf@8n%g1=$jG*!Ckn
zf8NzBJ<<?nZ<-mPvJuAMe4*8mM^S=|?A!fOS|0@e!$6e|l_ju+)o0G(7I$b925vI>
z%2!U1DFD~@6;nu>Ue*<UcEU%XJNEY;m`NFYr#`$lfEE){j2eCaPxuKT$iYUw_u&k#
zQ3QA}F&hjL+r!tP{RCd4Xo+C+b7v@mFHMvaI9E`KLE1cp>;PxUx1Czusxr!FzqC~X
z+~5sjUOS^d*Mr?5tqaJ5hR&l-@XjN&*BrGM%&qO8>x<xdKiJXXf$W5q10ePnZ=<cD
z6=*-meQ#Wx(eP<sXJz0$E6p;st5@<-du4UpJl)nSY4p<V1^HmtS%`te18L=s!IqpQ
zuFn>8@&f>1-}hWZc%0R&wm6^A43sSM2*NQ3y39v)Zq40hlt+t(3prReWO5Z5@1?Gd
zgxYy*>m-G^A@3L}3-Slzvrrg~w0D4#4-XxmwiPPcJ2D#Hd}@LdAOY4&b1@f`joHet
z%u{#+!L@xQ`XDnw73!n9jAZMyZJJ&Zv5j7N@kst26_;g-NU|`Xd9mNodYWM@{b$~U
z6L4`RJDbW-v#k^8dr7#&?vA1tfxar;>E&()9K}B;HjX5|$^d%KR1XvR`wKQ=5W;5i
zdqE=&UnhAH6hHfBX1yBeeZZg3WHY6bHT@VEMi}2=UUX4MD28ji*$HEkd2>3n9w1EO
z923|LHsg5)>Q;V>T+l1oE&Ss8S9@?pUXuAFQz#Kmq{xu<jA>23-%8(fU6|&L&AO9Z
z&d{#ZGr7MFZL0UU&Evyo{2%7MSZb4jB~`a(_|vaSpv!V;N}-w*=`UC}7y7g~ChqYz
z!b#k=C4F&?Yh#_366IL=K=5(u{Ql8LOB1h&t`P@`d^7qW-b}}#ir4|LI9{vq2q9k}
zAazQ6%Ld+I)10BPe+hHI7&>1EVA|~;W83KNVzn6u&VwHt7rQ~YV3sexEr0$u`Fp?A
z>=r0&Mn|PnafInZWsYMuF5hjRU8ySt5JrUy<dIs;_1604&Gt-#mLaVGHSM3KYnvD#
zF<9}h1R{>i<c@&MPu*Y(Un2x)QTgy~Vc2Iicxm#*{1=Xzbz(HIjfx7mbgrkr(b<b0
z`{s|G9^}r+67e@8x?>UNKkZNW?Gum$&%ph%M}gdU8Y@sb+Tjn#vx!#u@9?8V8`x?g
zdkEM5D}2yvW@K?=;#R#|fae^zO3$)6(>gZz;8WI407-uw>K}Vc3=Nz0T@v!h`Fz-O
z3dqi?pBmJa<udcH9*zz@OjO`xh=ZBW1~5_?B_kkC1YVkrVrt9Ev)h}o1fZ&8Sl1g!
z>0oZQMhY^b6IRIuO@s2av80JO5vK{)*a~IOLb3q&s3pKd=XiJ*8(V}F0eV*Jn)l~A
z{|4{NsN)RaEvwuj*6s7~b5VuCfyF6|*~gML$idoftSS2~BK}ulDjTKNjXQDuDNTEi
zK{F+rEaUjMs99K9pUIXOyp37w6Q%NnlA#|UBMB7Ng*xP@KcWw`Zm*a7HDdm(w^WiD
zj@JR{;YA`#zk^H=PXi@ac#cYt#zO)_N{17=$-SR$F)UI#6SvtG??&xCuwUyNJsqc9
z>yZX~7zxe$WZTUmuSVP}@WPrKBE@sx<|DYlGKQEV{H%2X;4I^ByAG5~c->C0ria0>
zni7l9cKsI=v1Lg<QX9F!;c3x9>b4#o80?2Q*<Mnv_0~aD;}_;%eW~H7DHX?66m0s@
zAD_V;K~c@SXqKB?TDpIx$&^J{qP%<yCg{`%n-k|60>S!$6&v0QfCze?@tkd=;P@-9
z{!UvAOHv-4)PdYmqpN~}Cr@?_cVOfmT#YJ;D)E=QsC1V0&|v}Yt|x0`5;gLj^WuA<
zdEMpF96jjjYmGyWr@??b{>f?Nz+dk<j>o~(PVi(EAvV(%8OL64<zO#G*vkriOytR?
zox0dq?bZ~&CuXO%$7@ivH$su0g>r9Z2n-5z4q`;q+Weg}UqShLu?%z%sgvqrd7N|*
z<wViyw-FVIm%Ew7YJ2nNl!>yVhfdlzM9w6^S3Zo(|M%Te6!q<$47K<5U{ovdW&HuG
zQUShBE&6n}EGg7H*>LvsLw^v$eF`}p;9h&nrLSFlKq1uWPy`O%T|89rCWvG4BPq6A
z&wWuc@})W&`kE!5o)k5tg1TjI;nFJ1n!;<OtVF^?c?4v1Q{7=tvn}KQ>kp%pS?U(K
zsH~d|INKwy$c=gGhNjZN@(RBO8Va*aK$BJ|?_R6wa9fGwwVPmPBenRYF$E(6NO8{@
zUPp_r<lspo3Qc4i?o!Z=_aU!WRY-d<6Cx&OWvcCuIq%}&x2lPo^dW=af3bkc>+daR
z?bc<%i-qKq5UeTt3TrD39_!b<9NwkM!29C^ZKL*)K`|Y$ontng8=9nnF_#rA2^*>Y
z92^7}!Hd5XgCscmiMx9c9vf$0k(KIFn;Xvh80S|TzfS4z7&h{H2N!qAq?m)>Y};Eq
zAo*i*7PDkGlU{!57+`rhGkkT)J+7S&lwb6vw{Wt_C@m=O8rC#4h!34x`vsZBbykX-
zw+#UKk~r496kDNoa%Y^cN%u~oUc?$|0?;~YmQ@v+eE*Bmw~5RcpY}<gV+Y?eJJ#Z(
zbkkzT)$9t<X1ZWEI5j*UW>-45Q4~hDB>tVRv8^O&_5DK2+P;%IlknPGZNq6~X5O58
z5Co$<2*6ktKl5&8kzE1$Y1XKtBa7(dTA1@G)v8Pb?+B8&MU)RMwA>ah^$?YU5ZVGi
z=0UNHNr6a8dy_`3PFSV_M<_UdZ+ydA;%^NopOGRRu+y-Q_$)_#$waWY-&_!J=+cjq
zjxJ|%;r*Da0re_+pUrwRQ04h#|08jUJZf92L(|5iVBg6C0<}KV&IV_5oMEIyi>KY@
z9QEt%bd8@c6W{H+B+{imCHLzNQu1AW;8lG@Q#)<Mp8?&pIfmJ-#3ZM6<k&}qT+)ef
zJ#M=*_qT+L7-PB&`?ngYzKIx5oLrSDv2m24LAQ^f#2e4{j7faHHsB^+Igu1%HW5bq
ziJmieZc|0>6a0Ogjl${JWODYd<r?%SGNlnrhlj5TFre)z5a*8x+Fm_YD?P)0^~f-4
z1y|`>A$(vv9WfSFohg*(>z?%0c5a6hHjKS~nzf&>sv^u8%jSQ7)XU)E!jS_rS`(@6
z{&i$jkg8ZcPP~%W@n~!;mRBG1$uXso0g{AvU&w}Gw1^A1y22H`#ddEExx$PZ27*-|
zK<e-i8y2qB@~!$l`SnwH<G<)k0AMEyRACRuff*cj2MF6`n7W-GEx#BW8po=q8J`46
zA}~rfV)+NH$u@j}--w|2U?phqpN78&{MV%;Zuh_1B!+;lM}nn<)2zu`t7js{SmnMR
zkh>F51%N1Z=}P|Yg|z?-NX>f}WiqyAB?Nub;NLa0+uKR~3!~&ce&}P>{ts%uu>Ptq
zZjk)^$>0*-@O(4VDXw9r#g9gja5=&wc4EpXV?5;ne_lf0cOL-pP{^dCS3$4S-Y*`}
zZ;3!9su9fOC7p@3$~yg&GF;l4U-{eHRUgek;5dQkrqrY%Nkdq2SNYic0SL2ajEs$|
z&^t^v-kJFgE5f5V1#oYF&6E7C!KGTsDQU??6|^&r)bNiB@(^)pApJff>pKbcG!*m9
z_=Nd{{)!A$mv;BT$P27SF}{x|SK(CPCG(t&@O83b%1}P~p(PCwu>z_7<SFb1I}?t1
zRL}mmrS4)t6#sh<#W~JqtJ0+olRyq-dytCoKe=N9-0tJdSgmYJ*gH1tmGHt1&%z8m
z<EBn0rm}uZNA7)RuhtqAaV8v0NFlu4eXxYVJppqU_s|_FTH9n08PLE;OnVn3CYrM$
z@j=I$WlEb$m$fRE+hyIvn&fG1!}%IDUi_X|4C%=FvkFVTEEU}Efh|LmI(T~4tvwIh
z(fj|#daBhd$C_8V8*d@FqI9_cSGk9)F8%k^8EDjgUz+feNLKDA*owXYv?d(~F9NjO
zoOueLMN(jJww@uIk~jj*Z)*k=D#CxCR$@?<_(MZMR_DoI2FWX@Avf<fX3Qy?47r&{
zQ7#62xxN{44<yFQi|Cg?$KquxKLIiQi<%E*@#h1f#kWunbey%w!^Ms1=Qil()t{7Z
zoNAsK0I%DWDGp`fcIT(mNpzJ|avn9TFF8G|k4$5I)Os;*SJpN4SIqip1h2KpZRakY
zIXMFybaxG6YECedUmaS?pX`HgxmnS;cA0KG3hHKPNZcnBKK>Rp3s1ZMj;bPdXw=`S
zfE=}txUf(Cxir$!b3QALWF&_$G3%a!*yG+#(w4DB<juPozX4jcH>n?yG;G48xAMZ>
zXBQ4A+mT|TR!nw?SE*MLW{tkHOWM)QEP<Q}{VIpdC4#CiUhBsH5(JK9G8ej$Vhdx#
zOft=u31zoS-{5-%TU%fz-tJ__IlX%aB-PKnFC5S1gAj!7E6uI>vXV={<<IHy7XuC@
zq|o$>-^y~*o3MKsB^J@oW{CSEB3%P;b8j6+ka{nODp4~=Jp6oJgL(^Q>!q(<j|#G#
zNqmI^e%l07e%f@UyGwM0DpgRG*$-eyS(*gDUh))Y!o&Yff@1ojCjef@|GM9?6j0xn
zaJY>WZk}s(0Yo+g#`UVDdxb6x+jyo-TiN^e7+_^_lDg<0*ol-Bmn)(6Uz3h8_gusX
z<3UJ2Sg0XKP8i19*6@^im__*0Q-#8=t^(3R%{HhW9YK<Q{nr85T%kSYDuEor;F>8r
zHTYcK4Z}FG!s(-8^b0op;Isgy#j|DUuM=wYG@}Kb6ErPx6tgEs?-r9CA)%43gb+Tv
zSKS)7^k?Ng7<kg!d0!q!h2E-2^Keebl${=Y;0L2mZ3DY}zl3|0BRfESk&60PeK@T2
zmz>QCCg@>TTXRFrQsWrp<i?Os64@Z3Nspk{xwFIvKM5q9*^7cx`i0yWooQnHas`zP
z&DOtMc(nTRddnXT%jQ~b`XFy-7XRI@mk9$BD-gXJZ%-NdGhW!i`4-*tF(!5W%&r#G
zv`Q|udf9pWmh>YsSV`odZ@&B4j;!SwI^EB;kx=Jn+2>tEAlc0a0=mFNDRe|%s&CE+
z<<SqK45tVG(P}02KO}a$=%1RLwWlk6b@;)#qs+A>$mZ5U4}Oq~GJ!a5Sq^}ZsrE%;
zzergMVFTtNJ+c+DMH1e!7e5-77x*?>P3QAH?oOw5YeFznE&$%fUE>|wR8zZ)BoHAk
z&Puvki|o@W*DV^&`vbLQ^v=Z}xGh5f2)?KRV+{WMnN8vr?I&$m%Yv-#WWl7q!Z-u$
znVP?MXP)P=?E+q)DtWW0bLMb&Ks7`84}%!}Mu*WiQ<vOd&XjL-k-!7W(344ldq0jl
zMrD7ID!%=gqDe&O5MWUk#!QO@$I+bO!F&fyGF;025?u-vU-QG1WNom0dNIZF$OyS+
z$$`+U$XOV@*tKDK>t7u~IzS*ixgHe66v*mVHa!s%pNhv6LNSTqP)zAai1dH^St?uU
zK1Q7s6!EF&(xfXw6uLXUwupmhcXG+OBUVy%%_9GJr$EWNrO@?SX}AB&%)OQY-`s98
zG3sjKb>uEA1wD_K%Mf_1EO_|O(6g?jBrhKOEumxpd{hQv2z^mudKuIB*gurERfprW
zOal}OvM1di?I1+Sp-PL|D$x<>d4~s`)6%-T2%!EHTTI6aB&NBiRW^0=N`+GRf`*H9
zXD<<pHhQkj*~qwEQ}LX|Pk6fU&gC1QNOZdTwvE|>bBRk69?HVqXhbZ3pQ7vah9jN2
zLF)F;0Ihv73G>O%C7AIQUV(vb?H?Ki;zp_(H+NvwhUgK1w`K|o@vH!q9Qgu<iK0-%
z>%+MH&wO&HKNwhVmHsRf{MldkJdKn1H<4tBk`}g>uGdIxx%pwb_*9gU%fPkvKM^BO
zm!jD(PAGU?#idQJBX7tZm)y-+t@f^3N+3)_aR&+BC26&Kl+o^Yb%b@2JL~Uis;E|E
zyydJP@5P)p@(&Sx02{&I$iLU1vuLl|{daA0iuf#IB>vHXE2IF>68pf!t7x(=of*i>
zN^OD=#`-a5QE*n!L4p|~KWQD?EffPq>AuttqOxUCcH*7#Cx!{tlo1&X{#DnJbiMc1
z*old~_6k|WO%NwuUa&8$lw@QyGoEfoHmW#b`sMJb=)J}7=^-jrLEld#7!p|iJIk~r
zUt9Z)6}O?-t&WJlTp<wt(F5V?H|T|rKm{>&Nx%Ex?}!*R;lXUCS_-6v^o_Y%9IWQf
zl4y6@CetbK)u~ipWhQ%XV|#X|T-2F{?@ytLZq#!CZVd_uk2*FKq&|v$9C)!vXPS=I
z%X2lr=c0xr`1^oo)~M+f8kCudr+4+mHkkoGCh;vs`%%wf@)7pGJs|)E<E)#h+9E~N
zL@<|&M+@V4Z!ABFU?#s9oR#CuopBUQs)Q~iNuMziVef~n+1tw)Ge3Xs;=C6uV<oB)
zwzZM7R<|E;dJ%_Qzn}NZ8jA4k>J@jNWXMJ(+Ho-n?fvE4q_7OqpF2w*ypOP+h9sB=
z7xF>pd+A3|5nTb5sO+xD_2AJ3{24(ta8k}=Fbn8RHK{KxB~WT>TMdY5R2e;Of-*<#
z71@g@C<?~ZsPJ6YT#36c)mp`1VA<h`#=S{I2tpz&pdAwZ9f-0_U8Oef%B+QS1CHre
zT%|>R+cpoFu6$xDUo`6`$O%5<cIicNuRa78H^-C5_@!Vimh(GAd(X$d8tZuPD6bpF
zneNiu&}}$g^me)P)^)ryiAsIVfag;wTa|c;`1Ekj%p$FXzB4F*g?;{uKuNz^+G|;n
zdC;f(If(3YVBMk$L&o2svBG<_K(B&rZZGE2%<SqW?BO^H_jNF=7oO@cSh&)18jGgA
z$X}L@R{+H7;E8a$9A&q$kpFw$V-1+}k5Bf~i@qK&sh5eA_(^rYy_XgSvHtUaUwq3W
z{d8(n&2(Xkqagr4q#=Jg{8Bk7TQ9&*(iMERlUQ%C_Ji00u8tVb1a<dhY^tvXt*Nq9
zIHXbN&tc(f4QY11pcb_BxNHvkpZ=Np<DNsHJN@?@Lt58~kfM0o5eqzrcDx3)43T(o
zTrqgg1*4S2pCYA&H}ax8h|54^paCK|y4_F)vb)966==nQa3r}HBY<9j=p9Unkk;s3
z!g2HbP|mnj9HKtY4`1$DHzUli9R9|4!D-l2Fs5tR;exp8XfV}8z1?P|C0T=yz0EA+
zA2^~-7k9Qbqp;gdU;>ng9{H7v;DdN*$<P(KDv{Z#?!|bY<QV*S#7OiUR{@(4Uws%s
z6`|8f#++8MpkEaTQ?e{J0K1<;-Avv_v9AyVDz4XUN9t89-19>#^G7R|G$gQyK2ZWd
zoo5MCZj>SVZ43yfX-!Tvl|-<n)IXfio15KzBq|J@R=|B8Hd{?DFKJYP+j$CC#Lou`
z&&HAy4hzF~){vXEdlLsZ3*4GUdjdvojJsXmOJd&AJ@gD!Wb@fev^V^Xxm^<pW>huc
z&pd2q+u&x8DFVy%WkWFuiRVg0IlVn3+?MlQXAj&hqQy0tgtCvvo{XEOS7$W<9Z)19
zs0n*I==yw>hqLS<S1YJV!3)#a>+_Q=uc283k~HRVST=UO6^}g?i|H8$!HHoSlis?H
z$W7w9H?w&Ok^OrO;AukiA0cNX9=_)C&c5)k<wjvAKqLi<J?_&jnBAz8lX!WT`SaT@
zBe9m!(^xKl=Itg)-9(72NQf%`1dEJz?8=0jftQ#WIx#MKB?7bdH_Ty9XACuF{vkH=
zJxnzN&j&**J6o~$ZrpyWj^ON%ZtRER05Rfc)X778Qn)wDY_T`}+NECTTuRXKuoY=B
zR8$PkG(oU;3?`i0`)^r(DAZc&I6GGh*%NUr)3v60v4sWrrb?>T4SoOw9r0!G0fWR)
zp%&)p&%l<M*YDNi?URuI(sx+AWpgMw*~Tz^?d9PF{o^L`XcP_poU)jFwUl}BWXNP;
zmkxwmWLK$L7W)pTA885mhFC!(v#wb~vsj!H(bK2o<EOq#7;>(@@9l(k7qKo%L<Mf?
z{jlf(>;@J{>YgK6gCyzb9*&te1m&O8*_pm)O*%)L6o3W4{bC2kf1|@SUVNDJhKiV*
zN%x6d+X3~+;mPE`cbVGDI(?`Pfm}5iFoBkMbMsC|FD-bsb8cX)^6OCvn4J%(%Bjz5
z%FOi#3H2aK4-O=5L)P9HUl-fa=-piG?(}2^QaKxp=wUHQYf>_D0#+ZhP@{EyzhckX
z3L5WP!H)Sx%}{TYm~Ac6kTm!^iV5}DgouYo&C&qhaC0!^2YDOTq7=yj_>CMCLXfgT
zWQcF@pI`c?fH`<NU-+YW?5yd7&NqWD%zhi@GdhV1VV{`j8)Gh=`_Fk^>rGeeBzjif
z^_$Sb!Khd5B>}C)ASy&pUelXHZf}}A>r$2wJ}v$5VpU#L$o>^og#cyVHZoo0Ll!$H
zUv~<TrtPfiTKoRAbL5n5Oc^n`EkE@u?vz&k8gX;c|6hoMv*m_cOe)~9S0LngPy=@T
zzA|L1WG)a#MT=PjnuE0OhKxAeUXoTDiivd1%Zn}R<wNX}&i>Kjv{5eWX=QfeyO!kz
zh?E2Z|9H&_#--L5tv+iQ#gQ|f;)lliy4?7rVsyNN0?ADmx9Lc!^OuOrvslCR(;MB=
zL|HZ5sL-poAh<I_JYQ{VkHd#CErZgo%vQ0SA%hvPn^>^=jzuT1VG_7Dnv%PkX@@e`
zHdfGJvr@Zs&(5E%Dg3F+4xdc+Bgau2uy_7gPMc<2f^VPE^_<N_=#QVJIPo-+!R8!|
z9GiUM`~W@yODF4Oc%IRN=8K14zJR%*e`wbz!1`fqbsbYrNR`~r;>NE1rAtX^yIL-;
zd}bm{HoJVw(G?~a;DcFv#v-z0gjNZ&oL70Yi}%M9|JPBTEQ0l0GwvK;%bezh#pP6E
znq*T$HGaecdq%Tonng5+D0_zErn1pAY`{~ORZu~3>wT4^>LYG5>)g`pnyXTJOLEHI
zxYX4w)U!7$DqjCi4;l<61Y-{!Ie+!WL)<A^MM<2P2M6PyK4xm084YHXo6~U|@Sixq
zw<d2U?$^RW0>f{WcG54}(jSdf%ovYoN*=}O%s#DG3Vx0FxM3K{Ek^tKHjA1Vq>cUL
zs0Xd;PwH9GwX|mx!~RZy`N~338Sq`{Pyuuo1s^$9RSL!5m_wcCmHQ!6_1r}v_EBW~
zFF`3KuskHys`D1J=YFZ_3#g`ERcKqql95hb^wX;t@WT59<0&;@A3ns60plr}29bvW
zPJ4-}gmFK@*8c~*Z2`rPj_%r~oJE{Sc_wU@*ksc5Ulm0xWZ-Rq^Ie_IIA>Mbqi%G~
zD-)%6nUwVup;guQo!znA#fp}*I_~TH)N%;u9Dyp;r0QoT^)>q=-|y&noLD_VsoxEb
zFfr*lq><ZWslm}m;E_!OC1@u@F(!y6g<KXZroE=3Ms+Kl{@bfe%=2~xd_o*^c{(;?
zhFcd9c!L8-SR8Vis<H%5RPOJZ>b-hj98Hauwk6!P1D^c@V>O46^pP|(UvO_+0`In0
zb-~#xgvbdzxUGqOcrv<aqZ(L3hMO#kdIR2QesvJ*l0`6o@G1jpIdbgc3G8}0YP{s3
z{0UhEONVB1eT*M}#z&_`M#-1mFp3=OmVaN-5FvN7BD6N>NV|@MZ`57~Mt*9iRH+p<
z`lD<Vl$o4{IFaFXz#FtXx-BK1(!r8vdL`FY!PEVG`v+FA`HI%6nLeXs79<h6WgvUv
z3r#;<;!mV@D~)Knj`d?@6PpRTvy_RN5o1+<tcv0o9L;d!c<&|;z@k)Ahf0rR{jI@D
z4}_5oDU1ynz(>b!Yin2F_<(~>(dzKRf-Q?TlNa(44Ap&i`%<8_iGs?gv6)s+=~t-4
zuejiQ1I{{0nVXHon@r%J8<D$$xN2<|q}sogpgLS@h2;!z&AIGIKlMSna0U4Jol#_<
z;|_2ovsqeue^3o3*sAY-wLAh&^5Av%0V3$WW4jQvB8gtj1k}mYrKK6{YihNu$L9Z%
z(x||hv03@$e#Zgh4OpCo*nE$8(k&w7l%h=I*Zhbrf{iNop{X@NgYkt9{&ITx4dh1>
zV9R6O2>XToEq=xATK3m)#Lic3FDNwV6x3nGdp)4G*J3#$s1m9`WKPZfIBPhU$K&C?
zNtRB^I0fklA&x0LBjV1&TF&AQf6>JdK>aUVQ`hXbm2a|KlL&JJy=>UYQmLA0Td8zl
zLSpX}C<!KoVX4Ntj9_=*f-poKHXa^jrI63Hj!i0+N0`R@vdpLJi$4gwx2Kqzni%Rb
zI_zUI$}WBAZ&{nbV>ZznAT_GQ4Mgd$)rpqP)+y3$L;-aSg>9g4u}L(GBDU)2s@2cm
z`DyP-*8xhTF24(f8d2fTL$fMVZEY})!g&8Bii<|TR_+w{`^;g~WZ(iIk-tJN7n1Nj
zwB~ux!V_1pqk=+Pt;#?6?k;!D2gcLmI8h2=_?v$9(|zv_8dEtS*4Vqq*}wQKF>vL0
z)&Rm{nbfF!PQDfmoS1(6B9H&;JvT2x*OGL#b=4YYb(*NuFzoQ_=U;rK*<xT>Q-Os(
zX3{a~N-6)x;!e(EU=hVF@m7b_3Sf%L)sRS)G#GBZg0ERkA@M!Z_K-?t|6f1ORU~%o
z>o}XJNspjG1~~`T;Yh_*@=At70~}FPYb0x6(!LtQPlh4gqfub$?fRKg?!5m0kxsGH
zFslD`)(F_8V+zP$u4v#gY-NKFX(l);dQ?VJ{`MH|1}x*b^d&;zEMo2whgN3PPP`{G
zak^!=<)}t`l+VZe72$6pC>*w?a`==EhUW+WfH^{)X#E?~k(BBc&7m&Fa06h6ey|0I
z#e)`rWz|^oKg#GE`S>%&`4&+B&GulOS$a5i-N%mEW$>E$LorI$6h6@-Z?RPi1U$G@
zjWQhyOlp;<pSL|(A@G#ka`u6drY7?W%;*AXPzJ(4AeD_T4rv%cj>XEg=^srzO+bqG
zf;AF;y7If_M_*C<6ZGfoqYf@IJD1O%5lM$Jn(JeumTL&DmcZD^cRu)&fL}EU0fMAO
zyTkt~<o2fLW{N7EIqW9k=}B`n-O+AEX6z;9yfDB&!1#V~)!s@OuWwyg3fu#o>HYE!
zOAqA*FY?|lKM%}NjmS37GV59K6CM}N=$hPOh9l*Zk_EvEFGzpfZjlh88oimme*EoU
zNj1lZ^mS)?o@Qcf;``ivt(Pd}42U;aWz5d6AE`L*^Tq28ls}?^^-2Xkf8p9kUSe_~
z@3lwT!}R~(W}ByTp*SWiP%X$a;I@#LT8Jo1?+6~StUJ)XA{Dj<dKnn?t3={zdgcz|
za%yu%RyF)C0St0+um<eRpa2{|Z;29R-py~`#a(P7_P~*?MwDACO4N<3iB!4?I%>DD
zU(xOUSP3c_GGiIW$!}fEgu+tOYE$k~QXuF5SW?H&ouHT|^Je2YnEoOu9mY7HxzLKX
z2-YlshMW2hz{m?J7tl%Rb2osfCM%!3GZXO49UGGq>Ds7{n>t`gnTq#2_t8ZU{RU%v
zBJ3=2Pqx-OIerJdU?H1cHsILun=D(FRD0@GZD6AiP`Xs*7CB|OGicU|D+%*S6Zif6
z374TZHOu;_?K|!%a=4a5G!=dEhFAiArV5F;=z}QDOeNU0=!pB^A=P2eYee><ee;rU
zTT0Ao1+wM{O+ZMcD=V>QqQT%)*N*HsbCrW;6r(VVY^b-v9|r;Hsj*#EzA#O_n@yR~
z5SC0R>O22N%DcNcKKZHb%@-W4P;MDG+@=b92Wg+<uWX-jkXmK46rOP&)L1#Yw2DQ!
zE$j9{vQO-DNH#(H4f`M36a{2#wBmD|nTDZ8kRP;vx#$OKvJAersvZ286a1wLTGGtV
z<CJ1t(f72Dtm}#LG5?!B&pve3d7+Ihab{@i+ctmTC_PF6#&|z`{{D;)+fs?L6F#pt
zM}Nry!y5!me}YZ+C(~nS0cw@$r^tlC_R-(5?IGTt1>HF*XpW54)wr?I-@{Uf%n?tM
zPuD<>uJI87h_vNrM(qHd!NeQc4}{OFuDXrBl|K8wM$-I;X?e}@nt$z5bZA$Zn^J4X
z{WHO&s2pKCp~XGYZ%ITMc~g!^D)#j&i)RUv)e#sZDiCXjQHkVvblTu@gA+^loS}Ag
zbp?*TRc?zXjy-NrMNohraRmaIS+P4)N`Fqgi}3qVQ3ezZkYTi}#Pcg?Az<B}Oak>&
z0>==<N4DFi!H=!jX1Z)l{%mdGhUik>f{c6m3+if_|0x(Z?us`_nZ~*{?P{;szb%0B
zUX-0gCL7llOTq~x2nZ8kFXwD1s<FO!9)W#BlSNXzgzU-B&$3UI=Z76KNE>p-$7WyG
z-iG2b!Q2$-yD||^j44XCnjUNN@Ke}XQau2=ih}?pA?&V%HeaSj;KZyeM>;3f-2KuS
z@hhd|_=Lg$A84yO&I0Z06r#VTn*7y8-f1c|73`o0<-Hu<TgV$S!U-(#a~jFzJ<CM`
z<Mlfxv8$m<a87ppYH3`;_D!wBaqmGY#*9PCJYcv&4@dX5L)$g7TtsHJjcB~Utocxh
zyLOvldUp&Vr8g{@!20>1eSIyy70JfTuH$8Qv$Y)GyxesZD_Ag@6023aDsNv<G9Q|e
zo0*t`<1&ua5dN=2uU_@~^irlWH#F@W<&GP>FGeI_tea{uR6ec)DTV&K$9G^`TctxR
zWvd!zI_`F-W8ApfjI%w#{(h^ekqCk>z(@GeW>E*Q^<K#(D!n#;<Ax=wzViD>(-$XX
zSL~WhvhB=4{mA!Mk4heWurnX~Eun8*4doo=AVPZBOPj1*XmR?hu{c!Z>vqv%-PnRs
zU-d-;P%aJ<pEH@kt3YEMZ-)R>yvbP}As#)9r!u>M(|=4jVti*yjs*+j%FIh+QQ3e8
zZ$t>WyHfkE?5&{YXTDSlG^1}Hri#%dsTpkHg>xN;ha!L<77d#WKe72h17L?%ItbFh
z$^g@o6HqsJ&!lM2gEr&6`QKk77@CvmkXLXc@!h}o4gl0x<sKyeDQQ@-$P)3Ln|J(8
zQOT_Q$}E<|30ZM0L~0@vmtL%T%B-_mZwp>g#LBTGK0gS~-Br$2QfvRCqMs2=#I_fq
z=^*hkO299^Qt(cg1+MXr1-oZ)!TI>AHR7SQ-6KC?F*s=IUz`z!MmS=jjtjt7l?X#c
zIOkR4K9i$)t=NRRe?uxgeJm|cZZgv8yMV+rMGiRH4Ou&5py`~~4OBlYV!%O>51FBu
z*mr*9X;ePO!yCfJ73c{24`DhTHIDn=B+xq#ysrlRhId@W`zCaxXAb||-6`49ji(iu
z@S5n1@-7=4K?$li*Wu9jfWKnp1Cut8C<b7t0Kbe@x<M66v{Op(L&s_4+>$aJzgAm!
z<92XW%QU;K#8@}61Es&Sd~9RTLmKyX(&7r|mb!Nka@M&G`6NW7SyZLE-%KbkqB-#a
zG7PkfYf`l&=WfSq%sIA(7lr*FT!BL~{~*c`BgbB1OG|E3-C##Fym4#z55egjmEtC<
zo~-&EVYY#FUf1*Dzrs@|_>@~s;;EG0y%<bF;=riKGa1XOS|g5Z{N5X7aIl|@44=o5
z2HRf(3oUycgiE_X)ZK9YlEczRG0Vel`*Y4HDpz{n<Exfp*OD$Wq7VF$r}NPIC8(ZA
zM%xw^?kC#gwY*XgrP*Fk93PyFdRNkM)Im3Ij$NYA=LO*r!A%<<u8!;d!DRq6^I}~#
zuhfxdLp-p9*|q});K->3OMLDj?RGiNm$+RK{T`PY=Gmt%E)s8a@mDd2^mJt?g&u&^
zE;r-EnAxiw6&51Vj#jQ6O*XLU6W<gO4*P%bPLalkfPzic3J@n6CHzzlK7quE>jlJP
zuY+4ui}nON&?Z>fwA(Su2x2;*rgNg^B}y6sdM$>j%LB4lS_iKMaGWEos(I7r!##3h
zKJ%5D)Yy@i3os1XJZ~>D>TA~JrN&_E;^M6|wUbp4^r5X8k{0Pt!EbjI-74Y%+{lOM
z{1aDBTJWxaRyKj$lq@B6@Z)jSU=xth>j^Z^6LUwc=-H<s6Ncrwc=z1XgQp{hPTFUf
zf<K7j51@WynSf7Gr&H)fVS7y?Jm`={@$E|WF0P8lsa9)#dwy6-#WO;NQuQL*2gJRC
z>ooC0uigmV%r5L({U}m1ATU)LDd<-EKF+l(=Q3j!VCAhk#m87~Y2_LDQwH19jK|RF
zOc%(xd}1||Am5X0xhC*$Zh__&o1y1PJAb-I*h3r;)fn{`76!Ad3ZfsX#ha%tWwArX
z7s60!*gRWpm&3MMisPn3_J4n@Dn?Ll%I!MXJ2g*phRTpvAF#3ENZ*LMp6^k@GQ@+u
zxR{Ev4vBPS+ma~8Zr<DOjU$Z_V@4%VyuoP1vCnopEE#?H&z;>Xm+#zAU1uPiY#CHc
z5wxb@x-H?ktQFc7RH;C5f{}X!B=7?bqb?4!Z%c)nb-3lUl?`dc32uoG;HMP!)V2H!
zV-qW8cAL8(_>6s~24g`ef;D>KZ6wIaT>Mj%x7R`9ND`Be4ps*wpgJCDB#FnoG}22$
z@2V?zWdxLQ;w-6b=renuridAc3Y1!J8f9JN`rSNW&8>b-ie|mq6!;FJ@N!8^p$y>g
z@2AFEw(xTiS#RfjZat+JF@ppqX^nZE<uB9(D-v-)qiS&PfK^|251WR4jx&wjXOctR
z<GgTit2$i)Pb*P+st5xhf@>P$lGDvJK8d<`5AP81>ubBYw?ebR+lZy?$BM)5KCVZP
z?2&HwobF@ODNAE2(|#nEB#%=1Ox2KWL-!E^^1T#`8;AWA-o$UcJ~L4a=AnB;ImlT>
z)|G!@f_G9i@YE{rP3c$L;|uSUL$LA#GJ2sPZ&5){BJ>iFPNK%_OO}(wF;B0s^m5h}
zvGZ<D8Udz}RAJ6?dKJH^buf8nsXKJ5Bg|7khXEy6VAK3Bb!gdo(_}beu8F{KF)5|U
zGX+^BI3SF1SyBh+QObx5fCDAJkp-OO7}cCSoY@3?EY53B`y{GNA+}jwNC`?FyL!Y8
zfc$!qT1mbDR^Ms`pn}_zZw5j1IY3n|k!9lfy?i0-ATiti@s6DWsL;#kMt$<{9JIbZ
z1KWk9!t=Wg5!l+HL*KGeu^a;LyW7AT8!0qxN0_4E>g=InXIkpfya$g1Y64muH1Q$y
zN;^woX3YOnKG?<h#<q5Wolb-e!xP50IUIMB;!J}DW@LK_vHCdQ3#zBX9FG26=F`H~
z`nV9a8PQ{Q#dfM&UTNe>FMZsA#@;%jUeb)CX&DTjd`Tw3uE_hoz-!Q(X7?^V{dQ{H
z%6^*NC2mFPi3KaIe2njjb@ugGG!dX$f={HBy32S?<D0AAPQO?_fnTD;2WL<y#3t6n
zSj4|r73(#ijBQxSX-I;cULIzan=jtDfN7=(h~ILaPTw+1W7aNqQF@v8awFn+Z8Y0S
zCK@xt4`EthsOZzzMaY68T2<WSwMLQHiUKM1R%VA8v%8dvFhRDq`f*i(8rtdW^|Vm>
zo|A4_{V10&-^l#_^6keh?VW&twdpxxxRopE8oGz>Rpi}+fHro?no_A{#g;WAtoivL
zT?^Q?eSb6B`|Q;^%gKjhAkp|n4F6qUC4;UbM10ZW^<gdlijd!qlL!)5e0zcRHk44L
zV^qFZBv>EUAC)_=0cL%tB>_M<$oSgx)J-^9AkEjW@uO~J-856=@F)#ZWws`GCJKb`
z_C3sQX=91IgUj{m-a!gNwvxoSK?R>7lav2;bBH)Ia>TL?>z5f#`JOMlGq_D;p7t4t
z5>Fc#A*(wm{p<lCid1&|FxKVBKsqiUj3E8d&h>;pof~Sl8wQ`SNkMTs5IQf91F%wv
zOpb_EjwV+)2fb*SR0&1R)>VL_;2?m|Z(C9mIEx3B^dYmyi~_0nmLZD@6NH>Wno11)
z&~Km{%M!)h>sV5;FcT1mIvtndF`#Vl_s5yeQHM;lt%8olt5**uavEHjm4q0`oY-$u
z+S65CEJmmOd#g$Pqanrukqln+q0Sdru0Hu?UC!Hy!d8ftr&6i&*I*2q#6&>91FL0_
zx#&b2>;z5n&w04Q-W<dX4R|8oymK@gsMx_x_a2XgwMw_a8Ger%ZhR99Fh8Te!HJ{(
ztA^`Osdeax^sA!)veP*P(;uBOz~4K;n3z6s1QyV7xm4<LjRk??gx9Ya$j*?)&xcyD
zf#&V<1t(OD=}J<Q!VF6~9o}rd%1*TE+*AYq2$h846C40PK)}B@-N!W1$&GuO5Vv+>
z1(QWKIIf?z>@xl0PEe1M7ml_AI^Ii+?0R7mQ=&g1nS^Ga9X|^FT~etZ(2ah6&XJwM
zU9;+^$~I65pVhUO^#`sG>|C{~^c~LV-)HhXN`H`q+LA5^z{tk$$<w#lRF2Ae#;?Nq
zn<lw`d)?72^fPZ;gytl8ckVoxBd`i;=q^KEjYDy_jzUHdSoY)I%GhhL{WJ536&ecl
z8e2rdE*HoMw#_ADYg9R6Rup^vI+?XWAS4H~GH$KX6U6;3vXGEA(hJM1_$#}TRK=}s
zh6+E05p~z1adSwR@K$c6aFyy63j!TFPOQZ|K4YemSDOGDa|FhbaU)x^cU=Z$LNOHT
z*GhksTxV(yBTnS&*}t*%n-mA?xeE|`!eg9CLUuK7Dx$$eKN7xEORjxkEb%sl>$(%`
zfi{60oZM<8tNelmvLi%Hy|=d+;eyqW_X-_!pJCucGwZgoR-?KVv3gp8KBq-3&xZpV
z?>!^XHY~*Oxr{J@Ab;O>OiEIo#6)h>1u@~?ay$PM5uukQ+?SJ4ZOZh0`Ncem!VkZg
z6l@h@)o1CWw0H=+H8E4Gl-HwS&a!+CPTYo_2*+hk(fulO@#(Oas{SC)?Gd8ZWFnMS
zU4;FsJHjt|RL^n2klq5(!*u<J4tu~Hk7TzHv_70}2pEkdSWpp6Ov3~)$T7NPHw{Tz
zon1_{nm_{NK1bvJKg*j(u@}=vy1J8qa%DC=tx(Oelpgk@HGtYfyFgl2plyVdFQmYP
zx|ZlKD&-xv;_yi}ir|WRG((I^M#grh?rlF~fL=@cY&VGWFok-w%K}Rze3&V$ezc}C
zlmNW~g=MTfrs+@#0l_tW(=YBqqS>-H6Zg3OmY0_xWvw?}VYz+5eHQv=BtF#i6rn`_
zHsmS>xfAF*C1=BdPFD)=x6=7opw!UL)YG(eiqJ}~SpTf)A^LZMs37n;T<e^gA>V|8
zCgWzg?c%K3;?3eGEWFRx<xnHiN8N`9v72!S%EU_urIlO)Fr-NqSyr9eUA7OoQli1Z
z<yoe+3*E^T%wNVpAkT3M;j9}2zX%F}o5#Pt5QEkCMU0GY9cWOdZ4lsm{CBSl;@*aa
zcFIa~iAfp-%?Z20S$DW^oU=l+os}ix+#S7BJbv=GjUgEIaX~q6DJ)b69HvvxXcH_c
zke5@--iio`2OG6Z#^2T}&hiK`yu@ZZWxE;_+45UUG(@%?dEloPlRt)T42~tJbXiyJ
zJleIi>y4pmlO|<eax<)3psDB~M1;2v$-9s!$Yk7Eg^6$a>o3h}7I=uC>q?L4NTVG-
zpIv?+XEqHaesjzR*pkR0h@yvxrSxOfAIJv^7o`C_#bAVNvSJ6@>EIs}n}l=}Jd*0;
zCq`VlQ11!CI3=;gSJ`h%S;-Yo4|X8WSv5=>_W^lmN!#bi^Q`2BeT*&DqBsLEPqVrY
z%B^&cWd7KI<D;L&^D!2A%I~)L&)gDsaMvUiW=cU_cis`;FcwtfL?^aYo(#fHWVFC`
z&ms1%I6f^Sr4syA_VJIqksteqF%V3rG4`&Q19_3ijOr5Y1!KCyhVv|7d`DX1;Gam1
zD@^)3=Ny~<P4KhdlTwNt!!As<RgQQKiBZweYidmA?~Y0c2ev~%l}XyyO^cR-qv?Ji
zrh1rpQwW(7@p+SH40~*+se*G;?n)~-rv0|f>>-^WX0Hi|Q&?-K*GUR3dKNK#vH&6^
zj87WOlg<bW%<b@;73uNdTY_dhmp)gN`T^I?m2qys0Kmh02P0<U;>ynSc)OASgTot}
ze~7aTtcVom+S1fXZU8y>;C(J8jH94)h-jA`sz)^%Z=Z9~>f(RCL63{7IKBvMD>%aw
zmV~+@s4AljJ9<~>0PL1S7d(|95j_tpVwIsy2fAKC-qzCL7;X4G&{^wvR{EbvD{qh>
z4^`@R^R(rdLxAx$4LI%4rY;36zl|nB+G0I9O$nAPN`jj<+bx*i(~4-asRzL5sSA+#
zp+nhe%1M^b$>t?P4G;$@76H0z8g`<B*s5F8mA5&U1`E$HsAb&)4r(p;E(p>DB8*4J
zc<q4oS8V<$GOrE=u7q++1635g<fs0rxv5zrJ0R4Am$<+f;6DdNwGhi(Y;n1z%KM=z
zblIPLGGYTmOTr=JQSh^Qc9-S#3qqV$;bpuL%w{}46>W-T3W9it6~k!nz|#@}nr@0m
z2qYavo!k!U9Ey6f)8R`^8&U8vCS&wk_Xk@Wm~BxTH9nQDVA<>mt~|tF;E`e9z`-XX
zZ$1M{o^)xA%e?FjAyYyKBw^cA+e9^y`T69pgtlM}fNXp(ZF+q@>xVF-mHX>COR3ZQ
z{3<BD^~{X&7LMLEF++9dI;eB#^&2Q0%e^spO|9a6;#sy$In0SQ5)b(GMh=58RpLtv
zy4cAdXF6WtrDq$5($-O-!^Lpw>Z(eVwxY+aq3#rE8a+kueMutN+5w<%z(vFBll2WK
z>W8_49X`am>63ZB!}jr*Kt70r2kI(M*n%;CU6JB<QwO~n{yR}@skQf?&2`7Vl_GqF
z3hyJ*Pi*_#*-6*VQi18;#V#SQw&OpCJc|tth4FtBO}CEYV1xBlOC}+1LO9yx2&KsB
z%^2SP?DHl57M6|(iuHW@Uf``Vr%+O><rdPdc-2ZdR~odq*#DbW0*eR=9Sh*+)$5?S
z=-j^*yTQ=UY>>yZdN-nO&8T;&4JlQ_jqx5n32Qs$?CZ8I3YqfG)NFsAg6{ua+1U#T
zhz$Jkf;p;tLSs@3ZJ>vj*&|uKkSzwA_BFxkW-|DPB<<Et!24&_ee(<pD@fU7><ze^
zR65J+rxn$U9L*f%Ktg%v*b466lx4v6>e(8&zHDmJIH(!2umb*1M|AE+6wq@c(IWK~
zozb!^REve#N}hOJfnmTjAoQ@9=QJ%6<bC5Fde?4RxrC3CX$Ry~+!nAPRo^zeC7wF}
zScd><hQX9LszBl2eE1K&jbh*mZa<6=1WnD3rhl2I)QFSq2Bh>b#nCAz(vEcPCFKH=
zcgNp<8wX+GOzN@o$os3TFMXQs7j_@UjEu+>uh|Ok@GIwC7FVp`0N&hYTe}A%o(-Pg
zc!LCjB)jZ+%Vy~DicMljyF3xa;G;#QkR)oKME5OjuRbv{`<`w#XhIDv?B*d4R}f}O
z$EQR??nR$q3{xYY_`DcFmC?}cbiW<HZ@1dho_a7I1L+nV?Q+KvSP5U^VRS4yEvh|(
zT#xkN_N19VG^nq9mIlAJ>jnBJs#fWJVH;Ghc`c|-CNk46se6`-7t)<t@%OKdvHm{6
zpYk8Tn}=3ipurH7yM9BLC6SzbzK-o-W%BR>xa%FhJTHOu<k;6dzw&n-A5*>dhVI)P
zx2(8Akk?_10E&!);LL7uh|k6dMW&7$@z9S7{mPVn6mq7M-jyg%xEdu3oojIJ<|OCf
zfufP}Hd%lasN0ccU|s1fse0wTXdJ(}k`@v^h@Z)+bl_I=tEx+VQ}&&27u_c_JyZ(z
zqClRa|J;2cJ$RLLu|jW5bE2ytCOq4wikyt~?B>D9+fkR>mLmDZVkO>`AP0B~TparX
z218F3rg+om>Ql00-3Kg+yyYYE*#C-$ID!P}iYv>9$fiK4>OEyBtQIyMph$jm7BiR%
z@Vt!&Kmvm(#Q%8W*-pZq>p$rHcX82dgxIeM1G-U?+{4&2{?psK9}Gy*V0ULc*p9CL
z2~X^#c_HMA-9GRs+%fPJY&Qr{gYe4&cS|{}E*i;jqJ+zrChc}mk63X{@JH`EFBb%2
zQ-=$-!XNrbDc752&J*|iC4x-J+5p-lZs6qcBtcR=HCoaBkpX?@52K@50HwWf`-LID
zavYaf%tp-Unh<x5A3zh0rTotxiP0Q4Dy@!~ykyJeS4ExaAlXVO^qghjSNKc4T#FpF
z;R1k{C)#_>;QBdvcn}XwL6vushO!o*cDxWlWdEZR3k*ONOi1)Y^JOU8zk8%?83Z77
z_Z=b4tM*RY7E2Fv_Jl_mx!}-<Y!d+IB|%f;%&5wxqb+D-%O8T)I6OsKpDIi!=!7=u
zAiJhCh8<d`1dABYtM0h+;1+PFywO0Bh2n`0$EC3P>GETI69qbzVZ_dSx>P7+-9kJh
z%h3&&{i~;q99^V#doVkVW=i*-I6=4+tHTJM(%0p2_xeo`vOkSWWQ2uKhBN2<@I4V3
zZ{iX<tc^L<>MHfyY$ay&ZeWKPy%=MuU=xwtpM}X-+`qr^EOmMA|36q~&^bu_2hD0y
zCx=jJL8W}VycQ(=9u`xcHs8icWE4z57stK2^>9i|N=d$QfNMsEjgLV;Z=Y^OOn>Lx
zu<!=dkWqX~5d4ZBsw6IA1&sM<MD8xF7Yo8NhU0bDRO{H1cGD<cPV$s;#@SNz2~Wlh
z{s1E{!1bRTkb`1to_H1v<e<#Hz_w4w_6au-i|CVVyN+dUpFH=+`->IeN*{8z?!PNn
zl{7}SIMF-Yud`6bud8t)q~#!(laJq^nk^uSTauJh?}`TuiBI6FkVGy}t^Gi1jYSDV
z@37<!A#OMsf%sG6>upMK?3IuCrDr}WRC?^|EGATnms^k9Ltrdw>ymxM#*=$Yzzg%M
zC$?h4w{C_6=ZnLB^^UV$XVdS3;<2zz@mQ!N5@zqT#8T5`#D3-sIvVYqC(Dw->g1>P
z@nYWby*7sH&HKpsg168MdbupapV!CfpvxsM$_5|zKQDG{5}O`)+l4T~{gZM46?FVM
zKA-_-X2aKkCI;t{-!yQ;m1+v6&fjlH3y0xjBm2nzMGwf8{Xc6|a|c>Z-<wSvhgQbp
zXQ~>a3WX~TXim8t&l9<_fRDmb{t;u#1d9vqdC5J~9oc&yD7ZNpJa6e<<Gi_7LxgCz
zt?o&j!W^;`G+ieLGOY>>5NL56IS4r88}<NdNC&2qH&FWY-OcCZUsSyW?0s!w3%@du
zPbYvy3XBIV5<p*(Sx~)Loz^BTL`bYi(tc)KVxUtSA@46OaMHf=a000B7DD#Ydtt6-
z63FkbtbVUaOOUJi;23N}m&`ZzeGmyA^`?=la6eyx>$m)-reujZ+>55Lcj7}G<3&mA
zl~L@+dtqeik$QyE>W4C?{SpqIcig0Y^zbSYBoc>X@Lx)4BCSb|K41adC*y_09xqg4
zB1xgyTBhFE@D$dizAsz@8hpk>zKz_=W>YiV`Dw8AQ^16E(IISo8DI!wEv>9rQeF0A
z@fU8yWG4n(n4^An(lkA#6+`HZV^z(r=~<H^(USqY$7qq;a{|7>k{(Y0cxyPD)wE@N
z`q1}f#c^r@hJzai_Xkxe9#c&NHa-kswiqbsawBF}r+JCZf=n!*g-bu)T&HbZRx$5&
z^vGW(IB=>(8zBPt>+`&JIszzGlo!=k@!A&SfE~Psza1|O7*OGmQil6TK5az6y%iFw
zoo8OMUy-o8`Bo4YA64k=e}L(lY+e<f=|p+3jVV4O$*s&EzC++C@TvJvo}yh&M+s5C
z3%4vH_JkO*+I<~7H+x$2M;0(f+pNh*dl8=W)^>B)1;dye`;eSCoatM|uN@`xVFV+t
zm!5K4{v41XHg&%+^XKSD=<#>{z5j$si>4V<^cj^`YObj8fYhS~tQB7(c;B_kB-Ks)
zZBIvQnazd^#@s>%#VaxMHdJR=j!XduQ`yh%1mxV-W4<bE!YpWbIRXm{i#016l)%}_
zJ&HTA*P3lVaQbqLC}7E53Il+@xNdHNb3UR144aPyVobu76k)W8mn`ya?|Z&K7)$r5
zmIPEgvF+1dPT%4fm`LmRO{b2jl^}j78#nFA6BE?cSpqJPS4pPZ7cl<)TLB&N7rsj0
zd43(<<rJY<y6_WhIyz}NDJ56*Qzs#jR{`+WuE;`M;ZS74Lhs|kTYY-a7Op$(Lf1bo
zKgB*ulY3u?DU|>bk9{u}s1C`;OF|A@Kf1;0KrbZbu4i0&Qe!D#w6iWLcbCV%oDnJb
zO6F-v?vz~UWD5XQQs)iY)3BKqpWq2jI%Xp0pQE{xIPbNjr}pQ$Ks!wjN1tkTQ{BXy
zrz!%?cS-ePCXLPJs=G3n<Pl~B*ZAI(i?LIPI$_mn^aNdTZjC=6SV9q5)|@U_Cml|)
zdcO&L$V}!cbrl!w^uC02$VeqFIwx+7F|hO%X%2iFA6u^7Qw=4En$wH32hX$JdruO3
zi>QFodFgaaK9*{$D<fYyv6O8{badK2CF$~U_NAcm(paju&mtqv9dKd_dv)CXn#n*O
zKSJ7$PdV9*T?UNl3**e<=G1I|H=&ta0Ex})a;e|VYUBkuDntWgPwNq<jI`AUdHqxB
zz{%d*fFR4F&L-o3p!clH&jUxqxs{KFN|?DwK&L^)=pn)RU`3%!q31`$-3(EL5;w66
z@cHWQfog!At<>C+tOU^x5lA}Ba-PGrM7EM)Wj`sBN`)LUeZ<i+OjX&sp-9~&lP>I<
zIfJ`lf=K0i0(|X8)|yU#!Q3$^Hl6L?GF=AS=s`<hc9;4KShLs>F3d2`?K|MXV#VcZ
z12ob|Q%mLGTG+!7O=``bo!$PUo`^ySx>H@{0oU-S+svmj%2JY*pReD48O9Z|ecBn%
zcq^%eOIqD>SQ}TJSN2^{A|En=@-YP-OzaQbOBs>au|WN-?B>k~M2*3hZ1K0-dHZ8g
zS|gVEQ3$XrhsO8SN0cm#_vDTintqxJ1M^;S^y_sLwK)Ka11L`Y<vWuf0oQGMZMHwc
zawpVwg+BI<o*lZ*68=Q?NUlqNK#rPG1IAsu6T{?i)>4R3y;y_c*>Td9)Su!+$$llt
zI<2p+dbEFt(4jh3@A0M@$WqzzTB8}m))hrDH&wj%=DWgw{N_$eF!@XogL-j;HtP3<
zI;?#m#3)hFCcOTz#0$c%JH^7CnUj^nlH4c$)DlELhNh%R_-17!I1A@HeNZ(oNA|rz
zN3$*j-da>I-_m0wSlu#^cB|%Yr}$xDfo;zP*^br!pQLCWv|0!iZQI9n|5bK^onZm9
zxO2t)VHq=-sme9Jx!w`X)Odaz$Cqotl;qr%ZnANuW+rX^A3_g*tvkQ(0mgk$02QHz
zd-(yIVwqWzokKf*)#lz@t8~f7wJPPRIyjsUS3RKj7FlQ^*KSX31Y04Aa^M6|CR`ME
zjt|!c&`U*Ln?3A}fo;(vdWXza%sW#)NZ<Qk`4`@kegc|uE$#R=h`Q&Fg`YaVWi?l)
zQ|THD$dSGPw5cm^RqA%@|E0$Qeh7XEjh{QbP~>qp2>$l;7$hyWX=If-t1>@=B20Qt
zgT@eUoCMERgdu6Ih*z^RVLwatzp{*yss<hkY*`tyMba5BlxUX!@nb>Y><JN;BGEkH
zX6z>v;z&bkc*_7he3w&INlVk#EB#5G81hJr*C<a)w#AO%Vz9H)aTN=@dh+2^NY^}K
zAEe+;^<)4uWHgCvV2=Sq29U%?VYUCNZ0#L~KUT4pKc)LHxc#Lt%&oXMu-&VdIqMkj
zjv$|V?FBDuBbku){LaS#Ll`ti>^7K2sMupZVA>z$xGlCa$vuQ#H=MP~b7p3i(ZAe?
z0or>|k@IUrZh~msvNN|lFY59w9wvlo%XM2Ik^C07Pm05~MRG;icDAoOAcGItO%Ezv
zC>{RCZE&MS&>W@@thxz2orSnnv<h()n>$ua-UtHg9)zl9>;4_ZtKT4@%x!DOG8?f!
z=7YgTi5h2EW10=Ue&d8$89U^7uHY=F{`z4F-qH6{A)T@mxncH872$~??jDXme_y1)
zn^5+|OH4^2CF>3NeAQri#)dT!2DG+f0koi?S@70WCxZFJel{)h?Kz2oM_Sf$a|k2C
z0a&fPXDaom5lF1;A?|ft`pQ5&K1zf-avDs5dGnE!0G@cd#e}ub{<W0RKOC~gN!3`L
zJ{@KjDXWJj3VThuFH?ZFZ;H|qfnX?^{nDbn%P#AQx%rV;o-H=C`}1Y8_AngJZ*BP~
zJPs#Zy9k`1;!nN~Q!vQ2fs3#SW&QQ;XD@?kl%T`dTjM8P%{<SXW<P8uspk!<AXeF(
zVh3Yvn%5#TkaWq@<KouIt{B831dGJ(8`XTo+&?63Wf(3G(WSn>_7C!UU{%PHU<v4M
z{|c)xQulnZJ@KlIXC$-IBb(cWm=F&-DpDdJ$itDCq*Vwz`I_6}haUE<zhPuFWnV7L
zCU$X`enZGNgB3{*zsbBXGhvDnoY%*-YbQ@YyW+~^rNpNT)J|L=YG-1zlRZ6hX@La{
zo_MUJqV&BWhL1cuEj~!iX6;m19wjn(x;Axlsj}ry=#)CK*=|S--9;CHQ2KX&4#IF3
z(!EgeChaJgF*P$fFMafEqSF2Pq)Bhi+Wk#e{#Z&ohkmcBq^0f|(Y(SafFFjKGJ%wh
zY^H_?S^dV0td3eLyb6R(;u+FrKsQ*LHI`SfQzxN=U|i?~hI2dU=TSC@qqTX6&Q?*y
z*G`lGX&#3Ov{Hf|vzxK%CmaWw?}V*MYHdZ`pXW_{dq(QRa`egS4Vaw|A3ebOuX#~S
zL6qjK0-l_{^TABG^Tr=wIc)&zqTueBnI&p|<s!bl;mib&Au^~g4~`<Z!;h}N5v$rG
z+I=QPcoCAi?h$27m0yt908wL}LFM#&GeK})Ul@UZ+4eeR3v&V(V!L0S7)VmSHO0s?
zsFLozYG%uqEmQQWws4QnMb<kW{XP3Sv76D(fOSqrC8gv3U=4V4q-EKp;_>5U&`6>O
z41Fc^R&+?~G*xevj?lhUpivrM+5S)^9Ez2)e8~%mn^Drj=Z*UvYrS4EJ-08T4L<19
zs5QAvT-t1?v?H#sItnGdK7-g>d>M4Nj?Ze0cI<#zynf9bEbn~>)(nwR2(Dl==@czR
zZdX80?_3mK^h?_$)wz!?xp+}vmlFQ9j5X3bSz7g#GHRieG>Bg}z;;02{T{man}ZSx
zh2&x}{m6kELbMk*swgMrmF*Yh(F$jdkEi|+*+SyGrqA}~kgKUoR0iVSiF9l8a8>ha
z^<_xBGzW7lo$VXkkvF!2K{j@@x5I|>qAW}ZPj3Lkl==Tg_f_ThkCt0v@H96!8>dl_
z2!BtY`PT$*7}XgEuEs?4?2i>Zt1{wPg+QZkCJ#C-Y{oO<5U}hKF1b;p57Rd8vIj?G
ziOAFzzx_@xUdQS$dl)#jXk5ApzL}A_uh`;RgQh=7gpiJ-nRC)5I7QGu5W2&c5H$)W
z`VXx_h5Ws4kwkd_k*+jJd{sm}WDE_Bx*iu`9$|rHVy$HkTK)bY{)0?YxE?79YF49-
z0P9fp!a>_buJbb=d4j7mF9kJ*YaH9LO;%R(dxmW4kfDiJTrTJsyw7p#Q;$`BGM(D!
zaOft4;Id;dX<gb3u_WJ>DItRvsU8`Yfh*d88#iu#T(*4l>`j=2!$Zzp-r(q5eX6f8
zkG-`H5mgd;$f?Ksf__!~>l?9hkv@r?CCj;<t9+Zsary`FXikf~uSWyrm?!<&NvNaw
z^VfQP2>#ndto+_%HP-#sNp$)f<VxuOyWMd14CLG+m6G#9?ADNnNe6mF#7!}RASeN)
z%mo+N1P1M}&MTg*q8u@;%R9)Q<Yhg)mvHnxw()x(8;mBeaD_DGLEtyVP0a<a_%OiX
zc?>G=g@QI{4`v-#Q^`hN4_<0chm$S%u&QSam-%5e4r*nNC*m}96e*m#rub_SDHa^!
z5;|nCiF(#0sf^tc!;d&QG7uQzUGV(+Jwx2R1^B+=3o;X*isyZl%7gwQ{I4Hqe$kBG
zX80Y7dJTxe-Y>;K8WDeEe(yu296l-)uCT3NsinO<bTacQ4RX36v5c3~;8F#7-V@_E
z%ihr(Vc`tm?c|81PcjlZ<n&1|23iKyG+sb(knJHHA>n&KD6yfy)T+^5LczgfXH@NI
zw-_?fvcQ>HfrnlhhqAD4V^1SaAC4ZXVo3ALSm!^*6V+&`6IPVRAFZ=JaEqcV0+*lc
zg+$v|y1IVix8r`z;%cXk)<Awi?qV)N^=EG;$tGY+KQ5LoL=x|RcSGaSk|)H;=Ro|x
zx9U4+3mOcj8(5>0A0Z)jcsE1ve=pQeTN#q|_bj5qn)}o)i;njzzkB}%Ien{k7oEx}
zmG<Ekoq*iVy@3((SKaG<$A^|1gGfjSep)L+cUCnWlb0(=ubtCSuj46m=OCekzM+{k
zi7c^s$!nLt^FmqaRBodlbW6aZe9_OAoh6e14nyY4bU;}(boGz5GKlhIYZ8@BO%XBF
zr;8TA$E50^_4hK2M`MRCa|}KEiiMcNE54mu4j8IUYw)4}gS|i-Wn>t?H*7W?uOZyK
zNry4Ea1v%%`tX=$nNNh9eOBN8n@?<0l8~>%?9t0vATo!cTG^?Q9Udq)RoMmQ#R9cP
z@d_^mwkn=VqpuL10eg1KKA-4cOyk>~3Mu&)Kw|4FDvP*@Q=af4`MS_7+y5Eu_Zibp
zg{3glM%MbkOHQ$2Q~^hR$c3D?txaNy2%HIYIE6$!bi^i(h4$FU;o8b^JTg<gNK){2
zGruKON36>xDgR!b7kUX=Gu1r!k8c;8bcXs+>*G0(VNlK|?a7yN*zIBRj|?mQSLC1x
zdDr7HfWhOk(8Jro)rfAibxMJCpDlDv(7+UhHU&Ph!k19X;Mbiy8{G&<YRtoE&vKCL
z2NJIx2cp6%^m#3@5+<+zm4&qV%ATmi%>-Fi^`OTdB~pG3uuAoZpu&QA%6p_C#Vz0A
zGhwlQxRKktj=gYu*tZ(HV0$yip{lZWZ;qMoDRLi#zd##vpdU~?SRFt+*RqKU<G?DV
zr$#^(mob0%ymQ#$%(sxUhQ@{bDCM@ToysL}xLQWuWmZEYKuL3(dT;Li{ZU#swv-ui
zawk|*@Q77{tRvu&lN1O{8}RYj%J+)xs{ZB37R36VANR||Pi0tJ9!*QM89#gj@b=3V
zMpN-N5(hHouMr3_wuKSqdoKS_xJMtWW~ER>J282fkh*omVyu^>yiOd4^878o+NQE$
zX5yq_a&2;-#ML0!fnyC#R+==qOt+6$Iw1!n91=VF;@b88iJvN-2oUmD{tiWD0JNz}
zK>sK?Jl@Ag0<dI)q}AeWg;@+O(>KiwO47ed`MtyhHeZnRX2805N9*i+%nwnH#Yek{
z$HqX4kSGh8ztzx8r~@v|U;}wMl*Z3Si#cgr=lb$Pf3TomR^*p3g_Xm|WnhY&E-?W#
zjz&fag&>z{{3twv8qD*%M|V~why6uso!j#QFbH_)VWqhhO;9Z>m|fe2?0$oipGJpR
z;uG}`T~%5d?FZ8eHk6^WV|ONEE^SE;Q?A=Y6%(VVB%sCEKYPo#rE^6g*)@dKTtI3u
zoJ-!u@K|KVoK!@n4iSae!;56_Tph01u#EF_y*9lRzu}6I2dl-imWFo=0KH{F;{lJA
zra5!a)*=xA1o8*sq~e1m8J(ACC90L)Hy<QxthE6&M9`|*v{tS;Mv5|k^=|hY_sf0@
zgc{c|@k3T>M`?+h*P3{catOZ^F4v<~yBj)zaM3NR<uGTSw9KMIMH_EyBRDI}1zTke
z_-WykhFj}Z-`F~r6Wo#UHS?q8!N;nmIta<(`-24JmF@)S<FiI&nl7;zkBk!}gjH1c
zZb0R~J=^s@md>#Ij{IK;rYkJ_3=>!U-P|BLamQ^?OaD&U1azCl!}kRESKhl^yH276
zUqAuhQ}!cf{D;}HfH|jx95f~Yn8XQXK4iqmz}+eWMq)Hbo*_2-)ij^kq7GXtAGPw(
z>5958Bct0`QwrC4HgQ0o`h9olP25jNOdNjXl}lP-lEA6|FBft=<LJpfT}dHCRg(2n
z<00oA$8R&-zYB-NWtf7iB%%~Bo0@V$Bu(BybPlIiGg+?8kF1lR!$9Od9@jwI5{iVn
zrJvjyUIL;vG{TRtu_KQeTaYxJ51rd;_5bz!&_Ncb##pVbUpitcs<lKUfEkC_;YR{r
zVfkR{qS2I|=-bDgt7>oS1L{**ruO#U(aIuIVgHwU4MBkL8C~h>kz}?&C9x#9a_loO
z&V-W%Ea`Xo1k4)IVfohzpbqkf8+}Eds{XA63yI2+<8i@-6MXxPNbeS;FmQ8@A5hGu
zyEAGOxsTr9`8%WG(V(+84eZ#1(*?xRC6S8NWk7`~O9(Qa;Kj`&_>lv$T7CSQ9%>G6
zA+KvaG{9IPHdc{7SZ)fiBW1)mmPG?;2Lmz?N{S$~0k@mys*`kGWGTaqF62>$+okGB
zBvEJtgVD%1&hQwmnF3P}w5~O6z#(a9VEVjYt@NA$s3#;8T8NX~k#YR6YXx993Qb;j
zLXtGp$&`-Q=Dpu{)|CQy2eTg{MuZ_Me^909>a%3^l{2M+V%$L|%IMz51WzuYy>;4V
z`NQa-hT6%`=n}^R;TRx{<#}Toj+mcKt@52$5Jp`QlXO$druG$loMmC<DU<m-&V#i}
zy*Rhl^?c{$Qw_F>G75@24f%6ikf_SlzorBmCRIQJ>pX&vL5LXZB1)M!k#o(FkaF-~
zeM+uiJ)3_Wn&I#6#X#=6Mm^$~)V+DX5SfYfUZ)M9KoUa)H^>`b>ZnZRW$XK*VYor9
zNu4|j!(IkB>JCj;aKSR6S-_6ZB}Q!jh{Bil2P3VsrzEy)1E5Rz00&l@O%b52-Ec24
zhh@p70lD~=j<5zEw0s2|IQOx+kps66j$j2M;}^Q~!0(iciTuj^?3M(Z#Jw~hhx^Kl
z>4qS_cW6fg>D(kx-p|S7jb;@-19BID-0NokO=n<N7!YY_wU-tik|~UjM5<LE*!8Q&
z?;iM(cDf8hNlc&HAt06YLDP_9^9V}cF3kfa2yfMLw`lsG@O`-RhtQ03ZcDQ&%DdTU
z_Yw!`^7YD6<&cgn?mt}W>qPHED3E?ilca0`fnn?(CZ-pe5>Nv!Ive_Gl_yapZ@pnm
z8Vu?uKspW!yc0$4bu9#kJyJhsT-VN=oI1YgLzH$D*>yp-CXh%LqnJe{c0Fl0#}{)8
zS%36b9X-Z27C~WAp#j7kRcrgjJgp@#2M}5i4T{a--pIF5vy8X!Lu_oLkJadT+_RN8
zsTeHkC+%2`r9aAzy-?lXsK_Ov_W05*_ESgTv>9llfxz6c4M(N}?`hVLu@s0ep?fk*
z<iTGgL(2-bnSE5Ymy7>V0}<F(;&JQ)F>%4a*uSI|s`}!UMM^x+#GYssMs`mz_Xslp
zVlP%+sGlY4W(ezH5=#oNOc+xLeXeAm#$#|Enfa46bLc@hO98actwYFmIp-NbX5<~m
z{eb2l-LA<Ob$H5e<Z@~=q+R)wmoP3Kwk<wo1|<^t8vv}zIK-A1v#zR;Dto|uEz5X{
zXc}PDq4JYSqJNYT2|%}6)OTZF?#pi^fMj7lp!18wrTMnjELI%NG}WP3tjh`w)E+Cf
z8O#Wf84JsUzV?jhr8y)^H4OQbe<Ra{yzvA9>QFbNBP(BQQYOCrL!-O%U3)uMiV%S7
zb^_&BOS9m{)UJ?aV4aGG9i8<?L-OaDnmSXursOkMCKIzUVy&mO{d(gJ<>_9~ThJtd
z#BzdXdKSYf13j^XJw%y9e9dN%WknK{aCcmUneG!xpB%eg{i%v*>?Ys}b=;AfR})Ow
za+aUoyv*}%Ft~xkT3$A=I4*wey`eZ*VWsao?I|i=U0ayq4Qn!LK;8(M@GY^^meDxa
zHSr!ij5#~_si|Uz7AVvaecZJ%;zT!D6S(&!O>~rC+PqFY5Ho6C<?Z*MCK#85fFZ|M
z`-#y{)O>>^?WV=CqJ;Ix63`ad{B@>S>?Xn$Z%%j%zDK49L%_e=?;>w1s4cjLD;Ql&
zYZS;dfRE4Ul6wSfjdR#lPDw<Z|M0%C$J97Nwuqy@uC+PA$T0S-0*Y|)hD%;ud2bNI
zG|ydNDfT3}JODKNYR%H%8mWC#4HiL?i{~s%s7|_IkC%7z9d><u2IFz*a2%Qd)Aeg&
zNImtUux3Qt0}eHBPUvV)i^zF~S$X)MM^ObUmnaCIRUU3n?Gu@L%>Ye{klJwVuUJR+
z#cm=2Q-nNl)lKV{C4X}!eA^Hi^;gV{7c{K{yg4<?_a|GAdW0(&Aq$;Qj+LOld5jW*
ziMbzyYb?du@eVusV-8A`yu)&)aPVrqwUD6ypgB?jn3PYzQU!FX-$;ql8f3C7^VM>a
zEx1w9OU8ov#5gGrhW7>UqkDwP$L$I}=`ID`DC7cnl3~|#<d(%BA!tAvfI?7<uiUMg
zSHQ(D>CzMqfJrV8^QvSw(&2qx8LH?J48UcXZw>0Vk;gSxBX+U6s<w<7DH&Vb7F2dQ
zSiS?+X(5@`*s<3s=R@dJo)C$zMn4s5wx#eI263dTPj9j4wtiM8uG%W&V&GO7CYR;x
z2K}~^NxATWaM;f?cid7UI>?)`A;0hbo<#bHg5sD}CSfL}_?%sZ;8OwFzpi@EF=3BN
z(xBh{L;apKQ@=6$N2@n=tc9|EC)s!u_=><(X>9?Hx)1k4%0c*KW5c4;s(#JxAR6H8
zrFZ3%E;uQJL`cly%hxzl7I}tFM~crBc#7(8PI>XG<yROb7K;ihahVU`49NcS@{y(~
z;`d<kO-<N<tkUtYrsUn5jsa33F<ARW5Oh6`<Lb}R|8ntR2`vcsw;z#8$XV_m4_7Gd
zJvgh`H0AC*(~J|PTSHYX_^3-J?CDltI2)bk9qxMTK~V+i(Y6`%Z7%IUxN}_*B?Pe-
zg8)MN@P?>ddtT3<NMmYkexot*zQ+tq<(D}h-~VpCDLYv066YD_S@{>&qHfW>FB~!E
z;jy~E<*?GWniglpqLl_(^?}$4IsYXd_soN`Sv8>fu};*#y=za#x2m?WNB|WVx|O3e
znptQW+*ns>yQz?g!z<CYVHd(FC3QB`5j?W`=L$#&IP1qG({jN44j6~5#+JeB8c8+H
zd_?^GOehTu)b^cs*Z&_Nl9m<a>d%Z#1xQQ@;!l{A`c4Cu*sVEiho|<ZtfBbK&bu6U
zMnd?>Ktr9}nU0!!Nd%^SVv@S0dMUjfv_KpAxj=)ZlPt}^+8+iK()IaDiwf)V1!bA>
z5wnY_F@@y-oGS6G-dor4p&&PyRl*z2@}82;-a`!q*+Czz+V}3-eT)uXR4f^$;Chp-
z;DTtZ?c&lGp#2r`+uqhs=b%YZpl{^jZ37phZuIsbzha#(Gf2l4O;veMsLjT#8I=x_
zcyLZ>v$$M(ur>!P0KO$1m~5xzXYOG_>B!MMv6j+yJKAWdb!W}?2v-VI)xlB=chXN0
zX(~V*I^^0d2Nl}n6jgVBU>zA&enQX^-B3#N6uYzS#Z061BgVc>l7Oas2NksZW7I&F
zKn|uFhl0^RLp_w+h62^jey^&jxqu<^A~(g#mZb3pk`R&>razs&i3mGjs;+ZZjDdER
z9cWz;alAooDmQ)$fGON7ke6K&*t{AT9ikoMexL&Oj5Un6&PNOJ1jT%K>QP{OkyALx
z$DU$<J8KM(NT4=UUB$J*U~)N}GhTslJg^67{lfna5|IM?ZWj*_6vtb9-nuXyPolX;
zWS=y`mOg=q)sI-H00KLP=CjB?=^F-@;2tB4uR=b{F(4Z(0t7aTuVuqX^^H#AfnQBG
z(l%U!%_Wv|oaA10NkY1d-0xxDzx2wo7Zkg}Qq%{C;l0OCZ;=gHgzY|X>jvoL18JzX
zlhvMin@?qPExPE|97rXIu#xP)#SS#w+&v{?7;GlAail}N#&Jj_rMDdssaVQn4FXSA
zQ?liBU<oV7OXp>QOC#5P6lEJo@qD!HooJn{hxsK#w&{VzBP)`cr!^*z{qnL|ybc@v
zJt==OEqBbT4XXCd-5(z+IU+XYAtN7pUG!B!U$v5rL>$_D$WjDJ$q7!vb}GXm)0Rn^
zv!wuP<b+7FRkf~*y@!b-Dqb{mzVEySAog}tGSHv61U^6|?!mwD;KkNE4*ZtQ3FpB(
z+V&hkfqu&7SN~xzKFfI@>``q-U%+|ywoDYKlcNH#SWA08sb^c_GI8PmEh>c!(43*E
z>gKK5FEsN-TM}4YXIE8a(+su_(H@H8%|Z%}SD{Dlmw!oBPn1%k5_iO`JKGjf<YWPf
zg<lpcXQ9)esD4a5-q&&K=5MNxZTt58i+#BYlNE3cJPza7%$-XHEV$^8JT7a}1w<d#
zXANWk<N}+prhSO)8pq57;mf8nEIPo(dzjHD@3<cr!LO><$5{ot(4lX_^6w#gb)yTR
zGGkYsdE#UHMU_IZJ&w8A3W4h9&$KxkRM{n*<$p<+&u|?P#B=m6p|VjD0h|D3-oEe^
zO1$=vd3bi(VX&*Yvg8O%ayB$YeW{c4|I0vUeXQ<U8<SUNBRjHcsAFkU;Ghr0>b}rd
zS42z^)*#B~U<XGa0;TMz(9hR`iRHU;w1p*()ezabJLGxP@?k_YM|`RYM8zj;_@E0G
z+udiEoBHSLonAf{sf)EUg?n%|S`9~MHAEtZUzd&7;ws2U{p`0yA|xFc_b_s{9Lt?i
zAqq!5DJ<_XS}I)=Gpm4&?Fnf2M#1wYrjUuZ2xW8en?ei##jvrlCi_E#<m=l(hDiw|
zb>k@p<JLK{&n|`iG`gW+j2Qmc?Gl|v4-NI?V%F`XY?d*(2`Ub_?;OO=a$6(0vJ8ih
z)tC8TY=hFNvjBt+<ZeNznp2@$dn&rC`{yJ=8p8h0NxH8rhdO>}=k*{s*??FZMu%XW
zmkLU^jWBi1*MCA=+LobhiO!g6Xi?kcv}LZP@n`_t#=Y%9S5GfLW6q$2!-tI-CcU<}
z<#H9^pYboM-1YF?lO?9K)wu<r_<v5<pgSgSSUzb{5_{?WYl^$eE+Z;^O|_uE%aNkX
z_I`9H#Xe~1V*>sfR6aD%boU-ZBL^6Qze*hZ3`$_)ZwM_~nKW58?8n|mCndmQ`WF>H
zovb$V^RQO$h}oI1HkHq1#uB2Z;?%$*I|{9%_2#5sAXrH-)HqFNY@wwF@qPrSlZk#`
zFPOF6ai97Qa;A0?UW__x()~_i7SqFxDleF6u0n|AHhOh5pB&EiEgxDyo`EH$IcYQJ
zU?B9H4$w#KWZFtWo`UaX%AV!=dto*~$oETR#cP81+|0PX0j&cBgWeqT$OVz~6+fB`
z#p7hwS82d^4V7FYj4=vO&A7Q??VuLwS=*I*dbNv~VPz0y%Zb?v)UW!BDJNd*<Xnax
z@4;!sDj%3xuBZ(ne;TbC`y+Tg5?CSKPh&K|fnp?6iddeIH)G82(o@6>E2>fo0-fc%
zM1K|Q0CyXYM^<iur#<$iKmbicOAchHc7X|B*1ZvI&Tvd+ggXwcKno9Od3j<uRl2|@
zUzjqzIX#O1i<|sHbX64X0dxg7(9ygFH5L+nOI|e$G2(-gUEeP$>yko=%qzul&TJiG
zq@+_Li~*AR+K_}Q0yUQz(M&&x1Ruu$763Y%oPF=W&)qhs|FK*AvxGer3^`5kxs`+o
z7KpS~f=?|T2fZ6@2<8~Z#~3OlY{BT38@mhQ^ob!&58||ZbQ1c&6-<y}REX8PAv9#A
zgDl*V%Ouz;WKE&2YE_&bFnmeXj634H;dGPXmrxA^qcZm>7@n{cwRpbM5!^}CsMWIZ
zU6Jc8sci?#VQT)@<wGDFb|lWjI+{YXp7q4uTZ@RRq`g@2m98;-X}iR}t(>H?T$uUs
z2h^nz)z_B`y33`Ju{oq4*`9*WSvF8PFuM}y9mloH5FZU5R59We^AjgJd9$=V=EYRn
zYVLsNDZ~oi7vxFerFk9;UR>3<lGsK1zVOzn%`fC&ZlaXCF*Po^><3C)3>~JufNcPk
zc>kFxB@Vg93hqv`vl;H~Ik9k72IugR0KBaOD5SCKO>u@tsExB5M(__EZs=?bmp{r3
zv6Zh`WWNvDd^rEe{&4)+U+BCCU9aH((A)jr5(f?`E3IGW6titY{fi_m^<=%TnH(jJ
zoJ!huEYMO1XQXdIdm61-OF0b-kaVnPc>qR4@tl){SIegJOAT3VC5awMny|t}ik6Zo
z<gQ{kgBzMAlHhU~&L-TE7}L=us9<Fje2#d+nMFc_Hv8j(IS^-6R+0`4u^>|zd-xo0
z`SgO~%d{)fmLV{J{=Zh4S#92$CrC}Ti_a)A+{v{0PQ)lM-R#xaZ?$wP^2ml^MO!5c
zS1CcVoptbY2<1Q_;@P7?y6ZZ=F!RG6q0=h|t78XJBO+n-;LdVPf_>$7Pq4{0RF*@Y
zaHjVYBK7YtQCb=iYIk{gL>5x7jIj<1<s90ThSEIyVY_Zb9dhR^YsH$35_xnGTV)o!
z{u`ZSm$KlboUXFcB}ZQvTks=Dt>=#RB4!_{w#;djnx`gYaxv~R#!;r`+lf9zs}j@R
zbifyo{v%wb1fM|{snLRCkXhk=^>1#+=J%<0jkBYbIA#c|S_Px7spl@g!o_lak;L}q
zqeE)!Y7{}BJGhssavwzU?US&<wg%t$p@-=E6WLA-qmDcL1`D!Q*MI-(vF@93sp#P~
z5P`Sazj}{;iL>B7FMRu}(s&G)HfwuLTpg0wKmE;~mR23ceyhdXVVk~0J6PDS=*B-R
z`neLT5<-tc(&_4E&lzg*pN<o8LhhwFD)7^had~5T##(BMpS}8XI-xnd71ReZj-Sg?
z6ml=-&-W}Ka4)D~lU+1MX@yLzzpp+CrkWq#?Xl&DC-zppG@_>|09R%z?m7b*cp`~*
ze7HBg*fIEw3OQFeteMfx$w!9zqCr};Bx+`-^j{41bRahY*hjIY?T_kL;jv+{Kq(K9
zYDPqwH@ZnBaLyle2~$2SHeFn)p})p@E=WktuXzUsQY_vw#YQYskQE7@CQ^nH8yd<n
z<1^aQ@B=}pu97Gankg1UH$rGn#i#n`27rp26ntj&#j;woP`Bzt7*Nle>9gepui*Y~
ziatr>PeoO75mnYXkeH0KS-H0_ij0FkmZ~vz|F@|Z)6G2IdD~?c2)e@qpxF~&9oC{t
zOrjMwzaih<+b7r|1rfu(kYEm^iH~XZcNp8A+ZEdy+IuZOGXZuwd@<@~2GR?iqDqD=
z`8eak!3{l5VZ=&NHFinz)Yi%(h)e#Vf)pF=q8o1OWA^{Ee{}y{)FCDBSk^G>h?ZW8
zoZPry6ubB-=poGBY+dUpAW;PS!eM2cg>GUwVWDs;m0#q-lU0Qt1F`g|KAY}ri|cCI
zE*_{ZIyNd+=h4QMJ2K2bj;~=iWcwNV#Ck2?5&OQrM!<F<>^2xx{yj0Ht{-fJVJHQS
z_$qc=m>V)bBr!hI-lf9>ngXQu2$zGRXKbnPy7AE4nX}*i=n0BYU}65kXYz)2e0^5H
z2AAHoq}1C)ghJKYW-J=ihpH#OpR)c7gD}!Y5f}JDNg~$)0;Ai~ceLqFNAw1Ff<9j5
zd8V6xTef=|_=s}02_uji`KYL}J^k33qe9)F@q#(Qh%0jIh0F+uuWH(APR3Wn^mKM+
zHySU-mi#D@;6Blx(rLp-EA`5Z;TZ`M9unV;WiOVvNR*T%eXV2F;V#4ZuTLSe%)3=G
zs8&jDm?xN>&0L%B1a>5Jk+r|JT#Ba?$M0+cf+k3hVd)@gZ`UU)CH`9giOumtW&%uw
z>>ELi<8PjZ2X+tDbVM%}1)#MZx98U*4L%?-X-Mt8bu@(9Fw7!Y@-**>(b#b~|0SWX
zBJ$s;9z~ct58Z76K*i9KD^-+59^wAAl#MQ!zM?}%H0jWRj5Cjesuz-xT-kjk?&DZU
zA99QAww7VsLzQdF892NpmDyglUKr*7B|ktAs{4s|{fO#KCnI6>5pd7n>VF>|8r}D~
z<^jm2uq494X){|y0hZP9iBVO`UqXh~@Gxb+%e~7RGyGU!Q^C1nHeACDO-`KvBt@xM
z6H9J=WzafAe0io#E1L1}S*ExtjG8-cF0`3<Hoq7>Q>|b3%@Ss8k4N-dDt<Km%^`eg
z^7&ML>uQw2TK#5l#W0VyF<OW<QukJ5x;ZQEIFYc=_fiQNYe;9|o3o)+r|K@)<)v{y
zXqhkchpODJPcv&`Vhu>6CT#kjzGLC3AbTkw&24Ar`mG9sy*Zk;VCQzf_Js-z7$`L>
zt(A8MuA7W=u{mv3mTqmOYB}%<^}sjO4Y0SN3&B3wvj78X^P>**NqxmCP=YF1+D7%)
zFT~iQ=Tn{ibU{c?l+Ff*K5BxxPgxt9ireauW(m$%x3i_kLo7uGIr1pXJ$6LtX8eNx
zZPyyiqvDG()WRKCQ;(-$uAsY9l9-qYO9hv%KftvKo(qq<o)YudPyNpZ86+pH#?Zn?
zwynhFobCqAR4f~MyeO8RiUF09D`*s+P~rEl^o{o=2&eE!a~*|R&N0Htly@rYEp~S7
zrCMPQnBeaiZQTub&$ge7n)^(y-K;K)NM8(EK16jCqjnBXChLsMgvYH_PYh1rCxNHm
zBv-TeT(uTFQ<7$Gr!N{x)qvULcquKeb()&sT~JFdlpph9q(jK$g<GQWw@6k9P2JFN
zimTR|X6m0#>S}UR#1_*mKYS~TUS5un_A8Hpo-j9L+_`|+#~{6OBY!f1tWAZ)z~~Eg
zq7)5*mzB6*jfB}qBfgKk0#XK*wuT=qrvGw_OZ<*f2moT;AvYlnWC4<xvn@vwxnT7M
zsY(k`g}#7qT9&JSa$ur6AfQbWHfn<Dsu*(#KEJf%u2SD2{?~R2c;igw;*cv<NykrM
z<&;!Lmf#LN`=~&lv)}@OO{f4BuyC<73<RV+J;Bc_2s3hnDOUgC>#+D@8X}?V43x(%
z^zYt2MqUwms{?n8{`@PFfrD{FM^)6986cf>8y{jx@Z2a&pFpV(RhC#FnbhWqfX|*9
zc`j+w6$Y6P{;gl%R)PzOVMyc@w#)igVtg?e$~}i89H>Aqg{>@G)gJ<d|A6D@m}5FD
zO?9wB>xF+1fo5vA&Fc6z3EsNGcIg^7$V?O=;%i+J9E2G0GNPz+e;y|_N9P8)S`f|y
z`4^Fh%ZkRtC6U?eM^oZe^YOM!ixVeOu$uh*)WNevvts%(Tvy6|r}!sU*<2+664+4y
zLV)?pGk61~{KJ;z&m>r2nAW=9?7!<wurdq&UkBJV0Q`$CX@GO{o%|TDz#gmhuZtg)
z^T$LEfD@1WX<s3XEMe(_G%`!n@}h761@Nmn>4+0eo}EwIrZR5%aOu$?6z?{1_!KQH
z?=!aqh}}E+Ged!%>6t3V*1$pA@ehBB=*iB}L+F|KNmu_dfKL4&677k8%Nk)*scG-p
zpZ4=NmBuV>2a6jFuQm5#HbUBko`(W3OMN6`+9%>^LgA`0mZ%&3_48N4D@G}O=;!Oo
z@{=r1!5r``ZE(5j8%8ELR(-ql&=6B;xO(8UT=cxV<c#_;9X0unD_b$IN&#7q51XwI
z8r!N!$6kOE8yB^qNAsP+<3e+AHnN?KmHq!3K_(o-;E61b8UOTu+2X)-P%eIdYQnx>
zbB9*$mF+8_`b)5#P}debP=6nPI`k=)pqAMiilXeqpK!dxgmuf9HdM)u&_h7~O886q
z?`7x)JnA``(XqQ=UG@uA*z>~|G3Bhlg*h4b2%P6ZF7IhH+Yz1|t){cK0TG6PBvRq`
zjrloF!z;85yN+GXh~Em0LRnj?<W-ES<kxza(Qn1mii)gaiV^xp(#LNgztRq``t#D$
zBaRntGlN8v2-5D;<lm0FV!F1lbtKnZF)vrZA=9Na;nmRJ(fT%oW&gKoQ08Sp$(|T>
zd*F<nL$EM9w55-2+qP}nwr$(CZQHhO+dluX-M6c{>P_CDXPIQOl1e2zYk#YO!K?10
zJI@INWHw~_OLLIPT{YX^OvfAO%9gp>{<r!Oe#YH5z0ccVy(anObs#4h<79IBz-h+h
z2DdlgJ^4&u<!+r}g-F<`lk29|a2q7ucY=|5lPcR*cuPXjd9yN4Kr|65h$$^&(VmR4
z`2-Dd)6qv8`i0+?!a1CbeHZT25bJaAg1i1D{|Fi&#U>R3H%Pg_twjK3%Ilzc@cknP
zx|S-)Fd!*17zm1%P#%)Vs1BA1ttIota(WttG)wri&DJom*i{OXe|JU*4c@7k)Ddas
zh>Ii4+=kz4)gr$660{E%%GA!p*~Q7!&=&T;k-d=>EGHWQ1Hu0t@bJ)!S=zXmI?;>S
z7`m8>m>S!gn9|Fb+L^mp5HK@v^6~w@iBO;0SeuUAU~{qPj(o^M+im&~!MiyVvx!y6
zbQj(v^veoLJ|X$omvw*G!-)CHYJbVSvUhqS4ZVx99-htSK$yUfJsQQ9uW*)TP&yZ6
z6ehTO1?P?iPA(Mh_oR@Jd|r({=v@ALWuT_AHMydM#r*C>e%Q!X#5;C1#SC?A+~X~8
zq3~h5+ArQSx^jD-_*>Yl?y_)Luovx=LHW?-3Kx?*Hi-x;yi;Cn6}|k?W%t-xG<ydv
z5{ub0FhTM6Wh+0aTBe`aKZYG&(x0a01nT+Tezy}4LnPG^)5iINveR6me=#N}rPBHX
z`Uz1a%|J=Uj${H*^K$c6W%nl09HCnL$eI%j^+lBfSf&CYu~sCP_EYYjq@>kHL^{JB
z6f_xlR4H|zia`h2xQlUvMh{9|iKJ-%oAm7eKhiUCu>X(rFYnC~OLXQgk%PJV2a3H0
zk$qfLW$;Y#K-21R)Kq{x%23!&{<x-8s!w2)O7lsxt?u=thk-SWA+6IY+?9~26d9dD
zIV9J(&BldIYc@@#M6zlz-ixO9TuIynH720oRsbI|((;d@<pRg;Kf$6hs`nxiOZW~c
zLF3^W$cy#myk;_BMf}iGE29S^rif8>w@@2&HE;@hi?vED!~uV7y?v9qt>qvVY}qk)
zAq*pPL-`%pGYNSKENxWNf~@$~o**`KHP{E0A(!L~;D;nMXN+sVhdr0@X9Z3t4O0M5
z>gQ;$cdMU}(M6pJ`K=z9=nAJ<|D`c{FpZMD&Z=-0IwRDSH%n08cHOOp!j!#{{woDd
z+st*IJ%zo&iT5h~-$ds4{}Gv)f%$(#?r*yj;8f4S(`rD9+h`odr@!WV9M)WXy<!r>
zXg^B`O9>bnTRU1*T<{IPOd*W&e+;4q^{nFw<CtMbI8FATG`nqEAh8z!)2IY)|1`9o
z06@q)da+ahjiXNVOG$uK4P1AdQL5Fc07D+tIPOmm$d~VYz&A%&;EOSi%5O(b7_wMA
z16&bSXImhvWN^05pEBo|f{rhw{VkEDSQ6k+hcVP_p$KE_57#ZAyC@kF$)WL4s#~~=
z7zN0zx^XDQ8h+d6JP0tcFA~GR1GNu}dY?rahpL`Y>@tR6V9m&AVeSE?inqwV`R8;O
z!hS(aJ$d3L|FhE|j!ApcahcDmgJ^&DZeTB@#;{TRUb+!sE8|mP`<0AVv5q3jzKIoY
zvXCdw2rrVVUXeZzW8--IzlqNI|06mpJ10By|2ttA2^blfnOT_rXBCc6Cq-Z88c`5B
zT7_y}NENNuUW10i(NQn(Q8TN<B{#w!y7pg&_=nF}QCgk{rh(ogNg2Cz3!*fLQr6`E
zdkR`EQZ*~s!SH)YEJF~`#cN5=v>ZR0`!~XfzVDK_d=D_G=ayTNPJYOHn!(z^a;C2O
z8eMqtkfvm@68Q7Hso4?ev}$*nd^<a%m0tl0FrW+Gjk9$7puyiYomI6$sz|xVs#oFr
zdMhujQ>V6@X#D<km_LQoK~YG{v>5`giA3>#%u=)^3sI!>n4LT6zJx{GcJGRODnNl&
z^X+MrXiI|a*NEFV6&Eq$11N}3Wmk9C1b@<}9-n1lifm%^xw=0YBnH0uTUCFWHrJjn
zXG0Ta4kZF|FBzk*=;m);=8-r0NV)JJCe<2dC(NPSQBUqD*kEfjHKc^8okf%#!X1H{
zyx-A$dEsBABsTVz;;T(<plIZiQ1?Ly=sESd=3gJx)uwDgPOzW+=}a4)<!RaGXdJC{
zD`-K1p}bXQ9-Ok!R3cQ1eewQ1<vH1F!u0QOph5H()%<*4vii(TC0RFBb%uo3N%u#n
zP=c20P0(g=DoNXdp@wK_>3hs+ijd!<IPGgcwKjUkiPqKB$WXRUo6J>qYIO#KSId6=
z>u?UyjQ>?t7c0LGV5^Z6&z!~pclpv8!iPu^q@o4=TItMWXU?}U{CD#PK)~GruHPUb
zHrw$N5=Szl4KNaO5a<6-;eZevLjc8xVBZQ%zR&EVK*K)R<+1GD%;GBjU;tLrOufDy
z&#Cr-v1MWaXBiifI9zn6yQkMn%RYmqhy;#LFVBvvSziLRQa<5SN3)JsxFGxU*xe9I
z{QSeQ@glyh&x^cPg_~y~Q7ESXfr0d5cJH)>jM3hI0KB~vY)JmCc&)%|o+^0k8mDAD
z%=|4W*H6sUtf&`_5e2uEo#)?iTkBJ$#eda#8dKl5Km&rzMU2qKL&t_Jjn82;8TU(T
z0<~>PZYeb=iydSe@G4L1pbLi1!!+pAcrk&{LgyE)N^fTheVrBtbou|9(efNB#ZySL
zfkXejmA6>EgIY<NIwL=@;}vbH=w_poUmHZI6(41{Ep(&96wS?foP}dxJWz)tMit(4
z+10>LLVB5Ef3`Yxo(G%|!<sF=O7!KAB-Le_dpD+8`4vHojf4D<v;jBKYSN*{;^20x
z%M(BynurJ`RBLbfU%9Dq)SxFS?j@#dN0isCF^y%tt{R87Z-PZvJ3H<^<$qW4=Q@N1
zIuDIawD0B+vh;%SHJ>ZJ8>=;t;(oBgQPop8D#ZzGd)s4K!Zx7Rd#E_8L4x|<r2ge&
z@Z>!Go6rZ$jpAHSQ-x1I%vFd%dfjG?Wb8YYUq_aa@V&$7sm8wd9^npQe-l0m%=8>v
zgq!ju$xY#ah+PuLkZ03~Au1=;5&#XBi3zU1CWPU&=?@3|`O+G}W5CL0q583QpsUY5
zn?}>nRon6;KW>e|`TJ8Q@L4;HP^T%o4^NEJ=TP!bK&Its58Y*te!zU&tS?Xp4lqz0
z_XI*zT{L$6ex~@lB$ftTs%j-M_q?cIJ+j$+Zh}#23*FCmzM;B8dNl-F=GjB4M!$=!
zLeFYH=4cupqD0f3z!7}bR(OtGTLptOdqxDvOPyjlknQ}#5E4=G>P^4P09~DlQQ%_|
z_$rIV9aLaQE%7}qy&Md5lP@mcV!;O{oZ5{JIdzx0vdWRN)(H=md-)c`3{*L9-cT*=
zC0ez^v->DqRM96NGqA4FG27g71xE%;cayc08?Ny_BG^2KuO=Qy;1qL77Suh~U`fq=
z&~9CwkwPoIuMj&f7D#}=C-HBWc2$g2_eDQ*#ANwKwhy&mKg8~%0dQ0oG8o{t&reOI
z!;Eed^wA7(IA%?h)iH1PXpcx2nIXK28y_CTJ7zg_H~q{g$WpX<s%+!$$JN4g?KDn3
za(^k{33%I$&Zm(iM0D#Fdl6Sx!;pi5&|7N#NBduct~2)}FjF+qE=?@Wa$DnHcHB^|
zcX5JkT?nQ52UHv8YXqfnv$5BA%^W}m(*t)v0uR?-xV9L+WY)c>EFHC!MG!K1T0Ym$
z?4Crbo{Tkp8vCvpmVl<a_2j{~ukD5&t6vHGc#q9(LKBN0_Mc^h>k+cf!5^#0;<mK0
z%9-y5yt;d}?=XlmyE<ApiQ|81p{gaBV3jTKqH$C$b~8UkLF$;lAxg&2C{O!xTyawZ
z-I9-Yk~R0G681bhF!S-z9D@L%A);H8drdk68{+i>6gS>8G;#{Jb2CVGp~du^+~vta
zn4F?<eY<<~{o3JPN!{6HVFD^-Om!QOkewjZM%-bht7Q%p(}6kP4Eiz3x;Vg`sl~8C
zlUKrzkIHxRh4}nFq(e`#VE)^G#5iXGd}VJQUZy$#{=X)ej6_ZNx9!bH8*Bd+U69(S
z#k&=}%{A8PqBmWX{{bNNT%_v~QhGX4NhR8H!9=G^Ho&0zG`*#+=JMIJ?)+cwd(hp8
zM$h((lbpj}eHBP@weT_iolKQ@#8N`9bo)kQh9GYapKlWUq#U}Zm$+f%K<19MOOhz$
z_yJh4qIau``J1pQnOV?%SJn^V>KEsH`7>;)KFlE*#_w6=C}VbwjdeW3^n>+w91Or~
zkofwImCIAu@5vfFdA!wad|9PMp5O%mF2&@>JaqKQ&*>RfXlA_9A+{hP599!$Gu&fr
zPu;4oRO50N3kOY>`p>Gsoo{vjS764uUiUOq48;WKn+94aS^gf1Xi0?5l;mTLaE?;j
z(|BpwzRHc=+#t+SE^#RF4{EVuoYQituE$C%m09yXjVQ&B=Ql=Ha8C)>A}i#)pB99!
zqslW;xcdw%Xy~N~EHozNB?E1azQ|utM}<9*h`!bBnp4-Uytz9rL7DzY)KNg7-fn1|
z^gMMSVcH+B)f2hmbs|2p3!`_khF`<5!3vPAOL|gY&t%%=?8wf0{ER$(pI;hfM2LOp
zs7f?AyC-!kcO+}_jHgWw40A7155l44HZc?3^NIy%<kPMOV?}Y4Z7idmdPG&KamTH?
z%ZFrB1RGnHF*){$or3ZaT8uzZ$N?e-rvoageNfV!-NHDRk{n21dtGCwT<rKGP1$w`
zfMtAl-de*n-Ab=RmS(BSMN_?Ha%wTjl6$gVtSary&hyi|W?X(pvZH14W%9XUu^&~e
zPHNF5Q`I38yvHn5(+2T(q?{sPo!M8k;j?g<muGHdNmSfo5$73Afw+v)DfyiOLfbFY
z+vLmG5kz?gk^2QvG>8hJgV*x|ij|5Z)tB$E_+Yn$mWs*YSuCiPa%FaJdgKD{o4V<B
zbLr8%AtD*E#u4g|%%xc#aQ%G}Uql!fA#XJCaYwgF{AviCP>-jzSKItEYV4ETJ9T^S
zHdx~EId;RdaWKER!<~+Ml;|AAb7=562o%bm2h&0LHML?}c>XLb#qq<Hi{LQDi?^TR
zuq3)5GTC>X%mLpHLp8}ok^th4-$CrcyIe8kh7^HxI8!qhW8gc@znwf?s!(77m6wq_
zpCkm<x))$FC1zpy`x_UTJdPk38q5u-<4@Ta6PxkP;SjOQ;dcCUu(fs|rgmh32>yzs
zV391WkjfjQw|mHa9xn<+mH9~6GSsj`gEp|W+FM}}XhoOz;=dKpdc+y$30FBg!0E@c
zk(f;Kp+?;!e9LT+%DLw}M1d5GeguyOo*~E?7a7a~oX*FfK&Tvk%x<+Hr3dTDhppco
zJ!dvlJ{s%avpOB<-fe2e@~O)@TYuu!N)}qt9MKTD$i-?Asu9v0<o^9nS7KDw$l+<N
z4KR0|vZFOc6M%Mmk&30AO+ie&Tq`iJHlKqRTmx-V5{7F`C@w*W;ov_c1w>xIC~;`o
zDJrzPeQUv)>^WmTBJOh=C@4jPD3Fn;1xAxX%%%^Qi;>PvY4XK*+>4o**N-dEIbh4V
zhP4C&-O*(%TAGhac1~7;&z|U0fl|2ur?QkT0FhB6cK67;E{M0#whold6_tIXT3I-&
zhSa%2qPY8w4oA~*FlyADlA>j1FIOSwSBV`A>+o!22;5$ElF?<uFM<5m$Zc9{g7^f?
z7sKpg7H92#7c?K|uZOAgiwW&gd8x!qGQ!$_bDBR_NLvevBfMAN2@?MzP`x-7R)QhF
zGSLjy*{x@Rmcn%4p+3K;{mozm^h#87u7ym%rg*2^-h-Pf1GRtMn?+f8a;)^JycI)K
zHD8}gs5}y&DZ$pHijniuzNV2=XBSBkimbfRs9C&_T`%qKBU{*A9mgHk36L|~CHGQ?
z4}vklQS#|Dmz*S*TCgYej;@SueTYzO#cUvja;#~QmAFlQu2Q>FhvWFqXAIG{6O^BY
zNP)hm=1}i^&nTqZfJ5$iMBAGH&O7$Da1WVcWr10UwCUrEtK#LY!gSNMc+|`JOcf*G
zrx?gb-|4Q`9LCAbs^@wM8#YB?Q#KUPw{0Z7MAH@4``+5_?%^E0q>mX9m=ypx*KV*=
z%+)#geA!g&H1X0DFC|%&E$af)B2(}+D8Dg{rYq`Hbc46t>1|g@6<-c2uh~LmfjSp*
zQvGHO9Q5Y!lx;i2qhzW|u370{Sa8+4_ksSQ2k~*KAH%nIK90Gs`)B=%IK5-4JqYUE
zLKY{ilfsnZBYB{XoFzhxhYT+JRM-&`u2yGi8LKdyPS(%26kCp@n-4vf2NvBU(I<~P
zYT)UgPl-C2i8D?>Wa52}ns<XTDfK0Qyv-=A3jDPlX=n(=h(;k3_Y-~obp<nc4~5}b
zHoA{t!E<zBWt&K&b_6mPd1aE=Ck)tX;=pV+Q`^j{b*^>|x&Ia{d`6X>uf~N{D;nUD
z*eVl8P{NFswz9?7!x0KFu}7YS8a6F`xVS5ybgK+*bd1jC<7j%=D$&3_ogfCsH;KuW
zR6WNvP|{*%xaVk9-^lv%fTevxak$v?c<DSs!ih%0{gpb)92glrnN;yIn)kX{x0nHX
zlzQ85Hyd(80r)6eeD{!b^ooBo67H~fgr2ethhc!;_tDUE8}Q@>RUEFXa{SY|m6hNR
zd46<Dk27{hdR$Vk?OPu=2P6z%j@!q46nDTUCYc6p)CpKn;2>GFC;;y+(kb~7oxmZ=
z_<MI3)NRfTXWA&v0JEBhKri=Eeewqf3bj|#+oKf3yrBsU(IqgJAMt`LDE%9UU8j`i
zIatQMlV|U?It1eT8)TIy3^fvvG7&c8Z3NMM)O6VVEhuk#UvZVtmTv_Y7cO!LcqDW&
zvzo_Tk}&wO4r7y;xi?y)A$y<!8rYrL!(G221V>ifyjDOnC=v~IwX=VooA6aWEHxdu
zrfm^&2YjoVy|)EMEomdv*9?ZG9LL^Y|L+rwe_WMz>!Wf}5^18)7pvG)hP~@6m#)Ym
zJpdJo)*%YQyc>rq1eFNVOP(J@Jp5Etpc^30w`@%k+f?29uZSt=-ez=&{x4&3t5{|$
zG88+-rBiuH>$d0qmS&EnMo7%Hx~(*{izj9O3Je7^d%|a-<j|O!_C;Euv^ni^z<$z1
zX7n|)LEeiqel5<3!p>dL(gMf7o%Hky*35Wy7Ibe(1Q-j)g~~fw9kKIcEp1{*W&>tS
zY13WZU>-F^(Qbh!O8)G+Q?1lK=%%{@o3}zGs>IHN0e@;R<oZ0w!dGh3SIOb3rD1|N
z;@F-etLuZ6{OjQGVV=}}`g1BGkd$2AzmhfJk#aTyI#xHMTT(9t0V6azPz7^p9iwj9
zMrLt^$RRVbS7ftGzF|<%wgjC5X_G74l<k>qinU9xJtUt{2M7S#ydm7W;0<Zo&$QkE
zSET^NF_2}qKjo7d(y(qq)-rdf?-1SM(L7h|hXZCuNZ;y2kPn9R!_Pw#lEAkTbi;$R
zskT4+Y7(jMbTu`jCoaoW8`^mE0CliDa(D={1*5DBZzz}514nt>8N8&izfq8;)NqBP
zpeK=5bZ3jY8f7a-)z=cvlA3=PO_P0nwOf7}m2}bPW^D9j3Yr!I(JjPl!gI$}8d;Lm
z5AD~A`EjtPN!9QNZ6E~b$v0v^O-6P3mny9ts!V0tlN~dsyRMbx@u`QH_q$%u_mvgn
z)b8qyXtrCu_kgx;8joD=Tf^k|bRz}g9)5&F+4~iImaTHlr2}kcHc;m?;O^lTMBbn&
zjU)eRQ~$`?5~aHGs})=jLq{=+9gFEv*g+E0J4&<v?X3s>>iH>Mc_cfxHgw5kcM!RX
z*hpSP)$U>~cDlI7Firg{q|4~-XjxjPB!3(}_la0UUnyD$qWmI;P~wm@LnfI?<XFI}
zNXo_J5pg<un*d!>dWe)C7*O#)lNQiAx%a1)Se>s*0$}L!>>lSxg3^?$Y|3WXS(RFR
zeq3I2Th2}i2+j}>y#?ZLbW%Y(TU|#DbA|=3i%GJwc#KZ~e4Uua*bf{Gop|*PkMrb0
zW=Fp2miyz%(vXyLNO|f2IsD)q!C(LbNt<o0Hkeh3CUoKKo<6=F-0d{OVT$y2WQ@~&
z)^cxw);T_bydp{`c?QC&%XcGZAp=yFy?x?p)t9Oi{lIiX(FS^@UQx3Cz5Ii1c>v&d
zA&|Gq;M#9Jt>DX{GZFR>NtR7MN<n;0iNLOGr4Jr+{EUjT@`y(c4&L*W&W(7;y*-S8
zKR>o<o@QgY^J>xGv}Aqk%~r<pyPA9q);n{QldD|^wWfXt(M<Lc+^H@LJWf^grsol*
zYm3Y(BXXT>gZ_KKN7w`mjJt~OeS&0K<EahYx0o-ASZWMP)kP6=Co~a+Fx<h%g87p8
zR>rAfGTv*Ubb4tsljghPajC4*k!28TgjOxHfSBq640^>A=1Z!d%@{;F-^Rp6>lel1
zy3vtugU0o=Yp!am%V|v{=*5BQCiTsr;d&^_c3}mnUO_DLUub)7k#3ZFcVik4FAzxF
zdCYw|6WsS%7(G9^;#kt5E2lnU{WH%!-ojix;Ko<6oyfiSH}-|_9sX#H+MsNuLHUlG
zuR?Fb5*p9abrEK2FIZcgcPF_ysy;PZpGODR*3t6mYe3Ng{)nLx;n+V)*D74>qy@p!
zhu_ciP};H{-#@VqCS@5KDH=MY+z~4>VqbI$UqOV(0l(tSO0)KX^pxxj*c&Q3wt@cg
z&^DG^!Yo6_&2P~C2r_g-GqjoB&U|{2jZUx7di<P^;I;2?`;*#4a+;2j^^oi}x2tjL
zYzc_;EcX(iQCE`!sW)-GHj}KPGd_@|bGk6qlguSsBf^t{H>&uU9+0wctpd%kQNkIe
zKY*iN7@Y(_Xa{lQ;purz3Y`11Y7#mPm-~AQ<K~0z4rL;@rX8;+Rb#dpJ!iwbHZLq^
z;QCU?A-8$F72(Ix!)Pn)lmuOxj3qq|*W1y{Hau-br5z)5tt=h6i$<*l#F2F#6mEQf
z>F%fL{ABRMk=`N@TmuT}tOa|NcxPs7OeOU4&{GUVaqLTRl18|M7smll#vaoPR2G&z
z3)&1)Di#95#g5&u+GCG$j`pXsu80=pbn7Bo7F*M@yZ>A!<EE0+A@m7tk~UiWAx=M=
z{1)*Vps(KyGFyO6%YHMK9K1+#Fo{i*Z?rb_g&fVkUXNt4=JW~gl?1Kl%QF`q<aHto
z#vpJeU#Wba9WcWj3yv5#D)k(DvqoKAjX+<4rOzkg>S=jg_Ys2^U7tho`oQEFbQ^sd
z15=@V>L&yzBVqoO&g4d~WLBe{v@xCGVbVrxmn}z`EyS^=-n2M6oB5R2WP<$M=I1gZ
z2TIE;fNkMFuoE<q^xl4M_Z;pZA#d);%}KR=*0|b;ECP_3R>m5m6&YE^n`|{dL?PSx
zn(Z*`zT>&VpM*j98WnM_NXkDC!c9xy%d|ry%3hbRkKKt52r|9u95*_fKG$U5#BT0`
z0sOM*o5;FnXTgDh!T_Ed1Y6rj^j4dGW9F3d*C(+WM8_nS?{*f|10)C&yDfF%M*VXR
zc_WnetlKvq!CZLzq-+|1--@*J7s6sUoHcbS9uXPCiozo?ugU+8R8g~QjzW`{Fv;&?
z@N&^)@SBahkO?Y<EPJ!q(na5aDx*}Ou_e<8v3s|!BvAl3kwc7tkA@4d8Wos^&Vm&Z
zZKgofk2aPDEl2<n@D7<|F1{UDyec&gl{X9o==BsEk)rMKr`|E4p4ZIgNXAba=eR-J
zS7H9T5D%$}p8nA=iO4gQxgrp7V%$L=9)gw@&f>Q^zNEf9mZV$Av~Mfd?t1noK&`KF
z>%&ruA=Fs{YozDm{X@1HhCLK9I8TmZ@Yr;@3JUt~COiL+TSfN$eRSV4N4v_xPlHFg
zO%-UGhOf?`J$n_}KOIsrU22tk-GRe+YYaMXp=uwRmvfeE^>m*O^%#F_p&Z6Kz5SG6
z4n|&SMU^YfmKR|F>zM~ig79us{|o1`M{kKVR%aS_))jzN0F642%Po`@sWTEUYJ45K
zho?=vMV#*ZccMiD0gFY@)bm&iiBgCss7m6I6Q#CJi0FAx$gXR*Y3LkO>gm(+bSP3!
zHh@<_ps{qguf!2yC>5(MN2#LzHwy{|n4lBrLqe8ibAmed*L^R+^JhtLW&k36s>W8R
z7o*6c!mC%jm)6YPC71(_6iktj>K`WZ&?=;JK=fpWUAI`dd||?NQurYdRwHr4c&lpk
zm1Xn2)!fv5OzWd-5p?Qg9d5nUTIRgOH_tfKK)#cUa&mE2mDuF?AQAgstLi-+^<)~Q
zPzjPD<q+V5nB3&%rEaI#pt)ynBADjK+D*-BO`b&wzFqKhEgRy95+_2O0C}?-{-#6a
z8BSXLp1pSb<^166fPvs9lTi4)tRdcgu7^)aLzbBQtFcxiKipF`7XAQPhA!ZyWV2Ma
zsONDV7O4Bt<VHb19p%3XGB|2)%m*CPuaxCc2u643*zGM1ff|a|O$Oroy^*TZ6e-gz
z>K$!NN1a)Y<l0%>wD~B=X+n`5gAOkW_J2z|nrilgaBoth90@^-#0%?IMeHy@8Qx8x
z>CVSC?lH|;DE;te&4Mdf0bj&8?@7#oUwK>IYbr#S#N$?tR}4F78s;2iX5Rzl8_QUK
z-2FXMP%Ot~VB^@-2=YVU^j8@qp^sMz8B!2y+Q{W!So)FjX`cbDhT;T9njR_in6&~s
zK!6tg%g&(RSN?{@zLjpi_ZsA{`az9&5tso=APk-w`|rRm2m;!ychVr==9-N-UXs;C
z-u?_IO9>7K)sPkNwdRU$g&YZ9kk=!)T>PBN9rll%F0zmI=uIyrc#kdpzpKB_Q+9YY
zQ|BM`*A#)v2%cTi!R{^tXPzT$Qx;5kb^m>xZ<;U)l&a8D%&JK=8+}W0<_t(DE#O^I
z1MB_7FA4h@>+_-C_Z}V;j#~ifdb%!tv1rz8|4xk#7nt}RCWL3a(SP1Yn+Brk&j%Nf
zs1o;1!}(X{+#G1$mxegfE=ZuP!5X@GhNIcAh%V=h&(PGp5|<Id?{fM(aMy;#<D_TY
zWr+Fx2H2DtsHu$5B{XJXpI$j*lXyj4Ixsc&B>bEF1UGTbx+mLo5RNsVyVMF>&=kvN
z{rHuQ2fGwf80cn&K57lmCZkeTpUU!2JAv(<S@OCob{mrZ`}_{gji5*=gI6nDot9*?
za>fA6ReH`X<LE0^(zWNiNFx4%hh=*_?$+swIhotjuBCaBKMdsU%<{f!z6Br=R<Z9v
zq^;}<_?;NjZ7&?iQQFr{#YWK@t4{(^eWI?XO6==&V-^_G{g5*0$3$P~)r-=Nj>gf{
zU2x`oGE$M_&+ajjwTWQzx>*7AKVic!DED>+Hs(-lY8_?k^WW%-$&^M1GQ&6+tYN;)
z*eQ~WPz>T7ceh#jKm@tcOnka;I*JoZC_15I8~zXFrc-}8DvrtyyDvSV-CQX3kn=q9
zhEruJlL;5}2>mk@eQu6Xj|rMcZi9~RC~Ms|07}((Fum^fm2GJU+qxYO&*+qCSisVa
zY5UJ}oBt^>ebTsWB~T2#brPZGhHsz4+?)hffDLoVEyk>yG7bR`dZFw^F7`tJ&%E4U
z`mU|T@Cx`YiuDsMiMb0zzoA@>Tlti1WYNtr+fXBc5Woz&Xqkj0F<rK-hV<KhO|}*s
zQs2YE+C07}<odfMhWVU~=JMGj73hAF<lZhIfs7Zk;6vnY5?Bo=q=Jf~nv#zNMB&dz
z6?gaAMK$rrgI?pE>XaLelh`kXX!T9trVkrQsY2pE6w`*!C#vW$gFp=D5LyE+t31sv
z--jipn*#}h`x&UE-YomyBzGbnC0fIaSfZ$3#+|(Lf~@F!9sd&8B9tIS4;CxR1q+)R
zpgy(<quJYch$@c_!yt7l-b~{uG2jKwV3l#PaIG$hd~`ScgrG~dL)p;GSsXmt6=aie
zi2DRi>;8k*=lUWvQY>bjqZ9NalSd!Fu7V5Wl*qjJBt>m{`3F3pL$mx*UnGER#HoS|
zKFWchzmNx6);yjV9H8QBP^&^ae7J-}B#pBhLW9-0u+pJ|Zlu^GY?oPuVrnuLJ&S|9
znRJ_JGER*hHs|2yW9W-;4Z7sh*U1a0kEe6gFsa*-q4aM#Du4op1WZ*hfCo*2A+QBg
zt{urI&7vp60H7EoHwdsG$yjo_tvVzJP&VUWRYcamKYN<MvxsumF;@%_#47q7lIL3&
zuoo=@n}|BQ^X!!U5vdJNvS<q;$|WhDDt%W_2K6rM$=Ubw&ia||tX{15wggFJPdz@m
z>*c4gHBYK~S_{J=`~^!4?-;{M0pPk#Kus(}xeH~`qPyEL!>uxhX5DiDn*hPqhmjNN
zQUsx~sZbKk%Z+RW)bs&F>Hv+$F>Fq@<$u3Q4+F!#p#zNSNr{hyqt!F6YY1^+q~`6W
zBg)BX5ld5<&rX<=t5gSvX9O{j(Bl@3A7C@2Iy$be_2*lh;G=+ukb*nfzO&{3GJT*J
z(lD<KYbrLu-@uMXgV_ZKj3~!=O}xcUJP0ei%GUKxvDFoq+KaUxBWr!gpx9b`{?L+Q
zinI~`Gm7#Y^`2~jm|L_9+4;9#NZ1VI%r~G`zu@+X14@{t!7im%BE@w)L$G}4UnptA
zc2Z@FYYIG4=ad$VbFRZ6E4cZ^B{#jE3HBizH+^k}B=~>9CnSqQs1YeCkmFKzQ-&mk
zeZaHP_&?-L#N0C1>s~!{sw-9DdGEJuGru>4Tt<3&ohnD1w}rgPwDsHyS<rnH4hUT}
zI}f#R1<`)$Ma$(fKA6ljOodq4L|B@r0k|hMU1{8l@Bardz<J>(R7I5pHt_ZPJz@S3
zayksXjoO``gq$FwS@#re$X$&~yV+U#kNkTunL<O=Yon9o?lywO<PTH_Pj!N+mI@2P
z;`)jhV%Lk)8m{uO3@d+68}ctfuQaE82B~lOT9X-+=14X@)5#zJ8kAAwH?!r+N&~?G
z)C@0-*T4IrM=<<>W<K~D2>x*0AtBKOx%g%wu~9FF%&K%pAHbc(Z_2f{J7Yd~wwzBa
zG?H_Z)Kc4mm84BRUF;gD$oG$DVfMJ$i2w705~J|qvIYTXN2verdv@}_r#Vq_=LzGy
z+sUEXbe-pY<vfEMZqnh9wk;7o69DxUSz|!~>9fKw8O#EuCK1JgBGJpinCf5WT`$D~
zpx2dJOgrlZxINixJvC1nq$;8a9sTmSU2}OHm8rPHXPETclC-m`<OG^nYta-EO*zU$
z(^-PqusZ3;1KemSGadm2Xq^ty(EavmDB{1QL}hpeS=UJ21VjR9TOkkXr_mqh{_;l-
z3$w+l*f2NlSz<U}2WU5~Sup{B78Klva>aq^ev!%2qk~P|wo?P;BUse$ktmI)1?H8i
z(r}q8o`=tAg#WN^x|YP1LM8GNB|Zc^ze4Vvb~m5b-KQnk14*VV@^k2eDMAg*aQ*yN
z5@1>if+QBXjND<^xk?NUEuTLNBb%CQ7(@K<W8=Rbz4RTdc|o&1^olY4L^^_i|25WQ
z*b#P@vXf9dXifKF0$e<uZ3ywVD<jdrq%eTxD*vT%aKMx*pK{mE+2Kggt|r33%=A8?
z=0Xn`5%F>DqKK+MyOHOz_dCPk7rJasZ8?K2v!hf3DK!0ci&G{LO=reWj12waLyrM9
z=OX!0R2!M8v8XpIw4rT}#|V;H0vBlP^f^b-04a@&^4nYt3YpT7ikp@8)Pk_EfzvIV
zM8CE6N!?8TCg?|WLX;~B;T2mn_p^|}#+CjAkLv`UsT38p%UfzJ?5E)%sa_^+wQ7vS
z)JuzMg>0Y~5;s1Czg*{%U=0$*H|@I)S2d^~FZI~uTJxse+SvLv5>h?)-SQ$>(1QI^
z{q|%sF0;<9(uCpqe8xlYDuHUK_wB0#%kdK|6+r2CO#1E3(@O-TGr>0tj;j!wAXSYT
zBs=u1_FaEIN!iB+Z*GME_uTaBvtNGhVZtuuBkFxW<q5)4i*T${9bOa5j!$Yf_J|HB
zma<xX+no;Fb^uBgp}cQkkX&qu6~43**6@Dn=g}l$(^<A@#yFhN!AOG}yIw}W!>x3N
ztF%_!_Y=78a4$KBS@y6HgFBFZVekXPw2?(oRN)4df2BnsL*g&y3L<x%$Je;SVE>`}
ziMv0#qw-x$`$o*V&oK_VxJzr}icjm5?Jw(bK`x+herU*^;t5T*ke+Vrr&bvF8Qu`D
zjI@c;d{Y`vc#OnC7e{Ufoq9`OvQQh|47a6ACF~bA<kPaoBeF1_>0n}?4|qkV4y`<H
zj%8WO{2`ttI{3zBkK2}uf%}ZsF+hyFbOcIB^)0*wj^*1=?~iMmlQT6#t#Gh$Fd(==
zur;+CQ-{iAQnw`FOv@^q2(**dMJ`f0UBm#wolJ)xEuTajr<ox4P<_3k0;AIsu%JPQ
zH!OqfU2LblM_?@N`~mT3d*576za09so%8JTGAdEWF7xadZg$IdfJe}7?YSFZ+xXEF
ze?#q{qBfcqv6v##hhR^x_=L4PmvtBGtH2eaXk{qVOBX@>84}Sv8#mj?XC(#D9}YHU
zF0VlyqI^1nL*F&&r$=G9$7vxmuRnXW)ZWn$&iBn;tipBhT^+{%B$!iHKgL<F!AIHb
z(1nEHfkq{ii#po09rYjQ$;RdnD{)~o@KiKz`{^f;$51m`(wRKn$ybAehy9xSk75L{
zL7f|frf{#&w>H&N;u+^A>_(d;t$k+Pq+`!!Lh-0J<vyi1DqbomYb{^s4C_{nvh)oM
z1reEkRy>_3K@>AX&&{7`5)91Gb>9dR6u)OJs8CoTBce`e`@(udIZS|=Q|`(k+*bpI
zaGVmuLM&Z~)BqXFfyIYa2vt89eN%gpg|K<@U5^^S9vjzab&(O+LMA9-=wL_%k?;z5
zhfc^U9!TA(73iSxF0C?EOL^jIZDg;#dzJH#%cZU-0xZWPVl29)w@RpuL>GWYpwGce
zQ^HoI9!RMZ#1q;OCIXC@d`@l_%h93vl>6!sS=oCEX3=_#iFl3h3{?_9v{XR|K;SI<
z$Z4jc`P&Jn1+T35NY`h=igYh0KU<)WX_>Zp9_o(tC>ceOQy3k|Ub3OOX^;Q6yQpQk
z2MDG9gX@D4VH7Uyih1(Zpvh>xGzsM$H6d5%{L}=ToV9Bq^0r(=o*rXV@Gq4-<g#{a
zG#tg&6514`HZVT0#^#wdqrTnwMjV<S$n=)uh0z6GBvtO}c)BD5aAq}1j~Tgyj<DDm
z5w%#0);0?*Z_5y9gKg7bgs4SI5ULFqHsI2#R;t|}FAE!?Y^AStTfRL;CIN^VfLo%=
z4KIsa8B*CGY->}Anfa$IVgsuTYFDuVL>j>}V@+;Dmvwk;FD44XfBO>uJOBn!l-+f>
zDlxA0J5W+%H6J+nl|^ugyko^kUI;V?^t^G2cl`s*CTu-^4>xS9p)vc<1%9$C|J6^R
zv*c#0aPEy!@(rJQ)i_GkuHUnl*cgzZU^>wfJSEqV_y$L7TsSFL>AW%cpb_J)F=S;=
ziEEji?6X=?k5j^-MK+S;u#(%y=|?2!7h#7wC<UPCSD=(X0rg~rRW|8NKtne+#O`dJ
zF|EqOA!N>t5XLC(XBmt_HnSK0RzC~)5|Oimi(qwM+DP^<HZvFL748H>9ZP<5VND&7
zEu$StkQP?KNd=J!R;?*!-L{{u#g8nB+v*7jOnpT}#6cEj$V7D$5Mk7OUx{$OIzLzT
zie(}1SqWx*m$hel1hw<=ATALsv2i*T75q<2GnbujE%sH#k!%e>fXV;%TzbrA6<R6f
z)5+ZZs1irAk@U1xWp(2Yvn~6B&+l%rl%@gD#G~J*mbCccY&scUZF5y9jIPJnwqXuM
zufVY<I*ycg@2P%04a-fb_Lzne6*<>xo)u7iYmXdp1Z=4B%6eSzk9gS=yy?sT<otNk
z;f}%VtFqrCi<YZ_@3`4Do&;kvK1tWCtRgV2`K%tV8`kXsgb=){RImZDRlrOZA1^Mf
zf2Ti~>R-PZVS1qN&gLVEc(d~+C&Ix<da9VphuYZMP_T<-1Q7UI7zYMAOey<!=51kF
zTuDn$Fn^GK85n3P^--eGp*A{4Y4lCQacNf!xfbZJD=nhG>tMN@{^!jw&5%&pV9=S^
zv2d|}N*3Z^jrB~b;21#T!rCkew-NUs?m~Y=ENHm{2T1A9Y=-rqh|Rj(dbdX86-v4R
zPz=KTAh0wu_RCd-frR9V2{#f2K18!&55}*lNc35+VK1s^GQN8NMD6zabNRw*<Ec>V
zsQtZ%Z<28LY%~Ua5x&xG%#%e!X98q;traD!h3{xCw_<=E00c(%f#*an>2|QDu2@wx
z(<=`nD%(eUwOTN6W8%;aVefo=ad_E{`^5_6=r^lYa!VwY@QTB51o)##j?W6+%Dt<~
zIYfD8kp|^`O~0HO>R$imSg|dP-miKS0@`u4JxWti3$6iO%*7f?VCo&aYP9yP6}*(<
zom*Q^0@yP&Lz`MZ6W#gESW)y4GU1@8!EMA3ab15|^=7zXcfnVTBiCmMW&p+%n+apj
z`Pvp<S^}yaj{}kjyr9Vx2j*v=dX$X7XyyhQZXl~Awq)q|Um#<O^E#jFTY)5${|E4p
z6$;YaNnE>xRaDxSzwTQ$08=N+&uuoirz?t3GJ*^90*IOxg?}Yp1ro9jE>|bElqo}<
z+G)%|Eb_@ugD9yx#xMdDwvssmz_23Hnuh%w2(p&S&yRjYOR`=rV=ARxM?duki>dcm
z4WL<_Z_^}DDWHaA!%>Z}T)q+`0<fM2N9PHdFLo?&0|XDk<>l2bjrj_-sHi|hBPvSS
z0yr}8WN}5RCuRXBJ6k}{SWQ|pj>HVkVFs5+(A}ko!PA-WX}a&5##UdCiE%3H?|f|1
z8)pW5XS0?Z5;cKBRz~~Jf+iWUAU4ev=_Ayri=XXp3w$E_2tp->rK<)Am45TLe32B>
zR}1Zc@okdDUf__*tT^>KI)95FF6u)sGqO(Xyv~ZNi`OpYI43Fm6E^<8+RL^zUP^F4
zW1bx)4l>^o+xwBZvWJ8OrWr7Mjr%$Qfmam2@_aym8zIb`{$H7kcAe&@kg!c5^D@^#
zAA}iVI}rxl01uTc^UOFjd=>miwQ<a^u6KjLy9ZX4TCpZ9TRtf+swaU~$Bst{vCxm`
zB#R1AP__*GO)RUkn>m)pywk4sk=W7G{jd<pNFz^k%oq=e+0(h_i(0T5SSI`n1xxxj
z*M|I{SI#Lz)gRE8-m1dBsf5uUW~l;j(G_$D#NLaMJOi%!xA6IfJF04h2rxR)H1g(h
z!P`7-WYaN98#FwDa@3J;-DKX3C({14SpPF85tw}-k<*WY89F$I&wLL(Re}Z-6lf?O
zeUuPeO&SQvk}9BF_tl4lu2DHc#u-TGVvVO#(l%|&npz};YI40-)zEW4KnF&H0l3(r
z1=MLqPsFwy)ketl1@sF;4eMl|1U(AwrUQD<Rdu4y+q7vTmI|R=35hOY#Iu!u6C>>r
z0t%Guhx{Dn79eV}Ij8{+HBBcyf3OZ)x(VWS^-bZ@V6yC94JAivFuf8N`u?Su`N?Jb
zTJSW-acTIlE;=M+p`TxZ39glUj+}Ir%;_XKFajs-O;J;ta^HmyEKcWw`&r!Q)^-O)
zFw`mW!j^yygC0H^fG~ZIC~JgT*<*ggp=6U@jd35cvpRX&HEp&wA5-52(cHf@Bk|+z
zStsWoVrZ=*Vd!vhv1B+lOkp}pmHuS&n9dO_Ub>Q>l>W+hqE&z%Z$##K#qi>XaMt9W
z?4eK09av2rn;}iKD3CBmcj{A9c_IUJQ|0^HcsKp)B)q}SHteE3=sDLg;zh5tp|S^L
zbC=_sek%@Zm#C5D6bh6;|AZAL1bmj-kig04suaFw6AFe(sWsLW;KFB636OZGjL`5#
z56R7I7h)B#(BNicP%_vofF+>74#1+*tLh1mc17Td@rOvDaywrt7`glX$c?+5mJ#62
z%lv$}=zmAsD$H3^jjoWd%S#Har86+k3>_8h-R(iirJ#yFmT7C{$xxCNZ>E~fu6tk?
zUii2#E6R@0hH5bUlIz^swa}kMEsc?31r43)GI!4AG=-hz6I=GjTx+DOogwQ{=m|O7
z8i~H<zFHbr<oj!8C5T;ctl3H<pBG5TN5phNQQTj@;^S~7-s{i#f0g~uoc*o()t?W$
zcJ5dw&j@haKafk(Kz^7-g;%vxJleutjF<ldC=ZdB`D96-rV4N43S<{nPv?&=X9)EW
ziH2z7UaFH`W48)iR7b<sz1%!~%v^vGdZ28j`DGKLp*pLRQ?IUsiuOnL7?#wvmf-_Q
ztL1Y6`r)BvXejwY;{$QDF(B|hN(jQ0AODEBVeo0gtk#DG`lv?mmQ>ghgwv&@K+quP
z)3~>r!7JZeTQmR_5>=^|Mv3bBkT3EcO)lCALc$3w7Y4*oR2;<?T_V#A69TS=9u!AH
zyLJEKwVwYvT_9UzP6%N{jSyY>*D)3P#(6{6Y+dKnqgFWcv91)`R!B}aU@L|y(N$|U
zRnD<N7?Dt)#Sra!DDMqye}&rkI}SE^6Hn$76YV{~z892GkE_2p#B111%17<4VY^C5
z=uk}b6~rUZXC!0*SIiWzKZoMoe=kHEwqKtixSY1?YJs>7L-<I!Vq=(~X79_|{nJOe
zQ<Go|<qS5`aqT4@v6(zr_!WlyYOlC^3CjBsw_&nYI*s+dW8$W@d6bEJ%%6MbVr31F
zIb6!jl{aCn{;vX_Lp9^EhfrNstm||A*%PL6?1ai3sAsIjKtb1VM5#pKb5n}MiQ4pU
zStkTTs(3?srN1rIjRQf8XD2*>6W$IE%Zi(<Z#he0Mej3{zPNx~*vzN&_jz(K^wE9;
z)+-%6u7br|Q3U^dwBP_L(iewg6Yn2k_2`}&E?5UuL};q{b0E=4csjR3fC9OEix%mx
z7Mnjy%vPB$_AjzM3|hx%5tG8X(1i-)*E^??xo*4A4cLzWfc}ReoA;Mt&^OI@6EcDN
zfPnBeZFwXtdzaB>@>-*_M4%^?-OWvBluq@~DmCzI(GS<qXCFv2@`9M1@Wz~@vD13m
zSwuq&DT-R|{4y0F3i)fGT;v=e`1-pwC+-;Xm*D#tGTRat8YyWQ&%)yG9G12y`pU|C
z5cGlR&<gUMI)C#>G8nLv35Z*6bqK*Z_Rc;&pIY4o_6)#iXFPV>KIV{&r}{ru7wyWi
zT4k;5(MCk0nkevF9NWbtQcS80)J?hBosr8q*X2qA?xoh4HkiBwlYiy0ic*tbIL&Uh
zU}RDmm|ZAN;7s{wL|8NeP*Laq8C<WreZ_6zdOCge_-~j~{^gk1+2nDeFn6Qh$`csS
z9FQqL9b=IPPh@4{uo0Jg!6vLq_~6wlQMTRKEJqQa^W7ot2$D2sCFbiKBugNcx!A^m
zC;ofwl;;mr!}wL9viM|ayWmP0GXH$M<kEo6mIfb@zU}?#;RORN1-gYuiijZkGqL$d
zQ<k*!OzWzs|3vyds=L%B0F>w=#Ek5l#smL^EwNj@hwEp~KAy9X)EA($%?GYl2JdhO
zH!;VM!Ghnk<=y?`kotm>`U7L(BPdtSpy~w$%=0Jj{rW(qN)QcA5iwB)ALf!076yQ5
za@|Km(TzJ8m%zvUjAmYJe$zi{11tQK==9B6%8*&@W#)2ItYHkRe`Ex>&{y#O4|RqT
zW<?IrG+Uq(VK4MI*+3I>c3mxuKQW4xep^^IxQ{2mDv-_&fgKw7S`Xfm{t6k&Vg(Bd
zGl;ksV*stY%Oj0Ts@Nwy$qA95XEVw_u*=nptu2mLH4y{y)Qxan?flzKeUT7`Lo|B(
zu=<Q~Vb`k?osFv+9eT$6w+mhiF02#3gt^NJI4$uSw^?4VtuJQGyPr<K1c!kG3Q#ip
zrDq8U)LLZ<v-aQuL8_k=@ejo*o9Lr*)F)H;NejR%^)jRI29(v#wvy6xLYAB?s{~MK
zuDcMiRruu5vdD4vG;G9H5#+9mN7N|L&uV#G>vFX`rwqC^of!&qQ-5b0!+)ECJoU&)
zVUbjiLK^B0jvXnPn;<-9_jh&D0c8hO=iiq&@{E$&VVDxU*|M_<Pok|;IN0GDWl$i^
z295OKR4KIHWnze2X><!Q+{OqDm&YjInrZr-oJBF~dfX1O@wi%0cZanRYh=d`Kf;p)
zlehXR<gp9V{^xsazx5i1;)oAOVRfHZiHYpoe*uJ-@JxHgj8Bus5kg0pk;u4XK+KJG
z4ypslEtEIMz$N%dWvpR49y{7t2rEAG^~n3QA?HvE=D<2dt)$ot8<3qi9SpzRttC@X
zhXHn)9pSK^B4!iu9QkOx<1L2p-u$tcjJAZ1GSO%<0dfIX7GeqH7>`PWLzL!tAFS~7
z*EO^=+pSOSCUsxjx+^kZMv3C)KWw%K_IK&cxPg{UAI6|J0K@AJT-x@ouuFr|F)W?_
zqeuJ8KX%j8<FMRR0edLehrsB7HDKR<`NZqgQ8jV56Xu?IQkUIR2&IPB&m*j4{w=u2
z^hlekh0;p=leyK!o9!yA&k{U2h;eELybjro=_lxTa(fZPd#Lml4|t@IeC19@ZP@%O
za0;I4wbj31F1_7f22{v=f5z#I#qdf5+wzAOw8glRd(MO%ztziq?Yxerd9$m=J!sF(
zMO*MQrKU6f1crBDCsk-cu>7{L55~|AzhmaH24unYz$JQ>_M0Z9*p#Hza2_rhnj8G5
z5PJj!do^XJDC_79H-;H6YDLpHUOL=c1L1x`4i1y#2jjZipQ{Onfrl0Ycd-=B86W<+
zR(M8MG)7vH1mVw^C$utV1%aQ+hG3FycaQ<3x*?vB5H|U-s8xM|fPj(aSE~l=hq4@p
ziVb|;K(im{{sUZO%Jcsqx;+|G0MX_=W(k*6o}YT`2T{%3u_OJ`)U?Y90&R+ED6osR
zVsW~u@$*OKbUdaDGB6wChvo@smC-peL+q*i9{NaWsy8m&B;d|EowY*eCZRZ?0d7k;
z(X%Ph7leIeJeSWK$=NBrBL^A^=9UDA>BfGNvV2n$d7P>G&Zq5KoK5G*3m#H31fq?A
zMKris8m(Rbi*?2k6#0Y<mP@i+UeT^kzzGNEpG2JxK3DNSo-Gr@bLXZG5@9>dqq1hu
zT(loAr-8^v`=yDNYsce2F*mzuCshb$XUN=h4ioqV{0imHVHpCB>>auor<(O&`ux<#
z^|@u@<0RyHXgVxCm%iA%uiE|7u}&U?!>Ly7Lq!tNbNl>zI#!AqM~l_9S0`9Y3XeeR
zw2eVox`)FRG+h(~Op|ahy7cb*$z<_~2?g_sPgo)(o-5lesv+>+`Gyu-k(>K$Uprq|
z89Ney<DghsmW7LI4s{atVqE^qF#NE$<4PiZNdv<^0S`Gc9cSu718nYAJx<KqF;Z+L
zC~GVxQ?mjFLaq7cPF%5WWQR&J<%@_Z^sgXzP3MV{0NuJ9Am5iww`|)6jgeQg-bL&w
zVi>zUp&&vu@C`jGzUt>2Zkn2I*^1^Vz5pG%?0EDWSz@0uz_Yg~a8ZL~G*4PHCh8qc
zj&))$Y`)8~N(8wu@<!3X<0QnZM^fNf8g--aPdzli=Zn}CQx7b0YFW{Ti8rr(eRYq@
z)i{L7MMKN;iHNtMsqUlJ-Y~j!Snc;2>;Et75pm@&g&X1SEi46ufVN9~x?W*GCC%84
zs4<}Nyn~SKA?bH=KN{!fgKt;z@hGu5ABy?{%#8VHSqYhr8e*h16Z&rZ{{SOE+`ooy
ziNta20&`rNbb6+edb{D;`Rx;5u!YjAW#qi@ShX{B@Z-zY&}9<-mem5ujwkgKuG{PJ
z<1wXn5d@6wmuhhCknx7vQYL^Twb+^&CETJg?pQlsM#ugv#6cOjn7l=xSLon%yx=rc
zXxoOs$rT-;(BJU(h|w8afqoUbT8c44&5leGqk{Q1+cxLD>M|Okdn`7gC^Ypht?~#d
zarUo%0d$D@RQB}&Z)blo3=D<Ol#aFLT1l-LXkEipcO41RA-%Qek=2+UM@`JKF-GGj
zLVDJi;8^a5cet?%XPjI2Qii|l+M&p*U|*Jk-8&DEj|zW2295;$O9#Rfjys4Ai(x0#
zY-ErC^Or<fT&s7>WDA1B5q(-SZ}ld-(*U?rS_FO<lV2it@FrZSW&;Rg&=-|zOC{|3
zv&#Ojd{X#2u8L2nN%n+9t1`3MS5OWN@3EfpxG`Bu6N*NAw2obC=HoK3A=S{C@^J9I
zx(#cLxUV=?2|QrIi;&@JdC3J+DxgYIARfxaKaEV<rGxHeZ{_4$$EDUc7@o{P_xlSk
zefB!@!DqHSjIyS@bHm;mxboCk!$zn~!l)7dX-}>A0(|tI>4&K0iP+p?aC#&5w!>ph
za%PO6mYvF}PMl1Tpxv!;?<?fp?#%8WW4(a|_8pUZpJn7#zt>Q2r_?+4`&Z`_RBgZ;
zP53^3K7rGF>#MMpxCR#n_|*PT3~y!wuS=RLz_rWYWGzDVk6}P4UaQM1aS$fv!Zp1Y
zhQb4=_%j$e8X!AI@X7xioJ&5CuhN-jiy<uZxUC1S#B=u14Se*}W<`MTofPJ1Z@>y&
z|0L75py};3$WCb$5+>D*sE<UX1Bp=bQ+2u6H6I{;6F$-<JE3RFZK{GQ)=gS-hRqK2
zh!^mn?$Xl@&CXLGQ^`uU^g`s5I;J~T!qp^wBcJjogBq3&T*MM6daF72_msJ2$O=2}
zL&wFlkrZN)=#2b;jb6#>R;S$4F5uDrgw06?P}GP!$?-IID8f$eLti<&AiKGcH~sbU
z4b8@&OK)fqaO*TB5}qQlM!B9${}Tne6JyBz#7xr;7vk3!R@Bv8nCaP90Bf>4tRr|R
zgQ{^Gu%EiU$-sugf`x`!>pyR<PF5(G6pBzGqd3-X-P~x%d>}SkxDOc<SgbEumIrX9
zb-10y$E5S{OYJS!)!*_U9Sqk(*fmt9HD_WKm9w$I0Y()vp^2eE(gnW~7p%@(SEjg(
zgtRJX38e8~lH123xPC9MPeq?Rke*6#TrFBs@3xE+ps}0FU~0{9H|cLQ3FMoIwz^2(
z{H>SL-;AdQ8$Bs~S_gVHivh|jq3!_)zd_fSIZ=~~j+Ot_f0Isu%sM}w2)s0O;A}FZ
zHpk&U)NR)%f(=)d^Nju2!;0}aBWzLHC8EUfv#wP6lKEmIe2dev(#DI03Lrt%q2t(Y
zU4SjCvE2DxwP>_1+nTbMAX?G*AAuJNv=X+Q@(CiwZ!z=p6kx!<AY=ZoJ}N?+T7oe#
zN2F15aV8Lr1IiXPLF%CSg|_cw@n&y;BbxJ<xIlY-j9?fDbAH9zwhm5=x}8cHfj%q5
zeny)kP~2-4x+#L{A)_c%c9|#J@`-`Bb>uw#rxy?8{J3l-1F)0%E?epiplg&OzE*DB
zOcRilbU<dU(nhtY$hEi!X~c7twz3JytlQhOWw;;C0W>(zbv;M%uc(#dwDm!uh7B7o
zM4#Tb2lx;#x;I%+cA=nbMyeFJjow(|Qw2qZW?73w^(Km6kGcU0VV=CXz@8sy5wHrJ
zUzRT;C*W-vydo2IZyU4vwsD;);GYO<d-U+v2k(r3_N~dl`!)agP*&h<eHJsd?Iquz
za(Ed^LbK1-5dL^jk71BNz0d9#OEb5DV`NJgTbUhSNJ3m3173|=aGRr}{xjwaJJwK~
zL&XlP<7ce1-GHJL0vbs#B`~#f`5gz2+VXAUf?q^nHASk!!R`zzmIq8VAM<h}ut@T|
z)4f;kEub#iW*|pu#w4dSyQ4}(Hua+sXJJ)uOa|z=?Xtw?dBjJoOiEXFuhg}6AHrgz
z!Pf0Mcj^jc?Ml8E;ejR!P>$GMVl7TyFYGql@is%%7s~m4PrSmY=L?*6O&unUo0bS|
z_w8UPb+bYMW2mY_UDw+Oy&H)wxhv0sn&|HrhOs3uw{0WIoP$+9virpDgO@hFw$WS2
zIw^Hu4bG_3BQ(;`b^oErs)|b^K_|$F8WM5{$E5ktPTqOml$H7Z`Kj|f3mvD~Dnfev
zP7n-1Z@v5VWq%$n$hoemJbTbpkJ+qG_?^%4ZUrbK8P~Y;2dA@&XGQVo{t$GbtVI<m
z0cD?<hixQw>&{UNDN*1+8OzenQX4yB5~!%XlB^67B$qtALtSOf@o-G3B}G4?pu7|_
z*e-E=$BB<UaBdfH03*<=8WrgK{m<e-LAIJ2$=1kg2lc7-<<@T2>FXiP*#{Imm)T)p
z_FB-7qC&MM2QW$wvRD-jM$$CYDSKOn1JxQVFVHGcHrmcLhEVB|(Y#TTBk~`r8gnlF
z7Lf-`5{=1r=+@LTiHQquoHuSES((1Fn(Ux@0?YtjMZ;Yv)WU@Vc^P!!YmDhm!VMg@
zRg`*lV9RvGRB50O2RkOZ;Ea&n0TdvIoe47?s!R4;1Q6AkACkJ^Oiy+_@w=sPvTdpX
z5<K{9EA@o(V^{`#cIFgmf$i??O)#k;c75(yv$oBG@y@*}GHs)&Nv&trom&ESE45ws
zY|#(#-4UGEP`3Zg2tVUqq&Bu4CHN&Li~kxH9us1HrU@`$Ru;GE=w`W8R*r0#9SZ|F
zj(j9G!TBYZ6p)Y28O*6qvHgXB#!rMw?{DU#jLdU~iAk}kGjI~8!6eCle@*pC&iDVD
z&H$|cI-@}2>VM)KM;n<;Zs;zqv6?rg5%;XPqpkf#ZY5ueQ|OomZ+lN`?trD}{X)PN
zv)!_E_#<<wLL5C>o7YoLk~ea0JBzx~NXI=@o(6<Fu#iiz<E(q2t+@c5_I5GG`F2KU
zoj}*qe`5_ILCicFe@=KsyWSIPL8-rU><YBK)##+271?MG|0$D<YRge)-P%YFUpxhJ
zfZmGH-_`dzYu2(=DV7n~e}xlX%3{lqCEWoG#!Na7_~s^9l-NS{l)sA!wr-~5|JO`F
zvf66gBD49S;!=9VL^#Qa?qClH2BgRQ)G#|O$7Sta45)>Kt=0a)**7}IAAj~@sS@A$
zMvRy~IJhoX_=<kCUsGkvI=O`Y)_`wUSrLI=-Vehv>6D#w`)mLo+iSb>M1!hql{7C*
z-byvZ`wn|VF@mxny)9Gvr~G-v^X@fW`94E*wwJbQtyi*^%w1nF(@2(5h8IK@!GiO{
zv)<sU51{RHjJV=%t$$2#@=y}e$=7`w2iO8R>nbI<<+j?QtC&<4*fEc_*7aG)ze%$Y
zC1ub$oMAIp>EV=BLA5dcw0tZ80cBXZV^8hWi=0xzM+!0WsUIwo_9u0kZ-sTRE5?xP
zouO}Hv%5<%hdx8L9KqGN<~`IU0h!-&oTZFdP_K2-qg0{<^`4pmH|(ok@Jh%93tviI
zaIu~74c?L@a-QNP{I8Cd_8oFU97*OHO+_1J?3lRG0B*xAJauw4k&w~ppB1F%v8K&5
zQVn2&opuENjUB;yZ<Vn~sFlntLmnbNJw&4<Gmv`_guC>YH5%a1aBq(it)8>Sk+I^r
z45!|2$0loN3hnB&p8;l{v+OUtfPJT}SK)l8WHb^skv1P(K@e4vW-GZUVDgmFc5?Z8
zw|Xnj{Uhrsx?2~(y^V;s$G@KI6ZK21ArvhupH9ZCDxKKcku_R|<muYBzWM9nM)E&y
zU}W^_4B3g1U6!Y$gr2Q2F|pO+Oqt2xPL0D2E~h1B8hQ`0Xhc|6@Cwknff{6<8Vhe$
zd876jDAq)ylk|}=;?_i_EogM<QoTExZ;bav6kst&w$g5Nln&3SZLv_D`)Wr^Grv%|
zZvYd*xlB|r!J<H`LtNjonF&in!$EC$;hx$}RXUnA{oQ<$-D(l>!qrTk_~L(vLJz(J
zIV1lKPI!1Vi~OjCW^M`dK|w`qVGsZ7zMPW>nd4H=nQuSva59AoGU5$IRe>@1?C(Lu
z-tnl3k4I(Y?x7q_k|?)<)IcN}R}YYYc!g7F>J!`XY9;8Y1SSt|M^YxmRUhqY^#JNp
zou=xrbSq47PbrOYIN1(0>}+8rX+>&j3bayiW8VTSfI~<FaF3KYL+Mo=)!gcm%}yeo
zzgfNCJ#u!ZKouACy<_ZJ$e9@1S^d)5O^MN8V_Lc$*a>TG)`{=9Y)Y0}NST4Gf7KpP
zWSc$f&+pq_>SWZxh7a8M+A%l;1{tK{%$eg$rlDKxmr|QD!t?EF78N=k3o82~qKnu@
zVNFSZkwK=Dxcn`_IL(;c|DLa1O}K=%Dv<v#hT=ZQ3KGo-+`({S50yvyvs<G-GOCTu
z24%PjGVai>C(P8joqcQ#0t<F%QwHnut&Cm{u&p$@thfJ2*zrW3vyOh~9FNtiMtdD|
z3C5dI5MkstJG2I3fcLs_1@7cOxE#k<J2b_k?*a>NhTPmwmeNm^CtRU9#X|hIy|zb#
zqQ8|_HRs1-hcxKZ@-=$poYys46`CZ3YVyP@pAV>#>goWIr?b4Y2-&66oT_(aoMo1$
zl+^Y!{rgjO)>H2yu{H$wna8^|Ysz}rU_*3gB=Ca{1FiefzkmGON%pS<OvFUgmrK3t
zGy&Ijb>lxN0b6I=;l2gXDt6F+pso=3K;#)ISNjl%Ck{`GbX=VQ6(|NF1gjLTuCft-
zfZ8$|e*!4JB$;gPk3I9lZ18(q-BoFhBS}5CNx;o<6`YmuP~kA?S_PqeCFbgn25U*V
z#eGO%z1@niu6SoK<0c;<Fz=MZUZUB;GBu_&2FZMPpmy2TDiQoM>0FQtBe$waojAT=
z1_`lPAITQ!iN`NnxnRKLO=-KI-6Lo+<h#J$b#-NU#CXkr5A~igQ^DW20-DoJj=J+<
zL%pjt$t=!m_Un`Ehg!n1W(7Ts)4EOyIIi`7_|Z{3)JXK2so$G^!SplS0JzZd6|O)U
z89%UpbShoU<Z$p|7WB^#8}J2frmZG=e1BU5DnWNepR_q+X75PT#)IXUj3YVqdNJ~c
z=a}RB4bTs;Z2l;l+;fkT^}ao9bC#n`{?Trcx0%pDV{|EH6*8vAn63mZPtk(HLRGqH
zQ+XH<p7t3IgUED*=zZyiID##Oz;SKx!9gBMG;?yo+&U&(#5(BjvhzNV)lapx>%N$n
z^!9)RcLnhB2MF$Y9vQZs^*+Fz^P9JoA3)_-*Aiv^3Dg>lFj&v~yB=KaSKFX+W{CS~
zSdN7R!7Q@6Lx-nng@cRK6_TsxrDtIDdFiq=>7FweCLX8!@hrFSi>sv1S<8dv0aVXn
zWPVRqe(k^hlOn!Z0vQD){}ZWqKG*6vS}?_w{)*}u8na)pU>oL?Fg0vrrA^0TGA92s
z<4!Z+MRp0+`blY5D=ZC{IbHY-sMVOesLGtcpt#97jN*s-VhK1Ru4sn$oU4=Yi$b`t
zaImIdOlrHjFrRMF+aIVZ;Eel{7)<A_A)WPOQl00yiQc^iKp!zkwxmJQ?7Ps~kEuhn
zj9_6bwMtu*z`&q^rj@@(+X?{MLh!5uK1bK*qp%lELWc=43;@uaU21+j{((<`iC5XP
z<0+Ba9sfo6U^*QzKt6F~%of%3QS#1wjpAtQ8rEi`B6_FxTLo7X=we(*2M($TB<dk2
z+n0`oAgQR6%V8yN1pcMbo*P3Kk`rkUIM9?vj;3xjxL9gJv^MxjZO8{+>eCAdL5*j`
zOgJ*-r8HRYu25p97OHPV7@gw2*J`{PQDvAscX+oN4K0(a!d~R2g@Q(6yf1jDFK$R~
z+OY&BM0oH=oJ+T(gVz}*hbA}$bf5xhR8GG$4KIeVKEwy9SdtqP5)u*)rh^j%<Wzkq
z5UGSNVbKbWe=@!VP))dky7|6)5>r|>ZwM1y@L}8a{1png?e0ue6<Em#x{iIWVir3*
zPqN4z=bF3PV$W9Og|y<dmt~DVyO{e67c%H+0)8I4an-K1>||N8kq`Q2UJCgiirO3A
zfH-tNsc?nMf#MX~0eXpe<7O8dKz)0{3>7V54mxe;>w0ONqpaqoLkXLjRjUhpLHo^m
z3^sA+pJzOMFgnr(VZu#iOIV2XurvB}H8L1mxFz^n<+iD+bw3Ljo`D|>*1_z!U~@n~
zj#|Boj@}?ucg4&f^#Mus=+Uh!4Z_ZPRQMFg>`%Lh<+fCxpc4Z0Ji--EXA=yR4?EMM
zs32=p9(W-^B5HsWo3a7mI=Pq_Ny*8%T~&h9GD6E~-{zJA9BeUbmMoOS#vM#_)*3tF
zWVEnP^=ER8I$)p7MIO3eMwD)*tus`pf0c!!s86`(8_F1~nvy7VUZ@JNC|_GEpqEf{
z5;MFUyqdvLg8Q{WncPdp8M6!>{@DT-z(3m8XxV@dW}{(&EDQD{A=&n#)>a19P04Y2
z;uNXv5P{tS`1LkFJaH}h4PW`C_WCJ`rkCjC0jZ{e(YW;RN2QdLYAbWFI!rL2`@ASD
z7<E3x>ULoB#w}1*(W5@Iqh&$@l@>&U!?u4oH|&K3K<UJx$kJ*Y>6bEV&~Y;-;e~us
z?>44fn`a5E$o|_CuE~_K1$0FaVpdT8&@i<?6HiY$Tx?Xj!Hl5lkNeYHpjO~xJn`$;
z6;_Q3-PB|y(oV5^?}Ci965S;492Cyl5gxlMA7e91u_0#=IKVu}&zU5BEhz`Z%~<#v
zW<RpqN9kH#4G515wBHE@?b|#wkJUub8y5-Nifp<86WgFzfg8|Y@HOh0MdpuB43XM+
z+ztyvMLTAxjvzl=3K&}TX;SJyV$fACo(0?B%{!Lc`{i;&rD{KL^BJ37@%SK6<HtW_
zMXWg4)IJL0hHkRM!x9N89E6?yg-(lk`OYWjU%xg6G?w)T>#_GTs;OPU0^vL%LSnB>
z){(Lozad+800Utu*2dJ<e+5mYG@k(;{j@gx?a42g?fM06_$adCS(3?}X<AtT>jZQj
zhr>VxY@N~zA6{$FTSB5s5h?1W`#bFT1TdGK#lV*k8iGhmp=9Jl43$vywl*!e*>|N<
z;Q_dQzV+29#fu|jxqb+*x&IbJkV;NX`i1H+$|m;Gyu5@lvbGH_2m=H0p%RFY8y=_U
z<fygh;0i2tvqWFCD?T>Al=jC6P#IUD!wTLTw6~8x-T9M;&n-^pI`_{S&O?Y5z{iPF
zo$EFVr$Jiy=SAewpjZ45T$(yHkm+X{J!*+wm4!L1{(M!+QhcjC%meQOt%2Es|1&5d
zIz~X#h;Uj?#?V`bbGkamZh1q=yuiXxr(rZAH8HNz;`q}btF!J3L+5`j;O`}{{DUru
ztz^EOetLS0@(FE6U@+9!sB#YhZpv{1#fpp6MjY{QdbOdlD(z_nk0V2rE}qtbfdL=>
zF7vLuBZc|m6I7u8mzZ@fA?q^^t3@aiPf)Sp50ltBNuqf}|Bq`}Z5wpd44t&iWRcu`
z;diIq3NINGkf9up4=ixLDYZ|^eEN8)#CVhFMvgV0YTDFAn#}rZW2iY{UrQODus_Jj
zzvRo{<3gEpeiJ<TW7OC?;*1?7s+!*0PGd=PWgp)wv!L`j^+!G~;`VQ8m{5Y@w01-m
zrt_WDq<|>dZ8t9;{eKqT&e6K}JPV>m`riH?n^htqy(S4igMr@CSf6jj7<}$p@g*)c
zd@JK}?(>UL?HqRjDX~x>8ecZ2*EQ9$FE80Tk6D^e&)lgu10*?-91AJ0b6P`_a{4Ak
zX@EWocx;F)<-ZZO6gX=MT6pHtAB&2;!Lu*0)-ihxs@E}5m@1y*ve-a!<lB)sXixKE
zqq9=9BWp+OZ736S`iYAuyq{Ea@qiWxq#TtdMuGX~U)3?wP_ahz*e}INRPdqb-(i|(
ztRR~gpATI@(B5lYueDsBCuD!DySK`Uh;*-8T=~iNZOc;-y3$;n*Rq{yn+8m>YLRjN
zD6oph8RLAM?QW*qjYhj0Rl<|iLEXqz?p~tMR%Dg=2~+Nc;crU=W-o7oKb$QxRmFmB
zLJcbkN|z;Sz@S)S<ifKI77%CA^0yA~;W_;W!my&<E+t}X-Z~Nj!YBxZhJxkRL{|t(
zM$>n_z+F#cWqsE7twk_%wipDX(&To<TnpZ4pOw+CJJkxKv4a%xQ5Vb{pt#VJ<A&&d
zhirCP`<Q5IxZD7a<@6*YsA!BdMp72t38ybWO6m!^Ehm)-{b>nS6)0G-_J`>$+ZrT5
zSjvs>X}V?U(`*X92#c%cpC-vw1Qb?^;{{JMH(Qn|v{ldC>-hd#P$?7qC)H0?A72>D
zU&jtC<AY(qzTjDcNvj1g+Q$OPl>VpW>NHClXG+<RAu|ub8Ds?c-NulS!#|BMD40B%
z$yCTc<x2(Z4LL^$hrjtJ`E7nl#^;2`G+<p1&_bT&jl_7&lN-~(OFdp0z@?@s)YRP<
zuuTHuGhc`Be-Pc}GMx4OM)J<1Y|>p);co*pmBD3T-!MG|&TkeSa&%G0CggiB#I~sT
zv>F((rQ34~CEqpN8=<5({dRf+anj1(9>Uh?vy+Nm7ne1e{$i~;FN~W!miO|s(>jo_
z`66GNCxDlKy*7q=eSdX`s<#1H%;E~uXjXBxIUHKKf9V@K1jg*H9^GxJ)&y=Wku7p|
z)+vP|d<VHF*Xo#7Hi#y(l~SMi=wAPpwh>6pQSKF#Idd%~pr*1B_!0mfalVa~rna_+
z2=<GsRvNSo0tv}#=Qt)(Tb8xZS2c{YTsy-o1%5$_2);4$V8>O$ONm?sweXRMSr825
zJkZvgTLO2gruGiRiKEis-j_ns$5YFXXJ>6m`qu$J2*d|$wkuyV`5=27puA`|@KC#2
znJHYdDU{S(1o;!JFS@1pgAmD(qGr8Ft!}HH4~j#sabWOx{RM`p0R-_j@qU>eM#*y)
z%z9W3-EZak-*o^8*^tcJV<xqfQY7z0P?jCzMw+v%8Ot+wmAix99p-Q$=2#xZia+q{
zW2Z;U>u?oe(c*(n&o|cS4;r5xU=*P4kIOX=@=UaY#QOv9vOxwG73gca51e}~`x@3f
zL~YMUvq?)rz#?3kFZ<JB>GWf(GQzTpQN+1~H4@wBnBa$<yMG?DmZ@9LkQ`-O7hDA_
z9*@U_3`|met5@3RK&fG;ibwPmdLl~s3PcC&)`q|T__H%$4AZm$^9VS4F#1?|02W8?
zh?T_TQLlgvX_a~ss;VLl*tq@q80pNjx6}IBV+OC=Vta48^S02$C6>Oeyx{~;Tg{Kb
zVXG|HEx{4c42+XChqzvd@%YY#lagC_1M%xOuVhBBaw}+1Hto!^AQi4ARo0HQ_MVK>
zQskh9a+(sO85H!1OK6?FIKe0hpW%C3bD0G3lD$B3fd_Dm@PTqzx<0&j&l#Su0lD>i
z$8j<Prpm38%~mra(%Bk+8qR1h`h-gyXBUjuoQ#*Kd2e&1Vyz~5g51Cmz2Xy_3bV_$
z-lqg<*1N$!3aOp;Q}EEX)DP1o45{*yF^)%KufVb%u>Y{0w_y&ZdRv=>X=Up|qhEg{
z*8h-3Nd@Hl2(=j8h5}OZ?HdE}H%B2czNDJO(YLw-7*RB2CIB>3u|irjKHoQ=Qw_LB
zV$PNtt5{}xGG(z={V-ZX?;MI1$a3ASjW3amahri9{ANM5U}g`V%M5}1O05U?y<G$J
z-b0-AoTLRFR#jjK(jRo4ZM#01fJCz4EoalUossr>7mwG@V;MuRq~M`T-tEPJ33gg9
zis1)?s)`B;f2Oi0)oH(ZkNJ=rk~kVIfc~=~^wtD)kQt=%d?h1Nqd1RbO@Ala+Sk2y
zgDdoM9J%(PrKPQ)5o<tTYnic!<3Tv+(%lrz*8uL6*M#BlDUv=5a5>XX+nT06(NbOr
z7jPjjKY6s=?Uv6%Ano@I+Lz4%yb5P=$Wu%r2z>Eu%Qt-j&2(ol0UU$Y#XHY|gtXhu
zLQWX#JSQ1QBv4mFiwx>f9?PIXkfjb*?Ru&lf(C0u<{{S0-$}uiU+>ifN(h?oK7_+!
zaXm)%nr-C-(GIrYEPxzk<)V>G*kSZ1k((?sbrmMH$RFyF;$>JtzHn|36+hMS5}-`L
zOB=vJwVs&$j1R|l>4h<N&pL!!27sFct0kf(L%aj1CsoDIW^uj%WpYu$h_MoR6SCVW
zFlie+5DTu#(C@rK`pXCUXQ=QHEbrv@KT6IZ-}31IhMM5xF8+@ohaHBDiOns!UyDau
zW58$(X%TeD3IW`Gm!4?47uH-PgZ}GL0LaM!WsJE`uGQl3D)cE>Hd-3F5M=zd>qZc(
zKMexeEeNDmQ|bGsQ<f9FYW$QG+2y$*57hvYw$khfPsk=ezkcSxe84u|)t#<Z#9F_(
z^CRzHsVTN61H{Fq!`hf(nV!&vq%8d`J7Cga=P6edhu(qu<PP{BVnrEV)f(SCtT@_A
zZS}L>mCwea@{F5OQmJJnsc2qsYnv)?K1ENY!t6o>Ty~#0-1P$1se@xa+Ww;qx&J6W
z2l(s_R^a;S)(ds%qK`T=)lEQKe89hsL~JjSmXJROiiF}F593Ix=waZejAe;mILQ0A
zlwXL+T4DxsALW32n)68wDA+0T<djwwqNQ=p8r~HsCz5+_$JROgg8t^(GxLUJ3z-E+
zOnbbzK`htLN8fsUh78vFOXOrwkD4=A%K*4EZ#Xw}L;3)7Hdk}`YY{6F^#@4M4jl%B
zac*&{>~r!PAjFzqV<zlPoF;a?;&W9KE_eW7445f@a*`@+>g@grI_9m14;hX;V)eEd
zx7?s$LarfyP4+X{aK4E^{@+>_(svnBG)t`=Ddb-cnp75hhJgK!0ZQJDky3}bG9gN>
zGEf)lZT~nn_P>5+G2Vf5xwr?JhN&CS(VCW)Mfm#mWpuO(d%xgMAa|?PeFwZgr0b6G
zIZBvfPd3tGJsvkT(%?7unq1xT%4<Z&ATAMTZTA0y&l~|hOG=y8c3j{rIg89?l9s^d
z&%t7Qn<+yH%Esg=a^~<pG?q*YFFYj~NEiy&3=!X083PC##Ywbyd-&+7P}qJQ9_+eP
zRk;QcP@#MJ+gUu@EHRN_5TGpGFRVGwt#_veeYyH%vhH=AL=2#AJxP^E72$O?4p<_&
z8yUncpAr}$oaQltzkthhFs_YY_70SS*#|}=AJ5m;`0SKJpK<`xY;25tD}XT~3SfqU
z+R%tFHI2Zx$YASYywgJYR3+ktL6tLjvqoxzf*T^G0tTna-C*XgdAfPm?j-mk(G$gA
zd@qbtz5SCnWWHS6i~j3=eEU7c(!$lm<P$_ih=G)J3k-7DpxelUCn0&3r!qpLe7OR-
zeLuT143w&*4q13kr^fpC#qWQV24kDCu#s@dIWzoOKbU&s{YEtXgRwd;j#V4)l`7T7
zNB`H*sE3D?esvP3rMFh>!=J=nAU)-0+K2Eikqj<0KzeP?fP+^M*6=iP)8v`5!YNZt
z0yt1&O)`jQ8i=ufoN^}$LPQDkZ`J9-jKPS(h_n$i=Tq!(rYKCB?A!%$5n-XttMGi(
z@`+LYmxM0WBcK`WhCcG`>w8hPb!+ydmGMyA(MZxVFcwLG?zr{U!QZAY@3Q~mokoKn
zD$Yt*vXk|Ta~$8A6l!fMYUeb_s*m)t|5H3bI9f7pWAY=x9(t;Yo%bE=sv(l`raQy*
z58zySPQMyL7Uj13!&m>7{m<Guk~0&|QxqTN8W!0Oiuf6FMCi(Z3<G{<qG3~$AMnn{
z_>8IBYEDkSAH&w#%13PoLAjN({Tq_l+u{zl;yhAQB|19|CU$ThZLv)N+PO5^f{)G(
zWGKg26;@7FwoyL|4^wZy`sN{N8NJjHTq2!Z*3J9E&xSCVnQrvM3fAuwidj3`(>W_N
z2EONqqy77Ti{H$t?q0t59j8?RpBLcz5M(C|9gn==JeeJ7&?e=_!upJ%G>)Ij3a>JD
zGi#AUl&qI@=p~caXn#SQ(g&Kj#Ez%5$i+B;(-f>nIM^G^?f8GLUo4R|<&S0?c075l
zqW&sM=n%g<XHx-|D{$8KN7p`Kqh{G3x_PY+aNwlO8HAJ>&i0Xdfx3UpSR`vezq#tN
zD*%Mub`E^Q;>S#>ixmcn>izsjh|z58ZV|m)p-ynTQz*>+w(Vt)ciL_xxZO%FkjCT;
zr<A-=J&<?L<`?G%vEPofSlF)2I`l=@xrG3!oGA#Ce4x=ON_q?i2w;^}&KO|OdA}@^
z+%l{Q?lBTGcE&XoYH`5A0`vO09~|a3e^?W7%=4A&txmUV)zeRr3#S`nrc^ga_6b2$
zv4rAcBoA*B9v3gBq_v`s1DW#(ow09gyz2z+gDWedzmE|kXUZDl*TM7hk9%$fU+BOW
zSQ!~WrnM_YZkXDjpng!W9nR2`RQVR{=39W1B+gRqH;Z*CZK{_l?zCP(-i{fyejIFR
zrKsWV3VBgjJqAn-GLh4vd9;jwXSecr-lN#A*bt1nLtpyA59SSa9(x&&DCq6MRt}&E
z9h;4{B0F5nD&TE`z$)%)B90n&q6*Q`tJ}&XMwAM;;cFlMGQr8X4Mfe$t{-aL)klc$
z3z`;!%4(7A)-*Ix#0dCORn5zc&^(;bKcjqt0LVR+Y?=foE)l(`asUKp{PF`ZNmV&i
zfMCFjYw04`S>VxWi1I}yCOr=GXWvOwNRWj>JkN48^#?HDq)Oz^lnI-gklKZcI@{PQ
z_e^6yiq~$xh4=ynCoP&T*kg9*sNVb9y5_SmX=bh56o<V>Hv(dETzU^9;l>J0RglRB
zu&h5UZRGAqB@1Kz95Ist6|XDTLy~uJHgaK<eG5+NQ?0BA_~}F44B%8lSr?xiZNrjw
z{z&J<*>JI&sO{9;fhz$kZ#<Pyuat2V>`nL}u*s65K1a2!<AOS8++i9@1LP&eGE2%q
zg-(`Zpl|yf4i-EYQKXz_tbq$Bpu|Lwx1(T*UChuW8O&kPQ4T<xMY7A|Ai{Fk8dj1_
zB~ViQ^ydrfQwOH1wGG4q^yyikkM8wj%Bgn%9qG0H;1?-**!b=v+MEMAGV>ziL1F!C
zv{S39k0-`zqh`5_(<_E-W1PcyvjjEnnF)}#qD{ckDX_H`U!Vgz#O~N!%e&8!i}f`M
zWra}P*he^qiW{`rfCni58?O~+t=?Da%n{K~u)XG}@QO8Dg5Jr72pWJqAPM^POr@#)
z=f~-7{TMxv0_s(oToTirEAY|n1dbSx;5FpO)=zzk_5K2*=xc8=IGfwz0ZrLjf3;(O
z$7%D5ie$q@K?;Utr=Mgoq?g2b5tN#?ht0=f;C-N+-pxPSyO&aC!>xoz#uQZ=rpasd
z@!s+zv8ly&T~87Idd86*oCARFAo|)Yok_<{ge&M#O)*yh4c_BA-uiL(a60yAIe{-U
z^95Q`Gv-V%A<SXuwi2H!;jzXW!CkjU1McRAC>-*UCcwI>J~}~wT@5%#IgMd^D)>^7
zz%Tb3&fDwWYFccMK1yLMZog~IL)1uLC!~OEa`fzm!|xbwFMam|>9l;GxsvZ9FhSjs
zd*JGUlrr&Yq1dH=C{;6Yw%CW3`q7%7CWL<rcKeVMZ`h*6WZG+rW5wabAgl>b*nZ4`
zlV2V!RRPgtbL3NqMe)8!iU+o~j|}(I5)zL`Q&%G}RKx)}PGHtYQs4}&EQSyy=n*QJ
zu&di~<Y5ujknAKnzBmhCv_ZI15F|GBQM2g|044H}K9F%0WI<_RH!>``t0Gx$ECJsV
zyDEj!GC$1k#NKIFwzwv99*v#ZAm}+-9Rl)45&CqK2wlvI*q_p?3+25B6B$W~F-j&}
z)KvPuO~T~C-5(JZYpy83TbQuejzROU;S6_nmppP)Z)+NfyWWqrp04Fa)_*a!_esk6
z0L^QQjyXJd^1!c2zzR78yM^sTJZ90lPJM{7a0Whh`sx9Us7nAZQtCQWRi2=~AX82n
z#>obY^jL*Umqgy21BTK65BGUo2tlQoQfpQqnpafKwxNJ~rOQ4Y#ul)<)I8Wj0KV?O
zeaRX4!sttd!jebX>m`qCCyUwIa$7Qv{Ev{<bex%Ji_;q{DtR*41hm}}D?RD#RKs20
zI}r3b{y5{h0wv-|vUcRGDxa-`BW^w8@XAMePsO7_+ocFK`?7t>AspNj@mQ=OFoJZ1
z@ZEu`fz`Eb_h}Gk`i$uX&z~mLW(CYp-hJqBs^jWb5<_Rd9@qpOnn!pLWMqkO8#O}A
zYDGwLFWkbbL%{DD@HBQAeyumKT_Xm%KAZc~X?@biH9_^M^0I5`a_*=7(Z79T;E2OG
zd-f3I6~09WE=%fr1NRqgwTs`_N_vOy)%1>mbe4HEt>t2PmWA+N#RBBaar(kC+~1?*
z%=BfA5H01z>Y0*8-EUkPQOzKmhN0TU_c>BTuLk2k0fHIs%3vwfV(_*(qze8ww~aQK
zfyu_Jw*svdyBNEr2j|d~s*2?G#%@u<ZMvT@=62hjzDjU<Am-YbusS0cZW%pMb9;QA
zGXX|hA=7)T24FxWH_5-d%mb<#dJ~Fg&gSa!kUjd)b$s)0@6r$-w&-sGrRy8}VE>k%
zQHCLE-PpyW3THe_r0kxvot;lU>t4}t$>Sq=Ul<rc%!t6xDWNkU^1b52#7r{9zz)|O
zr}ABmLJo?W#Z&V^CX>AWkJbH`w`ydwac%^r3}9FgcBBl3zB@^bq+=BgZIxNGz@q5i
zX@B|rMebop*!e0BX0>vzlZk<R)KnyAJ{8n$U8dTdRn%F??%iN%!Y%a=J{q6w*|FO^
z?XFvfCk6BgkZU+G_$`af6x=njae59J_|N#l8ws?3%*}(MyM!h1OY9JC!3qiGqjnb}
z!h-EB%30{3hQ80ZVA!#8po|owUUROC@ai<=qBuJUyUHHP>4@0Ozzj3DvndA5@zbH8
z;XLvVae2F>gI|@ak$wI_QAB@5JFQ{Rv3=}DBiopkv!Rfkj;tx1`}fn<tPn#V);jk!
zeV${cZuRRdnMHat@Ss?^-w+UhJV$K-T@6%i8p(k+IcKZ{nLgsjD0{C^aW1zNq8UO~
zzI4op_lbW!hzW-nXIQ5`ETopDA#=eNl!7NcPK(C}D;hpHy|o?oQK~vif#3BpCap}w
z$$jlo;T*6UpMvE`cF~4~TA&{r!|w)ceFa4sV!bY*i<@toN!A%io2aqD31XKz$T>eg
zRhz*zOvm&51`O=AaRPH^(UJThi(*_}u?+DJyQKTB)Gu{rE-Y>;{kqT0^1_JpL6!b1
z#Y7rbX|HbJs<dxWwN=6zlW}~EH^_5d#<3R7+>O0Ba**%yW69?cD`4|XS{_}*cmQ0M
zWYxfhpsuG~wck#*MXHncB7L%Z@kw0}PEuz0XJ!S(E)YKxBQOa?%_t^WI#0ym?bo<y
z#a)`EQI3xuVjqd;_Rv+SayY%x+k@D@-n70)F%9@SH;>X0>Zu-hvMc=*&l1qZp){92
z(V_*I$L}$rJ}H&!MsZ!~UcagpuisU11fQvvYh137Qa(fC>AxK)u{~K2BkqCukr+92
zMdh~TM>h>N>BOBfcb^A@?|rpkywT!Sr|Ic^o%bz|zNecpYS<$o{^C41$n?%HW_2&4
zH@plUSL|B!cNc#(x*>H_*ew(#MueG0m^*#`d-<22kaqPj1-{QNR<-?SR4*F4!Qh#n
z-7b{{!Uu~go=VC+d}haiQWR^%QH$HFWe^FmQ!IglLO9+fyjGs&tg2An!X8J(MvU>_
z9(12Bh7-jl9@3zBFg6;{2TtfIscJ0?*s_qOSRe~DdnL7xF7qG3bW`u$xPrr+z?lZ>
z_sFr;9e)90IA*77`ZP1M_yD!LI3mr39J%p<aVCAx^lUx5W9hEq;P<QyY&f=K8x;#`
zLH1{(Mnx7HUWw}My?pGa_Qr+glxC~~9Exi2%g@)>#*Rm#NSjJ7E>oWo#Yy#C4aM2#
zxH3R}+c;htO{cY4ioSL2z|*@nL1HA-_rY@rpj>mgMhBxF13aZ}sKTrWg952i5p>|j
zR|F>kRe^fCYAKy=iW{R4q$ttks>y2IU7b0ir$!Siku3AR<g!EYVO^I5@Sm%qfRe?<
zWFsf|pLQ^IiR?^Iw$oR<FRx>wgY+9$tZmFAN2tpps6mUVxxWF9Lp2i8^!nl<G-g1w
zlr<Hs;JAh;OL^@BW0qE8S1}oY+igTqB>dIQHGes}%ouYqzzVg|nrZPNt&;<njKJBF
zuX&7CW{4|;J{%@Egh0vZ&8X~^k_)Uh4cpWKiO6ZCFbFxEZoUOlNMh&&O%UvEhr;lH
zZ4MqWH8oBo3#UZ6nqrR0CXA@YsvnkV8GI^Vb=B7KlT$ZiM~f&0F0s@sq%9ytcnO6o
z&OvqzV0K(kXZci!$~<K&jy1X1=7z6+tNjIZW+FabAAjH`==!P^cI&oMMdd64N;EsB
z(}k`EiRMDi$h(eFpKLZ<Z=x20P^pQgQW+1PRcmxyy~xQ7gj#2uB|Nxc3T5BNZ}R`R
zj!t3Ew;HCZ?2zF4t|o5;At?TUJH(gTm5v6kyX7u?rrxO7-5*1QDz5rDsq%Bc^txPU
z`J##|=oC2zh=f{;o{mJz3+)@O0B5e9;=UGgMnUGGJYa%}Qj!SO3^h{P);*Ar+>nWo
zb<w>Gl<5oN6@ICnlU%Y39t45snOnucOkk-z`^m-^tfXnC4HaG^%=SM?p3)_{Nbf9Q
zEwfI#k&Dr)TPRkmLV+-dS6Ukg*Zr+wfI#n@LE^@64?FOrB;e)Um&P~vaVoGJDL(}U
zauvtC#~rR(y=}k!t-09^y=fVo<~@u>O_iq&>R;VppcjO8lPfJ8Hss~qSxPICA7XzT
z6BE~L?25gkyI46#0Vp`RRuL~w8GLH%0S~iR%OiQoYQdW1L+4gli>%Y$zDh*}&}j|s
z0`sVNex!5hQ5(?+(xUT}9;68&NcE(a*Qfeo$ZGpuNfe>(WYf-oqa=qy#GhXw-&jg?
zM<?Xz;bLnp#_)_2;YLqA-d1cR65O|Tfb9Gp*&KvGNxSeq=TagS4)O*|0W(K9za-Cz
z{F=v1JJP0S{d%1m6-_9GxGwg>>3QX*(h`3%e|pm?)|23hWx+$v@}cPHWXafc97Hnp
zFNzWCF>3M_ZB!nkx<}|;rV`joi*sHFiW`a8tU!f>i`TJ9I~ydOm<@pHzha5dDKOQ@
zH$~2ETP3`US_gxH6)IyqE)(!FGxcx=fsz|{=z1o#t$7EQXk>&0O0#;3LRVLrhm7P<
zGy9B5w$`^JyTV1SG#_hUbvYTtEkXY2kvZ`|AvM?Tb}ScYvT{rF(22kQMp2H$tN~N~
zmyO06K6LfbQ9}@_i;}@3#VV1S)2SF-6>HhMYw=!H9v4T4+BV>h6+m*L%rAXO+@TGf
zNQJt$PNt7@_9bgT%&>FhTAjyS`Varl8VPhn6unoEK0nFCRl>KioG)D_e?6edud1It
zoj8TneyNIpT~<}}>)onY^5L@VaSE^ED_DlmK3iOHdNkF0pgZBg<I`q9Dh;o6zMVx?
z7t4~vMPiHBoICj@?3Jpt*32s&^ZWmoW%SL43ZpG&GmplYNPC}weDe0;V^O0dWs9v6
z^L3hEvCSMyh7KFiYyxkw-!{!jS5(n|KgVKtGJ8cm0i3U;_tE8kJUS)%2cY+7t%@Yn
zDsk(n*SjJ9)SFwz@lWAg=#mdfGlm(&dIpC>QFq*lfY5AmF)KmXWY-SPC*<j@n5>I#
z6Kd~_e&PD&C_{n(C0MiDE*Tfcpb(0Zu1WbaW9q0#HItKHF}HY5ynY$9+ou>%wn<XE
zDom36V&em?u$LZlZTeTWc>J%e11twxGx(I>sK*<FuFJu;9Y`WA!tW=_p$I4a<UFp0
zje`c#LJY6Gan#DdLa|o357@rl(iCtoPnH{?wX0WbhDA+INHggmnccB9?AffKev09X
zWQf&CK?*!qbg@4T6PNmm!XrV|8;+1Xw7FdEIgjbU0qo~cBw||<vZq?xLqT*{y&6}w
z@{vyp6wVqGT`!y>5s2NC?+TunW2usdgLY?cC_qpOt@g;+5lhG39Q@082QHhg$iUE=
zN0zd3!`@ap^0f517?HUxmX@Y5>5lViYqtS<j}xy|{cl1DDn&;2);x1v5Y^KA=_zYL
zhJ}>0hme$02<xS8kLfLcSSYOFn`63Si$RY`9J$wR)=;32V5gd3+p91I<V)y?`==E5
zXA0tFnH?(Ie89fmyKZXT!U3y14`ZtM(Yez3$?6H-kuNiBF)%QaXF2wDvg<coi)lS4
zgx|;!THL#CpXMI_lrc5Um0dR4+=FnC;mhRAUA(Ag>D||hCmMQ0_B5zSC#*<9Ygs#$
zbOV3Q(n5d9l6jN}xK*XtA=cX6@6{8$bfI(%JAy6|oQV5@0)=~(uy31A;+emt$Tr6y
z`8>b){G;b_t?=#eijk#l88C2ha+P<4i2<Y7X-V2h3&MG8C*_CFr>1v{A7z!uuhRa<
zbS7Ko4@(4Ugytgaw(j|+fChqD{rsNf;=b+epuOW3dz)>0F>z}11KJF4aNk>AHZaBI
z`cL!V2ehss2K(uC!m4lO5bs;9O9}X^vMv3D9mbgoo*8~y;~`glbd$-y6g6^T97#ym
z{>x8L3^>7@t<f@pa$Q_Tg})|W5F#xX{wxEyn}JFeY%Q-qxg`+`1d|tj<g585Ze!Wx
z>vl}Pba(aj&0LieVxe*~MO8#WC?n^;_iMCS<pWk}{B_O#5LwVwwTeG@2sNEj1D7o;
z!~%teqF%~gjcIi3KCo&f-6tHEdQni1<QD(P3P=(g8^au)PeogjQ^YnaZ{U(%dP0Xu
zjg4LOWkDn=ws*pP8m0yLThufC4@fWgH^U?oLQRkENB;&Y7$ihRz;-EF-aAb7zRM;o
zkq-uDXS;kYnGi(LHh15uLh_Zf{})|p34ag{TEN?oV#hwhy!TeR;N|gk4G>c)iAvfJ
z7I^Q84r&ned2sH=^!+!)lSq00Y5d3hYQ?h@yZ`8cClhkAX)CU7;+~cN=ujimdQpsO
z!eZm7tAV<z438>S!|Mf0fK-6_WZzYDbG9#^tpk)vqN%mF`67Jc%I#-IRUDb`OLkP%
zD5+!l3s0o8B^cK{B*|yH@gw@?H;@`%HiSw71b=jg1UO&WQn?7b1bIodc#YsNM=`#e
z7?;xXt!!UOL#b?jJHCvD_x1+HG5U-iw7f!~oNo&|tY}qhvWxFq#Hj>NlpRkt>T-ro
z*$uORSr7(^H%AO!(Qq2EUL1_}K@6s@sMuKr?P}f1sh-JXK}Upjxm^!<a({|H{Q<&8
zM0)d+Kbjn-d_K0Fg)JI@tj*%TY1L2!Igrca|5nWh;GPOWiI!HhuYv9kVoELd#Pgu~
z2)TAL!#N9*aj5yoLZvd{B96*^+{Q-|g$<^*6XI*keYzKFT(w8`_68@%%DOSpxVA;q
zkVUkVV{te==3>BH#(`GYC4qFMe8fJdtd^)^IpK)rJx_-OY|*)TNXgK5OE7^Hm<Y;x
zL!62tyI2O;29SFSv&F!E3!y<Fesc%8oY^B!G=9uzCbM5MyJK}-Qt}8w+_-*7@`aIY
z0l*j`p0Wyoei$BxW1rBy!iy9tK`SFSjUQ=coev~s<&AGK{T0F0h;~*-u{Jw9F`#zE
zw!6MSlUNbA+Vx$9N`SEcG_MVU|GTS&J*YFBA@rm^$QP&$7yogI|G?89kD?X~c5<`f
zr2xU_aOK`V{CXn=a_t$v8aEu<ta#E~;6ik|eC875aKddOLGqA$st)>A>C=CbI^Mmq
zk0-+^Tj=!XVaK=(*hmy7qOs0;<WKuUPT64{TTgUqFAX<l1SHSTX0AaU1Dr}?rk?Qy
zJ3mmQw|MEgRi<qcB#-E2Ml@h}RJC5=EO?LQ<i|HzX652;II=J*j?+B1UYAzU-O^)K
ziVa^zjhHsEq@-)ja<x&MD*_&^Bn&9XceaRlyjsUc#3_8O&g=gm*dqdc6xq}J(>zd8
z`zut6Rg`uCA-dKOB`gJ&pHP^S$CoiulsL#LH3wA&T0Uze$P!C3%&4N^E#tcse-z|F
zT=3c$&oIG$?=!qFBix$v@Mrlr{hjdLgQU~<7YnFu#_<IiK_|z_NZ-I7TK2w3pcW!V
zOeg#ky~ou#Y>&!DX*XCk41K`Y7wDxZ(Zq0Y`Mqwk6=YdAl>YEg$-;hmeobEVh35zD
z&1$%{&dNE?rUAK!Vnv-$MA<T_NCS_CDzvuz4Dvl?zKDVz{Zgb}L;h}|!f{E7&CSbG
zJk;_W3~NTYh2ddG9=?B#`$BQ{f{xer?=Vo0=#r>#0x=`C#{}_iADYp-!D@3<cggP3
zC$Z1ftlC3+ao+jeI=o*jsK?=D3#>AFJtjAHD>e|cc1Hjzga2>&2py}X=I!9G_(?p7
zLC-T*mVjQ|LJ1(TDX3PZKH`Grm2t#y<n_S&%$cnQI{h;c&Sz6DTbHtM7Ucnx8E7f=
zKILOl!05wws{r%OAlec{KH1Voo$rJrf5^oA*+=sZpbAJR@1v2bVoPDWT)3X+pYc$0
zHT+kU(_kq$N{36lZh*&~_s%7EWqNy-=49SHo<}%Cexk#KE&<;x0oSw~*<%%sa)rBO
zZYIHG1^0v0{ik4e45;(hBRJq@Nt37i4~Dj=<8Vihppz>FozpQZ{x?maXU;@UrMoF@
zjQ_icqk5e>Uj57<AvB7@miOM0YL;hX3E1s(-ls;E<H{GZq0wriG`cxxJiYPIj&XgH
zZc{{)sM=<5{c{h^N`K_N6Og`EKl<<2ce@3$ArGPIa}wj|`t|sJpMs#<Z>fG<$(_5=
z|L;>L0><J!2ih%rJmFL<el8Bp#1cC4WOz8u|HWNqahl}Mdd64(-``@2UU&fm1&ea%
z?I-z!`@0Pnut{9td|x7faNby|)qVFvVrDJOtM8;U=aK{o=ouFCyXgHaF~QXY0Nro;
z|9mSqlS@}JfQfig19ZO=QrCjFR%mS#$iJ5Ve>cpB>`Zz=UccK#ngrD<uzhH*A|@^X
z>UWBoJ?+BS{-2PRz8Cwg*=LymYuQT7eTQj`(bTFbK8hI@o&~}4Q)jy99t%j;J4m_n
z_wfcrEJdPTjiD)DkhvchvR4l6scm7UE(EiajS&c^^Rf=$G_!#Ve`=~wL!s*V`<Czd
zd@l$7lL6!Zv)_3?;U-PaccWL#X~Z7XR#SNysDC`yr)c`f_LA5o&C-oDs8JGBYCB!s
z-5-R%M8if+m2{cKaN(!}>xLT|mWdaEDo7{o4=z^|3Supj9hCGV6g6YnGWe%ktyzz9
zX`0nja{N;$(}eFk$3C<O&?rA!{a*pLh>bQdtL3+#O$JU_BF*~JbuJG1Wpx_8f`~)8
zj`Zs<ltugP=N$OoL)GkkK62=!U_}|eYAi1yNRpyiqL6cYI_?hAyD{HPvo@+2J2or1
z?jag{Un`?yDLlm;wG;lp)+raVV-C&KG}jsVBu^akkHb*%A9rZYJ7t2~JRz*CtVSmr
zdQp9w-v{0435SH~wTR00U`wW{%GnoT$#L26J66lCn|BW~dkxDmNym<5#xaNM9G+^$
z5nz%2pgc-u63ORLeG~noleWqHfNYXkMgs$KSloZE%PmGbQvf|c!oQTkLe>AYsofkz
zCe|8?#x?<%2&!WHFs0L5NuOx~-_D`XPL))@zQ2B}ip+@!&fNb2Ln*1qvRkX2@4V6M
z?zZ9P&{oipLr;Rah`XiBUpTJ+{uc?rS3-{Y7ZqeI;PU`?BGbh(x^QP*lnr<9h_l3(
zL@#-sbi0DIJJI~i_iIx-l|@{Im`!@AK&}EO##KJK`Bf=$0SsQ8`H;X2xPR#e8WfxD
zTGVR0QQt8lx0b0zZ8==`O+Jj6OM4W4tV|?Yh8ML>tjVgt3P(y|nW0x}kfyJ-Kdzp&
z>^8BNc0vN&a9FgvHbf654+m<D;4eI~wi06La09Z0b|hcL<tpe+4W)f##{{thHMMWL
zOq9fdKvM*TL1N*E>kub6!5^1(^*{vABFxQ#H;&?U#hjzalcvAe4pWB8!J&1xcB8K5
zgvogcG^0zrF~b(?N2>cPn6gqjku*rSy4pmov;(yk)pAgES{o08zjc4-#j(Ts4ww$W
z7ZmD>SDS8jgt~`XF$9j7-3>)Hy6N;M%2-r!Z9nMqXr9jw#$|t>(Xw+Q+q#rd_D9PO
zm`eYm1QC@m?cGm3@%71-($v?v;sS8J{Zh0y0HeX3<DWC&1v9@Hj=7J#l9syX#Kp6P
zq&1IOYHEd3@cjF<DsQdF*!8}BLT5Y4yZ`u?(x1#a$nQct+hWJ4ET~4JYveRam$CUz
zC>f;_83N>JCFq_Mr~A5(PR05;Q6<g;k#<2*Ec!olP|mwD0y>yud~D;u{J&la!9B1u
z2<tY?5&tJ!zG|VfxmW|b%L2v4DoK}MAs4FOY_C<eMf8?R+KVkcPjV4T(n;H;SP)VA
z@ZxZApal=+HlPD0@cL;z2rD8tOf9;y${Oco$+TIkcSsWC&pgc1@kZe>9Y3PKwI$$)
z!eT1sk$pjexkD(2#qwTfvUDW9Xw-&Wr5YS3`)to(W7kop|Hb-k^tlnv3JKa7XQck^
zlEd1n%k2Aja`a)QHwRc-*zi}(xqVk0&ix2uqh!1LHQm?8;&aAO{P_+S98&K#N;ZrX
z3$I~Be+tqZJYQ&<7Mn!Bmfj(U{&@FxG|wgMrq$UX`~LkPyzB~u3%Ky{wR{OJq^c{%
z#o3YxIDUO*)jU$4;22oH=TC;+ZEMYrJp6cGf-(|_vb>~XfHIgey=k+ENLGyAP3)Xj
zPNZJ!S#%g;%Jv!c0ul=i(x9AhE1j7pJA@1wY~zj3V4`^s;564p^%t~4JXoB=Z7Go>
zhlQ_Wn*1)6`;Rs)_8KD&O<r~vVg~+GFdGAv^8r+H-gp3Y$VZoar4nSwfHVb^Gz*Kp
zGa;IX(9%Y=J>8s+U&~X6omg=kptg5*CdAHXwnt{iO=U32HBUftjJ6uhnCHN~p(RT(
zA6@b<k?@FdOWx&3P5H(7c!}_R8g>M!>aEaOC*H5UPtRc`%tzWcjjYKq@(E&^*(CA;
zNn^M4zj2i#ue$U2@2_TyGXA#T#`PwHNjv!~X?GN=BH!s?;b?xim^cO8hy#6(mSxg_
zajSNTx!Dw78GH-0TU9igc!x<LDY|{G^o6Gee+BCQ?K>Z6VeW(%>=~f$34#Gql5|1E
zA^M9mDEY<<KxT;yn#;BXMt#=UlPd1dJc?2bgt|u?#k0o`$~?*<c0;&lk)a^??H@DQ
zBLV8OiYtF`AGC49A9t{=rdKE-&bFAn!c6s~Ayi#c9&S+X`LnpffBj2j*DLpieO5zE
zf%@j|`)>?iENMdemVNnmXFnZo2U0I*5<1kQW*~@cYRwutOc<`-vNMi3I$}41e4)@{
z?T$5$Rlha;?tE<avv#SRPQpwrjvS_Is%XLh`f2A4kiX1})FCD+stmL#!X5Yv3b{8X
z>(&aa(M+qFGV(9UE~IJ`qVmEB&UQ6J6LuleMC*WI!KZn8AO&uj*2-F$L@}F#7^<ZR
z1x=hhzJ<<EH>rryr~P5PS&vOw1vnw8d<u92m=RGEZgKJDR`qqb($6$wg>O}pX_~|8
zknPe!6NKh`xqEr?qlr3_aO*pN01Dv>9uncUn=&T*DEJf<6U~o_hJ*;QQw*sJRO8bQ
zk0SicNS9FsSJi8c(CWCVY==QJ13Lhky&mXfWk;F(B}9JnJo~Z*B{Vh}Hl87Hf{*I)
zL}*Jg^=dPH>5RcXyzJYeF;YW-E^p}+$N(A&wjpmtg6`{{mW(RYUDua&_X*XhU|1Mz
zJPz(tzVn@@<KVyJiJxvR(U66Z&%M<tJC}%|FV1rl8|BmwnN@}kq6UD2W`&@v!Wgaa
zxcy#z!CKvfuYV8uieXI4e9`s4v0p+u-eZXeH4T^lJboWK{0^xXi%Yp1k_99S0U%RV
zqb3}_y|sjPx()itpwaWln`=Uhes4+pob6Zr+Zcz#*Jdw+FPw2K1kAzNohB&|XAm05
zmE1jdZ|F5HlOe1tSYJ#$oNxlNPo%ibV>XF+dY0|^W_To~xb~Gupyh@T63!Lv2lFyQ
zm~TSEbq<k^qVdSZl6JWqtCd>R<Vc0G{<eDAx4`8m{+}kv)1y}7-1`d%eefg>%M7^|
zfvnN-8Wg?e!9Yk2ogIU`ZF#}PaNIR@pohI2kWz{M8N*duf5ppy^^L9I*MG`h&My%4
zVRD;j0&m7VqC?aNRk2Z5rofs3`W;qVv@&t|U!6zqhTWt^#|FP>_J{k)El^t&4*csO
zf}0aJqchw~WI$RrMt>msxD&2CUT-vPh%4d?WRf^jV)-P(;)X>(h`i|F-cKuX_~Xdo
z?qSIcbgY4{o8pO{t;Ofa<A19^JPgchP=aEyG0jrmmkRiTnK?iO$5w>K6kSbWGZ9X~
zZ2IByBJy$}79X=IIhHT0_LgK);*`0kPK+Xe7O*Wen^9^g-3TMG_goFy7LBRQWHpat
zSY6Z!#8Fe=VUYib;xbP1^RWZ<Mx@GWxa6|8@$Q?9`!W{x;o-~rQotX>(gC55)Y9S~
z&b%WfG;3E8cplXihgUn~v@ZiL_Zm_`<%t?DA+V_Q9j@&ULF`o5Y#ICZ(p^H#4Y;m*
ztA<dg3h?FjFd3@9lWaZVAOpCs(2YO8qjyttUHQ9RvqB3wI#SQBM2nR#xMJ#x-bXoe
z-}L4A(B|ErCavo=kKjQ2JZ`G(vggw_ERd%bBwDb0N1j@xxenLH#IKO7VWK?Sd`D*%
z^V&s`gzU#PI}Rz6D34DT=VtFqaAzgDmi10}T{8|N^T>)DIeHH`@(;}~eZlLq@_cp=
zh&BQmG88+%<YQti*w$OwXf{+V1xKknq%FMs8vW`84<xPN^(a_cr0C?MD>AI0<#sr0
zME-JcQ$Vx!rflu8>Bv7VaqY!jzysv)EVc*(qj^&IwYXkio;VL@by+jLHoJJS2C{nU
zp6+C*UNVYhh^pSMf_IDcHxcPaKdc<QqjGZ7b*T)}d5xgE3bBsu=u5=GH2f_+QFMQ|
zBFD^MbSS;_GNum8of4ixqclP0rgNws=Rm-PMgeTEehiXtWPmY<J2vjn^7_&1o09f)
z+3HeEFk!1%Ab`Zk6pCXST;B7WfL?T5cUT$L0?POgWOfyME}!<I$BugpS+Co-m0`A9
z?n%xS-O0Jcn#a~fAh=h!^-oPTpeV|DfU8J}X^2u@&&;({QFg|)V=G~Uev)$jqvO<E
zja%*HX46e5_JdFfwZ#+;t+;g!Vu;H{9mk3FwF@;3w~TE|<l@S@qg`NE7}SpiCZPAB
zwOZB(>bu5dbh?hOm8u}Qo5j<CUy6mgU_x%Gqf#%=&WI34K927(LRMH<pMwKMqPH0#
zst`AK<8Gzl@VD<+ADpDK+x{^Av45DiV#6^JoCi}#TME65K82Um32w^xtL$avQ*Ds>
z`2_d+f56@2YJxdD_6DBP?D4sAnmu8kYBV$-0p{J|OZ9<0e^bTpqLtuTI&J0kn?`hI
z-3SzNzTJOGP4np^KiNgx-c@1~0EpV{#6qO6A;cRI!+Wlu6(4r}irC|cZo@ZV`A|N^
z9lQDtC&NWQG-XB`tJf~^YF)>(nm&`8Sh&wF9>ct#Lyz)2=1l|JcH4rT-v7<vyb0@<
zM5<Akw;v3dV~qL-lu~>Vwd1F%&d|JpKfTD?Fc_0JXl3t{P)?6?M3i74!0keGq|BZE
zHVN@wH(J@I5YK&g)-Yj3inMY<{=7jV^~^#=O$nF@3Rr_F|H<ovDfD2M?5B!ZFe<sO
zGy+;sEH~=Fz)55w$cC6{eKqmd_>*wSw9f<q_9aYUkgXBCbtO2&n-9l&OX9p~scf0|
zG>~8QrXvSL*{}|qi>RuYs2KscDijy3ly$hkCaiL!8qwg4ffPxy!>U;;<coc3dz(=`
zh_I(1U;GN2_!B7;`ln(`Mv6gE?5C94%t%RGBhd=31(EvjBt4m%DK9b(1l>=g0gvC`
zYU=fz^o4Qj1;}lZ=p>R!m!RnuuMfGl@z5F2K4txLY61E-roc&1L~J)24&*{w$w4nz
z_Zh^-54(mh0@A^S$DJFTXpM?&q-y5XsGpRs{$Zj!)Gj*^j0L-<BsXM6CJEk`zgWzR
z3mElC39Mul7ui`wBGXAkas-$N=H2b40axT0tE2657<(ep2_GDbZ^w3YZE98v$~}G@
zHrf^A$9OF?3+=77mvXFbyOA9K*(AkTdpd(*M1Im>U>ccdr5u(Ap0b1*h$-Q8MJznf
ztTz!Mof~v6_4~q35wqK9jt(<D596peydWkTC=WBahzfHhq9ltiDyM3iv0f|FGG(u(
z!SVku?xt6kdVxX6V`_I$gCmbNk*o?N$Y>Mn3Je4uGqDpZ>_l|K2&ow3kZ{QGzE1zK
zNZbQVzNXpMjAE~u$?dGH9}-zYhYJhbx=HjmaD};PQNoq)U-X?EiL9Y%cRx7oX>jqM
zkY={b`cluBbm7?@4JY@D=7Q}nYMuuc+jxFqUiL`W8Y44HBLDGgR#R<yq=wn<T|tro
z4U*0FtOI~KpR8N2MdF@K((FlDA6vnSHu$Au<!=bC1WQe2tn_mH-i%H7>Usmg45t0E
zY1FEz$-7?`;9-JDCiajWlQ%o#awE@cq<Vl|_nBmLf(NMUeP_k9SsOz+!AXYWyHxMj
zJ+#4Z#Q=2={eH6Ev+`E{0(L8ZG7XY=h9SL`m}7iLEzBiMR|Kw?i|?oCvuWrBZwm1e
ze({89a7>#7_9$CXxysfvrdDLovVGW20m9(NpLH6~%5s2S)z!(_6@5;<Yq}oX0iio&
zPp)|q6U-gYcLiB~9S8N_ei9itU$*g)EQiz%QGWx@_D1=a{s@@Y`kizd1!D^(&hg4^
z?)DkfMiy+noLwICG4$sT-=n(FVZ8(>Z3WzKv}O;V7gRfq<p?KZ-hc*^m#Yzk!hc-m
z1t*#f21b6?7XWofn}m0zfS(I9o}Nr0P5@jFu<gtuoiu7#Bru@Cm;7LX^hfl2DDuQ7
z8W1=t4l34Xi4r!86mJk|ZA&N!Cy{NK77(1+Ek$tb*FyF#%phja>ZBS%W~PI2hy6mL
zpnC#D^7#$rBZ-75SXwE5bq-7*f2849-iS)TX)m$yHw+J4D2Lyl6OZy$&Kdv;amLZo
z1Uq;)D_-<V-%4$-67ZbDY8n<<GMM<kso-p4x%@8HU4=-Gin6Vx#)Ll;Y}KguWWWc%
z0(1lCsd!4z#_)s+kXj(@Fh2r7aLF*nct#8>K~kNUDcJU0nmm(}UNJb-F5V0imE>sz
z`OHi!-gx3Q2DO`FLNK!Em@}dyAv^jR3K$vj^!$&Q+B*2fnzAV6NBmScv_gt~H(>?t
z$uEISTY<K%|1W@<oa9A-4(M^`%u5N<kUzku&|xM5$N~hy^s?l*9rr4$<U`D_b=Xa6
z00rX*N}I%5l-O+xD1WvCz$kD8yAG(WY@0UNN+`21wnZ1EF{X8Gi)0B~uy=;TtT8!3
zypzJ5+`DK+W{m}qD4wW1R~XQ)7TU1oPb&WoY)<gin5uVUlCcT93%m1mxKX**Q%x>$
zRLin*7HSfWNqhrR`uB^aU$Rx=4Wfjr0eY@oLBtPr{{%1eZE121$P!jz0w%)W84GC_
zW10lvy{6UvU~zu!6j-tjzB<L9(vmI&RoZgDZfiBx;xJ|AHNKd|Ze}(4QOA}UNLaP0
zh6g{74my-bfOoqEVT$v|LrbZ&$=m6buM81dxmeC*-0=c*v3W^iCuQrGqNqNf^kQx*
zoip59c#?oo=I&@g)4V+pRqrO`nzc(CY_Xbgl&uAT8%~@R7^XWh`)Ril%Y+P+#x3|W
z3I1^8qeTNODRxRcb$FG12QAx`QI(x6&$D=UM;8i)$tiL$5*J}j-6?MH0=*XuOhryq
zj4I$osG*5?51?bBxNTTa+K1fVKBsQTmZy|L8e!UB8A%r)p)~nCiE7n`kimp;)5tIk
zBJO5drPnM|>Fry%_dP93kY^u0aj`o&rsT^U1hQTrKO|m@sc|oUWg$O|BW@%6W*6Q8
zR6EdxbdW$MedTTsW`{-xdRp?XAgkZ5bI()Vpnz!O-INmj1LJEm&-mpiCpfm+a^Wqz
zA?l`wbeX?BYV)#0BB}dCwk@trMSjA*_v_B%BQ9|xa74Af)8f)%BF?{}J44(4TyjHY
z36r*^MS}w}meVZIIq2kA>^f=R_Pd$3T^;I4H$)enu@P|D1o!!{A*ZEEdf#T=z})R_
z^4WVcV+k!KK~IYX8@BcAiY?O*O4P!?*J|i^P313FYTRN6I8AtRg8%Xdwd$EXU4Z}0
z93xn{sdeT`Z5!%B6<LNyZ(EqNeIj&9_1hWSt|+=3vgf2xzt78!EpP!j;&89)NoXGQ
zx!+Xmz>8(5nDe%V$q@}*9TEK;<oxqnzn&vopz{_m2$0kU5U02)h{}-}a5tpVk`T~h
zvHY;O^>i7bV^;}<92cq!CiZ<j^=Q~q1vyWD+;2Z9vU1g3AmHhmWyY`18@2JR=1udZ
zf`OBFea8^hRm-ZK9dGesU^_s3KC0AC)tf5qUs6GLI#!DbLJB95TS19`a+*s?q~Txe
zn#g&GjtRQ;JOh}mU6^risfG7k7%x32adNP|azars+tszpFdApnc(j~tj!0kLdUoo<
zP0(^Sp_DZ5vVYL>EU-|t$V}#5l-#Lq^IM@NZm25IgKzF%-rxLzJtu|>tX0vKQ~T3I
z^6b9ED7zIoXold<s~z)oL6fMt(q<vUiQYBK9~At?&0?jEIpApoqFuMD7!IMgp<xC3
z@-xX7I2?fB(?|SG^>j3Lp9_{Wkb6Z~PmJc9i$2<a);%QKG#j4A1`^SSQ>ET#t0chs
zULkcJ`sqiIMhYBfL(ytiWTO?X15|v;8Pwg^$=|}#yU+VtINmplaRhFTml~ENJEb=M
z8}Fd^sahE(%fOnsACpLglMfqk<=*#)n?WczbZXj}ZchPZ9~c;oV%yK~@R+!UmFaSr
z<oA`1Q#H5exm8-#V_(xW-4{I<^Gb;Vt`xh!0N8L?<J)6!c`35`s|hcc@eMr^a-g-8
zgA(P=-BxCS7E?6Jq#p5wGz#8J3=U5d{)gTxS20fHjktk77vOok`W{N*xhf^=qfjWw
zAt{eK(1~qHP2@&v%$-XNvlHp<ue3^6g-o^sV(dYHDX%b9kHjrw0`US^u4O>&Ns*;q
zeI}JsNs(pQ>UM}EeT{B5#3YTxx3Wm*PXHi?mvG5nq3nmJ5=rd5Lyt+XX2JA@Cx?HW
zur@rVegHf~=5g)~Xr!=KGXb@1uyK3iF_&<o-0qk#4cGO!xiP%@B?i?9iGX-=t;-d)
z^xQ8V=S3O}mX@tdJ_J%(3Q@@mL=wL5{4?cz7eqXw4esr`qZ`1#>yR=TcO#&am0HII
zk9oi3Xnz@^XGP1zmOCqo>sMq(XzM+{3>dQ;%H48R#z<qz!Y58N0rD7FY$O4tP*!YT
zvnuT+rXx+rd;_W%^{v9Nxn?(AzN!zq`BIuK>b-x|@|sOrE!))2rbiZu5`?vUY!FzI
zanL4=p)@7WdUY)!5UwB{Q$!j?rfdUXJUCTiJiR1MIpizvzSlW$1Dwjvh?G16h2;F~
z@>G^Rcj*qDBPSsi*V1L$SGifrxOO+5SZn#R3eTglucmK>8Sh|@?@a*HzZa2>`5l(~
zGrAZ5+j`Tnj)B_RpK^9tBfU-ejm%!dpT1&^&R1Pca6{=qByZuQg@tDY%|ujbCI${J
zq&ceT-FOz_u(DnWj1$gT@$*2dO#VY3bBU{pNeTVb6}W`s=u839BolVy>;^mJvHF|%
zif6Z4-vsDWRf&{y&s;=q!mQI^oWSU9drBw0eIPnA`mJf*zQSsoo8_<o56v})^Wk}X
zyBEjUg;m9h-l7<Y$j{P`iKUsF6b`zUb#b7Usu{b~!3-lNP3FIISyVciimdL*k2LU0
zX--!u8|rD|D8SsGiVDI#nf)Jy>u1oKjdyAXJ4_(xx|2;5AU4q#Db0)D0eFYa*1>pJ
z))soC=#U1`>BNfA#|7d$ZKK5rmXzyKKGk~AP)?$m+uetnW?K$h9(Gq7eJPd@CAGaR
zK*gdMWVIdLu3*gB2uwPh`FZDh)7v*uGJe3_oY{gDjb_LbA5|18$Jd}DE&|qc>x_ML
zVw5EXRgUcmsSf<VQMnyJ+iaJRxZx@!5$`lFC)XIPnlx!KEXoiPYC+;@P7haBEWwLl
zoE?NO<y(Syex!EH*I0Fat@dOoI-D`b<Co#~FqHRgXhB{-!GIFWChpG(2rCiv2NLTi
zyKWue{{Q$Z=0_)rDqV^MOtESa3Ui}DQQ@T5uI?T?RFe=UlV*z#MOa8d0G0FJOR&nP
z8*`lRU-5w}Qx?@51%<8;VnXcD!rs}3?K^bW^()-oX`w2vQ>ZPtwuBjVEkx<RMy~qq
zew-vDLNV2tFx|*A%*(@NhtkwEfbW{9h8V%1aIV8JX93tS@^u%2Qj`*u4rm$I5D&bi
zBb)_XumEt`+r`@4&yX&`zKF(KPhAW@#W0Kop7_AEuBtTVK(z+Cfy5MgwbrRLJ*D1E
zUnB3>#b{b6!4LmfY-GsISJ4Q!8RUi%?CehoO6tug&!m~cN{LNWF^YHgW0o5M6yeY_
zE?GL{HW?BrCEGTSL<RrSK0~x_mZs|T9}BqL+=Mr7aRmqow{It*cwJzj(L~@54xSN3
zV{?J$y_sN?ZYK%06m)SDO-=~oIJr|BICbfXh;Ql^?%iG=8tYuEthOP@FX5Bov>50G
ziz2^=i>kS8CL3CGVl*dMmGDSc5dDgjVXyV8ra)lz8b(`5MNThWE+>hzbhjO<qpG>u
zSQVGPBvsnr2uYW_46MrEf=SN^c?Hl)gT<7<%=O-KMgLroE8_!snHi8zrUqE|kUmF{
z_=$ya4I9YwB4}eT{eYi~vqlpjYz7$TKv8RV&KK?2O#v%tzF|r!LrpF#plIEw>{ROa
zS!p3*`eWX&8dnj&-S#{4j%KyulC3uuhOZu!Zw)?V9J9^9!j%yl@m|Nd&ZlAMF|&#b
zhJ5Ij&J;Ock$sAqCVm~jARHj8x0np>&aYKobjxEI{9j>3CGr~M0Sq2Yy&#ak_m<0=
zsb5zH1a#(kdvA9;<2Tg@3$r;NNHs(geB%tKt2uW;beC-!gN7vvyy0B>6do?L-+2Jd
z1sRU@P3Ko@Y{*0<QV*GKO24gvzBI=lh1o~|Y>}G(N#U#Ik{#P5iHyX|#>_7jdN`+_
zp+;-op&@$pynBneMy^Wn7lG4utQhr)o~Rj3kN3<0JyaH}_zh`CYUG`tPG&`bwWirH
z+QbA6u5n11mv{z)Xkn?hwQKQ>HeBD;hQ0#)YxusSQ*6d_Rfri5HU1q)Ch{oFp%`#G
zUBjC2@eiYPaHBajEs0`|3!6dvl3>Hhh(c7oek3SGm<Cqi<?X$NUWrgbLXp6H9A9uU
zWha{Jm+acozY*mlhG$jG_XoPo`(f9xYa#1~x5edX7B|zhu41D~KQW9L6E`qocdTBO
z(PH5HFe90~*o=jhTQhmE%({kJSu?N@fb3n~Ve!+5^y13Z3?-cx1>tR{jsdi?p37z7
zq$Z$G%lU)M1kz1wAV)`DrOK<0sxJZ@f?(hLDU##B%E}{S{urWmsV;bedXotw^6_f^
zh!nE?obFi6A?V)`RmapnvwhTm@COtLW}e66J?QUcoZ=em!jLn<&gJ``VB6#8IM+ZX
zp`;2BT586y{XyBT5}M*D_+>5$RMtQb9K!2kq;)Qz!Vy(UM<5EL-lBZZfq`T-;&`gu
zjpTEdV7RWGYNhBT^pJW7p5p@D<lXHRS$DE&OKVjs&nQN}^i%_Cq$Wgv9jL)EwK2IF
z!hEo;a@q|$Mr-dJb%CeFbJ6fX^^T<TI>uvk+>PruXhPB<^O}&EV@}IvSVPsS;<3e9
z07=+;oG4QXV4~WO?k$KcH3Y*UaiNj2%hW80-?K4m3oKqUvk|l#;k<P}BYIPR)V!|L
z;$9ici`g&mU`>C0bO^csY~kD0uo|$1HGI$ppfCGL)Kzk${KBH7&wr}rlVj&$bVn<X
zWr5mGQa(~DDYmcYRZ;ygzlhu5`^V2J7?9g|wH<`u_$p7#uMI5b4GSxocaQ~fFJ!A%
zGizR(B{yXI=<Ts>k4JM)Wvvm0U?srsgn)a6Kxfq3u8^V_7`(&{Mq&rin#xV}QV%3O
zsv$NbP5;O@M<}}C)@tKp({sh-sUlaKwH>wy;$YH(Wv`SQ`Dq(MM8D7aW~5>Qe#yf#
z0cMk<lI9JaQw|aBP~HJ8Ds?WBh+_PaVFomZC9l>bf$X~G3rCjn$Sg<p0F8VO5j~5_
zPpndvB}|SZ*J(j6;=p$a*Su)Tb^}waq_+gjE*xh(%?=6a+y<5F<=(Y|1n(BsJrI}9
z0+`!ja!;irZL$Y_H?n?1>WtjiTEH0fWJb<TOhWzVF`~<;=0!gtsOA^2S_QZXaC*`R
z5UYN3>tK7*5Mu)#5Z#17#}mB#8Z0T_7z4&6#R7MNUM>xW>VK3jzjY^rqrVSLv8AhN
z7CV91Gy3Vy%;}Vd#`6KPf)al`NsHEwu&h^Hr^D`s#SZ0w=}4GsV^v5WP*F4~E>>CY
zEfcYCpNu@w_qS}&sw3%&RC*|5<)Ew`UbE{W4%L1&!>5X~2H70th2uh#eiuEz$Bc|$
zm{Wt@Hz$!A4|z|qf7$!k34r6BX6@26V`_D9o_@F9NS-x{nM5^jCn}SFf`Y?mrJqQ(
zHM+T#BD9NNAV6(4n;k3%8y7TfoTl4!Q-!-<)bhH^SwQqkL-#k8yO*v2*~+bN0a&M$
z%1Xv;W9gQ_BLfD5JGyWylOl6-y)B?Q{r7EzqbwRW;l6ZO-_}TA>V8PBf(I%1xPF+U
z;iNKDUQYV_q8Ge)t3XWCYpq~O{4I6XeyxT=^V}55sDxB}w0fN{Nm(zAp_(AzPV0;y
zH`<ikMq~k2)6SaGVo_7uZ2{2grvT^k!~R9hzB%`1KKR>`v-btUFC-Kmc)X$7&eri7
zT<oQC@vXDpiuk7<G{fgx8#Rxk0zwezHBW16w^D(R2#yxfzxC~I13v6?;EjYg*M_<h
zPNJ~$<_ya(1(PT{u}q@!C#4&WgFTv(EVHUF`1>5NJDG2@yulpulN#p_Kw(Z>*UQ!u
zz{0*6&+`iHn~dKO?#>;RnEeKWB4=_hB73Af`V|TUI?VrRt@NYU$lw;|mzjxbLyn(X
zk&-BBnG}c5DtgGE$dR8+(QG!|5qi~ucPZu(LTdSzj<z0i+hresvQMwd;%ybE+9vjD
zuk!FKS|At0r^BYRKb9@N3n(czMcDsVGZL`#kZ8IWU(?8HwiTbtV@m;T!qMOt4^{}j
zzPXrQ2~m?BMG+eheqVFB4%I{6C5QYx$eXzelKagUO<QafgxupO5J4<lY^Q5wHFm{o
zIN<uK0d<mp8^Z}Y3!L&EszH=NFv&&-ol<jjJCfZcxf0WU;U9f0G1*Wu#;IJjb>gY&
zp60&e*;0wo?8SokJ<bn$Oz*XDo~5MZhf%+w)Ov9_b`%UB2Yl7EyXZLC?)Gm*w5he5
z>(B}GcNm-clPOc*^Dr^zb7RV4ci3hRs)B|<L&5ut=gg;w_cHK4dk;D^WRwul(+2ta
zdIV&-@b9^jf@SYzg28x-p6CCsz``(O^PFu&%}j)otwOduo_Ob`QReg{>`G)IVehX5
z<=AR%2*vIV!gj>uO&{?W$B)Xp9oE^kb^90ZZ;*9Rh|d1vBJXpEoMxyiJ)WjaK6@FP
zeaZ@YhwNO;C^u#~Cmii?G`*|ZTNzuEraDHV*%F1pjWqtOa`uv<kMpGufR{0Ib5O14
zAC1aXxB-ifv-M5T7`oOW(?}C~78+xIjKByn+)*ra%Q#JLvDjB;o6Pb)Hu};X@6o1Z
zDL1#9b>euD7(#*oleR4?6bSq&g6j%a^@dl(?pnxlbSvwyICzK4eu8IOI!7|AI8A79
z1(|s)SDUb~?`|wQ2z+=%%(rQ6`O@jyx1u|h*z{dW&vLQ^k-3<P0T5^(TwqCO7%x?U
zF5!OK8vq;HkddJ7>w>x03t}Du%=9YL6hF~-N(w^E1sibbycmU~^?2mY3qP|<Cu`Q6
zzs%<@E@HA%H7Z1uV%}a6xbmX9V7~1hc>jq)m(+5*7#bJoiXoAVozkwhMKreQM2>%M
zck7#avHr(qM6AZnVXqQw{6PXS#={U@hP-~e9)=kN@ZiN1zA=QCjZsQIp!^Tw_=hS+
zx=hghj*uj}P_H7xC$Z=`0G0XOeT5Z<3*#yN+7!0we{4HoCBW20+FZa7p%4%3j_Ztx
zAn_53eqU^Cf4j)=E;V~axpR>A5-bWOj_$4G2UO;oAbSHUWA1H<#Oh_R2WQ+KufGS7
zrCY(eZ4yD>=RSj^hG@ZYv!*p+o*d-wgI3=IUmb~#>4&(Q5d-`=H7upTw?5{bnCxdA
z20|v*+z31NYu#CqsU8w^Kup()u#KB-*&SsCUmD3wq4SlT$PyTRb1o$tihq?8TE3xm
zC!8!?j_|1`H4IpfTV$Nhz74C6ffuz}MEXLxj+D|t1~wVyQHwnV0h5rWl<p%*Qx1P*
zxTQlR@r>EPxi{xd-;W!vKM#$#LTQkc%cmJryU@?NE@p)sdDIkyJ~D-n3-TYD2eO+D
z3?;^}gm;D{kXYqbkNX`5aZPcpj$~ED+HJ7)S)>@UJ9I^v<Bjfu<9I`{ii#7wg`ng=
zXqM-_6(DozPQ<PSN;N5_tn=n})5No~7E(q>UN3OrLCcW)rGQynlhe|MV5_zTYq-Si
z%zq6gy(75olT$`-LTj_w%zmF;-W{r;V<^&+6YS!BPpYtpWMZ{dOT|TZ`UbX*G9cqc
z6QmLBFAlIR3DAs)RwhRZ0;*`U=t2M-U~m3XGebWF0y79r`uZ)K|NAqX>!*vv6C^~~
zUvcBMO2%5X<1rj(aQ=a&p<L{saY!glk@1TNiMX$b*kV%i+lkDb!o0vQ)bz{N8IE#U
zWCDI@fl*rW$}?dTHClaRWE=Eg>U^YpLp2wW;{Kg=(wSXpqMUArpgYGyJH-uDN{R?7
z&l~Q4Cy7)+-!~T{y5ptxkM8eCPWT3Iv+`N|1{=+#OU}=D(yY{(&C*Yl2cCIE=bzUP
zbU{=aY_>SHGU_1kl)&Yo*jFt-e}%wSV(vNGRca#EE%>X=MK`O$e+2$T(B|zwdlWBD
zD86YlfgOpA{sV!8ywf(k2;aG{;xzCIk~v8ZxOJjAkuZS{Hm@jJ!@hcBlJ(_dA@hh>
znr@U(XK1j}PMkGs!W_Ka*tH-guK}gHGsWr>P5^*OU33)|&a772Vx_OfM0ywZH|doo
zeC$hq(vBCMP1K10kowJ>*BfO)ld}D1T%>_~AihE%8XPuYcLmZcm$ve8wDgL8@UdC8
zHzqe+SnyCqkTsIHLcicK7+>|UAVN9+r~n$`=}%2?Onvk@m$#V37ZVjz_BFEx14~d`
z^%=L;IBZ>p^yj(<nPw9_J@t9Kd5xX->X&PRnr~vDN6eKTTb-g>;CTJ_fv;e^cCAS?
z`VA{yJf?~J&m^B~{GLgncN-(>;Fc+ZgugoiQv)qj<}zQl`ya1HjjUGpet?TYLw+l>
zHEFiQ2;5|hFXK;orhHlFd;l`e1gUh&cAp2Zu?2Kb?a4lNFcV;DmJAyyyC{`*CbP-{
z(Iu@`7r88u5nqpl&E2b%Ce2*M9g}WCu$FPSOHwG1n9$Zw0N3d92KK+0b1<ib>1m(~
z8|mEG`_cQm>WG+<WY{WI8ysgg%xW9T|MorW?W637(J8I}b5Jd-@Ua=4k6S@l_NwmU
zma&l$mb1av)S!5jijvI{A8VhmN=E&2F@I}|ON<ds)^W_S5hEgKM`V%u)6uIx@TQRP
znv(-4(_BbRR&;A+(EKRYYVRwm$NLF8*WWHfyiNl>2d!^?o_rJX4>h290$@7CD)7my
ze7vyuJRi7H?`?ZtO;5khA_T%#=;Qo>-K5#M0$q`)>KM=r)Bzj>BEZm+O>rMesx|NI
zq~`xDFij~5(pFj##kuUakL`);&nQ0CAFzdZpw7#f+}3e%IW$Eb^lx0l{nC}>1<L45
z#wa&)YCYj%;28T6BV0uZcz67{%#<jcD0oSnQH<^wmxr<?ZXpja$!BCRTCv9-$?vw7
zHo4o<3>fif(^b(2%Psm0Qk`nJOaf+krqMV!PQE?tka?f16t$+R=CqB90}8}oBy4N<
zRWji^0V$@^&zy_L695kdU*bK54?dgAr;(~i<C%6I-6x%MIjy8P^XSYj4i==wTl7QU
zzLL|bKw7O*zvJNRVtKD3H*fN2$+;T&Sp~v6f7P~k^5yHY8A6;E)MSB^4{-L;<9|HJ
z@p5++P9_n_--<U~9D(5>@gYFLfib)5c2jMLXP#D}SkVEX`$y>SQ+lKr2Q^HSd-MGU
z(5)=f6Ng7$E3L10RSAjM?()>Hfo={(BPs{~yxDt(6i9X*cJl&YEpoATIX;6>XL&y-
z?h6s>xNe*;kvZo2rpz%X)Ska5uZH%DCCUSL+`D31Y*wJfbNNMcBdJe*kRU0$vwM6d
z1l&^lFDB|RTo)4*TtOnJ$xrd7l{S9m?>9$FikFSj0~NA6OihUCcVWoc>Y=b(MZ=Xl
z*+&m(1nG-sVO=r^_WAHYFQz4&k4J8e5#7b*ODa?tR4%*?y<dY&2+ioebgR|r({9Nn
zp7npqfrJz`Nt-#EY{A<<JRkQ1)~OkSd9FwG9(>zdlESUFl%5JR)l351p6p9ZSBslM
zNe4Ygefkusf?%gi`H6{PHEXGdO70FKZyqmDB^?XL`t0DZTe0G$oQ24(l2j!7ex}BR
zo_x#vjc0OgPpt(Q0X><A%mV_1w$YBHk1%J?auv%Dhr#YB2mS2R$*syw8tknDNbVzb
zF;gG-#_$($`|}>~Y&thNWM{X2YPzGYK7%qeGq4}y5rqFEbg-w>9Ts_wRTb5)X{nTv
z(##LjZqCC2i6V~9Sk#%Zii78?afLYL727MHW$lx-nPq3joVMor9pAr&>(i=%Yr@$?
zq0oC}y;8_KM1j|~^gM*K-ocW|`*h?)MR^+nsM<gQZ`;qFH3Y}%#LlOj4`HH^Kzxl|
z=id>&rKZhyf9^&lPGkOy&u(hum(hg^5L8p-rRH2L-(z!mT7cP32(1<qcOWL;=a=Sf
znF_-i8#TZ3Ghz>Se4&^1q%f3(g+JsJ3h;P~MLe~PuBU;XEJGrBm%BhoJt*0Pxi4kj
zIic-rz(6Wky<}Ip<dEbqE$`a=1rZqCrm{vO#3tG1hgQgDr*J*LkZmMw8E9Nxl*SRc
zVXypq_S>#sehV*^9`7<3o?M~;c7r7I41#utY1x5y_;0rw@<z3K&^(xeRgPrg=5^e=
z?!8z$aD%Q+ML)=au1<`3u8k3MxQdr2OM8xJlDZ8Pt+%FfD<#ajy<!7Hz5idMNCk){
zRg`|qg@wZ~W66bSJA_SKhjJb}t%Z|@>ixSzFUPQIA64L*reC<KH{)nrLRyNnUl?Cy
zOC3?k(>JNVUH#JgjE!+G(7>Cnr*jlZshCQqAlF|xe*Qgy-k%olZXzH>8m<?V322}z
zGYrUxT-<pBFm;XRa0&7SH6e&I5fo$YTMT~--%QV`uJGqhG5GkvIQFmnJEqVEU>iG;
z`t^$p>C;Cbn{09k!vu1_1U6uS@`voL>HB^e$S_vm{~{A+e6$fV^nPQm;m8`*vjHyV
zs#-BQ?fDvR&}x^ObrUUDVLV7{h5LQ64y}-!_8v0Wv?KxCL%;5BV$D`Ot#!^$O&W(?
zS~nF0HBfytlRd5f8Tm?vu#GKgXH6Ib<ww$`Gt51)G-CHFgeqj_soJQMP5i+Fa$u^>
z!_W&U!nhm4(blx1RLQ>ax|<lX8MW)o?d_?}6-uFnKWTC=P<T4dfj=ZUgiV_XN3t~T
z8mYIayp-FU9A2(_2s+^+_B9$wddK8W<Exbu;R9q6t4D1##!ZD4<H0>QOhRgumbEDo
zY>rog)#8Zc6<CQAng{*>lNX^>+M8Y}z}MXq<qHGD!o#|6RQM6`3$u7T9-=dt7x@Tq
zE0cdf>yJ_`-Nne`_-*A=6UZW`zSuo4$=ly0Qs_XsgG8c6p=(N?K9xviX(Qq)rlEk0
zO|RQmd}&^BetAwl;YTN5-u}X8>)oWhI1j%B<|DwS>IAz@(g70FdXqCN?kUrf4|;1A
zG7u}diZN@#xSg5@Fgoi^SuEHFHYMHJr&|hhT$s;wfZaHhL)7y9B@sX@YU$&v(KcKA
z<tz4pu&Xq+C5DY7Lc$>9jTE+|e$^1a20%dvnPAF`g&b6YMv&+v$R~?Wgaeq?(g7mp
zNt;xQo^w`l+V}8OA<`d=0!&;069rZpf9R_Svm2o}uVtlWOoOx7x>`ia^T(5CL{?Q@
z$ZSxCbs~6X^KrFD<z>E?X7O2957grK$JW*?$Y#}X>TH_xS)IHG={M=6cDVGk;0mR*
z)-N9L{$YYBG6`N9o{4K+P49R9ncrSpT&V0NBQw3_rk@&h_nws>6ja@K2^El}$sI8a
z?$w6FDV?}OLHBpI`lU~%up#?gK`8le7@+9n@R$MyYL)jw3soswO&~cChbYc0kbnJV
zKDt$dWdf)M#D`OG<4_c^$ns*9={ik2q>mhCHl5lAHvFh2pm~_zFYKcl_G<#eLB={D
zFy`Ik^MF%rB^}f9G>hLc=m?j;h<3XA^a*T4s#y#dJ8(x{gZ4uW>+rNWFT$l~m0|5R
zcsh1oz_a$ZgQp55!2#t7NP=wL-&>wBL-&?H&r$n+y(i>I?AUE=-Ok`<bGix}aM%@z
z@b7gH3>@s6!mf&8d7j74`PD!KH2&a4gk&^TH6NuKw+PqC+9W=UA06uabP5%bGV9-v
zig%x{mE)m|b**-XiYbwTVsqvVnz+lGV3@9|lj?p~_rLuJUIVvw>Ve*(oMB4z-dJEn
zt?VJoVz7_|#UW!%Rn5E4uT{)DTqkrAm;Q+F9?A*jloZcMS8##eEa!#Y(A*<FgeI>L
zZzAEZ8XG|lfSlU**hcFGT;%uv5Q0gN0=0cVHB`Idp&YNW?d8<z`|{`e(}l;+mRGds
zZ3S#+oX*=?K=RW|%lEW*yEoEhRE~(yq<kK%Qs`;{HkLPtO<h61(6Mr7tl{dJ>2mbR
zek0y-PZUTV@thPFR-*!US98GorUXj_<sff|p4sCPM7_25rjennpVKlTr5Zr*kpJ}_
z&<Gk>ydM8)+k6RCwq2Ma!s4$`woGXf<KNvlVqehWjJzP&r&Ig`AX=_8XAB9b9NLbj
z_EwN-`bJ|BEmoRmq&*0MwE6f6|5GqKN^)U5Tt)mE{SiP!dR)dcpvDt(IbJac`vN?U
zV9J*ke)1TZecDiT!NiD~hm0{E>7oq8hqYTt(uPB~A56e?;=j9seLG_uk(P=b^ga$a
z;do8K)=Ub#K#pCnFvZ-FPF{bBw0@Yj?_wJqJv<&Rjx)qF!-qDi6B`?4B!XU&F@`ea
zT?=1(IhC9`9}{>??iXYe{++2;YNpLfb{4!+)yQNpWv@uE0pyXs^@F50JX(a;7|{%l
zs+oeM`aW(~n8;xD;U+L}Zm7$TZ-Jev;+3Dm^7bN~(+|zHTapiJ3>wurWbxOEtl7Vb
z(Fwc*`FV!<o=TXEnZ}g8+sj5Da~wotPEkYD_E9LyuYL75itLADrpvkd#<#S=N0u^o
zk`mTrRq!l-=!LALmt2;K2O|+8u;AL5370XZFj9uZ)9^>0FW64{7Q?Lk9wRMOcu2lI
zKC&#v-owVK^xR`X2nsAz?bGC@XYI;0mi47UYaH^Q0lqS+eM#>f_ETq@i&E22mBYzp
zZ@3_kB{qNi0A~FDV)3H-$t~K_GC!a8>T9pTQ?txZk_L7LOam2@WSY4g3|1t<0UW4u
zzDmYVOq8E%R<m_xsR`f9{P)fcqw%XuG(YYwhPdG7#sxI<tc}+CH-m6711V+s?5@ou
z+3guPRtED3GWS{DyXxFz=_UiE?ph3R$*%9QC)LvYnC!JB>g}<sE+nkWW;R7)acxGZ
z3ZLucy;|+3Fav0fAsGzw4M|let6`+6RzT=2*CwEb#>HCFYlvUFM53fG9M#zKT%Z?H
zuSPm&`CFBx;+^;TM$?vwg?wdYf$x!r_}66ED)P;eo76m7xq1mPIA|I&Uy-0)Y`u(-
z^=gGR&bq_`8ny^Kp>T6*Oz+Gp9N=xu8A8xyz25tK(m#3;YEc7m7-Jv@v*Sl`3cwor
z085&DCjfs-@nJnAGErZHc*QI;N)q4ef?|!aeGlITA6y4`M=@B*TTacvaRjSYQk-e|
zT@Z9V-b+!6LA7s&(1m1PX1u=bg9AMtMl@#k8B0o*E3!p7^*=XBr=WE6g>IJ;uUEx`
z{Q#*9^;`K}hWr`f^QAQQlY7B!l0i=86UR-fTl6gw>}zHL%Wa#FHHB{L17Hz?{V$Ar
z3h#7Q#Crudp|4`#I-rU8TJwl36sfkxGzR%>#%Kr!4so&5qA$YK;WQ^@<`9_)1kMzJ
z7a;$cnO02WG!S_LBHllv6?yc8(7tNwhB_?AG3_ofgU&LR{bRqG(XxK!3n_|vrmVi(
z@=X%B78Y#ntF=_SpA$RQZ@+h|D}%PEC&j~nuybee5=KLvyJQ?p`FoVgWc_oQBycg^
z8KHc)4Z^WW<b;vswNtEetWK*QXWf}$bNX%uPs!&SBqAT#9XG7m43=kcBCkT2*4UM3
zuVan+3W>%D=;Ast4$*!#<1T$Wgx^WH^!+uznP$E2@!2Dw=I<>W#k%-9z+Vhr5LwMi
zQInN^@^3&`EOOZhi-kSl`KZv&iiyFh@-q@`wqwORx);{7HbsB>@%=hvXZ#rrrh*!F
z7r94Vk&qo@6&k%Gdm?g5ASf+aJ`g6zKX~9zBDg~uF)u1$#WgvUWwKBb-mR<X<Tcr4
z-FKA=^I=6f<Xs7;a+&Ql#)8i~>#zD2izO7Tz2J2*U5wMHv6Eo`^D6GdI*<qtrhL|q
z-5yHZdvd;cK;2)bJGIgGyh0WoAptP$zLEviHPJfW#(n}%k7$j!oCN;|i2Zp2Pe-sf
z1N?9Bbiyr(B~=_Bt^?39j>u1-F7&1vA}L;c&RmQQq**hjreP`jeJuNi&6uBMj2VCa
z!|lvG=tr%Pg6iDW#v904PW}vu3fVh*7}or7exE|F7MrTfzD)Rdc}CL))P_0>8;hI3
z4MVARSXyXS?~RGT-D%4_uVqp5Qc(54n(Vt4V1~%!%ZNEF1K~A-NuZg~e;tJQo<QMm
zO~xo*n2~^DrfGUXd^)DMyQ6}|6HeMIf1Y?7`$Jn&af_;|Xc)11@H*oMsNmn=x<Cry
z<wDidBH>Y(9uY3ZZMO-y(HPY)o`FV^;BJ8GJI>lzYH~z1n5&?AY10ZcEhnlm*`atc
zbKpHjidI_|G6s`qgH{C!9=|u$g}k_$uCRuSu`T$EEpZG!??_4}<mUWDG|X|Kus9H4
ztD_Me@z^w(ndVJnkg5Ex;Fh)+iuZ9?okK=R52b5QgS;M+o_#Wj|0z^l75wD`%onH7
zOhUOJ>5y{i4`Wt5&&-@I<@o$;vG|{!+k6amV4X0i+fk#na?&qKO3Bv(e3&cz;|{aa
zgGgP2mPlTlcv4Zt?zGAj$P(&LueW`-&R=3m8DHh?Y!BoJU+UC`nwKRr@@Y9Hg#%vD
z(<%ZKHdc~OACuG?YKm2T{}+PZmsdd1>*yt~Rw|OhP$FpHQpSa$_v{Q2B;6-vWtI$~
z+7r_4hdBCwN3hDfx7Z`grS#%ZqUIeA)><O+Rji*6cHiwsrbbT0uvlos`8pn0ZL5r7
z0(_~>r<z#;%=&Kg3lpo^u6ztj`H}eOdC<9hCil{30j{hQCoi%_OhW9&I7Y6=Z<0Ii
z<5$cIqGFF7Vx;;H^g2)8kIKz!@)1ufBa?tG@UV5NM7Ap8$l#()2O<w8{TI>ERq<cD
zm{sXo7WvLsgZiOX+c<!HyXA_tBxJK;NhDnNL?~v2<b^~NPlUyRZD@*s1W<1+?I_2(
zP)quaHp|OHOP|u7wsIgoQnqT^tu&tb2Tv^LVLBJyM?U{;Gy!xO`r5#KISZK=iI7I=
z>M#IZ*tW=zff_$_fb}<<F~W2opF3f0>uQqFTybXe@6rUzMYo#&5CJR>;l=PmO0{o;
z-kH)%{m$2RdZ%!yz{dE3AcBGv&%Cl~eLHSA4kUF=4P`wJNZ~+V`plYngra}ptQkqu
zTxDwe&cGL+$WT^r*Tn@5aEDDxbjMgiNERJ>VJS$-^1Nz9s1B}b9i!)CV9QY1_o;rU
z$&<5K#i6s2heASz4MHPZ%ZiA&b?FH7#gr&XVnD^R&9lnr{F%OgSux#EF)iAc9aK==
z0<=$JyDUs5qK<9OR9q3woe^$F{RkBOExccIk{L6)+$-&QDZjq7iJq*V-uvR_m*gJY
z0<UKG0>qV16w5LTR8NpsPW+`V(J3Y}x6ugZ`PxQ#Kni1ASr9WX_)2zPfYmo1noO*2
z!Opw9bU+?3f%!ZCybM(#Ysjn@e;af0@`-$7c4|=4{Mu3m%9)94y#fU0V{=|cT-O>P
zD(&W?WBwShvenyBsD23t3RFs5;FIyJZOELKpx6Xi`Z;{WtMC-{0M*v_OaWpBI!`|B
zapbO`EsP^@zy)Z$&?ZdXah1_#_>GJ-LY4yKc|>5Y?U)tp>JA7=pDr9FZF{nadY4c$
z1kSN`26#nn)~wm@mRisQ2R$6{l)~mm(#e!)cByJLhD2-@>yKJHJ{ahMPm<eAU`i>j
zo8uAgklFvQ>bG{;D{wF(M41;+uY^~4jZo`%;|YvkI%<l$JxcI)i;DY~EM0#IW}D3c
zR;FiUqzP4k(YI~wbvM2ZtdBn$-dd@{S%<s<1kq^#z2v!N0vgR3Wx^A2kus>qUQBRb
z9?Wdl-1<ejxU@;QUv|{Sbl{2*w)VpS=6Gs;DjgI!xQ#54k7u0A;3=>Iii?eNIlNY1
z4DZU#k(TL7by`^Ek_M{6CTDM?P^l|Y=0jKy{Fv2xJ>P_UTQg@xi0d`7cFMwV*nTiO
z^U5v4k@9xn68bDSgkV4-D_Bw?glK7L-JSyA3uz!+n0V=-yv;D{U$N)!_)?wner>dm
zZ`PcE_E4VQDP>Ccq%INEwTSus*|88myiLAJ+yOcB*|{X@->OCD3Ql<{!Q{mP;>^GY
zP%*oVokOrFu(Ga~ZF4Vs?Pc4xZQHhO+qP}nwr%t6S9PoI9h||LWs<+E(itS($^T6a
zzH!x83LeW|nn;5e?Sy5=)Dg}Z$eX1Rzi;PIBns}+^F9c3WLBi7f#n)a^Ot%pt*}=|
zs=JRr^PbCP4x4Cc`D0Mt#7X!zuupIk;B@5*2^G|A^8J2$ILFhiekXbNnN7J9V6??B
zqUEyzv!*0Xd^w5V%!;d#=%=c8<2<DK7vC<}A_}=vHO{Pn^z1b2_6RO*XcKD{I<|<*
zmnaqx4+fok5N`Ah|Jc&){e=4}Bt(YShzEHmYxBt~J{b%ZY|JLISA!y90z^tSkAuRw
zK_?o)?ixQr$i7D5q^Ab!S*^-fDImCzvfullS^<C|4AQS#YkH@ZAcJGyX_L;{)M&ne
zU5Ph6{}MTZAO$RtJ6-mKV+0mqm!1f|Tv9bAm4yKE##F`~wxXgOyPgmmt~<0Gt3#s1
z8TTBpJit#1PgjMI*S^@utTKdi|G1m7ZjO^|7y?1kcyD3}CL@vp#UixPZZ;dC{IP!r
zlxCihAowe%Fl{220dI;nKtmBuM|{viF|!6xV=+)U8bw<ak~v%}-VAmH2!?|`tKT9Q
zGhA;Lh8r`*uQoiWdqsi5i<%!yVGz;Bzsy$o?Cpu6={M6TUsW>VIh~vfIgW@iAia2e
zL5{o&x?vAu+$(^V!e^e2mXM?zh!2LLeF7$Tr``ja=`U*1mV7x+(!p&UL+$3%L49L!
z0d(YP^bcs)?Pju*Wh&ueO=xKzX1JsSaosyDaBYFbr0a{%p0LJ=5i%>Qc~a};(e0P#
za!AGB$bR_tmfsat$%-LS{C@LZiY?l0-&Wx@s8UNy&HiKa-lp5e+ZMJr`LJBsYjsS#
zYE|TYV<>3Hw*259q-tR-p?e|6rpj!W({D;#Fg|W1IO^g7V;Ww0+TaeKXq+Sh2{)+p
z!$Qg%Y-r-HYH9z-O%Y<oD*kMto_F-EQC{N@(#WXwDHvmQ3vzqrD~{=aiuLb)bs3^?
zEdY0%<UoeR)1z-{&$qUQWIr|D811<GP}yDql=UY0Dc#&SMau=^bNup9_&LN^R{Y^p
z7FAp{M7m%}p%AKlk<qx?N()BW1;C<Z{(2(&!4ml!!F}L=8Jz;qJ;<EWq`>K1K&RMg
z&cOB&n%IPFk`awXi`v46_rTpyZQiFvr*ltcFGJ(Yu7K2&HU|>?ia2+XWMIsGw3_nl
zSb8Stj}JE*Vr>WyH`P}%I6j>sxYW3+V*ZG^lJ5}Y{{o%?o|b|Vq_)`zyui*oy*s>;
z+GV3---Zi@^ygOF6@rb!ri^eeNMTh_dlD~qZa4qwcIpjPci*z!C3WH$vc&q=b3T%7
zms=gQ9L>{hQ}<?NDi9P;W-S~U10f4O)H<VQvI=xK;Wxt-tJ^}yf)F+JoO>p@Vc58K
z{^y;g)>f^h_ZBsLpjqvz5;0(X`_*Q5k%$N>%g$de)w$`lnvn?hr1P#1vf^IQIlky~
zjpvQEGfRQq^rSeW*8oik&B%rKX#l+u4u9Yc{UR!){Iz)XPu3ob%EnE!JN`8(3YcRI
zjUjq+a#;&M@){5?FIAFV20$!x3sN`@h5cRRVD8Ps*$hEYzS-26Uf(0(6ECUbrnTQ5
z)zN(yTUdIflogf1Kawnk^mfs<@CdEtt#O-(jb=yR!BXsvbAOKl2RSL}(=tDV{ouuh
zyeP|S&oV`9%n7Y^ax*+wWv|lqS;V$LIU{b+`-g#AbwIFrW7^)>nku3kV%`<dbaV-;
zN(F|@VS<w4HP;BA#H!uG%vVg~sU=qN6E`!kj_&fGjx>BWIAt$@HnNK`Fp2l_!I>Fo
znZJ7!0np;Gwz1U-yL>J1e#_#vbh<}LRoI#J4YUtvwJC2SuzIAKReQ5Y+>J(SAM4)u
zeF<mEmZZcCH?MW?1yZ!EOjKFeLf!Ckvh(g!Ap6tu+Pl;E6>;nR-}0hH;UoCd)hvK`
zQo&q_MS`1881foC!$6nuIFGE>Z(oVovEtfPQ#7=8>;bAQu(p%zKz^sozsfWJY>o3p
zHbG=qo~L>0tK^H!Qc{ht@pDVtu~Pwut&C*Gw!*3@Kaif1sF*;d3pAsC3Dd-S-ahA;
z;3yahTV~Pb=S~?HH>2U6b1uS!ysSUjcG^`N@^_qkuo<$v@m7rN!(uzT5?mASFIq2w
z@Ic~{@VnMs!0thn45~T9b&J=v@03qN%gZ$6{ZaZ=i2LG2XhM0m-Q?^fy=z$`I^2N5
z%7!Gvze+-^n=rX6qBev_xkhv@T_$))jjhTOSU87s8|2%hDL~ozjCeU5FuePzEo&$?
zrpS*K<^+$~ZfIiH4p<6hto0wpB^Y;FcdyZa1EARQh7wpi1HRgf#^sPPd?FQXR``wJ
zW%<34b`F!)t%wJjPu_r0_3SPVHT7smDW{if_SAv3HE{IXRA<E(6O6ps<x>3xBACNS
zH@@o#TW+z?k}Xg-#@H5GSP0aJc_kYOUq@~Y(!4_q-|k(+8C2s#2#s5RLx~9e*#my!
z*OjO1J_?g&<K@v?1J*9o;bT^R376bl6WkO=xPZ@hWeNX)qTestdnI>^uh|ZxBhEI2
z>8n>i@zboW5tKq8;&YrNo1<<Za5a)`6RM2@5VTt_T(6DjPCSHsAoyAr%*L^+^K1G#
z$vM%Ez*0SgfQ)3s@;uA~msvQY7_^^YU}h1HDy$m%f(MwE3Nw)ZesD{`!Ez-Qi(g+i
z>(7SIcr$d`N91_3bO6G#1EN?-{R#U*drHKimWpE|iqHeXI+@=}d@E^H-Cd*+1lPI~
zr-Az}0S@2>czP+@lwuu>+;W$(bnslzx6*yOdKGd&=<5|8vw+V@f?5n|Q!6~xsT=+|
zkBhUK=oBf-dYk-dY-Sc^mR+UUqxNyyPSqHxhSSUGg<u>?F@fZ8EqS7g&?Lq@*-*)?
z_f~NZYGs39-7FDAJm%&dfjy*1j@>NAhKn!q2Xq=X(+|k=)kMl_iVhZB`6fs%K0ORZ
z1$6}j!2TJjFBHhnw>dYx)8%BIzfG_RiU^Xo$UdgY!NMHf@vk7Pvkp^s@TGL~Vb?hH
zy{Mn+jJ2ye1*GQuW=p}QGK0B;^6y1HS<l16oMW~9)o~B(K2az8AT=V>^b<83GT2|$
z#DGRe37%(i=ZS(8(hP9b7;C;*ndTt<)c+2LuXfzAl0WR^W4a=K1!xUzu?dYmV<afE
zmfC_ghmF3FqZEoQ02iz*0$x?UOjuQ$k*8`hqNjcz*q}oA3h<VTpO=icV-C}n=lho-
z!e<RX3mi$2SB7y70RUQ@N*ya)ZMyl%g!CStl~Ov5b|X&mEwihP90aaKt$=_8u#9CL
zi3}`hW#b1gjxM}Q;kGccT?eRjW%1&tdLxgUx)1(O{jajefh~bW7|XjIkiZ{`G%YZ_
zULnZ6Prp=!+vi#nK;b{4+`D_t%zBwB=EzG#cBt~;4^BZ!(CfWeO-&*m*yu){BpdVv
z#&cxLv}x<VwwKWey($R|s+N1vKps(C@RL~7js1kQ7xP%HNSQeMAL@OUd))CnjWrW;
z2BtvE2XD}z?yHL{v!+$jr!-S>*X=eLF13MPLnsOvBGxUe`AsGdL(VcXrVsdxn>0Rf
zvV9p=OOeWADx)IHrp)8_F~3)ghg5dl4A0xwM(#i9TF-ADZkM|!=|5jm?j$(TEoAqw
zPEc=jla>3hHm^1<+Ht^wm7Y;ueh!VslV<joRSX(DQOjUY8`wSkkHR>3^Iy;5{h9Zo
z{2fNaDY+X}8;);a&XzQE4>KWehuU_>e)WVoqIK3PS{q!KCNV_i2aadMLIiU{#wtr%
zVlK8((fB2QE1ZQ{({$2+$FcGJQo<n4mZ>tU%hGVsK?rNf@VQlUX?gZfE<;@a<s}>%
z!P`1U5_eV%jAufVL22-1tQ6wo`<EygZh5xfh<hb&C2ba*ukH-6j)ud4F!DkP3lj~0
z1u%zdT=T&BRZ@mb15)$j*|ma&htRyf>i!yGj+5h6xO%v?u&$@l0g=|<&ok4bi1QjV
z8k|%GL{eT?m*R-G``j8bBq5?rn3x{W#~eQRtoU^LU*@|gS)IWGMq*#w^jNnVUZkv^
zMtFXgW16uv@Ho#Ky-Ocdva^eOF^zkI$Rhj2iM;Xp<PzjExuj8T08|VZ6o49#)Jcto
zo9ypMD_ewUOor`AM~&DHgKTM1qVid}i>CN`khvBgBTfd@sr-$Tnd8U(6UWH_Dlc6S
z(#R7ZyCdy_vIhYz%*atapyxqdOnKFy3;1W0*C}_I$Qv(<164|fjs5kFCr^|TfDxVI
zYm7L&Zel}sUmOz!UUfIFt8VL27GN;$64RArp6HV8e0*&Oz0k~h&~-%>nnKH|M>-$%
z=00lI&WL>-<DMv3Yj5Q=CH%o_!~^U~BCZ-ldymIR^*BE%Z&An?%5HKvmo0g>p$5HG
z3IqHu<%Pzf3>gUx_FvU(S^jQMP0W#`j<&=0GTi<+Fho$jZn|egnX_oK(0VrF3s3<%
zT*i(B>Zsze1#44va8EpeH!lQrni8@|e<ZHOiyT^FL=(Xr0q{6SYJO~k0TW&zt!%Fr
zr{o93u>4XyyXkg){JU*?eRp>cDnhzDEB$JWv8gxpv}=jkA!Vo*CjQ$^>*P%P`NSr-
zof;|MWTS{LQ(vBx3WqE!i5E;&>_y{ss0r2pxER`&Z~9~gxxL9qgGtQms>Kch$O7!n
z`DgTnV0+!t(B79mI_ClCwo$n1kpb=^sYv%$w}rE(mQYYNn`Oszuz+P`V4={51wHXN
z;4ZBy_sDgCg%$npHz!t6u#Iw!)u0rUEW0=kH7I?uHa3Y2^cPZHfElnS=#7a>(G3uv
zRu5IvlvS0qa^2STA+;%B;H%%O-|($BEO#Jz+L&)0s}jzzkJ@mp2I*!e<Hc5fu`7BZ
z5PTvJ5L=ZAdPOzuvXmIo?b31k{eaJ_=I29BmcmN+o`L+_WC+_$CR;nWC9OMF1BqLd
zP{<06I)R@c5<>O;ufzRj1kGF*tJhYc095UI`Hp_J5ZRansgXgk{!I+00!kNa1+iOu
zb?3bs;_{xr9bBMd{-{G?;iG1IxXI!6MvXSOiG1@#rhM`kuL=Y&UltTe_(Eqd2)b)n
z$&606np@!s8m}ZW_9t-Wd`)H)!DsVlpV5Aqa)g5+w01lW79wGZ%C?2M2duGFhxH*)
z9X}rNaQjR^^C;?Db^eKOnBo>L>5o3{D6Y!#lo`l)nGpU3Q7QL<NZ&p0k9{pGd0{ta
za!+-#yW@4i)#Qx|syTCKAsDH9X^INN?d7S^jblOpfy(3^Uv%B(DsPdHo~@c6-FC4t
z7^kHjzmXDTN^kSk-x{VtG1@z=AKGa^iU-R&EW(SWZ06B*DJdahviC=BBzH!T8}Slh
zXS-wRD9G&EXdio+?GR^}SfL@)jCNIW23^QckaE>lOB#}!g66u3E!bk>q9<-j`%V{7
zp_Sn-IHA<pD`jz4f;;HHSI~^1MoHT*JGT#f@p@$Y>m#WzBlU}nB@!fWfYa;CIS`3x
z=h3GGl1S#;vLt4A@Z$@<bu;DkJR(Jbfcz_M9Jiv&ENTU9MplOksUuiiv`rS;0ato1
z<L2mI*K3HVSeqNK8!j?P8!7D0zvCX8VRCZQ2FZ2x`?9|J8@XYia({Q9r%2`|lSUVf
zWO)Lr1R~$KK9Sl|BSD*(f1)4as9iJ|ladKrJ=m88ITqT!%&h<ZHtJz3HN1Pdef9m0
z6`44WKp4@7`R!`@K{D8fxqN~<$BchUGH@1aFcJsrIG4oXvULuBbl!ZIuGpjXp9Pe)
zejW~go$k=-0pmYL)&d3F?+RZdDcRfA8n>65-RMkeml?YEqb~IFf?`RUU<+xEeqa@+
zJu(t4PgN?Xwz?1QLTD>xWy=quS+#0-O_qDeMdwauPT$7+TocHrTwkm(zUy&MV9*LE
zgcI;Ca$O6&!_FN_!Cn03%%_$7V3j4XrqzoWTfiO){X|p1B93k&y-XvINZTSh2u6%!
zcjB0f_{sL#I!x@Z#3oh;ZQ7!G_nvC|`LAGEf4u7V${$n<`R}$V!NX1K3bqh3j<Bp1
zY7@=AqrA$5waUUsTgjzq23H0uSVcf6!FXX<e$q5)RFywL=&8XF{_BgfdS@B=0KhCD
z+o=D6vPuf~5N-lGH*0`_qH=(e;cJJ{Z>BXFc69gJ)i1weO~}r2P7tRauUAQb;sbq6
zme8w%a){Urn!2xl(@}4=%?Y23&9<42Rt?m6^^ra~E$$;8aGutbAtucXRE*#|R`z6y
zes6YuT6(-rx!7WG)LUxWJubr`R=Z@9I>SztXf#cTMZ%Kt`)X7hizVEcW>iD&;yJI^
z9{)pcehB;ty@0J>Ed=>;(Gp7}JRdlb#G3R#CFcw<Qz=&Ccn<r$oGaq`RpLD;cpJ`O
za%I!EP>vkgX_P@tDd!AP`hBalq1kd4(5v29n`n9kw7moTl%f*Gjsv8#{|r!46oKho
zd+>Mnww55<eNgV?{e<3eANKt(bN%`g?M^feHwjih;!hP<=4e$R`Arj-A<<VIRRmL^
z{iHV7g7y#_9j&(JRRE+DfG1k-&hAK>>=*Av`wyF1c;JY*;}0XAsn1R+TeW@W^J0zM
zUTx9wL?MwtEe3##$SH9YL}VnMXE*|4QM?rdAhU5Mwcg0dr<_-FiV#hrevD!;P*~Ns
z{eTkHTg~APxVeJ>&4PVf9VV(L5jVW6bbNi<UwC2|Wf4048tNe)e)jEKE40@?8IrG#
zJ48y~nuO&S7;>hwOD+@im}^fkD65f?vLF4BLA~WQ)%pBDx&ZeX!YBtqK{c-WR6#4^
zyw-ieX-F?81Y82}CE>V`K?2LZ&ORtH4?d_K($ais<J{~IXp-{q40H=kY??EYoZd04
z*%1sZC*&mx&I}|S`s0WBSiqV}5VwBIQ(Jqd<M3F$l|=ww&W&uV;xXT(c;6O(kuKVL
zpqLo`ew<as@0+qT$ZG2W%}Z8{%g!dt;zsG?lUilrF7DKPbDK|9sAJS=3}k`ZK5rN^
zm$*o`k3{)rC<GHNed>1AQOpGK&C~NK1sXc*sJ^7pMd9=84~B6is?(XnUwh<}{wcl|
z<k0Ex82uiA%S9KTL{wSwW{yOMTy7Fh-Sy-s1B&(;C}R$QJS6oV)og$3^isze2D+7V
zrsGel7r)3Zr}d6bo-%8Qj?Z4*z72D<bjB#6qd5y}-%G3A5M}o+4Hx{x<~ka%R+upJ
z7r0V}Wr!ZGtmWHL=qP>kc2z$(Q#304uq6{dVPg1b#YhX6E=joakU`E-7&12_(_p+%
zzCmyvoAP8g2qe#udK?0FlO&ldzuYBG{Xypb2&l*8D_6uLUjRMh)4vhZri8B;OjPvZ
z`wD@;c{*I>r2EdJg5Dwp>8>M=u$o{)1_5IRyh)f)^(5fv$8=X8xfv>KHZHNZFzqLD
z%WaUjOvNtgJ!n0<!OLrX<qnc=3sv<@NlaT1$xwj8Y9%(tDAQtX&XsR#CZhEzgQa#j
zcLDm){p-k%HuStsk|oY);32S4Wcwn;q0K+2bJSj~JEtqAa)+AtU0R!8#+0saA%Bj_
z*Z8~4+oe47gie0OKK?`fE~b{Er&%YYqe+^@MmXQQIrWS+lG1w>V-Oi0CNR}-3z2+=
z(QQ4aI@1DB;Hn5~Q7Y|Xb2DD6twZsYvhww#b~H>V?u{IV<Qil3Vt|3hLO5=@y%sH^
zaA|_gs>vvqFQ?y9<oY#d2OCVy8z2hFNmyi90&j_PmZj1^wGmEin!RdW|02x}9N>m@
z@!WDkSN~~~Me^`OF}iY17yI3UWr0+W%(Jg<7I@0m(-#<N4JAwFLYnE`FCN(F%MN6F
z^MPG#Xmdk9bar?hhs!8h@O<lXmtx&$dWl%38k1o<S=AR(K=Z7pZn<l9^RKq@yRPX4
z&|U33j#Uq_Y_iTx>z;XA*oaM7198&v?w+Dp=Whu_&U@k=2V)Y65P4G#4QO+{;6Dy=
zhacCS@U<}M%P97kQL~a+_Fm^$0a~5qS7AZ&)k8I#ym`Lbug9UaoZp_Ft+OFh5maaG
z`)8vnlx)zcY;|?xjiS$$VO(f#7csmzf2;xj)=y(Nco#-VFi@Kfz~eLCVg++#^Y5Eh
zf3ZHn+Jnr3*h!QV26h5VbF*RLvFp!wt)jFnfm^Td{#ePpndS(*E6jPiH!ro*0ckd4
z%gE@owl<l_`Rew}@I6i?KNy7@mMOZi<Htj#UTM0>h6lvUG=R%aA$ui+=Phn#0CIXE
zN$c6p4#b{;FRJ2wr|0)GN3Qswe10v)@`6`RDtIks0zhexx1nHKiJ-`q&2lplvqI|w
z(&-WShf$CP4D#ZPRc=|pE*7kngGC!6)gRt>CN>}hSbA8Co45sZ;e3DMi)bU%5f3C(
z!QX~@ouKuL$HVwS)O)B%{b@F&hn1l)8Ge5GgXQzRmRq(#SVwDpXP6E<A3^PKF(|qr
zt3Pjk5O$=m9f;Xc*H1mtdJk(n{MF+?T|r(Gx)oQtD@TI4>cS}Mdf2^*5xv*s%dGou
zel-KwPVc#wS?2!FY!0%hjCyfmUcP`(*;k?>Vp$sJ={4m6r^z3uf$|Wl{QmiKQ_Xs6
z6j~zG;79cUB*Wc_!w9yHwNRnb0Y=&rJ<F}G!Y31b-HbbwSSu+2UYB!M-=}U1Wo=%$
zi9=1|0Mm_NKAx7Xj=E<@2PL@iBo@^?LqAj!ZQ+|JD~tO<e~|*QzB!U)1&n~U44viv
zPLuUrS)fI@TlgKTcRPY%L<`-^wPltW<^y^KWD{4F+;up_iC*H&v_iEA=`N{h<Y0rg
zj@Z0A#tIpcgG+jFRGM0kYL<w~TwYuHP_aaG5=MZSskkB%l`y-?3%2okNgQkj-%tO>
zp@fLg2Kdc67&HwdhZ~kR-6mpIxkV2fdBI@o`_D}q{wtk4Z-;s8*NZ65=A3*cM!Hlp
zf`vM@hX94Lmdl=)y!{~zN~V8lSa}jhirNYA_~^4lQFq>9A`+mvy93iudWHvCyx<I%
zk-+fbPMe?j1;1^j|ISILX-!zlpJ2R6M$*vl(Mw<T^rYxVC7Ypv5FT7q<#jos)*iba
zzsf-l-cKzdZd-iQTBD;K@Iq@JpGUg*MQmhi>z%d4F4#=-mG!_1O{O4^J8a}~<swZV
z&E^FZWiKe(IY-*Z;h%y}<x>kMk0x~#5#i!h-4xk~hi&lV>`Y#w?|D$j4Z^|OL`uk9
z5CCVvh&Y0690vx2aX(6c=vY<Q1ua{hoa;Dl@uv!i;RK>OaVL_=G=L@xsT&-vv6NCy
zA5hWT#XS$}2M(V-tD(@RTK<F1n!VjKVjz7rzeyduLiCWtz(CBHmu-glvEQh|Ia4dU
z-ikIL`C4xwl&#wM0x`y6Rvvq967*Gr4D7V=83<_8Y8u{FhAD#gUKR-IW6@Sh9f`~q
zyeXBg4Im?8XCQZASs^e$xC`PWqPrc#47pB9Ic*Lpko=8k6l!|BF;IPifvm;C!iP=&
zw?YWRJ}O8G2?3KJK^UL-0g3qRxKm&WExV=oueF)X_diVdgrwq5(yYSCwnLB$B-^v^
z6gUC(teJAwxH5Z>0I65CpW$lw+1PJM+zc01$~qZM2TfX{1|z5ticB*=9c7e48>!6J
zP3!U}=i|qS5efS{mAiN!PBUC~jDknFZb7S#tv2mn79_BARBdJtu@>RWCVl&&=p@HV
zDcm)4{0&^vTJ-SR4RIu)BjsAplh~l>SjSK8wLBRD<L~?{p_Sv3Qf!V2VV(vcy&BYX
zgDa?Ze!K96C~uR*kZGS0kTNI7BLkMUMoVm<7bQ7Z?u=HO#})4m6hD`}TZ98apjM!!
zKe~%-7LAf!VVa~Pr^tbjVbJEdtQ)23Yy}%1m5Q!MKT%;)s2ECw-W(H@IA!vMrYScC
zn$5suV8`QGOXiU^>s+&w>@~|VdkL?H->=WR5p-tG31kCvQQNpMCsWOAe(*Ylg@;n-
zh;n`plY6{Hr1xybYT1{&rRO{2ORe5GLe7>CtS+oU|17@UzpN;_uT$W(z^&w9WYsjh
znBTQMJj!0o=b{#|kdJ@jXb>e;N?Yz#ak*#AYXDa=YMAmupr+BQx(vGL%J!Pc2d{YM
z&v;x$1Dk$<PJGoKDa}dx)=bg8wpfEy=ejg8Z3uD>qAME7X$*tOBpYB31qR?2yWD4H
zsT9P62vrS~lD7%-rzrI!?~{`3C{yLnir({3p_EGy_Y;gmL2qUP0tyo?JOQqPv=b2s
zj}>(D*OV+VtUvBOSiS^F_FlaM9_Vb(tqm9<eXLM5dir&4*gJs;P7O$xMR5`$1Aewb
zxO)1{A4p1lYIxWdCG?3y0%>FzCBnl70pOrPp8E9aZ@%b`&z8&9*uAL1qqRnTpZJcX
zvfNT2?2V|0g$pqTAMbsQ3k7;NWR_^FR*$kEPMJ0(Sq>8Wy!P-)gC^P&g?6`25=!}Y
z8g*mt`tgPYIPOXkf<gU$Z!VsP66|P?`a>781h}&a9E`}sdH=G(n<wvZ1;D5%sXiYf
z?)j9%#aJum)%Nehm7$&o50$OrJ~4*>?#iNijsd3HyxEXBe0z*51gl|Pp60xwn$QLG
z)aqJ1b(ufS4V&lEy+o5t7poZ$Il`D<Iy%lYZU|V_Ggo)m?^D5=Qs-1Iv0gV+3eRh&
zc3)e_S=SSVaR;^gc*!o8OTPk*jxP*yJysV0XvmZ=-f)noQ>FOUOBoytInl4Sd8vb6
zV}PFeBi`sr?e1Q8c}Q9^lT;L-M3rF#!+~CBq^K)o`eM4ox|Z~haR7O824Rey5hhH$
zmhv;fOIT-Ub8wms(cH-x(ckTxaKM9(I?^oGEvd3E0|VKIea+UI0A~mZ0t2wc<q2=|
zB|Zp{Rc>BtSSuKOP)^4}4yhbB(l0pWb1JA^MGHSXV|wi%zGMSu{DK{92Ku|{DaIMf
z6?;|I%bBI#ILUJ%US>>~sW@oJmif(RA1Q?gDK%Rm<;cZdia;#|!)0nLWW&!5Kt*Or
z#0D#XOj{0N1;zIA_W}NhkmZE@V2*7Nd(vg88)Al$NFO<UngRb%qi$!-RyNBT!lSc^
ztV2vwi~Rlw8a;Jqq6d%~gGu~243W%Q4TfQ2=Sv+rQF=bn8}cgI+Hma11(<8H6N|W}
zt<{)Yq(ms+vf%l$R=h{XDz)YEKcxb4;iS(fLFT`KPj#+>uSb1TU8g4kCWDkARg(n9
zy{9y=P~T5tS_fQcM04j*P=b31`E8_|zh@4PqVmiNrP^R`&4r^ENptHw&+D1VEBu^J
zQN?7zsbs}PWYlSa_xx)io5f^?e;g*%uWFhkeXDhM>AJbT=qx_(tL#hokuK8h%Y#0P
z>8C`m&1=^W&t1Ecg$r@wNiJBzGZXDJY7v50CTAQ|l0+wzUgz*kSRtTYDvSpb*7Z|e
z$Q)X<P08ngO1fQa1yHg0)8_u8%ZDRF+sZ|A-3`+}gv;8@On@c9RHx~O-3Y%yV^<co
zD|<&9WI#x@;unqCKq62Z@WG;P3ygKiX{{yzy<<9Kss57g@U4a6w^-zC2Em8@IsN$6
zP?+$Sh~x)seJlR^?k3bry;qe;*E2l`E0NZ`1Pp=wMgJ{+vpm<M?ur?)OAwuE^#m9T
zOTz;|x`0EA25*mF4w5jo+)YfsHQ;>217}?zHvu1-&Ky2#!^=VSfw8kACB-r^<7I6`
zlYi;hw#sGqE8%tmCc&Y<CX5fHx^}2ivRxvl{h{b{?2_smET78mHxoB~={yRO%nbj)
z8!G#(8UE)!5XdBht7Yyf9$~9ohMjR3lh^yr+95B5)|rhK0JD1IlTjKWb+RNXy3!03
z+t>}I=e)Rlyc~Y@Q~f44OwtpNxKv7>Kc|%MSaf*f=0GrqiE5fLS%FDRe;5a;VQPxT
zevbKqy@rouczV|+v}FpV0k8+Fve{(Ug?^yhux4p3()-NK4U8KJv7>PnL@cSwF${&2
zq&Q34{Zzk@>zyQ&I7B|DxB=Rtv^_Qe5tA;z%>ICV?*+t>&1fX7YEf!^g#jSL4sgZ>
zHXkw#XaHGV7eIjjK)~3AnLW?;z+a9)3quS?wGX9F;1Bj0oz%tP{*lQajJ6QL-`>1y
zkU9~I<1(T4=6&beeP!y1BN@Xtu)az#D_2-@&Jk4%U?<NR<rziVX3YvE^il|u!N^tc
zgaSfN<5>2F#@gHQkf3{=Gk(%g#?|YB1W(UO6>18>p_UJv!TxtkA`P;wfu5J7I1ePp
zFlZFd%eE5sp?_~U^Hb(bc-HJ|w7PPL>x+XbpqD<>0eTy=wqAIm9VU|Z$s-4i<SWDA
zu$n`_+|(YRb_Tyg!r9W_W^vKXU;h2%?V;~YZjRY`gjEx&j|C*g`a?SvLt8&8WpDXG
zeDQi{CeAonq@;htH{IP#6RP)HBLNQ2qowC(w&&y?_xTsPum(N4VW!{U!YyzdiAO-*
z@>eSVcZ|(zh7x{`BiZL?qjDpb$csW^?rAw0>ZZhEs}v3WiiAbg7~iblt{o<ZU?VG^
z0N9`42QP~@c+9eK7Jbgh-{!h{ZUQRrqD0Hx8I@bd*KvZD;57SP3w!4AuQ96R`8)_b
z$wu3?gBr^k`D+cZRmy?BQHv*?jsp_DX((2wozg6IgX>Icw?wd#1{PLe@Uumn>XTTO
zx0+Y?H4P{J!@eMWkK}XKuB`BsiLB1age0NmNWSz=QS5i365TCUwtSQ-C;&4J5eaN0
z+~QHfyW!2;2OpaGI|+n-;`T``8K$~(0Hk|BD|=IJH`%<=c(pYpg0`63KrSw@rpw(P
z!>|_UD21T0LsO~LT`GD=x6XNFM6`{GWW`X@wH*tDS+}DV_*7ZYVx7wpp_sB4S{EV>
zn$z@M1Mh8IfTw_BIQ}%s^(M|wsynS}7f<p@C7nQ3sP+8m)*1Sa!ztXuCVFcvk2>}s
ztsBSBhG%**%6(ox3j>4Q-@WQweO8=A1%%$MKV5uY7lq`UGLHrXfw}_;k+bK=wDdg+
zhJYRjmsNW`-F*W*t<}U{1p2`3#L&|GS7fx#+w~va5DMhn=Q-@cqr783ro?-QutoSd
zmJ~<0#r&{P#x_QdP7cQU*0BFZwgwik|LBJJbol>&#KlD`Vs7PR>_97GrSD`cWNc__
zWK1h%Y-8$VhR?vp!}C8Ap_24>n&K%SD05r<WTiH!iJY=0A>XO>x7Lup;{Rg=`u{2d
z)Bi>Qx}SLdyy>F2<aY8M$9VAR_FPnOjoQ=vkLnEnjXER!|B+X_?pm_U>Y^SYl0nh8
zTx#L5_oOAUo0%gR@t`8nFsdEcl&q&pnzxU{bpS~zZ>b&Kd#YJ;v*T^6;Q)*fM9cVX
z(_R;mDZ}J0;|(dalR2o8+acZQZdJ=oK^DXCvO5U568L`hdJ}`=^IQiknMPlY4=exD
z^s9-Xsaz*c`Vu?fN)frDhl8n0OlEdL%N$>Pok^HDQHzTZxU6AGi_~buO%MQ30#VUm
zMS;nD&zjv(z+}PqwZHNL+1Bc?1*~onfo$FjtRkIP&H@c$Wj8T6sy69XxNlHevs~M<
zaaYd!<E((hnXJ$B7FNW0V10aqC2vu<#QUg<obe+SV_e*)RZzvIri|O5?YeBMecvMi
zX3cq808$<ToHw1JfR_D;0}JEzG7u?}nOh5={d=HUT_SC~oex8R{T~y+_}?Ue;s31v
zP~A}{6}>p|r!TUJhaqV~=SiaPMU0~Te^h7sZ`2v-*x8x?XRp%ZvoN#JvHtIF>PtsP
zLb=2tu9mrXPfy2~g769;i2@ohy;dhHY0HY8MI&tfStiH*ZW3ZdAHZ<balK2bCviDR
zkwd(WOe98m3PW#gNaA;Ds-j`iD<6J0b$z_Y2IHZXJ#38ew{0&Le{f0`S48(l5kez~
zkZ;TK0T@DJr5SnQs|=oLD{6`-2Z0ShvxE9W>0Ei#JA^_3i)CbBV2Gla&7~eB{oC#+
zR|Wrk`GC$G{;PR#&H4Tg9vg?yMgy<*{t&1^G>E%eOte<YA^UB~xv=H7?KK7918n`<
zeXu&UXb(x`7F1gfUEzS~kgDSDEm4qs76TyXq#qM#IR|;{(%P_1Y;{+Xp+t)2o>3r4
zm8e#6J<ITIY9rNej+WWHVZRQn!ET67S${E)+rxMa%S@#Tao$8=3L*01>DK;1y-<ov
zKRD!{_fsQ8le3c(T?Tv;>_0?s_=e0O{iyE#^R)CazxQwPMzbixh)ny8h1e7`%^OGU
z5~d75oQC9P)(g@S2i_|mO9nXX<uL?6hbis~4Qci;yHN(h)b&(D<6gY@SIaSeCD(He
z?YgOc51B~)rJ%sr+&UeitjM7h3if->m8uTH#0SQR)$Tu}$AG?aY7_-3i%3XI?2oei
z;S>?egja+9CL>a~OQ7LG*<(b1#J3#2N~A!YF6=%^_Ps&A%oe@kyCx2aX0UFyjF10F
zeILCq<dsGq-d_WaH5pFDs&kMwrb$R6VD&FRNhOnh<T2ZQmwfAK-zU@x!$LcTFY#oO
zbEWFag(?a%vh%K%)uf22z!+$VirlZ7b=7c@=-)Pq1F2+5d|(%WJz`N_xy5nn<mp96
z@Y4%ro04(bPo7?h%iwvYKv7<BvH#|`i#;BdSzR>`D|k^jGNR~EfoX!vjlmE~S6uT?
z@6Fa)EO0`~*x)c#u<;ES3KY8H#uA#)Dds{wwpY%B2h~Gznb5iLNq&ab0H<aSIVmmE
z<x9d;-q^4usIY6${1EnBfIaw;n5MNH-F`YCp`NG5hX2IIGUK6AAN|<~;qb78huSef
zIh8mUSt)B|@13CGyKDB!5k;+RAFKFE*A9eckpmcaZz-gBoiC!f%Vp1@lM>Iys0ADP
z1f;#TDTMu061N!CEKNfFOVHMveDjNR0$qu_=OFTxJZx6}OOh2b=8iDgl_73OMFQug
zU?-jQ`eHi^Ko5zs!Tp}ln&3yI#tdw}QVWmROTQ42vsp#BGgIAJwXv9o`6k`3om+2e
zyFcBPPq^mBcep!PXC4^FMc-%M8LPiR>4I`*{Fp(PGf$8+M_z4{v%gkZvf4ET3Xe^Y
zD5`q!Vw#a<dwgxmc9Un_6}t*4!B}uhiAEtca>A+sXZe%^fMUdf3FjI>GLWBoYeU~2
z@;TdMzG1MJAhlbL0e_RAQMtfJcC`97j8dN|7w2#xyr)nstdcGhsz?vRPJdZ*)jJtg
z{&;ld0R|TcDXj}yWGFgot*Zk<zWP^(TozZqnwVX-P94IKo6WhuQR-)N0#h}{u5j74
zmg`-}iaGa!B_{@+cFfc<BCc+_St4HxSd{O%!ALu8$v>e|kbS#nkiM-KmEbSBOAqCZ
zX~nCND0wJry|F|V^@ifD|3Q443I|y{+6Nps_zTkTNITfNq~(S7Vo7>b_He+q-dk_|
z!op}NMHk44Q9{Cqt$K}|oQ<m4%bE?>3+rIqquAKNTQV$V5{_PjIdR#_<Yb4WI=K-N
zl@G*-`W<WJPmaZn_$j_(Mx9Q%LVH59a6jU7AcTr+ne%XA+nDNxvXAo&Z%m%<=mW}l
zlodDEDHZukK2VFvDAYyHqez29=mmML@`K5cbMaO+Y{7_SHY@~M+|vxbAk#=T9UL4X
zRWjhnEa|7Ib-CEW;zM}j`=n-eM-G}eB~i%*!1s}KXGI*xJEMi{8QztX(zvfA7L0r+
zEk^?6ik<({<y<YRze;k&T8+(iuu5vHon#qm-P01s<L&OjB3pkVIL<5)IoU7dMh#tL
zt}mNAjLZ=x54Y91_j&%gH4_TVhqY?sn?t1+9)s!;)p5`>_FFh)1YHD@ujso%du&o!
zCY4U%+1gzuYB85>a6<@^sR&YDVis8v1?Ba-=*W_}SvL}|j{#nVN!=g`{e#z!K5Gg#
zS_}=|TLX4+B{Kh#f-N;DUCLmno!qY*PxN%^_R(ARsVa#fa<R)lV^9rg3y#QAHC5<3
zLZM`><&o#eIS9l=V~#c47#Y6_zVbWXnhdybftJ$9I93IFZm9{Jfdi9T`Eg&axp5}%
zuaep-rhU@1Kp{2Ked<>($rdh<YhO?fn_2>+R9PIlh@CgJ-)P7zIKPf{BudLw%hSYL
zHWLPmbzvVTmxc0IXQq~KHaHvm-n9_+fPNQ7fYz<Y767MtC}Kwnk(CC+hhk-IXl*Pd
z*a?Uh3I4VupQ+JHD*X+@V5rpwa$i5#{I4hXr36Y80OL+hg-Qx5y`k89vbT-ChqV^m
z7g1ycXeJtYrzkf+jAl>T?y9J+J?m!_j7xpx%hl^0u|t1tBiA_^fTO{-!gmtL+L8$6
zF|5*ErpovFcpErIhvpvIVu>&T!ZN?Jv$onJ^O609^CDxeDASfGFVFS1M)oJh>pcqq
z4)5x>E4)d!OJro6BW^t$X~SjAvXoF@h+s4?!v1^x+N3z~3sQ+Qu&={ywYHfaxkF?7
z^<4J%+pAjutf@<#Zy!bb)>oZx2#prYnVEk!+$RQ+g9Mpe&hoJo6sQUJJ$4bLO;__B
zz-Ca3U!Q$~z!T#C%q>na$VpMpg@?|xe0b7xyo4V9a`{lRxr1po62u|3Q9rtHUA;r=
zG{_+ahlo^eGt_^RlAVl(y+sgnF0Y2G&bf@xjnThtlZrIjTa6Z8WL~%1$0?&=Ph`+d
zM14~Tf8*yjMdup~O_EzQ(s1+2D3gQUhl|b7Vn%ktHd;!ouuo5?*Y?We>$vFG4(T;w
z)=|7N?t<D-xChMx-h?y|Z!eI|)!BM`TA2q8gXnmqU}};fQ24pi21<tO>=llWuoQx`
zPGuCyVBL9qN~q0-*=#WTM(7an5Od**JfFj{yJ_B`$H>Y-t3xBjq(zH>kUU8g;beMX
z92z)8RI1B5K!pVp==VR|%o*FI0ypj0+&oaAG9HHycRXZyWOFN4MOs-J3tLD>x>rk!
zo`y7{wSj`F&6UlPClp2xT7HC3(aGjv)IK#$O1B#<!@8jMR2iSd{&Gaz3k|!Fpn$9g
z2)cE&usA5x4ViYVRW<H$CnwX)Ts+{y9^OV_DZpRgg#0Fg6NtmIbSBIq@#d#lb}Shs
z&0YYOlJN=_GkeXLsG(IvZ^iARiL*BdCq12b{c2s6o`y+XT0S^cv+PKc^wg;|sTHy+
z^OK)%qwzova`hK^8*+ZowICE`bBR_L=YJZibfaP0pLtCMQL}#2ac&bwG=?TMk-%ZK
zf?R2704fYrSH89<r+94W9fDtZ3=zU6?<W0(2r9b?gV`U;abpG>a|+<3=?}b&I^G=!
z9siKjv-tQ`6DpLs;<1~o%IVQHx_yO;4X~#!%LNb+t#&%a9r||ojUtJ68f{_z+^{T)
zmRj3plv<Hj*K8^<SND8}n3Yy|E=zDum8&9tL(f!>8%O_;bufr8Gu6vF$bTub0lW}F
zY!^!tTLeOX?NI`&nM?s<iXjHbtQoNi78>i%!n<#KDLf+2tj;l9xKZkd=K-m+<+`cM
zb;1r|TWe{oeHeu5fA4(TYaT506_|E|f;?LCh4s%@d|L(=CaVnm<*4<r%L`W?H)u!*
zc79(^g_){jhC8~9)j7v3@=Doyr+v32!sjVy)R+y@;xq0B@@UrAJ~BQyUV|;t&zrlD
zc(}$b9M8n%UbyYtd;SLVm_u~Ex0@H_>#bvq@c8MhwM7{4QWAw~o{@w5>vP<6MFy-k
z+-^<*zGOd9?RzWFaYD*t$XaImLkkl<YLn}l1b)-Fwd7q3Dy54V<BL#j!jMR6h6pkq
zywwl~<m+Zl(SB14p3DR1DZD<VyBTzNq7&=}NP@#Y7$?88Of~L5@I6+GBLwTjX)#*j
zF=6Ki66A9)JyE4AoHG@Tol43BtW=cB@|+l}e_;W-0h<tQpc5xLCH;O(H|L`EXnE{3
zU2c4H9+U7#c1qsu&`+sYad@-n6DKL3O9I+kt|U(G)t4P{eorc&r{e;-(R$fggjkO!
z)cGk5>B?FOwalNn^I8<W;BPcGJcW}G61AfO-)KVU7Eo@$v-)l{K!T`TjQ<H=8WvE*
z+t2+M_c^cdaNkTa`gRgJHWfn3+h7-(_%C?(7ZLcXQ;&p1%~is0H1N*ch^dv4@55ji
z_w&$d7LRE6YwXoAR9p~Ni*Iw}VjdkGSv9`%4B0}>`=>HqVOvLgEeA8yR!eP<FL=#3
zoArz3`44EUgIU34<g3gRnX_rXZYKv*0p;x<l3XJr1K>4^qe%Dti3D=m>VNd97lnjP
z`ZOZ5=k1i>V#t&GiEfk{jKOiU<Qz%7y8NZdzZ(F{M824J&OVVZ5X8S1y`YhO#qbR~
zybC_7s2<<KDD^?tZF7ern_uH;Ke<<fw&b0)ZGmkw6IDzuYLT0gu8dq2&Nv!&_`iz~
z?BIt(=b+Yf&mCoUQ?W}+^cr|q<^Ul<<UxfkyxGs*#7fP`AyQdjv_&xy;&VOzZ=C+6
zse!})Y&>nqxOkgPR40%GAYg!P8GBD7&w9`BEz;IyTF;x5%nhSU8O9YalmzU2@GB-7
zc!rh!!8KT$Y}S(?1OZr<%m)~PkB+`PM$;JK{5j)RSr0Mow>fQS$6g0Om_rrYN5Lv`
zmj*<G3(lpi)unA0PrSdqKkA)-S}Dx4Xpg_cZ1^6(X)dg(Pv7&H(dGuF*4H~q3Y6Dt
z^=J|?wL_uHy&O=X90FS=TS4r-nZ7P2fW|)Ebpc~TYF3sHh_?NW>1F6Z1?G7FnGthN
zTIyO~0VyoRJ&yuHBV&CKorgHh;Y1#*JJ{hk`YX?1dsXai$+c_?uU<Vr&>zNk#R<9D
zCJq=xcDe5QPVSQ>O8KqE*t)fOldE|-z?VwtKT)tj535*lH9sff`tNUMn>xMjfxCER
zfJ5fU3EDKUNFNV9&*lIqFMH9&MIcwG%D7e@^K4o2V#S^G4M0-Y-xLByEpX9j0aTn9
z?P}sVS7TtMC$YX)>#5e-+^XC=mr`>S;1O%yk2TH7kVcX?E><qW@m^|joDzIyRN`&k
z`clS(X*Bd*RaCt|dk@VHVM7&B7M*qlQHr&iG68%~r*Uwq(hI&huos+LjKVDE0usD4
zYVWnJi*^*hA<&74PibV(?Tz3TLC4x?&KnnIe=$|g-@ZKVE4(duM?;p_G>!`V%#QsP
zA!wK@Sl8e|oc!r<Rb2?M=U6fj<KaqktE}{gS@g-nzM?B~QjMg3GunL3hwGJ9NvuwK
zT9r{AsBBS%v=ti9p1+-&Fn#}v>E?uPj(h$wMGp3-q0IL4BXcP?ea;l)1PjcDwHY7a
zxnU|!G_=z3UVlH&>-8*wvNjSq5v+LjtG6hb2T}B<9Fz}z(a&AZNRG01UiWW-?xoC6
zOAd1mBR9jjur98{)getF+-Jk}=_VNb;|zn(zY`dCI>%YK^B>h*H*9{M$;vW=fmge>
z=SMpTZMr*wiSYr5X4a*f$eMf2Q)>zOl^QD8WVv3@X%yc-1ho)+0|epVxMBX%-@cdL
z=8U39MZfxSsz<vV;-@=3PkXtDh9cDE_`M?bBeRXW4_Fbcp6SPpd6LFdRqzCeAU1O!
zg9gq0*`&e`w<o9wo$YKN0jii^!nW@{4_`eu9NKZVW`2FQM?KA7dZr5?{3xH1fh&0Q
zNwVQK1;M+hNR`g2=Cbkn^~Kr0?T5I0%u>|N#4|)=Dyq(-#Q;!dgH#Eu7MSg6s;)q~
zM4A$!)GeLVwZIE{!!lLY5ppsCusW+l@xyG~ouq`HH+~p=ZXR?AJBN?x9#7_k#3D~e
zLBtQWjH|O<ZvaSWOfV!fM$7ER=54x4KJ8qvodEmD%lmN;fq`^8TLh!!GB63R8?8Cn
z^Dc%zYv--_!_l#?V}Gs^<$q5wFHS(h8yM-gBj`yG)YYj>*L(<Pqko~u9|2D*TQMJ=
z1z0a8J9qV4<FBagN9^+8kkf|m{XZaiQ5BTY_m0Ku)Ff8R84|Wzi&`4LkvsK6H`Ut3
zid!&MVYR2<k*ush>aMQ2f8Ak)k*V5TF42fsPUWFo9}lzDnO)72pawDEp34|*ilBx}
zk|}iv{(wI4YP^kSSt)!j=ORv9qAiSS8zuDvDZA!edZ+`UnV0!SHhnz{4$elGP$PvL
z?E^blW~Cy?Yu(VBB+GUp1f<m}O^)-456|kJ>haH5dIoa_1e*PQ5v<BRJMPJINR*;K
z;rN9{s9pd<JB?f@ZU%pPJ-Ltw%VhE&Z_@5*;w#aPs;_oKf@$Bp$e3rOE!=2L9`wAf
z@l&~3>a@*tfjm*!JOrWbGA9at9+<d9TO+<Vd+%aCG+0$+?v`!zD`1j$3CYO@zM2nI
ziB1lY8wHSz`<2bGATeAdgDM}zn1c(*8;BOo6`Ke<P1EjRLIOZ45o2Bh_)5Z@{eb^2
z{|A~Cl!oj7o&D>gO&!*GTQJsHzCxQ=L%=#^%I7)SVSr}m_79tGE7nlkm%xzs{*_}F
zc&|%Oh-+|PW;!VQ+`yIQTAZq#aFSsX<8~eZOS^~L?w>iO3B$VITg#3BBWOk4u7_bK
zn@yo4^$dCtaJK8ES4{6R-IEb9g9i`|X~ACc-Bj|v{>sGC^_HrySqwsIbAp9-rw%hp
z50#f20zl#UdebC;DYjm2gfpIfImdD&L1G>7x{KM(9MG8Ce?@vK&F3BOe*uv*<(UZv
zHPI0NU2xc{`loR2>vV-)azNu=uo2ouuHbX4dc|}n&Q4M6_25hK80KA==6ei?ZRj-G
zHE$8_AaOqal6+_GQ6+({!Ef$l5w(byJpz4s(x!T^e>&F-4$jTBr0zpIWk^n`o>VCR
z+$D<Q<;LAltKhUsi_sAdsXN+f+xEa^&HOa|**E4Q*I{Brrq*CBC3Hl*WvY8C{@wRS
z0wob#=ee<Oxm9Vw7{vQS+<2*Bc|u~C(f=FNuy}7cXx$79GkfC=10pyafZ9r1lFMTY
zcu20GZ=DWI@z0N;n)0hdX{GiTbAs)sT&unw=5}%Yr`NP`kf#~dPVls!hoeYB86X1U
zwCg+m5`^$GY2)*cj;<MLD#^@#?jCq!>uJyU>dvt#wQ&4zc0+ZqT{IK>FG|g1$9?0n
zl<BS{#rZSmInbxH+EK#@UZg8l01JNnlwR^+6LtA-K7{@4)?m1KWQkPyQu*&R{e}qm
z7H5w3*9hP(2#j#Bd%-KZjL}Cu>Fd$-M~x|H)y)PyBZVogeT~BMtUW(T&d#E$((YDq
zbW1CRx9YqL-`^_hu(DoBgu3G(zGFg+1Nm^(KciFHlBguEl-#r=@hOc?xy;X)AjmO~
zDWQKlx-TZLw0o!)>=_#Q=g%I|58nJh>a^a3))1D1;S>w+ml*4pvwA9ROx!$QoZJBS
zBa8Vr21bDvf<a#$Hgg!Y$@*@ZPa$V<vo0%qa3_5UY9I$2V+LEV)u@7Vcd;liQu(Zf
zRxfdsx-Y3nv1wvNe~|}9J<q`aVSVlM!5Qy-xkRT;Z{p>nG`<y@&w+9Oz1!9hXUH5M
z?J#@w(3MgE0&6R%&uWrXX<sISRK?;kaQ<}_o09-hg4bdt-Bd8xf#dW<rH{s&@QEJS
zEyEks36G}rZAG@5mxF^(G2^}!So?iU3lfxA^wkO$ds?!;<5okTxtgt_n+j^5kYkYs
z`STr|@tK7%a0_GDi9V-n*9T;Apj@(A-reiZunWHtx1&5L-J;}{v8bARg9+J&g+Qgy
z4(R4qUNNsaQLg!*aT<ZA@6VNJF1g@&2cE!*L=BfOmXOvPszNAbf(Uhk$1RRe+W!)s
zym9E!DtU~pGeE?;KopR{=ofR;FL#Z%f!`IRbQZ<V8&Bl!d;ajl^2k7Q{Qm$mK+M0M
z-YVsmpBamPX>8@yNtaDJJ%ZJRyk8n?7U$oP;7lPY>33B~%~$hnhtWJ+crf>c77M9V
zdxI5JnO_#6kYsiQ48xK>zph$!M?B=00rSO-@XgC}m7PKJt~BldDbZL->V8vQz|?@1
z`D#GEHxgZ02Rp`g3~_s@@++JC7b@po)Ouw-@W1JL9uFa9I6H1m=RU+tKi)czV29p5
zen|bu=A;>13(=)N2BK8=XTBZG`^I6=M>%rI23~}MIWn4;5;4>Di646_fDUb#I+|no
zwJRs;gJ$e;Xm27LTu$&8o6O@%?YmL*Jb?_6=&xd|b#Ocs#t5H6vtiO|%fC$leXb5}
zX<#y)9oLue@!r-!fqieE6>}(jzV6v61>0!$9fk0tU+Hw1t4khlt<%UddMu$X_1>NP
zG6tZ4Etp3$9!`Cs&@!7^;OjNe&*5Q~r(<G9^<XS&>@)~5coGIwv@U=nE}zU(5*cgj
zdO#3g>nOkvbXE1me3ggF&`{2}!gGp1QEs<>DyYDh$K0$;Z9g2uG(D=g$EN%Et<RLW
zUG9W-u<fXxT_Yr{QL>@np-4=Y-l0UAXR!%Y-%(7ytb-K~UZA}9idfnnuCiapTi!hC
zw%fe1=xNxHOyy)gKU(=G#oK94V`T+ekkM$?NC9@NV(ksM4}`FJ|CAaH#;#j`1V=uo
zV9Hpxx}iv;)x}?kc4T0x$AD}|VKubi;d*%LjrH`Q{81hR>dhYTm^lFmFFk<bz7vdg
z-2@M4s_rr@SlV|-ef(TVx)zLF?9aq|YctB4Up>_YO)?_ALA!|z&L1;O<_}|c7>!>D
ziXN@SBVyRD(jr>+3Ff3{y+8pd8IHYe{%Of0(917s*ERYgewHI@yZ;3EoM4(9L&dxc
zy@`vf39v{6XhSZ1s;5DwkKZ{_FHfs|q?8NsGvIs!SC94@Bnd7Zhy|RfE0<zMrY#N_
zQ{2{_N<V$o#~i~%z7xcT&mpx(bz1UU{}}18`Xh~45>V|`&($3Fpmui$BP~V3m(CO9
z>8R`LzP~XvPL~Gio<F*@%8fN&h7JR|SQ?#tN!fys<p&wGGUERdd_oKc@9?2rx$5UP
ziIp`TW}$Cm$2pW5ODjSs!S#!TA>s|zz!&6KO-aO#C?>*??So*HfbC-*?`YEW`2VZa
zEg(M1tUp~;`ExYP#GswLn8qbme0NFAnoiE+U259!a!wM+avk7*hw1Lk0asNke7PjL
zu%x(GZX^$s1w+1LjL&L&kGQ)jtrj$`G(7ewAcNrL`hdQsGq-(ikM27(4IMXX8+Qvz
z+M=#S8^l;XqFWlDdR0;eDvdVNQ{ne;2M~n$FJbC&NZQQf)_J%Yl*FSSSl=a;h_>mJ
z(Ol8V2ZOP@W1%7NrN+P!!H_^%&&g+HeKd&CjLzkS9)}kby8!GwccpX$SJ5*+w5j5Q
z1!R!Dz3Kr3;@97qQ)1Cya4`W(b>A947(}>f)rTo2io6v!%poIwbMEa94v;09+#h%h
zf*9Hdr!+*T0_U@mS)=sxZ_O|c9h?|<9*fK>Z$^F~Td&NcVTFMV!T?l?lUDrBY<rJg
z){91}y6x-LIc5l=AZq@Y%r{Ia?DNbGH)F}+tuEAN+YAK>8%X9$5ZZx>hx+=X4j5Y^
z_*{;MKEVBIKuvgVlbj_s62cg}K;iH+j(CCD&w(#&-e=wvt!$c!adlhQ>4sNpSwms>
z5GwX;Y6SB^h3XX&1}h0An03Dv&x%^t8OgHk>4S}3%iq5qP;n_wXxeNlU@ah{kbmwe
zM+_e&IJ*}|<RvT>X(T3{vE<V7=;V73sdYvnk9Q@aM!4vM^JY-7X{C-qhVf%VUnt+O
z<RQr%(GbQhR;IE8b4W@drEw4BrHfjF-K61*@8gzrPS2otYwzZ2?;#c)0j@OWBibHD
zE&aP|)*D^<tnttKqX@h<;@YuubrQbfPTkG6?3v0oOx$mJOuNcV%`rA@Y26|dsPkDV
zG_M&S#a^R-TE%CM+?nExz-?CsEkU!%gKVSssse4LNRhSA8@lKn>ad}(+?xVd&ZB2g
z39qU_X&hl*!<|a+Ik}yFMOKHDFJ8q6IzGB6gMs=Rr)1)MVv<9^T9oEE!_Z|}!R=}G
zYert~E<E$_V}TuAUmvOBgh`TSdwV-(xA-?BjW(0|ys?Q^(xwZtVd^Vm9LggKTsd9A
zy>kY~s-APv6(p?cUJvy56kPbrfCQ|jl;0%;lle?NI-?J<89T1qaUbp;C@3?iD-+A)
zh|lY}+1+E<;n`h&;`O5`wJ5E^L66>7BdA!INScA;PPNmKaY*G6bJxna*H$}hj;VcY
zf7&sk7wJ<qf|sH8_Z^y309el%?&cU(d@x56t>Ol)FKLE0qEilKz=iIt7I<{CLTPbm
z^1_gL`6js;WI{lCQcl`9aa3uDK+cyE^H`UIMVOggMD_uMb`bU>1YD5EZzKeCHQ~(~
zNB6!DD#R&^-MjxnB!Nl;9?oc1O;$wk*Lpa~@9I^?R(S?oj-i50<0)mNCiftLhO?9-
z>7Ic?JPDNEf!W3E#wgO!CElxkr|onTMxi;5NLZc4@{DxtSJuwKDM$N;5};>XTg3NT
zlJ%9e{D5y(lxz~2e0&0oYR7tibyos!cLJ*)!vmMeoQQUNIHDlmMywVl_;@wGbF2N<
z;y1i`yytZ<RZCX?Q>q&)7dQY4oTEkFPKLh%FPe)VR+)#wt@^I@t_Mi@y(m(3H^5PR
z$PM5x=d0&@({d}0(<$+gKa29o5Dxf)m|rzv*726$%luCg9t1nq@~l}Qm-7r?TJ@&6
z)4@%P*<bplaa0+R9+5*LmMQt}gX{<NG=jW2+s5%D>|5Rbjj=WUzclr$(%+f-0quMi
z;)`eSPPj#Rq@JZ&P4e#%(rU|xkuJ-#?*|8-xwKG7fY|XVDcD*WEUIijYL|YTysg`U
zA%W1WX4pO*%#2yRqaRe!IXDX!K?!ap6s*E;)hlb0kpOEo_0gh0{LQb5gb^(!5`jY9
z(qW0iF6dyEh17L9n)?U;7AI9y%P8&IEbO!(WCBD0aO9bo=~{vUD*9GmxS{vY=zU?_
z#7o8adRz+{%ylwxD1oV^A`1;s>-(2fF*NSh@mGo1vn#LF5NLVy0cP$cTQ=WVgvb5k
z>j$@_ErhpkvjZKIirP4#Nc*K$I;t_p9@oU%T_lr0l<C;Gf#T59-|epxsK5w99wcWG
zKijhu_M}j(z>i{5qFyI)f0&NMNE&j=failMr*t3?n0sh)e}!eYC5K>(ym>S^SJ(2o
zjp1cp5z_%oV9gKuQH85CUPcTbb?UPv{ahm9>MSk`%y2P|z<9KYh$i@WKE2l~rD;w;
zwCHcyeP!G+F}UeHSxM@gnKg~^t@6{`&tAt<jfHA*REoim!$U0<VD%KxA^@^$A7DJ<
zMum&fW$Hv-mhoevQJ%xog9NbVd;43B!Ttq{5{<#K+Ro7ST(a34TbadlENE^}UhnNE
z*1eJDuZWW^<ikQ`ra@>j*1LpP4NrsP2pZt}-G?61>F^{qMxA%#z?#Ydfv8%W|1LNv
z!YJbyncjoCVYo+s*Hvl*&*kONc^0=HsqDri+yn3a&0)1O!T?RQR%FBu5n{7GSg8%U
zA6^J481i;oy(hZF|7*#89jPLukB3J0Q{j}*!E=8zyUD7p4SXKA0UHfsnx8=E*wB<I
z1&l#YyNWKwv6H!|bSw@(d~ae))?rofeIQQ%IFsN){CIKOe~f-8|B^MqD@xrSZxKe2
zUrBbm?wouzzzav>s>N|oG!W3Y^T8Vef0y>SqCGYfzN$XQE6(~An^vnp8_Tz`^;m+}
z<S(Q9cZU*+NrQMKD$`d4rr7-y;u$3$02eYn6*Pb*ON=mb$_5RfQv9cSQh=h7NgS}x
z&)ViW&FM*-^Er%b=vxUpAar?YpCoD~sCK<n?|V`0u!tq_=c1fvvUnI;E!**m#w0V<
z)^Z{*_x&9X357XfOK0W9K8yhOeAxb&Zg>EIV(^BBT8U4a9m8a&R$IdS%{<zbj?D2I
z8NX&`;uF=nGw;*63I-=Jc9|BavEIfAqQ90AzpYyB-qTtp`NOno0J4s{K1pvs)lSKF
zJ7y8b`40cVGQHgj{^+8qf8;VWtQ2$U@PPn8(785cef-V8BWOCmW=bdB-uz)S15h|#
z7COr|fp}iRc(phvJS{XfnV5^PDy1fHR|LMz99fDCUCfY<uTTi1GoG?$-7wb-cVapu
zS3yEUJjx;L!-xy){V381P!vJ<T5g^7ojEV6&;{CnEt+;&@}^)T9NffYSrWtbEfCN7
zOF!L5K3E|@uy1R|D)`%QS{EW^#k8oq3pjX<x&ZjeF%v|P6%a8T<U^Gn%r&0P9=Ez5
zHdvfRAQI%Z3s9eB?ip*+yaR@ff3dy6b(JE}{qj|D3Fj2M!A%ewafptbPj=9uJH$5h
zbh2QJ5%=L$UjQz<U~(obxVITX@(flnxLeQ2lWY8Z*3l)?6YTRe(YpFv8`=!viGVR3
z%k>(t?e?M+<Z1o|xuY89$4K3<kdQe8TK=s7wWsbMKs}zP#_uxjsTyhtdeW#hBK6`s
ze3+sAvk6&k6V!=#)SOJiB$=}LR!~o0RB|-r0`<8?d}bl$-jncfNQ5e+mFT}&K1nez
zny{?DvcWJ9jXertw|%W*I@SCYR<a(6OS{(IOkqQSxlV18dZb%i@!Wm?dF}6giZ-|F
zO;_ZQy|?m(abDMAnPF$l<2+K4bS;Nh+yV=`X@JjO!*PLfCG#aO)HvWK;~ukGC!|%t
zr0jhL!r?iOHa0(4Mxx5Ak$P-pOK3@@)Fe<=arK#&)%3*EkALUkA$fgXv=OX+h&Hp+
zZjt<{CkswlR?h+JV6%qjuu$#hYikGJaM;zd+dbV{04iPKyHom#_rUWBVGx-A_|q5B
zCyNwp=@QuX^B}<@PvYhzT_gfK;U;d_siINk59W@MBx1~mLuvx(BqR!mw_{ECL_PV5
z|C2U82`A7*kQkyrf5Z5YJ^AwLDca>SzuPd;T+kQ~DnYzBu~;*82D%c6Db|HIbdUx0
zFz-t4v1Hl>KT0cq01F&b@w}q+1>15QUSWO}oLwjY3t)KVR$Yl0wrI2%A{{fZI-TSj
z03??0sQ3uMzbuVc4B26Cl3;&5vlJJ<A`+spuUh9qbSu9!g=H@PmJn%yozXSER^y?q
z2zwWnFE|~+JA4xn{CaWX0~JvY_idG0=Eo?^zt?VhG9b{ZFy1#Mv|1M|ukvN?Go<f=
zko>C6Gx${57gGk>_JkkuU+>+0Y^f@M5$3Oh!+UsurZZ^4hvN@n3KxJa^-i))o2&ay
zvpCt#BT0Kp%8r4WTgu<W`8Qg-0+0}*QY;QcQ9-}r$DXImdQjm(mpe&2`eIC*wMY0F
zA<v`7mwklKPzlZEG>}z?8H(iMrFW<$DByISjPt#PPTU;+^a(vM<06sa%-h34NvO!P
zFoFW(_PJOk#MV^4Q@d<TU!?=Vuufr}(E5G?As@=3YN3U3tUB_dN@n9C2)qCDQS#pp
zzdRS{5kB~hep|TLq3u9S8~^Es+YV~4`xz>q0xEJueb-dmw>K1NvEr$s^c9%!%=CR;
zihJqU2ShhraQ)H}dVA&1re^y_AWfHqKC_tbpi3M!aTRC41^1y7n5=elVj@Yj+l;CW
zXE2l7D&kH_t|s$KO}&{Qa*{i;HL2L*g{20>@}!}oxAZtbkAt81P#VBw+07Yx|8DS%
zkfr!?aI6a1-RS9U!qVr^Ka~%K{FH(k#AW;z!iBJL5jEdt)_^i61d|9%glT}%MVy7V
zdGG|t`-&1?*cGY6Zy~4F#q5h1^nR|N-x8{XBW?UI3YiC|?R$l!a=snmYLc7NXnzjn
z<JD797^OF#pn54W@t%rcBr)4Aoxl$BoV<QR1J_(Z9ZdcAhBiGd>_F=>2ozWvpQ_iy
z5S0xIb&Y!G-yk*tpgcx+P4;2_dTD9UZy{M$EY5K}|6iYaa7t4tgQPca=gci{!VO~%
z!D?mT9{vei=~gGm<gDh2RQeZJivEGEhD{HKc(>!;*;sNKG~>m!rXHqh<vR#ni}|NV
zcS;CJfj06~nxJLk2tq1A?sKmS>Rdf)!`q&TIIfMpio60~B?opjLNao(Kr7}XB6W)Q
zfy*ErtvzHt&a4x(8xhgwQ+)9HWe$@;sy4vJTdnWIij?7g>2UQfAcgXhuzv%)eLCqB
z+mP*l*CL6324jgz+v`sGf}<G{;FoBupU}6#3*9yB>by8RxAW{&^3_=eUgE^v4H?2e
zy&E%O>pYfre<eayS+1X@2gWF_KbI*7>yi>5CUW^SokGlsz{h2;)~z3KubUt_8)lWh
zPHaUT0-~es+ltI|Z2z%hsME*X30MiL)rO!qyzxZ3#hXXOIaPJzE#YSf^3_VEg_)}l
zoeI+%MtmoW5xe)hXbT3vbgwgvg~v5oSd60nng7G`wZTFVo^3klW!Fl-+7g_}Y^O2s
zvCy~1avXN;iQ{`YO8p%e#&3HmSYd@?Z+dtI*CemqC;t4~d~HZm;*uQm4=U(=jl;G}
z&6V-|NO=9~L=7yJkD4k^wR0SEC_O!!r7R@Ll|Uw2nqtrGxsp8<Teuzek8<Ih>L+V6
zSZV_C26yzxX%+(jO>JRBygcI4-A^oD*h!{s!@KGR+kj<H4L;R#gBW?b;{-6QZUF0a
z2{XbXs%UqEWoxGV{eTcKS}vl5x)lsYjuUQw99~I{;HArMWwYHM%3&5dyjSA6n+=ZM
zZRDz}$JenN2S=mc?H%nXp=r#IA8TYP^0rgtB=M1Hu@|Ut!FPLnGuVOr?;4@oC!hQ{
zScjV|?36DQ3ZD1H#{|;UNugSDhx59z%rU$eY-r&=@VGO@-yQI^FTactfoJh|k`0KN
zx8c^%^}*yWErlX9*pnZF`752T<ltfVG19COv7#mV2~<$ZM_Ned*0MprZNQ{P-<Xc<
z21=4J*hHxjfe1I+w~>!_P9A|cY*JFpKjK9pg@c>E-sXwN3Y-XVTgz%1^WV88bsGgs
zihQ-3u>)HTj^3+^!{-vxVLSS$N{SW;$H>4ddrcbi&<R4Zq7k*+y<wII!PCGH9H3-Z
z659Y$mtwp<6*fcSvq2P-YK}Xnv)MyIwI5<-T57ugADmEWZ}~O;g6l+#823WLW}}xP
zP+ef?<fqEz-o)PCiqd9LT_dY9NKwW>6vAQ;I$?&Z-lYV)!z4ae?`*A~s(p>F4Xpy@
zdMjj1EFTkYV5ovVP597sW%k3N(>!Q`e&$|O5W5XXNioJKn$2<rlxcKaEC~Zhz0{VU
zg3H7^B^m`LxPF{rbe8LFKUqJ1HGORCE$MshBwh5A{$xyAnI}yra|Y^7Xa2KOm3+7T
z)q1o)$af~jI4|?<)c-rtl4IcPUBqCW8$7&{Uexjj6QpP4$D*srH3WWm`E%zk9^8>A
zugR$KN{TZRLDOD;^L)Wf7(KkF1|;nPGC8FQK3Vp*!-ejBs^z!lLFE5Ph7~neVNOav
zvDUPwXHoBrK3vHXydZirX1b9|D;u5D=8nSI1bZj)-@%5gD+I6Gi5xH9jf7Q#lCtwx
zSm_hz0Qls<Xi2*xNo?#rGJFdZLIzv0h<qSwd8bSpaKg20I$^nJW)LLHKR#`r9;@7G
zVTee4OSY5*!QxL%eYzBBZ%T@WZc!KWM6~<o?spC_b8XVB1Bk!P*K@Bv?Y-?P@lUb}
zVPP#vymX0p8Cq^ZagCRPKJ<Rr!FMpoG1LK2y@;}R6&GKpX#P;gjhe%=#+E|c?{o^R
zTbMS++S)P0MjNz@pS=)NMti`P=47=5ZgJ>^(kB_Ep>-H;p>!hyoM~bLtj7g`g~c1k
zAxL$35Z)JhW%zyEkJHl+{foV1GUI9RP1q)hP)z0W2_o6B*u2Ikq`ILm2;?G$>S1%c
z?d9!s(np5zJv+Ty<L}U;?9R!ez8qE-Yy1Qd=*##&#QCGvA+Yq4nme17iakr`ypw6!
zA9iXUEKxaGgLoO)#3h0BrF-rZR8XY-+9ZwR5dUNDAR{Y<Y?Xc%xbj<rlae47Gpd0m
z9i9F2^Qm>#q^_50)bTWh(~i<@YkCk!VxHURs(X;S5$j3AO+QoORt0I^pD{CfuO`|s
z3@BLPsfT-{T6IoQ3Ql{z%r&f`Vtg)jArfK`$bFtET6#anW~z8ii-bDF$aF}G$W-p{
zXIYX7{Q0bHO@jxHTPF_|$N2iIKZMMt^dQ$U<tY=VfU;_8y%F|4{<<bT+g>!ePRYca
zVvcVqcEr?HA8SNpFb9tc@~6nad~rGu^+3h4UCVwZfne}vSD=!3WWa{t=#0ne53JMY
z(SWXJ8iP@SnMzked<l&kGj=sp!A0?L0w#pdqW(J?L_}e%J%_RCsWkFxvUR<8uH1ff
z87~aT{wWF(<{uOHHvEnJ9GWEvjiW*#Zuf8pKj16Mh1Vv$FhD*<j4u9ZrLg-vpf*&c
z8g$M*;vHlY>=X*Hcl?GHYZ?>@_I1gv`MUw3QME;`v7}^KtIl;aj|JDioNk(c4W}o<
zu$2|i7EYJGeZ;ptYTU#*U5|g>bq3d6-!dZ>8sAc6J35#LbTm2{ma+l@75AT&=ATN+
z&(-L>nw_^g*9xaet1e`R_&&u4`#T!ce8rp3(z5efp%oLX@m-aUU^1_8uVlXksIQog
zQIO}m4T^B_W|n@vA{+NQgq9Q^Q*xJpprqCI4s*G-+0`=-5=ukq^R+O&;3YBvl>vXt
zHQ`i2J9fPr-xnQsDc6oZJY|R9P18qafi8~^&F5Ck`PL;LJ|~1`MW4GN42pUzQAdE7
zM|%5Du`mJw@iAX7!TB`AsHckel2N8#LUl+fGO!$d4RadwVowA@I-Is&7Y*{v(3k)G
zHNezHk&O*ODiKy3KTQGDj0xM0yMl{%XVeIqfCl!vzxxXzIA;L*e1+rQ|HIMS{*5}b
z^4&?LIsr4Rcg4lglRhTy24=Ap4Lk4eWE53?<~f=ECd-XvGRw5Xv60rVQJnj9OfKL+
zS|#;-wPh}=4m6mH6XnCka+Y-KE^auq^4Tn^i4<>|MHVfq%;s8?(O<R-E;Uj>c6^LF
zj3?5_`+MnE__f)cssA(sj6TU_4P4EAW8%0biUV|mmYjr?Jb>O;h{7a}f{0yQVOz9$
zg}05rAgX?zl7b5^1<%DWnY(c8!OCLykYu)pmY$9@ccOTG!nphya(_WyZdjD*v%z;_
ztj(h)%3={vMU>K(^;HP_M7Hz<(Gp^7cHtpwaHWylu*V5P^(D3T9xh1alxFxZ^>$jk
z2d$t#o)|4IuKxu%m8*HfXVX|hESg{S(@rxg9jdgvqu^(y!(drbB+N@V5zyAcr#Zk0
z7=xVv-b@y#`Zl(z_Jg<SeVi0->i#RvsfMWjSKgDx1iHR6dUfeAFvqC%MFf6jOuiCs
zPJYt2c+EamOfgwD@Wi_>7U-6Ty`*PR>>rxn_B`j03K>Q9IOion$#fxX3Rbv^5+OL7
z{p7P<PP^oMDf!U}uC~4!#qJfuY18P?o!u6<AQDEs;h|d6v_W+@^Lxa~3+?WxFTwDN
zo_iymhCdhiQXi=k_B`-AaXU?+62wwuoI?{%^H!PR9%+ikohyLGTx2GzZf}!jw$m%=
z3n43AtsIy5SY8&dn^AZG?eggyIqReCVqY^mPMGv5OIb6g_6zFlz!{cVg%Bj*X~CFd
z_%~n|a_~%r-9Ql#-}`FId>|ZBF+`3=Z5LSTCP=cA8ur*`q;n;6BW*~6268D8`~b4Y
zK~1V$RON}pY9X-<QH=ZJ7}99QJd!F|xjDmmRL-_?_VcfH7a}=c^~O4%*95RG3`&mf
zTTr-mAQ%=GLawXgGiEgLVyiM3RP4dID=HQf8-NnYSKdYgPiTj4?!wk%<53Q`*^@5E
z3VhY28jPP-1tX``Bv9NcRNBzdeh*L#4^2lXEgZ`YMi9XcjB<ZMLc=oQ{h1ydb>9t2
zCrAA4%aC7Lt8xfvC#oRQBjM%mDob9Mm=rtR|J&_oD4|W|;iYgKnyDd7Fc_51rKJXi
z{A&A==8Z%kc#)w6A7@{)Uu7`KKQL*0I`cJ^<8q=p?}+~T*2!Ihg{~wsw9K%><g%0R
zj?Rhch|g)T#_$#XIoIH3-6FY@Ix*#$SSXVWguVG0{Xb%Qw|)fqZkrQ`lUcWr<tI;@
zht}=cu1+4N>SjJ;dig-C!y+x-uznKq1#XxH3<HU*F>FPq)!LL4$DhM5p}5pc{zB(w
zkV<hmd@S`~>E>wtXB3jiMF*?BWG181zz4)>7t+1(R&Rh#)PSZ?QcFaVd*KSkgrzQT
zI0J0?Gj1}0q@y4n=s{H?;EA&6yHVfvhL!y!DfgbI;JP^~2#MJ7G?%YIGac)*o9hqg
z#4WU=WKWyWHL9tKf7xEK3=ki;)z&+gnIkia!?Xe&WPQ-V=;sCjB`#(Wtt7)JjtyEK
zK#|$%x~cy~huGTum$6qw0$mP%1~C;aA}hsc`A!2~DpoPj9Zsp){qEM-Jw;n40|omE
z?BH9BOKyFS)AGKSNWQRcEHQM#S?M=$?lO6uhr)7v$-P#jzA^?3`W{togC!o2!=F9A
zv~y521*Jd~Fvw}O{V5ef$)QKF<s*qOOGL#2!v8sDg~aZB^k$wS%*)O481aRzx_{#Q
z$+fX1j)Az82oscVA~9xgE;W)#OY{kp?o$Gax^yx>KR-fxKj+}zXK<J_I_2XYR_qDI
zw7E3DRMwGnsj3Mq*E`?h@Xv$gC5~zJ6Ia=BFp{nDu|=98j<8dN3wJ$Wx65t}mP*8E
zD7t2IH2wlM5MZMjD;e;K&OYQa&Lc`yyv2?}8#=kJZZE@K<LHVd%_y&5#+!X7Q=X3!
z|8p9@Pdt@qsfk40%lT*9vTV}GB2jQpzO>8%bO;XJD+wkTB7WsVltNU34#gg^D53-`
zSe8^<9H)!c-X;pohXo-SA6;v(I*NF^g50n9*Zch#s!QWUTH|qB&-uLHgm#Ooixj~$
z<jq>lloe!7tN&rL$apo|4A0%=&>#@iHfSX4y>jTALBH2VHdEyk9-Xdn&HfNO$h%J4
zWqMwU>Pn_$*=M^T37YkW)^N3B^L1D|1u#W#pqfUjLO}&y3|oe;ZXJ+)lcKFAtHVK#
zwpj30dEIG>9QzyhdPN{3Qsfb))X<X>$s-yq`=QYq8)~#fbWpELtE6P@)Eplc^s>SD
zIs5Ku{lGWgu%Jn;W3+%W;g^9;fo;iLY%l5C?JS|B#mS@AJo*$??sO;{h1FHX<$wJE
z4r^lJyb`{Q;xHiOCfo6nDuf$)C`lM{5Te9TSv-?URXXlgJ>Vau&9GkvX|XAqBMfxJ
z-UD4K^1meV53Lk?as1PLx`;-*5~8Q|)4T+UE&E%d77rS9*k-%|yGifDcV$59rlpYA
zM1Tzo@u4F;YF}j!cvp#ke($>j`4;W#3XeDqfo0j%Wqpt(fb_T>+#hAy8H^$A$f>h=
z6pA1ekE-YJH^QCZi1fsv2M7S2{dow&GiUZVaW2$}1%3AbJJTt42U?aq!z<i269GWD
z(D<=N0v&YYOhfmH>TJ82ab@I`Z!V7~_Kf<6=z5dL@{jelA%!8u$tg+XNcU!$^~~EE
z$y5v-nmn5C8k6L|53R^?8Rz7|E+CA=%jf<Y998y%CpGEnHc{tHMyb%bf3)k)()hQI
zq(N%3fEZ>o!>+|>K$7?xUeeXtOL-oI!)t;$X<<0%ahi-D_cP#Ol6ar`)lnQ6RKv%6
zO2-9}To8xTMc;xk{ApKYRl~DJIy*&9Uh}VU(lU^F4yi?0iImP5W`i~@g)?iw2roaz
za{??ChP}Z9-3@z1#~1$`{4@B1MSAsom6>YyB;_npQ@-sgU<iQyuyj%&Cr<HGFnLZq
zB{0AAxq@@s3EZA9YW^GIW)mYm*NIk1!b`8QX4hy30yi&vohC$BAy1_lG!k~qRv~D~
zJ0HpVc=ZM=GD<sPR28Ot-!52o4&Q_O4Fp?tI}B3MrvV8a1Uggh7rfE^3(F`0)P}Im
zHtF0UGZL-crf)ZE$3JgriJw&Xc8^bRjE1pI!?$}f0I*NnS_@FH;HD1!+i28Wani=-
zLgiI%b@=LkO`a0vv;yna2KO4HTQm${R^5H|T%-<mjqJvSjyAIWoz`co?9u3DTs!HF
z)UEjTuk^5#m`v$|O95jun5CmUZ=frPE#2GP<{1{egMS1j2;?`A6I35+Y2(llXINkq
zONiSVVJov{r0O9tEe}40`|0YLSQ~R@1Y&{-?VT@Rx^VNS^1P%QUh^BkQcFAffA}e|
zb=3q}OCaGtD*deC-(+@B5`(-#sjECMNuwRRYlKqK-4|4tpJ109$EHJH5TyD+l`t`W
z4P?9ivqD9qnCJIPZYE33g|isHf=V@!S-*<eZtO9}{9$h4sUeyV<Hq_I`{jeb4X;#3
z+ueC+`M?jRx5=lM#%YHlx`K~8CP{+ta*UMwK;ugU`#C3DyA$A@dhsxouDzW}vPqkD
zEEOl8smM8hit^O+6ZOLO3l<M&ti<$rAXDrg^SvPlax@EASNoB^qUAATKrBx7KS@bF
zfFOpo%cYc~93IZ{8;WpAEUrd6S+_%*-hx0);0cn_!tW)d2_~O7YW07hJ%CsSX{jeL
zp(g7tYORNJPxP<664e3$3Li4jBxD2)9tbMJ2FK5ePiG9Q3f>$>_qH{dob4yHpW?ld
zUNv<sRZixl7?yc#Rt9<$-iGz?X(DibL63SJxPp&Cy9k^7SE#?2>}a%U`t~}2DAmfb
zAY_g?BI{~+bnILwla>?nuRyBT>PwBx@z1}Nu&*?fuobtcV=J@aF#gjyDLXF1km*w$
zzi$)sb#kdSC5ODny!fMHQAzfwAtoFQzv1cVM5PpAw`G$FT9H!^K=;|bl<CeDXSDPV
zwQ4hUNr;BvOJuT*115Dx0V62!trr7oq*{s~pSR1i+mHHaT=%0Y#W%lp8+bCc{g)*L
zeMu+ka5tnoOrOFO)xZi-baDL6iD~@M^Ws%2TXM&{&BZTkjBtN3Dp{iPIEh51vtUVn
z+G^GxUp(`x6yVtifi)*EGG<0SGETcHXUO-!AJWx`QK$%emUmX$H6-cUnL7rf7)5wy
zcS^|ZS4a<Lo?CIdduBNb!_6Z+ob*Iqz+WKctFCB>IQz@UicJWvMNG%6WM4VI|FLIq
zTyj+I!>0Vp78@}vIk#O+1C0`r7tbGF?!ZXKE$2j&1;ffCi0lyuSVhJW@q;r#rrNTr
zv*s1y@gSqN>Xw8vFg7=Ez_Z{CoPU8?oTp@nKtiUwN{Q%UGCHm;3jq4HKuS&FiaM$7
zVg{|T1}rvKkSmSh)D}cqSTV6cP!mEDD~Y_n?T)1i{`)woI>lMV{$<1nMJXn#K`StQ
zC&)N;#@~-G2k&#LFU}^<1aed(!&`@pbyqXI>Hfx5CG2T<JW@>BYBzO9&^86daersL
z0U=?4LF%hWNj-hgIA_LHL3HvUiD!1#r<(!;mLhNc1!T!Ip)}Yxl4y1_WwA0My&;@$
zqtlxsbyoTM@db+4%k!2CG&8j@7&#V%&)p)60%PNYl}$mm@V?a97qinHGmadG=?Kky
z8-9_u?Z>J9Ca*0qpdS^m_zWr}<?=33bva%O6$c0<!)CrIJ6j`g!H?|WO&0@&B76?;
zTSJ{0JVL6m>(Q7M();@B^--Lm!Y!$M#KpEM;N+7^rK%<MGK;hqchwI@Tv`wdq@swt
zAfcEqDw?x19+n?-MZy>9YWuuzaK7p*{Oy1vI4{Hqwk6(sk;Q2k7TT=Q?zPABRi*fi
zsH5%2Y8`T%L5&)}z*f#c_ewz*-z)pB4|Iz+Fl9u1&*y@yLgI37;^T#Xn7~`9;oeXx
zCnq%igb<)6n$H&9Y9RO4o<cnnshL5FI!EacJK-}Y|7bzoDmL|~-r|^hUw;=%KRN2u
zbamw%XXkJ&`o7kZuQy4O>(QVBK36Oq__ttBOY!>I`5L`3C5JB}dN8Xa5s$&m%1%_o
zpm}v!<A28x`dpEUbQW~FW5&{I{ey>P)Z5O7_B&(!rfNc9hpng7`bhd6S;wW3<9O-J
zvT8N;>Sc@x{nRA{+vTAY{TL4bq~ZWOob{>@0Ko;XLNxXYLS8XM4M-N+BM;|H1L;{s
zePq{WL+_$VuVui`b3Tc^Ivy{7qrjG7ZC@xwZ#3y`m`U#>ejzFrlEm>8xtCC0ATRZx
z09e3bJ0$<8Ubyce*TH|5(DglM2`%7vB}H}<eVUj#<=zj+y`<eN6CHG|`u_PMVkl5q
zSc1)6rCv6ynaMVh*XnQ-<Nk6Yf=P2cp-UlY3*Q3r`&(JnkoCYA$l5}-uxVMITUA2w
zzU+a6_DbKZz%w#o|K2QwI!nx((!+l|xQb532tvH(=;YSpGa*hka{ZS2snAZ!`b+d2
z0&Iu49^$)40qhTxe02@em;wN-NoXx`S*`rB$Qq1O%K{1V&mZL!{pAal*Rd52`9Fdh
z|EKm$^keo3St|ynF{Ww8v(dcE_2rNmf-WZY@S&}_vOO&r)GX7{^mzGlcPckKnM2fu
z=2#bv=1H9Z-@e_!vza)GC2Xh3r@`Gz)7-{psBZw-_uTOh*fG~>Y~A3DAJseH-H~df
zqsBJ7Pdal~pT?DSPxDQ>Lk2`0qR({zD$>8;Y{AW+(_RnJgSZlpC$Hou%zY#eIS!)k
z^BBD1^fqYf)18~)y<OBdr%kcfMI$iD6pGJy#9mxX!V8I3)!wn=^NEy<W_^*HeWS5l
z;4F;`9(RJ=gF`BgY1X`1bNAyUa+E65x2nB1MGX*+D0K#|<{-q=o6B3=L=jaV7bV5~
z$v%B>xn<#grIF}&@@gQh+Rf+^a`}JELs+Z?E8rfUCh2S$428jDZ0&l#2RoS5{`Evu
zv{awj3R^*c_iUO#Qh=)Ho+fbCZ(d-A+Ml<c5I%T_u~`*058@(*juc%Ys^m1|`D|GA
zv4dn~ht<V<+C%FKa7t+rx1}jwn;*!=l-;js%?A7ml|&f_6$m&1;bTk%L-W=t2VBVA
zLgYjahRO%4n6BbSEKi#`76;d8WCGzyC`GrdiR_FLg7b8WdG+GT-A}Hg*PuZ``D}`V
zRXH|SU9EK@o<VX>)ZEkTm1k@!;boew$T%xP5aX&iGVpwAa+lciy1Y@1l^{ja%JZ8L
zW0rP(1d*uQfoLgJ96P+zLD{apgk&+4LM02iz)5$+NJ+%Mk9U{OWowT)BmLxR%*&(x
zB;4^WSSQB?q-9+1*E#b!Z#~XizVYVDur80Hs8qF}t#OM?a#Q@dSmf>*5kEMmDY`C0
zcgA_eP^?IyJ)8~-S(lQ$e@?IN(JZeckR6-ON1G}QV7tYr*1}T~F3m8M?qE7B+RsD-
zagR0{<!Ta+E%hX<Oa!e4@f84V{7&Eu3PXJN^a}C)%SDvEn;^n*LB6mCyv;|Fj;|Z4
zk@Ud@3sGLlj^)@`rvzQYzjk`dL3?2fEEKrOk_SmTupR{eAdLzP1~AO8b`ic&ME68}
zEk{<StK>h7s6cap*gx!bWOG^ka^1pKjkgSw_`~Xxb712xCPnyGI0a1^kuUMyt?W0d
zbo=(9pn9)l*8iTb&D3xoYi9cL8=;C82vD~;IIRCc*PiA?IC=(~;d0=8Pem`uiQc#*
z;tO#t!wE~z(GlrUw%sS=pV(hZU97h%vLux>w){%COclPxz(?_Yu1ZLcuNpy6CM^_w
zz2+qZGKXX@R97BP+N<;W+=Gz{Q!n-Rjj7eW^njJQ*0GsLekCPt@eu@XW)%kK_8(r}
z4{|1vKP_!<EWmC!UpJ~&n3a;jBeha~hD^g2dG?aH-DAaWfx~@n@>qTqDin{+YTCH&
z&ti>C8J6+(Gd?onSUQ>ejRax1Jce%HyrpwuFw{UA+#qi_z&xSDo83yC9E>?)!}k;D
zhrCC>#vAn=R*Hgo*I7m7ls~=p7zU1*nVx1s0HNGfE9Oh_kSa@S<x1Bxtwy0<kt^p+
z%Xyj|!T-Z!25Q>J&QEz!mup_zQU89$S}_TsX=exG+gHu`(?Nzij8#KNi|BpdKZwZ*
zlOU-7P;VfG^i|)-mouj6+|kF94QR*K2YLiY5#{^yp2;I!`uf=V3N9LrhuB_WdTbZ9
zV1OK(5ZU7k{6bARr*>42?qGY1rqg#={x4~Pn0NP4forC#xkYn6l(7dv@a}ZDnK#92
zLoE@;Ee5+*Xg~%MOPj?_hE=OLv<Ak`mhzO80;9a|4`_<CXR$G5ouHic1Vj#e+&xl&
zqZp`_oL~NHFQJLbbJ9VlKT_Izqim*7Q2W)k_C%&2*%ggcTW&z3hd`|)+%gx26Ka>0
zsZ$qwowBBS!CNS4!F*~mIL%HIqYC^WzjH}%6<!;tQQsYTWqW{GJEKAM|6&Hzp1V9W
z*uWqa#uON@p|sTkS_`u4L5iSP15`HzukR_lK13iWj|sdPw#-YVy^8{Lams0Ge*etx
zE?amIZU|ju1HzM;Fc0HeHonVG?rbTwpHkY`t7Q>;_H)=6m%cOHgG&kLn+W0H8e!F~
z9%Te|kq9;=BTZs2&Al>(-Q>k^R33izKe!z5*6Vc3op!ush5M}+8`tBam9Naciix~g
zZ{LS_eMt0J=<gMdjQRx1GCa9!<@K2LwI6-DS-1bHJ5Pv)+R@-GySYu>i)iGvPsaHJ
zmf7`T_PTKUPm~L|$v8@c`estjqnjbxS6Uuj!LH^k_4pG@%_n14`i2{=sv+r|os23z
z>M$(s*Fq7uG?KewMv#M@YO3l}fntTfTkjl;u5D4fB1nc)OV_hV;w4+e44Lih;jFJ#
zwmGjG6m^O;Pj)BP2D+2o%k$3=ZX{bTzzqOTT8iHK)YTngZat&KAa3ehQaQqAhB$7s
z`yyEHo*3PG_@mWxE$*8bVArIvP*GY|4(v3xWL9yKbJ)^=GE4u6T^Scfk1|v}pybKA
zXM|^*E`q6L$tUlZoOPF@sjQ>?FR7*FGgnXSua~`4!=z2D23d1t$S+;Z{<JS9!Q(lJ
z-=Kv)Naeh*j^UzNlcu}5vm|KyuwfMgfePnBqpxg>Z4-%Q{E$2^Op2D3^EZ~c#1QB4
z!}1_)B$9z}52?s~v^E++1t8@3aqV+25L11{<SsMHdSfGXRhZpG6$ygMu$DRNo-Zkr
zB!?oIWPf3T0_Dq-2j8upF9e7g*D_DSP(imu$)e)94-_Y>J?B9T#*LId2&>kRO7417
zTI~Zgeg#MlZ1G0<ws^(2tT<Z0(5q}L1MPTOGmTtMb>F5LBb;7-R}WB%;$C<~9Q?aO
z$(qXL!+@a?yv`2bZUsg`Yg^MKbzL;nUi7sBh)`4;bK`ww9Np$1K4`tVZ|GYTqEoM(
z?#`hdWn5t@>m`rar#qU3RAGfT$}{vqi3{Y%tE2t~IN#4W%&QLpn1E%z8Z>3oDpI|%
zY-o-!pYqu}KBJJU?0mS`b;WSAB>{CD3L<fsiNcly_Cu@o<<lCy=UifyN{UAmYn9<W
zX2hodCB)gF5Az4;iB0I<w3C^FyphEFg+%g1D3&V0@a&oQ`)n_h&s|!c@h4{~bqUPl
zavh)?gQ!LvDdwG1wHfLxGPf2Zz%B1~C9?^*M(iW#Z`ec-jzgS_En%g5)K$N(2;WXe
z5J_7t<n($J2JgIW@0K2j=n*P{MQ$sQSJ5w?s8*|1h`#K%gY_SWF5TqH5S0~i;x0QO
zP21CI*r8|)rJXZ=`sOvJFqx(rycpYaUux{0kAz{0eN+F9y?p}5dWI)3^e>awLKM<p
zO*9e@Zpbw#&=-h(Em4ddae$>bvGM1l*9*;a%<yz%u+HN7$%K{F)x?Vqk8C=NlR2L5
zxqN_8uFaDqK*u4@Jw-U?K#WU|$>t*F+c^u3YtE?_Bc12Tn#(***7<&(ap!~*F*08Z
zZU;8F@BegY?NgkY<FIZmsJ8{E-e42pj_B5_Uo@kHKbXuNgRZsd95)f8(&`ed&>nCV
z@j@5oTdAQCupC-{-_MYkB80Qx+>zEW+(XUqu6tDXpw-O?>><cS(udA_MC&MZ$^YA{
zXW*o98QN(bVYS`?w8>8{vp!8E#ohE~nXI>hU?J3q<g22g#^pvXlNpcrDLU|yrpm!!
zgzt?R=K)OQFYxN|n~rcKhP~P!`=x_t114J6!!gL?RPZW^ACnfY+XX$vij+JC$k4uk
zZX4^o#E|og8&ms4ES~Nt&bStpCn;>(!ni{C29>S`M2hI7mF47H@M8rZoKpWeM#ti$
zf;9SwBr~?xq4tPsx&P)~ln>g+1|Hl<PevNU1G`nd+gFn<6?=7{D=osde@Xr`40rTM
z`5<3O-S;DA$SV6foW}nzCdQ1;Zw^ahyK1i|77{!anY$sJD=uwuYW`=s8&$M{6k2QN
zD0GbVMqRWP2zrlQZ4{2g9&j>zt#G~a7s_9F^14GeHC|v&e{OJ=_uLP4wh%0Z-<Aj)
zPFzND;MAE#YN29j&h8jN&l$9q+@@)4O}230!LCMSHmR$d*GyM8mi0&z)F^jrx?h-t
zFIxumy)|fBngRU?5&1TMG$R?!R9zMufzOfmCz*b6qZ_m*G(Hqz!pj+W99CA$e`z`n
z-PIr>#w`H8g_1G+1Xqw^H&9e%`s|wU8iNs%G~Q;yiIAIXd?-^i7XO5$p)_C)bAuLU
z%Ggw}re<eIE$%_Quwa;SyJEv)b`&VOwV*{$-DdE6>2$dm5^4_>1>EXb4~joDT;D#{
zWGKs*>-9ueaExElfYxBtU3X?k*P=_Ti=p7{J@AB|Bk^My$0DMoTh7y5N=Jli#(M=|
zMSEdc%v4!bV?uSQCIOgcQjy>M^x0bClk`(SNkR{51p>yoa8ZC8&Zdiu`rn}$CS<v@
z_3pTe(nZEEm2EJ;Jz!e>q_e=$T!<<C1<Nyw?GgmXhLf!ByrbqVaKlzjQ1}+(ogLs!
zHpbaION5Y2ToBfUN#X?sgF6f2lka@>j=0zM*4ZK=xu-73H+JfRDyAvDQOvcLlS8;o
ze>!h<vd-H<XspJ?Qz!P@iV_g}xC{k)6o<aWSYB!H3F(*l-CTdC!%hBxTd(KDxFx2i
zH?QWKt;v!G-?u&I#6y<Ik6IcCaFEA6`?+uXHRHmt-ez?=-~APT1LOJI0)G~sp}`=5
z%J+Dk8e}v0i-pL$(H+-SKtuAX<1ez$?E6)%eGWU+^?2m^=$^dz9kI>yT`1!r&`e}K
zp3HM|E^+Ww*MYkYe5@ZmgDLOWG@+1Lg!uFsF;~G8OOTi-TSzijCTpD~*H?|-(H2P}
z+~a+Jo4|I|K=8?(?L5W#oaQ>t!y(a^&4Vp<FSo_niW1xy8<R2KktN~!7K+tvVw7~p
zn9F6&4)nuY)g{h`6+K!1A#8KhO<E<=V9-qOytli4mpm0a(q;2?ZAG;zDmcJDwkrSN
zFeN{fsXaB`ujamX&anMTgl!{e%3!1t<P(rG%#GGl*_?$t7A|ROmUTm;j(_&bN}FCp
zlv4RC8*%T~>`0q2K%Krx@!g)9q7b#V{phW2L`tN^nFlJ!wmEym?-tGJM)>>;<6d)3
z&qcbi3?Kk7->GZo#NNPCi4j&}S)W1=#hF=rg*GfY!>!5Hy}mU%HD61A3J1+x<x6D`
zE6#f~#mn!#r&!o43KtP{qdOl_RLu>e-@W^o-vHI}_>?ErU$lc*SMIpOHriwJjhBun
zD$mi>hd|jOnKgj6q#Jl5zsi|v#cnNbfdUnP&@d9&$cGI<*Zuu+kT1||M+a-((p&~?
zE}p;mknvjpN0@7`^MKV4;<-1*6l$}9B<&sxH-N_TF3=#IxjJof_46WF5ShQtj8M3D
z!d8u9hPn%N0MtBsxhId8Qulh_T*We$vd{g7S~#I^%Il;}TRF3b!zb_D8d-!TP*W9#
zmws`vPf<#}K>T0|1GUS^N-k(M71CRgmaYC_X}&e$_=j}Zn?L#x2}88N!y#sroZ026
zgZH8vZ)d|sWgCq3D>(gOQGB&Jz0ByB|7CyH#LwJ((NhYW{v=W8Bv*B?{k@wPny&_i
zX!3@6PhFG=EFJGR$><x7;mWm3i=mB~JMnggiKL&oxY(^IsiNdA0MXDv<{By;g3RF)
zT7LMdlw^l11<7I{A&VrjyLnU~9Ksbm5fmrtoce+M#v{>iMt*=E+XB6+`yH14ted~&
zRnC}`iM<8n<HR@i)F~^mEl`^}h7r^F;mg#2SLhz%=vROg`sW%>A9Q$5bRyRnU`Eu%
z+r(*_uqyYXU0c8(RvtJbO*+-{K17eDgBjU>U0en);K56JHSghna-idf(KFmq3Xu#i
zITKpHk8QOp7T9t&K(c%ir^Ui7*0pU3YW*3{BYzuc$ai38Gf~H)5H=xv+Wvyh!LqTS
zh?(!N1O*WISNK#*rHDJ2cs-}>;qxluJy?^_@hg%Xs}_=ER&HE+-y{^y3o`2B-7sUJ
zTAMwUFy_B_BLKfNM$p9v{g#={LUSX8VyEJ%tqex#S}xW_CjXe&B=>ybhupUi;pHga
z29BDtirnvlEsx>kcmo4Mwu7bBK=cVwY_|u9&;UO*Py&P{x#I)Zx$hU6WkvJ<r_kKV
zO<V&FoF-0cdJ(3I#+`HQHy84g7~73?*k#~!hVO4=TDZ_f{N<|S3_sXkHvN{mprU61
z4zo^&;Vus&1O|`D*f~|cisk<&Z*OJ0o3_5J2|+cFwZ&9BOQq?UI@iQxAFpLY>*8vE
z9|aw=6n3ir$DxA7&Sp$W$|HA8dD2aj5b3gh+3nON+HM!woyYB`dJa>W8S$)@{UUJA
zD~Ae^?MCN9L+2L)q*iAIMN!wuI3A>FDpD7d+k*T^hK<=<*?I%*ah%kSjua}jjO_`i
z^|K=hJc`wZYyD#CAXty93gVovghP0W*R(d8Qm4~cdl0OIxg6d2j3N-rIMmi{He8@=
zkAV5SMeTpx?CmVw3r%nASp$q&v(gzhs$uPN`@!Lt#ofzXzcA!fVZ@u(tvQXNi*koN
zfx*GZOO@8X>Ezq}qlR|qB(3WuO%VBPr<vr*(H%R~+vO-FXd;ati+Nw$CXNa(Kqeel
zoT8K^pcKYv^>N+7P>8}4n{H^3&?Z-5$E95ANyr{4oUbd96rZw`(D){u0w@``&~MuT
z|6x30KsJDl++>UjkJF{R7OoQ@Hxmo%!-HR!9_5UqG($;zM}PXY(>2^Zz!D=b@<uXj
zeETt8th|jH#70=F9z$emNTyy~oywNDMagA3s_Ne-lPwLTT|>obFL}``Gqnp;FMgO}
z%yEkE%u^<K6Rt2^Y}4WG2<_rAABVxhjtD1cLXI%X3Aae`u;p{oR;J;+iu%H!?3d0#
zuN_=oE}vS|=2G2}PfM5`5=LOIhnlV&`V2?UEL2_YQZznGvjKx7xBv$7x*ztl-dB6_
z@}MSapNr&S^FYlbNM!}JAyc9$;={+t6N%!~?G@gm8G376$e;07(JdsXRv@NEgseQX
zN-jRd+5%gft;P2cc37-`Krf9GQG%^*y&xQFYK|0ypS-;Mq)*7DSLax{g`7xgy}5Tx
ztX(p$m*fyp8XHFUiW!-H`lkOQh3<9sz7GbZSLT96pCedZvI(nKwb>ps$DA-4RykC)
zTlS2dLyss>5{29D*S2ljwr%^hZQHhO+qP}nw&v|-GmH5Hb(2bNa#D5be9~A{HhZ8=
z7;dSxm@XVw5?myuX2pwI=Zvh--!$Ffi|Xm>2A31{u_Qi|phYMGu?mMEW-72-jMI3p
zeY=jvGx(}}$_DdW!|)fF)=m~YcQ@}tz3*@UK=i&bmCSs)vVGMYE}NWvjN-6UULf&H
z*UbJvj5zYEBwaL3&uKDfeppw8b0s)G7jWr|GazPj8c=4Fr;b~B#e)X<LAWKX?wB|;
z`WTjsFwmyx1SQ#ftOgy2flF)Z#@E+_5p@{>^=Lf3iK@U(9>wod&jpx~521QQP_W8>
z6};(elB17Yb3Qs{Yj&)3p)v)t!y~spaR5U8PW^C~mGvm!W^#b#lEc)3w^-0;$vHe6
zMx%_d)z?^NGYB&&+w>?@U6o)WlW!{MwN4|6pqzY~i{-|Ek2Wf0vL>xg`LoCHOR7T=
zx)u5*XwU0o&c7H1_qEMB&H<%^laHIG^VwM*n5jQ=&nRUAQY-8&wwpqNvLiq%r7+s*
z2Io3?Zbi$q5vr0c8)MTWAaGR_)n~qn<hAlq#tWn#C8!G!l1tz0_Tlko3HMS})Q`nm
zonZ3Ss!ZUDj#NPz3;@qOixz=e*TU4bt0$gi6(DVp^Xr2OmW5WgJbLE|V9u21_<dxw
zeW7x(CidwTgdW)mEg8$bEWTcaR1&vft`i|qXpWV#5;oi8pTj?aCTBjaQ6x0%s`c(?
z#R@Qs1a}rr1#E+58xUJ3NyCU6>oiQsAwMj!hdiHL@Z9K2Lb54s_=~^$`M%UMTX#kr
z4J^y(`t7+0;23!9MkcS;8Qv~L-m*(0g+WseX%<4zRX@RqTtgnJ&>%yTnJ&$$Gthu6
zFvqjxhMdPH!igD4?l@$mSnErg?;6Wm)ZPH0h&fJ%mcI6zW&adwqbu1FSm1s{d7kwa
zaZkrsLrUUY#tiX);j<|gbD^0aD(%muHz30=SpA)oN7O9#+I+a~6|RyW5+(zT3@OI|
z=W-=2q){b8dBEAm0nd<!AsS6vtuF&_a+r6_QAk|D^~AEreMQ7#`6M7$r!o5;5N<4P
zZ%a4kZ8^#Y3d9$^E4&*QB;<!1Oz%B^N~@9Paqk`k>B8G3Fo(_AR%?K&K@2YX-U@5$
z?m3wkM&Tz~6M*(UkmYUiB-0gtP<DU@{vx_ndj2<AILXmG%Z0W5G^x7S;Q*y>*m;`{
zN>dg^Rq`6>>VnSYmPEX_tF_31*l+<7a-|8M)kNn2cmFnEXEc)snk6UB&7H3G)Kt%P
z;QYQcN1lcnf9$xO1`X_1RIox(IojgFy8O~!hmCJr4b;IvurEclj>O#;V7&}u2cXqf
z2?@R!C@x<bWY>XB0qf2NtRC92J7g5WxEf(SLN!}z9}vAhua6N9492YeP6^(Sxv$9~
z{>ixrbIZnY$DlI0{fqKFWoFr$*je2Tc;=|qASaKrgFCSRTKl$?J>VFW-tco*)70uO
zlrNw+3<D&vl-49)KZ(U!one@*$_i%73fKLf?Fn@<>WAfMSCoR~H=2o4&OAyFXj$|E
z!gd8Wt*#c%LyVBuGV!LkgSQY?pvcUSkDnCWY)}a|UgImL-|X5qKEkC|0`|{%EG+1O
z)RkH*S{@VZt7h+{(Axrt#CD6SJT+d&dlD!}qWJd$9;Pxh71$i`F?iJ^cP8nRXDfPp
z#2qR%l1L4V<7vEhf>V%x+1ZRIrFiB3G70UbT~j}wz`^=a554*RTr01m_Md#56Fnj@
zAq}3UxXAm`PF!=8EI0wXPRjPV+)cD8_LjXmR1}!#t6HG5&MCr&;txB}0Jx4RRg;y-
zT^>lgdiCD?0%2GwgA@afyYlYM!jA#dR3*)j9zE-q?#%)!?dnRM2y4sFYkoV;(~2(Q
zhKQ>c!M4(G`iD<nzFvNh?`-Z;0KZ>Edo0tfKwfly<yWIf>UpB{UK<CY;Q0wOUbUJZ
z1CMYuLb@rED>v<Cr1cbYyWO8mX1qp!5r{rk7dos)?EhY1^~4|_aM~F|SHy9>9y^=6
z-=4XvYbI?AfQBt8O)>E|Tq!J;Q0tTg97rA<3#DQ2CJ4@7`qQ4IoZ6rQ0DcU%^DMu7
z*7{af>Urvtkk-u&*k+lQFAmJZ_Ok=gEUo@&$GSawU+g`pF(gAicO|XYduRPQvRRJ#
zd_<>Yx3KnRVD?agh`k!oGAgz-_I-bM<)f}B$sO~pf%P8$*v$+DyE!b;x~Pj`fmrAF
z{Ymn1vUM(5B)MqZ2&2U_OA{0SlDuTIDXvNBMLgtH)&tIA3DUT%u)d(5lEPI*wD0k!
zZ?rKW4JR|wHnp3R)+&;8V^nfx6C=}n7{`<6vf;c4T@!}T4@esUdBPJ0h!jl(;ESrX
zzLpWSPxOM7=gCL~cc#%?;Aq*oeEp<o|7kte+GdiwWWt|_HYD>`0+tC0QGWt6qX938
z(CWw^^~l@hNts?Gpjp7eFAfwu;2jFFR1&9xZ}Nl?5Lh@$7Y6>COdY{ipD}{VdtwKx
z6?B~P5Norm{~@GLTlpNLf_i%s0$Nvl!H$f})Eox3_r5!aoiWk}J{{RFS4vrQvYw31
zK`hhGb++UNR-=?v+IrqH=qodYQ?M5SHToufSgO6C`n}xEBQz2e%0qJ2-bTQh*NYFD
zwI~3VsEPE^A*^Q^7Eqo&zv&f^rVWyHn5>QY9Bt~mwf!Yv$*e;*U#o=jxHJ&ETxFlx
zsRuSyu|9BSi7JY2?nmdk8qZr&=Duz?L9T3M!W4&yxa&Z--z>jK4v^74*Do<8)%dEl
zbi2tejdB_#%T*Xhzd%xd8ODQR0yZW+U{90xPSp4oQIJ+Pr^<o#@+78m!Q0<*+S}B{
z{(V2Hljq#)0z4oqZD}?(HHawwQSKJDeCwi)8lqF5t&H8B1Z=zhY|=50II76u)Wz{%
z>aF2H!YCeTo_YrbP~<^4_X}wy2ReXEZxzQ`xh(h)I8IkMv)r-=R`bLnv7mYXR~ElT
za3p8j`&p>*hko+|I5<xc3v;$QzcL^E@Gf!xOme|M_4<_ejx^3~dF{_pDDq0q(w41!
zsEm!z%(77ng{{O<j<h3ZIndeVxeIM2T~u;Lf|idbSl`gQYIquW3UKnY`>vw>4zQZR
zEr%>lq3rV^)BvJ~tURhqe=FvbB0Qg})OW(cQ}|z}M7XZpw6>AdhVNh6db>t!MI)0V
znl054J9^^GAs|&p-CTl|YX0f*wvFtF3y;I7VJc+^%~rz!mUZ&-p~0MruQB<i0+fZ2
znjL4ylBQ|<n~H`#`5%eM1V-I+Vf7^|(ZR&CS-WU3JtKH=>62prGrFuj<IG_7&KA#K
z$3<xH4y65){+@^^)#?ciM}1bO3md#R4H{_$-me7daMRWI=2t=a5>P^_bSL4?X@RiV
zR%lwb&~%NzCuE_Zp?5Dt9ePjiP_nv6(Z8?{L{pgeHTbCAQ6BV~@FP`u?xgqKri7?=
z<A?@IwFM$yyI%+ZGC1+JyX?i`MNr@o0<i%>1zWg^T)zQ{t9Si9nZ$DqUA|$9LJMGE
z2o%~ogC3o0AQ_v}C7}qIU2i|6S!#}L#0F?!iiw8t)X^omzS?!Jy5~9y!RMlEMD~i0
zBXk7~`xcXNFO7?-{m|dO#%|?>mk?4n0~xr|fs%NFBB<9OijauW4UvjpI^QiM<c_<A
z;!J!rujtf^E&4eahG-8S=w3%UtfXn^IAS{#ElP?&zFpy~Nx1|bq)s=Yk5_r;@@r_s
zR#9-dis|Gb&{x8HH%oXieQ&0E@bL&XsZwGui4?wUgF=ozKV~sN#b6=vu3e=$KC*kH
zc@sRGe}XYg3htx*;!iQz)NNJJ1m6Ee_?IC-aM+}qpmXEG2HTZa>Y=IO29w#R*DUi3
zC@4AqHa8zYZ0;Q#x29=4mCMSBs*);;QVqPNLe{elRO!sq>Oj`Iy!;8Cs^Jv)tAuU~
zJoQxS36>P-zIg5;PV7C_s;Bs19;dQ#Yr%z)*z0j$Re`;GLIA^t*-ikKnd^K)7+VPV
z9Y>JmI2NH1Gctr?;tlQsa+v2OYUO)0E(Pw_86gKAE&9M7C{I=o9+dxq$e`3yKg7@E
zzDzK)(B7|eEzg&oGSx%Dvj3rtJa3Tf=cw`9ma@2=;#1DiHYO{{;@pVP9+o+W6};|3
zUW7}@S5GLG&?3p7Uo9Ke1!nQB<)<+>3uXYOI^(0u;3ziCGzS<3c+otXg9QD8Z5dA3
zVk3H#jPF_AK<6~0Q4N*@`iz>1@AyxQiKq^7zZC+^ZrInf_w1wky9Cv}uZiXX3+_If
z*4(6Ra!G}k8PQ1{J^38X&*%6zzexJFSavhcj>=BGFJ3O@xs!AxW`Z+=TTDYanbri<
z@!+i+Qh6qW{$L7>uY2_osCpg}6jAdc7!S9XL+J65mQs=R+nJ7B&d5M2O@WsQQ%icR
zfX*QJ=yS*<&fmz8ey1BQQc`J0H~vKIN>V`LWFjc3vP%M=!sOb{w`b7aF#=PQ^z9Uw
z9eTP)5%LdF^f<gT=-aS?K=(tAxN%v9(~#IG+1dYc7}eb?NyFxewC){Hb1KSC!KN%8
zc$pm5ud~~*`B@JWWMTNX131x5e>Kk?&g%~`@nAG~eEv@CchF*ck-HiHd6r@VomA#P
zUiXpNa72xkO)>#n;z3-teYC&b<K3)&OI24D>=+QLjr2f$Rewe!4|s;Y&`vf+T?Gl&
zz#d|0Njuc0>XK4xT?ud*IF!S2ZD>H|U21!{;A}?|MzN$g{7n4I>G3kqBuG%TQnwk^
z0by+iclq4qeL2D(c<{9OvGSCk9fB^u%0aRp-^gpp^pnwpbkjCuWhC4=>VtDcrG5_|
zK}z3Ju_2$(V>XQti;W01ho#l!y<7h_c-6dds2G_i*t6<BGmpP#!km|HsIUdZ0RD*G
z2o!MwgF}57K46X37SG!3PY%L9SFUdUiwmge66o#rbrM_{Xmi=6GsI=^z<RMq<%T-o
z*6H=86ym28&%rl7osYyev-7vnDP)a*Wa;+k+Tp?{88}@wEZKUak&=+h+Av(lF4l4k
z{h)$lxhu%lR@Jk<S#PFRA?7=(8F`qZ1*(G2fDA=XDY|IYSi2q<R7eH)*ddEDvNe#9
z;Iu$h^*R``hd!(bNwcG-nW~Fjx%<wx9fUOuWGKU%G9Uq2i~Lck!H-@#5QqemMkn#w
zU-&5;y~KR8zI?)R0xZ=;CQ(;LXG-O!tQ(v9!fA9g^^X)1qiY?~{*IcUI0U3$^Nj0b
z41~!ZX$UuxNKbL{$^A9TC=m>!?4RDZ4<uaa(8S3su>r#?n(%&jE_U?6$-c*s7G!Bf
zL65#y+#5fnIvw)34|53m54JLm?h}1@LhwBjg4;*OHadSjo61^mgV6S(E{F6}NXrC`
z3P%K_Uon{JG9fuoWF+{e;5u(ChAp5f<UWWb%Q;mw#<=>D$qmYdI@!tHU<;!+7FzIq
zVH&&Zu{}$!p^AM0eA`I3-}yWJSKJ+g*;D2V2<5#7v{!+^*Z%9lGyCe_8RCt0U73q-
zwzIeUAAnu73tFzvp%P^^`J(H9?`_7$gC7Wdkc2Q7Zz|ba<QiyxHXRNyekXT)YgwcN
zz6AuO^jPwi^Yga)I^?p6U0ld;z}kACnIq`CPrAe%2sLF13!sik)4MU1PvaC<H1wE|
zLnU%m4MhGzPeq+nyaTUM9{c*9>kb_~@9p4m9<Ft}lei&zWD*{4;2g3HZbN{oM`Je!
zaLD)rO6K-qbHL5m$DYoUq?AA)A4fxELxS}5?v7G~%9O%bvdX$thkmI2A3gPT;`X$Y
zSHK!jlrjr};Vjwj55#8_#R_xoD~Y?pPM1OJ*Ucj)X6kdpMB;)`p0o~i$ywXWAR~eJ
zp{=;rb;20S&SqPuBxq4eytwRZA{D28#8URlw_A$W)w4TsPCEgS-s%3eel^4t8)MF;
z`H(5%fsi;%({QFuai2=(u5Ocy`f$@<tz4_W7%@{zDIBX3W`)RmNxw+JUl$E_K@2g^
zHPAbN17x0FhN(OlF1$zk7;x<j8MPkv<9*^W`!5DzElF)(=$kfNUZ2iqZC)|mxL?m^
zM^}pt{p+_~VswqOS^)o2h@aFJ*Pe(w`S#fU-eHdoqxtI;0xXBxw@Y<QsfrKMeWWy+
zvR-+BXw|0&duTtMb)sBp+?hwuWllM?b9T(=FZ2|Q4t^`MJfqkNr@BX%>LTQzG%+0-
z#2*<sRqqxGz?pFGfU%p+JoQEUjNY}4bGeLWb2WR{j!nZ?HC3>Ge<MC}6!L@Gt;#&C
zrK`l@WrxW8WJzl#h!tnC{u>Z&*Y5$I)<~J=nvToN>wUs1x-PnJgv&W7{Q;k@z7xA(
z?cg-tF9_$2N3pjz)^c8M*NX#dWYQ#&?r79*pN^eX|J1J_S?QwNFR=;~NC;WGW>#7E
zuXbSPm8#<U<#P;;A4z-WVwEXMTYK^Ho7`fzpagJD44{(e$9WFQ&k_n4%!gR^_L#ld
zw(ca4O<QpRObpn?@+DgO#K#Z``lZ)iZvKYPN8k88;TS-#;zJf`rFC%kYud(0AZ{iU
z#UN8CaAzgQGxV_`nFg%kh7hYP*$<}oF9VvV7^=ck?sA=%v0|q&S~FR9FMD9qpugn@
z!j(Q%^7P17AxDlZ+l0LQm*Uxw1sl&&DFR<mfs^@Eo@QLgi<2o+aA`bd${4G9o)>H$
z7F4_8q2JCdP$1Yzv^iH|Hk+2dUdHV7z|u5S9P$IxR&Hrpk#jV}&(kGhQoC+4K?CL1
z=UFo2z%4VfuVHcWmA3l#M5)RAtNT|U{DnMi;a!Re)AO_rFIQ=eS$qAYY_XC|Xf21`
zKE(m^O@1Z*D4?!A$Pma%3Q2R2kYO3m2*c3@7EEEn11grN(gtez9$J$=Z0Nq8;#o%o
z9OGK!;!@+0@~2QT&>huMfK?phe7UBjp*kUlGQ-e9kR@th0V?1(499faO92{$Hi*TL
zQ6gDSJ4m@n`vu^-$t0zleJoNU10?UJYbbt(>Av}Au;9-fvW|}n*&bL!uz1;W*C#cL
zh94f}X|N({OI@1+c<)y+M&a#e)s1#*m^gw-L@-1<#H@z%j15bkg<rvOenpbN(!c-5
zC`9Vcs#WduWq=89pUQS2(zcn{`wYJV%9cN~SES&6u(E%Ge9SO$y|7%Vktke7t3MRL
z_EtvEG52C`Jj<4cVJv}!lvIDm<coXKJDOrPrMXIRj<L~-2Q;Tfj}S$wF5E_aCF|;H
z9}#Fbpbw#k0(gC!HFJVy1oyiSuV0eEyc7AflDWI!_nQ4gx29{VuTB<E4W_kyEI%f0
zvh8II2u#h$95bPdJrnBTb%a{brB+XmVK3sX-)%U-uk%n^`bjO5dL<)+UC2zKH#a{%
zV{w~9NS|xPYD$3J<T6rk;gY<w2w(eAWGK-Kmotaa;^%Cu3Ihg)r;e>-xzg1$X@K|u
zp$3j`fph$flloP*_jRu^_ervkCiFF*>s%zmzb`oO&_g{{OUo(~gZgL$q$v3Z$SoVM
zzUXeV69~r8I=exmWuGe6UM1s=awhXYez9!xlqR1rEN#iWTzuZ5MflR%JlMyGGp{dQ
zQk>)A-AlK_4_}ipQ0B#G2XU<!=a14SA$ju&5WH(mbXN(eF%k(W%KNIMZK6T2*B$p7
zNms<;ZILt0@=M~#W4yTu0I6fLscOGU(pPo~zKLKtRFscMI3ketn_#n7h0sk{DtdF>
zL^1<w&+5sqHn*2e7dmqMTA56(Y7x03f&6Xn3TI{MALhe!=qaI>hF-2My)hs2K!ot}
z-gp0i0g!7aAtt?HoV8o^TdeW<Gb{?SBU99?17|(xNxFPbArK4QCA%Oe7&bF;4^~;5
z5qR`%2CI@U@KI6GycFEc&#)2`PuQ{snPs}|`dZjTFM~kPQH$XegCyb?gBi246ky4y
zsQrDgop9Eb4}y_#$;k#-t&7(RxHU2*!mQ(YA3h2g@|9QZ(!p9Hi2{_^!Ndb2=@|*?
zXY$ByE+_S3uj)>yyMhb+B92E3C`*&0lG+nore8J_PV@pt4T@`2JENyW6s?x}6Cmn}
zg?O%EH9`(~4@|BnUFDlnKX@8CWkMw8Jb(m{VYWh0@QV5hJ2I)_S#n8V9RshZC5K@6
zYGaN0h%OFrxNtRc-l+kgU7hDZaLzH4U0|L?mNNqW>oP)&B}3+vYtQ<P%f+9;lmlmf
zIx(3mk}=d^Nvv-UK%y`X2+Jaq=aBjwnw;6ewi5ayx02a|$vqDP%P#SG+__P9H`gMm
zAQs!cT)UMFao9QQ1MwGSgz>DG<WRnv3e4<&IcaLK$*5K+J_g*lCmN}^yNaipzS_%+
zS2uZLF_C0K9|XomO97t|>blN4_4-2d9}PDFGJLzoO&R57R@wo@ddMy{a9@T{1i=q7
z)M%9Fmx#l1F3B!KA$((dgUK$YanWIxk59BlO>vu^s=o2Y-;dNyUm~<d&si}>I<Z;2
zvK&Gx0Bvw1^sPt?r*c;lE_!PKvPcgvC2P_}JVvu$zLDxHIu?_npz5K;BFn(5&dU}z
za#*4PIp_YXGBfjKG8tt76Az})JLA4_04++tGuOO&V>?PVEt#D9vgCCQ(K*>}e_&&e
zRmlmWfS*gyr@9#ZEyCNtM<e3~=$>66{n7+Hl`(z9Zk>PTl~-tf0jg_sG#w6yM2A{<
z^$gLL6}`y647p-Q4_!}mCiwDRTK586!X@=lhO@rxQ8PqzRJBFkPWY4iXlUzV<UYw2
z8hem2v19dH>4HD+L$V^x;L<o2V<)<w=2=GZ6m(TiE8sFKKSLpwsVv-uYAem69BLra
zCP|#Q1w=+kH}UX#@*_sAQyL_KI|-x?+j5YO7kJ#<+F|1P+t$u6dn6N#MCmeOtlFx>
zV!8dtvwn4yh#iVfmX=0Eu36jjgW?AYJmore#7*%jHnw3vd`UNXmqfnr7C{$sEx%h7
zRdqBnS0JLz${`vL1;5$)snSge-okClaRZ7LDp5q|=Rk@oa=rdZ4dcwb#tyH=K1+Q6
z=EHB#I${qAV_|_oG1W~8SB@65n-*bpCw@&Fr_hd#^FYc4`;R%>sOCQ2J-z(VnDWgX
zx%yL{@i~5v9q}q94>+atG}VX>I)s!2Ir!RnKLci6f`7FJ-l3Tset7Y&0UwRhxL6eF
zu)gF8O0LV0LphBn>&4M{L`{c*jC67C*mGt)OZ?_rrPAPPOaN+8uPpOEJz;eYaY{73
z+iH79CYb$UKf}j5SSOAYB`qezSB_5VI5|n6(zrdal?pE(3|9si9JZ-<h}&MrB`Lbd
z{xC}iOiY9Ele)&=k0l-6OQ-#5vyC(@#GjPLmadzUV72Ce@QXVBL+!Qc?VSI#5`jf|
zP|qL@o-W6$*~Td%Ozvf3lDYPrHCZcS@pQIzeH7?n3J_eR&_H_;JQpY5@Ki!Q#uFd1
z%OI##d@4=|#qe+e)Qb$|DmjXQjQ?Go-B)g39j0{o1Z!60Dm#BBR#`Q?lc}XcOcDi1
z0QB$9_O-@t|9nZ+t;}ZVIzI*AvOSS{w4Y`%$SMEau;i<5JA^?PN7TGQzyRoq+bdY!
z(*epPyDUG1TF<sn<4s596S+<KM9Fq#agu>uDO){sjjUkp$8F*H?zr$i4PT5J6f9fZ
zA$dzBqnqEbp}X^S<o5UZE%{PR_WQP*QCe!>4Q7FX{3`=<(A`O?&Ts3y6Pq&Qc(U!G
ziPwZ}OixXP<#O2ljHE<|aF-ke?vLYe9v4BwC<abrN{}q%PEb#MJ`5T3+;^xVgwP#m
zMKzU0kGOz`6g4VhV~n;|kckm$O&6KwpGm{w>6{-jUZ-}e#|hutkpWEHm)vx0kR0a$
zmcQ!H;R95~6lWu&F<ZJZiB03wO{~554{fzsV)MOSf(Uvt1uWymk^}gTKUVTcpMc}r
zCd%0K=MGi7ET;G()Z)s&Rpw*`I!4M4>o*?-(Qm10DlSglSoMRG;<jV+r5s!UtzztB
zM)uDj_YC9(^{utrh(~eJPOy7@R}?xgJy216PU|g!&UEA3wve)Z%crfS_$crrQSy3}
zJa;~>r>z_6dw-pTf087XH~Z?BbEQyPi3n2vmU(2X<0<iqlv9^XS&Oi68A4tb;`I#W
z1wk@`Og9;~PA1D)nWgwDht)G(s5h1Q`{00GVJWQed_WTkOUqelCSU)l`%r!8=R)IN
zKOTZlg%|RJf3@zqi&BypCVhxjt(U_Oabaxb+?7B{`c24Ve|4M_;yx7p0n7e9IrkiZ
z2ir?Y=H{K>sz3ofM!8@Yv3C?_e3KHfIkU5%S$Ylj)>iUt<oWImT6d{F`^AmobP7ur
zVL6w{Fs(|533}`glqygX8B>AByv9+jBW8OoB1eO^3<8a-d@CAL9ddsnhoY9NH_j5B
zfgyD~29$w=(NXm$x3B?7?RCuN)M{Z+E&dfx%RE!oCNjDyBuo%{X}|7d$X6wbn=8d?
zs*AoUFiJz33_;n8<ul6iVRGX0l4_l}(fmQR?Eh-{<D4$`Xyb85Qe+fbb`6O1SEv5Z
zYPq;L+KO^QFTV0A4gO);wbK6Zv~&5`AJLD`P&qfoXahv|JF9!QBm-V8D#APGa%s^a
z9xsE?0xj=FLhF#q6$xKNC&qtjK}~`(4mnRDv?noyOI^(RFvgkcsE_rCijrv}!2j$t
zVeqW7;?pXdvD%U7K46IMaumEqeaMUokO+$ISa2sr&L~MBYI+QqTbWohwf?72RyC)F
zR9TL@*E!BRoPX8B3C5YoeIi-JB{vyjNj2OpBDK(hHWMM4@54ffgEZ<sO5KX=&Fv}o
zjf1=PWW^E#?z^!#5;mXfIp@4lDiw8hh27w9dFN7dBa={_5eFAv1STe+d15l36wqr;
z!1sdsb)a&tH2&7AO98Q>`n*G`Xlxr%oH?b7d{C&zdn<BHS*v73=FPQ92lP^dL@W0K
zChIS|fRDt-gF+qo`2%3{^hlY&Mhb{(l}p{xY^(tf`28h4aEm$ht>b$qA(@;AMDTp1
z?IOZg2c@Mu5PN#${Cpg7(iG>8D(1yVzQV>NB8X@<lRX_n8b@+%YLSKcQ<}t-JtJg^
z_8*e<_Rw?f8eh`(8S{IcB^`gE`c|{NOqPpnGI+SN%>v;~+;M11lBl$1gmz>3ULU$J
zsOnn%>*m{e{R1^p822ZS$3QzVLH(uaY&+90)0tkE{E_^jOY<CYxeiKE*7a7z(%`=Y
zyL^ofFDw6(w9NAVkd_%anEp#vW|?K9{#i*$HDYm(rV3~w-vY-*rA={Kcf8Z+Ho=Do
z`?@kG_(NQ%lo4|==3iMaySe)rI8PDahEw|st!w%jj?qp!$e;UpZl&)g6W<<w_K?>W
z$Kkz!+_VUA*Lshoe9`RE1v;wHDOYB?i37$k8#in@dV+$Nd-r&ZU}%j0?4R$4g2HX=
z$UgQf23bqTniC~0g)+Rl@P!}BOh9){i5$^*0RxL+I;9m{ar#0Yk#$eYBD#g$^-$3b
zjdMNnW}>QRGr^gEu}~>~x#MlRnRZIBL|9sRUF}6FG+vCpzmv*o$vXn&CHQ_WLeZFG
z|J>a6A_gjXUH@cG5a0sJK$PQMT0j8Nu6ptcbCK$(Zm#opNcQKz&Wmm!SFeS&JY%Fm
zjqiW<n)UzcHT{2E{U*Z{x<I?;l!w|Lso@M>p;vS+|353U{a=+i*jU;B%gbis;9&jl
zQ}IgC_HL!D#+kGR1It1_89T~<agNZITAYl!FB#^}gi7BlL1MT)?@fC1+!G-CL#N85
zE<tZgSy&?q7T!?qnu2PwS(bFH0&)>{g3(S&wGPWQQQ*t83OWN=-wC3}45DSm_`b;n
zUY&1Bh9L|{asdbv&GtC0=`U4zf)ARVEeGkvoD9xt%Y7AQoM7yDXE`|pk0nB9cqI){
z0L(`O{@o{*uBADt&-=2`<UnX}mb!TvZo6=u3(%PQ^Z4OX=q6lqA~`b1^_PU_Qff(P
z6?k8SJvP2<J5G%KNWuhe)NVRP#|5UWkHY5=3`Bo^LRg2!(&;lV@WD4!8KL63p~U33
z^`MR8mXGt$!_Eq~H;3B@=LBRgT?rH*mX_dGg$f!Z%8$E3PtZpJd>|GO%4WmQE7mx?
zn(LMa`}2{C+0?@pd(_Akzw<6fZRu?e#%<JzeEqdFvbwVJ7^V`@A^dZvew_6$Jw#cV
zxPII8y+oXtpYiT}w{@Z%>teCncSfM4bC5JuLtC{Q;**LM-4s^0y!QT<7COzIH?Fy-
zQxWfD;wFA4(Ws=gIZpw<_T9OAG5<l~dXabSy?;z3Qp3)^Eyy+b?e__6JSu=ch@^2M
z<t|GTZoZ4BE09Oi8JYdHw1H9u1jKY5DC4#lCxk126@c!q&NI6Vp8bN(KHYp=NfkeX
z$S6^D+D=`AnYb?udXwQ6#OfEL&Rq-Dtp=+m4bs=fdu9;6aYA(IIBlEu)lOq-WtMl=
zBQQk0#Nns<kuB_l{!Q=?ke7y#ZIzCP&xj7)!%r~i=XuZ9kvw|ukZi7zGYQ7BX&C@(
zSwPbay%PmPN&`oZb^HvL`aa^V*(X6f-T<Y_`EOI`{6AifOZJQuX~U*))cXJz3Bs$1
z5lg<$=P$=%N$p)AWW?bwj+;j}7<deU(DV-mdlkuDI9oB0WmS#e)9w30z}NtNHV)f{
zB@+2%Wr0!BE5T@gc?f!6akBCtI?d8n$@^QS`n}+Ss*T3cRx&$DTY~QPqpf<&1UNvj
z7z*l9j*ThcyEseBN)I2Szr^%>dff!m1^S;VJS<GQkG-;~alqa((@$6<nW9=c_mKTl
zqjtU;`}~%y+_G=7aabNHhhiSZN4}UaKd3t+hZ8I=zibL6sGTYvTe~vxNFCVpVY;g!
z##RiR&N@y)dwSX80$^@4V1_DW<0|?*&iyvNyFs%Qr^WEPm4Ay*c?9?JBs5CIBTd@V
zg$z?^FG6Ny6Jkg6=V5gy)DF*d(<}*q#tW+0oA%hzP252t7~V;mq>H>0bo$8GE~heB
zGZDh|iMf7r2ye3u1tv{+zSnus>eK*fiNkKt%85Sc;XeN!2^ePUV)YaqelwnBo=9c3
zE0fTF`(Np5s#gT-Oo;VKl9lixSGn={htLW1kbhw^YpE1QJ4cMfKE$8iD0j3r4M&VW
zeESUPdSiT;RfTaRh0JfWDV6?#qcgGFe84&H*Cg;Zq-l_6roTE{F)I-am>C#kZrkRa
z6V*sxc2W+mVP<g80Ow_9+JEe?VL_Y28*m%_{E864K9bkbH#w_G{ZtO?0nCH~-mJ6r
ztwM%&08k$Ai9PJyAZch4JUpDny;I9$?7F<{WXjB@CqS>|v_>wsidLHP2HOL;V(lrX
z{0buDsR+i4dPRSs)#ejLxzS8mQRn<!I)UYNM_t=t6dn>={aPqYTuUCaL<NngALY|q
zFuPB<|4LjXtUyE&K(`I;t{mf?n!psxxnz_LJL&jfL^Iu~i8uY2e^Sl8IGs~S4*~x=
zY(?wwh%YsaEfP6F6h_#bj$Nogl8DL-R0M9m!xb61<t+$8d#daqj5n14f4Q@X+{Thl
zt~wTHoeL>##4(dRJK4zO3q}1n4he@cB%o)m#$^|QtPiLNH+$}c$;MP3UGCQO>6Un`
zM|(mwZ#(UijP6mL+Wh0KrG{Mu|G{DEs|}vH*i#M3?EX|su7hZ6`BC_s5$>IeLB|;X
z?4(#sTeQa*3J{#<I+|3j)VlP_O44+zZueoRJa<I9jF3>c5A10{u|wq(ubPvH&ew^F
zcD9vNW4H!iWJpIbtZWX(B4jFn7DxW8TGRU|NH#HEaREDY;>P}G@^I(qn~(J&U86C$
z_a}|b5q$9Q4U>QB9$!ql{-kafGqgtAzBDzeGxUHUO}rW-A?_MKqv`6`592*yPk$}d
zQCEv`xD;2=>esx#s23AfqXP@6u+Z_xsXNdwY8_#rBWkvsWXWNf*Cj!BlCARlHf`Mv
zd>c<#FuiED8=eN3B?B$O$SXZ@eqc2C9uBup7`Ye6UsX{IFD+05zo7bZJl?-b_f~3x
zSHnYlvMUJb*ZA>x8a7cd*mnCG7qo&SPsncO@jMD}5hgykdBejIw{gXZe^U3uh4sV&
zO_Xi65HiC(fi0o57bt`kniw~B?XeEEPH!l#j=E6^mWo}IS<`4rH@cA39iM~378+yc
z#-zN%skM{LTzSj1j2qYzo&S>%|55K<Ke0NH@($8Sz~{IMi2!V-L<SX6{|sbb^^62!
z8u~H!hP#T0u9B7B@^j6YZo1vh<=gMi7d4N@L9Qwi#e!P9@f@wSqedH?uY}(EWRroH
zLw--}m_~0*Q%4Wq>Yan=^#JlzEd_lPZS_iw>o&K}8!=oh906r?ZPfEFDrT?qYgSJC
zXwWK@H|iH?t6#Gzw|R6@EqUM8l9~p=W{7r2{#VJ8N?Yd}J9~hFXTi_LE?I(^Vw;@=
zvhRbB09V83sx}yB?)jyO0Y8&7nd8h~iFq2Tu6$i{(<_ebT@(Tcx&^%^(oN+1&9!Nx
z<5b7IN)4e6Z<#iCeWZ`7BtWCP($}`{l$zNrkTtciA%l5?<th70b<4Xu?V-E`wck!=
z`O{eGra&L&`w<4}i(hnT;4_eqXZELBIl=AXm>NTjacOWL8^w7RqtK1D(%I>+kNqq3
zc3c_Xi(>h^Dvzc9PPJ(?kA$6(TcYQ*9YTj9meKX-Ghq`mZAvxC!&rr?Lv@O?zy-y$
z`YvYBh*GQxMp0Fes}(L;u;Or%>wEUuCshQoi_X;dnBw<W#g=6(&40##hetXqBU`3;
zFrT;j6fdM>kon2$go6ZPxz5FXn}KHCzz(T~FcaQZwSo?wn-Fh47Y&d(%nvWu8|2DM
zd_?2%#Wp}zS4F$(y$`)I%ls!FH}SM5)>)Ocdy$3y8LQ0a5S&4tMC$l3%l2kfiHnX6
zhbPm4k(QpEl?smA2|=z{N3a&z6{D_J;&N2{!P2)_PP7-be!#~T9A49vd94*(yRP}*
za&rJ)U%^bePN8Rx@ylk$+-wqabHK`6vp8Swq0O@59__qKDz-~?xfs&LSC92_vf8Jp
z2XV0(-RUg~XVu$MfFgOh4h0g6OF(v+Z&lWqSdyTna-cn%+O93;pf3<gH2nAoc)Gk2
zQgL*<l4EU=<kMtoeGk^2IysNrQbBxs=SOs5ux?%;KFBb!EO&V>j3~5Gj(8WU8mHGe
z6_o`{xRM`BoAIl!EC%fF2TY^ZeBkHL_$e#5<>3J!+@EcbtG98R(<_Krq~GsPTDE_N
zk}L?TVxR{ec^M5XiF2QFan&RER8YNZ7>rsgI?E1iY&u@j5)61%Ry_7_!mf8XVNLmK
z@Dh5&NveONxDr?fxF}UcYzL}Z0d6nX72}yYNAR4+17QNWjfS29n(Zptxfz_f*N@$9
zRn2Riu%`OjW9=`w=$8<R^2P5v30(=eRIn|94JFd;x>tbg#ns0R#mg*)uadJRg$98{
zg#gu&p0ie!3Vh`s6Z-jl5P8_Xd@KLqOQN3jg%OI?3hwF#Xkd&Ouv?l9j~LmK?n_-w
zq52*kPv)eSn;8?W_4{6Y;RIk1MAIj&ecO-kAGB5s69=Op_N2vWXPvopuZPmJIeh<-
z>%5&gUEc$evJr}3BStG?Zf&NOe6a?f?9Wpr_Z6&VJy;=DZygM}Al)u*;&tVo7Rp(g
z(%k*Ms7?93%{$RNf%aT(!8#xE0gvoL3J}GbYW*ne3hm3?ow{2WXT0GP*xH4!)g0|I
z^Kuun;JQ@W>!beG*cQRyC^r^QU=rCzjU$76x96*fFit64{d5HoSYMM4bmE5X=y`@h
z8Q4JIOV739#9ipt>`c1JA5r-DRtK`=eOv{HYe5OvEQD`(0_>IaS1whp+zHIjGCsf1
z>o`<~NTtzs?wrwyr{}{Oo72E`Wv|W8byV$Bj6}k2)HhGjZaeo=f=P>xTf8kg-trHs
zS^!_96*%CqIPH^HDUNmtFmj)_O)*_*>K7y+DNSma&nN)N{lp&Krx=R$!0)A?;QC;P
z`E2Vb#`rF2H)?{<0AJ)r;^Lv{UPY*H0Z=)@cYTGj0)phs4G-~OAXS>elzRa>XhQ%s
z6GwyCq&N|c3a`Nr?K<x>tcVvy@@;GI+$cpmQ5t(v+JjNBHV03r(*`G1X)>Ig(`$uW
zMm5m&+HUke*zJ2B&c~Y^bS@Z82>W{Kc!}rHe3fd~xqZ8HMQuARYCx4@v4=1;w8%8m
z&*BJv6l$TPD6sr(RL+Y}bPxHa!mPtl7TE(X4F;OHi;(bm^z;6tQ~B@K+}m(okL{^A
z)(srmGVxC%<uD>FeU$<Ru`^y}YUfi`7NXc>o^Wk@1;MupH{cCP=``>Xe%j_$E8hqZ
zpLsJx0D{b?Jf-W>LreoZc1kn`(le+s>*gXc&#2e%r?&0305omXYmpo2d}TE*YkQ&;
zv^<~97@XAN=$qV(URi(3GbdUUfTKru|EfKS;w>Sel`W>NE*Sd%a+Lr22kC1A1_x-n
zK}{WCU7Cw{UKlb9fBAyVB~iYP5~y9YDv{Pzc}H?nq(5V@zKeY)&VhE7H<{TiyD%BP
zpr=s%q!YpR*@H&i%~0eu4v?4~%xFrD_7*6&ssBMp-f5wF5)&luQhe$ImbO^or~iPS
z)IOCr;bjxJ(vv-vDPLYzeP%3Np&0;U&ggJqa?kA=nxIStkx#i_@sgaWKu%b5R$_Z5
z7qGtqi)x)U_FTqZNVB6NcUumeQ>Q|d3ED@wogL)|m>Xz$TaXFrHFU2q=Ve~5WXx6%
z!F}*Y?Wa$M5V#juT!{B3bE{vv+>D8s9=-9%GUO)^)Ld@m@Qs$?An7pJcpa<skt_w4
z`OQEk>|p8j@7~KKf1u;}xK}VYQNm!WsGen`8%nV4m3N_n0_H7IzWA2vw>6Vj&V3X~
z50H|0Sc{n9>=|KwFjDinC`87}-9f?y4)vSiAgSTqFUE+p>ey~2aMBF#%#;s2By!S{
z5qQ~I`AG9KwbV3*UFHOz=+MV}kdt#?Nrv&gmE;4~6P(E3B+ml{u*ii#prGi!3ZneO
zy;&w}Kt&RZd!p730u(G_C$VD0y%XkT%i0^sVwipys2w8X!ctoZ6k9mKi6MjZ=1+xp
z?;*^Krd8fNe&--FIctGku3EMcqO_d&vMIAQiD~zm_<`iZvVxl^8Fh8tOniq6ri{ct
zw_%CZ+us{<fWFBAHlU;j*!g)2FbjgnoN>-b*5BT#V<49wku@o;+fm;(gi$r<ROv!R
z5klQ1lrZ`!-Zn$j;4$Y5-x>K{Wq6h#fwV7j7~bb2YKl^3xHLD<kqmg3Ph%HBY|8m}
zFD7a50)y18@42<hGlyI!KQ8Gn*={zdjh^p2@7kL3p{;tr!BxX0fOzTIH9nG`H((zC
zv1bh@)ur}nW+Jz@ZJ}EbKf)QpdIkZc_E9V$GMbpb5+(8WztEGDc(-MJKun)u3J2y5
zYy1&yyD!aTkmx;ODK!9x2oJ)IER(Rj)rK-cnrJXWqaLQ&X$+rZnwOUe0LLLz!&%cD
z$89MH-GN1#Ru2iP2e#$6=!o&ErX8~Y<Z;V%ZZudquQ&O;BBqWM(1yQ_l#a>&3`hvy
z?EEtZS`Oo|Yi9b1SRV^iSU+z>)y|{6h@1)qz_k2vF%@CRKAy2vlC*%uLfpQE5GL%0
z8fNR!rqw_+>9uT^w4-R2BmyH|`$M?Ys82IHg4<hyr9a^JnTJSV_HPJ6N`J`J#-|Z=
z#CXNp%q{yAJu~7ZLi`&r<g>It@hO1_qVwbiYFP;O>HD_adjOw+g@CFAj=C$dTT&Xs
z1)^Vw@h7yGMDUrR%;8pYKtR`n|C|i(wopYj0DxZ_4LrVQ!Hao^Lr17M77oy6g|`K0
zx6Ap@>vfi(8^i3N_Cf)zdX{B@yNfdu5nL_0?<s!i8G1Am%d3?-ggsCu$g!&cH;NGK
zN|Cx6^M=sl1BzL=kNo2(A<PBO89UVV8Y)e&pXjFFRUK&z=k!vN<vz8Py48S~La2g7
zN^N2GQ}|&QBX+&xX8gFJ52hSzImf3Am@axPPBHqmWhZ;mNK$;PAHz%Kv6P7B6maRu
z6G_zxJ{WxxCEJO8zN9iE)^ScqbDft1xklOt*S90*t%i+o=m~5>$m)MoKC#tkrm)We
zGy`Z33-RfkG>cIKO1JQ1C*2uCWYiX)#+?Q@2Mu8MH$H`h6Z!kXT@<iJ{}mZD(U<#!
z#5pkaDU*44zrpWnXxD?{wNLUm|HrU3yjs$%K{qsPEO2nD#_rt#m*(T2tN02ryD!$>
zpODSeOn(RfPIC|^M<RCb76rvr_H*kErZdTS0n<z%K|>OrOw(OaEd1wN`?v)CyQ8|~
z_wVR=$FYFm8@rqCFNN=;RG!G`T~NzplQgBCuSn~G2-Jq?z#WNzhM6%o0yE#kJ{Bq;
zQHR{v<ha0KLSz1;a8WA4_nyl(fFynQX$9@YlgU#d)}2Zsi2%@CuV~CbVZ3MVL2g^0
z?AR9O#aaD}!!(X3L!ZQIy}v$CT=mCX)ira%8WW9;T78&4au)e1LPF?eaKb-S+eTo|
z0)IIFt2}c9#qTmBr#4z>p1t*ffbjMlHIbP`#56TorG*Tx14E;q&mG`5C|3+pag(*C
zb$(q3ha4zF8QcklfUmElESz?9VVLhl(1>qTApTh@7r-W@<uT5@WnlM{HpM^z&xEW!
zVhj0j<mNXUT2fS|C+Ayuf0)73Y|9oxE|w6?14rK6E#9>=Ne9pQbj`r32+Z{c1)v_x
zz8Iq_EtC2Q3+m;NeNMh05h3<o0r1~(3PO~Vy0%hoN1gSX^SPI9GePgZrCJycTI0<*
z_EPH#ILFQmPd%=l0o<yad$9w1C*^dpHZ5$^Zx=_<Sic0hbUpl}0at8X*{Dqnu>iNI
zfV(Y5C0Ob2KY`MVZb@#bUDC9qtb~Q>nMC{_8pDd+3$hvZ@P3-XUHpiQtUZ<Gg=Qhc
zV9)f-306?ihv-V^$B7A@GWDG#!I%t&6g}VtU-)WXZnJwD?HA{5%7;azI+f)`Y5Fsx
z`vE{-a>`ejzaqpy%tONVQk0YzyR%DejyWV7O!neL{OxrU3L4174aw_7k?aEtenffM
zaTT{ROV7^usXJnYHS$s6g<J*`P|Kawdg_rmgMC7CL8?;vm?{u3*cY%KHVDk$jB;3k
zfs;6rm9Ixl?)4^S<^S||9Tm&NME?~TqZTlP2=y+jG5P>8;9fC91zv(wx%O^gkYNnY
zO7ne#np^;<{3n7m$x`d$+}0x+_m!IFiG+M}odLY9D2dL3YBH+=*WiR^3M~(TGYBHm
zDZl=B%h=yPZ4fG!6|d#z{&#UZwLzjx_{9XxGk7%_{k)9fF~c|-<uZ{nP>kJ@fQ7D0
z(kNKa`?`xg!!YA!=onA<2H^GtS;p9RtKIVxFrHAakU$9&J-q6Q`qR;>*u$A5Ajg}V
zELtJ$H<d5OotC>5bu>XOLjtu3kU{nWA|y*%7gUbLrX;AbA)MoxzJXXrDgCCo^rGLA
zVcvJEa28mL-?To9r|*v=jyx%BufRy(Yx;X=RTkfdFk}<Ej!NSXg@~?poe(BEwidA2
zoJZdjbK{6YL5i@0hz};(_zZLHQ~exspq7=}@8)GwmR^mGG?$EZk3PzL01M#XO$`Zt
zg}JK7#`0-1Kz7;Ib^usWinW1kQrST4;#3pD2&Drna<l9Z2&K|lT{3StbTBjf5b}Ja
zm_m>ZKXIxM#6Wh&S=<QUUp+@g=O^+?+U@hs@L!7a2EQWosOF+Vs-rqqJ?w(;jSD!I
zqJtBBbllh<Q8WWqRCftqQ`j_-_F3N9xXqD4tPpUuN79Yxc(5cMAC3s!`T-=}qb$G+
zz=tY%I#_Mo(KE_g8839*oh$dWnxShbh_h5}IRk#xacqUUpH{5L(odQCOG}aB?Ci&_
z>?dMBpcI6s3<lF3cb07>$$?MuE_Ut#!!`rRPyiH#*_@{fTY4oC%iZIJJ=E_AD*2Qp
z_O>q2snW={P3{ib^!GZj0eP#Cq_$<Q8#c-^qgUFxvIf*d4fnYZg_M3uPJ3jS9N3rX
z0VmvG5^4B&$-sQ-g}zLdKM>V{k>{~qm#;JgWu*4U{@=FXYpbKw*lKkTp7?HV(Fi$<
ztU3kc{8-G%4fzoqr);Q_>&eIH`D&M~#cxYYxcoZtJUU+asMLr6sFedNwTm!Z9lEOD
z7CyP0ZabDd$C={S=?@~*Z@>}$=nt->6fDwUY6VgE8`wOO2Sc`Qpq+;-Y0JFg?2JfF
z(NH#X%4e+pvt0TxHoeHqZHBk}F}n}+zzIoO$Ax~&XG{zng1ho0RaaRTB02K5WkB*9
zs}bqgxBMs{eUHh{V`A#wEIRKqY$qz=@(IXBhxC4Ljn0&kPYEepm-g5pgFo+@T^vk>
zT%Vta4hwaN?#P;+Qq;ay=80!rys9on(D{|l;;yEup6R}cSO!KLDM4w4Dm68+fz~#~
zcAreQ@5$wu43f_PeTd^Dc;=k22QV|L_(8OErsZ31qHaBg@m)$Lr-Vek84h$r{b!8)
zSYs@%7}IF6x0d~fXG~f-^VuD90lpATwZ)3<_n7K|>zNQQe^hrh$o#Ygk$gOFKp0$?
z;{ZB^NqEpE8<r9IwnYtQkIOKqn%dbGep<peHVs+_Shv7*erN`6UBfv1;5cf+?P0ep
z+(%WK!cMj+f5HEHd1oUSw?Kqspa2^?KF;r@lL%gEdphL^U7VMj<iLYQ6gE+fP*;cU
z%#=kD2wA;bE^@3veCZA~cJ>_J&eH=$7gqgnK@rcrm-qUTHz5g)AIS{8Z&uTQ;vU+U
zC_ARmlVTWGSj|<`!t@Q>=f1FMtKt?q0@oz|y}ona{C+Oo$dzU~g%5zCo_Asr+V8ii
zwkHV)i~vjw!L0re-`p+>2U2vT&n7QJn%8FsRV9Ua-R4w!6@<rzr4_7TGsT$O4wP{{
z3BXd1+aXk-18_2;@t)D6fZ43#f<xY(cq|?6u%glu)8vx#5^~i}_Qr<LH~uW}$XKCI
zOV<5<&;@=W;fa7G?{!%E1E*16zLSYnS_1|$>R_iziHz5iQky2ce&@weKE=FbvmJXA
zKAPq7GS<FO(yF>bbiu!l9<Lqsg+e#`*NAhpI;iFWDLdn2WnCKSw;<H?a2<wKO40TF
z%;5)z`h!iyaSCldO|@&+Cm4c@#D4h?%<QkCJix*4C-ZGp3B%`uz$;Evg&uNr;~0Xd
z0f5MR@`>72z=2)0zmQqzo}4>Q$n@aEdX>(|>{7ecSVVu21=%+s4JOfdI`llilk58%
z9P35A<;z6uGb3m~-Y=0dp{T}d?B<>F@_ReK0AWJEqw)yCWebPI&&Kzb|FCU)``Rnp
zW|ZJ?!V#oJGIktZE?0|#6`g+lAY<O=Y(2k;E|OafA}+Z*4UUuV_A5_$Fq~DEt$Gz2
z_w6q(5}sM$)%YCuIZt{5ExBj2DmShc;U2<wfh`_)NYbf4&kZ}<;m{4nmMAEg&hzLU
z?KOt*)!AZaPs;23!%CsHYOR>}3{WTa`G>Kj$jV>l@%xvJ;OYoyS~-U(5W_&YmzS!&
zhX+j+8Z_N@*r|qbD!1{WBbY7{$|CZaz*y(@Fr05myS#kGL~4jfo_8d~8z?l($GHgK
z@E$GDDi;BOPh|6E{oz`R_mV}k5l_AE?}q%Gp=LFhJk31h2a&#J=R94VC}W)RIX2UZ
znCo;O;0rY&yusx6?$CkSG0VMHb#N1=FEUsA5ju4kcxPR#^Zx)qK)=68bAqCg4%b5X
z!l4m;^YNAlAX2+3kdW}{up%;NVm-_?pXi`GXtywcx2JT{{mxBJG<HA6P(GgJpJM{J
z?dtl@|J#Z?cSS01KirOQcs_P=1V^;jorQALGb1UUi6M(U*dmvC6N>kOaRR;RhD-qX
z?<xFK$|aZ@@J$Dhu&AIJ^tY@nuUzCI2CmUtSo+kHDCoVXNXb#!I!R!z(y6wdx;_Kd
zqOdT-jDKG>+MJp0*0*ikEOeyJi9W%VmW{^lg1vy{xz0oih)9N;nI2zBz6OVgWza7J
z3{bHht#Lx0?7cMUZ7P(!Y#zLa@h%8W)5Qnj76^^X*8>+nA{m)ORZtrk7bDyS{@ujU
zqF}F8y40Muv{V!5#95sygj+E9`m<<`^kXMn&$-<t0_$Db;i&M>_gc;=JJXA*6z}N*
zq_C6J1OmFUXm9Kbubg#p9H4SP&1LbxV_ga3MJt7y*lx^D+6E*<{CR$y=n~P23OiFC
zvzkc&v4e1-7=cjc!{YlUYX-G=qYd_+eHzY7F#xatA{yFd$H)@POPRkP4-gUnIAvdg
zzGZlRVaQ83Ckn>%h3AOB?9tuM6$?qeM;<&&DgCMnS^)Db>rBVoY@rCS_#7rkO~K*i
z$g^a_b~AKWj$h;JygMoCza7Gsi%Ld6Iq+Tj-B-Yz9p##w!|B}8{#IkhA!U@CqiXAe
zp~zKR|LW#BFp$`3p&tul@dxui4Ai-~Chb!6e-;5Nwn!@B6o$b^rqUAUxcrQ!As6!-
zNDftY!B3PYvEy?%EDPtNXEW*F5{**`#-BEJ*A1VdB4zRa9>ckL^%x~SIWE0P%ho=I
z4AVSBitY-`+mY8>NdebRQS{jrP~n+Q_`Oh0!~4EW!~FY}oN`oJ=?0%lkbw~rcwVr*
zH8oBXnrpU1GWwKZVzSrgUd{p~(PDC*Lyx*+L{Zn6!0R-|?54F8)+`Kol-RxGk|kXW
zW4Of_Qaf_oHZ<;(NM}ps1}bV(F%yURBXE+b^}y&|YYvu=<ME42FGPiUu5Dsy4n`#d
z4cKXhJ7)jvyC<ugHcvc#Yg80SQfnl)1lh6mmVDSaI|02IW;0=W``yIawYf7i4+1!C
zf{DkCOPQ)c3{XjL?GiR~-H89HO*^(Sb|)e)AnInzB9cRoxI}WEQrKLv6ejnny;y2Z
zGpB{0(~r428(^hx@G(<HFiK>;EjB4#G!z`LU=t&c@%z-BRf1_dGdSkOp1=g|?xt8|
zF8_o<Uh3Q;ap@>m35l$6rSdscq6jgf10aO;^Pa;|lcS@~;jq;m|2sSnrP1eP;|zyY
zEI4=NWT`OyDR>nOc#0XLI=vYb=RoZW#)+K9ju;pIrE+$rg`l8W&TQi40awXxGcPpi
zm*v0^04{P7vsGjcEyE`zt>9I-<sXC!uB)%5zzP$p{QH6i%-@=FM!~Pvw2Dsv=)Fpj
zKXAROZlygtsEmr4{jRPJP1Sl93Unix7yZ>Z>29ra(+wCwQAlsuz;!+5K_CW1U|wsN
zAn|&03535{66YY}X>yu5d$<|W=cW-6%Vd>x&ijQ>5TJz`MmgwF@wVBMnXWBcqSjba
zY3#95fpO5@{JiDBd`w!TE?0HfywjZqJ?LAeX34W#h*je^+WTi)mlpH86^cX`@j=rJ
z(6JY9MQwY7Q=93WHCqKZarpEs^1asn&wkLy!Lis|$4A@!3GNgv3wde%1-;<6!U?bp
z;=S4LS2+71)pPJ524mfNQu1m+9L2{+@}^97(eyeb5i-xGR;6}FxH8b5e_5yY*oXaI
z!yt#VJDCICotBtW6bkKQTul4(D)m*wI7@@cZ{PAUh)HzA%pD5mirsW&xN(mdxH0Jp
z_x8k^?UaAaZ5A{$GnjxWD7W)Rf@SWBVCOR6aIkPTq-U#%lM!v>6S~loZE=Qn>35o`
zZ9a$RsC@|MK%~>%PSi(afT{1wR}ot0*Kr&Tow#;K8)e{j*)9%VF8{+Ls%%DPCzaf|
z_*)%j2&D}X69WBU3C6W?jS^O;%ytcc?<+;$m(WVTRgD|~|B|^VWB(HpjyPY-%A{EH
zZ&zCR@i3PX{@+&#*}{cWg4~qbV*62cVH3xN73aJL$E{ApA?3;nb!D$;h>~SEXOV$_
z3o&+azCoe=T$iNJ_;yip#V1mhZPGg3{dRvlMqW#g<ukS%f{VeE@I9ulVDP85QITRJ
z@l`MT#b{pjUSrLfBIP$SAd3RR&f~!3sjK)2*k^b}ENl4~NP~YUC8qF_^jf<fD!BoB
zwT0C5n}1*@pozs1e&64tDBk9Z>oL3OpXBNP5YU<AG$1JbwS~H;BUhcRL1B18<0p|1
z_krJdnFuttKEdl)TXu~Az|(2M@891}MlyIRNc6yn(qqQ$tTn~wyLR9(<}kqHhFF%>
zday355@nAav;E*V!gbzGB2!ReNrFTxorref!T^72G|al?$~wn=p_2=@L2F#fTxX^I
zkLsJ=txh`Ii~YM|6Z_Ys5=gTXT%}a-GIZ{NI<*4eS?Cas$PXtS<G9p&;e&{7N8Rl`
z8jG3QNlhD`ctgJ>Z-C%vY-L`_f9WTMX(FEZWQ?M>pLw-K+D2Ihq3i+&nB>85sZY%*
zT}6cwZwMxIur2DDr5uDup~D$sb60D{RkgkA42xE2pG6ys)xopr0^ElDe}&6b7oowO
zarnM1W{of`7~#ipx~8H)P97M=mU2{yDfHYe>^jN#L8eoBa8<ehJj>c-pw>=iBa*W)
z`Mmv1z2J5_=n}#dmn4qo&{4+9!^8u}-?zao%m5rI)<d6GT}6iBw(m#5z!<~W4fbx&
z+?hw<8{wL_m78%$0FKuqXE{#$P(V{*BHm|~seGQlk?q9%3w7oyA2O<@v`j5X4IQ=?
zIicK%2$loX(j-8e<<yyPSy|q%RGS6w^6*`h7m_Bw?Zf7<{<SUB4xiA7@pf8L5R}Y|
zR^Sp8g`7$_a3Bd2=;ftvh)VL9Dae<s?e4DsR;35$en_0U=i$qYNo2Q?ZpXmU0XDK3
zW3LQZy!|tObdGhm1w_wx5C3S{yP6nyfHT`(N7Eyjzm+nT5#(N1U^Y*=RmW__zLa19
zn`fr!<Hz&kj+^cjt^2iad5Ks>9ElUoz*D8UiAN4MI3(IMOS^`NODeB@Iug4n4TE_S
z-kJkd)@5F!A$@8Od|iKY&Fgkna$?$V;`JRKH|4+`V6%-fM!v@WgFdIGR-b>WV<q61
z6DY_jFWtt@jZ;QvXBJ%wVmI1|32O`#!fa(D^SJ4{2uTjU6Xrd0k6cpi4%yPuXKn@#
z4>swu4?v|PB{uyFoIQ)!xX2~`vD>sTInn$7NMOBZKW9sSeTyjmwq!1bt8K0jV*I9g
zi?-&S{8$sT-qn=URA)KWIjFu^pFFJ>l$_xzd3DX#F#WsFsfA?TjG|YNhdU+Gi$($W
z*p;qs6?RdKSwNGsJ8KOdk*Jk#?KdW1t9})cGTVv9ZY5|A9*Wfz=EXKQ_xn6V>o^KI
zm-bp$uKF@6>yLL{l}ZGx*~?X4`QnN*cMLrq=N;<&u_sT`qBMNVwD5Y%?9M?nZGg}<
zPyu`b{PH3Iny-#HmvM{<`wov*I9<f&A3^h?utd=?o#ZUn*6_a5wrjSPOh^h-Gj=2A
z$FcUIs=fYXv~c8@8O>hHRXQRhCMc&**IU^UR|ojU^#XLGS9Y%IX|A>%<uZVGyEb>s
z$t~cN=+ezf8_LeL0%1}F*eiC`(1`RTCiZs9<mZFO%)&BgC6lHgc@s4Kvh6v$5{+Ea
zh@p5PZ;t{8u$Gx{EU5aZWD=D8xG(fS_$F=mFMXx2N!a3^PT*nYu7%7nQT%`Rz58aY
zK2!1{HL*`HtkdgbD*^ms=zHpeIWNs5LrDK)Bl(~tcU@Pz4j=_8`@E?8=;SSeE^yDV
z5-?vt1yTEyuf|$d+yAJ(Qs`Q9l2JaZ@lZ;(H4IE(gf0}3i1nk-uVt$7=5sh|O@if^
zS)D#at?1GY4Lw|VT>(#R9ZlvH%D5>S%Xil9RpqrDYvMxgRhdnJTsZyWU@K&d3!Ns5
zbtzL>u03j)Y0h?dLK-NAs9>n!W#Z~FFR-XQ6YQoj18hS2PNiv)GD6KKfLLFrEMILf
zy*(vNv@LnHEjF14!<E4S;tVmuB@|O5cO&Yx+3l3h#NIGCmsR$uQC5k*s9+uy(e|=d
zC7yKv;!mfsbb;(@?_?_}8zS@cRQSmXs@@e^HzqB4SVw}085Fp_cu3KK$ULefZbvh{
zXQ%^tI*XP+F<l_j8y7@S*FO<Q?!aYI8P_`nT30#g%`ZgmbCU{t`yy2+rZCH@fpr_S
z*VUI54m@wIGKQNTmYjD}=HjF;tA$#z*_uMf*;u%iF~DZ6Umi6WY%9zpOu)lR_44&`
zmX}^*j@M?7qmkC-{U;^kw6DsLT%@oJYMep+1PrvbUhHHMa^bLf7y{$+wz!|cktsQ`
zlvF4%z~yK4D6bj8ukBe$ER3cr<kF>D!6Br)>^5{VS6V*P;NeJT?^N;kpU)UwR8~vG
zGz*m$mxEe{W!e6HG+6tIe3x77ayym;tM`EvTZ`mNuF$lL%!iyZOg0N*6R1?Fsk~uY
z2RRWq-;f}=&4T+yqwiiA`B@W#ZF*l^!xHj}gQ>D`IXfO-;OP3wm3^N-syo-vn~rM6
z^}v$t?cJK*S@}i6D}SX1A<d=MkxgEOLNND3q+H99-S<UCORXMkI!a;iGCf9>I$IvX
zE{+3~$NHAArV@J8W&*x;J$@Hdf^6xEqSk}-J5gijbB^sG)cxk&e@Ek}>So%@Po5J}
ztKF!nuu>fJLZAGH9`oW{C|hjR`2g}LZ^1b{VCV7#S;sV?EsC403}nkEn;LY72Pi;S
zfnYqsKRMGejy%SIJ*GA>@=mTb5`4hjAmp9HDNkD|Me!f6c!k&INT|<C2Mh+IA8?}0
z{3U3&fM6u?uy~vAx0B<GJ_Qm2M%q1;vWW6`%4^WiNC|I`=oOe=we`qnE~9n{NeC5M
zO<0Gw9VUs%Dy3L=WU}K7Vm@UQTC$Uf8`1g3w0PddXtSGXhr!);%U(^L=7&Mg(z0q3
z2+V;V0Qd-Paf{CowEg&cj&RR{VmV5rW4!4>tc7e4c&9$nlg$~V0{5Iy0iZgeSDk3R
zQU5CU+qk!#^f@z{Jx8N<7BJOE3?Hgh?1KlLSMfnF<4bP_1O=8ft+!j*sr~)L69UIH
z*S|pRB+vph5JDEQfOC7Qzj^Ha(Dhk%h|$t-k<<~Be4Y+v@Pe6T!m~S(<4Z3Ysii<s
zEcQ<JZTVRj006ry(jag*8=Qk(FJOb8yN?AK<Uw%2g(guZYGt!{$jgU@+87<&!Tde<
zX*6fcpIa=w?E@)?fZ&Y^tSnN5yo97hvVn!I-+6hFMJ$D6wVkfhc2fCvj>(38G2<>P
zXaLyQJygLJcoLCoynLU7%`tI&u&A^%xU{M!6ITQA3lJ>rJ)iT9b<=57aCCY}b)Snu
ztXaVc)@B^>7UE;42OuD?ajJkS*XY<1GL=Z0gWJgVX`y#|M5noDyV<3Kpb^H;NPpq$
z<p-o*GEIyQgni-A8u@J2QfqXhu)wx6@tG7KM!ScR$F{Xbss&o*W00%T3cgY(m`^iO
zQpRn%?L(oaqekFS;$lx*t-D5k{vh(Ww?pUq->sd%CdqlERZc|Xjq=BYJGy?2!Tz);
zE5~>02|k%g3*KWT9t;0DBHhrW^2{QFAp(&UgScR{<%N!|Q8lZ*cN=qq0~~kFF>5+1
z($dlBbWIq+yeTG1j4AUsh))eRMG=<MEFmT6#0M*)`e5Y%v*P;Un3pKPhXwwT<bW2-
zgH^qzzt&%BfK;-(Z4oU+7UyPMI883{IZ_Z(pZ|*tcQQ+{HXN5cGC}mHjEx+K%?Z<~
zpWVl|LDPn1%X^DCiM{IiXf7?`HZF@C$vA~Q=|P3AXLHrnXg0F4E&eW<?Ps2&vI!$$
zkT`O;X08J%K@02^`e2r<6xi4Cat<|q@J85)BI^tfohN^xTQ9q5?p_{VvnSTd<wR$9
z4s8z~s{_avn6SPoblP`=kb&nPgh=fF?e-+^Oa|RvsipQi!?$&A3ypKAF7S8rm;Bh~
z>>hhg>1$&}_|7ZFdcg2O$g*I8b{17}NuWhHkx;V=Gv-}{BptiGK%;v&%6^ZkIKMN#
zG}kNJ@zEEqZm=nfsg#had-69`=Jw|95nC_<c6gX6Tk#bK=Z4h{#C|24nuoJ!m1Hcj
z1T!cJfy@{e;&8uXdQmB^es>$WlJb7qKXAoG_r)Om(q^g;J~c!QF@>e#wqr)4>h<<k
z*u4IvloY-%9E06IC}e7?Hbp}feM$!q?=P|V{9p``XawGSPoU81Mp`&_Ge8W=td&|G
zvSo3f$3Sdk0s~9!1yys+Wl4s+9SkLS0#^veG&-vT_uM?*354o*2e|%oJUN(=#64~D
z8Lvkv{gYTnspWfbso6b)Ffgc8vWwPyVHTtr5W`6$^j(P7#KvEDPnoag0ch?@<FI?a
znP$Y~3Dk#U4_eWcSNv~3Zt;B2{<71#%dDumOVqBOi&cLqs?Y}DJ{~;$VfisFth;D2
zB0YK>A_Yu=4KgsZ2HlqG<IKaFt*4$oA+~OZW)`+gn~b{;Q)&G|A-Xc(*WO$t*!T(0
zA`&~D#lf|1Oxx@$$?$m6XkO2@L=!hdv|x8~wlENUs}{o6h5<aG#l*;bHYO8bfAh~E
z$5MQ_Q0b!12%0KAd6^1YXb=o(RUO9b*iy5~${4Ah47PzqA0!VrJ^_tmGJ-rrY2L%d
zs{K8U$2bQ`^Em^#*Ul=9cu--;KM9j-ci5nLKi5^A6B(`F2uAV~c97Va&A-$xMFUHD
zOc9Q``o<YOkKpwGHr@8Z5O>fM#@5L{z_`y^hPP)k^K{;7R?(-@Rpwxt6??yxHtd71
zU2EI|s6!@yE~V%J3jY1ZOVt<(ZYP8kRVUawGi#s47(zCt`^_DEw#S!PIAnL;2NG#x
z=U@T@o<c1o5#IysXXzSdm$0eKik#9g7ybL3VutaCj|pXzuet<s=o2kjpXBe^24HkB
zzp_7i-?#m$2S$C@{WTF39r`Ao^W_|tsjqyHg9F^T!G~EDg`qlITSa*(=gS5u7JZQ1
zu;4gYL>yy^fW}+R!Iq$M8=2ul{M%6>k+a7kXKwx?Dtv^!ap`nNQ;6l8*;Zih`oP#r
z$6%<t9{Z+k_LE!bDSnP(CY$}29?xOBKCXv}v4+v&M8hJ;7x1rfDnmh&ATm4onzEzg
zZ?0(bV0be9<~`2leJ30CakH=ij71C>4)Pq7mf~dIWYWJI9(eD$cY+96f@_zl@cQoy
z_tW~$xNcE~Idh-hX2EjuaT%cjv~Kplh#}y@b6oiuINHWO0_?guDA<R}f+C4+TY_Em
z*QCUbKEQ@?(xDR@8(-Ov#$GOuU1jWPoM8Z5LDxHnHPr{ic!XHsvKRARCd7Hf`6ANh
zSTmRv<(M@D3`N@f1O|IEzQ~@r(1|*^xXCv@kd&4Zytlyd!Otl(jIz~0BFk+;MT}qP
zXnb%HHLw%xE5bq9^utg#8!giC5AU>pSIw>422i11Y1F0o6KDE%w^^jwk8FHUFc3w5
zC=j5#Y@-aR#^0!kv0+j0jx*toVaU^h0Lzy;>~2yRs5Bf~XyyWxYxH`LFYPaDGUrn;
z=98R>TW>`8mX1zK&|OhvNim#wWF~9n{btd#y0Xm<y00_B2@tRTg%sanfS}D*NNB3Z
zbRGt*8xr&fXGSw?Z+9jtYd{~rcKDSKg0kv>-nb|F#@-=3%a0VpEG(DEx~GvLLG~{%
z$pr$ZANz{tdn-V2TZx7pY@rVp!DeP`>UvheNrcMtSe|D7(1?m2KxuHMUsaMyhe963
zfbH%E>^_$w&$L?ccSZYDyeNnTk0#WzObeG+K)VdxazE`nRGBf>+^#HK-%Zjl?b*I+
z)DaCggDlcmv0-;flYndt8FhWg(rFM748(|AwTWCIi~BhjR;=qMMQYT<qY~Vzp6y8W
znSDxK4+yWmjyufNots09nO=fcz@JZP%-^M$Gu*hbBQS60G0CD=SV@Z)W^r*M{WHKS
zJFK9Fu75#g9u`9Y#cdJ>t~yztX!0x+L1waREPUEeqaQEh`^ZjDQ~(&6e++M<?@r;v
zvzK+Wi~C~do3D|Ko-`<NK3^@goJ5hTjbv$$*SYxjN2T=WE*(@ZBTL6(ry1%}x{6X5
zQW~|4xi%$Y*r~n?sKWoFa7_vRKZN+8mH<Fhh1`WgV^B+TFAX5fF-xQ|RCu}Pq63yb
zlsffY@5RTrmSgEZq8uPca#1PWzaf7&)M<KR05d#F!wHzXGy!5MA1D|AVam-`KS3Gr
z|GGwC#NorgsdH>W-ALSosu*H*zSC6BQTYYgIg?|DI~;m**9u?`l_FlDqRnUZRqV--
zO96YM%J(Gr>4$l9W+S*9oYKqkEg<SG5%lZE20ZYocN8~Y?%`GF`*w6YgIn0z*woAo
z!br`622!nB|D-AV`%JW2Sxm{Z8DP0Dd=Sj*n2yoEi72Rg14QMm_9E)fyG#id@ug~Q
zXY5sZ0wP&^FjI>yYFj^a&eNr`$Js*l|8(VpX!_Z7m3h{t(D~uU-sx)n3AOU(?kQcq
zy+Hn3TShZW*BXs1V~;3G+bA~2$vcvGv^z!{Ed~EB6Pye>w^Sk|yKR1KE-iXX%hGth
z+dt`x%jB|jl*K$sXva~RF1^P>8)|oAXDcbAT7^EhoR<Z?Xn2M&9%ufowixw6md{2I
zZbHYE8L{GF&r-R0?g2u`Ds9&IV;HdZ<}upw%Z#HI^vF#6NgxttYl<)mOlp(Vt}bMy
ziw#ZM8$e~*<tz<m2zFXKkwNYiL~EN3P2BV>lIFeVlxpHp$Kgq+)4}@D;}>>%u;V_|
zozcGoh=@N00@!#lpwm+lXXEk4ZmIMPA(G8jW#aBEosYvY*K{!%-fhfpg7R!ul;8{R
z&=GD7AheNhQ1{3cQy+a8+k4-KdQ>+MVVX-YZBdoipgj~v57&=ivK;cEpw43AyVS^J
zTt(Nq;wPkGNg5%RVtdRKuxynFVYUNUhViIMVCL%E>oZ<f58AyE=ktTGpW}n6yDUps
z4gPdLp^z*~)<kEHo+%AnSMQ4uxhZQmGJOI&QTc-d1Vp4KRcq`A3np{Tl{JEUQ1qIP
zl>tPJ>qna4V`~xMr5_#M^uN#QBu7qbzSybmwL44;W<U=1RAv5&k$wX^i|MVY<N)5s
ztRmDkT}*+Ok7!BIEPNpc!o=wvGt29Wpe=z@!Ecw$eVsRu{S;7_K#~(IdSoc3OPnal
zTdaoFl<?=Y)tWuN*<JF-2E*GQiqsQqQLmN$cz64;#REB5HMS=F0DFl!rGl|ewlI7Z
zl&W@C*Kq9Q0_6N8EYIwFN`h9_V&Qmiz~w0Uw39#{PXWY5qzOn^UcSQpJ`Tq<1vIdq
z=ZNb$Rt;B78aPZCec5M8g)izE^e~29KbXan+opn(vf%A_#CxvJn>(lbHmO+_GYZ<z
z?{O8@?V@}D`ptDftEE8X<q2$Rg*KKQCx!qxJwk7%LZ9sf`%t^A|M@<U$SacJP#Qru
zdM=dkE9zGL>J<A;1#6vx+{^RDhcG0)2JGw0fp0QPmU0lsxowL?g)eEQ7y!z1_s{U{
z7h8w*kHY9dJJp9?P=7p6y+g6xZ^C#Zb&Og?02AH7J-d>H-esV@59I^QOH?utjTC09
zLJ{&3U3K#;-U#89B_@B9ea`cSom(BH;iYw~0FbqtJ7l5APTTD>Dgwq#zDZ}v{Q^?O
z@N}&S?s8#dwCf!r42pgxY0IaR7Za~S*4qPc!e?n%^I^n^31EDZIq;wf{SV}U8^E?J
zyr`uSMNa2-t7S5b9RGSRs;Cjq+QU3W{B5M{<F9eY40oh${Btwb^~Xd_MofA{`3%Tk
z$(>IUB=yo>%%K?K8g4YX3@w_}EgFx~u5J?KB6oS@<SYof*6}^*EEm`wgE1p3kr|hm
zPguqISNUi*(X=x6MwA7rhdCPqk^q{ioS%r)f;G0|?abm9Bf_YGH&=~W?}!d8+XyVo
zx|9Pz*{%bxM@TbC`ocSLj;5sZJkccl@h1H2j5TTv@*fx@)yYnXY_r(2Y55oSv31sS
zwAiXZoe<12T8|VnuC0caBkJDDlw(eL1kINIO>@Y(33W>U;wxk_`fI>IVz8l_GZ}TQ
z$Zo?hgNPoWOVB_=EULg#5ogLj+%DcJg=(@L4-*?ei&#j{FKdbYbR$g=mWpO75#T{L
zXNymhFtv67&hPNlyOQc!E*{;y@dG249R-y=%=yq|uxP!dQWx<JQ4y_|{;=u%>nqUG
zA}^}bA;U9nuwswu{0tgWXmeX`8g0=UG0|d)Azrh3OE)aMETxxjr%?Tp_EeJKMAT{K
zsZy8WRc`|#1V0H$SUN`9p$~n@-7yUv{P$m_W4Zv71j<RlJ>3v6UL8H>%;y!>EFq2%
z3Dp8wUX6XTqkI<@SY}lgL~a}F09`FEP{8*)SKG?G5X4`1SOVj$HYkf+fT9(R%OO*O
z^Qs5n+8U$KjQw7bZj(}&$DsG|&7?EH`TNsyi|@uKX(RFH?HsY;NfgP@fJEU*f!%}^
z%@MK%6(f81hmAzM<Wcc*2K9>H8ZqhW8zji<fhwYXL}S=AYH)~}$ewG`a|5_fdWkwT
z;NUcwfWB_;CJHLMKrITakjZ?i<T_4TsdxS6dy$HH5LeaOD-UV27x9S>+^cT$QIp--
z$A}QgYdih3NIrkOtDYj$1e90=IU$q`Ty%uSd*2|Kcq3>(+qRJMXTLSXl*MkD()L}%
zWeHy7b^-at6BT|rs_eSqC7Lk$Z-{7riwntXv&5NF2Oei&UoLW0Nt#S{i1kK6NICN*
zBeHK1`yDKS`?>8$49ym!a#?*~QD|OsPQvONkmI^Hp2j^~-oZdPj&5GRxi&0xAODZP
z=>xL74H%>+HrI=@sc<Hdyoaqm*Mh%^{aq=LqYmrJtZ74}WS?X8O_x?7=+t8FTQ=Nz
zkpx%`!o?RT)O?k0uMa^67L~DT5Ml@RYhHqp)c2*Dzqo0P#@M2_*b*>FJ)b$&E%j4Z
ztPULzgVqe_v!9#3T#h>jN5-WxPiMOFa)sb%eeB{CQFF3#uXow*LI3hi+}o^ex}r(=
znS>n2c3B)5E^KMRd+Cc6Y_wFWlLrenJ@X>Xxr1LGEH?4R2E)b!&w_fA3LtoSONsMP
zFh-dqvkUkJR4kx<BcjfT$by?=V~Hqg&V&1!3ez0qH3wN_9u3_bX-W$>v$iPm2D=fl
zA!Hw)iTUJ+?{-1<F<F1e4P&HhGh2B<0URuN?ct5<#)>v+u(IptwEWDE->@*c{%!+U
zh$*9Cb3>q12>iU|sdaAF&*}#>waOLB)vaniRpn2;rz8Fef>VImM8`OfoD!0)??Mg{
zW;fZs#|aq><<?W~@qbXO1J7Y-e5~i?F#prBk40WJEMI&xap60)nbQYNJZ==fcKMOr
z1{TX`6f@H+x6Hzg^b_ucmM%HysUb(@X0K^B`QM89%N<h|7HlFN{BDKQ73O%qjhc#A
z@#Y<RHT|^nsAVqY;bm7ucEERDBHR2U@KlJYijTzO?L13`Rhy4sN?z@MxHj~2Iagrg
z>nXh2Gz2R-3hsx!8Rkc%lM`CaD2QwC{L+!(EXfD+SI=bsS@gz6s2txw!d<XDT#DyD
zdgu1%7a)G;FL|Z`TS>^E9$;q0<3c25;KuR3cVY3DXm26sx@ftk*H)+Q6YcaKq_`n6
z3#g}~8K+GTf_hL?gyQnr{Z!UCU7P(nufpm<14X2t0v#DLS`(uUnW?|}$^N6enwitC
zy^cOXbR8FICf4K`>q;zfSPxbGMzMhuwn>H+qDo^D2$^kEWADBp{aCXRIS>}o>RdXF
zQ%Up5l$gUW7i*SUJP87;=Zx<6&=8Mm$a3{bCFf`c#wse*Pco;<?AxK{Ab@n9qcC`}
zU+p5+58u0a$3mwizm~tP3fALjxdni9R+u{+ZP2J0K65m>_m=1ZZ#E|wLT4bO0Vm(%
zO1H;ys#^s|v=;x*<y|`#AZfW#S|)idossc|uS6AJ<B7eO4HJEms4CXvHnC&)ucGDo
z5IUPr!Um5)D_|;h-pMEjJj~tkp4ShKK;*gBhClD7R$t`E&@DHLlnx5DIo<*WlLcPQ
zJS1g7guXDzc{NrRBZPu^CvU@FQ@kRjw#IkHjSmPcDFwn3$idw4HvYgXf}@r5!aPOt
z68-p*2k`Ywqx~3VWQPE^IhOK=!zQTV&2$A=DeXk@`G7|bN+C$)7ZjrmT|6fJg`UE7
zwO&Tndxo;z%|v*uC1Qe~Li5cLFVnFp%G&(h)##UOB57#JCq+~Iim-szeA`HzIVxUt
zQv(|K9qSNeuy)Es=@|;|NrD2B@zCr++Mba6?&*j6@apyKvRW2m7}qmO$(rpNH!{AX
z5O&dYIC9YQ2lw@!_#mqaGt{JkfQ|RY(?V`}kLoH?D*xWy3WYnbwdq^nRhcA(*x;L+
z>_3bXgo}&zBo`TKJ^mHeg-ci*Ck^B(<FULoPBf0mGk&6V_Z(W*xu12Dis_|d@Z-y7
zTDX0YdD(Wz^{MqtVQ_GZulQ$8KK^Zmil`xHo+q1kuUZ6qc1(AUdO9tV#8<{O+kl%k
zX8zM(J*n?(yLpw4*eAAk<}q&oM`pEQv@W}7U;zyB@<QU*9?OS}zxp)F-EywETaF~~
z51JdR?#%HdOqjazuq1|$X#e{bQJVd8WEpLf_k%>l)q5nQCz@%w6ex@(3p;0maW`Nr
z($w)#(-Xc^Z!GjCt2&k5P5X>^mjQ;{#FKg$qmN^WPsb+6sLAAlP~&us^1p?5%VRtf
zkjf(&s7a&<UcQq9+6mD^pHuQ$T!}Q=N9uDbuddU&=-D%jK5k-qlw=W``5l{qx%t-d
zhFKHbWj-z_Zco>xVwMrfkBiGM;q4dAoE64wv#i?pkQvdJtRWTvZz`FZBY>js2Z)bn
zdU|3%Me>;WC5t2^?F6^)M}!@$s5-bvL>!KV7+J~F>1s~~XD>y1vWd$mN@U}9s0+Wx
z%|beEvepr;Y<P|qaCoYNb$L(?mRquR!9nxntC`L>%_Tjx805grOwn8}WiqncJ@eoz
z2xL|DD!!5Cx#C6%6dQ2IichfvYbpMQ0gceWB|9?SSaIQ-mp0aeTiJ}r_B^~QlPiBN
zRART$MFNs2*9EiKp3hzNjn}<Dv7a7LXsp$5%NU$gl?XZOWkw&#VQJ$S2;t??nYDNV
zt%l@`q1@kk-o($y^ASpldYRuR{?^1ikB$Gj+TXu0c1))nc=Ej`rH5(_mcQj%zhjUP
zE}Ww3%Nht7Z2XxdGE_vQfomGt|CgV>!J%IckEUpoWJ4E|r%^#mBy85{oDOxJbPk{*
z19Q|kVFCRwG?^yOp0$17QI~1GR4KC1s~Z$|%s1wm73N$I5kg)^nM@F0q-s&s_4s6P
zpy@F$L(l?UR+bR2W-y{g*hg9qW<2~?*19D(?;lk90rC<-W0Y$OrJ=sY5Y)|Hdj~5~
zvd@?073V8Xv>`s4YpjV63m2$G(t^G{M~-gTLT+RaI*$LaFm&Zlb!lU~`4h34zx=T?
z@|)-{iF1msfaEQmOZ!Z<6EVO3mbxMPZ~<+nvEaJs1ZD*wgPa+sO<Axq>CXXwJsPj_
z-ez{Z|06A=*U)^#1+Cxrb<Uh%C!t1Yu6T(x0Q7w4-X~OQgiL0<)iGJtrzWmhQj1O2
zAGTr<Z(m)<mw$|2c+=5d5_DUrfOX3<#sBE60L_0#rAR<CWWjCVvm(%=Ba<{@7y#kN
zht`*2Pe1!NKYYK>LqS<;biFHCjZZGV<FBT|Wf@<fPoE&UGp+m=G^nnt?7SE3fX>lY
z10iFu3_eR*^$@0fbZ%%_QTObu!+t4sC()b_`>Iey=y8&Lrh$gNQ}Ry9k5H&@1#@Tu
z6H98Ww_7k|LS!X3G^T@hzCvY9Gpdf*AgNmMYn*3AM0^viHIu~<Sz;?+s+(5G49mZV
zK!A+W;U~r*r|i+|u%2V8@0?j*vZr)2%2{1^PAJ+y41N_!7C?_^EIKD6*wUW`=Z;43
zw#(t*ORu+JM?$|KIQS^{mJn8aBd5s~1#DMP%_0q|vB`c*<f|QMQ{~oxmyJPS5wVkR
zsIGpkC)8$IyN7)XBT3#EKJR??+n?I1j4$$L6})SXL6KuRxa)<B!C^QB*(sQti&zue
zew&4D4!k|#-zaHdVtA4k#7(hQ-K4-b=<CjYMYem18G;^v&On1a+{y*H&G1vy%h;WX
z(g9kQ;47B?l%I~LD;C}N0%wFoONb|c-@vwdQpHYimp~R&OEwaK`b+o{<(-UP#QnN$
zJn^@zSi)$48JAcF7H^X4x;cj?gHn#)=$J~83oeu6xX;$**xi)A!sy=D%>8re%O6OY
z=iZUC0OLT>HLYVpy063xPMRMDPgTSwR6-7m=yYFu4F+0&m&=9e_E$SZn`O#o8xm$B
zl9Tc&^|Oebe6yM%aJ1_2R2-_mI}B7)-;w@w9S``M<wm+YSd!#pCmOge>YirsO$wi2
zB*<?G|K8Id--j_7XGDRl;27XgA<`rA6ugC}JXwg8Eu#JRVZtb`jW}Tm<ArM27smgp
zPb<KpG32W}BiFL`@wLE_oMjw6v&oaoBN>D~yo~2M7ZpN}37w*(nZ|Wxz(OX0#=^#4
zhlp%vx!%HthoP|d*>1-shX**|<`7LK44?t!?5&m886$H8Racp>C4hoYv{}kYWYS(2
z0%^0ue@5ky=XvvBfxUK0$3Yw=<VraQlgc_>tDD1+pIW9S%}i|t#X0f+?gz=sNuMo`
zIcc&6zV}O(*DRs=4b?fg<!JbBm-1M~02f=Phq>wdY6M7Ls<!j{R5|r8j%eNU=Lk~s
z8_D!luZ+WR+K<DcvK1X*v{r%}Bbexf0<i<Q4)7RY{sQLSYSEPch)vv%d8199M1p2p
z#OKt!v3z^GX=f@YXmCXMX(@~!WJP|*to(3+*>eP-W!SS)7`2#>r7Nlc+*7rr;15Hp
z(*?jS*unO^&ExuctY`*=$n_@fDmbE&cS6upACmuecze3~bdDc%z2Xg!%TQ8zkU@X$
z;4G%-H18m`+;(32>#)`F#vMNNX6YO?mJ#oJEX*#hKW<e%qH*?jqH91vj2RRBlvqp=
z4N*<ivTEJ;>PaUexKSZS1BGUJ9~NT^sVMXzbqD3IEP^DNG~p1s#(1U(^G>1}Ott8;
zx;hKBtoBn#iG9uHOS$VFMh2}edQGMc(5JJpzz*_#4@phdq?eDkSk@le=yL!+>er55
z5Y@$`_tmi8TX?Kw)=_YmZJXqpBOoEw7nDpauRkevYyWBG>08GJ05h`}*%g$1ts}+N
z06zT|E(=6V`OC3$;si7tL^EueA?&Oi33TOtln&%utK^u*Vs;|1pdE?KzwMznK$cCw
z;Jx2`+L~#n?{fv2-uardp0K)EMyxD-N_pt4U)RMESe6qz&qNuBwHbIZ2KBGvjonu4
z@<v1o8abj|47SpK&^mxsdx`yuW+7~8X2;T-5w|t9U>9@=Hy(so+qx{r))j<*B^~m%
zxUpsV`Yu2<u})@Z;*~TkV*N|QeiZ!3!7n$B*|((OB3Wu~Yy-&;ur)02nf5lXxA0Bf
zq``a=ba#FK(n%gJ0DD4Et;I}C*sk=OjJItvU+GI^+lke&VqtN<pX3x||L0i5#jO+G
zRa_V<cww3Oe*({sX%ngsXJ((ROPj8wqM!J=+N$x(aeHfM8(%WA{qpI?=MLdUn5*a2
z@@rhGrmLywaB(wYcUEV}>+W!eFDVZHq$<12Y(+JB>N+Pc%Yfldz?5deeh;xDM~c(H
z9T+XVun1D6N6+n9j@Pn_a7G=VU!`XDx}_1$Da>)4)Qal%N7LY^h8N&CB@@rEc4hMa
z4Gv-pGK{i?Rf|W~M<HlK(oT1%uzn5f$nMx7Bp<bVw&QRxfT+qt+8<~UQ^<-UjLZ~w
z%hcT2#8E)Db7-j((EX$%$5n%ic^+!zGa0<W0&SQtH)b1B&SprPB&3<s${Mux-4Y&_
zE#^cXnd@@Iewx1GaETlDuwIO11jLxh{uNdf2?LxqfAeB21NPi%4qdxssK^fWpbe!J
zPX_Tb;$TFj^gI;+%QfiDq<E_BJdsW60is9e!B7GX%42*9JE{|WZw$L8`9OkV?3%oh
z2xg^5oayva{#^fsp`WEv#co0FA)IYngq-}^G={cjc;SU=873Lcq1j=42WO{Q63Cog
zP?V`UfWj9FJ^r<^zNt14BC*I(Sz+nBu^}2}Wpa+Qa<|_hCK!}>fzF7aM8}ik#|i#-
zS9|kWk)v2f1U1%U(mk0^5_-z^>XnTRK6s2tY+YAP#fC(}2aq>T{MZeTpkHHsJvby2
zi^xL|^*U~k!e6U5(ok6abc1>Q&R`AZ2aV|T((fl2TxM?$JdRka?t|RBS`}3KgRSg*
zm~dKD)E(i-MeG65CgtB$LT@@Hopoeb)*ZA<a(b)^H$6^1>AKpZ_TAc85wg*r0{We^
zU^G5)!iZC3DhoHz+O?AXd7}7!&(Xp3m@*v{>)j6T&Kx1BXW8O!Uq{>=ex?~|9fnZC
zXNPJWL`aIH>26hheSo24+`gnXRcpUy$9i_C?PV<@mym6eQ(`zZw<`b!HvA!i4Jh#y
zn%4NDgqoP?$CZPlJBWU58AWbAhqT%j&a6CKVE#&rl&Y7e^_r<k%}}-y*7oC_#KVB5
z^)9!OBZxGNebZ;Ab8)AajNbU|Wd+l)cmH;QR_v?PwU45410BD}Y?5TYU-6oRDPg4u
zVWqw`Ync4*h+s5?B?8H)W`3u#gZ@uvP=!1F7mnS7Z~5iLkfPt4y+$XgEHMHfiip^u
zfY%dbb>DpSpm)@hlLRGf--DRIzqd>UUpUxN5<ZYyoj&`JN)ql^2SC+$j%b%VW?~)~
z>G`2OxC%fE+3UvC;+CY7Z^n8FS?~u6v;`O!;pHwigopq>CNsmVdF|?;LOO&6QzaT9
zcNtr&P&9~S^%+fcZ$(>xjOJ21lfS1lJ}Od_DL^Cyos1?uN~SGe+&KA+VwP{*(F?Os
zTbmm|trM}h6ls0#xT<sUai*YbEi`drpf#$DU=9t&I!;2Wj16Sk!7REON|UL&kBVzG
z1{ME(>H4D6#HmnTh?(b8BJKYCs^82`BVbXl*kP1`oC#1yyY5{RN*?*TQPw7rQLUwW
zrT7@pEv$)cWFHkJ<(aOA<m{&Zi!Kl+zT@i`=dH_<+K_$W==tIc&T-)e1MN`re)xIh
z9?*lY^UJN}vMhc|W(|VVYZM%XN1jMil3z|3NUDeaQ?4)689^vMc_W1#kMrV8x9K{e
zbz8k>`Cjm~F9ySvMNxO2II}L5jIffL{OIOTe^_^GLD+Lh$S<1NwD`*#VP!CJM6fpl
zS)EalxjIOW_I%Cgi;pqkJP+{fNgw-Mc%$$J`7B+N0b2Cj_zXh*%W1NqPM)Qrwv1n>
zPxsQ9avEddk;f3>UubktApKX5`lB5nL?w|P-xxiH3fO78$=wCi2`6(Jj0C{y$=u;&
zTU!trGNw=~JZZr;u8*-`j1B8rNoHCAli&a;JK#SM(r(mePk)Y(PR4o=9zl_BAtN{N
zjasv#YqoujCU38IADmJ$Nn|B^k`D&WgyJHC^*Q<ZgvwA!S~UL9(uq>$_VO%K*aQDe
z86>;g_wn&^Vm1^BJWIi?io~xVaAV2mFZLU33Vfx7W4fy!Ljg>>#FU;ZAr#1b4@K{i
zTr~LP?<qaI21VTJ>u)TIJ{t@7D3-RU7MGO13%o@s`d;KP!cYX9q!?YS4R}!c^8CDJ
z^GCBhZtFa8R-3dVjrb3GHn?>2u_<%p0$te-^!0lllI+D-$6nA}VAMm~S<`K%^PlwH
z>}PUIm{VW40bWXo(t-mpQkI?Qx=yDDhrH==R<cF@uKv<cBpSDonHx6gOZ8C~?5Wsq
zA<{OzrK5$0&>vz#!s%&~%@j9&^h9YZD0ns3Q48?=R)7k|rA;J`U3$EU#|!4+vc@?w
zjaS;dpzV`S(zy9y)DntR19%CqXxPO^bp=Y3<%Lo!9L3$WHxR-m*qcD7$&_#}G8>kS
zW%jA?mQ0ZO376_C{5SArE6$QxK0XmX?&$FXSjF^b*UAf{@krXsrf?#sNzw?mE!P~r
zd6>bSKL}LDCo-mnMdWbOSQWhOkw&akDY3I2y3yY+iKLxt;d&N!wG=&Y>d<)1bZ~me
zT|x{0cH*bXubS>|R*cs;eIvz3L~6w9{#4QrN`*+g+N+b`C2uVH+s@6|qqBGKo+Hf&
zWd&5nhh4YXBD&FKoyuLmi_qrFhk4v3T8aq$(9>LyTEp~&@?vKd4O@v~2on4$ndHe*
zI%9XI@8q!^7ex{4maq=cNnrfJ$_I6|YrXV&p+l~yp2eszL!9X+t<XKrzChHp4CyXO
z<9j_Fl`wTsibP{D`XPo*&(#1cc1?91K}pt2if8&UQbHLOR`DCtoe5g*M)U8e?FenR
z=~{ob&$SvD1{uGpr79+i?~T|CwBw*3YCtx_FyE4#7)igCeHU@FkWQWyF%v<Ep~sc-
zxrE}=b$0b<4Cl21-w0=-y{%ktv7m%)R*R;mpn<8TEd&1ajVJniI#2GsshX_8uRk)%
zeF>~MrJ=1-{v}-Qh&A(g^)C8GE@|jrE<7I5R)>FU53Xf?O4d5DKN_*e+YZ2G{PvPV
zYz}Sqq8PtEsn_;reMtGM&2nvnt3Yx^20Su9%KxpVEQp9uuw)oR_|&)roqlF0^wM6S
z)^46}$8|{j5}dDtn1wL687kD9{TDFkJ^NY?)#6ci|GUTj=rhgQWJKKKad~4rXCi2G
zy@cMzAOLdyyeSRd=G%5Qq70PCbChd_>2GsiQJNiIr#3(MzU|q*bychV#7xhyh&8t{
zhZ@w`@`9e;e4UTTe2JCzcNKcVxezwkMycl8M4w=p;vaz9%}Z0*JY$)+OV_ol^heI1
z7$Vmu@0xqkS&xuFsRUoCk>*TDNH#k2!Y`7e@HW134s`&vGFe0b*o(kLCaV{^c8at<
z#M$ho^#(xVamo^(>rMe%w{nmQXbT6|aRNtT^cvP~CUr=}{3whww{R(#PZ1Y8sZ_|b
zYU(F2B29M2v8F!7ok+^;9X&SnqR~T5NX7g02IM`J3p^Imw1>vgTgjV_<j4yer|3xj
zeee=8kev?gATlRN7*-=Ck+})r_5=dgzfX~H$Uf~Jge4F;w{VUzL&sxNNje+@1_?j>
z<2@aZ7<;5osMPncUT$O1xjv|v5BMpw{Evb8CyxJZ;`nVpLLA*n1g^F%iqHSA9m%oE
zR3xpU&>B$HndPcXwmTh_aO#pyroR^TvQuw9{o_L30<zWYbw9EjXdKi1v%$cI=OR?E
zn!&LX8Z{aSJfNzzWcXAl@?D#B;UUh|42!f<x^B<@cL1ALa`<`$jrU<D1#q3>25bb7
zU7or|rE4ueYr8DBz~ayO(jFipx)cZ0=yTz^&#V$Y_*{{FJ4Myc6s3gyTyrpiXOPuW
z(Vt9?o_k6^Nk5@-=qJdjC=--KZ5z-A5*@|!Hagd~NjPd4!=S7xT?G0cvk2p>KyOu-
z;J#!hF#6Wb{~EQdED*=)67zZ<+>pp(r#Dc}rrmkO24S)`FN@f(it!d8BUt2NmMtTL
z66cE~dNjYtIJgrso#aL$Ge<<)WYJpD##=p<`?u5fcfc0t<4a@jO-qwgbhy&>k2$QN
zeUMj}$$Lrj86u#ef|7zZ{o|eLv$~MGg*>;{!jIjkvvw05Ngw$<iqHxgq-+B#RVnNi
zlOjZmTJ{>54Sk(WW)N{UM6>Xns_N1!Xrtl33tg`4+RY95w-8t|zgt{q#Wu&<bhY2A
z4}c%rNYBK4)2JRF0aOcu<97Ttv_}%|`EQ$GM}*a)Yh%kpUdbEx#O*N90`gTnAx+p3
zA2@PZI6GsU*Q@ElP~=Y`#S7v(U3x+zul9W`JnU979v%D!JLzvMiP+b<fzbrH!dmP*
z7Os*ZC0p^0H9)dM1YFqRbYJqLJ|<v@eKx~A{>J(XD7~>}G8~=jf;mp3f<Y3rL?f=k
ziRT=B4a*=j21EAU1W8lu>w-U1Yse3AqaGFG$eDw~u5xibS4G*erlL*NNT1yRYQfA3
zOTWbJTBq{VYzfC->AZRAwLxy5h#O1(=~ZPzr?zSbj9?=RhmOVi0TlMJF9Airqa97q
zr^hhG(%*W3PP5v&XN#PSlC>pJg^$o*K7Jm;K`zIuP0>ogEt<)=99el)_C2t0$;uf_
zO}ghDWen-<Qfi!(qA%HF1{XvCy)IvB#Q{z@21oENYt$_4C&vfwg?oBnjz>XbH0HN^
zU8oVOH0khN9CPQe`9_c36y4Xh@Nn{dJ04UuUF=!}#9^q}ENfLA%5L#I`3mqv7{D9>
zyvrF4QoD_x;hJLxYKyRXh?V0Y3f8f2ix3_5TrWn=@UYvOg2m&E=QWmsxJBW_>R2YS
zx+KaA--<$LcWsyWIf+YZRBZe8NVH9?Cx5%}!5zBe^9I&*4r<XT@gUJca?gEyOqJ@v
z6$;MJS1Nnsk=VFL(lFX4n5%_uYxe-lM`xiJKpy#*QUGq{;={>(naSpatQUiM9Gzqq
zDg3M9XR*OPFA+@ri=oRN*b1qWJLdT&nV<!bj6A4)c@damSg{w2N$$~?p@2An!Nt!N
z%L?&Mr_#%(EM2Z;C<K@Ezk^O{uX1BU%eR8A-j%cdc$@~54geR?B{!pc$VOuML%(1U
zajtb#c>mZz?W5m=W(0ty1}bprec1>|uq{MsNe0psp8ZM-)J#ggu}P;+wa2<2F?GNf
z0Ahz&7E#+qda-{^8H7TI#jwA4YBCqBC*oyt3z7|!DOtdqX0JxSg2bdoz>QdWUM2Fa
zEru&QT;6U1>t@Ndk3;kr5n``QA+u1wlT-j-(W66FQBNV$rRAes->Mbfg@uOlYd}C2
z&x){gMb5qlwTP<^;iC#lP)Ln4@~nLb<Una_TKT6k->5Mh^heq#)7S?GqTxM=9%t;#
zK5?C(L^fN$FKSZP)_pqsdF{x(IQUYWIn(&$`NkH0Vr<zN`YzJ82jhjP`|!mjK7dst
z+ts#Bc8!Tg*Tz?!iiZJR)LTf`UYk&Mg`0j`HE=b<T}Z!AK_6=Q?2AO;rPAo=6st_i
zb3?C17%y)N_12Yb*XYsx*Bpg;yEC{mxV5JIw~n#O%Q&V+o5?Orr#dshrDI)?)|V_G
z{R9$zBLtik6}5q^UY8{EBv{vv&hZQg>Z>lj>BBPP9@XVWg|xanOVBkCR$q~IJO8NM
zm^a+KF_nWg+~3e{70LMB{IZ=E$VY^d-9>_b7LLS`lf(BSebQ)PH%cbl9WwZOiS@y@
zHR>7xn|$+Roz%ByEe!E$dokocN8-2FBIe6S*;}Q{j{&1wU852D`B*M%+x)ha*btU$
z@ViJat+CHPjL9fANEg7A=`cR#>_;%3JZ&!?-l@hzt9})}@3)m6Rkg1-;RXH_(zde;
zyIqLq6A`Pt2&t?v3y+m-;_Hs;kM)M(Xk+JAIh1Q_G8^wv=)D;Nc5ZVPv-DoB{*=u5
z=57${a;#X4-NTYFJlm+zwr$(CZQHhO+cuxJZQHhO+wR`)?3?VtKg$WEQc2yp7UoIb
z*$_jWDixAs`j_?un7C%)679J}#b)13`wF@4GHf9eJUO2bXo0r2oDeGgGU9O(kU}-@
zOMk{}0?n!sdGjXbHy{YX)0`uG#0X8T!-Y%tIC>nu6a{Q#38e$g3}f;(P<jB!{V-G4
ztg#`|6OmCE2;?l`kd}G|+ow-A%!CTBz2aKfv9cr&vXM+?y~|OVh&t1asGJ-fik9A~
zRJSgD%1}4Lwzr6plB)jrTnwscgN}#}>528e#*{onVJmD3=q~qamy`1kjzq?6o{|Bv
zu2USbAB`+hNjNgv-4FT0@2w$Vocs?^^g4JI>{ojm7vyLkLDS(t3pk7>z7#;z(9j-P
zMsN4q6AHIF^UUS6-FU*|j!kQU2+fzYBUA@;wfbHN1BvTRk0QM=95$Rcoxe8<6lTnP
za+7xsL#J*0H{Qm|et=2h7H`T`EPC$~8mz=pokdxn#t%0=bsJ`gZ3Y!AxA{eoRKd2t
zntP-DF8Hi+9F^WDg5z>4D3AQE&<)HfrTD;HbRaa5U(G{Sq3zqohmiq6Shu=Vv^X6a
zG6@?dU2Pj8O7C8kep5YN<ZSiHG8ARruO?(CtNb%Mf%^4T=E#v#>b;u}e;_)<BI7k+
zn>uBz-P+r|+FT_ff2-W}K`G#gUYi-D!M(LHTGLKZ2Z{{9zw})-TCNM}Zgsw>y47<k
zfsJESwJ;C+P8z`4MXVzBHXu&V5@dxJD0x36YBTe^^Ry|Y(uT^gWWyWfkA)0C9lT6t
zN%l7+_;5$v($W5*vmmq;m}K<ZQA!uxluHTRE_;LJ)Y14magyeCFVJdN#`l<zCuFB9
zfhG6WWqc=fT+gXdk_h6JeC@1=9-8##Fzl|2I&GxL8QsKbcWFl{OR@Pvg`sjr-nbr3
zLdUTHi|b+FcNqk5x@S?E5mK{b!$FB+wd?S1f`m3Etsu%%M!X1U7W*X{Xlx%SBNiH|
z(d#PXJ4tjPC%)9URKa3wjYcx~v5N6zO2CpgFa1Ln>-(diBnJ<~XxN)oSC-#+-xfXD
zi#1gjL8CnhgTB;0Oe-}t1XzAPbO2G!KNy73`T4Eh!X|L<R03N*Z-2DGB?X8(!+Nfb
zq7-K+tq^H`6o>QZw{UCovC42C;mOx$C}(_k$$OUVe@Dz}L_OW_;*!fWkUaZFIkM_7
zvMv+R<Q?U>)P=yZ`}&WMt+DXxs=Qk*TfiqX)LwQGthw+?>o$Z=6f!4ZK`g0G)4r20
zf$_E=sCRo95CV2s>SaoU+iM)SG3as2j|eA1x|#?b7i4+mwticoi~fLu_@+Pf7kc=H
zzqkveO=?C)gDESMgD|v;bho6_3ueX7`TWn^T?B!qZT@Mg{b>M;L$@ns16*`!XUl*j
ziWo7YR#V63HGe3InBp^7W8y-vzP)LBANHA#VYNM?&&BJ>d}@iklRXNrv6w}AY1;9&
z>h;v%B=XN%MWAIA>>V|=JfSy#SuhRRgE+z6wN{u0q20vg`*dci@ljj7G)Fr2f_kpW
zcbOwl?n$x=*>Dnbb<+Y|nq`}cjPOe(#%8jwz)K5`J*`CRdw>TwD&Wm+FNgiG|0#2^
zgUK5e%`SP@Mk_j37V5<j7_ZT<+QFf!r*`$+#wG9x6$fbT*-6lwVafj}BHA;efqIV+
zO;66vBc!+K)YNRp)nd7S4^uYjd~IO4f&mHSHR;S&61)vL^)ioFlvmc2oebE`63kOP
zHw1oHCX&|LOLyMWR2lY*<SE$yDeKz<T!A!p3IaiAGrj-*$V>FShc%;YKziY81so1T
zMTp+^UG1O_4TAo@&rd^!-?x(vb(Ch+P+v-xma)<}y7xn0m`*c_&@j%vc4_>U(b`BM
zC=%eQP{luj4?F66Q_w&VArw#vBITiJ60yIo{FBBEDJ8}44-Zw0*z96PA5Jva80ii>
z%F_*+r8KDE@vLYx<VG<SK6@rY3i0VsF4ZGXhE4+FaWBomQwda7UW;#5UoyU|nrQRp
z0u>V*)gs;cUCo(Py-%jj&F3lWooqxv!5DNUI9f{6U9BvIvsZ?PjN86F;o0G(a1%)w
zQ|2{L#SVPWqrb|0%?B}w`<Lp7<b1XOT&DjIm+?TUTcvBK6E7;VfwiwJTTU_!_8l~|
z&*Y!bE&yQ!FPLLF5457FWQ()XkPmRIh_u<sHq>aWSw<HaACH~gpV!rX8(y2;u*B`l
zZBxY{avALy%bT~sx^wb3R7dA&Ny(%R^?gJ@qTJV_HtN-WnNn8Ovqr_ZKue5R4CL$A
zlj>^ml=FEFdmUmTYM9O;`a(<4RnZ>puLA8sNhiIJdcCNqdm_60VD9O=R?AE~XAhJ+
zH_49hUqX>)b4CZIaaGO`p(Y?>p9KluW$^pYqlfV?zG?GrDI9Q8KXN;dP+MCDs(vkj
z(a+kq5|x>J5d*$gn>{eP)o^|u2BHAHhKX33D_)ggSP^EC(CfFWy<L45P~FKEA`AkT
zT{`m&;^g_(Ba~ZKcMFCfgpkh!q%bpEV%;G^uXa<>7hm<hhH(PfbW%p=3!$uI6)mQ%
zp^M9l!-CMXa*c_yF`(zgPj^JZv$?Li3??mXU>Z#GfZ$;?QCP9fIOO?CB&ZP8Bj(K^
z5jXy+t3S-NH*oO8WDKn7iED#TY$n>nbfk@>cF6;<yAU*oS@vG~T$ZN-g7@{J+KTY4
zYaD0`nwl_U9<iO7WVR|(Iw*fdUBjRyvSrc~HZlJU^o}>pT2SGa6D(833KV8jwdk1R
zDpqXS;c;ZBE{xS!EwR`iDOXP%T+wmPTnpeG(09(jNkD8I=#~O(X_yDg+nFK2Puf7L
z9*=Ocer<WguP2ojpAJlT7FCrg?!RX0JXjug5x5~d@{)&%HGDVpm07LF@hb&(-~}l9
zB3y5&&UC&*=XB+!A$pd|E`fKJdaG|%yKF<anGU8={+T2LW=o{oB!N@n5HNAN2_2CA
z(;swIz1|z_lvb+B;6YXIR2fRJ7Gs$H(o43-lL3d(xiuRfrr_~ZaGwl>GH~u2{!=Ny
zba!2)OAE=@eRL&ThYdmV>p40U+nwFtw-P!vIKg)Ff7a%LOh_pg&-VEdG^i1Ik<Oc4
za067-B%!&)5if;Y{soq?GGb|rq_h%dNqfWK2G-|&P{r~nJY%f{to>cYOmBD@LwUvc
zi#BhI9`50~aqkti@fu`?uP{v3zg`U+(h7o0JxA8^KF8f;xrerY>m;i(j-T)ZeI+cB
zK~cm1Ze|`a>f2K6!ah~9KYH|4tX8BNFu36ii7R+9zv<SDA}O*@l;?~QWZ6KY*BPyU
zjd<y0M5t<X78I<tXrvm2F47S}8Y=gdsHYyuataqust>~ed541*%3y3=-8f83?&L@0
zkWwfJNzkUp@g!CRa38HHN##?l<ZUoG>`}I0;`7QhG^<3Gyqwc3nV1=T{spr}$jD(b
z-h#pllC7*V@4j{WvK@#rQ1LUn=~)D4V>Z@%hhGAcKJHJ-1;OE~1+%i73gkJfNFi7G
zB60Uozovmh+H_jTh!XSI2xB%5j@Xcu3AbW@qW74EMJe5<s&3ygQ-;Wa(e8?U;rRG0
zhT4Y~hX&2%f|aW%Tlz$Ea{0t!+EazmjzKX{@R4~b!XaQO*tvSDOb>*doXZ|a(A}>Y
ztAJ?cY}F)Jjsph+d75J<xK#CVwj=e|-ecRy3M-Hj%mL-UHKTea6`$b^Lw)y>A+61J
z7x(NMVs%Sf6K}A_vEejT<=aiQ6N%+GCi%xXUjWdirBvuItx{w?W{qyJN)?gnzIhv0
zpv;(DCJ@zCW#cLlpwI=q<^iiro=&HLt~&R*x;={63!h7}i}lBIV-SkNmmb^2ayVr5
z!-XEZnO=p<59|;4#78Y4%Mj?qK~F&UXz$1lmVL!ItEnv-x6SCDW8nza-nWlUU9qa6
z@}fl9L&U4ypv%|zP->W(kJ#eoR{O^B9Fq%JqrRueGUi(kq5OxrTqp8CptQB3OM+Qg
zG&-v_Na`*wl=wA2cy;uetzR%xsti$?)uq3E7oahXd5c3-KMOv;Hs$Gy_h&`lz=pUh
zv~wntm>`z>6<-gG6K-W=KAN3o-;Y2VS<%oR7RB`aV?LB&v*e}H)XC4H5q=qoV3t#w
zAw9IWd#ZQlzvI`={%&c#a37yS8no)YOMCBy-I8use~O5nb2|8^Dvt;@eXZ^D;c;({
zsK`p5I8?qYZG`Ym={wfaSniy&2s6xS?WVyj%Wn6ss$Tag{p|ggYCv%B?pJRS9^rV{
z1nR#n&%)_Yo3&nxvNJbp8!-GR(E*NztkFoLD@$>)7(r9wn2P<z%#WTZ9BU2*2^PzN
z-wiYE<PNbIgU;K2-n1gjp>w`VKD7$jMJqoo^0Z64!z|(vWE^%YAm6R)J-v*X1F`6w
zM}(LLmSIYUn-OWWB`ax^mX^Wet{*^5i~*NdKP5@1v*)p&IFSrPz2feMOv_%DghB98
z;LgCh-G_roqqi*Z)Jryxr}Md_L8+va^JfWx8*>s#<)+s?w<=APF-i}Oi5U{JK9e8z
zEa0bmbW<sFw3}z`IHR_DZq~;pO8^=vs-(i#(|im@w-A1ggqK|yA$k*8<P^UQB*cf`
zNp!|T+#~n`gU?V?7+WC_v`>K7Y@(V7JmK@#%qq-WuNd3>jtY0ce=tLbMO5u~Z-{&Z
zDXF6PX<74dWalJ?{y>_l{Yb$$HJvE6S$iu+^rOd0DU|Di7NU?0@yquu2gye{V7vCG
zN$y(*j&rJ$UeG8ex>w<EJ=Y1!*S5Rtj`=1h-fcpjhX)FPsF!}FB4yv}-YL0^DPtX2
zWmI~#eQC^;?u-E6S6pSDTH={i;<p!k9ITIIC4E#t6i+oX5%|qg<a(${vF=pPA-K1D
ztTs&gSUdOY(M-kdUL6EChyx@Hgm0qY;fJKw!pT-&oM~ffeV=vSG@*4NW~|JL7yv07
zmdU=1H)SpV5fFoGLJ@0jVPbU+OKW^rp3L5kloLl%>rQ1umXz0-c&TjMT5uM+_VLr+
z@^EKP2Gzehd*0asjN*Beh26m{@L$F_IarIe{+~d%%{gj+5G%4;u8HYDkL;J2^Cgp$
zX3mUyY7dS3Crrw7BiPv9S4jgNw02ZE`OF0MyZx=+7{^BA{Z`cD_<9fFQojfy^U&Jv
zB0Qs*(W{i&sV-zst_3NwCX?hOoE*Z<(B%BX$)zKjTxU>VcHj$TG9&W*bPJ+XBYc!R
zt_W!PP$ik^bvo4yrF#CcWfvGh))k9(*&DcfER4BV0WH6L$Os24E2`n|-Fk;y+Ir~z
zcRiCBM^4#)lk^(6$zu6fx-W}TwML>ANm3&lsNjoA1`|K6LzEhAOd$t3Q(HnGhvw8q
zv2a@|?05~gOzNrayfWYVusa5aq;HEP_=-Lm&mybvnH}{KwJ<eJQlm0VE9cmHXP4l}
z0G+baHJo+dcM?MyiF$MmD2UOY+F_4Yibai_sitV1`40gd@Vc~hi(nay_n{MQ%$eNZ
ze?|$+DP)N?L;9q~(k+aO-1mjx(#SZnowDOi==3fvV9ia2Ff`A;Qd}+8Mw2n4Sr2_o
zQ~%wQdef$1!iqQK=03<AZL06Gvwt>kJ)$g-ec^zHexy&KK;+Uf$DBuw#Ln-)rKopc
z0ChQHgGT@1Ymq7j<2t-va;Y9vihYzJlbvl|yn_macq+r)p!M;J-*G6El{uS5ia@xX
zZfF?k>8!|$-Qbx6V=&gneK_-ZQlOuXHEOsUVSu0d$rn?}l8gqnR28TK!UZ(;1=K`E
zAL&6lYhw)1Gfjs=KAoxPgwD!RE6CsCRg2Zzp)tk~B^ucUxis#WH1YELH+2Pn#dART
z2loIXhN8zypV_VzEalXizJLVYh6RNBAlWG-KJ{eSxjiNVZS~jHstcglyx?2Ds9;R|
zHjGM^Qnk*#j>V+Nauss(50UN|G!-0;^9MT1<fYrv<n6;)CTv^1I&Mct1u~h4*)dG$
zSPIL<u-!*JHS_Ro6!#y%b}ztC((hkMBf?PVmmxjJo<J6So~2`nY+arvKvt5q5kUX9
z?fOp901>ai_?n=x364)bJtrh4ZSeo>6rjq|B%x^|eW|zw_gQm2<(`m$cKFOr%h{_W
z`6OW|7HU*rf_VnjCYD(b(!Y1#dwxl>a|y<-H5H=n4lm29<ujao^WKT}QfHT|O+e(y
z2J`I+Xyo*2=YRxX?4$M&T=UK^XD|pW!Jh~|srxUXIhz%j1Aa@7qI`7z71gc4?tjJg
zJHaruZ!UgVHZQnJ-{Z+a)JOhTKo}U>^8@>06{|xWB5@b9l)k*$4;2;L==rNSW7#}o
zEizF!@W|aM9X>p4|L=$UzHy3_G@xVs6po^6#k|Z=cWRQ&#<&+WdUK7Spsv{%U886`
zuEEZfoip!$`Q%2-Qb^1%`42rF^yC0$qqBYwj8ysccE5Gt>2LooBmdSov=;rHvR~t$
zcVKMD5FrJDVE4wT0}Q2ig)owSV!nIFTK|JWVw%fY_7<;9Gvsrrk%uI*i{I|)=p;h;
zkRYr|(|Py92nhJ?@T1bv$yi2HytE24_o33Jv?AzS_w@ls4g9I~ggI5&lOf+mB{TEb
z#C8akNfB?1*XO#U+N1M&$>L3|QPnp7S)lqcdBWxNmp&>ujwkHFlTLTe2OXa>Zk}~c
zek(c#ve!V?{@jK_%TqdN3l7FRR-zfnjf<7C3FPis17OHxyn>5Wncrx3x^)Ys)I@S{
zqjW&Dz^}|QT3x)bqaPNw5dDlz2@!K6P7sf(I2QqRcO}PkEp`rKiE(vfaoIfbqVBB6
z{0Ep|m$>~=jHwU?d_#Df#)_O&WWUFo00j?*I=yEmZT=1boE&L&^Uf#P#*uiHU5A4)
zIjbXF*xJk4gBIH;M*Szr`+w4}mMW-vL>@Z{Tl)={SJH&6yjN_D@%-`m>#Sh=W&#;U
zKghL}6nC4;s?7|tWg8wcOi-xmT+N+f$6Dk0zj0Kfl#DvHUhy^J^#i56^Y&==d{|MR
zN_YPXO6b?HM|R&B!pZbF3>?2>HLlSX=RHYY9=)xmZ_FTlLCRzf!MLLcR}96KL!;!3
zMAwY#zt-5xY+j~p?~jJ_%PJ*iezvpc-qo8iwM>t?Y}c-$iI5{LwEsSz%3>F!p@mOY
z2OuS`dUerbddpY*rMELxi+6IIM)cS*<&3u2kys^vD^c?*npdCzmJ22sBTZ1v#Gl<2
z!?0_XKJGd|`Q^XrCxl51=2L(|{InOKBq)=#oOVYvE<c`qXCn%w8CiQWs}COHkr0qq
zlZ8<v#yjNM>As}NEZo@=Ue}BX{#7EP5TxwA^YEACWNi;55CiH5r4Sae4ieib{&eP;
zO29*(kf@w^5x|gChy%9eJq9H($9oCD9nrSPB_vb`y&9V~8jPiZ61=5nS%??p&zHu3
z>k9t7v?DJ)@2NS>ZeM}0&5_u*Y0?@cWR){qK|HG5M7AFZ6L8!<Y=r?bfc~rauUu}B
zDd;Qm6Z>fV4c-S*CDj^b^U7ESAS^bh6*`O^_W$QeIsPv^DI)_L$NzXzMou<1j{otb
z1pGJTP-r2cdM^NFw6wn_G@UQ_?m}S)NTIpn71-^+=@^c2b{@$>JB3*U|GgTUXBb;a
zbahJ7O|I6664|EF>z)2>)8BW)%<UxzIzD}1ovO9$2L%p$><I1{7an7D{(5wkx;7}k
zgG+y%=DT3di0$nE17j^ZKirUnL;wsxVu-SAN^0(mx4{q9an>lDr}5`{EINhkD>JiE
ztSW+!DRWsabI7wZpFzav8?tuC$h5S=iZ&T^JKLr%M`|{l{iueEB?mp05Nf8UCdDV2
zarz1-+$;rcE|FBU?yiS+m%KZ^KogCr5J*53I8w9yJvLpvJrN}pA`wp=(*i_;_d@{6
z?Q<ug9jHqCk0PL{Ue<n{Bym7uH{wOOx+;};2y*-Km!6vd$X3NS!(VS;?-lN<z_RMe
zz)z*%cVh1Hkv4`8di8^=`-;`NEE_?WRjyuk`$7K|J+)JK?sU0rp&$h*riz%W2T;W@
zgi=}9Yhav4ZYPdsw&6OZ<7eQYv({jbTVX0si~)}RuVCcU^QOJIHz-R$RaoR0pLX6t
zQ|hyer4FNd)s|1QF?9;$j|>~-j0_QPlgpy6s*GCTZ#v9d`%Hp*zSSij6&}|cT*X=)
zcnGNBX^7*EC@pgb;e5|@Hh7gAOqI%-)2BMNX!2P`MO442)a_M|m{&BrxN-+Q-?&;f
z?~bySiPcJ0xh=Wkro;k5@m!ERce<2R{8$e;n))Q0?NS{*d)Ey<VE%0GJW`&zfVuP5
zw8~0tm@44jf1J+%aN#x+-#k5XW2-_F0FNxgM;}6|t0Rt$-K8M&Cfq+(nf&e3s4Dh=
z7qO^qR*L{Fc1_~HHz<fv>_ZP1+u1M>HZK?JAaRmC=d+p)el1Li!khTL3(`*BPP*oF
zZr@Wj4Z?9#uxJ3e)-jd-r7v<bb>&I%s}EH@f^bct?BL1G^Z}6=$ok)JY|a(=nmXF3
zRAl1cj$~@x)BO$);ow2(Z}pMkjQf0(6Pe4#`kR^}YNgk!cj2YTsX752-~vcNdVNXm
zJWM2$NTH+V1oP0<lBlr-n~68{e6?sKjD<y$W4D91yHjOr?XI|Sx+@H;ej;)5(gUdY
z$!DIeV@=Vg_`1ihv3%=<*yA4=jchvGR{0z#p6+b^&^nh;R|5rHSQbWP@FqMIRT6~V
zbW~EC`S>_`(P}qE3te&1*j{efT`*2R-rtVBO02oaD*Lev6yGsy9G5`Kg@|Kmq`R%%
zJ9{-S)>XHGvzlg2x+0nUEVimkthZvV*KETLdxofZgj1q3XQ&f1Dq8biB-NBss9^#a
z7NW+q&v&kEG_(EZB6fqt``+v|!d}W|C6k>2Mq;M%0FyU{9?*C!+s%V;(1NVg7mc*D
z<h=HHpgAT7BDKc;5(I(ml>6K9qR1nWOrHq<4o12C;eUg-XU;PB^E-Y^eQqch4$U9<
zj|pg~$>MS0661Qc1`M+>$^He-g}2UgdK3xL_`Xgzg*^AZhRvz^$Yrab?7t_|=jABr
zaONaC#L9k24AqV4FJpNm2eN9H?-!PXZ3yG=4GBB=%;?hgh^Lp3-TIwxP>#_@luOs~
z)r^*RHu&_=%?ttP4UhYcMt^*`IgsT8KHgj*IulE}taq$>B>rZ5BTI&2kcKMRdG|~B
z`rnT)0&lUYV2qGG=8iM{bv_XklYG+H47A8|N!<@Dnf57nC--kFUK;on_5cqR@pKH@
zv{O=hdG(IDIPDQ=+vxf`h1#piu=q+WXUeET6C!IiZUbP1<7F{u(oYOkZUBSEZpN<y
zoIeUIK9$%Z3fz?`w5TQv9XcB^Zz%X)GTL6kE}OEyHsXvGW~wl$aj@Qj)5QFaGJVZn
z{`|`w3SIHptzt3;4N;SeRdiO?^-C9m^*v*$YgSd~Z4@$P?-`=!Zd+^?|FU78O=R^`
zfT9eo@V~SLZ1Xmem_?YJtKjb2gY+MB*U|;95fJI!?))GetQ?Riez-64#Ey03myxgV
zRTeuHebtcxR+23va@~IE%C2;w@*sn1Y$+yAnbyfISQq)P2Dv^0iDcOe$}5lTM^XV%
zpJ=zrE#-pD&P>d_+${C-aq7WwPTc1-g<e^FLchbd@QA<^McbIsH$GkA_s$uyUqG3!
ze<|H?Bmx7hHr}>u>kB0Rm?Z@i&_9))WtOJ=*m94y#Hh@<v#^l<m}YhKoy2*WZR&+T
z0&{2-8S{QTs{Yd(*bI2SxDF<0grDgeA8+I%q$Y{^&79MWHbMhKM`y7%E?A~?^pJ`*
z3p1IM<L8DMwXA4|A0}RNW)~-KKuDuV(R4bT$;wCw1bcz^@W${~-7&oF^ki`^HkXMg
zNz2%eP$qS+nToa9MwRWw{+j*^L$tJcwlhotNxikvb>ZwlJV1Y$+s6`|?lR+BQZr_`
zFd=L>fI&+Yd<K9GPqP>hkvU5_1vQWRQI8>hAe{d9HW(7nP>HaZZr*#mP+fvDQml`7
zX17Fz@sSta8y`leQrN=HS6@*7Zeldc$)t}1iFd=Vk^IJ<6CAIy-%WXT{{)a4^B}%M
z+bP+A<r}33R~>x$V9oq{P2;%lVTXve*~MOj4*O#|!z8+SZ^!oc{wE?a`kq6wX7-2&
z#ZWEaoR4;ZhC$lD;N5S3<xXw66sHBX?u_G%`^SLyGF9A0M!!SG(y+>Bt`=Q;v?=qF
zSo37}x!FglhswB#f1R{|C|k*njY4~TqB!T@27*?~kpUS`Op#B7q`IyLw0<S`DxfT%
zNih0-c`*n~ksf3q_@6B~loi%P1k+Ncsv-alxoIQ7TziC*-Le0ZI0k}yhk2E^B}Bei
zqzthI%EzJAfB}%<HvH9r)lfQH>y}ulfW{G`k3&{RRm{}+e23T1Kw~7zYhVf$q|H%$
z<B}@nLB8h8BMqd#OQ=d67_N%&mU5@kS$}heT30fn47L9g9JTd~FE>8*OJ>Y&i=_3>
zc5$MZCu(M)jX5;3z7)2rSXw3P{m_kbCnA=s`>+2ZV{#~YJI_*;pI!OIKv&zSO2~}B
zAW=PAx3N=JbzqT0RG2#%JP1s&l#po+_VTvX4h2P`;rObMB#lwzWBD)iGbX6E%l4)K
z0YFBICFZxRe9UrV)K?CwqT-(d6EFmw(iRltjmx4xDSkZvp`2^yfxXt2bxGG3Gu({4
zkD!1{9IQ=gHw6zW%Ko3SmLqPPg71x5#fD5Bv*9X=t>B!-_XSuGhZFL;aLL6weY|GR
zvDo>a&9Gt4G{R8is?7JpYav=YWiD`1frb=oGjs&NO-0u)umt32{k|4iW7QT>hE<|V
zd$~>V@zjnKc4laM5E`^XaeKZ5l6em|x|PFF$;f79z!ZIN%gj_(_%spRmOL+azh8!2
ztOE33_q25rzP<@(i@T#smc$bp)3G-OXSuybief|y!+w&z1H<f1pARoY^aX4{(^qZ^
z4)LCZa_F-X*VuT;ta8!pZW+Pktg_BqZ8)h|9X4d&?GE78HOml5DC`Em3S7Fx;CkdJ
zw6)(7)Wnrb4jtbRoZ^^W!K`5Vj2jn;!^2Sh&Oy0qan^!BS#E*8c7dmkGtvoMRZ*@6
z7=c`G+;)h5eQ^_hYHPLaJ1wQo3qftBYmm=T;4vEyx_CubQkg`8J4$)4J{eA_=NPWA
z3Ty4wmDU=%OZGRFKMj=a5Ke;H$R8EG2{r2AnaqsPoqR=2B&%79$e0^6Sg@f#&8v(5
z86i1Hwi&ff&Yb<qpJ}Aqa`|#vQA)Xbwu$Q$6)mY&(p^d4F38|`cT7=qH%5opX+a+S
zM8<_vfUZDC0GK!vd9PRuQpHn0Do|yQg6D0_<gLkby>X@F-n%suRr})*z~81>TmDqA
zKXU_e&qf9S0=eF%S^cMx3>zaNVvH$#H1vwi7Bj=8Y?FiF7v^m1lOMO+$S1ESGygzF
zaBDKYKnHs%F3oz&m!k2>vH>ttce&?wK{E!o8wMN8@Drn<*D8?qRYJO(%4qfecQ=bf
zRfD{%z9wWto(TI9$*#k;L${qagAnaOOwv{9G84;iybRfFN|<_Vrf_tX<lq+|{U0Wp
zNX*7ZqTpuE0V-b1%3#Q(4t5@$JMltT7EP-Xe(`DjTQ|9Khm1vzi8S|^#|WL{b_IF}
zH`Z6IV(B$xL2;mgdJ8h|NtDh4!`}pfV6hrIIIRyZrFF5(o#P!p@%$t0%xS|zX(ko8
z+@7H?Ku7oSb_dvs`{$(sp-)LE5mTZgb_ys1wh#AhEDH3$Msa0Sk~(G_!>0D7e<<fr
z$XIHyZAfMh6|33#Ku2;fQyCtthRA^olizBNCi_eN9!nW-p%Cy9LuLY1c|K`(svMvv
zEJLu3G$IIPOhO!EI0W;H1<KtR3eT@aI4?cp+J#@eTwiBiJ{Ru}DoA;S2?Z*qegusA
z#hV-asO1Es;{4$*kI5(z;-=K&#=>njh|rw*cxkSxr4-X~+a~n}nMB$&d;_weHGo!-
zm5!LDw6z&8hS%5clUO<#Ut->YjqKzZ5t3Wy8yIRDfzIUqgqD#y5S-d-c4C}yo(|G0
z+JD<o&mC!>GZamvGo|V|Edis^cNE+1(M{`sckWHmhf0kF70{aMcr65g!%_to1X2(p
zYK4f9U%k+Xs8N}DX$j^QW!Voed*hJ8j_ZJ|+5+M_H!_{XsmgCJmvM6kONi;bu;3{-
zup)_IJObqC<GI2MA2ew~v0z&!C&D)9`lpC=@E~`V>&HSZJ?O{LGJW%Obj3K$VhnMw
zd&<68g^O~&NEYWy|J)tC*w#Ql^+^%WD6#?s%cPFV;Kv+diP2F5bX-*@$bSvXagvGB
zl|f6`83L){vCSV6&XEIWDYCQl1%wAUedTe>S&nk7004W|1ITX1eik&s_%N*ev%lXH
z^*appA}RyR*EJy=D~aPhlf}eP{h>f9?rmx3UN0zHO^y+Xp<;H0<HNx^F0~K#S3xiC
zTJi<?X})JW1r{#NL$aZ0NIkXn<4lo{Pygj2<b(<=FQP<1?9RfbnMURg#yF+Oab+4M
zuNPN9vfM7&8<)Kiu~I^tFrd!CT9*pM0t*~2qXN~s&)z@ogJTyawLNT3q+>Nhvn$f4
ziY@NiGw<^hA63Sa4J5yy825~{_*lspc2T(XqOokipu~2X)!7kgK#BbphQVQ=Ta5}T
zosvV2&z~b_rW%fLZoA^vQkP5=zd~;fSiOBU&6MBgpXZ?eRLD`>1q!jK`UwFh|4LjV
zW9F;$83a7jAvY06-x${MjRK#>P~I$4c3pnf&nTe%6sv>2o)HS{{lxMOgYz!8C-DJw
z$;c;Q-@np|SyeTFY4L<WGe)(!OM@mn{K<B#0y+d0xmQr!_2|mb7&7griFjs$R>sYE
zqZvfZvYSyNZ7~@@)L|(^pcIU&0ZwCNO{R-AfvWUQAVCODoK;F;MYJ;hOHbN`);%9L
z%u&pagyM+X-HJ?QZ%BwtzX22jVlGyle+ZU`Xw6{oP<hYqrx&CbstIYbROsyfn*l|1
z8s}#U({tdFFb(lUrw4ST0;(%T8I*YeN@f;mBdAAK6ma~SH}sy16LK<MN#9Z9or-bc
z7wQ6$?2mD+mhRnx4C>tqKDO{6h(!8jEJBrp%s`~iTQ1@m_EGOJJ+SHru>0=v3Awwz
zYo-$}ypK>*X8K0d1lUjRA8w7Qi_v>TrPYT!`BF?~sfMjZ<4f)mU{P6q)Q(xu2u>>F
z6BPGL8%sfSMSJDqeQ;I?S?ARN0Dbk-f0SQ&#^8nB|L8>3(OZp}e!)p&tg%VH{|x@|
z29yi6rCft9+cE#CvQS0xO!P4RnYCf40cN$dyjJg@iyc4$&_mzT=BJDQ`1N~X6I*f<
z{BtHV+jZ8Z%CYO#hR~$%P+|?Q_Nu#IW#>nCRpKxm`CM>yIsspl!qv|?T)vuW<qs6L
z=%wLaN|!2977TLmm)nmVU@1<joAiJy^^Z?k*N^JiyO0RS;hDxn9W(V%dTXPB_y>5`
zV*;7uA^BWxeaGvC$=4%^`zh62fM^f}4gg4OZ7zxxCJir-VXzNMG20pT%`YbXcp(k2
z>CCU`nOt{097DtB{@k^H1V8<mwqWOSg+a%s;H8|s=BSHl_wtv>N_A54Fu!<5ENdm?
zhH0|_?VprLp5YZhl?^xdBAvF8osQ_vRA06Wn55lRWQKk@Va9Lhd7;V}Dw5^k14Wq<
zt3e6$uYt8X&q-Rt3EU)YW_K5epMOQ0Q}3?O_gc@s5AOA;#=q5bii1}dLw(G7)AQhn
z?<q6&CL?fYS;r-LICMqn94J)@iAuf1)~I@fc8}CSM%w%!@t||#5y#?u_oVWUJ%6ck
z9>cgGEQn2b?TCglzIM2<!0K*=sQi6h|3<BPE*;+Y)C_+0Fj8taFY@5$+DWYiP8j}T
z7|yf-wEGH(#{^$YF4iVfKK{koJy2n{oXz|s1DQm?*vhm`tvwEKq6TC;Zp_c?`Ighp
zLnB91cXQ!Lo^~-Fiv;jbE~(F(hBK{SS2Jn(x6ZjkJWr)#cxFT|7nMJgRWTpa1HduF
z^LwVeSCr#vjY+&EF)-y%VRFRWu=9`(L)7;~B#XneO+aVYGb3a_CM_8t>ubWc03jAu
zs*sveMNsGzwn>g>Si9=Rjr!1sd3>N^BCjlJsdBT+Y@hzDXki7*_J|p(+0YS94M>-~
zU%t)Rqnkf)bjX)fNRtc5B{gMHsZQT19mMVcmy)v+XBgES@5CeexIyly0!^Gb7)GLP
zb1ivS*Cbqgu<IQ0n|B?En~>TB)!i9bxR__22byM>z%F9yzd5EY8+1NVzn(Le$z=^J
za{GKDYF7%pFeD|gsT&Z`&Me{s`|mghRY}h5yGcQtm?@5a^E?y7T|zVibjUtLHF`$h
z26?W$;3q|-XcC{M=pv*iS4Kw+FYq}HC#iUR0218r&lf!`pBt-eZLr6e6>KCP>~Af<
z(f#Kuo1lDvLdSCf0WBqo9Q--at;J3xUl-=gFQB{%(xQXHg?P+ut%Ez)Fr!%IxghlT
zvoBzlL;JVSu(vZe(NstV3uU_R$O5C>C||AKmH(P-B*NghIK3vGpe_Hoe!E~6t<&C1
z?;eCP*LHV(G4m|Odcfv}<SMN!cMmp#)o;#M!YCv|ZdNx-H2D>ft>oI1Ud=pC(Fj^0
zYDNy-okU5!_x^_XeaW@Tl2y1oStyQ{WxK+A68jqbm|`5F1=p`Y7`jLH{=pbmLYD26
zAD|BO=Zq}Nn(NjWdi=G3Q@w1U^8Q`RK~?>cC~=KSUjVCP!7chKoN;g@Y*6h`!Qs<?
zx&-s-aBGY{O#@;bjM5m&DdY8j;xe({u1N2E*u7}9I$~qK8hEiIIn0HAAe6his^K4p
zJZ>y{;^gX`fh9azkdi<pWUKk`>~J?$sj#RZT1=d{mx@g~E`kR%4(w2r;_gW)bc|Ec
zavlzxw&IHvtm_bB;@FRgStFLbjp==SGWc>d$~_LEJxfn3LSD3I&U!0F>o;(6m-!OF
zmS+`qJ7IlwM2UhB)W>pjm~{pbxlgF3jo$&A_Xe5K{gh<d19~g`sNQ~_qpQDXMbbnK
zRcX>^vGIrKo=c(2t~z#6w-no2n|aCVMr`J~=`Zo2L!%s;wQQi1>KI8!o85J_MS<ZV
zV;<Dh4x1XDRK$R75!e4p2#coH>EB+=pu`HCvv5WF!_(%fwZCx?SsMTihexX~CH$?4
zwC>}n6I!MdF^`c`(%zyBhnXOAjBQ#j>M{WAUH(?|3f3qYcu}J{o`~OiO7B;Sd_DK~
z{&ZG8D9;7c{SS_n$g#W-IY4P<ajc`R84)sOK$LNc@2FBmxyQRQhkjPBxu~IzPaLbL
z6Me(>raI{v31czb*}Z4Pi{3O|VPTW_%IPxd=UTCLcDXAlHpZw*uHV?3E=LQ?lV3fN
zOo>g3a#3+F=`~(tGw$q8N1hno%v32<hgyTJ9KdNhhE#rBVBiyAsjVkHCg>(7MQ#>o
zkBc9$o#<x%v~&z={JS2dL~dp1=0rOa8(aKwJ^IG~&UBn#suBhB*q<_HTe~UWAN*Fj
zp}2lEjJQ|draP>$ctB@Y({aA5>L39q!?eikmVB>&4bkzC@))gD7zrT=A=#tJEuQdA
zHjtQE_K|-dmLF7b2d9#F&5dZQGL9C2hBjOUg%XDjGOtksXR-U#O&avZF@#1#v>-t$
zV^JTCql4T+mteVSIB><;73pLHFPl!_vK=$K!v`_m;Fv=|IHn6JAc#zYac%aY8_+vN
zsap`rd}>2tc!Ji{DqEW_@j>h4h?HnyX;$bO_pDx3KwisHZ+>zI_5FOiHh!=s+^3$Z
z^@9OixCV|8;1~!doexjQyF;#2s2#*3<}1E!QKT<8vLr9kYH&l5Bdt(1`;p(tFi}kz
zK;CCO?q&O}Z0i+^0|~=&bW7b)nb3D7>d^yR_@eZmpMVIg)K7L{WZMR%to&9@eTjIV
zaxkE@8TMO2BLOK@YKQdo)lu2j7ykLSczeQEXdYx5r?(|vr|1mddY*bdO0rxQ|E2#j
zsw2WpzBm^{`JOOx*?{|w$Get{qdgJ#(+x|GW4>-mAe~FgyMKW_OJ-k&{b;|g6~9Z0
zm|F6UTW4)Hs5bnRrp+Rz=P@u>E9Q?i%N(8jSmTlOp%tm<8U8qVfe?@Z&K=9^LT~RW
zN&;)sMFO$f>1(JW*kHMoC_B7N#8C_^U6>?W9fVhr(vj<)cR|WJl#`z+F^`Pus&E>$
zs5V<$49KWM3K3q)7jugD5FrZEP~vhL=Pj3t&N5W&rBk!z4D_Vs1!>qhemmePoN;l3
zPA*}0BEGaY6>y14URuFC3Www<Yl>>ilk~num*|Fbf!z|7^%Z~UP{e2R8|S0`>$*sW
z0u3|_{(yAL%MZQ|0on5kk@$^aao#I2XD7X}5!}j*!p>`wGbrT`o@X!$zSZSzN^1dJ
zTn<ZjBi#suyPtX-uQ+q(ADZfe5#=t|ZF^b^rQfe{#@H6uS{u^)Qb_t8I;Y9EyDcLJ
z@x}m(Mwu(gvJ9biFlFFu=qou`tSU88Q60XHTtTS5|MW*aDr8eBw;j~gxt$3o$W*J7
zVZX=IB{&3OT0Xq_c?MP!7*^ot%>0TA5Vz|Mr}3&2wo>y!q9cW2b;YIftYeOSY{Z(!
z_usZaO>)Bu{P7Sm1VDTc8!AOl<&u1E&vAWe`YBCJZ!`!!*~jT`i&oCZ-{-9%59k+g
znD2Cbgg(k|L)PK#2J-JeRbG>Jzlg6XQ2t!5;dtFETWHOZNge-5Zr|4Er=;U<^4>NI
z6q`&^2p%M}6q#GeFj2B093Y!#8+(y??DH8{9X8@BZ<yKzSR^r6YdR)^99zl?QP5&*
zRXx<x0Km7@YQ0**^5&Gma;&pQ;-@UxC^s%xSrEQKfktLd>5s00dWf2d%m*Ik98v99
zSXNY4jOt=VI4vFeHM#9VT#qZaHfz?Jya@LSQ_hsrCo<S72}X22;txpefG~BI-&XbP
z`OlGdz@60KIB<|2_lqoIuGGuMS!|?|1OUJZ$Cwu;vle^&Y2SEGAb1RJwpR#eDK8zY
z`4(0CH(!0oTS}U*bAAA20<bQy@LE=?-sOnl><{t5QBfQ;T@e!}gEYzZMiPL1mY(Z1
zckcdEY*8Hw%dQvEN@a7m_1cH!Z18Jh{Q~4g2sGv4@7aMPH9b*tNd9h0_#}Tq<ExXK
zXYASsyE6q(QB&KBRfA*^tou6H4Ys|-Y;PKrx$X@`UV>Kz{Zoz2SVk`4yodN+SD`Fj
z(P)dOHv(x;sDUwJO(Kma?N{)*_pi(G$78Px+tJTZ2S~R0ku@}-6<nK1Nx8u{B_wh&
z8Ple98#IyI%-MnbzObz^2x?Uk<I3MHkWM8qz_MM)s^EtRFf^M3{2!;lI5$ql_mtkM
z&q^_ExpGJQv++_L?auA2zeFgz_F$Pi458@{a<b6cW@;%Vg`AvYb1eUDT}*xh(;$Ry
zPWFd_8+J@4X>TD57Pq=xy~SbtYn0HFjU#i+qmpd&S(PB^gScfi_8mzy?K>6+@x{+e
zW1mOhgx#iUfcm`KIa{*2=x_2D*_D#A@r%ML=4kFUy3Q4EyrLlhgsT-72x4*g_s^ED
zbRW&tH|Bo_b9SH{_p-*(XDhS7+7MIK$ThR2|J`A;s{w_#qbLitS#mU@&AS$`nOfj5
zou+i~6$0I!{PsslzUMenB88FBjIIW$TqjrnMJLy-{x9Hf5@_|)6SVAf88d9UIZoU*
z2SUL4A4}448rLQ5#V~5c7)!h#eRl^*q4R>-1yMz7QIz|4I%}b#mBPrLAu{T<D76X}
z@@wR-|8iBdruTzPVhDxAErC{d`O$@L8rav=OdftaelxYh!`{>AsQ?Ioap$m>E2`|R
zz&Ub?5S$6*Vc@aD_OO)4F~&`Xsd$texM9%gia1(iS6TT);Fq>-uqqi2hEJ-^0dWtz
zfUE>s3d%_zvoDDYHh{dguvbU_5W9T3Mcz9L#+D-z*8Gzefo%nRz!v|T&(LJ`JnwY-
zgpbn*VCsRG@-}23-tW=tSePwJ3J0cIm>g`CCu1W`fF=FU3*ui=Ksl6K#&h2q2U;b8
zWF4?_1PCJt#K_D{bDtrQpP=l96Urz@`eP-#BG55`dNx{DF5RTWK?yO{miBbfa^&f5
zqEpfVYRy(ozB$3ERopr|uWGPC%o2O1TdMc9T?Lq=+1NR?_u0PCE3j)wLHPH3@G+Vm
zLNp{A&H*)+9DY4a;PD`!mW*c~=cvB*zB;SfFy8D#_>V@u?`y~#CX6|t&A8P3qKH<R
zFlxyW=PBlPQ`9SpD+G$DfS}n~S*;GQ$YPIt5PYw4=fL-H$8CcWa$4sXKvf05cB3L%
zji^Md+s@9FFTo^Ks$V{1wRDW9SwiENa6s+y4aviQb|=OzUco-T+Gr7tu;o5T>yV#J
zYf~*)4)KLx&<7%eJN6?#MbZQzy*yH7gnyZ&I}vcN1<-7$JXAO&CL+o}avL;C7yF6n
zAY!c<x30X);xLM}H1v+$h<lk`Ndd*!J_~+_AHjvyLKAr4<eE$}#=45~ff?Txv(dK3
zunXCRw}OE4Xj==@`QO65Ta65S&u{Fn{7I|>Yc0K6C5%eyi&9A-`3&|g3M)LTwS75K
z^<8<G-orFaj{_F3<V`@XxWg;jf!{Mz4>L$a$q4#U<n=UZyD-+T2F~%ndhk!k=9uVV
z0ghdzn1Zd@ABo=%0SuF|O6RaL>8~Xb-q`pJN$LUjcy72TUxyldFy-4{P~SQ`Pf_96
zmQqC<5z?||<Z!()2Z>`fJ&VcqmMa92$5D}ag+#|G6qQdw^2&o&vE<L%t3S&dTo@m$
z_~TY0Zzu~V9gLjC)2)AOaR%G{%xok-XMCf$4lHfsk&O;j#>wS<UBu3f;cV$Wh7J`3
z6N;EM8ed=);kYYBayIoyumXbwDi2&^9NawtT==b0^XXhA(S|6C_birg8n+r*Pc42o
zf_HJvL!T9T$Ch~ud36C)h7qK!%WU)W0SvVZwt!s2+k_JAYQqo`r<m*&#g$ecK(Iz*
zDX@YKWShWJ$D3AKz#d%U?Q`37EDj#uuwWVFabj5|XWEGQE##Gt;u8yVjb@P@9ONW@
zgmpc<b`h|;Hry?f5EmNI<uNVo*^9PNmBt*6iU#3C&^k@p^^Tar1W=t>$!*hP$mAd5
z@Ww&_O2EJMSUBYptqO(8N1cO~YYFJLlMpnGGd*#yG9e2-_!(!bwx603iZx^KKMg#k
zjf%%eqv>L(;1oaaAT7a`-z(U+Z0De8FNH|A-g$4qxqCrdHphK4)do;G0q>?(rqgjB
zQ&0=XYDcS@frGh*D#4-8j=_~ncnZegr0BXR_4#dRwFP8U0FfW}5rUcqBAs286hbP7
zzC{3)H|KfX&;026hlwDKKdY=6uIw~7+5WsB#4Otll)TJ+<E20!T18Qxs|^g6ZX+|%
z&14@c%@k=sduz4^F&2&4pXFQ4|4}sYuZuG5wUn9TH$H5R9qJN4esK4|99$L-?WGis
zMAYN9&8ufWZSl|y2l^Q(*N^f-fe`46bUl~AaKXNz@{4aoN_<EJ@(}nc3Ymg#yB6qH
zFH=a+kdB?qpk^SPLqZ%pP%^T!O*VVYUZK4Q4BdnQFoGBk-R@7fJn?*5WK?4IDdHQ!
zp0r;?@SGT-SHO+1T-E%k!kYuVHkLH!e+oKYLsgWl2Dwx-g+M{?SqgwOPQhYlM97q=
z3S8i424(|f0$W43T}dip+Zx_r&*?-7@gwgUw59od$ID{)tQ7oJmxa#{&s&5dtYR$q
zJ^scslq7!*xTr}j`s84%x8I3m1pIu_RhRJ|B9&{4DI33@)-<rGJIK5$^8<2<74OI4
zBc@4*RX7~w(N-!!4mgP*1Db87XFTPsrEvN;OQHKk8J~~n$kRY)J0}N-!$G9hrLmq=
z`@%>WUSD!L*sY|PHF)J{j(owNFW^?IkK%TKc)C@Q_4I$4tgFG8)0O~MXL`h<*!VpA
z7Ncc$FuM_>tSDE{CudiX#BF53+RIblMG%mZ8xTjSm&#{9+l&%1@6hCV9RKlM;mbxc
z@QePJ4*<|>L8Vt<hSqHzr<4LFP=sT&KPRz0{JQ$({`j;f970Fns;ia7tA=fRkG{wC
zD-0~yl*rr6eheM~fJYWOt|}AX)8z7B6O8WDEZ6~+GC)$6mU}7f@}sQ)R<5CTG9jQ@
za9>BEmN3y6^F#?K{)LfO@_s<-o-~yNJPFmSIwTo_Y=Wj!Dqk~0Q>tESTys{-Kz~7T
zlCMm(9s9*zmcqMrDVzXIYug#OA|Z~b<?(4mYC#e@3r=ejCp;Jw6o#ff*Yw$Rlf|By
zfxW%G_UGdEfJX*f`Zv}VH;$e&7W!ue3|sJ6$I`c4^<BgTp`HsQ<&00-0iFrNHFL$+
z<m5Aj>tdZiL0<&NGT`t}z%F{ytPPhm1qp_E*+d#AwQxTd=7P1(P?f4jTf6>dhft#O
zj!R>vvKXA?|3>k<!&zFZ$trqg1A)}4ddwjNS7s)eeks6S6F{E&7<<^1d4rj(vMj<O
zd`J*tyi{?yRvtSu&T9^OqK`prD@r0O07wK9MQ4yEXbHvNPXzWjq>DIY+OvtC&HH)?
zBxe?5AV5%BBw6_?c?C|(-Yup&#?pTuzw6WW7CpU*1MWSqGkR~5gWfsELWxB5H_0C<
zQ`LpWUQDoY&>K-mkEqiitI!V>j1Ntunj%Dy`cS!UBb}EGUBLq`@vRKJ7{K=d?~Xk5
zvQ}~24J=#<si%G>9M{-P$z0q69P-iX$F4D;|EqA^zcQnekJv_aCCL_tXv1!<w-ffu
z(!jZJ;_T&L(yLq*xeY&_<(@Gs-|rrYSFw-0taIfhz7wP31opKsv<>QRpYU|zgxa#+
zv`<+5)W4H|s^=Vw8Y;vSMe4^@IP3r&$9=q=;I&&Wf8xEj^qM!0`n5VV3Hy1li^>h(
zN~Y2saQ^|Bg)T!)e_k>hkTPc(CC6Wil2TvePKs7&$f7|bILMK2q3j?BI0>c6Xm8s}
z5eJ|g!Vj>XW#+CK$jVfATc7_8%;?K+99SO@zcD)c!E|4qTE`Q&2KH#%8IfUcsYT2m
z=^)ggeN9`eB_&q{K>AW|0y2>MrX-fdYdN$9&Jb^r?e*ZApK6nRjZ7-`0@&)LdIsd$
z6o<yQm5TrKA-d2e-P_TS%oQhH2HX?X4A>GEC(rC{mdu}&sy><sakkRj)d<^HLeE_2
z-$Bz(VycFlNCLSZ6e8JtuDML867KQy?#T9nYMG7c$q{4wwm7pOpTs00fh7Sj9Ctp%
zjuWI`(tK-*R;3WIx7Jv>Q?;RitrYeex(RS#7FR*hRZ?P@IMVx}KhcC-57?1^7+!(f
z0li4sp9Sy=jX&ts#dIVIjah5%ixc2hFuuLs>#dm)$K+YV`(t7UO$x*c7kS{{hrD5H
z$8LWWekp8-G;@Yo5@>`%l-_AUtk5R(ApmExfBqw<%NS=i>UoH$F`jX8WM>%1)RUc}
zxIS7bmK9KxY0abeE@5iCBxMNsIrl0(L~(!<!BVEH2DyJ;wg%b9@Iy4n7r&obCWHy4
z?x{UQJ3g@r{RHF~_Kw`ruW1saoxG1oY>zfC2G|K#hJ`Y<GjVotGBvb?{cmM&WChE}
z!1;d}3uR_y{ofeq2MiEMQ7~23f7vSQ5}kd9|Hs%lbPJ=z=z3e<wr$(CZQHhO+qP}n
zwr$(SJ+r=p9`rBBT1i!{B$YgGU@6>nZITluA-~fWah^P)+!-F>vcQj6-Gr)p;63Ad
zh6^&KrsDvPEM32^a}gWc785N+Qq@<qXyU-ROh3?AF1A0js6OPKrG0s#n%&Y_6G0&~
z%=wXdxH8lHK@?66Z+IgU7<%@GI}xLXzDE&3dPs&W({0~fOxM&8T~hhjDdCIkx{DEt
zF|^&HRtt52hbdZ04%#A~cFZFoL*hGaq+^V6D0){H*+H$z&=OL%f{MM}D^GUM9-dt3
zt+7nK;A9W~nx3|P_Qr<GhU;MUu-y;$)aXm%Z|KrJD5vdsK4L89j{Q+)Yo-I|)36Q7
zn5j>;e<3P33_6^9RpO}7Kd1`olY(4TT9-CzxZt=vbIK-G8H*|2w+doTMA^k<R!eRr
z*h=qoD4o)(No`59oa?y|{>|2Z!#Mdd?E^Ci3AgjntZN7>D)%k;43*p}Xic8~TcjB1
z|4)(n|K@d#b9&_K0XLN_JU|OMNX6o@ja5vnpvty?1es0Jm;rrYVl4k7EBvpv82&G|
z7&(~#=Tv+xVM$~SPzFFL29ADRQV9PubY2t)2mOS}5}NyR=gD5d!I;_N9Nph#r2S5@
zJj!b1OO9?&b!DNSCfuGGIz+^0X8}%rhAKI|Z`l<SaDIxYWVwdC5ixWtcYJ!j1Fi;u
z4-}wm`O}G(@+xH1#Vr>|kdXt<)8L?ON9@fWY_bHLBC~6puWNcyr`+ObW@Ww?TI<@_
z!WPmgf7ZIOlBaHNujmQ?h`|57M$nMdEJQoKLIt1=_H9++@VMXcW<DbLG7pD2b##9J
z*;0V&=CA<N2?EJ-GLBJ<nektZo$BWcNeX7}oH!hJW!pfE1(JV;_;k)GRkYc-1L*Mc
z)~3oW0}~GSog0;(YcXEpF8uf`Xp<x_jGkgBit*MKn!x#9zCq0u`d^*R_<wOW13MEd
zGo7@Ft(mhq13ohY3meD(IRDP`$aSlOkr^W)?4Q3=GmN#*e_}b0zV$KBJ6`;9Z{nV@
zXUpU&WmXMxX2yI%V?75fv(~Qsky*zQsvURkwuE?yGV2K*2O*u$L<8%IFzt-^j7ST2
z^W_lk+`vR&&2J$BPv(;(Z4$$mxZW*dRXkshWCvB~=H<BLk?hEV+*TdCrzLSnALQ4v
z^#`sZ_6Dh^r~Z|+k{%o3P-s2p^J`{VV!E^u|2%0_arD#mJ3mqT1Rf&!;Y_HDYHf&b
z_a54yVdzJPOH6AI@*i?b4cOwPZEv@t;GRtLA22{2G?LGast<9I;i|M!5k~-<O1#K8
zz-^ZQQ^%nN2P=Sok$8=14F-oA@}f`w7iIASTe@;iT!mm$Koy`S<LnS)3;gvY^dRct
z{cF9N=^ILet)Xm1HCXX3<+Suzo{*SO(yNP{)2LCmJ;*%6<sMRX*I|cnb|beh6pkMg
zr<kL@Xk2d+_vusByJqZlMU7--dO0;J!<SXs@wowu{mhqDCxogHvO%PIQyOLMUcir5
z49cI&+nZ%r0=gNR6_NY)V{K|ZO)|>`(C-b6HD?#-OOX2y4Eg1D%I(E^oC+0{ps?15
z456&t-h41*>Y;ap1e^ko*MC3qi!J_-=PLRVo57)}gZngyp^Ury!k30;0XP<+mE<NT
zpWr&b6Q*R*_;5rUDoc2MW%A-euXKe?PN<;hvPOw4PxMXVdUB6Yk@_a?;Jif|UaO6u
zFgRfM5_lJUvz>7Nus6t{UP#eH8jibJXDkyiRX|RI*xo<+evCK7vip(-@GNN?FpGTs
zR`~#`H51}6$Gu($wI0#X6?-hA8RmtD|KJ`mx^UhBpWJ~~3c~1Ph4Hp9%gxGwJga=X
zLt|1DT<Mg7br(LqY%ex`gV1)}>ah@s_P&y72Pa_Y{*z-bwCe{(q{c1b#kra~o;qYp
z-$!vuSt4ZKT&69>7jxraT0?aKSh!iOhHZCD+Oo7gXGqzlQ4f=TiVz*F-IDa%=hQ8e
z+j3MSjR9zE6K<oGr0=!6I&0ww=U>YQGzWRTUR$M=^X%;G*Urn>41*A3zZr|LdJ*ym
zr|2Y$q#Al~-Tc0+!C!B)BPNU<QN*G-|Alj@j<#Imc7?oc*q!GNdeVE8L&GWVl-+)i
z%U<t6vgj#Mw+ja)$1Kv?+9HtNIX9NvnF#@j9)#@k59Y=yNLtou&mO(&fG?|4w7@c9
z-Gw4G+kF@OGA!Ye3td7DZPnpx8gRPo=G#w899f?f|GmWV8jnY?*dM~kw*z;969I}z
zH(1(Tnp#gI_5c8?^9T{rTWU_-#b4$d|9#I=%n=0T%Th-hK85|^hXoI9>`BS<@Do?P
z<tS}}$~NX;S%cc;Pzcq{9?I@bEN=N7#n;pxoMK!3cpdAdL3!v1AJaaF-GPW-buv>D
z=EGTh6&ZaSDw|5VeRvE8?MI3R9n7TtI>*rXv97vjRj+4Iw}4E@4>K*LEbr>*0~VBE
zZTjzxZtJ~}5lg$Z-P)E{3b?8((-{JdT!ZVS{K-u=FC$4oF^F{-if>DV+P5IYPjIUI
zHcc9Y&Rb!Ko~PV&D9yKd3jiSX;yT2kTcrn!=7kj~rub#^*bf?zCGPbQN6Xr_PF<+0
zS$4cVD?19}m{0V`jruyKRz!~{1gOP(xQ<Aid^LziKWKel*0*Wy^gGe7yfHCCvHl)R
z7Kv-MdjNqfQdDOo$b-huqbiwP?8sg$v($U)h|W}1UlZwn=;6MY@RlS|5Mzhu6(BY{
zB=GMY*TsdKq-nEo(Awd>%8-`t|B9uE1@Yb&Bxgh3B8{7|HVQ~mu+6`1nk1+*#UICT
zRyVts68Jv<j~b;{uV*8a43DfO>=QByMFOPFTXme)1l^Kgsi2qx$9fakfDpW2Nyy9d
z48zEtITETMc`*UqAB1%T#uMeC^QAgF>{Zz!kj^=_RRvPQAz!HwVgqwLRCYUkkT=M^
z-;+K4zI+6_IUWk%0XTC+F_ryO1a4ma7jy~&UaYYMqB5Xy3E<GRX}<<FU)YxQ_h0u(
z3E(DCr^O9#4lu9v5Bn(~{sgkCN9`tDOI}6nsCSj({yd9m8}qEU{CBCJw(@X;kIC?h
z3-USbK8g~7uGO>WS_lwjVs*3bu#ezE5E!gj4d^!Op~XVMIFD){oDFBU*7F$HMaA4k
z2D_PLUUN6uPabp_<ATysO;=N`VA;dOHX9VZiE53{K`kH=U|Vn$hUKuU?SJ3M%&gxi
zJ`GJPj5gPjjDDP-nHl{KMtw%ryCAIJ6)Vx1$jEO6Jau{4&>xDnK=>Wa%G;}Wu*Kel
z;_{e&sOhhK;(*^d;FW2xI<h@qNDzAH@cbM{xFYq<NiYd~k!RP_PSt-cyC(oWZME!+
zY<>1N_^)8dj+_buFyH-57l6`;;FbdK+xDi5xT7L^4_>WX=hE@&qdI{8d@6+PHjaEI
z_G<%ub2H{0Xg^eK%j6MOc-;J`f;gG^l@E!HG_kD{r*5ZgbjMWlVf`n`j)iY$sMVh>
zIAhZUgRjr1VmNqnw88Z%aSX@rVN4Tfu|@n)eM`Y4vJ=!d@Yc1c`~*Q1DeU?bEsmRk
z_X61Dn3*ayeMT-Nwf??%a>!<zR!>&qw*D?BwlMq9D_L^r1h?C<0z@(;QKXy_+|<mu
z=S;9JwVi)Mjc=pX9%h5#<;>{6VRkBRUaLQ8?+Xhv;09D8zrqw~WR&aV1+#I@cZtqR
z+h$C8ImM=O@pL4K^O@SDgLWkJ(v;L}k%tU%Ju4zC&g9zJL*z=M2ej4^h1dmo7<N!3
zYkqT-aI>@U8HwlFmy$-g+P*1G4AO|gO583KaVmgt)myb4Ml`fpM$Krj6YRzNCQw8n
zv`Gt0ykH!#42kT_rd8KkLi%$|1b?3h<wz|DI3VrNvAKB1m5Kx`f(ks?;4J+T1}cX4
z%{-I;F<(}3Pr1!%w7GkH8h<#gi#T2Oj^{HOjRX3)Mxb*2v50fXg2vy#tU{&B0Rwk#
z;X*>IsFZc_=VzqtyeYC=4x!YMaeDMlLjR~GyAn2G__ZwoaB>)Neb50a``xsgFDtgZ
z1t}<)2pY}O`d-TTxar*?zr-I(5^P6_)jw0Qs992?cq6%R%RXkOXMzvnm#K13($-|+
z0ON~#W(7~hZN~|HZI|U48rq4&7vNGo#1P9`_qwwjtYA_0^|6u|3QWB_Y4q9A^+8$C
zU?g$D?Ld`ED5KJPd{aEed$%&Fc931)I|RtT?E0L5#mq!1Jk+RnM=ro9@r*S#L`Qwc
z1gB&OEWC>_U!$-5CQd-<=9;qn^($_L(_a3(;62mHCTX=G9e5DwC&<`=hrZSzrL;t`
zU}Oa}8}A(Ij0FZM;g~G*Knl5ZG5b1fE6DjkA-NOWN!02-WL97w%9jj<K{5l#**W3t
zP^OiTT_9m7lNv0*Z7x@R<#i^{y+Lca0a%k+2^?+8YDOkisLWb}TP*&QiLvxQrw!QE
z0@q8@m7~u-1jH9h%PAUxs6p2Y)K$5lvjXFDFVgrRKfjgGBK%|FY&=U3<deoPC?4WA
zX@4;9p>yoocw>$1GbitHn;Ix}bBj(tmHwtiDl9Ch+_N?gxmGH^WCoPfl*!O^rEx}y
zwxj8eAe{EGzVUdq)*jZgE4B|PT%rwd-ZZ~?$MIE7C7;I*F50U^Bwuc_i$1ZeX(eP-
zI9Xols&pNUXgC>x4Gd5A4|%xIa()s&cJK%f3~FJF+E=!<etYVE!E<DHFx8I&U(YmI
z7=Aht(Bvn`?s>oL+^E*ZwG*lPOWMaZAe=z&?to;=h?v~*Q<3dUqw1A0x1}kwbUr(A
zQcA6%D^(^{<wfX@VI*ay<{1yQbmYrdNrsoWVi)2R_&TiMNl2x92J(YtfYNXo)H|@*
z=5gx4SBLJgmu55!6CBQynYA8Vcog<lN$IKD141-xzgX|6Yg)-<G#fyaVW2k|xtsG&
zlhHqu*(OZhM_s_|BCO_J>N@N#LDLqLyv9ccyH;+6Qa>~V{dpXpXREoPz=Fqhpm>Sm
zGGiBg7^am3H|6~$B3gAs(qVTOu#;b*u^wN2qq^<)AA8rwKRVdbb(gh}5L_LzcJ;6{
zT?JnBNTyqrH%M}OTG+$A)O`H7aCf`cX`{~URv+RJdPx<;^A=wu63T3)2bj&R*k;O~
zp$UuRiFKj)nnAPaZRiiAE3W`8VM*{%j$Sk<M}ME%TT7@bC#AI>(iHAPcmyL_#r)Rl
zDE#++J%y_%fowYQ9;{+tZG;a$%sejytNUB2CtOt=WogCf(V9Lfn0NdidmSFM-7Y`-
z{5ub69Cpg4O@ojnIMNUj9Ztuwk5TbVW-Ex|^`q0c;&}e~XvnJEKx<k-7T1%EL0y<n
zMomYCr|@s-;;wlO)Kpw@pVh2sYetBoz%@T;ziY(m&$YN{!oxl9fMd?9Mf!1eGA_Xe
zl`SmuL9QI=h_S~$+SP_w)9x@o0DRSN-!?b>?d{2P1fLhX7SOzxBq^(d0@wdnz-+ib
zghKQL3b}JfQp-E`NnJ4uEIlYoNl*g3-&Sib*L+xzF8wWSkdaT;^T^#^3@^V^FLrh0
zxrnz3qc23R;OgIX;sEItpw5K1d&e{on*%?oHjCz$&Ove{Kp_c0GDdJ~`*9fFqaoj3
z6-<m{OlDoD9R*TLFpo|2Odp@T*yZtk(6eL(PGDZb8i`nFBE<u9ZPY+!gJt}dG7XPk
zN?b8HuMd-;UemDYo3)q`B~WTt?h2pnHz2aM=Ds-t%98d)AW=n=(62t5rqdP(eO0@*
zqTzggy&O@pSaX)G$EUwe<`r-69w_sx$rkI}m5tiP@O}(koo^182}S{<ns36nl%%Ti
z&Nj0#rc@H8<@*jlwD(-Y{N-5-)f~L_kM_{*XV)DrU<5v@(g8BZZZP3Fb>`IORWLXU
z)*BfN)&`>XCzCXgK<h8Po}%do*Hyk(A(O<vbs1M-nA?Ezv@aPV2Uct33CBbYxuV$&
z?#gkI2k5!N2ZU)gBBg^z$PP??a9o?-(l%LWCTZ0U%s0rAx3<qm#lLQ8_u_XW==K|m
zeSn(=A3YL%Ss)fI;{^rL1>_^-ax=sIJH(cZ7Bp`OttskHqbSM1mxZCR2n^GEP;oP%
z?#hEs-KkU;0W)>mxo_$iv*lL;3#x(n)YTwMD6uNpnB{zfRyVrADhU%u24`V^Z<xqr
z+x4<NdDbdt*Em-+aT$;3@mYvaWNybab262*$Wcv#_lvR{jLN?)3*)NWctM;Yg$`tr
z@FA@){3!i3x&Zs98J@>9iM{K&{h}W!SyG$Q?8$+gZO?h}`RAFLuFII`D#v(vzBU-0
za#$no=tm}Bcev{b@^~)))hu6p9*^C0_(5O3Kp12=3hEHHGJ`)*VXB!H`Ys>^)73%J
z!d>iA%_R)|6zhuZ9$Aj3T5S+l<=6tS0lVdowya`_6*RYN=~>3mFzRtO50ah9*KlFr
zdkp_t(8Un8t|Z56C~y;|&il@d{XXGXK$i|?x^+FrNG)+a$w={s^N1;z3Ex!7H<=j^
z7I=omoS(Fg7)umFp-y~0y08#x_k}aojBO=ZrQz(haTke@d_gR&G@w;kCWno}*ZjE1
zUDAzh_Y;0Tzs`Q-{x9=yobx(2fR~$Q;>P#IT<#Zue;2E4=k)+){lrz(s&m~PUDf@%
zn(>_gkR$TQHh}|Erl;PWyOnFZMpl{$aL)=UL#p);3Y*1YYfPlIC#ulml+*wnw5rz_
z|BiLW`^V=LCa)+T+@g;;3!_OZ*ReLJ-lj4>F<8G%C4jV&h*^_$n_i$F8Bb1pT)=L_
z7vGZd3C8G)WC&JfnDG?;lR5+BDc|Ox;=LDu<}UKujCtgf?Uass^`pC;OiAEX*RyOO
z6O7_^FJQlmhH*ucgyr+w$YD+D%2YIjePEEu5>xIjyW+VT;1R=1f!}`gV4&x5GZFN^
z4u1F^KFP?a`&UAUNbFVdS;{vKDW{w^m4TmdDO{84m&5lJxD{xW*7t^P;4WQ`_GV16
z|NJnRi;3iaRKgUYV5w}}^JE`Vbo-z9=5?uy7w&kkC<HB|ZSj}<vK<x7X5%8NR=F9W
z4rF%gM7@MPT{I(`>i5YoSI;C6(eXcpYY4(Nv%2{itgr>vSF-$dDt_h-mR0wox!5UK
zK#~IdW=d3?7(=D-v7+K2K=U|a$w>cThD!FQK}R!-V5l;(okms#V&%Di!nbQV-Kyzk
z&xFsnOMe#~eQrTElKCmyy=z-&9>{11^4f%wM0ctPBsP(~e*G@P(xWtWtKfYiqmN8D
z*XSwr5u;Yo0tEgdtPUIMYO$h`f|<X*&KeB0#VlTwo8T1A1KXMCn6!D5mbj_dJwY%F
zM->*G>PhZ(Se$Y*GxmKOxj5*`*;}`fJ~_n7JcP$ool9mV_D%r#fUaHaF0Q|o3@icO
za6}lV$Hen2+D3KKf11Yrm2~o0EGif%Y(Br)vo5=Ya{>LFfV_bf|DZ<Nk<C_d`)J}j
z^1(M!@!w1IBbHVvC1T?<t^78o3S$P|UC6hYw@;C@1+o>MRdNOy!O`f$7D=8ImIno5
zlQLVNzIIFyNL+9VMLI0h^eiiKZfB72KaVqYM&6Kz>l;dQaM;7I<gS4Svfrh;PiKU~
z{L@?(wBFYxCdy{S_pJp4mtQ#<8;o6tN@acW>_B|*=<9Y#*B<XPb=cs21f4{#EK8Ur
ze6Qt}d{l<VNnLvAUl%%rlPVgE0{5Df^1&y%4x#3$+?qH8BNvq;-?uJ}ql?6cgRV$;
zX>=mcV36q90F}yhX3Hl-wS#;GOdEpS_~tpc+8E&4+>&kVx5T7q72*LSqq^C4&g}o}
z@478)q7o%obUkD79q{iIs3hzX@4|rrjmj$?*<Dn-ALgKW7Cig~bW3A*+0;%r+9y(k
z#a@8jscI*h!&CRYgT*hmg9!4T{H|*GK1xytekSgF^M0&apTS?O548h1k9!I*Oj(zM
z&S{Fr)`)=eyh|JDc8Ccx{(I~HscT6gzyYCm)`ImDS^(d(JH?>dLC!n<Bp6koeJ%TL
zN&P3x`E@-!mFN3?aJzbB0J1TUnt%rG(F3z^d|Hk=&ZYnWMu5@Ve_7Wq;IH!@DV^|&
z_<1oL*-GYcB#|3jBYg5hUQ&-$WKhgccQfTSNY?;m8TcswuVPNjTu^fR-lliu+IzWY
z8KB$OG0C_baDI0YTSZ*qCL#kch%ulAU$%>Wj_NQHGvD~$cwRor9l2=zz;h+U2S2@)
z08=JJ5Qu9<^VQ3HTH+$5)n|BAI=UxrBRc2feFY~vq5}nI8y@@$8UbGN6S0(?aOU?3
zKFEKBE}M%5{F4HIQ;P@dgbVGo7)0{GnKq~<j4_O@dpwfnT!ObV)m3ij$)4tKb;RS^
ze`N-E-yr>*p3z_Yl&tV1A)UPC7Su7(J*Q2vT=&3X&11jNcbiYKM*^L(^AP=%VgxgM
zHciBxRn)$srK2qNzr7P?-fky+{05T^ax+2Zjw4@fm0AG?fe?#hy$bhoT&<pmtnsT<
zWl6j;{;Vb501A7x84XQI%!mgvAp9`8zy|(ZJTcxjNv?11q}HDA)hnKJ?IA`(c{E{5
z#b^q)r|MX;(28|!xd_im>+!ACesaAqiKF{}m{0PUW|9jf9ua!)9mlOaD(raERCg0f
zx0hdA-o7Zjq)4+c9oz-|V!GLm;Bu3(S<lG{CxCVYAZzTibW05HUY(Ctt7|pj%KuTN
zlu==ko6s&Z;;p3$?k%SYii@gGQ+@kg#yM@Ptwm2jJnp(s0+Kx0O6K(}<7@K2&6NA6
zqFd%TfpY@`T+_i_@d}9nSd5nUCdA^+$FaPMX9OcL#93!#nR%-!Zt8-in9t~Y4=Vu7
z+`EcMcT@6xY9A;ZgQQ#$Ef(znxdoC~FIh-|qw%k*_S{y_l)iq7ueEOCA-gy7(M-SE
zJ5qH5H_-TI7L6CHQ>Q~LT4Swwoy&bpUzjc_?b>xkj&)sB#&#45MXnju*!-a6|6;<e
zn!Wu)!EADxn7O6@AzPv*nBkht%_6oYK=EukE~HFU4##}aNK4r&cYM|84PYF?p^-!w
zj@pFI*<}Uk7P^tNqFn0|@OfPoEA&3`Tj2acD}oEftF3(X%htm}^=SvU%wMfF7*H=#
zvcMDZ_zlk(##`$)G7=^ZRm4P@^nK8WpdFCVc{Sq*{B+5w9u%-&nRMjFZi#jBVB0IB
z<jAs{BTl^zfHgp?nfB>dDREqj=&gdUj_q;+VRM>OabUSeVUJH77Fhlm;ZyH5-bV2w
z8Sj=^mix+2({W_#vv7d=Oyb7(fG{goSI85a9orFPH1_j0{wp}zd`03mtwaudjBAK5
z5-Wzm?PSu*Aci9Xio9oCQ>A)3H&=5E>_)Y!(rr7#h2LG>PuMx&IL~o=mJCoa#CKgf
z$T`u^n5GSbnd`cPpRsZGU?pw30td~WL;LldsZ306ifejz3@HCOdN%#uLt*8@gqXu+
znJeC+i40j`K5v?_0S?8|>SbvU6qCG{P^q?gxXl_SP=$Ees(Q*=I-b^-zkkYw;<x;7
zfySl`JdXgR?N&8|Mu4)OGlNfR-U{_=bNrakd&xxlcD`zX|4Q29*XipDvjd@_<I?o&
z*&+!zLhH<uW~%g0Q1A;sP>X}+(NS@rS<r^uvoIcf;)BzK>&K@Ke?Q`AMnLzs=cPPU
z#<;~_>3|Xjx!6vLm7|xop|*b?1$-M-)tb5OOh_IMbhcHy7ATlSUI9)yP@CFK-*Vp$
zZ9-D6R7nWo`|`RcoL&VVzVV`8$br<dBVEzAq$1W7xYfi@EYP!1>{MISI~D5}(Sh)y
z5%RulRmYI^$uUNySHycs?ZIAmu^t3Z7>*QT-8;BubALzta?m(qoIC@tdVC`1v3lJa
zfW`FQB7X-sk<=!t<Z3(sqw|~86Z_~)@|&T6TNS<*sTlE(N{T~m#}i+pX>{~-yz>hc
zBbIzD40=hpss^p<_<Qn5^&m1W)*<@Za|23ze5QSH8ki^0ZlMC|mzrFws}Z`FyU#p>
zifHCP&<@(DY<7rjHvm%t&EtrU6_aux(_YRgpNT(FLU|&~j#$Hfphid%%fKS)LHBy-
z;n_@(I{Z0bffURy9L7lh*+<4gFuh&@t@i3oflfXsU*kLT`aP!N*xW+s9h1FV#f6D$
zA`>T(2;fk!T}Dg<GTt5lTMx{ml?lQ1Lza#T3tP9p@I0&XPp5~gK8c?DewV=41O3!z
z^rp$@XoeS>Wh8`>B8dU)$80dpcuk@jDAiAMf%0murHa+|@XatvN)NY&GldpU8bQM3
zp*{+WMvtUb%ERRK;!(JNkSX3C#~bxf$-iO;o_tk*`j>eE0m53<ON|w;XboxeX1OoQ
zKqUo2R_@ul-p^2l<eN{wV1<Fy54$$Sl}O?2HrWw8bateOW8D6wbWUCZk*_OB0`O6!
z<F=3Xk5o>>UQwRz*)|2p>8rHWeWPN{4<%%Chcy2xmPmRU`15^7&Vi=@Oy5w4kU&e<
zFyaCO17>qq7j-<fjrmf|Sj3_&pofk7$F|$yg_c)*e5>D13nzxC)(ANVIJr{>SNU2#
zk4TklDGpE~zL3KXJsW0pn}-T+Z}@nW5<oOt)QP~BIn<PcyqpY)+Ia%Ub>WcO+>CId
z>9F_^Un;TFIL4o{Xe7P_DacI6GCi&Qw|wF1*ScKc8e9RqdT)SS!3)LlmxIXgjFlSQ
zimBv$9vsOpIj#dRrF&4hguJ%d9<#zI195H5h>vnA!p}7V_{N`Pf8d3QD~1CS%CGj1
z$4^VMTX1Y(k;Sr0PxQZR3F&G;gD5|6ommv_cNioa66$80dP0DC4h@Q@r*H4uz_AlD
za0D4hqs9?-Q47h?&g(}ptk+j|OP5;{s|^uzVxmSNh(X>Dx$7MVOZN+m(KR_0ciFjR
zmDCIIC^o8=LCYitxb2E(VV#rKU~l5c!A!K0iu_YPFT>O*u7=6;@A1D(yiXAh1kIH-
zY}T80va)!433AU0+nVhXt`Z@=f|uqQewgKSfE`8%`_86B9L>76o=#H(yPqpNY#Nwa
z)tR}{aViT-#%@)|;7(shP;;xzFw`X{TN51Kr#}UM6`oSjX5+sx1WOtBnt2VSTG&Zq
z>h$?@hJMS0fb$h8+2rAauP*vOD@-m_BbXFHmvC4pyr`&nl2GC9B`_6}*Gk^ikwMc2
zX0%A7cx8!T8LO2&_W%jGrSxIy5^KXCEK^i|dfw_bU=c$OiKst>NQCxYb^Qe4fp)HP
z)YKu<)b=d6y?_UQ(wIY0OsZ*!|FU?TG2kZsDQ}8HV1~fk3x&Ce)))mooXZDWX1j1k
z9m3xZZ&)~eBx5GuDAZFyY8yhJY+e7bIrMC?etO8~WXTUEu-P#}dr1D&N@=0Vhp#<j
z97Tjk2kG~xjwJMFA-jvYE<o0DSJ8YxI5hQ4V8x*~`Sj@Qo^)!tXGsIyE@gjH`}0UR
zQ{G#p3+$>L%q`9Zkmj1~TB=aObAe<@Y`s@S%m8R!q-8pnf@5;}hlxCfoUY5j6LJ<R
zaof9Hg^ZXK=MTlLw`MM>{`brR7N{dvkh6Z`$1i@T*Tcbaq{8)JNri)4{6q)i$mC@Q
zF=$-zw^y_@LP;C})Z-Yh&Xh9l&$+YrB}P94&cvdXYClN98gm=if7T*aspP1qX=!5B
zP{-|18nabF8ht5W!gG~&KFNSmHn+H%2Mfv<aq7o7IKa1&_e$Y`)%J{wHYHOF6av14
za{MC5Y?UFAqM<D3y@sL4lSXJ=5`KKBio-3ssaFiTO(+m^bI8m4<KZdTdnLkrZ~}+i
zxn4f+0=nTR#`>7^OEZ6m0&C+tJ@=##DTx>>)u?8~Y;u+iW5`pGD%?f#S3Axg#6WV7
z=5#n1&6*=%bY8Xcp9LsZ2@9(Sbs-Q#50qsQcB7QKF558RIBiYAvfp(7f%*Z*>~+X9
z@DAPcl4Z8VL$C<@AI#2eR!jkLb6{BwgHY;m2*#BytlQ7N@!t0p7U}d;EU$m`MLXN$
zmm0$|a?p`M2Lb3x6V#HaHv;-KaRg+s3df%7>LcH<c1h`N^Xzy|P|t}PllUMKP?Vv7
zupg#{261P1QsVkN?<iKFKTu#BkL=V*n7W7TMap8qnNVO7-&YW!eI6%Ln`Ty)<6IIL
zP`l=!f4?s*GwfujMZCgD(D3^>&VJr#>=6uvxj^7#tnVyK-2o~v)L8fu8qB@UlHTN!
zhS>}NC7cG1mf|PoB#)t5T#J|DXQsyTc(uZTENR6PU9J`wT(fN-WM^T*?^753iKnP_
zHk%*y>W}d-#tpQS%ePN&vb8>lflaqIIP?JIHWlOIYqEFwK|TlS-vWTi$hgJq1v$=V
zx^6yvu%&N=Q-7h61E3?{Q1QQFd`2B^?WBh!$mPY1H{;y%=R~o{i2{!x3M`}h<+|l#
z+up@KkZfW=KFH28elg2#QE(^ew*THynvRW633wzEnG@FIW0ycwa>BJ#J4p^6Tx3J}
zxl>j2wdi-u{&4?^MgW1x#t_lu<XlqpnaE!>x6Z{R`2kF8N0*BXlJ8yxwJqoZhWb1L
zO6LGh-unKFAQ37nh(k&q?c~&{fK4RiA^{ZJl*cl6Wm&mNh3o^5>2K2Fwg$9}gnTPP
zQYnnO(UZST*0pyA_EedIjP#@{#CC@aBdMuyVwq<O2%uFx$a1oTI{Dipr%MBaak9_Z
z{)3G5L2)!+7XE&y>Pi9<nTmvxw-X%Ks16kZg~&ob01Ra0kB57U_Yv%T@jD%{)vbl9
zy*~8(un!m|APFUjIq<g<Ft}J1`9#OgcRZGdGq#buDs@1sC6~ZIL7G+uaq~OmAb&}R
zZg^@X<N1Tv(!L!y1j8=70@N_hh&I0p;fu;$A+k?7M)~}dpKX*^^aJ}OHH$XU1g~FV
zHY}V*qx<5mDGj0{6Q}u$n}1L`xS#Xp@ofxB?o@9beBrNc-G@JH$k@8unI4DZ9$nB#
zT6ZeXmlko%hA~0dn~w^WIu{AX%}(ucZyw+q12hGUHW_F+{3)3fDy_yyz_}4$&$v`z
zln}=s!Bg-_V1%d+>mpWri!~xZ7*UGu-0;)x??shrc7pNUbn!_U*m^UvcLLg9>d1p-
zd!M^9WR;Xu6%-(z6}5%bUvqJ$a+Jrz;;>f4Ta@C6S4Ptv5n7}iDu-JdO>$0P&rV-L
z(I<1E22`x$Fw=U(+npm}n;e!SE$|M1=s=r*6Nnuh0rbUwy6h@4U~K!BhJy=w%maHs
zx^Zd@{S||wfVDxqMDoKgD_zsSWC#ZlK1gc73Xfuzh<rg<jQ}lxHsCW}liyO2W!!xw
zvVB;_6V;@Rbk>NlfNa>FBa`wy{D=9xd@h65jRr5jbWbRu2t|J<n`&gc(V%BbJsccF
z)Dc0GGz_}{sq)D!`Vy@}pC+#y`NxEQNiimV!8ZZh!2uA1!pS_xo<v<Y?vKs0<pFz)
zrmssR-~1U^fXZqif>Ljrpi7hB_y*&U_p%!WOM7nQ!i%d5E^itO^dw;=N36->SlkxT
zWlmy1uJOtfE0q&T2<jLArCr3;CpEd={tBOQ8tA6jdT6eSM6jS9MZJe`;_M)*H2ahQ
z=8_b|?!?xpZuIAFBauCK=hSH=#{)`(I*qe6JcPbl>x=gk>Y~wfesN3j7!s^9<<m=P
z)l+s1KOA_kvt;?2$ZmS_lJ-wN84N*Q66rl5iUBjCE}!O|nd(&I#N+uO6?p=PJsS00
z8cpi5q~+cBvpHic>)$S&I!-hpX~kk8bHNvOy*?zB(Ni_@F9&iWL2p52aIquMQ6C6x
zWJq4Sh~`!_g)d_n$M7r28FKPzgp`@fxp{@{_45K6(uz~t4(Ti!;CT|#>--$yuRNY_
z-WjLAT*miPH>8gSe`S*SX-wEZsXn3tAkQ~|&x?n`Ffi}|9u*h-!5UgcB$ksT?6SDD
z&c_4Hm`k!sZ<ej`u?=}9vj=GqHSJOXb<#O@FKI%L>$}Pe6H3HDD;^?Z0?`fyJiK4n
zu1|4NQL(4xX4wJhh=Y6$(GuY|{gRzP*SqlBOxGT7R$5T;iqNEE;JAGrT&6u*+IIvp
zRHy8VEa4cXRsYQ2j4k7iBn|gSPo~ZxloARr>V9}3VHrwRD~XtMB<=a}{JwXy`rhCR
z=NhZ=`J6~pnf5He+v*8!NDt*rk*94+%cuisHqonqFF52u=q$9LaI*E3B|8KVS=Vf)
zR{E=^Tn9AcxS34)DV!l<m1ms=PMZWjT<`oTT+DObuxH6uHGaLZu<dHQ`z%{KhF;Hf
z-tN$%3dQN?Dn*GV5;Z!-LOI)YzS)cjn`>VP&=-i3CrM^1P|l=$eZq8XLAKb2M6$hw
zU^S;@;fuAx*zj_};_N@_a|t>`CXT42t2lOs-sjrWX+aa~JE`@O<{fn-Z9NGKgqKaC
zb6?}*h6LG%muea@u(JYPL6Pt(zlk_Y1r5{wdx;^-(Lr!$?ZpKxj@~u?n&~JIAL;%T
zLkfM2Y4RX{`T49PM`%#^Stjw-mvQVF3x1(KLr-0X=kk@KC)NVL22TOTw8`1t65KCX
z(G*6ghWY|iIzPs2Udp|TWwt+pcTk#337{-8boHbzpwGOp)6$>3Ejuz&3G!#naLgcE
ztgCT7cF<SuSn9rw<G!eMTt{)p0L~fLD(C^@i)+)?<)LQf{;>GhY+$A@S%b5Dl9Ak-
zfA_^9`9LqQfCP%(`-rHHMn)EGIVKr0n9<UH2)-3t`<(2Pf-5hD<&$G9?GBBR64b*n
zlT;8W_53T~=fujhp+jH8d(EcnOZrznegt6uUWa19!n?;-v8G~XEPO_c+T_XKZ{|&S
z2WRp%xzOdRK8fDRic4|uzy0bdL>i?=ZA#wpg)LVJ?EYGTQj`Tx!s!wQizK<y1&ti?
zUwSBw`Z3&+4w!bDl@@PVBYJ!%X2W$A!0`p5($oi|@`sb+X4FqD?zsGewDSaGryFo4
z-v9eN*-h$L_3E|{-3)G?5d5!AFnO>ofF0-=6vAmh=g5v^gQQGK95=Nxqu2b!j?}aT
z>2aL8#&8^mJQFaYohuoGSVVnod7%_eU~o?U2xWK`IX)TB)cO?7Df5bdHQt&#)bx9{
z0Wxq7`uP`DY@Z)Hzw+d3R;W4vZOQbW!B}WqYZ6B?`82OtQ6$fqKTDdFSK85zlT3o#
zgF6Y#<X)o%%1`q8OP4v3mAtevNVuG*l;bj2@Dn&98N4H4I^CWIn72gG_xmr{ksrhO
zc>6!L5)t>)*JLP;e=uL&b&b^YOI|1^ar5Z1ad0*Ea8`OnHeBi(XoIym2#_0oKmiC@
zzE!7G#xZryxwVrsQ*0pz!LQ?Vss$xy)4cMGD7@JoVn)VsfAd0y4r79_+=Cyozqx-z
zUma=Bq>h9$sxrcJF;2L^EsAvo@_XdUX^ei~V1R7!tf)Q|$$$VA*fZi>Z0_WlQM8qo
zeZWAzor0G{+&>dDkXv-7s=H`ah^LQQUvn^d2Qb(PH!cYV(yak&P|&w&Um=$9I{$O?
z1?&XyK<7Cb_@rHK<z|rf=^NR0HgB$yiT&}9zDnW%w}#;sG1Y>ejPRNrRDYfpkS);q
zU{o}ub@jl#6Lf=AxSKP;{+@wWsj*J)3sxCmP5$`XQiR_kkub|1<v1oESkB)E4S!--
z0qs^X#A}%ZDUW)MLv1VUX#Apk+&kGA1w_5*U+|?)02c3B<=NC=uapFF|9OBSdRazX
zV8+%hyvUfhnn-*G^f7kjf)%e7b-<hB7nHO8=JX4v-*9#9o1~I)zfV;I|GN9oA&901
zqSO(^|L`NV%|(p<ekX_ENnZ;#f46E5XkR-zv2~5RVtiCLxOz%R@Z*tG%wCX{I1{aN
zOK)Fq3wt=PPsRZ*ms-3Wd9)G`PWZE;UFG}we9y+W?d}2}0Lw-<3}$5{z+lNGi_I^9
zI6)?wQz-#DSKDcc+?m>HQwJd{%S?fEbpd)nqEvqf8fW~3C~9)b{<>d%&*1#Ut#oCK
zyI^*HQo~LL$%d9ATXGSFc6`5Qce7?5H%_OYqP0nEea2v8NHF(rJV>&FOu4g>1#Cnq
zIjb(McrHimwJs}L9pp=YVRnU4f0Z|c9b%qd@zU~XTuuS8!=JpC)5y_e3ntEIAfmVL
zH<HLJ^u@m_754W(YD_I#W5#V_;5m}?DM66I<%<e8N^d{X-C{e*GLut2@9E?6Oxb$4
z9km#(nJ3oEB#-tHPO5!yc2nu43!;{^l;sf&c(NlZOZki8RF)i%ptrk6&s8NozD$#1
z2jdz`W$dO2e9GJ(lc!pGqfq0t7ztLRIQ(uu)f$8yQ;@#!@)S1=B62+<Dn&bWrYL7D
zB8>dxm6E!Y!3eW);4~s5<i6Oe-o#RJ#{7PVgCdAF1!BpRBjxG?U|5@shqZkE-wqIs
zDsW=RPu<sr_%^eIt%2bU81^m@Y7%FF+fC8XTp>*u<4V<nQfg}w&kfMO=Y#j5_`6oj
zl}1q~4;xp6XrJgXgpe<rNRSCcnG$&*GmiVPBg7AaJP1ZjZSup6;MZh={!v<J&*y+y
zFUf==YORYS8_$~`xp+7)_W!j)>oZ!rH@fPhsxIy~yV$RiJet7uyRzE7H~4skz7>Xs
zt!~slVjlwObCe(P%~o%&4e3<L(FOlq+F0YQb|9W!(r^HE23Kbo?>`c1^Lmx~Bu%k&
zO4(9$vF5_#ex->fbxE*&|I_3_qs*HtNpQ-ZLc`5pp=tY+Aeh#po(x%-_X5Zlf+c0n
zl7n*wCGVp72SjzYrke)6QQaV4*X7z3L@GZYRvI;aW7i5}A{hgbagsX<A1Sp%Zy9WN
zr8IG4y$gj~HK^i45BQa->SbBEGzF#pw}-ERH2wXVQ$@0ruBd;5ln^}W4!(eSp%N-I
zNaaNwcIR7a%8E;j>Fp$VWAd(s-Y7%ZG?e6PYq*H96kz;Rt6o_i*4McG)ROioDQDht
zF+FraLg_p_!h``L&Q#CqR=JD%rXwyGN9+6_tPocqJR)v$gUDJZY}_+gfbuFjiL<h1
zsdXTP8rVrS3J(hqb~k#Xi#aBL2>-;dCK%UMzrzVpK6vz|U}gqTI<PCyipzSMjjSl+
z(4u{fl_!58U#6V<T3}9UtVAUDSxLU4&}dBXxQHZ+p*abACax&(;fCEc<zlf}XzA^s
z{QKp;Ps;o76J7yi0lyu%1UNd}%~}9uH<~L<b~;ZdlT2<^Y%>H(@9dtXu22roa?=xH
zSQ`YDie64jBQtpOD{*_RDOZhm@KDaPQ9ml_VQ}~#qIfQj){PdU#bv#Oa`rs+oOh_J
zRR``PjG@)CJ#EF>chP!j1*(s$My)isgv1HO;#n-Xomru?BN{_*yLxWiAq$Z6am0mW
z99pT$*7|A|)u^(P4wyo$<j7$Y346I+rLQkgJ3gyYO957~V}d-}^eWQy>l{U=OsGwR
zahK3%*4~kDd%Jhw^6_mr0y-sv%yJ$KZs3prdRVUMEAe2##MsbbLuk_DMWFun$kH|Q
z`UlY)Hrv6Ks?d}WKkHM;t_3UDs>R9GkKL}U7^w5MFw+cti=EoEg#?>{#Q7zX%dkA~
zW?Oe#GsECdZCH*Z4maHP9=6#66Mvm&DBE785F9wknLZ*>NoS!HAj~7j#j@-;y<1Q_
z<69ihH}@{H?N!lWqhjVfS&qY?I8$}oTN>@XI1e6&#Q9{aS_WO&YrC|w#wc<N|JLR0
z*~y+3$4!ato`EO%3hD0LVe}ze<wcq!3e4Sp6-Rov4O(uf0-=OU{5qxzp}Fmc%S4`^
zYn7Woi@%Fh8cm??pS#H<a0EhbkR48FBWj^*p(J5~(I@6@JXqeafqW(gBrC#stbY|e
zXDJe#<AyR*BQWom$Dk{=1GwxXn_-oK!o9R1kg-N7JncEKZcgfjrqoXd2XYqC#D@hP
zU(ys07w1J(CmvZUNZH#jvoZzt{4n?LuTUo)AqTr}*b3~#B}QMz;?H~Y6NGhKD4Drg
zW%k8%hl}hw-kc)ySC6GNezN^>5FrV(ELiGLX06_DjuO8nifE@gx7?PZMnX}SfmIDR
z!Ym~S77G<Q2OslVCgRcTK`w!E-S&MDnOUK70ad=p5A)m9(t_5;`+rJf9K&~Q=XiRZ
zSbA+x$T7k9)cmZ=?DxVv?$#LA51@-8+MJ?!Fgj%AIvd9nx%UM2tyl}n?+3^SFMk{{
z6sNMQpxINOIDW5%NBYnHiFd}ZO9LxL!KJ<BXZfjfSQG`p#M*hXU~QPG;B*qZEnMIM
ze!}1E-2N3{@-`~mVP`oRNd1;QEJoTeN8#<Ih7&jQNMnC3F>;5Bxd-##D}YU&vntQ}
z_?&zOb`^$03tA%2vvasP%;USXRrW)L?iXP#1YhSkJ4cV`jbZ}%nl4?of5qtyK8<2v
z-35XnDu!y*L{i@_1`f~`Rgfpf-Z&XXRk;ZV4b}kL)G+|)Rw$zeiy<vkgIf8|tSu0X
zPeUW(B3w2UeL066#scOkzM}bbkz}k?b=N0n|FCE{6@vOxyB;Do3tGaLM!8;nH7DD5
zu8}2p?P#P*e`Vhy#|Lug`)IcDZ)j@Uwzyc|fgu@=j@gyfjao2<H~<<Q736cvNKFXz
zty-Mek+5`9&1x%E6f&NnD(AG`-y7XLwx_*w>8`%V|C1+_8hVQsP<mMjKq`7mEI<Wz
zcW@8t8;!Gh)wu|->ns5O#dU_@4Vt!XC2;33{DvO}=Y9$C6p={!CZ8TDphkg-;NsGr
zaeC3FrI!gw?j-b_ss0l0c3gj<pu?PFeN!X`(Ed#v8d*__6qNW_HyLYg&qSG@IZn&e
zYW?!X;e!#aFERyuz8l4;ui5d#uAPJy!5koUX-AZC$Nn6whmZJCiQ?rn*I&oe>xVRb
z-4|x3{8EZ#k?F-Hjoo6N)1s<>N)3h}Re5sJFgZ^cPz<o|1-x0HmQJy_SNJa-YOcUp
zqrw3t{lFbn$FSMIKXbTM^uL}@FQ8ee+LB|4WhJwAl~;;F{l}rku%4oW_%)I7i)%xk
zk=6_^0r(fQr#t@{tvX={W5O5jdEx>4kiAff(A?nSCj9AsB*E{zy1BUVLc$NcJ4d!j
zi`P^{NHisk|NS9WrX!t^x_hMjk_>IgQL+OzJL_iEp^1!P%kq~>>*Lt5@zF&I^WP+5
zNRC#Oo<R#!+QXB8L3rupv~>LIK3v@2A|53JNfn<T198B<3DJZ!Dgyd6v2gqWzD<Hr
zZ9Zxb?G3l|ri9M0#7a$;NY{)ka)Zx;Vl%MEOni|7JUb>nGi0g@c`M$(-MfIFHy$95
zChVh`m>un%r)mPTHL?`y{4>@A;@?k&m^P%48SV@fX{%wj*+GUS@K|m_-QlfPE`IMN
z&Jc8LtOj}Kx9%xv1j~Zq%zt?Jh(fx9v6P@ACJY8oGCzbu9hP{fSHD0idrnlAY~5~o
z7mz?-iY$hG*l+mlm6ed|x9)Kx<61{+;H&h&>J2=rB<)VO9$0>?N1#wSwdyKSnQh$z
zpX9Oz)5Mp<^}MqKnBZBzh1cHZUWEYjsTB!Wnh`ThKgAWmXz3BZ_nbk&zL!?=%auFc
zh`7}RL9`HCsNbH5vm!by^24G1Kq@gDq5{5#n>+dyvXntA?bMn(zS_f<_<|9CWs;eB
z=D`@iN_mpd4zHUCs)wAnXvvfJHvw-bM)eD|7YT<;s{E|<y&ZxiaYhL5OvbgLjF|T$
z9NH~7TIpe)MDWHYNI|~(xpjY^6b68;32mOpS^x3WzHXciR4X?g1q;+O6p@WbH?{X?
z7aqgNq<Nz{>1e&sM?Kj?B@hXRn&z4hLBPbnYKxsUf_&|dYo|yM;$}0Bz*(qOb4+S6
zQi=VRZDw<9zi`|$(A6Vt%>+w1D5(71`&7y2k5k`AKbehD7iRd(K=bUmZ!XbG{+V7Q
zWHf8QQjS7)-D(2L=}s>KqLKN6GXx~EKqo1EP)8o$k)je}eaKTd8YPUqRI(wVl&UyS
z0$S0^+pFFnFfIotc4iYs5ywxoeInPM`%|;r)`df6gQb=b?H4U&DG&AABEW2Zb7#as
zQ7R>s;^b*K%P78O&ktOvn*|zsu@_*Q?jOAj&Ks6(#1t*2!k4jdsLuV7k6KFeGO0fq
z*UDHzYzjxQ*FPYc$7?=eGyDP^$DCu+k7Gfro3?Az&a%6-jDGh%tVo)~QZ)%{P$&eL
z6MTP!G7_iK0bl8?RZNi*C*i-3U?$6C8{Z!;$1C~cof$dg6dR%_1hTaDc@Fd*JR}yK
zPTSBDblku~mo21Yu7bR0B74}+dN~G<=Zs=*JA|ve!}P*(GKUMVW4z?J$+(nRt}E;|
zu<{r5Xn4iUFwtAAbOTDx(&1F3dC(yrp>&9qni4N&@h4!e+~&{5PZ^ivxAw&1gj0(2
zhjaECZa-Zj;}bU~D|;xE8j82HJn%4xREMlb_7Y(7i8lpoeJQLGgyZ`9DRCdbKSj{X
zkiitRYYY(k3kV&Ql0dU6x8|JnQDQOA!oR?UAl!0^KPs~gTnk&%0KpS!;zoLFai67=
zM3ep7O_J`8EG_G$H`?h_m_Ct*9+G{zp8-KBqm9cD44W~kO)rj3Kl(&RG;-+*^~;U+
zU!VG<%Y_blW0tg%E&Wmb$Bew97TnXRQ-x|mvz`gF3$@i^Is-~zlWh~Z_<*$SO7yaQ
z(aiMU<QczMp<6IuZlJcs3hlgFoedNtSg&P3%K|%q=ky6O%vJs9<@$ZF2Nm@bzPMot
zerO_(k5z+~u6b!}^$gAZoWjfjC7t5t8n^XIM_)!z8|4$)$S#_WnKq<n!CyrGE4qfq
zxYGlWI19_}h{Lu6@Ucs|A!B{8L_(8I_;kua1`!2u{CQ&(K+X8fv`JlHkZ3w=A4`1_
zab{;~!DtR}c!;b=5HySqd<d_ocGC;$xwuLV7PF+ajY|4HZsF{5mfLt26A-bYfzNq_
z_V2HLsxpg_$K1%BGo6k-V4f_<i6wht*z8G<g`U%7I?nV*{HEQ1b)zF%b<+|lY#Cjn
zVl_|T?Fno6L;qneAcQG|7n*J%uhVE4zNG<6pattu4fOz*8J3Sn5uaXvxgK!(+d#>t
z!FqzCwW*dDG$>~;E}f6uE|)|&yG&>gzw1t^4EgX#+@1$)f`M_#Un|Fh4o-II{d$_S
z$y4@&q6|X_YJ)C7$WA`?&0m;R(u}~Y;I5<be&JG;EU|RbPFFO6Ld<}AFP(NXTuDlT
zp|;|QKnCz73J~pn$CSe?)9yGn1r**3CRg$361`tt?ljkE4w9ZJN>yD^sfi2uMG)p(
zO43eq8f?MuOF#6Or>q8y(dqEv7%ERk!a{I`ggZpHN&4m@wL1y(Vs~lXG!v?GTkN<9
zyH8~+1@m0I4#=q<MinsT#FX&h!u4Adp&AN~!H=0WDSur(hxm7`Zb`XeemY<<A`#s~
zEdNJNZOGWKd!}T*3@*p7pvcdA_=dN%pl^2}7WX1`?Af2javX#?q+bkq`bP25xb`0!
zwJVNRC8DX)a_^-_(JGwO%qg6k@p(dc=CL>3f^8Ni55&Cu&8@S!V?_<%eTO2cB7}FO
z*89u_iQ#|OEwC9yjIz4bOIzPf{!U|r_QPn!pd|U5Y}6~{{AxRzyExa0zeZ*XHdXMZ
z(zY{b_C2hox*nGjOO3qyTqskK&iDi?`aRb3u=)>`9~I&0Jw7lGxdRuWh|5I)=mgyy
zMqvJ%&Nt=2wLgdZ4Aj_&T8(5gs&=tEOVcOolWV(3RyU&qG@fC;jYA7_HH1goK-D$S
zmNWs-kapiTA_s4C=l?Z!j?tMk-M@~LiEZ1-9ox2TPLhdj+qP}n6HknZZR3t6KJ%>i
z{MUOvJm;+QvAfr*?yg<kd)HOFe)}qU{8J<pd^)dlo16f_%Fog*y%=p*qorBWc-A*6
z^nf;T?91Df#2lVKF0dw!0_25Zqm7DIh~#mYjW>-@ncGES(Rxh*IXTwe-J9Frns9fm
zyFFK8w|Boz8-ui;`jqoPFy_9NC(<)a4Tj+WS_VAq=313!E};KZ!Ca_;Vr`QX)WeeT
z4vKL#PIRNibKm?;lX;L%VS29n+To|DdZkD@RUvMgGgyhXZZ|RdM$Pq;MPAMyqr?{5
zp8h@oGwpLXjpIx)&&Q&qnrVT}GOwq@#0IgG;H1O^lp_%Ox6&2@<ox4mjNpzLxfkLt
z7MBh$=4-fd3HO3*5`j1z@);w!yOgjCJ9h{N*M}6ni;f@jG8}BADENB-Xo%=$hJgkR
zrj9SZqmP=29hYCDBN?4*VAr;t2jz_Z8pFtbBt#ryyNE+8-$qvdBpV%O=%|fGGm&=T
z9zUaOMehJUN`&UdGq-8b*+##?k7o`HO3&e4rzpc|WlObv(5l3P7NW>J;98HnoOPk?
z4wO{T8q~|x6ALN5w7tA!F_=y?jE8Y4)jG6WX9q#gj{KlThQ@6KLxj)_ATZ#&y9kkK
zW0+A9<Bs%vJ7{Yh2i3r|hmlipFL1L$g6@{{YMb>G=VhIJ1%@I|G<qZmrm>jO+)@z1
zzdTlAw}|u81i?1(`(*J!nD#HAy;*ycQ47oaduBe?Sd{~Twu$D@a*GQh!T4aY^*EGP
z{9)gwP)ThV9|Vl$?fxdgGfvD)%87TPS4vrg5WE9PP~!=9nvE>}RO;nb=Pr|iroEvl
zm*uEhu*0kGmvT{$a>hm_Eb3xamrSYj{d8?%;EDOTra0BSN4-o~q3d@>QGHwCXF02)
zDnFy+Dx=VKVLy2Q48GR%Xx^$k3C1b6fxIu|V2_xQVR*Jh(#!grG9UKdUm6tXf^A_x
z``T?+^sCdf@O%GuR2Xs+t};cC?^uiZz8d>D!!hP~tpmO23~J2B3Eh&kQ2IX8*<vA>
zBdS>Y;wRmg*xgu>2&S=uO-CK}jfdg4PyLpb!GZO3%Z;IcZm48})f(}Oh6<{ZHSt~-
zyvIaydqPfZf>rLg#b7wIX!BJv&|WK@Xutw=giZC*SIrY6mjd9BPfo2`9Oo+e8A4%m
zji>)egC)lT!c<yb$hfus!0Cy}UwzB5Cjj*bykj64MRC)RT3&AHDK!Y#Pcp{ng&o%W
zL4bFiwpPuto^G%0lbw;ejjBO`H?|)6W77+?gH`15Fz_iO)CAEGR4Zs}$8y&`5npp4
zC=GGEZ8Eu!3Rc^Nom-(w)p6v>sd&%*%f7AQbkM43Dz(Zv=8!K&PcgzLI$!bD{TByU
z@<-SWqd{f=k1Hc4KT|#FHOcV>$?D+eS^pgIG}qnsdpp6bgCMLnwNnn-`RTl|*6TMc
zIS>Rm%6uk7E?OSGBwR4iv1v?d^314T*X@orxM9RO#ci=tN`kcdYXf~VUOY!r$X+=8
zkwWP!L)z+ZUu?4EC5mgkVF74VwBuy32b<dbXmu;2=(3|ax0q-Sd;Prh!#5SK?#2^#
zlNGm2b|qj_8W@p7?)&Z1TGd2w6RX9T3T-^>s+<>@3`9-tX}3WtXWnKObAqGM-J6VH
zQDMa*E@XGo{)Rg`iZK(vBO>*GjJey+d)PkI<&k+Dmkxd{N6zJ?HLb)MDamH0e|*}T
zq6Gf*N9b675&*YJYhlRXz}gpKmMC+2Xq=D^BeEd>5mLbnY)|QEsnUEHvy8V-Bv&i$
z`g3Y|-yi$_slbVfRY;itFGoJCL&50gD`yXA4d${L#yUG&M!4is8n0Z@J($-$s@kH6
z=RJ>eR!kvJS-bke(@Zyhtr)DnS*ImIdy)@%40qro1w(a4AM%vQ<<}&qYIuDfBm98~
zVpdx5SI%muq2MmZwOkxpZB(6t&>%A>S!j9@UQzFKpqRCE8N+3Jo&b0irWkUDI$qD;
z_CnK9rL#ccU%T6&8ACaTjnlCfL~LZ2Yx%;g&Il1|*wj4B@ruMHqgWSjV~o;cSDA6r
z&k>_k*6Hq!=le=GtS=O}8xKt2=19Op_!0q4!HaXPB@W8NbyK?j*)CAMnOqMtTg8ru
z81Np@#3~_0Z>6^T9Irg&&{i!QS~q0%3T8ftr(=K|HPNodoM6CD>Ijnsdd^D^>zhUF
zBk&1@Htp52NAy_qr@`RcV+`-^`UEX@%ma&u$T}Xe4`Q}p!a53kGcH+DYoZe56@1l$
zJ_RZlHjbM|iJDWPY4kA;7x`Bxgl(ti>@Ddocu1qkd;_S+4#k5Wwy%7a>AmoppClL?
zD|S`<F=||F)~I7FxI}3Mj@HrFhnGO8My!Lk`%Q05ioHTR!C1R$HkD|1IO4%@qz#R-
z*5~Bcn7A&*Yoo{{gM6&Qjc`%_UUzwF#<<r>N(lzY<h+aBg&a>uIqdOAvt|6Yett1`
zM+q2AK%x&EHtWOKP`>b}Je+&Kq7gQXHcc!e?$zTKhtg(=O4Lyz1l(@7b_glo*CUNU
zZ?c4#F5<U+jw)JOcA6|V@$cKHqkcn4XBz7crwI&m?PL^WJpxwQxGAzH$WxT#rwr-D
z#7*e8dB=9uhdlL8DXTV1A9|}ib=9s{bBI?fA0>XL{Rl-Y{0<&&T-)O%H8}Oo^G|S0
zpq%AHQG_=`tcE}w*izQ5hwq@%ypX^djMd?m@*|C%KZMf<DMWT3_IJ3?Icm<^b>rOo
zVGU0|^F3yD3EO7(?<yssm$~TvR$db1oI=j{<~t+1Tq~UaCB8ass`EK*p%7GX3B5(1
zRtkZ$JHnGpZHbpE-k#65DSECVY7+G%Z`F`?3sUEnb$SLa^?AyM@G(g~%Mr#Mv7^O!
z-cibtoj#}{`RRfkguFLFi0A#iy?wZB9d}-#Q3(GkXT7xr*Zj|F!Ne74iUK!Wxv!t~
z1otn<nf6ZI!*ueF>7sZ7G%`@6!|7#x@yXnUs~nM%y4z$_4h67ulDYtsA_`K?J>8+Q
z-hqw*nSx9u=jx5}-3huJf8B}|TZ=|gAiX`}3D2b?J2)gJYbplB`9m>sAW=h;FGH=!
zJ_HQpN@HP+w8WC!&<u|~Y0z&x7jY)`9J0n`&J6D05H<X#jnrS!?uG091);w7I@}B|
zbd@68A^5j?SB~~eQ5(yOc;kc7>d7RQq!aFAXmjoPy~|sbq7cS=pYVtc4T||(FSWrT
zbI#Pz%1z1(`_;1<gk^oI@mM$m+Rn(W>E7e}IBE56tiQQCNt&$_R;w4nS5c7#4OvFd
z1&8ZT(c*E;t)XNueF=gMvWd~FxQvXe_Ialth*54yew(&$3LNnu1gq<k&s-ejbZ`y$
zSr)svPw)p#X3C(Ka6>_?Ks|AV!=--5H9s?P`QGv@24+eu<bh^rAY|iZxi94DoM$Qg
zusuk4j~~Lt&U+0NEg3t58SzRls-!i7Lk=I-!E!M4t5#(R$rcnhYH$*r_@$Ok=wBs)
zSpR<{fmoRTs{nMln9Y&{imWMlVv?mDVzUl;P)YT#EwlYUTb8hLa&{qRVFvtfr6FPf
z8#gzT0x=6KlbWZ4Ig_G^wW^Ele{Ty~M%qpZqcCz*y`W5rEmPbBVT|46$OwD8SB@1f
z2)vJUv`fAPy>vCTbFDu7ZebFCor-z(^W>tNJX|VYGSyA&x7aUf!_(Ls_XuzYfxges
zA>nSz1*-CzcGNgMADYh-GFuW`NJaaxem@Pq^qyddmT5DS-vgy7ad;A^C$qg@n9n3j
zd&rk^Df=HWcbPCak1W5ne)mlqc|Y13ROIt+vtMO>o-wbTv)s}b&iDw1^9zU_yGA(L
zO_iePl}%lnlVqIV`Yuq-XTi@NcP=%tJDm+><S5h?cxgLb;1U-m57;Y#glqI#M1;_O
z4=j{i+Rv`bQXA+ND_{1T|K5T~tMtizv*4F&GXG&6j2v;^xcX~QOs7NJpX8Y%UJbAc
z+P>eDeN;RebmL%;uStH5kKKi?=4|k@Q2#fqsz=rjK8A0H@vff9nRDMqXfn!z-i-ph
zxDLJ*nuu{zILQO~>a^0M8#r(WEuL%8^zOy;J~G9!i@fMh7#YJ6mr2zMu!6(Fudz4L
zz1hcD=0@0y@$!l40^Xv(!*QC&&ew}7vvqq7pc(9)<moKqGh_T<zndnSOtri}(>A{p
zTvh&kMYfY19`Xyz(4fcl6o>TXP?q!C%PaqnC~x9usqsJ18DR~y_1Mp;)r1bPuFc#c
z*hcANOAHEdLa;;4vhw&Vp(`c1LoKaZnP}sZng)|YwZv$*&~m8O`g=U6jU;PMT+6oe
zk*kBtC^Hsg$jH|(85}_+`#UDg3u6td@dQp&YQNW}60My#`tE}8^q`ZS!FXR@m*hxG
zs<siK9Jen_<94=aL*LL~rvP3KJ$qar)T#^W+)EAE5O_t%k5a8M2OWl?t2KJliC53j
zk@B5!Y_3{Yo5vw%-BFpxJuy%{!T@MqBHJ6ahT9+M*diK*pIAe00_bhWP>a{~jEh5-
zf4a4R@t0!X*ULzr(L63P*PYv#xJ1bz$=|kc4?_;+2In)&y_*nAL}bxrIABl~UN@u3
zJ&k1smbP@m&5uS(WPDgyRoSM1!s4EP>a^b%MG2LX^l(3cZM6LcqDDsYxLz|5Bi}3p
zT-lAM<eN}I=C9V)#D%^@nQ+JWqMS`0eZ;=6db)W`w?FUru9?^$hLc2^V%SVoVg=+x
z9aMk>=U?yC)+S()(D{%j8Q){W&uKmNhxYP7Ew@&R67-NF`onJdaAHTkDtjo7KnNGQ
zwG0sZ{xlz+<md+g+MD|-cOLcxa{V|ytb^#`IT@fGR*>))9l${BkRosEYmh`wv=9v9
zlp1<FdTTA{0=l?TD<Hz!v|N8u@Fl9ojMRHmlvWG~arA`7ix0v~hBmC&LB#CFbg??D
zp$F8j7u!Ee@sHtS;r@~Ep{z5Qcu*D-o<pov{@L-`FVyO1mETu9q@Td>hMr7s&73VI
zL#xQW&66d>c<6mK<Y^%&$B;PwL8aw)&D4KaV{+uo>UF6VPBp7|tRQJ5x_g~<A7Gm*
zdm=ny2Gj_>p#;gAhXCi=Ep@;)XL*(6!ovESbkp(Scdq?xKufJu;HDH#8+z;c)Gh~*
z7L^$TZ7wg;uW9%4?vM3rV4rN~Ncl4(9@_33(=Exx+VPHDppxgo^3XlFRQz-OvZrN|
z*))qe%sBpvG+CpPVpm-7YYv{;H#G(14Ef+0M|9Sl2S@rYc(tF-tT0qK$*oY#E(=jJ
zQH2ha+f>@irD_|3I7A-v?qmOjpZWw4aD4xbO*eY3VKU-}8;Ha~-YpLnm~>Y?Ejg|(
zCV_?R-84GUA$y&r;yFxuqa(N-ITTyMT}R`j^V|Hp_2rV}kqkNIeC#NL7<=(m1vqtu
z3Z&<sJ|=?6htPyZg@&Oj%v00it@H!p0cXgFDU<}}=-|F@C(*yXFzKQH&?0a0wM~L+
z8Cl?@d=*T6O|$Z%doT1*H?o_DO$3?4vG}D`62BjvNoSNXP5eH6UT&DUZH=6RLnu_N
z4Grn?l}ZFj(nLy{)Mqwf@%~ru!T$f@J-E2p|Hpf<u&{Fd^&S9b=6`n|lLt5!u|`-9
zpUh=kxl#?(k@uR=dFLp-^*2q8)x{o4j(%Xlu;O2i>jBuwR3Js6C$wh>zHCt;3CClh
zNqLDS1MT!dZ}}CJV7%Z>E#q9Q;bZ49kYxx&ArK_|^FC@4)1;U>>P6j=5_Dc^Ott4e
ze;PHR(<C)u;L9y4gT6}kb@xW>1?oU67qS5zcqZxm@RwEdNhmvm2}C~=Pxc@;41TT{
zv4zpXz2Et_psuSqX_pG%0I(cIvgD6X!?tk&7IKK}&5H}Gk_)&92>@snW@?CTI1tLY
zvLZ>_OwpKho%ngVpVVkrNFNo6(W2xWxPjf-`owFM`F92(W)-bMKGQyR=jLW;hO{eU
zd`${Qc}#0p96M~&qZC+}U{h+C`c)FvsDpUc0NAeQONO@29lvQC1jqJok#D5SNA0nH
zhNg%X>EALN6IOeV<q&oK)G7c=257?skJ-#WZ*{fKIiDX*{wx^jQ>hWJRKLs%8azin
zxP;|YRg^xWKV3!!L)nrNud7tpA2vFZ8LB=YMU>&AOc2A5O>&3G#>mjNs1|BR?6o!B
zghfNZGHhV~Kxp$StV8?d#sQQ&vT!sz2;g4-g+4k0B*;hoVOvAr5koA?MAzXl3+xbK
zgkjcyx3~35F$6e|f?FCLy6tLapBMNt|Be?|E}AbP<I7J{#ATS7PHyuao-bsV_G30D
z-oT`*i*c4Bj`iCHd4XSZ`lR;zmO*|v$4fKQIlLJDYQXnXH8x)+!$qn`A4u@}YLvZ-
zN@rytvAU3<rLj|=XS<|zgFh6HlUbnv1Ex#h%_De26FMwMSA65UAlJuYw7iuu-?PN;
zxqK%%>6$2S-NzeNFzBMwBX)D2cj0&11m(+k_Q^*#`4}$>CQ$OG3Wj>$C?35mey*F2
zUm(hko;lJAmY3)L@~N5Y>U8H&z@(`=Xgq@G*1+gjEGANM3F&EKQZSv)<RUCy7z3jl
zq=;;^geV1_t~!yz<F7|tn8Q`E(xdXC*jNBHDLDO@!g}Az0$|howmg?&1)*ulL+qvO
zFKo#h#0hLaP5k{g;kG*uwP;`j(=1VIX=R}6Uhp*#+UM0)EhfWO(+4|GK4BP!wH$F3
zG`{UmNP9gXa|vD3dI;g!`<ou}o7?WROh;a>RBU4Pn%5=iMy9QSf6>Mm2{Vl0Z@wk?
zWKloe<-l%E5sLIU4qHbcrW#G#mtsPreyVfdLV;5}{^yFE705WnTu#7Veqs4}ZNdv0
zVT><qw#=V>cvJ_<5M!bFBzQw(k>Xg1%K-F?RrkX=U4DaH#rNTy^IiYf$#$FRtgbS=
z-mkh;G6YLuRkPQ};(;xH)Fe;~yGf7ukn3bC@eK<MdenZ#He-fTx$0zPJPL<YciXW>
z>}g`0y172xkqtd9M?5Y%^PZ4Jk2U%<@i#WQ5Mv@l8bU@q3s9Q7z>@V~81J9)=q`ZC
z1gheUvVvTn(-lrUC?;8!B2vZgf>2ne;=CYYleBap!PC6fXWqUu<oP6opG3HNA%YrL
z29U{C@rsdbl+G;fMIeVo5~t`mWWg3Zq<vXC<UhOrP$Zq{C(ZU_Gk<BG#u(sT%c<!|
z`v?&jRs{<sqZ#L=91t&$yl`0#kgPFQ$213CqMtX@Kq9y9w%bGruZd3nDa4Ki@`KS{
z%A7#Wv9I$iPqAYwDkN~gh<z9)tNH=Z2RYLq*e*-ta|WY^-h`>0-Y<P!qZOm=>19Fw
zCjT~h7(@^FUtSvLp6|I=jvs+;a{0pSzaK;y0CAY3QB81Bgz~ft@!7vVSxIm0%gL$~
z$tgTWArEgDzhjVy(vEl(U%@Zcd!3UWH9kc_Tc>v)DLPS*=8^gyN!ez8eY~=S9Y>E*
z4=X+*R!z=dyY1)tF}BipMwhn{@#_vHqTY1}Km+;MI8PokD_~+^QxX}9prsdeFCU~5
z%qpg^JUN$6!14QHx3Y-PkzSu5deq%#{%RyWE8wMUT^uG1`|62LJVRPTwHD~(rH$>E
z$LP^*>i#^ta2ith*f+Z7^uH#HzkZOWKyPY^YJF#j-mVM146xsz8zG|XvLEWEQK3(N
zw@B%;y{+TF)ZV@0ZlMLq2jv8TlhczkI;Y$M;h)ppG+5*AVnTZkY<@$r4)jVZgYmu*
zB+ownfTeKrg%EFUj@si-E(gE$Fa$~@w)gUudr&tu$ZgGLYGCrMhA!lfcRWXeu~f!`
zXVLB3;_f15QNf;WfB0m$5;k4Gje5_Vz1S!U@(D!bX~PKb{{D(Gg`6~2gpt~kbmWu#
z?DHy}wBz_Li9fkU2f9{y_zJ__hUBN3Kbkv1Pvw6ib26hT<w*j|^HNi<aiZ>UZ&_l8
z4koUC`zssXh1bggk2Kpk`QD<H7=qXc1MI6?iUjq3Mar8a)Xe9jsoH8mL}pl(r4Qvd
zn%T&;RYN9YGFJ_F+^I#Dkpy-Z>c=X{uGB-wFOB6vmb&RZc=HdbE!8M_+_r3Q{emGZ
zV?uQO?%6McWokHSmTR6+?O*KdtxQaqKfiyfZS)@0=C%-2wPo@4^fh-}sP5B(Me`&b
z0d2tTy{{_5@M+Tx18Wlt4Etu7XssC9MQ!|*+wN9Wk}_!vY;J?7C+VZj;TFQ$S<Oke
zJ^KxJYOBZUULRb_jkyVJ-b7$eEc$h%A_M?iHxpyVg^$W=pR5zDAR9Y#11|d>0sT;}
z(B*;s{$An*+hD$ehXxlc3u(DDl|R{6e1kZ_(-c&k^WF#9<EzsXTHD9z>1WrQ&BGt0
zWP-727E$IfWrbhm-|{vE$n{|T<OdwagB-~hz}(2Gh{|6&=?ddYizZ^^{=N=7>86Ud
z%Oj`>!K;~;KMJeaMdzAD>yxgIhVC`NcR4BZKLMGL!D~MU3E&v?I_Zr$rI|IVIhMOj
z+SD?Rbl@c)?nz*w1qxkMmH1sDDF+U%mZXBX5u-0}E?x>e%jHCgU|!aRiRPH%{xw44
z_-}+H?&0!};5IP;@K4yJ!X#n!!^PZ*N#cjGi@BJ&slA!`-&6n0w^^B4{wHE$<@zUJ
zV&(kzc!^jQnUSb<pfaBa)VFHadSNAEahI;+A*F31YA}N3ZZod**#eMx(`T=bR5_{S
z9dVgUNkcPowziWTGWTJB8qH5jfn*<RPo!HHaO&B5|9#`bSqlxpiB~YF8vyRWqrV&4
zhGl=m%xfn}#nT9JSO*$yu3%)bf)PG#tYd8EgXG%!1D-A|7O%I~1sFBgiXdoeEQ*vB
z;PAfQ)t<APSV&EvgB6w82)EGup;k_2D+Gdn>tztqs(ruY+Rmjtf=!1M#TaXy*RU8S
zDypMf|Hz=cA<)7!q#j-yj#{?+O=u#$j3gxon*9<cF5}*xj%pq$E9PW+0{twth1}&T
z;>uEFUKWD~w98k=lWF%odrS(vF=0|^<g`tBp&s|Uzgz+qA>qn*Z_HLrWbU3h`Uw3y
zEY}{Q5TN)NdzB0*@9T7$XIcJf&xsoON?20uTI0Z?05gZ?MHOJ%gevP0@&O?(koM&U
z4!2yVX7>#zanDBn<y~c4R49`F3b~3SGP11o)9+uc&iP-f|3{*kn3ap2l}Xjr#N{7s
zq9rf)AA`!9yBM1pyBPnMpxDrSlabiiuG0#+)s(Ik$a8Xywo@f&EbN!QI-VKe<O!me
zOeBMpd#e{n{An+f{Eiq+7+xj3IdHrn7tI0ej)WuO-Cy0gAX^orxq*+qlO;A^CLxJ-
z0CRWedbtz8N=bA&&>>v!oWm(MUn1z>p44NZPV=Gj^zqNr@TTg(vB+627^RI1r2ibR
zDpoeKD9&k?+OWGo6QRJ56Fl7*(Ky0&K?;zw#dTQ({Gib{sd{6^n{03yrCc4ZA{l5-
z0|mU_d_H=!V&7r(W{Y&Kl#=jrFi|O;Uk64kspfOECQ(N6v%ZMeq8eCSB;=L>%Qr@t
zCvU23`Wlw@xTEmS6lkx^E^$cxX~AIl*Y5TqpVA~-%_{NOUV&Ft@H4&qo5DiIxvRCo
zj3s#S9W+5I(usyPg~YN?wQI;wv9~9se)$3uLKZN|S?@oI*SwZu`cf!HYC!IMMg2-$
z0aHt7PVCW=Lcup1E^arNK*)q_Sj3<w-wfS_xY%mxDu`bdVGd)L_~Il#88F*N<z-+)
zfJRM2#ikm^80(PwmBIl@TxO4vTLeDpeY)Gi0E%ORD}tNn`ly^M9&IXC_}nCvup*<M
zlvi8M@y|iDp-^n<Ns9X-OZ(y=V;usSwn7;vqouJg-g!_oe!&zt@yAfTHjjd_QGB`u
zD=S_{c|oM93CH$<!@VIR?3ayD%R%_*9l82O9$4<ybA30qukoDz?Mu5|_Y@gzl1~oO
z6PKd=I(^{ie6C@49;8wfA8K4j??NA`Jmv8q7q#H6zKX+r!XG)#Qc^+gzr*;W_4BHI
z0_El^k1-MCus;sLV$48pcpBsUvSQVPN`4GP>#ugdy`nfYd_4Jq9Tr5}A@rK$)=E!R
zY}95hAry{yiL~j0azyi@pl4#6HwoJSxgVI^V=BOCEj95i{R&l2TaF)4KJp%;$N7I4
zz$Tl``Zg}NFh>)FiG3c#9XEP86&8u`Oi#ddW<_yQy3T#xBBU4^=zBPC`~n>}_`xx~
zmsQOkQkta)-CB?NTk<ft3ose8_|rTp5Bang9$JGOrXY{rAHPI3$C*o#aaZ4a(GirY
zzO4OIY@x4HJ2kQ6g+z39b)Cm%YGOM1Dk!yQcOdS(%Hd0)cI&mqpT5lf@0P9py*~@%
z+ZasCc;RNiJ>IAYxl2)<6`ZyVIwdxQ8u(}$&<`d?VP`#vSt>BH(Jm@Il|`b_ILRRO
zA5ByZfj`wh2AV@B0yecQMp1~X?p@H;6EIm%bEAw3^9%B_y(MQPC1OK#4}tDHJLGC_
zO!DavQ>0iS7T0FES!wrq_CZe$mBI?sHvx_(xP6ke8NZ}1n%3))*b(aqEFK?c?#bh}
zd&w5`d;-s{6MIh)l3_{m70@V*t;d0PMJrwVGZ)Y$#(6lmRv)!I=}S1?^cj}A=x{1z
z#dcNr9rVXoEWFgj`tIKo#Fv5Uzkj4PlqMA^gdgio#$_iV`Xav2t(WpK)#S-yC{(Jz
zn-n5mY(xQ%McJ9x;|Z?xaSo8;+=OcIiI#EKzs?*O(z`RlJkvr17zl0^PpB?U@>ggs
zIUHifjZDO_30Dnsc1unZ@*u)wZP=9^5ccZoNz(55HQhkDg+eHI-Kmj~4`1TXZVROq
zJN6808(kh%2Xht3_n<4!B-h77;eOT6ncE{WCD#*k^KvQ=8uN+U-_)Wn`_o`$FVxs6
zJ;tVdzzH~j&f{5=#&f|+w-~Y0Gu&?0hF_|y7Q-W@5r=RUR~NPMnnx?%kp)ev`1PPo
zI%x}w_CusSr@lg9p$xGN6w29ZH4?frsDGo51T@aI`c2#sk)|g{k(GIsof&nime93{
z-|lu44&OFxCr}Dr<W3C^zA0RXj^L-FJGd)R*}Cm^w&eoDrvB~@fkk;h`CU?Na0^-5
z5eG@)5Q4{4R5VOc2?l>2$L(uDpwflRhWj->&p5%@;YU@uKp+I+d^%dhghJYjFLNaD
zg(!!}(7E@i5Xk*-rq`7}GF^SJE<Qz_2bl@mbPDLgitxGpZY1}mR=AP}nTVvjQBo)M
z^2SiW31Iuo*c_GJ5RZ6Qn!vL0Jn!-x_P!06^%r0S2HIrQGpJ1H=w_C&$F{&2uIfwi
z9ao!(q;K+w&z2$=R&<+X?OcXwr1FwCOrrD^7%Al#=DDAgcb{G6axJ~^ijb#xVe$K?
zfHbu{yR#KP+jyj5jPM^@i3_v$O+M?-fkWE7LC|*jG4TdhT%}D1`0b0#sT{#g0ZGRg
zC(c3kD(A9{e8o|Vww`i6<6xl(q<-8+M@i)jS>R&281e-Mv4$Z9;zFTCN!q`wbWu@+
zFJf5SB<tTYK2cM&JdGEaq6$<9D!=1}l=SQ|+GectQg5O}e1XcWZ>HwcwZ<$4aK1nq
zAwm@sBEhBcw)k3o{sEaaO(0kXX5lfV0Xuc;+A`nka8}@z8?;9#%SSs2LsF_Tps>-{
z@lsaZ&F)2NNBmZ&nPk2(y6Vge8-4EywVA>lgv~M%&#bB6+aU4A&p!m59K>&NP2{VH
z?rQgeD#ENzT7T5x)u77a3EQs;mI4}&qH#x57+7VqJ?{A=wVlOhK|t~S-h*IEVmWEO
zCO#!S?nO%NvWs&yPoO&@wN6s)YRx)SA-m1mMGb)d#~-MgC(?F-<yw|%XW<b^bhFE|
z&8emx!G8`6@rSBRuE><S8tIFqvYE|SxWvyC*83R-UnjbKxQa^M{R^^8-7hSXO>b0T
zQYk*IS<hxw$B$!(;iml)LgJ;qO=yY~mpF?q$%x!%HdDXIQaPBs`CmTZ+*eDZseOm>
zJO=~6TA=XedrSTi@q~)$PN03g9*0bHtR(l*Of<e@4joJCaIwXJV`LaJ-$}qW@TeNg
z!Yn_~egv!U|3VQzLAe=NfVMkG1kd&+`u0o?Uxq!8D>Y{9FYeQ=XHrW(Vzat9t{USb
z`YRwe`!IZvmj?VaGAqx%xHt<>^DcXD!-l?E!iV%qYyV=7Bz8WE0kHg*Mw+@C#P*zV
zz$#;?PKg5RM1GrW{*iv+o&mU%SxjRq6g<}l_(yHI<u;LaFfhg=uO6d)hMyTO`wClE
zI`sH0AQT*gOUMn~4n|Dh_<4B&yCv7tp}K|aD7`HZy-xz0ClSxsH=}}$=3+4S&#gnu
z$g}xJvlQAvJ&niW0DgDX<=gd0AV_)y`W&xQomZjW%P(YUBGbf<XutE-jnJj(dn%>Y
zKPRSw?f~pTgDHq?V_UTiTe9kg+eutW3XWdRZZ1>N6O>&qB<t0vzK~@QK+|6F3r#xc
zmm6W!z*xPV6)a}%T^aDrcC;>9y?OOkY-iQ5R(0<%-dfa`76l3EX~80I6aq5F1cTeI
zrII*>X2?Iq-xy85O(0^W#XLoFK?fTs4tXK2_fpXJ`&8&r_(9B0egtL__o28=YgLyZ
zgg3>z>JaX6zTwp_fF2VH5rYQee!*QJ1$vC|r1S2<_5aoWukt@-WhNq%i{eD9cjT$H
ziq#XD-&_-cGu$|mOs)nm^J;3K;mFC+S-u9wlMLI79*l`%sH=Bg=vA*y8{VV#5<ctn
zy$RwfPR8nD$Pj4~8F<|n`pf`IiXoaga&+vYN+Jp=R>|gWb(a0qk?2#2)W*{Lh6RUV
zly@2G33^`zGo~LF=Se(}RKCZ;GP?Pf-;TPP*!ZT0D1=l#0_ukYQ3=G?4+Yf|@TVrv
z2=qc2MXRkcD+Rtc%TNr4Uw2aH)XV<n1|)BkE|4vE6krMgx8t82F6ImxkboDKFXdU<
zKHG3;w2$?C`!BhB9D+1`>xVCI{ZFzSCw_N{s`FAJg{CW?2$|jL>2_pL5(jY$3@5%a
zDC3I;I1su!(q{1_1U<dU^n3aYYLtJbCXg2He_K|^F!aYN5AO?vtEXUW2$(s5Worcr
zLAW;~v$vBKQ-&N@VJzJ*JZh-`3D2Z6Kkx41RY%Sfx-b|N;1@jKzKuOr6T;Ic?lk=I
z+sAV~AUpF?>*HWCU_F68wnTx`ZaX0fpeGi|LQv-Re|2JXC~=i~-9vk;Y%isW>dO}W
zXv^Ma9jW!)7n==a1UGF0dfwe3TVMsfwMku&>TmvbOi}w)5gYic-3Y4#Hr*EPOhiQ-
zc!R`4r-83M0qNz4C+O1{sML_4W+o2eG$fg9VSF@&Pw`jvE-dpis#8+rGT6m@da2<|
zjIaWTMlA{jORs`A4dg@8S)e4mRWEGxJy}JrsX_~$AGZSe9(I1EHmRr&EcV!7d9|nH
zEwq8D<agV*+2~QgAK&{*ZN*W~ZKWuAMS2>)`2q(X;3e?R7z@QELeEbFE%Zy)_av-s
zZVV%2HhNJ~yPqYIS*c9wPWS?21oAzkhJtY}q%(!=X_ZGeI_`?v&zY7QQ_Olc27N&m
zbX42+;u%M(l3vu(x(>g$`g6O^iSQma?TD)Cptksx??^SnblodzT?LY?v99Rw?>a(c
z-fVN)38pe2g``NEZ$l3KIZdSLOI)7AU=vWG935VX;<?U-0VWWCNjW!)>;Q5kMYY)7
z6ag*@+F`TSYK!_42(liGA!$GQ{2K0suC5YOg^7Z5Wnm01$BbBNdQ38%A_m`Upl^gN
z77gjXB}eW(X<r{gle}$=C?ilGfG~YY5;N&^;R?#iu}bEeC%a?Jmv<E8LPdPozy&9U
zq?4@kq`Za`LgG2Wmq|3@f3YgJ)+G)<yoAwPzyP|i_tfznFcfJgE7vwkyM(yb!5l{2
zVK)!N+nB1U(lJ$i)Ut581x=oWytUk_Z2OZOS?Q9sKu>61A5X7@_*riMfCjwZFwDEM
z$H%kMP@_Q+87JG<NU*lp3?{irq9`OSj}u3Bq?tX4G_jjZ*TOw_aSCt{JxCw%A5`IQ
zg}CKFQhMygcgbt2?`{47TS&ss`rYKE0cU=_=~3-kliOyV(tA$j^W2VCp6@d;64xG4
zduf(*>utp)t@g(-=M1~wcs`=hs*afQ{rrx+*t@;5yUuaC#Zi?oW9{iT|EW3Y<RK3<
zVZmE!b<_%(f%8uF^5?#6Zgs{)ij{zjiS*xp3g1aqVj<b3><rth(YqOEtf?@|(jZj=
z)X*<^(n>cP<TawHUwpFoq}}qEoAZKU|2ntk`tRKO|4L8*tp5X009>5^<SYC;KdJi@
zfcOya;VLghYP&R(xc2IEN~UpBL-8|>ffxk5T&fo`QCQw^`elTCtCMD}a4fpiWbR`R
z{MQuz`2bG$ID=UgR^r$sQR#*xpc;ALk=K(-lwqcCp^;MIw};SD*si&UaGc2;TvCy#
z6p4MvExh%an*UT9d*zJBns<3&%T;SAJCdx-yb8Nm9<H8{AIq<?>w|MR77tn^nZom{
zT6*Q`jHYxt{x}UH@|*<g{pI*6gzkqys>zvc+JEhu|9A1W|G*`V|LGalzpHS6*W&)Y
zXR3sAjl6jgRo<k!&p@%E3ZrS@p(qt4xRJ@Hu^hkc^^+|nFN@?TKW0jKCVf!v-me96
z5@0V$zRabCf^9xW0fPaV+9)YOxaC#c>b{6<_ol3UiE@t&YoLEGz&4c^F}{es2Vzc$
zDCzMLeyUF&918++uyCNdkoJBGPf$n|b0WP%%xhi5>PP7KkES)9;@{)}F_UkMd$)ky
zoL#|pR^zlTXL4a5?DH>G=fOuFMb<&#+ScPF^IUHhvw?3aP-b)#7|#V<UgL8`gaIMQ
z)QPJU;W_nO(l$wDe<fH9ZL+@(Q!~C*aL8jEqklIOS$sqf{|H<?t@^e3txT#5LR)~d
z1{zWlVv^20mb8Vrsqb+uR8-!(YmGhN+sY<`cO|IPSmY|Qx_(p9`oEci<^QP8_8+#V
zWb9<?%*V$hYX8I4*3Oxjok_{b+|0_<#omb+z#<^PByMNw<mvF2{&D<6kNy=8N{i|8
zv2$^9vPcMva&mA0m^s8)#Q_qWtiqfk60B?@?Bbkk0({KO%xo;|BHW_F9IPxXY+_t2
zTx_f?5?laQE>R8+31$I(CTTkh`@c8(4~P8Ugo=%ojY-Ac{+|c<=Mz(5Qnm6j|9imk
zpAn*^Vs7zweG5R$N(|8dFR%K(eVIH-7ov<k+RwVfIfRXCDw34aRH(Ho#R%6)ub(U{
zX9q_Dr+S#ynzSk<uR;IA%(U>5<{i?lCL%RM&tmFLb%t#yD8vl2KQHe-@1*C3duJ8?
zWi91=hy4c%fck+EPW_ug^IX<|XMpR^5K@gXN7~S1?k@CxNK2&L=zd~3TFLfr%@Xsq
z39s~6T|vF+rwYb0l-vS^rWiYO<*P)F9FD(Mc~J{hzNahxtzKQ={LmRE>LTz1xeICT
zQl6f?S^2bPxsSaJt%la6>3S?neD+k%M*6k$es_s^9w*C8F<)TBH|Bb;?y0g6`lvi#
z+;|a_y_IKrD)~JM-M7dFTz^W|_TtyDjJ|1pvOd*WNpDToYn`0oC4c$VZn9Mi+zPoo
zWL;%uk>75suB%(fb!i_SKhk`%=q0X2tLXX1MG>5b%}7j?Iz_$JlJ`7853VZLy;R51
zc9+)lXrzx7?P(U}nvw`Bd~wcAi6_QMhzWt^DeJ`3?#YP^Oy3s9*C3J^<<1z-GH<g-
zo{8aMwH?>Nv84e=-uZsJ3vjky4CBw_;+jG+C4wLvGf1+Itj50#S7#SvCl?PVa|;Am
R0DuDlmV!cDQ33(>e*xT`0@(ln

diff --git a/api-tests/docs/porting_guide_dev_apis.md b/api-tests/docs/porting_guide_dev_apis.md
index 55e536ff..83491235 100644
--- a/api-tests/docs/porting_guide_dev_apis.md
+++ b/api-tests/docs/porting_guide_dev_apis.md
@@ -1,21 +1,19 @@
 
-# Porting Guide - Developer APIs Architecture Test Suite
+# Porting Guide: Developer APIs Architecture Test Suite
 -----------------------------------------------------
 
 ## Introduction
-The Architecture test suite contains a platform abstraction layer (PAL) which abstracts platform specific information from the tests.
- - The PAL layer interface functions need to be implemented/ported to the target platform.
- - The target config file must be created/updated to match the details of the target platform.
+The architecture test suite contains the *Platform Abstraction Layer* (PAL) which abstracts platform-specific information from the tests. You must implement and port the PAL interface functions to your target platform. Create and update the target configuration file to match the details of this target platform.
 
-This document provides details on the porting steps and the PAL APIs.
+This document provides the porting steps and the list of PAL APIs.
 
 ## Porting steps
 
 ### Target configuration
 
-You must populate your system configuration and provide it as an input to test suite. This is captured in a single static input configuration file that is named as target.cfg. This file is available at api-tests/platform/targets/<platform_name>/. <br />
+You must populate your system configuration and provide it as an input to the test suite. The system configuration is captured in a single static input configuration file called **target.cfg**, available at **api-tests/platform/targets/<platform_name>/**. <br />
 
-An example of the input configuration file is as shown.
+An example input configuration file is as shown.
 
     // UART device info
     uart.num=1;
@@ -31,42 +29,42 @@ An example of the input configuration file is as shown.
     watchdog.0.intr_id = 0xFF;
     watchdog.0.permission = TYPE_READ_WRITE;
 
-  More details on the structure of the input can be obtained from val/common/val_target.h.
+  For details on the structure of the input, refer to **val/common/val_target.h**.
 
 ### Adding a new target
 
-  - Create a new directory in platform/targets/<platform_name>. For reference, see the existing platform tgt_dev_apis_mbedos_fvp_mps2_m4 directory.
-  - cp -rf platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/ platform/targets/<platform_name>/
-  - Update platform/targets/<platform_name>/target.cfg with your platform detail. Refer val/common/val_target.h for structure details.
-  - Update platform/targets/<platform_name>/Makefile appropriately to select correct instances of PAL files for compilation. To compile dev_apis suites, you must set PSA_IPC_IMPLEMENTED to 0. This selects the non-secure PAL instances for the driver services and eliminates IPC dependency for dev_apis tests.
-  - Refer "PAL API list" section to view list of PAL APIs that must be ported for your target platform. These APIs definitions are available in nspe/<suite_name>/pal_\*\_intf.c. These APIs are written for tgt_dev_apis_mbedos_fvp_mps2_m4 platform. You can reuse the code if it works for your platform. Otherwise you must port them for your platform specific peripherals.
-  - Update Crypto configuration file - nspe/crypto/pal_crypto_config.h to enable/disable crypto features selectively for crypto test suite
-  - The platform make file is invoked as part of test suite build tool(./setup.sh) step and it creates <build_dir>/BUILD/platform/pal_nspe.a archive.
+  1. Create a new directory in **platform/targets/<platform_name>**. For reference, see the existing platform **tgt_dev_apis_mbedos_fvp_mps2_m4** directory.
+  2. Execute `cp -rf platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/ platform/targets/<platform_name>/`.
+  3. Update **platform/targets/<platform_name>/target.cfg** with your platform details. Refer to **val/common/val_target.h** for structure details.
+  4. Update **platform/targets/<platform_name>/Makefile** appropriately to select the correct instances of PAL files for compilation. To compile **dev_apis** suites, you must set **PSA_IPC_IMPLEMENTED** to 0. This selects the Non-secure PAL instances for the driver services and eliminates IPC dependency for dev_apis tests.
+  5. Refer to the **List of PAL APIs** section to view the list of PAL APIs that must be ported for your target platform. These API definitions are available in **nspe/<suite_name>/pal_\*\_intf.c**. These APIs are written for tgt_dev_apis_mbedos_fvp_mps2_m4 platform. You can reuse the code if it works for your platform. Otherwise, you must port them for your platform-specific peripherals.
+  6. Update Crypto configuration file **nspe/crypto/pal_crypto_config.h** to enable or disable Crypto features selectively for the Crypto test suite.
 
 **Note**:
-Test suite needs access to the following peripherals:<br \>
-  - One UART to print nspe and spe messages
-  - One Watchdog timer to help recovery from any fatal error conditions
+- The platform makefile is invoked as part of test suite build tool (**./setup.sh**) step and it creates **<build_dir>/BUILD/platform/pal_nspe.a** archive.
+- The test suite requires access the following peripherals:
+  - One UART to print NSPE and SPE messages
+  - One Watchdog timer to help recover from any fatal error conditions
   - Non-volatile memory support to preserve test status over watchdog timer reset
 
 
-## PAL API list
-Since test suite is agnostic to various system targets, before building the tests, you must port below PAL NSPE APIs. These functions will require implementation for your target platform. <br />
+## List of PAL APIs
+Since the test suite is agnostic to various system targets, you must port the following PAL NSPE APIs before building the tests. Implement these functions for your target platform. <br />
 
 | No | Prototype                                                                                                                   | Description                                                            | Parameters                                               |
 |----|-----------------------------------------------------------------------------------------------------------------------------|------------------------------------------------------------------------|----------------------------------------------------------|
-| 01 | int pal_spi_read(addr_t addr, uint8_t *data, uint32_t len);                                                                 | This function will read peripherals using SPI commands                 | addr : address of the peripheral<br/>data : read buffer<br/>len  : length of the read buffer in bytes<br/>                    |
-| 02 | int pal_uart_init_ns(uint32_t uart_base_addr);                                                                              | This function initializes the UART                                     | uart base addr<br/>                                      |
-| 03 | int pal_print_ns(char *str, uint32_t data);                                                                                 | This function parses the input string and writes bytes into UART TX FIFO| str      : Input String<br/>data     : Value for format specifier<br/>                             |
-| 04 | int pal_wd_timer_init_ns(addr_t base_addr, uint32_t time_us, uint32_t timer_tick_us);                                       | Initializes an hardware watchdog timer                                 | base_addr       : Base address of the watchdog module<br/>time_us         : Time in micro seconds<br/>timer_tick_us   : Number of ticks per micro second<br/>|
+| 01 | int pal_spi_read(addr_t addr, uint8_t *data, uint32_t len);                                                                 | Reads peripherals using SPI commands                 | addr : Address of the peripheral<br/>data : Read buffer<br/>len  : Length of the read buffer in bytes<br/>                    |
+| 02 | int pal_uart_init_ns(uint32_t uart_base_addr);                                                                              | Initializes the UART                                     | UART base address<br/>                                      |
+| 03 | int pal_print_ns(char *str, int32_t data);                                                                                 | Parses the input string and writes bytes into UART TX FIFO| str      : Input String<br/>data     : Value for format specifier<br/>                             |
+| 04 | int pal_wd_timer_init_ns(addr_t base_addr, uint32_t time_us, uint32_t timer_tick_us);                                       | Initializes a hardware watchdog timer                                 | base_addr       : Base address of the watchdog module<br/>time_us         : Time in micro seconds<br/>timer_tick_us   : Number of ticks per micro second<br/>|
 | 05 | int pal_wd_timer_enable_ns(addr_t base_addr);                                                                               | Enables a hardware watchdog timer                                      | base_addr       : Base address of the watchdog module<br/>|
 | 06 | int pal_wd_timer_disable_ns(addr_t base_addr);                                                                              | Disables a hardware watchdog timer                                     | base_addr  : Base address of the watchdog module<br/>    |
-| 07 | int pal_nvmem_read_ns(addr_t base, uint32_t offset, void *buffer, int size);                                                | Reads from given non-volatile address.                                 | base    : Base address of nvmem<br/>offset  : Offset<br/>buffer  : Pointer to source address<br/>size    : Number of bytes<br/>                     |
+| 07 | int pal_nvmem_read_ns(addr_t base, uint32_t offset, void *buffer, int size);                                                | Reads from the given non-volatile address.                                 | base    : Base address of nvmem<br/>offset  : Offset<br/>buffer  : Pointer to source address<br/>size    : Number of bytes<br/>                     |
 | 08 | int pal_nvmem_write_ns(addr_t base, uint32_t offset, void *buffer, int size);                                               | Writes into given non-volatile address.                                | base    : Base address of nvmem<br/>offset  : Offset<br/>buffer  : Pointer to source address<br/>size    : Number of bytes<br/>                     |
-| 09 | int32_t pal_crypto_function(int type, va_list valist);                                                                     | This API will call the requested crypto function                       | type    : function code<br/>valist  : variable argument list<br/>                             |
-| 10 | uint32_t pal_its_function(int type, va_list valist);                                                                     | This API will call the requested internal trusted storage  function                       | type    : function code<br/>valist  : variable argument list<br/>                             |
-| 11 | uint32_t pal_ps_function(int type, va_list valist);                                                                     | This API will call the requested protected storage  function                       | type    : function code<br/>valist  : variable argument list<br/>                             |
-| 12 | int32_t pal_attestation_function(int type, va_list valist);                                                                | This API will call the requested initial attestation  function                       | type    : function code<br/>valist  : variable argument list<br/>                             |
+| 09 | int32_t pal_crypto_function(int type, va_list valist);                                                                     | Calls the requested Crypto function                       | type    : Function code<br/>valist  : variable argument list<br/>                             |
+| 10 | uint32_t pal_its_function(int type, va_list valist);                                                                     | Calls the requested Internal Trusted Storage  function                       | type    : Function code<br/>valist  : Variable argument list<br/>                             |
+| 11 | uint32_t pal_ps_function(int type, va_list valist);                                                                     | Calls the requested Protected Storage  function                       | type    : Function code<br/>valist  : Variable argument list<br/>                             |
+| 12 | int32_t pal_attestation_function(int type, va_list valist);                                                                | Calls the requested Initial Attestation  function                       | type    : Function code<br/>valist  : Variable argument list<br/>                             |
 
 ## License
 Arm PSA test suite is distributed under Apache v2.0 License.
diff --git a/api-tests/docs/porting_guide_ff.md b/api-tests/docs/porting_guide_ff.md
index 7f6f9f05..adceb371 100644
--- a/api-tests/docs/porting_guide_ff.md
+++ b/api-tests/docs/porting_guide_ff.md
@@ -1,21 +1,19 @@
 
-# Porting Guide - PSA-FF Architecture Test Suite
+# Porting Guide: PSA-FF Architecture Test Suite
 -----------------------------------------------------
 
 ## Introduction
-The Architecture test suite contains a platform abstraction layer (PAL) which abstracts platform specific information from the tests.
- - The PAL layer interface functions need to be implemented/ported to the target platform.
- - The target config file must be created/updated to match the details of the target platform.
+The architecture test suite contains a *Platform Abstraction Layer* (PAL) which abstracts platform-specific information from the tests. You must implement and port the PAL interface functions to your target platform. Create and update the target configuration file to match the details of this target platform.
 
-This document provides details on the porting steps and the PAL APIs.
+This document provides the porting steps and the list of PAL APIs.
 
 ## Porting steps
 
 ### Target configuration
 
-You must populate your system configuration and provide it as an input to test suite. This is captured in a single static input configuration file that is named as target.cfg. This file is available at api-tests/platform/targets/<platform_name>/. <br />
+You must populate your system configuration and provide it as an input to test suite. The system configuration is captured in a single static input configuration file called **target.cfg**, available at **api-tests/platform/targets/<platform_name>/**. <br />
 
-An example of the input configuration file is as shown.
+An example input configuration file is as shown.
 
     // UART device info
     uart.num=1;
@@ -31,50 +29,52 @@ An example of the input configuration file is as shown.
     watchdog.0.intr_id = 0xFF;
     watchdog.0.permission = TYPE_READ_WRITE;
 
-  More details on the structure of the input can be obtained from val/common/val_target.h.
+  For details on the structure of the input, refer to **val/common/val_target.h**.
 
 ### Adding a new target
 
-  - Create a new directory in platform/targets/<platform_name>. For reference, see the existing platform tgt_ff_mbedos_fvp_mps2_m4 directory.
-  - cp -rf platform/targets/tgt_ff_mbedos_fvp_mps2_m4/ platform/targets/<platform_name>/
-  - Update platform/targets/<platform_name>/target.cfg with your platform detail. Refer val/common/val_target.h for structure details.
-  - Update the platform information available in manifest files located in  platform/targets/<platform_name>/manifests/ directory with your platform information. The platform detail must match with device detail provided in the target.cfg file.
-  - Update platform/targets/<platform_name>/Makefile appropriately to select correct instances of PAL files for compilation. To compile IPC tests, you must set PSA_IPC_IMPLEMENTED to 1 and remaining Developer APIs related variables to 0. This selects the secure PAL instances for the driver services and eliminates dev_apis dependency for IPC tests.
-  - Refer "PAL API list" section to view list of PAL APIs that must be ported for your target platform. These APIs definitions are available in nspe/<suite_name>/pal_\*\_intf.c and spe/pal_\*_intf.c files. These APIs are written for tgt_ff_mbedos_fvp_mps2_m4 platform. You can reuse the code if it works for your platform. Otherwise you must port them for your platform specific peripherals.
-  - The platform make file is invoked as part of test suite build tool(./setup.sh) step and it creates <build_dir>/BUILD/platform/pal_nspe.a archive for NPSE files and respective object for SPE files at <build_dir>/BUILD/platform/spe/\*\_driver_sp.o. Later, these SPE objects are used by spbuild.mk to create appropriate SPE partition archive file.
+  1. Create a new directory in **platform/targets/<platform_name>**. For reference, see the existing platform tgt_ff_mbedos_fvp_mps2_m4 directory.
+  2. Execute `cp -rf platform/targets/tgt_ff_mbedos_fvp_mps2_m4/ platform/targets/<platform_name>/`.
+  3. Update **platform/targets/<platform_name>/target.cfg** with your target platform details. Refer to **val/common/val_target.h** for structure details.
+  4. Update the platform information available in manifest files located in  **platform/targets/<platform_name>/manifests/** directory with your platform information. The platform details must match the device details provided in the target.cfg file.
+  5. Update **platform/targets/<platform_name>/Makefile** appropriately to select the correct instances of PAL files for compilation. To compile IPC tests, you must set PSA_IPC_IMPLEMENTED to 1 and the remaining Developer APIs related variables to 0. This selects the Secure PAL instances for the driver services and eliminates dev_apis dependency for IPC tests.
+  6. Refer to the **List of PAL APIs** section to view the list of PAL APIs that must be ported for your target platform. These API definitions are available in **nspe/<suite_name>/pal_\*\_intf.c** and **spe/pal_\*\_intf.c** files. These APIs are written for **tgt_ff_mbedos_fvp_mps2_m4** platform. You can reuse the code if it works for your platform. Otherwise, you must port them for your platform-specific peripherals.
 
 **Note**:
-  Test suite needs access to the following peripherals. When PSA_IPC_IMPLEMENTED is set to 1, driver functionalities are implemented as RoT-services in driver partition. Other Secure partitions and non-secure code calls to these RoT-services to get appropriate driver services.
-  - One UART to print nspe and spe messages
-  - One Watchdog timer to help recovery from any fatal error conditions
+- The platform makefile is invoked as part of test suite build tool (**./setup.sh**) step and it creates **<build_dir>/BUILD/platform/pal_nspe.a** archive for NPSE files and respective object for SPE files at **<build_dir>/BUILD/platform/spe/\*\_driver_sp.o**. These SPE objects are used by **spbuild.mk** to create the  appropriate SPE partition archive file.
+- The test suite requires access to the peripherals mentioned below. When PSA_IPC_IMPLEMENTED is set to 1, driver functionalities are implemented as RoT-services in driver partition. Other Secure partitions and Non-secure code calls to these RoT-services to get appropriate driver services.
+  - One UART to print NSPE or SPE messages and to cover secure partition interrupt handling scenarios
+  - One Watchdog timer to help recover from any fatal error conditions
   - Non-volatile memory support to preserve test status over watchdog timer reset
 
+## List of PAL APIs
 
-## PAL API list
-Since Test suite is agnostic to various system targets, before building the tests, you must port below PAL APIs. These functions will require implementation for your target platform. <br />
+Since the test suite is agnostic to various system targets, you must port the following PAL NSPE APIs before building the tests. Implement these functions for your target platform. <br />
 
-- Following are the list of PAL APIs used in NSPE: <br />
+The following is the list of PAL APIs used in NSPE: <br />
 
 | No | Prototype                                                                                                                   | Description                                                            | Parameters                                               |
 |----|-----------------------------------------------------------------------------------------------------------------------------|------------------------------------------------------------------------|----------------------------------------------------------|
-| 01 | int pal_spi_read(addr_t addr, uint8_t *data, uint32_t len);                                                                 | This function will read peripherals using SPI commands                 | addr : address of the peripheral<br/>data : read buffer<br/>len  : length of the read buffer in bytes<br/>                    |
+| 01 | int pal_spi_read(addr_t addr, uint8_t *data, uint32_t len);                                                                 | Reads peripherals using SPI commands                 | addr : Address of the peripheral<br/>data : Read buffer<br/>len  : Length of the read buffer in bytes<br/>                    |
 
-- Following are the list of PAL APIs used in SPE: <br />
+The following is the list of PAL APIs used in SPE: <br />
 
 | No | Prototype                                                                         | Description                                                                       | Parameters                                               |
 |----|-----------------------------------------------------------------------------------|-----------------------------------------------------------------------------------|----------------------------------------------------------|
-| 01 | void pal_uart_init(addr_t uart_base_addr);                                        | This function initializes the uart                                                | uart_base_addr : Base address of the UART<br/>           |
-| 02 | void pal_print(char *str, uint32_t data);                                         | This function parses the input string and writes byte by byte to print            | str            : Input String<br/>data           : Value for Format specifier<br/>                       |
-| 03 | int  pal_wd_timer_init(addr_t base_addr, uint32_t time_us, uint32_t timer_tick_us);| Initializes an hardware watchdog timer                                            | base_addr       : Base address of the watchdog module<br/>time_us         : Time in micro seconds<br/>timer_tick_us   : Number of ticks per micro second<br/>|
+| 01 | void pal_uart_init(addr_t uart_base_addr);                                        | Initializes the UART                                                | uart_base_addr : Base address of the UART<br/>           |
+| 02 | void pal_print(char *str, int32_t data);                                         | Parses the input string and writes byte by byte to print            | str            : Input String<br/>data           : Value for Format specifier<br/>                       |
+| 03 | int  pal_wd_timer_init(addr_t base_addr, uint32_t time_us, uint32_t timer_tick_us);| Initializes a hardware watchdog timer                                            | base_addr       : Base address of the watchdog module<br/>time_us         : Time in micro seconds<br/>timer_tick_us   : Number of ticks per micro second<br/>|
 | 04 | int  pal_wd_timer_enable(addr_t base_addr);                                       | Enables a hardware watchdog timer                                                 | base_addr     : Base address of the watchdog module<br/> |
 | 05 | int  pal_wd_timer_disable(addr_t base_addr);                                      | Disables a hardware watchdog timer                                                | base_addr     : Base address of the watchdog module<br/> |
 | 06 | int  pal_wd_timer_is_enabled(addr_t base_addr);                                   | Checks whether hardware watchdog timer is enabled                                 | base_addr     : Base address of the watchdog module<br/> |
-| 07 | int  pal_nvmem_write(addr_t base, uint32_t offset, void *buffer, int size);       | Writes 'size' bytes from buffer into non-volatile memory at a given 'base + offset'| base      : Base address of NV MEM<br/>offset    : Offset<br/>buffer    : Pointer to source address<br/>size      : Number of bytes<br/>                  |
+| 07 | int  pal_nvmem_write(addr_t base, uint32_t offset, void *buffer, int size);       | Writes 'size bytes from buffer into non-volatile memory at a given 'base + offset'| base      : Base address of NV MEM<br/>offset    : Offset<br/>buffer    : Pointer to source address<br/>size      : Number of bytes<br/>                  |
 | 08 | int  pal_nvmem_read(addr_t base, uint32_t offset, void *buffer, int size);       | Reads 'size' bytes from non-volatile memory at a given                            | base      : Base address of NV MEM<br/>offset    : Offset<br/>buffer    : Pointer to source address<br/>size      : Number of bytes<br/>                  |
+| 09 | void pal_generate_interrupt(void);                                               | Trigger interrupt for IRQ signal assigned to driver partition                      | None |
+| 10 | void pal_disable_interrupt(void);                                                | Disable the interrupt that was generated using pal_generate_interrupt API.              | None |
 
 ## License
 Arm PSA test suite is distributed under Apache v2.0 License.
 
 --------------
 
-*Copyright (c) 2019, Arm Limited and Contributors. All rights reserved.*
+*Copyright (c) 2018-2019, Arm Limited and Contributors. All rights reserved.*
diff --git a/api-tests/docs/psa_attestation_testlist.md b/api-tests/docs/psa_attestation_testlist.md
index d8d7f105..478b494e 100644
--- a/api-tests/docs/psa_attestation_testlist.md
+++ b/api-tests/docs/psa_attestation_testlist.md
@@ -4,7 +4,7 @@
 |-----------|--------------------------------------|-------------------------------------------------------------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
 | test_a001 | PSA_ATTEST_ERR_SUCCESS               | psa_initial_attest_get_token()<br />psa_initial_attest_get_token_size() | 1. Provide correct inputs to API with described challenge sizes  <br />2. Expect API to return this define as return value each time  <br />3. Verify the token | 1. Challenge_size = 32 <br />2. Challenge_size = 48 <br />3. Challenge_size = 64                                                                                                         |
 |           | PSA_ATTEST_ERR_INVALID_INPUT         | psa_initial_attest_get_token()<br />psa_initial_attest_get_token_size() | 1. Provide described challenge sizes to the API along with other valid parameters <br />2. Expect API to return this define as return value each time           | 1. Challenge_size is zero <br />2. Invalid challenge size between 0 and 32 <br />3. Invalid challenge size between 32 and 64  <br />4. Challenge_size is greater than MAX_CHALLENGE_SIZE |
-|           | PSA_ATTEST_ERR_TOKEN_BUFFER_OVERFLOW | psa_initial_attest_get_token()                                    | 1. Provide described taken size to the API along with other valid parameters <br />2. Expect API to return this define as return value each time                | Pass the token_size which less than actual/required token size                                                                                                                                        |
+|           | PSA_ATTEST_ERR_TOKEN_BUFFER_OVERFLOW | psa_initial_attest_get_token()                                    | 1. Provide described taken size to the API along with other valid parameters <br />2. Expect API to return this define as return value each time                | 1. Token_size as zero<br />2. Token_size less than challenge size                                                                                                                                         |
 |           | PSA_ATTEST_ERR_INIT_FAILED           | psa_initial_attest_get_token()<br />psa_initial_attest_get_token_size() | Can't simulate. Test can't generate stimulus where attestation initialisation fails                                                                             |                                                                                                                                                                                                       |
 |           | PSA_ATTEST_ERR_CLAIM_UNAVAILABLE     | psa_initial_attest_get_token()                                    | Can't simulate. Test can't generate stimulus where claim can unavailable                                                                                        |                                                                                                                                                                                                       |
 |           | PSA_ATTEST_ERR_GENERAL               | psa_initial_attest_get_token()<br />psa_initial_attest_get_token_size() | Can't simulate. Test can't generate stimulus where unexpected error happened during API operation                                                               |                                                                                                                                                                                                       |
diff --git a/api-tests/docs/psa_crypto_testlist.md b/api-tests/docs/psa_crypto_testlist.md
index 12def99d..983ba367 100644
--- a/api-tests/docs/psa_crypto_testlist.md
+++ b/api-tests/docs/psa_crypto_testlist.md
@@ -24,8 +24,8 @@
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Incorrect key data size                                                                          |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  |                                                                                                     |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        | Calling this function with invalid key handle should return this error                                           | 1. Invalid key slot </br> 2. Zero key slot                                                          |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_OCCUPIED_SLOT         | Pass the key slot to store data which is already occupied                                                        | Already occupied key slot                                                                           |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        | Calling this function with invalid key handle should return this error                                           | 1. Destroyed key handle </br> 2. Zero as key handle</br> 3. Unallocated key handle                  |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_ALREADY_EXISTS         | Pass the key slot to store data which is already occupied                                                       | Already occupied key slot                                                                           |
 |                              | test_c003 | psa_export_key             | Export a key in binary format                                                                                         | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. 16 Byte AES                                                                                      |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure to a default that forbids all usage of the key                              | 2. 24 Byte AES                                                                                      |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  |                                                                                                     |
@@ -38,10 +38,12 @@
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 9. EC Public key                                                                                    |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 10. EC keypair                                                                                      |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_BUFFER_TOO_SMALL      | Calling this function with buffer size less than required                                                        | Less buffer size                                                                                    |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_PERMITTED         | Calling this function with with key policy as verify should return this error                                    | Key policy as PSA_KEY_USAGE_VERIFY                                                                  |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        | Calling this function with invalid parameter should return this error                                            | 1. Zero key slot                                                                                    |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Invalid key slot                                                                                 |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Unallocated key slot                                                                             |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Destroyed key slot                                                                               |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_BAD_STATE             | Calling this function with key policy that cannot be exported                                                    | Invalid key policy usage                                                                            |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_EMPTY_SLOT            | Calling this function with empty key slot                                                                        | Empty key slot                                                                                      |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_DOES_NOT_EXIST        | Calling this function with empty key slot                                                                        | Empty key slot                                                                                      |
 |                              | test_c004 | psa_export_public_key      | Export a public key or the public part of a key pair in binary format.                                                | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. 2048 RSA public key                                                                              |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure to a default that forbids all usage of the key                              | 2. 2048 RSA keypair                                                                                 |
 |                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     | 3. EC Public key                                                                                    |
@@ -50,18 +52,16 @@
 |                              |           |                            |                                                                                                                       |                                 | 6. Get basic metadata about a key                                                                                |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 7. Export a key in binary format                                                                                 |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 8. Check if original key data matches with the exported data                                                     |                                                                                                     |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      | 1. Initialize the PSA crypto library                                                                             | 1. 16 Byte AES                                                                                      |
-|                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure to a default that forbids all usage of the key                              | 2. 24 Byte AES                                                                                      |
-|                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     | 3. 32 Byte AES                                                                                      |
-|                              |           |                            |                                                                                                                       |                                 | 4. Set the usage policy on a key slot                                                                            | 4. DES 64 bit key                                                                                   |
-|                              |           |                            |                                                                                                                       |                                 | 5. Import the key data into the key slot                                                                         | 5. Triple DES 2-Key                                                                                 |
-|                              |           |                            |                                                                                                                       |                                 | 6. Get basic metadata about a key                                                                                | 6. Triple DES 3-Key                                                                                 |
-|                              |           |                            |                                                                                                                       |                                 | 7. Export a key in binary format                                                                                 |                                                                                                     |
-|                              |           |                            |                                                                                                                       |                                 | 8. Check if original key data matches with the exported data                                                     |                                                                                                     |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_BUFFER_TOO_SMALL      | Calling this function with buffer size less than required                                                        | Less buffer size                                                                                    |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        | Calling this function with invalid parameter should return this error                                            | 1. Zero key slot                                                                                    |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Invalid key slot                                                                                 |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      | Calling this function with invalid  parameter should return this error                                           | 1. DES 64 bit key                                                                                   |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Triple DES 2-Key                                                                                 |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Triple DES 3-Key                                                                                 |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_PERMITTED         | Calling this function with with key policy as verify should return this error                                    | Key policy as PSA_KEY_USAGE_VERIFY                                                                  |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        | Calling this function with invalid key handle should return this error                                           | 1. Zero key slot                                                                                    |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Unallocated key slot                                                                             |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Destroyed key slot                                                                               |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_BAD_STATE             | Calling this function with key policy that cannot be exported                                                    | Invalid key policy usage                                                                            |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_DOES_NOT_EXIST        | Calling this function with empty key slot                                                                        | Empty key slot                                                                                      |
 |                              | test_c005 | psa_destroy_key            | Destroy a key and restore the slot to its default state.                                                              | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. 16 Byte AES                                                                                      |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure to a default that forbids all usage of the key                              | 2. 24 Byte AES                                                                                      |
 |                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     | 3. 32 Byte AES                                                                                      |
@@ -86,8 +86,9 @@
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 9. EC Public key                                                                                    |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 10. EC keypair                                                                                      |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        | Calling this function with invalid parameter should return this error                                            | 1. Zero key slot                                                                                    |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Invalid key slot                                                                                 |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_EMPTY_SLOT            | Pass the key slot number which has the key type as none                                                          | Empty key slot                                                                                      |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Unallocated key slot                                                                             |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Destroyed key slot                                                                               |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_DOES_NOT_EXIST            | Pass the key slot number which has the key type as none                                                      | Empty key slot                                                                                      |
 |                              | NO TEST   | psa_key_policy_set_usage   | Set the standard fields of a policy structure.                                                                        | void                            | Void function. Covered as part of other cases                                                                    |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  |                                                                                                     |
 | Key Policies                 | test_c007 | psa_set_key_policy         | Set the usage policy on a key slot.                                                                                   | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. 16 Byte AES                                                                                      |
@@ -100,10 +101,10 @@
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 8. Triple DES 3-Key                                                                                 |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 9. EC Public key                                                                                    |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 10. EC keypair                                                                                      |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        | Calling this function with invalid parameter should return this error                                            | 1. Invalid key policy                                                                               |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        | Calling this function with invalid parameter should return this error                                            | 1. Unallocated key slot                                                                             |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Zero key slot                                                                                    |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Invalid key slot                                                                                 |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_OCCUPIED_SLOT         | Pass the key slot to store data which is already occupied                                                        | Already occupied key slot                                                                           |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Destroyed key slot                                                                               |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_ALREADY_EXISTS        | Pass the key slot to store data which is already occupied                                                        | Already occupied key slot                                                                           |
 |                              | test_c008 | psa_get_key_policy         | Get the usage policy for a key slot                                                                                   | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. 16 Byte AES                                                                                      |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure to a default that forbids all usage of the key                              | 2. 24 Byte AES                                                                                      |
 |                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     | 3. 32 Byte AES                                                                                      |
@@ -115,7 +116,7 @@
 |                              |           |                            |                                                                                                                       |                                 | 9. Retrieve the algorithm field of a policy structure                                                            | 9. EC Public key                                                                                    |
 |                              |           |                            |                                                                                                                       |                                 | 10. Make sure they match the original value                                                                      | 10. EC keypair                                                                                      |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        | Calling this function with invalid parameter should return this error                                            | 1. Zero key slot                                                                                    |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Invalid key slot                                                                                 |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Destroyed key slot                                                                               |
 |                              | test_c009 | psa_allocate_key           | Allocate a key slot for a transient key                                                                               | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. Volatile keys                                                                                    |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure to a default that forbids all usage of the key                              |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key                                                                       |                                                                                                     |
@@ -127,7 +128,7 @@
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INSUFFICIENT_MEMORY   | Calling this function with multiple time                                                                         |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  |                                                                                                     |
-|                              | test_c010 | psa_get_key_lifetime       | Retrieve the lifetime of a key slot.                                                                                  | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | Testing only volatile keys as other key types are currently not supported                           |
+|                              | test_c010 | psa_get_key_lifetime       | Retrieve the lifetime of a key slot.                                                                                  | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | Testing only volatile keys and persistance key types will be supported in future release            |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure to a default that forbids all usage of the key                              |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 4. Set the usage policy on a key slot                                                                            |                                                                                                     |
@@ -136,7 +137,6 @@
 |                              |           |                            |                                                                                                                       |                                 | 7. Get the lifetime of a key slot                                                                                |                                                                                                     |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        |                                                                                                                  | 1. Zero key slot                                                                                    |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Invalid key slot                                                                                 |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Empty key slot                                                                                   |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      |                                                                                                                  | 1. Invalid key policy                                                                               |
 | Message Authentication Codes | test_c011 | psa_hash_start             | Start a multipart hash operation.                                                                                     | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. MD2                                                                                              |
 |                              |           |                            |                                                                                                                       |                                 | 2. Start a multipart hash operation                                                                              | 2. MD4                                                                                              |
@@ -162,8 +162,8 @@
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 7. SHA256                                                                                           |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 8. SHA384                                                                                           |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 9. SHA512                                                                                           |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      | Calling this function without calling the psa_hash_start() should return error                                   | Inactive operation handle                                                                           |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      | Calling this function with completed operation handle should return error                                        | Completed operation handle                                                                          |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_BAD_STATE             | 1. Calling this function without calling the psa_hash_start() should return error                                | Inactive operation handle                                                                           |
+|                              |           |                            |                                                                                                                       |                                 | 2. Calling this function with completed operation handle should return error                                     | Completed operation handle                                                                          |
 |                              | test_c013 | psa_hash_verify            | Finish the calculation of the hash of a message and compare it with an expected value.                                | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. MD2                                                                                              |
 |                              |           |                            |                                                                                                                       |                                 | 2. Start a multipart hash operation                                                                              | 2. MD4                                                                                              |
 |                              |           |                            |                                                                                                                       |                                 | 3. Add a message fragment to a multipart hash operation                                                          | 3. MD5                                                                                              |
@@ -173,7 +173,8 @@
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 7. SHA256                                                                                           |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 8. SHA384                                                                                           |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 9. SHA512                                                                                           |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      | Calling this function with inactive operation handle should return error                                         | Inactive operation handle                                                                           |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_BAD_STATE             | Calling this function with inactive operation handle should return error                                         | 1. Inactive operation handle                                                                        |
+|                              |           |                            |                                                                                                                       |                                 | Calling this function with invalid operation handle should return error                                          | 2. Invalid operation handle                                                                         |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_SIGNATURE     | Calling this function with incorrect expected value should return error                                          | 1. Incorrect expected hash value                                                                    |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Incorrect expected hash length                                                                   |
 |                              | test_c014 | psa_hash_finish            | Finish the calculation of the hash of a message.                                                                      | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. MD2                                                                                              |
@@ -206,15 +207,16 @@
 |                              |           |                            |                                                                                                                       |                                 | 7. Check if key type and key length matches                                                                      |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 8. Export a key in binary format                                                                                 |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 9. Check if the metadata matches                                                                                 |                                                                                                     |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        | Calling this function with invalid key slot should return this error                                             | Invalid key slot                                                                                    |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        | Calling this function with unallocated key slot should return this error                                         | Unallocated key slot                                                                                |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        | Calling this function with zero as key slot should return this error                                             | Zero as key slot                                                                                    |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        | Calling this function with destroyed key slot should return this error                                           | Destroyed as key slot                                                                               |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      | Calling this function with Null extra and Non-Zero extra size should return this error                           | Null extra and Non-Zero extra size                                                                  |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_OCCUPIED_SLOT         | Calling this function with pre-occupied key slot should return this error                                        | Pre-occupied key slot                                                                               |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_ALREADY_EXISTS        | Calling this function with pre-occupied key slot should return this error                                       | Pre-occupied key slot                                                                                |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_SUPPORTED         | Calling this function to generate only public key should return this error                                       | Key type as public key                                                                              |
 |                              | test_c017 | psa_generate_random        | Generate random bytes                                                                                                 | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. 16 Byte data                                                                                     |
-|                              |           |                            |                                                                                                                       |                                 | 2. Generate random bytes                                                                                         | 2. 24 Byte data                                                                                     |
-|                              |           |                            |                                                                                                                       |                                 | 3. Check that if generated data are Non-Zero                                                                     | 3. 32 Byte data                                                                                     |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 4. 64 Byte data                                                                                     |
+|                              |           |                            |                                                                                                                       |                                 | 2. Generate random bytes Run several times, to ensure that every output byte will be nonzero at least once       | 2. 24 Byte data                                                                                     |
+|                              |           |                            |                                                                                                                       |                                 | 3. Check that no more than bytes have been overwritten                                                           | 3. 32 Byte data                                                                                     |
+|                              |           |                            |                                                                                                                       |                                 | 4. Check that every byte was changed to nonzero at least once.                                                   | 4. 64 Byte data                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 5. 128 Byte data                                                                                    |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 6. 256 Byte data                                                                                    |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 7. 512 Byte data                                                                                    |
@@ -231,9 +233,10 @@
 |                              |           |                            |                                                                                                                       |                                 | 9. Generate random bytes for remaining capacity                                                                  | 9. Request maximum capacity                                                                         |
 |                              |           |                            |                                                                                                                       |                                 | 10. Check that if generated data are non-zero                                                                    |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 11. Generate random bytes and check that it fails                                                                |                                                                                                     |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_INSUFFICIENT_CAPACITY | Calling this function with output size greater than the current capacity should return this error                | output size greater than the current capacity                                                       |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_INSUFFICIENT_CAPACITY | Calling this function with capacity greater than the allowed capacity should return this error                   | request maximum capacity +1                                                                         |
-|                              | test_c019 | psa_generator_get_capacity | Retrieve the current capacity of a generator                                                                          | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. Output size less than generator capacity                                                         |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INSUFFICIENT_DATA     | Calling this function with output size greater than the current capacity should return this error                | Output size greater than the current capacity                                                       |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INSUFFICIENT_DATA     | Calling this function with capacity greater than the allowed capacity should return this error                   | Request maximum capacity +1                                                                         |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_BAD_STATE             | Calling this function without setup should return this error                                                     |                                                                                                     |
+|                              | test_c019 | psa_get_generator_capacity | Retrieve the current capacity of a generator                                                                          | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. Output size less than generator capacity                                                         |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure                                                                             | 2. Output size equal to generator capacity                                                          |
 |                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 4. Set the usage policy on a key slot                                                                            |                                                                                                     |
@@ -244,6 +247,7 @@
 |                              |           |                            |                                                                                                                       |                                 | 9. Generate random bytes                                                                                         |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 10. Retrieve the current capacity of a generator                                                                 |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 11. Check that it is equal to the remaining capacity                                                             |                                                                                                     |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_BAD_STATE             | Calling this function without setup should return this error                                                     |                                                                                                     |
 |                              | test_c020 | psa_generator_import_key   | Create a symmetric key from data read from a generator                                                                | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. 16 Byte AES                                                                                      |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure                                                                             | 2. 32 Byte AES                                                                                      |
 |                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     |                                                                                                     |
@@ -269,12 +273,12 @@
 |                              |           |                            |                                                                                                                       |                                 | 23. Set the usage policy on a new key slot                                                                       |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 24. Create a symmetric key from data read from a generator for the some size                                     |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | Check that it fails                                                                                              |                                                                                                     |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_INSUFFICIENT_CAPACITY | Calling this function with output greater than capacity should return this error                                 | Output greater than capacity                                                                        |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INSUFFICIENT_DATA | Calling this function with output greater than capacity should return this error                                 | Output greater than capacity                                                                            |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      | Calling this function with public key algorithm should return this error                                         | 1. RSA public key </br>2.Invalid key size                                                           |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        | Calling this function with invalid arguments should return this error                                            | 1. Invalid key slot                                                                                 |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Zero as key slot                                                                                 |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  |                                                                                                     |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_OCCUPIED_SLOT         | Calling this function with already occupied key slot should return this error                                    | Pre-occupied key slot                                                                               |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_ALREADY_EXISTS        | Calling this function with already occupied key slot should return this error                                    | Pre-occupied key slot                                                                               |
 |                              | test_c021 | psa_generator_abort        | Abort a generator                                                                                                     | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. Abort                                                                                            |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure                                                                             | 2. Multiple                                                                                         |
 |                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     | 3. Calling generator functions after abort should fail                                              |
@@ -290,10 +294,13 @@
 |                              |           |                            |                                                                                                                       |                                 | 5. Set up a key derivation operation                                                                             |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 6. Retrieve the current capacity of a generator                                                                  |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 7. Make sure that the capacity is same as input capacity                                                         |                                                                                                     |
-|                              |           |                            |                                                                                                                       | PSA_INVALID_ARGUMENT            | Calling this function with invalid argument should return this error                                             | 1. Invalid algorithm 2. Unsupported generator capacity                                              |
+|                              |           |                            |                                                                                                                       | PSA_INVALID_ARGUMENT            | Calling this function with invalid argument should return this error                                             | 1. Invalid algorithm                                                                                |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Unsupported generator capacity                                                                   |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Unsupported key type                                                                             |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_PERMITTED         | Calling this function with incorrect usage should return this error                                              | 1. Incorrect usage                                                                                  |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_SUPPORTED         | Calling this function with unsupported key derivation algorithm should return this error                         | 1. Unsupported key derivation algorithm                                                             |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        | Calling this functoin wih incorrect key handle                                                                   | 1. Invalid key handle </br>2. Zero as key slot                                                      |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_EMPTY_SLOT            | Calling this function with empty key slot should return this error                                               | Empty key slot                                                                                      |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_DOES_NOT_EXIST        | Calling this function with empty key slot should return this error                                               | Empty key slot                                                                                      |
 | Key policies                 | test_c023 | psa_key_policy_get_usage   | Retrieve the usage field of a policy structure                                                                        | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. Encrypt                                                                                          |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure                                                                             | 2. Decrypt                                                                                          |
 |                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     | 3. Export                                                                                           |
@@ -310,7 +317,7 @@
 |                              |           |                            |                                                                                                                       |                                 | 8. Check if the cipher text is expected length                                                                   |                                                                                                     |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_SUPPORTED         |                                                                                                                  | 1. DES key                                                                                          |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Unsupported algorithm                                                                            |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_EMPTY_SLOT            |                                                                                                                  | Empty key slot                                                                                      |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_DOES_NOT_EXIST        |                                                                                                                  | Empty key slot                                                                                      |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        |                                                                                                                  | 1. Zero as key slot                                                                                 |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Invalid key slot                                                                                 |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_PERMITTED         |                                                                                                                  | 1. Small output buffer size                                                                         |
@@ -325,7 +332,8 @@
 |                              |           |                            |                                                                                                                       |                                 | 8. Check if the plain text is expected length                                                                    |                                                                                                     |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_SUPPORTED         |                                                                                                                  | 1. DES key                                                                                          |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Unsupported algorithm                                                                            |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_EMPTY_SLOT            |                                                                                                                  | Empty key slot                                                                                      |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_DOES_NOT_EXIST        |                                                                                                                  | Empty key slot                                                                                      |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      |                                                                                                                  | Invalid tag length                                                                                  |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        |                                                                                                                  | 1. Zero as key slot                                                                                 |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Invalid key slot                                                                                 |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_PERMITTED         |                                                                                                                  | 1. Small output buffer size                                                                         |
@@ -338,12 +346,15 @@
 |                              |           |                            |                                                                                                                       |                                 | 6. Start a multipart MAC calculation operation                                                                   |                                                                                                     |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_SUPPORTED         |                                                                                                                  | 1. 16 Byte AES - GMAC                                                                               |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Incompatible HMAC for CMAC                                                                       |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Bad algorithm (unknown MAC algorithm)<br /<                                                      |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Bad algorithm (unknown MAC algorithm)                                                            |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 4. Truncated MAC too small                                                                          |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_PERMITTED         |                                                                                                                  | Invalid usage                                                                                       |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_EMPTY_SLOT            |                                                                                                                  | Empty key slot                                                                                      |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        |                                                                                                                  | 1. Invalid key type                                                                                 |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_DOES_NOT_EXIST        |                                                                                                                  | Empty key slot                                                                                      |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      |                                                                                                                  | 1. Invalid key type                                                                                 |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Truncated MAC too large                                                                          |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3                                                                                                   |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Bad algorithm (not a MAC algorithm)                                                              |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        |                                                                                                                  | 1. Invalid key handle                                                                               |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Zero as key handle                                                                               |
 |                              | test_c027 | psa_mac_update             | Add a message fragment to a multipart MAC operation                                                                   | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1.64 Byte HMAC SHA256                                                                               |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure                                                                             | 2. 16 Byte AES - CMAC                                                                               |
 |                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     | 3. 32 Byte HMAC SHA512                                                                              |
@@ -379,14 +390,18 @@
 |                              |           |                            |                                                                                                                       |                                 | 7. Check for the expected status                                                                                 |                                                                                                     |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_SUPPORTED         |                                                                                                                  | 1. 16 Byte AES - GMAC                                                                               |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Incompatible HMAC for CMAC                                                                       |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Bad algorithm (unknown MAC algorithm)<br /<                                                      |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Bad algorithm (unknown MAC algorithm)                                                            |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 4. Truncated MAC too small                                                                          |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_PERMITTED         |                                                                                                                  | Invalid usage                                                                                       |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_EMPTY_SLOT            |                                                                                                                  | Empty slot as input                                                                                 |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        |                                                                                                                  | 1. Invalid key type                                                                                 |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_DOES_NOT_EXIST        |                                                                                                                  | Empty slot as input                                                                                 |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      |                                                                                                                  | 1. Invalid key type                                                                                 |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Truncated MAC too large                                                                          |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Bad algorithm (unknown MAC algorithm)                                                            |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        |                                                                                                                  | 1. Invalid key handle                                                                               |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Zero as key handle                                                                               |
 |                              | test_c030 | psa_mac_verify_finish      | Finish the calculation of the MAC of a message and compare it with an expected value                                  | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. HMAC SHA 224                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure                                                                             | 2. HMAC SHA 256                                                                                     |
-|                              |           |                            |                                                                                                                       |                                 | 3.Allocate a key slot for a transient key and set the standard fields of a policy structure                      | 3. HMAC SHA 512                                                                                     |
+|                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     | 3. HMAC SHA 512                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 4. Set the usage policy on a key slot                                                                            | 4. HMAC SHA 224 (truncated to 8 Byte)                                                               |
 |                              |           |                            |                                                                                                                       |                                 | 5. Import the key data into the key slot                                                                         | 5. CMAC AES 128                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 6. Start a multipart MAC calculation operation                                                                   |                                                                                                     |
@@ -414,14 +429,14 @@
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Unknown cipher algorithm                                                                         |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Incompatible key ARC4                                                                            |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      |                                                                                                                  | 1. Not a cipher algorithm                                                                           |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Invalid key slot                                                                                 |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Zero as key slot                                                                                 |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 4. RSA public key                                                                                   |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 5. RSA keypair                                                                                      |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 6. EC Public key                                                                                    |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 7. EC keypair                                                                                       |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_EMPTY_SLOT            |                                                                                                                  | Empty key slot                                                                                      |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. RSA public key                                                                                   |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. RSA keypair                                                                                      |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 4. EC Public key                                                                                    |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 5. EC keypair                                                                                       |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_DOES_NOT_EXIST        |                                                                                                                  | Empty key slot                                                                                      |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_PERMITTED         |                                                                                                                  | Incorrect usage                                                                                     |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        |                                                                                                                  | 1. Unallocated key handle                                                                           |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Zero as key handle                                                                               |
 |                              | test_c033 | psa_cipher_decrypt_setup   | Set the key for a multipart symmetric decryption operation                                                            | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. HMAC SHA 224                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure                                                                             | 2. HMAC SHA 256                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     | 3. HMAC SHA 512                                                                                     |
@@ -433,13 +448,13 @@
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Unknown cipher algorithm                                                                         |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Incompatible key ARC4                                                                            |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      |                                                                                                                  | 1. Not a cipher algorithm                                                                           |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Invalid key slot                                                                                 |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Zero as key slot                                                                                 |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 4. RSA public key                                                                                   |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 5. RSA keypair                                                                                      |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 6. EC Public key                                                                                    |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 7. EC keypair                                                                                       |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_EMPTY_SLOT            |                                                                                                                  | Empty key slot                                                                                      |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. RSA public key                                                                                   |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. RSA keypair                                                                                      |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 4. EC Public key                                                                                    |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 5. EC keypair                                                                                       |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        |                                                                                                                  | 1. Unallocated key handle                                                                           |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Zero as key handle                                                                               |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_DOES_NOT_EXIST        |                                                                                                                  | Empty key slot                                                                                      |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_PERMITTED         |                                                                                                                  | Invalid usage                                                                                       |
 |                              | test_c034 | psa_cipher_generate_iv     | Generate an IV for a symmetric encryption operation                                                                   | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. 16 Byte AES                                                                                      |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure                                                                             | 2. 24 Byte AES                                                                                      |
@@ -453,6 +468,7 @@
 |                              |           |                            |                                                                                                                       |                                 | 10. Generating an IV for a symmetric encryption operation using the same operator should fail                    |                                                                                                     |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_BUFFER_TOO_SMALL      |                                                                                                                  | 1. AES - small iv buffer                                                                            |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. DES - small iv buffer                                                                            |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_BAD_STATE             |                                                                                                                  | 1. Completed operation handle                                                                       |
 |                              | test_c035 | psa_cipher_set_iv          | Set the IV for a symmetric encryption or decryption operation                                                         | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. 16 Byte AES                                                                                      |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure                                                                             | 2. 24 Byte AES                                                                                      |
 |                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     | 3. 32 Byte AES                                                                                      |
@@ -464,6 +480,7 @@
 |                              |           |                            |                                                                                                                       |                                 | 9. Check that if generated iv are zero                                                                           |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 10. Setting an IV for a symmetric encryption/decryption operation using the same operator should fail            |                                                                                                     |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      |                                                                                                                  | 1. AES - small iv buffer 2. DES - small iv buffer 3. AES - large iv buffer 4. DES - large iv buffer |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_BAD_STATE             |                                                                                                                  | 1. Completed operation handle                                                                       |
 |                              | test_c036 | psa_cipher_update          | Encrypt or decrypt a message fragment in an active cipher operation                                                   | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. AES CBC_NO_PADDING                                                                               |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure                                                                             | 2. AES CBC_NO_PADDING (Short input)                                                                 |
 |                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     | 3. AES CBC_PKCS7                                                                                    |
@@ -476,6 +493,7 @@
 |                              |           |                            |                                                                                                                       |                                 | 10. Check if the output data matches the expected data                                                           |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 11. Encrypt or decrypt a message fragment in an invalid cipher operation should fail                             |                                                                                                     |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_BAD_STATE             | Encrypt or decrypt a message fragment in an invalid cipher operation should fail                                 | Invalid operation as input                                                                          |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_BUFFER_TOO_SMALL      |                                                                                                                  | Small output buffer size                                                                            |
 |                              | test_c037 | psa_cipher_finish          | Finish encrypting or decrypting a message in a cipher operation                                                       | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. AES CBC_NO_PADDING                                                                               |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure                                                                             | 2. AES CBC_NO_PADDING (Short input)                                                                 |
 |                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     | 3. AES CBC_PKCS7                                                                                    |
@@ -489,6 +507,8 @@
 |                              |           |                            |                                                                                                                       |                                 | 11. Check if the output data matches the expected data                                                           |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 12. Finish encrypting or decrypting a message using an invalid operation should fail                             |                                                                                                     |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_BAD_STATE             | Encrypt or decrypt a message fragment in an invalid cipher operation should fail                                 | Invalid operation as input                                                                          |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_BUFFER_TOO_SMALL      |                                                                                                                  | Small output buffer size                                                                            |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      |                                                                                                                  | AES CBC_NO_PADDING (Short input)                                                                    |
 |                              | test_c038 | psa_cipher_abort           | Abort a cipher operation                                                                                              | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. Encrypt - AES CBC_NO_PADDING                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure                                                                             | 2. Encrypt - AES CBC_PKCS7                                                                          |
 |                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     | 3. Encrypt - AES CTR                                                                                |
@@ -512,12 +532,13 @@
 |                              |           |                            |                                                                                                                       |                                 | 8. Decrypt the cipher text                                                                                       |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 9. Check if the output length matches with the input length                                                      |                                                                                                     |
 |                              |           |                            |                                                                                                                       |                                 | 10. Check if the output matches with the given input data                                                        |                                                                                                     |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      |                                                                                                                  | 1. Small output buffer                                                                              |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      |                                                                                                                  | 1. Invalid key type                                                                                 |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Invalid algorithm                                                                                |
-|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Invalid key type                                                                                 |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        |                                                                                                                  | 1. Invalid key slot </br>2. Zero key slot                                                           |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_PERMITTED         |                                                                                                                  | Invalid usage                                                                                       |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_EMPTY_SLOT            |                                                                                                                  | Empty key slot                                                                                      |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_DOES_NOT_EXIST        |                                                                                                                  | Empty key slot                                                                                      |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_BUFFER_TOO_SMALL      |                                                                                                                  | Small output buffer                                                                                 |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        |                                                                                                                  | 1. Unallocated key handle                                                                           |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Zero as key handle                                                                               |
 |                              | test_c040 | psa_asymmetric_decrypt     | Decrypt a short message with a private key                                                                            | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. RSA KEYPAIR PKCS1V15                                                                             |
 |                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure                                                                             | 2. RSA KEYPAIR OAEP SHA256                                                                          |
 |                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     | 3. RSA KEYPAIR OAEP SHA256 with label                                                               |
@@ -529,7 +550,7 @@
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      |                                                                                                                  | 1. Invalid key type (RSA public key)                                                                |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Invalid algorithm                                                                                |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Invalid key type (AES Key)                                                                       |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_EMPTY_SLOT            |                                                                                                                  | Empty key slot                                                                                      |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_DOES_NOT_EXIST        |                                                                                                                  | Empty key slot                                                                                      |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_PERMITTED         |                                                                                                                  | Invalid usage                                                                                       |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        |                                                                                                                  | 1. Invalid key slot </br>2. Zero key slot                                                           |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_BUFFER_TOO_SMALL      |                                                                                                                  | Small output buffer                                                                                 |
@@ -546,7 +567,7 @@
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 3. Invalid key type (AES Key)                                                                       |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 4. Wrong hash size                                                                                  |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        |                                                                                                                  | 1. Invalid key slot </br>2. Zero key slot                                                           |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_EMPTY_SLOT            |                                                                                                                  | Empty key slot                                                                                      |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_DOES_NOT_EXIST        |                                                                                                                  | Empty key slot                                                                                      |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_PERMITTED         |                                                                                                                  | Invalid usage                                                                                       |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_BUFFER_TOO_SMALL      |                                                                                                                  | Small output buffer                                                                                 |
 |                              | test_c042 | psa_asymmetric_verify      | Verify the signature a hash or short message using a public key                                                       | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. RSA KEYPAIR PKCS1V15 RAW                                                                         |
@@ -561,10 +582,46 @@
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        |                                                                                                                  | 1. Invalid key slot </br>2. Zero key slot                                                           |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_SIGNATURE     |                                                                                                                  | Wrong signature size                                                                                |
 |                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | Wrong signature                                                                                     |
-|                              |           |                            |                                                                                                                       | PSA_ERROR_EMPTY_SLOT            |                                                                                                                  | Empty key slot                                                                                      |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_DOES_NOT_EXIST        |                                                                                                                  | Empty key slot                                                                                      |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_PERMITTED         |                                                                                                                  | Invalid usage                                                                                       |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_SUPPORTED         |                                                                                                                  | Invalid key type (AES Key)                                                                          |
 |                              |           |                            |                                                                                                                       | PSA_ERROR_BUFFER_TOO_SMALL      |                                                                                                                  | Small output buffer                                                                                 |
+|                              | test_c043 | psa_key_agreement          |  Set up a key agreement operation                                                                                     | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. ECDH SECP256R1                                                                                   |
+|                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure                                                                             | 2. ECDH SECP384R1                                                                                   |
+|                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     |                                                                                                     |
+|                              |           |                            |                                                                                                                       |                                 | 4. Set the key data based on key type                                                                            |                                                                                                     |
+|                              |           |                            |                                                                                                                       |                                 | 5. Set the usage policy on a key slot                                                                            |                                                                                                     |
+|                              |           |                            |                                                                                                                       |                                 | 6. Import the key data into the key slot                                                                         |                                                                                                     |
+|                              |           |                            |                                                                                                                       |                                 | 7. Set up a key agreement operation                                                                              |                                                                                                     |
+|                              |           |                            |                                                                                                                       |                                 | 8. Retrieve the current capacity of a generator                                                                  |                                                                                                     |
+|                              |           |                            |                                                                                                                       |                                 | 9. Check if the generator capacity matches with the expected capacity                                            |                                                                                                     |
+|                              |           |                            |                                                                                                                       |                                 | 10. Read some data from a generator                                                                              |                                                                                                     |
+|                              |           |                            |                                                                                                                       |                                 | 11. Check if the output matches with the expected data                                                           |                                                                                                     |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      |                                                                                                                  | 1. Not a key agreement alg                                                                          |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Public key on different curve                                                                    |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Public key instead of private key                                                                |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        |                                                                                                                  | 1. Invalid key slot </br>2. Zero key slot                                                           |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_DOES_NOT_EXIST        |                                                                                                                  | Empty key slot                                                                                      |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_PERMITTED         |                                                                                                                  | Invalid usage                                                                                       |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_NOT_SUPPORTED         |                                                                                                                  | Invalid key type (AES Key)                                                                          |
+|                              | test_c044 | psa_copy_key               |  Copy key material from one location to another                                                                       | PSA_SUCCESS                     | 1. Initialize the PSA crypto library                                                                             | 1. 16 Byte AES                                                                                      |
+|                              |           |                            |                                                                                                                       |                                 | 2. Initialize a key policy structure                                                                             | 2. 24 Byte AES                                                                                      |
+|                              |           |                            |                                                                                                                       |                                 | 3. Allocate a key slot for a transient key and set the standard fields of a policy structure                     | 3. 32 Byte AES with constraints                                                                     |
+|                              |           |                            |                                                                                                                       |                                 | 4. Set the key data based on key type                                                                            | 4. 2048 RSA public key                                                                              |
+|                              |           |                            |                                                                                                                       |                                 | 5. Set the usage policy on a key slot                                                                            | 5. 2048 RSA key pair                                                                                |
+|                              |           |                            |                                                                                                                       |                                 | 6. Import the key data into the key slot                                                                         | 6. DES 64 bit key                                                                                   |
+|                              |           |                            |                                                                                                                       |                                 | 7. Allocate a key slot for the target key                                                                        | 7. Triple DES 2-Key                                                                                 |
+|                              |           |                            |                                                                                                                       |                                 | 8. Set the usage policy on a key slot                                                                            | 8. Triple DES 3-Key                                                                                 |
+|                              |           |                            |                                                                                                                       |                                 | 9. Make a copy of a key                                                                                          | 9. EC Public key                                                                                    |
+|                              |           |                            |                                                                                                                       |                                 | 10. Destroy the source to ensure that this doesn't affect the target                                             | 10. EC key pair                                                                                     |
+|                              |           |                            |                                                                                                                       |                                 | 11. Export a key in binary format and check if it matches with source material                                   | 11. Incompatible target polic                                                                       |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_ARGUMENT      |                                                                                                                  | 1. Incompatible target policy(source and target)                                                    |
+|                              |           |                            |                                                                                                                       |                                 |                                                                                                                  | 2. Incompatible constraint                                                                          |
+|                              |           |                            |                                                                                                                       | PSA_SUCCESS                     |                                                                                                                  | 1. Unexport source key usage                                                                        |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_INVALID_HANDLE        |                                                                                                                  | 1. Unallocated target key slot                                                                      |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_DOES_NOT_EXIST        |                                                                                                                  | Empty source handle                                                                                 |
+|                              |           |                            |                                                                                                                       | PSA_ERROR_ALREADY_EXISTS        |                                                                                                                  | Target already containing key material                                                              |
+
 
 ## License
 Arm PSA test suite is distributed under Apache v2.0 License.
diff --git a/api-tests/docs/psa_ipc_testlist.md b/api-tests/docs/psa_ipc_testlist.md
index fd324253..2313422c 100644
--- a/api-tests/docs/psa_ipc_testlist.md
+++ b/api-tests/docs/psa_ipc_testlist.md
@@ -1,106 +1,122 @@
 # PSA FF IPC Testcase checklist 
 
-| Tests            | Scenario Rules                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | Client- Server Test Functions Pair                                                | Test Algorithm/Comments/Test Limitation                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | PSA API Crosses                                  | Is scenario implemented in this release? |
-|------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-----------------------------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|--------------------------------------------------|------------------------------------------|
-| test_i001        | 1. psa_framework_version(): Retrieve the version of the PSA Framework API that is implemented. Manifest field- psa_framework_version: Version of the PSA Firmware Framework specification this manifest conforms to.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | [client/server]_test_psa_framework_version()                                      | Call the psa_framework_version() API at both side SPE and NSPE and compare the return value with PSA_FRAMEWORK_VERSION.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | psa_framework_version                            | Yes                                      |
-|                  | 1. psa_version() returns PSA_VERSION_NONE when the RoT Service is not implemented, or the caller is not permitted to access the service OR return > 0 with the minor version of the implemented RoT Service.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | [client/server]_test_psa_version()                                                | 1. Pass un-implemented SID and expects PSA_VERSION_NONE as return value. <br />2. Call to API from NSPE with a SID who doesn't provide service to NSPE and expects PSA_VERSION_NONE as return value. <br />3. Pass SID who is implemented and provides service to NSPE and expect  minor number(>0) of given RoT service as return. <br />Perform all above checks from SPE too.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | psa_version                                      | Yes                                      |
-| test_i002        | 1. psa_connect() returns the PSA_CONNECTION_BUSY when RoT Service cannot make the connection at the moment (transient error). <br />2. psa_connect() returns the PSA_CONNECTION_REFUSED when RoT Service has refused the connection <br />3. psa_wait() returns the Secure Partition interrupt signals that have been asserted from a subset of signals provided by the caller. Returns > 0 when at least one signal is asserted <br />4. psa_get():Get the message which corresponds to a given RoT Service signal and remove the message from the queue.  <br />5. psa_get() returns PSA_SUCCESS when *msg will contain the delivered message. <br />6. The type member of the psa_msg_t object should return PSA_IPC_CONNECT for a new connection request following a psa_get() call to psa_connect() and msg.handle must be positive. <br />7. psa_reply():  If the message type is PSA_IPC_CONNECT then server can reject the connection by sending PSA_CONNECTION_REFUSED (permanent error) or PSA_CONNECTION_BUSY (transient error) status code. <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | [client/server]_test_connection_busy_and_reject()                                 | 1. Client tries to connect to ROT service using psa_connect() <br />2. RoT service checks the delivery of  PSA_IPC_CONNECT message type and positive handle value returned by psa_get()  <br />3. RoT service rejects the connection by executing psa_reply(handle,PSA_CONNECTION_BUSY) <br />4. Client tries to connect to same ROT service using psa_connect() again <br />5. This time, RoT service rejects the connection by executing psa_reply(handle,PSA_CONNECTION_REFUSED) <br />Perform all above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                  | psa_connect,psa_wait,psa_get,psa_reply           | Yes                                      |
-|                  | 1. psa_connect(): When SID is implemented and client is permitted to access the service, SPM delivers a PSA_IPC_CONNECT message from the client to the Secure Partition that implements the RoT Service and positive handle is returned to client. <br />2. psa_get():Get the message which corresponds to a given RoT Service signal and remove the message from the queue. <br />3. psa_get() returns PSA_SUCCESS when *msg will contain the delivered message <br />4. psa_get():The type member of the psa_msg_t object should return PSA_IPC_CONNECT for a new connection request following a psa_get() call to psa_connect() and msg.handle must be positive. <br />5. psa_get(): The type member of the psa_msg_t object should return PSA_IPC_DISCONNECT for a new connection request following a psa_get() call to psa_close() and msg.handle must be positive. <br />6. psa_reply():  If the message type is PSA_IPC_CONNECT then server can accept the connection by sending PSA_SUCCESS status code. If the message type is PSA_IPC_DISCONNECT then the status code is ignored. <br />7. psa_close(): Closes a connection to a RoT Service. Sends the PSA_IPC_DISCONNECT message to the RoT Service.  This function will have no effect if called with the null handle. <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | [client/server]_test_accept_and_close_connect()                                   | 1.Client tries to connect to ROT service <br /> 2. RoT service checks the delivery of  PSA_IPC_CONNECT message type and positive handle value return by psa_get() <br />3. RoT service  accepts the connection by executing psa_reply(.., PSA_CONNECTION_ACCEPTED).  <br />4. Client calls the psa_close with PSA_NULL_HANDLE and later it closes the connection using psa_close() with actual handle value <br />5. RoT service checks the delivery of  PSA_IPC_DISCONNECT message type, checks handle value eqaul to NULL returned by psa_get() and completes the PSA_IPC_DISCONNECT by executing psa_reply() . <br />Perform all above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                    | psa_connect,psa_wait,psa_get,psa_reply,psa_close | Yes                                      |
-|                  | Following are allowed minor version condition to psa_connect(): <br />  1. Version policy is not mentioned and requested version is 1 which is default minimum version  <br />2. Version policy is STRICT and requested version equals minimum version  <br />3. Version policy is relaxed and requested version is smaller than the minimum version  <br /> 4. Version policy is relaxed and requested version is euqal to the minimum version  <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | [client/server]_test_connect_with_allowed_minor_version_policy()                  | Client tries connecting ROT service of following properties and expects connection to establish: <br />   - Version policy is not mentioned and requested version is 1 which is default minimum version  <br />   - Version policy is STRICT and requested version equals minimum version  <br />   - Version policy is relaxed and requested version is smaller than the minimum version  <br />  - Version policy is relaxed and requested version is equal to the minimum version  <br />Perform all above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                | psa_connect                                      | Yes                                      |
-|                  | 1. psa_call(): The valid psa_call, make SPM to send PSA_IPC_CALL msg.type to the RoT servicee partition and the successful call should return >=0 handle value.  <br />2. psa_call() receives return value >= 0 for RoT-specific return code <br />3. psa_call() receive return value  < 0 for RoT-specific error code <br />4. psa_reply():  If the message type is PSA_IPC_CALL  and ROT service want to end call with success then the return code must be PSA_SUCCESS or and positive integers are used to indicate RoT Service specific result values(this must be reported to client). All other return codes (INT32_MIN+128 to -1) are reported to the client.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | [client/server]_test_psa_call_with_allowed_status_code()                          | 1. Client connects to RoT service <br />2. Client sends message using psa_call() <br />3.  RoT service checks the delivery of  PSA_IPC_CALL message type and positive handle value  return by psa_get()  <br />4. RoT service ends the call using psa_reply(status_code) <br />5. Client checks the return value of psa_call() and Client closes the connectionRepeat (1) to (5) for different status code, SUCCESS, +ve, -ve.. <br />Perform all above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                      | psa_call,psa_reply                               | Yes                                      |
-|                  | 1. A msg.client_id that has a positive value indicates that the client is in the SPE and this the Secure Partition ID of the client. A negative client_id indicates that the client is in the NSPE.  <br />2. Client_id is valid during PSA_IPC_CONNECT, PSA_IPC_CALL and PSA_IPC_DISCONNECT msg type. <br />3. Manifest Parameter-  name (required, unique) <br />A Partition must have an alphanumeric name for source code to directly refer to a specific Partition. The format of the name must follow the rules of a C macro.  <br />4. Manifest Parameter - id (required, unique) <br />It must be represented by a hexadecimal string. The Secure Partition ID can be referenced in Secure Partition source code via the symbolic name specified as name attribute. The symbol must have the value of the Secure Partition ID. <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | [client/server]_test_identity()                                                   | - Check the value returned by msg.client_id during PSA_IPC_CONNECT, PSA_IPC_CALL and PSA_IPC_DISCONNECT. For NSPE connection, client_id should be <0 and for SPE, it should be >0.  <br />Perform all above steps from NSPE and SPE both. <br />- Access the Partition ID of client partition and compare the value with expected ID value.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | psa_get                                          | Yes                                      |
-|                  | 1. psa_connect() will return the PSA_CONNECTION_REFUSED  OR PSA_CONNECTION_BUSY when the SPM has reached the limit of concurrent connections                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | [client/server]_test_spm_concurrent_connect_limit()                               | Execute psa_connect() API in a loop until it returns PSA_CONNECTION_REFUSED or PSA_CONNECTION_BUSY <br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | psa_connect                                      | Yes                                      |
-|                  | 1. psa_wait(): When MODE(PSA_BLOCK) is one, the function will block the caller until one of the requested signals is asserted.   <br />2.  psa_wait(): Callers must set RES to zero, implementations must ignore the value of RES. <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | [client/server]_test_psa_block_behave()                                           | 1. Client connects to a RoT service mutilpe times.  <br />2. RoT service psa_wait(PSA_BLOCK|(Non-zero value for timeout[30:0])) API is executed without while(1) loop.  <br />3.  RoT service serves the connections by rejecting them.   <br />This is a sanity check, a successful handshaking between client and server for requested connection  represents check pass. <br />Perform above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | psa_wait                                         | Yes                                      |
-|                  | 1. psa_wait(): When MODE is zero, the function will return immediately with the current signal state, which can be zero if no signals are active.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | [client/server]_test_psa_poll_behave()                                            | 1. Client connects to a RoT service mutilpe times.  <br />2. RoT service executes psa_wait(PSA_POLL)  in a while loop and checks the API's polling behaviour.  <br />3. Call psa_wait(PSA_POLL) when no request is made by client and checks the return value. <br />Perform above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | psa_wait                                         | Yes                                      |
-| test_i003        | 1. The reverse handle for a connection is NULL until psa_set_rhandle() is used.  psa_set_rhandle() can be used to associate some caller-provided private data with a specified client connection. And SPM must provide same rhandle for msg.rhandle with all subsequent messages delivered on this connection. On success the rhandle is retained by the implementation and provided in all future messages on that connection as part of the psa_msg_t structure.  <br />2. Setting the rhandle for a connection during disconnection has no observable effect.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | [client/server]_test_psa_set_rhandle()                                            | 1. Client connects to RoT service and RoT service checks the value of msg.rhanlde value duing PSA_IPC_CONNECT2. Client send call msg to RoT service and RoT service checks the value of msg.rhanlde value duing PSA_IPC_CONNECT <br />3. ROT service sets the rhandle with known value. <br />4. Client send call msg to RoT service and RoT service now compare the value of msg.rhanndle  with previously set value <br />5. ROT service sets the rhandle with known value other than previously set value <br />6. Client send call msg to RoT service and RoT service now compare the value of msg.rhanndle with last set value <br />7. The reverse handle for a connection is NULL until psa_set_rhandle() is used <br />Perform above steps from NSPE and SPE both.                                                                                                                                                                 | psa_set_rhandle,psa_get                          | Yes                                      |
-|                  | 1. psa_call():The caller can optionally provide one or more buffers to receive a response (out_vec). <br />2. psa_get(): The array in_size provides the size of each client input vector in bytes. The array out_size provides the size of each client output vector in bytes. <br />3. psa_read(): parameter from the client input vector. Streams up to the next num_bytes bytes of client input vector invec_idx in the message identified by msg_handle to the Secure Partition buffer. Returns the number of bytes copied. <br />4. psa_read(): If num_bytes is less than or equal to the available data in the input vector then num_bytes are copied to buffer, and the remaining data in the input vector can be read by subsequent calls to psa_read() with the same msg_handle and invec_idx. <br />5. psa_read(): RoT Services can determine how much data is available to read from the message based on the in_size[] attribute of the psa_msg_t message returned from psa_get(). If an input vector has not been passed by the client then the corresponding in_size[] for that vector is zero. <br />6. psa_read(): If num_bytes is greater than the remaining data in the input vector then the remaining input bytes are copied to buffer and the call returns the number of bytes copied. Any space after this in buffer is not modified. Subsequent calls of psa_read() or psa_skip() with the same message input vector will report that there is no more data in the vector. <br />7. psa_skip(): Skip over part of a client input vector. Advances the current read offset by skipping up to num_bytes bytes for input vector invec_idx in the message identified by msg_handle. psa_skip(): When psa_skip returns, it returns with the number of bytes skipped  <br />8. psa_skip(): If There was no remaining data in this input vector, return zero <br />9.psa_skip(): If num_bytes is greater than the remaining size of the input vector then the remaining size of the input vector is returned. Subsequent calls of psa_read() or psa_skip() with the same message input vector will report that there is no more data in the vector. <br /> | [client/server]_test_call_read_and_skip()                                         | 1.Client connects to RoT service <br />2.Client sends four input vectors to RoT service using psa_call <br />3. RoT service checks following: <br />    - Reporting of input vectors size through msg.in_size <br />    - Input vectors content reading through psa_read <br />    -Inbound /Outbound offset reading <br />    -Inbound/Outbound  offset skipping <br />    -Zero byte read and skip <br />    -out_len=0 check <br />4. Client recieves the status of  RoT service checks and closes the connection <br />Perform above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                     | psa_call,psa_read,psa_skip,psa_get,              | Yes                                      |
-|                  | 1. psa_call(): The caller can optionally provide one or more buffers to receive a response (out_vec). On return from psa_call() the len value will have been updated to indicate the number of bytes of data written to the buffer by the RoT Service. <br />2. psa_write(): Appends num_bytes of data from buffer to the client output vector outvec_idx in the message identified by msg_handle. Sequential calls using the same msg_handle and outvec_idx will be concatenated in the output vector                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_call_and_write()                                             | 1. Client connects to RoT service <br />2. Client sends four output vectors to RoT service using psa_call <br />3. RoT service checks following: <br />  - Reporting of output vectors size through msg.out_size <br />  - in_len=0 check <br />  - zero byte write <br />  - Out vector writes using psa_write <br />   -  Vector write concatenation <br />4. Client recieves the status of RoT service checks, cross check the content of out vectors and closes the connection <br />Perform above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                       | psa_call,psa_get,psa_write                       | Yes                                      |
-|                  | 1.  psa_call():  Any I/O vector of length zero is permitted and will be treated as an empty or non-existent vector by the framework. When less than four vectors are provided to psa_call() for either input or output, then the remaining vectors have zero length and the in_size and out_size elements for these vectors will be zero.A memory reference contains a start address and an associated length. A zero-length memory reference is one where the length is zero. The start address of a zero-length memory reference can safely take any value and must be ignored by the implementation. <br />2. psa_call(): If in_len is zero then in_vec is ignored  <br />3. sa_call(): If out_len is zero then out_vec is ignored  <br />4. psa_get(): If an input and output vector has not been passed by the client then the corresponding in_size[] and out_size[] for that vector is zero.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | [client/server]_test_zero_length_invec()[client/server]_test_zero_length_outvec() | Test zero lenth input vector: <br />1. Client connects to RoT service <br />2. Client sends three input and one outvec vectors to RoT service using psa_call - invec 0 as zero length vector, invec 1 as NULL and invec 2 and outvec 0 as non-zero length vector <br />3. RoT service checks size of each vectors reported through msg.in_size and msg.out_size <br />4. Client recieves the status of checks and closes the connection <br />Test zero lenth output vector: <br />1. Client connects to RoT service <br />2. Client sends one  input and three outvec vectorsto RoT service using psa_call - outvec 0 as zero length vector, outvec 0 as NULL and invec 0 and outvec 2 as non-zero length vector <br />3. RoT service checks size of each vectors reported through msg.in_size and msg.out_size <br />4. Client recieves the status of checks and closes the connection <br />Perform above steps from NSPE and SPE both. | psa_call,psa_get                                 | Yes                                      |
-|                  | 1. When client provides an input and output vectors which are referencing to same memory location, a psa_read after psa_write to the same memory location can return original or modified value.  <br />2. When client provides an input and output vectors which are referencing to same memory location, a psa_write(s) to both memory vectors can return either the 1st or the 2nd value written.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | [client/server]_test_overlapping_vectors                                          | 1. Client provides one input and 2 output vectors which are pointing to same location.  <br />2. RoT service performs read after write operation on to outvec-0 and expects return value either modified one or the original  <br />3. RoT service performs write operation to outvec-1 and unblock the connection. The write performed is to mimic write after write operatio to the overlapping vector. <br />4. Client check the value of outvec. The value should be either the value written by first psa_write or the second psa_write.                                                                                                                                                                                                                                                                                                                                                                                              | psa_call,psa_write,psa_read                      | Yes                                      |
-| test_i004        | psa_connect() does not return if RoT Service does not exist on platform                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | [client/server]_test_sid_does_not_exists()                                        | Call psa_connect with SID which does not exist on a platform <br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | psa_connect                                      | Yes                                      |
-| test_i005        | psa_connect() does not return if Version policy is STRICT and requested version is HIGHER than minimum version                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | [client/server]_test_strict_policy_higher_minor_version()                         | call psa_connect with SID whose Version policy is STRICT and requested minor version is HIGHER than minimum version. <br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | psa_connect                                      | Yes                                      |
-| test_i006        | psa_connect() does not return if Version policy is STRICT and requested version lower than minimum version                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | [client/server]_test_strict_policy_lower_minor_version()                          | call psa_connect with SID whose Version policy is STRICT and requested minor version is Lower than minimum version. <br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | psa_connect                                      | Yes                                      |
-| test_i007        | psa_connect() does not return if Version policy is RELAXED and requested version is bigger than minimum version                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | [client/server]_test_relax_policy_higher_minor_version()                          | call psa_connect with SID whose Version policy is RELAXED and requested minor version is HIGHER than minimum version. <br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | psa_connect                                      | Yes                                      |
-| test_i008        | 1. psa_connect() does not return if Service to non_secure_client is not available <br />2. Manifest parameter - The non_secure_clients field contains a boolean to indicate if it is accessible to NSPE clients. RoT Services are always accessible to SPE clients.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | [client/server]_test_secure_access_only_connection()                              | Call psa_connect with SID which allow secure only connection.  <br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | psa_connect                                      | Yes                                      |
-| test_i009        | 1. psa_connect() does not return if SID is not mentioned in dependencies field. <br />2. Manifest parameter- dependencies (optional) <br />If access between a Secure Partition (acting as client) and a RoT Service (acting as server) is not specified in the manifest, then the client is not permitted to connect to the RoT Service.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | [client/server]_test_unextern_sid_connection()                                    | Call psa_connect with SID which is not mentioned as external SID in manifest.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | psa_connect                                      | Yes                                      |
-| test_i010        | It is not required for the minor_version or minor_policy attributes to be specified. If they are not specified in the manifest, the RoT Service will have default attributes of minor_version=1 and minor_policy="STRICT". psa_connect() does not return if requested version higher than minimum version                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | [client/server]_test_unspecified_policy_with_higher_minor_ver()                   | Call psa_connect with SID whose Version policy is not mentioned and requested minor version is HIGHER than minimum version. <br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | psa_connect                                      | Yes                                      |
-| test_i011        | It is not required for the minor_version or minor_policy attributes to be specified. If they are not specified in the manifest, the RoT Service will have default attributes of minor_version=1 and minor_policy="STRICT".  psa_connect() does not return if requested version lower than minimum version                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | [client/server]_test_unspecified_policy_with_lower_minor_ver()                    | Call psa_connect with SID whose Version policy is not mentioned and requested minor version is lower than minimum version. <br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | psa_connect                                      | Yes                                      |
-| test_i012        | psa_close() does not return if an invalid handle was provided that is not the null handle                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | [client/server]_test_psa_close_with_invalid_handle()                              | Call psa_close with INVALID_HANDLE which is not NULL. <br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | psa_close                                        | Yes                                      |
-| test_i013        | psa_get() does not return if signal has more than a single bit set                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | [client/server]_test_psa_get_with_more_than_one_signal()                          | Call psa_get with a signal who has more than a single bit set                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | psa_get                                          | Yes                                      |
-| test_i014        | After a RoT Service message is signaled, psa_get() function is used to retrieve the message details. Each message can only be retrieved once.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | [client/server]_test_psa_get_called_twice()                                       | Call psa_get with a valid signal back to back.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | psa_get                                          | Yes                                      |
-| test_i015        | psa_get() does not return if signal does not correspond to a RoT Service                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | [client/server]_test_psa_get_with_non_rot_signal()                                | Call psa_get with DOORBELL signal                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | psa_get                                          | Yes                                      |
-| test_i016        | psa_get() does not return if The RoT Service signal is not currently asserted                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | [client/server]_test_psa_get_with_unasserted_signal()                             | Call psa_get with singal which is currently not asserted                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | psa_get                                          | Yes                                      |
-| test_i017        | Each RoT Service listed creates a dependency from the client Partition to a server Partition. Within the resulting network of dependencies, there must be no circular dependencies between Secure Partitions. This would result in deadlock because the Service requests are always synchronous.For the same reason, a Secure Partition must not use a RoT Service that is defined within itself. Direct function calls must be used instead of IPC where there is a dependency between RoT Services within a single Secure Partition.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_partition_calling_its_own_rot_service()                      | Partition calling its own ROT service using psa_connect.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | psa_connect                                      | Yes                                      |
-| test_i018        | psa_set_rhandle() does not return  if an invalid message handle was provided                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | [client/server]_test_psa_set_rhandle_with_invalid_handle()                        | Call psa_set_rhanlde with an INVALID_HANDLE which is not NULL                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | psa_set_rhandle                                  | Yes                                      |
-| test_i019        | psa_set_rhandle() does not return if Null handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | [client/server]_test_psa_set_rhandle_with_null_handle()                           | Call psa_set_rhanlde with NULL handle                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | psa_set_rhandle                                  | Yes                                      |
-| test_i020        | If messgae type if is PSA_IPC_CONNECT then use of status values in psa_reply() other than PSA_SUCCESS or PSA_CONNECTION_REFUSED is a fatal programming error                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | [client/server]_test_psa_reply_with_invalid_connect_status_code()                 | Call to psa_reply during PSA_IPC_CONNECT with status code other than PSA_SUCCESS and PSA_CONNECTION_REFUSED                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | psa_reply                                        | Yes                                      |
-| test_i021        | If message type if PSA_IPC_CALL , the use of other reserved status codes in the range INT32_MIN+1 to INT32_MIN+127 for psa_reply() is a fatal programming error.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | [client/server]_test_psa_reply_with_invalid_call_status_code()                    | Call to psa_reply during PSA_IPC_CALL with status code other than allowed code                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | psa_reply                                        | Yes                                      |
-| test_i022        | psa_reply() does not return if the message handle is invalid                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | [client/server]_test_psa_reply_with_invalid_handle()                              | Call psa_reply with an INVALID_HANDLE which is not NULL                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | psa_reply                                        | Yes                                      |
-| test_i023        | psa_reply() does not return if the message handle is  Null handle                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | [client/server]_test_psa_reply_with_null_handle()                                 | Call psa_reply with a NULL HANDLE                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | psa_reply                                        | Yes                                      |
-| test_i024        | psa_call() does not return if an invalid handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | [client/server]_test_psa_call_with_invalid_handle()                               | Call psa_call with an INVALID_HANDLE which is not NULL.Perform this step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | psa_call                                         | Yes                                      |
-| test_i025        | psa_call() does not return if an null handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | [client/server]_test_psa_call_with_null_handle()                                  | Call psa_call with a NULL HANDLE. <br />Perform this step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | psa_call                                         | Yes                                      |
-| test_i026        | psa_call() does not return if  in_len + out_len > PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | [client/server]_test_psa_call_with_iovec_more_than_max_limit()                    | Call psa_call with more than four IOVECs. <br />Perform this step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | psa_call                                         | Yes                                      |
-| test_i027        | 1. psa_call() returns  PSA_DROP_CONNECTION when the connection has been dropped by the RoT Service. This indicates that either this or a previous message was invalid(The SPM will implement one of the following behaviors in this situation:¿ this is a client fatal error and psa_call() will not return¿ psa_call() returning PSA_DROP_CONNECTION. In this case, all subsequent calls to psa_call() on this connection will immediately return PSA_DROP_CONNECTION and the connection must be closed) <br />2. psa_reply(): If the message type is PSA_IPC_CALL and the client has made an invalid request, then the RoT Service can request for the connection to be terminated by calling psa_reply() with return value PSA_DROP_CONNECTION. After this, the RoT Service will receive no further PSA_IPC_CALL messages on that connection. The SPM will deliver a PSA_IPC_DISCONNECT to the RoT Service to release any resources associated with that connection.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | [client/server]_test_psa_drop_connection()                                        | RoT service executes psa_reply with status code eqaul to PSA_DROP_CONNECTION during PSA_IPC_CALL.Client expects either PSA_DROP_CONNECTION as returned status code  or does not return condition for psa_call. <br />Perform above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | psa_call                                         | Yes                                      |
-| test_i028        | psa_read() does not return if  msg_handle does not refer to a PSA_IPC_CALL message                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | [client/server]_test_psa_read_at_ipc_connect()                                    | Call psa_read during PSA_IPC_CONNECT                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | psa_read                                         | Yes                                      |
-| test_i029        | psa_read() does not return if   msg_handle does not refer to a PSA_IPC_CALL message                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | [client/server]_test_psa_read_at_ipc_disconnect()                                 | Call psa_read during PSA_IPC_DISCONNECT                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | psa_read                                         | Yes                                      |
-| test_i030        | psa_read() does not return if Null handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | [client/server]_test_psa_read_with_null_handle()                                  | Call psa_read with NULL handle                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | psa_read                                         | Yes                                      |
-| test_i031        | psa_read() does not return if  Invalid handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | [client/server]_test_psa_read_with_invalid_handle()                               | Calll psa_read with INVALID_HANDLE which is not NULL                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | psa_read                                         | Yes                                      |
-| test_i032        | psa_read() does not return if invec_idx is equal to PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | [client/server]_test_psa_read_with_invec_equal_to_max_iovec()                     | Call psa_read with invec_idx=PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | psa_read                                         | Yes                                      |
-| test_i033        | psa_read() does not return if  invec_idx is greater than PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_psa_read_with_invec_greater_than_max_iovec()                 | Call psa_read with invec_idx>PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | psa_read                                         | Yes                                      |
-| test_i034        | psa_skip() does not return if  msg_handle does not refer to a PSA_IPC_CALL message                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | [client/server]_test_psa_skip_at_ipc_connect()                                    | Call psa_skip during PSA_IPC_CONNECT                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | psa_skip                                         | Yes                                      |
-| test_i035        | psa_skip() does not return if  msg_handle does not refer to a PSA_IPC_CALL message                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | [client/server]_test_psa_skip_at_ipc_disconnect()                                 | Call psa_skip during PSA_IPC_DISCONNECT                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | psa_skip                                         | Yes                                      |
-| test_i036        | psa_skip() does not return if   Null handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_psa_skip_with_null_handle()                                  | Call psa_skipwith NULL handle                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | psa_skip                                         | Yes                                      |
-| test_i037        | psa_skip() does not return if  Invalid handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | [client/server]_test_psa_skip_with_invalid_handle()                               | Calll psa_skip with INVALID_HANDLE which is not NULL                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | psa_skip                                         | Yes                                      |
-| test_i038        | psa_skip() does not return if  invec_idx is equal to PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | [client/server]_test_psa_skip_with_invec_equal_to_max_iovec()                     | Call psa_skip with invec_idx=PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | psa_skip                                         | Yes                                      |
-| test_i039        | psa_skip() does not return if  invec_idx is greater than PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_psa_skip_with_invec_greater_than_max_iovec()                 | Call psa_skip with invec_idx>PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | psa_skip                                         | Yes                                      |
-| test_i040        | psa_write() does not return if   msg_handle does not refer to a PSA_IPC_CALL message                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | [client/server]_test_psa_write_at_ipc_connect()                                   | Call psa_write during PSA_IPC_CONNECT                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | psa_write                                        | Yes                                      |
-| test_i041        | psa_write() does not return if  msg_handle does not refer to a PSA_IPC_CALL message                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | [client/server]_test_psa_write_at_ipc_disconnect()                                | Call psa_write during PSA_IPC_DISCONNECT                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | psa_write                                        | Yes                                      |
-| test_i042        | psa_write() does not return if Null handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | [client/server]_test_psa_write_with_null_handle()                                 | Call psa_write with NULL handle                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | psa_write                                        | Yes                                      |
-| test_i043        | psa_write() does not return if  Invalid handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | [client/server]_test_psa_write_with_invalid_handle()                              | Calll psa_write with INVALID_HANDLE which is not NULL                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | psa_write                                        | Yes                                      |
-| test_i044        | psa_write() does not return if  invec_idx is equal to PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | [client/server]_test_psa_write_with_invec_equal_to_max_iovec()                    | Call psa_write with invec_idx=PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | psa_write                                        | Yes                                      |
-| test_i045        | psa_write() does not return if  invec_idx is greater than PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | [client/server]_test_psa_write_with_invec_greater_than_max_iovec()                | Call psa_write with invec_idx>PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | psa_write                                        | Yes                                      |
-| test_i046        | psa_write() does not return if  the call attempts to write data past the end of the client output vector                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | [client/server]_test_psa_write_with_size_overflow()                               | Call psa_write with a size input one byte bigger than allowed size                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | psa_write                                        | Yes                                      |
-| test_i047        | psa_get does not return if  The msg pointer provided is not a valid memory reference                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | [client/server]_test_psa_get_with_invalid_msg_pointer()                           | Call psa_get with invalid msg pointer. <br /> Selection of invalid pointer is as below:<br />if (ISOLATION_LEVEL > 1)<br />     // PSA RoT Pointer <br />      psa_get(msg_pointer = driver_mmio_base);<br />else<br />      psa_get(msg_pointer = NULL);<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | psa_get                                          | Yes                                      |
-| test_i048        | psa_call does not return if address of in_vec is invalid for client                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | [client/server]_test_psa_call_with_invalid_invec_pointer                          | Call psa_call with invalid address for invec<br /> Selection of invalid invec pointer is as below:<br />     if caller == NONSECURE<br />        // PSA RoT pointer<br />        invec_pointer = driver_mmio_base;<br /><br />     else<br /><br />        if (ISOLATION_LEVEL > 1)<br />           invec_pointer = driver_mmio_base;<br />        else<br />           invec_pointer = NULL;                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | psa_call                                         | Yes                                      |
-| test_i049        | psa_call does not return if  address of out_vec is invalid for client                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | [client/server]_test_psa_call_with_invalid_outvec_pointer()                       | Call psa_call with invalid address for outvec<br /> Selection of invalid outvec pointer is as below:<br />     if caller == NONSECURE<br />        // PSA RoT pointer<br />        outvec_pointer = driver_mmio_base;<br /><br />     else<br /><br />        if (ISOLATION_LEVEL > 1)<br />           outvec_pointer = driver_mmio_base;<br />        else<br />           outvec_pointer = NULL;                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | psa_call                                         | Yes                                      |
-| test_i050        | psa_call does not return if psa_invec.base address is invalid for client                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | [client/server]_test_psa_call_with_invalid_invec_base()                           | Call psa_call with invalid address for psa_invec.base<br /> Selection of invalid base is as below:<br />     if caller == NONSECURE<br />        // PSA RoT pointer<br />        invalid_base = driver_mmio_base;<br /><br />     else<br /><br />        if (ISOLATION_LEVEL > 1)<br />           invalid_base = driver_mmio_base;<br />        else<br />           invalid_base = NULL;                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | psa_call                                         | Yes                                      |
-| test_i051        | psa_call does not return if psa_outvec.base address is invalid for client                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | [client/server]_test_psa_call_with_invalid_outvec_base()                          | Call psa_call with invalid address for psa_outvec.base<br /> Selection of invalid base is as below:<br />     if caller == NONSECURE<br />        // PSA RoT pointer<br />        invalid_base = driver_mmio_base;<br /><br />     else<br /><br />        if (ISOLATION_LEVEL > 1)<br />           invalid_base = driver_mmio_base;<br />        else<br />           invalid_base = NULL;                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | psa_call                                         | Yes                                      |
-| test_i052        | psa_call does not return if psa_invec.base addr is valid but  psa_invec.base+size address is invalid for client                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | [client/server]_test_psa_call_with_invalid_invec_end_addr()                       | Call psa_call with valid address for psa_invec.base but (psa_invec.base + psa_invec.size) pointing to invalid address<br /> Selection of base and size are as below:<br />     if caller == NONSECURE<br />          valid_base = nspe_mmio_region_base;<br />          invalid_size = (driver_mmio_region_base - nspe_mmio_region_base + 1);<br /><br />     else<br /><br />        if (ISOLATION_LEVEL > 1)<br />          valid_base = client_mmio_region_base;<br />          invalid_size = (driver_mmio_region_base - client_mmio_region_base + 1);<br />                                                                                                                                                                                                                                                                                                                                                                           | psa_call                                         | Yes                                      |
-| test_i053        | psa_call does not return if psa_outvec.base addr is valid but  psa_invec.base+sizeaddress is invalid for client                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | [client/server]_test_psa_call_with_invalid_outvec_end_addr()                      | Call psa_call with valid address for psa_outvec.base but (psa_outvec.base + psa_outvec.size) pointing to invalid address<br /> Selection of base and size are as below:<br />     if caller == NONSECURE<br />          valid_base = nspe_mmio_region_base;<br />          invalid_size = (driver_mmio_region_base - nspe_mmio_region_base + 1);<br /><br />     else<br /><br />        if (ISOLATION_LEVEL > 1)<br />          valid_base = client_mmio_region_base;<br />          invalid_size = (driver_mmio_region_base - client_mmio_region_base + 1);<br />                                                                                                                                                                                                                                                                                                                                                                        | psa_call                                         | Yes                                      |
-| test_i054        | psa_call does not return if psa_outvec.base is not writable                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | [client/server]_test_psa_call_with_not_writable_outvec_base()                     | Call psa_call with not writable (function address - code memory) psa_outvec.base                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | psa_call                                         | Yes                                      |
-| test_i055        | psa_read does not return if  the memory reference for buffer is invalid                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | [client/server]_test_psa_read_with_invalid_buffer_addr()                          | Call psa_read with invalid buffer addr.<br />Selection of buffer address is as below:<br />if (ISOLATION_LEVEL > 1)<br />          buffer = driver_mmio_region_base;<br />else <br />         buffer = NULL; <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | psa_read                                         | Yes                                      |
-| test_i056        | psa_read does not return if  the memory reference for buffer is not writable                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | [client/server]_test_psa_read_with_not_writable_buffer_addr()                     | Call psa_read with not writable (function address- code memory)                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | psa_read                                         | Yes                                      |
-| test_i057        | psa_write does not return if the memory reference for buffer is invalid                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | [client/server]_test_psa_write_with_invalid_buffer_addr()                         | Call psa_write with invalid buffer addr.<br /> Selection of buffer address is as below:<br />if (ISOLATION_LEVEL > 1)<br />          buffer = driver_mmio_region_base;<br />else <br />         buffer = NULL; <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | psa_write                                        | Yes                                      |
-| test_i058        | 1. psa_notify() is used to asynchronously wake up another Secure Partition. The receiving partition uses psa_wait() to detect, or wait for, assertion of its PSA_DOORBELL signal. The value of partition_id must be greater than zero as the target of notification must be a Secure Partition. <br />2. psa_clear() clears the PSA_DOORBELL signal.  <br />3. psa_clear(): The target Partition doorbell will remain asserted until it calls psa_clear().                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | [client/server]_test_psa_doorbell_signal()                                        | 1. Client connects to RoT service. <br />2. RoT services executes asserts PSA_DOORBELL singal back to client after accepting the connection.<br />3. Client checks the delivery of PSA_DOORBELL singal using psa_wait().<br />4. Client clears the doorbell and closes the connection. <br />5. RoT service receives the closing connection request.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | psa_notify,psa_wait,psa_clear                    | Yes                                      |
-| test_i059        | psa_notify does not return if Partition ID does not correspond to a Secure Partition                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | [client/server]_test_psa_notify_with_neg_part_id()                                | Call psa_notify with negative partition id                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | psa_notify                                       | Yes                                      |
-| test_i060        | psa_notify does not return if Partition ID does not correspond to a Secure Partition                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | [client/server]_test_psa_notify_with_invalid_pos_part_id()                        | Call psa_notify with positive partition id which does not exist in the platform                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | psa_notify                                       | Yes                                      |
-| test_i061        | psa_clear does not return if The Secure Partition¿s doorbell signal is not currently asserted                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | [client/server]_test_psa_clear_at_unasserted_doorbell_sig()                       | Call psa_clear when doorbell signal is not asserted                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | psa_clear                                        | Yes                                      |
-| test_i062        | psa_wait() does not return signal_mask does not include any assigned signals.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | [client/server_test_psa_wait_with_unassigned_signal()                             | Call psa_wait with signal mask that doesn't include any assigned signal                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | psa_wait                                         | Yes                                      |
-| test_i063        | psa_wait() returns the Secure Partition interrupt signals that have been asserted from the subset of signals indicated in the bitmask provided. The mask must contain the set of signals the caller is interested in handling. Signals that are not in signal_mask should be ignored.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | [client/server]_test_psa_wait_signal_mask()                                       | 1. Select signal_mask =   (SERVER_UNSPECIFED_MINOR_V_SIG | SERVER_RELAX_MINOR_VERSION_SIG); <br />2. Server partition requests the client partition to make connection using  sid=SERVER_SECURE_CONNECT_ONLY_SID.  This connection request act as irritator to psa_wait(signal_mask) call and it is used to cover the rule - Signals that are not in signal_mask should be ignored by psa_wait.<br />3. NSPE client connects to a server partition using SID whose signal are part of signal_mask<br />4. Server partition executes psa_wait with necessary signal_mask. RoT service checks that returned signal value is subset of signals indicated in the signal_mask <br /> 5. At the end, server partition completes the starved (irritator) connection request of SERVER_SECURE_CONNECT_ONLY_SID.                                                                                                                                    | psa_wait                                         | Yes                                      |
-| test_i064        | psa_eoi does not return if irq_signal is not an interrupt signal                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | driver_test_psa_eoi_with_non_intr_signal()                                        | Call to psa_eoi with non-interrupt signal(PSA_DOORBELL).<br /> Note: The interrupt related test check is captured in driver_partition.c as this is the only partition in test suite that holds the interrupt line.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | psa_eoi                                          | Yes                                      |
-| test_i065        | psa_eoi does not return if irq_signal is not currently asserted                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | driver_test_psa_eoi_with_unasserted_signal()                                      | Call to psa_eoi with interrupt signal which is currently not asserted.<br /> Note: The interrupt related test check is captured in driver_partition.c as this is the only partition in test suite that holds the interrupt line.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | psa_eoi                                          | Yes                                      |
-| test_i066        | psa_eoi does not return if irq_signal indicates more than one signal                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | driver_test_psa_eoi_with_multiple_signals()                                       | Call to psa_eoi with irq_signal provided with multiple signals.<br /> Note: The interrupt related test check is captured in driver_partition.c as this is the only partition in test suite that holds the interrupt line.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | psa_eoi                                          | Yes                                      |
-|                  | 1. psa_wait() returns the Secure Partition interrupt signals that have been asserted from the subset of signals indicated in the bitmask provided. (psa_wait API to recieve interrupt signal) <br />                                                                      2. psa_eoi():Informs the SPM that an interrupt has been handled (end of interrupt). This will re-enable the interrupt line. <br />3.psa_eoi(): A signal remains active until it is processed by psa_eoi <br />4. Manifest- irqs (optional, unique)This attribute is a list of IRQ lines which are assigned to the Secure Partition.A Secure Partition always has exclusive access to an assigned IRQ. Secure Partitions are not allowed to share IRQs with other Secure Partitions.Each IRQ specified must provide a signal field. This field contains a symbolic name for the signal, used by the SPM to indicate when the interrupt is asserted. Each IRQ line is declared as either of the following:¿ line_num: A valid IRQ number for the platform.¿ line_name: A named IRQ, represented by a string identifier.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            |                                                                                   | The test for this scenario will be implemented in future release for PSA Test suite. Test Limitation:<br />1. Rules around sharing of irq lines can't be tested as specifiying it can result into build error.<br />2. Test suite partition manifests are rely on only line_num for specifying irq line number as line_name is subject to resolved in Implementation defined manner.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | psa_wait,psa_eoi                                 | No                                       |
-|                  | Only Code is executable in secure partition                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                |                                                                                   | The test for this scenario will be implemented in future release for PSA Test suite. Checks:<br />1. Execute instruction from writable memory<br />2. Execute instruction from read-only data                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              |                                                  | No                                       |
-|                  | Only Private data is writable in secure partition                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          |                                                                                   | The test for this scenario will be implemented in future release for PSA Test suite. Checks:<br />1. Write to code space<br />2. Write to constant data space                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              |                                                  | No                                       |
-|                  | Isolation Level-1 rules:<br />I3: If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. From B access below asserts of A:<br />- Variables<br />- Execution stacks<br />- Allocation heap<br />- Memory-mapped I/O regions<br /><br />Where, A & B combination are:<br />A=Application RoT & B=NSPE<br />A=PSA RoT & B=NSPE<br />A=SPM & B=NSPE                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        |                                                                                   | The test for this scenario will be implemented in future release for PSA Test suite.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       |                                                  | No                                       |
-|                  | Isolation Level-2 rules- In addition to the Level 1 requirements, Level 2 firmware isolation must follow below rule:<br />I3: If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. From B access below asserts of A:<br />- Variables<br />- Execution stacks<br />- Allocation heap<br />- Memory-mapped I/O regions<br /><br />Where, A & B combination are:<br />A=PSA RoT partition & B=Application RoT partition<br />A=SPM & B=Application RoT partition                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        |                                                                                   | The test for this scenario will be implemented in future release for PSA Test suite.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       |                                                  | No                                       |
-|                  | Isolation Level-3 rules- In addition to the Level 2 requirements, Level 3 firmware isolation must follow below rule:<br />I3: If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. From B access below asserts of A:<br />- Variables<br />- Execution stacks<br />- Allocation heap<br />- Memory-mapped I/O regions<br /><br />Where, A & B combination are:<br />A=Secure Partition & B= Other Secure Partition<br />A=SPM & B=Secure Partition                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    |                                                                                   | The test for this scenario will be implemented in future release for PSA Test suite.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       |                                                  | No                                       |
-|                  | A Secure Partition is guaranteed to be able to read and write its private heap regions.<br />Manifest Parameter- heap_size. Properties: Optional.This attribute indicates the Secure Partition¿s heap size in bytes.The size value is represented either as a positive integer or as a hexadecimal string.If this field is specified in the manifest then the value must be greater than 0. If this field is not specified in the manifest then the SPM can assume the size is 0.If the framework does not implement the dynamic memory allocation API, then a manifest which specifies a heap_size must produce a build error.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            |                                                                                   | The test for this scenario will be implemented in future release for PSA Test suite. Check that specified heap memory  is writable using malloc function.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  |                                                  | No                                       |
-| NO_EXPLICIT_TEST | A Secure Partition is guaranteed to be able to  read and write its private stack. <br />Manifest Parameter- stack_size (required) <br />Partition's stack size in bytes. The size value must be represented either as a positive integer or as a hexadecimal string.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | N/A                                                                               | No explicit test written to cover this rule. PSA IPC tests manifests are provided with tests partition required stack_size.  A successful execution of tests partition code without stack access related faults, indirectly verify this field.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | N/A                                              | Yes                                      |
-| NO_EXPLICIT_TEST | mmio_regions (optional, unique): <br />List of memory-mapped I/O region objects which the Secure Partition needs access to.  A Secure Partition always has exclusive access to an MMIO region. Secure Partitions are not permitted to share MMIO regions with other Secure Partitions.<br />An MMIO region can be defined either as a:<br />numbered_region<br />named_region<br />A numbered region consists of a base address and a size. The size must be represented either as a positive integer or as a hexadecimal string. The base address must be represented as a hexadecimal string.<br />MMIO regions must not overlap.<br />An MMIO region must include a permission attribute. The following permissions are available:<br />READ-ONLY<br />READ-WRITE                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | N/A                                                                               | Comments:<br />1. PSA IPC tests device driver partition manifests are provided with these fields. A successful compilation and run of device driver partition code indirectly verify this field. <br  />2. Rules around sharing of MMIO regions is covered as part of isolation tests.<br  />3. Rules around overlapping of MMIO regions can't be tested as specifying that into manifest results into compilation fail. <br />4. Test suite partition manifests are rely on numbered_region only as named_region is subject to resolved in Implementation defined manner.                                                                                                                                                                                                                                                                                                                                                                 | N/A                                              | Yes                                      |
-| NO_EXPLICIT_TEST | Manifest Parameter - id (required, unique):A Secure Partition ID must be a non-zero positive 32-bit value.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | N/A                                                                               | PSA IPC tests partitions are provided with unique Partition ID (which is non-zero positive) and name field compliant to manifest rules.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | N/A                                              | Yes                                      |
-| NO_EXPLICIT_TEST | Manifest Parameter-  type (required) <br />Whether the Partition is a part of the PSA Root of Trust Services or is part of the Application Root of Trust Services.Type must be assigned one of the following values:- APPLICATION-ROT- PSA-ROT                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | N/A                                                                               | PSA IPC tests partition files are provided with these fields. Access permission behaviour related to these fields will be verified as part of tests covering isolation level rules.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | N/A                                              | Yes                                      |
-| NO_EXPLICIT_TEST | Manifest Parameter - description (optional) <br />This attribute contains a human-readable description and comments for the Secure Partition.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | N/A                                                                               | Test suite manifests are provided with these field with adhere to manifest rules. Manifest build tool parser must parse this field without any compilation fail.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | N/A                                              | Yes                                      |
-| NO_EXPLICIT_TEST | Manifest Parameter -entry_point (required, unique) <br />The Partition entry point in the form of an C function symbol. A single entry point must be provided.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | N/A                                                                               | No explicit test written to cover this rule. Test suite manifests are provided with tests partition entry_point.  A successful launch and run of tests partition code indirectly verify this field.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | N/A                                              | Yes                                      |
-| NO_EXPLICIT_TEST | Manifest Parameter- linker_pattern(Required) <br />This attribute contains the minimum information required to link a Secure Partition¿s compiled static objects. It contains a mandatory sub attribute called object_list.The object_list is an explicit list of the expected binary objects of a Secure Partition once it is compiled. For example, this list may contain the names of the main entry-point binary and any other static library objects that the Secure Partition contains.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | N/A                                                                               | No explicit test written to cover this rule. Test suite manifests are provided with linker_pattern filled with required tests partition object archives. A successful use of this field to launch the partitions and fullfilling the PSA defined isolation requirement which are also being verified in isolation tests,  indirectly verify this field.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | N/A                                              | Yes                                      |
-| NO_EXPLICIT_TEST | The SPM must eventually deliver all signals and IPC messages.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | N/A                                                                               | No explicit test written to cover this rule. However all PSA IPC tests are written with the expectation that the SPM delivers all requested signals and IPC message in a timely fashion. Failure to provide this will result in simulation time out.  <br />This rule is unbounded and cannot have full coverage. It is good to that things are delivered in a timely manner, however failure will not break compliance.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | N/A                                              | Yes                                      |
-| NO_EXPLICIT_TEST | A Secure Partition is guaranteed to be able to  execute and read its own code regions and read its own read-only data regions.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | N/A                                                                               | No explicit test written to cover this rule. This is a minimum requirement to able to launch and run secure partition. Failing to provide this, will not be able to run IPC test suite.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | N/A                                              | Yes                                      |
-| NOT_COVERED      | psa_get returns PSA_ERR_NOMSG if the SPM cannot deliver a message to the Secure Partition following the assertion of the RoT Service signal.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | N/A                                                                               | This scenario cannot be simulated as test can't generate stimulus where psa_get() API returns PSA_ERR_NOMSG. However every instances of psa_get() API call in test suite checks the API return value and re-waits for signal delivery if return value is PSA_ERR_NOMSG.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | psa_get                                          | No                                       |
-| NOT_COVERED      | psa_call  does not return if the connection is already handling a request.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | N/A                                                                               | This rule is not verified beacuse of following reasons: <br />- There is no common infrastructure to test this rule as this needs two OS specific tasks where one task interrupted during execution of psa_call or psa_close  and second task scheduled to execute psa_call using same handle.<br />- It is hard to write test stimulus where this rule is always hit as it is highly dependent of platform software scheduling policy. <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | psa_call                                         | No                                       |
-| NOT_COVERED      | psa_close does not return if the connection is already handling a request                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | N/A                                                                               | This rule is not verified beacuse of following reasons: <br />- There is no common infrastructure to test this rule as this needs two OS specific tasks where one task interrupted during execution of psa_call or psa_close  and second task scheduled to execute psa_close using same handle.<br />- It is hard to write test stimulus where this rule is always hit as it is highly dependent of platform software scheduling policy. <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | psa_close                                        | No                                       |
-| NOT_COVERED      | Manifest Parameter - priority (required) <br />Partitions must be assigned one of the following priority groups:¿ HIGH¿ NORMAL¿ LOWLOW is the lowest priority. Priority is ignored by SPMs that do not implement any priority-based scheduling.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | N/A                                                                               | Use of these fields are highly dependent on type of SPM scheduling policy, hence can't test the behavious of this field. And test suite partition manifests are provided with priority field equal to LOW.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | N/A                                              | No                                       |
-| NOT_COVERED      | Secure Partition IDs must be fixed across updates                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | N/A                                                                               | Checking for Partition IDs across SPM updates is out of scope for PSA IPC tests.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | N/A                                              | No                                       |
+| Tests            | Scenario Rules                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | Client- Server Test Functions Pair                                                                                                                                                       | Test Algorithm/Comments/Test Limitation                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | Rule optional for API compliance? | Is scenario implemented in this release? |
+|------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-----------------------------------|------------------------------------------|
+| test_i001        | 1. psa_framework_version(): Retrieve the version of the PSA Framework API that is implemented. Manifest field- psa_framework_version: Version of the PSA Firmware Framework specification this manifest conforms to.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | [client/server]_test_psa_framework_version()                                                                                                                                             | Call the psa_framework_version() API from both SPE and NSPE side and compare the return value with PSA_FRAMEWORK_VERSION.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | Mandatory                         | Yes                                      |
+|                  | 1. psa_version() returns PSA_VERSION_NONE when the RoT Service is not implemented, or the caller is not permitted to access the service OR return > 0 with the minor version of the implemented RoT Service.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | [client/server]_test_psa_version()                                                                                                                                                       | 1. Pass un-implemented SID and expects PSA_VERSION_NONE as return value. <br />2. Call to API from NSPE with a SID who doesn't provide service to NSPE and expects PSA_VERSION_NONE as return value. <br />3. Pass SID who is implemented and provides service to NSPE and expect  minor number(>0) of given RoT service as return. <br />Perform all above checks from SPE too.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | Mandatory                         | Yes                                      |
+| test_i002        | 1. psa_connect() returns the PSA_ERROR_CONNECTION_BUSY when RoT Service cannot make the connection at the moment (transient error). <br />2. psa_connect() returns the PSA_ERROR_CONNECTION_REFUSED when RoT Service has refused the connection <br />3. psa_wait() returns the Secure Partition interrupt signals that have been asserted from a subset of signals provided by the caller. Returns > 0 when at least one signal is asserted <br />4. psa_get():Get the message which corresponds to a given RoT Service signal and remove the message from the queue.  <br />5. psa_get() returns PSA_SUCCESS when *msg will contain the delivered message. <br />6. The type member of the psa_msg_t object should return PSA_IPC_CONNECT for a new connection request following a psa_get() call to psa_connect() and msg.handle must be positive. <br />7. psa_reply():  If the message type is PSA_IPC_CONNECT then server can reject the connection by sending PSA_ERROR_CONNECTION_REFUSED (permanent error) or PSA_ERROR_CONNECTION_BUSY (transient error) status code. <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_connection_busy_and_reject()                                                                                                                                        | 1. Client tries to connect to ROT service using psa_connect() <br />2. RoT service checks the delivery of  PSA_IPC_CONNECT message type and positive handle value returned by psa_get()  <br />3. RoT service rejects the connection by executing psa_reply(handle,PSA_ERROR_CONNECTION_BUSY) <br />4. Client tries to connect to same ROT service using psa_connect() again <br />5. This time, RoT service rejects the connection by executing psa_reply(handle,PSA_ERROR_CONNECTION_REFUSED) <br />Perform all above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                      | Mandatory                         | Yes                                      |
+|                  | 1. psa_connect(): When SID is implemented and client is permitted to access the service, SPM delivers a PSA_IPC_CONNECT message from the client to the Secure Partition that implements the RoT Service and positive handle is returned to client. <br />2. psa_get():Get the message which corresponds to a given RoT Service signal and remove the message from the queue. <br />3. psa_get() returns PSA_SUCCESS when *msg will contain the delivered message <br />4. psa_get():The type member of the psa_msg_t object should return PSA_IPC_CONNECT for a new connection request following a psa_get() call to psa_connect() and msg.handle must be positive. <br />5. psa_get(): The type member of the psa_msg_t object should return PSA_IPC_DISCONNECT for a new connection request following a psa_get() call to psa_close() and msg.handle must be positive. <br />6. psa_reply():  If the message type is PSA_IPC_CONNECT then server can accept the connection by sending PSA_SUCCESS status code. If the message type is PSA_IPC_DISCONNECT then the status code is ignored. <br />7. psa_close(): Closes a connection to a RoT Service. Sends the PSA_IPC_DISCONNECT message to the RoT Service.  This function will have no effect if called with the null handle. <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | [client/server]_test_accept_and_close_connect()                                                                                                                                          | 1.Client tries to connect to ROT service <br /> 2. RoT service checks the delivery of  PSA_IPC_CONNECT message type and positive handle value return by psa_get() <br />3. RoT service  accepts the connection by executing psa_reply(.., PSA_CONNECTION_ACCEPTED).  <br />4. Client calls the psa_close with PSA_NULL_HANDLE and later it closes the connection using psa_close() with actual handle value <br />5. RoT service checks the delivery of  PSA_IPC_DISCONNECT message type, checks handle value eqaul to NULL returned by psa_get() and completes the PSA_IPC_DISCONNECT by executing psa_reply() . <br />Perform all above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                    | Mandatory                         | Yes                                      |
+|                  | Following are allowed minor version condition to psa_connect(): <br />  1. Version policy is not mentioned and requested version is 1 which is default minimum version  <br />2. Version policy is STRICT and requested version equals minimum version  <br />3. Version policy is relaxed and requested version is smaller than the minimum version  <br /> 4. Version policy is relaxed and requested version is euqal to the minimum version  <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | [client/server]_test_connect_with_allowed_minor_version_policy()                                                                                                                         | Client tries connecting ROT service of following properties and expects connection to establish: <br />   - Version policy is not mentioned and requested version is 1 which is default minimum version  <br />   - Version policy is STRICT and requested version equals minimum version  <br />   - Version policy is relaxed and requested version is smaller than the minimum version  <br />  - Version policy is relaxed and requested version is equal to the minimum version  <br />Perform all above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                | Mandatory                         | Yes                                      |
+|                  | 1. psa_call(): The valid psa_call, make SPM to send PSA_IPC_CALL msg.type to the RoT servicee partition and the successful call should return >=0 handle value.  <br />2. psa_call() receives return value >= 0 for RoT-specific return code <br />3. psa_call() receive return value  < 0 for RoT-specific error code <br />4. psa_reply():  If the message type is PSA_IPC_CALL, all status codes other than PSA_ERROR_PROGRAMMER_ERROR must be reported to the client.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | [client/server]_test_psa_call_with_allowed_status_code()                                                                                                                                 | 1. Client connects to RoT service <br />2. Client sends message using psa_call() <br />3.  RoT service checks the delivery of  PSA_IPC_CALL message type and positive handle value  return by psa_get()  <br />4. RoT service ends the call using psa_reply(status_code) <br />5. Client checks the return value of psa_call() and Client closes the connectionRepeat (1) to (5) for different status code, SUCCESS, +ve, -ve.. <br />Perform all above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                      | Mandatory                         | Yes                                      |
+|                  | 1. A msg.client_id that has a positive value indicates that the client is in the SPE and this the Secure Partition ID of the client. A negative client_id indicates that the client is in the NSPE.  <br />2. Client_id is valid during PSA_IPC_CONNECT, PSA_IPC_CALL and PSA_IPC_DISCONNECT msg type. <br />3. Manifest Parameter-  name (required, unique) <br />A Partition must have an alphanumeric name for source code to directly refer to a specific Partition. The format of the name must follow the rules of a C macro.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | [client/server]_test_identity()                                                                                                                                                          | - Check the value returned by msg.client_id during PSA_IPC_CONNECT, PSA_IPC_CALL and PSA_IPC_DISCONNECT. For NSPE connection, client_id should be <0 and for SPE, it should be >0.  <br />Perform all above steps from NSPE and SPE both. <br />- Access the Partition ID of client partition and compare the value with expected ID value.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | Mandatory                         | Yes                                      |
+|                  | 1. psa_connect() will return the PSA_ERROR_CONNECTION_REFUSED  OR PSA_ERROR_CONNECTION_BUSY when the SPM has reached the limit of concurrent connections                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | [client/server]_test_spm_concurrent_connect_limit()                                                                                                                                      | Execute psa_connect() API in a loop until it returns PSA_CONNECTION_REFUSED or PSA_CONNECTION_BUSY to indicate end of concurrent connections limit. <br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | Mandatory                         | Yes                                      |
+|                  | 1. psa_wait(): When MODE(PSA_BLOCK) is one, the function will block the caller until one of the requested signals is asserted.   <br />2.  psa_wait(): Callers must set RES to zero, implementations must ignore the value of RES. <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | [client/server]_test_psa_block_behave()                                                                                                                                                  | 1. Client connects to a RoT service mutilpe times.  <br />2. RoT service psa_wait(PSA_BLOCK|(Non-zero value for timeout[30:0])) API is executed without while(1) loop.  <br />3.  RoT service serves the connections by rejecting them.   <br />This is a sanity check, a successful handshaking between client and server for requested connection  represents check pass. <br />Perform above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | Mandatory                         | Yes                                      |
+|                  | 1. psa_wait(): When MODE is zero, the function will return immediately with the current signal state, which can be zero if no signals are active.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | [client/server]_test_psa_poll_behave()                                                                                                                                                   | 1. Client connects to a RoT service mutilpe times.  <br />2. RoT service executes psa_wait(PSA_POLL)  in a while loop and checks the API's polling behaviour.  <br />3. Call psa_wait(PSA_POLL) when no request is made by client and checks the return value. <br />Perform above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | Mandatory                         | Yes                                      |
+| test_i003        | 1. The reverse handle for a connection is NULL until psa_set_rhandle() is used.  psa_set_rhandle() can be used to associate some caller-provided private data with a specified client connection. And SPM must provide same rhandle for msg.rhandle with all subsequent messages delivered on this connection. On success the rhandle is retained by the implementation and provided in all future messages on that connection as part of the psa_msg_t structure.  <br />2. Setting the rhandle for a connection during disconnection has no observable effect.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | [client/server]_test_psa_set_rhandle()                                                                                                                                                   | 1. Client connects to RoT service and RoT service checks the value of msg.rhanlde value duing PSA_IPC_CONNECT2. Client send call msg to RoT service and RoT service checks the value of msg.rhanlde value duing PSA_IPC_CONNECT <br />3. ROT service sets the rhandle with known value. <br />4. Client send call msg to RoT service and RoT service now compare the value of msg.rhanndle  with previously set value <br />5. ROT service sets the rhandle with known value other than previously set value <br />6. Client send call msg to RoT service and RoT service now compare the value of msg.rhanndle with last set value <br />7. The reverse handle for a connection is NULL until psa_set_rhandle() is used <br />Perform above steps from NSPE and SPE both.                                                                                                                                                                 | Mandatory                         | Yes                                      |
+|                  | 1. psa_call():The caller can optionally provide one or more buffers to receive a response (out_vec). <br />2. psa_get(): The array in_size provides the size of each client input vector in bytes. The array out_size provides the size of each client output vector in bytes. <br />3. psa_read(): parameter from the client input vector. Streams up to the next num_bytes bytes of client input vector invec_idx in the message identified by msg_handle to the Secure Partition buffer. Returns the number of bytes copied. <br />4. psa_read(): If num_bytes is less than or equal to the available data in the input vector then num_bytes are copied to buffer, and the remaining data in the input vector can be read by subsequent calls to psa_read() with the same msg_handle and invec_idx. <br />5. psa_read(): RoT Services can determine how much data is available to read from the message based on the in_size[] attribute of the psa_msg_t message returned from psa_get(). If an input vector has not been passed by the client then the corresponding in_size[] for that vector is zero. <br />6. psa_read(): If num_bytes is greater than the remaining data in the input vector then the remaining input bytes are copied to buffer and the call returns the number of bytes copied. Any space after this in buffer is not modified. Subsequent calls of psa_read() or psa_skip() with the same message input vector will report that there is no more data in the vector. <br />7. psa_skip(): Skip over part of a client input vector. Advances the current read offset by skipping up to num_bytes bytes for input vector invec_idx in the message identified by msg_handle. psa_skip(): When psa_skip returns, it returns with the number of bytes skipped  <br />8. psa_skip(): If There was no remaining data in this input vector, return zero <br />9.psa_skip(): If num_bytes is greater than the remaining size of the input vector then the remaining size of the input vector is returned. Subsequent calls of psa_read() or psa_skip() with the same message input vector will report that there is no more data in the vector. <br /> | [client/server]_test_call_read_and_skip()                                                                                                                                                | 1.Client connects to RoT service <br />2.Client sends four input vectors to RoT service using psa_call <br />3. RoT service checks following: <br />    - Reporting of input vectors size through msg.in_size <br />    - Input vectors content reading through psa_read <br />    -Inbound /Outbound offset reading <br />    -Inbound/Outbound  offset skipping <br />    -Zero byte read and skip <br />    -out_len=0 check <br />4. Client recieves the status of  RoT service checks and closes the connection <br />Perform above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                     | Mandatory                         | Yes                                      |
+|                  | 1. psa_call(): The caller can optionally provide one or more buffers to receive a response (out_vec). On return from psa_call() the len value will have been updated to indicate the number of bytes of data written to the buffer by the RoT Service. <br />2. psa_write(): Appends num_bytes of data from buffer to the client output vector outvec_idx in the message identified by msg_handle. Sequential calls using the same msg_handle and outvec_idx will be concatenated in the output vector                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_call_and_write()                                                                                                                                                    | 1. Client connects to RoT service <br />2. Client sends four output vectors to RoT service using psa_call <br />3. RoT service checks following: <br />  - Reporting of output vectors size through msg.out_size <br />  - in_len=0 check <br />  - zero byte write <br />  - Out vector writes using psa_write <br />   -  Vector write concatenation <br />4. Client recieves the status of RoT service checks, cross check the content of out vectors and closes the connection <br />Perform above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                       | Mandatory                         | Yes                                      |
+|                  | 1.  psa_call():  Any I/O vector of length zero is permitted and will be treated as an empty or non-existent vector by the framework. When less than four vectors are provided to psa_call() for either input or output, then the remaining vectors have zero length and the in_size and out_size elements for these vectors will be zero.A memory reference contains a start address and an associated length. A zero-length memory reference is one where the length is zero. The start address of a zero-length memory reference can safely take any value and must be ignored by the implementation. <br />2. psa_call(): If in_len is zero then in_vec is ignored  <br />3. sa_call(): If out_len is zero then out_vec is ignored  <br />4. psa_get(): If an input and output vector has not been passed by the client then the corresponding in_size[] and out_size[] for that vector is zero.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | [client/server]_test_zero_length_invec()[client/server]_test_zero_length_outvec()                                                                                                        | Test zero lenth input vector: <br />1. Client connects to RoT service <br />2. Client sends three input and one outvec vectors to RoT service using psa_call - invec 0 as zero length vector, invec 1 as NULL and invec 2 and outvec 0 as non-zero length vector <br />3. RoT service checks size of each vectors reported through msg.in_size and msg.out_size <br />4. Client recieves the status of checks and closes the connection <br />Test zero lenth output vector: <br />1. Client connects to RoT service <br />2. Client sends one  input and three outvec vectorsto RoT service using psa_call - outvec 0 as zero length vector, outvec 0 as NULL and invec 0 and outvec 2 as non-zero length vector <br />3. RoT service checks size of each vectors reported through msg.in_size and msg.out_size <br />4. Client recieves the status of checks and closes the connection <br />Perform above steps from NSPE and SPE both. | Mandatory                         | Yes                                      |
+|                  | 1. When client provides an input and output vectors which are referencing to same memory location, a psa_read after psa_write to the same memory location can return original or modified value.  <br />2. When client provides an input and output vectors which are referencing to same memory location, a psa_write(s) to both memory vectors can return either the 1st or the 2nd value written.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | [client/server]_test_overlapping_vectors                                                                                                                                                 | 1. Client provides one input and 2 output vectors which are pointing to same location.  <br />2. RoT service performs read after write operation on to outvec-0 and expects return value either modified one or the original  <br />3. RoT service performs write operation to outvec-1 and unblock the connection. The write performed is to mimic write after write operatio to the overlapping vector. <br />4. Client check the value of outvec. The value should be either the value written by first psa_write or the second psa_write.                                                                                                                                                                                                                                                                                                                                                                                              | Mandatory                         | Yes                                      |
+| test_i004        | The call to psa_connect() is PROGRAMMER ERROR if RoT Service does not exist on platform                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | [client/server]_test_sid_does_not_exists()                                                                                                                                               | Call psa_connect with SID which does not exist on a platform and expect PROGRAMMER ERROR behaviour.<br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | Optional                          | Yes                                      |
+| test_i005        | The call to psa_connect() is PROGRAMMER ERROR if Version policy is STRICT and requested version is HIGHER than minimum version                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | [client/server]_test_strict_policy_higher_minor_version()                                                                                                                                | call psa_connect with SID whose Version policy is STRICT and requested minor version is HIGHER than minimum version and expect PROGRAMMER ERROR behaviour.<br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | Optional                          | Yes                                      |
+| test_i006        | The call to psa_connect() is PROGRAMMER ERROR if Version policy is STRICT and requested version lower than minimum version                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | [client/server]_test_strict_policy_lower_minor_version()                                                                                                                                 | call psa_connect with SID whose Version policy is STRICT and requested minor version is Lower than minimum version. <br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | Optional                          | Yes                                      |
+| test_i007        | The call to psa_connect() is PROGRAMMER ERROR if Version policy is RELAXED and requested version is bigger than minimum version                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | [client/server]_test_relax_policy_higher_minor_version()                                                                                                                                 | call psa_connect with SID whose Version policy is RELAXED and requested minor version is HIGHER than minimum version and expect PROGRAMMER ERROR behaviour. <br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | Optional                          | Yes                                      |
+| test_i008        | 1. The call to psa_connect() is PROGRAMMER ERROR  if service to non_secure_client is not available <br />2. Manifest parameter - The non_secure_clients field contains a boolean to indicate if it is accessible to NSPE clients. RoT Services are always accessible to SPE clients.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | [client/server]_test_secure_access_only_connection()                                                                                                                                     | Call psa_connect with SID which allow secure only connection and expect PROGRAMMER ERROR behaviour.<br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | Optional                          | Yes                                      |
+| test_i009        | 1. The call to psa_connect() is PROGRAMMER ERROR if SID is not mentioned in dependencies field. <br />2. Manifest parameter- dependencies (optional) <br />If access between a Secure Partition (acting as client) and a RoT Service (acting as server) is not specified in the manifest, then the client is not permitted to connect to the RoT Service.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | [client/server]_test_unextern_sid_connection()                                                                                                                                           | Call psa_connect with SID which is not mentioned as external SID in manifest and expect PROGRAMMER ERROR behaviour.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | Optional                          | Yes                                      |
+| test_i010        | It is not required for the minor_version or minor_policy attributes to be specified. If they are not specified in the manifest, the RoT Service will have default attributes of minor_version=1 and minor_policy="STRICT". In this case, the call to psa_connect() is PROGRAMMER ERROR if requested version higher than minimum version.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | [client/server]_test_unspecified_policy_with_higher_minor_ver()                                                                                                                          | Call psa_connect with SID whose Version policy is not mentioned and requested minor version is HIGHER than minimum version and expect PROGRAMMER ERROR behaviour. <br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | Optional                          | Yes                                      |
+| test_i011        | It is not required for the minor_version or minor_policy attributes to be specified. If they are not specified in the manifest, the RoT Service will have default attributes of minor_version=1 and minor_policy="STRICT".  In this case, the call to psa_connect() is PROGRAMMER ERROR if requested version lower than minimum version                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | [client/server]_test_unspecified_policy_with_lower_minor_ver()                                                                                                                           | Call psa_connect with SID whose Version policy is not mentioned and requested minor version is lower than minimum version and expect PROGRAMMER ERROR behaviour.<br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | Optional                          | Yes                                      |
+| test_i012        | The call to psa_close() is PROGRAMMER ERROR if an invalid handle was provided that is not the null handle                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | [client/server]_test_psa_close_with_invalid_handle()                                                                                                                                     | Call psa_close with INVALID_HANDLE which is not NULL and expect PROGRAMMER ERROR behaviour.<br />Perform above step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | Optional                          | Yes                                      |
+| test_i013        | The call to psa_get() is PROGRAMMER ERROR if signal has more than a single bit set                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | [client/server]_test_psa_get_with_more_than_one_signal()                                                                                                                                 | Call psa_get with a signal who has more than a single bit set and expect PROGRAMMER ERROR behaviour.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | Optional                          | Yes                                      |
+| test_i014        | After a RoT Service message is signaled, psa_get() function is used to retrieve the message details. Each message can only be retrieved once.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | [client/server]_test_psa_get_called_twice()                                                                                                                                              | Call psa_get with a valid signal back to back and expect PROGRAMMER ERROR behaviour.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | Optional                          | Yes                                      |
+| test_i015        | The call to psa_get() is PROGRAMMER ERROR  if signal does not correspond to a RoT Service                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | [client/server]_test_psa_get_with_non_rot_signal()                                                                                                                                       | Call psa_get with DOORBELL signal and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | Optional                          | Yes                                      |
+| test_i016        | The call to psa_get() is PROGRAMMER ERROR if The RoT Service signal is not currently asserted                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | [client/server]_test_psa_get_with_unasserted_signal()                                                                                                                                    | Call psa_get with singal which is currently not asserted and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | Optional                          | Yes                                      |
+| test_i017        | Each RoT Service listed creates a dependency from the client Partition to a server Partition. Within the resulting network of dependencies, there must be no circular dependencies between Secure Partitions. This would result in deadlock because the Service requests are always synchronous.For the same reason, a Secure Partition must not use a RoT Service that is defined within itself. Direct function calls must be used instead of IPC where there is a dependency between RoT Services within a single Secure Partition.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_partition_calling_its_own_rot_service()                                                                                                                             | Partition calling its own ROT service using psa_connect and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | Optional                          | Yes                                      |
+| test_i018        | The call to psa_set_rhandle() is PROGRAMMER ERROR  if an invalid message handle was provided                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | [client/server]_test_psa_set_rhandle_with_invalid_handle()                                                                                                                               | Call psa_set_rhanlde with an INVALID_HANDLE which is not NULL and expect PROGRAMMER ERROR behaviour for API call                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | Optional                          | Yes                                      |
+| test_i019        | The call to psa_set_rhandle() is PROGRAMMER ERROR if Null handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | [client/server]_test_psa_set_rhandle_with_null_handle()                                                                                                                                  | Call psa_set_rhanlde with NULL handle and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | Optional                          | Yes                                      |
+| test_i020        | If messgae type if is PSA_IPC_CONNECT then use of status values in psa_reply() other than PSA_SUCCESS, PSA_ERROR_CONNECTION_BUSY and PSA_ERROR_CONNECTION_REFUSED is a PROGRAMMER ERROR.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | [client/server]_test_psa_reply_with_invalid_connect_status_code()                                                                                                                        | Call to psa_reply during PSA_IPC_CONNECT with status code other than PSA_SUCCESS and PSA_CONNECTION_REFUSED and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | Optional                          | Yes                                      |
+| test_i021        | 1. psa_wait() returns the Secure Partition interrupt signals that have been asserted from the subset of signals indicated in the bitmask provided. (psa_wait API to recieve interrupt signal) <br />                                                                      2. psa_eoi():Informs the SPM that an interrupt has been handled (end of interrupt). This will re-enable the interrupt line. <br />3.psa_eoi(): A signal remains active until it is processed by psa_eoi <br />4. Manifest- irqs (optional, unique)This attribute is a list of IRQ lines which are assigned to the Secure Partition.A Secure Partition always has exclusive access to an assigned IRQ. Secure Partitions are not allowed to share IRQs with other Secure Partitions.Each IRQ specified must provide a signal field. This field contains a symbolic name for the signal, used by the SPM to indicate when the interrupt is asserted. Each IRQ line is declared as either of the following:¿ line_num: A valid IRQ number for the platform.¿ line_name: A named IRQ, represented by a string identifier.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            |                                                                                                                                                                                          | Generate interrupt for driver partition assigned irq number and checks that:<br />- interrupt is routed to driver patition <br />- psa_wait returns the required irq_signal value<br />- end of interrupt using psa_eoi<br />Test Limitation:<br />1. Rules around sharing of irq lines can't be tested as specifiying it can result into build error.<br />2. Test suite partition manifests are rely on only line_num for specifying irq line number as line_name is subject to resolved in Implementation defined manner.                                                                                                                                                                                                                                                                                                                                                                                                               | Mandatory                         | Yes                                      |
+| test_i022        | The call to psa_reply() is PROGRAMMER ERROR if the message handle is invalid                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | [client/server]_test_psa_reply_with_invalid_handle()                                                                                                                                     | Call psa_reply with an INVALID_HANDLE which is not NULL and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | Optional                          | Yes                                      |
+| test_i023        | The call to psa_reply() is PROGRAMMER ERROR if the message handle is  Null handle                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | [client/server]_test_psa_reply_with_null_handle()                                                                                                                                        | Call psa_reply with a NULL HANDLE                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | Optional                          | Yes                                      |
+| test_i024        | The call to psa_call() is PROGRAMMER ERROR if an invalid handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | [client/server]_test_psa_call_with_invalid_handle()                                                                                                                                      | Call psa_call with an INVALID_HANDLE which is not NULL and expect PROGRAMMER ERROR behaviour for API call.Perform this step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | Optional                          | Yes                                      |
+| test_i025        | The call to psa_call() is PROGRAMMER ERROR if an null handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | [client/server]_test_psa_call_with_null_handle()                                                                                                                                         | Call psa_call with a NULL HANDLE and expect PROGRAMMER ERROR behaviour for API call.<br />Perform this step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | Optional                          | Yes                                      |
+| test_i026        | The call to psa_call() is PROGRAMMER ERROR  if  in_len + out_len > PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | [client/server]_test_psa_call_with_iovec_more_than_max_limit()                                                                                                                           | Call psa_call with more than four IOVECs and expect PROGRAMMER ERROR behaviour for API call. <br />Perform this step from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | Optional                          | Yes                                      |
+| test_i027        | If the message type is PSA_IPC_CALL and the client has made an invalid request, then the RoT Service can request for the connection to be terminated by calling psa_reply() with return value PSA_ERROR_PROGRAMMER_ERROR. After this, the RoT Service will receive no further PSA_IPC_CALL messages on that connection. The SPM will deliver a PSA_IPC_DISCONNECT to the RoT Service to release any resources associated with that connection. <br />If the SPM does not restart the system in response to the above PROGRAMMER ERROR, then termination of the connection has the following effects:<br />- No further PSA_IPC_CALL messages will be received by the RoT Service for the connection.<br />- The RoT Service will receive a PSA_IPC_DISCONNECT message for the connection to release resources and reset state associated with the connection.<br />- The failing call to psa_call() will return PSA_ERROR_PROGRAMMER_ERROR.<br />- Subsequent calls to psa_call() on the same connection will immediately return PSA_ERROR_PROGRAMMER_ERROR.<br />- The client must call psa_close() to close the connection.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | [client/server]_test_psa_drop_connection()                                                                                                                                               | RoT service executes psa_reply with status code equal to PSA_ERROR_PROGRAMMER_ERROR during PSA_IPC_CALL.Client expects either PSA_ERROR_PROGRAMMER_ERROR as returned status code for psa_call or system to get paniced <br />Perform above steps from NSPE and SPE both.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | Optional                          | Yes                                      |
+| test_i028        | The call to psa_read() is PROGRAMMER ERROR if  msg_handle does not refer to a PSA_IPC_CALL message                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | [client/server]_test_psa_read_at_ipc_connect()                                                                                                                                           | Call psa_read during PSA_IPC_CONNECT and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | Optional                          | Yes                                      |
+| test_i029        | The call to psa_read() is PROGRAMMER ERROR  if msg_handle does not refer to a PSA_IPC_CALL message                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | [client/server]_test_psa_read_at_ipc_disconnect()                                                                                                                                        | Call psa_read during PSA_IPC_DISCONNECT and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | Optional                          | Yes                                      |
+| test_i030        | The call to psa_read() is PROGRAMMER ERROR if Null handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | [client/server]_test_psa_read_with_null_handle()                                                                                                                                         | Call psa_read with NULL handle and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | Optional                          | Yes                                      |
+| test_i031        | The call to psa_read() is PROGRAMMER ERROR if  Invalid handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | [client/server]_test_psa_read_with_invalid_handle()                                                                                                                                      | Calll psa_read with INVALID_HANDLE which is not NULL and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | Optional                          | Yes                                      |
+| test_i032        | The call to psa_read() is PROGRAMMER ERROR if invec_idx is equal to PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | [client/server]_test_psa_read_with_invec_equal_to_max_iovec()                                                                                                                            | Call psa_read with invec_idx=PSA_MAX_IOVEC and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | Optional                          | Yes                                      |
+| test_i033        | The call to psa_read() is PROGRAMMER ERROR if  invec_idx is greater than PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_psa_read_with_invec_greater_than_max_iovec()                                                                                                                        | Call psa_read with invec_idx>PSA_MAX_IOVEC and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | Optional                          | Yes                                      |
+| test_i034        | The call to psa_skip() is PROGRAMMER ERROR  if  msg_handle does not refer to a PSA_IPC_CALL message                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | [client/server]_test_psa_skip_at_ipc_connect()                                                                                                                                           | Call psa_skip during PSA_IPC_CONNECT and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | Optional                          | Yes                                      |
+| test_i035        | The call to psa_skip() is PROGRAMMER ERROR if  msg_handle does not refer to a PSA_IPC_CALL message                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | [client/server]_test_psa_skip_at_ipc_disconnect()                                                                                                                                        | Call psa_skip during PSA_IPC_DISCONNECT and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | Optional                          | Yes                                      |
+| test_i036        | The call to psa_skip() is PROGRAMMER ERROR if   Null handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_psa_skip_with_null_handle()                                                                                                                                         | Call psa_skipwith NULL handle and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | Optional                          | Yes                                      |
+| test_i037        | The call to psa_skip() is PROGRAMMER ERROR if  Invalid handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | [client/server]_test_psa_skip_with_invalid_handle()                                                                                                                                      | Calll psa_skip with INVALID_HANDLE which is not NULL and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | Optional                          | Yes                                      |
+| test_i038        | The call to psa_skip() is PROGRAMMER ERROR  if  invec_idx is equal to PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | [client/server]_test_psa_skip_with_invec_equal_to_max_iovec()                                                                                                                            | Call psa_skip with invec_idx=PSA_MAX_IOVEC and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | Optional                          | Yes                                      |
+| test_i039        | The call to psa_skip() is PROGRAMMER ERROR if  invec_idx is greater than PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_psa_skip_with_invec_greater_than_max_iovec()                                                                                                                        | Call psa_skip with invec_idx>PSA_MAX_IOVEC and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | Optional                          | Yes                                      |
+| test_i040        | The call to psa_write() is PROGRAMMER ERROR if msg_handle does not refer to a PSA_IPC_CALL message                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | [client/server]_test_psa_write_at_ipc_connect()                                                                                                                                          | Call psa_write during PSA_IPC_CONNECT and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | Optional                          | Yes                                      |
+| test_i041        | The call to psa_write() is PROGRAMMER ERROR  if  msg_handle does not refer to a PSA_IPC_CALL message                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | [client/server]_test_psa_write_at_ipc_disconnect()                                                                                                                                       | Call psa_write during PSA_IPC_DISCONNECT and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | Optional                          | Yes                                      |
+| test_i042        | The call to psa_write() is PROGRAMMER ERROR  if Null handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_psa_write_with_null_handle()                                                                                                                                        | Call psa_write with NULL handle and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | Optional                          | Yes                                      |
+| test_i043        | The call to psa_write() is PROGRAMMER ERROR if  Invalid handle was passed                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | [client/server]_test_psa_write_with_invalid_handle()                                                                                                                                     | Calll psa_write with INVALID_HANDLE which is not NULL and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | Optional                          | Yes                                      |
+| test_i044        | The call to psa_write() is PROGRAMMER ERROR  if  invec_idx is equal to PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | [client/server]_test_psa_write_with_invec_equal_to_max_iovec()                                                                                                                           | Call psa_write with invec_idx=PSA_MAX_IOVEC and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | Optional                          | Yes                                      |
+| test_i045        | The call to psa_write() is PROGRAMMER ERROR if  invec_idx is greater than PSA_MAX_IOVEC                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | [client/server]_test_psa_write_with_invec_greater_than_max_iovec()                                                                                                                       | Call psa_write with invec_idx>PSA_MAX_IOVEC and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | Optional                          | Yes                                      |
+| test_i046        | The call to psa_write() is PROGRAMMER ERROR if  the call attempts to write data past the end of the client output vector                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | [client/server]_test_psa_write_with_size_overflow()                                                                                                                                      | Call psa_write with a size input one byte bigger than allowed size and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | Optional                          | Yes                                      |
+| test_i047        | The call to psa_get() is PROGRAMMER ERROR if  The msg pointer provided is not a valid memory reference                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_psa_get_with_invalid_msg_pointer()                                                                                                                                  | Call psa_get with invalid msg pointer and expect PROGRAMMER ERROR behaviour for API call.<br /> Selection of invalid pointer is as below:<br />if (ISOLATION_LEVEL > 1)<br />     // PSA RoT Pointer <br />      psa_get(msg_pointer = driver_mmio_base);<br />else<br />      psa_get(msg_pointer = NULL);<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | Optional                          | Yes                                      |
+| test_i048        | The call to psa_call() is PROGRAMMER ERROR  if address of in_vec is invalid for client                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_psa_call_with_invalid_invec_pointer                                                                                                                                 | Call psa_call with invalid address for invec and expect PROGRAMMER ERROR behaviour for API call.<br /> Selection of invalid invec pointer is as below:<br />     if caller == NONSECURE<br />        // PSA RoT pointer<br />        invec_pointer = driver_mmio_base;<br /><br />     else<br /><br />        if (ISOLATION_LEVEL > 1)<br />           invec_pointer = driver_mmio_base;<br />        else<br />           invec_pointer = NULL;                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | Optional                          | Yes                                      |
+| test_i049        | The call to psa_call() is PROGRAMMER ERROR if  address of out_vec is invalid for client                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | [client/server]_test_psa_call_with_invalid_outvec_pointer()                                                                                                                              | Call psa_call with invalid address for outvec and expect PROGRAMMER ERROR behaviour for API call.<br /> Selection of invalid outvec pointer is as below:<br />     if caller == NONSECURE<br />        // PSA RoT pointer<br />        outvec_pointer = driver_mmio_base;<br /><br />     else<br /><br />        if (ISOLATION_LEVEL > 1)<br />           outvec_pointer = driver_mmio_base;<br />        else<br />           outvec_pointer = NULL;                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | Optional                          | Yes                                      |
+| test_i050        | The call to psa_call() is PROGRAMMER ERROR if psa_invec.base address is invalid for client                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | [client/server]_test_psa_call_with_invalid_invec_base()                                                                                                                                  | Call psa_call with invalid address for psa_invec.base and expect PROGRAMMER ERROR behaviour for API call.<br /> Selection of invalid base is as below:<br />     if caller == NONSECURE<br />        // PSA RoT pointer<br />        invalid_base = driver_mmio_base;<br /><br />     else<br /><br />        if (ISOLATION_LEVEL > 1)<br />           invalid_base = driver_mmio_base;<br />        else<br />           invalid_base = NULL;                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | Optional                          | Yes                                      |
+| test_i051        | The call to psa_call() is PROGRAMMER ERROR if psa_outvec.base address is invalid for client                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | [client/server]_test_psa_call_with_invalid_outvec_base()                                                                                                                                 | Call psa_call with invalid address for psa_outvec.base and expect PROGRAMMER ERROR behaviour for API call.<br /> Selection of invalid base is as below:<br />     if caller == NONSECURE<br />        // PSA RoT pointer<br />        invalid_base = driver_mmio_base;<br /><br />     else<br /><br />        if (ISOLATION_LEVEL > 1)<br />           invalid_base = driver_mmio_base;<br />        else<br />           invalid_base = NULL;                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | Optional                          | Yes                                      |
+| test_i052        | The call to psa_call() is PROGRAMMER ERROR  if psa_invec.base addr is valid but  psa_invec.base+size address is invalid for client                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | [client/server]_test_psa_call_with_invalid_invec_end_addr()                                                                                                                              | Call psa_call with valid address for psa_invec.base but (psa_invec.base + psa_invec.size) pointing to invalid address and expect PROGRAMMER ERROR behaviour for API call.<br /> Selection of base and size are as below:<br />     if caller == NONSECURE<br />          valid_base = nspe_mmio_region_base;<br />          invalid_size = (driver_mmio_region_base - nspe_mmio_region_base + 1);<br /><br />     else<br /><br />        if (ISOLATION_LEVEL > 1)<br />          valid_base = server_mmio_region_base;<br />          invalid_size = (driver_mmio_region_base - server_mmio_region_base + 1);<br />                                                                                                                                                                                                                                                                                                                       | Optional                          | Yes                                      |
+| test_i053        | The call to psa_call() is PROGRAMMER ERROR if psa_outvec.base addr is valid but  psa_invec.base+sizeaddress is invalid for client                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | [client/server]_test_psa_call_with_invalid_outvec_end_addr()                                                                                                                             | Call psa_call with valid address for psa_outvec.base but (psa_outvec.base + psa_outvec.size) pointing to invalid address and expect PROGRAMMER ERROR behaviour for API call.<br /> Selection of base and size are as below:<br />     if caller == NONSECURE<br />          valid_base = nspe_mmio_region_base;<br />          invalid_size = (driver_mmio_region_base - nspe_mmio_region_base + 1);<br /><br />     else<br /><br />        if (ISOLATION_LEVEL > 1)<br />          valid_base = server_mmio_region_base;<br />          invalid_size = (driver_mmio_region_base - server_mmio_region_base + 1);<br />                                                                                                                                                                                                                                                                                                                    | Optional                          | Yes                                      |
+| test_i054        | The call to psa_call() is PROGRAMMER ERROR  if psa_outvec.base is not writable                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | [client/server]_test_psa_call_with_not_writable_outvec_base()                                                                                                                            | Call psa_call with not writable (code address) psa_outvec.base and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | Optional                          | Yes                                      |
+| test_i055        | The call to psa_read() is PROGRAMMER ERROR if the memory reference for buffer is invalid                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | [client/server]_test_psa_read_with_invalid_buffer_addr()                                                                                                                                 | Call psa_read with invalid buffer addr and expect PROGRAMMER ERROR behaviour for API call.<br />Selection of buffer address is as below:<br />if (ISOLATION_LEVEL > 1)<br />          buffer = driver_mmio_region_base;<br />else <br />         buffer = NULL; <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | Optional                          | Yes                                      |
+| test_i056        | The call to psa_read() is PROGRAMMER ERROR if the memory reference for buffer is not writable                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | [client/server]_test_psa_read_with_not_writable_buffer_addr()                                                                                                                            | Call psa_read with not writable address (function address- code memory)  and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | Optional                          | Yes                                      |
+| test_i057        | The call to psa_write() is PROGRAMMER ERROR if the memory reference for buffer is invalid                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | [client/server]_test_psa_write_with_invalid_buffer_addr()                                                                                                                                | Call psa_write with invalid buffer addr and expect PROGRAMMER ERROR behaviour for API call.<br /> Selection of buffer address is as below:<br />if (ISOLATION_LEVEL > 1)<br />          buffer = driver_mmio_region_base;<br />else <br />         buffer = NULL; <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | Optional                          | Yes                                      |
+| test_i058        | 1. psa_notify() is used to asynchronously wake up another Secure Partition. The receiving partition uses psa_wait() to detect, or wait for, assertion of its PSA_DOORBELL signal. The value of partition_id must be greater than zero as the target of notification must be a Secure Partition. <br />2. psa_clear() clears the PSA_DOORBELL signal.  <br />3. psa_clear(): The target Partition doorbell will remain asserted until it calls psa_clear().                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | [client/server]_test_psa_doorbell_signal()                                                                                                                                               | 1. Client connects to RoT service. <br />2. RoT services executes asserts PSA_DOORBELL singal back to client after accepting the connection.<br />3. Client checks the delivery of PSA_DOORBELL singal using psa_wait().<br />4. Client clears the doorbell and closes the connection. <br />5. RoT service receives the closing connection request.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | Mandatory                         | Yes                                      |
+| test_i059        | The call to psa_notify() is PROGRAMMER ERROR  if Partition ID does not correspond to a Secure Partition                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | [client/server]_test_psa_notify_with_neg_part_id()                                                                                                                                       | Call psa_notify with negative partition id and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | Optional                          | Yes                                      |
+| test_i060        | The call to psa_notify() is PROGRAMMER ERROR if Partition ID does not correspond to a Secure Partition                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_psa_notify_with_invalid_pos_part_id()                                                                                                                               | Call psa_notify with positive partition id which does not exist in the platform and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | Optional                          | Yes                                      |
+| test_i061        | The call to psa_clear() is PROGRAMMER ERROR if The Secure Partition¿s doorbell signal is not currently asserted                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | [client/server]_test_psa_clear_at_unasserted_doorbell_sig()                                                                                                                              | Call psa_clear when doorbell signal is not asserted and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | Optional                          | Yes                                      |
+| test_i062        | The call to psa_wait() is PROGRAMMER ERROR if signal_mask does not include any assigned signals.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | [client/server_test_psa_wait_with_unassigned_signal()                                                                                                                                    | Call psa_wait with signal mask that doesn't include any assigned signal and expect PROGRAMMER ERROR behaviour for API call.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | Optional                          | Yes                                      |
+| test_i063        | psa_wait() returns the Secure Partition interrupt signals that have been asserted from the subset of signals indicated in the bitmask provided. The mask must contain the set of signals the caller is interested in handling. Signals that are not in signal_mask should be ignored.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | [client/server]_test_psa_wait_signal_mask()                                                                                                                                              | 1. Select signal_mask =   (SERVER_UNSPECIFED_MINOR_V_SIG | SERVER_RELAX_MINOR_VERSION_SIG); <br />2. Server partition requests the client partition to make connection using  sid=SERVER_SECURE_CONNECT_ONLY_SID.  This connection request act as irritator to psa_wait(signal_mask) call and it is used to cover the rule - Signals that are not in signal_mask should be ignored by psa_wait.<br />3. NSPE client connects to a server partition using SID whose signal are part of signal_mask<br />4. Server partition executes psa_wait with necessary signal_mask. RoT service checks that returned signal value is subset of signals indicated in the signal_mask <br /> 5. At the end, server partition completes the starved (irritator) connection request of SERVER_SECURE_CONNECT_ONLY_SID.                                                                                                                                    | Mandatory                         | Yes                                      |
+| test_i064        | The call to psa_eoi() is PROGRAMMER ERROR if irq_signal is not an interrupt signal                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | driver_test_psa_eoi_with_non_intr_signal()                                                                                                                                               | Call to psa_eoi with non-interrupt signal(PSA_DOORBELL) and expect PROGRAMMER ERROR behaviour for API call.<br /> Note: The interrupt related test check is captured in driver_partition.c as this is the only partition in test suite that holds the interrupt line.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | Optional                          | Yes                                      |
+| test_i065        | The call to psa_eoi() is PROGRAMMER ERROR if irq_signal is not currently asserted                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | driver_test_psa_eoi_with_unasserted_signal()                                                                                                                                             | Call to psa_eoi with interrupt signal which is currently not asserted and expect PROGRAMMER ERROR behaviour for API call.<br /> Note: The interrupt related test check is captured in driver_partition.c as this is the only partition in test suite that holds the interrupt line.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | Optional                          | Yes                                      |
+| test_i066        | The call to psa_eoi() is PROGRAMMER ERROR if irq_signal indicates more than one signal                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | driver_test_psa_eoi_with_multiple_signals()                                                                                                                                              | Call to psa_eoi with irq_signal provided with multiple signals and expect PROGRAMMER ERROR behaviour for API call.<br /> Note: The interrupt related test check is captured in driver_partition.c as this is the only partition in test suite that holds the interrupt line.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | Optional                          | Yes                                      |
+| test_i067        | A Secure Partition is guaranteed to be able to read and write its private heap regions.<br />Manifest Parameter- heap_size. Properties: Optional.<br />This attribute indicates the Secure Partition¿s heap size in bytes.The size value is represented either as a positive integer or as a hexadecimal string.If this field is specified in the manifest then the value must be greater than 0. If this field is not specified in the manifest then the SPM can assume the size is 0.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | [client/server]_test_dynamic_mem_alloc_fn()                                                                                                                                              | Test dynamic memory service functions-malloc(), free() and realloc behaviour defined in the specification if these APIs are available to secure partition. Otherwise skip the test. <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | Mandatory                         | Yes                                      |
+| test_i068        | Only Code is executable in secure partition. Writable region must not be executable.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | client_test_instr_exec_from_writable_mem()                                                                                                                                               | Execute set of instructions from writable memory and expect internal fault.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | Optional                          | Yes                                      |
+| test_i069        | Only Private data is writable in secure partition. Code space must not be writable.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | client_test_write_to_code_space()                                                                                                                                                        | Write to code space from secure partition and expect internal fault                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | Optional                          | Yes                                      |
+| test_i070        | Only Private data is writable in secure partition. Constant data space must not be writable.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | client_test_write_to_const_data()                                                                                                                                                        | Write to constant data space and expect internal fault                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | Optional                          | Yes                                      |
+| test_i071        | The following memory manipulation functions from <string.h>must be implemented with standard C99 definitions:<br />memcmp()<br />memcpy()<br />memmove()<br />memset()                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | client_test_mem_manipulation_fn()                                                                                                                                                        | 1 .Set buffer content using memset(). Check that content is set as expected.<br />2. Copy one buffer to another buffer using memcpy() and check that buffer is copied correctly. <br />3. Compare two buffers two times, once with equal data and once with unequal data.<br />2. Copy one buffer to another buffer using memmove() and check that buffer is copied correctly. <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | Mandatory                         | Yes                                      |
+| test_i072        | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. <br />Where A is Application RoT, B is NSPE and memory asset to be protected is Application RoT variables- Global variable.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | [client/server]_test_nspe_read_app_rot_variable()<br />[client/server]_test_nspe_write_app_rot_variable()                                                                                | Access Application RoT global variable address from NSPE and expect internal fault behavior                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | Optional                          | Yes                                      |
+| test_i073        | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. <br />Where A is Application RoT, B is NSPE and memory asset to be protected is Application RoT execution stack.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | [client/server]_test_nspe_read_app_rot_stack()<br />[client/server]_test_nspe_write_app_rot_stack()                                                                                      | Access Application RoT local variable(stack region) address from NSPE and expect internal fault behavior                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | Optional                          | Yes                                      |
+| test_i074        | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. <br />Where A is Application RoT, B is NSPE and memory asset to be protected is Application RoT heap memory.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_nspe_read_app_rot_heap()<br />[client/server]_test_nspe_write_app_rot_heap()                                                                                        | Access Application RoT heap memory address from NSPE and expect internal fault behavior                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | Optional                          | Yes                                      |
+| test_i075        | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. <br />Where A is Application RoT, B is NSPE and memory asset to be protected is Application RoT MMIO region.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | [client/server]_test_nspe_read_app_rot_mmio()<br />[client/server]_test_nspe_write_app_rot_mmio()                                                                                        | Access Application RoT MMIO address from NSPE and expect internal fault behavior                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | Optional                          | Yes                                      |
+| test_i076        | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. <br />Where A is PSA RoT, B is NSPE and memory asset to be protected is PSA RoT variables- Global variable.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | client_test_nspe_read_psa_rot_variable()<br />driver_test_isolation_psa_rot_data_rd()<br />client_test_nspe_write_psa_rot_variable()<br />driver_test_isolation_psa_rot_data_wr()        | Access PSA RoT global variable address from NSPE and expect internal fault behavior                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | Optional                          | Yes                                      |
+| test_i077        | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. <br />Where A is PSA RoT, B is NSPE and memory asset to be protected is PSA RoT execution stack.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | client_test_nspe_read_psa_rot_stack()<br />driver_test_isolation_psa_rot_stack_rd()<br />client_test_nspe_write_psa_stack_variable()<br />driver_test_isolation_psa_rot_stack_wr()       | Access PSA RoT local variable(stack region) address from NSPE and expect internal fault behavior                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | Optional                          | Yes                                      |
+| test_i078        | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. <br />Where A is PSA RoT, B is NSPE and memory asset to be protected is PSA RoT heap memory.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | client_test_nspe_read_psa_rot_heap()<br />driver_test_isolation_psa_rot_heap_rd()<br />client_test_nspe_write_psa_rot_heap()<br />driver_test_isolation_psa_rot_heap_wr()                | Access PSA RoT partition heap memory address from NSPE and expect internal fault behavior                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | Optional                          | Yes                                      |
+| test_i079        | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. <br />Where A is PSA RoT, B is NSPE and memory asset to be protected is PSA RoT MMIO region.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | client_test_nspe_read_psa_rot_mmio()<br />driver_test_isolation_psa_rot_mmio_rd()<br />client_test_nspe_write_psa_rot_mmio()<br />driver_test_isolation_psa_rot_mmio_wr()                | Access PSA RoT partition MMIO address from NSPE and expect internal fault behavior                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | Optional                          | Yes                                      |
+| test_i080        | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. <br />Where A is PSA RoT, B is Application RoT and memory asset to be protected is PSA RoT variables- Global variable.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | client_test_app_rot_read_psa_rot_variable()<br />driver_test_isolation_psa_rot_data_rd()<br />client_test_app_rot_write_psa_rot_variable()<br />driver_test_isolation_psa_rot_data_wr()  | Access PSA RoT global variable address from Application RoT and expect internal fault behavior                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | Optional                          | Yes                                      |
+| test_i081        | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. <br />Where A is PSA RoT, B is Application RoT and memory asset to be protected is PSA RoT execution stack.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | client_test_app_rot_read_psa_rot_stack()<br />driver_test_isolation_psa_rot_stack_rd()<br />client_test_app_rot_write_psa_stack_variable()<br />driver_test_isolation_psa_rot_stack_wr() | Access PSA RoT local variable(stack region) address from Application RoT and expect internal fault behavior                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | Optional                          | Yes                                      |
+| test_i082        | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. <br />Where A is PSA RoT, B is Application RoT and memory asset to be protected is PSA RoT heap memory.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | client_test_app_rot_read_psa_rot_heap()<br />driver_test_isolation_psa_rot_heap_rd()<br />client_test_app_rot_write_psa_rot_heap()<br />driver_test_isolation_psa_rot_heap_wr()          | Access PSA RoT partition heap memory address from Application RoT and expect internal fault behavior                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | Optional                          | Yes                                      |
+| test_i083        | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. <br />Where A is PSA RoT, B is Application RoT and memory asset to be protected is PSA RoT MMIO region.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | client_test_app_rot_read_psa_rot_mmio()<br />driver_test_isolation_psa_rot_mmio_rd()<br />client_test_app_rot_write_psa_rot_mmio()<br />driver_test_isolation_psa_rot_mmio_wr()          | Access PSA RoT partition MMIO address from Application RoT  and expect internal fault behavior                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | Optional                          | Yes                                      |
+| test_i084        | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. <br />Where A is Application RoT Partition, B is other Application RoT partition and memory asset to be protected is A- Application RoT partition  variables- Global variable.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | [client/server]_test_sp_read_other_sp_variable()<br />[client/server]_test_sp_write_other_sp_variable()                                                                                  | Access Application RoT global variable address from other RoT and expect internal fault behavior                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | Optional                          | Yes                                      |
+| test_i085        | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. <br />Where A is Application RoT Partition, B is other Application RoT partition and memory asset to be protected is A- Application RoT partition execution stack.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | [client/server]_test_sp_read_other_sp_stack()<br />[client/server]_test_sp_write_other_sp_stack()                                                                                        | Access Application RoT local variable(stack region) address from other Application RoT and expect internal fault behavior                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | Optional                          | Yes                                      |
+| test_i086        | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. <br />Where A is Application RoT Partition, B is other Application RoT partition and memory asset to be protected is A- Application RoT partition heap memory.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | [client/server]_test_sp_read_other_sp_heap()<br />[client/server]_test_sp_write_other_sp_heap()                                                                                          | Access Application RoT partition heap memory address from other Application RoT and expect internal fault behavior                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         | Optional                          | Yes                                      |
+| test_i087        | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. <br />Where A is Application RoT Partition, B is other Application RoT partition and memory asset to be protected is A- Application RoT partition MMIO region.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | [client/server]_test_sp_read_other_sp_mmio() <br />[client/server]_test_sp_write_other_sp_mmio()                                                                                         | Access Application RoT partition MMIO address from other Application RoT  and expect internal fault behavior                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               | Optional                          | Yes                                      |
+| test_l088        | psa_rot_lifecycle_state() function retrieves the current PSA RoT lifecycle state.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | server_test_psa_rot_lifecycle_state()                                                                                                                                                    | Call psa_rot_lifecycle_state()  from secure side and check that return value is within the allowed range.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | Mandatory                         | Yes                                      |
+|                  | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. From B access below asserts of A:<br />- Variables<br />- Execution stacks<br />- Allocation heap<br />- Memory-mapped I/O regions<br /><br />Where, A & B combination are: A=SPM & B=NSPE                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | N/A                                                                                                                                                                                      | Future release of test suite will be updated to cover this rule.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | N/A                               | No                                       |
+|                  | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. From B access below asserts of A:<br />- Variables<br />- Execution stacks<br />- Allocation heap<br />- Memory-mapped I/O regions<br /><br />Where, A & B combination are: A=SPM & B=Application RoT partition                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | N/A                                                                                                                                                                                      | Future release of test suite will be updated to cover this rule.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | N/A                               | No                                       |
+|                  | If domain A needs protection from domain B, then Private data in domain A cannot be accessed by domain B. From B access below asserts of A:<br />- Variables<br />- Execution stacks<br />- Allocation heap<br />- Memory-mapped I/O regions<br /><br />Where, A & B combination are: A=SPM & B=PSA RoT partition                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | N/A                                                                                                                                                                                      | Future release of test suite will be updated to cover this rule.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | N/A                               | No                                       |
+| NO_EXPLICIT_TEST | A Secure Partition is guaranteed to be able to  read and write its private stack. <br />Manifest Parameter- stack_size (required) <br />Partition's stack size in bytes. The size value must be represented either as a positive integer or as a hexadecimal string.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | N/A                                                                                                                                                                                      | No explicit test written to cover this rule. PSA IPC tests manifests are provided with tests partition required stack_size.  A successful execution of tests partition code without stack access related faults, indirectly verify this field.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | N/A                               | Yes                                      |
+| NO_EXPLICIT_TEST | mmio_regions (optional, unique): <br />List of memory-mapped I/O region objects which the Secure Partition needs access to.  A Secure Partition always has exclusive access to an MMIO region. Secure Partitions are not permitted to share MMIO regions with other Secure Partitions.<br />An MMIO region can be defined either as a:<br />numbered_region<br />named_region<br />A numbered region consists of a base address and a size. The size must be represented either as a positive integer or as a hexadecimal string. The base address must be represented as a hexadecimal string.<br />MMIO regions must not overlap.<br />An MMIO region must include a permission attribute. The following permissions are available:<br />READ-ONLY<br />READ-WRITE                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | N/A                                                                                                                                                                                      | Comments:<br />1. PSA IPC tests device driver partition manifests are provided with these fields. A successful compilation and run of device driver partition code indirectly verify this field. <br  />2. Rules around sharing of MMIO regions is covered as part of isolation tests.<br  />3. Rules around overlapping of MMIO regions can't be tested as specifying that into manifest results into compilation fail. <br />4. Test suite partition manifests are rely on numbered_region only as named_region is subject to resolved in Implementation defined manner.                                                                                                                                                                                                                                                                                                                                                                 | N/A                               | Yes                                      |
+| NO_EXPLICIT_TEST | Manifest Parameter-  type (required) <br />Whether the Partition is a part of the PSA Root of Trust Services or is part of the Application Root of Trust Services.Type must be assigned one of the following values:- APPLICATION-ROT- PSA-ROT                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | N/A                                                                                                                                                                                      | PSA IPC tests partition files are provided with these fields. Access permission behaviour related to these fields will be verified as part of tests covering isolation level rules.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | N/A                               | Yes                                      |
+| NO_EXPLICIT_TEST | Manifest Parameter - description (optional) <br />This attribute contains a human-readable description and comments for the Secure Partition.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | N/A                                                                                                                                                                                      | Test suite manifests are provided with these field with adhere to manifest rules. Manifest build tool parser must parse this field without any compilation fail.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | N/A                               | Yes                                      |
+| NO_EXPLICIT_TEST | Manifest Parameter -entry_point (required, unique) <br />The Partition entry point in the form of an C function symbol. A single entry point must be provided and it must have the following signature: <br />void entry_point(void);                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | N/A                                                                                                                                                                                      | No explicit test written to cover this rule. Test suite manifests are provided with tests partition entry_point.  A successful launch and run of tests partition code indirectly verify this field.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | N/A                               | Yes                                      |
+| NO_EXPLICIT_TEST | The SPM must eventually deliver all signals and IPC messages.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | N/A                                                                                                                                                                                      | No explicit test written to cover this rule. However all PSA IPC tests are written with the expectation that the SPM delivers all requested signals and IPC message in a timely fashion. Failure to provide this will result in simulation time out.  <br />This rule is unbounded and cannot have full coverage. It is good to that things are delivered in a timely manner, however failure will not break compliance.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | N/A                               | Yes                                      |
+| NO_EXPLICIT_TEST | A Secure Partition is guaranteed to be able to  execute and read its own code regions and read its own read-only data regions.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | N/A                                                                                                                                                                                      | No explicit test written to cover this rule. This is a minimum requirement to able to launch and run secure partition. Failing to provide this, will not be able to run IPC test suite.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | N/A                               | Yes                                      |
+| NOT_COVERED      | psa_get returns PSA_ERROR_DOES_NOT_EXIST if the SPM cannot deliver a message to the Secure Partition following the assertion of the RoT Service signal.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | N/A                                                                                                                                                                                      | This scenario cannot be simulated as test can't generate stimulus where psa_get() API returns PSA_ERROR_DOES_NOT_EXIST. However every instances of psa_get() API call in test suite checks the API return value and re-waits for signal delivery if return value is PSA_ERROR_DOES_NOT_EXIST.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | N/A                               | No                                       |
+| NOT_COVERED      | The call to psa_call is PROGRAMMER ERROR if the connection is already handling a request.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | N/A                                                                                                                                                                                      | This rule is not verified beacuse of following reasons: <br />- There is no common infrastructure to test this rule as this needs two OS specific tasks where one task interrupted during execution of psa_call or psa_close  and second task scheduled to execute psa_call using same handle.<br />- It is hard to write test stimulus where this rule is always hit as it is highly dependent of platform software scheduling policy. <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             | N/A                               | No                                       |
+| NOT_COVERED      | The call to psa_close is PROGRAMMER ERROR  if the connection is already handling a request                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | N/A                                                                                                                                                                                      | This rule is not verified beacuse of following reasons: <br />- There is no common infrastructure to test this rule as this needs two OS specific tasks where one task interrupted during execution of psa_call or psa_close  and second task scheduled to execute psa_close using same handle.<br />- It is hard to write test stimulus where this rule is always hit as it is highly dependent of platform software scheduling policy. <br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | N/A                               | No                                       |
+| NOT_COVERED      | Manifest Parameter - priority (required) <br />Partitions must be assigned one of the following priority groups:¿ HIGH¿ NORMAL¿ LOWLOW is the lowest priority. Priority is ignored by SPMs that do not implement any priority-based scheduling.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            | N/A                                                                                                                                                                                      | Use of these fields are highly dependent on type of SPM scheduling policy, hence can't test the behavious of this field. And test suite partition manifests are provided with priority field equal to LOW.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 | N/A                               | No                                       |
+| NOT_COVERED      | Secure Partition IDs must be fixed across updates                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | N/A                                                                                                                                                                                      | Checking for Partition IDs across SPM updates is out of scope for PSA IPC tests.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | N/A                               | No                                       |
 
 ## License
 Arm PSA test suite is distributed under Apache v2.0 License.
diff --git a/api-tests/docs/psa_its_testlist.md b/api-tests/docs/psa_its_testlist.md
index 61a86d5b..f169577a 100644
--- a/api-tests/docs/psa_its_testlist.md
+++ b/api-tests/docs/psa_its_testlist.md
@@ -8,19 +8,19 @@ Following are the requirements of the Storage Test Suite. <br />
 2. Storage Test Cases use UID value starting from 1 onwards. These UID needs to be free for successfull test execution.<br />
 3. UID values 1 and 2 are reserved as WRITE_ONCE UID.These UID can't be free from testcase. Make sure these are free.<br />
 
-
-| Test      | Return Value                         | API Verified                                                                 | Test Algorithm                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | UID Usage                                                                                                                                                                                        |
-|-----------|--------------------------------------|------------------------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
-| test_s001 | PSA_ITS_ERROR_UID_NOT_FOUND          | psa_its_get<br />psa_its_get_info <br />psa_its_remove<br />                 | 1. Call get API with UID for which no UID/Data pair is created<br />2. Call get_info API for which no UID/Data pair is created<br />3. Call remove API for which no UID/Data pair is created<br />4. Set valid  UID/Data pair with uid1<br />5. Set one more set of UID/Data pair, with different uid, than previous<br />6. Remove the uid of step 4.<br />7. Call get API for  removed UID/data pair<br />8. Call get_info API for  removed UID/Data pair<br />9. Call remove API for  removed UID/Data pair<br />10. Set valid UID/Data pair<br />11. Call get API for different uid , then created<br />12. Call get_info API for different uid, then created<br />13. Call remove API for different uid, then created<br />14. Remove the created UID/Data pair.<br />15. Remove the stray uid.<br />                                                                                                         | UID value used are 5,6,7                                                                                                                     |
-| test_s002 | PSA_ITS_ERROR_WRITE_ONCE             | psa_its_set<br />psa_its_remove<br />                                        | 1.  Set valid UID/data value pair , with create flag value none.2. Call get and get_info API to validate the data, attributes associated with data<br />3. Call set API again with same uid and create flag  PSA_PS_WRITE_ONCE_FLAG<br />4. Call get and get_info API to validate the data, attributes associated with data is not changed after second set operation<br />5. try to remove the UID/data pair.<br />6. Create new UID/data value pair, with create flag PSA_PS_WRITE_ONCE_FLAG<br />7. Try to remove the created UID.<br />8. Call get and get_info API to validate the data, attributes associated with data<br />9. Again call SET with same UID , create flag PSA_PS_WRITE_ONCE_FLAG but different data length<br />10. Try to remove the UID, PSA_ITS_ERROR_WRITE_ONCE error should be returned<br />11. Call get and get_info API to validate the data, attributes associated with data<br /> | UID value used are 1 and 2                                                                                                                                                                     |
-| test_s003 | PSA_ITS_ERROR_INSUFFICIENT_SPACE     | psa_its_set<br />                                                            | 1. Create UID/data pairs, with data_len 256 bytes. Do this with incrementing uid values till we have INSUFFICENT_SPACE.<br />2. Remove all the UID/data pairs created.<br />3. Repeat the steps once more, to check all previous uid are removed successfully<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | UID value starts from 5 and keep on incrementing till all space is exhausted                                                                                                                    |
-| test_s004 | PSA_ITS_SUCCESS                      | psa_its_set<br />psa_its_get<br />psa_its_get_info<br />psa_its_remove<br /> | 1. Set a valid uid/data pair<br />2. Validate the data using get api<br />3. Change the data length to half of previous.<br />4. Call GET api with original data length , error should be returned and also the return buffer should be empty<br />5. Call GET api with correct data_len and validate the data received.<br />6. Check old data cannot be accessed.<br />7. Call REMOVE api to delete the UID/data pair<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | UID value used is 5                                                                                                                                                                            |
-| test_s005 | PSA_ITS_SUCCESS                      | psa_its_set<br />psa_its_get<br />psa_its_get_info<br />psa_its_remove<br /> | 1. Set valid UID/data pair with varying uid and data_len <br />2. Call GET api and validate the set data<br />3. Call GET info api and validate the data attributes<br />4. Call REMOVE api to delete the UID/data pair<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | UID value used are 4                                                                                                                           |
-| test_s006 | PSA_ITS_ERROR_FLAGS_NOT_SUPPORTED    | psa_its_set<br />                                                            | 1.  Call the SET_INFO with minimum flag value to max flag value <br />2. Call GET_INFO api and validate the flag value<br />3. Remove the uid/data pair<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | UID value used is 5                                                                                                                          |
-| test_s007 | PSA_ITS_ERROR_INCORRECT_SIZE | psa_its_set<br />                                                            | 1. Create valid uid/data pair. <br />2. Increase the length of storage.<br />3. Try to access the old length using get api.<br />4. Try to access with valid length less than stored size.<br />5. Decrease the length of storage.<br />6. Try to access the old length.<br />7. Remove the uid<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | UID value used is 5                                                                                                                       |
-| test_s008 | PSA_ITS_ERROR_OFFSET_INVALID         | psa_its_get<br />                                                            | 1. Set valid UID/data pair<br />2. Call GET api with valid offset and offset + data_len equal to stored data size.<br />3. Call GET api with valid offset and offset + data_len less than stored data size.<br />4. Call get api with invalid offset.<br />5. Call get api with zero offset , but data len greater than data size.<br />6. Remove the uid.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | UID value used is  5 |
-| test_s009 | PSA_ITS_ERROR_INVALID_ARGUMENTS            | psa_its_get<br />psa_its_set<br />psa_its_get_info<br />                     | 1. Call the SET API with NULL pointer and data_len zero <br />2. Validate using get_info api storage should not be present.<br />3. Set storage entity with valid write_buffer , but length zero.<br />4. Again try to set for same uid with NULL write_buffer.<br />5. Call get and get_info api with NULL pointer and valid uid.<br />6. Remove the uid<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | UID value used is 5 <br />                                                                                                                                                                     |
-| test_s010 | PSA_ITS_ERROR_STORAGE_FAILURE <br />            | psa_its_set<br />                     | 1. Call the SET API with UID value 0.<br />2. Check that storage creation fails.<br /> | UID value used is 0 <br />                                                                                                                                                                     |
+| Test      | Test Scenario                         | API Verified   | Return Value                                                              | Test Algorithm                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                | UID Usage                                                                                                                                                                                        |
+|-----------|--------------------------------------|-------------------------------------------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|--------------------------------------|
+| test_s001 | Get,get_info and remove API's call for <br /> non-existent and removed assest       | psa_its_get<br />psa_its_get_info <br />psa_its_remove<br />  | PSA_ITS_ERROR_UID_NOT_FOUND              | 1. Call get API with UID for which no UID/Data pair is created<br />2. Call get_info API for which no UID/Data pair is created<br />3. Call remove API for which no UID/Data pair is created<br />4. Set valid  UID/Data pair with uid1<br />5. Set one more set of UID/Data pair, with different uid, than previous<br />6. Remove the uid of step 4.<br />7. Call get API for  removed UID/data pair<br />8. Call get_info API for  removed UID/Data pair<br />9. Call remove API for  removed UID/Data pair<br />10. Set valid UID/Data pair<br />11. Call get API for different uid , then created<br />12. Call get_info API for different uid, then created<br />13. Call remove API for different uid, then created<br />14. Remove the created UID/Data pair.<br />15. Remove the stray uid.<br />                                                                                                         | UID value used are 5,6,7                                                                                                                     |
+| test_s002 | Overwriting data for asset created with<br /> WRITE_ONCE flag            | psa_its_set<br />psa_its_remove<br />      |    PSA_ITS_ERROR_WRITE_ONCE                              | 1.  Set valid UID/data value pair , with create flag value none.<br />2. Call get and get_info API to validate the data, attributes associated with data<br />3. Call set API again with same uid and create flag  PSA_PS_WRITE_ONCE_FLAG<br />4. Call get and get_info API to validate the data, attributes associated with data<br /> is not changed after second set operation<br />5. try to remove the UID/data pair.<br />6. Create new UID/data value pair, with create flag PSA_PS_WRITE_ONCE_FLAG<br />7. Try to remove the created UID.<br />8. Call get and get_info API to validate the data, attributes associated with data<br />9. Again call SET with same UID , create flag PSA_PS_WRITE_ONCE_FLAG but <br />different data length<br />10. Try to remove the UID, PSA_ITS_ERROR_WRITE_ONCE error should be returned<br />11. Call get and get_info API to validate the data, attributes associated with data<br /> | UID value used are 1 and 2                                                                                                                                                                     |
+| test_s003 | Exhaust storage space     | psa_its_set<br />          |PSA_ITS_ERROR_INSUFFICIENT_SPACE                                                  | 1. Create UID/data pairs, with data_len 256 bytes. Do this with incrementing<br /> uid values till we have INSUFFICENT_SPACE.<br />2. Remove all the UID/data pairs created.<br />3. Repeat the steps once more, to check all previous uid are removed successfully<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | UID value starts from 5 and keep on incrementing till all space is exhausted                                                                                                                    |
+| test_s004 | Overwriting data for asset created without WRITE_ONCE flag                      | psa_its_set<br />psa_its_get<br />psa_its_get_info<br />psa_its_remove<br /> | PSA_ITS_SUCCESS | 1. Set a valid uid/data pair<br />2. Validate the data using get api<br />3. Change the data length to half of previous.<br />4. Call GET api with original data length , error should be returned and also<br /> the return buffer should be empty<br />5. Call GET api with correct data_len and validate the data received.<br />6. Check old data cannot be accessed.<br />7. Call REMOVE api to delete the UID/data pair<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | UID value used is 5                                                                                                                                                                            |
+| test_s005 | Get, get_info and remove API call for valid assest                     | psa_its_set<br />psa_its_get<br />psa_its_get_info<br />psa_its_remove<br /> | PSA_ITS_SUCCESS |1. Set valid UID/data pair with varying uid and data_len <br />2. Call GET api and validate the set data<br />3. Call GET info api and validate the data attributes<br />4. Call REMOVE api to delete the UID/data pair<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | UID value used are 4                                                                                                                           |
+| test_s006 | Storage asset creation with unsupported <br /> create_flag value   | psa_its_set<br />     | PSA_ITS_ERROR_FLAGS_NOT_SUPPORTED                                                       | 1.  Call the SET_INFO with minimum flag value to max flag value <br />2. Call GET_INFO api and validate the flag value<br />3. Remove the uid/data pair<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | UID value used is 5                                                                                                                          |
+| test_s007 | Get API call with length different than asset <br /> data length | psa_its_set<br />     | PSA_ITS_ERROR_INCORRECT_SIZE                                                       | 1. Create valid uid/data pair. <br />2. Increase the length of storage.<br />3. Try to access the old length using get api.<br />4. Try to access with valid length less than stored size.<br />5. Decrease the length of storage.<br />6. Try to access the old length.<br />7. Remove the uid<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | UID value used is 5                                                                                                                       |
+| test_s008 | Get API call with invalid offset         | psa_its_get<br />        |PSA_ITS_ERROR_OFFSET_INVALID                                                    | 1. Set valid UID/data pair<br />2. Call GET api with valid offset and offset + data_len equal to stored data size.<br />3. Call GET api with valid offset and offset + data_len less than stored data size.<br />4. Call get api with invalid offset.<br />5. Call get api with zero offset , but data len greater than data size.<br />6. Remove the uid.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  | UID value used is  5 |
+| test_s009 | API call with NULL pointer and zero length            | psa_its_get<br />psa_its_set<br />psa_its_get_info<br />    | PSA_ITS_SUCCESS                 | 1. Call the SET API with NULL pointer and data_len zero <br />2. Validate using get_info api storage should be present.<br />3. Call get API with NULL pointer.<br />4. Remove the UID.<br />5. Call get_info API to validate storage is removed.<br />6. Set storage entity with valid write_buffer , but length zero.<br />7. Call get_info API to validate storage attributes.<br />8. Call get_info api with NULL pointer and valid uid.<br />9. Remove the uid<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | UID value used is 5 <br />                                                                                                                                                                     |
+| test_s010 | Storage assest creation with UID value 0 <br />            | psa_its_set<br />   | PSA_ITS_ERROR_INVALID_ARGUMENTS                 | 1. Call the SET API with UID value 0.<br />2. Check that storage creation fails.<br /> | UID value used is 0 <br />                                                                                                                                                                     
+| NA | Storage Failure  <br />            | NA<br />    | PSA_ITS_ERROR_STORAGE_FAILURE <br />|    1. The failure cause will depend on the underlying <br /> platform and vary for each implementation.<br /> It is skipped in current suite  <br /> | NA <br />                                                                                                                                                                     |
 
 ## License
 Arm PSA test suite is distributed under Apache v2.0 License.
diff --git a/api-tests/docs/psa_ps_testlist.md b/api-tests/docs/psa_ps_testlist.md
index 6e10a9c2..2675c7fc 100644
--- a/api-tests/docs/psa_ps_testlist.md
+++ b/api-tests/docs/psa_ps_testlist.md
@@ -9,23 +9,28 @@ Following are the requirements of the Storage Test Suite. <br />
 3. UID values 1 and 2 are reserved as WRITE_ONCE UID.These UID can't be free from testcase. Make sure these are free.<br />
 
 
-| Test      | Return Value                         | API Verified                                                                 | Test Algorithm                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | UID Usage                                                                                                                                                                                        |
-|-----------|--------------------------------------|------------------------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
-| test_s001 | PSA_PS_ERROR_UID_NOT_FOUND          | psa_ps_get<br />psa_ps_get_info <br />psa_ps_remove<br />                 | 1. Call get API with UID for which no UID/Data pair is created.<br />2. Call get_info API for which no UID/Data pair is created.<br />3. Call remove API for which no UID/Data pair is created.<br />4. Set valid  UID/Data pair with uid1.<br />5. Set one more set of UID/Data pair, with different uid, than previous.<br />6. Remove the uid of step 4.<br />7. Call get API for  removed UID/data pair.<br />8. Call get_info API for  removed UID/Data pair.<br />9. Call remove API for  removed UID/Data pair.<br />10. Set valid UID/Data pair.<br />11. Call get API for different uid , then created.<br />12. Call get_info API for different uid, then created.<br />13. Call remove API for different uid, then created.<br />14. Remove the created UID/Data pair.<br />15. Remove the stray uid.<br />                                                                                                         | UID value used are 5, 6, 7                                                                                                                     |
-| test_s002 | PSA_PS_ERROR_WRITE_ONCE             | psa_ps_set<br />psa_ps_remove<br />                                        | 1.  Set valid UID/data value pair , with create flag value none.<br />2. Call get and get_info API to validate the data, attributes associated with data.<br />3. Call set API again with same uid and create flag  PSA_PS_WRITE_ONCE_FLAG.<br />4. Call get and get_info API to validate the data, attributes associated with data is not changed after second set operation<br />5. Try to remove the UID/data pair.<br />6. Create new UID/data value pair, with create flag PSA_PS_WRITE_ONCE_FLAG.<br />7. Try to remove the created UID.<br />8. Call get and get_info API to validate the data, attributes associated with data.<br />9. Again call SET with same UID , create flag PSA_PS_WRITE_ONCE_FLAG but different data length.<br />10. Try to remove the UID, PSA_PS_ERROR_WRITE_ONCE error should be returned.<br />11. Call get and get_info API to validate the data, attributes associated with data.<br /> | UID value used are 1 and 2                                                                                                                                                                     |
-| test_s003 | PSA_PS_ERROR_INSUFFICIENT_SPACE     | psa_ps_set<br />                                                            | 1. Create UID/data pairs, with data_len 256 bytes. Do this with incrementing uid values till we have INSUFFICENT_SPACE.<br />2. Remove all the UID/data pairs created.<br />3. Repeat the steps once more, to check all previous uid are removed successfully.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | UID value starts from 5 and keep on incrementing till all space is exhausted                                                                                                                    |
-| test_s004 | PSA_PS_SUCCESS                      | psa_ps_set<br />psa_ps_get<br />psa_ps_get_info<br />psa_ps_remove<br /> | 1. Set a valid uid/data pair.<br />2. Validate the data using get api.<br />3. Change the data length to half of previous.<br />4. Call GET api with original data length , error should be returned and also the return buffer should be empty.<br />5. Call GET api with correct data_len and validate the data received.<br />6. Check old data cannot be accessed.<br />7. Call REMOVE api to delete the UID/data pair.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | UID value used is 5                                                                                                                                                                            |
-| test_s005 | PSA_PS_SUCCESS                      | psa_ps_set<br />psa_ps_get<br />psa_ps_get_info<br />psa_ps_remove<br /> | 1. Set valid UID/data pair with varying uid and data_len.<br />2. Call GET api and validate the set data.<br />3. Call GET info api and validate the data attributes.<br />4. Call REMOVE api to delete the UID/data pair.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | UID value used are 4                                                                                                                           |
-| test_s006 | PSA_PS_ERROR_FLAGS_NOT_SUPPORTED    | psa_ps_set<br />                                                            | 1.  Call the SET_INFO with minimum flag value to max flag value.<br />2. Call GET_INFO api and validae the flag value.<br />3. Remove the uid/data pair.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | UID value used is 5                                                                                                                          |
-| test_s007 | PSA_PS_ERROR_INCORRECT_SIZE | psa_ps_set<br />                                                            | 1. Create valid uid/data pair.<br />2. Increase the length of storage.<br />3. Try to access the old length using get api.<br />4. Try to access with valid length less than stored size.<br />5. Decrease the length of storage.<br />6. Try to access the old length.<br />7. Remove the uid.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | UID value used is 5                                                                                                                       |
-| test_s008 | PSA_PS_ERROR_OFFSET_INVALID         | psa_ps_get<br />                                                            | 1. Set valid UID/data pair.<br />2. Call GET api with valid offset and offset + data_len equal to stored data size.<br />3. Call GET api with valid offset and offset + data_len less than stored data size.<br />4. Call get api with invalid offset.<br />5. Call get api with zero offset , but data len greater than data size.<br />6. Remove the uid.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | UID value used is  5 |
-| test_s009 | PSA_PS_ERROR_INVALID_ARGUMENT            | psa_ps_get<br />psa_ps_set<br />psa_ps_get_info<br />                     | 1. Call the SET API with NULL pointer and data_len zero.<br />2. Validate using get_info api storage should not be present.<br />3. Set storage entity with valid write_buffer , but length zero.<br />4. Again try to set for same uid with NULL write_buffer.<br />5. Call get and get_info api with NULL pointer and valid uid.<br />6. Remove the uid.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | UID value used is 5 <br />                                                                                                                                                                     |
-| test_s010 | PSA_PS_ERROR_STORAGE_FAILURE <br />            | psa_ps_set<br />                     | 1. Call the SET API with UID value 0.<br />2. Check that storage creation fails.<br /> | UID value used is 0 <br />                                                                                                                                                                     |
-| test_p011 | PSA_PS_ERROR_UID_NOT_FOUND            | psa_ps_create<br />psa_ps_set_extended<br />                     | 1. Call the SET Extended API when no uid present.<br />2. Create a valid storage using set. <br /> 3. Call create api with different length for existing uid.<br /> 4. Call create api to set WRITE_ONCE flag.<br /> 5. Validate data attributes are maintained.<br />6. Remove the uid.<br /> 7. Create valid storage using create api.<br /> 8. Try to change length using create api.<br /> 9. Validate storage is empty.<br /> 10. Again call create api with original parameters.<br />11. Remove the uid.<br /> 12. Check no duplicate entry present.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | UID value used is 5 <br />                                                                                                                                                                     |
-| test_p012 | PSA_PS_ERROR_INVALID_ARGUMENT <br /> PSA_PS_ERROR_OFFSET_INVALID <br />            | psa_ps_create<br />psa_ps_set_extended<br />                     | 1. Create a valid storage using set.<br /> 2. Set data on first half of buffer.<br /> 3. Try to set data at incorrect offset +length. <br /> 4. Try to set data at incorrect offset.<br />5. Try to set at correct offset but zero length buffer.<br />6. Try to set data at incorrect length and valid offset.<br /> 7. Overwrite the storage using set api.<br /> 8. Validate data is correctly written.<br \> 9. Call set_extended with NULL write buffer.<br /> 10. Overwrite storage using set_extended api.<br /> 11. Remove the uid.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | UID value used is 6 <br />
-| test_p013 | PSA_PS_SUCCESS    | psa_ps_set_extended<br />                                                            | 1.  Create Storage of zero length using create.<br />2. Try to set some data in the storage created.<br />3. Validate the storage attributes.<br /> 4. Remove the storage.<br /> 5. Create a valid storage with non-zero length.<br /> 6. Set data in the buffer.<br /> 7. Validate the data attributes.<br /> 8. Overwrite data using set api.<br /> 9. Validate the data.<br /> 10. Call create api for existing uid with same parameters.<br /> 11. Remove the uid.<br /> 12. Check with set_extended no duplicate uid exists.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | UID value used is 4
-| test_p014 | PSA_PS_ERROR_NOT_SUPPORTED    | psa_ps_create<br />psa_ps_set_extended<br />                                                            | Below Steps will be run only if optional API are not supported.<br />1. Create API call should fail.<br />2. Check the UID should not exist.<br /> 3. Create storage using set API.<br /> 4. Try to partially write using set_extended API.<br /> 5. Validate data is not modified.<br /> 6. Remove the uid.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | UID value used is 5
-| test_p015 | PSA_PS_ERROR_FLAGS_NOT_SUPPORTED    | psa_ps_create<br />                                                            | Below Step will be run only if optional API are supported.<br />1. Create API call with WRITE_ONCE flag should fail.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | UID value used is 5
+| Test      | Test Scenario                                 | API Verified    | Return Value                                                                 | Test Algorithm                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     | UID Usage                                                                                                                                                                                        |
+|-----------|--------------------------------------|------------------------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|--------------------------------------------------------------------------|-----------------------------------------------------------------------------------------------------------------------|
+| test_s001 |  Get,get_info and remove API's call for <br /> non-existent and removed assest             | psa_ps_get<br />psa_ps_get_info <br />psa_ps_remove<br /> |PSA_PS_ERROR_UID_NOT_FOUND                | 1. Call get API with UID for which no UID/Data pair is created.<br />2. Call get_info API for which no UID/Data pair is created.<br />3. Call remove API for which no UID/Data pair is created.<br />4. Set valid  UID/Data pair with uid1.<br />5. Set one more set of UID/Data pair, with different uid, than previous.<br />6. Remove the uid of step 4.<br />7. Call get API for  removed UID/data pair.<br />8. Call get_info API for  removed UID/Data pair.<br />9. Call remove API for  removed UID/Data pair.<br />10. Set valid UID/Data pair.<br />11. Call get API for different uid , then created.<br />12. Call get_info API for different uid, then created.<br />13. Call remove API for different uid, then created.<br />14. Remove the created UID/Data pair.<br />15. Remove the stray uid.<br />                                                                                                         | UID value used are 5, 6, 7                                                                                                                     |
+| test_s002 | Overwriting data for asset created with<br /> WRITE_ONCE flag              | psa_ps_set<br />psa_ps_remove<br /> | PSA_PS_ERROR_WRITE_ONCE                                         | 1.  Set valid UID/data value pair , with create flag value none.<br />2. Call get and get_info API to validate the data, attributes associated with data.<br />3. Call set API again with same uid and create flag  PSA_PS_WRITE_ONCE_FLAG.<br />4. Call get and get_info API to validate the data, attributes associated with data is not changed after second set operation<br />5. Try to remove the UID/data pair.<br />6. Create new UID/data value pair, with create flag PSA_PS_WRITE_ONCE_FLAG.<br />7. Try to remove the created UID.<br />8. Call get and get_info API to validate the data, attributes associated with data.<br />9. Again call SET with same UID , create flag PSA_PS_WRITE_ONCE_FLAG but different data length.<br />10. Try to remove the UID, PSA_PS_ERROR_WRITE_ONCE error should be returned.<br />11. Call get and get_info API to validate the data, attributes associated with data.<br /> | UID value used are 1 and 2                                                                                                                                                                     |
+| test_s003 | Exhaust storage space |  psa_ps_set<br />      |  PSA_PS_ERROR_INSUFFICIENT_SPACE                                                         | 1. Create UID/data pairs, with data_len 256 bytes. Do this with incrementing uid values till we have INSUFFICENT_SPACE.<br />2. Remove all the UID/data pairs created.<br />3. Repeat the steps once more, to check all previous uid are removed successfully.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | UID value starts from 5 and keep on incrementing till all space is exhausted                                                                                                                    |
+| test_s004 | Overwriting data for asset created without<br /> WRITE_ONCE flag                   | psa_ps_set<br />psa_ps_get<br />psa_ps_get_info<br />psa_ps_remove<br />  | PSA_PS_SUCCESS   | 1. Set a valid uid/data pair.<br />2. Validate the data using get api.<br />3. Change the data length to half of previous.<br />4. Call GET api with original data length , error should be returned and also the return buffer should be empty.<br />5. Call GET api with correct data_len and validate the data received.<br />6. Check old data cannot be accessed.<br />7. Call REMOVE api to delete the UID/data pair.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | UID value used is 5                                                                                                                                                                            |
+| test_s005 | Get, get_info and remove API call for valid assest                     | psa_ps_set<br />psa_ps_get<br />psa_ps_get_info<br />psa_ps_remove<br /> | PSA_PS_SUCCESS  | 1. Set valid UID/data pair with varying uid and data_len.<br />2. Call GET api and validate the set data.<br />3. Call GET info api and validate the data attributes.<br />4. Call REMOVE api to delete the UID/data pair.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      | UID value used are 4                                                                                                                           |
+| test_s006 | Storage asset creation with unsupported    | psa_ps_set<br />     | PSA_PS_ERROR_FLAGS_NOT_SUPPORTED                                                        | 1.  Call the SET_INFO with minimum flag value to max flag value.<br />2. Call GET_INFO api and validae the flag value.<br />3. Remove the uid/data pair.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       | UID value used is 5                                                                                                                          |
+| test_s007 | Get API call with invalid length | psa_ps_get<br /> | PSA_PS_ERROR_INCORRECT_SIZE                                                            | 1. Create valid uid/data pair.<br />2. Increase the length of storage.<br />3. Try to access the old length using get api.<br />4. Try to access with valid length less than stored size.<br />5. Decrease the length of storage.<br />6. Try to access the old length.<br />7. Remove the uid.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           | UID value used is 5                                                                                                                       |
+| test_s008 | Get API call with invalid offset          | psa_ps_get<br />      | PSA_PS_ERROR_INCORRECT_SIZE                                                      | 1. Set valid UID/data pair.<br />2. Call GET api with valid offset and offset + data_len equal to stored data size.<br />3. Call GET api with valid offset and offset + data_len less than stored data size.<br />4. Call get api with invalid offset.<br />5. Call get api with zero offset , but data len greater than data size.<br />6. Remove the uid.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | UID value used is  5 |
+| test_s009 | API call with NULL pointer and zero length              | psa_ps_get<br />psa_ps_set<br />psa_ps_get_info<br /> | PSA_PS_SUCCESS                    | 1. Call the SET API with NULL pointer and data_len zero <br />2. Validate using get_info api storage should be present.<br />3. Call get API with NULL pointer.<br />4. Remove the UID.<br />5. Call get_info API to validate storage is removed.<br />6. Set storage entity with valid write_buffer , but length zero.<br />7. Call get_info API to validate storage attributes.<br />8. Call get_info api with NULL pointer and valid uid.<br />9. Remove the uid.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    | UID value used is 5 <br />                                                                                                                                                                     |
+| test_s010 | Storage assest creation with UID value 0 <br />            | psa_ps_set<br />  |    PSA_PS_ERROR_INVALID_ARGUMENTS<br />                | 1. Call the SET API with UID value 0.<br />2. Check that storage creation fails.<br /> | UID value used is 0 <br />                                                                                                                                                                     |
+| test_p011 | Set_extended API's call for <br /> non-existent and removed assest             | psa_ps_set_extended<br />   | PSA_PS_ERROR_UID_NOT_FOUND<br />                   | 1. Call the SET Extended API when no uid present.<br />2. Create a valid storage using set. <br /> 3. Call create api with different length for existing uid.<br /> 4. Call create api to set WRITE_ONCE flag.<br /> 5. Validate data attributes are maintained.<br />6. Remove the uid.<br /> 7. Create valid storage using create api.<br /> 8. Try to change length using create api.<br /> 9. Validate storage is empty.<br /> 10. Again call create api with original parameters.<br />11. Remove the uid.<br /> 12. Check no duplicate entry present.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | UID value used is 5 <br />                                                                                                                                                                     |
+| test_p012 |  Set_extended API's call <br /> with invalid offset           | psa_ps_set_extended<br />   | PSA_PS_ERROR_OFFSET_INVALID <br />                   | 1. Create a valid storage using set.<br /> 2. Set data on first half of buffer.<br /> 3. Try to set data at incorrect offset +length. <br /> 4. Try to set data at incorrect offset.<br />5. Try to set at correct offset but zero length buffer.<br />6. Try to set data at incorrect length and valid offset.<br /> 7. Overwrite the storage using set api.<br /> 8. Validate data is correctly written.<br \> 9. Call set_extended with NULL write buffer.<br /> 10. Overwrite storage using set_extended api.<br /> 11. Remove the uid.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   | UID value used is 6 <br />
+| test_p013 |  Create and set_extended API call for valid assest    | psa_ps_set_extended<br /> psa_ps_create      | PSA_PS_SUCCESS                                                      | 1.  Create Storage of zero length using create.<br />2. Try to set some data in the storage created.<br />3. Validate the storage attributes.<br /> 4. Remove the storage.<br /> 5. Create a valid storage with non-zero length.<br /> 6. Set data in the buffer.<br /> 7. Validate the data attributes.<br /> 8. Overwrite data using set api.<br /> 9. Validate the data.<br /> 10. Call create api for existing uid with same parameters.<br /> 11. Remove the uid.<br /> 12. Check with set_extended no duplicate uid exists.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | UID value used is 4
+| test_p014 | Create and set_extended API call<br /> when API's not supported    | psa_ps_create<br />psa_ps_set_extended<br />       | PSA_PS_ERROR_NOT_SUPPORTED                                                      | Below Steps will be run only if optional API are not supported.<br />1. Create API call should fail.<br />2. Check the UID should not exist.<br /> 3. Create storage using set API.<br /> 4. Try to partially write using set_extended API.<br /> 5. Validate data is not modified.<br /> 6. Remove the uid.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | UID value used is 5
+| test_p015 | Create API call with<br /> WRITE_ONCE flag    | psa_ps_create<br />              |PSA_PS_ERROR_FLAGS_NOT_SUPPORTED                                               | Below Step will be run only if optional API are supported.<br />1. Create API call with WRITE_ONCE flag should fail.<br />                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          | UID value used is 5
+| NA | Storage Failure  <br />            | NA<br />    | PSA_PS_ERROR_STORAGE_FAILURE <br />|    1. The failure cause will depend on the underlying <br /> platform and vary for each implementation.<br /> It is skipped in current suite  <br /> | NA <br />                                                                                                                                                                     |
+| NA | Operation Failure  <br />            | NA<br />    | PSA_PS_ERROR_OPERATION_FAILED <br />|    1. The failure cause will depend on the underlying <br /> platform and vary for each implementation.<br /> It is skipped in current suite  <br /> | NA <br />                                                                                                                                                                     |
+| NA | Authentication Failure <br />            | NA<br />    | PSA_PS_ERROR_AUTH_FAILED <br />|    1. The failure cause will depend on the underlying <br /> platform and vary for each implementation.<br /> It is skipped in current suite  <br /> | NA <br />                                                                                                                                                                     |
+| NA | Data Corruption  <br />            | NA<br />    | PSA_PS_ERROR_DATA_CORRUPT <br />|    1. The failure cause will depend on the underlying <br /> platform and vary for each implementation.<br /> It is skipped in current suite  <br /> | NA <br />                                                                                                                                                                     |
+
 ## License
 Arm PSA test suite is distributed under Apache v2.0 License.
 
diff --git a/api-tests/docs/sw_requirements.md b/api-tests/docs/sw_requirements.md
index 3150044d..7a747254 100644
--- a/api-tests/docs/sw_requirements.md
+++ b/api-tests/docs/sw_requirements.md
@@ -1,24 +1,23 @@
 
-# Architecture Test Suite Software requirements
+# Architecture Test Suite Software Requirements
 
-## Prerequisite
 Before starting the test suite build, ensure that the following requirements are met: <br />
 
 - Host Operating System     : Ubuntu 16.04
-- Scripting tools           : Perl 5.12.3
+- Scripting tools           : Perl 5.12.3, Python 3.1.7
 - Compiler toolchain        : GNU Arm Embedded Toolchain 6.3.1, Arm Compiler v6.7
 
-*Note*: To compile Test Suite code, at least one of the above supported compiler toolchains
-        have to be available in the build environment.
+**Note**: To compile the test suite code, at least one of the above supported compiler toolchains
+        must be available in the build environment.
 
-### Setup a shell to enable compiler toolchain after installation
+### Setting up a shell to enable compiler toolchain after installation
 
-To import GNU Arm in your bash shell console:
+To import GNU Arm in your bash shell console, execute:
 ~~~
 export PATH=<GNU_ARM_PATH>/bin:$PATH
 ~~~
 
-To import Arm Compiler in your bash shell console:
+To import Arm Compiler in your bash shell console, execute:
 ~~~
 export PATH=<ARM_COMPILER_PATH>/bin:$PATH
 ~~~
@@ -30,15 +29,28 @@ To download the master branch of the repository, type the following command: <br
 git clone https://github.com/ARM-software/psa-arch-tests.git
 ~~~
 
-## Cloning external repo
+## Cloning the external repository
 
-To build initial attestation tests, PSA APIs test suite clones following
-git repo. The cloning is automated as part of the test suite
-build script ./setup.sh:
+To build Initial Attestation tests, the PSA APIs test suite clones the following
+git repository. The cloning is automated as part of the test suite
+build script **./setup.sh**:
 
 ~~~
 git clone https://github.com/laurencelundblade/QCBOR.git ./platform/targets/<platform_name>/nspe/initial_attestation/ext
-cd ./platform/targets/<platform_name>/nspe/initial_attestation/ext; git checkout 01168ef3f20e81d5db1ebd0cfa9a70055ee5b155
+cd ./platform/targets/<platform_name>/nspe/initial_attestation/ext; git checkout da53227db1488dde0952bdff66c3d904dce270b3
+~~~
+
+## To build on Cygwin(32-bit)
+
+To build test suite on Cygwin ensure all the above prerequisite in place.
+
+**Note**: Downloading the test suite in Window platform can have extra
+newline chars than Unix. Therefore, it is recommended to execute the
+following command to change the newline char format before running
+any test suite command.<br />
+
+~~~
+dos2unix ./tools/scripts/setup.sh
 ~~~
 
 ## License
diff --git a/api-tests/ff/README.md b/api-tests/ff/README.md
index d24bef35..8c820865 100644
--- a/api-tests/ff/README.md
+++ b/api-tests/ff/README.md
@@ -1,43 +1,35 @@
 
-# PSA Firmware Framework : Architecture Test Suite
+# PSA Firmware Framework Architecture Test Suite
 
-## Introduction
+## PSA Firmware Framework
 
-### PSA Firmware Framework (PSA-FF)
-
-The PSA-FF defines a standard interface and framework, to isolate trusted functionality withinconstrained IoT devices.
+*PSA Firmware Framework* (PSA-FF) defines a standard interface and framework to isolate trusted functionality within constrained IoT devices.
 
 The framework provides:
 - Architecture that describes isolated runtime environments (partitions) for trusted and untrusted firmware.
 - A standard model for describing the functionality and resources in each partition.
-- A secure IPC interface to request services from other partitions.
-- A model that describes how the partitions can interact with one another, as well as the hardware and the firmware framework implementation, itself.
-- A standard interfaces for the PSA RoT Services.
-
-This specification enables the development of secure firmware functionality that can be reused on different devices that use any conforming implementation of the Firmware Framework. For more information, download the [PSA FF Specification](https://pages.arm.com/psa-resources-ff.html?_ga=2.97388575.1220230133.1540547473-1540784585.1540547382)
-
-### Architecture Test Suite
+- A Secure IPC interface to request services from other partitions.
+- A model that describes how the partitions can interact with one another, as well as the hardware and the firmware framework implementation itself.
+- A standard interface for the PSA RoT services such as PSA RoT lifecycle service.
 
-The Architecture Test Suite is a set of examples of the invariant behaviours that are specified by the PSA FF Specification. Use this suite to verify that these behaviours are implemented correctly in your system.
+This specification enables the development of Secure firmware functionality which can be reused on different devices that use any conforming implementation of the Firmware Framework. For more information, download the [PSA-FF Specification](https://pages.arm.com/psa-resources-ff.html?_ga=2.97388575.1220230133.1540547473-1540784585.1540547382).
 
-The Architecture Test Suite contains the tests that are self-checking, portable C-based tests with directed stimulus.
+### Architecture test suite
 
-The tests are available as open source. The tests and the corresponding abstraction layers are available with an Apache v2.0 license allowing for external contribution. This test suite is not a substitute for design verification. To review the test logs, Arm licensees can contact Arm directly through their partner managers.
+The architecture test suite is a set of examples of the invariant behaviors that are specified by the PSA-FF specification. Use this suite to verify whether these behaviors are implemented correctly in your system. This suite contains self-checking and portable C-based tests with directed stimulus. The tests are available as open source. The tests and the corresponding abstraction layers are available with an Apache v2.0 license allowing for external contribution.
 
-For more information on Architecture Test Suite specification, refer the [Validation Methodology](../docs/Arm_PSA_APIs_Arch_Test_Validation_Methodology.pdf) document.
+This test suite is not a substitute for design verification. To review the test logs, Arm licensees can contact Arm directly through their partner managers.
 
-## Tests Scenarios
+For more information on architecture test suite specification, refer to the [Validation Methodology](../docs/Arm_PSA_APIs_Arch_Test_Validation_Methodology.pdf) document.
 
-The mapping of the rules in the specification to the test cases and the steps followed in the tests are mentioned in the [Scenario document](../docs/) present in the docs/ folder.
+## Tests scenarios
 
+The mapping of the rules in the specification to the test cases and the steps followed in the tests are mentioned in the [Scenario Document](../docs/) present in the **docs/** folder.
 
-## Getting Started
 
-Follow the instructions in the subsequent sections to get a copy of the source code on your local machine and build the tests. <br />
+## Getting started
 
-### Prerequisite
-
-Please make sure you have all required software installed as explained in the [software requirements](../docs/sw_requirements.md).
+Follow the instructions in the subsequent sections to get a copy of the source code on your local machine and build the tests. Make sure you have all required software installed as explained in the [Software Requirements](../docs/sw_requirements.md).
 
 ### Porting steps
 
@@ -45,64 +37,69 @@ Refer to the [PSA-FF Test Suite Porting Guide](../docs/porting_guide_ff.md) docu
 
 ### Build steps
 
-To build test suite for a given platform, execute the following commands:
+To build the test suite for your target platform, perform the following steps.
 
-1. cd api-tests
+1. Execute `cd api-tests`.
 
-2. Using your secure partition build tool, parse following test suite partition manifest files and generate manifest output files. The manifest parsing tool must be compliant to manifest rules defined in the PSA FF specification.<br />
-   <br />Test suite manifest to be parsed:<br />
-   - platform/targets/<platform_name>/manifests/common/driver_partition_psa.json
-   - platform/targets/<platform_name>/manifests/ipc/client_partition_psa.json
-   - platform/targets/<platform_name>/manifests/ipc/server_partition_psa.json
+2. Using your Secure partition build tool, parse the following test suite partition manifest files and generate manifest output files. The manifest parsing tool must be compliant with the manifest rules defined in the PSA FF specification.<br />
+   <br />The test suite manifests to be parsed are:<br />
+   - **platform/targets/<platform_name>/manifests/common/driver_partition_psa.json**
+   - **platform/targets/<platform_name>/manifests/ipc/client_partition_psa.json**
+   - **platform/targets/<platform_name>/manifests/ipc/server_partition_psa.json**
 
-3. Compile tests <br />
+3. Compile the tests as shown below. <br />
 ```
-   ./tools/scripts/setup.sh --target <platform_name> --cpu_arch <cpu_architecture_version> --suite <suite_name>  --build <build_dir> --include <include_path>
+   ./tools/scripts/setup.sh --target <platform_name> --cpu_arch <cpu_architecture_version> --suite <suite_name>  --build <build_dir> --include <include_path>  --archive_tests
 ```
 <br />  where:
 
--   <platform_name> is the same as the name of the target specific directory created in the platform/targets/ directory.  <br />
--   <cpu_architecture_version> is the Arm Architecture version name for which test binaries should be compiled. For example, Armv7M, Armv8M-Baseline and Armv8M-Mainline Architecture.  <br />
--   <suite_name> is the suite name and it is same as the suite name available in test_suites/ directory. <br />
--   <include_path> is an additional directory to be included into compiler search path. Note- To compile ipc tests, include path must point to path where "psa/client.h", "psa/service.h" and test partition manifest output files(``"psa_manifest/sid.h" and "psa_manifest/<manifestfilename>.h"``) are located in your build system.<br />
--   <build_dir> is an output directory to keep build files.
+-   <platform_name> is the same as the name of the target specific directory created in the **platform/targets/** directory.  <br />
+-   <cpu_architecture_version> is the Arm Architecture version name for which the tests should be compiled. For example, Armv7M, Armv8M-Baseline and Armv8M-Mainline Architecture.  <br />
+-   <suite_name> is the suite name which is the same as the suite name available in **ff/** directory. <br >
+-   <build_dir> is a directory to store the build output files.  <br />
+-   <include_path> is an additional directory to be included into the compiler search path. <br />
+Note: To compile IPC tests, the include path must point to the path where **psa/client.h**, **psa/service.h**,  **psa/lifecycle.h** and test partition manifest output files(**psa_manifest/sid.h**, **psa_manifest/pid.h** and **psa_manifest/<manifestfilename>.h**) are located in your build system.<br />
+-  Use **--archive_tests** option to create a combined test archive(test_combine.a) file by combining the available test objects files. Not using this option will create a combined test binary(test_elf_combine.bin) by combining the available test ELFs.
 
-Refer ./tools/scripts/setup.sh --help to know more about options.
+For more information about options, refer to **./tools/scripts/setup.sh --help**.
 
-*To compile ipc tests for tgt_ff_mbedos_fvp_mps2_m4 platform*
+To compile IPC tests for **tgt_ff_mbedos_fvp_mps2_m4** platform, execute the following commands:
 ```
 cd api-tests
-./tools/scripts/setup.sh --target tgt_ff_mbedos_fvp_mps2_m4 --cpu_arch armv7m --suite ipc --build BUILD_IPC --include <include_path1> --include <include_path2>
+./tools/scripts/setup.sh --target tgt_ff_mbedos_fvp_mps2_m4 --cpu_arch armv7m --suite ipc --build BUILD_IPC --include <include_path1> --include <include_path2> --archive_tests
 ```
+**Note**: The default compilation flow includes the functional API tests to build the test suite. It does not include panic tests that check for the API's PROGRAMMER ERROR conditions as defined in the PSA-FF specification. You can include the panic tests for building the test suite just by passing **--include_panic_tests** option to script.
 
 ### Build output
-Test suite build generates following binaries:<br />
+The test suite build generates the following binaries:<br />
 
 NSPE libraries:<br />
-1. <build_dir>/BUILD/val/val_nspe.a
-2. <build_dir>/BUILD/platform/pal_nspe.a
-3. <build_dir>/BUILD/ff/<suite_name>/test_elf_combine.bin
+1. **<build_dir>/BUILD/val/val_nspe.a**
+2. **<build_dir>/BUILD/platform/pal_nspe.a**
+3. **<build_dir>/BUILD/ff/<suite_name>/test_combine.a**
 
-SPE libraries:<br />
-1. <build_dir>/BUILD/partition/driver_partition.a
-2. <build_dir>/BUILD/partition/client_partition.a
-3. <build_dir>/BUILD/partition/server_partition.a
+SPE libraries explicitly for IPC test suite:<br />
+1. **<build_dir>/BUILD/partition/driver_partition.a**
+2. **<build_dir>/BUILD/partition/client_partition.a**
+3. **<build_dir>/BUILD/partition/server_partition.a**
 
-### Binaries integration into your platform
+### Integrating the libraries into your target platform
 
-1. Integrate test partition (SPE archives) with your software stack containing SPM so that partition code get access to PSA defined client and secure partition APIs. This forms a SPE binary.
-2. Integrate BUILD/val/val_nspe.a and BUILD/platform/pal_nspe.a libraries with your Non-Secure OS so that these libraries get access to PSA client APIs. This will form a NSPE binary.
-3. Load NSPE binary and test_elf_combine.bin to NS memory
-4. Load SPE binary into S memory
+1. Integrate the test partition (SPE archives) with your software stack containing SPM so that the partition code gets access to PSA-defined client and Secure partition APIs. This forms an SPE binary.
+2. Integrate **val_nspe.a**, **pal_nspe.a** and **test_combine.a** libraries with your Non-secure OS so that these libraries get access to PSA client APIs. This forms an NSPE binary.
+3. Load NSPE binary into Non-secure memory.
+4. Load SPE binary into Secure memory.
 
-## Test Suite Execution
-The following steps describe the execution flow prior to the start of test execution: <br />
+## Test suite execution
+The following steps describe the execution flow before the test execution: <br />
 
-1. The target platform must load above binaries into appropriate memory. <br />
-2. The System Under Test (SUT) would boot to an environment which intializes SPM and test suite partitions are ready to accept requests. <br />
-3. On the non-secure side, the SUT - boot software would give control to the test suite entry point- *void val_entry(void);* as an application entry point. <br />
+1. The target platform must load the above binaries into appropriate memory. <br />
+2. The *System Under Test* (SUT) boots to an environment that initializes the SPM and the test suite partitions are ready to accept requests. <br />
+3. On the Non-secure side, the SUT boot software gives control to the test suite entry point **void val_entry(void);** as an application entry point. <br />
 4. The tests are executed sequentially in a loop in the test_dispatcher function. <br />
 
+For details on test suite integration, refer to the **Integrating the test suite with the SUT** section of [Validation Methodology](../docs/Arm_PSA_APIs_Arch_Test_Validation_Methodology.pdf).
+
 ## License
 
 Arm PSA test suite is distributed under Apache v2.0 License.
@@ -118,4 +115,3 @@ Arm PSA test suite is distributed under Apache v2.0 License.
 --------------
 
 *Copyright (c) 2018-2019, Arm Limited and Contributors. All rights reserved.*
-
diff --git a/api-tests/ff/ipc/test_i001/test_i001.c b/api-tests/ff/ipc/test_i001/test_i001.c
index d1ecc470..80185ad5 100644
--- a/api-tests/ff/ipc/test_i001/test_i001.c
+++ b/api-tests/ff/ipc/test_i001/test_i001.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i001.h"
@@ -36,7 +36,7 @@ int32_t client_test_psa_framework_version(security_t caller)
 {
    int32_t         status = VAL_STATUS_SUCCESS;
 
-   val->print(PRINT_TEST, "[Check1] psa_framework_version\n", 0);
+   val->print(PRINT_TEST, "[Check 1] psa_framework_version\n", 0);
 
    /* Retrieve the version of the PSA Framework API that is implemented.*/
    if (psa->framework_version() != PSA_FRAMEWORK_VERSION)
@@ -54,7 +54,7 @@ int32_t client_test_psa_version(security_t caller)
    int32_t         status = VAL_STATUS_SUCCESS;
    uint32_t        version;
 
-   val->print(PRINT_TEST, "[Check2] psa_version\n", 0);
+   val->print(PRINT_TEST, "[Check 2] psa_version\n", 0);
 
    /*Return PSA_VERSION_NONE when the RoT Service is not implemented, or the caller is not permitted
    to access the service. Return minor version of the implemented and allowed RoT Service */
diff --git a/api-tests/ff/ipc/test_i001/test_supp_i001.c b/api-tests/ff/ipc/test_i001/test_supp_i001.c
index ce6de385..2a33cfaa 100644
--- a/api-tests/ff/ipc/test_i001/test_supp_i001.c
+++ b/api-tests/ff/ipc/test_i001/test_supp_i001.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_framework_version(void);
 int32_t server_test_psa_version(void);
@@ -30,12 +35,12 @@ server_test_t test_i001_server_tests_list[] = {
 
 int32_t server_test_psa_framework_version(void)
 {
-    val_err_check_set(TEST_CHECKPOINT_NUM(201), VAL_STATUS_SUCCESS);
+    val->err_check_set(TEST_CHECKPOINT_NUM(201), VAL_STATUS_SUCCESS);
     return VAL_STATUS_SUCCESS;
 }
 
 int32_t server_test_psa_version(void)
 {
-    val_err_check_set(TEST_CHECKPOINT_NUM(202), VAL_STATUS_SUCCESS);
+    val->err_check_set(TEST_CHECKPOINT_NUM(202), VAL_STATUS_SUCCESS);
     return VAL_STATUS_SUCCESS;
 }
diff --git a/api-tests/ff/ipc/test_i002/test_i002.c b/api-tests/ff/ipc/test_i002/test_i002.c
index 705ee2b9..abd023f4 100644
--- a/api-tests/ff/ipc/test_i002/test_i002.c
+++ b/api-tests/ff/ipc/test_i002/test_i002.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i002.h"
@@ -43,27 +43,30 @@ int32_t client_test_connection_busy_and_reject(security_t caller)
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_handle_t    handle = 0;
 
-    val->print(PRINT_TEST, "[Check1] Test busy and reject connect type\n", 0);
+    val->print(PRINT_TEST, "[Check 1] Test busy and reject connect type\n", 0);
 
     handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
 
-    /* The RoT Service can't make connection at this moment.
-     * Expect PSA_CONNECTION_BUSY by RoT service.
+    /*
+     * The RoT Service can't make connection at this moment. It sends
+     * PSA_ERROR_CONNECTION_BUSY in psa_reply.
      */
-    if (handle != PSA_CONNECTION_BUSY)
+    if (handle != PSA_ERROR_CONNECTION_BUSY)
     {
-        val->print(PRINT_ERROR, "Expected handle=PSA_CONNECTION_BUSY but handle=0x%x\n", handle);
+        val->print(PRINT_ERROR,
+                   "Expected handle=PSA_ERROR_CONNECTION_BUSY but handle=0x%x\n", handle);
         return VAL_STATUS_INVALID_HANDLE;
     }
 
     handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
 
     /* The RoT Service rejected the client because of an application-specific case
-     * Expect PSA_CONNECTION_REFUSED by RoT service
+     * Expect PSA_ERROR_CONNECTION_REFUSED as return
      */
-    if (handle != PSA_CONNECTION_REFUSED)
+    if (handle != PSA_ERROR_CONNECTION_REFUSED)
     {
-        val->print(PRINT_ERROR, "Expected handle=PSA_CONNECTION_REFUSED but handle=0x%x\n", handle);
+        val->print(PRINT_ERROR,
+                   "Expected handle=PSA_ERROR_CONNECTION_REFUSED but handle=0x%x\n", handle);
         status = VAL_STATUS_INVALID_HANDLE;
     }
 
@@ -74,7 +77,7 @@ int32_t client_test_accept_and_close_connect(security_t caller)
 {
    psa_handle_t     handle = 0;
 
-   val->print(PRINT_TEST, "[Check2] Accept and close connection\n", 0);
+   val->print(PRINT_TEST, "[Check 2] Accept and close connection\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    /* RoT service accepts the connection. Expecting positive handle */
@@ -101,7 +104,7 @@ int32_t client_test_connect_with_allowed_minor_version_policy(security_t caller)
                              SERVER_RELAX_MINOR_VERSION_SID};
    uint32_t         minor_v[] = {1, 2, 1, 2};
 
-   val->print(PRINT_TEST, "[Check3] Test psa_connect with allowed minor version policy\n", 0);
+   val->print(PRINT_TEST, "[Check 3] Test psa_connect with allowed minor version policy\n", 0);
 
    /* Connect RoT service with following minor version numbers and expect positive handle for
     * each connection:
@@ -156,7 +159,7 @@ int32_t client_test_psa_call_with_allowed_status_code(security_t caller)
    psa_status_t    expected_status_code[] = {PSA_SUCCESS, 1, 2, INT32_MAX, -1, -2, INT32_MIN+128};
    uint32_t        i = 0;
 
-   val->print(PRINT_TEST, "[Check4] Test psa_call with allowed status code\n", 0);
+   val->print(PRINT_TEST, "[Check 4] Test psa_call with allowed status code\n", 0);
 
    for (i = 0; i < (sizeof(expected_status_code)/sizeof(expected_status_code[0])); i++)
    {
@@ -179,7 +182,7 @@ int32_t client_test_identity(security_t caller)
    psa_status_t    status_of_call;
    int             id_at_connect = 0, id_at_call = 0;
 
-   val->print(PRINT_TEST, "[Check5] Test client_id\n", 0);
+   val->print(PRINT_TEST, "[Check 5] Test client_id\n", 0);
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
 
    if (handle < 0)
@@ -220,16 +223,16 @@ int32_t client_test_spm_concurrent_connect_limit(security_t caller)
    psa_handle_t    handle[CONNECT_LIMIT] = {0};
    int             i= 0, signture = 0;
 
-   val->print(PRINT_TEST, "[Check6] Test connect limit\n", 0);
+   val->print(PRINT_TEST, "[Check 6] Test connect limit\n", 0);
 
    /* Execute psa_connect in a loop until it returns
-    * PSA_CONNECTION_REFUSED OR PSA_CONNECTION_BUSY
+    * PSA_ERROR_CONNECTION_REFUSED OR PSA_ERROR_CONNECTION_BUSY
     */
    while (i < CONNECT_LIMIT)
    {
        handle[i] = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
        /* Compare handle value */
-       if ((handle[i] == PSA_CONNECTION_REFUSED) || (handle[i] == PSA_CONNECTION_BUSY))
+       if ((handle[i] == PSA_ERROR_CONNECTION_REFUSED) || (handle[i] == PSA_ERROR_CONNECTION_BUSY))
        {
            signture = 1;
            break;
@@ -264,7 +267,7 @@ int32_t client_test_psa_wait(void)
    for (i = 0; i < CONNECT_NUM; i++)
    {
        handle[i] = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
-       if (handle[i] != PSA_CONNECTION_REFUSED)
+       if (handle[i] != PSA_ERROR_CONNECTION_REFUSED)
        {
            return VAL_STATUS_INVALID_HANDLE;
        }
@@ -275,12 +278,12 @@ int32_t client_test_psa_wait(void)
 
 int32_t client_test_psa_block_behave(security_t caller)
 {
-   val->print(PRINT_TEST, "[Check7] Test PSA_BLOCK\n", 0);
+   val->print(PRINT_TEST, "[Check 7] Test PSA_BLOCK\n", 0);
    return (client_test_psa_wait());
 }
 
 int32_t client_test_psa_poll_behave(security_t caller)
 {
-   val->print(PRINT_TEST, "[Check8] Test PSA_POLL\n", 0);
+   val->print(PRINT_TEST, "[Check 8] Test PSA_POLL\n", 0);
    return (client_test_psa_wait());
 }
diff --git a/api-tests/ff/ipc/test_i002/test_i002.h b/api-tests/ff/ipc/test_i002/test_i002.h
index c4eb205b..a0767873 100644
--- a/api-tests/ff/ipc/test_i002/test_i002.h
+++ b/api-tests/ff/ipc/test_i002/test_i002.h
@@ -28,7 +28,7 @@
 #define psa CONCAT(psa,_client_sp)
 #endif
 
-#define CONNECT_LIMIT 20
+#define CONNECT_LIMIT 50
 #define CONNECT_NUM 2
 
 extern val_api_t *val;
diff --git a/api-tests/ff/ipc/test_i002/test_supp_i002.c b/api-tests/ff/ipc/test_i002/test_supp_i002.c
index 4358e240..274452b7 100644
--- a/api-tests/ff/ipc/test_i002/test_supp_i002.c
+++ b/api-tests/ff/ipc/test_i002/test_supp_i002.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 #define CONNECT_NUM 2
 
@@ -47,28 +52,29 @@ int32_t server_test_connection_busy_and_reject(void)
     int32_t     status = VAL_STATUS_SUCCESS;
     psa_msg_t   msg = {0};
 
-    /* Checks performed:
-     * psa_wait()- Returns > 0 when at least one signal is asserted
+    /*
+     * Checks performed:
+     * psa->wait()- Returns > 0 when at least one signal is asserted
      * check delivery of PSA_IPC_CONNECT when psa_connect called.
      * And msg.handle must be positive.
     */
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
         return status;
     }
 
     /* Rejecting connection to check behaviour of PSA_CONNECTION_BUSY */
-    psa_reply(msg.handle, PSA_CONNECTION_BUSY);
+    psa->reply(msg.handle, PSA_CONNECTION_BUSY);
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
         return status;
     }
 
-    /* Rejecting connection to check behaviour of PSA_CONNECTION_REFUSED */
-    psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+    /* Rejecting connection to check behaviour of PSA_ERROR_CONNECTION_REFUSED */
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     return status;
 }
 
@@ -77,30 +83,30 @@ int32_t server_test_accept_and_close_connect(void)
     int32_t     status = VAL_STATUS_SUCCESS;
     psa_msg_t   msg = {0};
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
     {
         /* Reject the connection if processing of connect request has failed */
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
     /* Accepting connection to check behaviour of PSA_SUCCESS */
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
     /* Checking delivery of PSA_IPC_DISCONNECT when psa_close called
      * msg.handle must be positive
      */
-    status = val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(204), status))
+    status = val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(204), status))
     {
         return status;
     }
 
     /* Sanity check - if the message type is PSA_IPC_DISCONNECT then the status code is ignored.*/
-    psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     /* Debug print for sanity check */
-    val_err_check_set(TEST_CHECKPOINT_NUM(205), status);
+    val->err_check_set(TEST_CHECKPOINT_NUM(205), status);
     return status;
 }
 
@@ -116,20 +122,20 @@ int32_t server_test_connect_with_allowed_minor_version_policy(void)
 
     for (i = 0; i < 4; i++)
     {
-        status = ((val_process_connect_request(signal[i], &msg))
+        status = ((val->process_connect_request(signal[i], &msg))
                                     ? VAL_STATUS_ERROR : status);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(206), status))
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(206), status))
         {
-            psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+            psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
             return status;
         }
 
-        psa_reply(msg.handle, PSA_SUCCESS);
+        psa->reply(msg.handle, PSA_SUCCESS);
 
-        status = ((val_process_disconnect_request(signal[i], &msg))
+        status = ((val->process_disconnect_request(signal[i], &msg))
                                         ? VAL_STATUS_ERROR : status);
-        val_err_check_set(TEST_CHECKPOINT_NUM(207), status);
-        psa_reply(msg.handle, PSA_SUCCESS);
+        val->err_check_set(TEST_CHECKPOINT_NUM(207), status);
+        psa->reply(msg.handle, PSA_SUCCESS);
     }
     return status;
 }
@@ -143,33 +149,33 @@ int32_t server_test_psa_call_with_allowed_status_code(void)
 
     for (i = 0; i < (sizeof(status_code)/sizeof(status_code[0])); i++)
     {
-        status = ((val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+        status = ((val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                                         ? VAL_STATUS_ERROR : status);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(208), status))
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(208), status))
         {
-            psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+            psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
             return status;
         }
-        psa_reply(msg.handle, PSA_SUCCESS);
+        psa->reply(msg.handle, PSA_SUCCESS);
 
-        status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(209), status))
+        status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(209), status))
         {
             /* Send status code other than status_code[] to indicate failure
              * in processing call request
              */
-            psa_reply(msg.handle, -3);
+            psa->reply(msg.handle, -3);
         }
         else
         {
             /* Send various status code available in status_code[] */
-            psa_reply(msg.handle, status_code[i]);
+            psa->reply(msg.handle, status_code[i]);
         }
 
-        status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+        status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                                         ? VAL_STATUS_ERROR : status);
-        psa_reply(msg.handle, PSA_SUCCESS);
-        val_err_check_set(TEST_CHECKPOINT_NUM(210), status);
+        psa->reply(msg.handle, PSA_SUCCESS);
+        val->err_check_set(TEST_CHECKPOINT_NUM(210), status);
     }
     return status;
 }
@@ -180,38 +186,38 @@ int32_t server_test_identity(void)
     psa_msg_t   msg = {0};
     int         id_at_connect = 0, id_at_call = 0;
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
 
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(211), status))
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(211), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
     /* Client ID during connect */
     id_at_connect = msg.client_id;
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(212), status))
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(212), status))
     {
-        psa_reply(msg.handle, -3);
+        psa->reply(msg.handle, -3);
     }
     else
     {
         /* Client ID during call */
         id_at_call = msg.client_id;
-        psa_write(msg.handle, 0, &id_at_connect, msg.out_size[0]);
-        psa_write(msg.handle, 1, &id_at_call, msg.out_size[1]);
-        psa_reply(msg.handle, PSA_SUCCESS);
+        psa->write(msg.handle, 0, &id_at_connect, msg.out_size[0]);
+        psa->write(msg.handle, 1, &id_at_call, msg.out_size[1]);
+        psa->reply(msg.handle, PSA_SUCCESS);
     }
 
-    status = val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    val_err_check_set(TEST_CHECKPOINT_NUM(213), status);
+    status = val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    val->err_check_set(TEST_CHECKPOINT_NUM(213), status);
     /* Client ID during disconnect. It should be equal to id_at_call */
     if (msg.client_id != id_at_call)
     {
-        val_print(PRINT_ERROR, "\tmsg.client_id failed for IPC_DISCONNECT", 0);
+        val->print(PRINT_ERROR, "\tmsg.client_id failed for IPC_DISCONNECT", 0);
         status = VAL_STATUS_WRONG_IDENTITY;
     }
 
@@ -223,10 +229,10 @@ int32_t server_test_identity(void)
      */
     if ((msg.client_id > 0) && (msg.client_id != CLIENT_PARTITION))
     {
-        val_print(PRINT_ERROR, "\tmsg.client_id failed for CLIENT_PARTITION", 0);
+        val->print(PRINT_ERROR, "\tmsg.client_id failed for CLIENT_PARTITION", 0);
         status = VAL_STATUS_WRONG_IDENTITY;
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
 
@@ -239,15 +245,15 @@ int32_t server_test_spm_concurrent_connect_limit(void)
 
     while (1)
     {
-       signals = psa_wait(PSA_WAIT_ANY, PSA_BLOCK);
+       signals = psa->wait(PSA_WAIT_ANY, PSA_BLOCK);
        if ((signals & SERVER_UNSPECIFED_MINOR_V_SIG) == 0)
        {
-          val_print(PRINT_ERROR,
+          val->print(PRINT_ERROR,
                     "psa_wait returned with invalid signal value = 0x%x\n", signals);
           return VAL_STATUS_ERROR;
        }
 
-       if (psa_get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
+       if (psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
            continue;
 
        switch(msg.type)
@@ -255,12 +261,12 @@ int32_t server_test_spm_concurrent_connect_limit(void)
            case PSA_IPC_CONNECT:
                 /* serve bulk connect cases to reach connect limit */
                 count++;
-                psa_reply(msg.handle, PSA_SUCCESS);
+                psa->reply(msg.handle, PSA_SUCCESS);
                 break;
            case PSA_IPC_DISCONNECT:
                 /* serve bulk disconnect cases */
                 count--;
-                psa_reply(msg.handle, PSA_SUCCESS);
+                psa->reply(msg.handle, PSA_SUCCESS);
        }
        if (count == 0)
        {
@@ -277,39 +283,40 @@ int32_t server_test_psa_block_behave(void)
     psa_msg_t       msg = {0};
     int             i = 0;
 
-    /* This is a sanity check - a successful handshaking between client and
+    /*
+     * This is a sanity check - a successful handshaking between client and
      * server for requested connection represents check pass.
      */
 
     /* Debug print */
-    val_err_check_set(TEST_CHECKPOINT_NUM(214), VAL_STATUS_SUCCESS);
+    val->err_check_set(TEST_CHECKPOINT_NUM(214), VAL_STATUS_SUCCESS);
 
     for (i = 0; i < CONNECT_NUM; i++)
     {
 wait:
          /* PSA_BLOCK ored with 0xFF to check timeout[30:0]=RES is ignored by implementation */
-         signals = psa_wait(PSA_WAIT_ANY, PSA_BLOCK);
+         signals = psa->wait(PSA_WAIT_ANY, PSA_BLOCK);
 
          /* When MODE is one(PSA_BLOCK), the psa_wait must return non-zero signal value */
          if ((signals & SERVER_UNSPECIFED_MINOR_V_SIG) == 0)
          {
-             val_print(PRINT_ERROR,
+             val->print(PRINT_ERROR,
                      "psa_wait returned with invalid signal value = 0x%x\n", signals);
              return VAL_STATUS_ERROR;
          }
          else
          {
-             if (psa_get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
+             if (psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
              {
                  goto wait;
              }
 
-             psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+             psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
          }
     }
 
     /* Debug print */
-    val_err_check_set(TEST_CHECKPOINT_NUM(215), VAL_STATUS_SUCCESS);
+    val->err_check_set(TEST_CHECKPOINT_NUM(215), VAL_STATUS_SUCCESS);
 
     return VAL_STATUS_SUCCESS;
 }
@@ -323,37 +330,38 @@ int32_t server_test_psa_poll_behave(void)
     while (1)
     {
         /* Debug print */
-        val_err_check_set(TEST_CHECKPOINT_NUM(216), VAL_STATUS_SUCCESS);
+        val->err_check_set(TEST_CHECKPOINT_NUM(216), VAL_STATUS_SUCCESS);
 
         /* Loop to receive client request */
         while (signals == 0)
         {
-            signals = psa_wait(PSA_WAIT_ANY, PSA_POLL);
+            signals = psa->wait(PSA_WAIT_ANY, PSA_POLL);
         }
 
-        /* When MODE is zero(PSA_POLL), the psa_wait will return immediately with the current
+        /*
+         * When MODE is zero(PSA_POLL), the psa_wait will return immediately with the current
          * signal state, which can be zero if no signals are active. Exepecting following call to
          * return immediately as none of client is making request.
          */
-        signals_temp = psa_wait(PSA_WAIT_ANY, PSA_POLL);
+        signals_temp = psa->wait(PSA_WAIT_ANY, PSA_POLL);
 
         if (signals_temp == 0)
         {
-            val_print(PRINT_ERROR,
+            val->print(PRINT_ERROR,
                     "psa_wait returned with invalid signals_temp = 0x%x\n", signals_temp);
             return VAL_STATUS_ERROR;
         }
         else if ((signals & SERVER_UNSPECIFED_MINOR_V_SIG) == 0)
         {
-            val_print(PRINT_ERROR,
+            val->print(PRINT_ERROR,
                     "psa_wait returned with invalid signal value = 0x%x\n", signals);
             return VAL_STATUS_ERROR;
         }
         else
         {
-            if (psa_get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
+            if (psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
                 continue;
-            psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+            psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
             count++;
             signals = 0;
         }
diff --git a/api-tests/ff/ipc/test_i003/test_i003.c b/api-tests/ff/ipc/test_i003/test_i003.c
index 17b1bdb9..a6ac294c 100644
--- a/api-tests/ff/ipc/test_i003/test_i003.c
+++ b/api-tests/ff/ipc/test_i003/test_i003.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -21,7 +21,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i003.h"
@@ -43,7 +43,7 @@ int32_t client_test_zero_length_invec(security_t caller)
    psa_handle_t         handle = 0;
    int                  data[4] = {0x11, 0x22};
 
-   val->print(PRINT_TEST, "[Check1] Test zero length invec\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test zero length invec\n", 0);
 
    if (val->ipc_connect(SERVER_UNSPECIFED_MINOR_V_SID, 1, &handle))
    {
@@ -97,7 +97,7 @@ int32_t client_test_zero_length_outvec(security_t caller)
    psa_handle_t         handle = 0;
    int                  data[4] = {0x11};
 
-   val->print(PRINT_TEST, "[Check2] Test zero length outvec\n", 0);
+   val->print(PRINT_TEST, "[Check 2] Test zero length outvec\n", 0);
 
    if (val->ipc_connect(SERVER_UNSPECIFED_MINOR_V_SID, 1, &handle))
    {
@@ -155,7 +155,7 @@ int32_t client_test_call_read_and_skip(security_t caller)
    uint64_t             data3 = 0x1020304050607080;
    psa_handle_t         handle = 0;
 
-   val->print(PRINT_TEST, "[Check3] Test psa_write, psa_read and psa_skip\n", 0);
+   val->print(PRINT_TEST, "[Check 3] Test psa_write, psa_read and psa_skip\n", 0);
 
    if (val->ipc_connect(SERVER_UNSPECIFED_MINOR_V_SID, 1, &handle))
    {
@@ -192,7 +192,7 @@ int32_t client_test_call_and_write(security_t caller)
                                            2};
    psa_handle_t         handle = 0;
 
-   val->print(PRINT_TEST, "[Check4] Test psa_call and psa_write\n", 0);
+   val->print(PRINT_TEST, "[Check 4] Test psa_call and psa_write\n", 0);
 
    if (val->ipc_connect(SERVER_UNSPECIFED_MINOR_V_SID, 1, &handle))
    {
@@ -248,7 +248,7 @@ int32_t client_test_psa_set_rhandle(security_t caller)
    psa_handle_t       handle = 0;
    int                i = 0;
 
-   val->print(PRINT_TEST, "[Check5] Test psa_set_rhandle API\n", 0);
+   val->print(PRINT_TEST, "[Check 5] Test psa_set_rhandle API\n", 0);
 
     /*rhandle value check when PSA_IPC_CONNECT */
    if (val->ipc_connect(SERVER_UNSPECIFED_MINOR_V_SID, 1, &handle))
@@ -281,7 +281,7 @@ int32_t client_test_overlapping_vectors(security_t caller)
    psa_handle_t       handle = 0;
    uint8_t            data = 0x11, expected_data[] = {0x22, 0x33};
 
-   val->print(PRINT_TEST, "[Check6] Test overlapping vectors\n", 0);
+   val->print(PRINT_TEST, "[Check 6] Test overlapping vectors\n", 0);
 
    if (val->ipc_connect(SERVER_UNSPECIFED_MINOR_V_SID, 1, &handle))
    {
diff --git a/api-tests/ff/ipc/test_i003/test_supp_i003.c b/api-tests/ff/ipc/test_i003/test_supp_i003.c
index cf4144fa..eddefced 100644
--- a/api-tests/ff/ipc/test_i003/test_supp_i003.c
+++ b/api-tests/ff/ipc/test_i003/test_supp_i003.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_set_rhandle(void);
 int32_t server_test_call_read_and_skip(void);
@@ -43,19 +48,19 @@ static void exit_graceful(psa_handle_t msg_handle, int status_code,
 
     if (print_next_args != 0)
     {
-        val_print(PRINT_ERROR, "\tExpected data=%x\n", expected_data);
-        val_print(PRINT_ERROR, "\tActual data=%x\n", actual_data);
+        val->print(PRINT_ERROR, "\tExpected data=%x\n", expected_data);
+        val->print(PRINT_ERROR, "\tActual data=%x\n", actual_data);
     }
     /* Negative status_code represents check failure and each check has
      * uniq status_code to identify failing point
      */
-    psa_reply(msg_handle, status_code);
+    psa->reply(msg_handle, status_code);
 
-    if (val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    if (val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
     {
-        val_print(PRINT_ERROR, "\tdisconnect failed in exit_graceful func\n", 0);
+        val->print(PRINT_ERROR, "\tdisconnect failed in exit_graceful func\n", 0);
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 }
 
 int32_t server_test_zero_length_invec(void)
@@ -64,14 +69,14 @@ int32_t server_test_zero_length_invec(void)
     psa_msg_t            msg = {0};
     int                  data[5] = {0}, actual_data = 0x22;
 
-    if (val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    if (val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return VAL_STATUS_CONNECTION_FAILED;
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    if (val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    if (val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
     {
         exit_graceful(msg.handle, -2, 0, 0, 0);
         return VAL_STATUS_CALL_FAILED;
@@ -87,7 +92,7 @@ int32_t server_test_zero_length_invec(void)
     }
 
     if ((msg.in_size[2] <= sizeof(data[2])) &&
-        (psa_read(msg.handle, 2, &data[2], msg.in_size[2]) != msg.in_size[2]))
+        (psa->read(msg.handle, 2, &data[2], msg.in_size[2]) != msg.in_size[2]))
     {
         exit_graceful(msg.handle, -4, 0, 0, 0);
         return VAL_STATUS_READ_FAILED;
@@ -108,11 +113,11 @@ int32_t server_test_zero_length_invec(void)
          return VAL_STATUS_MSG_OUTSIZE_FAILED;
     }
 
-    psa_write(msg.handle, 0, &data[2], msg.out_size[0]);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->write(msg.handle, 0, &data[2], msg.out_size[0]);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    status = val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
 
@@ -122,14 +127,14 @@ int32_t server_test_zero_length_outvec(void)
     psa_msg_t            msg={0};
     int                  data[5] ={0}, actual_data=0x11;
 
-    if (val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    if (val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return VAL_STATUS_CONNECTION_FAILED;
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    if (val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    if (val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
     {
         exit_graceful(msg.handle, -2, 0, 0, 0);
         return VAL_STATUS_CALL_FAILED;
@@ -145,7 +150,7 @@ int32_t server_test_zero_length_outvec(void)
     }
 
     if ((msg.in_size[0] <= sizeof(data[0])) &&
-        (psa_read(msg.handle, 0, &data[0], msg.in_size[0]) != msg.in_size[0]))
+        (psa->read(msg.handle, 0, &data[0], msg.in_size[0]) != msg.in_size[0]))
     {
         exit_graceful(msg.handle, -4, 0, 0, 0);
         return VAL_STATUS_READ_FAILED;
@@ -165,14 +170,14 @@ int32_t server_test_zero_length_outvec(void)
          exit_graceful(msg.handle, -6, 0, 0, 0);
          return VAL_STATUS_MSG_OUTSIZE_FAILED;
     }
-    psa_write(msg.handle, 2, &data[0], msg.out_size[2]);
+    psa->write(msg.handle, 2, &data[0], msg.out_size[2]);
 
     /* Dummy write with zero byte. This should not overwrite previously written data */
-    psa_write(msg.handle, 2, &data[0], msg.out_size[0]);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->write(msg.handle, 2, &data[0], msg.out_size[0]);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    status = val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
 
@@ -184,14 +189,14 @@ int32_t server_test_call_read_and_skip(void)
                 actual_data[4] = {0}, i;
     psa_msg_t   msg = {0};
 
-    if (val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    if (val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return VAL_STATUS_CONNECTION_FAILED;
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    if (val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    if (val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
     {
         exit_graceful(msg.handle, -2, 0, 0, 0);
         return VAL_STATUS_CALL_FAILED;
@@ -211,7 +216,7 @@ int32_t server_test_call_read_and_skip(void)
     for (i = 0; i < 2 ; i++)
     {
        if ((msg.in_size[i] <= sizeof(actual_data[i])) &&
-           (psa_read(msg.handle, i, &actual_data[i], msg.in_size[i]) != msg.in_size[i]))
+           (psa->read(msg.handle, i, &actual_data[i], msg.in_size[i]) != msg.in_size[i]))
        {
            exit_graceful(msg.handle, -4, 0, 0, 0);
            return VAL_STATUS_READ_FAILED;
@@ -224,7 +229,7 @@ int32_t server_test_call_read_and_skip(void)
     }
 
     /* Inbound read of 2 bytes from invec 2 */
-    if (psa_read(msg.handle, 2, &actual_data[0], 2) != 2)
+    if (psa->read(msg.handle, 2, &actual_data[0], 2) != 2)
     {
        exit_graceful(msg.handle, -6, 0, 0, 0);
        return VAL_STATUS_READ_FAILED;
@@ -236,14 +241,14 @@ int32_t server_test_call_read_and_skip(void)
     }
 
     /* Inbound read of 3 bytes from invec 2 */
-    if (psa_skip(msg.handle, 2, 3) != 3)
+    if (psa->skip(msg.handle, 2, 3) != 3)
     {
        exit_graceful(msg.handle, -8, 0, 0, 0);
        return VAL_STATUS_SKIP_FAILED;
     }
 
     /* Check previous psa_skip has actually skipped 3 bytes */
-    if (psa_read(msg.handle, 2, &actual_data[0], 2) != 2)
+    if (psa->read(msg.handle, 2, &actual_data[0], 2) != 2)
     {
        exit_graceful(msg.handle, -9, 0, 0, 0);
        return VAL_STATUS_READ_FAILED;
@@ -258,7 +263,7 @@ int32_t server_test_call_read_and_skip(void)
     /* Outbound read of 3 bytes from invec 2
      * Only one byte should be updated in buffer. Remaining space should be untouched
      */
-    if (psa_read(msg.handle, 2, &actual_data[0], 3) != 1)
+    if (psa->read(msg.handle, 2, &actual_data[0], 3) != 1)
     {
        exit_graceful(msg.handle, -11, 0, 0, 0);
        return VAL_STATUS_READ_FAILED;
@@ -275,29 +280,29 @@ int32_t server_test_call_read_and_skip(void)
     /* After outbound read, subsequent read or skip to invec 2 should return 0
      * and memory buffer shouldn't be updated
      */
-    if ((psa_read(msg.handle, 2, &actual_data[0], 3) != 0) ||
-        (psa_skip(msg.handle, 2, 3) != 0) || (actual_data[0] != 0xaa))
+    if ((psa->read(msg.handle, 2, &actual_data[0], 3) != 0) ||
+        (psa->skip(msg.handle, 2, 3) != 0) || (actual_data[0] != 0xaa))
     {
        exit_graceful(msg.handle, -13, 0, 0, 0);
        return VAL_STATUS_READ_FAILED;
     }
 
     /* Read of zero bytes should not read anything */
-    if ((psa_read(msg.handle, 3, &actual_data[0], 0) != 0) || (actual_data[0] != 0xaa))
+    if ((psa->read(msg.handle, 3, &actual_data[0], 0) != 0) || (actual_data[0] != 0xaa))
     {
        exit_graceful(msg.handle, -14, 0, 0, 0);
        return VAL_STATUS_READ_FAILED;
     }
 
     /* Skip of zero bytes should not skip anything */
-    if (psa_skip(msg.handle, 3, 0) != 0)
+    if (psa->skip(msg.handle, 3, 0) != 0)
     {
        exit_graceful(msg.handle, -15, 0, 0, 0);
        return VAL_STATUS_SKIP_FAILED;
     }
 
     /* Check effect of previous zero byte read and skip */
-    psa_read(msg.handle, 3, &actual_data[0], 4);
+    psa->read(msg.handle, 3, &actual_data[0], 4);
     if (actual_data[0] != expected_data2[3])
     {
        exit_graceful(msg.handle, -16, 1, expected_data2[3], actual_data[0]);
@@ -305,12 +310,12 @@ int32_t server_test_call_read_and_skip(void)
     }
 
     /* Outbound skip to invec 3 */
-    if (psa_skip(msg.handle, 3, 5) != 4)
+    if (psa->skip(msg.handle, 3, 5) != 4)
     {
        exit_graceful(msg.handle, -17, 0, 0, 0);
        return VAL_STATUS_SKIP_FAILED;
     }
-    if (psa_skip(msg.handle, 3, 5) != 0)
+    if (psa->skip(msg.handle, 3, 5) != 0)
     {
        exit_graceful(msg.handle, -18, 0, 0, 0);
        return VAL_STATUS_SKIP_FAILED;
@@ -325,10 +330,10 @@ int32_t server_test_call_read_and_skip(void)
          exit_graceful(msg.handle, -14, 0, 0, 0);
          return VAL_STATUS_MSG_OUTSIZE_FAILED;
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    status = val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
 
@@ -338,14 +343,14 @@ int32_t server_test_call_and_write(void)
     int          data[5] = {0xaa, 0xbb, 0xcc, 0xdd, 0xee}, i;
     psa_msg_t    msg = {0};
 
-    if (val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    if (val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return VAL_STATUS_CONNECTION_FAILED;
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    if (val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    if (val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
     {
         exit_graceful(msg.handle, -2, 0, 0, 0);
         return VAL_STATUS_CALL_FAILED;
@@ -374,20 +379,20 @@ int32_t server_test_call_and_write(void)
 
     for (i = 0; i < 3 ; i++)
     {
-       psa_write(msg.handle, i, &data[i], msg.out_size[i]);
+       psa->write(msg.handle, i, &data[i], msg.out_size[i]);
     }
 
     /* Zero byte write shouldn't have any effect */
-    psa_write(msg.handle, 3, &data[3], 0);
+    psa->write(msg.handle, 3, &data[3], 0);
 
     /*Using invec 3 to test write concatenation behaviour */
-    psa_write(msg.handle, 3, &data[3], 1);
-    psa_write(msg.handle, 3, &data[4], 1);
+    psa->write(msg.handle, 3, &data[3], 1);
+    psa->write(msg.handle, 3, &data[4], 1);
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    status = val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
 
@@ -395,45 +400,45 @@ int32_t server_test_psa_set_rhandle(void)
 {
     int32_t       status = VAL_STATUS_SUCCESS;
     psa_msg_t     msg = {0};
-    int           *num = NULL;
+    int           num;
 
     /*rhandle value check when PSA_IPC_CONNECT */
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
     if (msg.rhandle != NULL)
     {
         status = VAL_STATUS_INVALID_HANDLE;
     }
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
 
     /*rhandle value check when PSA_IPC_CALL */
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
     if (msg.rhandle != NULL)
     {
         status = VAL_STATUS_INVALID_HANDLE;
     }
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
         exit_graceful(msg.handle, -2, 0, 0, 0);
         return status;
     }
 
     /*set rhandle */
-    *num = 5;
-    psa_set_rhandle(msg.handle, num);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    num = 5;
+    psa->set_rhandle(msg.handle, &num);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (msg.rhandle != num)
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (*(int *)(msg.rhandle) != num)
     {
         status = VAL_STATUS_INVALID_HANDLE;
     }
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
     {
         exit_graceful(msg.handle, -3, 0, 0, 0);
         return status;
@@ -443,37 +448,37 @@ int32_t server_test_psa_set_rhandle(void)
      * updated value in next msg delivery. Next msg should
      * return the updated value.
      */
-    *num = 10;
-    psa_set_rhandle(msg.handle, num);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    num = 10;
+    psa->set_rhandle(msg.handle, &num);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (msg.rhandle != num)
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (*(int *)(msg.rhandle) != num)
     {
         status = VAL_STATUS_INVALID_HANDLE;
     }
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(204), status))
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(204), status))
     {
         exit_graceful(msg.handle, -4, 0, 0, 0);
         return status;
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
     /* rhandle should retain the value at PSA_IPC_DISCONNECT too */
-    status = val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (msg.rhandle != num)
+    status = val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (*(int *)(msg.rhandle) != num)
     {
         status = VAL_STATUS_INVALID_HANDLE;
     }
-    val_err_check_set(TEST_CHECKPOINT_NUM(205), status);
+    val->err_check_set(TEST_CHECKPOINT_NUM(205), status);
 
     /*Setting the rhandle for a connection during disconnection has no observable effect*/
-    *num = 15;
-    psa_set_rhandle(msg.handle, num);
+    num = 15;
+    psa->set_rhandle(msg.handle, &num);
 
     /* Sanity check - previous call shouldn't hang */
-    val_err_check_set(TEST_CHECKPOINT_NUM(206), status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    val->err_check_set(TEST_CHECKPOINT_NUM(206), status);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
 
@@ -485,39 +490,39 @@ int32_t server_test_overlapping_vectors(void)
                   rd_data[] = {0x0, 0x0},
                   expected_data[] = {0x11, 0x22};
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(207), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(207), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(208), status))
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(208), status))
     {
         exit_graceful(msg.handle, -1, 0, 0, 0);
         return status;
     }
 
      /* Performing read after write to overlapping vector. */
-    psa_write(msg.handle, 0, &wr_data[0], 1);
-    psa_read(msg.handle, 0, &rd_data[0], 1);
+    psa->write(msg.handle, 0, &wr_data[0], 1);
+    psa->read(msg.handle, 0, &rd_data[0], 1);
 
     /* rd_data[0] should either be original value or modified value */
     if ((rd_data[0] != expected_data[0]) && (rd_data[0] != expected_data[1]))
     {
-        val_print(PRINT_ERROR, "\tReceived invalid data=%x\n", rd_data[0]);
+        val->print(PRINT_ERROR, "\tReceived invalid data=%x\n", rd_data[0]);
         exit_graceful(msg.handle, -2, 0, 0, 0);
         return status;
     }
 
      /* Performing write after write to overlapping vector. */
-    psa_write(msg.handle, 1, &wr_data[1], 1);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->write(msg.handle, 1, &wr_data[1], 1);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    val_err_check_set(TEST_CHECKPOINT_NUM(209), status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    status = val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    val->err_check_set(TEST_CHECKPOINT_NUM(209), status);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i004/test_i004.c b/api-tests/ff/ipc/test_i004/test_i004.c
index 790e91b9..7f19bab2 100644
--- a/api-tests/ff/ipc/test_i004/test_i004.c
+++ b/api-tests/ff/ipc/test_i004/test_i004.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i004.h"
@@ -36,18 +36,28 @@ int32_t client_test_sid_does_not_exists(security_t caller)
    psa_handle_t       handle = 0;
    boot_state_t       boot_state;
 
-   val->print(PRINT_TEST, "[Check1] psa_connect with invalid sid \n", 0);
+   val->print(PRINT_TEST, "[Check 1] psa_connect with invalid sid\n", 0);
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
    /* Setting boot.state before test check */
@@ -58,10 +68,20 @@ int32_t client_test_sid_does_not_exists(security_t caller)
        return VAL_STATUS_ERROR;
    }
 
-   /* Test check - psa_connect with INVALID_SID, call must not return */
+   /* Test check - psa_connect with INVALID_SID */
    handle = psa->connect(INVALID_SID, 1);
 
-   /* Control shouldn't have reached here */
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return PSA_ERROR_CONNECTION_REFUSED.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE && handle == PSA_ERROR_CONNECTION_REFUSED)
+   {
+       return VAL_STATUS_SUCCESS;
+   }
+
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
    val->print(PRINT_ERROR, "\tpsa_connect with invalid sid should have failed but succeeded\n", 0);
 
    /* Resetting boot.state to catch unwanted reboot */
diff --git a/api-tests/ff/ipc/test_i004/test_supp_i004.c b/api-tests/ff/ipc/test_i004/test_supp_i004.c
index 8d1abd28..c0f484a9 100644
--- a/api-tests/ff/ipc/test_i004/test_supp_i004.c
+++ b/api-tests/ff/ipc/test_i004/test_supp_i004.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_sid_does_not_exists();
 
@@ -28,6 +33,6 @@ server_test_t test_i004_server_tests_list[] = {
 
 int32_t server_test_sid_does_not_exists()
 {
-    val_err_check_set(TEST_CHECKPOINT_NUM(201), VAL_STATUS_SUCCESS);
+    val->err_check_set(TEST_CHECKPOINT_NUM(201), VAL_STATUS_SUCCESS);
     return VAL_STATUS_SUCCESS;
 }
diff --git a/api-tests/ff/ipc/test_i005/test_i005.c b/api-tests/ff/ipc/test_i005/test_i005.c
index 8e02e21c..2b1d22f1 100644
--- a/api-tests/ff/ipc/test_i005/test_i005.c
+++ b/api-tests/ff/ipc/test_i005/test_i005.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i005.h"
@@ -36,18 +36,28 @@ int32_t client_test_strict_policy_higher_minor_version(security_t caller)
    psa_handle_t       handle = 0;
    boot_state_t       boot_state;
 
-   val->print(PRINT_TEST, "[Check1] Test STRICT policy with higher minor version\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test STRICT policy with higher minor version\n", 0);
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
    /* Setting boot.state before test check */
@@ -63,7 +73,17 @@ int32_t client_test_strict_policy_higher_minor_version(security_t caller)
     */
    handle = psa->connect(SERVER_STRICT_MINOR_VERSION_SID, 3);
 
-   /* Shouldn't have reached here */
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return PSA_ERROR_CONNECTION_REFUSED.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE && handle == PSA_ERROR_CONNECTION_REFUSED)
+   {
+       return VAL_STATUS_SUCCESS;
+   }
+
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
    val->print(PRINT_ERROR,
           "\tSTRICT policy with higher minor version should have failed but succeeded\n", 0);
 
@@ -74,6 +94,5 @@ int32_t client_test_strict_policy_higher_minor_version(security_t caller)
        return VAL_STATUS_ERROR;
    }
 
-   (void)(handle);
    return VAL_STATUS_SPM_FAILED;
 }
diff --git a/api-tests/ff/ipc/test_i005/test_supp_i005.c b/api-tests/ff/ipc/test_i005/test_supp_i005.c
index b50c5489..7e819f81 100644
--- a/api-tests/ff/ipc/test_i005/test_supp_i005.c
+++ b/api-tests/ff/ipc/test_i005/test_supp_i005.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_strict_policy_higher_minor_version(void);
 
@@ -31,14 +36,21 @@ int32_t server_test_strict_policy_higher_minor_version(void)
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(201), status);
-    status = val_process_connect_request(SERVER_STRICT_MINOR_VERSION_SIG, &msg);
+    val->err_check_set(TEST_CHECKPOINT_NUM(201), status);
+    status = val->process_connect_request(SERVER_STRICT_MINOR_VERSION_SIG, &msg);
 
     /* Shouldn't have reached here */
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
         return VAL_STATUS_INVALID;
     }
-    psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+    }
+
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     return VAL_STATUS_INVALID;
 }
diff --git a/api-tests/ff/ipc/test_i006/test_i006.c b/api-tests/ff/ipc/test_i006/test_i006.c
index 6356b9c9..3f1f6eb8 100644
--- a/api-tests/ff/ipc/test_i006/test_i006.c
+++ b/api-tests/ff/ipc/test_i006/test_i006.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i006.h"
@@ -36,18 +36,28 @@ int32_t client_test_strict_policy_lower_minor_version(security_t caller)
    psa_handle_t       handle = 0;
    boot_state_t       boot_state;
 
-   val->print(PRINT_TEST, "[Check1] Test STRICT policy with lower minor version\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test STRICT policy with lower minor version\n", 0);
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
    /* Setting boot.state before test check */
@@ -58,10 +68,20 @@ int32_t client_test_strict_policy_lower_minor_version(security_t caller)
        return VAL_STATUS_ERROR;
    }
 
-   /*Version policy is strict and requested version is smaller than the minimum version */
+   /* Version policy is strict and requested version is smaller than the minimum version */
    handle = psa->connect(SERVER_STRICT_MINOR_VERSION_SID, 1);
 
-   /* Shouldn't have reached here */
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return PSA_ERROR_CONNECTION_REFUSED.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE && handle == PSA_ERROR_CONNECTION_REFUSED)
+   {
+       return VAL_STATUS_SUCCESS;
+   }
+
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
    val->print(PRINT_ERROR,
            "\tSTRICT policy with lower minor version should have failed but succeeded\n", 0);
 
@@ -72,6 +92,5 @@ int32_t client_test_strict_policy_lower_minor_version(security_t caller)
        return VAL_STATUS_ERROR;
    }
 
-   (void)(handle);
    return VAL_STATUS_SPM_FAILED;
 }
diff --git a/api-tests/ff/ipc/test_i006/test_supp_i006.c b/api-tests/ff/ipc/test_i006/test_supp_i006.c
index b1cd95e9..7831d065 100644
--- a/api-tests/ff/ipc/test_i006/test_supp_i006.c
+++ b/api-tests/ff/ipc/test_i006/test_supp_i006.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_strict_policy_lower_minor_version(void);
 
@@ -31,14 +36,21 @@ int32_t server_test_strict_policy_lower_minor_version(void)
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(201), status);
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    val->err_check_set(TEST_CHECKPOINT_NUM(201), status);
+    status = val->process_connect_request(SERVER_STRICT_MINOR_VERSION_SIG, &msg);
 
     /* Shouldn't have reached here */
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
         return VAL_STATUS_INVALID;
     }
-    psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+    }
+
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     return VAL_STATUS_INVALID;
 }
diff --git a/api-tests/ff/ipc/test_i007/test_i007.c b/api-tests/ff/ipc/test_i007/test_i007.c
index 518c13b3..c90dffca 100644
--- a/api-tests/ff/ipc/test_i007/test_i007.c
+++ b/api-tests/ff/ipc/test_i007/test_i007.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i007.h"
@@ -36,18 +36,28 @@ int32_t client_test_relax_policy_higher_minor_version(security_t caller)
    psa_handle_t       handle = 0;
    boot_state_t       boot_state;
 
-   val->print(PRINT_TEST, "[Check1] Test RELAX policy with higher minor version\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test RELAX policy with higher minor version\n", 0);
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
    /* Setting boot.state before test check */
@@ -58,10 +68,20 @@ int32_t client_test_relax_policy_higher_minor_version(security_t caller)
        return VAL_STATUS_ERROR;
    }
 
-   /*Version policy is relaxed and requested version is higher than the minimum version */
+   /* Version policy is relaxed and requested version is higher than the minimum version */
    handle = psa->connect(SERVER_RELAX_MINOR_VERSION_SID, 3);
 
-   /* Shouldn't have reached here */
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return PSA_ERROR_CONNECTION_REFUSED.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE && handle == PSA_ERROR_CONNECTION_REFUSED)
+   {
+       return VAL_STATUS_SUCCESS;
+   }
+
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
    val->print(PRINT_ERROR,
          "\tRELAXED policy with higher minor version should have failed but succeeded\n", 0);
 
@@ -72,6 +92,5 @@ int32_t client_test_relax_policy_higher_minor_version(security_t caller)
        return VAL_STATUS_ERROR;
    }
 
-   (void)(handle);
    return VAL_STATUS_SPM_FAILED;
 }
diff --git a/api-tests/ff/ipc/test_i007/test_supp_i007.c b/api-tests/ff/ipc/test_i007/test_supp_i007.c
index dd703f21..e20d4254 100644
--- a/api-tests/ff/ipc/test_i007/test_supp_i007.c
+++ b/api-tests/ff/ipc/test_i007/test_supp_i007.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_relax_policy_higher_minor_version(void);
 
@@ -31,14 +36,21 @@ int32_t server_test_relax_policy_higher_minor_version(void)
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(201), status);
-    status = val_process_connect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
+    val->err_check_set(TEST_CHECKPOINT_NUM(201), status);
+    status = val->process_connect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
 
     /* Shouldn't have reached here */
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
         return VAL_STATUS_INVALID;
     }
-    psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+    }
+
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     return VAL_STATUS_INVALID;
 }
diff --git a/api-tests/ff/ipc/test_i008/test_i008.c b/api-tests/ff/ipc/test_i008/test_i008.c
index 18907547..785026e7 100644
--- a/api-tests/ff/ipc/test_i008/test_i008.c
+++ b/api-tests/ff/ipc/test_i008/test_i008.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i008.h"
@@ -36,38 +36,59 @@ int32_t client_test_secure_access_only_connection(security_t caller)
    int32_t            status = VAL_STATUS_SUCCESS;
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Test secure access only connection\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test secure access only connection\n", 0);
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-   /* Setting boot.state before test check for NS*/
-   if(caller == NONSECURE)
+   /* Setting boot.state before test check for NS */
+   if (caller == NONSECURE)
    {
        status = val->set_boot_flag(BOOT_EXPECTED_NS);
    }
-   if(VAL_ERROR(status))
+   if (VAL_ERROR(status))
    {
        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
        return status;
    }
-   /* Below psa_connect should not return for call from nspe and
-    * should succeed for call from spe
+
+   /*
+    * It is PROGRAMMER ERROR to connect to secure only access service from nspe.
+    * Whereas call should succeed if called from spe.
     */
    handle = psa->connect(SERVER_SECURE_CONNECT_ONLY_SID, 1);
 
-   if(caller == NONSECURE)
+   if (caller == NONSECURE)
    {
-        /* Shouldn't have reached here for NS run*/
+       /*
+        * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+        * a PROGRAMMER ERROR will panic or return PSA_ERROR_CONNECTION_REFUSED.
+        */
+        if (handle == PSA_ERROR_CONNECTION_REFUSED)
+        {
+            return VAL_STATUS_SUCCESS;
+        }
+
+        /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
         val->print(PRINT_ERROR, "\tSecure access only connection test failed for NS run\n", 0);
 
         /* Resetting boot.state to catch unwanted reboot */
@@ -76,11 +97,11 @@ int32_t client_test_secure_access_only_connection(security_t caller)
             val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
             return VAL_STATUS_ERROR;
         }
-        status = VAL_STATUS_SPM_FAILED;
+        return VAL_STATUS_SPM_FAILED;
    }
 
    /* Should return positive handle for SPE connection */
-   if(handle > 0)
+   if (handle > 0)
    {
       psa->close(handle);
    }
diff --git a/api-tests/ff/ipc/test_i008/test_supp_i008.c b/api-tests/ff/ipc/test_i008/test_supp_i008.c
index 711621e5..22868d3e 100644
--- a/api-tests/ff/ipc/test_i008/test_supp_i008.c
+++ b/api-tests/ff/ipc/test_i008/test_supp_i008.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_secure_access_only_connection(void);
 
@@ -31,20 +36,38 @@ int32_t server_test_secure_access_only_connection(void)
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(201), status);
-    status = val_process_connect_request(SERVER_SECURE_CONNECT_ONLY_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    val->err_check_set(TEST_CHECKPOINT_NUM(201), status);
+    status = val->process_connect_request(SERVER_SECURE_CONNECT_ONLY_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_disconnect_request(SERVER_SECURE_CONNECT_ONLY_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    if (msg.client_id < 0)
+    {
+        /*
+		 * Control shouldn't come here. NS client should get panic.
+		 * Resetting boot.state to catch unwanted reboot.
+		 * */
+        if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+        {
+           val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        }
+
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return VAL_STATUS_SPM_FAILED;
+    }
+    else
+    {
+        psa->reply(msg.handle, PSA_SUCCESS);
+    }
+
+    status = val->process_disconnect_request(SERVER_SECURE_CONNECT_ONLY_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
     {
         return status;
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i009/test_i009.c b/api-tests/ff/ipc/test_i009/test_i009.c
index aa05a798..9bb7c5b7 100644
--- a/api-tests/ff/ipc/test_i009/test_i009.c
+++ b/api-tests/ff/ipc/test_i009/test_i009.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i009.h"
@@ -35,18 +35,28 @@ int32_t client_test_unextern_sid_connection(security_t caller)
 {
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Test unextern SID connection\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test unextern SID connection\n", 0);
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
    /* Setting boot.state before test check */
@@ -56,10 +66,14 @@ int32_t client_test_unextern_sid_connection(security_t caller)
        return VAL_STATUS_ERROR;
    }
 
+   /*
+	* If access between a client Secure Partition and an RoT Service is not specified in
+	* the manifest, then the client is not allowed to connect to the RoT Service.
+    */
    handle = psa->connect(SERVER_UNEXTERN_SID, 2);
 
-   /* Shouldn't have reached here */
-   val->print(PRINT_ERROR, "\tunextern SID connection should have failed but successed\n", 0);
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
+   val->print(PRINT_ERROR, "\tunextern SID connection should have failed but succeed\n", 0);
 
    /* Resetting boot.state to catch unwanted reboot */
    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
diff --git a/api-tests/ff/ipc/test_i009/test_supp_i009.c b/api-tests/ff/ipc/test_i009/test_supp_i009.c
index 864f39b8..a0f1ccaa 100644
--- a/api-tests/ff/ipc/test_i009/test_supp_i009.c
+++ b/api-tests/ff/ipc/test_i009/test_supp_i009.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_unextern_sid_connection(void);
 
@@ -31,14 +36,21 @@ int32_t server_test_unextern_sid_connection(void)
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(201), status);
-    status = val_process_connect_request(SERVER_UNEXTERN_SIG, &msg);
+    val->err_check_set(TEST_CHECKPOINT_NUM(201), status);
+    status = val->process_connect_request(SERVER_UNEXTERN_SIG, &msg);
 
     /* Shouldn't have reached here */
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
         return VAL_STATUS_INVALID;
     }
-    psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+    }
+
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     return VAL_STATUS_INVALID;
 }
diff --git a/api-tests/ff/ipc/test_i010/test_i010.c b/api-tests/ff/ipc/test_i010/test_i010.c
index 95994859..65b06c10 100644
--- a/api-tests/ff/ipc/test_i010/test_i010.c
+++ b/api-tests/ff/ipc/test_i010/test_i010.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i010.h"
@@ -37,18 +37,28 @@ int32_t client_test_unspecified_policy_with_higher_minor_ver(security_t caller)
    boot_state_t       boot_state;
 
    val->print(PRINT_TEST,
-        "[Check1] Test un-specified minor_policy with higher minor version\n", 0);
+        "[Check 1] Test un-specified minor_policy with higher minor version\n", 0);
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
    /* Setting boot.state before test check */
@@ -59,9 +69,24 @@ int32_t client_test_unspecified_policy_with_higher_minor_ver(security_t caller)
        return VAL_STATUS_ERROR;
    }
 
+   /*
+    * The minor_version and minor_policy attributes do not need to be specified.
+    * If they are not specified in the manifest, the RoT Service will have
+    * default attributes of minor_version=1 and minor_policy="STRICT".
+    */
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 3);
 
-   /* Shouldn't have reached here */
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return PSA_ERROR_CONNECTION_REFUSED.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE && handle == PSA_ERROR_CONNECTION_REFUSED)
+   {
+       return VAL_STATUS_SUCCESS;
+   }
+
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
    val->print(PRINT_ERROR,
         "\tun-specified policy with higher minor version should have failed but succeeded\n", 0);
 
@@ -72,6 +97,5 @@ int32_t client_test_unspecified_policy_with_higher_minor_ver(security_t caller)
        return VAL_STATUS_ERROR;
    }
 
-   (void)(handle);
    return VAL_STATUS_SPM_FAILED;
 }
diff --git a/api-tests/ff/ipc/test_i010/test_supp_i010.c b/api-tests/ff/ipc/test_i010/test_supp_i010.c
index 406760c3..6f8ffb8c 100644
--- a/api-tests/ff/ipc/test_i010/test_supp_i010.c
+++ b/api-tests/ff/ipc/test_i010/test_supp_i010.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_unspecified_policy_with_higher_minor_ver(void);
 
@@ -31,14 +36,20 @@ int32_t server_test_unspecified_policy_with_higher_minor_ver(void)
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(201), status);
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    val->err_check_set(TEST_CHECKPOINT_NUM(201), status);
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
 
     /* Shouldn't have reached here */
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
         return VAL_STATUS_INVALID;
     }
-    psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+    }
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     return VAL_STATUS_INVALID;
 }
diff --git a/api-tests/ff/ipc/test_i011/test_i011.c b/api-tests/ff/ipc/test_i011/test_i011.c
index 6965daa4..82c5e09a 100644
--- a/api-tests/ff/ipc/test_i011/test_i011.c
+++ b/api-tests/ff/ipc/test_i011/test_i011.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i011.h"
@@ -37,18 +37,28 @@ int32_t client_test_unspecified_policy_with_lower_minor_ver(security_t caller)
    boot_state_t       boot_state;
 
    val->print(PRINT_TEST,
-        "[Check1] Test un-specified minor_policy with higher minor version\n", 0);
+        "[Check 1] Test un-specified minor_policy with higher minor version\n", 0);
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
    /* Setting boot.state before test check */
@@ -59,9 +69,24 @@ int32_t client_test_unspecified_policy_with_lower_minor_ver(security_t caller)
        return VAL_STATUS_ERROR;
    }
 
+   /*
+    * The minor_version and minor_policy attributes do not need to be specified.
+    * If they are not specified in the manifest, the RoT Service will have
+    * default attributes of minor_version=1 and minor_policy="STRICT".
+    */
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 0);
 
-   /* Shouldn't have reached here */
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return PSA_ERROR_CONNECTION_REFUSED.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE && handle == PSA_ERROR_CONNECTION_REFUSED)
+   {
+       return VAL_STATUS_SUCCESS;
+   }
+
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
    val->print(PRINT_ERROR,
         "\tun-specified policy with lower minor version should have failed but succeeded\n", 0);
 
@@ -72,6 +97,5 @@ int32_t client_test_unspecified_policy_with_lower_minor_ver(security_t caller)
        return VAL_STATUS_ERROR;
    }
 
-   (void)(handle);
    return VAL_STATUS_SPM_FAILED;
 }
diff --git a/api-tests/ff/ipc/test_i011/test_supp_i011.c b/api-tests/ff/ipc/test_i011/test_supp_i011.c
index a4a5e21b..87d4a4da 100644
--- a/api-tests/ff/ipc/test_i011/test_supp_i011.c
+++ b/api-tests/ff/ipc/test_i011/test_supp_i011.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_unspecified_policy_with_lower_minor_ver(void);
 
@@ -31,14 +36,21 @@ int32_t server_test_unspecified_policy_with_lower_minor_ver(void)
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(201), status);
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    val->err_check_set(TEST_CHECKPOINT_NUM(201), status);
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
 
     /* Shouldn't have reached here */
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
         return VAL_STATUS_INVALID;
     }
-    psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+    }
+
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     return VAL_STATUS_INVALID;
 }
diff --git a/api-tests/ff/ipc/test_i012/test_i012.c b/api-tests/ff/ipc/test_i012/test_i012.c
index 1623d77c..9ddb2fa0 100644
--- a/api-tests/ff/ipc/test_i012/test_i012.c
+++ b/api-tests/ff/ipc/test_i012/test_i012.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i012.h"
@@ -35,18 +35,28 @@ int32_t client_test_psa_close_with_invalid_handle(security_t caller)
 {
    boot_state_t       boot_state;
 
-   val->print(PRINT_TEST, "[Check1] Test psa_close with invalid handle\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_close with invalid handle\n", 0);
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
    /* Setting boot.state before test check */
@@ -60,7 +70,17 @@ int32_t client_test_psa_close_with_invalid_handle(security_t caller)
    /* psa_close() with invalid handle */
    psa->close(INVALID_HANDLE);
 
-   /* Shouldn't have reached here */
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return with no effect.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE)
+   {
+       return VAL_STATUS_SUCCESS;
+   }
+
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
    val->print(PRINT_ERROR, "\tpsa_close(invalid_handle) should have failed but succeeded\n", 0);
 
    /* Resetting boot.state to catch unwanted reboot */
diff --git a/api-tests/ff/ipc/test_i012/test_supp_i012.c b/api-tests/ff/ipc/test_i012/test_supp_i012.c
index 104552ce..f6d39b60 100644
--- a/api-tests/ff/ipc/test_i012/test_supp_i012.c
+++ b/api-tests/ff/ipc/test_i012/test_supp_i012.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_close_with_invalid_handle(void);
 
@@ -28,6 +33,6 @@ server_test_t test_i012_server_tests_list[] = {
 
 int32_t server_test_psa_close_with_invalid_handle(void)
 {
-    val_err_check_set(TEST_CHECKPOINT_NUM(201), VAL_STATUS_SUCCESS);
+    val->err_check_set(TEST_CHECKPOINT_NUM(201), VAL_STATUS_SUCCESS);
     return VAL_STATUS_SUCCESS;
 }
diff --git a/api-tests/ff/ipc/test_i013/test_i013.c b/api-tests/ff/ipc/test_i013/test_i013.c
index f0088a87..5666c16a 100644
--- a/api-tests/ff/ipc/test_i013/test_i013.c
+++ b/api-tests/ff/ipc/test_i013/test_i013.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i013.h"
@@ -35,12 +35,12 @@ int32_t client_test_psa_get_with_more_than_one_signal(security_t caller)
 {
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Test psa_get with multiple signals\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_get with multiple signals\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tConnection should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tConnection should failed but succeed\n", 0);
 
    (void)(handle);
    return VAL_STATUS_SPM_FAILED;
diff --git a/api-tests/ff/ipc/test_i013/test_supp_i013.c b/api-tests/ff/ipc/test_i013/test_supp_i013.c
index 6d3c3b69..fb54c3fe 100644
--- a/api-tests/ff/ipc/test_i013/test_supp_i013.c
+++ b/api-tests/ff/ipc/test_i013/test_supp_i013.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_get_with_more_than_one_signal(void);
 
@@ -29,49 +34,56 @@ server_test_t test_i013_server_tests_list[] = {
 int32_t server_test_psa_get_with_more_than_one_signal(void)
 {
     psa_msg_t     msg = {0};
-    int32_t       status = VAL_STATUS_SUCCESS;
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    if ((psa_wait(PSA_WAIT_ANY, PSA_BLOCK)) & SERVER_UNSPECIFED_MINOR_V_SIG)
+    if ((psa->wait(PSA_WAIT_ANY, PSA_BLOCK)) & SERVER_UNSPECIFED_MINOR_V_SIG)
     {
         /* Setting boot.state before test check */
-        if (val_set_boot_flag(BOOT_EXPECTED_NS))
+        if (val->set_boot_flag(BOOT_EXPECTED_NS))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
             /* Unblock client */
-            if (psa_get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
+            if (psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
             {
-                val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+                val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
             }
-            psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+            psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
             return VAL_STATUS_ERROR;
         }
 
         /* multiple signals check */
-        psa_get((SERVER_UNSPECIFED_MINOR_V_SIG | SERVER_RELAX_MINOR_VERSION_SID), &msg);
+        psa->get((SERVER_UNSPECIFED_MINOR_V_SIG | SERVER_RELAX_MINOR_VERSION_SIG), &msg);
 
-        /* shouldn't have reached here */
+        /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
         /* Resetting boot.state to catch unwanted reboot */
-        if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+        if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
         }
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     }
 
-    status = VAL_STATUS_SPM_FAILED;
-    val_err_check_set(TEST_CHECKPOINT_NUM(203), status);
-
-    return status;
+    val->err_check_set(TEST_CHECKPOINT_NUM(203), VAL_STATUS_SPM_FAILED);
+    return VAL_STATUS_SPM_FAILED;
 }
diff --git a/api-tests/ff/ipc/test_i014/test_i014.c b/api-tests/ff/ipc/test_i014/test_i014.c
index 2fde3e25..1590dd48 100644
--- a/api-tests/ff/ipc/test_i014/test_i014.c
+++ b/api-tests/ff/ipc/test_i014/test_i014.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i014.h"
@@ -35,12 +35,12 @@ int32_t client_test_psa_get_called_twice(security_t caller)
 {
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Test psa_get called twice\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_get called twice\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tConnection should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tConnection should failed but succeed\n", 0);
 
    (void)(handle);
    return VAL_STATUS_SPM_FAILED;
diff --git a/api-tests/ff/ipc/test_i014/test_supp_i014.c b/api-tests/ff/ipc/test_i014/test_supp_i014.c
index 61ed0e09..fe062f4b 100644
--- a/api-tests/ff/ipc/test_i014/test_supp_i014.c
+++ b/api-tests/ff/ipc/test_i014/test_supp_i014.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_get_called_twice(void);
 
@@ -31,51 +36,62 @@ int32_t server_test_psa_get_called_twice(void)
     psa_msg_t   msg = {0};
     int32_t     status = VAL_STATUS_SUCCESS;
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
 wait:
-    if ((psa_wait(PSA_WAIT_ANY, PSA_BLOCK)) & SERVER_UNSPECIFED_MINOR_V_SIG)
+    if ((psa->wait(PSA_WAIT_ANY, PSA_BLOCK)) & SERVER_UNSPECIFED_MINOR_V_SIG)
     {
         /* First psa_get call */
-        if (psa_get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
+        if (psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
         {
             goto wait;
         }
+
         /* Debug print */
-        val_err_check_set(TEST_CHECKPOINT_NUM(201), status);
+        val->err_check_set(TEST_CHECKPOINT_NUM(201), status);
 
         /* Setting boot.state before test check */
-        if (val_set_boot_flag(BOOT_EXPECTED_NS))
+        if (val->set_boot_flag(BOOT_EXPECTED_NS))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
             /* Unblock client */
-            psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+            psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
             return VAL_STATUS_ERROR;
         }
 
-        /* Second psa_get call. This should not return */
-        psa_get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+        /* Second psa_get call. This should panic */
+        psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
 
-        /* shouldn't have reached here */
+        /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
         /* Resetting boot.state to catch unwanted reboot */
-        if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+        if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
         }
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     }
 
     status = VAL_STATUS_SPM_FAILED;
-    val_err_check_set(TEST_CHECKPOINT_NUM(202), status);
+    val->err_check_set(TEST_CHECKPOINT_NUM(202), status);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i015/test_i015.c b/api-tests/ff/ipc/test_i015/test_i015.c
index 44a0887d..f4868658 100644
--- a/api-tests/ff/ipc/test_i015/test_i015.c
+++ b/api-tests/ff/ipc/test_i015/test_i015.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i015.h"
@@ -35,12 +35,12 @@ int32_t client_test_psa_get_with_non_rot_signal(security_t caller)
 {
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Test psa_get with non-RoT signal\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_get with non-RoT signal\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tConnection should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tConnection should failed but succeed\n", 0);
 
    (void)(handle);
    return VAL_STATUS_SPM_FAILED;
diff --git a/api-tests/ff/ipc/test_i015/test_supp_i015.c b/api-tests/ff/ipc/test_i015/test_supp_i015.c
index 6d49f8f6..a044796b 100644
--- a/api-tests/ff/ipc/test_i015/test_supp_i015.c
+++ b/api-tests/ff/ipc/test_i015/test_supp_i015.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_get_with_non_rot_signal(void);
 
@@ -31,44 +36,54 @@ int32_t server_test_psa_get_with_non_rot_signal(void)
     psa_msg_t   msg = {0};
     int32_t     status = VAL_STATUS_SUCCESS;
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    if ((psa_wait(PSA_WAIT_ANY, PSA_BLOCK)) & SERVER_UNSPECIFED_MINOR_V_SIG)
+    if ((psa->wait(PSA_WAIT_ANY, PSA_BLOCK)) & SERVER_UNSPECIFED_MINOR_V_SIG)
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-            psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+            psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
             return status;
         }
 
-        /* Call to psa_get should not return */
-        psa_get(PSA_DOORBELL, &msg);
+        /* Call to psa_get should panic */
+        psa->get(PSA_DOORBELL, &msg);
 
-        /* shouldn't have reached here */
+        /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
         /* Resetting boot.state to catch unwanted reboot */
-        status = val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
         }
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     }
 
     status = VAL_STATUS_SPM_FAILED;
-    val_err_check_set(TEST_CHECKPOINT_NUM(203), status);
+    val->err_check_set(TEST_CHECKPOINT_NUM(203), status);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i016/test_i016.c b/api-tests/ff/ipc/test_i016/test_i016.c
index a99fa3fe..5cc7a362 100644
--- a/api-tests/ff/ipc/test_i016/test_i016.c
+++ b/api-tests/ff/ipc/test_i016/test_i016.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i016.h"
@@ -35,12 +35,12 @@ int32_t client_test_psa_get_with_unasserted_signal(security_t caller)
 {
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Test psa_get with unasserted signal\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_get with unasserted signal\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tConnection should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tConnection should failed but succeed\n", 0);
 
    (void)(handle);
    return VAL_STATUS_SPM_FAILED;
diff --git a/api-tests/ff/ipc/test_i016/test_supp_i016.c b/api-tests/ff/ipc/test_i016/test_supp_i016.c
index 83afe384..7b4d5e1b 100644
--- a/api-tests/ff/ipc/test_i016/test_supp_i016.c
+++ b/api-tests/ff/ipc/test_i016/test_supp_i016.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_get_with_unasserted_signal(void);
 
@@ -31,44 +36,54 @@ int32_t server_test_psa_get_with_unasserted_signal(void)
     psa_msg_t   msg = {0};
     int32_t     status = VAL_STATUS_SUCCESS;
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    if ((psa_wait(PSA_WAIT_ANY, PSA_BLOCK)) & SERVER_UNSPECIFED_MINOR_V_SIG)
+    if ((psa->wait(PSA_WAIT_ANY, PSA_BLOCK)) & SERVER_UNSPECIFED_MINOR_V_SIG)
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-            psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+            psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
             return status;
         }
 
-        /* Unasserted signal check, call to psa_get should not return */
-        psa_get(SERVER_RELAX_MINOR_VERSION_SID, &msg);
+        /* Unasserted signal check, call to psa_get should panic */
+        psa->get(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
 
         /* shouldn't have reached here */
         /* Resetting boot.state to catch unwanted reboot */
-        status = val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
         }
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     }
 
     status = VAL_STATUS_SPM_FAILED;
-    val_err_check_set(TEST_CHECKPOINT_NUM(203), status);
+    val->err_check_set(TEST_CHECKPOINT_NUM(203), status);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i017/test_i017.c b/api-tests/ff/ipc/test_i017/test_i017.c
index 5a0590d2..2253d56d 100644
--- a/api-tests/ff/ipc/test_i017/test_i017.c
+++ b/api-tests/ff/ipc/test_i017/test_i017.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i017.h"
@@ -35,12 +35,12 @@ int32_t client_test_partition_calling_its_own_rot_service(security_t caller)
 {
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Test partition calling its own RoT service\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test partition calling its own RoT service\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tConnection should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tConnection should failed but succeed\n", 0);
 
    (void)(handle);
    return VAL_STATUS_SPM_FAILED;
diff --git a/api-tests/ff/ipc/test_i017/test_supp_i017.c b/api-tests/ff/ipc/test_i017/test_supp_i017.c
index 50082602..6c729770 100644
--- a/api-tests/ff/ipc/test_i017/test_supp_i017.c
+++ b/api-tests/ff/ipc/test_i017/test_supp_i017.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_partition_calling_its_own_rot_service(void);
 
@@ -32,51 +37,61 @@ int32_t server_test_partition_calling_its_own_rot_service(void)
     int32_t           status = VAL_STATUS_SUCCESS;
     psa_handle_t      handle = 0;
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
     /* Setting boot.state before test check */
-    status = val_set_boot_flag(BOOT_EXPECTED_NS);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_NS);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    /* Calling server partition RoT service using IPC and call should not return */
-    handle = psa_connect(SERVER_RELAX_MINOR_VERSION_SID, 1);
+    /* Calling server partition RoT service using IPC and call should panic */
+    handle = psa->connect(SERVER_RELAX_MINOR_VERSION_SID, 1);
 
     /* shouldn't have reached here */
-    val_print(PRINT_ERROR, "\tConnection should failed but successed\n", 0);
+    val->print(PRINT_ERROR, "\tConnection should failed but succeed\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    status = val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
     status = VAL_STATUS_SPM_FAILED;
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
 
     (void)(handle);
-    psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i018/test_i018.c b/api-tests/ff/ipc/test_i018/test_i018.c
index d23bcc98..43521492 100644
--- a/api-tests/ff/ipc/test_i018/test_i018.c
+++ b/api-tests/ff/ipc/test_i018/test_i018.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i018.h"
@@ -35,12 +35,12 @@ int32_t client_test_psa_set_rhandle_with_invalid_handle(security_t caller)
 {
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Test psa_set_rhandle with invalid msg handle\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_set_rhandle with invalid msg handle\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tConnection should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tConnection should failed but succeed\n", 0);
 
    (void)(handle);
    return VAL_STATUS_SPM_FAILED;
diff --git a/api-tests/ff/ipc/test_i018/test_supp_i018.c b/api-tests/ff/ipc/test_i018/test_supp_i018.c
index e951455f..5a67aba0 100644
--- a/api-tests/ff/ipc/test_i018/test_supp_i018.c
+++ b/api-tests/ff/ipc/test_i018/test_supp_i018.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_set_rhandle_with_invalid_handle(void);
 
@@ -30,54 +35,64 @@ int32_t server_test_psa_set_rhandle_with_invalid_handle(void)
 {
     psa_msg_t   msg = {0};
     int32_t     status = VAL_STATUS_SUCCESS;
-    int         *num = NULL;
+    int         num;
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
     /* Setting boot.state before test check */
-    status = val_set_boot_flag(BOOT_EXPECTED_NS);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_NS);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    /* Call psa_set_rhandle with INVALID_HANLDE. Call shouldn't return */
-    *num = 5;
-    psa_set_rhandle(INVALID_HANDLE, num);
+    /* Call psa_set_rhandle with INVALID_HANLDE. Call should panic */
+    num = 5;
+    psa->set_rhandle(INVALID_HANDLE, &num);
 
     /* shouldn't have reached here */
-    val_print(PRINT_ERROR,
-                "\tpsa_set_rhandle with invalid handle should failed but successed\n", 0);
+    val->print(PRINT_ERROR,
+                "\tpsa_set_rhandle with invalid handle should failed but succeed\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    status = val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
         return status;
     }
 
     status = VAL_STATUS_SPM_FAILED;
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i019/test_i019.c b/api-tests/ff/ipc/test_i019/test_i019.c
index 3050ba72..35ba8b93 100644
--- a/api-tests/ff/ipc/test_i019/test_i019.c
+++ b/api-tests/ff/ipc/test_i019/test_i019.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i019.h"
@@ -35,12 +35,12 @@ int32_t client_test_psa_set_rhandle_with_null_handle(security_t caller)
 {
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Test psa_set_rhandle with null msg handle\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_set_rhandle with null msg handle\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tConnection should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tConnection should failed but succeed\n", 0);
 
    (void)(handle);
    return VAL_STATUS_SPM_FAILED;
diff --git a/api-tests/ff/ipc/test_i019/test_supp_i019.c b/api-tests/ff/ipc/test_i019/test_supp_i019.c
index a45d891e..af063a61 100644
--- a/api-tests/ff/ipc/test_i019/test_supp_i019.c
+++ b/api-tests/ff/ipc/test_i019/test_supp_i019.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_set_rhandle_with_null_handle(void);
 
@@ -30,43 +35,64 @@ int32_t server_test_psa_set_rhandle_with_null_handle(void)
 {
     psa_msg_t   msg = {0};
     int32_t     status = VAL_STATUS_SUCCESS;
-    int         *num = NULL;
+    int         num;
+
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
+    *
+    * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
+    * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
+    */
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    /* Set boot flag to BOOT_EXPECTED_* to indicate- test is targeting
-    fatal error condition and test will expect error recovery to happen */
-    status = val_set_boot_flag(BOOT_EXPECTED_NS);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    /* Setting boot.state before test check */
+    status = val->set_boot_flag(BOOT_EXPECTED_NS);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    /*Call psa_set_rhandle with PSA_NULL_HANDLE. Call shouldn't return*/
-    *num = 5;
-    psa_set_rhandle(PSA_NULL_HANDLE, num);
+    /* Call psa_set_rhandle with PSA_NULL_HANDLE. Call should panic */
+    num = 5;
+    psa->set_rhandle(PSA_NULL_HANDLE, &num);
 
     /* shouldn't have reached here */
-    val_print(PRINT_ERROR,
-                "\tpsa_set_rhandle with NULL handle should failed but successed\n", 0);
+    val->print(PRINT_ERROR,
+                "\tpsa_set_rhandle with NULL handle should failed but succeed\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    status = val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
         return status;
     }
 
     status = VAL_STATUS_SPM_FAILED;
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i020/test_i020.c b/api-tests/ff/ipc/test_i020/test_i020.c
index 31f3b508..c316e3d6 100644
--- a/api-tests/ff/ipc/test_i020/test_i020.c
+++ b/api-tests/ff/ipc/test_i020/test_i020.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i020.h"
@@ -37,12 +37,12 @@ int32_t client_test_psa_reply_with_invalid_connect_status_code(security_t caller
    psa_handle_t       handle = 0;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_reply with invalid status code for PSA_IPC_CONNECT\n", 0);
+            "[Check 1] Test psa_reply with invalid status code for PSA_IPC_CONNECT\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tConnection should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tConnection should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i020/test_supp_i020.c b/api-tests/ff/ipc/test_i020/test_supp_i020.c
index 17014597..816fd66b 100644
--- a/api-tests/ff/ipc/test_i020/test_supp_i020.c
+++ b/api-tests/ff/ipc/test_i020/test_supp_i020.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_reply_with_invalid_connect_status_code(void);
 
@@ -30,51 +35,61 @@ int32_t server_test_psa_reply_with_invalid_connect_status_code(void)
 {
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
-    psa_status_t    invalid_status_code = PSA_CONNECTION_REFUSED + 0x10;
+    psa_status_t    invalid_status_code = PSA_ERROR_CONNECTION_REFUSED + 0x10;
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
     /* Setting boot.state before test check */
-    status = val_set_boot_flag(BOOT_EXPECTED_NS);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_NS);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    /*Call psa_reply with invalid status code for PSA_IPC_CONNECT. Call shouldn't return*/
-    psa_reply(msg.handle, invalid_status_code);
+    /* Call psa_reply with invalid status code for PSA_IPC_CONNECT. Call should panic */
+    psa->reply(msg.handle, invalid_status_code);
 
     /* shouldn't have reached here */
-    val_print(PRINT_ERROR,
-              "\tpsa_reply with invalid status code for connect should failed but successed\n", 0);
+    val->print(PRINT_ERROR,
+              "\tpsa_reply with invalid status code for connect should failed but succeed\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    status = val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
         return status;
     }
     status = VAL_STATUS_SPM_FAILED;
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i021/test_entry.c b/api-tests/ff/ipc/test_i021/test_entry.c
index 45de605d..d8650820 100644
--- a/api-tests/ff/ipc/test_i021/test_entry.c
+++ b/api-tests/ff/ipc/test_i021/test_entry.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "test_i021.h"
 
 #define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 21)
-#define TEST_DESC "Testing psa_reply with invalid status code for PSA_IPC_CALL\n"
+#define TEST_DESC "Testing irq routing\n"
 TEST_PUBLISH(TEST_NUM, test_entry);
 val_api_t *val = NULL;
 psa_api_t *psa = NULL;
diff --git a/api-tests/ff/ipc/test_i021/test_i021.c b/api-tests/ff/ipc/test_i021/test_i021.c
index 42b611e4..8927b140 100644
--- a/api-tests/ff/ipc/test_i021/test_i021.c
+++ b/api-tests/ff/ipc/test_i021/test_i021.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,42 +20,48 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i021.h"
 
 client_test_t test_i021_client_tests_list[] = {
     NULL,
-    client_test_psa_reply_with_invalid_call_status_code,
+    client_test_irq_routing,
     NULL,
 };
 
-int32_t client_test_psa_reply_with_invalid_call_status_code(security_t caller)
+int32_t client_test_irq_routing(security_t caller)
 {
-   int32_t            status = VAL_STATUS_SUCCESS;
-   psa_handle_t       handle = 0;
-   psa_status_t       status_of_call;
+   psa_handle_t           handle;
+   driver_test_fn_id_t    driver_test_fn_id = TEST_INTR_SERVICE;
 
-   val->print(PRINT_TEST,
-            "[Check1] Test psa_reply with invalid status code for PSA_IPC_CALL\n", 0);
+   /*
+    * The interrupt related test check is captured in driver_partition.c as this is the
+    * only partition in test suite that holds the interrupt line. The interrupt test check
+    * is invoked by client by calling to DRIVER_TEST_SID RoT service of driver partition that
+    * hold the test check.
+    */
 
-   handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
+   val->print(PRINT_TEST, "[Check 1] Test irq routing\n", 0);
 
+   /* Connect to DRIVER_TEST_SID */
+   handle = psa->connect(DRIVER_TEST_SID, 1);
    if (handle < 0)
    {
-       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
-       return VAL_STATUS_INVALID_HANDLE;
+       val->print(PRINT_ERROR, "\t psa_connect failed. handle=0x%x\n", handle);
+       return VAL_STATUS_SPM_FAILED;
    }
 
-   status_of_call =  psa->call(handle, NULL, 0, NULL, 0);
+   /* Execute driver function related to TEST_INTR_SERVICE */
+   psa_invec invec = {&driver_test_fn_id, sizeof(driver_test_fn_id)};
 
-   /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
-
-   status = VAL_STATUS_SPM_FAILED;
+   if (psa->call(handle, &invec, 1, NULL, 0) != PSA_SUCCESS)
+   {
+        psa->close(handle);
+        return VAL_STATUS_SPM_FAILED;
+   }
 
    psa->close(handle);
-   (void)(status_of_call);
-   return status;
+   return VAL_STATUS_SUCCESS;
 }
diff --git a/api-tests/ff/ipc/test_i021/test_i021.h b/api-tests/ff/ipc/test_i021/test_i021.h
index 40025635..cc76cafa 100644
--- a/api-tests/ff/ipc/test_i021/test_i021.h
+++ b/api-tests/ff/ipc/test_i021/test_i021.h
@@ -33,5 +33,5 @@ extern psa_api_t *psa;
 
 extern client_test_t test_i021_client_tests_list[];
 
-int32_t client_test_psa_reply_with_invalid_call_status_code(security_t);
+int32_t client_test_irq_routing(security_t);
 #endif
diff --git a/api-tests/ff/ipc/test_i021/test_supp_i021.c b/api-tests/ff/ipc/test_i021/test_supp_i021.c
index 9e2ec16e..672f3408 100644
--- a/api-tests/ff/ipc/test_i021/test_supp_i021.c
+++ b/api-tests/ff/ipc/test_i021/test_supp_i021.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,78 +15,23 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
 
-int32_t server_test_psa_reply_with_invalid_call_status_code(void);
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_irq_routing(void);
 
 server_test_t test_i021_server_tests_list[] = {
     NULL,
-    server_test_psa_reply_with_invalid_call_status_code,
+    server_test_irq_routing,
     NULL,
 };
 
-int32_t server_test_psa_reply_with_invalid_call_status_code(void)
+int32_t server_test_irq_routing(void)
 {
-    int32_t         status = VAL_STATUS_SUCCESS;
-    psa_msg_t       msg = {0};
-    psa_status_t    invalid_status_code = INT32_MIN+1;
-
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
-    *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
-    * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
-    * timeout entries available in target.cfg.
-    */
-
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
-    {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
-        return status;
-    }
-
-    psa_reply(msg.handle, PSA_SUCCESS);
-
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
-    {
-        psa_reply(msg.handle, (PSA_SUCCESS - 2));
-    }
-    else
-    {
-        /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
-        {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_reply(msg.handle, (PSA_SUCCESS - 3));
-        }
-        else
-        {
-            /* Call psa_reply with invalid status code for PSA_IPC_CALL. Call shouldn't return */
-            psa_reply(msg.handle, invalid_status_code);
-
-            /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_reply with invalid status code for CALL should failed but successed\n", 0);
-
-            /* Resetting boot.state to catch unwanted reboot */
-            if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
-            {
-                val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
-            }
-            status = VAL_STATUS_SPM_FAILED;
-        }
-    }
-
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    status = val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    psa_reply(msg.handle, PSA_SUCCESS);
-    return status;
+    return VAL_STATUS_SUCCESS;
 }
diff --git a/api-tests/ff/ipc/test_i022/test_i022.c b/api-tests/ff/ipc/test_i022/test_i022.c
index 6fc5ac5a..09548369 100644
--- a/api-tests/ff/ipc/test_i022/test_i022.c
+++ b/api-tests/ff/ipc/test_i022/test_i022.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i022.h"
@@ -35,12 +35,12 @@ int32_t client_test_psa_reply_with_invalid_handle(security_t caller)
 {
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Testing psa_reply with invalid handle\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Testing psa_reply with invalid handle\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tConnection should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tConnection should failed but succeed\n", 0);
 
    (void)(handle);
    return VAL_STATUS_SPM_FAILED;
diff --git a/api-tests/ff/ipc/test_i022/test_supp_i022.c b/api-tests/ff/ipc/test_i022/test_supp_i022.c
index 6e4f43ae..e2ba3915 100644
--- a/api-tests/ff/ipc/test_i022/test_supp_i022.c
+++ b/api-tests/ff/ipc/test_i022/test_supp_i022.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_reply_with_invalid_handle(void);
 
@@ -31,50 +36,60 @@ int32_t server_test_psa_reply_with_invalid_handle(void)
     psa_msg_t   msg = {0};
     int32_t     status = VAL_STATUS_SUCCESS;
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
     /* Setting boot.state before test check */
-    status = val_set_boot_flag(BOOT_EXPECTED_NS);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_NS);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    /*Call psa_reply with INVALID_HANLDE. Call shouldn't return*/
-    psa_reply(INVALID_HANDLE, PSA_CONNECTION_REFUSED);
+    /* Call psa_reply with INVALID_HANLDE. Call should panic */
+    psa->reply(INVALID_HANDLE, PSA_ERROR_CONNECTION_REFUSED);
 
     /* shouldn't have reached here */
-    val_print(PRINT_ERROR,
-                "\tpsa_reply with invalid handle should failed but successed\n", 0);
+    val->print(PRINT_ERROR,
+                "\tpsa_reply with invalid handle should failed but succeed\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    status = val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
         return status;
     }
 
     status = VAL_STATUS_SPM_FAILED;
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i023/test_i023.c b/api-tests/ff/ipc/test_i023/test_i023.c
index 164552ab..6c85db25 100644
--- a/api-tests/ff/ipc/test_i023/test_i023.c
+++ b/api-tests/ff/ipc/test_i023/test_i023.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i023.h"
@@ -35,12 +35,12 @@ int32_t client_test_psa_reply_with_null_handle(security_t caller)
 {
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Testing psa_reply with invalid handle\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Testing psa_reply with invalid handle\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tConnection should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tConnection should failed but succeed\n", 0);
 
    (void)(handle);
    return VAL_STATUS_SPM_FAILED;
diff --git a/api-tests/ff/ipc/test_i023/test_supp_i023.c b/api-tests/ff/ipc/test_i023/test_supp_i023.c
index d28aa448..4436e4ac 100644
--- a/api-tests/ff/ipc/test_i023/test_supp_i023.c
+++ b/api-tests/ff/ipc/test_i023/test_supp_i023.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_reply_with_null_handle(void);
 
@@ -31,52 +36,62 @@ int32_t server_test_psa_reply_with_null_handle(void)
     psa_msg_t   msg = {0};
     int32_t     status = VAL_STATUS_SUCCESS;
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
     /* Setting boot.state before test check */
-    status = val_set_boot_flag(BOOT_EXPECTED_NS);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_NS);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    /* Test check - Call psa_reply with PSA_NULL_HANDLE. Call shouldn't return */
-    psa_reply(PSA_NULL_HANDLE, PSA_CONNECTION_REFUSED);
+    /* Test check - Call psa_reply with PSA_NULL_HANDLE. Call should panic */
+    psa->reply(PSA_NULL_HANDLE, PSA_ERROR_CONNECTION_REFUSED);
 
     /* shouldn't have reached here */
-    val_print(PRINT_ERROR,
-                "\tpsa_reply with NULL handle should failed but successed\n", 0);
+    val->print(PRINT_ERROR,
+                "\tpsa_reply with NULL handle should failed but succeed\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    status = val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
 
     status = VAL_STATUS_SPM_FAILED;
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i024/test_i024.c b/api-tests/ff/ipc/test_i024/test_i024.c
index b8ffaaba..d589c896 100644
--- a/api-tests/ff/ipc/test_i024/test_i024.c
+++ b/api-tests/ff/ipc/test_i024/test_i024.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i024.h"
@@ -33,34 +33,34 @@ client_test_t test_i024_client_tests_list[] = {
 
 int32_t client_test_psa_call_with_invalid_handle(security_t caller)
 {
-   int32_t            status = VAL_STATUS_SUCCESS;
-   psa_handle_t       handle = 0;
    psa_status_t       status_of_call;
    boot_state_t       boot_state;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_call with invalid handle\n", 0);
+            "[Check 1] Test psa_call with invalid handle\n", 0);
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-   handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
-
-   if (handle < 0)
-   {
-       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
-       return VAL_STATUS_INVALID_HANDLE;
-   }
-
    /* Setting boot.state before test check */
    boot_state = (caller == NONSECURE) ? BOOT_EXPECTED_NS : BOOT_EXPECTED_S;
    if (val->set_boot_flag(boot_state))
@@ -72,8 +72,18 @@ int32_t client_test_psa_call_with_invalid_handle(security_t caller)
    /* Test check- psa_call with INVALID_HANDLE */
    status_of_call =  psa->call(INVALID_HANDLE, NULL, 0, NULL, 0);
 
-   /* Expectation is psa_call should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tpsa_call should failed but successed\n", 0);
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return PSA_ERROR_PROGRAMMER_ERROR.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE && status_of_call == PSA_ERROR_PROGRAMMER_ERROR)
+   {
+       return VAL_STATUS_SUCCESS;
+   }
+
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
+   val->print(PRINT_ERROR, "\tpsa_call should failed but succeed\n", 0);
 
    /* Resetting boot.state to catch unwanted reboot */
    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
@@ -82,8 +92,5 @@ int32_t client_test_psa_call_with_invalid_handle(security_t caller)
        return VAL_STATUS_ERROR;
    }
 
-   status = VAL_STATUS_SPM_FAILED;
-   psa->close(handle);
-   (void)(status_of_call);
-   return status;
+   return VAL_STATUS_SPM_FAILED;
 }
diff --git a/api-tests/ff/ipc/test_i024/test_supp_i024.c b/api-tests/ff/ipc/test_i024/test_supp_i024.c
index d3bbbf13..60d98953 100644
--- a/api-tests/ff/ipc/test_i024/test_supp_i024.c
+++ b/api-tests/ff/ipc/test_i024/test_supp_i024.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_call_with_invalid_handle(void);
 
@@ -28,25 +33,7 @@ server_test_t test_i024_server_tests_list[] = {
 
 int32_t server_test_psa_call_with_invalid_handle(void)
 {
-    int32_t         status = VAL_STATUS_SUCCESS;
-    psa_msg_t       msg = {0};
-
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
-    {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
-        return status;
-    }
-
-    psa_reply(msg.handle, PSA_SUCCESS);
-
-    val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-
-    /* Control shouldn't have come here */
-    val_print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
-    psa_reply(msg.handle, -2);
 
-    val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    psa_reply(msg.handle, PSA_SUCCESS);
-    return VAL_STATUS_SPM_FAILED;
+    val->err_check_set(TEST_CHECKPOINT_NUM(201), VAL_STATUS_SUCCESS);
+    return VAL_STATUS_SUCCESS;
 }
diff --git a/api-tests/ff/ipc/test_i025/test_i025.c b/api-tests/ff/ipc/test_i025/test_i025.c
index 495247f7..66d69dd2 100644
--- a/api-tests/ff/ipc/test_i025/test_i025.c
+++ b/api-tests/ff/ipc/test_i025/test_i025.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i025.h"
@@ -33,34 +33,34 @@ client_test_t test_i025_client_tests_list[] = {
 
 int32_t client_test_psa_call_with_null_handle(security_t caller)
 {
-   int32_t            status = VAL_STATUS_SUCCESS;
-   psa_handle_t       handle = 0;
    psa_status_t       status_of_call;
    boot_state_t       boot_state;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_call with NULL handle\n", 0);
+            "[Check 1] Test psa_call with NULL handle\n", 0);
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-   handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
-
-   if (handle < 0)
-   {
-       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
-       return VAL_STATUS_INVALID_HANDLE;
-   }
-
    /* Setting boot.state before test check */
    boot_state = (caller == NONSECURE) ? BOOT_EXPECTED_NS : BOOT_EXPECTED_S;
    if (val->set_boot_flag(boot_state))
@@ -72,8 +72,18 @@ int32_t client_test_psa_call_with_null_handle(security_t caller)
    /* Test check- psa_call with NULL HANDLE */
    status_of_call =  psa->call(PSA_NULL_HANDLE, NULL, 0, NULL, 0);
 
-   /* Expectation is psa_call should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return PSA_ERROR_PROGRAMMER_ERROR.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE && status_of_call == PSA_ERROR_PROGRAMMER_ERROR)
+   {
+       return VAL_STATUS_SUCCESS;
+   }
+
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    /* Resetting boot.state to catch unwanted reboot */
    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
@@ -82,8 +92,5 @@ int32_t client_test_psa_call_with_null_handle(security_t caller)
        return VAL_STATUS_ERROR;
    }
 
-   status = VAL_STATUS_SPM_FAILED;
-   psa->close(handle);
-   (void)(status_of_call);
-   return status;
+   return VAL_STATUS_SPM_FAILED;
 }
diff --git a/api-tests/ff/ipc/test_i025/test_supp_i025.c b/api-tests/ff/ipc/test_i025/test_supp_i025.c
index 036a2c9e..20f15573 100644
--- a/api-tests/ff/ipc/test_i025/test_supp_i025.c
+++ b/api-tests/ff/ipc/test_i025/test_supp_i025.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_call_with_null_handle(void);
 
@@ -28,25 +33,6 @@ server_test_t test_i025_server_tests_list[] = {
 
 int32_t server_test_psa_call_with_null_handle(void)
 {
-    int32_t         status = VAL_STATUS_SUCCESS;
-    psa_msg_t       msg = {0};
-
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
-    {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
-        return status;
-    }
-
-    psa_reply(msg.handle, PSA_SUCCESS);
-
-    val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-
-    /* Control shouldn't have come here */
-    val_print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
-    psa_reply(msg.handle, -2);
-
-    val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    psa_reply(msg.handle, PSA_SUCCESS);
-    return VAL_STATUS_SPM_FAILED;
+    val->err_check_set(TEST_CHECKPOINT_NUM(201), VAL_STATUS_SUCCESS);
+    return VAL_STATUS_SUCCESS;
 }
diff --git a/api-tests/ff/ipc/test_i026/test_i026.c b/api-tests/ff/ipc/test_i026/test_i026.c
index cedc4d67..bafd8a91 100644
--- a/api-tests/ff/ipc/test_i026/test_i026.c
+++ b/api-tests/ff/ipc/test_i026/test_i026.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i026.h"
@@ -46,18 +46,28 @@ int32_t client_test_psa_call_with_iovec_more_than_max_limit(security_t caller)
    psa_outvec         outvec[1] = {{&data, sizeof(data)}};
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_call with IOVEC > PSA_MAX_IOVEC\n", 0);
+            "[Check 1] Test psa_call with IOVEC > PSA_MAX_IOVEC\n", 0);
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
@@ -79,8 +89,19 @@ int32_t client_test_psa_call_with_iovec_more_than_max_limit(security_t caller)
    /* Test check- psa_call with IOVEC > PSA_MAX_IOVEC */
    status_of_call =  psa->call(handle, invec, PSA_MAX_IOVEC, outvec, 1);
 
-   /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return PSA_ERROR_PROGRAMMER_ERROR.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE && status_of_call == PSA_ERROR_PROGRAMMER_ERROR)
+   {
+       psa->close(handle);
+       return VAL_STATUS_SUCCESS;
+   }
+
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    /* Resetting boot.state to catch unwanted reboot */
    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
@@ -91,6 +112,5 @@ int32_t client_test_psa_call_with_iovec_more_than_max_limit(security_t caller)
 
    status = VAL_STATUS_SPM_FAILED;
    psa->close(handle);
-   (void)(status_of_call);
    return status;
 }
diff --git a/api-tests/ff/ipc/test_i026/test_i026.h b/api-tests/ff/ipc/test_i026/test_i026.h
index 41d14dbd..183a060e 100644
--- a/api-tests/ff/ipc/test_i026/test_i026.h
+++ b/api-tests/ff/ipc/test_i026/test_i026.h
@@ -28,11 +28,6 @@
 #define psa CONCAT(psa,_client_sp)
 #endif
 
-/* Redefining PSA_MAX_IOVEC as it is undefined for client */
-#ifndef PSA_MAX_IOVEC
-#define PSA_MAX_IOVEC 4
-#endif
-
 extern val_api_t *val;
 extern psa_api_t *psa;
 
diff --git a/api-tests/ff/ipc/test_i026/test_supp_i026.c b/api-tests/ff/ipc/test_i026/test_supp_i026.c
index 0e5be8f0..4b1794b7 100644
--- a/api-tests/ff/ipc/test_i026/test_supp_i026.c
+++ b/api-tests/ff/ipc/test_i026/test_supp_i026.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_call_with_iovec_more_than_max_limit();
 
@@ -30,23 +35,45 @@ int32_t server_test_psa_call_with_iovec_more_than_max_limit()
 {
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
+    psa_signal_t    signals;
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+wait:
+    signals = psa->wait(PSA_WAIT_ANY, PSA_BLOCK);
+    if (signals & SERVER_UNSPECIFED_MINOR_V_SIG)
+    {
+        if (psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
+        {
+            goto wait;
+        }
 
-    /* Control shouldn't have come here */
-    val_print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
-    psa_reply(msg.handle, -2);
+        if (msg.type == PSA_IPC_CALL)
+        {
+            /* Control shouldn't have come here */
+            val->print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
+            psa->reply(msg.handle, -2);
+            val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+            psa->reply(msg.handle, PSA_SUCCESS);
+        }
+        else if (msg.type == PSA_IPC_DISCONNECT)
+        {
+            psa->reply(msg.handle, PSA_SUCCESS);
+            return VAL_STATUS_SUCCESS;
+        }
+    }
+    else
+    {
+        val->print(PRINT_ERROR, "\tpsa_wait returned with invalid signal value = 0x%x\n", signals);
+        return VAL_STATUS_ERROR;
+    }
 
-    val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    psa_reply(msg.handle, PSA_SUCCESS);
-    return VAL_STATUS_SPM_FAILED;
+    return VAL_STATUS_ERROR;
 }
diff --git a/api-tests/ff/ipc/test_i027/test_entry.c b/api-tests/ff/ipc/test_i027/test_entry.c
index 3f09f0b9..ed921299 100644
--- a/api-tests/ff/ipc/test_i027/test_entry.c
+++ b/api-tests/ff/ipc/test_i027/test_entry.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "test_i027.h"
 
 #define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 27)
-#define TEST_DESC "Testing PSA_DROP_CONNECTION\n"
+#define TEST_DESC "Testing connection termination at PSA_IPC_CALL\n"
 TEST_PUBLISH(TEST_NUM, test_entry);
 val_api_t *val = NULL;
 psa_api_t *psa = NULL;
diff --git a/api-tests/ff/ipc/test_i027/test_i027.c b/api-tests/ff/ipc/test_i027/test_i027.c
index 2c69f795..1f20adc4 100644
--- a/api-tests/ff/ipc/test_i027/test_i027.c
+++ b/api-tests/ff/ipc/test_i027/test_i027.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i027.h"
@@ -39,31 +39,29 @@ int32_t client_test_psa_drop_connection(security_t caller)
    boot_state_t       boot_state;
 
    val->print(PRINT_TEST,
-            "[Check1] Test PSA_DROP_CONNECTION\n", 0);
+            "[Check 1] Test connection termination at PSA_IPC_CALL\n", 0);
 
-   /* Test algorithm:
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * RoT service will terminate the connection by completing the message with a call
-    * to psa_reply() using the status code PSA_DROP_CONNECTION.
+    * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
+    * timeout entries available in target.cfg.
     *
-    * The SPM can implement the required PSA_DROP_CONNECTION behavior in different ways:
-    *
-    * 1. Return PSA_DROP_CONNECTION to the client from the faulty psa_call() and mark the
-    *    SPM connection object so that all future calls to psa_call() on this connection are
-    *    immediately failed with PSA_DROP_CONNECTION. And SPM must deliver a PSA_IPC_DISCONNECT
-    *    message for the connection to the RoT Service directly after receipt of the
-    *    PSA_DROP_CONNECTION completion to allow connection resources within the RoT Service
-    *    to be released.
-    *
-    * 2. Terminate the client task and restart if appropriate for the system
-    *
-    *
-    * If SPM implementation happens to be to first case, the test will expect psa_call to return
-    * PSA_DROP_CONNECTION for every future call to psa_call on the connection
-    *
-    * If SPM implementation happens to be second case, test will expect does not return behaviour
-    * for executed psa_call API
-   */
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
+    */
 
    handle = psa->connect(SERVER_CONNECTION_DROP_SID, 1);
    if (handle < 0)
@@ -72,9 +70,7 @@ int32_t client_test_psa_drop_connection(security_t caller)
        return VAL_STATUS_INVALID_HANDLE;
    }
 
-   /* Setting boot flag to BOOT_EXPECTED_* to help error recovery if SPM behaviour
-    * matches with 2nd case
-    */
+   /* Setting boot.state before test check */
    boot_state = (caller == NONSECURE) ? BOOT_EXPECTED_NS : BOOT_EXPECTED_S;
    if (val->set_boot_flag(boot_state))
    {
@@ -84,36 +80,49 @@ int32_t client_test_psa_drop_connection(security_t caller)
 
    status_of_call =  psa->call(handle, NULL, 0, NULL, 0);
 
-   /* Resetting boot.state to catch unwanted reboot */
-   status = val->set_boot_flag(BOOT_NOT_EXPECTED);
-   if (VAL_ERROR(status))
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return PSA_ERROR_PROGRAMMER_ERROR.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE && status_of_call == PSA_ERROR_PROGRAMMER_ERROR)
    {
-       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
-       goto exit;
-   }
+       /* Resetting boot.state to catch unwanted reboot */
+       if (val->set_boot_flag(BOOT_NOT_EXPECTED))
+       {
+           val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+           return VAL_STATUS_ERROR;
+       }
 
-   /* Case 1 implementation */
-   if (status_of_call == PSA_DROP_CONNECTION)
-   {
-        val->print(PRINT_DEBUG, "\tRecieved PSA_DROP_CONNECTION\n", 0);
+       val->print(PRINT_DEBUG, "\tRecieved PSA_ERROR_PROGRAMMER_ERROR\n", 0);
 
-        status_of_call =  psa->call(handle, NULL, 0, NULL, 0);
-        if (status_of_call != PSA_DROP_CONNECTION)
-        {
-            status = VAL_STATUS_SPM_FAILED;
-            val->print(PRINT_ERROR,
-                "\tCall should have returned PSA_DROP_CONNECTION. Status = 0x%x\n", status_of_call);
-        }
+       /* If this call returns PSA_ERROR_PROGRAMMER_ERROR,
+        * when a valid connection handle was provided, then
+        * all subsequent calls to psa_call() with the same connection
+        * handle will immediately return PSA_ERROR_PROGRAMMER_ERROR.
+        */
+       status_of_call =  psa->call(handle, NULL, 0, NULL, 0);
+       if (status_of_call != PSA_ERROR_PROGRAMMER_ERROR)
+       {
+           status = VAL_STATUS_SPM_FAILED;
+           val->print(PRINT_ERROR,
+           "\tCall should have returned PSA_ERROR_PROGRAMMER_ERROR. Status = 0x%x\n",
+           status_of_call);
+       }
+       psa->close(handle);
+       return status;
    }
-   /* If implementation is case 2, control shouldn't have come here*/
-   else
+
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
    {
-        /* psa_call should hang and control shouldn't have come here */
-        status = VAL_STATUS_SPM_FAILED;
-        val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
    }
 
-exit:
    psa->close(handle);
-   return status;
+   return VAL_STATUS_SPM_FAILED;
 }
diff --git a/api-tests/ff/ipc/test_i027/test_supp_i027.c b/api-tests/ff/ipc/test_i027/test_supp_i027.c
index 4c1ac218..c2eb4d3c 100644
--- a/api-tests/ff/ipc/test_i027/test_supp_i027.c
+++ b/api-tests/ff/ipc/test_i027/test_supp_i027.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_drop_connection(void);
 
@@ -31,35 +36,37 @@ int32_t server_test_psa_drop_connection(void)
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
 
-    status = val_process_connect_request(SERVER_CONNECTION_DROP_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_CONNECTION_DROP_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_CONNECTION_DROP_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_call_request(SERVER_CONNECTION_DROP_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
         goto exit;
     }
     else
     {
-        psa_reply(msg.handle, PSA_DROP_CONNECTION);
+        psa->reply(msg.handle, PSA_ERROR_PROGRAMMER_ERROR);
     }
 
 exit:
-    /* SPM must deliver a PSA_IPC_DISCONNECT message for the connection to the RoT Service
-       directly after receipt of the PSA_DROP_CONNECTION completion to allow connection resources
-       within the RoT Service to be released */
-    status = val_process_disconnect_request(SERVER_CONNECTION_DROP_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    /*
+     * SPM must deliver a PSA_IPC_DISCONNECT message for the connection to the RoT Service
+     * directly after receipt of the PSA_ERROR_PROGRAMMER_ERROR completion to allow
+     * connection resources within the RoT Service to be released
+     */
+    status = val->process_disconnect_request(SERVER_CONNECTION_DROP_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
     {
-        val_print(PRINT_ERROR, "\tDisconnect request failed\n", 0);
+        val->print(PRINT_ERROR, "\tDisconnect request failed\n", 0);
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i028/test_entry.c b/api-tests/ff/ipc/test_i028/test_entry.c
index 6126f471..c259efb8 100644
--- a/api-tests/ff/ipc/test_i028/test_entry.c
+++ b/api-tests/ff/ipc/test_i028/test_entry.c
@@ -34,7 +34,7 @@ void test_entry(val_api_t *val_api, psa_api_t *psa_api)
 
     /* test init */
     val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L1, WD_LOW_TIMEOUT));
-    if(!IS_TEST_START(val->get_status()))
+    if (!IS_TEST_START(val->get_status()))
     {
         goto test_exit;
     }
diff --git a/api-tests/ff/ipc/test_i028/test_i028.c b/api-tests/ff/ipc/test_i028/test_i028.c
index 0e3539fc..a5be9d35 100644
--- a/api-tests/ff/ipc/test_i028/test_i028.c
+++ b/api-tests/ff/ipc/test_i028/test_i028.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i028.h"
@@ -35,7 +35,7 @@ int32_t client_test_psa_read_at_ipc_connect(security_t caller)
 {
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Test psa_read at PSA_IPC_CONNECT\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_read at PSA_IPC_CONNECT\n", 0);
 
    handle = psa->connect(SERVER_RELAX_MINOR_VERSION_SID, 1);
 
diff --git a/api-tests/ff/ipc/test_i028/test_supp_i028.c b/api-tests/ff/ipc/test_i028/test_supp_i028.c
index 88df3c59..3c571e3c 100644
--- a/api-tests/ff/ipc/test_i028/test_supp_i028.c
+++ b/api-tests/ff/ipc/test_i028/test_supp_i028.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 #define NUM_OF_BYTES 4
 
@@ -34,45 +39,55 @@ int32_t server_test_psa_read_at_ipc_connect()
     psa_msg_t       msg = {0};
     uint8_t         data[NUM_OF_BYTES] = {0};
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
     /* Setting boot.state before test check */
-    status = val_set_boot_flag(BOOT_EXPECTED_NS);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_NS);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    /*psa_read at PSA_IPC_CONNECT */
-    psa_read(msg.handle, 0, (void *)data, 0);
+    /* psa_read at PSA_IPC_CONNECT, call should panic */
+    psa->read(msg.handle, 0, (void *)data, 0);
 
     /* Shouldn't have reached here */
-    val_print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
+    val->print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
     }
-    psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     return VAL_STATUS_INVALID;
 }
diff --git a/api-tests/ff/ipc/test_i029/test_i029.c b/api-tests/ff/ipc/test_i029/test_i029.c
index 69f3c515..51d199bd 100644
--- a/api-tests/ff/ipc/test_i029/test_i029.c
+++ b/api-tests/ff/ipc/test_i029/test_i029.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i029.h"
@@ -35,17 +35,16 @@ int32_t client_test_psa_read_at_ipc_disconnect(security_t caller)
 {
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Test psa_read at PSA_IPC_DISCONNECT\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_read at PSA_IPC_DISCONNECT\n", 0);
 
    handle = psa->connect(SERVER_RELAX_MINOR_VERSION_SID, 1);
-
-   /* Shouldn't have reached here */
-   val->print(PRINT_ERROR, "\tCheck for psa_read at PSA_IPC_DISCONNECT failed\n", 0);
-
    if (handle > 0)
    {
        psa->close(handle);
    }
 
+   /* Shouldn't have reached here */
+   val->print(PRINT_ERROR, "\tCheck for psa_read at PSA_IPC_DISCONNECT failed\n", 0);
+
    return VAL_STATUS_SPM_FAILED;
 }
diff --git a/api-tests/ff/ipc/test_i029/test_supp_i029.c b/api-tests/ff/ipc/test_i029/test_supp_i029.c
index 1738b102..0e7aac6b 100644
--- a/api-tests/ff/ipc/test_i029/test_supp_i029.c
+++ b/api-tests/ff/ipc/test_i029/test_supp_i029.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 #define NUM_OF_BYTES 4
 
@@ -34,52 +39,63 @@ int32_t server_test_psa_read_at_ipc_disconnect(void)
     psa_msg_t       msg = {0};
     uint8_t         data[NUM_OF_BYTES] = {0};
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_disconnect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_disconnect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, PSA_SUCCESS);
+        psa->reply(msg.handle, PSA_SUCCESS);
         return status;
     }
 
     /* Setting boot.state before test check */
-    status = val_set_boot_flag(BOOT_EXPECTED_NS);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_NS);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
     {
-        psa_reply(msg.handle, PSA_SUCCESS);
+        psa->reply(msg.handle, PSA_SUCCESS);
         return status;
     }
 
-    /* Test check - psa_read at PSA_IPC_DISCONNECT */
-    psa_read(msg.handle, 0, (void *)data, 0);
+    /* Test check - psa_read at PSA_IPC_DISCONNECT, call should panic */
+    psa->read(msg.handle, 0, (void *)data, 0);
 
     /* Shouldn't have reached here */
-    val_print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
+    val->print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+
+    psa->reply(msg.handle, PSA_SUCCESS);
     return VAL_STATUS_INVALID;
 }
diff --git a/api-tests/ff/ipc/test_i030/test_i030.c b/api-tests/ff/ipc/test_i030/test_i030.c
index 3a4a767b..f6eef922 100644
--- a/api-tests/ff/ipc/test_i030/test_i030.c
+++ b/api-tests/ff/ipc/test_i030/test_i030.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i030.h"
@@ -38,7 +38,7 @@ int32_t client_test_psa_read_with_null_handle(security_t caller)
    psa_status_t       status_of_call;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_read with NULL handle\n", 0);
+            "[Check 1] Test psa_read with NULL handle\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
 
@@ -51,7 +51,7 @@ int32_t client_test_psa_read_with_null_handle(security_t caller)
    status_of_call =  psa->call(handle, NULL, 0, NULL, 0);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i030/test_supp_i030.c b/api-tests/ff/ipc/test_i030/test_supp_i030.c
index fb3afd7c..6c67a002 100644
--- a/api-tests/ff/ipc/test_i030/test_supp_i030.c
+++ b/api-tests/ff/ipc/test_i030/test_supp_i030.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 #define NUM_OF_BYTES 4
 
@@ -34,64 +39,74 @@ int32_t server_test_psa_read_with_null_handle(void)
     psa_msg_t       msg = {0};
     uint8_t         data[NUM_OF_BYTES] = {0};
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
     }
     else
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_reply(msg.handle, -3);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->reply(msg.handle, -3);
         }
         else
         {
-            /* Test check- psa_read with PSA_NULL_HANDLE */
-            psa_read(PSA_NULL_HANDLE, 0, (void *)data, 0);
+            /* Test check- psa_read with PSA_NULL_HANDLE, call should panic */
+            psa->read(PSA_NULL_HANDLE, 0, (void *)data, 0);
 
             /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_read with NULL handle should failed but successed\n", 0);
+            val->print(PRINT_ERROR,
+                "\tpsa_read with NULL handle should failed but succeed\n", 0);
 
             /* Resetting boot.state to catch unwanted reboot */
-            if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+            if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
             {
-                val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+                val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
             }
 
             status = VAL_STATUS_SPM_FAILED;
-            psa_reply(msg.handle, -4);
+            psa->reply(msg.handle, -4);
         }
     }
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i031/test_i031.c b/api-tests/ff/ipc/test_i031/test_i031.c
index ffa5a7c4..dc221519 100644
--- a/api-tests/ff/ipc/test_i031/test_i031.c
+++ b/api-tests/ff/ipc/test_i031/test_i031.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i031.h"
@@ -38,7 +38,7 @@ int32_t client_test_psa_read_with_invalid_handle(security_t caller)
    psa_status_t       status_of_call;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_read with invalid handle\n", 0);
+            "[Check 1] Test psa_read with invalid handle\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle < 0)
@@ -50,7 +50,7 @@ int32_t client_test_psa_read_with_invalid_handle(security_t caller)
    status_of_call =  psa->call(handle, NULL, 0, NULL, 0);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i031/test_supp_i031.c b/api-tests/ff/ipc/test_i031/test_supp_i031.c
index 3b41ba16..9bac47af 100644
--- a/api-tests/ff/ipc/test_i031/test_supp_i031.c
+++ b/api-tests/ff/ipc/test_i031/test_supp_i031.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 #define NUM_OF_BYTES 4
 
@@ -34,64 +39,74 @@ int32_t server_test_psa_read_with_invalid_handle(void)
     psa_msg_t       msg = {0};
     uint8_t         data[NUM_OF_BYTES] = {0};
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
     }
     else
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_reply(msg.handle, -3);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->reply(msg.handle, -3);
         }
         else
         {
-            /* Test check- psa_read with INVALID_HANDLE */
-            psa_read(INVALID_HANDLE, 0, (void *)data, 0);
+            /* Test check- psa_read with INVALID_HANDLE, call should panic */
+            psa->read(INVALID_HANDLE, 0, (void *)data, 0);
 
             /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_read with invalid handle should failed but successed\n", 0);
+            val->print(PRINT_ERROR,
+                "\tpsa_read with invalid handle should failed but succeed\n", 0);
 
             /* Resetting boot.state to catch unwanted reboot */
-            if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+            if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
             {
-                val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+                val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
             }
 
             status = VAL_STATUS_SPM_FAILED;
-            psa_reply(msg.handle, -4);
+            psa->reply(msg.handle, -4);
         }
     }
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i032/test_i032.c b/api-tests/ff/ipc/test_i032/test_i032.c
index 712254bd..f0527833 100644
--- a/api-tests/ff/ipc/test_i032/test_i032.c
+++ b/api-tests/ff/ipc/test_i032/test_i032.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i032.h"
@@ -38,7 +38,7 @@ int32_t client_test_psa_read_with_invec_equal_to_max_iovec(security_t caller)
    psa_status_t       status_of_call;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_read with invec_idx=PSA_MAX_IOVEC\n", 0);
+            "[Check 1] Test psa_read with invec_idx=PSA_MAX_IOVEC\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle < 0)
@@ -50,7 +50,7 @@ int32_t client_test_psa_read_with_invec_equal_to_max_iovec(security_t caller)
    status_of_call =  psa->call(handle, NULL, 0, NULL, 0);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i032/test_supp_i032.c b/api-tests/ff/ipc/test_i032/test_supp_i032.c
index 941615c3..e45d47b9 100644
--- a/api-tests/ff/ipc/test_i032/test_supp_i032.c
+++ b/api-tests/ff/ipc/test_i032/test_supp_i032.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 #define NUM_OF_BYTES 4
 
@@ -34,64 +39,74 @@ int32_t server_test_psa_read_with_invec_equal_to_max_iovec(void)
     psa_msg_t       msg = {0};
     uint8_t         data[NUM_OF_BYTES] = {0};
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
     }
     else
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if(val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_reply(msg.handle, -3);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->reply(msg.handle, -3);
         }
         else
         {
-            /* Test check- psa_read with invec_idx=PSA_MAX_IOVEC */
-            psa_read(msg.handle, PSA_MAX_IOVEC, (void *)data, 0);
+            /* Test check- psa_read with invec_idx=PSA_MAX_IOVEC, call should panic */
+            psa->read(msg.handle, PSA_MAX_IOVEC, (void *)data, 0);
 
             /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_read with invec_idx=PSA_MAX_IOVEC should failed but successed\n", 0);
+            val->print(PRINT_ERROR,
+                "\tpsa_read with invec_idx=PSA_MAX_IOVEC should failed but succeed\n", 0);
 
             /* Resetting boot.state to catch unwanted reboot */
-            if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+            if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
             {
-                val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+                val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
             }
             status = VAL_STATUS_SPM_FAILED;
-            psa_reply(msg.handle, -4);
+            psa->reply(msg.handle, -4);
 
         }
     }
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i033/test_i033.c b/api-tests/ff/ipc/test_i033/test_i033.c
index 68e35bcf..1792dfa7 100644
--- a/api-tests/ff/ipc/test_i033/test_i033.c
+++ b/api-tests/ff/ipc/test_i033/test_i033.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i033.h"
@@ -38,7 +38,7 @@ int32_t client_test_psa_read_with_invec_greater_than_max_iovec(security_t caller
    psa_status_t       status_of_call;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_read with invec_idx > PSA_MAX_IOVEC\n", 0);
+            "[Check 1] Test psa_read with invec_idx > PSA_MAX_IOVEC\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle < 0)
@@ -50,7 +50,7 @@ int32_t client_test_psa_read_with_invec_greater_than_max_iovec(security_t caller
    status_of_call =  psa->call(handle, NULL, 0, NULL, 0);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i033/test_supp_i033.c b/api-tests/ff/ipc/test_i033/test_supp_i033.c
index 70f9308b..425c255a 100644
--- a/api-tests/ff/ipc/test_i033/test_supp_i033.c
+++ b/api-tests/ff/ipc/test_i033/test_supp_i033.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 #define NUM_OF_BYTES 4
 
@@ -34,64 +39,74 @@ int32_t server_test_psa_read_with_invec_greater_than_max_iovec(void)
     psa_msg_t       msg = {0};
     uint8_t         data[NUM_OF_BYTES] = {0};
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
     }
     else
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_reply(msg.handle, -3);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->reply(msg.handle, -3);
         }
         else
         {
-            /* Test check- psa_read with invec_idx > PSA_MAX_IOVEC */
-            psa_read(msg.handle, PSA_MAX_IOVEC + 1, (void *)data, 0);
+            /* Test check- psa_read with invec_idx > PSA_MAX_IOVEC, call should panic */
+            psa->read(msg.handle, PSA_MAX_IOVEC + 1, (void *)data, 0);
 
             /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_read with invec_idx > PSA_MAX_IOVEC should failed but successed\n", 0);
+            val->print(PRINT_ERROR,
+                "\tpsa_read with invec_idx > PSA_MAX_IOVEC should failed but succeed\n", 0);
 
             /* Resetting boot.state to catch unwanted reboot */
-            if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+            if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
             {
-                val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+                val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
             }
 
             status = VAL_STATUS_SPM_FAILED;
-            psa_reply(msg.handle, -4);
+            psa->reply(msg.handle, -4);
         }
     }
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i034/test_i034.c b/api-tests/ff/ipc/test_i034/test_i034.c
index d57057b6..742c1aa0 100644
--- a/api-tests/ff/ipc/test_i034/test_i034.c
+++ b/api-tests/ff/ipc/test_i034/test_i034.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i034.h"
@@ -35,7 +35,7 @@ int32_t client_test_psa_skip_at_ipc_connect(security_t caller)
 {
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Test psa_skip at PSA_IPC_CONNECT\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_skip at PSA_IPC_CONNECT\n", 0);
 
    handle = psa->connect(SERVER_RELAX_MINOR_VERSION_SID, 1);
 
diff --git a/api-tests/ff/ipc/test_i034/test_supp_i034.c b/api-tests/ff/ipc/test_i034/test_supp_i034.c
index 6f98c12d..2580d99f 100644
--- a/api-tests/ff/ipc/test_i034/test_supp_i034.c
+++ b/api-tests/ff/ipc/test_i034/test_supp_i034.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_skip_at_ipc_connect(void);
 
@@ -31,46 +36,56 @@ int32_t server_test_psa_skip_at_ipc_connect(void)
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
     /* Setting boot.state before test check */
-    status = val_set_boot_flag(BOOT_EXPECTED_NS);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_NS);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    /* Test check- psa_skip at PSA_IPC_CONNECT */
-    psa_skip(msg.handle, 0, 0);
+    /* Test check- psa_skip at PSA_IPC_CONNECT, call should panic */
+    psa->skip(msg.handle, 0, 0);
 
     /* Shouldn't have reached here */
-    val_print(PRINT_ERROR,"\tpsa_skip should failed but successed\n", 0);
+    val->print(PRINT_ERROR,"\tpsa_skip should failed but succeed\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
     }
 
-    psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     return VAL_STATUS_INVALID;
 }
diff --git a/api-tests/ff/ipc/test_i035/test_i035.c b/api-tests/ff/ipc/test_i035/test_i035.c
index 401d2929..ca89abef 100644
--- a/api-tests/ff/ipc/test_i035/test_i035.c
+++ b/api-tests/ff/ipc/test_i035/test_i035.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i035.h"
@@ -35,7 +35,7 @@ int32_t client_test_psa_skip_at_ipc_disconnect(security_t caller)
 {
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Test psa_skip at PSA_IPC_DISCONNECT\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_skip at PSA_IPC_DISCONNECT\n", 0);
 
    handle = psa->connect(SERVER_RELAX_MINOR_VERSION_SID, 1);
    if (handle > 0)
diff --git a/api-tests/ff/ipc/test_i035/test_supp_i035.c b/api-tests/ff/ipc/test_i035/test_supp_i035.c
index 1bec82bf..a3551488 100644
--- a/api-tests/ff/ipc/test_i035/test_supp_i035.c
+++ b/api-tests/ff/ipc/test_i035/test_supp_i035.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_skip_at_ipc_disconnect();
 
@@ -31,52 +36,62 @@ int32_t server_test_psa_skip_at_ipc_disconnect()
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_disconnect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_disconnect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, PSA_SUCCESS);
+        psa->reply(msg.handle, PSA_SUCCESS);
         return status;
     }
 
-    status = val_set_boot_flag(BOOT_EXPECTED_NS);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_NS);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-        psa_reply(msg.handle, PSA_SUCCESS);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+        psa->reply(msg.handle, PSA_SUCCESS);
         return status;
     }
 
-    /* Test check- psa_skip at PSA_IPC_DISCONNECT */
-    psa_skip(msg.handle, 0, 0);
+    /* Test check- psa_skip at PSA_IPC_DISCONNECT, call should panic */
+    psa->skip(msg.handle, 0, 0);
 
     /* Shouldn't have reached here */
-    val_print(PRINT_ERROR,"\tpsa_skip should failed but successed\n", 0);
+    val->print(PRINT_ERROR,"\tpsa_skip should failed but succeed\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return VAL_STATUS_INVALID;
 }
diff --git a/api-tests/ff/ipc/test_i036/test_i036.c b/api-tests/ff/ipc/test_i036/test_i036.c
index 0daf6352..75eea227 100644
--- a/api-tests/ff/ipc/test_i036/test_i036.c
+++ b/api-tests/ff/ipc/test_i036/test_i036.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i036.h"
@@ -38,7 +38,7 @@ int32_t client_test_psa_skip_with_null_handle(security_t caller)
    psa_status_t       status_of_call;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_skip with NULL handle\n", 0);
+            "[Check 1] Test psa_skip with NULL handle\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle < 0)
@@ -50,7 +50,7 @@ int32_t client_test_psa_skip_with_null_handle(security_t caller)
    status_of_call =  psa->call(handle, NULL, 0, NULL, 0);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i036/test_supp_i036.c b/api-tests/ff/ipc/test_i036/test_supp_i036.c
index e7039959..b61bbfe7 100644
--- a/api-tests/ff/ipc/test_i036/test_supp_i036.c
+++ b/api-tests/ff/ipc/test_i036/test_supp_i036.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_skip_with_null_handle(void);
 
@@ -31,64 +36,74 @@ int32_t server_test_psa_skip_with_null_handle(void)
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if(val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if(val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
     }
     else
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if(val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_reply(msg.handle, -3);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->reply(msg.handle, -3);
         }
         else
         {
-            /* Test check- psa_skip with PSA_NULL_HANDLE */
-            psa_skip(PSA_NULL_HANDLE, 0, 0);
+            /* Test check- psa_skip with PSA_NULL_HANDLE, call should panic */
+            psa->skip(PSA_NULL_HANDLE, 0, 0);
 
             /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_skip with NULL handle should failed but successed\n", 0);
+            val->print(PRINT_ERROR,
+                "\tpsa_skip with NULL handle should failed but succeed\n", 0);
 
             /* Resetting boot.state to catch unwanted reboot */
-            if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+            if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
             {
-                val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+                val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
             }
 
             status = VAL_STATUS_SPM_FAILED;
-            psa_reply(msg.handle, -4);
+            psa->reply(msg.handle, -4);
         }
     }
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i037/test_i037.c b/api-tests/ff/ipc/test_i037/test_i037.c
index 8a0d8211..c6765a2a 100644
--- a/api-tests/ff/ipc/test_i037/test_i037.c
+++ b/api-tests/ff/ipc/test_i037/test_i037.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i037.h"
@@ -38,7 +38,7 @@ int32_t client_test_psa_skip_with_invalid_handle(security_t caller)
    psa_status_t       status_of_call;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_skip with invalid handle\n", 0);
+            "[Check 1] Test psa_skip with invalid handle\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle < 0)
@@ -50,7 +50,7 @@ int32_t client_test_psa_skip_with_invalid_handle(security_t caller)
    status_of_call =  psa->call(handle, NULL, 0, NULL, 0);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i037/test_supp_i037.c b/api-tests/ff/ipc/test_i037/test_supp_i037.c
index 870be92c..9ed99633 100644
--- a/api-tests/ff/ipc/test_i037/test_supp_i037.c
+++ b/api-tests/ff/ipc/test_i037/test_supp_i037.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_skip_with_invalid_handle(void);
 
@@ -31,52 +36,74 @@ int32_t server_test_psa_skip_with_invalid_handle(void)
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
+    *
+    * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
+    * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
+    */
+
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
     }
     else
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_reply(msg.handle, -3);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->reply(msg.handle, -3);
         }
         else
         {
-            /* Test check- psa_skip with INVALID_HANDLE */
-            psa_skip(INVALID_HANDLE, 0, 0);
+            /* Test check- psa_skip with INVALID_HANDLE, call should panic */
+            psa->skip(INVALID_HANDLE, 0, 0);
 
             /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_skip with invalid handle should failed but successed\n", 0);
+            val->print(PRINT_ERROR,
+                "\tpsa_skip with invalid handle should failed but succeed\n", 0);
 
             /* Resetting boot.state to catch unwanted reboot */
-            if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+            if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
             {
-                val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+                val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
             }
 
             status = VAL_STATUS_SPM_FAILED;
-            psa_reply(msg.handle, -4);
+            psa->reply(msg.handle, -4);
         }
     }
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i038/test_i038.c b/api-tests/ff/ipc/test_i038/test_i038.c
index 98dd4a05..a2cf2b8e 100644
--- a/api-tests/ff/ipc/test_i038/test_i038.c
+++ b/api-tests/ff/ipc/test_i038/test_i038.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i038.h"
@@ -38,7 +38,7 @@ int32_t client_test_psa_skip_with_invec_equal_to_max_iovec(security_t caller)
    psa_status_t       status_of_call;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_skip with invec_idx=PSA_MAX_IOVEC\n", 0);
+            "[Check 1] Test psa_skip with invec_idx=PSA_MAX_IOVEC\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle < 0)
@@ -50,7 +50,7 @@ int32_t client_test_psa_skip_with_invec_equal_to_max_iovec(security_t caller)
    status_of_call =  psa->call(handle, NULL, 0, NULL, 0);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i038/test_supp_i038.c b/api-tests/ff/ipc/test_i038/test_supp_i038.c
index 536af3a1..540440d1 100644
--- a/api-tests/ff/ipc/test_i038/test_supp_i038.c
+++ b/api-tests/ff/ipc/test_i038/test_supp_i038.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_skip_with_invec_equal_to_max_iovec(void);
 
@@ -31,66 +36,76 @@ int32_t server_test_psa_skip_with_invec_equal_to_max_iovec(void)
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
     }
     else
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_reply(msg.handle, -3);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->reply(msg.handle, -3);
         }
         else
         {
-            /* Test check- psa_skip with invec_idx=PSA_MAX_IOVEC */
-            psa_skip(msg.handle, PSA_MAX_IOVEC, 0);
+            /* Test check- psa_skip with invec_idx=PSA_MAX_IOVEC, call should panic */
+            psa->skip(msg.handle, PSA_MAX_IOVEC, 0);
 
             status = VAL_STATUS_SPM_FAILED;
 
             /* Resetting boot.state to catch unwanted reboot */
-            if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+            if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
             {
-                val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+                val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
             }
 
             /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_skip with invec_idx=PSA_MAX_IOVEC should failed but successed\n", 0);
+            val->print(PRINT_ERROR,
+                "\tpsa_skip with invec_idx=PSA_MAX_IOVEC should failed but succeed\n", 0);
 
-            psa_reply(msg.handle, -4);
+            psa->reply(msg.handle, -4);
 
         }
     }
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i039/test_i039.c b/api-tests/ff/ipc/test_i039/test_i039.c
index 2db39ae4..b028f365 100644
--- a/api-tests/ff/ipc/test_i039/test_i039.c
+++ b/api-tests/ff/ipc/test_i039/test_i039.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i039.h"
@@ -38,7 +38,7 @@ int32_t client_test_psa_skip_with_invec_greater_than_max_iovec(security_t caller
    psa_status_t       status_of_call;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_skip with invec_idx > PSA_MAX_IOVEC\n", 0);
+            "[Check 1] Test psa_skip with invec_idx > PSA_MAX_IOVEC\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle < 0)
@@ -50,7 +50,7 @@ int32_t client_test_psa_skip_with_invec_greater_than_max_iovec(security_t caller
    status_of_call =  psa->call(handle, NULL, 0, NULL, 0);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i039/test_supp_i039.c b/api-tests/ff/ipc/test_i039/test_supp_i039.c
index 58ee41e0..9b4b3c6e 100644
--- a/api-tests/ff/ipc/test_i039/test_supp_i039.c
+++ b/api-tests/ff/ipc/test_i039/test_supp_i039.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_skip_with_invec_greater_than_max_iovec(void);
 
@@ -31,66 +36,76 @@ int32_t server_test_psa_skip_with_invec_greater_than_max_iovec(void)
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
     }
     else
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_reply(msg.handle, -3);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->reply(msg.handle, -3);
         }
         else
         {
-            /* Test check- psa_skip with invec_idx > PSA_MAX_IOVEC */
-            psa_skip(msg.handle, PSA_MAX_IOVEC + 1, 0);
+            /* Test check- psa_skip with invec_idx > PSA_MAX_IOVEC, call should panic */
+            psa->skip(msg.handle, PSA_MAX_IOVEC + 1, 0);
 
             status = VAL_STATUS_SPM_FAILED;
 
             /* Resetting boot.state to catch unwanted reboot */
-            if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+            if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
             {
-                val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+                val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
             }
 
             /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_skip with invec_idx > PSA_MAX_IOVEC should failed but successed\n", 0);
+            val->print(PRINT_ERROR,
+                "\tpsa_skip with invec_idx > PSA_MAX_IOVEC should failed but succeed\n", 0);
 
-            psa_reply(msg.handle, -4);
+            psa->reply(msg.handle, -4);
 
         }
     }
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i040/test_i040.c b/api-tests/ff/ipc/test_i040/test_i040.c
index ec020670..c0746b1e 100644
--- a/api-tests/ff/ipc/test_i040/test_i040.c
+++ b/api-tests/ff/ipc/test_i040/test_i040.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i040.h"
@@ -35,7 +35,7 @@ int32_t client_test_psa_write_at_ipc_connect(security_t caller)
 {
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Test psa_write at PSA_IPC_CONNECT\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_write at PSA_IPC_CONNECT\n", 0);
 
    handle = psa->connect(SERVER_RELAX_MINOR_VERSION_SID, 1);
 
diff --git a/api-tests/ff/ipc/test_i040/test_supp_i040.c b/api-tests/ff/ipc/test_i040/test_supp_i040.c
index 47433c3e..8ea608b1 100644
--- a/api-tests/ff/ipc/test_i040/test_supp_i040.c
+++ b/api-tests/ff/ipc/test_i040/test_supp_i040.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 #define NUM_OF_BYTES 4
 
@@ -34,46 +39,56 @@ int32_t server_test_psa_write_at_ipc_connect(void)
     psa_msg_t       msg = {0};
     uint8_t         data[NUM_OF_BYTES] = {0};
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
     /* Setting boot.state before test check */
-    status = val_set_boot_flag(BOOT_EXPECTED_NS);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_NS);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    /* Test check- psa_write at PSA_IPC_CONNECT */
-    psa_write(msg.handle, 0, (void *)data, 0);
+    /* Test check- psa_write at PSA_IPC_CONNECT, call should panic */
+    psa->write(msg.handle, 0, (void *)data, 0);
 
     /* Shouldn't have reached here */
-    val_print(PRINT_ERROR,"\tpsa_write should failed but successed\n", 0);
+    val->print(PRINT_ERROR,"\tpsa_write should failed but succeed\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
     }
 
-    psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     return VAL_STATUS_INVALID;
 }
diff --git a/api-tests/ff/ipc/test_i041/test_i041.c b/api-tests/ff/ipc/test_i041/test_i041.c
index a4275a9f..cead0f0f 100644
--- a/api-tests/ff/ipc/test_i041/test_i041.c
+++ b/api-tests/ff/ipc/test_i041/test_i041.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i041.h"
@@ -35,7 +35,7 @@ int32_t client_test_psa_write_at_ipc_disconnect(security_t caller)
 {
    psa_handle_t       handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Test psa_write at PSA_IPC_DISCONNECT\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_write at PSA_IPC_DISCONNECT\n", 0);
 
    handle = psa->connect(SERVER_RELAX_MINOR_VERSION_SID, 1);
    if (handle > 0)
diff --git a/api-tests/ff/ipc/test_i041/test_supp_i041.c b/api-tests/ff/ipc/test_i041/test_supp_i041.c
index ed483778..8b3d2b31 100644
--- a/api-tests/ff/ipc/test_i041/test_supp_i041.c
+++ b/api-tests/ff/ipc/test_i041/test_supp_i041.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 #define NUM_OF_BYTES 4
 
@@ -34,53 +39,63 @@ int32_t server_test_psa_write_at_ipc_disconnect(void)
     psa_msg_t       msg = {0};
     uint8_t         data[NUM_OF_BYTES] = {0};
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_disconnect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_disconnect_request(SERVER_RELAX_MINOR_VERSION_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, PSA_SUCCESS);
+        psa->reply(msg.handle, PSA_SUCCESS);
         return status;
     }
 
     /* Setting boot.state before test check */
-    status = val_set_boot_flag(BOOT_EXPECTED_NS);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    status = val->set_boot_flag(BOOT_EXPECTED_NS);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-        psa_reply(msg.handle, PSA_SUCCESS);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+        psa->reply(msg.handle, PSA_SUCCESS);
         return status;
     }
 
-    /* Test check- psa_write at PSA_IPC_DISCONNECT */
-    psa_write(msg.handle, 0, (void *)data, 0);
+    /* Test check- psa_write at PSA_IPC_DISCONNECT, call should panic */
+    psa->write(msg.handle, 0, (void *)data, 0);
 
     /* Shouldn't have reached here */
-    val_print(PRINT_ERROR,"\tpsa_write should failed but successed\n", 0);
+    val->print(PRINT_ERROR,"\tpsa_write should failed but succeed\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
     }
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return VAL_STATUS_INVALID;
 }
diff --git a/api-tests/ff/ipc/test_i042/test_i042.c b/api-tests/ff/ipc/test_i042/test_i042.c
index 4c7652e8..65dc1539 100644
--- a/api-tests/ff/ipc/test_i042/test_i042.c
+++ b/api-tests/ff/ipc/test_i042/test_i042.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i042.h"
@@ -38,7 +38,7 @@ int32_t client_test_psa_write_with_null_handle(security_t caller)
    psa_status_t       status_of_call;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_write with NULL handle\n", 0);
+            "[Check 1] Test psa_write with NULL handle\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle < 0)
@@ -50,7 +50,7 @@ int32_t client_test_psa_write_with_null_handle(security_t caller)
    status_of_call =  psa->call(handle, NULL, 0, NULL, 0);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i042/test_supp_i042.c b/api-tests/ff/ipc/test_i042/test_supp_i042.c
index 712791e6..1257cdfc 100644
--- a/api-tests/ff/ipc/test_i042/test_supp_i042.c
+++ b/api-tests/ff/ipc/test_i042/test_supp_i042.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_write_with_null_handle();
 
@@ -32,51 +37,72 @@ int32_t server_test_psa_write_with_null_handle()
     psa_msg_t       msg = {0};
     uint8_t         data[4] = {0};
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if(val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
+    *
+    * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
+    * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
+    */
+
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if(val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
     }
     else
     {
-        /* Set boot flag to BOOT_EXPECTED_* to indicate- test is targeting
-        fatal error condition and test will expect error recovery to happen */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if(val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+        /* Setting boot.state before test check */
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
         {
-            psa_reply(msg.handle, -3);
+            psa->reply(msg.handle, -3);
         }
         else
         {
-            /*psa_write with PSA_NULL_HANDLE */
-            psa_write(PSA_NULL_HANDLE, 0, (void *)data, 0);
+            /* psa_write with PSA_NULL_HANDLE, call should panic */
+            psa->write(PSA_NULL_HANDLE, 0, (void *)data, 0);
 
             status = VAL_STATUS_SPM_FAILED;
 
             /* Resetting boot.state to catch unwanted reboot */
-            val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
+            val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED);
 
             /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_write with NULL handle should failed but successed\n", 0);
+            val->print(PRINT_ERROR,
+                "\tpsa_write with NULL handle should failed but succeed\n", 0);
 
-            psa_reply(msg.handle, -4);
+            psa->reply(msg.handle, -4);
 
         }
     }
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i043/test_i043.c b/api-tests/ff/ipc/test_i043/test_i043.c
index 6bebfe39..ea38f4c2 100644
--- a/api-tests/ff/ipc/test_i043/test_i043.c
+++ b/api-tests/ff/ipc/test_i043/test_i043.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i043.h"
@@ -38,7 +38,7 @@ int32_t client_test_psa_write_with_invalid_handle(security_t caller)
    psa_status_t       status_of_call;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_write with invalid handle\n", 0);
+            "[Check 1] Test psa_write with invalid handle\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle < 0)
@@ -50,7 +50,7 @@ int32_t client_test_psa_write_with_invalid_handle(security_t caller)
    status_of_call =  psa->call(handle, NULL, 0, NULL, 0);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i043/test_supp_i043.c b/api-tests/ff/ipc/test_i043/test_supp_i043.c
index 04053f20..51237539 100644
--- a/api-tests/ff/ipc/test_i043/test_supp_i043.c
+++ b/api-tests/ff/ipc/test_i043/test_supp_i043.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 #define NUM_OF_BYTES 4
 
@@ -34,65 +39,75 @@ int32_t server_test_psa_write_with_invalid_handle(void)
     psa_msg_t       msg = {0};
     uint8_t         data[NUM_OF_BYTES] = {0};
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
     }
     else
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_reply(msg.handle, -3);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->reply(msg.handle, -3);
         }
         else
         {
-            /* Test check- psa_write with INVALID_HANDLE */
-            psa_write(INVALID_HANDLE, 0, (void *)data, 0);
+            /* Test check- psa_write with INVALID_HANDLE, call should panic */
+            psa->write(INVALID_HANDLE, 0, (void *)data, 0);
 
             status = VAL_STATUS_SPM_FAILED;
 
             /* Resetting boot.state to catch unwanted reboot */
-            if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+            if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
             {
-                val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+                val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
             }
 
             /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_write with invalid handle should failed but successed\n", 0);
+            val->print(PRINT_ERROR,
+                "\tpsa_write with invalid handle should failed but succeed\n", 0);
 
-            psa_reply(msg.handle, -4);
+            psa->reply(msg.handle, -4);
         }
     }
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i044/test_i044.c b/api-tests/ff/ipc/test_i044/test_i044.c
index 17289e1e..c22a18b8 100644
--- a/api-tests/ff/ipc/test_i044/test_i044.c
+++ b/api-tests/ff/ipc/test_i044/test_i044.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i044.h"
@@ -38,7 +38,7 @@ int32_t client_test_psa_write_with_invec_equal_to_max_iovec(security_t caller)
    psa_status_t       status_of_call;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_write with invec_idx=PSA_MAX_IOVEC\n", 0);
+            "[Check 1] Test psa_write with invec_idx=PSA_MAX_IOVEC\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle < 0)
@@ -50,7 +50,7 @@ int32_t client_test_psa_write_with_invec_equal_to_max_iovec(security_t caller)
    status_of_call =  psa->call(handle, NULL, 0, NULL, 0);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i044/test_supp_i044.c b/api-tests/ff/ipc/test_i044/test_supp_i044.c
index 1219b5ef..b4e4cae3 100644
--- a/api-tests/ff/ipc/test_i044/test_supp_i044.c
+++ b/api-tests/ff/ipc/test_i044/test_supp_i044.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 #define NUM_OF_BYTES 4
 
@@ -34,53 +39,75 @@ int32_t server_test_psa_write_with_invec_equal_to_max_iovec(void)
     psa_msg_t       msg = {0};
     uint8_t         data[NUM_OF_BYTES] = {0};
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
+    *
+    * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
+    * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
+    */
+
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
     }
     else
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_reply(msg.handle, -3);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->reply(msg.handle, -3);
         }
         else
         {
-            /* Test check- psa_write with invec_idx=PSA_MAX_IOVEC */
-            psa_write(msg.handle, PSA_MAX_IOVEC, (void *)data, 0);
+            /* Test check- psa_write with invec_idx=PSA_MAX_IOVEC, call should panic */
+            psa->write(msg.handle, PSA_MAX_IOVEC, (void *)data, 0);
 
             status = VAL_STATUS_SPM_FAILED;
 
             /* Resetting boot.state to catch unwanted reboot */
-            if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+            if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
             {
-                val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+                val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
             }
 
             /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_write with invec_idx=PSA_MAX_IOVEC should failed but successed\n", 0);
+            val->print(PRINT_ERROR,
+                "\tpsa_write with invec_idx=PSA_MAX_IOVEC should failed but succeed\n", 0);
 
-            psa_reply(msg.handle, -4);
+            psa->reply(msg.handle, -4);
         }
     }
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i045/test_i045.c b/api-tests/ff/ipc/test_i045/test_i045.c
index 3b15f967..6448b6de 100644
--- a/api-tests/ff/ipc/test_i045/test_i045.c
+++ b/api-tests/ff/ipc/test_i045/test_i045.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i045.h"
@@ -38,7 +38,7 @@ int32_t client_test_psa_write_with_invec_greater_than_max_iovec(security_t calle
    psa_status_t       status_of_call;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_write with invec_idx > PSA_MAX_IOVEC\n", 0);
+            "[Check 1] Test psa_write with invec_idx > PSA_MAX_IOVEC\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle < 0)
@@ -50,7 +50,7 @@ int32_t client_test_psa_write_with_invec_greater_than_max_iovec(security_t calle
    status_of_call =  psa->call(handle, NULL, 0, NULL, 0);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i045/test_supp_i045.c b/api-tests/ff/ipc/test_i045/test_supp_i045.c
index a16d5a74..260e6ff7 100644
--- a/api-tests/ff/ipc/test_i045/test_supp_i045.c
+++ b/api-tests/ff/ipc/test_i045/test_supp_i045.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 #define NUM_OF_BYTES 4
 
@@ -34,65 +39,75 @@ int32_t server_test_psa_write_with_invec_greater_than_max_iovec(void)
     psa_msg_t       msg = {0};
     uint8_t         data[NUM_OF_BYTES] = {0};
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
     }
     else
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_reply(msg.handle, -3);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->reply(msg.handle, -3);
         }
         else
         {
-            /* Test check- psa_write with invec_idx > PSA_MAX_IOVEC */
-            psa_write(msg.handle, PSA_MAX_IOVEC + 1, (void *)data, 0);
+            /* Test check- psa_write with invec_idx > PSA_MAX_IOVEC, call should panic */
+            psa->write(msg.handle, PSA_MAX_IOVEC + 1, (void *)data, 0);
 
             status = VAL_STATUS_SPM_FAILED;
 
             /* Resetting boot.state to catch unwanted reboot */
-            if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+            if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
             {
-                val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+                val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
             }
 
             /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_write with invec_idx > PSA_MAX_IOVEC should failed but successed\n", 0);
+            val->print(PRINT_ERROR,
+                "\tpsa_write with invec_idx > PSA_MAX_IOVEC should failed but succeed\n", 0);
 
-            psa_reply(msg.handle, -4);
+            psa->reply(msg.handle, -4);
         }
     }
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i046/test_i046.c b/api-tests/ff/ipc/test_i046/test_i046.c
index 06139698..f6270239 100644
--- a/api-tests/ff/ipc/test_i046/test_i046.c
+++ b/api-tests/ff/ipc/test_i046/test_i046.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i046.h"
@@ -39,7 +39,7 @@ int32_t client_test_psa_write_with_size_overflow(security_t caller)
    uint8_t            data = 0;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_write with size overflow\n", 0);
+            "[Check 1] Test psa_write with size overflow\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle < 0)
@@ -53,7 +53,7 @@ int32_t client_test_psa_write_with_size_overflow(security_t caller)
    status_of_call =  psa->call(handle, NULL, 0, &resp, 1);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i046/test_supp_i046.c b/api-tests/ff/ipc/test_i046/test_supp_i046.c
index c5db835e..8a4513a2 100644
--- a/api-tests/ff/ipc/test_i046/test_supp_i046.c
+++ b/api-tests/ff/ipc/test_i046/test_supp_i046.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 #define NUM_OF_BYTES 4
 
@@ -34,65 +39,75 @@ int32_t server_test_psa_write_with_size_overflow(void)
     psa_msg_t       msg = {0};
     uint8_t         data[NUM_OF_BYTES] = {0};
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
     }
     else
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_reply(msg.handle, -3);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->reply(msg.handle, -3);
         }
         else
         {
-            /* Test check- psa_write with size overflow */
-            psa_write(msg.handle, 0, (void *)data, msg.out_size[0]+1);
+            /* Test check- psa_write with size overflow, call should panic */
+            psa->write(msg.handle, 0, (void *)data, msg.out_size[0]+1);
 
             status = VAL_STATUS_SPM_FAILED;
 
             /* Resetting boot.state to catch unwanted reboot */
-            if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+            if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
             {
-                val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+                val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
             }
 
             /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_write with size overflow should failed but successed\n", 0);
+            val->print(PRINT_ERROR,
+                "\tpsa_write with size overflow should failed but succeed\n", 0);
 
-            psa_reply(msg.handle, -4);
+            psa->reply(msg.handle, -4);
         }
     }
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i047/test_i047.c b/api-tests/ff/ipc/test_i047/test_i047.c
index 989c6b05..ab98a951 100644
--- a/api-tests/ff/ipc/test_i047/test_i047.c
+++ b/api-tests/ff/ipc/test_i047/test_i047.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i047.h"
@@ -36,7 +36,7 @@ int32_t client_test_psa_get_with_invalid_msg_pointer(security_t caller)
    psa_handle_t       handle = 0;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_get with invalid msg pointer\n", 0);
+            "[Check 1] Test psa_get with invalid msg pointer\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle > 0)
@@ -45,7 +45,7 @@ int32_t client_test_psa_get_with_invalid_msg_pointer(security_t caller)
    }
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tpsa_connect should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tpsa_connect should failed but succeed\n", 0);
 
    (void)(handle);
    return VAL_STATUS_SPM_FAILED;
diff --git a/api-tests/ff/ipc/test_i047/test_supp_i047.c b/api-tests/ff/ipc/test_i047/test_supp_i047.c
index b41aa97e..82e43df6 100644
--- a/api-tests/ff/ipc/test_i047/test_supp_i047.c
+++ b/api-tests/ff/ipc/test_i047/test_supp_i047.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 
 int32_t server_test_psa_get_with_invalid_msg_pointer(void);
@@ -35,49 +40,61 @@ int32_t server_test_psa_get_with_invalid_msg_pointer(void)
    miscellaneous_desc_t    *misc_desc;
    memory_desc_t           *memory_desc;
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    signals = psa_wait(SERVER_UNSPECIFED_MINOR_V_SIG, PSA_BLOCK);
+    signals = psa->wait(SERVER_UNSPECIFED_MINOR_V_SIG, PSA_BLOCK);
     if ((signals & SERVER_UNSPECIFED_MINOR_V_SIG) == 0)
     {
-       val_print(PRINT_ERROR,
+       val->print(PRINT_ERROR,
                 "psa_wait returned with invalid signal value = 0x%x\n", signals);
        return VAL_STATUS_ERROR;
     }
 
-    /* Selection of invalid msg pointer:
+    /*
+     * Selection of invalid msg pointer:
+     *
      *  if (ISOLATION_LEVEL > 1)
      *       msg_pointer = driver_mmio_region_base;
      *  else
      *       msg_pointer = NULL;
      */
 
-    status = val_target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MISCELLANEOUS,
+    status = val->target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MISCELLANEOUS,
                                    MISCELLANEOUS_DUT, 0),
                                   (uint8_t **)&misc_desc,
                                   (uint32_t *)sizeof(miscellaneous_desc_t));
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
         return status;
     }
 
     if (misc_desc->implemented_psa_firmware_isolation_level > LEVEL1)
     {
-        status = val_target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MEMORY,
+        status = val->target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MEMORY,
                                       MEMORY_DRIVER_PARTITION_MMIO, 0),
                                       (uint8_t **)&memory_desc,
                                       (uint32_t *)sizeof(memory_desc_t));
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
         {
             return status;
         }
@@ -86,26 +103,26 @@ int32_t server_test_psa_get_with_invalid_msg_pointer(void)
     }
 
     /* Setting boot.state before test check */
-    if (val_set_boot_flag(BOOT_EXPECTED_NS))
+    if (val->set_boot_flag(BOOT_EXPECTED_NS))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
         return VAL_STATUS_ERROR;
     }
 
-    /* psa_get with invalid msg pointer */
-    psa_get(SERVER_UNSPECIFED_MINOR_V_SIG, invalid_msg);
+    /* psa_get with invalid msg pointer, call should panic */
+    psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, invalid_msg);
 
     /* shouldn't have reached here */
-    val_print(PRINT_ERROR,
-             "\tpsa_get with invalid msg pointer should failed but successed\n", 0);
+    val->print(PRINT_ERROR,
+             "\tpsa_get with invalid msg pointer should failed but succeed\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
     }
 
     /* Reject the connection */
-    psa_reply(invalid_msg->handle, PSA_CONNECTION_REFUSED);
+    psa->reply(invalid_msg->handle, PSA_ERROR_CONNECTION_REFUSED);
     return VAL_STATUS_SPM_FAILED;
 }
diff --git a/api-tests/ff/ipc/test_i048/test_i048.c b/api-tests/ff/ipc/test_i048/test_i048.c
index 718236f3..7e8bb6dc 100644
--- a/api-tests/ff/ipc/test_i048/test_i048.c
+++ b/api-tests/ff/ipc/test_i048/test_i048.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i048.h"
@@ -42,18 +42,28 @@ int32_t client_test_psa_call_with_invalid_invec_pointer(security_t caller)
    psa_invec               *invalid_invec = NULL;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_call with invalid address for in_vec\n", 0);
-
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+            "[Check 1] Test psa_call with invalid address for in_vec\n", 0);
+
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
@@ -64,12 +74,15 @@ int32_t client_test_psa_call_with_invalid_invec_pointer(security_t caller)
        return VAL_STATUS_INVALID_HANDLE;
    }
 
-   /* Selection of invalid invec pointer:
+   /*
+    * Selection of invalid invec pointer:
+    *
     * if caller == NONSECURE
     *    // PSA RoT pointer
     *    invec_pointer = driver_mmio_region_base;
     * else
     *    if (ISOLATION_LEVEL > 1)
+    *       // PSA RoT pointer
     *       invec_pointer = driver_mmio_region_base;
     *    else
     *       invec_pointer = NULL;
@@ -115,8 +128,19 @@ int32_t client_test_psa_call_with_invalid_invec_pointer(security_t caller)
    /* Test check- psa_call with invalid address for in_vec */
    status_of_call =  psa->call(handle, invalid_invec, 1, NULL, 0);
 
-   /* Expectation is psa_call should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tpsa_call should failed but successed\n", 0);
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return PSA_ERROR_PROGRAMMER_ERROR.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE && status_of_call == PSA_ERROR_PROGRAMMER_ERROR)
+   {
+       psa->close(handle);
+       return VAL_STATUS_SUCCESS;
+   }
+
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
+   val->print(PRINT_ERROR, "\tpsa_call should failed but succeed\n", 0);
 
    /* Resetting boot.state to catch unwanted reboot */
    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
@@ -127,6 +151,5 @@ int32_t client_test_psa_call_with_invalid_invec_pointer(security_t caller)
 
    status = VAL_STATUS_SPM_FAILED;
    psa->close(handle);
-   (void)(status_of_call);
    return status;
 }
diff --git a/api-tests/ff/ipc/test_i048/test_supp_i048.c b/api-tests/ff/ipc/test_i048/test_supp_i048.c
index 5384990d..51b11da5 100644
--- a/api-tests/ff/ipc/test_i048/test_supp_i048.c
+++ b/api-tests/ff/ipc/test_i048/test_supp_i048.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_call_with_invalid_invec_pointer(void);
 
@@ -30,23 +35,45 @@ int32_t server_test_psa_call_with_invalid_invec_pointer(void)
 {
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
+    psa_signal_t    signals;
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+wait:
+    signals = psa->wait(PSA_WAIT_ANY, PSA_BLOCK);
+    if (signals & SERVER_UNSPECIFED_MINOR_V_SIG)
+    {
+        if (psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
+        {
+            goto wait;
+        }
 
-    /* Control shouldn't have come here */
-    val_print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
-    psa_reply(msg.handle, -2);
+        if (msg.type == PSA_IPC_CALL)
+        {
+            /* Control shouldn't have come here */
+            val->print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
+            psa->reply(msg.handle, -2);
+            val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+            psa->reply(msg.handle, PSA_SUCCESS);
+        }
+        else if (msg.type == PSA_IPC_DISCONNECT)
+        {
+            psa->reply(msg.handle, PSA_SUCCESS);
+            return VAL_STATUS_SUCCESS;
+        }
+    }
+    else
+    {
+        val->print(PRINT_ERROR, "\tpsa_wait returned with invalid signal value = 0x%x\n", signals);
+        return VAL_STATUS_ERROR;
+    }
 
-    val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    psa_reply(msg.handle, PSA_SUCCESS);
-    return VAL_STATUS_SPM_FAILED;
+    return VAL_STATUS_ERROR;
 }
diff --git a/api-tests/ff/ipc/test_i049/test_i049.c b/api-tests/ff/ipc/test_i049/test_i049.c
index 01999dfa..f3f16646 100644
--- a/api-tests/ff/ipc/test_i049/test_i049.c
+++ b/api-tests/ff/ipc/test_i049/test_i049.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i049.h"
@@ -42,18 +42,28 @@ int32_t client_test_psa_call_with_invalid_outvec_pointer(security_t caller)
    psa_outvec               *invalid_outvec = NULL;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_call with invalid address for outvec\n", 0);
-
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+            "[Check 1] Test psa_call with invalid address for outvec\n", 0);
+
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
@@ -64,12 +74,15 @@ int32_t client_test_psa_call_with_invalid_outvec_pointer(security_t caller)
        return VAL_STATUS_INVALID_HANDLE;
    }
 
-   /* Selection of invalid outvec pointer:
+   /*
+    * Selection of invalid outvec pointer:
+    *
     * if caller == NONSECURE
     *    // PSA RoT pointer
     *    outvec_pointer = driver_mmio_region_base;
     * else
     *    if (ISOLATION_LEVEL > 1)
+    *       // PSA RoT pointer
     *       outvec_pointer = driver_mmio_region_base;
     *    else
     *       outvec_pointer = NULL;
@@ -115,8 +128,19 @@ int32_t client_test_psa_call_with_invalid_outvec_pointer(security_t caller)
    /* Test check- psa_call with invalid address for outvec */
    status_of_call =  psa->call(handle, NULL, 0, invalid_outvec, 1);
 
-   /* Expectation is psa_call should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tpsa_call should failed but successed\n", 0);
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return PSA_ERROR_PROGRAMMER_ERROR.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE && status_of_call == PSA_ERROR_PROGRAMMER_ERROR)
+   {
+       psa->close(handle);
+       return VAL_STATUS_SUCCESS;
+   }
+
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
+   val->print(PRINT_ERROR, "\tpsa_call should failed but succeed\n", 0);
 
    /* Resetting boot.state to catch unwanted reboot */
    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
@@ -127,6 +151,5 @@ int32_t client_test_psa_call_with_invalid_outvec_pointer(security_t caller)
 
    status = VAL_STATUS_SPM_FAILED;
    psa->close(handle);
-   (void)(status_of_call);
    return status;
 }
diff --git a/api-tests/ff/ipc/test_i049/test_supp_i049.c b/api-tests/ff/ipc/test_i049/test_supp_i049.c
index 73e5d689..23b52b8c 100644
--- a/api-tests/ff/ipc/test_i049/test_supp_i049.c
+++ b/api-tests/ff/ipc/test_i049/test_supp_i049.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_call_with_invalid_outvec_pointer(void);
 
@@ -30,23 +35,45 @@ int32_t server_test_psa_call_with_invalid_outvec_pointer(void)
 {
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
+    psa_signal_t    signals;
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+wait:
+    signals = psa->wait(PSA_WAIT_ANY, PSA_BLOCK);
+    if (signals & SERVER_UNSPECIFED_MINOR_V_SIG)
+    {
+        if (psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
+        {
+            goto wait;
+        }
 
-    /* Control shouldn't have come here */
-    val_print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
-    psa_reply(msg.handle, -2);
+        if (msg.type == PSA_IPC_CALL)
+        {
+            /* Control shouldn't have come here */
+            val->print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
+            psa->reply(msg.handle, -2);
+            val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+            psa->reply(msg.handle, PSA_SUCCESS);
+        }
+        else if (msg.type == PSA_IPC_DISCONNECT)
+        {
+            psa->reply(msg.handle, PSA_SUCCESS);
+            return VAL_STATUS_SUCCESS;
+        }
+    }
+    else
+    {
+        val->print(PRINT_ERROR, "\tpsa_wait returned with invalid signal value = 0x%x\n", signals);
+        return VAL_STATUS_ERROR;
+    }
 
-    val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    psa_reply(msg.handle, PSA_SUCCESS);
-    return VAL_STATUS_SPM_FAILED;
+    return VAL_STATUS_ERROR;
 }
diff --git a/api-tests/ff/ipc/test_i050/test_i050.c b/api-tests/ff/ipc/test_i050/test_i050.c
index bf5fd211..9f616b16 100644
--- a/api-tests/ff/ipc/test_i050/test_i050.c
+++ b/api-tests/ff/ipc/test_i050/test_i050.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i050.h"
@@ -42,18 +42,28 @@ int32_t client_test_psa_call_with_invalid_invec_base(security_t caller)
    addr_t                  *invalid_base = NULL;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_call with invalid psa_invec.base\n", 0);
-
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+            "[Check 1] Test psa_call with invalid psa_invec.base\n", 0);
+
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
@@ -64,12 +74,15 @@ int32_t client_test_psa_call_with_invalid_invec_base(security_t caller)
        return VAL_STATUS_INVALID_HANDLE;
    }
 
-   /* Selection of invalid invec pointer:
+   /*
+    * Selection of invalid invec pointer:
+    *
     * if caller == NONSECURE
     *    // PSA RoT pointer
     *    invalid_base = driver_mmio_region_base;
     * else
     *    if (ISOLATION_LEVEL > 1)
+    *       // PSA RoT pointer
     *       invalid_base = driver_mmio_region_base;
     *    else
     *       invalid_base = NULL;
@@ -117,8 +130,19 @@ int32_t client_test_psa_call_with_invalid_invec_base(security_t caller)
    /* Test check- psa_call with invalid address for psa_invec.base */
    status_of_call =  psa->call(handle, invec, 1, NULL, 0);
 
-   /* Expectation is psa_call should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tpsa_call should failed but successed\n", 0);
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return PSA_ERROR_PROGRAMMER_ERROR.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE && status_of_call == PSA_ERROR_PROGRAMMER_ERROR)
+   {
+       psa->close(handle);
+       return VAL_STATUS_SUCCESS;
+   }
+
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
+   val->print(PRINT_ERROR, "\tpsa_call should failed but succeed\n", 0);
 
    /* Resetting boot.state to catch unwanted reboot */
    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
@@ -129,6 +153,5 @@ int32_t client_test_psa_call_with_invalid_invec_base(security_t caller)
 
    status = VAL_STATUS_SPM_FAILED;
    psa->close(handle);
-   (void)(status_of_call);
    return status;
 }
diff --git a/api-tests/ff/ipc/test_i050/test_supp_i050.c b/api-tests/ff/ipc/test_i050/test_supp_i050.c
index e1b29792..9c09445e 100644
--- a/api-tests/ff/ipc/test_i050/test_supp_i050.c
+++ b/api-tests/ff/ipc/test_i050/test_supp_i050.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_call_with_invalid_invec_base(void);
 
@@ -30,23 +35,45 @@ int32_t server_test_psa_call_with_invalid_invec_base(void)
 {
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
+    psa_signal_t    signals;
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+wait:
+    signals = psa->wait(PSA_WAIT_ANY, PSA_BLOCK);
+    if (signals & SERVER_UNSPECIFED_MINOR_V_SIG)
+    {
+        if (psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
+        {
+            goto wait;
+        }
 
-    /* Control shouldn't have come here */
-    val_print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
-    psa_reply(msg.handle, -2);
+        if (msg.type == PSA_IPC_CALL)
+        {
+            /* Control shouldn't have come here */
+            val->print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
+            psa->reply(msg.handle, -2);
+            val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+            psa->reply(msg.handle, PSA_SUCCESS);
+        }
+        else if (msg.type == PSA_IPC_DISCONNECT)
+        {
+            psa->reply(msg.handle, PSA_SUCCESS);
+            return VAL_STATUS_SUCCESS;
+        }
+    }
+    else
+    {
+        val->print(PRINT_ERROR, "\tpsa_wait returned with invalid signal value = 0x%x\n", signals);
+        return VAL_STATUS_ERROR;
+    }
 
-    val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    psa_reply(msg.handle, PSA_SUCCESS);
-    return VAL_STATUS_SPM_FAILED;
+    return VAL_STATUS_ERROR;
 }
diff --git a/api-tests/ff/ipc/test_i051/test_i051.c b/api-tests/ff/ipc/test_i051/test_i051.c
index 3b4a726c..6a1f875c 100644
--- a/api-tests/ff/ipc/test_i051/test_i051.c
+++ b/api-tests/ff/ipc/test_i051/test_i051.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i051.h"
@@ -42,18 +42,28 @@ int32_t client_test_psa_call_with_invalid_outvec_base(security_t caller)
    addr_t                  *invalid_base = NULL;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_call with invalid psa_outvec.base\n", 0);
-
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+            "[Check 1] Test psa_call with invalid psa_outvec.base\n", 0);
+
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
@@ -64,12 +74,15 @@ int32_t client_test_psa_call_with_invalid_outvec_base(security_t caller)
        return VAL_STATUS_INVALID_HANDLE;
    }
 
-   /* Selection of invalid outvec pointer:
+   /*
+    * Selection of invalid outvec pointer:
+    *
     * if caller == NONSECURE
     *    // PSA RoT pointer
     *    invalid_base = driver_mmio_region_base;
     * else
     *    if (ISOLATION_LEVEL > 1)
+    *      // PSA RoT pointer
     *       invalid_base = driver_mmio_region_base;
     *    else
     *       invalid_base = NULL;
@@ -115,10 +128,21 @@ int32_t client_test_psa_call_with_invalid_outvec_base(security_t caller)
    psa_outvec outvec[1] = {{invalid_base, sizeof(addr_t)}};
 
    /* Test check- psa_call with invalid address for psa_outvec.base */
-   status_of_call =  psa->call(handle, NULL, 0, outvec, 0);
+   status_of_call =  psa->call(handle, NULL, 0, outvec, 1);
+
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return PSA_ERROR_PROGRAMMER_ERROR.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE && status_of_call == PSA_ERROR_PROGRAMMER_ERROR)
+   {
+       psa->close(handle);
+       return VAL_STATUS_SUCCESS;
+   }
 
-   /* Expectation is psa_call should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tpsa_call should failed but successed\n", 0);
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
+   val->print(PRINT_ERROR, "\tpsa_call should failed but succeed\n", 0);
 
    /* Resetting boot.state to catch unwanted reboot */
    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
@@ -129,6 +153,5 @@ int32_t client_test_psa_call_with_invalid_outvec_base(security_t caller)
 
    status = VAL_STATUS_SPM_FAILED;
    psa->close(handle);
-   (void)(status_of_call);
    return status;
 }
diff --git a/api-tests/ff/ipc/test_i051/test_supp_i051.c b/api-tests/ff/ipc/test_i051/test_supp_i051.c
index 8acb38a6..0d3be0b6 100644
--- a/api-tests/ff/ipc/test_i051/test_supp_i051.c
+++ b/api-tests/ff/ipc/test_i051/test_supp_i051.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_call_with_invalid_outvec_base(void);
 
@@ -30,23 +35,45 @@ int32_t server_test_psa_call_with_invalid_outvec_base(void)
 {
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
+    psa_signal_t    signals;
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+wait:
+    signals = psa->wait(PSA_WAIT_ANY, PSA_BLOCK);
+    if (signals & SERVER_UNSPECIFED_MINOR_V_SIG)
+    {
+        if (psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
+        {
+            goto wait;
+        }
 
-    /* Control shouldn't have come here */
-    val_print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
-    psa_reply(msg.handle, -2);
+        if (msg.type == PSA_IPC_CALL)
+        {
+            /* Control shouldn't have come here */
+            val->print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
+            psa->reply(msg.handle, -2);
+            val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+            psa->reply(msg.handle, PSA_SUCCESS);
+        }
+        else if (msg.type == PSA_IPC_DISCONNECT)
+        {
+            psa->reply(msg.handle, PSA_SUCCESS);
+            return VAL_STATUS_SUCCESS;
+        }
+    }
+    else
+    {
+        val->print(PRINT_ERROR, "\tpsa_wait returned with invalid signal value = 0x%x\n", signals);
+        return VAL_STATUS_ERROR;
+    }
 
-    val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    psa_reply(msg.handle, PSA_SUCCESS);
-    return VAL_STATUS_SPM_FAILED;
+    return VAL_STATUS_ERROR;
 }
diff --git a/api-tests/ff/ipc/test_i052/test_i052.c b/api-tests/ff/ipc/test_i052/test_i052.c
index 6b67f7ff..5b14c373 100644
--- a/api-tests/ff/ipc/test_i052/test_i052.c
+++ b/api-tests/ff/ipc/test_i052/test_i052.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i052.h"
@@ -43,18 +43,28 @@ int32_t client_test_psa_call_with_invalid_invec_end_addr(security_t caller)
    addr_t                  *valid_base = NULL;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_call with invalid end_addr for psa_invec\n", 0);
-
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+            "[Check 1] Test psa_call with invalid end_addr for psa_invec\n", 0);
+
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
@@ -65,14 +75,16 @@ int32_t client_test_psa_call_with_invalid_invec_end_addr(security_t caller)
        return VAL_STATUS_INVALID_HANDLE;
    }
 
-   /* Selection of invalid size for psa_invec:
+   /*
+    * Selection of invalid size for psa_invec:
+    *
     * if caller == NONSECURE
     *    valid_base = nspe_mmio_region_base;
     *    invalid_size = (driver_mmio_region_base - nspe_mmio_region_base + 1);
     * else
     *    if (ISOLATION_LEVEL > 1)
-    *       valid_base = client_mmio_region_base;
-    *       invalid_size = (driver_mmio_region_base - client_mmio_region_base + 1);
+    *       valid_base = server_mmio_region_base;
+    *       invalid_size = (driver_mmio_region_base - server_mmio_region_base + 1);
     */
 
    status = val->target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MEMORY,
@@ -88,7 +100,7 @@ int32_t client_test_psa_call_with_invalid_invec_end_addr(security_t caller)
    if (caller == NONSECURE)
        memory_cfg_id = MEMORY_NSPE_MMIO;
    else
-       memory_cfg_id = MEMORY_CLIENT_PARTITION_MMIO;
+       memory_cfg_id = MEMORY_SERVER_PARTITION_MMIO;
 
    status = val->target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MEMORY,
                                   memory_cfg_id, 0),
@@ -116,8 +128,19 @@ int32_t client_test_psa_call_with_invalid_invec_end_addr(security_t caller)
    /* Test check- psa_call with invalid end_addr for psa_invec */
    status_of_call =  psa->call(handle, invec, 1, NULL, 0);
 
-   /* Expectation is psa_call should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tpsa_call should failed but successed\n", 0);
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return PSA_ERROR_PROGRAMMER_ERROR.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE && status_of_call == PSA_ERROR_PROGRAMMER_ERROR)
+   {
+       psa->close(handle);
+       return VAL_STATUS_SUCCESS;
+   }
+
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
+   val->print(PRINT_ERROR, "\tpsa_call should failed but succeed\n", 0);
 
    /* Resetting boot.state to catch unwanted reboot */
    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
@@ -128,6 +151,5 @@ int32_t client_test_psa_call_with_invalid_invec_end_addr(security_t caller)
 
    status = VAL_STATUS_SPM_FAILED;
    psa->close(handle);
-   (void)(status_of_call);
    return status;
 }
diff --git a/api-tests/ff/ipc/test_i052/test_supp_i052.c b/api-tests/ff/ipc/test_i052/test_supp_i052.c
index 0eeafcef..31bc32b4 100644
--- a/api-tests/ff/ipc/test_i052/test_supp_i052.c
+++ b/api-tests/ff/ipc/test_i052/test_supp_i052.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_call_with_invalid_invec_end_addr(void);
 
@@ -30,23 +35,45 @@ int32_t server_test_psa_call_with_invalid_invec_end_addr(void)
 {
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
+    psa_signal_t    signals;
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+wait:
+    signals = psa->wait(PSA_WAIT_ANY, PSA_BLOCK);
+    if (signals & SERVER_UNSPECIFED_MINOR_V_SIG)
+    {
+        if (psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
+        {
+            goto wait;
+        }
 
-    /* Control shouldn't have come here */
-    val_print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
-    psa_reply(msg.handle, -2);
+        if (msg.type == PSA_IPC_CALL)
+        {
+            /* Control shouldn't have come here */
+            val->print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
+            psa->reply(msg.handle, -2);
+            val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+            psa->reply(msg.handle, PSA_SUCCESS);
+        }
+        else if (msg.type == PSA_IPC_DISCONNECT)
+        {
+            psa->reply(msg.handle, PSA_SUCCESS);
+            return VAL_STATUS_SUCCESS;
+        }
+    }
+    else
+    {
+        val->print(PRINT_ERROR, "\tpsa_wait returned with invalid signal value = 0x%x\n", signals);
+        return VAL_STATUS_ERROR;
+    }
 
-    val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    psa_reply(msg.handle, PSA_SUCCESS);
-    return VAL_STATUS_SPM_FAILED;
+    return VAL_STATUS_ERROR;
 }
diff --git a/api-tests/ff/ipc/test_i053/test_i053.c b/api-tests/ff/ipc/test_i053/test_i053.c
index 9420ba18..108c24b9 100644
--- a/api-tests/ff/ipc/test_i053/test_i053.c
+++ b/api-tests/ff/ipc/test_i053/test_i053.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i053.h"
@@ -43,18 +43,28 @@ int32_t client_test_psa_call_with_invalid_outvec_end_addr(security_t caller)
    addr_t                  *valid_base = NULL;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_call with invalid end_addr for psa_outvec\n", 0);
-
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+            "[Check 1] Test psa_call with invalid end_addr for psa_outvec\n", 0);
+
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
@@ -65,14 +75,16 @@ int32_t client_test_psa_call_with_invalid_outvec_end_addr(security_t caller)
        return VAL_STATUS_INVALID_HANDLE;
    }
 
-   /* Selection of invalid size for psa_outvec:
+   /*
+    * Selection of invalid size for psa_outvec:
+    *
     * if caller == NONSECURE
     *    valid_base = nspe_mmio_region_base;
     *    invalid_size = (driver_mmio_region_base - nspe_mmio_region_base + 1);
     * else
     *    if (ISOLATION_LEVEL > 1)
-    *       valid_base = client_mmio_region_base;
-    *       invalid_size = (driver_mmio_region_base - client_mmio_region_base + 1);
+    *       valid_base = server_mmio_region_base;
+    *       invalid_size = (driver_mmio_region_base - server_mmio_region_base + 1);
     */
 
    status = val->target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MEMORY,
@@ -88,7 +100,7 @@ int32_t client_test_psa_call_with_invalid_outvec_end_addr(security_t caller)
    if (caller == NONSECURE)
        memory_cfg_id = MEMORY_NSPE_MMIO;
    else
-       memory_cfg_id = MEMORY_CLIENT_PARTITION_MMIO;
+       memory_cfg_id = MEMORY_SERVER_PARTITION_MMIO;
 
    status = val->target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MEMORY,
                                   memory_cfg_id, 0),
@@ -116,8 +128,19 @@ int32_t client_test_psa_call_with_invalid_outvec_end_addr(security_t caller)
    /* Test check- psa_call with invalid end_addr for psa_outvec */
    status_of_call =  psa->call(handle, NULL, 0, outvec, 1);
 
-   /* Expectation is psa_call should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tpsa_call should failed but successed\n", 0);
+   /*
+    * If the caller is in the NSPE, it is IMPLEMENTATION DEFINED whether
+    * a PROGRAMMER ERROR will panic or return PSA_ERROR_PROGRAMMER_ERROR.
+    * For SPE caller, it must panic.
+    */
+   if (caller == NONSECURE && status_of_call == PSA_ERROR_PROGRAMMER_ERROR)
+   {
+       psa->close(handle);
+       return VAL_STATUS_SUCCESS;
+   }
+
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
+   val->print(PRINT_ERROR, "\tpsa_call should failed but succeed\n", 0);
 
    /* Resetting boot.state to catch unwanted reboot */
    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
diff --git a/api-tests/ff/ipc/test_i053/test_supp_i053.c b/api-tests/ff/ipc/test_i053/test_supp_i053.c
index c2d853bd..649e3c25 100644
--- a/api-tests/ff/ipc/test_i053/test_supp_i053.c
+++ b/api-tests/ff/ipc/test_i053/test_supp_i053.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_call_with_invalid_outvec_end_addr(void);
 
@@ -30,23 +35,45 @@ int32_t server_test_psa_call_with_invalid_outvec_end_addr(void)
 {
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
+    psa_signal_t    signals;
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+wait:
+    signals = psa->wait(PSA_WAIT_ANY, PSA_BLOCK);
+    if (signals & SERVER_UNSPECIFED_MINOR_V_SIG)
+    {
+        if (psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
+        {
+            goto wait;
+        }
 
-    /* Control shouldn't have come here */
-    val_print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
-    psa_reply(msg.handle, -2);
+        if (msg.type == PSA_IPC_CALL)
+        {
+            /* Control shouldn't have come here */
+            val->print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
+            psa->reply(msg.handle, -2);
+            val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+            psa->reply(msg.handle, PSA_SUCCESS);
+        }
+        else if (msg.type == PSA_IPC_DISCONNECT)
+        {
+            psa->reply(msg.handle, PSA_SUCCESS);
+            return VAL_STATUS_SUCCESS;
+        }
+    }
+    else
+    {
+        val->print(PRINT_ERROR, "\tpsa_wait returned with invalid signal value = 0x%x\n", signals);
+        return VAL_STATUS_ERROR;
+    }
 
-    val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    psa_reply(msg.handle, PSA_SUCCESS);
-    return VAL_STATUS_SPM_FAILED;
+    return VAL_STATUS_ERROR;
 }
diff --git a/api-tests/ff/ipc/test_i054/test_entry.c b/api-tests/ff/ipc/test_i054/test_entry.c
index 71e93557..d431d59a 100644
--- a/api-tests/ff/ipc/test_i054/test_entry.c
+++ b/api-tests/ff/ipc/test_i054/test_entry.c
@@ -39,13 +39,6 @@ void test_entry(val_api_t *val_api, psa_api_t *psa_api)
         goto test_exit;
     }
 
-    /* Execute list of tests available in test[num]_client_tests_list from Non-secure side*/
-    status = val->execute_non_secure_tests(TEST_NUM, test_i054_client_tests_list, TRUE);
-    if (VAL_ERROR(status))
-    {
-        goto test_exit;
-    }
-
     /* Switch to secure side (client_partition.c) and execute list of tests available in
     test[num]_client_tests_list from Secure side */
     status = val->switch_to_secure_client(TEST_NUM);
diff --git a/api-tests/ff/ipc/test_i054/test_i054.c b/api-tests/ff/ipc/test_i054/test_i054.c
index 894cb86e..80160cae 100644
--- a/api-tests/ff/ipc/test_i054/test_i054.c
+++ b/api-tests/ff/ipc/test_i054/test_i054.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i054.h"
@@ -35,22 +35,30 @@ int32_t client_test_psa_call_with_not_writable_outvec_base(security_t caller)
 {
    int32_t                 status = VAL_STATUS_SUCCESS;
    psa_handle_t            handle = 0;
-   psa_status_t            status_of_call;
-   boot_state_t            boot_state;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_call with not writable psa_outvec.base\n", 0);
+            "[Check 1] Test psa_call with not writable psa_outvec.base\n", 0);
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
@@ -61,8 +69,7 @@ int32_t client_test_psa_call_with_not_writable_outvec_base(security_t caller)
    }
 
    /* Setting boot.state before test check */
-   boot_state = (caller == NONSECURE) ? BOOT_EXPECTED_NS : BOOT_EXPECTED_S;
-   if (val->set_boot_flag(boot_state))
+   if (val->set_boot_flag(BOOT_EXPECTED_S))
    {
        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
        return VAL_STATUS_ERROR;
@@ -71,11 +78,11 @@ int32_t client_test_psa_call_with_not_writable_outvec_base(security_t caller)
    /* Using function address (code) as not writable address */
    psa_outvec outvec[1] = {{&client_test_psa_call_with_not_writable_outvec_base, sizeof(char)}};
 
-   /* Test check- psa_call with not writable psa_outvec.base */
-   status_of_call =  psa->call(handle, NULL, 0, outvec, 0);
+   /* Test check- psa_call with not writable psa_outvec.base, call should panic */
+   psa->call(handle, NULL, 0, outvec, 1);
 
-   /* Expectation is psa_call should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tpsa_call should failed but successed\n", 0);
+   /* If PROGRAMMER ERROR results into panic then control shouldn't have reached here */
+   val->print(PRINT_ERROR, "\tpsa_call should failed but succeed\n", 0);
 
    /* Resetting boot.state to catch unwanted reboot */
    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
@@ -86,6 +93,5 @@ int32_t client_test_psa_call_with_not_writable_outvec_base(security_t caller)
 
    status = VAL_STATUS_SPM_FAILED;
    psa->close(handle);
-   (void)(status_of_call);
    return status;
 }
diff --git a/api-tests/ff/ipc/test_i054/test_supp_i054.c b/api-tests/ff/ipc/test_i054/test_supp_i054.c
index bdaae570..75442576 100644
--- a/api-tests/ff/ipc/test_i054/test_supp_i054.c
+++ b/api-tests/ff/ipc/test_i054/test_supp_i054.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_call_with_not_writable_outvec_base(void);
 
@@ -30,23 +35,45 @@ int32_t server_test_psa_call_with_not_writable_outvec_base(void)
 {
     int32_t         status = VAL_STATUS_SUCCESS;
     psa_msg_t       msg = {0};
+    psa_signal_t    signals;
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+wait:
+    signals = psa->wait(PSA_WAIT_ANY, PSA_BLOCK);
+    if (signals & SERVER_UNSPECIFED_MINOR_V_SIG)
+    {
+        if (psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
+        {
+            goto wait;
+        }
 
-    /* Control shouldn't have come here */
-    val_print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
-    psa_reply(msg.handle, -2);
+        if (msg.type == PSA_IPC_CALL)
+        {
+            /* Control shouldn't have come here */
+            val->print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
+            psa->reply(msg.handle, -2);
+            val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+            psa->reply(msg.handle, PSA_SUCCESS);
+        }
+        else if (msg.type == PSA_IPC_DISCONNECT)
+        {
+            psa->reply(msg.handle, PSA_SUCCESS);
+            return VAL_STATUS_SUCCESS;
+        }
+    }
+    else
+    {
+        val->print(PRINT_ERROR, "\tpsa_wait returned with invalid signal value = 0x%x\n", signals);
+        return VAL_STATUS_ERROR;
+    }
 
-    val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    psa_reply(msg.handle, PSA_SUCCESS);
-    return VAL_STATUS_SPM_FAILED;
+    return VAL_STATUS_ERROR;
 }
diff --git a/api-tests/ff/ipc/test_i055/test_i055.c b/api-tests/ff/ipc/test_i055/test_i055.c
index 29616aa9..033a99a2 100644
--- a/api-tests/ff/ipc/test_i055/test_i055.c
+++ b/api-tests/ff/ipc/test_i055/test_i055.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i055.h"
@@ -39,7 +39,7 @@ int32_t client_test_psa_read_with_invalid_buffer_addr(security_t caller)
    psa_status_t       status_of_call;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_read with invalid buffer addr\n", 0);
+            "[Check 1] Test psa_read with invalid buffer addr\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle < 0)
@@ -52,7 +52,7 @@ int32_t client_test_psa_read_with_invalid_buffer_addr(security_t caller)
    status_of_call =  psa->call(handle, invec, 1, NULL, 0);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i055/test_supp_i055.c b/api-tests/ff/ipc/test_i055/test_supp_i055.c
index 7cc450e9..24867959 100644
--- a/api-tests/ff/ipc/test_i055/test_supp_i055.c
+++ b/api-tests/ff/ipc/test_i055/test_supp_i055.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_read_with_invalid_buffer_addr(void);
 
@@ -34,52 +39,64 @@ int32_t server_test_psa_read_with_invalid_buffer_addr(void)
     miscellaneous_desc_t    *misc_desc;
     memory_desc_t           *memory_desc;
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
 
-    /* Selection of invalid buffer addr:
+    /*
+     * Selection of invalid buffer addr:
+     *
      *  if (ISOLATION_LEVEL > 1)
      *       buffer = driver_mmio_region_base;
      *  else
      *       buffer = NULL;
      */
 
-    status = val_target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MISCELLANEOUS,
+    status = val->target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MISCELLANEOUS,
                                    MISCELLANEOUS_DUT, 0),
                                   (uint8_t **)&misc_desc,
                                   (uint32_t *)sizeof(miscellaneous_desc_t));
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
     if (misc_desc->implemented_psa_firmware_isolation_level > LEVEL1)
     {
-        status = val_target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MEMORY,
+        status = val->target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MEMORY,
                                       MEMORY_DRIVER_PARTITION_MMIO, 0),
                                       (uint8_t **)&memory_desc,
                                       (uint32_t *)sizeof(memory_desc_t));
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
         {
-            psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+            psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
             return status;
         }
 
@@ -87,46 +104,46 @@ int32_t server_test_psa_read_with_invalid_buffer_addr(void)
     }
 
     /* Accept the connection */
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
-    /* Server psa_call */
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(204), status))
+    /* Serve psa_call */
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(204), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
     }
     else
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if(val_err_check_set(TEST_CHECKPOINT_NUM(205), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(205), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_reply(msg.handle, -3);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->reply(msg.handle, -3);
         }
         else
         {
-            /* Test check- psa_read with invalid buffer addr */
-            psa_read(msg.handle, 0, (void *)buffer, msg.in_size[0]);
+            /* Test check- psa_read with invalid buffer addr, call should panic */
+            psa->read(msg.handle, 0, (void *)buffer, msg.in_size[0]);
 
             /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_read with invalid buffer should failed but successed\n", 0);
+            val->print(PRINT_ERROR,
+                "\tpsa_read with invalid buffer should failed but succeed\n", 0);
 
             /* Resetting boot.state to catch unwanted reboot */
-            if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+            if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
             {
-                val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+                val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
             }
 
             status = VAL_STATUS_SPM_FAILED;
-            psa_reply(msg.handle, -4);
+            psa->reply(msg.handle, -4);
         }
     }
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(206), status);
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    val->err_check_set(TEST_CHECKPOINT_NUM(206), status);
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i056/test_i056.c b/api-tests/ff/ipc/test_i056/test_i056.c
index bd5a7c59..7547d33e 100644
--- a/api-tests/ff/ipc/test_i056/test_i056.c
+++ b/api-tests/ff/ipc/test_i056/test_i056.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i056.h"
@@ -39,7 +39,7 @@ int32_t client_test_psa_read_with_not_writable_buffer_addr(security_t caller)
    psa_status_t       status_of_call;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_read with invalid buffer addr\n", 0);
+            "[Check 1] Test psa_read with invalid buffer addr\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle < 0)
@@ -52,7 +52,7 @@ int32_t client_test_psa_read_with_not_writable_buffer_addr(security_t caller)
    status_of_call =  psa->call(handle, invec, 1, NULL, 0);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i056/test_supp_i056.c b/api-tests/ff/ipc/test_i056/test_supp_i056.c
index 9a47e3bd..3a863102 100644
--- a/api-tests/ff/ipc/test_i056/test_supp_i056.c
+++ b/api-tests/ff/ipc/test_i056/test_supp_i056.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_read_with_not_writable_buffer_addr(void);
 
@@ -32,70 +37,80 @@ int32_t server_test_psa_read_with_not_writable_buffer_addr(void)
     psa_msg_t               msg = {0};
     void                    *buffer = NULL;
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
     /* Accept the connection */
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
     /* Set buffer to point to not writable location (Code memory) */
     buffer = (void *) &server_test_psa_read_with_not_writable_buffer_addr;
 
-    /* Server psa_call */
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    /* Serve psa_call */
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
     }
     else
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if(val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_reply(msg.handle, -3);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->reply(msg.handle, -3);
         }
         else
         {
 
-            /* Test check- psa_read with not writable buffer addr */
-            psa_read(msg.handle, 0, (void *)buffer, msg.in_size[0]);
+            /* Test check- psa_read with not writable buffer addr, call should panic */
+            psa->read(msg.handle, 0, (void *)buffer, msg.in_size[0]);
 
             /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_read with not writable buffer should failed but successed\n", 0);
+            val->print(PRINT_ERROR,
+                "\tpsa_read with not writable buffer should failed but succeed\n", 0);
 
             /* Resetting boot.state to catch unwanted reboot */
-            if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+            if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
             {
-                val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+                val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
             }
 
             status = VAL_STATUS_SPM_FAILED;
-            psa_reply(msg.handle, -4);
+            psa->reply(msg.handle, -4);
         }
     }
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(204), status);
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    val->err_check_set(TEST_CHECKPOINT_NUM(204), status);
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i057/test_i057.c b/api-tests/ff/ipc/test_i057/test_i057.c
index 5aef674c..05967d4e 100644
--- a/api-tests/ff/ipc/test_i057/test_i057.c
+++ b/api-tests/ff/ipc/test_i057/test_i057.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i057.h"
@@ -39,7 +39,7 @@ int32_t client_test_psa_write_with_invalid_buffer_addr(security_t caller)
    psa_status_t       status_of_call;
 
    val->print(PRINT_TEST,
-            "[Check1] Test psa_write with invalid buffer addr\n", 0);
+            "[Check 1] Test psa_write with invalid buffer addr\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle < 0)
@@ -52,7 +52,7 @@ int32_t client_test_psa_write_with_invalid_buffer_addr(security_t caller)
    status_of_call =  psa->call(handle, NULL, 0, outvec, 1);
 
    /* Expectation is server test should hang and control shouldn't have come here */
-   val->print(PRINT_ERROR, "\tCall should failed but successed\n", 0);
+   val->print(PRINT_ERROR, "\tCall should failed but succeed\n", 0);
 
    status = VAL_STATUS_SPM_FAILED;
 
diff --git a/api-tests/ff/ipc/test_i057/test_supp_i057.c b/api-tests/ff/ipc/test_i057/test_supp_i057.c
index 54d6dada..2b0510e4 100644
--- a/api-tests/ff/ipc/test_i057/test_supp_i057.c
+++ b/api-tests/ff/ipc/test_i057/test_supp_i057.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_write_with_invalid_buffer_addr(void);
 
@@ -34,52 +39,64 @@ int32_t server_test_psa_write_with_invalid_buffer_addr(void)
     miscellaneous_desc_t    *misc_desc;
     memory_desc_t           *memory_desc;
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
 
-    /* Selection of invalid buffer addr:
+    /*
+     * Selection of invalid buffer addr:
+     *
      *  if (ISOLATION_LEVEL > 1)
      *       buffer = driver_mmio_region_base;
      *  else
      *       buffer = NULL;
      */
 
-    status = val_target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MISCELLANEOUS,
+    status = val->target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MISCELLANEOUS,
                                    MISCELLANEOUS_DUT, 0),
                                   (uint8_t **)&misc_desc,
                                   (uint32_t *)sizeof(miscellaneous_desc_t));
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
     if (misc_desc->implemented_psa_firmware_isolation_level > LEVEL1)
     {
-        status = val_target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MEMORY,
+        status = val->target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MEMORY,
                                       MEMORY_DRIVER_PARTITION_MMIO, 0),
                                       (uint8_t **)&memory_desc,
                                       (uint32_t *)sizeof(memory_desc_t));
-        if (val_err_check_set(TEST_CHECKPOINT_NUM(203), status))
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
         {
-            psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+            psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
             return status;
         }
 
@@ -87,46 +104,46 @@ int32_t server_test_psa_write_with_invalid_buffer_addr(void)
     }
 
     /* Accept the connection */
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
     /* Server psa_call */
-    status = val_process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(204), status))
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(204), status))
     {
-        psa_reply(msg.handle, -2);
+        psa->reply(msg.handle, -2);
     }
     else
     {
         /* Setting boot.state before test check */
-        status = val_set_boot_flag(BOOT_EXPECTED_NS);
-        if(val_err_check_set(TEST_CHECKPOINT_NUM(205), status))
+        status = val->set_boot_flag(BOOT_EXPECTED_NS);
+        if (val->err_check_set(TEST_CHECKPOINT_NUM(205), status))
         {
-            val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
-            psa_reply(msg.handle, -3);
+            val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+            psa->reply(msg.handle, -3);
         }
         else
         {
-            /* Test check- psa_write with invalid buffer addr */
-            psa_write(msg.handle, 0, (void *)buffer, msg.in_size[0]);
+            /* Test check- psa_write with invalid buffer addr, call should panic */
+            psa->write(msg.handle, 0, (void *)buffer, msg.out_size[0]);
 
             /* shouldn't have reached here */
-            val_print(PRINT_ERROR,
-                "\tpsa_write with invalid buffer should failed but successed\n", 0);
+            val->print(PRINT_ERROR,
+                "\tpsa_write with invalid buffer should failed but succeed\n", 0);
 
             /* Resetting boot.state to catch unwanted reboot */
-            if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+            if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
             {
-                val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+                val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
             }
 
             status = VAL_STATUS_SPM_FAILED;
-            psa_reply(msg.handle, -4);
+            psa->reply(msg.handle, -4);
         }
     }
 
-    val_err_check_set(TEST_CHECKPOINT_NUM(206), status);
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    val->err_check_set(TEST_CHECKPOINT_NUM(206), status);
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i058/test_i058.c b/api-tests/ff/ipc/test_i058/test_i058.c
index 49e2a92a..6639cd07 100644
--- a/api-tests/ff/ipc/test_i058/test_i058.c
+++ b/api-tests/ff/ipc/test_i058/test_i058.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i058.h"
@@ -40,7 +40,7 @@ int32_t client_test_psa_doorbell_signal(security_t caller)
 #endif
 
    val->print(PRINT_TEST,
-            "[Check1] Test PSA_DOORBELL signal\n", 0);
+            "[Check 1] Test PSA_DOORBELL signal\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
    if (handle < 0)
@@ -60,7 +60,8 @@ int32_t client_test_psa_doorbell_signal(security_t caller)
        val->print(PRINT_ERROR, "\tpsa_wait didn't receive doorbell signal\n", 0);
    }
 
-   /* Wait for doorball notification again to check -
+   /*
+    * Wait for doorball notification again to check -
     * Doorbell should remain asserted until psa_clear is called.
     */
    signals = psa_wait(PSA_DOORBELL, PSA_BLOCK);
diff --git a/api-tests/ff/ipc/test_i058/test_supp_i058.c b/api-tests/ff/ipc/test_i058/test_supp_i058.c
index e3ed3b9e..9a01ef73 100644
--- a/api-tests/ff/ipc/test_i058/test_supp_i058.c
+++ b/api-tests/ff/ipc/test_i058/test_supp_i058.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_doorbell_signal(void);
 
@@ -32,32 +37,32 @@ int32_t server_test_psa_doorbell_signal(void)
     psa_msg_t               msg = {0};
 
     /* Serve psa_connect */
-    status = val_process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
-    if (val_err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
     {
-        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
         return status;
     }
 
     /* Accept the connection */
-    psa_reply(msg.handle, PSA_SUCCESS);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
     if (msg.client_id > 0)
     {
         /* Doorbell signal to client partititon */
-        psa_notify(msg.client_id);
+        psa->notify(msg.client_id);
     }
     else
     {
         status = VAL_STATUS_SPM_FAILED;
-        val_print(PRINT_ERROR, "Caller is from non-secure\n", 0);
+        val->print(PRINT_ERROR, "Caller is from non-secure\n", 0);
     }
 
     /* Serve psa_close */
-    status = ((val_process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
+    status = ((val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg))
                ? VAL_STATUS_ERROR : status);
-    val_err_check_set(TEST_CHECKPOINT_NUM(202), status);
-    psa_reply(msg.handle, PSA_SUCCESS);
+    val->err_check_set(TEST_CHECKPOINT_NUM(202), status);
+    psa->reply(msg.handle, PSA_SUCCESS);
 
     return status;
 }
diff --git a/api-tests/ff/ipc/test_i059/test_i059.c b/api-tests/ff/ipc/test_i059/test_i059.c
index 6ebebf9a..0f4c3b78 100644
--- a/api-tests/ff/ipc/test_i059/test_i059.c
+++ b/api-tests/ff/ipc/test_i059/test_i059.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i059.h"
diff --git a/api-tests/ff/ipc/test_i059/test_supp_i059.c b/api-tests/ff/ipc/test_i059/test_supp_i059.c
index 94d629d0..ed08784c 100644
--- a/api-tests/ff/ipc/test_i059/test_supp_i059.c
+++ b/api-tests/ff/ipc/test_i059/test_supp_i059.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 #define NEG_PART_ID -10
 
@@ -31,37 +36,47 @@ server_test_t test_i059_server_tests_list[] = {
 int32_t server_test_psa_notify_with_neg_part_id(void)
 {
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+    val->print(PRINT_TEST, "[Check 1] Test psa_notify with neg partition id\n", 0);
+
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    val_print(PRINT_TEST, "[Check1] Test psa_notify with neg partition id\n", 0);
-
     /* Setting boot.state before test check */
-    if (val_set_boot_flag(BOOT_EXPECTED_NS))
+    if (val->set_boot_flag(BOOT_EXPECTED_NS))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
         return VAL_STATUS_ERROR;
     }
 
-    /* psa_notify_with_neg_part_id */
-    psa_notify(NEG_PART_ID);
+    /* psa_notify_with_neg_part_id, call should panic */
+    psa->notify(NEG_PART_ID);
 
     /* shouldn't have reached here */
-    val_print(PRINT_ERROR, "\tpsa_notify(-ve_part_ip) check failed\n", 0);
+    val->print(PRINT_ERROR, "\tpsa->notify(-ve_part_ip) check failed\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
         return VAL_STATUS_ERROR;
     }
 
diff --git a/api-tests/ff/ipc/test_i060/test_i060.c b/api-tests/ff/ipc/test_i060/test_i060.c
index 3c69b4cb..d2f17a41 100644
--- a/api-tests/ff/ipc/test_i060/test_i060.c
+++ b/api-tests/ff/ipc/test_i060/test_i060.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i060.h"
diff --git a/api-tests/ff/ipc/test_i060/test_supp_i060.c b/api-tests/ff/ipc/test_i060/test_supp_i060.c
index 9ce7886c..05b3b7fb 100644
--- a/api-tests/ff/ipc/test_i060/test_supp_i060.c
+++ b/api-tests/ff/ipc/test_i060/test_supp_i060.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 #define INVALID_POSITIVE_PART_ID 200
 
@@ -31,37 +36,47 @@ server_test_t test_i060_server_tests_list[] = {
 int32_t server_test_psa_notify_with_invalid_pos_part_id(void)
 {
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+    val->print(PRINT_TEST, "[Check 1] Test psa_notify with invalid positive part-id\n", 0);
+
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    val_print(PRINT_TEST, "[Check1] Test psa_notify with invalid positive part-id\n", 0);
-
     /* Setting boot.state before test check */
-    if (val_set_boot_flag(BOOT_EXPECTED_NS))
+    if (val->set_boot_flag(BOOT_EXPECTED_NS))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
         return VAL_STATUS_ERROR;
     }
 
-    /* psa_notify_with_invalid_pos_part_id */
-    psa_notify(INVALID_POSITIVE_PART_ID);
+    /* psa_notify_with_invalid_pos_part_id, call should panic */
+    psa->notify(INVALID_POSITIVE_PART_ID);
 
     /* shouldn't have reached here */
-    val_print(PRINT_ERROR, "\tpsa_notify(invalid_+ve__part_ip) check failed\n", 0);
+    val->print(PRINT_ERROR, "\tpsa->notify(invalid_+ve__part_ip) check failed\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
         return VAL_STATUS_ERROR;
     }
 
diff --git a/api-tests/ff/ipc/test_i061/test_i061.c b/api-tests/ff/ipc/test_i061/test_i061.c
index 1f9cd4e1..4be21a69 100644
--- a/api-tests/ff/ipc/test_i061/test_i061.c
+++ b/api-tests/ff/ipc/test_i061/test_i061.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i061.h"
diff --git a/api-tests/ff/ipc/test_i061/test_supp_i061.c b/api-tests/ff/ipc/test_i061/test_supp_i061.c
index 720903f1..15421142 100644
--- a/api-tests/ff/ipc/test_i061/test_supp_i061.c
+++ b/api-tests/ff/ipc/test_i061/test_supp_i061.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_clear_at_unasserted_doorbell_sig(void);
 
@@ -29,37 +34,47 @@ server_test_t test_i061_server_tests_list[] = {
 int32_t server_test_psa_clear_at_unasserted_doorbell_sig(void)
 {
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+    val->print(PRINT_TEST, "[Check 1] Test psa_clear at unasserted doorbell sig\n", 0);
+
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    val_print(PRINT_TEST, "[Check1] Test psa_clear at unasserted doorbell sig\n", 0);
-
     /* Setting boot.state before test check */
-    if (val_set_boot_flag(BOOT_EXPECTED_NS))
+    if (val->set_boot_flag(BOOT_EXPECTED_NS))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
         return VAL_STATUS_ERROR;
     }
 
-    /* psa_clear when unasserted doorbell sig */
-    psa_clear();
+    /* psa_clear when unasserted doorbell sig, call should panic */
+    psa->clear();
 
     /* shouldn't have reached here */
-    val_print(PRINT_ERROR, "\tpsa_clear() check failed for unasserted doorbel signal\n", 0);
+    val->print(PRINT_ERROR, "\tpsa->clear() check failed for unasserted doorbel signal\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
         return VAL_STATUS_ERROR;
     }
 
diff --git a/api-tests/ff/ipc/test_i062/test_i062.c b/api-tests/ff/ipc/test_i062/test_i062.c
index fb28fe17..f9ff4cb4 100644
--- a/api-tests/ff/ipc/test_i062/test_i062.c
+++ b/api-tests/ff/ipc/test_i062/test_i062.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i062.h"
diff --git a/api-tests/ff/ipc/test_i062/test_supp_i062.c b/api-tests/ff/ipc/test_i062/test_supp_i062.c
index 8029c0a9..30e2d5d0 100644
--- a/api-tests/ff/ipc/test_i062/test_supp_i062.c
+++ b/api-tests/ff/ipc/test_i062/test_supp_i062.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 /* signal bit-31 should be unassigned to server partition */
 #define INVALID_SIGNAL_MASK 0x80000000
@@ -32,37 +37,47 @@ server_test_t test_i062_server_tests_list[] = {
 int32_t server_test_psa_wait_with_unassigned_signal(void)
 {
 
-   /* Test is targeting fatal error condition and it will expect an error recovery(reboot)
-    * to happen. To decide, a reboot happened was intended as per test scenario or it happended
-    * due to other reasons, test is setting a boot signature into non-volatile memory before and
-    * after targeted test check. After a reboot, these boot signatures are being read by the
-    * VAL APIs to decide test status.
+    val->print(PRINT_TEST, "[Check 1] Test psa_wait with unassigned signal\n", 0);
+
+   /*
+    * This test checks for the PROGRAMMER ERROR condition for the PSA API. API's respond to
+    * PROGRAMMER ERROR could be either to return appropriate status code or panic the caller.
+    * When a Secure Partition panics, the SPE cannot continue normal execution, as defined
+    * in this specification. The behavior of the SPM following a Secure Partition panic is
+    * IMPLEMENTATION DEFINED- Arm recommends that the SPM causes the system to restart in
+    * this situation. Refer PSA-FF for more information on panic.
+    * For the cases where, SPM cannot capable to reboot the system (just hangs or power down),
+    * a watchdog timer set by val_test_init can reboot the system on timeout event. This will
+    * tests continuity and able to jump to next tests. Therefore, each test who checks for
+    * PROGRAMMER ERROR condition, expects system to get reset either by SPM or watchdog set by
+    * the test harness function.
     *
-    * Note: If SPM is not capable of rebooting (just hangs or power down) in fatal error condition,
-    * a watchdog timer enabled by val_test_init can reboot the system on timeout event.
     * If programmed timeout value isn't sufficient for your system, it can be reconfigured using
     * timeout entries available in target.cfg.
+    *
+    * To decide, a reboot happened as intended by test scenario or it happended
+    * due to other reasons, test is setting a boot signature into non-volatile memory before and
+    * after targeted test check. After a reboot, these boot signatures are being read by the
+    * VAL APIs to decide test status.
     */
 
-    val_print(PRINT_TEST, "[Check1] Test psa_wait with unassigned signal\n", 0);
-
     /* Setting boot.state before test check */
-    if (val_set_boot_flag(BOOT_EXPECTED_NS))
+    if (val->set_boot_flag(BOOT_EXPECTED_NS))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
         return VAL_STATUS_ERROR;
     }
 
-    /* psa_wait with signal mask that doesn't include any assigned signal*/
-    psa_wait(INVALID_SIGNAL_MASK, PSA_POLL);
+    /* psa_wait with signal mask that doesn't include any assigned signal, call should panic */
+    psa->wait(INVALID_SIGNAL_MASK, PSA_POLL);
 
     /* shouldn't have reached here */
-    val_print(PRINT_ERROR, "\tpsa_wait() check failed for unassigned signal\n", 0);
+    val->print(PRINT_ERROR, "\tpsa_wait() check failed for unassigned signal\n", 0);
 
     /* Resetting boot.state to catch unwanted reboot */
-    if (val_set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
     {
-        val_print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
         return VAL_STATUS_ERROR;
     }
 
diff --git a/api-tests/ff/ipc/test_i063/test_i063.c b/api-tests/ff/ipc/test_i063/test_i063.c
index be8d79e6..8853f3d0 100644
--- a/api-tests/ff/ipc/test_i063/test_i063.c
+++ b/api-tests/ff/ipc/test_i063/test_i063.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i063.h"
@@ -35,11 +35,11 @@ int32_t client_test_psa_wait_signal_mask(security_t caller)
 {
    psa_handle_t     handle = 0;
 
-   val->print(PRINT_TEST, "[Check1] Test psa_wait signal mask\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_wait signal mask\n", 0);
 
    handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
 
-   if (handle != PSA_CONNECTION_REFUSED)
+   if (handle != PSA_ERROR_CONNECTION_REFUSED)
    {
        val->print(PRINT_ERROR, "psa_connect failed -1\n", 0);
        return VAL_STATUS_INVALID_HANDLE;
@@ -47,7 +47,7 @@ int32_t client_test_psa_wait_signal_mask(security_t caller)
 
    handle = psa->connect(SERVER_RELAX_MINOR_VERSION_SID, 1);
 
-   if (handle != PSA_CONNECTION_REFUSED)
+   if (handle != PSA_ERROR_CONNECTION_REFUSED)
    {
        val->print(PRINT_ERROR, "psa_connect failed -2\n", 0);
        return VAL_STATUS_INVALID_HANDLE;
diff --git a/api-tests/ff/ipc/test_i063/test_supp_i063.c b/api-tests/ff/ipc/test_i063/test_supp_i063.c
index 99990e20..d7555e97 100644
--- a/api-tests/ff/ipc/test_i063/test_supp_i063.c
+++ b/api-tests/ff/ipc/test_i063/test_supp_i063.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_wait_signal_mask(void);
 
@@ -34,68 +39,70 @@ int32_t server_test_psa_wait_signal_mask(void)
     psa_signal_t    signal_mask = (SERVER_UNSPECIFED_MINOR_V_SIG | SERVER_RELAX_MINOR_VERSION_SIG);
 
     /* Debug print */
-    val_err_check_set(TEST_CHECKPOINT_NUM(211), VAL_STATUS_SUCCESS);
+    val->err_check_set(TEST_CHECKPOINT_NUM(211), VAL_STATUS_SUCCESS);
 
-    /* Notify client partition to make SERVER_SECURE_CONNECT_ONLY_SID connection request.
-     * This connection request act as irritator to psa_wait(signal_mask) call and it is used
+    /*
+     * Notify client partition to make SERVER_SECURE_CONNECT_ONLY_SID connection request.
+     * This connection request act as irritator to psa->wait(signal_mask) call and it is used
      * to cover the rule - Signals that are not in signal_mask should be ignored by psa_wait.
      * This means, during the following while loop, returned signal vaule should not be
      * SERVER_SECURE_CONNECT_ONLY_SIG as this signal is not part of signal_mask.
      */
-    psa_notify(CLIENT_PARTITION);
+    psa->notify(CLIENT_PARTITION);
 
     while (loop_cnt != 0)
     {
-         signals = psa_wait(signal_mask, PSA_BLOCK);
+         signals = psa->wait(signal_mask, PSA_BLOCK);
 
-         /* Rule - Returned signals value must be subset signals indicated in the signal_mask.
-          *
+         /*
+          * Rule - Returned signals value must be subset signals indicated in the signal_mask.
           * This mean signal value should be either SERVER_UNSPECIFED_MINOR_V_SIG
           * or SERVER_RELAX_MINOR_VERSION_SIG.
           */
          if (((signals & signal_mask) == 0) &&
              ((signals | signal_mask) != signal_mask))
          {
-             val_print(PRINT_ERROR,
+             val->print(PRINT_ERROR,
                      "psa_wait-1 returned with invalid signal value = 0x%x\n", signals);
              return VAL_STATUS_ERROR;
          }
          else if (signals & SERVER_UNSPECIFED_MINOR_V_SIG)
          {
-             if (psa_get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
+             if (psa->get(SERVER_UNSPECIFED_MINOR_V_SIG, &msg) != PSA_SUCCESS)
                  continue;
 
              loop_cnt--;
-             psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+             psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
          }
          else if (signals & SERVER_RELAX_MINOR_VERSION_SIG)
          {
-             if (psa_get(SERVER_RELAX_MINOR_VERSION_SIG, &msg) != PSA_SUCCESS)
+             if (psa->get(SERVER_RELAX_MINOR_VERSION_SIG, &msg) != PSA_SUCCESS)
                  continue;
 
              loop_cnt--;
-             psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+             psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
          }
     }
 
     /* Debug print */
-    val_err_check_set(TEST_CHECKPOINT_NUM(212), VAL_STATUS_SUCCESS);
+    val->err_check_set(TEST_CHECKPOINT_NUM(212), VAL_STATUS_SUCCESS);
 
 wait:
-    /* At the end, completes the starved connection
+    /*
+     * At the end, completes the starved connection
      * request of SERVER_SECURE_CONNECT_ONLY_SID.
      */
-    signals = psa_wait(SERVER_SECURE_CONNECT_ONLY_SIG, PSA_BLOCK);
+    signals = psa->wait(SERVER_SECURE_CONNECT_ONLY_SIG, PSA_BLOCK);
     if ((signals & SERVER_SECURE_CONNECT_ONLY_SIG) == 0)
     {
-       val_print(PRINT_ERROR,
+       val->print(PRINT_ERROR,
                 "psa_wait-2 returned with invalid signal value = 0x%x\n", signals);
        return VAL_STATUS_ERROR;
     }
 
-    if (psa_get(SERVER_SECURE_CONNECT_ONLY_SIG, &msg) != PSA_SUCCESS)
+    if (psa->get(SERVER_SECURE_CONNECT_ONLY_SIG, &msg) != PSA_SUCCESS)
         goto wait;
 
-    psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
     return VAL_STATUS_SUCCESS;
 }
diff --git a/api-tests/ff/ipc/test_i064/test_i064.c b/api-tests/ff/ipc/test_i064/test_i064.c
index 46fe3c99..f037cfa3 100644
--- a/api-tests/ff/ipc/test_i064/test_i064.c
+++ b/api-tests/ff/ipc/test_i064/test_i064.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i064.h"
@@ -33,20 +33,20 @@ client_test_t test_i064_client_tests_list[] = {
 
 int32_t client_test_psa_eoi_with_non_intr_signal(security_t caller)
 {
-   psa_handle_t         handle;
-   test_intr_fn_id_t    test_intr_fn_id = TEST_PSA_EOI_WITH_NON_INTR_SIGNAL;
+   psa_handle_t           handle;
+   driver_test_fn_id_t    driver_test_fn_id = TEST_PSA_EOI_WITH_NON_INTR_SIGNAL;
 
    /*
     * The interrupt related test check is captured in driver_partition.c as this is the
     * only partition in test suite that holds the interrupt line. The interrupt test check
-    * is invoked by client by calling to TEST_INTR_SID RoT service of driver partition that
+    * is invoked by client by calling to DRIVER_TEST_SID RoT service of driver partition that
     * hold the test check.
     */
 
-   val->print(PRINT_TEST, "[Check1] Test psa_eoi with non-interrupt signal\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_eoi with non-interrupt signal\n", 0);
 
-   /* Connect to TEST_INTR_SID */
-   handle = psa->connect(TEST_INTR_SID, 1);
+   /* Connect to DRIVER_TEST_SID */
+   handle = psa->connect(DRIVER_TEST_SID, 1);
    if (handle < 0)
    {
        val->print(PRINT_ERROR, "\t psa_connect failed. handle=0x%x\n", handle);
@@ -54,11 +54,11 @@ int32_t client_test_psa_eoi_with_non_intr_signal(security_t caller)
    }
 
    /* Execute driver function related to TEST_PSA_EOI_WITH_NON_INTR_SIGNAL */
-   psa_invec invec = {&test_intr_fn_id, sizeof(test_intr_fn_id)};
+   psa_invec invec = {&driver_test_fn_id, sizeof(driver_test_fn_id)};
    psa->call(handle, &invec, 1, NULL, 0);
 
    psa->close(handle);
 
-   /* The expectation is that driver partition hang and control never reaches here. */
+   /* The expectation is that driver partition get panic and control never reaches here. */
    return VAL_STATUS_SPM_FAILED;
 }
diff --git a/api-tests/ff/ipc/test_i064/test_supp_i064.c b/api-tests/ff/ipc/test_i064/test_supp_i064.c
index 5eb11439..5c486a74 100644
--- a/api-tests/ff/ipc/test_i064/test_supp_i064.c
+++ b/api-tests/ff/ipc/test_i064/test_supp_i064.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_eoi_with_non_intr_signal(void);
 
diff --git a/api-tests/ff/ipc/test_i065/test_i065.c b/api-tests/ff/ipc/test_i065/test_i065.c
index 92cdeda2..15081fb2 100644
--- a/api-tests/ff/ipc/test_i065/test_i065.c
+++ b/api-tests/ff/ipc/test_i065/test_i065.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i065.h"
@@ -33,20 +33,20 @@ client_test_t test_i065_client_tests_list[] = {
 
 int32_t client_test_psa_eoi_with_unasserted_signal(security_t caller)
 {
-   psa_handle_t         handle;
-   test_intr_fn_id_t    test_intr_fn_id = TEST_PSA_EOI_WITH_UNASSERTED_SIGNAL;
+   psa_handle_t           handle;
+   driver_test_fn_id_t    driver_test_fn_id = TEST_PSA_EOI_WITH_UNASSERTED_SIGNAL;
 
    /*
     * The interrupt related test check is captured in driver_partition.c as this is the
     * only partition in test suite that holds the interrupt line. The interrupt test check
-    * is invoked by client by calling to TEST_INTR_SID RoT service of driver partition that
+    * is invoked by client by calling to DRIVER_TEST_SID RoT service of driver partition that
     * hold the test check.
     */
 
-   val->print(PRINT_TEST, "[Check1] Test psa_eoi with multiple signal\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_eoi with multiple signal\n", 0);
 
-   /* Connect to TEST_INTR_SID */
-   handle = psa->connect(TEST_INTR_SID, 1);
+   /* Connect to DRIVER_TEST_SID */
+   handle = psa->connect(DRIVER_TEST_SID, 1);
    if (handle < 0)
    {
        val->print(PRINT_ERROR, "\t psa_connect failed. handle=0x%x\n", handle);
@@ -54,11 +54,11 @@ int32_t client_test_psa_eoi_with_unasserted_signal(security_t caller)
    }
 
    /* Execute driver function related to TEST_PSA_EOI_WITH_UNASSERTED_SIGNAL */
-   psa_invec invec = {&test_intr_fn_id, sizeof(test_intr_fn_id)};
+   psa_invec invec = {&driver_test_fn_id, sizeof(driver_test_fn_id)};
    psa->call(handle, &invec, 1, NULL, 0);
 
    psa->close(handle);
 
-   /* The expectation is that driver partition hang and control never reaches here. */
+   /* The expectation is that driver partition get panic and control never reaches here. */
    return VAL_STATUS_SPM_FAILED;
 }
diff --git a/api-tests/ff/ipc/test_i065/test_supp_i065.c b/api-tests/ff/ipc/test_i065/test_supp_i065.c
index 1388840c..5c1d8e03 100644
--- a/api-tests/ff/ipc/test_i065/test_supp_i065.c
+++ b/api-tests/ff/ipc/test_i065/test_supp_i065.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_eoi_with_non_intr_signal(void);
 
diff --git a/api-tests/ff/ipc/test_i066/test_i066.c b/api-tests/ff/ipc/test_i066/test_i066.c
index fb110d68..c452dc0d 100644
--- a/api-tests/ff/ipc/test_i066/test_i066.c
+++ b/api-tests/ff/ipc/test_i066/test_i066.c
@@ -20,7 +20,7 @@
 #include "val_target.h"
 #else
 #include "val_client_defs.h"
-#include "val_partition_common.h"
+#include "val_service_defs.h"
 #endif
 
 #include "test_i066.h"
@@ -33,20 +33,20 @@ client_test_t test_i066_client_tests_list[] = {
 
 int32_t client_test_psa_eoi_with_multiple_signals(security_t caller)
 {
-   psa_handle_t         handle;
-   test_intr_fn_id_t    test_intr_fn_id = TEST_PSA_EOI_WITH_MULTIPLE_SIGNALS;
+   psa_handle_t           handle;
+   driver_test_fn_id_t    driver_test_fn_id = TEST_PSA_EOI_WITH_MULTIPLE_SIGNALS;
 
    /*
     * The interrupt related test check is captured in driver_partition.c as this is the
     * only partition in test suite that holds the interrupt line. The interrupt test check
-    * is invoked by client by calling to TEST_INTR_SID RoT service of driver partition that
+    * is invoked by client by calling to DRIVER_TEST_SID RoT service of driver partition that
     * hold the test check.
     */
 
-   val->print(PRINT_TEST, "[Check1] Test psa_eoi with multiple signals\n", 0);
+   val->print(PRINT_TEST, "[Check 1] Test psa_eoi with multiple signals\n", 0);
 
-   /* Connect to TEST_INTR_SID */
-   handle = psa->connect(TEST_INTR_SID, 1);
+   /* Connect to DRIVER_TEST_SID */
+   handle = psa->connect(DRIVER_TEST_SID, 1);
    if (handle < 0)
    {
        val->print(PRINT_ERROR, "\t psa_connect failed. handle=0x%x\n", handle);
@@ -54,11 +54,11 @@ int32_t client_test_psa_eoi_with_multiple_signals(security_t caller)
    }
 
    /* Execute driver function related to TEST_PSA_EOI_WITH_MULTIPLE_SIGNALS */
-   psa_invec invec = {&test_intr_fn_id, sizeof(test_intr_fn_id)};
+   psa_invec invec = {&driver_test_fn_id, sizeof(driver_test_fn_id)};
    psa->call(handle, &invec, 1, NULL, 0);
 
    psa->close(handle);
 
-   /* The expectation is that driver partition hang and control never reaches here. */
+   /* The expectation is that driver partition get panic and control never reaches here. */
    return VAL_STATUS_SPM_FAILED;
 }
diff --git a/api-tests/ff/ipc/test_i066/test_supp_i066.c b/api-tests/ff/ipc/test_i066/test_supp_i066.c
index 8748951e..9b64caa9 100644
--- a/api-tests/ff/ipc/test_i066/test_supp_i066.c
+++ b/api-tests/ff/ipc/test_i066/test_supp_i066.c
@@ -15,8 +15,13 @@
  * limitations under the License.
 **/
 
-#include "val/common/val_client_defs.h"
-#include "val/spe/val_partition_common.h"
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
 
 int32_t server_test_psa_eoi_with_non_intr_signal(void);
 
diff --git a/api-tests/ff/ipc/test_i067/source.mk b/api-tests/ff/ipc/test_i067/source.mk
new file mode 100644
index 00000000..a3472640
--- /dev/null
+++ b/api-tests/ff/ipc/test_i067/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i067.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i067.c test_supp_i067.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
\ No newline at end of file
diff --git a/api-tests/ff/ipc/test_i067/test_entry.c b/api-tests/ff/ipc/test_i067/test_entry.c
new file mode 100644
index 00000000..0d350ab7
--- /dev/null
+++ b/api-tests/ff/ipc/test_i067/test_entry.c
@@ -0,0 +1,52 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i067.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 67)
+#define TEST_DESC "Testing dynamic memory allocation\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val;
+psa_api_t *psa;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L1, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Switch to secure side (client_partition.c) and execute list of tests available in
+    test[num]_client_tests_list from Secure side */
+    status = val->switch_to_secure_client(TEST_NUM);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i067/test_i067.c b/api-tests/ff/ipc/test_i067/test_i067.c
new file mode 100644
index 00000000..6e6f27f8
--- /dev/null
+++ b/api-tests/ff/ipc/test_i067/test_i067.c
@@ -0,0 +1,65 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val/common/val_client_defs.h"
+#include "val/spe/val_partition_common.h"
+#endif
+
+#include "test_i067.h"
+
+#if (SP_HEAP_MEM_SUPP == 1)
+void *malloc(size_t size);
+void free(void *ptr);
+#endif
+
+client_test_t test_i067_client_tests_list[] = {
+    NULL,
+    client_test_dynamic_mem_alloc_fn,
+    NULL,
+};
+
+int32_t client_test_dynamic_mem_alloc_fn(security_t caller)
+{
+  /* Check heap memory support available to secure partition */
+#if (SP_HEAP_MEM_SUPP == 1)
+  uint8_t              *buffer;
+
+  val->print(PRINT_TEST, "[Check 1] Test dynamic memory allocation\n", 0);
+
+  /* If heap_size field is not specified in the manifest then the SPM can assume the size is 0 */
+  buffer = (uint8_t *)malloc(sizeof(uint8_t) * 8);
+  if (buffer != NULL)
+  {
+      val->print(PRINT_ERROR, "\tmalloc failed for unspecified heap size\n", 0);
+      return VAL_STATUS_SPM_FAILED;
+  }
+
+#else
+
+  val->print(PRINT_TEST, "[Check 1] Test dynamic memory allocation\n", 0);
+
+  /* Skip the test */
+  val->print(PRINT_ERROR, "\tSkipping test as heap memory not supported\n", 0);
+  return RESULT_SKIP(VAL_STATUS_HEAP_NOT_AVAILABLE);
+
+#endif
+  return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i067/test_i067.h b/api-tests/ff/ipc/test_i067/test_i067.h
new file mode 100644
index 00000000..f84da6e4
--- /dev/null
+++ b/api-tests/ff/ipc/test_i067/test_i067.h
@@ -0,0 +1,37 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I067_CLIENT_TESTS_H_
+#define _TEST_I067_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i067)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i067_client_tests_list[];
+
+int32_t client_test_dynamic_mem_alloc_fn(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i067/test_supp_i067.c b/api-tests/ff/ipc/test_i067/test_supp_i067.c
new file mode 100644
index 00000000..b6d0779b
--- /dev/null
+++ b/api-tests/ff/ipc/test_i067/test_supp_i067.c
@@ -0,0 +1,127 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+#define SERVER_HEAP_SIZE 0x100 /* The size is same as heap_size field in manifest */
+
+#if (SP_HEAP_MEM_SUPP == 1)
+void *malloc(size_t size);
+void free(void *ptr);
+void *realloc(void *ptr, size_t size);
+#endif
+
+int32_t server_test_dynamic_mem_alloc_fn(void);
+
+server_test_t test_i067_server_tests_list[] = {
+    NULL,
+    server_test_dynamic_mem_alloc_fn,
+    NULL,
+};
+
+int32_t server_test_dynamic_mem_alloc_fn(void)
+{
+   /* Perform checks only if heap memory support available to secure partition */
+#if (SP_HEAP_MEM_SUPP == 1)
+   uint8_t              *buffer, *buffer1;
+   uint8_t              cmpbuff[SERVER_HEAP_SIZE] = {0};
+
+   memset((uint8_t *)cmpbuff, 0, SERVER_HEAP_SIZE);
+
+   /* Allocate whole heap memory size */
+   buffer = (uint8_t *)malloc(sizeof(uint8_t) * SERVER_HEAP_SIZE);
+   if (buffer == NULL)
+   {
+       val->print(PRINT_ERROR, "\tmalloc failed for full memory allocation\n", 0);
+       return VAL_STATUS_SPM_FAILED;
+   }
+
+   /* Check for zero init by malloc() */
+   if (memcmp(buffer, cmpbuff, SERVER_HEAP_SIZE))
+   {
+       val->print(PRINT_ERROR, "\tUnequal data in compared buffers-1\n", 0);
+       return VAL_STATUS_SPM_FAILED;
+   }
+
+   /* Check for heap memory over run */
+   buffer1 = (uint8_t *)malloc(sizeof(uint8_t) * 8);
+   if (buffer1 != NULL)
+   {
+       val->print(PRINT_ERROR, "\tmalloc failed for over mem alloc\n", 0);
+       return VAL_STATUS_SPM_FAILED;
+   }
+
+   /* Set buffer to non-zero value */
+   memset((uint8_t *)buffer, 1, SERVER_HEAP_SIZE);
+
+   /* Free up the memory */
+   free(buffer);
+
+   /* Check for memory scrub by free() */
+   if (*buffer == 1)
+   {
+       val->print(PRINT_ERROR, "\tUnequal data in compared buffers-2\n", 0);
+       return VAL_STATUS_SPM_FAILED;
+   }
+
+   /* Allocate 32 byte memory to test relloac */
+   buffer = (uint8_t *)malloc(sizeof(uint8_t) * 32);
+   if (buffer == NULL)
+   {
+       val->print(PRINT_ERROR, "\tmalloc failed\n", 0);
+       return VAL_STATUS_SPM_FAILED;
+   }
+
+   /* Set buffer to non-zero value */
+   memset((uint8_t *)buffer, 1, 32);
+   memset((uint8_t *)cmpbuff, 1, 32);
+
+   /* Re-allocate the buffer, Size = 64 byte */
+   buffer1 = (uint8_t *)realloc(buffer, (sizeof(uint8_t) * 64));
+
+   /* Check older object is deallocated */
+   if (memcmp(buffer, (cmpbuff + 64), 32))
+   {
+       val->print(PRINT_ERROR, "\tUnequal data in compared buffers-3\n", 0);
+       return VAL_STATUS_SPM_FAILED;
+   }
+
+   /* Check new object has previous data of older object */
+   if (memcmp(buffer1, cmpbuff, 32))
+   {
+       val->print(PRINT_ERROR, "\tUnequal data in compared buffers-4\n", 0);
+       return VAL_STATUS_SPM_FAILED;
+   }
+
+   /* Check new allocated size is zero init */
+   if (memcmp((buffer1 + 32), (cmpbuff + 32), 32))
+   {
+       val->print(PRINT_ERROR, "\tUnequal data in compared buffers-5\n", 0);
+       return VAL_STATUS_SPM_FAILED;
+   }
+
+   free(buffer1);
+
+#endif
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i068/source.mk b/api-tests/ff/ipc/test_i068/source.mk
new file mode 100644
index 00000000..d6cb0d7b
--- /dev/null
+++ b/api-tests/ff/ipc/test_i068/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i068.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i068.c test_supp_i068.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
\ No newline at end of file
diff --git a/api-tests/ff/ipc/test_i068/test_entry.c b/api-tests/ff/ipc/test_i068/test_entry.c
new file mode 100644
index 00000000..c328f8e2
--- /dev/null
+++ b/api-tests/ff/ipc/test_i068/test_entry.c
@@ -0,0 +1,52 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i068.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 68)
+#define TEST_DESC "Testing Instr execution from writable memory\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val;
+psa_api_t *psa;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L1, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Switch to secure side (client_partition.c) and execute list of tests available in
+    test[num]_client_tests_list from Secure side */
+    status = val->switch_to_secure_client(TEST_NUM);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i068/test_i068.c b/api-tests/ff/ipc/test_i068/test_i068.c
new file mode 100644
index 00000000..0ab92dc0
--- /dev/null
+++ b/api-tests/ff/ipc/test_i068/test_i068.c
@@ -0,0 +1,94 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val/common/val_client_defs.h"
+#include "val/spe/val_partition_common.h"
+#endif
+
+#include "test_i068.h"
+
+#define NO_OF_BYTES 16
+typedef void (*fptr_t)(void);
+void test_i068_dummy_func(void);
+fptr_t fptr;
+
+char opcode[NO_OF_BYTES] = {0}; // Data memory
+
+client_test_t test_i068_client_tests_list[] = {
+    NULL,
+    client_test_instr_exec_from_writable_mem,
+    NULL,
+};
+
+static void copy_mem(void *addr, void *data, size_t l)
+{
+   int i;
+   char *src = (char *)data;
+   char *dest = (char *)addr;
+
+   for (i = 0; i < l; i++)
+   {
+       dest[i] = src[i];
+   }
+}
+
+/* Empty function to create opcode data set */
+void test_i068_dummy_func(void)
+{
+}
+
+int32_t client_test_instr_exec_from_writable_mem(security_t caller)
+{
+  val->print(PRINT_TEST, "[Check 1] Test Instr execution from writable memory\n", 0);
+
+  /*
+   * Copy test_i068_dummy_func function code into data memory
+   * Assuming function size to be 32 bytes max
+   */
+  copy_mem(&opcode, &test_i068_dummy_func, NO_OF_BYTES);
+
+  /* Point function pointer to data memory */
+  fptr = (fptr_t) opcode;
+  val->print(PRINT_DEBUG, "\t&opcode = 0x%x\n", (uint32_t) &opcode);
+  val->print(PRINT_DEBUG, "\tfptr = 0x%x\n",(uint32_t) fptr);
+
+  /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_S))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+  /* Check - Execute opcode from data memory. This should generate internal fault */
+  fptr();
+
+  val->print(PRINT_ERROR, "\tControl shouldn't have reached here\n", 0);
+
+  /* Resetting boot.state to catch unwanted reboot */
+  if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+  {
+      val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+  }
+
+  return VAL_STATUS_ERROR;
+}
+
+
diff --git a/api-tests/ff/ipc/test_i068/test_i068.h b/api-tests/ff/ipc/test_i068/test_i068.h
new file mode 100644
index 00000000..4426f389
--- /dev/null
+++ b/api-tests/ff/ipc/test_i068/test_i068.h
@@ -0,0 +1,37 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I068_CLIENT_TESTS_H_
+#define _TEST_I068_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i068)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i068_client_tests_list[];
+
+int32_t client_test_instr_exec_from_writable_mem(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i068/test_supp_i068.c b/api-tests/ff/ipc/test_i068/test_supp_i068.c
new file mode 100644
index 00000000..6fa87d37
--- /dev/null
+++ b/api-tests/ff/ipc/test_i068/test_supp_i068.c
@@ -0,0 +1,37 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_instr_exec_from_writable_mem(void);
+
+server_test_t test_i068_server_tests_list[] = {
+    NULL,
+    server_test_instr_exec_from_writable_mem,
+    NULL,
+};
+
+int32_t server_test_instr_exec_from_writable_mem(void)
+{
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i069/source.mk b/api-tests/ff/ipc/test_i069/source.mk
new file mode 100644
index 00000000..1a745a51
--- /dev/null
+++ b/api-tests/ff/ipc/test_i069/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i069.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i069.c test_supp_i069.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
\ No newline at end of file
diff --git a/api-tests/ff/ipc/test_i069/test_entry.c b/api-tests/ff/ipc/test_i069/test_entry.c
new file mode 100644
index 00000000..e1411a41
--- /dev/null
+++ b/api-tests/ff/ipc/test_i069/test_entry.c
@@ -0,0 +1,52 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i069.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 69)
+#define TEST_DESC "Testing write to code space\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val;
+psa_api_t *psa;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L1, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Switch to secure side (client_partition.c) and execute list of tests available in
+    test[num]_client_tests_list from Secure side */
+    status = val->switch_to_secure_client(TEST_NUM);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i069/test_i069.c b/api-tests/ff/ipc/test_i069/test_i069.c
new file mode 100644
index 00000000..53afce3a
--- /dev/null
+++ b/api-tests/ff/ipc/test_i069/test_i069.c
@@ -0,0 +1,68 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val/common/val_client_defs.h"
+#include "val/spe/val_partition_common.h"
+#endif
+
+#include "test_i069.h"
+
+client_test_t test_i069_client_tests_list[] = {
+    NULL,
+    client_test_write_to_code_space,
+    NULL,
+};
+
+int32_t client_test_write_to_code_space(security_t caller)
+{
+  int32_t *p;
+
+  val->print(PRINT_TEST, "[Check 1] Test write to code space\n", 0);
+
+  /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_S))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+  p = (int32_t *)&client_test_write_to_code_space;
+
+  /* Check - Write to code memory. This should generate internal fault */
+  *p = 0x0;
+
+  if (*p == (int32_t)client_test_write_to_code_space)
+  {
+      /* This means, write ignored */
+      return VAL_STATUS_SUCCESS;
+  }
+  val->print(PRINT_ERROR, "\tWrite to code memory check failed\n", 0);
+
+  /* Resetting boot.state to catch unwanted reboot */
+  if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+  {
+      val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+  }
+
+  return VAL_STATUS_ERROR;
+}
+
+
diff --git a/api-tests/ff/ipc/test_i069/test_i069.h b/api-tests/ff/ipc/test_i069/test_i069.h
new file mode 100644
index 00000000..fbb3e50d
--- /dev/null
+++ b/api-tests/ff/ipc/test_i069/test_i069.h
@@ -0,0 +1,37 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I069_CLIENT_TESTS_H_
+#define _TEST_I069_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i069)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i069_client_tests_list[];
+
+int32_t client_test_write_to_code_space(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i069/test_supp_i069.c b/api-tests/ff/ipc/test_i069/test_supp_i069.c
new file mode 100644
index 00000000..29a3ca1e
--- /dev/null
+++ b/api-tests/ff/ipc/test_i069/test_supp_i069.c
@@ -0,0 +1,37 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_write_to_code_space(void);
+
+server_test_t test_i069_server_tests_list[] = {
+    NULL,
+    server_test_write_to_code_space,
+    NULL,
+};
+
+int32_t server_test_write_to_code_space(void)
+{
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i070/source.mk b/api-tests/ff/ipc/test_i070/source.mk
new file mode 100644
index 00000000..f399229b
--- /dev/null
+++ b/api-tests/ff/ipc/test_i070/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i070.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i070.c test_supp_i070.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
\ No newline at end of file
diff --git a/api-tests/ff/ipc/test_i070/test_entry.c b/api-tests/ff/ipc/test_i070/test_entry.c
new file mode 100644
index 00000000..7ea558cf
--- /dev/null
+++ b/api-tests/ff/ipc/test_i070/test_entry.c
@@ -0,0 +1,52 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i070.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 70)
+#define TEST_DESC "Testing write to const data\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val;
+psa_api_t *psa;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L1, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Switch to secure side (client_partition.c) and execute list of tests available in
+    test[num]_client_tests_list from Secure side */
+    status = val->switch_to_secure_client(TEST_NUM);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i070/test_i070.c b/api-tests/ff/ipc/test_i070/test_i070.c
new file mode 100644
index 00000000..45c5dc97
--- /dev/null
+++ b/api-tests/ff/ipc/test_i070/test_i070.c
@@ -0,0 +1,75 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val/common/val_client_defs.h"
+#include "val/spe/val_partition_common.h"
+#endif
+
+#include "test_i070.h"
+
+client_test_t test_i070_client_tests_list[] = {
+    NULL,
+    client_test_write_to_const_data,
+    NULL,
+};
+
+int32_t client_test_write_to_const_data(security_t caller)
+{
+  const char *string = "This text should be in RO space";
+  char       *p;
+
+  val->print(PRINT_TEST, "[Check 1] Test write to const data\n", 0);
+
+  /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_S))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+  p = (char *) string;
+  val->print(PRINT_DEBUG, "\tstring[0] = 0x%x\n", (uint32_t) string);
+  val->print(PRINT_DEBUG, "\tp[0] = 0x%x\n", (uint32_t) p);
+
+  /*
+   * Check - Write to const data string[0].
+   * This should generate internal fault or write ignored
+   */
+  p[0] = 'a';
+
+  if (p[0] == 'T')
+  {
+      /* This means, write ignored */
+      return VAL_STATUS_SUCCESS;
+  }
+
+  val->print(PRINT_ERROR, "\tWrite to constant data check failed\n", 0);
+
+  /* Resetting boot.state to catch unwanted reboot */
+  if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+  {
+      val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+  }
+
+  return VAL_STATUS_ERROR;
+}
+
+
diff --git a/api-tests/ff/ipc/test_i070/test_i070.h b/api-tests/ff/ipc/test_i070/test_i070.h
new file mode 100644
index 00000000..4189b898
--- /dev/null
+++ b/api-tests/ff/ipc/test_i070/test_i070.h
@@ -0,0 +1,37 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I070_CLIENT_TESTS_H_
+#define _TEST_I070_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i070)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i070_client_tests_list[];
+
+int32_t client_test_write_to_const_data(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i070/test_supp_i070.c b/api-tests/ff/ipc/test_i070/test_supp_i070.c
new file mode 100644
index 00000000..51090fad
--- /dev/null
+++ b/api-tests/ff/ipc/test_i070/test_supp_i070.c
@@ -0,0 +1,37 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_write_to_const_data(void);
+
+server_test_t test_i070_server_tests_list[] = {
+    NULL,
+    server_test_write_to_const_data,
+    NULL,
+};
+
+int32_t server_test_write_to_const_data(void)
+{
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i071/source.mk b/api-tests/ff/ipc/test_i071/source.mk
new file mode 100644
index 00000000..c6eade09
--- /dev/null
+++ b/api-tests/ff/ipc/test_i071/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i071.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i071.c test_supp_i071.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i071/test_entry.c b/api-tests/ff/ipc/test_i071/test_entry.c
new file mode 100644
index 00000000..26050b2a
--- /dev/null
+++ b/api-tests/ff/ipc/test_i071/test_entry.c
@@ -0,0 +1,52 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i071.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 71)
+#define TEST_DESC "Testing memory manipulation functions\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val;
+psa_api_t *psa;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L1, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Switch to secure side (client_partition.c) and execute list of tests available in
+    test[num]_client_tests_list from Secure side */
+    status = val->switch_to_secure_client(TEST_NUM);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i071/test_i071.c b/api-tests/ff/ipc/test_i071/test_i071.c
new file mode 100644
index 00000000..1c56a022
--- /dev/null
+++ b/api-tests/ff/ipc/test_i071/test_i071.c
@@ -0,0 +1,120 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val/common/val_client_defs.h"
+#include "val/spe/val_partition_common.h"
+#endif
+
+#include "test_i071.h"
+
+#define BUFF_SIZE 32
+
+client_test_t test_i071_client_tests_list[] = {
+    NULL,
+    client_test_mem_manipulation_fn,
+    NULL,
+};
+
+int32_t client_test_mem_manipulation_fn(security_t caller)
+{
+  uint8_t    buffer[BUFF_SIZE] = {0};
+  uint8_t    buffer1[BUFF_SIZE] = {0};
+  int         i;
+
+  val->print(PRINT_TEST, "[Check 1] Test memory manipulation functions\n", 0);
+
+  /* Test memset()- Set all buffer elements  with zero */
+  memset((uint8_t *)buffer, 0, BUFF_SIZE);
+  for (i = 0; i < BUFF_SIZE; i++)
+  {
+      if (buffer[i] != 0)
+      {
+        val->print(PRINT_ERROR,
+                  "\tmemset() failed, found buffer with non-zero value = %x\n", buffer[i]);
+        return VAL_STATUS_ERROR;
+      }
+  }
+
+  /* Test memset()- Set all buffer elements  with 0x3 */
+  memset((uint8_t *)buffer, 0x3, BUFF_SIZE);
+  for (i = 0; i < BUFF_SIZE; i++)
+  {
+      if (buffer[i] != 0x3)
+      {
+        val->print(PRINT_ERROR,
+                  "\tmemset() failed, found buffer with wrong value = %x\n", buffer[i]);
+        return VAL_STATUS_ERROR;
+      }
+  }
+
+  /* Test memcpy(), copy buffer to buffer1 */
+  memcpy((uint8_t *)buffer1, (uint8_t *)buffer, BUFF_SIZE);
+  for (i = 0; i < BUFF_SIZE; i++)
+  {
+      if (buffer1[i] != 0x3)
+      {
+         val->print(PRINT_ERROR,
+                  "\tmemcpy() failed, found buffer with wrong value = %x\n", buffer1[i]);
+         return VAL_STATUS_ERROR;
+      }
+  }
+
+  /* Test memcmp() with equal buffer */
+  if (memcmp((uint8_t *)buffer1, (uint8_t *)buffer, BUFF_SIZE))
+  {
+      val->print(PRINT_ERROR,
+                 "\tmemcmp() failed for two equal buffer\n", 0);
+      return VAL_STATUS_ERROR;
+  }
+
+  buffer1[0] = 0x4;
+  /* Test memcmp() with unequal buffer */
+  if (!memcmp((uint8_t *)buffer1, (uint8_t *)buffer, BUFF_SIZE))
+  {
+      val->print(PRINT_ERROR,
+                 "\tmemcmp() failed for two unequal buffer\n", 0);
+      return VAL_STATUS_ERROR;
+  }
+
+  /* buffer[0-4] = 1 and buffer[5-31] = 2 */
+  memset((uint8_t *)buffer, 1, BUFF_SIZE);
+  memset((uint8_t *)buffer+5, 2, BUFF_SIZE-5);
+
+  /* Test memmove(), expected result is buffer[0-9] = 1 and buffer[10-31] = 2 */
+  memmove((uint8_t *)buffer+5, (uint8_t *)buffer, BUFF_SIZE-5);
+  for (i = 0; i < BUFF_SIZE; i++)
+  {
+      if ((buffer[i] != 0x1) && (i < 10))
+      {
+          val->print(PRINT_ERROR, "\tmemmove() failed-1\n", 0);
+          return VAL_STATUS_ERROR;
+      }
+      else if ((buffer[i] != 0x2) && (i >10))
+      {
+          val->print(PRINT_ERROR, "\tmemmove() failed-2\n", 0);
+          return VAL_STATUS_ERROR;
+      }
+  }
+
+  return VAL_STATUS_SUCCESS;
+}
+
+
diff --git a/api-tests/ff/ipc/test_i071/test_i071.h b/api-tests/ff/ipc/test_i071/test_i071.h
new file mode 100644
index 00000000..bf1bacf6
--- /dev/null
+++ b/api-tests/ff/ipc/test_i071/test_i071.h
@@ -0,0 +1,37 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I071_CLIENT_TESTS_H_
+#define _TEST_I071_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i071)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i071_client_tests_list[];
+
+int32_t client_test_mem_manipulation_fn(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i071/test_supp_i071.c b/api-tests/ff/ipc/test_i071/test_supp_i071.c
new file mode 100644
index 00000000..7ce17d89
--- /dev/null
+++ b/api-tests/ff/ipc/test_i071/test_supp_i071.c
@@ -0,0 +1,37 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_mem_manipulation_fn(void);
+
+server_test_t test_i071_server_tests_list[] = {
+    NULL,
+    server_test_mem_manipulation_fn,
+    NULL,
+};
+
+int32_t server_test_mem_manipulation_fn(void)
+{
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i072/source.mk b/api-tests/ff/ipc/test_i072/source.mk
new file mode 100644
index 00000000..7d3e4953
--- /dev/null
+++ b/api-tests/ff/ipc/test_i072/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i072.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i072.c test_supp_i072.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i072/test_entry.c b/api-tests/ff/ipc/test_i072/test_entry.c
new file mode 100644
index 00000000..28e6ac4d
--- /dev/null
+++ b/api-tests/ff/ipc/test_i072/test_entry.c
@@ -0,0 +1,51 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i072.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 72)
+#define TEST_DESC "Testing NSPE access to APP-RoT data\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L1, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Execute list of tests available in test[num]_client_tests_list from Non-secure side*/
+    status = val->execute_non_secure_tests(TEST_NUM, test_i072_client_tests_list, TRUE);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i072/test_i072.c b/api-tests/ff/ipc/test_i072/test_i072.c
new file mode 100644
index 00000000..aa586e70
--- /dev/null
+++ b/api-tests/ff/ipc/test_i072/test_i072.c
@@ -0,0 +1,125 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_i072.h"
+
+client_test_t test_i072_client_tests_list[] = {
+    NULL,
+    client_test_nspe_read_app_rot_variable,
+    client_test_nspe_write_app_rot_variable,
+    NULL,
+};
+
+static int32_t get_secure_partition_address(addr_t *addr)
+{
+   psa_handle_t            handle = 0;
+
+   handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
+   if (handle < 0)
+   {
+       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+
+   /* Get App-RoT address */
+   psa_outvec outvec[1] = {{addr, sizeof(addr_t)}};
+   if (psa->call(handle, NULL, 0, outvec, 1) != PSA_SUCCESS)
+   {
+       val->print(PRINT_ERROR, "\tmsg request failed\n", 0);
+       return VAL_STATUS_CALL_FAILED;
+   }
+
+   psa->close(handle);
+   return VAL_STATUS_SUCCESS;
+}
+
+int32_t client_test_nspe_read_app_rot_variable(security_t caller)
+{
+   addr_t   app_rot_addr;
+   uint32_t data = 0x1234;
+
+   val->print(PRINT_TEST, "[Check 1] Test NSPE reading APP-RoT data\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&app_rot_addr)))
+       return VAL_STATUS_ERROR;
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_REENTER_TEST))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Read Application RoT global variable address.
+    * This should generate internal fault or ignore the read.
+    */
+   data = *(uint32_t *)app_rot_addr;
+
+   /* Did read ignore? */
+   if (data == 0x1234)
+        return VAL_STATUS_SUCCESS;
+
+   val->print(PRINT_ERROR, "\tExpected read to fault but it didn't\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   return VAL_STATUS_SPM_FAILED;
+}
+
+int32_t client_test_nspe_write_app_rot_variable(security_t caller)
+{
+   addr_t   app_rot_addr;
+   uint32_t data = 0x1234;
+
+   val->print(PRINT_TEST, "[Check 2] Test NSPE writing APP-RoT data\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&app_rot_addr)))
+       return VAL_STATUS_ERROR;
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_NS))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Write Application RoT global variable address.
+    * This should generate internal fault or ignore the write.
+    */
+   *(uint32_t *)app_rot_addr = (uint32_t)data;
+
+   /* Handshake with server to decide write status */
+   if ((psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1)) > 0)
+   {
+       val->print(PRINT_ERROR, "\tExpected connection to fail but succeed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i072/test_i072.h b/api-tests/ff/ipc/test_i072/test_i072.h
new file mode 100644
index 00000000..586f8e51
--- /dev/null
+++ b/api-tests/ff/ipc/test_i072/test_i072.h
@@ -0,0 +1,38 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I072_CLIENT_TESTS_H_
+#define _TEST_I072_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i072)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i072_client_tests_list[];
+
+int32_t client_test_nspe_read_app_rot_variable(security_t);
+int32_t client_test_nspe_write_app_rot_variable(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i072/test_supp_i072.c b/api-tests/ff/ipc/test_i072/test_supp_i072.c
new file mode 100644
index 00000000..05cf9181
--- /dev/null
+++ b/api-tests/ff/ipc/test_i072/test_supp_i072.c
@@ -0,0 +1,113 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_nspe_read_app_rot_variable(void);
+int32_t server_test_nspe_write_app_rot_variable(void);
+
+#define DATA_VALUE 0x5467
+
+/* Application RoT data region */
+volatile uint32_t g_test_i072 = DATA_VALUE;
+
+server_test_t test_i072_server_tests_list[] = {
+    NULL,
+    server_test_nspe_read_app_rot_variable,
+    server_test_nspe_write_app_rot_variable,
+    NULL,
+};
+
+static int32_t send_secure_partition_address(void)
+{
+    int32_t         status = VAL_STATUS_SUCCESS;
+    psa_msg_t       msg = {0};
+
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    {
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return status;
+    }
+
+    psa->reply(msg.handle, PSA_SUCCESS);
+
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    {
+        psa->reply(msg.handle, -2);
+        return status;
+    }
+
+    /* Send Application RoT data address - global variable */
+    psa->write(msg.handle, 0, (void *)&g_test_i072, sizeof(g_test_i072));
+    psa->reply(msg.handle, PSA_SUCCESS);
+
+    status = val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    {
+        return status;
+    }
+    psa->reply(msg.handle, PSA_SUCCESS);
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t server_test_nspe_read_app_rot_variable(void)
+{
+    return send_secure_partition_address();
+}
+
+int32_t server_test_nspe_write_app_rot_variable(void)
+{
+    int32_t         status = VAL_STATUS_SUCCESS;
+    psa_msg_t       msg = {0};
+
+    status = send_secure_partition_address();
+    if (VAL_ERROR(status))
+        return status;
+
+    /* Wait for write to get performed by client */
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(204), status))
+    {
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return status;
+    }
+
+    /* Connection request is just for handshake, reject connection anyways */
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+
+    /* Reached here means there could be write succeed or ignored */
+    if (g_test_i072 == DATA_VALUE)
+        return VAL_STATUS_SUCCESS;
+
+    val->print(PRINT_ERROR, "\tExpected write to fault but it didn't\n", 0);
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    {
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        return VAL_STATUS_ERROR;
+    }
+    return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i073/source.mk b/api-tests/ff/ipc/test_i073/source.mk
new file mode 100644
index 00000000..2cea6c5f
--- /dev/null
+++ b/api-tests/ff/ipc/test_i073/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i073.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i073.c test_supp_i073.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i073/test_entry.c b/api-tests/ff/ipc/test_i073/test_entry.c
new file mode 100644
index 00000000..74b38179
--- /dev/null
+++ b/api-tests/ff/ipc/test_i073/test_entry.c
@@ -0,0 +1,51 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i073.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 73)
+#define TEST_DESC "Testing NSPE access to APP-RoT stack\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L1, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Execute list of tests available in test[num]_client_tests_list from Non-secure side*/
+    status = val->execute_non_secure_tests(TEST_NUM, test_i073_client_tests_list, TRUE);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i073/test_i073.c b/api-tests/ff/ipc/test_i073/test_i073.c
new file mode 100644
index 00000000..9172ec48
--- /dev/null
+++ b/api-tests/ff/ipc/test_i073/test_i073.c
@@ -0,0 +1,125 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_i073.h"
+
+client_test_t test_i073_client_tests_list[] = {
+    NULL,
+    client_test_nspe_read_app_rot_stack,
+    client_test_nspe_write_app_rot_stack,
+    NULL,
+};
+
+static int32_t get_secure_partition_address(addr_t *addr)
+{
+   psa_handle_t            handle = 0;
+
+   handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
+   if (handle < 0)
+   {
+       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+
+   /* Get App-RoT address */
+   psa_outvec outvec[1] = {{addr, sizeof(addr_t)}};
+   if (psa->call(handle, NULL, 0, outvec, 1) != PSA_SUCCESS)
+   {
+       val->print(PRINT_ERROR, "\tmsg request failed\n", 0);
+       return VAL_STATUS_CALL_FAILED;
+   }
+
+   psa->close(handle);
+   return VAL_STATUS_SUCCESS;
+}
+
+int32_t client_test_nspe_read_app_rot_stack(security_t caller)
+{
+   addr_t   app_rot_addr;
+   uint32_t data = 0x1234;
+
+   val->print(PRINT_TEST, "[Check 1] Test NSPE reading APP-RoT stack\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&app_rot_addr)))
+       return VAL_STATUS_ERROR;
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_REENTER_TEST))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Read Application RoT stack address.
+    * This should generate internal fault or ignore the read.
+    */
+   data = *(uint32_t *)app_rot_addr;
+
+   /* Did read ignore? */
+   if (data == 0x1234)
+        return VAL_STATUS_SUCCESS;
+
+   val->print(PRINT_ERROR, "\tExpected read to fault but it didn't\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   return VAL_STATUS_SPM_FAILED;
+}
+
+int32_t client_test_nspe_write_app_rot_stack(security_t caller)
+{
+   addr_t   app_rot_addr;
+   uint32_t data = 0x1234;
+
+   val->print(PRINT_TEST, "[Check 2] Test NSPE writing APP-RoT stack\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&app_rot_addr)))
+       return VAL_STATUS_ERROR;
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_NS))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Write Application RoT stack address.
+    * This should generate internal fault or ignore the write.
+    */
+   *(uint32_t *)app_rot_addr = (uint32_t)data;
+
+   /* Handshake with server to decide write status */
+   if ((psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1)) > 0)
+   {
+       val->print(PRINT_ERROR, "\tExpected connection to fail but succeed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i073/test_i073.h b/api-tests/ff/ipc/test_i073/test_i073.h
new file mode 100644
index 00000000..1badc212
--- /dev/null
+++ b/api-tests/ff/ipc/test_i073/test_i073.h
@@ -0,0 +1,38 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I073_CLIENT_TESTS_H_
+#define _TEST_I073_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i073)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i073_client_tests_list[];
+
+int32_t client_test_nspe_read_app_rot_stack(security_t);
+int32_t client_test_nspe_write_app_rot_stack(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i073/test_supp_i073.c b/api-tests/ff/ipc/test_i073/test_supp_i073.c
new file mode 100644
index 00000000..114b0a2a
--- /dev/null
+++ b/api-tests/ff/ipc/test_i073/test_supp_i073.c
@@ -0,0 +1,120 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_nspe_read_app_rot_stack(void);
+int32_t server_test_nspe_write_app_rot_stack(void);
+
+#define DATA_VALUE 0x5467
+
+server_test_t test_i073_server_tests_list[] = {
+    NULL,
+    server_test_nspe_read_app_rot_stack,
+    server_test_nspe_write_app_rot_stack,
+    NULL,
+};
+
+static int32_t send_secure_partition_address(addr_t *stack)
+{
+    int32_t         status = VAL_STATUS_SUCCESS;
+    psa_msg_t       msg = {0};
+
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    {
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return status;
+    }
+
+    psa->reply(msg.handle, PSA_SUCCESS);
+
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    {
+        psa->reply(msg.handle, -2);
+        return status;
+    }
+
+    /* Send Application RoT stack address */
+    psa->write(msg.handle, 0, (void *)stack, sizeof(uint32_t));
+    psa->reply(msg.handle, PSA_SUCCESS);
+
+    status = val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    {
+        return status;
+    }
+    psa->reply(msg.handle, PSA_SUCCESS);
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t server_test_nspe_read_app_rot_stack(void)
+{
+    /* Application RoT stack - local variable */
+    uint32_t        l_test_i073 = DATA_VALUE;
+    int32_t         status = VAL_STATUS_SUCCESS;
+
+    status = send_secure_partition_address(&l_test_i073);
+
+    /* Dummy print to avoid compiler optimisation on local variable */
+    val->print(PRINT_INFO, "\tData value 0x%x\n", l_test_i073);
+    return status;
+}
+
+int32_t server_test_nspe_write_app_rot_stack(void)
+{
+    /* Application RoT stack - local variable */
+    uint32_t        l_test_i073 = DATA_VALUE;
+    int32_t         status = VAL_STATUS_SUCCESS;
+    psa_msg_t       msg = {0};
+
+    status = send_secure_partition_address(&l_test_i073);
+    if (VAL_ERROR(status))
+        return status;
+
+    /* Wait for write to get performed by client */
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(204), status))
+    {
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return status;
+    }
+
+    /* Connection request is just for handshake, reject connection anyways */
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+
+    /* Reached here means there could be write succeed or ignored */
+    if (l_test_i073 == DATA_VALUE)
+        return VAL_STATUS_SUCCESS;
+
+    val->print(PRINT_ERROR, "\tExpected write to fault but it didn't\n", 0);
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    {
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        return VAL_STATUS_ERROR;
+    }
+    return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i074/source.mk b/api-tests/ff/ipc/test_i074/source.mk
new file mode 100644
index 00000000..e82e890e
--- /dev/null
+++ b/api-tests/ff/ipc/test_i074/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i074.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i074.c test_supp_i074.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i074/test_entry.c b/api-tests/ff/ipc/test_i074/test_entry.c
new file mode 100644
index 00000000..5468cc8b
--- /dev/null
+++ b/api-tests/ff/ipc/test_i074/test_entry.c
@@ -0,0 +1,51 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i074.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 74)
+#define TEST_DESC "Testing NSPE access to APP-RoT heap\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L1, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Execute list of tests available in test[num]_client_tests_list from Non-secure side*/
+    status = val->execute_non_secure_tests(TEST_NUM, test_i074_client_tests_list, TRUE);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i074/test_i074.c b/api-tests/ff/ipc/test_i074/test_i074.c
new file mode 100644
index 00000000..8c58ca99
--- /dev/null
+++ b/api-tests/ff/ipc/test_i074/test_i074.c
@@ -0,0 +1,145 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_i074.h"
+
+#define DATA_VALUE_ORG 0x11
+#define DATA_VALUE     0x12
+#define BUFFER_SIZE    0x4
+
+client_test_t test_i074_client_tests_list[] = {
+    NULL,
+    client_test_nspe_read_app_rot_heap,
+    client_test_nspe_write_app_rot_heap,
+    NULL,
+};
+
+#if (SP_HEAP_MEM_SUPP == 1)
+static int32_t get_secure_partition_address(addr_t *addr)
+{
+   psa_handle_t            handle = 0;
+
+   handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
+   if (handle < 0)
+   {
+       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+
+   /* Get App-RoT address */
+   psa_outvec outvec[1] = {{addr, BUFFER_SIZE}};
+   if (psa->call(handle, NULL, 0, outvec, 1) != PSA_SUCCESS)
+   {
+       val->print(PRINT_ERROR, "\tmsg request failed\n", 0);
+       return VAL_STATUS_CALL_FAILED;
+   }
+
+   psa->close(handle);
+   return VAL_STATUS_SUCCESS;
+}
+
+int32_t client_test_nspe_read_app_rot_heap(security_t caller)
+{
+   addr_t   app_rot_addr;
+   uint8_t  data = DATA_VALUE;
+
+   val->print(PRINT_TEST, "[Check 1] Test NSPE reading APP-RoT heap\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&app_rot_addr)))
+       return VAL_STATUS_ERROR;
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_REENTER_TEST))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Read Application RoT heap address.
+    * This should generate internal fault or ignore the read.
+    */
+   data = *(uint8_t *)app_rot_addr;
+
+   /* Did read ignore? */
+   if (data == DATA_VALUE)
+        return VAL_STATUS_SUCCESS;
+
+   val->print(PRINT_ERROR, "\tExpected read to fault but it didn't\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   return VAL_STATUS_SPM_FAILED;
+}
+
+int32_t client_test_nspe_write_app_rot_heap(security_t caller)
+{
+   addr_t   app_rot_addr;
+   uint8_t  data = DATA_VALUE;
+
+   val->print(PRINT_TEST, "[Check 2] Test NSPE writing APP-RoT heap\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&app_rot_addr)))
+       return VAL_STATUS_ERROR;
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_NS))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Write Application RoT heap address.
+    * This should generate internal fault or ignore the write.
+    */
+   *(uint8_t *)app_rot_addr = (uint8_t)data;
+
+   /* Handshake with server to decide write status */
+   if ((psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1)) > 0)
+   {
+       val->print(PRINT_ERROR, "\tExpected connection to fail but succeed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+   return VAL_STATUS_SUCCESS;
+}
+#else
+int32_t client_test_nspe_read_app_rot_heap(security_t caller)
+{
+   val->print(PRINT_TEST, "[Check 1] Test NSPE reading APP-RoT heap\n", 0);
+   val->print(PRINT_ERROR, "\tSkipping test as heap memory not supported\n", 0);
+   return RESULT_SKIP(VAL_STATUS_HEAP_NOT_AVAILABLE);
+}
+
+int32_t client_test_nspe_write_app_rot_heap(security_t caller)
+{
+   val->print(PRINT_TEST, "[Check 2] Test NSPE writing APP-RoT heap\n", 0);
+   val->print(PRINT_ERROR, "\tSkipping test as heap memory not supported\n", 0);
+   return RESULT_SKIP(VAL_STATUS_HEAP_NOT_AVAILABLE);
+}
+#endif
diff --git a/api-tests/ff/ipc/test_i074/test_i074.h b/api-tests/ff/ipc/test_i074/test_i074.h
new file mode 100644
index 00000000..f6d1d8d5
--- /dev/null
+++ b/api-tests/ff/ipc/test_i074/test_i074.h
@@ -0,0 +1,38 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I074_CLIENT_TESTS_H_
+#define _TEST_I074_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i074)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i074_client_tests_list[];
+
+int32_t client_test_nspe_read_app_rot_heap(security_t);
+int32_t client_test_nspe_write_app_rot_heap(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i074/test_supp_i074.c b/api-tests/ff/ipc/test_i074/test_supp_i074.c
new file mode 100644
index 00000000..cbc790e7
--- /dev/null
+++ b/api-tests/ff/ipc/test_i074/test_supp_i074.c
@@ -0,0 +1,146 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_nspe_read_app_rot_heap(void);
+int32_t server_test_nspe_write_app_rot_heap(void);
+
+#if (SP_HEAP_MEM_SUPP == 1)
+void *malloc(size_t size);
+void free(void *ptr);
+#endif
+
+#define DATA_VALUE_ORG 0x11
+#define BUFFER_SIZE    0x4
+
+server_test_t test_i074_server_tests_list[] = {
+    NULL,
+    server_test_nspe_read_app_rot_heap,
+    server_test_nspe_write_app_rot_heap,
+    NULL,
+};
+
+#if (SP_HEAP_MEM_SUPP == 1)
+static int32_t send_secure_partition_address(uint8_t *heap)
+{
+    int32_t         status = VAL_STATUS_SUCCESS;
+    psa_msg_t       msg = {0};
+
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    {
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return status;
+    }
+
+    psa->reply(msg.handle, PSA_SUCCESS);
+
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    {
+        psa->reply(msg.handle, -2);
+        return status;
+    }
+
+    /* Send Application RoT heap address */
+    psa->write(msg.handle, 0, (void *)heap, sizeof(BUFFER_SIZE));
+    psa->reply(msg.handle, PSA_SUCCESS);
+
+    status = val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    {
+        return status;
+    }
+    psa->reply(msg.handle, PSA_SUCCESS);
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t server_test_nspe_read_app_rot_heap(void)
+{
+    /* Application RoT heap buffer */
+    uint8_t         *buffer;
+    int32_t          status = VAL_STATUS_SUCCESS;
+
+    buffer = (uint8_t *)malloc(sizeof(uint8_t) * BUFFER_SIZE);
+    memset((uint8_t *)buffer, DATA_VALUE_ORG, BUFFER_SIZE);
+
+    status = send_secure_partition_address(buffer);
+    free(buffer);
+
+    return status;
+}
+
+int32_t server_test_nspe_write_app_rot_heap(void)
+{
+    /* Application RoT heap buffer */
+    uint8_t         *buffer;
+    int32_t         status = VAL_STATUS_SUCCESS;
+    psa_msg_t       msg = {0};
+
+    buffer = (uint8_t *)malloc(sizeof(uint8_t) * BUFFER_SIZE);
+    memset((uint8_t *)buffer, DATA_VALUE_ORG, BUFFER_SIZE);
+
+    status = send_secure_partition_address(buffer);
+    if (VAL_ERROR(status))
+        return status;
+
+    /* Wait for write to get performed by client */
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(204), status))
+    {
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return status;
+    }
+
+    /* Connection request is just for handshake, reject connection anyways */
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+
+    /* Reached here means there could be write succeed or ignored */
+    if (buffer[0] == DATA_VALUE_ORG)
+        return VAL_STATUS_SUCCESS;
+
+    val->print(PRINT_ERROR, "\tExpected write to fault but it didn't\n", 0);
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    {
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        return VAL_STATUS_ERROR;
+    }
+
+    free(buffer);
+    return VAL_STATUS_SUCCESS;
+}
+#else
+
+int32_t server_test_nspe_read_app_rot_heap(void)
+{
+    return RESULT_SKIP(VAL_STATUS_HEAP_NOT_AVAILABLE);
+}
+
+int32_t server_test_nspe_write_app_rot_heap(void)
+{
+    return RESULT_SKIP(VAL_STATUS_HEAP_NOT_AVAILABLE);
+}
+#endif
diff --git a/api-tests/ff/ipc/test_i075/source.mk b/api-tests/ff/ipc/test_i075/source.mk
new file mode 100644
index 00000000..db83c871
--- /dev/null
+++ b/api-tests/ff/ipc/test_i075/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i075.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i075.c test_supp_i075.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i075/test_entry.c b/api-tests/ff/ipc/test_i075/test_entry.c
new file mode 100644
index 00000000..1131a5ce
--- /dev/null
+++ b/api-tests/ff/ipc/test_i075/test_entry.c
@@ -0,0 +1,51 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i075.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 75)
+#define TEST_DESC "Testing NSPE access to APP-RoT mmio\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L1, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Execute list of tests available in test[num]_client_tests_list from Non-secure side*/
+    status = val->execute_non_secure_tests(TEST_NUM, test_i075_client_tests_list, TRUE);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i075/test_i075.c b/api-tests/ff/ipc/test_i075/test_i075.c
new file mode 100644
index 00000000..62c7b6ab
--- /dev/null
+++ b/api-tests/ff/ipc/test_i075/test_i075.c
@@ -0,0 +1,127 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_i075.h"
+
+#define DATA_VALUE 0x1234
+
+client_test_t test_i075_client_tests_list[] = {
+    NULL,
+    client_test_nspe_read_app_rot_mmio,
+    client_test_nspe_write_app_rot_mmio,
+    NULL,
+};
+
+static int32_t get_secure_partition_address(addr_t *addr)
+{
+   psa_handle_t            handle = 0;
+
+   handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
+   if (handle < 0)
+   {
+       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+
+   /* Get App-RoT address */
+   psa_outvec outvec[1] = {{addr, sizeof(addr_t)}};
+   if (psa->call(handle, NULL, 0, outvec, 1) != PSA_SUCCESS)
+   {
+       val->print(PRINT_ERROR, "\tmsg request failed\n", 0);
+       return VAL_STATUS_CALL_FAILED;
+   }
+
+   psa->close(handle);
+   return VAL_STATUS_SUCCESS;
+}
+
+int32_t client_test_nspe_read_app_rot_mmio(security_t caller)
+{
+   addr_t   app_rot_addr;
+   uint32_t data = DATA_VALUE;
+
+   val->print(PRINT_TEST, "[Check 1] Test NSPE reading APP-RoT mmio\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&app_rot_addr)))
+       return VAL_STATUS_ERROR;
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_REENTER_TEST))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Read Application RoT mmio address.
+    * This should generate internal fault or ignore the read.
+    */
+   data = *(uint32_t *)app_rot_addr;
+
+   /* Did read ignore? */
+   if (data == DATA_VALUE)
+        return VAL_STATUS_SUCCESS;
+
+   val->print(PRINT_ERROR, "\tExpected read to fault but it didn't\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   return VAL_STATUS_SPM_FAILED;
+}
+
+int32_t client_test_nspe_write_app_rot_mmio(security_t caller)
+{
+   addr_t   app_rot_addr;
+   uint32_t data = DATA_VALUE;
+
+   val->print(PRINT_TEST, "[Check 2] Test NSPE writing APP-RoT mmio\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&app_rot_addr)))
+       return VAL_STATUS_ERROR;
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_NS))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Write Application RoT mmio address.
+    * This should generate internal fault or ignore the write.
+    */
+   *(uint32_t *)app_rot_addr = (uint32_t)data;
+
+   /* Handshake with server to decide write status */
+   if ((psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1)) > 0)
+   {
+       val->print(PRINT_ERROR, "\tExpected connection to fail but succeed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i075/test_i075.h b/api-tests/ff/ipc/test_i075/test_i075.h
new file mode 100644
index 00000000..5cae303d
--- /dev/null
+++ b/api-tests/ff/ipc/test_i075/test_i075.h
@@ -0,0 +1,38 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I075_CLIENT_TESTS_H_
+#define _TEST_I075_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i075)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i075_client_tests_list[];
+
+int32_t client_test_nspe_read_app_rot_mmio(security_t);
+int32_t client_test_nspe_write_app_rot_mmio(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i075/test_supp_i075.c b/api-tests/ff/ipc/test_i075/test_supp_i075.c
new file mode 100644
index 00000000..b98fffba
--- /dev/null
+++ b/api-tests/ff/ipc/test_i075/test_supp_i075.c
@@ -0,0 +1,143 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_nspe_read_app_rot_mmio(void);
+int32_t server_test_nspe_write_app_rot_mmio(void);
+
+#define DATA_VALUE 0x5467
+
+server_test_t test_i075_server_tests_list[] = {
+    NULL,
+    server_test_nspe_read_app_rot_mmio,
+    server_test_nspe_write_app_rot_mmio,
+    NULL,
+};
+
+static int32_t get_mmio_addr(addr_t *addr)
+{
+   memory_desc_t           *memory_desc;
+   int32_t                 status = VAL_STATUS_SUCCESS;
+
+   /* Get APP-ROT MMIO address */
+   status = val->target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MEMORY,
+                                  MEMORY_SERVER_PARTITION_MMIO, 0),
+                                  (uint8_t **)&memory_desc,
+                                  (uint32_t *)sizeof(memory_desc_t));
+   if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
+   {
+       return status;
+   }
+
+   *addr = memory_desc->start;
+   return VAL_STATUS_SUCCESS;
+}
+
+static int32_t send_secure_partition_address(addr_t *stack)
+{
+    int32_t         status = VAL_STATUS_SUCCESS;
+    psa_msg_t       msg = {0};
+
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    {
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return status;
+    }
+
+    psa->reply(msg.handle, PSA_SUCCESS);
+
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    {
+        psa->reply(msg.handle, -2);
+        return status;
+    }
+
+    /* Send Application RoT stack address */
+    psa->write(msg.handle, 0, (void *)stack, sizeof(uint32_t));
+    psa->reply(msg.handle, PSA_SUCCESS);
+
+    status = val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(204), status))
+    {
+        return status;
+    }
+    psa->reply(msg.handle, PSA_SUCCESS);
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t server_test_nspe_read_app_rot_mmio(void)
+{
+    int32_t         status = VAL_STATUS_SUCCESS;
+    addr_t          app_rot_addr;
+
+    status = get_mmio_addr(&app_rot_addr);
+    if (VAL_ERROR(status))
+        return status;
+
+    return send_secure_partition_address(&app_rot_addr);
+}
+
+int32_t server_test_nspe_write_app_rot_mmio(void)
+{
+    addr_t          app_rot_addr;
+    int32_t         status = VAL_STATUS_SUCCESS;
+    psa_msg_t       msg = {0};
+
+    status = get_mmio_addr(&app_rot_addr);
+    if (VAL_ERROR(status))
+        return status;
+
+    /* Initialise mmio address */
+    *(uint32_t *)app_rot_addr = (uint32_t)DATA_VALUE;
+    status = send_secure_partition_address(&app_rot_addr);
+    if (VAL_ERROR(status))
+        return status;
+
+    /* Wait for write to get performed by client */
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(204), status))
+    {
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return status;
+    }
+
+    /* Connection request is just for handshake, reject connection anyways */
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+
+    /* Reached here means there could be write succeed or ignored */
+    if (*(uint32_t *)app_rot_addr == (uint32_t)DATA_VALUE)
+        return VAL_STATUS_SUCCESS;
+
+    val->print(PRINT_ERROR, "\tExpected write to fault but it didn't\n", 0);
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    {
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        return VAL_STATUS_ERROR;
+    }
+    return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i076/source.mk b/api-tests/ff/ipc/test_i076/source.mk
new file mode 100644
index 00000000..e98fc9db
--- /dev/null
+++ b/api-tests/ff/ipc/test_i076/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i076.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i076.c test_supp_i076.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i076/test_entry.c b/api-tests/ff/ipc/test_i076/test_entry.c
new file mode 100644
index 00000000..f26e4f87
--- /dev/null
+++ b/api-tests/ff/ipc/test_i076/test_entry.c
@@ -0,0 +1,51 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i076.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 76)
+#define TEST_DESC "Testing NSPE access to PSA-RoT data\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L1, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Execute list of tests available in test[num]_client_tests_list from Non-secure side*/
+    status = val->execute_non_secure_tests(TEST_NUM, test_i076_client_tests_list, TRUE);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i076/test_i076.c b/api-tests/ff/ipc/test_i076/test_i076.c
new file mode 100644
index 00000000..3fc077ba
--- /dev/null
+++ b/api-tests/ff/ipc/test_i076/test_i076.c
@@ -0,0 +1,144 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_i076.h"
+
+#define DATA_VALUE1 0x1234
+
+client_test_t test_i076_client_tests_list[] = {
+    NULL,
+    client_test_nspe_read_psa_rot_variable,
+    client_test_nspe_write_psa_rot_variable,
+    NULL,
+};
+
+static int32_t get_secure_partition_address(psa_handle_t *handle,
+                                            addr_t *addr,
+                                            driver_test_fn_id_t test_fn_id)
+{
+   *handle = psa->connect(DRIVER_TEST_SID, 1);
+   if (*handle < 0)
+   {
+       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+
+   /* Execute driver function related to TEST_ISOLATION_PSA_ROT_* */
+   psa_invec invec[1] = {{&test_fn_id, sizeof(test_fn_id)}};
+   psa_outvec outvec[1] = {{addr, sizeof(addr_t)}};
+   if (psa->call(*handle, invec, 1, outvec, 1) != PSA_SUCCESS)
+   {
+       val->print(PRINT_ERROR, "\tmsg request failed\n", 0);
+       return VAL_STATUS_CALL_FAILED;
+   }
+
+   return VAL_STATUS_SUCCESS;
+}
+
+static int32_t get_driver_status(psa_handle_t *handle)
+{
+   if (psa->call(*handle, NULL, 0, NULL, 0) != PSA_SUCCESS)
+   {
+       return VAL_STATUS_CALL_FAILED;
+   }
+   return VAL_STATUS_SUCCESS;
+}
+
+static void close_driver_fn(psa_handle_t *handle)
+{
+   psa->close(*handle);
+}
+
+int32_t client_test_nspe_read_psa_rot_variable(security_t caller)
+{
+   addr_t       psa_rot_addr;
+   uint32_t     data = DATA_VALUE1;
+   psa_handle_t handle = 0;
+
+   val->print(PRINT_TEST, "[Check 1] Test NSPE reading PSA-RoT data\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&handle,
+                                              &psa_rot_addr,
+                                              TEST_ISOLATION_PSA_ROT_DATA_RD)))
+       return VAL_STATUS_ERROR;
+
+   close_driver_fn(&handle);
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_REENTER_TEST))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Read PSA RoT global variable address.
+    * This should generate internal fault or ignore the read.
+    */
+   data = *(uint32_t *)psa_rot_addr;
+
+   /* Did read ignore? */
+   if (data == DATA_VALUE1)
+        return VAL_STATUS_SUCCESS;
+
+   val->print(PRINT_ERROR, "\tExpected read to fault but it didn't\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   return VAL_STATUS_SPM_FAILED;
+}
+
+int32_t client_test_nspe_write_psa_rot_variable(security_t caller)
+{
+   addr_t       psa_rot_addr;
+   uint32_t     data = DATA_VALUE1;
+   psa_handle_t handle = 0;
+
+   val->print(PRINT_TEST, "[Check 2] Test NSPE writing PSA-RoT data\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&handle,
+                                              &psa_rot_addr,
+                                              TEST_ISOLATION_PSA_ROT_DATA_WR)))
+       return VAL_STATUS_ERROR;
+
+   /* Write PSA RoT global variable address.
+    * This should generate internal fault or ignore the write.
+    */
+   *(uint32_t *)psa_rot_addr = (uint32_t)data;
+
+   /* Handshake with driver to decide write status */
+   if (VAL_ERROR(get_driver_status(&handle)))
+   {
+       close_driver_fn(&handle);
+       return VAL_STATUS_DRIVER_FN_FAILED;
+   }
+
+   close_driver_fn(&handle);
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i076/test_i076.h b/api-tests/ff/ipc/test_i076/test_i076.h
new file mode 100644
index 00000000..1e5e11f5
--- /dev/null
+++ b/api-tests/ff/ipc/test_i076/test_i076.h
@@ -0,0 +1,38 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I076_CLIENT_TESTS_H_
+#define _TEST_I076_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i076)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i076_client_tests_list[];
+
+int32_t client_test_nspe_read_psa_rot_variable(security_t);
+int32_t client_test_nspe_write_psa_rot_variable(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i076/test_supp_i076.c b/api-tests/ff/ipc/test_i076/test_supp_i076.c
new file mode 100644
index 00000000..c32ec2fb
--- /dev/null
+++ b/api-tests/ff/ipc/test_i076/test_supp_i076.c
@@ -0,0 +1,44 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_nspe_read_psa_rot_variable(void);
+int32_t server_test_nspe_write_psa_rot_variable(void);
+
+server_test_t test_i076_server_tests_list[] = {
+    NULL,
+    server_test_nspe_read_psa_rot_variable,
+    server_test_nspe_write_psa_rot_variable,
+    NULL,
+};
+
+int32_t server_test_nspe_read_psa_rot_variable(void)
+{
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t server_test_nspe_write_psa_rot_variable(void)
+{
+    return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i077/source.mk b/api-tests/ff/ipc/test_i077/source.mk
new file mode 100644
index 00000000..e1abcb0e
--- /dev/null
+++ b/api-tests/ff/ipc/test_i077/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i077.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i077.c test_supp_i077.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i077/test_entry.c b/api-tests/ff/ipc/test_i077/test_entry.c
new file mode 100644
index 00000000..08fa84f7
--- /dev/null
+++ b/api-tests/ff/ipc/test_i077/test_entry.c
@@ -0,0 +1,51 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i077.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 77)
+#define TEST_DESC "Testing NSPE access to PSA-RoT stack\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L1, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Execute list of tests available in test[num]_client_tests_list from Non-secure side*/
+    status = val->execute_non_secure_tests(TEST_NUM, test_i077_client_tests_list, TRUE);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i077/test_i077.c b/api-tests/ff/ipc/test_i077/test_i077.c
new file mode 100644
index 00000000..5f4e4d74
--- /dev/null
+++ b/api-tests/ff/ipc/test_i077/test_i077.c
@@ -0,0 +1,145 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_i077.h"
+
+#define DATA_VALUE1 0x1234
+
+client_test_t test_i077_client_tests_list[] = {
+    NULL,
+    client_test_nspe_read_psa_rot_stack,
+    client_test_nspe_write_psa_rot_stack,
+    NULL,
+};
+
+static int32_t get_secure_partition_address(psa_handle_t *handle,
+                                            addr_t *addr,
+                                            driver_test_fn_id_t test_fn_id)
+{
+   *handle = psa->connect(DRIVER_TEST_SID, 1);
+   if (*handle < 0)
+   {
+       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+
+   /* Execute driver function related to TEST_ISOLATION_PSA_ROT_DATA_RD */
+   psa_invec invec[1] = {{&test_fn_id, sizeof(test_fn_id)}};
+   psa_outvec outvec[1] = {{addr, sizeof(addr_t)}};
+   if (psa->call(*handle, invec, 1, outvec, 1) != PSA_SUCCESS)
+   {
+       val->print(PRINT_ERROR, "\tmsg request failed\n", 0);
+       return VAL_STATUS_CALL_FAILED;
+   }
+
+   return VAL_STATUS_SUCCESS;
+}
+
+static int32_t get_driver_status(psa_handle_t *handle)
+{
+   if (psa->call(*handle, NULL, 0, NULL, 0) != PSA_SUCCESS)
+   {
+       return VAL_STATUS_CALL_FAILED;
+   }
+   return VAL_STATUS_SUCCESS;
+}
+
+static void close_driver_fn(psa_handle_t *handle)
+{
+   psa->close(*handle);
+}
+
+
+int32_t client_test_nspe_read_psa_rot_stack(security_t caller)
+{
+   addr_t       psa_rot_addr;
+   uint32_t     data = DATA_VALUE1;
+   psa_handle_t handle = 0;
+
+   val->print(PRINT_TEST, "[Check 1] Test NSPE reading PSA-RoT stack\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&handle,
+                                              &psa_rot_addr,
+                                              TEST_ISOLATION_PSA_ROT_STACK_RD)))
+       return VAL_STATUS_ERROR;
+
+   close_driver_fn(&handle);
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_REENTER_TEST))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Read PSA RoT stack address.
+    * This should generate internal fault or ignore the read.
+    */
+   data = *(uint32_t *)psa_rot_addr;
+
+   /* Did read ignore? */
+   if (data == DATA_VALUE1)
+        return VAL_STATUS_SUCCESS;
+
+   val->print(PRINT_ERROR, "\tExpected read to fault but it didn't\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   return VAL_STATUS_SPM_FAILED;
+}
+
+int32_t client_test_nspe_write_psa_rot_stack(security_t caller)
+{
+   addr_t       psa_rot_addr;
+   uint32_t     data = DATA_VALUE1;
+   psa_handle_t handle = 0;
+
+   val->print(PRINT_TEST, "[Check 2] Test NSPE writing PSA-RoT stack\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&handle,
+                                              &psa_rot_addr,
+                                              TEST_ISOLATION_PSA_ROT_STACK_WR)))
+       return VAL_STATUS_ERROR;
+
+   /* Write PSA RoT stack address.
+    * This should generate internal fault or ignore the write.
+    */
+   *(uint32_t *)psa_rot_addr = (uint32_t)data;
+
+   /* Handshake with driver to decide write status */
+   if (VAL_ERROR(get_driver_status(&handle)))
+   {
+       close_driver_fn(&handle);
+       return VAL_STATUS_DRIVER_FN_FAILED;
+   }
+
+   close_driver_fn(&handle);
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i077/test_i077.h b/api-tests/ff/ipc/test_i077/test_i077.h
new file mode 100644
index 00000000..57a36a86
--- /dev/null
+++ b/api-tests/ff/ipc/test_i077/test_i077.h
@@ -0,0 +1,38 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I077_CLIENT_TESTS_H_
+#define _TEST_I077_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i077)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i077_client_tests_list[];
+
+int32_t client_test_nspe_read_psa_rot_stack(security_t);
+int32_t client_test_nspe_write_psa_rot_stack(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i077/test_supp_i077.c b/api-tests/ff/ipc/test_i077/test_supp_i077.c
new file mode 100644
index 00000000..03a42175
--- /dev/null
+++ b/api-tests/ff/ipc/test_i077/test_supp_i077.c
@@ -0,0 +1,44 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_nspe_read_psa_rot_stack(void);
+int32_t server_test_nspe_write_psa_rot_stack(void);
+
+server_test_t test_i077_server_tests_list[] = {
+    NULL,
+    server_test_nspe_read_psa_rot_stack,
+    server_test_nspe_write_psa_rot_stack,
+    NULL,
+};
+
+int32_t server_test_nspe_read_psa_rot_stack(void)
+{
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t server_test_nspe_write_psa_rot_stack(void)
+{
+    return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i078/source.mk b/api-tests/ff/ipc/test_i078/source.mk
new file mode 100644
index 00000000..628a2821
--- /dev/null
+++ b/api-tests/ff/ipc/test_i078/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i078.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i078.c test_supp_i078.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i078/test_entry.c b/api-tests/ff/ipc/test_i078/test_entry.c
new file mode 100644
index 00000000..d0ae79a1
--- /dev/null
+++ b/api-tests/ff/ipc/test_i078/test_entry.c
@@ -0,0 +1,51 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i078.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 78)
+#define TEST_DESC "Testing NSPE access to PSA-RoT heap\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L1, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Execute list of tests available in test[num]_client_tests_list from Non-secure side*/
+    status = val->execute_non_secure_tests(TEST_NUM, test_i078_client_tests_list, TRUE);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i078/test_i078.c b/api-tests/ff/ipc/test_i078/test_i078.c
new file mode 100644
index 00000000..338b781a
--- /dev/null
+++ b/api-tests/ff/ipc/test_i078/test_i078.c
@@ -0,0 +1,162 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_i078.h"
+
+#define DATA_VALUE_ORG 0x11
+#define DATA_VALUE     0x12
+#define BUFFER_SIZE    0x4
+
+client_test_t test_i078_client_tests_list[] = {
+    NULL,
+    client_test_nspe_read_psa_rot_heap,
+    client_test_nspe_write_psa_rot_heap,
+    NULL,
+};
+
+#if (SP_HEAP_MEM_SUPP == 1)
+static int32_t get_secure_partition_address(psa_handle_t *handle,
+                                            addr_t *addr,
+                                            driver_test_fn_id_t test_fn_id)
+{
+   *handle = psa->connect(DRIVER_TEST_SID, 1);
+   if (*handle < 0)
+   {
+       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+
+   /* Execute driver function related to TEST_ISOLATION_PSA_ROT_DATA_RD */
+   psa_invec invec[1] = {{&test_fn_id, sizeof(test_fn_id)}};
+   psa_outvec outvec[1] = {{addr, sizeof(addr_t)}};
+   if (psa->call(*handle, invec, 1, outvec, 1) != PSA_SUCCESS)
+   {
+       val->print(PRINT_ERROR, "\tmsg request failed\n", 0);
+       return VAL_STATUS_CALL_FAILED;
+   }
+
+   return VAL_STATUS_SUCCESS;
+}
+
+static int32_t get_driver_status(psa_handle_t *handle)
+{
+   if (psa->call(*handle, NULL, 0, NULL, 0) != PSA_SUCCESS)
+   {
+       return VAL_STATUS_CALL_FAILED;
+   }
+   return VAL_STATUS_SUCCESS;
+}
+
+static void close_driver_fn(psa_handle_t *handle)
+{
+   psa->close(*handle);
+}
+
+int32_t client_test_nspe_read_psa_rot_heap(security_t caller)
+{
+   addr_t       psa_rot_addr;
+   uint8_t      data = DATA_VALUE;
+   psa_handle_t handle = 0;
+
+   val->print(PRINT_TEST, "[Check 1] Test NSPE reading PSA-RoT heap\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&handle,
+                                              &psa_rot_addr,
+                                              TEST_ISOLATION_PSA_ROT_HEAP_RD)))
+       return VAL_STATUS_ERROR;
+
+   close_driver_fn(&handle);
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_REENTER_TEST))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Read PSA RoT heap address.
+    * This should generate internal fault or ignore the read.
+    */
+   data = *(uint8_t *)psa_rot_addr;
+
+   /* Did read ignore? */
+   if (data == DATA_VALUE)
+        return VAL_STATUS_SUCCESS;
+
+   val->print(PRINT_ERROR, "\tExpected read to fault but it didn't\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   return VAL_STATUS_SPM_FAILED;
+}
+
+int32_t client_test_nspe_write_psa_rot_heap(security_t caller)
+{
+   addr_t       psa_rot_addr;
+   uint8_t      data = DATA_VALUE;
+   psa_handle_t handle = 0;
+
+   val->print(PRINT_TEST, "[Check 2] Test NSPE writing PSA-RoT heap\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&handle,
+                                              &psa_rot_addr,
+                                              TEST_ISOLATION_PSA_ROT_HEAP_WR)))
+       return VAL_STATUS_ERROR;
+
+   /* Write PSA RoT heap address.
+    * This should generate internal fault or ignore the write.
+    */
+   *(uint8_t *)psa_rot_addr = (uint8_t)data;
+
+   /* Handshake with driver to decide write status */
+   if (VAL_ERROR(get_driver_status(&handle)))
+   {
+       close_driver_fn(&handle);
+       return VAL_STATUS_DRIVER_FN_FAILED;
+   }
+
+   close_driver_fn(&handle);
+   return VAL_STATUS_SUCCESS;
+}
+#else
+int32_t client_test_nspe_read_psa_rot_heap(security_t caller)
+{
+   val->print(PRINT_TEST, "[Check 1] Test NSPE reading PSA-RoT heap\n", 0);
+   val->print(PRINT_ERROR, "\tSkipping test as heap memory not supported\n", 0);
+   return RESULT_SKIP(VAL_STATUS_HEAP_NOT_AVAILABLE);
+}
+
+int32_t client_test_nspe_write_psa_rot_heap(security_t caller)
+{
+   val->print(PRINT_TEST, "[Check 2] Test NSPE writing PSA-RoT heap\n", 0);
+   val->print(PRINT_ERROR, "\tSkipping test as heap memory not supported\n", 0);
+   return RESULT_SKIP(VAL_STATUS_HEAP_NOT_AVAILABLE);
+}
+#endif
diff --git a/api-tests/ff/ipc/test_i078/test_i078.h b/api-tests/ff/ipc/test_i078/test_i078.h
new file mode 100644
index 00000000..207f8d35
--- /dev/null
+++ b/api-tests/ff/ipc/test_i078/test_i078.h
@@ -0,0 +1,38 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I078_CLIENT_TESTS_H_
+#define _TEST_I078_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i078)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i078_client_tests_list[];
+
+int32_t client_test_nspe_read_psa_rot_heap(security_t);
+int32_t client_test_nspe_write_psa_rot_heap(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i078/test_supp_i078.c b/api-tests/ff/ipc/test_i078/test_supp_i078.c
new file mode 100644
index 00000000..0b5f67f2
--- /dev/null
+++ b/api-tests/ff/ipc/test_i078/test_supp_i078.c
@@ -0,0 +1,44 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_nspe_read_psa_rot_heap(void);
+int32_t server_test_nspe_write_psa_rot_heap(void);
+
+server_test_t test_i078_server_tests_list[] = {
+    NULL,
+    server_test_nspe_read_psa_rot_heap,
+    server_test_nspe_write_psa_rot_heap,
+    NULL,
+};
+
+int32_t server_test_nspe_read_psa_rot_heap(void)
+{
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t server_test_nspe_write_psa_rot_heap(void)
+{
+    return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i079/source.mk b/api-tests/ff/ipc/test_i079/source.mk
new file mode 100644
index 00000000..09026a8a
--- /dev/null
+++ b/api-tests/ff/ipc/test_i079/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i079.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i079.c test_supp_i079.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i079/test_entry.c b/api-tests/ff/ipc/test_i079/test_entry.c
new file mode 100644
index 00000000..131a15b6
--- /dev/null
+++ b/api-tests/ff/ipc/test_i079/test_entry.c
@@ -0,0 +1,51 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i079.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 79)
+#define TEST_DESC "Testing NSPE access to PSA-RoT mmio\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L1, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Execute list of tests available in test[num]_client_tests_list from Non-secure side*/
+    status = val->execute_non_secure_tests(TEST_NUM, test_i079_client_tests_list, TRUE);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i079/test_i079.c b/api-tests/ff/ipc/test_i079/test_i079.c
new file mode 100644
index 00000000..11c66f8f
--- /dev/null
+++ b/api-tests/ff/ipc/test_i079/test_i079.c
@@ -0,0 +1,144 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_i079.h"
+
+#define DATA_VALUE 0x1234
+
+client_test_t test_i079_client_tests_list[] = {
+    NULL,
+    client_test_nspe_read_psa_rot_mmio,
+    client_test_nspe_write_psa_rot_mmio,
+    NULL,
+};
+
+static int32_t get_secure_partition_address(psa_handle_t *handle,
+                                            addr_t *addr,
+                                            driver_test_fn_id_t test_fn_id)
+{
+   *handle = psa->connect(DRIVER_TEST_SID, 1);
+   if (*handle < 0)
+   {
+       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+
+   /* Execute driver function related to TEST_ISOLATION_PSA_ROT_DATA_RD */
+   psa_invec invec[1] = {{&test_fn_id, sizeof(test_fn_id)}};
+   psa_outvec outvec[1] = {{addr, sizeof(addr_t)}};
+   if (psa->call(*handle, invec, 1, outvec, 1) != PSA_SUCCESS)
+   {
+       val->print(PRINT_ERROR, "\tmsg request failed\n", 0);
+       return VAL_STATUS_CALL_FAILED;
+   }
+
+   return VAL_STATUS_SUCCESS;
+}
+
+static int32_t get_driver_status(psa_handle_t *handle)
+{
+   if (psa->call(*handle, NULL, 0, NULL, 0) != PSA_SUCCESS)
+   {
+       return VAL_STATUS_CALL_FAILED;
+   }
+   return VAL_STATUS_SUCCESS;
+}
+
+static void close_driver_fn(psa_handle_t *handle)
+{
+   psa->close(*handle);
+}
+
+int32_t client_test_nspe_read_psa_rot_mmio(security_t caller)
+{
+   addr_t       psa_rot_addr;
+   uint32_t     data = DATA_VALUE;
+   psa_handle_t handle = 0;
+
+   val->print(PRINT_TEST, "[Check 1] Test NSPE reading PSA-RoT mmio\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&handle,
+                                              &psa_rot_addr,
+                                              TEST_ISOLATION_PSA_ROT_MMIO_RD)))
+       return VAL_STATUS_ERROR;
+
+   close_driver_fn(&handle);
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_REENTER_TEST))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Read PSA RoT mmio address.
+    * This should generate internal fault or ignore the read.
+    */
+   data = *(uint32_t *)psa_rot_addr;
+
+   /* Did read ignore? */
+   if (data == DATA_VALUE)
+        return VAL_STATUS_SUCCESS;
+
+   val->print(PRINT_ERROR, "\tExpected read to fault but it didn't\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   return VAL_STATUS_SPM_FAILED;
+}
+
+int32_t client_test_nspe_write_psa_rot_mmio(security_t caller)
+{
+   addr_t       psa_rot_addr;
+   uint32_t     data = DATA_VALUE;
+   psa_handle_t handle = 0;
+
+   val->print(PRINT_TEST, "[Check 2] Test NSPE writing PSA-RoT mmio\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&handle,
+                                              &psa_rot_addr,
+                                              TEST_ISOLATION_PSA_ROT_MMIO_WR)))
+       return VAL_STATUS_ERROR;
+
+   /* Write PSA RoT mmio address.
+    * This should generate internal fault or ignore the write.
+    */
+   *(uint32_t *)psa_rot_addr = (uint32_t)data;
+
+   /* Handshake with driver to decide write status */
+   if (VAL_ERROR(get_driver_status(&handle)))
+   {
+       close_driver_fn(&handle);
+       return VAL_STATUS_DRIVER_FN_FAILED;
+   }
+
+   close_driver_fn(&handle);
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i079/test_i079.h b/api-tests/ff/ipc/test_i079/test_i079.h
new file mode 100644
index 00000000..c5ab49cf
--- /dev/null
+++ b/api-tests/ff/ipc/test_i079/test_i079.h
@@ -0,0 +1,38 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I079_CLIENT_TESTS_H_
+#define _TEST_I079_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i079)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i079_client_tests_list[];
+
+int32_t client_test_nspe_read_psa_rot_mmio(security_t);
+int32_t client_test_nspe_write_psa_rot_mmio(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i079/test_supp_i079.c b/api-tests/ff/ipc/test_i079/test_supp_i079.c
new file mode 100644
index 00000000..24a0f89f
--- /dev/null
+++ b/api-tests/ff/ipc/test_i079/test_supp_i079.c
@@ -0,0 +1,46 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_nspe_read_psa_rot_mmio(void);
+int32_t server_test_nspe_write_psa_rot_mmio(void);
+
+#define DATA_VALUE 0x5467
+
+server_test_t test_i079_server_tests_list[] = {
+    NULL,
+    server_test_nspe_read_psa_rot_mmio,
+    server_test_nspe_write_psa_rot_mmio,
+    NULL,
+};
+
+int32_t server_test_nspe_read_psa_rot_mmio(void)
+{
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t server_test_nspe_write_psa_rot_mmio(void)
+{
+    return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i080/source.mk b/api-tests/ff/ipc/test_i080/source.mk
new file mode 100644
index 00000000..0b19b917
--- /dev/null
+++ b/api-tests/ff/ipc/test_i080/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i080.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i080.c test_supp_i080.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i080/test_entry.c b/api-tests/ff/ipc/test_i080/test_entry.c
new file mode 100644
index 00000000..ee50dd68
--- /dev/null
+++ b/api-tests/ff/ipc/test_i080/test_entry.c
@@ -0,0 +1,52 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i080.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 80)
+#define TEST_DESC "Testing APP-RoT access to PSA-RoT data\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L2, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Switch to secure side (client_partition.c) and execute list of tests available in
+    test[num]_client_tests_list from Secure side */
+    status = val->switch_to_secure_client(TEST_NUM);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i080/test_i080.c b/api-tests/ff/ipc/test_i080/test_i080.c
new file mode 100644
index 00000000..bd1bd368
--- /dev/null
+++ b/api-tests/ff/ipc/test_i080/test_i080.c
@@ -0,0 +1,144 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_i080.h"
+
+#define DATA_VALUE1 0x1234
+
+client_test_t test_i080_client_tests_list[] = {
+    NULL,
+    client_test_app_rot_read_psa_rot_variable,
+    client_test_app_rot_write_psa_rot_variable,
+    NULL,
+};
+
+static int32_t get_secure_partition_address(psa_handle_t *handle,
+                                            addr_t *addr,
+                                            driver_test_fn_id_t test_fn_id)
+{
+   *handle = psa->connect(DRIVER_TEST_SID, 1);
+   if (*handle < 0)
+   {
+       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+
+   /* Execute driver function related to TEST_ISOLATION_PSA_ROT_* */
+   psa_invec invec[1] = {{&test_fn_id, sizeof(test_fn_id)}};
+   psa_outvec outvec[1] = {{addr, sizeof(addr_t)}};
+   if (psa->call(*handle, invec, 1, outvec, 1) != PSA_SUCCESS)
+   {
+       val->print(PRINT_ERROR, "\tmsg request failed\n", 0);
+       return VAL_STATUS_CALL_FAILED;
+   }
+
+   return VAL_STATUS_SUCCESS;
+}
+
+static int32_t get_driver_status(psa_handle_t *handle)
+{
+   if (psa->call(*handle, NULL, 0, NULL, 0) != PSA_SUCCESS)
+   {
+       return VAL_STATUS_CALL_FAILED;
+   }
+   return VAL_STATUS_SUCCESS;
+}
+
+static void close_driver_fn(psa_handle_t *handle)
+{
+   psa->close(*handle);
+}
+
+int32_t client_test_app_rot_read_psa_rot_variable(security_t caller)
+{
+   addr_t       psa_rot_addr;
+   uint32_t     data = DATA_VALUE1;
+   psa_handle_t handle = 0;
+
+   val->print(PRINT_TEST, "[Check 1] Test APP-RoT reading PSA-RoT data\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&handle,
+                                              &psa_rot_addr,
+                                              TEST_ISOLATION_PSA_ROT_DATA_RD)))
+       return VAL_STATUS_ERROR;
+
+   close_driver_fn(&handle);
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_REENTER_TEST))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Read PSA RoT global variable address.
+    * This should generate internal fault or ignore the read.
+    */
+   data = *(uint32_t *)psa_rot_addr;
+
+   /* Did read ignore? */
+   if (data == DATA_VALUE1)
+        return VAL_STATUS_SUCCESS;
+
+   val->print(PRINT_ERROR, "\tExpected read to fault but it didn't\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   return VAL_STATUS_SPM_FAILED;
+}
+
+int32_t client_test_app_rot_write_psa_rot_variable(security_t caller)
+{
+   addr_t       psa_rot_addr;
+   uint32_t     data = DATA_VALUE1;
+   psa_handle_t handle = 0;
+
+   val->print(PRINT_TEST, "[Check 2] Test APP-RoT writing PSA-RoT data\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&handle,
+                                              &psa_rot_addr,
+                                              TEST_ISOLATION_PSA_ROT_DATA_WR)))
+       return VAL_STATUS_ERROR;
+
+   /* Write PSA RoT global variable address.
+    * This should generate internal fault or ignore the write.
+    */
+   *(uint32_t *)psa_rot_addr = (uint32_t)data;
+
+   /* Handshake with driver to decide write status */
+   if (VAL_ERROR(get_driver_status(&handle)))
+   {
+       close_driver_fn(&handle);
+       return VAL_STATUS_DRIVER_FN_FAILED;
+   }
+
+   close_driver_fn(&handle);
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i080/test_i080.h b/api-tests/ff/ipc/test_i080/test_i080.h
new file mode 100644
index 00000000..fdbe7e91
--- /dev/null
+++ b/api-tests/ff/ipc/test_i080/test_i080.h
@@ -0,0 +1,38 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I080_CLIENT_TESTS_H_
+#define _TEST_I080_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i080)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i080_client_tests_list[];
+
+int32_t client_test_app_rot_read_psa_rot_variable(security_t);
+int32_t client_test_app_rot_write_psa_rot_variable(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i080/test_supp_i080.c b/api-tests/ff/ipc/test_i080/test_supp_i080.c
new file mode 100644
index 00000000..cd022639
--- /dev/null
+++ b/api-tests/ff/ipc/test_i080/test_supp_i080.c
@@ -0,0 +1,44 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_app_rot_read_psa_rot_variable(void);
+int32_t server_test_app_rot_write_psa_rot_variable(void);
+
+server_test_t test_i080_server_tests_list[] = {
+    NULL,
+    server_test_app_rot_read_psa_rot_variable,
+    server_test_app_rot_write_psa_rot_variable,
+    NULL,
+};
+
+int32_t server_test_app_rot_read_psa_rot_variable(void)
+{
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t server_test_app_rot_write_psa_rot_variable(void)
+{
+    return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i081/source.mk b/api-tests/ff/ipc/test_i081/source.mk
new file mode 100644
index 00000000..f84c2cb6
--- /dev/null
+++ b/api-tests/ff/ipc/test_i081/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i081.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i081.c test_supp_i081.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i081/test_entry.c b/api-tests/ff/ipc/test_i081/test_entry.c
new file mode 100644
index 00000000..2a69daf2
--- /dev/null
+++ b/api-tests/ff/ipc/test_i081/test_entry.c
@@ -0,0 +1,52 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i081.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 81)
+#define TEST_DESC "Testing APP-RoT access to PSA-RoT stack\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L2, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Switch to secure side (client_partition.c) and execute list of tests available in
+    test[num]_client_tests_list from Secure side */
+    status = val->switch_to_secure_client(TEST_NUM);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i081/test_i081.c b/api-tests/ff/ipc/test_i081/test_i081.c
new file mode 100644
index 00000000..42c07658
--- /dev/null
+++ b/api-tests/ff/ipc/test_i081/test_i081.c
@@ -0,0 +1,145 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_i081.h"
+
+#define DATA_VALUE1 0x1234
+
+client_test_t test_i081_client_tests_list[] = {
+    NULL,
+    client_test_app_rot_read_psa_rot_stack,
+    client_test_app_rot_write_psa_rot_stack,
+    NULL,
+};
+
+static int32_t get_secure_partition_address(psa_handle_t *handle,
+                                            addr_t *addr,
+                                            driver_test_fn_id_t test_fn_id)
+{
+   *handle = psa->connect(DRIVER_TEST_SID, 1);
+   if (*handle < 0)
+   {
+       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+
+   /* Execute driver function related to TEST_ISOLATION_PSA_ROT_DATA_RD */
+   psa_invec invec[1] = {{&test_fn_id, sizeof(test_fn_id)}};
+   psa_outvec outvec[1] = {{addr, sizeof(addr_t)}};
+   if (psa->call(*handle, invec, 1, outvec, 1) != PSA_SUCCESS)
+   {
+       val->print(PRINT_ERROR, "\tmsg request failed\n", 0);
+       return VAL_STATUS_CALL_FAILED;
+   }
+
+   return VAL_STATUS_SUCCESS;
+}
+
+static int32_t get_driver_status(psa_handle_t *handle)
+{
+   if (psa->call(*handle, NULL, 0, NULL, 0) != PSA_SUCCESS)
+   {
+       return VAL_STATUS_CALL_FAILED;
+   }
+   return VAL_STATUS_SUCCESS;
+}
+
+static void close_driver_fn(psa_handle_t *handle)
+{
+   psa->close(*handle);
+}
+
+
+int32_t client_test_app_rot_read_psa_rot_stack(security_t caller)
+{
+   addr_t       psa_rot_addr;
+   uint32_t     data = DATA_VALUE1;
+   psa_handle_t handle = 0;
+
+   val->print(PRINT_TEST, "[Check 1] Test APP-RoT reading PSA-RoT stack\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&handle,
+                                              &psa_rot_addr,
+                                              TEST_ISOLATION_PSA_ROT_STACK_RD)))
+       return VAL_STATUS_ERROR;
+
+   close_driver_fn(&handle);
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_REENTER_TEST))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Read PSA RoT stack address.
+    * This should generate internal fault or ignore the read.
+    */
+   data = *(uint32_t *)psa_rot_addr;
+
+   /* Did read ignore? */
+   if (data == DATA_VALUE1)
+        return VAL_STATUS_SUCCESS;
+
+   val->print(PRINT_ERROR, "\tExpected read to fault but it didn't\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   return VAL_STATUS_SPM_FAILED;
+}
+
+int32_t client_test_app_rot_write_psa_rot_stack(security_t caller)
+{
+   addr_t       psa_rot_addr;
+   uint32_t     data = DATA_VALUE1;
+   psa_handle_t handle = 0;
+
+   val->print(PRINT_TEST, "[Check 2] Test APP-RoT writing PSA-RoT stack\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&handle,
+                                              &psa_rot_addr,
+                                              TEST_ISOLATION_PSA_ROT_STACK_WR)))
+       return VAL_STATUS_ERROR;
+
+   /* Write PSA RoT stack address.
+    * This should generate internal fault or ignore the write.
+    */
+   *(uint32_t *)psa_rot_addr = (uint32_t)data;
+
+   /* Handshake with driver to decide write status */
+   if (VAL_ERROR(get_driver_status(&handle)))
+   {
+       close_driver_fn(&handle);
+       return VAL_STATUS_DRIVER_FN_FAILED;
+   }
+
+   close_driver_fn(&handle);
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i081/test_i081.h b/api-tests/ff/ipc/test_i081/test_i081.h
new file mode 100644
index 00000000..c62a89bb
--- /dev/null
+++ b/api-tests/ff/ipc/test_i081/test_i081.h
@@ -0,0 +1,38 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I081_CLIENT_TESTS_H_
+#define _TEST_I081_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i081)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i081_client_tests_list[];
+
+int32_t client_test_app_rot_read_psa_rot_stack(security_t);
+int32_t client_test_app_rot_write_psa_rot_stack(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i081/test_supp_i081.c b/api-tests/ff/ipc/test_i081/test_supp_i081.c
new file mode 100644
index 00000000..0f844163
--- /dev/null
+++ b/api-tests/ff/ipc/test_i081/test_supp_i081.c
@@ -0,0 +1,44 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_app_rot_read_app_rot_stack(void);
+int32_t server_test_app_rot_write_app_rot_stack(void);
+
+server_test_t test_i081_server_tests_list[] = {
+    NULL,
+    server_test_app_rot_read_app_rot_stack,
+    server_test_app_rot_write_app_rot_stack,
+    NULL,
+};
+
+int32_t server_test_app_rot_read_app_rot_stack(void)
+{
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t server_test_app_rot_write_app_rot_stack(void)
+{
+    return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i082/source.mk b/api-tests/ff/ipc/test_i082/source.mk
new file mode 100644
index 00000000..af85416d
--- /dev/null
+++ b/api-tests/ff/ipc/test_i082/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i082.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i082.c test_supp_i082.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i082/test_entry.c b/api-tests/ff/ipc/test_i082/test_entry.c
new file mode 100644
index 00000000..8a38ca72
--- /dev/null
+++ b/api-tests/ff/ipc/test_i082/test_entry.c
@@ -0,0 +1,52 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i082.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 82)
+#define TEST_DESC "Testing APP-RoT access to PSA-RoT heap\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L2, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Switch to secure side (client_partition.c) and execute list of tests available in
+    test[num]_client_tests_list from Secure side */
+    status = val->switch_to_secure_client(TEST_NUM);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i082/test_i082.c b/api-tests/ff/ipc/test_i082/test_i082.c
new file mode 100644
index 00000000..6ddd6a72
--- /dev/null
+++ b/api-tests/ff/ipc/test_i082/test_i082.c
@@ -0,0 +1,162 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_i082.h"
+
+#define DATA_VALUE_ORG 0x11
+#define DATA_VALUE     0x12
+#define BUFFER_SIZE    0x4
+
+client_test_t test_i082_client_tests_list[] = {
+    NULL,
+    client_test_app_rot_read_psa_rot_heap,
+    client_test_app_rot_write_psa_rot_heap,
+    NULL,
+};
+
+#if (SP_HEAP_MEM_SUPP == 1)
+static int32_t get_secure_partition_address(psa_handle_t *handle,
+                                            addr_t *addr,
+                                            driver_test_fn_id_t test_fn_id)
+{
+   *handle = psa->connect(DRIVER_TEST_SID, 1);
+   if (*handle < 0)
+   {
+       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+
+   /* Execute driver function related to TEST_ISOLATION_PSA_ROT_DATA_RD */
+   psa_invec invec[1] = {{&test_fn_id, sizeof(test_fn_id)}};
+   psa_outvec outvec[1] = {{addr, sizeof(addr_t)}};
+   if (psa->call(*handle, invec, 1, outvec, 1) != PSA_SUCCESS)
+   {
+       val->print(PRINT_ERROR, "\tmsg request failed\n", 0);
+       return VAL_STATUS_CALL_FAILED;
+   }
+
+   return VAL_STATUS_SUCCESS;
+}
+
+static int32_t get_driver_status(psa_handle_t *handle)
+{
+   if (psa->call(*handle, NULL, 0, NULL, 0) != PSA_SUCCESS)
+   {
+       return VAL_STATUS_CALL_FAILED;
+   }
+   return VAL_STATUS_SUCCESS;
+}
+
+static void close_driver_fn(psa_handle_t *handle)
+{
+   psa->close(*handle);
+}
+
+int32_t client_test_app_rot_read_psa_rot_heap(security_t caller)
+{
+   addr_t       psa_rot_addr;
+   uint8_t      data = DATA_VALUE;
+   psa_handle_t handle = 0;
+
+   val->print(PRINT_TEST, "[Check 1] Test APP-RoT reading PSA-RoT heap\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&handle,
+                                              &psa_rot_addr,
+                                              TEST_ISOLATION_PSA_ROT_HEAP_RD)))
+       return VAL_STATUS_ERROR;
+
+   close_driver_fn(&handle);
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_REENTER_TEST))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Read PSA RoT heap address.
+    * This should generate internal fault or ignore the read.
+    */
+   data = *(uint8_t *)psa_rot_addr;
+
+   /* Did read ignore? */
+   if (data == DATA_VALUE)
+        return VAL_STATUS_SUCCESS;
+
+   val->print(PRINT_ERROR, "\tExpected read to fault but it didn't\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   return VAL_STATUS_SPM_FAILED;
+}
+
+int32_t client_test_app_rot_write_psa_rot_heap(security_t caller)
+{
+   addr_t       psa_rot_addr;
+   uint8_t      data = DATA_VALUE;
+   psa_handle_t handle = 0;
+
+   val->print(PRINT_TEST, "[Check 2] Test APP-RoT writing PSA-RoT heap\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&handle,
+                                              &psa_rot_addr,
+                                              TEST_ISOLATION_PSA_ROT_HEAP_WR)))
+       return VAL_STATUS_ERROR;
+
+   /* Write PSA RoT heap address.
+    * This should generate internal fault or ignore the write.
+    */
+   *(uint8_t *)psa_rot_addr = (uint8_t)data;
+
+   /* Handshake with driver to decide write status */
+   if (VAL_ERROR(get_driver_status(&handle)))
+   {
+       close_driver_fn(&handle);
+       return VAL_STATUS_DRIVER_FN_FAILED;
+   }
+
+   close_driver_fn(&handle);
+   return VAL_STATUS_SUCCESS;
+}
+#else
+int32_t client_test_app_rot_read_psa_rot_heap(security_t caller)
+{
+   val->print(PRINT_TEST, "[Check 1] Test APP-RoT reading PSA-RoT heap\n", 0);
+   val->print(PRINT_ERROR, "\tSkipping test as heap memory not supported\n", 0);
+   return RESULT_SKIP(VAL_STATUS_HEAP_NOT_AVAILABLE);
+}
+
+int32_t client_test_app_rot_write_psa_rot_heap(security_t caller)
+{
+   val->print(PRINT_TEST, "[Check 2] Test APP-RoT writing PSA-RoT heap\n", 0);
+   val->print(PRINT_ERROR, "\tSkipping test as heap memory not supported\n", 0);
+   return RESULT_SKIP(VAL_STATUS_HEAP_NOT_AVAILABLE);
+}
+#endif
diff --git a/api-tests/ff/ipc/test_i082/test_i082.h b/api-tests/ff/ipc/test_i082/test_i082.h
new file mode 100644
index 00000000..accc73f5
--- /dev/null
+++ b/api-tests/ff/ipc/test_i082/test_i082.h
@@ -0,0 +1,38 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I082_CLIENT_TESTS_H_
+#define _TEST_I082_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i082)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i082_client_tests_list[];
+
+int32_t client_test_app_rot_read_psa_rot_heap(security_t);
+int32_t client_test_app_rot_write_psa_rot_heap(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i082/test_supp_i082.c b/api-tests/ff/ipc/test_i082/test_supp_i082.c
new file mode 100644
index 00000000..20a5b7a3
--- /dev/null
+++ b/api-tests/ff/ipc/test_i082/test_supp_i082.c
@@ -0,0 +1,44 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_app_rot_read_psa_rot_heap(void);
+int32_t server_test_app_rot_write_psa_rot_heap(void);
+
+server_test_t test_i082_server_tests_list[] = {
+    NULL,
+    server_test_app_rot_read_psa_rot_heap,
+    server_test_app_rot_write_psa_rot_heap,
+    NULL,
+};
+
+int32_t server_test_app_rot_read_psa_rot_heap(void)
+{
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t server_test_app_rot_write_psa_rot_heap(void)
+{
+    return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i083/source.mk b/api-tests/ff/ipc/test_i083/source.mk
new file mode 100644
index 00000000..a0354eb0
--- /dev/null
+++ b/api-tests/ff/ipc/test_i083/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i083.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i083.c test_supp_i083.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i083/test_entry.c b/api-tests/ff/ipc/test_i083/test_entry.c
new file mode 100644
index 00000000..403452bc
--- /dev/null
+++ b/api-tests/ff/ipc/test_i083/test_entry.c
@@ -0,0 +1,52 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i083.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 83)
+#define TEST_DESC "Testing APP-RoT access to PSA-RoT mmio\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L2, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Switch to secure side (client_partition.c) and execute list of tests available in
+    test[num]_client_tests_list from Secure side */
+    status = val->switch_to_secure_client(TEST_NUM);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i083/test_i083.c b/api-tests/ff/ipc/test_i083/test_i083.c
new file mode 100644
index 00000000..9899e3ee
--- /dev/null
+++ b/api-tests/ff/ipc/test_i083/test_i083.c
@@ -0,0 +1,144 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_i083.h"
+
+#define DATA_VALUE 0x1234
+
+client_test_t test_i083_client_tests_list[] = {
+    NULL,
+    client_test_app_rot_read_psa_rot_mmio,
+    client_test_app_rot_write_psa_rot_mmio,
+    NULL,
+};
+
+static int32_t get_secure_partition_address(psa_handle_t *handle,
+                                            addr_t *addr,
+                                            driver_test_fn_id_t test_fn_id)
+{
+   *handle = psa->connect(DRIVER_TEST_SID, 1);
+   if (*handle < 0)
+   {
+       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+
+   /* Execute driver function related to TEST_ISOLATION_PSA_ROT_DATA_RD */
+   psa_invec invec[1] = {{&test_fn_id, sizeof(test_fn_id)}};
+   psa_outvec outvec[1] = {{addr, sizeof(addr_t)}};
+   if (psa->call(*handle, invec, 1, outvec, 1) != PSA_SUCCESS)
+   {
+       val->print(PRINT_ERROR, "\tmsg request failed\n", 0);
+       return VAL_STATUS_CALL_FAILED;
+   }
+
+   return VAL_STATUS_SUCCESS;
+}
+
+static int32_t get_driver_status(psa_handle_t *handle)
+{
+   if (psa->call(*handle, NULL, 0, NULL, 0) != PSA_SUCCESS)
+   {
+       return VAL_STATUS_CALL_FAILED;
+   }
+   return VAL_STATUS_SUCCESS;
+}
+
+static void close_driver_fn(psa_handle_t *handle)
+{
+   psa->close(*handle);
+}
+
+int32_t client_test_app_rot_read_psa_rot_mmio(security_t caller)
+{
+   addr_t       psa_rot_addr;
+   uint32_t     data = DATA_VALUE;
+   psa_handle_t handle = 0;
+
+   val->print(PRINT_TEST, "[Check 1] Test APP-RoT reading PSA-RoT mmio\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&handle,
+                                              &psa_rot_addr,
+                                              TEST_ISOLATION_PSA_ROT_MMIO_RD)))
+       return VAL_STATUS_ERROR;
+
+   close_driver_fn(&handle);
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_REENTER_TEST))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Read PSA RoT mmio address.
+    * This should generate internal fault or ignore the read.
+    */
+   data = *(uint32_t *)psa_rot_addr;
+
+   /* Did read ignore? */
+   if (data == DATA_VALUE)
+        return VAL_STATUS_SUCCESS;
+
+   val->print(PRINT_ERROR, "\tExpected read to fault but it didn't\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   return VAL_STATUS_SPM_FAILED;
+}
+
+int32_t client_test_app_rot_write_psa_rot_mmio(security_t caller)
+{
+   addr_t       psa_rot_addr;
+   uint32_t     data = DATA_VALUE;
+   psa_handle_t handle = 0;
+
+   val->print(PRINT_TEST, "[Check 2] Test APP-RoT writing PSA-RoT mmio\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&handle,
+                                              &psa_rot_addr,
+                                              TEST_ISOLATION_PSA_ROT_MMIO_WR)))
+       return VAL_STATUS_ERROR;
+
+   /* Write PSA RoT mmio address.
+    * This should generate internal fault or ignore the write.
+    */
+   *(uint32_t *)psa_rot_addr = (uint32_t)data;
+
+   /* Handshake with driver to decide write status */
+   if (VAL_ERROR(get_driver_status(&handle)))
+   {
+       close_driver_fn(&handle);
+       return VAL_STATUS_DRIVER_FN_FAILED;
+   }
+
+   close_driver_fn(&handle);
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i083/test_i083.h b/api-tests/ff/ipc/test_i083/test_i083.h
new file mode 100644
index 00000000..99496a87
--- /dev/null
+++ b/api-tests/ff/ipc/test_i083/test_i083.h
@@ -0,0 +1,38 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I083_CLIENT_TESTS_H_
+#define _TEST_I083_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i083)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i083_client_tests_list[];
+
+int32_t client_test_app_rot_read_psa_rot_mmio(security_t);
+int32_t client_test_app_rot_write_psa_rot_mmio(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i083/test_supp_i083.c b/api-tests/ff/ipc/test_i083/test_supp_i083.c
new file mode 100644
index 00000000..e7bf8f51
--- /dev/null
+++ b/api-tests/ff/ipc/test_i083/test_supp_i083.c
@@ -0,0 +1,46 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_app_rot_read_psa_rot_mmio(void);
+int32_t server_test_app_rot_write_psa_rot_mmio(void);
+
+#define DATA_VALUE 0x5467
+
+server_test_t test_i083_server_tests_list[] = {
+    NULL,
+    server_test_app_rot_read_psa_rot_mmio,
+    server_test_app_rot_write_psa_rot_mmio,
+    NULL,
+};
+
+int32_t server_test_app_rot_read_psa_rot_mmio(void)
+{
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t server_test_app_rot_write_psa_rot_mmio(void)
+{
+    return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i084/source.mk b/api-tests/ff/ipc/test_i084/source.mk
new file mode 100644
index 00000000..5d162ed9
--- /dev/null
+++ b/api-tests/ff/ipc/test_i084/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i084.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i084.c test_supp_i084.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i084/test_entry.c b/api-tests/ff/ipc/test_i084/test_entry.c
new file mode 100644
index 00000000..e12e09a5
--- /dev/null
+++ b/api-tests/ff/ipc/test_i084/test_entry.c
@@ -0,0 +1,52 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i084.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 84)
+#define TEST_DESC "Testing SP access to other SP data\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L3, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Switch to secure side (client_partition.c) and execute list of tests available in
+    test[num]_client_tests_list from Secure side */
+    status = val->switch_to_secure_client(TEST_NUM);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i084/test_i084.c b/api-tests/ff/ipc/test_i084/test_i084.c
new file mode 100644
index 00000000..933312aa
--- /dev/null
+++ b/api-tests/ff/ipc/test_i084/test_i084.c
@@ -0,0 +1,125 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_i084.h"
+
+client_test_t test_i084_client_tests_list[] = {
+    NULL,
+    client_test_sp_read_other_sp_variable,
+    client_test_sp_write_other_sp_variable,
+    NULL,
+};
+
+static int32_t get_secure_partition_address(addr_t *addr)
+{
+   psa_handle_t            handle = 0;
+
+   handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
+   if (handle < 0)
+   {
+       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+
+   /* Get App-RoT address */
+   psa_outvec outvec[1] = {{addr, sizeof(addr_t)}};
+   if (psa->call(handle, NULL, 0, outvec, 1) != PSA_SUCCESS)
+   {
+       val->print(PRINT_ERROR, "\tmsg request failed\n", 0);
+       return VAL_STATUS_CALL_FAILED;
+   }
+
+   psa->close(handle);
+   return VAL_STATUS_SUCCESS;
+}
+
+int32_t client_test_sp_read_other_sp_variable(security_t caller)
+{
+   addr_t   app_rot_addr;
+   uint32_t data = 0x1234;
+
+   val->print(PRINT_TEST, "[Check 1] Test SP reading other SP data\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&app_rot_addr)))
+       return VAL_STATUS_ERROR;
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_REENTER_TEST))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Read Application RoT global variable address.
+    * This should generate internal fault or ignore the read.
+    */
+   data = *(uint32_t *)app_rot_addr;
+
+   /* Did read ignore? */
+   if (data == 0x1234)
+        return VAL_STATUS_SUCCESS;
+
+   val->print(PRINT_ERROR, "\tExpected read to fault but it didn't\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   return VAL_STATUS_SPM_FAILED;
+}
+
+int32_t client_test_sp_write_other_sp_variable(security_t caller)
+{
+   addr_t   app_rot_addr;
+   uint32_t data = 0x1234;
+
+   val->print(PRINT_TEST, "[Check 2] Test SP writing other SP data\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&app_rot_addr)))
+       return VAL_STATUS_ERROR;
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_NS))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Write Application RoT global variable address.
+    * This should generate internal fault or ignore the write.
+    */
+   *(uint32_t *)app_rot_addr = (uint32_t)data;
+
+   /* Handshake with server to decide write status */
+   if ((psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1)) > 0)
+   {
+       val->print(PRINT_ERROR, "\tExpected connection to fail but succeed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i084/test_i084.h b/api-tests/ff/ipc/test_i084/test_i084.h
new file mode 100644
index 00000000..0fa86afc
--- /dev/null
+++ b/api-tests/ff/ipc/test_i084/test_i084.h
@@ -0,0 +1,38 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I084_CLIENT_TESTS_H_
+#define _TEST_I084_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i084)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i084_client_tests_list[];
+
+int32_t client_test_sp_read_other_sp_variable(security_t);
+int32_t client_test_sp_write_other_sp_variable(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i084/test_supp_i084.c b/api-tests/ff/ipc/test_i084/test_supp_i084.c
new file mode 100644
index 00000000..3c663d34
--- /dev/null
+++ b/api-tests/ff/ipc/test_i084/test_supp_i084.c
@@ -0,0 +1,113 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_sp_read_other_sp_variable(void);
+int32_t server_test_sp_write_other_sp_variable(void);
+
+#define DATA_VALUE 0x5467
+
+/* Application RoT data region */
+volatile uint32_t g_test_i084 = DATA_VALUE;
+
+server_test_t test_i084_server_tests_list[] = {
+    NULL,
+    server_test_sp_read_other_sp_variable,
+    server_test_sp_write_other_sp_variable,
+    NULL,
+};
+
+static int32_t send_secure_partition_address(void)
+{
+    int32_t         status = VAL_STATUS_SUCCESS;
+    psa_msg_t       msg = {0};
+
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    {
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return status;
+    }
+
+    psa->reply(msg.handle, PSA_SUCCESS);
+
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    {
+        psa->reply(msg.handle, -2);
+        return status;
+    }
+
+    /* Send Application RoT data address - global variable */
+    psa->write(msg.handle, 0, (void *)&g_test_i084, sizeof(g_test_i084));
+    psa->reply(msg.handle, PSA_SUCCESS);
+
+    status = val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    {
+        return status;
+    }
+    psa->reply(msg.handle, PSA_SUCCESS);
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t server_test_sp_read_other_sp_variable(void)
+{
+    return send_secure_partition_address();
+}
+
+int32_t server_test_sp_write_other_sp_variable(void)
+{
+    int32_t         status = VAL_STATUS_SUCCESS;
+    psa_msg_t       msg = {0};
+
+    status = send_secure_partition_address();
+    if (VAL_ERROR(status))
+        return status;
+
+    /* Wait for write to get performed by client */
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(204), status))
+    {
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return status;
+    }
+
+    /* Connection request is just for handshake, reject connection anyways */
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+
+    /* Reached here means there could be write succeed or ignored */
+    if (g_test_i084 == DATA_VALUE)
+        return VAL_STATUS_SUCCESS;
+
+    val->print(PRINT_ERROR, "\tExpected write to fault but it didn't\n", 0);
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    {
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        return VAL_STATUS_ERROR;
+    }
+    return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i085/source.mk b/api-tests/ff/ipc/test_i085/source.mk
new file mode 100644
index 00000000..2456cf49
--- /dev/null
+++ b/api-tests/ff/ipc/test_i085/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i085.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i085.c test_supp_i085.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i085/test_entry.c b/api-tests/ff/ipc/test_i085/test_entry.c
new file mode 100644
index 00000000..fadc37f4
--- /dev/null
+++ b/api-tests/ff/ipc/test_i085/test_entry.c
@@ -0,0 +1,52 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i085.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 85)
+#define TEST_DESC "Testing SP access other SP stack\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L3, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Switch to secure side (client_partition.c) and execute list of tests available in
+    test[num]_client_tests_list from Secure side */
+    status = val->switch_to_secure_client(TEST_NUM);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i085/test_i085.c b/api-tests/ff/ipc/test_i085/test_i085.c
new file mode 100644
index 00000000..da19a245
--- /dev/null
+++ b/api-tests/ff/ipc/test_i085/test_i085.c
@@ -0,0 +1,125 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_i085.h"
+
+client_test_t test_i085_client_tests_list[] = {
+    NULL,
+    client_test_sp_read_other_sp_stack,
+    client_test_sp_write_other_sp_stack,
+    NULL,
+};
+
+static int32_t get_secure_partition_address(addr_t *addr)
+{
+   psa_handle_t            handle = 0;
+
+   handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
+   if (handle < 0)
+   {
+       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+
+   /* Get App-RoT address */
+   psa_outvec outvec[1] = {{addr, sizeof(addr_t)}};
+   if (psa->call(handle, NULL, 0, outvec, 1) != PSA_SUCCESS)
+   {
+       val->print(PRINT_ERROR, "\tmsg request failed\n", 0);
+       return VAL_STATUS_CALL_FAILED;
+   }
+
+   psa->close(handle);
+   return VAL_STATUS_SUCCESS;
+}
+
+int32_t client_test_sp_read_other_sp_stack(security_t caller)
+{
+   addr_t   app_rot_addr;
+   uint32_t data = 0x1234;
+
+   val->print(PRINT_TEST, "[Check 1] Test SP reading other SP stack\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&app_rot_addr)))
+       return VAL_STATUS_ERROR;
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_REENTER_TEST))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Read Application RoT stack address.
+    * This should generate internal fault or ignore the read.
+    */
+   data = *(uint32_t *)app_rot_addr;
+
+   /* Did read ignore? */
+   if (data == 0x1234)
+        return VAL_STATUS_SUCCESS;
+
+   val->print(PRINT_ERROR, "\tExpected read to fault but it didn't\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   return VAL_STATUS_SPM_FAILED;
+}
+
+int32_t client_test_sp_write_other_sp_stack(security_t caller)
+{
+   addr_t   app_rot_addr;
+   uint32_t data = 0x1234;
+
+   val->print(PRINT_TEST, "[Check 2] Test SP writing other SP stack\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&app_rot_addr)))
+       return VAL_STATUS_ERROR;
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_NS))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Write Application RoT stack address.
+    * This should generate internal fault or ignore the write.
+    */
+   *(uint32_t *)app_rot_addr = (uint32_t)data;
+
+   /* Handshake with server to decide write status */
+   if ((psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1)) > 0)
+   {
+       val->print(PRINT_ERROR, "\tExpected connection to fail but succeed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i085/test_i085.h b/api-tests/ff/ipc/test_i085/test_i085.h
new file mode 100644
index 00000000..80d5bd6d
--- /dev/null
+++ b/api-tests/ff/ipc/test_i085/test_i085.h
@@ -0,0 +1,38 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I085_CLIENT_TESTS_H_
+#define _TEST_I085_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i085)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i085_client_tests_list[];
+
+int32_t client_test_sp_read_other_sp_stack(security_t);
+int32_t client_test_sp_write_other_sp_stack(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i085/test_supp_i085.c b/api-tests/ff/ipc/test_i085/test_supp_i085.c
new file mode 100644
index 00000000..9922716c
--- /dev/null
+++ b/api-tests/ff/ipc/test_i085/test_supp_i085.c
@@ -0,0 +1,120 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_sp_read_other_sp_stack(void);
+int32_t server_test_sp_write_other_sp_stack(void);
+
+#define DATA_VALUE 0x5467
+
+server_test_t test_i085_server_tests_list[] = {
+    NULL,
+    server_test_sp_read_other_sp_stack,
+    server_test_sp_write_other_sp_stack,
+    NULL,
+};
+
+static int32_t send_secure_partition_address(addr_t *stack)
+{
+    int32_t         status = VAL_STATUS_SUCCESS;
+    psa_msg_t       msg = {0};
+
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    {
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return status;
+    }
+
+    psa->reply(msg.handle, PSA_SUCCESS);
+
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    {
+        psa->reply(msg.handle, -2);
+        return status;
+    }
+
+    /* Send Application RoT stack address */
+    psa->write(msg.handle, 0, (void *)stack, sizeof(uint32_t));
+    psa->reply(msg.handle, PSA_SUCCESS);
+
+    status = val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    {
+        return status;
+    }
+    psa->reply(msg.handle, PSA_SUCCESS);
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t server_test_sp_read_other_sp_stack(void)
+{
+    /* Application RoT stack - local variable */
+    uint32_t        l_test_i085 = DATA_VALUE;
+    int32_t         status = VAL_STATUS_SUCCESS;
+
+    status = send_secure_partition_address(&l_test_i085);
+
+    /* Dummy print to avoid compiler optimisation on local variable */
+    val->print(PRINT_INFO, "\tData value 0x%x\n", l_test_i085);
+    return status;
+}
+
+int32_t server_test_sp_write_other_sp_stack(void)
+{
+    /* Application RoT stack - local variable */
+    uint32_t        l_test_i085 = DATA_VALUE;
+    int32_t         status = VAL_STATUS_SUCCESS;
+    psa_msg_t       msg = {0};
+
+    status = send_secure_partition_address(&l_test_i085);
+    if (VAL_ERROR(status))
+        return status;
+
+    /* Wait for write to get performed by client */
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(204), status))
+    {
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return status;
+    }
+
+    /* Connection request is just for handshake, reject connection anyways */
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+
+    /* Reached here means there could be write succeed or ignored */
+    if (l_test_i085 == DATA_VALUE)
+        return VAL_STATUS_SUCCESS;
+
+    val->print(PRINT_ERROR, "\tExpected write to fault but it didn't\n", 0);
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    {
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        return VAL_STATUS_ERROR;
+    }
+    return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i086/source.mk b/api-tests/ff/ipc/test_i086/source.mk
new file mode 100644
index 00000000..c4127af3
--- /dev/null
+++ b/api-tests/ff/ipc/test_i086/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i086.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i086.c test_supp_i086.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i086/test_entry.c b/api-tests/ff/ipc/test_i086/test_entry.c
new file mode 100644
index 00000000..e2c31eee
--- /dev/null
+++ b/api-tests/ff/ipc/test_i086/test_entry.c
@@ -0,0 +1,52 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i086.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 86)
+#define TEST_DESC "Testing SP access other SP heap\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L3, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Switch to secure side (client_partition.c) and execute list of tests available in
+    test[num]_client_tests_list from Secure side */
+    status = val->switch_to_secure_client(TEST_NUM);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i086/test_i086.c b/api-tests/ff/ipc/test_i086/test_i086.c
new file mode 100644
index 00000000..7f56cbe8
--- /dev/null
+++ b/api-tests/ff/ipc/test_i086/test_i086.c
@@ -0,0 +1,145 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_i086.h"
+
+#define DATA_VALUE_ORG 0x11
+#define DATA_VALUE     0x12
+#define BUFFER_SIZE    0x4
+
+client_test_t test_i086_client_tests_list[] = {
+    NULL,
+    client_test_sp_read_other_sp_heap,
+    client_test_sp_write_other_sp_heap,
+    NULL,
+};
+
+#if (SP_HEAP_MEM_SUPP == 1)
+static int32_t get_secure_partition_address(addr_t *addr)
+{
+   psa_handle_t            handle = 0;
+
+   handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
+   if (handle < 0)
+   {
+       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+
+   /* Get App-RoT address */
+   psa_outvec outvec[1] = {{addr, BUFFER_SIZE}};
+   if (psa->call(handle, NULL, 0, outvec, 1) != PSA_SUCCESS)
+   {
+       val->print(PRINT_ERROR, "\tmsg request failed\n", 0);
+       return VAL_STATUS_CALL_FAILED;
+   }
+
+   psa->close(handle);
+   return VAL_STATUS_SUCCESS;
+}
+
+int32_t client_test_sp_read_other_sp_heap(security_t caller)
+{
+   addr_t   app_rot_addr;
+   uint8_t  data = DATA_VALUE;
+
+   val->print(PRINT_TEST, "[Check 1] Test SP reading other SP heap\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&app_rot_addr)))
+       return VAL_STATUS_ERROR;
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_REENTER_TEST))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Read Application RoT heap address.
+    * This should generate internal fault or ignore the read.
+    */
+   data = *(uint8_t *)app_rot_addr;
+
+   /* Did read ignore? */
+   if (data == DATA_VALUE)
+        return VAL_STATUS_SUCCESS;
+
+   val->print(PRINT_ERROR, "\tExpected read to fault but it didn't\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   return VAL_STATUS_SPM_FAILED;
+}
+
+int32_t client_test_sp_write_other_sp_heap(security_t caller)
+{
+   addr_t   app_rot_addr;
+   uint8_t  data = DATA_VALUE;
+
+   val->print(PRINT_TEST, "[Check 2] Test SP writing other SP heap\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&app_rot_addr)))
+       return VAL_STATUS_ERROR;
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_NS))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Write Application RoT heap address.
+    * This should generate internal fault or ignore the write.
+    */
+   *(uint8_t *)app_rot_addr = (uint8_t)data;
+
+   /* Handshake with server to decide write status */
+   if ((psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1)) > 0)
+   {
+       val->print(PRINT_ERROR, "\tExpected connection to fail but succeed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+   return VAL_STATUS_SUCCESS;
+}
+#else
+int32_t client_test_sp_read_other_sp_heap(security_t caller)
+{
+   val->print(PRINT_TEST, "[Check 1] Test SP reading other SP heap\n", 0);
+   val->print(PRINT_ERROR, "\tSkipping test as heap memory not supported\n", 0);
+   return RESULT_SKIP(VAL_STATUS_HEAP_NOT_AVAILABLE);
+}
+
+int32_t client_test_sp_write_other_sp_heap(security_t caller)
+{
+   val->print(PRINT_TEST, "[Check 2] Test SP writing other SP heap\n", 0);
+   val->print(PRINT_ERROR, "\tSkipping test as heap memory not supported\n", 0);
+   return RESULT_SKIP(VAL_STATUS_HEAP_NOT_AVAILABLE);
+}
+#endif
diff --git a/api-tests/ff/ipc/test_i086/test_i086.h b/api-tests/ff/ipc/test_i086/test_i086.h
new file mode 100644
index 00000000..eb64546d
--- /dev/null
+++ b/api-tests/ff/ipc/test_i086/test_i086.h
@@ -0,0 +1,38 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I086_CLIENT_TESTS_H_
+#define _TEST_I086_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i086)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i086_client_tests_list[];
+
+int32_t client_test_sp_read_other_sp_heap(security_t);
+int32_t client_test_sp_write_other_sp_heap(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i086/test_supp_i086.c b/api-tests/ff/ipc/test_i086/test_supp_i086.c
new file mode 100644
index 00000000..52fef112
--- /dev/null
+++ b/api-tests/ff/ipc/test_i086/test_supp_i086.c
@@ -0,0 +1,146 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_sp_read_other_sp_heap(void);
+int32_t server_test_sp_write_other_sp_heap(void);
+
+#if (SP_HEAP_MEM_SUPP == 1)
+void *malloc(size_t size);
+void free(void *ptr);
+#endif
+
+#define DATA_VALUE_ORG 0x11
+#define BUFFER_SIZE    0x4
+
+server_test_t test_i086_server_tests_list[] = {
+    NULL,
+    server_test_sp_read_other_sp_heap,
+    server_test_sp_write_other_sp_heap,
+    NULL,
+};
+
+#if (SP_HEAP_MEM_SUPP == 1)
+static int32_t send_secure_partition_address(uint8_t *heap)
+{
+    int32_t         status = VAL_STATUS_SUCCESS;
+    psa_msg_t       msg = {0};
+
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
+    {
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return status;
+    }
+
+    psa->reply(msg.handle, PSA_SUCCESS);
+
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    {
+        psa->reply(msg.handle, -2);
+        return status;
+    }
+
+    /* Send Application RoT heap address */
+    psa->write(msg.handle, 0, (void *)heap, sizeof(BUFFER_SIZE));
+    psa->reply(msg.handle, PSA_SUCCESS);
+
+    status = val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    {
+        return status;
+    }
+    psa->reply(msg.handle, PSA_SUCCESS);
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t server_test_sp_read_other_sp_heap(void)
+{
+    /* Application RoT heap buffer */
+    uint8_t         *buffer;
+    int32_t          status = VAL_STATUS_SUCCESS;
+
+    buffer = (uint8_t *)malloc(sizeof(uint8_t) * BUFFER_SIZE);
+    memset((uint8_t *)buffer, DATA_VALUE_ORG, BUFFER_SIZE);
+
+    status = send_secure_partition_address(buffer);
+    free(buffer);
+
+    return status;
+}
+
+int32_t server_test_sp_write_other_sp_heap(void)
+{
+    /* Application RoT heap buffer */
+    uint8_t         *buffer;
+    int32_t         status = VAL_STATUS_SUCCESS;
+    psa_msg_t       msg = {0};
+
+    buffer = (uint8_t *)malloc(sizeof(uint8_t) * BUFFER_SIZE);
+    memset((uint8_t *)buffer, DATA_VALUE_ORG, BUFFER_SIZE);
+
+    status = send_secure_partition_address(buffer);
+    if (VAL_ERROR(status))
+        return status;
+
+    /* Wait for write to get performed by client */
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(204), status))
+    {
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return status;
+    }
+
+    /* Connection request is just for handshake, reject connection anyways */
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+
+    /* Reached here means there could be write succeed or ignored */
+    if (buffer[0] == DATA_VALUE_ORG)
+        return VAL_STATUS_SUCCESS;
+
+    val->print(PRINT_ERROR, "\tExpected write to fault but it didn't\n", 0);
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    {
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        return VAL_STATUS_ERROR;
+    }
+
+    free(buffer);
+    return VAL_STATUS_SUCCESS;
+}
+#else
+
+int32_t server_test_sp_read_other_sp_heap(void)
+{
+    return RESULT_SKIP(VAL_STATUS_HEAP_NOT_AVAILABLE);
+}
+
+int32_t server_test_sp_write_other_sp_heap(void)
+{
+    return RESULT_SKIP(VAL_STATUS_HEAP_NOT_AVAILABLE);
+}
+#endif
diff --git a/api-tests/ff/ipc/test_i087/source.mk b/api-tests/ff/ipc/test_i087/source.mk
new file mode 100644
index 00000000..492f7953
--- /dev/null
+++ b/api-tests/ff/ipc/test_i087/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_i087.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_i087.c test_supp_i087.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_i087/test_entry.c b/api-tests/ff/ipc/test_i087/test_entry.c
new file mode 100644
index 00000000..a5de90ad
--- /dev/null
+++ b/api-tests/ff/ipc/test_i087/test_entry.c
@@ -0,0 +1,52 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_i087.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 87)
+#define TEST_DESC "Testing SP access other SP mmio\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L3, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Switch to secure side (client_partition.c) and execute list of tests available in
+    test[num]_client_tests_list from Secure side */
+    status = val->switch_to_secure_client(TEST_NUM);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_i087/test_i087.c b/api-tests/ff/ipc/test_i087/test_i087.c
new file mode 100644
index 00000000..eb6cbf22
--- /dev/null
+++ b/api-tests/ff/ipc/test_i087/test_i087.c
@@ -0,0 +1,127 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_i087.h"
+
+#define DATA_VALUE 0x1234
+
+client_test_t test_i087_client_tests_list[] = {
+    NULL,
+    client_test_sp_read_other_sp_mmio,
+    client_test_sp_write_other_sp_mmio,
+    NULL,
+};
+
+static int32_t get_secure_partition_address(addr_t *addr)
+{
+   psa_handle_t            handle = 0;
+
+   handle = psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1);
+   if (handle < 0)
+   {
+       val->print(PRINT_ERROR, "\tConnection failed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+
+   /* Get App-RoT address */
+   psa_outvec outvec[1] = {{addr, sizeof(addr_t)}};
+   if (psa->call(handle, NULL, 0, outvec, 1) != PSA_SUCCESS)
+   {
+       val->print(PRINT_ERROR, "\tmsg request failed\n", 0);
+       return VAL_STATUS_CALL_FAILED;
+   }
+
+   psa->close(handle);
+   return VAL_STATUS_SUCCESS;
+}
+
+int32_t client_test_sp_read_other_sp_mmio(security_t caller)
+{
+   addr_t   app_rot_addr;
+   uint32_t data = DATA_VALUE;
+
+   val->print(PRINT_TEST, "[Check 1] Test SP reading other SP mmio\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&app_rot_addr)))
+       return VAL_STATUS_ERROR;
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_REENTER_TEST))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Read Application RoT mmio address.
+    * This should generate internal fault or ignore the read.
+    */
+   data = *(uint32_t *)app_rot_addr;
+
+   /* Did read ignore? */
+   if (data == DATA_VALUE)
+        return VAL_STATUS_SUCCESS;
+
+   val->print(PRINT_ERROR, "\tExpected read to fault but it didn't\n", 0);
+
+   /* Resetting boot.state to catch unwanted reboot */
+   if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   return VAL_STATUS_SPM_FAILED;
+}
+
+int32_t client_test_sp_write_other_sp_mmio(security_t caller)
+{
+   addr_t   app_rot_addr;
+   uint32_t data = DATA_VALUE;
+
+   val->print(PRINT_TEST, "[Check 2] Test SP writing other SP mmio\n", 0);
+
+   if (VAL_ERROR(get_secure_partition_address(&app_rot_addr)))
+       return VAL_STATUS_ERROR;
+
+   /* Setting boot.state before test check */
+   if (val->set_boot_flag(BOOT_EXPECTED_NS))
+   {
+       val->print(PRINT_ERROR, "\tFailed to set boot flag before check\n", 0);
+       return VAL_STATUS_ERROR;
+   }
+
+   /* Write Application RoT mmio address.
+    * This should generate internal fault or ignore the write.
+    */
+   *(uint32_t *)app_rot_addr = (uint32_t)data;
+
+   /* Handshake with server to decide write status */
+   if ((psa->connect(SERVER_UNSPECIFED_MINOR_V_SID, 1)) > 0)
+   {
+       val->print(PRINT_ERROR, "\tExpected connection to fail but succeed\n", 0);
+       return VAL_STATUS_INVALID_HANDLE;
+   }
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_i087/test_i087.h b/api-tests/ff/ipc/test_i087/test_i087.h
new file mode 100644
index 00000000..450427d2
--- /dev/null
+++ b/api-tests/ff/ipc/test_i087/test_i087.h
@@ -0,0 +1,38 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_I087_CLIENT_TESTS_H_
+#define _TEST_I087_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,i087)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i087_client_tests_list[];
+
+int32_t client_test_sp_read_other_sp_mmio(security_t);
+int32_t client_test_sp_write_other_sp_mmio(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_i087/test_supp_i087.c b/api-tests/ff/ipc/test_i087/test_supp_i087.c
new file mode 100644
index 00000000..b59fb978
--- /dev/null
+++ b/api-tests/ff/ipc/test_i087/test_supp_i087.c
@@ -0,0 +1,143 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_sp_read_other_sp_mmio(void);
+int32_t server_test_sp_write_other_sp_mmio(void);
+
+#define DATA_VALUE 0x5467
+
+server_test_t test_i087_server_tests_list[] = {
+    NULL,
+    server_test_sp_read_other_sp_mmio,
+    server_test_sp_write_other_sp_mmio,
+    NULL,
+};
+
+static int32_t get_mmio_addr(addr_t *addr)
+{
+   memory_desc_t           *memory_desc;
+   int32_t                 status = VAL_STATUS_SUCCESS;
+
+   /* Get APP-ROT MMIO address */
+   status = val->target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MEMORY,
+                                  MEMORY_SERVER_PARTITION_MMIO, 0),
+                                  (uint8_t **)&memory_desc,
+                                  (uint32_t *)sizeof(memory_desc_t));
+   if (val->err_check_set(TEST_CHECKPOINT_NUM(201), status))
+   {
+       return status;
+   }
+
+   *addr = memory_desc->start;
+   return VAL_STATUS_SUCCESS;
+}
+
+static int32_t send_secure_partition_address(addr_t *stack)
+{
+    int32_t         status = VAL_STATUS_SUCCESS;
+    psa_msg_t       msg = {0};
+
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(202), status))
+    {
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return status;
+    }
+
+    psa->reply(msg.handle, PSA_SUCCESS);
+
+    status = val->process_call_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(203), status))
+    {
+        psa->reply(msg.handle, -2);
+        return status;
+    }
+
+    /* Send Application RoT stack address */
+    psa->write(msg.handle, 0, (void *)stack, sizeof(uint32_t));
+    psa->reply(msg.handle, PSA_SUCCESS);
+
+    status = val->process_disconnect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(204), status))
+    {
+        return status;
+    }
+    psa->reply(msg.handle, PSA_SUCCESS);
+    return VAL_STATUS_SUCCESS;
+}
+
+int32_t server_test_sp_read_other_sp_mmio(void)
+{
+    int32_t         status = VAL_STATUS_SUCCESS;
+    addr_t          app_rot_addr;
+
+    status = get_mmio_addr(&app_rot_addr);
+    if (VAL_ERROR(status))
+        return status;
+
+    return send_secure_partition_address(&app_rot_addr);
+}
+
+int32_t server_test_sp_write_other_sp_mmio(void)
+{
+    addr_t          app_rot_addr;
+    int32_t         status = VAL_STATUS_SUCCESS;
+    psa_msg_t       msg = {0};
+
+    status = get_mmio_addr(&app_rot_addr);
+    if (VAL_ERROR(status))
+        return status;
+
+    /* Initialise mmio address */
+    *(uint32_t *)app_rot_addr = (uint32_t)DATA_VALUE;
+    status = send_secure_partition_address(&app_rot_addr);
+    if (VAL_ERROR(status))
+        return status;
+
+    /* Wait for write to get performed by client */
+    status = val->process_connect_request(SERVER_UNSPECIFED_MINOR_V_SIG, &msg);
+    if (val->err_check_set(TEST_CHECKPOINT_NUM(204), status))
+    {
+        psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+        return status;
+    }
+
+    /* Connection request is just for handshake, reject connection anyways */
+    psa->reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
+
+    /* Reached here means there could be write succeed or ignored */
+    if (*(uint32_t *)app_rot_addr == (uint32_t)DATA_VALUE)
+        return VAL_STATUS_SUCCESS;
+
+    val->print(PRINT_ERROR, "\tExpected write to fault but it didn't\n", 0);
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val->set_boot_flag(BOOT_EXPECTED_BUT_FAILED))
+    {
+        val->print(PRINT_ERROR, "\tFailed to set boot flag after check\n", 0);
+        return VAL_STATUS_ERROR;
+    }
+    return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_l088/source.mk b/api-tests/ff/ipc/test_l088/source.mk
new file mode 100644
index 00000000..c2004628
--- /dev/null
+++ b/api-tests/ff/ipc/test_l088/source.mk
@@ -0,0 +1,25 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+CC_SOURCE  = test_entry.c test_l088.c
+CC_OPTIONS =
+AS_SOURCE  =
+AS_OPTIONS =
+
+CC_SOURCE_SPE  = test_l088.c test_supp_l088.c
+CC_OPTIONS_SPE =
+AS_SOURCE_SPE  =
+AS_OPTIONS_SPE =
diff --git a/api-tests/ff/ipc/test_l088/test_entry.c b/api-tests/ff/ipc/test_l088/test_entry.c
new file mode 100644
index 00000000..4732122f
--- /dev/null
+++ b/api-tests/ff/ipc/test_l088/test_entry.c
@@ -0,0 +1,52 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_interfaces.h"
+#include "val_target.h"
+#include "test_l088.h"
+
+#define TEST_NUM  VAL_CREATE_TEST_ID(VAL_FF_BASE, 88)
+#define TEST_DESC "Testing psa_rot_lifecycle_state API\n"
+TEST_PUBLISH(TEST_NUM, test_entry);
+val_api_t *val = NULL;
+psa_api_t *psa = NULL;
+
+void test_entry(val_api_t *val_api, psa_api_t *psa_api)
+{
+    int32_t   status = VAL_STATUS_SUCCESS;
+
+    val = val_api;
+    psa = psa_api;
+
+    /* test init */
+    val->test_init(TEST_NUM, TEST_DESC, TEST_FIELD(TEST_ISOLATION_L1, WD_LOW_TIMEOUT));
+    if (!IS_TEST_START(val->get_status()))
+    {
+        goto test_exit;
+    }
+
+    /* Switch to secure side (client_partition.c) and execute list of tests available in
+    test[num]_client_tests_list from Secure side */
+    status = val->switch_to_secure_client(TEST_NUM);
+    if (VAL_ERROR(status))
+    {
+        goto test_exit;
+    }
+
+test_exit:
+    val->test_exit();
+}
diff --git a/api-tests/ff/ipc/test_l088/test_l088.c b/api-tests/ff/ipc/test_l088/test_l088.c
new file mode 100644
index 00000000..612c9278
--- /dev/null
+++ b/api-tests/ff/ipc/test_l088/test_l088.c
@@ -0,0 +1,37 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifdef NONSECURE_TEST_BUILD
+#include "val_interfaces.h"
+#include "val_target.h"
+#else
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+#endif
+
+#include "test_l088.h"
+
+client_test_t test_l088_client_tests_list[] = {
+    NULL,
+    client_test_psa_rot_lifecycle_state,
+    NULL,
+};
+
+int32_t client_test_psa_rot_lifecycle_state(security_t caller)
+{
+   return VAL_STATUS_SUCCESS;
+}
diff --git a/api-tests/ff/ipc/test_l088/test_l088.h b/api-tests/ff/ipc/test_l088/test_l088.h
new file mode 100644
index 00000000..e27f8acf
--- /dev/null
+++ b/api-tests/ff/ipc/test_l088/test_l088.h
@@ -0,0 +1,37 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+#ifndef _TEST_L088_CLIENT_TESTS_H_
+#define _TEST_L088_CLIENT_TESTS_H_
+
+#include "val_client_defs.h"
+
+#ifdef NONSECURE_TEST_BUILD
+#define test_entry CONCAT(test_entry_,l088)
+#define val CONCAT(val,test_entry)
+#define psa CONCAT(psa,test_entry)
+#else
+#define val CONCAT(val,_client_sp)
+#define psa CONCAT(psa,_client_sp)
+#endif
+
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+extern client_test_t test_i088_client_tests_list[];
+
+int32_t client_test_psa_rot_lifecycle_state(security_t);
+#endif
diff --git a/api-tests/ff/ipc/test_l088/test_supp_l088.c b/api-tests/ff/ipc/test_l088/test_supp_l088.c
new file mode 100644
index 00000000..1ca9fe6d
--- /dev/null
+++ b/api-tests/ff/ipc/test_l088/test_supp_l088.c
@@ -0,0 +1,59 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "val_client_defs.h"
+#include "val_service_defs.h"
+
+#define val CONCAT(val,_server_sp)
+#define psa CONCAT(psa,_server_sp)
+extern val_api_t *val;
+extern psa_api_t *psa;
+
+int32_t server_test_psa_rot_lifecycle_state(void);
+
+server_test_t test_l088_server_tests_list[] = {
+    NULL,
+    server_test_psa_rot_lifecycle_state,
+    NULL,
+};
+
+int32_t server_test_psa_rot_lifecycle_state(void)
+{
+    uint32_t state;
+    int32_t  status = VAL_STATUS_UNSUPPORTED;
+
+    val->print(PRINT_TEST, "[Check 1] Test calling psa_rot_lifecycle_state API\n", 0);
+
+    state = psa->rot_lifecycle_state();
+    switch (state & PSA_LIFECYCLE_PSA_STATE_MASK)
+    {
+        case PSA_LIFECYCLE_UNKNOWN:
+        case PSA_LIFECYCLE_ASSEMBLY_AND_TEST:
+        case PSA_LIFECYCLE_PSA_ROT_PROVISIONING:
+        case PSA_LIFECYCLE_SECURED:
+        case PSA_LIFECYCLE_NON_PSA_ROT_DEBUG:
+        case PSA_LIFECYCLE_RECOVERABLE_PSA_ROT_DEBUG:
+        case PSA_LIFECYCLE_DECOMMISSIONED:
+            status = VAL_STATUS_SUCCESS;
+            break;
+        default:
+            val->print(PRINT_ERROR, "\tpsa_rot_lifecycle_state API returned"
+                                    "unsupported value\n", 0);
+    }
+
+    return status;
+}
diff --git a/api-tests/ff/ipc/testsuite.db b/api-tests/ff/ipc/testsuite.db
index 4bff10ed..f8a30133 100644
--- a/api-tests/ff/ipc/testsuite.db
+++ b/api-tests/ff/ipc/testsuite.db
@@ -23,68 +23,90 @@
 test_i001
 test_i002
 test_i003
-test_i004
-test_i005
-test_i006
-test_i007
-test_i008
-test_i009
-test_i010
-test_i011
-test_i012
-test_i013
-test_i014
-test_i015
-test_i016
-test_i017
-test_i018
-test_i019
-test_i020
+test_i004, panic_test
+test_i005, panic_test
+test_i006, panic_test
+test_i007, panic_test
+test_i008, panic_test
+test_i009, panic_test
+test_i010, panic_test
+test_i011, panic_test
+test_i012, panic_test
+test_i013, panic_test
+test_i014, panic_test
+test_i015, panic_test
+test_i016, panic_test
+test_i017, panic_test
+test_i018, panic_test
+test_i019, panic_test
+test_i020, panic_test
 test_i021
-test_i022
-test_i023
-test_i024
-test_i025
-test_i026
-test_i027
-test_i028
-test_i029
-test_i030
-test_i031
-test_i032
-test_i033
-test_i034
-test_i035
-test_i036
-test_i037
-test_i038
-test_i039
-test_i040
-test_i041
-test_i042
-test_i043
-test_i044
-test_i045
-test_i046
-test_i047
-test_i048
-test_i049
-test_i050
-test_i051
-test_i052
-test_i053
-test_i054
-test_i055
-test_i056
-test_i057
+test_i022, panic_test
+test_i023, panic_test
+test_i024, panic_test
+test_i025, panic_test
+test_i026, panic_test
+test_i027, panic_test
+test_i028, panic_test
+test_i029, panic_test
+test_i030, panic_test
+test_i031, panic_test
+test_i032, panic_test
+test_i033, panic_test
+test_i034, panic_test
+test_i035, panic_test
+test_i036, panic_test
+test_i037, panic_test
+test_i038, panic_test
+test_i039, panic_test
+test_i040, panic_test
+test_i041, panic_test
+test_i042, panic_test
+test_i043, panic_test
+test_i044, panic_test
+test_i045, panic_test
+test_i046, panic_test
+test_i047, panic_test
+test_i048, panic_test
+test_i049, panic_test
+test_i050, panic_test
+test_i051, panic_test
+test_i052, panic_test
+test_i053, panic_test
+test_i054, panic_test
+test_i055, panic_test
+test_i056, panic_test
+test_i057, panic_test
 test_i058
-test_i059
-test_i060
-test_i061
-test_i062
+test_i059, panic_test
+test_i060, panic_test
+test_i061, panic_test
+test_i062, panic_test
 test_i063
-test_i064
-test_i065
-test_i066
+test_i064, panic_test
+test_i065, panic_test
+test_i066, panic_test
+test_i067
+test_i068, panic_test
+test_i069, panic_test
+test_i070, panic_test
+test_i071
+test_i072, panic_test
+test_i073, panic_test
+test_i074, panic_test
+test_i075, panic_test
+test_i076, panic_test
+test_i077, panic_test
+test_i078, panic_test
+test_i079, panic_test
+test_i080, panic_test
+test_i081, panic_test
+test_i082, panic_test
+test_i083, panic_test
+test_i084, panic_test
+test_i085, panic_test
+test_i086, panic_test
+test_i087, panic_test
+test_l088
 
 (END)
diff --git a/api-tests/ff/partition/common/driver_partition.c b/api-tests/ff/partition/common/driver_partition.c
index 6523fd58..53a6004b 100644
--- a/api-tests/ff/partition/common/driver_partition.c
+++ b/api-tests/ff/partition/common/driver_partition.c
@@ -17,22 +17,36 @@
 
 #include "val/spe/val_driver_service_apis.h"
 
+#define DATA_VALUE  0x1111
+#define BUFFER_SIZE 4
+
+uint32_t g_psa_rot_data = DATA_VALUE;
+
 int32_t driver_test_psa_eoi_with_non_intr_signal(void);
 int32_t driver_test_psa_eoi_with_unasserted_signal(void);
 int32_t driver_test_psa_eoi_with_multiple_signals(void);
+int32_t driver_test_irq_routing(void);
+void driver_test_isolation_psa_rot_data_rd(psa_msg_t *msg);
+void driver_test_isolation_psa_rot_data_wr(psa_msg_t *msg);
+void driver_test_isolation_psa_rot_stack_rd(psa_msg_t *msg);
+void driver_test_isolation_psa_rot_stack_wr(psa_msg_t *msg);
+void driver_test_isolation_psa_rot_heap_rd(psa_msg_t *msg);
+void driver_test_isolation_psa_rot_heap_wr(psa_msg_t *msg);
+void driver_test_isolation_psa_rot_mmio_rd(psa_msg_t *msg);
+void driver_test_isolation_psa_rot_mmio_wr(psa_msg_t *msg);
 
 void driver_main(void)
 {
-    psa_signal_t        signals = 0;
-    psa_msg_t           msg = {0};
-    uint32_t            data = 0;
-    uart_fn_type_t      uart_fn;
-    nvmem_param_t       nvmem_param;
-    test_intr_fn_id_t   test_intr_fn_id;
-    char                string[256] = {0};
-    uint8_t             buffer[256] = {0};
-    wd_param_t          wd_param;
-    addr_t              uart_base;
+    psa_signal_t          signals = 0;
+    psa_msg_t             msg = {0};
+    int32_t               data = 0;
+    uart_fn_type_t        uart_fn;
+    nvmem_param_t         nvmem_param;
+    driver_test_fn_id_t   driver_test_fn_id;
+    char                  string[256] = {0};
+    uint8_t               buffer[256] = {0};
+    wd_param_t            wd_param;
+    addr_t                uart_base;
 
     /* Initialised driver mmio space */
     if (val_init_driver_memory())
@@ -206,14 +220,14 @@ void driver_main(void)
                     break;
             }
         }
-        /* SID reserved for interrupt testing */
-        else if (signals & TEST_INTR_SIG)
+        /* SID reserved for Driver test functions */
+        else if (signals & DRIVER_TEST_SIG)
         {
-            psa_get(TEST_INTR_SIG, &msg);
+            psa_get(DRIVER_TEST_SIG, &msg);
             switch (msg.type)
             {
                 case PSA_IPC_CALL:
-                    if (msg.in_size[0] > sizeof(test_intr_fn_id_t))
+                    if (msg.in_size[0] > sizeof(driver_test_fn_id_t))
                     {
                         /* buffer overflow */
                         psa_reply(msg.handle, VAL_STATUS_ERROR);
@@ -222,10 +236,10 @@ void driver_main(void)
                     }
                     else
                     {
-                        psa_read(msg.handle, 0, &test_intr_fn_id, msg.in_size[0]);
+                        psa_read(msg.handle, 0, &driver_test_fn_id, msg.in_size[0]);
                     }
 
-                    switch (test_intr_fn_id)
+                    switch (driver_test_fn_id)
                     {
                         case TEST_PSA_EOI_WITH_NON_INTR_SIGNAL:
                              driver_test_psa_eoi_with_non_intr_signal();
@@ -240,6 +254,34 @@ void driver_main(void)
                              psa_reply(msg.handle, VAL_STATUS_ERROR);
                              break;
                         case TEST_INTR_SERVICE:
+                             if (driver_test_irq_routing() != VAL_STATUS_SUCCESS)
+                                 psa_reply(msg.handle, VAL_STATUS_ERROR);
+                             else
+                                 psa_reply(msg.handle, PSA_SUCCESS);
+                             break;
+                        case TEST_ISOLATION_PSA_ROT_DATA_RD:
+                             driver_test_isolation_psa_rot_data_rd(&msg);
+                             break;
+                        case TEST_ISOLATION_PSA_ROT_DATA_WR:
+                             driver_test_isolation_psa_rot_data_wr(&msg);
+                             break;
+                        case TEST_ISOLATION_PSA_ROT_STACK_RD:
+                             driver_test_isolation_psa_rot_stack_rd(&msg);
+                             break;
+                        case TEST_ISOLATION_PSA_ROT_STACK_WR:
+                             driver_test_isolation_psa_rot_stack_wr(&msg);
+                             break;
+                        case TEST_ISOLATION_PSA_ROT_HEAP_RD:
+                             driver_test_isolation_psa_rot_heap_rd(&msg);
+                             break;
+                        case TEST_ISOLATION_PSA_ROT_HEAP_WR:
+                             driver_test_isolation_psa_rot_heap_wr(&msg);
+                             break;
+                        case TEST_ISOLATION_PSA_ROT_MMIO_RD:
+                             driver_test_isolation_psa_rot_mmio_rd(&msg);
+                             break;
+                        case TEST_ISOLATION_PSA_ROT_MMIO_WR:
+                             driver_test_isolation_psa_rot_mmio_wr(&msg);
                              break;
                     }
                     break;
@@ -267,7 +309,7 @@ int32_t driver_test_psa_eoi_with_non_intr_signal(void)
         return VAL_STATUS_ERROR;
     }
 
-    /* psa_eoi should not return as signal is non-interrupt signal*/
+    /* psa_eoi should panic as signal is non-interrupt signal*/
     psa_eoi(PSA_DOORBELL);
 
     /* Control shouldn't have reached here */
@@ -292,7 +334,7 @@ int32_t driver_test_psa_eoi_with_unasserted_signal(void)
         return VAL_STATUS_ERROR;
     }
 
-    /* psa_eoi should not return as DRIVER_UART_INTR_SIG is unasserted */
+    /* psa_eoi should panic as DRIVER_UART_INTR_SIG is unasserted */
     psa_eoi(DRIVER_UART_INTR_SIG);
 
     /* Control shouldn't have reached here */
@@ -310,6 +352,27 @@ int32_t driver_test_psa_eoi_with_unasserted_signal(void)
 
 int32_t driver_test_psa_eoi_with_multiple_signals(void)
 {
+    /*
+     * To test psa_eoi for multiple signals, one of signal should asserted first.
+     * Otherwise, check can false pass with psa_eoi_with_unasserted_signal.
+     * Assert interrupt signal assigned to driver partition
+     */
+    val_generate_interrupt();
+
+    /* Wait for DRIVER_UART_INTR_SIG signal */
+    if (psa_wait(DRIVER_UART_INTR_SIG, PSA_BLOCK) & DRIVER_UART_INTR_SIG)
+    {
+        /* Received DRIVER_UART_INTR_SIG signal, now process it */
+        val_disable_interrupt();
+    }
+    else
+    {
+        /* didn't receive DRIVER_UART_INTR_SIG signal, however process it */
+        val_disable_interrupt();
+        val_print_sf("\tFailed to receive irq signal\n", 0);
+        return VAL_STATUS_SPM_FAILED;
+    }
+
     /* Setting boot.state before test check */
     if (val_driver_private_set_boot_flag_fn(BOOT_EXPECTED_NS))
     {
@@ -317,8 +380,8 @@ int32_t driver_test_psa_eoi_with_multiple_signals(void)
         return VAL_STATUS_ERROR;
     }
 
-    /* psa_eoi should not return as irq_signal is provided with multiple signals */
-    psa_eoi(DRIVER_UART_INTR_SIG|TEST_INTR_SIG);
+    /* psa_eoi should panic as irq_signal is provided with multiple signals */
+    psa_eoi(DRIVER_UART_INTR_SIG|DRIVER_TEST_SIG);
 
     /* Control shouldn't have reached here */
     val_print_sf("\tCheck for psa_eoi(multiple_signals) failed\n", 0);
@@ -332,3 +395,307 @@ int32_t driver_test_psa_eoi_with_multiple_signals(void)
 
     return VAL_STATUS_SPM_FAILED;
 }
+
+int32_t driver_test_irq_routing(void)
+{
+    psa_signal_t signals = 0;
+
+    /* Assert interrupt signal assigned to driver partition */
+    val_generate_interrupt();
+
+    /* Wait for DRIVER_UART_INTR_SIG signal */
+    signals = psa_wait(PSA_WAIT_ANY, PSA_BLOCK);
+
+    if (signals & DRIVER_UART_INTR_SIG)
+    {
+        /* Received DRIVER_UART_INTR_SIG signal, now process it */
+        val_disable_interrupt();
+
+        /* A signal remains active until it is processed by psa_eoi */
+        if ((psa_wait(DRIVER_UART_INTR_SIG, PSA_BLOCK) & DRIVER_UART_INTR_SIG) == 0)
+        {
+            val_print_sf("\tIrq signal got de-activate before psa_eoi()\n", 0);
+            return VAL_STATUS_SPM_FAILED;
+        }
+
+        /* Perform end of interrupt */
+        psa_eoi(DRIVER_UART_INTR_SIG);
+
+        /* Irq signal should be de-activated now */
+        if (psa_wait(DRIVER_UART_INTR_SIG, PSA_POLL) & DRIVER_UART_INTR_SIG)
+        {
+            val_print_sf("\tIrq signal didn't get de-activate after psa_eoi()\n", 0);
+            return VAL_STATUS_SPM_FAILED;
+        }
+
+        return VAL_STATUS_SUCCESS;
+    }
+    else
+    {
+        /* didn't receive DRIVER_UART_INTR_SIG signal, however process it */
+        val_disable_interrupt();
+        val_print_sf("\tFailed to receive irq signal, signals=0x%x\n", signals);
+        return VAL_STATUS_SPM_FAILED;
+    }
+}
+
+static int32_t process_call_request(psa_signal_t sig, psa_msg_t *msg)
+{
+    val_status_t res = VAL_STATUS_ERROR;
+    psa_signal_t signals;
+
+wait:
+    signals = psa_wait(PSA_WAIT_ANY, PSA_BLOCK);
+    if (signals & sig)
+    {
+        if (psa_get(sig, msg) != PSA_SUCCESS)
+        {
+            goto wait;
+        }
+
+        if ((msg->type != PSA_IPC_CALL) || (msg->handle <= 0))
+        {
+            val_print_sf("\tpsa_get failed for PSA_IPC_CALL\n", 0);
+            res = VAL_STATUS_ERROR;
+        }
+        else
+        {
+            res = VAL_STATUS_SUCCESS;
+        }
+    }
+    else
+    {
+        val_print_sf("\tpsa_wait returned with invalid signal value = 0x%x\n", signals);
+        res = VAL_STATUS_ERROR;
+    }
+    return res;
+}
+
+void driver_test_isolation_psa_rot_data_rd(psa_msg_t *msg)
+{
+    /* Send PSA RoT data address - global variable */
+    psa_write(msg->handle, 0, (void *) &g_psa_rot_data, sizeof(addr_t));
+    psa_reply(msg->handle, PSA_SUCCESS);
+}
+
+void driver_test_isolation_psa_rot_data_wr(psa_msg_t *msg)
+{
+    /* Send PSA RoT data address - global variable */
+    psa_write(msg->handle, 0, (void *) &g_psa_rot_data, sizeof(addr_t));
+
+    /* Setting boot.state before test check */
+    if (val_driver_private_set_boot_flag_fn(BOOT_EXPECTED_S))
+    {
+       val_print_sf("\tFailed to set boot flag before check\n", 0);
+       psa_reply(msg->handle, -2);
+    }
+    psa_reply(msg->handle, PSA_SUCCESS);
+
+    /* Process second call request */
+    if (VAL_ERROR(process_call_request(DRIVER_TEST_SIG, msg)))
+    {
+        psa_reply(msg->handle, -2);
+        return;
+    }
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val_driver_private_set_boot_flag_fn(BOOT_EXPECTED_BUT_FAILED))
+    {
+        val_print_sf("\tFailed to set boot flag after check\n", 0);
+        psa_reply(msg->handle, -2);
+        return;
+    }
+
+    /* Reached here means there could be write succeed or ignored */
+    if (g_psa_rot_data == DATA_VALUE)
+    {
+        psa_reply(msg->handle, PSA_SUCCESS);
+    }
+    else
+    {
+        val_print_sf("\tExpected write to fault but it didn't\n", 0);
+        psa_reply(msg->handle, -2);
+    }
+}
+
+void driver_test_isolation_psa_rot_stack_rd(psa_msg_t *msg)
+{
+    uint32_t l_psa_rot_data = DATA_VALUE;
+
+    /* Send PSA RoT stack address - local variable */
+    psa_write(msg->handle, 0, (void *) &l_psa_rot_data, sizeof(addr_t));
+    psa_reply(msg->handle, PSA_SUCCESS);
+
+    /* Dummy print to avoid compiler optimisation on local variable */
+    val_print_sf("\tl_psa_rot_data value 0x%x\n", l_psa_rot_data);
+}
+
+void driver_test_isolation_psa_rot_stack_wr(psa_msg_t *msg)
+{
+    uint32_t l_psa_rot_data = DATA_VALUE;
+
+    /* Send PSA RoT stack address - local variable */
+    psa_write(msg->handle, 0, (void *) &l_psa_rot_data, sizeof(addr_t));
+
+    /* Setting boot.state before test check */
+    if (val_driver_private_set_boot_flag_fn(BOOT_EXPECTED_S))
+    {
+       val_print_sf("\tFailed to set boot flag before check\n", 0);
+       psa_reply(msg->handle, -2);
+    }
+    psa_reply(msg->handle, PSA_SUCCESS);
+
+    /* Process second call request */
+    if (VAL_ERROR(process_call_request(DRIVER_TEST_SIG, msg)))
+    {
+        psa_reply(msg->handle, -2);
+        return;
+    }
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val_driver_private_set_boot_flag_fn(BOOT_EXPECTED_BUT_FAILED))
+    {
+        val_print_sf("\tFailed to set boot flag after check\n", 0);
+        psa_reply(msg->handle, -2);
+        return;
+    }
+
+    /* Reached here means there could be write succeed or ignored */
+    if (l_psa_rot_data == DATA_VALUE)
+    {
+        psa_reply(msg->handle, PSA_SUCCESS);
+    }
+    else
+    {
+        val_print_sf("\tExpected write to fault but it didn't\n", 0);
+        psa_reply(msg->handle, -2);
+    }
+}
+
+void driver_test_isolation_psa_rot_heap_rd(psa_msg_t *msg)
+{
+#if (SP_HEAP_MEM_SUPP == 1)
+    uint8_t         *buffer;
+
+    buffer = (uint8_t *)malloc(sizeof(uint8_t) * BUFFER_SIZE);
+    memset((uint8_t *)buffer, (uint8_t)DATA_VALUE, BUFFER_SIZE);
+
+    /* Send PSA RoT heap address */
+    psa_write(msg->handle, 0, (void *) buffer, BUFFER_SIZE);
+    psa_reply(msg->handle, PSA_SUCCESS);
+    free(buffer);
+#endif
+}
+
+void driver_test_isolation_psa_rot_heap_wr(psa_msg_t *msg)
+{
+#if (SP_HEAP_MEM_SUPP == 1)
+    uint8_t         *buffer;
+
+    buffer = (uint8_t *)malloc(sizeof(uint8_t) * BUFFER_SIZE);
+    memset((uint8_t *)buffer, (uint8_t)DATA_VALUE, BUFFER_SIZE);
+
+    /* Send PSA RoT heap address */
+    psa_write(msg->handle, 0, (void *) buffer, BUFFER_SIZE);
+    psa_reply(msg->handle, PSA_SUCCESS);
+
+    /* Setting boot.state before test check */
+    if (val_driver_private_set_boot_flag_fn(BOOT_EXPECTED_S))
+    {
+       val_print_sf("\tFailed to set boot flag before check\n", 0);
+       psa_reply(msg->handle, -2);
+    }
+
+    /* Process second call request */
+    if (VAL_ERROR(process_call_request(DRIVER_TEST_SIG, msg)))
+    {
+        psa_reply(msg->handle, -2);
+        return;
+    }
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val_driver_private_set_boot_flag_fn(BOOT_EXPECTED_BUT_FAILED))
+    {
+        val_print_sf("\tFailed to set boot flag after check\n", 0);
+        psa_reply(msg->handle, -2);
+        return;
+    }
+
+    /* Reached here means there could be write succeed or ignored */
+    if (buffer[0] == (uint8_t)DATA_VALUE)
+    {
+        psa_reply(msg->handle, PSA_SUCCESS);
+    }
+    else
+    {
+        val_print_sf("\tExpected write to fault but it didn't\n", 0);
+        psa_reply(msg->handle, -2);
+    }
+    free(buffer);
+#endif
+}
+
+void driver_test_isolation_psa_rot_mmio_rd(psa_msg_t *msg)
+{
+    addr_t psa_rot_mmio_addr;
+
+    if (VAL_ERROR(val_get_driver_mmio_addr(&psa_rot_mmio_addr)))
+    {
+        psa_reply(msg->handle, -2);
+        return;
+    }
+
+    /* Send PSA RoT mmio address */
+    memset((uint8_t *)&psa_rot_mmio_addr, (uint8_t)DATA_VALUE, sizeof(addr_t));
+    psa_write(msg->handle, 0, (void *) &psa_rot_mmio_addr, sizeof(addr_t));
+    psa_reply(msg->handle, PSA_SUCCESS);
+}
+
+void driver_test_isolation_psa_rot_mmio_wr(psa_msg_t *msg)
+{
+    addr_t psa_rot_mmio_addr;
+
+    if (VAL_ERROR(val_get_driver_mmio_addr(&psa_rot_mmio_addr)))
+    {
+        psa_reply(msg->handle, -2);
+        return;
+    }
+
+    /* Send PSA RoT mmio address */
+    memset((uint8_t *)&psa_rot_mmio_addr, (uint8_t)DATA_VALUE, sizeof(uint32_t));
+    psa_write(msg->handle, 0, (void *) &psa_rot_mmio_addr, sizeof(uint32_t));
+    psa_reply(msg->handle, PSA_SUCCESS);
+
+    /* Setting boot.state before test check */
+    if (val_driver_private_set_boot_flag_fn(BOOT_EXPECTED_S))
+    {
+       val_print_sf("\tFailed to set boot flag before check\n", 0);
+       psa_reply(msg->handle, -2);
+    }
+
+    /* Process second call request */
+    if (VAL_ERROR(process_call_request(DRIVER_TEST_SIG, msg)))
+    {
+        psa_reply(msg->handle, -2);
+        return;
+    }
+
+    /* Resetting boot.state to catch unwanted reboot */
+    if (val_driver_private_set_boot_flag_fn(BOOT_EXPECTED_BUT_FAILED))
+    {
+        val_print_sf("\tFailed to set boot flag after check\n", 0);
+        psa_reply(msg->handle, -2);
+        return;
+    }
+
+    /* Reached here means there could be write succeed or ignored */
+    if (*(uint32_t *)psa_rot_mmio_addr == (uint32_t)DATA_VALUE)
+    {
+        psa_reply(msg->handle, PSA_SUCCESS);
+    }
+    else
+    {
+        val_print_sf("\tExpected write to fault but it didn't\n", 0);
+        psa_reply(msg->handle, -2);
+    }
+}
diff --git a/api-tests/ff/partition/ipc/client_partition.c b/api-tests/ff/partition/ipc/client_partition.c
index 794f6d24..7be5a6cb 100644
--- a/api-tests/ff/partition/ipc/client_partition.c
+++ b/api-tests/ff/partition/ipc/client_partition.c
@@ -25,6 +25,7 @@ void client_main(void)
     psa_signal_t    signals = 0;
     val_status_t    status, test_status;
     psa_msg_t       msg = {0};
+    test_info_t     test_info;
 
     while (1)
     {
@@ -40,7 +41,7 @@ void client_main(void)
                     if (test_data != 0)
                     {
                         val_print(PRINT_ERROR, "must clear previous dispatcher connection\n", 0);
-                        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+                        psa_reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
                     }
                     else
                     {
@@ -56,7 +57,7 @@ void client_main(void)
                     }
                     if (VAL_ERROR(status))
                     {
-                        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+                        psa_reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
                         break;
                     }
 
@@ -66,8 +67,10 @@ void client_main(void)
 
                         val_print(PRINT_INFO, "In client part, test-id %d\n",
                                                     GET_TEST_NUM(test_data));
+                        test_info.test_num = GET_TEST_NUM(test_data);
+                        test_info.block_num = GET_BLOCK_NUM(test_data);
                         /* Execute client test func from secure*/
-                        test_status = val_execute_secure_tests(GET_TEST_NUM(test_data),
+                        test_status = val_execute_secure_tests(test_info,
                                             client_ipc_test_list[GET_TEST_NUM(test_data)]);
                     }
                     else if (GET_ACTION_NUM(test_data) == TEST_RETURN_RESULT)
@@ -77,7 +80,7 @@ void client_main(void)
                     }
                     else
                     {
-                        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+                        psa_reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
                     }
                     break;
                 case PSA_IPC_DISCONNECT:
@@ -94,7 +97,7 @@ void client_main(void)
         /* Server_partition requests client to connect to SERVER_SECURE_CONNECT_ONLY_SID */
         else if (signals & PSA_DOORBELL)
         {
-            if (psa_connect(SERVER_SECURE_CONNECT_ONLY_SID, 2) != PSA_CONNECTION_REFUSED)
+            if (psa_connect(SERVER_SECURE_CONNECT_ONLY_SID, 2) != PSA_ERROR_CONNECTION_REFUSED)
             {
                val_print(PRINT_ERROR, "psa_connect failed \n", 0);
             }
diff --git a/api-tests/ff/partition/ipc/server_partition.c b/api-tests/ff/partition/ipc/server_partition.c
index 35c06418..de0e7a42 100644
--- a/api-tests/ff/partition/ipc/server_partition.c
+++ b/api-tests/ff/partition/ipc/server_partition.c
@@ -17,6 +17,9 @@
 
 #include "server_partition.h"
 
+val_api_t *val_server_sp = &val_api;
+psa_api_t *psa_server_sp = &psa_api;
+
 void server_main(void)
 {
     uint32_t        test_data = 0;
@@ -40,7 +43,7 @@ void server_main(void)
                     if (test_data != 0)
                     {
                         val_print(PRINT_ERROR, "must clear previous dispatcher connection\n", 0);
-                        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+                        psa_reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
                     }
                     else
                     {
@@ -56,7 +59,7 @@ void server_main(void)
                     }
                     if (VAL_ERROR(status))
                     {
-                        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+                        psa_reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
                         break;
                     }
 
@@ -80,7 +83,7 @@ void server_main(void)
                     }
                     else
                     {
-                        psa_reply(msg.handle, PSA_CONNECTION_REFUSED);
+                        psa_reply(msg.handle, PSA_ERROR_CONNECTION_REFUSED);
                     }
                     break;
                 case PSA_IPC_DISCONNECT:
diff --git a/api-tests/platform/drivers/nvmem/pal_nvmem.c b/api-tests/platform/drivers/nvmem/pal_nvmem.c
index 65a9442b..502d7010 100644
--- a/api-tests/platform/drivers/nvmem/pal_nvmem.c
+++ b/api-tests/platform/drivers/nvmem/pal_nvmem.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
diff --git a/api-tests/platform/drivers/nvmem/pal_nvmem.h b/api-tests/platform/drivers/nvmem/pal_nvmem.h
index 5a6f7be4..11443045 100644
--- a/api-tests/platform/drivers/nvmem/pal_nvmem.h
+++ b/api-tests/platform/drivers/nvmem/pal_nvmem.h
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
diff --git a/api-tests/platform/drivers/uart/cmsdk/pal_uart.c b/api-tests/platform/drivers/uart/cmsdk/pal_uart.c
index 5ccc5fcc..e55a4115 100644
--- a/api-tests/platform/drivers/uart/cmsdk/pal_uart.c
+++ b/api-tests/platform/drivers/uart/cmsdk/pal_uart.c
@@ -65,10 +65,10 @@ static void pal_uart_cmsdk_putc(uint8_t c)
     @param    - str      : Input String
               - data     : Value for format specifier
 **/
-void pal_cmsdk_print(char *str, uint32_t data)
+void pal_cmsdk_print(char *str, int32_t data)
 {
-    uint8_t j, buffer[16];
-    int8_t  i = 0;
+    int8_t  j, buffer[16];
+    int8_t  i = 0, is_neg = 0;
 
     for (; *str != '\0'; ++str)
     {
@@ -77,6 +77,12 @@ void pal_cmsdk_print(char *str, uint32_t data)
             ++str;
             if (*str == 'd')
             {
+                if (data < 0)
+                {
+                    data = -(data);
+                    is_neg = 1;
+                }
+
                 while (data != 0)
                 {
                     j         = data % 10;
@@ -84,6 +90,9 @@ void pal_cmsdk_print(char *str, uint32_t data)
                     buffer[i] = j + 48;
                     i        += 1;
                 }
+
+                if (is_neg)
+                    buffer[i++] = '-';
             }
             else if (*str == 'x' || *str == 'X')
             {
@@ -112,3 +121,39 @@ void pal_cmsdk_print(char *str, uint32_t data)
         }
     }
 }
+
+/**
+    @brief    - This function checks for TX interrupt triggered or not
+**/
+static int pal_uart_cmsdk_is_tx_irq_triggerd(void)
+{
+    return (((uart_t *) g_uart)->INTSTATUS & CMSDK_UART_INTSTATUS_TXIRQ_Msk);
+}
+
+/**
+    @brief    - This function triggers the UART TX interrupt
+**/
+void pal_uart_cmsdk_generate_irq(void)
+{
+    /* Enable TX interrupt */
+    ((uart_t *) g_uart)->CTRL |= CMSDK_UART_CTRL_TXIRQEN_Msk;
+
+    /* Fill the TX buffer to generate TX IRQ */
+    pal_uart_cmsdk_putc(' ');
+    pal_uart_cmsdk_putc(' ');
+
+    /* Loop until TX interrupt trigger */
+    while (!pal_uart_cmsdk_is_tx_irq_triggerd());
+}
+
+/**
+    @brief    - This function disable the UART TX interrupt
+**/
+void pal_uart_cmsdk_disable_irq(void)
+{
+    /* Clear TX interrupt */
+    ((uart_t *) g_uart)->INTCLEAR |= CMSDK_UART_INTCLEAR_TXIRQ_Msk;
+
+    /* Disable TX interrupt */
+    ((uart_t *) g_uart)->CTRL &= ~CMSDK_UART_CTRL_TXIRQEN_Msk;
+}
diff --git a/api-tests/platform/drivers/uart/cmsdk/pal_uart.h b/api-tests/platform/drivers/uart/cmsdk/pal_uart.h
index 7e82d417..442536f9 100644
--- a/api-tests/platform/drivers/uart/cmsdk/pal_uart.h
+++ b/api-tests/platform/drivers/uart/cmsdk/pal_uart.h
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -27,6 +27,15 @@
 /* CMSDK_UART CTRL Register Definitions */
 #define CMSDK_UART_CTRL_TXEN_Pos          0       /* CMSDK_UART CTRL: TXEN Position */
 #define CMSDK_UART_CTRL_TXEN_Msk         (0x01UL) /* CMSDK_UART CTRL: TXEN Mask */
+#define CMSDK_UART_CTRL_TXIRQEN_Pos       2  /* CMSDK_UART CTRL: TXIRQEN Position */
+#define CMSDK_UART_CTRL_TXIRQEN_Msk       (0x01ul << CMSDK_UART_CTRL_TXIRQEN_Pos)
+                                            /* CMSDK_UART CTRL: TXIRQEN Mask */
+#define CMSDK_UART_INTCLEAR_TXIRQ_Pos  0   /* CMSDK_UART CLEAR: TXIRQ Position */
+#define CMSDK_UART_INTCLEAR_TXIRQ_Msk       (0x01ul << CMSDK_UART_INTCLEAR_TXIRQ_Pos)
+                                            /* CMSDK_UART CLEAR: TXIRQ Mask */
+#define CMSDK_UART_INTSTATUS_TXIRQ_Pos  0   /* CMSDK_UART STATUS: TXIRQ Position */
+#define CMSDK_UART_INTSTATUS_TXIRQ_Msk       (0x01ul << CMSDK_UART_INTSTATUS_TXIRQ_Pos)
+                                            /* CMSDK_UART STATUS: TXIRQ Mask */
 
 /* typedef's */
 typedef struct {
@@ -43,6 +52,8 @@ typedef struct {
 
 /* function prototypes */
 void pal_uart_cmsdk_init(uint32_t uart_base_addr);
-void pal_cmsdk_print(char *str, uint32_t data);
+void pal_cmsdk_print(char *str, int32_t data);
+void pal_uart_cmsdk_generate_irq(void);
+void pal_uart_cmsdk_disable_irq(void);
 
 #endif /* _PAL_UART_CMSDK_H_ */
diff --git a/api-tests/platform/drivers/uart/pl011/pal_uart.c b/api-tests/platform/drivers/uart/pl011/pal_uart.c
index b6ba1bd0..9a1095b5 100644
--- a/api-tests/platform/drivers/uart/pl011/pal_uart.c
+++ b/api-tests/platform/drivers/uart/pl011/pal_uart.c
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -17,7 +17,7 @@
 
 #include "pal_uart.h"
 
-volatile uint32_t uart;
+volatile uint32_t g_uart;
 
 /**
     @brief    - This function initializes the UART
@@ -25,7 +25,7 @@ volatile uint32_t uart;
 **/
 void pal_uart_pl011_init(uint32_t uart_base_addr)
 {
-    uart = uart_base_addr;
+    g_uart = uart_base_addr;
 }
 
 /**
@@ -33,11 +33,11 @@ void pal_uart_pl011_init(uint32_t uart_base_addr)
 **/
 static int pal_uart_is_tx_empty(void)
 {
-    if ((((uart_gt *)uart)->uartcr & UART_PL011_UATRCR_EN_MASK) &&
+    if ((((uart_t *)g_uart)->uartcr & UART_PL011_UATRCR_EN_MASK) &&
         /* UART is enabled */
-        (((uart_gt *)uart)->uartcr & UART_PL011_UARTCR_TX_EN_MASK) &&
+        (((uart_t *)g_uart)->uartcr & UART_PL011_UARTCR_TX_EN_MASK) &&
         /* Transmit is enabled */
-        ((((uart_gt *)uart)->uartfr & UART_PL011_UARTFR_TX_FIFO_FULL) == 0))
+        ((((uart_t *)g_uart)->uartfr & UART_PL011_UARTFR_TX_FIFO_FULL) == 0))
     {
         return 1;
     }
@@ -50,7 +50,7 @@ static int pal_uart_is_tx_empty(void)
 /**
     @brief    - This function checks for empty TX FIFO and writes to FIFO register
 **/
-static void pal_uart_putc(uint8_t c)
+void pal_uart_putc(uint8_t c)
 {
     const uint8_t pdata = (uint8_t)c;
 
@@ -58,7 +58,7 @@ static void pal_uart_putc(uint8_t c)
     while(!pal_uart_is_tx_empty());
 
     /* write the data (upper 24 bits are reserved) */
-    ((uart_gt *)uart)->uartdr = pdata;
+    ((uart_t *)g_uart)->uartdr = pdata;
 }
 
 /**
@@ -66,10 +66,10 @@ static void pal_uart_putc(uint8_t c)
     @param    - str      : Input String
               - data     : Value for format specifier
 **/
-void pal_uart_pl011_print(char *str, uint32_t data)
+void pal_uart_pl011_print(char *str, int32_t data)
 {
     uint8_t j, buffer[16];
-    int8_t  i = 0;
+    int8_t  i = 0, is_neg = 0;
 
     for (; *str != '\0'; ++str)
     {
@@ -78,6 +78,12 @@ void pal_uart_pl011_print(char *str, uint32_t data)
             ++str;
             if (*str == 'd')
             {
+                if (data < 0)
+                {
+                    data = -(data);
+                    is_neg = 1;
+                }
+
                 while (data != 0)
                 {
                     j         = data % 10;
@@ -85,6 +91,9 @@ void pal_uart_pl011_print(char *str, uint32_t data)
                     buffer[i] = j + 48;
                     i        += 1;
                 }
+
+                if (is_neg)
+                    buffer[i++] = '-';
             }
             else if (*str == 'x' || *str == 'X')
             {
@@ -119,3 +128,43 @@ void pal_uart_pl011_print(char *str, uint32_t data)
         }
     }
 }
+
+/**
+    @brief    - This function checks for TX interrupt triggered or not
+**/
+static int pal_uart_pl011_is_tx_irq_triggerd(void)
+{
+    return (((uart_t *) g_uart)->uartris & UART_PL011_TX_INTR_MASK);
+}
+
+/**
+    @brief    - This function triggers the UART TX interrupt
+**/
+void pal_uart_pl011_generate_irq(void)
+{
+    volatile int bytecount = 32;
+
+    /* Enable TX interrupt */
+    ((uart_t *) g_uart)->uartimsc |= (uint32_t)(UART_PL011_TX_INTR_MASK);
+
+    /* Fill the TX buffer to generate TX IRQ. TX buffer is 16x8 bit wide */
+    do
+    {
+        pal_uart_putc(' ');
+    } while (--bytecount);
+
+    /* Loop until TX interrupt trigger */
+    while (!pal_uart_pl011_is_tx_irq_triggerd());
+}
+
+/**
+    @brief    - This function disable the UART TX interrupt
+**/
+void pal_uart_pl011_disable_irq(void)
+{
+    /* Clear TX interrupt */
+    ((uart_t *) g_uart)->uarticr = (uint32_t)(UART_PL011_TX_INTR_MASK);
+
+    /* Disable TX interrupt */
+    ((uart_t *) g_uart)->uartimsc &= (uint32_t)(~UART_PL011_TX_INTR_MASK);
+}
diff --git a/api-tests/platform/drivers/uart/pl011/pal_uart.h b/api-tests/platform/drivers/uart/pl011/pal_uart.h
index 0553013a..3b8ea8aa 100644
--- a/api-tests/platform/drivers/uart/pl011/pal_uart.h
+++ b/api-tests/platform/drivers/uart/pl011/pal_uart.h
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -36,7 +36,13 @@ typedef struct
     volatile uint32_t uartfbrd;        /* Offset: 0x028 (R/W) Fractional baud rate register */
     volatile uint32_t uartlcr_h;       /* Offset: 0x02C (R/W) Line control register */
     volatile uint32_t uartcr;          /* Offset: 0x030 (R/W) Control register */
-} uart_gt;
+    volatile uint32_t uartifls;        /* Offset: 0x034 (R/W) Interrupt FIFO level select reg */
+    volatile uint32_t uartimsc;        /* Offset: 0x038 (R/W) Interrupt mask set/clear register */
+    volatile uint32_t uartris;         /* Offset: 0x03C (R/ ) Raw interrupt status register */
+    volatile uint32_t uartmis;         /* Offset: 0x040 (R/ ) Masked interrupt status register */
+    volatile uint32_t uarticr;         /* Offset: 0x044 ( /W) Interrupt clear register */
+    volatile uint32_t uartdmacr;       /* Offset: 0x048 (R/W) DMA control register */
+} uart_t;
 
 #define UART_PL011_UARTCR_UARTEN_OFF       0x0u
 #define UART_PL011_UARTCR_TXE_OFF          0x8u
@@ -46,8 +52,15 @@ typedef struct
 #define UART_PL011_UARTCR_TX_EN_MASK       (0x1u << UART_PL011_UARTCR_TXE_OFF)
 #define UART_PL011_UARTFR_TX_FIFO_FULL     (0x1u << UART_PL011_UARTFR_TX_FIFO_FULL_OFF)
 
+#define UART_PL011_INTR_TX_OFF             0x5u
+#define UART_PL011_TX_INTR_MASK            (0x1u << UART_PL011_INTR_TX_OFF)
+#define UART_PL011_UARTLCR_H_FEN_OFF       0x4u
+#define UART_PL011_UARTLCR_H_FEN_MASK      (0x1u << UART_PL011_UARTLCR_H_FEN_OFF)
+
 /* function prototypes */
 void pal_uart_pl011_init(uint32_t uart_base_addr);
-void pal_uart_pl011_print(char *str, uint32_t data);
+void pal_uart_pl011_print(char *str, int32_t data);
+void pal_uart_pl011_generate_irq(void);
+void pal_uart_pl011_disable_irq(void);
 
 #endif /* _PAL_UART_CMSDK_H_ */
diff --git a/api-tests/platform/drivers/watchdog/cmsdk/pal_wd_cmsdk.h b/api-tests/platform/drivers/watchdog/cmsdk/pal_wd_cmsdk.h
index 9bf33c66..930e1a1c 100644
--- a/api-tests/platform/drivers/watchdog/cmsdk/pal_wd_cmsdk.h
+++ b/api-tests/platform/drivers/watchdog/cmsdk/pal_wd_cmsdk.h
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
diff --git a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/Makefile b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/Makefile
index a0230da2..f757e4b9 100644
--- a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/Makefile
+++ b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/Makefile
@@ -83,6 +83,7 @@ endif
 ifeq (${PSA_INITIAL_ATTESTATION_IMPLEMENTED},1)
 SRC_C_NSPE += pal_attestation_intf.c
 SRC_C_NSPE += pal_attestation_eat.c
+SRC_C_NSPE += pal_attestation_crypto.c
 else
 SRC_C_NSPE += pal_attestation_empty_intf.c
 endif
@@ -98,7 +99,7 @@ INCLUDE= -I$(SOURCE)/platform/targets/$(TARGET)/nspe \
          -I$(SOURCE)/platform/targets/$(TARGET)/nspe/initial_attestation \
          -I$(SOURCE)/platform/targets/$(TARGET)/nspe/initial_attestation/ext/inc \
          -I$(SOURCE)/platform/targets/$(TARGET)/nspe/internal_trusted_storage \
-         -I$(SOURCE)/platform/targets/$(TARGET)/nspe/protected_storage
+         -I$(SOURCE)/platform/targets/$(TARGET)/nspe/protected_storage \
 
 VPATH=$(SOURCE)/platform/targets/$(TARGET)/: \
       $(SOURCE)/platform/targets/$(TARGET)/spe: \
diff --git a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/manifests/common/driver_partition_psa.json b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/manifests/common/driver_partition_psa.json
index 5d57571c..3e2ec674 100644
--- a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/manifests/common/driver_partition_psa.json
+++ b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/manifests/common/driver_partition_psa.json
@@ -3,11 +3,9 @@
   "name": "DRIVER_PARTITION",
   "type": "PSA-ROT",
   "priority": "NORMAL",
-  "id": "0x00000003",
   "description": "Implements device services such print, flash read/write,. etc.",
   "entry_point": "driver_main",
   "stack_size": "0x400",
-  "heap_size": "0x100",
   "services": [{
       "name": "DRIVER_UART_SID",
       "sid": "0x0000FC01",
@@ -33,9 +31,9 @@
       "minor_policy": "RELAXED"
     },
     {
-      "name": "TEST_INTR_SID",
+      "name": "DRIVER_TEST_SID",
       "sid": "0x0000FC04",
-      "signal": "TEST_INTR_SIG",
+      "signal": "DRIVER_TEST_SIG",
       "non_secure_clients": true,
       "minor_version": 1,
       "minor_policy": "RELAXED"
@@ -69,13 +67,9 @@
   ],
   "irqs": [
     {
+       "description": "Using UART TX interrupt to test psa_wait and psa_eoi for irq_signal",
        "signal": "DRIVER_UART_INTR_SIG",
        "line_num": 17
     }
-  ],
-  "linker_pattern": {
-    "object_list": [
-    "driver_partition.a"
-    ]
-  }
+  ]
 }
diff --git a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/manifests/ipc/client_partition_psa.json b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/manifests/ipc/client_partition_psa.json
index 081dc95d..b93377bd 100644
--- a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/manifests/ipc/client_partition_psa.json
+++ b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/manifests/ipc/client_partition_psa.json
@@ -3,11 +3,9 @@
   "name": "CLIENT_PARTITION",
   "type": "APPLICATION-ROT",
   "priority": "NORMAL",
-  "id": "0x00000001",
   "description": "Client partition executing client test func from SPE",
   "entry_point": "client_main",
   "stack_size": "0x400",
-  "heap_size": "0x100",
   "services": [{
       "name": "CLIENT_TEST_DISPATCHER_SID",
       "sid": "0x0000FA01",
@@ -20,7 +18,7 @@
   "dependencies": [
     "DRIVER_UART_SID",
     "DRIVER_NVMEM_SID",
-    "TEST_INTR_SID",
+    "DRIVER_TEST_SID",
     "SERVER_TEST_DISPATCHER_SID",
     "SERVER_UNSPECIFED_MINOR_V_SID",
     "SERVER_STRICT_MINOR_VERSION_SID",
@@ -35,10 +33,5 @@
       "size": "0x20",
       "permission": "READ-WRITE"
     }
-   ],
-  "linker_pattern": {
-    "object_list": [
-    "client_partition.a"
-    ]
-  }
+   ]
 }
diff --git a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/manifests/ipc/server_partition_psa.json b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/manifests/ipc/server_partition_psa.json
index 3541387c..146b8fbc 100644
--- a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/manifests/ipc/server_partition_psa.json
+++ b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/manifests/ipc/server_partition_psa.json
@@ -3,7 +3,6 @@
   "name": "SERVER_PARTITION",
   "type": "APPLICATION-ROT",
   "priority": "NORMAL",
-  "id": "0x00000002",
   "description": "Server partition executing server test func",
   "entry_point": "server_main",
   "stack_size": "0x400",
@@ -66,10 +65,5 @@
   "dependencies": [
     "DRIVER_UART_SID",
     "DRIVER_NVMEM_SID"
-  ],
-  "linker_pattern": {
-    "object_list": [
-    "server_partition.a"
-    ]
-  }
+  ]
 }
diff --git a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/common/pal_config.h b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/common/pal_config.h
index daa0ec5f..e3f70ad7 100644
--- a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/common/pal_config.h
+++ b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/common/pal_config.h
@@ -50,7 +50,7 @@
 #endif
 
 #if !defined(VERBOSE)
-#define VERBOSE 4 /* Print verbosity = ERROR */
+#define VERBOSE 3 /* Print verbosity = TEST */
 #endif
 
 #if (!defined(VAL_NSPE_BUILD) && !defined(SPE_BUILD))
@@ -62,7 +62,15 @@
 #endif
 
 #if !defined(TEST_COMBINE_ARCHIVE)
-//#define TEST_COMBINE_ARCHIVE /* Test dispatcher code selection */
+#define TEST_COMBINE_ARCHIVE 0 /* Combine test archive or binary? */
+#endif
+
+#if !defined(WATCHDOG_AVAILABLE)
+#define WATCHDOG_AVAILABLE 0 /* If zero, skip watchdog programming */
+#endif
+
+#if !defined(SP_HEAP_MEM_SUPP)
+#define SP_HEAP_MEM_SUPP 0 /* Are Dynamic funcs available to secure partition? */
 #endif
 
 /*
@@ -79,6 +87,13 @@
  * of this file.
 */
 #include "psa_manifest/sid.h"
+
+/*
+ * psa_manifest/pid.h: Secure Partition IDs
+ * Macro definitions that map from Secure Partition names to Secure Partition IDs.
+ * Partition manifest parse build tool must provide the implementation of this file.
+*/
+#include "psa_manifest/pid.h"
 #endif
 
 #if PSA_CRYPTO_IMPLEMENTED
diff --git a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/common/pal_driver_ipc_intf.c b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/common/pal_driver_ipc_intf.c
index 32aef9c5..f8f773fb 100644
--- a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/common/pal_driver_ipc_intf.c
+++ b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/common/pal_driver_ipc_intf.c
@@ -56,7 +56,7 @@ int pal_uart_init_ns(uint32_t uart_base_addr)
     @return   - SUCCESS/FAILURE
 **/
 
-int pal_print_ns(char *str, uint32_t data)
+int pal_print_ns(char *str, int32_t data)
 {
     int             string_len = 0;
     char            *p = str;
diff --git a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/common/pal_driver_ns_intf.c b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/common/pal_driver_ns_intf.c
index dd6b14c7..2af6fcc7 100644
--- a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/common/pal_driver_ns_intf.c
+++ b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/common/pal_driver_ns_intf.c
@@ -38,7 +38,7 @@ int pal_uart_init_ns(uint32_t uart_base_addr)
     @return   - SUCCESS/FAILURE
 **/
 
-int pal_print_ns(char *str, uint32_t data)
+int pal_print_ns(char *str, int32_t data)
 {
     pal_cmsdk_print(str, data);
     return PAL_STATUS_SUCCESS;
diff --git a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/crypto/pal_crypto_intf.c b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/crypto/pal_crypto_intf.c
index ad838f91..3df6aa8d 100644
--- a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/crypto/pal_crypto_intf.c
+++ b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/crypto/pal_crypto_intf.c
@@ -36,7 +36,7 @@ int32_t pal_crypto_function(int type, va_list valist)
     uint32_t                status;
     const void              *extra;
     size_t                  extra_size, capacity, *gen_cap, nonce_length, additional_data_length;
-    psa_key_handle_t        handle, *key_handle;
+    psa_key_handle_t        handle, *key_handle, target_handle;
     psa_key_type_t          key_type, *key_type_out;
     psa_key_policy_t        *policy;
     psa_key_usage_t         usage, *usage_out;
@@ -325,6 +325,11 @@ int32_t pal_crypto_function(int type, va_list valist)
         case PAL_CRYPTO_ALLOCATE_KEY:
             key_handle = (psa_key_handle_t *)va_arg(valist, int*);
             return psa_allocate_key(key_handle);
+        case PAL_CRYPTO_COPY_KEY:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            target_handle = (psa_key_handle_t)va_arg(valist, int);
+            policy = va_arg(valist, psa_key_policy_t*);
+            return psa_copy_key(handle, target_handle, policy);
         case PAL_CRYPTO_FREE:
             for (i = 0; i < PAL_KEY_SLOT_COUNT; i++)
                 psa_destroy_key(i);
diff --git a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/crypto/pal_crypto_intf.h b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/crypto/pal_crypto_intf.h
index dfabee18..d1dabfa4 100644
--- a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/crypto/pal_crypto_intf.h
+++ b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/crypto/pal_crypto_intf.h
@@ -68,6 +68,7 @@ enum crypto_function_code {
     PAL_CRYPTO_ASYMMTERIC_VERIFY        = 0x31,
     PAL_CRYPTO_KEY_AGREEMENT            = 0x32,
     PAL_CRYPTO_ALLOCATE_KEY             = 0x33,
+    PAL_CRYPTO_COPY_KEY                 = 0x34,
     PAL_CRYPTO_FREE                     = 0xFE,
 };
 
diff --git a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_crypto.c b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_crypto.c
new file mode 100644
index 00000000..ae2bdba4
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_crypto.c
@@ -0,0 +1,346 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "pal_attestation_crypto.h"
+
+static uint32_t  public_key_registered = 0;
+
+static inline struct q_useful_buf_c useful_buf_head(struct q_useful_buf_c buf,
+                                                  size_t amount)
+{
+    return UsefulBuf_Head(buf, amount);
+}
+
+static uint32_t check_hash_sizes(void)
+{
+    if (T_COSE_CRYPTO_SHA256_SIZE != PSA_HASH_SIZE(PSA_ALG_SHA_256))
+    {
+        return PAL_ATTEST_HASH_FAIL;
+    }
+
+    return PAL_ATTEST_SUCCESS;
+}
+
+static psa_ecc_curve_t attest_map_elliptic_curve_type(int32_t cose_curve)
+{
+    psa_ecc_curve_t psa_curve;
+
+    /*FixMe: Mapping is not complete, missing ones: P384, P521, ED25519, ED448 */
+    switch (cose_curve)
+    {
+    case P_256:
+        psa_curve = PSA_ECC_CURVE_SECP256R1;
+        break;
+    default:
+        psa_curve = USHRT_MAX;
+    }
+
+    return psa_curve;
+}
+
+static psa_algorithm_t cose_hash_alg_id_to_psa(int32_t cose_hash_alg_id)
+{
+    psa_algorithm_t status;
+
+    switch (cose_hash_alg_id)
+    {
+    case COSE_ALG_SHA256_PROPRIETARY:
+        status = PSA_ALG_SHA_256;
+        break;
+    default:
+        status = PSA_ALG_MD4;
+        break;
+    }
+
+    return status;
+}
+
+static int32_t hash_alg_id_from_sig_alg_id(int32_t cose_sig_alg_id)
+{
+    switch (cose_sig_alg_id)
+    {
+        case COSE_ALGORITHM_ES256:
+            return COSE_ALG_SHA256_PROPRIETARY;
+        default:
+            return INT32_MAX;
+    }
+}
+
+int32_t pal_cose_crypto_hash_start(struct pal_cose_crypto_hash *hash_ctx, int32_t cose_hash_alg_id)
+{
+    int32_t                          cose_ret = PAL_ATTEST_SUCCESS;
+    psa_status_t                     psa_ret;
+    struct pal_cose_psa_crypto_hash *psa_hash_ctx;
+
+    cose_ret = check_hash_sizes();
+    if (cose_ret)
+    {
+        goto error;
+    }
+
+    if (sizeof(struct pal_cose_crypto_hash) < sizeof(struct pal_cose_psa_crypto_hash))
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+        goto error;
+    }
+
+    psa_hash_ctx = (struct pal_cose_psa_crypto_hash *)hash_ctx;
+    psa_ret = psa_hash_setup(&psa_hash_ctx->operation, cose_hash_alg_id_to_psa(cose_hash_alg_id));
+
+    if (psa_ret == PAL_ATTEST_SUCCESS)
+    {
+        psa_hash_ctx->status = PAL_ATTEST_SUCCESS;
+        cose_ret = PAL_ATTEST_SUCCESS;
+    }
+    else if (psa_ret == PSA_ERROR_NOT_SUPPORTED)
+    {
+        cose_ret = PAL_ATTEST_HASH_UNSUPPORTED;
+    }
+    else
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+    }
+
+error:
+    return cose_ret;
+}
+
+void pal_cose_crypto_hash_update(struct pal_cose_crypto_hash *hash_ctx,
+                                 struct q_useful_buf_c data_to_hash)
+{
+    struct pal_cose_psa_crypto_hash *psa_hash_ctx;
+
+    if (sizeof(struct pal_cose_crypto_hash) < sizeof(struct pal_cose_psa_crypto_hash))
+    {
+        return;
+    }
+
+    psa_hash_ctx = (struct pal_cose_psa_crypto_hash *)hash_ctx;
+
+    if (psa_hash_ctx->status == PAL_ATTEST_SUCCESS)
+    {
+        if (data_to_hash.ptr != NULL)
+        {
+            psa_hash_ctx->status = psa_hash_update(&psa_hash_ctx->operation,
+                                                   data_to_hash.ptr,
+                                                   data_to_hash.len);
+        }
+        else
+        {
+            /* Intentionally do nothing, just computing the size of the token */
+        }
+    }
+}
+
+int32_t pal_cose_crypto_hash_finish(struct pal_cose_crypto_hash *hash_ctx,
+                                    struct q_useful_buf buffer_to_hold_result,
+                                    struct q_useful_buf_c *hash_result)
+{
+    uint32_t                         cose_ret = PAL_ATTEST_SUCCESS;
+    psa_status_t                     psa_ret;
+    struct pal_cose_psa_crypto_hash *psa_hash_ctx;
+
+    if (sizeof(struct pal_cose_crypto_hash) < sizeof(struct pal_cose_psa_crypto_hash))
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+        goto error;
+    }
+
+    psa_hash_ctx = (struct pal_cose_psa_crypto_hash *)hash_ctx;
+
+    if (psa_hash_ctx->status == PAL_ATTEST_SUCCESS)
+    {
+        psa_ret = psa_hash_finish(&psa_hash_ctx->operation,
+                                  buffer_to_hold_result.ptr,
+                                  buffer_to_hold_result.len,
+                                  &(hash_result->len));
+
+        if (psa_ret == PAL_ATTEST_SUCCESS)
+        {
+            hash_result->ptr = buffer_to_hold_result.ptr;
+            cose_ret = 0;
+        }
+        else if (psa_ret == PSA_ERROR_BUFFER_TOO_SMALL)
+        {
+            cose_ret = PAL_ATTEST_HASH_BUFFER_SIZE;
+        }
+        else
+        {
+            cose_ret = PAL_ATTEST_HASH_FAIL;
+        }
+    }
+    else
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+    }
+
+error:
+    return cose_ret;
+}
+
+int pal_create_sha256(struct q_useful_buf_c bytes_to_hash, struct q_useful_buf buffer_for_hash,
+                      struct q_useful_buf_c *hash)
+{
+    uint32_t                      status = PAL_ATTEST_SUCCESS;
+    struct pal_cose_crypto_hash   hash_ctx;
+
+    status = pal_cose_crypto_hash_start(&hash_ctx, COSE_ALG_SHA256_PROPRIETARY);
+    if (status)
+        return status;
+
+    pal_cose_crypto_hash_update(&hash_ctx, bytes_to_hash);
+    status = pal_cose_crypto_hash_finish(&hash_ctx, buffer_for_hash, hash);
+
+    return status;
+}
+
+uint32_t pal_compute_hash(int32_t cose_alg_id, struct q_useful_buf buffer_for_hash,
+                          struct q_useful_buf_c *hash, struct q_useful_buf_c protected_headers,
+                          struct q_useful_buf_c payload)
+{
+    uint32_t                    status;
+    QCBOREncodeContext          cbor_encode_ctx;
+    struct q_useful_buf_c       tbs_first_part;
+    QCBORError                  qcbor_result;
+    struct pal_cose_crypto_hash hash_ctx = {{0}};
+    int32_t                     hash_alg_id;
+    UsefulBuf_MAKE_STACK_UB    (buffer_for_TBS_first_part, T_COSE_SIZE_OF_TBS);
+
+    /* This builds the CBOR-format to-be-signed bytes */
+    QCBOREncode_Init(&cbor_encode_ctx, buffer_for_TBS_first_part);
+    QCBOREncode_OpenArray(&cbor_encode_ctx);
+    /* context */
+    QCBOREncode_AddSZString(&cbor_encode_ctx,
+                            COSE_SIG_CONTEXT_STRING_SIGNATURE1);
+    /* body_protected */
+    QCBOREncode_AddBytes(&cbor_encode_ctx,
+                         protected_headers);
+    /* sign_protected */
+    QCBOREncode_AddBytes(&cbor_encode_ctx, NULL_USEFUL_BUF_C);
+    /* external_aad */
+    QCBOREncode_AddBytes(&cbor_encode_ctx, NULL_USEFUL_BUF_C);
+    /* fake payload */
+    QCBOREncode_AddBytes(&cbor_encode_ctx, NULL_USEFUL_BUF_C);
+    QCBOREncode_CloseArray(&cbor_encode_ctx);
+
+    /* Get the result and convert it to struct q_useful_buf_c representation */
+    qcbor_result = QCBOREncode_Finish(&cbor_encode_ctx, &tbs_first_part);
+    if (qcbor_result)
+    {
+        /* Mainly means that the protected_headers were too big
+         (which should never happen) */
+        status = PAL_ATTEST_ERR_SIGN_STRUCT;
+        goto Done;
+    }
+
+    /* Start the hashing */
+    hash_alg_id = hash_alg_id_from_sig_alg_id(cose_alg_id);
+
+    /* Don't check hash_alg_id for failure. pal_cose_crypto_hash_start()
+     * will handle it properly
+     */
+    status = pal_cose_crypto_hash_start(&hash_ctx, hash_alg_id);
+    if (status)
+        goto Done;
+
+    /* Hash the first part of the TBS. Take all but the last two
+     * bytes. The last two bytes are the fake payload from above. It
+     * is replaced by the real payload which is hashed next. The fake
+     * payload is needed so the array count is right. This is one of
+     * the main things that make it possible to implement with one
+     * buffer for the whole cose sign1.
+     */
+    pal_cose_crypto_hash_update(&hash_ctx, useful_buf_head(tbs_first_part,
+                                              tbs_first_part.len - 2));
+
+    /* Hash the payload */
+    pal_cose_crypto_hash_update(&hash_ctx, payload);
+
+    /* Finish the hash and set up to return it */
+    status = pal_cose_crypto_hash_finish(&hash_ctx,
+                                             buffer_for_hash,
+                                             hash);
+
+Done:
+    return status;
+}
+
+uint32_t pal_import_attest_key(int32_t alg)
+{
+    psa_key_type_t   attest_key_type;
+    size_t           public_key_size;
+    psa_status_t     status = PSA_SUCCESS;
+    psa_key_policy_t policy;
+    psa_ecc_curve_t  psa_curve;
+    psa_key_handle_t public_key_handle;
+
+    /* Mapping of COSE curve type to PSA curve types */
+    psa_curve = attest_map_elliptic_curve_type(P_256);
+    if (psa_curve == USHRT_MAX)
+        return PAL_ATTEST_ERROR;
+
+    /* Setup the key policy for public key */
+    policy = psa_key_policy_init();
+    psa_key_policy_set_usage(&policy, PSA_KEY_USAGE_VERIFY, alg);
+
+    status = psa_allocate_key(&public_key_handle);
+    if (status != PSA_SUCCESS)
+        return status;
+
+    status = psa_set_key_policy(public_key_handle, &policy);
+    if (status != PSA_SUCCESS)
+        return status;
+
+    attest_key_type = PSA_KEY_TYPE_ECC_PUBLIC_KEY(psa_curve);
+
+    /* Register public key to crypto service */
+    public_key_size = attest_key.pubx_key_size + attest_key.puby_key_size;
+
+    status = psa_import_key(public_key_handle,
+                                attest_key_type,
+                                (const uint8_t *)&attest_public_key,
+                                public_key_size + 1);
+
+    return status;
+}
+
+
+uint32_t pal_crypto_pub_key_verify(int32_t cose_algorithm_id,
+                                   struct q_useful_buf_c token_hash,
+                                   struct q_useful_buf_c signature)
+{
+    uint32_t status = PAL_ATTEST_SUCCESS;
+
+    if (!public_key_registered)
+    {
+        status = pal_import_attest_key(cose_algorithm_id);
+        if (status != PAL_ATTEST_SUCCESS)
+            return status;
+
+        public_key_registered = 1;
+    }
+
+/*
+ * Enable the verify function when Trusted Firmare - M Supports
+
+ *  Verify the signature a hash or short message using a public key.
+    status = psa_asymmetric_verify(public_key_handle,
+                                    cose_algorithm_id, token_hash.ptr, token_hash.len,
+                                    signature.ptr, signature.len);
+*/
+    return status;
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_crypto.h b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_crypto.h
new file mode 100644
index 00000000..2d63ad13
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_crypto.h
@@ -0,0 +1,102 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "pal_common.h"
+#include "pal_attestation_eat.h"
+
+#define ATTEST_PUBLIC_KEY_SLOT            4
+
+typedef struct{
+    uint8_t  *pubx_key;
+    uint32_t  pubx_key_size;
+    uint8_t  *puby_key;
+    uint32_t  puby_key_size;
+} ecc_key_t;
+
+struct ecc_public_key_t {
+    const uint8_t a;
+    uint8_t public_key[]; /* X-coordinate || Y-coordinate */
+};
+
+static const struct ecc_public_key_t attest_public_key = {
+     /* Constant byte */
+     0x04,
+     /* X-coordinate */
+     {0x79, 0xEB, 0xA9, 0x0E, 0x8B, 0xF4, 0x50, 0xA6,
+      0x75, 0x15, 0x76, 0xAD, 0x45, 0x99, 0xB0, 0x7A,
+      0xDF, 0x93, 0x8D, 0xA3, 0xBB, 0x0B, 0xD1, 0x7D,
+      0x00, 0x36, 0xED, 0x49, 0xA2, 0xD0, 0xFC, 0x3F,
+     /* Y-coordinate */
+      0xBF, 0xCD, 0xFA, 0x89, 0x56, 0xB5, 0x68, 0xBF,
+      0xDB, 0x86, 0x73, 0xE6, 0x48, 0xD8, 0xB5, 0x8D,
+      0x92, 0x99, 0x55, 0xB1, 0x4A, 0x26, 0xC3, 0x08,
+      0x0F, 0x34, 0x11, 0x7D, 0x97, 0x1D, 0x68, 0x64},
+};
+
+struct pal_cose_crypto_hash {
+    /* Can't put the actual size here without creating dependecy on
+     * actual hash implementation, so this is a fairly large and
+     * accommodating size.
+     */
+    uint8_t bytes[128];
+};
+
+struct pal_cose_psa_crypto_hash {
+    psa_status_t         status;
+    psa_hash_operation_t operation;
+};
+
+static const uint8_t initial_attestation_public_x_key[] =
+{
+    0x79, 0xEB, 0xA9, 0x0E, 0x8B, 0xF4, 0x50, 0xA6,
+    0x75, 0x15, 0x76, 0xAD, 0x45, 0x99, 0xB0, 0x7A,
+    0xDF, 0x93, 0x8D, 0xA3, 0xBB, 0x0B, 0xD1, 0x7D,
+    0x00, 0x36, 0xED, 0x49, 0xA2, 0xD0, 0xFC, 0x3F
+};
+
+static const uint8_t initial_attestation_public_y_key[] =
+{
+    0xBF, 0xCD, 0xFA, 0x89, 0x56, 0xB5, 0x68, 0xBF,
+    0xDB, 0x86, 0x73, 0xE6, 0x48, 0xD8, 0xB5, 0x8D,
+    0x92, 0x99, 0x55, 0xB1, 0x4A, 0x26, 0xC3, 0x08,
+    0x0F, 0x34, 0x11, 0x7D, 0x97, 0x1D, 0x68, 0x64
+};
+
+/* Initialize the structure with given public key */
+static const ecc_key_t attest_key = {
+        (uint8_t *)initial_attestation_public_x_key,
+        sizeof(initial_attestation_public_x_key),
+        (uint8_t *)initial_attestation_public_y_key,
+        sizeof(initial_attestation_public_y_key)
+};
+
+int32_t pal_cose_crypto_hash_start(struct pal_cose_crypto_hash *hash_ctx, int32_t cose_hash_alg_id);
+void pal_cose_crypto_hash_update(struct pal_cose_crypto_hash *hash_ctx,
+                                 struct q_useful_buf_c data_to_hash);
+int32_t pal_cose_crypto_hash_finish(struct pal_cose_crypto_hash *hash_ctx,
+                                    struct q_useful_buf buffer_to_hold_result,
+                                    struct q_useful_buf_c *hash_result);
+int pal_create_sha256(struct q_useful_buf_c bytes_to_hash, struct q_useful_buf buffer_for_hash,
+                      struct q_useful_buf_c *hash);
+uint32_t pal_compute_hash(int32_t cose_alg_id, struct q_useful_buf buffer_for_hash,
+                          struct q_useful_buf_c *hash, struct q_useful_buf_c protected_headers,
+                          struct q_useful_buf_c payload);
+uint32_t pal_import_attest_key(int32_t alg);
+uint32_t pal_crypto_pub_key_verify(int32_t cose_algorithm_id, struct q_useful_buf_c token_hash,
+                                   struct q_useful_buf_c signature);
+
+
diff --git a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_eat.c b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_eat.c
index 262dc5dd..178fdc9c 100644
--- a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_eat.c
+++ b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_eat.c
@@ -15,10 +15,56 @@
  * limitations under the License.
 **/
 
-#include "pal_attestation_eat.h"
+#include "pal_attestation_crypto.h"
+
+uint32_t    mandatory_claims = 0;
+uint32_t    mandaroty_sw_components = 0;
+bool_t      sw_component_present = 0;
+
+static int pal_encode_cose_key(struct q_useful_buf_c *cose_key,
+                               struct q_useful_buf buffer_for_cose_key,
+                               struct q_useful_buf_c x_cord, struct q_useful_buf_c y_cord)
+{
+    uint32_t                  return_value;
+    QCBORError                qcbor_result;
+    QCBOREncodeContext        cbor_encode_ctx;
+    int32_t                   cose_curve_id = P_256;
+    struct q_useful_buf_c       encoded_key_id;
+
+    /* Get the public key x and y */
+    /* Encode it into a COSE_Key structure */
+    QCBOREncode_Init(&cbor_encode_ctx, buffer_for_cose_key);
+    QCBOREncode_OpenMap(&cbor_encode_ctx);
+    QCBOREncode_AddInt64ToMapN(&cbor_encode_ctx,
+                               COSE_KEY_COMMON_KTY,
+                               COSE_KEY_TYPE_EC2);
+    QCBOREncode_AddInt64ToMapN(&cbor_encode_ctx,
+                               COSE_KEY_PARAM_CRV,
+                               cose_curve_id);
+    QCBOREncode_AddBytesToMapN(&cbor_encode_ctx,
+                               COSE_KEY_PARAM_X_COORDINATE,
+                               x_cord);
+    QCBOREncode_AddBytesToMapN(&cbor_encode_ctx,
+                               COSE_KEY_PARAM_Y_COORDINATE,
+                               y_cord);
+    QCBOREncode_CloseMap(&cbor_encode_ctx);
+
+    qcbor_result = QCBOREncode_Finish(&cbor_encode_ctx, &encoded_key_id);
+    if (qcbor_result != QCBOR_SUCCESS)
+    {
+        /* Mainly means that the COSE_Key was too big for buffer_for_cose_key */
+        return_value = PAL_ATTEST_ERR_PROTECTED_HEADERS;
+        goto Done;
+    }
+
+    /* Finish up and return */
+    *cose_key = encoded_key_id;
+    return_value = PAL_ATTEST_SUCCESS;
+
+Done:
+    return return_value;
+}
 
-uint32_t  mandatory_claims = 0, mandaroty_sw_components = 0;
-bool_t    sw_component_present = 0;
 
 static int get_items_in_map(QCBORDecodeContext *decode_context,
                             struct items_to_get_t *item_list)
@@ -90,7 +136,7 @@ static int get_item_in_map(QCBORDecodeContext *decode_context,
 }
 
 static int parse_unprotected_headers(QCBORDecodeContext *decode_context,
-                                     struct useful_buf_c *child,
+                                     struct q_useful_buf_c *child,
                                      bool *loop_back)
 {
     struct items_to_get_t   item_list[3];
@@ -120,7 +166,7 @@ static int parse_unprotected_headers(QCBORDecodeContext *decode_context,
     return PAL_ATTEST_SUCCESS;
 }
 
-static int parse_protected_headers(struct useful_buf_c protected_headers,
+static int parse_protected_headers(struct q_useful_buf_c protected_headers,
                                    int32_t *alg_id)
 {
     QCBORDecodeContext  decode_context;
@@ -156,7 +202,7 @@ static int parse_protected_headers(struct useful_buf_c protected_headers,
     @return   - error status
 **/
 static int parse_claims(QCBORDecodeContext *decode_context, QCBORItem item,
-                                   struct useful_buf_c completed_challenge)
+                                   struct q_useful_buf_c completed_challenge)
 {
     int i, count = 0;
     int status = PAL_ATTEST_SUCCESS;
@@ -281,16 +327,42 @@ static int parse_claims(QCBORDecodeContext *decode_context, QCBORItem item,
 int32_t pal_initial_attest_verify_token(uint8_t *challenge, uint32_t challenge_size,
                                         uint8_t *token, uint32_t token_size)
 {
-    int                 status = PAL_ATTEST_SUCCESS;
+    int32_t             status = PAL_ATTEST_SUCCESS;
     bool                short_circuit;
     int32_t             cose_algorithm_id;
     QCBORItem           item;
     QCBORDecodeContext  decode_context;
-    struct useful_buf_c completed_challenge;
-    struct useful_buf_c completed_token;
-    struct useful_buf_c payload;
-    struct useful_buf_c protected_headers;
-    struct useful_buf_c kid;
+    struct q_useful_buf_c completed_challenge;
+    struct q_useful_buf_c completed_token;
+    struct q_useful_buf_c payload;
+    struct q_useful_buf_c signature;
+    struct q_useful_buf_c protected_headers;
+    struct q_useful_buf_c kid;
+    struct q_useful_buf_c x_cord;
+    struct q_useful_buf_c y_cord;
+    struct q_useful_buf_c cose_key_to_hash;
+    struct q_useful_buf_c key_hash;
+    struct q_useful_buf_c token_hash;
+    USEFUL_BUF_MAKE_STACK_UB(buf_to_hold_x_coord, T_COSE_CRYPTO_EC_P256_COORD_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buf_to_hold_y_coord, T_COSE_CRYPTO_EC_P256_COORD_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_kid, T_COSE_CRYPTO_SHA256_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_cose_key, MAX_ENCODED_COSE_KEY_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_encoded_key, MAX_ENCODED_COSE_KEY_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_token_hash, T_COSE_CRYPTO_SHA256_SIZE);
+
+    kid.ptr = buffer_for_encoded_key.ptr;
+
+    memcpy(buf_to_hold_x_coord.ptr, (const void *)attest_key.pubx_key, attest_key.pubx_key_size);
+    memcpy(buf_to_hold_y_coord.ptr, (const void *)attest_key.puby_key, attest_key.puby_key_size);
+
+    /* Update size */
+    buf_to_hold_x_coord.len = attest_key.pubx_key_size;
+    buf_to_hold_y_coord.len = attest_key.puby_key_size;
+
+    x_cord.ptr = buf_to_hold_x_coord.ptr;
+    x_cord.len = buf_to_hold_x_coord.len;
+    y_cord.ptr = buf_to_hold_y_coord.ptr;
+    y_cord.len = buf_to_hold_y_coord.len;
 
     /* Construct the token buffer for validation */
     completed_token.ptr = token;
@@ -345,6 +417,27 @@ int32_t pal_initial_attest_verify_token(uint8_t *challenge, uint32_t challenge_s
     if (status != PAL_ATTEST_SUCCESS)
         return status;
 
+    /* Encode the given public key */
+    status = pal_encode_cose_key(&cose_key_to_hash, buffer_for_cose_key, x_cord, y_cord);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
+    /* Create hash of the given public key */
+    status = pal_create_sha256(cose_key_to_hash, buffer_for_kid, &key_hash);
+    if (status != PSA_SUCCESS)
+        return status;
+
+    /* Compare the hash of the public key in token and hash of the given public key */
+    if (kid.len != key_hash.len)
+    {
+        return PAL_ATTEST_HASH_LENGTH_MISMATCH;
+    }
+
+    if (memcmp(kid.ptr, key_hash.ptr, kid.len) != 0)
+    {
+        return PAL_ATTEST_HASH_MISMATCH;
+    }
+
     /* Get the payload */
     QCBORDecode_GetNext(&decode_context, &item);
     if (item.uDataType != QCBOR_TYPE_BYTE_STRING)
@@ -357,6 +450,19 @@ int32_t pal_initial_attest_verify_token(uint8_t *challenge, uint32_t challenge_s
     if (item.uDataType != QCBOR_TYPE_BYTE_STRING)
         return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
 
+    signature = item.val.string;
+
+    /* Compute the hash from the token */
+    status = pal_compute_hash(cose_algorithm_id, buffer_for_token_hash, &token_hash,
+                              protected_headers, payload);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
+    /* Verify the signature */
+    status = pal_crypto_pub_key_verify(cose_algorithm_id, token_hash, signature);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
     /* Initialize the Decoder and validate the payload format */
     QCBORDecode_Init(&decode_context, payload, QCBOR_DECODE_MODE_NORMAL);
     status = QCBORDecode_GetNext(&decode_context, &item);
diff --git a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_eat.h b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_eat.h
index 9f435fb3..8a0c5455 100644
--- a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_eat.h
+++ b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_eat.h
@@ -17,16 +17,70 @@
 
 #include "qcbor.h"
 #include "pal_common.h"
+#include "psa/crypto.h"
 
 #define PAL_ATTEST_MIN_ERROR              30
 
+/* NIST P-256 also known as secp256r1 */
+#define P_256                             1
+
 #define COSE_HEADER_PARAM_ALG             1
 #define COSE_HEADER_PARAM_KID             4
 
-#define MANDATORY_CLAIM_WITH_SW_COMP      862
-#define MANDATORY_CLAIM_NO_SW_COMP        926
-#define MANDATORY_SW_COMP                 36
-#define CBOR_ARM_TOTAL_CLAIM_INSTANCE     10
+#define COSE_KEY_COMMON_KTY               1
+#define COSE_KEY_TYPE_EC2                 2
+#define COSE_KEY_PARAM_CRV               -1
+#define COSE_KEY_PARAM_X_COORDINATE      -2
+#define COSE_KEY_PARAM_Y_COORDINATE      -3
+#define COSE_ALGORITHM_ES256             -7
+#define COSE_ALG_SHA256_PROPRIETARY      -72000
+
+/**
+ * The size of X and Y coordinate in 2 parameter style EC public
+ * key. Format is as defined in [COSE (RFC 8152)]
+ * (https://tools.ietf.org/html/rfc8152) and [SEC 1: Elliptic Curve
+ * Cryptography](http://www.secg.org/sec1-v2.pdf).
+ *
+ * This size is well-known and documented in public standards.
+ */
+#define T_COSE_CRYPTO_EC_P256_COORD_SIZE  32
+#define T_COSE_CRYPTO_SHA256_SIZE         32
+
+#define MAX_ENCODED_COSE_KEY_SIZE \
+    1 + /* 1 byte to encode map */ \
+    2 + /* 2 bytes to encode key type */ \
+    2 + /* 2 bytes to encode curve */ \
+    2 * /* the X and Y coordinates at 32 bytes each */ \
+        (T_COSE_CRYPTO_EC_P256_COORD_SIZE + 1 + 2)
+#define USEFUL_BUF_MAKE_STACK_UB UsefulBuf_MAKE_STACK_UB
+
+#define COSE_SIG_CONTEXT_STRING_SIGNATURE1 "Signature1"
+
+/* Private value. Intentionally not documented for Doxygen.
+ * This is the size allocated for the encoded protected headers.  It
+ * needs to be big enough for make_protected_header() to succeed. It
+ * currently sized for one header with an algorithm ID up to 32 bits
+ * long -- one byte for the wrapping map, one byte for the label, 5
+ * bytes for the ID. If this is made accidentially too small, QCBOR will
+ * only return an error, and not overrun any buffers.
+ *
+ * 9 extra bytes are added, rounding it up to 16 total, in case some
+ * other protected header is to be added.
+ */
+#define T_COSE_SIGN1_MAX_PROT_HEADER (1+1+5+9)
+
+/**
+ * This is the size of the first part of the CBOR encoded TBS
+ * bytes. It is around 20 bytes. See create_tbs_hash().
+ */
+#define T_COSE_SIZE_OF_TBS \
+    1 + /* For opening the array */ \
+    sizeof(COSE_SIG_CONTEXT_STRING_SIGNATURE1) + /* "Signature1" */ \
+    2 + /* Overhead for encoding string */ \
+    T_COSE_SIGN1_MAX_PROT_HEADER + /* entire protected headers */ \
+    3 * ( /* 3 NULL bstrs for fields not used */ \
+        1 /* size of a NULL bstr */  \
+    )
 
 /*
  CBOR Label for proprietary header indicating short-circuit
@@ -47,6 +101,8 @@
 #define EAT_CBOR_ARM_LABEL_UEID                 (EAT_CBOR_ARM_RANGE_BASE - 9)
 #define EAT_CBOR_ARM_LABEL_ORIGINATION          (EAT_CBOR_ARM_RANGE_BASE - 10)
 
+#define CBOR_ARM_TOTAL_CLAIM_INSTANCE           10
+
 #define EAT_CBOR_SW_COMPONENT_TYPE              (1u)
 #define EAT_CBOR_SW_COMPONENT_MEASUREMENT       (2u)
 #define EAT_CBOR_SW_COMPONENT_EPOCH             (3u)
@@ -54,6 +110,40 @@
 #define EAT_CBOR_SW_COMPONENT_SIGNER_ID         (5u)
 #define EAT_CBOR_SW_COMPONENT_MEASUREMENT_DESC  (6u)
 
+#define MANDATORY_CLAIM_WITH_SW_COMP           (1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_NONCE)              |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_UEID)               |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_IMPLEMENTATION_ID)  |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_CLIENT_ID)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_SECURITY_LIFECYCLE) |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_BOOT_SEED)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_SW_COMPONENTS))
+
+#define MANDATORY_CLAIM_NO_SW_COMP             (1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_NONCE)              |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_UEID)               |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_IMPLEMENTATION_ID)  |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_CLIENT_ID)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_SECURITY_LIFECYCLE) |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_BOOT_SEED)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_NO_SW_COMPONENTS))
+
+#define MANDATORY_SW_COMP                      (1 << EAT_CBOR_SW_COMPONENT_MEASUREMENT      |     \
+                                                1 << EAT_CBOR_SW_COMPONENT_SIGNER_ID)
+
+#define NULL_USEFUL_BUF_C  NULLUsefulBufC
 
 enum attestation_error_code {
     PAL_ATTEST_SUCCESS = 0,
@@ -61,6 +151,13 @@ enum attestation_error_code {
     PAL_ATTEST_TOKEN_CHALLENGE_MISMATCH,
     PAL_ATTEST_TOKEN_NOT_SUPPORTED,
     PAL_ATTEST_TOKEN_NOT_ALL_MANDATORY_CLAIMS,
+    PAL_ATTEST_HASH_LENGTH_MISMATCH,
+    PAL_ATTEST_HASH_MISMATCH,
+    PAL_ATTEST_HASH_FAIL,
+    PAL_ATTEST_HASH_UNSUPPORTED,
+    PAL_ATTEST_HASH_BUFFER_SIZE,
+    PAL_ATTEST_ERR_PROTECTED_HEADERS,
+    PAL_ATTEST_ERR_SIGN_STRUCT,
     PAL_ATTEST_ERROR,
 };
 
diff --git a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_intf.h b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_intf.h
index ef132b5b..12f6ee94 100644
--- a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_intf.h
+++ b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_intf.h
@@ -18,7 +18,7 @@
 #ifndef _PAL_INITIAL_ATTESTATION_H_
 #define _PAL_INITIAL_ATTESTATION_H_
 
-#include "pal_attestation_eat.h"
+#include "pal_attestation_crypto.h"
 
 enum attestation_function_code {
     PAL_INITIAL_ATTEST_GET_TOKEN        = 0x1,
diff --git a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/spe/pal_driver_intf.c b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/spe/pal_driver_intf.c
index cc8b5373..fd307839 100644
--- a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/spe/pal_driver_intf.c
+++ b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/spe/pal_driver_intf.c
@@ -33,7 +33,7 @@ void pal_uart_init(uint32_t uart_base_addr)
               - data     : Value for format specifier
 **/
 
-void pal_print(char *str, uint32_t data)
+void pal_print(char *str, int32_t data)
 {
   pal_cmsdk_print(str,data);
 
@@ -110,3 +110,23 @@ int pal_wd_timer_is_enabled(addr_t base_addr)
     return (pal_wd_cmsdk_is_enabled(base_addr));
 }
 
+/**
+    @brief   - Trigger interrupt for irq signal assigned to driver partition
+               before return to caller.
+    @param   - void
+    @return  - void
+**/
+void pal_generate_interrupt(void)
+{
+    pal_uart_cmsdk_generate_irq();
+}
+
+/**
+    @brief   - Disable interrupt that was generated using pal_generate_interrupt API.
+    @param   - void
+    @return  - void
+**/
+void pal_disable_interrupt(void)
+{
+    pal_uart_cmsdk_disable_irq();
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/spe/pal_driver_intf.h b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/spe/pal_driver_intf.h
index da85a63e..cef34ca8 100644
--- a/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/spe/pal_driver_intf.h
+++ b/api-tests/platform/targets/tgt_dev_apis_mbedos_fvp_mps2_m4/spe/pal_driver_intf.h
@@ -23,11 +23,13 @@
 #include "pal_wd_cmsdk.h"
 
 void pal_uart_init(uint32_t uart_base_addr);
-void pal_print(char *str, uint32_t data);
+void pal_print(char *str, int32_t data);
 int pal_nvmem_write(addr_t base, uint32_t offset, void *buffer, int size);
 int pal_nvmem_read(addr_t base, uint32_t offset, void *buffer, int size);
 int pal_wd_timer_init(addr_t base_addr, uint32_t time_us, uint32_t timer_tick_us);
 int pal_wd_timer_enable(addr_t base_addr);
 int pal_wd_timer_disable(addr_t base_addr);
 int pal_wd_timer_is_enabled(addr_t base_addr);
+void pal_generate_interrupt(void);
+void pal_disable_interrupt(void);
 #endif /* _PAL_DRIVER_INTF_H_ */
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/Makefile b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/Makefile
index 3bd8c232..473879d5 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/Makefile
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/Makefile
@@ -83,6 +83,7 @@ endif
 ifeq (${PSA_INITIAL_ATTESTATION_IMPLEMENTED},1)
 SRC_C_NSPE += pal_attestation_intf.c
 SRC_C_NSPE += pal_attestation_eat.c
+SRC_C_NSPE += pal_attestation_crypto.c
 else
 SRC_C_NSPE += pal_attestation_empty_intf.c
 endif
@@ -98,7 +99,7 @@ INCLUDE= -I$(SOURCE)/platform/targets/$(TARGET)/nspe \
          -I$(SOURCE)/platform/targets/$(TARGET)/nspe/initial_attestation \
          -I$(SOURCE)/platform/targets/$(TARGET)/nspe/initial_attestation/ext/inc \
          -I$(SOURCE)/platform/targets/$(TARGET)/nspe/internal_trusted_storage \
-         -I$(SOURCE)/platform/targets/$(TARGET)/nspe/protected_storage
+         -I$(SOURCE)/platform/targets/$(TARGET)/nspe/protected_storage \
 
 VPATH=$(SOURCE)/platform/targets/$(TARGET)/: \
       $(SOURCE)/platform/targets/$(TARGET)/spe: \
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/manifests/common/driver_partition_psa.json b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/manifests/common/driver_partition_psa.json
index 5d57571c..e3cec929 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/manifests/common/driver_partition_psa.json
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/manifests/common/driver_partition_psa.json
@@ -3,11 +3,9 @@
   "name": "DRIVER_PARTITION",
   "type": "PSA-ROT",
   "priority": "NORMAL",
-  "id": "0x00000003",
   "description": "Implements device services such print, flash read/write,. etc.",
   "entry_point": "driver_main",
   "stack_size": "0x400",
-  "heap_size": "0x100",
   "services": [{
       "name": "DRIVER_UART_SID",
       "sid": "0x0000FC01",
@@ -33,9 +31,9 @@
       "minor_policy": "RELAXED"
     },
     {
-      "name": "TEST_INTR_SID",
+      "name": "DRIVER_TEST_SID",
       "sid": "0x0000FC04",
-      "signal": "TEST_INTR_SIG",
+      "signal": "DRIVER_TEST_SIG",
       "non_secure_clients": true,
       "minor_version": 1,
       "minor_policy": "RELAXED"
@@ -69,13 +67,9 @@
   ],
   "irqs": [
     {
+       "description": "Using UART TX interrupt to test psa_wait and psa_eoi for irq_signal",
        "signal": "DRIVER_UART_INTR_SIG",
-       "line_num": 17
+       "line_num": 37
     }
-  ],
-  "linker_pattern": {
-    "object_list": [
-    "driver_partition.a"
-    ]
-  }
+  ]
 }
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/manifests/ipc/client_partition_psa.json b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/manifests/ipc/client_partition_psa.json
index 081dc95d..b93377bd 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/manifests/ipc/client_partition_psa.json
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/manifests/ipc/client_partition_psa.json
@@ -3,11 +3,9 @@
   "name": "CLIENT_PARTITION",
   "type": "APPLICATION-ROT",
   "priority": "NORMAL",
-  "id": "0x00000001",
   "description": "Client partition executing client test func from SPE",
   "entry_point": "client_main",
   "stack_size": "0x400",
-  "heap_size": "0x100",
   "services": [{
       "name": "CLIENT_TEST_DISPATCHER_SID",
       "sid": "0x0000FA01",
@@ -20,7 +18,7 @@
   "dependencies": [
     "DRIVER_UART_SID",
     "DRIVER_NVMEM_SID",
-    "TEST_INTR_SID",
+    "DRIVER_TEST_SID",
     "SERVER_TEST_DISPATCHER_SID",
     "SERVER_UNSPECIFED_MINOR_V_SID",
     "SERVER_STRICT_MINOR_VERSION_SID",
@@ -35,10 +33,5 @@
       "size": "0x20",
       "permission": "READ-WRITE"
     }
-   ],
-  "linker_pattern": {
-    "object_list": [
-    "client_partition.a"
-    ]
-  }
+   ]
 }
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/manifests/ipc/server_partition_psa.json b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/manifests/ipc/server_partition_psa.json
index 3541387c..146b8fbc 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/manifests/ipc/server_partition_psa.json
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/manifests/ipc/server_partition_psa.json
@@ -3,7 +3,6 @@
   "name": "SERVER_PARTITION",
   "type": "APPLICATION-ROT",
   "priority": "NORMAL",
-  "id": "0x00000002",
   "description": "Server partition executing server test func",
   "entry_point": "server_main",
   "stack_size": "0x400",
@@ -66,10 +65,5 @@
   "dependencies": [
     "DRIVER_UART_SID",
     "DRIVER_NVMEM_SID"
-  ],
-  "linker_pattern": {
-    "object_list": [
-    "server_partition.a"
-    ]
-  }
+  ]
 }
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/common/pal_config.h b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/common/pal_config.h
index daa0ec5f..e3f70ad7 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/common/pal_config.h
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/common/pal_config.h
@@ -50,7 +50,7 @@
 #endif
 
 #if !defined(VERBOSE)
-#define VERBOSE 4 /* Print verbosity = ERROR */
+#define VERBOSE 3 /* Print verbosity = TEST */
 #endif
 
 #if (!defined(VAL_NSPE_BUILD) && !defined(SPE_BUILD))
@@ -62,7 +62,15 @@
 #endif
 
 #if !defined(TEST_COMBINE_ARCHIVE)
-//#define TEST_COMBINE_ARCHIVE /* Test dispatcher code selection */
+#define TEST_COMBINE_ARCHIVE 0 /* Combine test archive or binary? */
+#endif
+
+#if !defined(WATCHDOG_AVAILABLE)
+#define WATCHDOG_AVAILABLE 0 /* If zero, skip watchdog programming */
+#endif
+
+#if !defined(SP_HEAP_MEM_SUPP)
+#define SP_HEAP_MEM_SUPP 0 /* Are Dynamic funcs available to secure partition? */
 #endif
 
 /*
@@ -79,6 +87,13 @@
  * of this file.
 */
 #include "psa_manifest/sid.h"
+
+/*
+ * psa_manifest/pid.h: Secure Partition IDs
+ * Macro definitions that map from Secure Partition names to Secure Partition IDs.
+ * Partition manifest parse build tool must provide the implementation of this file.
+*/
+#include "psa_manifest/pid.h"
 #endif
 
 #if PSA_CRYPTO_IMPLEMENTED
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/common/pal_driver_ipc_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/common/pal_driver_ipc_intf.c
index 32aef9c5..f8f773fb 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/common/pal_driver_ipc_intf.c
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/common/pal_driver_ipc_intf.c
@@ -56,7 +56,7 @@ int pal_uart_init_ns(uint32_t uart_base_addr)
     @return   - SUCCESS/FAILURE
 **/
 
-int pal_print_ns(char *str, uint32_t data)
+int pal_print_ns(char *str, int32_t data)
 {
     int             string_len = 0;
     char            *p = str;
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/common/pal_driver_ns_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/common/pal_driver_ns_intf.c
index dd6b14c7..2af6fcc7 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/common/pal_driver_ns_intf.c
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/common/pal_driver_ns_intf.c
@@ -38,7 +38,7 @@ int pal_uart_init_ns(uint32_t uart_base_addr)
     @return   - SUCCESS/FAILURE
 **/
 
-int pal_print_ns(char *str, uint32_t data)
+int pal_print_ns(char *str, int32_t data)
 {
     pal_cmsdk_print(str, data);
     return PAL_STATUS_SUCCESS;
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/crypto/pal_crypto_config.h b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/crypto/pal_crypto_config.h
index 6d71d2ec..ab11fd16 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/crypto/pal_crypto_config.h
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/crypto/pal_crypto_config.h
@@ -78,10 +78,10 @@
  *
  * Comment macros to disable the types
  */
-#define ARCH_TEST_DES
-#define ARCH_TEST_DES_1KEY
-#define ARCH_TEST_DES_2KEY
-#define ARCH_TEST_DES_3KEY
+//#define ARCH_TEST_DES
+//#define ARCH_TEST_DES_1KEY
+//#define ARCH_TEST_DES_2KEY
+//#define ARCH_TEST_DES_3KEY
 
 /**
  * \def  ARCH_TEST_RAW
@@ -104,7 +104,7 @@
  *
  * Enable the ARC4 key type.
  */
-#define ARCH_TEST_ARC4
+//#define ARCH_TEST_ARC4
 
 /**
  * \def ARCH_TEST_CIPER_MODE_CTR
@@ -227,21 +227,21 @@
  *
  * Comment macros to disable the types
  */
-#define ARCH_TEST_MD2
-#define ARCH_TEST_MD4
-#define ARCH_TEST_MD5
-#define ARCH_TEST_RIPEMD160
+//#define ARCH_TEST_MD2
+//#define ARCH_TEST_MD4
+//#define ARCH_TEST_MD5
+//#define ARCH_TEST_RIPEMD160
 #define ARCH_TEST_SHA1
 #define ARCH_TEST_SHA224
 #define ARCH_TEST_SHA256
 #define ARCH_TEST_SHA384
 #define ARCH_TEST_SHA512
-#define ARCH_TEST_SHA512_224
-#define ARCH_TEST_SHA512_256
-#define ARCH_TEST_SHA3_224
-#define ARCH_TEST_SHA3_256
-#define ARCH_TEST_SHA3_384
-#define ARCH_TEST_SHA3_512
+//#define ARCH_TEST_SHA512_224
+//#define ARCH_TEST_SHA512_256
+//#define ARCH_TEST_SHA3_224
+//#define ARCH_TEST_SHA3_256
+//#define ARCH_TEST_SHA3_384
+//#define ARCH_TEST_SHA3_512
 
 /**
  * \def ARCH_TEST_HKDF
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/crypto/pal_crypto_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/crypto/pal_crypto_intf.c
index ad838f91..3df6aa8d 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/crypto/pal_crypto_intf.c
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/crypto/pal_crypto_intf.c
@@ -36,7 +36,7 @@ int32_t pal_crypto_function(int type, va_list valist)
     uint32_t                status;
     const void              *extra;
     size_t                  extra_size, capacity, *gen_cap, nonce_length, additional_data_length;
-    psa_key_handle_t        handle, *key_handle;
+    psa_key_handle_t        handle, *key_handle, target_handle;
     psa_key_type_t          key_type, *key_type_out;
     psa_key_policy_t        *policy;
     psa_key_usage_t         usage, *usage_out;
@@ -325,6 +325,11 @@ int32_t pal_crypto_function(int type, va_list valist)
         case PAL_CRYPTO_ALLOCATE_KEY:
             key_handle = (psa_key_handle_t *)va_arg(valist, int*);
             return psa_allocate_key(key_handle);
+        case PAL_CRYPTO_COPY_KEY:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            target_handle = (psa_key_handle_t)va_arg(valist, int);
+            policy = va_arg(valist, psa_key_policy_t*);
+            return psa_copy_key(handle, target_handle, policy);
         case PAL_CRYPTO_FREE:
             for (i = 0; i < PAL_KEY_SLOT_COUNT; i++)
                 psa_destroy_key(i);
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/crypto/pal_crypto_intf.h b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/crypto/pal_crypto_intf.h
index dfabee18..d1dabfa4 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/crypto/pal_crypto_intf.h
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/crypto/pal_crypto_intf.h
@@ -68,6 +68,7 @@ enum crypto_function_code {
     PAL_CRYPTO_ASYMMTERIC_VERIFY        = 0x31,
     PAL_CRYPTO_KEY_AGREEMENT            = 0x32,
     PAL_CRYPTO_ALLOCATE_KEY             = 0x33,
+    PAL_CRYPTO_COPY_KEY                 = 0x34,
     PAL_CRYPTO_FREE                     = 0xFE,
 };
 
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_crypto.c b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_crypto.c
new file mode 100644
index 00000000..ae2bdba4
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_crypto.c
@@ -0,0 +1,346 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "pal_attestation_crypto.h"
+
+static uint32_t  public_key_registered = 0;
+
+static inline struct q_useful_buf_c useful_buf_head(struct q_useful_buf_c buf,
+                                                  size_t amount)
+{
+    return UsefulBuf_Head(buf, amount);
+}
+
+static uint32_t check_hash_sizes(void)
+{
+    if (T_COSE_CRYPTO_SHA256_SIZE != PSA_HASH_SIZE(PSA_ALG_SHA_256))
+    {
+        return PAL_ATTEST_HASH_FAIL;
+    }
+
+    return PAL_ATTEST_SUCCESS;
+}
+
+static psa_ecc_curve_t attest_map_elliptic_curve_type(int32_t cose_curve)
+{
+    psa_ecc_curve_t psa_curve;
+
+    /*FixMe: Mapping is not complete, missing ones: P384, P521, ED25519, ED448 */
+    switch (cose_curve)
+    {
+    case P_256:
+        psa_curve = PSA_ECC_CURVE_SECP256R1;
+        break;
+    default:
+        psa_curve = USHRT_MAX;
+    }
+
+    return psa_curve;
+}
+
+static psa_algorithm_t cose_hash_alg_id_to_psa(int32_t cose_hash_alg_id)
+{
+    psa_algorithm_t status;
+
+    switch (cose_hash_alg_id)
+    {
+    case COSE_ALG_SHA256_PROPRIETARY:
+        status = PSA_ALG_SHA_256;
+        break;
+    default:
+        status = PSA_ALG_MD4;
+        break;
+    }
+
+    return status;
+}
+
+static int32_t hash_alg_id_from_sig_alg_id(int32_t cose_sig_alg_id)
+{
+    switch (cose_sig_alg_id)
+    {
+        case COSE_ALGORITHM_ES256:
+            return COSE_ALG_SHA256_PROPRIETARY;
+        default:
+            return INT32_MAX;
+    }
+}
+
+int32_t pal_cose_crypto_hash_start(struct pal_cose_crypto_hash *hash_ctx, int32_t cose_hash_alg_id)
+{
+    int32_t                          cose_ret = PAL_ATTEST_SUCCESS;
+    psa_status_t                     psa_ret;
+    struct pal_cose_psa_crypto_hash *psa_hash_ctx;
+
+    cose_ret = check_hash_sizes();
+    if (cose_ret)
+    {
+        goto error;
+    }
+
+    if (sizeof(struct pal_cose_crypto_hash) < sizeof(struct pal_cose_psa_crypto_hash))
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+        goto error;
+    }
+
+    psa_hash_ctx = (struct pal_cose_psa_crypto_hash *)hash_ctx;
+    psa_ret = psa_hash_setup(&psa_hash_ctx->operation, cose_hash_alg_id_to_psa(cose_hash_alg_id));
+
+    if (psa_ret == PAL_ATTEST_SUCCESS)
+    {
+        psa_hash_ctx->status = PAL_ATTEST_SUCCESS;
+        cose_ret = PAL_ATTEST_SUCCESS;
+    }
+    else if (psa_ret == PSA_ERROR_NOT_SUPPORTED)
+    {
+        cose_ret = PAL_ATTEST_HASH_UNSUPPORTED;
+    }
+    else
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+    }
+
+error:
+    return cose_ret;
+}
+
+void pal_cose_crypto_hash_update(struct pal_cose_crypto_hash *hash_ctx,
+                                 struct q_useful_buf_c data_to_hash)
+{
+    struct pal_cose_psa_crypto_hash *psa_hash_ctx;
+
+    if (sizeof(struct pal_cose_crypto_hash) < sizeof(struct pal_cose_psa_crypto_hash))
+    {
+        return;
+    }
+
+    psa_hash_ctx = (struct pal_cose_psa_crypto_hash *)hash_ctx;
+
+    if (psa_hash_ctx->status == PAL_ATTEST_SUCCESS)
+    {
+        if (data_to_hash.ptr != NULL)
+        {
+            psa_hash_ctx->status = psa_hash_update(&psa_hash_ctx->operation,
+                                                   data_to_hash.ptr,
+                                                   data_to_hash.len);
+        }
+        else
+        {
+            /* Intentionally do nothing, just computing the size of the token */
+        }
+    }
+}
+
+int32_t pal_cose_crypto_hash_finish(struct pal_cose_crypto_hash *hash_ctx,
+                                    struct q_useful_buf buffer_to_hold_result,
+                                    struct q_useful_buf_c *hash_result)
+{
+    uint32_t                         cose_ret = PAL_ATTEST_SUCCESS;
+    psa_status_t                     psa_ret;
+    struct pal_cose_psa_crypto_hash *psa_hash_ctx;
+
+    if (sizeof(struct pal_cose_crypto_hash) < sizeof(struct pal_cose_psa_crypto_hash))
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+        goto error;
+    }
+
+    psa_hash_ctx = (struct pal_cose_psa_crypto_hash *)hash_ctx;
+
+    if (psa_hash_ctx->status == PAL_ATTEST_SUCCESS)
+    {
+        psa_ret = psa_hash_finish(&psa_hash_ctx->operation,
+                                  buffer_to_hold_result.ptr,
+                                  buffer_to_hold_result.len,
+                                  &(hash_result->len));
+
+        if (psa_ret == PAL_ATTEST_SUCCESS)
+        {
+            hash_result->ptr = buffer_to_hold_result.ptr;
+            cose_ret = 0;
+        }
+        else if (psa_ret == PSA_ERROR_BUFFER_TOO_SMALL)
+        {
+            cose_ret = PAL_ATTEST_HASH_BUFFER_SIZE;
+        }
+        else
+        {
+            cose_ret = PAL_ATTEST_HASH_FAIL;
+        }
+    }
+    else
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+    }
+
+error:
+    return cose_ret;
+}
+
+int pal_create_sha256(struct q_useful_buf_c bytes_to_hash, struct q_useful_buf buffer_for_hash,
+                      struct q_useful_buf_c *hash)
+{
+    uint32_t                      status = PAL_ATTEST_SUCCESS;
+    struct pal_cose_crypto_hash   hash_ctx;
+
+    status = pal_cose_crypto_hash_start(&hash_ctx, COSE_ALG_SHA256_PROPRIETARY);
+    if (status)
+        return status;
+
+    pal_cose_crypto_hash_update(&hash_ctx, bytes_to_hash);
+    status = pal_cose_crypto_hash_finish(&hash_ctx, buffer_for_hash, hash);
+
+    return status;
+}
+
+uint32_t pal_compute_hash(int32_t cose_alg_id, struct q_useful_buf buffer_for_hash,
+                          struct q_useful_buf_c *hash, struct q_useful_buf_c protected_headers,
+                          struct q_useful_buf_c payload)
+{
+    uint32_t                    status;
+    QCBOREncodeContext          cbor_encode_ctx;
+    struct q_useful_buf_c       tbs_first_part;
+    QCBORError                  qcbor_result;
+    struct pal_cose_crypto_hash hash_ctx = {{0}};
+    int32_t                     hash_alg_id;
+    UsefulBuf_MAKE_STACK_UB    (buffer_for_TBS_first_part, T_COSE_SIZE_OF_TBS);
+
+    /* This builds the CBOR-format to-be-signed bytes */
+    QCBOREncode_Init(&cbor_encode_ctx, buffer_for_TBS_first_part);
+    QCBOREncode_OpenArray(&cbor_encode_ctx);
+    /* context */
+    QCBOREncode_AddSZString(&cbor_encode_ctx,
+                            COSE_SIG_CONTEXT_STRING_SIGNATURE1);
+    /* body_protected */
+    QCBOREncode_AddBytes(&cbor_encode_ctx,
+                         protected_headers);
+    /* sign_protected */
+    QCBOREncode_AddBytes(&cbor_encode_ctx, NULL_USEFUL_BUF_C);
+    /* external_aad */
+    QCBOREncode_AddBytes(&cbor_encode_ctx, NULL_USEFUL_BUF_C);
+    /* fake payload */
+    QCBOREncode_AddBytes(&cbor_encode_ctx, NULL_USEFUL_BUF_C);
+    QCBOREncode_CloseArray(&cbor_encode_ctx);
+
+    /* Get the result and convert it to struct q_useful_buf_c representation */
+    qcbor_result = QCBOREncode_Finish(&cbor_encode_ctx, &tbs_first_part);
+    if (qcbor_result)
+    {
+        /* Mainly means that the protected_headers were too big
+         (which should never happen) */
+        status = PAL_ATTEST_ERR_SIGN_STRUCT;
+        goto Done;
+    }
+
+    /* Start the hashing */
+    hash_alg_id = hash_alg_id_from_sig_alg_id(cose_alg_id);
+
+    /* Don't check hash_alg_id for failure. pal_cose_crypto_hash_start()
+     * will handle it properly
+     */
+    status = pal_cose_crypto_hash_start(&hash_ctx, hash_alg_id);
+    if (status)
+        goto Done;
+
+    /* Hash the first part of the TBS. Take all but the last two
+     * bytes. The last two bytes are the fake payload from above. It
+     * is replaced by the real payload which is hashed next. The fake
+     * payload is needed so the array count is right. This is one of
+     * the main things that make it possible to implement with one
+     * buffer for the whole cose sign1.
+     */
+    pal_cose_crypto_hash_update(&hash_ctx, useful_buf_head(tbs_first_part,
+                                              tbs_first_part.len - 2));
+
+    /* Hash the payload */
+    pal_cose_crypto_hash_update(&hash_ctx, payload);
+
+    /* Finish the hash and set up to return it */
+    status = pal_cose_crypto_hash_finish(&hash_ctx,
+                                             buffer_for_hash,
+                                             hash);
+
+Done:
+    return status;
+}
+
+uint32_t pal_import_attest_key(int32_t alg)
+{
+    psa_key_type_t   attest_key_type;
+    size_t           public_key_size;
+    psa_status_t     status = PSA_SUCCESS;
+    psa_key_policy_t policy;
+    psa_ecc_curve_t  psa_curve;
+    psa_key_handle_t public_key_handle;
+
+    /* Mapping of COSE curve type to PSA curve types */
+    psa_curve = attest_map_elliptic_curve_type(P_256);
+    if (psa_curve == USHRT_MAX)
+        return PAL_ATTEST_ERROR;
+
+    /* Setup the key policy for public key */
+    policy = psa_key_policy_init();
+    psa_key_policy_set_usage(&policy, PSA_KEY_USAGE_VERIFY, alg);
+
+    status = psa_allocate_key(&public_key_handle);
+    if (status != PSA_SUCCESS)
+        return status;
+
+    status = psa_set_key_policy(public_key_handle, &policy);
+    if (status != PSA_SUCCESS)
+        return status;
+
+    attest_key_type = PSA_KEY_TYPE_ECC_PUBLIC_KEY(psa_curve);
+
+    /* Register public key to crypto service */
+    public_key_size = attest_key.pubx_key_size + attest_key.puby_key_size;
+
+    status = psa_import_key(public_key_handle,
+                                attest_key_type,
+                                (const uint8_t *)&attest_public_key,
+                                public_key_size + 1);
+
+    return status;
+}
+
+
+uint32_t pal_crypto_pub_key_verify(int32_t cose_algorithm_id,
+                                   struct q_useful_buf_c token_hash,
+                                   struct q_useful_buf_c signature)
+{
+    uint32_t status = PAL_ATTEST_SUCCESS;
+
+    if (!public_key_registered)
+    {
+        status = pal_import_attest_key(cose_algorithm_id);
+        if (status != PAL_ATTEST_SUCCESS)
+            return status;
+
+        public_key_registered = 1;
+    }
+
+/*
+ * Enable the verify function when Trusted Firmare - M Supports
+
+ *  Verify the signature a hash or short message using a public key.
+    status = psa_asymmetric_verify(public_key_handle,
+                                    cose_algorithm_id, token_hash.ptr, token_hash.len,
+                                    signature.ptr, signature.len);
+*/
+    return status;
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_crypto.h b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_crypto.h
new file mode 100644
index 00000000..2d63ad13
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_crypto.h
@@ -0,0 +1,102 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "pal_common.h"
+#include "pal_attestation_eat.h"
+
+#define ATTEST_PUBLIC_KEY_SLOT            4
+
+typedef struct{
+    uint8_t  *pubx_key;
+    uint32_t  pubx_key_size;
+    uint8_t  *puby_key;
+    uint32_t  puby_key_size;
+} ecc_key_t;
+
+struct ecc_public_key_t {
+    const uint8_t a;
+    uint8_t public_key[]; /* X-coordinate || Y-coordinate */
+};
+
+static const struct ecc_public_key_t attest_public_key = {
+     /* Constant byte */
+     0x04,
+     /* X-coordinate */
+     {0x79, 0xEB, 0xA9, 0x0E, 0x8B, 0xF4, 0x50, 0xA6,
+      0x75, 0x15, 0x76, 0xAD, 0x45, 0x99, 0xB0, 0x7A,
+      0xDF, 0x93, 0x8D, 0xA3, 0xBB, 0x0B, 0xD1, 0x7D,
+      0x00, 0x36, 0xED, 0x49, 0xA2, 0xD0, 0xFC, 0x3F,
+     /* Y-coordinate */
+      0xBF, 0xCD, 0xFA, 0x89, 0x56, 0xB5, 0x68, 0xBF,
+      0xDB, 0x86, 0x73, 0xE6, 0x48, 0xD8, 0xB5, 0x8D,
+      0x92, 0x99, 0x55, 0xB1, 0x4A, 0x26, 0xC3, 0x08,
+      0x0F, 0x34, 0x11, 0x7D, 0x97, 0x1D, 0x68, 0x64},
+};
+
+struct pal_cose_crypto_hash {
+    /* Can't put the actual size here without creating dependecy on
+     * actual hash implementation, so this is a fairly large and
+     * accommodating size.
+     */
+    uint8_t bytes[128];
+};
+
+struct pal_cose_psa_crypto_hash {
+    psa_status_t         status;
+    psa_hash_operation_t operation;
+};
+
+static const uint8_t initial_attestation_public_x_key[] =
+{
+    0x79, 0xEB, 0xA9, 0x0E, 0x8B, 0xF4, 0x50, 0xA6,
+    0x75, 0x15, 0x76, 0xAD, 0x45, 0x99, 0xB0, 0x7A,
+    0xDF, 0x93, 0x8D, 0xA3, 0xBB, 0x0B, 0xD1, 0x7D,
+    0x00, 0x36, 0xED, 0x49, 0xA2, 0xD0, 0xFC, 0x3F
+};
+
+static const uint8_t initial_attestation_public_y_key[] =
+{
+    0xBF, 0xCD, 0xFA, 0x89, 0x56, 0xB5, 0x68, 0xBF,
+    0xDB, 0x86, 0x73, 0xE6, 0x48, 0xD8, 0xB5, 0x8D,
+    0x92, 0x99, 0x55, 0xB1, 0x4A, 0x26, 0xC3, 0x08,
+    0x0F, 0x34, 0x11, 0x7D, 0x97, 0x1D, 0x68, 0x64
+};
+
+/* Initialize the structure with given public key */
+static const ecc_key_t attest_key = {
+        (uint8_t *)initial_attestation_public_x_key,
+        sizeof(initial_attestation_public_x_key),
+        (uint8_t *)initial_attestation_public_y_key,
+        sizeof(initial_attestation_public_y_key)
+};
+
+int32_t pal_cose_crypto_hash_start(struct pal_cose_crypto_hash *hash_ctx, int32_t cose_hash_alg_id);
+void pal_cose_crypto_hash_update(struct pal_cose_crypto_hash *hash_ctx,
+                                 struct q_useful_buf_c data_to_hash);
+int32_t pal_cose_crypto_hash_finish(struct pal_cose_crypto_hash *hash_ctx,
+                                    struct q_useful_buf buffer_to_hold_result,
+                                    struct q_useful_buf_c *hash_result);
+int pal_create_sha256(struct q_useful_buf_c bytes_to_hash, struct q_useful_buf buffer_for_hash,
+                      struct q_useful_buf_c *hash);
+uint32_t pal_compute_hash(int32_t cose_alg_id, struct q_useful_buf buffer_for_hash,
+                          struct q_useful_buf_c *hash, struct q_useful_buf_c protected_headers,
+                          struct q_useful_buf_c payload);
+uint32_t pal_import_attest_key(int32_t alg);
+uint32_t pal_crypto_pub_key_verify(int32_t cose_algorithm_id, struct q_useful_buf_c token_hash,
+                                   struct q_useful_buf_c signature);
+
+
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_eat.c b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_eat.c
index 262dc5dd..178fdc9c 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_eat.c
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_eat.c
@@ -15,10 +15,56 @@
  * limitations under the License.
 **/
 
-#include "pal_attestation_eat.h"
+#include "pal_attestation_crypto.h"
+
+uint32_t    mandatory_claims = 0;
+uint32_t    mandaroty_sw_components = 0;
+bool_t      sw_component_present = 0;
+
+static int pal_encode_cose_key(struct q_useful_buf_c *cose_key,
+                               struct q_useful_buf buffer_for_cose_key,
+                               struct q_useful_buf_c x_cord, struct q_useful_buf_c y_cord)
+{
+    uint32_t                  return_value;
+    QCBORError                qcbor_result;
+    QCBOREncodeContext        cbor_encode_ctx;
+    int32_t                   cose_curve_id = P_256;
+    struct q_useful_buf_c       encoded_key_id;
+
+    /* Get the public key x and y */
+    /* Encode it into a COSE_Key structure */
+    QCBOREncode_Init(&cbor_encode_ctx, buffer_for_cose_key);
+    QCBOREncode_OpenMap(&cbor_encode_ctx);
+    QCBOREncode_AddInt64ToMapN(&cbor_encode_ctx,
+                               COSE_KEY_COMMON_KTY,
+                               COSE_KEY_TYPE_EC2);
+    QCBOREncode_AddInt64ToMapN(&cbor_encode_ctx,
+                               COSE_KEY_PARAM_CRV,
+                               cose_curve_id);
+    QCBOREncode_AddBytesToMapN(&cbor_encode_ctx,
+                               COSE_KEY_PARAM_X_COORDINATE,
+                               x_cord);
+    QCBOREncode_AddBytesToMapN(&cbor_encode_ctx,
+                               COSE_KEY_PARAM_Y_COORDINATE,
+                               y_cord);
+    QCBOREncode_CloseMap(&cbor_encode_ctx);
+
+    qcbor_result = QCBOREncode_Finish(&cbor_encode_ctx, &encoded_key_id);
+    if (qcbor_result != QCBOR_SUCCESS)
+    {
+        /* Mainly means that the COSE_Key was too big for buffer_for_cose_key */
+        return_value = PAL_ATTEST_ERR_PROTECTED_HEADERS;
+        goto Done;
+    }
+
+    /* Finish up and return */
+    *cose_key = encoded_key_id;
+    return_value = PAL_ATTEST_SUCCESS;
+
+Done:
+    return return_value;
+}
 
-uint32_t  mandatory_claims = 0, mandaroty_sw_components = 0;
-bool_t    sw_component_present = 0;
 
 static int get_items_in_map(QCBORDecodeContext *decode_context,
                             struct items_to_get_t *item_list)
@@ -90,7 +136,7 @@ static int get_item_in_map(QCBORDecodeContext *decode_context,
 }
 
 static int parse_unprotected_headers(QCBORDecodeContext *decode_context,
-                                     struct useful_buf_c *child,
+                                     struct q_useful_buf_c *child,
                                      bool *loop_back)
 {
     struct items_to_get_t   item_list[3];
@@ -120,7 +166,7 @@ static int parse_unprotected_headers(QCBORDecodeContext *decode_context,
     return PAL_ATTEST_SUCCESS;
 }
 
-static int parse_protected_headers(struct useful_buf_c protected_headers,
+static int parse_protected_headers(struct q_useful_buf_c protected_headers,
                                    int32_t *alg_id)
 {
     QCBORDecodeContext  decode_context;
@@ -156,7 +202,7 @@ static int parse_protected_headers(struct useful_buf_c protected_headers,
     @return   - error status
 **/
 static int parse_claims(QCBORDecodeContext *decode_context, QCBORItem item,
-                                   struct useful_buf_c completed_challenge)
+                                   struct q_useful_buf_c completed_challenge)
 {
     int i, count = 0;
     int status = PAL_ATTEST_SUCCESS;
@@ -281,16 +327,42 @@ static int parse_claims(QCBORDecodeContext *decode_context, QCBORItem item,
 int32_t pal_initial_attest_verify_token(uint8_t *challenge, uint32_t challenge_size,
                                         uint8_t *token, uint32_t token_size)
 {
-    int                 status = PAL_ATTEST_SUCCESS;
+    int32_t             status = PAL_ATTEST_SUCCESS;
     bool                short_circuit;
     int32_t             cose_algorithm_id;
     QCBORItem           item;
     QCBORDecodeContext  decode_context;
-    struct useful_buf_c completed_challenge;
-    struct useful_buf_c completed_token;
-    struct useful_buf_c payload;
-    struct useful_buf_c protected_headers;
-    struct useful_buf_c kid;
+    struct q_useful_buf_c completed_challenge;
+    struct q_useful_buf_c completed_token;
+    struct q_useful_buf_c payload;
+    struct q_useful_buf_c signature;
+    struct q_useful_buf_c protected_headers;
+    struct q_useful_buf_c kid;
+    struct q_useful_buf_c x_cord;
+    struct q_useful_buf_c y_cord;
+    struct q_useful_buf_c cose_key_to_hash;
+    struct q_useful_buf_c key_hash;
+    struct q_useful_buf_c token_hash;
+    USEFUL_BUF_MAKE_STACK_UB(buf_to_hold_x_coord, T_COSE_CRYPTO_EC_P256_COORD_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buf_to_hold_y_coord, T_COSE_CRYPTO_EC_P256_COORD_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_kid, T_COSE_CRYPTO_SHA256_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_cose_key, MAX_ENCODED_COSE_KEY_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_encoded_key, MAX_ENCODED_COSE_KEY_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_token_hash, T_COSE_CRYPTO_SHA256_SIZE);
+
+    kid.ptr = buffer_for_encoded_key.ptr;
+
+    memcpy(buf_to_hold_x_coord.ptr, (const void *)attest_key.pubx_key, attest_key.pubx_key_size);
+    memcpy(buf_to_hold_y_coord.ptr, (const void *)attest_key.puby_key, attest_key.puby_key_size);
+
+    /* Update size */
+    buf_to_hold_x_coord.len = attest_key.pubx_key_size;
+    buf_to_hold_y_coord.len = attest_key.puby_key_size;
+
+    x_cord.ptr = buf_to_hold_x_coord.ptr;
+    x_cord.len = buf_to_hold_x_coord.len;
+    y_cord.ptr = buf_to_hold_y_coord.ptr;
+    y_cord.len = buf_to_hold_y_coord.len;
 
     /* Construct the token buffer for validation */
     completed_token.ptr = token;
@@ -345,6 +417,27 @@ int32_t pal_initial_attest_verify_token(uint8_t *challenge, uint32_t challenge_s
     if (status != PAL_ATTEST_SUCCESS)
         return status;
 
+    /* Encode the given public key */
+    status = pal_encode_cose_key(&cose_key_to_hash, buffer_for_cose_key, x_cord, y_cord);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
+    /* Create hash of the given public key */
+    status = pal_create_sha256(cose_key_to_hash, buffer_for_kid, &key_hash);
+    if (status != PSA_SUCCESS)
+        return status;
+
+    /* Compare the hash of the public key in token and hash of the given public key */
+    if (kid.len != key_hash.len)
+    {
+        return PAL_ATTEST_HASH_LENGTH_MISMATCH;
+    }
+
+    if (memcmp(kid.ptr, key_hash.ptr, kid.len) != 0)
+    {
+        return PAL_ATTEST_HASH_MISMATCH;
+    }
+
     /* Get the payload */
     QCBORDecode_GetNext(&decode_context, &item);
     if (item.uDataType != QCBOR_TYPE_BYTE_STRING)
@@ -357,6 +450,19 @@ int32_t pal_initial_attest_verify_token(uint8_t *challenge, uint32_t challenge_s
     if (item.uDataType != QCBOR_TYPE_BYTE_STRING)
         return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
 
+    signature = item.val.string;
+
+    /* Compute the hash from the token */
+    status = pal_compute_hash(cose_algorithm_id, buffer_for_token_hash, &token_hash,
+                              protected_headers, payload);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
+    /* Verify the signature */
+    status = pal_crypto_pub_key_verify(cose_algorithm_id, token_hash, signature);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
     /* Initialize the Decoder and validate the payload format */
     QCBORDecode_Init(&decode_context, payload, QCBOR_DECODE_MODE_NORMAL);
     status = QCBORDecode_GetNext(&decode_context, &item);
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_eat.h b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_eat.h
index 9f435fb3..8a0c5455 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_eat.h
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_eat.h
@@ -17,16 +17,70 @@
 
 #include "qcbor.h"
 #include "pal_common.h"
+#include "psa/crypto.h"
 
 #define PAL_ATTEST_MIN_ERROR              30
 
+/* NIST P-256 also known as secp256r1 */
+#define P_256                             1
+
 #define COSE_HEADER_PARAM_ALG             1
 #define COSE_HEADER_PARAM_KID             4
 
-#define MANDATORY_CLAIM_WITH_SW_COMP      862
-#define MANDATORY_CLAIM_NO_SW_COMP        926
-#define MANDATORY_SW_COMP                 36
-#define CBOR_ARM_TOTAL_CLAIM_INSTANCE     10
+#define COSE_KEY_COMMON_KTY               1
+#define COSE_KEY_TYPE_EC2                 2
+#define COSE_KEY_PARAM_CRV               -1
+#define COSE_KEY_PARAM_X_COORDINATE      -2
+#define COSE_KEY_PARAM_Y_COORDINATE      -3
+#define COSE_ALGORITHM_ES256             -7
+#define COSE_ALG_SHA256_PROPRIETARY      -72000
+
+/**
+ * The size of X and Y coordinate in 2 parameter style EC public
+ * key. Format is as defined in [COSE (RFC 8152)]
+ * (https://tools.ietf.org/html/rfc8152) and [SEC 1: Elliptic Curve
+ * Cryptography](http://www.secg.org/sec1-v2.pdf).
+ *
+ * This size is well-known and documented in public standards.
+ */
+#define T_COSE_CRYPTO_EC_P256_COORD_SIZE  32
+#define T_COSE_CRYPTO_SHA256_SIZE         32
+
+#define MAX_ENCODED_COSE_KEY_SIZE \
+    1 + /* 1 byte to encode map */ \
+    2 + /* 2 bytes to encode key type */ \
+    2 + /* 2 bytes to encode curve */ \
+    2 * /* the X and Y coordinates at 32 bytes each */ \
+        (T_COSE_CRYPTO_EC_P256_COORD_SIZE + 1 + 2)
+#define USEFUL_BUF_MAKE_STACK_UB UsefulBuf_MAKE_STACK_UB
+
+#define COSE_SIG_CONTEXT_STRING_SIGNATURE1 "Signature1"
+
+/* Private value. Intentionally not documented for Doxygen.
+ * This is the size allocated for the encoded protected headers.  It
+ * needs to be big enough for make_protected_header() to succeed. It
+ * currently sized for one header with an algorithm ID up to 32 bits
+ * long -- one byte for the wrapping map, one byte for the label, 5
+ * bytes for the ID. If this is made accidentially too small, QCBOR will
+ * only return an error, and not overrun any buffers.
+ *
+ * 9 extra bytes are added, rounding it up to 16 total, in case some
+ * other protected header is to be added.
+ */
+#define T_COSE_SIGN1_MAX_PROT_HEADER (1+1+5+9)
+
+/**
+ * This is the size of the first part of the CBOR encoded TBS
+ * bytes. It is around 20 bytes. See create_tbs_hash().
+ */
+#define T_COSE_SIZE_OF_TBS \
+    1 + /* For opening the array */ \
+    sizeof(COSE_SIG_CONTEXT_STRING_SIGNATURE1) + /* "Signature1" */ \
+    2 + /* Overhead for encoding string */ \
+    T_COSE_SIGN1_MAX_PROT_HEADER + /* entire protected headers */ \
+    3 * ( /* 3 NULL bstrs for fields not used */ \
+        1 /* size of a NULL bstr */  \
+    )
 
 /*
  CBOR Label for proprietary header indicating short-circuit
@@ -47,6 +101,8 @@
 #define EAT_CBOR_ARM_LABEL_UEID                 (EAT_CBOR_ARM_RANGE_BASE - 9)
 #define EAT_CBOR_ARM_LABEL_ORIGINATION          (EAT_CBOR_ARM_RANGE_BASE - 10)
 
+#define CBOR_ARM_TOTAL_CLAIM_INSTANCE           10
+
 #define EAT_CBOR_SW_COMPONENT_TYPE              (1u)
 #define EAT_CBOR_SW_COMPONENT_MEASUREMENT       (2u)
 #define EAT_CBOR_SW_COMPONENT_EPOCH             (3u)
@@ -54,6 +110,40 @@
 #define EAT_CBOR_SW_COMPONENT_SIGNER_ID         (5u)
 #define EAT_CBOR_SW_COMPONENT_MEASUREMENT_DESC  (6u)
 
+#define MANDATORY_CLAIM_WITH_SW_COMP           (1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_NONCE)              |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_UEID)               |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_IMPLEMENTATION_ID)  |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_CLIENT_ID)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_SECURITY_LIFECYCLE) |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_BOOT_SEED)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_SW_COMPONENTS))
+
+#define MANDATORY_CLAIM_NO_SW_COMP             (1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_NONCE)              |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_UEID)               |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_IMPLEMENTATION_ID)  |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_CLIENT_ID)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_SECURITY_LIFECYCLE) |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_BOOT_SEED)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_NO_SW_COMPONENTS))
+
+#define MANDATORY_SW_COMP                      (1 << EAT_CBOR_SW_COMPONENT_MEASUREMENT      |     \
+                                                1 << EAT_CBOR_SW_COMPONENT_SIGNER_ID)
+
+#define NULL_USEFUL_BUF_C  NULLUsefulBufC
 
 enum attestation_error_code {
     PAL_ATTEST_SUCCESS = 0,
@@ -61,6 +151,13 @@ enum attestation_error_code {
     PAL_ATTEST_TOKEN_CHALLENGE_MISMATCH,
     PAL_ATTEST_TOKEN_NOT_SUPPORTED,
     PAL_ATTEST_TOKEN_NOT_ALL_MANDATORY_CLAIMS,
+    PAL_ATTEST_HASH_LENGTH_MISMATCH,
+    PAL_ATTEST_HASH_MISMATCH,
+    PAL_ATTEST_HASH_FAIL,
+    PAL_ATTEST_HASH_UNSUPPORTED,
+    PAL_ATTEST_HASH_BUFFER_SIZE,
+    PAL_ATTEST_ERR_PROTECTED_HEADERS,
+    PAL_ATTEST_ERR_SIGN_STRUCT,
     PAL_ATTEST_ERROR,
 };
 
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_intf.h b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_intf.h
index ef132b5b..12f6ee94 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_intf.h
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/nspe/initial_attestation/pal_attestation_intf.h
@@ -18,7 +18,7 @@
 #ifndef _PAL_INITIAL_ATTESTATION_H_
 #define _PAL_INITIAL_ATTESTATION_H_
 
-#include "pal_attestation_eat.h"
+#include "pal_attestation_crypto.h"
 
 enum attestation_function_code {
     PAL_INITIAL_ATTEST_GET_TOKEN        = 0x1,
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/spe/pal_driver_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/spe/pal_driver_intf.c
index cc8b5373..fd307839 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/spe/pal_driver_intf.c
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/spe/pal_driver_intf.c
@@ -33,7 +33,7 @@ void pal_uart_init(uint32_t uart_base_addr)
               - data     : Value for format specifier
 **/
 
-void pal_print(char *str, uint32_t data)
+void pal_print(char *str, int32_t data)
 {
   pal_cmsdk_print(str,data);
 
@@ -110,3 +110,23 @@ int pal_wd_timer_is_enabled(addr_t base_addr)
     return (pal_wd_cmsdk_is_enabled(base_addr));
 }
 
+/**
+    @brief   - Trigger interrupt for irq signal assigned to driver partition
+               before return to caller.
+    @param   - void
+    @return  - void
+**/
+void pal_generate_interrupt(void)
+{
+    pal_uart_cmsdk_generate_irq();
+}
+
+/**
+    @brief   - Disable interrupt that was generated using pal_generate_interrupt API.
+    @param   - void
+    @return  - void
+**/
+void pal_disable_interrupt(void)
+{
+    pal_uart_cmsdk_disable_irq();
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/spe/pal_driver_intf.h b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/spe/pal_driver_intf.h
index da85a63e..cef34ca8 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_an521/spe/pal_driver_intf.h
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_an521/spe/pal_driver_intf.h
@@ -23,11 +23,13 @@
 #include "pal_wd_cmsdk.h"
 
 void pal_uart_init(uint32_t uart_base_addr);
-void pal_print(char *str, uint32_t data);
+void pal_print(char *str, int32_t data);
 int pal_nvmem_write(addr_t base, uint32_t offset, void *buffer, int size);
 int pal_nvmem_read(addr_t base, uint32_t offset, void *buffer, int size);
 int pal_wd_timer_init(addr_t base_addr, uint32_t time_us, uint32_t timer_tick_us);
 int pal_wd_timer_enable(addr_t base_addr);
 int pal_wd_timer_disable(addr_t base_addr);
 int pal_wd_timer_is_enabled(addr_t base_addr);
+void pal_generate_interrupt(void);
+void pal_disable_interrupt(void);
 #endif /* _PAL_DRIVER_INTF_H_ */
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/Makefile b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/Makefile
index 00829ae7..aa7e10b7 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/Makefile
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/Makefile
@@ -83,6 +83,7 @@ endif
 ifeq (${PSA_INITIAL_ATTESTATION_IMPLEMENTED},1)
 SRC_C_NSPE += pal_attestation_intf.c
 SRC_C_NSPE += pal_attestation_eat.c
+SRC_C_NSPE += pal_attestation_crypto.c
 else
 SRC_C_NSPE += pal_attestation_empty_intf.c
 endif
@@ -98,7 +99,7 @@ INCLUDE= -I$(SOURCE)/platform/targets/$(TARGET)/nspe \
          -I$(SOURCE)/platform/targets/$(TARGET)/nspe/initial_attestation \
          -I$(SOURCE)/platform/targets/$(TARGET)/nspe/initial_attestation/ext/inc \
          -I$(SOURCE)/platform/targets/$(TARGET)/nspe/internal_trusted_storage \
-         -I$(SOURCE)/platform/targets/$(TARGET)/nspe/protected_storage
+         -I$(SOURCE)/platform/targets/$(TARGET)/nspe/protected_storage \
 
 VPATH=$(SOURCE)/platform/targets/$(TARGET)/: \
       $(SOURCE)/platform/targets/$(TARGET)/spe: \
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/manifests/common/driver_partition_psa.json b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/manifests/common/driver_partition_psa.json
index 5d57571c..7010c9b5 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/manifests/common/driver_partition_psa.json
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/manifests/common/driver_partition_psa.json
@@ -3,11 +3,9 @@
   "name": "DRIVER_PARTITION",
   "type": "PSA-ROT",
   "priority": "NORMAL",
-  "id": "0x00000003",
   "description": "Implements device services such print, flash read/write,. etc.",
   "entry_point": "driver_main",
   "stack_size": "0x400",
-  "heap_size": "0x100",
   "services": [{
       "name": "DRIVER_UART_SID",
       "sid": "0x0000FC01",
@@ -33,9 +31,9 @@
       "minor_policy": "RELAXED"
     },
     {
-      "name": "TEST_INTR_SID",
+      "name": "DRIVER_TEST_SID",
       "sid": "0x0000FC04",
-      "signal": "TEST_INTR_SIG",
+      "signal": "DRIVER_TEST_SIG",
       "non_secure_clients": true,
       "minor_version": 1,
       "minor_policy": "RELAXED"
@@ -69,13 +67,9 @@
   ],
   "irqs": [
     {
+       "description": "Using UART TX interrupt to test psa_wait and psa_eoi for irq_signal",
        "signal": "DRIVER_UART_INTR_SIG",
-       "line_num": 17
+       "line_num": 46
     }
-  ],
-  "linker_pattern": {
-    "object_list": [
-    "driver_partition.a"
-    ]
-  }
+  ]
 }
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/manifests/ipc/client_partition_psa.json b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/manifests/ipc/client_partition_psa.json
index 081dc95d..b93377bd 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/manifests/ipc/client_partition_psa.json
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/manifests/ipc/client_partition_psa.json
@@ -3,11 +3,9 @@
   "name": "CLIENT_PARTITION",
   "type": "APPLICATION-ROT",
   "priority": "NORMAL",
-  "id": "0x00000001",
   "description": "Client partition executing client test func from SPE",
   "entry_point": "client_main",
   "stack_size": "0x400",
-  "heap_size": "0x100",
   "services": [{
       "name": "CLIENT_TEST_DISPATCHER_SID",
       "sid": "0x0000FA01",
@@ -20,7 +18,7 @@
   "dependencies": [
     "DRIVER_UART_SID",
     "DRIVER_NVMEM_SID",
-    "TEST_INTR_SID",
+    "DRIVER_TEST_SID",
     "SERVER_TEST_DISPATCHER_SID",
     "SERVER_UNSPECIFED_MINOR_V_SID",
     "SERVER_STRICT_MINOR_VERSION_SID",
@@ -35,10 +33,5 @@
       "size": "0x20",
       "permission": "READ-WRITE"
     }
-   ],
-  "linker_pattern": {
-    "object_list": [
-    "client_partition.a"
-    ]
-  }
+   ]
 }
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/manifests/ipc/server_partition_psa.json b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/manifests/ipc/server_partition_psa.json
index 3541387c..146b8fbc 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/manifests/ipc/server_partition_psa.json
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/manifests/ipc/server_partition_psa.json
@@ -3,7 +3,6 @@
   "name": "SERVER_PARTITION",
   "type": "APPLICATION-ROT",
   "priority": "NORMAL",
-  "id": "0x00000002",
   "description": "Server partition executing server test func",
   "entry_point": "server_main",
   "stack_size": "0x400",
@@ -66,10 +65,5 @@
   "dependencies": [
     "DRIVER_UART_SID",
     "DRIVER_NVMEM_SID"
-  ],
-  "linker_pattern": {
-    "object_list": [
-    "server_partition.a"
-    ]
-  }
+  ]
 }
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/common/pal_config.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/common/pal_config.h
index daa0ec5f..e3f70ad7 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/common/pal_config.h
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/common/pal_config.h
@@ -50,7 +50,7 @@
 #endif
 
 #if !defined(VERBOSE)
-#define VERBOSE 4 /* Print verbosity = ERROR */
+#define VERBOSE 3 /* Print verbosity = TEST */
 #endif
 
 #if (!defined(VAL_NSPE_BUILD) && !defined(SPE_BUILD))
@@ -62,7 +62,15 @@
 #endif
 
 #if !defined(TEST_COMBINE_ARCHIVE)
-//#define TEST_COMBINE_ARCHIVE /* Test dispatcher code selection */
+#define TEST_COMBINE_ARCHIVE 0 /* Combine test archive or binary? */
+#endif
+
+#if !defined(WATCHDOG_AVAILABLE)
+#define WATCHDOG_AVAILABLE 0 /* If zero, skip watchdog programming */
+#endif
+
+#if !defined(SP_HEAP_MEM_SUPP)
+#define SP_HEAP_MEM_SUPP 0 /* Are Dynamic funcs available to secure partition? */
 #endif
 
 /*
@@ -79,6 +87,13 @@
  * of this file.
 */
 #include "psa_manifest/sid.h"
+
+/*
+ * psa_manifest/pid.h: Secure Partition IDs
+ * Macro definitions that map from Secure Partition names to Secure Partition IDs.
+ * Partition manifest parse build tool must provide the implementation of this file.
+*/
+#include "psa_manifest/pid.h"
 #endif
 
 #if PSA_CRYPTO_IMPLEMENTED
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/common/pal_driver_ipc_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/common/pal_driver_ipc_intf.c
index 32aef9c5..f8f773fb 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/common/pal_driver_ipc_intf.c
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/common/pal_driver_ipc_intf.c
@@ -56,7 +56,7 @@ int pal_uart_init_ns(uint32_t uart_base_addr)
     @return   - SUCCESS/FAILURE
 **/
 
-int pal_print_ns(char *str, uint32_t data)
+int pal_print_ns(char *str, int32_t data)
 {
     int             string_len = 0;
     char            *p = str;
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/common/pal_driver_ns_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/common/pal_driver_ns_intf.c
index 5985f00c..338df6cb 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/common/pal_driver_ns_intf.c
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/common/pal_driver_ns_intf.c
@@ -38,7 +38,7 @@ int pal_uart_init_ns(uint32_t uart_base_addr)
     @return   - SUCCESS/FAILURE
 **/
 
-int pal_print_ns(char *str, uint32_t data)
+int pal_print_ns(char *str, int32_t data)
 {
     pal_uart_pl011_print(str, data);
     return PAL_STATUS_SUCCESS;
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/crypto/pal_crypto_config.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/crypto/pal_crypto_config.h
index 6d71d2ec..ab11fd16 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/crypto/pal_crypto_config.h
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/crypto/pal_crypto_config.h
@@ -78,10 +78,10 @@
  *
  * Comment macros to disable the types
  */
-#define ARCH_TEST_DES
-#define ARCH_TEST_DES_1KEY
-#define ARCH_TEST_DES_2KEY
-#define ARCH_TEST_DES_3KEY
+//#define ARCH_TEST_DES
+//#define ARCH_TEST_DES_1KEY
+//#define ARCH_TEST_DES_2KEY
+//#define ARCH_TEST_DES_3KEY
 
 /**
  * \def  ARCH_TEST_RAW
@@ -104,7 +104,7 @@
  *
  * Enable the ARC4 key type.
  */
-#define ARCH_TEST_ARC4
+//#define ARCH_TEST_ARC4
 
 /**
  * \def ARCH_TEST_CIPER_MODE_CTR
@@ -227,21 +227,21 @@
  *
  * Comment macros to disable the types
  */
-#define ARCH_TEST_MD2
-#define ARCH_TEST_MD4
-#define ARCH_TEST_MD5
-#define ARCH_TEST_RIPEMD160
+//#define ARCH_TEST_MD2
+//#define ARCH_TEST_MD4
+//#define ARCH_TEST_MD5
+//#define ARCH_TEST_RIPEMD160
 #define ARCH_TEST_SHA1
 #define ARCH_TEST_SHA224
 #define ARCH_TEST_SHA256
 #define ARCH_TEST_SHA384
 #define ARCH_TEST_SHA512
-#define ARCH_TEST_SHA512_224
-#define ARCH_TEST_SHA512_256
-#define ARCH_TEST_SHA3_224
-#define ARCH_TEST_SHA3_256
-#define ARCH_TEST_SHA3_384
-#define ARCH_TEST_SHA3_512
+//#define ARCH_TEST_SHA512_224
+//#define ARCH_TEST_SHA512_256
+//#define ARCH_TEST_SHA3_224
+//#define ARCH_TEST_SHA3_256
+//#define ARCH_TEST_SHA3_384
+//#define ARCH_TEST_SHA3_512
 
 /**
  * \def ARCH_TEST_HKDF
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/crypto/pal_crypto_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/crypto/pal_crypto_intf.c
index ad838f91..3df6aa8d 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/crypto/pal_crypto_intf.c
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/crypto/pal_crypto_intf.c
@@ -36,7 +36,7 @@ int32_t pal_crypto_function(int type, va_list valist)
     uint32_t                status;
     const void              *extra;
     size_t                  extra_size, capacity, *gen_cap, nonce_length, additional_data_length;
-    psa_key_handle_t        handle, *key_handle;
+    psa_key_handle_t        handle, *key_handle, target_handle;
     psa_key_type_t          key_type, *key_type_out;
     psa_key_policy_t        *policy;
     psa_key_usage_t         usage, *usage_out;
@@ -325,6 +325,11 @@ int32_t pal_crypto_function(int type, va_list valist)
         case PAL_CRYPTO_ALLOCATE_KEY:
             key_handle = (psa_key_handle_t *)va_arg(valist, int*);
             return psa_allocate_key(key_handle);
+        case PAL_CRYPTO_COPY_KEY:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            target_handle = (psa_key_handle_t)va_arg(valist, int);
+            policy = va_arg(valist, psa_key_policy_t*);
+            return psa_copy_key(handle, target_handle, policy);
         case PAL_CRYPTO_FREE:
             for (i = 0; i < PAL_KEY_SLOT_COUNT; i++)
                 psa_destroy_key(i);
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/crypto/pal_crypto_intf.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/crypto/pal_crypto_intf.h
index dfabee18..d1dabfa4 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/crypto/pal_crypto_intf.h
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/crypto/pal_crypto_intf.h
@@ -68,6 +68,7 @@ enum crypto_function_code {
     PAL_CRYPTO_ASYMMTERIC_VERIFY        = 0x31,
     PAL_CRYPTO_KEY_AGREEMENT            = 0x32,
     PAL_CRYPTO_ALLOCATE_KEY             = 0x33,
+    PAL_CRYPTO_COPY_KEY                 = 0x34,
     PAL_CRYPTO_FREE                     = 0xFE,
 };
 
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_crypto.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_crypto.c
new file mode 100644
index 00000000..ae2bdba4
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_crypto.c
@@ -0,0 +1,346 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "pal_attestation_crypto.h"
+
+static uint32_t  public_key_registered = 0;
+
+static inline struct q_useful_buf_c useful_buf_head(struct q_useful_buf_c buf,
+                                                  size_t amount)
+{
+    return UsefulBuf_Head(buf, amount);
+}
+
+static uint32_t check_hash_sizes(void)
+{
+    if (T_COSE_CRYPTO_SHA256_SIZE != PSA_HASH_SIZE(PSA_ALG_SHA_256))
+    {
+        return PAL_ATTEST_HASH_FAIL;
+    }
+
+    return PAL_ATTEST_SUCCESS;
+}
+
+static psa_ecc_curve_t attest_map_elliptic_curve_type(int32_t cose_curve)
+{
+    psa_ecc_curve_t psa_curve;
+
+    /*FixMe: Mapping is not complete, missing ones: P384, P521, ED25519, ED448 */
+    switch (cose_curve)
+    {
+    case P_256:
+        psa_curve = PSA_ECC_CURVE_SECP256R1;
+        break;
+    default:
+        psa_curve = USHRT_MAX;
+    }
+
+    return psa_curve;
+}
+
+static psa_algorithm_t cose_hash_alg_id_to_psa(int32_t cose_hash_alg_id)
+{
+    psa_algorithm_t status;
+
+    switch (cose_hash_alg_id)
+    {
+    case COSE_ALG_SHA256_PROPRIETARY:
+        status = PSA_ALG_SHA_256;
+        break;
+    default:
+        status = PSA_ALG_MD4;
+        break;
+    }
+
+    return status;
+}
+
+static int32_t hash_alg_id_from_sig_alg_id(int32_t cose_sig_alg_id)
+{
+    switch (cose_sig_alg_id)
+    {
+        case COSE_ALGORITHM_ES256:
+            return COSE_ALG_SHA256_PROPRIETARY;
+        default:
+            return INT32_MAX;
+    }
+}
+
+int32_t pal_cose_crypto_hash_start(struct pal_cose_crypto_hash *hash_ctx, int32_t cose_hash_alg_id)
+{
+    int32_t                          cose_ret = PAL_ATTEST_SUCCESS;
+    psa_status_t                     psa_ret;
+    struct pal_cose_psa_crypto_hash *psa_hash_ctx;
+
+    cose_ret = check_hash_sizes();
+    if (cose_ret)
+    {
+        goto error;
+    }
+
+    if (sizeof(struct pal_cose_crypto_hash) < sizeof(struct pal_cose_psa_crypto_hash))
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+        goto error;
+    }
+
+    psa_hash_ctx = (struct pal_cose_psa_crypto_hash *)hash_ctx;
+    psa_ret = psa_hash_setup(&psa_hash_ctx->operation, cose_hash_alg_id_to_psa(cose_hash_alg_id));
+
+    if (psa_ret == PAL_ATTEST_SUCCESS)
+    {
+        psa_hash_ctx->status = PAL_ATTEST_SUCCESS;
+        cose_ret = PAL_ATTEST_SUCCESS;
+    }
+    else if (psa_ret == PSA_ERROR_NOT_SUPPORTED)
+    {
+        cose_ret = PAL_ATTEST_HASH_UNSUPPORTED;
+    }
+    else
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+    }
+
+error:
+    return cose_ret;
+}
+
+void pal_cose_crypto_hash_update(struct pal_cose_crypto_hash *hash_ctx,
+                                 struct q_useful_buf_c data_to_hash)
+{
+    struct pal_cose_psa_crypto_hash *psa_hash_ctx;
+
+    if (sizeof(struct pal_cose_crypto_hash) < sizeof(struct pal_cose_psa_crypto_hash))
+    {
+        return;
+    }
+
+    psa_hash_ctx = (struct pal_cose_psa_crypto_hash *)hash_ctx;
+
+    if (psa_hash_ctx->status == PAL_ATTEST_SUCCESS)
+    {
+        if (data_to_hash.ptr != NULL)
+        {
+            psa_hash_ctx->status = psa_hash_update(&psa_hash_ctx->operation,
+                                                   data_to_hash.ptr,
+                                                   data_to_hash.len);
+        }
+        else
+        {
+            /* Intentionally do nothing, just computing the size of the token */
+        }
+    }
+}
+
+int32_t pal_cose_crypto_hash_finish(struct pal_cose_crypto_hash *hash_ctx,
+                                    struct q_useful_buf buffer_to_hold_result,
+                                    struct q_useful_buf_c *hash_result)
+{
+    uint32_t                         cose_ret = PAL_ATTEST_SUCCESS;
+    psa_status_t                     psa_ret;
+    struct pal_cose_psa_crypto_hash *psa_hash_ctx;
+
+    if (sizeof(struct pal_cose_crypto_hash) < sizeof(struct pal_cose_psa_crypto_hash))
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+        goto error;
+    }
+
+    psa_hash_ctx = (struct pal_cose_psa_crypto_hash *)hash_ctx;
+
+    if (psa_hash_ctx->status == PAL_ATTEST_SUCCESS)
+    {
+        psa_ret = psa_hash_finish(&psa_hash_ctx->operation,
+                                  buffer_to_hold_result.ptr,
+                                  buffer_to_hold_result.len,
+                                  &(hash_result->len));
+
+        if (psa_ret == PAL_ATTEST_SUCCESS)
+        {
+            hash_result->ptr = buffer_to_hold_result.ptr;
+            cose_ret = 0;
+        }
+        else if (psa_ret == PSA_ERROR_BUFFER_TOO_SMALL)
+        {
+            cose_ret = PAL_ATTEST_HASH_BUFFER_SIZE;
+        }
+        else
+        {
+            cose_ret = PAL_ATTEST_HASH_FAIL;
+        }
+    }
+    else
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+    }
+
+error:
+    return cose_ret;
+}
+
+int pal_create_sha256(struct q_useful_buf_c bytes_to_hash, struct q_useful_buf buffer_for_hash,
+                      struct q_useful_buf_c *hash)
+{
+    uint32_t                      status = PAL_ATTEST_SUCCESS;
+    struct pal_cose_crypto_hash   hash_ctx;
+
+    status = pal_cose_crypto_hash_start(&hash_ctx, COSE_ALG_SHA256_PROPRIETARY);
+    if (status)
+        return status;
+
+    pal_cose_crypto_hash_update(&hash_ctx, bytes_to_hash);
+    status = pal_cose_crypto_hash_finish(&hash_ctx, buffer_for_hash, hash);
+
+    return status;
+}
+
+uint32_t pal_compute_hash(int32_t cose_alg_id, struct q_useful_buf buffer_for_hash,
+                          struct q_useful_buf_c *hash, struct q_useful_buf_c protected_headers,
+                          struct q_useful_buf_c payload)
+{
+    uint32_t                    status;
+    QCBOREncodeContext          cbor_encode_ctx;
+    struct q_useful_buf_c       tbs_first_part;
+    QCBORError                  qcbor_result;
+    struct pal_cose_crypto_hash hash_ctx = {{0}};
+    int32_t                     hash_alg_id;
+    UsefulBuf_MAKE_STACK_UB    (buffer_for_TBS_first_part, T_COSE_SIZE_OF_TBS);
+
+    /* This builds the CBOR-format to-be-signed bytes */
+    QCBOREncode_Init(&cbor_encode_ctx, buffer_for_TBS_first_part);
+    QCBOREncode_OpenArray(&cbor_encode_ctx);
+    /* context */
+    QCBOREncode_AddSZString(&cbor_encode_ctx,
+                            COSE_SIG_CONTEXT_STRING_SIGNATURE1);
+    /* body_protected */
+    QCBOREncode_AddBytes(&cbor_encode_ctx,
+                         protected_headers);
+    /* sign_protected */
+    QCBOREncode_AddBytes(&cbor_encode_ctx, NULL_USEFUL_BUF_C);
+    /* external_aad */
+    QCBOREncode_AddBytes(&cbor_encode_ctx, NULL_USEFUL_BUF_C);
+    /* fake payload */
+    QCBOREncode_AddBytes(&cbor_encode_ctx, NULL_USEFUL_BUF_C);
+    QCBOREncode_CloseArray(&cbor_encode_ctx);
+
+    /* Get the result and convert it to struct q_useful_buf_c representation */
+    qcbor_result = QCBOREncode_Finish(&cbor_encode_ctx, &tbs_first_part);
+    if (qcbor_result)
+    {
+        /* Mainly means that the protected_headers were too big
+         (which should never happen) */
+        status = PAL_ATTEST_ERR_SIGN_STRUCT;
+        goto Done;
+    }
+
+    /* Start the hashing */
+    hash_alg_id = hash_alg_id_from_sig_alg_id(cose_alg_id);
+
+    /* Don't check hash_alg_id for failure. pal_cose_crypto_hash_start()
+     * will handle it properly
+     */
+    status = pal_cose_crypto_hash_start(&hash_ctx, hash_alg_id);
+    if (status)
+        goto Done;
+
+    /* Hash the first part of the TBS. Take all but the last two
+     * bytes. The last two bytes are the fake payload from above. It
+     * is replaced by the real payload which is hashed next. The fake
+     * payload is needed so the array count is right. This is one of
+     * the main things that make it possible to implement with one
+     * buffer for the whole cose sign1.
+     */
+    pal_cose_crypto_hash_update(&hash_ctx, useful_buf_head(tbs_first_part,
+                                              tbs_first_part.len - 2));
+
+    /* Hash the payload */
+    pal_cose_crypto_hash_update(&hash_ctx, payload);
+
+    /* Finish the hash and set up to return it */
+    status = pal_cose_crypto_hash_finish(&hash_ctx,
+                                             buffer_for_hash,
+                                             hash);
+
+Done:
+    return status;
+}
+
+uint32_t pal_import_attest_key(int32_t alg)
+{
+    psa_key_type_t   attest_key_type;
+    size_t           public_key_size;
+    psa_status_t     status = PSA_SUCCESS;
+    psa_key_policy_t policy;
+    psa_ecc_curve_t  psa_curve;
+    psa_key_handle_t public_key_handle;
+
+    /* Mapping of COSE curve type to PSA curve types */
+    psa_curve = attest_map_elliptic_curve_type(P_256);
+    if (psa_curve == USHRT_MAX)
+        return PAL_ATTEST_ERROR;
+
+    /* Setup the key policy for public key */
+    policy = psa_key_policy_init();
+    psa_key_policy_set_usage(&policy, PSA_KEY_USAGE_VERIFY, alg);
+
+    status = psa_allocate_key(&public_key_handle);
+    if (status != PSA_SUCCESS)
+        return status;
+
+    status = psa_set_key_policy(public_key_handle, &policy);
+    if (status != PSA_SUCCESS)
+        return status;
+
+    attest_key_type = PSA_KEY_TYPE_ECC_PUBLIC_KEY(psa_curve);
+
+    /* Register public key to crypto service */
+    public_key_size = attest_key.pubx_key_size + attest_key.puby_key_size;
+
+    status = psa_import_key(public_key_handle,
+                                attest_key_type,
+                                (const uint8_t *)&attest_public_key,
+                                public_key_size + 1);
+
+    return status;
+}
+
+
+uint32_t pal_crypto_pub_key_verify(int32_t cose_algorithm_id,
+                                   struct q_useful_buf_c token_hash,
+                                   struct q_useful_buf_c signature)
+{
+    uint32_t status = PAL_ATTEST_SUCCESS;
+
+    if (!public_key_registered)
+    {
+        status = pal_import_attest_key(cose_algorithm_id);
+        if (status != PAL_ATTEST_SUCCESS)
+            return status;
+
+        public_key_registered = 1;
+    }
+
+/*
+ * Enable the verify function when Trusted Firmare - M Supports
+
+ *  Verify the signature a hash or short message using a public key.
+    status = psa_asymmetric_verify(public_key_handle,
+                                    cose_algorithm_id, token_hash.ptr, token_hash.len,
+                                    signature.ptr, signature.len);
+*/
+    return status;
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_crypto.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_crypto.h
new file mode 100644
index 00000000..2d63ad13
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_crypto.h
@@ -0,0 +1,102 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "pal_common.h"
+#include "pal_attestation_eat.h"
+
+#define ATTEST_PUBLIC_KEY_SLOT            4
+
+typedef struct{
+    uint8_t  *pubx_key;
+    uint32_t  pubx_key_size;
+    uint8_t  *puby_key;
+    uint32_t  puby_key_size;
+} ecc_key_t;
+
+struct ecc_public_key_t {
+    const uint8_t a;
+    uint8_t public_key[]; /* X-coordinate || Y-coordinate */
+};
+
+static const struct ecc_public_key_t attest_public_key = {
+     /* Constant byte */
+     0x04,
+     /* X-coordinate */
+     {0x79, 0xEB, 0xA9, 0x0E, 0x8B, 0xF4, 0x50, 0xA6,
+      0x75, 0x15, 0x76, 0xAD, 0x45, 0x99, 0xB0, 0x7A,
+      0xDF, 0x93, 0x8D, 0xA3, 0xBB, 0x0B, 0xD1, 0x7D,
+      0x00, 0x36, 0xED, 0x49, 0xA2, 0xD0, 0xFC, 0x3F,
+     /* Y-coordinate */
+      0xBF, 0xCD, 0xFA, 0x89, 0x56, 0xB5, 0x68, 0xBF,
+      0xDB, 0x86, 0x73, 0xE6, 0x48, 0xD8, 0xB5, 0x8D,
+      0x92, 0x99, 0x55, 0xB1, 0x4A, 0x26, 0xC3, 0x08,
+      0x0F, 0x34, 0x11, 0x7D, 0x97, 0x1D, 0x68, 0x64},
+};
+
+struct pal_cose_crypto_hash {
+    /* Can't put the actual size here without creating dependecy on
+     * actual hash implementation, so this is a fairly large and
+     * accommodating size.
+     */
+    uint8_t bytes[128];
+};
+
+struct pal_cose_psa_crypto_hash {
+    psa_status_t         status;
+    psa_hash_operation_t operation;
+};
+
+static const uint8_t initial_attestation_public_x_key[] =
+{
+    0x79, 0xEB, 0xA9, 0x0E, 0x8B, 0xF4, 0x50, 0xA6,
+    0x75, 0x15, 0x76, 0xAD, 0x45, 0x99, 0xB0, 0x7A,
+    0xDF, 0x93, 0x8D, 0xA3, 0xBB, 0x0B, 0xD1, 0x7D,
+    0x00, 0x36, 0xED, 0x49, 0xA2, 0xD0, 0xFC, 0x3F
+};
+
+static const uint8_t initial_attestation_public_y_key[] =
+{
+    0xBF, 0xCD, 0xFA, 0x89, 0x56, 0xB5, 0x68, 0xBF,
+    0xDB, 0x86, 0x73, 0xE6, 0x48, 0xD8, 0xB5, 0x8D,
+    0x92, 0x99, 0x55, 0xB1, 0x4A, 0x26, 0xC3, 0x08,
+    0x0F, 0x34, 0x11, 0x7D, 0x97, 0x1D, 0x68, 0x64
+};
+
+/* Initialize the structure with given public key */
+static const ecc_key_t attest_key = {
+        (uint8_t *)initial_attestation_public_x_key,
+        sizeof(initial_attestation_public_x_key),
+        (uint8_t *)initial_attestation_public_y_key,
+        sizeof(initial_attestation_public_y_key)
+};
+
+int32_t pal_cose_crypto_hash_start(struct pal_cose_crypto_hash *hash_ctx, int32_t cose_hash_alg_id);
+void pal_cose_crypto_hash_update(struct pal_cose_crypto_hash *hash_ctx,
+                                 struct q_useful_buf_c data_to_hash);
+int32_t pal_cose_crypto_hash_finish(struct pal_cose_crypto_hash *hash_ctx,
+                                    struct q_useful_buf buffer_to_hold_result,
+                                    struct q_useful_buf_c *hash_result);
+int pal_create_sha256(struct q_useful_buf_c bytes_to_hash, struct q_useful_buf buffer_for_hash,
+                      struct q_useful_buf_c *hash);
+uint32_t pal_compute_hash(int32_t cose_alg_id, struct q_useful_buf buffer_for_hash,
+                          struct q_useful_buf_c *hash, struct q_useful_buf_c protected_headers,
+                          struct q_useful_buf_c payload);
+uint32_t pal_import_attest_key(int32_t alg);
+uint32_t pal_crypto_pub_key_verify(int32_t cose_algorithm_id, struct q_useful_buf_c token_hash,
+                                   struct q_useful_buf_c signature);
+
+
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_eat.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_eat.c
index 262dc5dd..178fdc9c 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_eat.c
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_eat.c
@@ -15,10 +15,56 @@
  * limitations under the License.
 **/
 
-#include "pal_attestation_eat.h"
+#include "pal_attestation_crypto.h"
+
+uint32_t    mandatory_claims = 0;
+uint32_t    mandaroty_sw_components = 0;
+bool_t      sw_component_present = 0;
+
+static int pal_encode_cose_key(struct q_useful_buf_c *cose_key,
+                               struct q_useful_buf buffer_for_cose_key,
+                               struct q_useful_buf_c x_cord, struct q_useful_buf_c y_cord)
+{
+    uint32_t                  return_value;
+    QCBORError                qcbor_result;
+    QCBOREncodeContext        cbor_encode_ctx;
+    int32_t                   cose_curve_id = P_256;
+    struct q_useful_buf_c       encoded_key_id;
+
+    /* Get the public key x and y */
+    /* Encode it into a COSE_Key structure */
+    QCBOREncode_Init(&cbor_encode_ctx, buffer_for_cose_key);
+    QCBOREncode_OpenMap(&cbor_encode_ctx);
+    QCBOREncode_AddInt64ToMapN(&cbor_encode_ctx,
+                               COSE_KEY_COMMON_KTY,
+                               COSE_KEY_TYPE_EC2);
+    QCBOREncode_AddInt64ToMapN(&cbor_encode_ctx,
+                               COSE_KEY_PARAM_CRV,
+                               cose_curve_id);
+    QCBOREncode_AddBytesToMapN(&cbor_encode_ctx,
+                               COSE_KEY_PARAM_X_COORDINATE,
+                               x_cord);
+    QCBOREncode_AddBytesToMapN(&cbor_encode_ctx,
+                               COSE_KEY_PARAM_Y_COORDINATE,
+                               y_cord);
+    QCBOREncode_CloseMap(&cbor_encode_ctx);
+
+    qcbor_result = QCBOREncode_Finish(&cbor_encode_ctx, &encoded_key_id);
+    if (qcbor_result != QCBOR_SUCCESS)
+    {
+        /* Mainly means that the COSE_Key was too big for buffer_for_cose_key */
+        return_value = PAL_ATTEST_ERR_PROTECTED_HEADERS;
+        goto Done;
+    }
+
+    /* Finish up and return */
+    *cose_key = encoded_key_id;
+    return_value = PAL_ATTEST_SUCCESS;
+
+Done:
+    return return_value;
+}
 
-uint32_t  mandatory_claims = 0, mandaroty_sw_components = 0;
-bool_t    sw_component_present = 0;
 
 static int get_items_in_map(QCBORDecodeContext *decode_context,
                             struct items_to_get_t *item_list)
@@ -90,7 +136,7 @@ static int get_item_in_map(QCBORDecodeContext *decode_context,
 }
 
 static int parse_unprotected_headers(QCBORDecodeContext *decode_context,
-                                     struct useful_buf_c *child,
+                                     struct q_useful_buf_c *child,
                                      bool *loop_back)
 {
     struct items_to_get_t   item_list[3];
@@ -120,7 +166,7 @@ static int parse_unprotected_headers(QCBORDecodeContext *decode_context,
     return PAL_ATTEST_SUCCESS;
 }
 
-static int parse_protected_headers(struct useful_buf_c protected_headers,
+static int parse_protected_headers(struct q_useful_buf_c protected_headers,
                                    int32_t *alg_id)
 {
     QCBORDecodeContext  decode_context;
@@ -156,7 +202,7 @@ static int parse_protected_headers(struct useful_buf_c protected_headers,
     @return   - error status
 **/
 static int parse_claims(QCBORDecodeContext *decode_context, QCBORItem item,
-                                   struct useful_buf_c completed_challenge)
+                                   struct q_useful_buf_c completed_challenge)
 {
     int i, count = 0;
     int status = PAL_ATTEST_SUCCESS;
@@ -281,16 +327,42 @@ static int parse_claims(QCBORDecodeContext *decode_context, QCBORItem item,
 int32_t pal_initial_attest_verify_token(uint8_t *challenge, uint32_t challenge_size,
                                         uint8_t *token, uint32_t token_size)
 {
-    int                 status = PAL_ATTEST_SUCCESS;
+    int32_t             status = PAL_ATTEST_SUCCESS;
     bool                short_circuit;
     int32_t             cose_algorithm_id;
     QCBORItem           item;
     QCBORDecodeContext  decode_context;
-    struct useful_buf_c completed_challenge;
-    struct useful_buf_c completed_token;
-    struct useful_buf_c payload;
-    struct useful_buf_c protected_headers;
-    struct useful_buf_c kid;
+    struct q_useful_buf_c completed_challenge;
+    struct q_useful_buf_c completed_token;
+    struct q_useful_buf_c payload;
+    struct q_useful_buf_c signature;
+    struct q_useful_buf_c protected_headers;
+    struct q_useful_buf_c kid;
+    struct q_useful_buf_c x_cord;
+    struct q_useful_buf_c y_cord;
+    struct q_useful_buf_c cose_key_to_hash;
+    struct q_useful_buf_c key_hash;
+    struct q_useful_buf_c token_hash;
+    USEFUL_BUF_MAKE_STACK_UB(buf_to_hold_x_coord, T_COSE_CRYPTO_EC_P256_COORD_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buf_to_hold_y_coord, T_COSE_CRYPTO_EC_P256_COORD_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_kid, T_COSE_CRYPTO_SHA256_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_cose_key, MAX_ENCODED_COSE_KEY_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_encoded_key, MAX_ENCODED_COSE_KEY_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_token_hash, T_COSE_CRYPTO_SHA256_SIZE);
+
+    kid.ptr = buffer_for_encoded_key.ptr;
+
+    memcpy(buf_to_hold_x_coord.ptr, (const void *)attest_key.pubx_key, attest_key.pubx_key_size);
+    memcpy(buf_to_hold_y_coord.ptr, (const void *)attest_key.puby_key, attest_key.puby_key_size);
+
+    /* Update size */
+    buf_to_hold_x_coord.len = attest_key.pubx_key_size;
+    buf_to_hold_y_coord.len = attest_key.puby_key_size;
+
+    x_cord.ptr = buf_to_hold_x_coord.ptr;
+    x_cord.len = buf_to_hold_x_coord.len;
+    y_cord.ptr = buf_to_hold_y_coord.ptr;
+    y_cord.len = buf_to_hold_y_coord.len;
 
     /* Construct the token buffer for validation */
     completed_token.ptr = token;
@@ -345,6 +417,27 @@ int32_t pal_initial_attest_verify_token(uint8_t *challenge, uint32_t challenge_s
     if (status != PAL_ATTEST_SUCCESS)
         return status;
 
+    /* Encode the given public key */
+    status = pal_encode_cose_key(&cose_key_to_hash, buffer_for_cose_key, x_cord, y_cord);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
+    /* Create hash of the given public key */
+    status = pal_create_sha256(cose_key_to_hash, buffer_for_kid, &key_hash);
+    if (status != PSA_SUCCESS)
+        return status;
+
+    /* Compare the hash of the public key in token and hash of the given public key */
+    if (kid.len != key_hash.len)
+    {
+        return PAL_ATTEST_HASH_LENGTH_MISMATCH;
+    }
+
+    if (memcmp(kid.ptr, key_hash.ptr, kid.len) != 0)
+    {
+        return PAL_ATTEST_HASH_MISMATCH;
+    }
+
     /* Get the payload */
     QCBORDecode_GetNext(&decode_context, &item);
     if (item.uDataType != QCBOR_TYPE_BYTE_STRING)
@@ -357,6 +450,19 @@ int32_t pal_initial_attest_verify_token(uint8_t *challenge, uint32_t challenge_s
     if (item.uDataType != QCBOR_TYPE_BYTE_STRING)
         return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
 
+    signature = item.val.string;
+
+    /* Compute the hash from the token */
+    status = pal_compute_hash(cose_algorithm_id, buffer_for_token_hash, &token_hash,
+                              protected_headers, payload);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
+    /* Verify the signature */
+    status = pal_crypto_pub_key_verify(cose_algorithm_id, token_hash, signature);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
     /* Initialize the Decoder and validate the payload format */
     QCBORDecode_Init(&decode_context, payload, QCBOR_DECODE_MODE_NORMAL);
     status = QCBORDecode_GetNext(&decode_context, &item);
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_eat.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_eat.h
index 9f435fb3..8a0c5455 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_eat.h
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_eat.h
@@ -17,16 +17,70 @@
 
 #include "qcbor.h"
 #include "pal_common.h"
+#include "psa/crypto.h"
 
 #define PAL_ATTEST_MIN_ERROR              30
 
+/* NIST P-256 also known as secp256r1 */
+#define P_256                             1
+
 #define COSE_HEADER_PARAM_ALG             1
 #define COSE_HEADER_PARAM_KID             4
 
-#define MANDATORY_CLAIM_WITH_SW_COMP      862
-#define MANDATORY_CLAIM_NO_SW_COMP        926
-#define MANDATORY_SW_COMP                 36
-#define CBOR_ARM_TOTAL_CLAIM_INSTANCE     10
+#define COSE_KEY_COMMON_KTY               1
+#define COSE_KEY_TYPE_EC2                 2
+#define COSE_KEY_PARAM_CRV               -1
+#define COSE_KEY_PARAM_X_COORDINATE      -2
+#define COSE_KEY_PARAM_Y_COORDINATE      -3
+#define COSE_ALGORITHM_ES256             -7
+#define COSE_ALG_SHA256_PROPRIETARY      -72000
+
+/**
+ * The size of X and Y coordinate in 2 parameter style EC public
+ * key. Format is as defined in [COSE (RFC 8152)]
+ * (https://tools.ietf.org/html/rfc8152) and [SEC 1: Elliptic Curve
+ * Cryptography](http://www.secg.org/sec1-v2.pdf).
+ *
+ * This size is well-known and documented in public standards.
+ */
+#define T_COSE_CRYPTO_EC_P256_COORD_SIZE  32
+#define T_COSE_CRYPTO_SHA256_SIZE         32
+
+#define MAX_ENCODED_COSE_KEY_SIZE \
+    1 + /* 1 byte to encode map */ \
+    2 + /* 2 bytes to encode key type */ \
+    2 + /* 2 bytes to encode curve */ \
+    2 * /* the X and Y coordinates at 32 bytes each */ \
+        (T_COSE_CRYPTO_EC_P256_COORD_SIZE + 1 + 2)
+#define USEFUL_BUF_MAKE_STACK_UB UsefulBuf_MAKE_STACK_UB
+
+#define COSE_SIG_CONTEXT_STRING_SIGNATURE1 "Signature1"
+
+/* Private value. Intentionally not documented for Doxygen.
+ * This is the size allocated for the encoded protected headers.  It
+ * needs to be big enough for make_protected_header() to succeed. It
+ * currently sized for one header with an algorithm ID up to 32 bits
+ * long -- one byte for the wrapping map, one byte for the label, 5
+ * bytes for the ID. If this is made accidentially too small, QCBOR will
+ * only return an error, and not overrun any buffers.
+ *
+ * 9 extra bytes are added, rounding it up to 16 total, in case some
+ * other protected header is to be added.
+ */
+#define T_COSE_SIGN1_MAX_PROT_HEADER (1+1+5+9)
+
+/**
+ * This is the size of the first part of the CBOR encoded TBS
+ * bytes. It is around 20 bytes. See create_tbs_hash().
+ */
+#define T_COSE_SIZE_OF_TBS \
+    1 + /* For opening the array */ \
+    sizeof(COSE_SIG_CONTEXT_STRING_SIGNATURE1) + /* "Signature1" */ \
+    2 + /* Overhead for encoding string */ \
+    T_COSE_SIGN1_MAX_PROT_HEADER + /* entire protected headers */ \
+    3 * ( /* 3 NULL bstrs for fields not used */ \
+        1 /* size of a NULL bstr */  \
+    )
 
 /*
  CBOR Label for proprietary header indicating short-circuit
@@ -47,6 +101,8 @@
 #define EAT_CBOR_ARM_LABEL_UEID                 (EAT_CBOR_ARM_RANGE_BASE - 9)
 #define EAT_CBOR_ARM_LABEL_ORIGINATION          (EAT_CBOR_ARM_RANGE_BASE - 10)
 
+#define CBOR_ARM_TOTAL_CLAIM_INSTANCE           10
+
 #define EAT_CBOR_SW_COMPONENT_TYPE              (1u)
 #define EAT_CBOR_SW_COMPONENT_MEASUREMENT       (2u)
 #define EAT_CBOR_SW_COMPONENT_EPOCH             (3u)
@@ -54,6 +110,40 @@
 #define EAT_CBOR_SW_COMPONENT_SIGNER_ID         (5u)
 #define EAT_CBOR_SW_COMPONENT_MEASUREMENT_DESC  (6u)
 
+#define MANDATORY_CLAIM_WITH_SW_COMP           (1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_NONCE)              |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_UEID)               |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_IMPLEMENTATION_ID)  |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_CLIENT_ID)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_SECURITY_LIFECYCLE) |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_BOOT_SEED)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_SW_COMPONENTS))
+
+#define MANDATORY_CLAIM_NO_SW_COMP             (1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_NONCE)              |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_UEID)               |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_IMPLEMENTATION_ID)  |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_CLIENT_ID)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_SECURITY_LIFECYCLE) |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_BOOT_SEED)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_NO_SW_COMPONENTS))
+
+#define MANDATORY_SW_COMP                      (1 << EAT_CBOR_SW_COMPONENT_MEASUREMENT      |     \
+                                                1 << EAT_CBOR_SW_COMPONENT_SIGNER_ID)
+
+#define NULL_USEFUL_BUF_C  NULLUsefulBufC
 
 enum attestation_error_code {
     PAL_ATTEST_SUCCESS = 0,
@@ -61,6 +151,13 @@ enum attestation_error_code {
     PAL_ATTEST_TOKEN_CHALLENGE_MISMATCH,
     PAL_ATTEST_TOKEN_NOT_SUPPORTED,
     PAL_ATTEST_TOKEN_NOT_ALL_MANDATORY_CLAIMS,
+    PAL_ATTEST_HASH_LENGTH_MISMATCH,
+    PAL_ATTEST_HASH_MISMATCH,
+    PAL_ATTEST_HASH_FAIL,
+    PAL_ATTEST_HASH_UNSUPPORTED,
+    PAL_ATTEST_HASH_BUFFER_SIZE,
+    PAL_ATTEST_ERR_PROTECTED_HEADERS,
+    PAL_ATTEST_ERR_SIGN_STRUCT,
     PAL_ATTEST_ERROR,
 };
 
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_intf.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_intf.h
index ef132b5b..12f6ee94 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_intf.h
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/nspe/initial_attestation/pal_attestation_intf.h
@@ -18,7 +18,7 @@
 #ifndef _PAL_INITIAL_ATTESTATION_H_
 #define _PAL_INITIAL_ATTESTATION_H_
 
-#include "pal_attestation_eat.h"
+#include "pal_attestation_crypto.h"
 
 enum attestation_function_code {
     PAL_INITIAL_ATTEST_GET_TOKEN        = 0x1,
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/reference_logs/attestation.txt b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/reference_logs/attestation.txt
new file mode 100755
index 00000000..1e347a30
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/reference_logs/attestation.txt
@@ -0,0 +1,36 @@
+***** PSA Architecture Test Suite - Version 0.9 *****
+
+Running.. Attestation Suite
+******************************************
+
+TEST: 801 | DESCRIPTION: Testing initial attestation APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_initial_attestation_get_token with Challenge 32
+[Check 2] Test psa_initial_attestation_get_token with Challenge 48
+[Check 3] Test psa_initial_attestation_get_token with Challenge 64
+[Check 4] Test psa_initial_attestation_get_token with zero challenge size
+[Check 5] Test psa_initial_attestation_get_token with small challenge size
+[Check 6] Test psa_initial_attestation_get_token with invalid challenge size
+[Check 7] Test psa_initial_attestation_get_token with large challenge size
+[Check 8] Test psa_initial_attestation_get_token with zero as token size
+[Check 9] Test psa_initial_attestation_get_token with small token size
+[Check 10] Test psa_initial_attestation_get_token_size with Challenge 32
+[Check 11] Test psa_initial_attestation_get_token_size with Challenge 48
+[Check 12] Test psa_initial_attestation_get_token_size with Challenge 64
+[Check 13] Test psa_initial_attestation_get_token_size with zero challenge size
+[Check 14] Test psa_initial_attestation_get_token_size with small challenge size
+[Check 15] Test psa_initial_attestation_get_token_size with invalid challenge size
+[Check 16] Test psa_initial_attestation_get_token_size with large challenge size
+TEST RESULT: PASSED
+
+******************************************
+
+************ Attestation Suite Report **********
+TOTAL TESTS     : 1
+TOTAL PASSED    : 1
+TOTAL SIM ERROR : 0
+TOTAL FAILED    : 0
+TOTAL SKIPPED   : 0
+******************************************
+
+Entering standby..
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/reference_logs/crypto.txt b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/reference_logs/crypto.txt
new file mode 100644
index 00000000..a61bd671
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/reference_logs/crypto.txt
@@ -0,0 +1,766 @@
+***** PSA Architecture Test Suite - Version 0.9 *****
+
+Running.. Crypto Suite
+******************************************
+
+TEST: 201 | DESCRIPTION: Testing psa_crypto_init API: Basic
+[Info] Executing tests from non-secure
+[Check 1] Test calling crypto functions before psa_crypto_init
+[Check 2] Test psa_crypto_init
+[Check 3] Test multiple psa_crypto_init
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 202 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_import_key 16 Byte AES
+[Check 2] Test psa_import_key 24 Byte AES
+[Check 3] Test psa_import_key 32 Byte AES
+[Check 4] Test psa_import_key 2048 RSA public key
+[Check 5] Test psa_import_key with RSA 2048 keypair
+[Check 6] Test psa_import_key with DES 64 bit key
+[Check 7] Test psa_import_key with Triple DES 2-Key
+[Check 8] Test psa_import_key with Triple DES 3-Key
+[Check 9] Test psa_import_key with EC Public key
+[Check 10] Test psa_import_key with EC keypair
+[Check 11] Test psa_import_key with key data greater than the algorithm size
+[Check 12] Test psa_import_key with incorrect key data size
+[Check 13] Test psa_import_key with incorrect key type
+[Check 14] Test psa_import_key with already occupied key slot
+[Check 15] Test psa_import_key with zero as key handle
+[Check 16] Test psa_import_key with destroyed handle
+[Check 17] Test psa_import_key with unallocated key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 203 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_export_key 16 Byte AES
+[Check 2] Test psa_export_key 24 Byte AES
+[Check 3] Test psa_export_key 32 Byte AES
+[Check 4] Test psa_export_key 2048 RSA public key
+[Check 5] Test psa_export_key with RSA 2048 keypair
+[Check 6] Test psa_export_key with DES 64 bit key
+[Check 7] Test psa_export_key with Triple DES 2-Key
+[Check 8] Test psa_export_key with Triple DES 3-Key
+[Check 9] Test psa_export_key with EC Public key
+[Check 10] Test psa_export_key with EC keypair
+[Check 11] Test psa_export_key with key policy verify
+[Check 12] Test psa_export_key with less buffer size
+[Check 13] Test psa_export_key with unallocated key handle
+[Check 14] Test psa_export_key with empty key handle
+[Check 15] Test psa_export_key with zero as key handle
+[Check 16] Test psa_export_key with destroyed key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 204 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_export_public_key 16 Byte AES
+[Check 2] Test psa_export_public_key 24 Byte AES
+[Check 3] Test psa_export_public_key 32 Byte AES
+[Check 4] Test psa_export_public_key 2048 RSA public key
+[Check 5] Test psa_export_public_key with RSA 2048 keypair
+[Check 6] Test psa_export_public_key with DES 64 bit key
+[Check 7] Test psa_export_public_key with Triple DES 2-Key
+[Check 8] Test psa_export_public_key with Triple DES 3-Key
+[Check 9] Test psa_export_public_key with EC Public key
+[Check 10] Test psa_export_public_key with EC keypair
+[Check 11] Test psa_export_public_key with less buffer size
+[Check 12] Test psa_export_key with unallocated key handle
+[Check 13] Test psa_export_key with empty key handle
+[Check 14] Test psa_export_key with zero as key handle
+[Check 15] Test psa_export_key with destroyed key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 205 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_destroy_key 16 Byte AES
+[Check 2] Test psa_destroy_key 24 Byte AES
+[Check 3] Test psa_destroy_key 32 Byte AES
+[Check 4] Test psa_destroy_key 2048 RSA public key
+[Check 5] Test psa_destroy_key with RSA 2048 keypair
+[Check 6] Test psa_destroy_key with DES 64 bit key
+[Check 7] Test psa_destroy_key with Triple DES 2-Key
+[Check 8] Test psa_destroy_key with Triple DES 3-Key
+[Check 9] Test psa_destroy_key with EC Public key
+[Check 10] Test psa_destroy_key with EC keypair
+[Check 11] Test psa_destroy_key with unallocated key handle
+[Check 12] Test psa_destroy_key with zero as key handle
+[Check 13] Test psa_destroy_key with empty key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 206 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_get_key_information 16 Byte AES
+[Check 2] Test psa_get_key_information 24 Byte AES
+[Check 3] Test psa_get_key_information 32 Byte AES
+[Check 4] Test psa_get_key_information 2048 RSA public key
+[Check 5] Test psa_get_key_information with RSA 2048 keypair
+[Check 6] Test psa_get_key_information with DES 64 bit key
+[Check 7] Test psa_get_key_information with Triple DES 2-Key
+[Check 8] Test psa_get_key_information with Triple DES 3-Key
+[Check 9] Test psa_get_key_information with EC Public key
+[Check 10] Test psa_get_key_information with EC keypair
+[Check 11] Test psa_get_key_information with unallocated key handle
+[Check 12] Test psa_get_key_information with zero as key handle
+[Check 13] Test psa_get_key_information with empty key handle
+[Check 14] Test psa_get_key_information with destroyed key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 207 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_set_key_policy 16 Byte AES
+[Check 2] Test psa_set_key_policy 24 Byte AES
+[Check 3] Test psa_set_key_policy 32 Byte AES
+[Check 4] Test psa_set_key_policy 2048 RSA public key
+[Check 5] Test psa_set_key_policy with RSA 2048 keypair
+[Check 6] Test psa_set_key_policy with DES 64 bit key
+[Check 7] Test psa_set_key_policy with Triple DES 2-Key
+[Check 8] Test psa_set_key_policy with Triple DES 3-Key
+[Check 9] Test psa_set_key_policy with EC Public key
+[Check 10] Test psa_set_key_policy with EC keypair
+[Check 11] Test psa_set_key_policy with invalid usage
+[Check 12] Test psa_set_key_policy with unallocated key handle
+[Check 13] Test psa_set_key_policy with zero as key handle
+[Check 14] Test psa_set_key_policy with already occupied handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 208 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_get_key_policy 16 Byte AES
+[Check 2] Test psa_get_key_policy 24 Byte AES
+[Check 3] Test psa_get_key_policy 32 Byte AES
+[Check 4] Test psa_get_key_policy 2048 RSA public key
+[Check 5] Test psa_get_key_policy with RSA 2048 keypair
+[Check 6] Test psa_get_key_policy with DES 64 bit key
+[Check 7] Test psa_get_key_policy with Triple DES 2-Key
+[Check 8] Test psa_get_key_policy with Triple DES 3-Key
+[Check 9] Test psa_get_key_policy with EC Public key
+[Check 10] Test psa_get_key_policy with EC keypair
+[Check 11] Test psa_get_key_policy negative cases
+[Check 12] Test psa_get_key_policy with unallocated key handle
+[Check 13] Test psa_get_key_policy with zero as key handle
+[Check 14] Test psa_get_key_policy with empty key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 209 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_allocate_key 16 Byte AES
+[Check 2] Test psa_allocate_key 24 Byte AES
+[Check 3] Test psa_allocate_key 32 Byte AES
+[Check 4] Test psa_allocate_key 2048 RSA public key
+[Check 5] Test psa_allocate_key with RSA 2048 keypair
+[Check 6] Test psa_allocate_key with DES 64 bit key
+[Check 7] Test psa_allocate_key with Triple DES 2-Key
+[Check 8] Test psa_allocate_key with Triple DES 3-Key
+[Check 9] Test psa_allocate_key with EC Public key
+[Check 10] Test psa_allocate_key with EC keypair
+[Check 11] Testing the insufficient memory
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 210 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_get_key_lifetime 16 Byte AES
+[Check 2] Test psa_get_key_lifetime 2048 RSA public key
+[Check 3] Test psa_get_key_lifetime with Triple DES 2-Key
+[Check 4] Test psa_get_key_lifetime with EC Public key
+[Check 5] Test psa_get_key_lifetime with EC keypair
+[Check 6] Test psa_get_key_lifetime with invalid key handle
+[Check 7] Test psa_get_key_lifetime with zero as key handle
+[Check 8] Test psa_get_key_lifetime with empty key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 211 | DESCRIPTION: Testing crypto hash functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_hash_setup with MD2 algorithm
+[Check 2] Test psa_hash_setup with MD4 algorithm
+[Check 3] Test psa_hash_setup with MD5 algorithm
+[Check 4] Test psa_hash_setup with RIPEMD160 algorithm
+[Check 5] Test psa_hash_setup with SHA1 algorithm
+[Check 6] Test psa_hash_setup with SHA224 algorithm
+[Check 7] Test psa_hash_setup with SHA256 algorithm
+[Check 8] Test psa_hash_setup with SHA384 algorithm
+[Check 9] Test psa_hash_setup with SHA512 algorithm
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 212 | DESCRIPTION: Testing crypto hash functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_hash_update with MD2 algorithm
+[Check 2] Test psa_hash_update with MD4 algorithm
+[Check 3] Test psa_hash_update with MD5 algorithm
+[Check 4] Test psa_hash_update with RIPEMD160 algorithm
+[Check 5] Test psa_hash_update with SHA1 algorithm
+[Check 6] Test psa_hash_update with SHA224 algorithm
+[Check 7] Test psa_hash_update with SHA256 algorithm
+[Check 8] Test psa_hash_update with SHA384 algorithm
+[Check 9] Test psa_hash_update with SHA512 algorithm
+[Check 10] Test psa_hash_update without hash setup
+[Check 11] Test psa_hash_update with completed opertaion handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 213 | DESCRIPTION: Testing crypto hash functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_hash_verify with MD2 algorithm
+[Check 2] Test psa_hash_verify with MD4 algorithm
+[Check 3] Test psa_hash_verify with MD5 algorithm
+[Check 4] Test psa_hash_verify with RIPEMD160 algorithm
+[Check 5] Test psa_hash_verify with SHA1 algorithm
+[Check 6] Test psa_hash_verify with SHA224 algorithm
+[Check 7] Test psa_hash_verify with SHA256 algorithm
+[Check 8] Test psa_hash_verify with SHA384 algorithm
+[Check 9] Test psa_hash_verify with SHA512 algorithm
+[Check 10] Test psa_hash_verify with incorrect expected hash
+[Check 11] Test psa_hash_verify with incorrect hash length
+[Check 12] test psa_hash_verify with inactive & invalid operation handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 214 | DESCRIPTION: Testing crypto hash functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_hash_finish with MD2 algorithm
+[Check 2] Test psa_hash_finish with MD4 algorithm
+[Check 3] Test psa_hash_finish with MD5 algorithm
+[Check 4] Test psa_hash_finish with RIPEMD160 algorithm
+[Check 5] Test psa_hash_finish with SHA1 algorithm
+[Check 6] Test psa_hash_finish with SHA224 algorithm
+[Check 7] Test psa_hash_finish with SHA256 algorithm
+[Check 8] Test psa_hash_finish with SHA384 algorithm
+[Check 9] Test psa_hash_finish with SHA512 algorithm
+[Check 10] test psa_hash_finish with inactive operation handle
+[Check 11] test psa_hash_finish with invalid hash buffer size
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 215 | DESCRIPTION: Testing crypto hash functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_hash_abort with MD2 algorithm
+[Check 2] Test psa_hash_abort with MD4 algorithm
+[Check 3] Test psa_hash_abort with MD5 algorithm
+[Check 4] Test psa_hash_abort with RIPEMD160 algorithm
+[Check 5] Test psa_hash_abort with SHA1 algorithm
+[Check 6] Test psa_hash_abort with SHA224 algorithm
+[Check 7] Test psa_hash_abort with SHA256 algorithm
+[Check 8] Test psa_hash_abort with SHA384 algorithm
+[Check 9] Test psa_hash_abort with SHA512 algorithm
+[Check 10] Test psa_hash_finish after calling psa_hash_abort
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 216 | DESCRIPTION: Testing crypto generator functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_generate_key 16 Byte AES
+[Check 2] Test psa_generate_key 24 Byte AES
+[Check 3] Test psa_generate_key 32 Byte AES
+[Check 4] Test psa_generate_key with DES 64 bit key
+[Check 5] Test psa_generate_key with Triple DES 2-Key
+[Check 6] Test psa_generate_key with Triple DES 3-Key
+[Check 7] Test psa_generate_key with Null extra and Non-Zero extra size
+[Check 8] Test psa_generate_key with ECC KeyPair
+[Check 9] Test psa_generate_key with RSA 2048 Public key
+[Check 10] Test psa_generate_key with unallocated key handle
+[Check 11] Test psa_generate_key with zero as key handle
+[Check 12] Test psa_generate_key with pre-occupied key handle
+[Check 13] Test psa_generate_key with destroyed key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 217 | DESCRIPTION: Testing crypto generator functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_generate_random to get 0 Byte data
+[Check 2] Test psa_generate_random to get 16 Byte data
+[Check 3] Test psa_generate_random to get 24 Byte data
+[Check 4] Test psa_generate_random to get 32 Byte data
+[Check 5] Test psa_generate_random to get 64 Byte data
+[Check 6] Test psa_generate_random to get 128 Byte data
+[Check 7] Test psa_generate_random to get 256 Byte data
+[Check 8] Test psa_generate_random to get 512 Byte data
+[Check 9] Test psa_generate_random to get 1000 Byte data
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 218 | DESCRIPTION: Testing crypto generator functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_generator_read to get 16 Byte data with SHA-256
+[Check 2] Test psa_generator_read to get 32 Byte data with SHA-512
+[Check 3] Test psa_generator_read to get 8 Byte data with SHA-1
+[Check 4] Test psa_generator_read to request maximum capacity
+[Check 5] Test psa_generator_read to request maximum capacity +1
+[Check 6] Test psa_generator_read without setup
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 219 | DESCRIPTION: Testing crypto generator functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_generator_get_capacity to get 16 Byte data with SHA-256
+[Check 2] Test psa_generator_get_capacity to get 32 Byte data with SHA-512
+[Check 3] Test psa_get_generator_capacity without setup
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 220 | DESCRIPTION: Testing crypto generator functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_generator_import_key for 16 Byte AES Key
+[Check 2] Test psa_generator_import_key for Triple DES 3-Key
+[Check 3] Test psa_generator_import_key output greater than capacity
+[Check 4] Test psa_generator_import_key for RSA Public Key - Invalid type
+[Check 5] Test psa_generator_import_key for invalid byte for generation
+[Check 6] Test psa_generator_import_key with invalid handle
+[Check 7] Test psa_generator_import_key with zero handle
+[Check 8] Test psa_generator_import_key with pre-occupied key slot
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 221 | DESCRIPTION: Testing crypto generator functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_generator_abort on empty generator
+[Check 2] Test psa_generator_abort
+[Check 3] Multiple psa_generator_abort test
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 222 | DESCRIPTION: Testing crypto generator functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_key_derivation to get 16 Byte data with SHA-256
+[Check 2] Test psa_key_derivation to get 32 Byte data with SHA-512
+[Check 3] Test psa_key_derivation to get 32 Byte data with MD-5
+[Check 4] Test psa_key_derivation to get 16 Byte data with salt and label
+[Check 5] Test psa_key_derivation with too large capacity for alg and key
+[Check 6] Test psa_key_derivation with unsupported key type
+[Check 7] Test psa_key_derivation with incorrect usage
+[Check 8] Test psa_key_derivation with unsupported key derivation algorithm
+[Check 9] Test psa_key_derivation with invalid algorithm
+[Check 10] Test psa_key_derivation with Invalid key handle
+[Check 11] Test psa_key_derivation with Zero as key handle
+[Check 12] Test psa_key_derivation with Empty key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 223 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_key_policy_get_usage with usage as encrypt
+[Check 2] Test psa_key_policy_get_usage with usage as decrypt
+[Check 3] Test psa_key_policy_get_usage with usage as derive
+[Check 4] Test psa_key_policy_get_usage with usage as export
+[Check 5] Test psa_key_policy_get_usage with usage as sign
+[Check 6] Test psa_key_policy_get_usage with usage as verify
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 224 | DESCRIPTION: Testing crypto AEAD APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_aead_encrypt - CCM - 16B AES - 13B nounce & 8B addi data
+[Check 2] Test psa_aead_encrypt - AES-CCM
+[Check 3] Test psa_aead_encrypt - AES-CCM 24 bytes Tag length = 4
+[Check 4] Test psa_aead_encrypt - GCM - 16B AES - 12B Nounce & 12B addi data
+[Check 5] Test psa_aead_encrypt - DES Key
+[Check 6] Test psa_aead_encrypt - Unsupported Algorithm
+[Check 7] Test psa_aead_encrypt - Invalid key usage
+[Check 8] Test psa_aead_encrypt - Small output buffer size
+[Check 9] Test psa_aead_encrypt - Invalid key handle
+[Check 10] Test psa_aead_encrypt - Zero as key handle
+[Check 11] Test psa_aead_encrypt - Empty key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 225 | DESCRIPTION: Testing crypto AEAD APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_aead_decrypt - CCM - 16B AES - 13B nounce & 8B addi data
+[Check 2] Test psa_aead_encrypt - AES-CCM
+[Check 3] Test psa_aead_encrypt - AES-CCM 24 bytes Tag length = 4
+[Check 4] Test psa_aead_decrypt - GCM - 16B AES - 12B Nounce & 12B addi data
+[Check 5] Test psa_aead_decrypt - DES Key
+[Check 6] Test psa_aead_decrypt - Unsupported Algorithm
+[Check 7] Test psa_aead_decrypt - Invalid key usage
+[Check 8] Test psa_aead_decrypt - Small output buffer size
+[Check 9] Test psa_aead_decrypt - Invalid cipher text
+[Check 10] Test psa_aead_decrypt - Invalid cipher text size
+[Check 11] Test psa_aead_decrypt - Invalid tag length 0
+[Check 12] Test psa_aead_decrypt - Invalid key handle
+[Check 13] Test psa_aead_decrypt - Zero as key handle
+[Check 14] Test psa_aead_decrypt - Empty key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 226 | DESCRIPTION: Testing crypto MAC APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_mac_sign_setup 64 Byte HMAC
+[Check 2] Test psa_mac_sign_setup 16 Byte AES - CMAC
+[Check 3] Test psa_mac_sign_setup 16 Byte AES - GMAC
+[Check 4] Test psa_mac_sign_setup incompactible HMAC for CMAC
+[Check 5] Test psa_mac_sign_setup invalid usage
+[Check 6] Test psa_mac_sign_setup invalid key type
+[Check 7] Test psa_mac_sign_setup truncated MAC too large
+[Check 8] Test psa_mac_sign_setup truncated MAC too small
+[Check 9] Test psa_mac_sign_setup bad algorithm (unknown MAC algorithm)
+[Check 10] Test psa_mac_sign_setup bad algorithm (not a MAC algorithm)
+[Check 11] Test psa_mac_sign_setup with invalid key handle
+[Check 12] Test psa_mac_sign_setup with zero key handle
+[Check 13] Test psa_mac_sign_setup with empty key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 227 | DESCRIPTION: Testing crypto MAC APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_mac_update 64 Byte HMAC SHA256
+[Check 2] Test psa_mac_update 16 Byte AES - CMAC
+[Check 3] Test psa_mac_update 32 Byte HMAC SHA512
+[Check 4] Test psa_mac_update without mac setup
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 228 | DESCRIPTION: Testing crypto MAC APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_mac_sign_finish HMAC SHA 224
+[Check 2] Test psa_mac_sign_finish HMAC SHA 256
+[Check 3] Test psa_mac_sign_finish HMAC SHA 512
+[Check 4] Test psa_mac_sign_finish HMAC SHA 224 (truncated to 8 Byte)
+[Check 5] Test psa_mac_sign_finish CMAC AES 128
+[Check 6] Test psa_mac_sign_finish small size buffer
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 229 | DESCRIPTION: Testing crypto MAC APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_mac_verify_setup 64 Byte HMAC
+[Check 2] Test psa_mac_verify_setup 16 Byte AES - CMAC
+[Check 3] Test psa_mac_verify_setup 16 Byte AES - GMAC
+[Check 4] Test psa_mac_verify_setup incompactible HMAC for CMAC
+[Check 5] Test psa_mac_verify_setup invalid usage
+[Check 6] Test psa_mac_verify_setup invalid key type
+[Check 7] Test psa_mac_verify_setup truncated MAC too large
+[Check 8] Test psa_mac_verify_setup truncated MAC too small
+[Check 9] Test psa_mac_verify_setup bad algorithm (unknown MAC algorithm)
+[Check 10] Test psa_mac_verify_setup bad algorithm (not a MAC algorithm)
+[Check 11] Test psa_mac_verify_setup invalid key handle
+[Check 12] Test psa_mac_verify_setup zero as key handle
+[Check 13] Test psa_mac_verify_setup empty key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 230 | DESCRIPTION: Testing crypto MAC APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_mac_verify_finish HMAC SHA 224
+[Check 2] Test psa_mac_verify_finish HMAC SHA 256
+[Check 3] Test psa_mac_verify_finish HMAC SHA 512
+[Check 4] Test psa_mac_verify_finish HMAC SHA 224 (truncated to 8 Byte)
+[Check 5] Test psa_mac_verify_finish CMAC AES 128
+[Check 6] Test psa_mac_verify_finish small size buffer
+[Check 7] Test psa_mac_verify_finish incorrect expected MAC
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 231 | DESCRIPTION: Testing crypto MAC APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_mac_abort HMAC SHA 224
+[Check 2] Test psa_mac_abort HMAC SHA 256
+[Check 3] Test psa_mac_abort HMAC SHA 512
+[Check 4] Test psa_mac_abort HMAC SHA 224 (truncated to 8 Byte)
+[Check 5] Test psa_mac_abort CMAC AES 128
+[Check 6] Test psa_mac_sign_finish after calling psa_mac_abort
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 232 | DESCRIPTION: Testing crypto symmetric cipher APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_cipher_encrypt_setup 16 Byte AES
+[Check 2] Test psa_cipher_encrypt_setup 24 Byte AES
+[Check 3] Test psa_cipher_encrypt_setup 32 Byte AES
+[Check 4] Test psa_cipher_encrypt_setup DES 64 bit key
+[Check 5] Test psa_cipher_encrypt_setup Triple DES 2-Key
+[Check 6] Test psa_cipher_encrypt_setup Triple DES 3-Key
+[Check 7] Test psa_cipher_encrypt_setup 16 Byte raw data
+[Check 8] Test psa_cipher_encrypt_setup - not a cipher algorithm
+[Check 9] Test psa_cipher_encrypt_setup - unknown cipher algorithm
+[Check 10] Test psa_cipher_encrypt_setup - incompatible key ARC4
+[Check 11] Test psa_cipher_encrypt_setup - incorrect usage
+[Check 12] Test psa_cipher_encrypt_setup - RSA public key
+[Check 13] Test psa_cipher_encrypt_setup - RSA keypair
+[Check 14] Test psa_cipher_encrypt_setup - EC Public key
+[Check 15] Test psa_cipher_encrypt_setup - EC keypair
+[Check 16] Test psa_cipher_encrypt_setup - Invalid key handle
+[Check 17] Test psa_cipher_encrypt_setup - Zero as key handle
+[Check 18] Test psa_cipher_encrypt_setup - Empty key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 233 | DESCRIPTION: Testing crypto symmetric cipher APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_cipher_decrypt_setup 16 Byte AES
+[Check 2] Test psa_cipher_decrypt_setup 24 Byte AES
+[Check 3] Test psa_cipher_decrypt_setup 32 Byte AES
+[Check 4] Test psa_cipher_decrypt_setup DES 64 bit key
+[Check 5] Test psa_cipher_decrypt_setup Triple DES 2-Key
+[Check 6] Test psa_cipher_decrypt_setup Triple DES 3-Key
+[Check 7] Test psa_cipher_decrypt_setup 16 Byte raw data
+[Check 8] Test psa_cipher_decrypt_setup - not a cipher algorithm
+[Check 9] Test psa_cipher_decrypt_setup - unknown cipher algorithm
+[Check 10] Test psa_cipher_decrypt_setup - incompatible key ARC4
+[Check 11] Test psa_cipher_decrypt_setup - incorrect usage
+[Check 12] Test psa_cipher_decrypt_setup - RSA public key
+[Check 13] Test psa_cipher_decrypt_setup - RSA keypair
+[Check 14] Test psa_cipher_decrypt_setup - EC Public key
+[Check 15] Test psa_cipher_decrypt_setup - EC keypair
+[Check 16] Test psa_cipher_decrypt_setup - Invalid key handle
+[Check 17] Test psa_cipher_decrypt_setup - Zero as key handle
+[Check 18] Test psa_cipher_decrypt_setup - Empty key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 234 | DESCRIPTION: Testing crypto symmetric cipher APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_cipher_generate_iv 16 Byte AES
+[Check 2] Test psa_cipher_generate_iv 24 Byte AES
+[Check 3] Test psa_cipher_generate_iv 32 Byte AES
+[Check 4] Test psa_cipher_generate_iv DES 64 bit key
+[Check 5] Test psa_cipher_generate_iv Triple DES 2-Key
+[Check 6] Test psa_cipher_generate_iv Triple DES 3-Key
+[Check 7] Test psa_cipher_generate_iv AES - small iv buffer
+[Check 8] Test psa_cipher_generate_iv DES - small iv buffer
+[Check 9] Test psa_cipher_generate_iv AES - large iv buffer
+[Check 10] Test psa_cipher_generate_iv DES - large iv buffer
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 235 | DESCRIPTION: Testing crypto symmetric cipher APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_cipher_set_iv 16 Byte AES
+[Check 2] Test psa_cipher_set_iv 24 Byte AES
+[Check 3] Test psa_cipher_set_iv 32 Byte AES
+[Check 4] Test psa_cipher_set_iv DES 64 bit key
+[Check 5] Test psa_cipher_set_iv Triple DES 2-Key
+[Check 6] Test psa_cipher_set_iv Triple DES 3-Key
+[Check 7] Test psa_cipher_set_iv AES - small iv buffer
+[Check 8] Test psa_cipher_set_iv DES - small iv buffer
+[Check 9] Test psa_cipher_set_iv AES - large iv buffer
+[Check 10] Test psa_cipher_set_iv DES - large iv buffer
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 236 | DESCRIPTION: Testing crypto symmetric cipher APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_cipher_update - Encrypt - AES CBC_NO_PADDING
+[Check 2] Test psa_cipher_update - Encrypt - AES CBC_NO_PADDING (Short input)
+[Check 3] Test psa_cipher_update - Encrypt - AES CBC_PKCS7
+[Check 4] Test psa_cipher_update - Encrypt - AES CBC_PKCS7 (Short input)
+[Check 5] Test psa_cipher_update - Encrypt - AES CTR
+[Check 6] Test psa_cipher_update - Encrypt - DES CBC (nopad)
+[Check 7] Test psa_cipher_update - Encrypt - 2-key 3DE -CBC (nopad)
+[Check 8] Test psa_cipher_update - Encrypt - 3-key 3DE -CBC (nopad)
+[Check 9] Test psa_cipher_update - small output buffer size
+[Check 10] Test psa_cipher_update - Decrypt - AES CBC_NO_PADDING
+[Check 11] Test psa_cipher_update - Decrypt - AES CBC_NO_PADDING (Short input)
+[Check 12] Test psa_cipher_update - Decrypt - AES CBC_PKCS7
+[Check 13] Test psa_cipher_update - Decrypt - AES CBC_PKCS7 (Short input)
+[Check 14] Test psa_cipher_update - Decrypt - AES CTR
+[Check 15] Test psa_cipher_update - Decrypt - DES CBC (nopad)
+[Check 16] Test psa_cipher_update - Decrypt - 2-key 3DE -CBC (nopad)
+[Check 17] Test psa_cipher_update - Decrypt - 3-key 3DE -CBC (nopad)
+[Check 18] Test psa_cipher_update without cipher setup
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 237 | DESCRIPTION: Testing crypto symmetric cipher APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_cipher_finish - Encrypt - AES CBC_NO_PADDING
+[Check 2] Test psa_cipher_finish - Encrypt - AES CBC_NO_PADDING (Short input)
+[Check 3] Test psa_cipher_finish - Encrypt - AES CBC_PKCS7
+[Check 4] Test psa_cipher_finish - Encrypt - AES CBC_PKCS7 (Short input)
+[Check 5] Test psa_cipher_finish - Encrypt - AES CTR
+[Check 6] Test psa_cipher_finish - Encrypt - AES CTR (short input)
+[Check 7] Test psa_cipher_finish - Encrypt - DES CBC (nopad)
+[Check 8] Test psa_cipher_finish - Encrypt - 2-key 3DE -CBC (nopad)
+[Check 9] Test psa_cipher_finish - Encrypt - 3-key 3DE -CBC (nopad)
+[Check 10] Test psa_cipher_finish - small output buffer size
+[Check 11] Test psa_cipher_finish - Decrypt - AES CBC_NO_PADDING
+[Check 12] Test psa_cipher_finish - Decrypt - AES CBC_NO_PADDING (Short input)
+[Check 13] Test psa_cipher_finish - Decrypt - AES CBC_PKCS7
+[Check 14] Test psa_cipher_finish - Decrypt - AES CBC_PKCS7 (Short input)
+[Check 15] Test psa_cipher_finish - Decrypt - AES CTR
+[Check 16] Test psa_cipher_finish - Decrypt - AES CTR (short input)
+[Check 17] Test psa_cipher_finish - Decrypt - DES CBC (nopad)
+[Check 18] Test psa_cipher_finish - Decrypt - 2-key 3DE -CBC (nopad)
+[Check 19] Test psa_cipher_finish - 3-key 3DE -CBC (nopad)
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 238 | DESCRIPTION: Testing crypto symmetric cipher APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_cipher_abort - Encrypt - AES CBC_NO_PADDING
+[Check 2] Test psa_cipher_abort - Encrypt - AES CBC_PKCS7
+[Check 3] Test psa_cipher_abort - Encrypt - AES CTR
+[Check 4] Test psa_cipher_abort - Encrypt - DES CBC (nopad)
+[Check 5] Test psa_cipher_abort - Encrypt - 2-key 3DE -CBC (nopad)
+[Check 6] Test psa_cipher_abort - Encrypt - 3-key 3DE -CBC (nopad)
+[Check 7] Test psa_cipher_abort - Decrypt - AES CBC_NO_PADDING
+[Check 8] Test psa_cipher_abort - Decrypt - AES CBC_PKCS7
+[Check 9] Test psa_cipher_abort - Decrypt - AES CTR
+[Check 10] Test psa_cipher_abort - Decrypt - DES CBC (nopad)
+[Check 11] Test psa_cipher_abort - Decrypt - 2-key 3DE -CBC (nopad)
+[Check 12] Test psa_cipher_abort - Decrypt - 3-key 3DE -CBC (nopad)
+[Check 13] Test psa_cipher_update after psa_cipher_abort should fail
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 239 | DESCRIPTION: Testing crypto asymmetric APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_asymmetric_encrypt - RSA PKCS1V15
+[Check 2] Test psa_asymmetric_encrypt - RSA OAEP SHA256
+[Check 3] Test psa_asymmetric_encrypt - RSA OAEP SHA256 with label
+[Check 4] Test psa_asymmetric_encrypt - RSA KEYPAIR PKCS1V15
+[Check 5] Test psa_asymmetric_encrypt - Small output buffer
+[Check 6] Test psa_asymmetric_encrypt - Invalid algorithm
+[Check 7] Test psa_asymmetric_encrypt - Invalid key type
+[Check 8] Test psa_asymmetric_encrypt - Invalid usage
+[Check 9] Test psa_asymmetric_encrypt - Invalid key handle
+[Check 10] Test psa_asymmetric_encrypt - Zero as key handle
+[Check 11] Test psa_asymmetric_encrypt - Empty key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 240 | DESCRIPTION: Testing crypto asymmetric APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_asymmetric_decrypt - RSA KEYPAIR PKCS1V15
+[Check 2] Test psa_asymmetric_decrypt - RSA KEYPAIR OAEP SHA256
+[Check 3] Test psa_asymmetric_decrypt - RSA KEYPAIR OAEP SHA256 with label
+[Check 4] Test psa_asymmetric_decrypt - Invalid key type (RSA public key)
+[Check 5] Test psa_asymmetric_decrypt - Small output buffer
+[Check 6] Test psa_asymmetric_decrypt - Invalid algorithm
+[Check 7] Test psa_asymmetric_decrypt - Invalid key type (AES Key)
+[Check 8] Test psa_asymmetric_decrypt - Invalid usage
+[Check 9] Test psa_asymmetric_decrypt - Invalid key handle
+[Check 10] Test psa_asymmetric_decrypt - Zero as key handle
+[Check 11] Test psa_asymmetric_decrypt - Empty key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 241 | DESCRIPTION: Testing crypto asymmetric APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_asymmetric_sign - RSA KEYPAIR PKCS1V15 RAW
+[Check 2] Test psa_asymmetric_sign - RSA KEYPAIR PKCS1V15 SHA-256
+[Check 3] Test psa_asymmetric_sign - ECDSA SECP256R1 SHA-256
+[Check 4] Test psa_asymmetric_sign - Invalid key type (RSA public key)
+[Check 5] Test psa_asymmetric_sign - Small output buffer
+[Check 6] Test psa_asymmetric_sign - Invalid algorithm
+[Check 7] Test psa_asymmetric_sign - Invalid key type (AES Key)
+[Check 8] Test psa_asymmetric_sign - Invalid usage
+[Check 9] Test psa_asymmetric_sign - Wrong hash size
+[Check 10] Test psa_asymmetric_sign - Invalid key handle
+[Check 11] Test psa_asymmetric_sign - Zero as key handle
+[Check 12] Test psa_asymmetric_sign - Empty key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 242 | DESCRIPTION: Testing crypto asymmetric APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_asymmetric_verify - RSA KEYPAIR PKCS1V15 RAW
+[Check 2] Test psa_asymmetric_verify - RSA KEYPAIR PKCS1V15 SHA-256
+[Check 3] Test psa_asymmetric_verify - ECDSA KEYPAIR SECP256R1 SHA-256
+[Check 4] Test psa_asymmetric_verify - RSA public key
+[Check 5] Test psa_asymmetric_verify - Small output buffer
+[Check 6] Test psa_asymmetric_verify - Invalid algorithm
+[Check 7] Test psa_asymmetric_verify - Invalid key type (AES Key)
+[Check 8] Test psa_asymmetric_verify - Invalid usage
+[Check 9] Test psa_asymmetric_verify - Wrong hash size
+[Check 10] Test psa_asymmetric_verify - Wrong signature
+[Check 11] Test psa_asymmetric_verify - EC public key
+[Check 12] Test psa_asymmetric_verify - Wrong signature size
+[Check 13] Test psa_asymmetric_verify - Invalid key handle
+[Check 14] Test psa_asymmetric_verify - Invalid key handle
+[Check 15] Test psa_asymmetric_verify - Zero as key handle
+[Check 16] Test psa_asymmetric_verify - Empty key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 243 | DESCRIPTION: Testing crypto generator APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_key_agreement - ECDH SECP256R1
+[Check 2] Test psa_key_agreement - ECDH SECP384R1
+[Check 3] Test psa_key_agreement - Invalid usage
+[Check 4] Test psa_key_agreement - Unknown KDF
+[Check 5] Test psa_key_agreement - Not a key agreement alg
+[Check 6] Test psa_key_agreement - Public key on different curve
+[Check 7] Test psa_key_agreement - Public key instead of private key
+[Check 8] Test psa_key_agreement - Invalid key handle
+[Check 9] Test psa_key_agreement - Invalid key handle
+[Check 10] Test psa_key_agreement - Zero as key handle
+[Check 11] Test psa_key_agreement - Empty key handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 244 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_copy_key 16 Byte AES
+[Check 2] Test psa_copy_key 24 Byte AES
+[Check 3] Test psa_copy_key 32 Byte AES
+[Check 4] Test psa_copy_key 2048 RSA public key
+[Check 5] Test psa_copy_key with RSA 2048 keypair
+[Check 6] Test psa_copy_key with Incompatible target policy(source and target)
+[Check 7] Test psa_copy_key with Incompatible constraint
+[Check 8] Test psa_copy_key with unexport source key usage
+TEST RESULT: PASSED
+
+******************************************
+
+************ Crypto Suite Report **********
+TOTAL TESTS     : 44
+TOTAL PASSED    : 44
+TOTAL SIM ERROR : 0
+TOTAL FAILED    : 0
+TOTAL SKIPPED   : 0
+********************
+
+Entering standby..
+
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/reference_logs/protected_storage.txt b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/reference_logs/protected_storage.txt
new file mode 100755
index 00000000..93b7ba38
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/reference_logs/protected_storage.txt
@@ -0,0 +1,157 @@
+***** PSA Architecture Test Suite - Version 0.9 *****
+
+Running.. Protected Storage Suite
+******************************************
+
+TEST: 401 | DESCRIPTION: UID not found check
+[Info] Executing tests from non-secure
+[Check 1] Call get API for UID 6 which is not set
+[Check 2] Call get_info API for UID 6 which is not set
+[Check 3] Call remove API for UID 6 which is not set
+[Check 4] Call get API for UID 6 which is removed
+[Check 5] Call get_info API for UID 6 which is removed
+[Check 6] Call remove API for UID 6 which is removed
+Set storage for UID 6
+[Check 7] Call get API for different UID 6
+[Check 8] Call get_info API for different UID 6
+[Check 9] Call remove API for different UID 6
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 402 | DESCRIPTION: Write once error check
+[Info] Executing tests from non-secure
+[Check 1] Update the flag of UID 1 with WRITE_ONCE flag
+[Check 2] Try to remove the UID 1 having WRITE_ONCE flag
+[Check 3] Create a new UID 2 with WRITE_ONCE flag
+[Check 4] Try to remove the UID 2 having WRITE_ONCE flag
+[Check 5] Try to change the length of write_once UID 2
+[Check 6] Check UID removal still fails
+[Check 7] Try to change the WRITE_ONCE flag to None for UID 2
+[Check 8] Check UID removal still fails
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 403 | DESCRIPTION: Insufficient space check
+[Info] Executing tests from non-secure
+[Check 1] Overload storage space
+Remove all registered UIDs
+[Check 2] Overload storage again to verify all previous UID removed
+
+Remove all registered UIDs
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 404 | DESCRIPTION: Data Consistency check
+[Info] Executing tests from non-secure
+[Check 1] Call get API with incorrect length
+[Check 2] Old buffer invalid after length change
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 405 | DESCRIPTION: Success scenarios check
+[Info] Executing tests from non-secure
+[Check 1] Set UID with data length zero and call storage APIs
+[Check 2] Resetting the length check
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 406 | DESCRIPTION: Flags not supported check
+[Info] Executing tests from non-secure
+[Check 1] Call set API with valid flag values
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 407 | DESCRIPTION: Incorrect Size check
+[Info] Executing tests from non-secure
+Create a valid Storage
+Increase the length of storage
+[Check 1] Call get API with old length
+Decrease the length of storage
+[Check 2] Call get API with old length
+[Check 3] Call get API with valid length
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 408 | DESCRIPTION: Invalid offset check
+[Info] Executing tests from non-secure
+[Check 1] Try to access data with varying valid offset
+[Check 2] Try to access data with varying invalid offset
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 409 | DESCRIPTION: Invalid Arguments check
+[Info] Executing tests from non-secure
+[Check 1] Call set API with NULL pointer and data length 0
+[Check 2] Call get API with NULL read buffer and data length 0
+[Check 3] Remove the UID
+[Check 4] Call get_info API to verify UID removed
+[Check 5] Create UID with zero data_len and valid write buffer
+[Check 8] Call get API with NULL read buffer and data length 0
+[Check 9] Increase the length
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 410 | DESCRIPTION: UID value zero check
+[Info] Executing tests from non-secure
+[Check 1] Creating storage with UID 0 should fail
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 411 | DESCRIPTION: Optional APIs: UID not found check
+[Info] Executing tests from non-secure
+Test Case skipped as Optional PS APIs are not supported.
+TEST RESULT: SKIPPED (Skip Code=0x2B)
+
+******************************************
+
+TEST: 412 | DESCRIPTION: Optional APIs: Invalid arguments and offset invalid
+[Info] Executing tests from non-secure
+Test Case skipped as Optional PS APIs are not supported.
+TEST RESULT: SKIPPED (Skip Code=0x2B)
+
+******************************************
+
+TEST: 413 | DESCRIPTION: Set_Extended and Create api : Success
+[Info] Executing tests from non-secure
+Test Case skipped as Optional PS APIs are not supported.
+TEST RESULT: SKIPPED (Skip Code=0x2B)
+
+******************************************
+
+TEST: 414 | DESCRIPTION: Optional APIs not supported check
+[Info] Executing tests from non-secure
+Optional PS APIs are not supported.
+[Check 1] Call to create API should fail as API not supported
+[Check 2] Create valid storage with set API
+[Check 3] Call to set_extended API call should fail
+[Check 4] Verify data is unchanged
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 415 | DESCRIPTION: Create API write_once flag value check
+[Info] Executing tests from non-secure
+Test Case skipped as Optional PS APIs are not supported.
+TEST RESULT: SKIPPED (Skip Code=0x2B)
+
+******************************************
+
+************ Protected Storage Suite Report **********
+TOTAL TESTS     : 15
+TOTAL PASSED    : 11
+TOTAL SIM ERROR : 0
+TOTAL FAILED    : 0
+TOTAL SKIPPED   : 4
+******************************************
+
+Entering standby..
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/spe/pal_driver_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/spe/pal_driver_intf.c
index eb468b9b..4d522071 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/spe/pal_driver_intf.c
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/spe/pal_driver_intf.c
@@ -33,7 +33,7 @@ void pal_uart_init(uint32_t uart_base_addr)
               - data     : Value for format specifier
 **/
 
-void pal_print(char *str, uint32_t data)
+void pal_print(char *str, int32_t data)
 {
   pal_uart_pl011_print(str,data);
 }
@@ -109,3 +109,23 @@ int pal_wd_timer_is_enabled(addr_t base_addr)
     return (pal_wd_cmsdk_is_enabled(base_addr));
 }
 
+/**
+    @brief   - Trigger interrupt for irq signal assigned to driver partition
+               before return to caller.
+    @param   - void
+    @return  - void
+**/
+void pal_generate_interrupt(void)
+{
+    pal_uart_pl011_generate_irq();
+}
+
+/**
+    @brief   - Disable interrupt that was generated using pal_generate_interrupt API.
+    @param   - void
+    @return  - void
+**/
+void pal_disable_interrupt(void)
+{
+    pal_uart_pl011_disable_irq();
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/spe/pal_driver_intf.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/spe/pal_driver_intf.h
index da85a63e..cef34ca8 100644
--- a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/spe/pal_driver_intf.h
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_a/spe/pal_driver_intf.h
@@ -23,11 +23,13 @@
 #include "pal_wd_cmsdk.h"
 
 void pal_uart_init(uint32_t uart_base_addr);
-void pal_print(char *str, uint32_t data);
+void pal_print(char *str, int32_t data);
 int pal_nvmem_write(addr_t base, uint32_t offset, void *buffer, int size);
 int pal_nvmem_read(addr_t base, uint32_t offset, void *buffer, int size);
 int pal_wd_timer_init(addr_t base_addr, uint32_t time_us, uint32_t timer_tick_us);
 int pal_wd_timer_enable(addr_t base_addr);
 int pal_wd_timer_disable(addr_t base_addr);
 int pal_wd_timer_is_enabled(addr_t base_addr);
+void pal_generate_interrupt(void);
+void pal_disable_interrupt(void);
 #endif /* _PAL_DRIVER_INTF_H_ */
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/Makefile b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/Makefile
new file mode 100644
index 00000000..aa7e10b7
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/Makefile
@@ -0,0 +1,160 @@
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+include $(SOURCE)/tools/makefiles/toolchain.mk
+
+# Make variables to select correct instances of PAL files
+
+## PSA_IPC_IMPLEMENTED must be true for IPC SUITE
+PSA_IPC_IMPLEMENTED:=0
+
+## PSA_CRYPTO_IMPLEMENTED must be true for CRYPTO SUITE
+PSA_CRYPTO_IMPLEMENTED:=1
+
+## PSA_PROTECTED_STORAGE_IMPLEMENTED must be true for PROTECTED_STORAGE SUITE
+PSA_PROTECTED_STORAGE_IMPLEMENTED:=1
+
+## PSA_INTERNAL_TRUSTED_STORAGE_IMPLEMENTED must be true for INTERNAL_TRUSTED_STORAGE SUITE
+PSA_INTERNAL_TRUSTED_STORAGE_IMPLEMENTED:=0
+
+## PSA_INITIAL_ATTESTATION_IMPLEMENTED must be true for INITIAL_ATTESTATION SUITE
+PSA_INITIAL_ATTESTATION_IMPLEMENTED:=1
+
+# Make variables holding NSPE/SPE source files
+
+## PAL C source files part of NSPE library
+SRC_C_NSPE=
+
+## PAL ASM source files part of NSPE library
+SRC_ASM_NSPE=
+
+## PAL C source files part of SPE library - driver partition
+SRC_C_DRIVER_SP=
+
+## PAL ASM source files part of SPE library - driver partition
+SRC_ASM_DRIVER_SP=
+
+ifeq (${PSA_IPC_IMPLEMENTED},1)
+# When PSA_IPC_IMPLEMENTED=1, driver functionalities are implemented as RoT-services
+# and secure and non-secure clients will call to these RoT-services to get appropriate driver services.
+SRC_C_NSPE += pal_client_api_intf.c
+SRC_C_NSPE += pal_driver_ipc_intf.c
+
+# Driver files will be compiled as part of driver partition
+SRC_C_DRIVER_SP += pal_driver_intf.c pal_nvmem.c pal_uart.c pal_wd_cmsdk.c
+else
+
+# When PSA_IPC_IMPLEMENTED=0, driver files will be compiled as part of NSPE
+SRC_C_NSPE += pal_client_api_empty_intf.c
+SRC_C_NSPE += pal_driver_ns_intf.c pal_nvmem.c pal_uart.c pal_wd_cmsdk.c
+endif
+
+ifeq (${PSA_CRYPTO_IMPLEMENTED},1)
+SRC_C_NSPE += pal_crypto_intf.c
+else
+SRC_C_NSPE += pal_crypto_empty_intf.c
+endif
+
+ifeq (${PSA_PROTECTED_STORAGE_IMPLEMENTED},1)
+SRC_C_NSPE += pal_protected_storage_intf.c
+else
+SRC_C_NSPE += pal_protected_storage_empty_intf.c
+endif
+
+ifeq (${PSA_INTERNAL_TRUSTED_STORAGE_IMPLEMENTED},1)
+SRC_C_NSPE += pal_internal_trusted_storage_intf.c
+else
+SRC_C_NSPE += pal_internal_trusted_storage_empty_intf.c
+endif
+
+ifeq (${PSA_INITIAL_ATTESTATION_IMPLEMENTED},1)
+SRC_C_NSPE += pal_attestation_intf.c
+SRC_C_NSPE += pal_attestation_eat.c
+SRC_C_NSPE += pal_attestation_crypto.c
+else
+SRC_C_NSPE += pal_attestation_empty_intf.c
+endif
+
+INCLUDE= -I$(SOURCE)/platform/targets/$(TARGET)/nspe \
+         -I$(SOURCE)/platform/targets/$(TARGET)/spe \
+         -I$(BUILD)/platform/$(TARGET)/ \
+         -I$(SOURCE)/platform/drivers/uart/pl011 \
+         -I$(SOURCE)/platform/drivers/nvmem/ \
+         -I$(SOURCE)/platform/drivers/watchdog/cmsdk \
+         -I$(SOURCE)/platform/targets/$(TARGET)/nspe/common \
+         -I$(SOURCE)/platform/targets/$(TARGET)/nspe/crypto \
+         -I$(SOURCE)/platform/targets/$(TARGET)/nspe/initial_attestation \
+         -I$(SOURCE)/platform/targets/$(TARGET)/nspe/initial_attestation/ext/inc \
+         -I$(SOURCE)/platform/targets/$(TARGET)/nspe/internal_trusted_storage \
+         -I$(SOURCE)/platform/targets/$(TARGET)/nspe/protected_storage \
+
+VPATH=$(SOURCE)/platform/targets/$(TARGET)/: \
+      $(SOURCE)/platform/targets/$(TARGET)/spe: \
+      $(SOURCE)/platform/targets/$(TARGET)/nspe: \
+      $(SOURCE)/platform/drivers/uart/pl011: \
+      $(SOURCE)/platform/drivers/nvmem: \
+      $(SOURCE)/platform/drivers/watchdog/cmsdk: \
+      $(SOURCE)/platform/targets/$(TARGET)/nspe/common: \
+      $(SOURCE)/platform/targets/$(TARGET)/nspe/crypto: \
+      $(SOURCE)/platform/targets/$(TARGET)/nspe/initial_attestation: \
+      $(SOURCE)/platform/targets/$(TARGET)/nspe/initial_attestation/ext/src: \
+      $(SOURCE)/platform/targets/$(TARGET)/nspe/internal_trusted_storage: \
+      $(SOURCE)/platform/targets/$(TARGET)/nspe/protected_storage: \
+
+all: build
+
+ifeq (${PSA_IPC_IMPLEMENTED},1)
+build: mkdir build_nspe_pal build_spe_pal
+else
+build: mkdir build_nspe_pal
+endif
+
+mkdir:
+	@mkdir -p $(BUILD)/platform/nspe/
+	@mkdir -p $(BUILD)/platform/spe/
+
+# BUILD NSPE PAL
+build_nspe_pal: build_c_nspe build_asm_nspe pal_nspe.a
+
+build_c_nspe: $(SRC_C_NSPE:%.c=$(BUILD)/platform/nspe/%.o)
+build_asm_nspe: $(SRC_ASM_NSPE:%.s=$(BUILD)/platform/nspe/%.o)
+
+$(BUILD)/platform/nspe/%.o : %.c
+	$(CC) $(PAL_CDEFS) $(INCLUDE) -o $@ -c $<
+
+$(BUILD)/platform/nspe/%.o : %.s
+	$(AS) $(INCLUDE) -o $@ $<
+
+pal_nspe.a:
+	$(AR) $(AR_OPTIONS) $(BUILD)/platform/pal_nspe.a $(BUILD)/platform/nspe/*.o
+
+# BUILD SPE PAL
+build_spe_pal: build_driver_sp
+
+build_driver_sp: build_c_driver_sp build_asm_driver_sp
+
+build_c_driver_sp: $(SRC_C_DRIVER_SP:%.c=$(BUILD)/platform/spe/%_driver_sp.o)
+build_asm_driver_sp: $(SRC_ASM_DRIVER_SP:%.s=$(BUILD)/platform/spe/%_driver_sp.o)
+
+# Generated %_driver_sp.o(s) are used in spbuild.mk to create final driver_partition.a
+$(BUILD)/platform/spe/%_driver_sp.o : %.c
+	$(CC) $(INCLUDE) -DSPE_BUILD -o $@ -c $<
+
+$(BUILD)/platform/spe/%_driver_sp.o : %.s
+	$(AS) $(INCLUDE) -o $@ $<
+
+clean:
+	@rm -rf $(BUILD)/platform/nspe/* $(BUILD)/platform/spe/*.a
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/manifests/common/driver_partition_psa.json b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/manifests/common/driver_partition_psa.json
new file mode 100644
index 00000000..7010c9b5
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/manifests/common/driver_partition_psa.json
@@ -0,0 +1,75 @@
+{
+  "psa_framework_version": 1.0,
+  "name": "DRIVER_PARTITION",
+  "type": "PSA-ROT",
+  "priority": "NORMAL",
+  "description": "Implements device services such print, flash read/write,. etc.",
+  "entry_point": "driver_main",
+  "stack_size": "0x400",
+  "services": [{
+      "name": "DRIVER_UART_SID",
+      "sid": "0x0000FC01",
+      "signal": "DRIVER_UART_SIG",
+      "non_secure_clients": true,
+      "minor_version": 1,
+      "minor_policy": "RELAXED"
+    },
+    {
+      "name": "DRIVER_WATCHDOG_SID",
+      "sid": "0x0000FC02",
+      "signal": "DRIVER_WATCHDOG_SIG",
+      "non_secure_clients": true,
+      "minor_version": 1,
+      "minor_policy": "RELAXED"
+    },
+    {
+      "name": "DRIVER_NVMEM_SID",
+      "sid": "0x0000FC03",
+      "signal": "DRIVER_NVMEM_SIG",
+      "non_secure_clients": true,
+      "minor_version": 1,
+      "minor_policy": "RELAXED"
+    },
+    {
+      "name": "DRIVER_TEST_SID",
+      "sid": "0x0000FC04",
+      "signal": "DRIVER_TEST_SIG",
+      "non_secure_clients": true,
+      "minor_version": 1,
+      "minor_policy": "RELAXED"
+    }
+  ],
+  "mmio_regions" : [
+    {
+      "name": "UART_REGION",
+      "base": "0x40004000",
+      "size": "0x1000",
+      "permission": "READ-WRITE"
+    },
+    {
+      "name": "WATCHDOG_REGION",
+      "base": "0x40008000",
+      "size": "0x1000",
+      "permission": "READ-WRITE"
+    },
+    {
+      "name": "NVMEM_REGION",
+      "base": "0x2002F000",
+      "size": "0x400",
+      "permission": "READ-WRITE"
+    },
+    {
+      "name": "DRIVER_PARTITION_MMIO",
+      "base": "0x200AF040",
+      "size": "0x20",
+      "permission": "READ-WRITE"
+    }
+  ],
+  "irqs": [
+    {
+       "description": "Using UART TX interrupt to test psa_wait and psa_eoi for irq_signal",
+       "signal": "DRIVER_UART_INTR_SIG",
+       "line_num": 46
+    }
+  ]
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/manifests/ipc/client_partition_psa.json b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/manifests/ipc/client_partition_psa.json
new file mode 100644
index 00000000..b93377bd
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/manifests/ipc/client_partition_psa.json
@@ -0,0 +1,37 @@
+{
+  "psa_framework_version": 1.0,
+  "name": "CLIENT_PARTITION",
+  "type": "APPLICATION-ROT",
+  "priority": "NORMAL",
+  "description": "Client partition executing client test func from SPE",
+  "entry_point": "client_main",
+  "stack_size": "0x400",
+  "services": [{
+      "name": "CLIENT_TEST_DISPATCHER_SID",
+      "sid": "0x0000FA01",
+      "signal": "CLIENT_TEST_DISPATCHER_SIG",
+      "non_secure_clients": true,
+      "minor_version": 1,
+      "minor_policy": "RELAXED"
+    }
+  ],
+  "dependencies": [
+    "DRIVER_UART_SID",
+    "DRIVER_NVMEM_SID",
+    "DRIVER_TEST_SID",
+    "SERVER_TEST_DISPATCHER_SID",
+    "SERVER_UNSPECIFED_MINOR_V_SID",
+    "SERVER_STRICT_MINOR_VERSION_SID",
+    "SERVER_RELAX_MINOR_VERSION_SID",
+    "SERVER_SECURE_CONNECT_ONLY_SID",
+    "SERVER_CONNECTION_DROP_SID"
+  ],
+  "mmio_regions" : [
+    {
+      "name": "CLIENT_PARTITION_MMIO",
+      "base": "0x200AF000",
+      "size": "0x20",
+      "permission": "READ-WRITE"
+    }
+   ]
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/manifests/ipc/server_partition_psa.json b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/manifests/ipc/server_partition_psa.json
new file mode 100644
index 00000000..146b8fbc
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/manifests/ipc/server_partition_psa.json
@@ -0,0 +1,69 @@
+{
+  "psa_framework_version": 1.0,
+  "name": "SERVER_PARTITION",
+  "type": "APPLICATION-ROT",
+  "priority": "NORMAL",
+  "description": "Server partition executing server test func",
+  "entry_point": "server_main",
+  "stack_size": "0x400",
+  "heap_size": "0x100",
+  "services": [{
+      "name": "SERVER_TEST_DISPATCHER_SID",
+      "sid": "0x0000FB01",
+      "signal": "SERVER_TEST_DISPATCHER_SIG",
+      "non_secure_clients": true,
+      "minor_version": 1,
+      "minor_policy": "RELAXED"
+    },
+    {
+      "name": "SERVER_SECURE_CONNECT_ONLY_SID",
+      "sid": "0x0000FB02",
+      "signal": "SERVER_SECURE_CONNECT_ONLY_SIG",
+      "non_secure_clients": false,
+      "minor_version": 2,
+      "minor_policy": "RELAXED"
+    },
+    {
+      "name": "SERVER_STRICT_MINOR_VERSION_SID",
+      "sid": "0x0000FB03",
+      "signal": "SERVER_STRICT_MINOR_VERSION_SIG",
+      "non_secure_clients": true,
+      "minor_version": 2,
+      "minor_policy": "STRICT"
+    },
+    {
+      "name": "SERVER_UNSPECIFED_MINOR_V_SID",
+      "sid": "0x0000FB04",
+      "signal": "SERVER_UNSPECIFED_MINOR_V_SIG",
+      "non_secure_clients": true
+    },
+    {
+      "name": "SERVER_RELAX_MINOR_VERSION_SID",
+      "sid": "0x0000FB05",
+      "signal": "SERVER_RELAX_MINOR_VERSION_SIG",
+      "non_secure_clients": true,
+      "minor_version": 2,
+      "minor_policy": "RELAXED"
+    },
+    {
+      "name": "SERVER_UNEXTERN_SID",
+      "sid": "0x0000FB06",
+      "signal": "SERVER_UNEXTERN_SIG",
+      "non_secure_clients": true,
+      "minor_version": 2,
+      "minor_policy": "RELAXED"
+    },
+    {
+      "name": "SERVER_CONNECTION_DROP_SID",
+      "sid": "0x0000FB07",
+      "signal": "SERVER_CONNECTION_DROP_SIG",
+      "non_secure_clients": true,
+      "minor_version": 2,
+      "minor_policy": "RELAXED"
+    }
+  ],
+  "dependencies": [
+    "DRIVER_UART_SID",
+    "DRIVER_NVMEM_SID"
+  ]
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_client_api_empty_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_client_api_empty_intf.c
new file mode 100644
index 00000000..578b4cef
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_client_api_empty_intf.c
@@ -0,0 +1,93 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "pal_common.h"
+#include "pal_client_api_intf.h"
+
+/**
+ * @brief - Retrieve the version of the PSA Framework API that is implemented.
+ * This is a wrapper API for psa_framework_version API.
+ * @param    - void
+ * @return   - The PSA Framework API version.
+ */
+
+uint32_t pal_ipc_framework_version(void)
+{
+    return 0;
+}
+
+/**
+ * @brief - Retrieve the minor version of a Root of Trust Service by its SID.
+ * This is a wrapper API for the psa_version API.
+ * @param - sid The Root of Trust Service ID
+ * @return - Minor version of Root of Trust Service or PSA_VERSION_NONE if Root of Trust
+ *           Service not present on the system.
+ */
+
+uint32_t pal_ipc_version(uint32_t sid)
+{
+    return PSA_VERSION_NONE;
+}
+
+/**
+ * @brief   - Connect to given sid.
+ *            This is a wrapper API for the psa_connect API.
+ * @param   - sid : RoT service id
+ * @param   - minor_version : minor_version of RoT service
+ * @return  - psa_handle_t : return connection handle
+ */
+
+psa_handle_t pal_ipc_connect(uint32_t sid, uint32_t minor_version)
+{
+    return PSA_NULL_HANDLE;
+}
+
+/**
+ * @brief Call a connected Root of Trust Service.
+ * This is a wrapper API for the psa_call API.
+ * The caller must provide an array of ::psa_invec_t structures as the input payload.
+ *
+ * @param  -handle   Handle for the connection.
+ * @param  -in_vec   Array of psa_invec structures.
+ * @param  -in_len   Number of psa_invec structures in in_vec.
+ * @param  -out_vec  Array of psa_outvec structures for optional Root of Trust Service response.
+ * @param  -out_len  Number of psa_outvec structures in out_vec.
+ * @return -psa_status_t
+ */
+
+psa_status_t pal_ipc_call(psa_handle_t handle,
+                         const psa_invec *in_vec,
+                         size_t in_len,
+                         psa_outvec *out_vec,
+                         size_t out_len)
+{
+    return (PSA_SUCCESS - 1);
+}
+
+/**
+ * @brief Close a connection to a Root of Trust Service.
+ * This is a wrapper API for the psa_close API.
+ * Sends the PSA_IPC_DISCONNECT message to the Root of Trust Service so it can clean up resources.
+ *
+ * @param handle Handle for the connection.
+ * @return void
+ */
+
+void pal_ipc_close(psa_handle_t handle)
+{
+    return;
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_client_api_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_client_api_intf.c
new file mode 100644
index 00000000..20ddd118
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_client_api_intf.c
@@ -0,0 +1,97 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "pal_common.h"
+#include "pal_client_api_intf.h"
+
+/**
+ * @brief   - Retrieve the version of the PSA Framework API that is implemented.
+ * This is a wrapper API for psa_framework_version API.
+ * @param    - void
+ * @return   - The PSA Framework API version.
+ *             Note - Return PAL_STATUS_ERROR if PSA IPC is not implemented.
+ */
+
+uint32_t pal_ipc_framework_version(void)
+{
+    return (psa_framework_version());
+}
+
+/**
+ * @brief   - Retrieve the minor version of a Root of Trust Service by its SID.
+ * This is a wrapper API for the psa_version API.
+ * @param - sid The Root of Trust Service ID
+ * @return - Minor version of Root of Trust Service or PSA_VERSION_NONE if Root of Trust
+ *           Service not present on the system.
+ *           Note - Return PAL_STATUS_ERROR if PSA IPC is not implemented.
+ */
+
+uint32_t pal_ipc_version(uint32_t sid)
+{
+    return (psa_version(sid));
+}
+
+/**
+ * @brief   - Connect to given sid.
+ *            This is a wrapper API for the psa_connect API.
+ * @param   - sid : RoT service id
+ * @param   - minor_version : minor_version of RoT service
+ * @return  - psa_handle_t : return connection handle
+ *            Note - Return PSA_NULL_HANDLE if PSA IPC is not implemented.
+ */
+
+psa_handle_t pal_ipc_connect(uint32_t sid, uint32_t minor_version)
+{
+    return (psa_connect(sid, minor_version));
+}
+
+/**
+ * @brief Call a connected Root of Trust Service.
+ * This is a wrapper API for the psa_call API.
+ * The caller must provide an array of ::psa_invec_t structures as the input payload.
+ *
+ * @param  -handle   Handle for the connection.
+ * @param  -in_vec   Array of psa_invec structures.
+ * @param  -in_len   Number of psa_invec structures in in_vec.
+ * @param  -out_vec  Array of psa_outvec structures for optional Root of Trust Service response.
+ * @param  -out_len  Number of psa_outvec structures in out_vec.
+ * @return -psa_status_t
+ *          Note - Return -1 if PSA IPC is not implemented.
+ */
+
+psa_status_t pal_ipc_call(psa_handle_t handle,
+                         const psa_invec *in_vec,
+                         size_t in_len,
+                         psa_outvec *out_vec,
+                         size_t out_len)
+{
+    return (psa_call(handle, in_vec, in_len, out_vec, out_len));
+}
+
+/**
+ * @brief Close a connection to a Root of Trust Service.
+ * This is a wrapper API for the psa_close API.
+ * Sends the PSA_IPC_DISCONNECT message to the Root of Trust Service so it can clean up resources.
+ *
+ * @param  - handle Handle for the connection.
+ * @return - void
+ */
+
+void pal_ipc_close(psa_handle_t handle)
+{
+    psa_close(handle);
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_client_api_intf.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_client_api_intf.h
new file mode 100644
index 00000000..3f5741e0
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_client_api_intf.h
@@ -0,0 +1,32 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifndef _PAL_CLIENT_API_H_
+#define _PAL_CLIENT_API_H_
+
+#include "pal_common.h"
+
+uint32_t pal_ipc_framework_version(void);
+uint32_t pal_ipc_version(uint32_t sid);
+psa_handle_t pal_ipc_connect(uint32_t sid, uint32_t minor_version);
+psa_status_t pal_ipc_call(psa_handle_t handle,
+                      const psa_invec *in_vec,
+                      size_t in_len,
+                      psa_outvec *out_vec,
+                      size_t out_len);
+void pal_ipc_close(psa_handle_t handle);
+#endif /* _PAL_CLIENT_API_H_ */
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_common.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_common.h
new file mode 100644
index 00000000..3ebe1e10
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_common.h
@@ -0,0 +1,118 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifndef _PAL_COMMON_H_
+#define _PAL_COMMON_H_
+
+#include <string.h>
+#include <stdint.h>
+#include <stdlib.h>
+#include <limits.h>
+#include <stdarg.h>
+
+#ifndef TARGET_CFG_BUILD
+#include "pal_config.h"
+#include "pal_crypto_config.h"
+#endif
+
+/* typedef's */
+typedef uint8_t             bool_t;
+typedef uint32_t            addr_t;
+typedef uint32_t            test_id_t;
+typedef uint32_t            block_id_t;
+typedef char                char8_t;
+typedef uint32_t            cfg_id_t;
+
+#define PAL_STATUS_UNSUPPORTED_FUNC      0xFF
+
+typedef enum
+{
+    PAL_STATUS_SUCCESS = 0x0,
+    PAL_STATUS_ERROR   = 0x80
+} pal_status_t;
+
+typedef enum {
+    NVMEM_READ             = 0x1,
+    NVMEM_WRITE            = 0x2,
+} nvmem_fn_type_t;
+
+typedef struct {
+    nvmem_fn_type_t nvmem_fn_type;
+    addr_t base;
+    uint32_t offset;
+    int size;
+} nvmem_param_t;
+
+typedef enum {
+    WD_INIT_SEQ         = 0x1,
+    WD_ENABLE_SEQ       = 0x2,
+    WD_DISABLE_SEQ      = 0x3,
+    WD_STATUS_SEQ       = 0x4,
+} wd_fn_type_t;
+
+typedef enum {
+    WD_LOW_TIMEOUT      = 0x1,
+    WD_MEDIUM_TIMEOUT   = 0x2,
+    WD_HIGH_TIMEOUT     = 0x3,
+    WD_CRYPTO_TIMEOUT   = 0x4,
+} wd_timeout_type_t;
+
+typedef struct {
+    wd_fn_type_t wd_fn_type;
+    addr_t       wd_base_addr;
+    uint32_t     wd_time_us;
+    uint32_t     wd_timer_tick_us;
+} wd_param_t;
+
+typedef enum {
+    UART_INIT             = 0x1,
+    UART_PRINT            = 0x2,
+} uart_fn_type_t;
+
+/*
+ * Redefining some of the client.h elements for compilation to go through
+ * when PSA IPC APIs are not implemented.
+ */
+#if (PSA_IPC_IMPLEMENTED == 0)
+
+#ifndef PSA_VERSION_NONE
+#define PSA_VERSION_NONE            (0)
+#endif
+
+#ifndef PSA_SUCCESS
+#define PSA_SUCCESS                 (0)
+typedef int32_t psa_status_t;
+#endif
+typedef int32_t psa_handle_t;
+
+#ifndef PSA_NULL_HANDLE
+#define PSA_NULL_HANDLE             ((psa_handle_t)0)
+#endif
+
+typedef struct psa_invec {
+    const void *base;
+    size_t len;
+} psa_invec;
+
+typedef struct psa_outvec {
+    void *base;
+    size_t len;
+} psa_outvec;
+
+#endif /* PSA_IPC_IMPLEMENTED */
+
+#endif /* _PAL_COMMON_H_ */
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_config.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_config.h
new file mode 100644
index 00000000..e3f70ad7
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_config.h
@@ -0,0 +1,119 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifndef _PAL_CONFIG_H_
+#define _PAL_CONFIG_H_
+
+/*
+ * List of macros used by test suite
+ */
+#if !defined(PSA_IPC_IMPLEMENTED)
+#define PSA_IPC_IMPLEMENTED 0
+#endif
+
+#if !defined(PSA_CRYPTO_IMPLEMENTED)
+#define PSA_CRYPTO_IMPLEMENTED 0
+#endif
+
+#if !defined(PSA_INTERNAL_TRUSTED_STORAGE_IMPLEMENTED)
+#define PSA_INTERNAL_TRUSTED_STORAGE_IMPLEMENTED 0
+#endif
+
+#if !defined(PSA_PROTECTED_STORAGE_IMPLEMENTED)
+#define PSA_PROTECTED_STORAGE_IMPLEMENTED 0
+#endif
+
+#if !defined(PSA_INITIAL_ATTESTATION_IMPLEMENTED)
+#define PSA_INITIAL_ATTESTATION_IMPLEMENTED 0
+#endif
+
+#if (PSA_IPC_IMPLEMENTED == 0) && \
+    (PSA_CRYPTO_IMPLEMENTED == 0) && \
+    (PSA_INTERNAL_TRUSTED_STORAGE_IMPLEMENTED == 0) && \
+    (PSA_PROTECTED_STORAGE_IMPLEMENTED == 0) && \
+    (PSA_INITIAL_ATTESTATION_IMPLEMENTED == 0)
+#error "You must define at least one of these macros to run test suite"
+#endif
+
+#if !defined(VERBOSE)
+#define VERBOSE 3 /* Print verbosity = TEST */
+#endif
+
+#if (!defined(VAL_NSPE_BUILD) && !defined(SPE_BUILD))
+#define VAL_NSPE_BUILD 1
+#endif
+
+#if (!defined(NONSECURE_TEST_BUILD) && !defined(SPE_BUILD))
+#define NONSECURE_TEST_BUILD 1
+#endif
+
+#if !defined(TEST_COMBINE_ARCHIVE)
+#define TEST_COMBINE_ARCHIVE 0 /* Combine test archive or binary? */
+#endif
+
+#if !defined(WATCHDOG_AVAILABLE)
+#define WATCHDOG_AVAILABLE 0 /* If zero, skip watchdog programming */
+#endif
+
+#if !defined(SP_HEAP_MEM_SUPP)
+#define SP_HEAP_MEM_SUPP 0 /* Are Dynamic funcs available to secure partition? */
+#endif
+
+/*
+ * Include of PSA defined Header files
+ */
+
+#if PSA_IPC_IMPLEMENTED
+/* psa/client.h: Contains the PSA Client API elements */
+#include "psa/client.h"
+
+/*
+ * psa_manifest/sid.h:  Macro definitions derived from manifest files that map from RoT Service
+ * names to Service IDs (SIDs). Partition manifest parse build tool must provide the implementation
+ * of this file.
+*/
+#include "psa_manifest/sid.h"
+
+/*
+ * psa_manifest/pid.h: Secure Partition IDs
+ * Macro definitions that map from Secure Partition names to Secure Partition IDs.
+ * Partition manifest parse build tool must provide the implementation of this file.
+*/
+#include "psa_manifest/pid.h"
+#endif
+
+#if PSA_CRYPTO_IMPLEMENTED
+/* psa/crypto.h: Contains the PSA Crypto API elements */
+#include "psa/crypto.h"
+#endif
+
+#if PSA_INTERNAL_TRUSTED_STORAGE_IMPLEMENTED
+/* psa/internal_trusted_storage.h: Contains the PSA ITS API elements */
+#include "psa/internal_trusted_storage.h"
+#endif
+
+#if PSA_PROTECTED_STORAGE_IMPLEMENTED
+/* psa/protected_storage.h: Contains the PSA PS API elements */
+#include "psa/protected_storage.h"
+#endif
+
+#if PSA_INITIAL_ATTESTATION_IMPLEMENTED
+/* psa/initial_attestation.h: Contains the PSA Initial Attestation API elements */
+#include "psa/initial_attestation.h"
+#endif
+
+#endif /* _PAL_CONFIG_H_ */
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_driver_ipc_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_driver_ipc_intf.c
new file mode 100644
index 00000000..f8f773fb
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_driver_ipc_intf.c
@@ -0,0 +1,305 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "pal_common.h"
+#include "pal_client_api_intf.h"
+
+/**
+    @brief    - This function initializes the UART
+    @param    - uart base addr
+    @return   - SUCCESS/FAILURE
+**/
+int pal_uart_init_ns(uint32_t uart_base_addr)
+{
+    psa_handle_t            print_handle = 0;
+    psa_status_t            status_of_call = PSA_SUCCESS;
+    uart_fn_type_t          uart_fn = UART_INIT;
+
+    psa_invec data[3] = {{&uart_fn, sizeof(uart_fn)},
+                         {&uart_base_addr, sizeof(uart_base_addr)},
+                         {NULL, 0}};
+
+    print_handle = pal_ipc_connect(DRIVER_UART_SID, 0);
+    if (print_handle < 0)
+    {
+        return(PAL_STATUS_ERROR);
+    }
+
+    status_of_call = pal_ipc_call(print_handle, data, 3, NULL, 0);
+    if (status_of_call != PSA_SUCCESS)
+    {
+        return(PAL_STATUS_ERROR);
+    }
+
+    pal_ipc_close(print_handle);
+    return PAL_STATUS_SUCCESS;
+}
+
+/**
+    @brief    - This function parses the input string and writes bytes into UART TX FIFO
+    @param    - str      : Input String
+              - data     : Value for format specifier
+    @return   - SUCCESS/FAILURE
+**/
+
+int pal_print_ns(char *str, int32_t data)
+{
+    int             string_len = 0;
+    char            *p = str;
+    psa_handle_t    print_handle = 0;
+    psa_status_t    status_of_call = PSA_SUCCESS;
+    pal_status_t    status = PAL_STATUS_SUCCESS;
+    uart_fn_type_t  uart_fn = UART_PRINT;
+
+    while (*p != '\0')
+    {
+        string_len++;
+        p++;
+    }
+
+    psa_invec data1[3] = {{&uart_fn, sizeof(uart_fn)},
+                          {str, string_len+1},
+                          {&data, sizeof(data)}};
+    print_handle = pal_ipc_connect(DRIVER_UART_SID, 0);
+
+    if (print_handle < 0)
+    {
+        return PAL_STATUS_ERROR;
+    }
+    else
+    {
+        status_of_call = pal_ipc_call(print_handle, data1, 3, NULL, 0);
+        if (status_of_call != PSA_SUCCESS)
+        {
+            status = PAL_STATUS_ERROR;
+        }
+    }
+    pal_ipc_close(print_handle);
+    return status;
+}
+
+/**
+    @brief           - Initializes an hardware watchdog timer
+    @param           - base_addr       : Base address of the watchdog module
+                     - time_us         : Time in micro seconds
+                     - timer_tick_us   : Number of ticks per micro second
+    @return          - SUCCESS/FAILURE
+**/
+int pal_wd_timer_init_ns(addr_t base_addr, uint32_t time_us, uint32_t timer_tick_us)
+{
+    wd_param_t              wd_param;
+    psa_handle_t            handle = 0;
+    psa_status_t            status_of_call = PSA_SUCCESS;
+
+    wd_param.wd_fn_type = WD_INIT_SEQ;
+    wd_param.wd_base_addr = base_addr;
+    wd_param.wd_time_us = time_us;
+    wd_param.wd_timer_tick_us = timer_tick_us;
+    psa_invec invec[1] = {{&wd_param, sizeof(wd_param)}};
+
+    handle = pal_ipc_connect(DRIVER_WATCHDOG_SID, 0);
+    if (handle < 0)
+    {
+        return PAL_STATUS_ERROR;
+    }
+    else
+    {
+        status_of_call = pal_ipc_call(handle, invec, 1, NULL, 0);
+        if (status_of_call != PSA_SUCCESS)
+        {
+            pal_ipc_close(handle);
+            return PAL_STATUS_ERROR;
+        }
+    }
+   pal_ipc_close(handle);
+   return PAL_STATUS_SUCCESS;
+}
+
+/**
+    @brief           - Enables a hardware watchdog timer
+    @param           - base_addr       : Base address of the watchdog module
+    @return          - SUCCESS/FAILURE
+**/
+int pal_wd_timer_enable_ns(addr_t base_addr)
+{
+    wd_param_t              wd_param;
+    psa_handle_t            handle = 0;
+    psa_status_t            status_of_call = PSA_SUCCESS;
+
+    wd_param.wd_fn_type = WD_ENABLE_SEQ;
+    wd_param.wd_base_addr = base_addr;
+    wd_param.wd_time_us = 0;
+    wd_param.wd_timer_tick_us = 0;
+    psa_invec invec[1] = {{&wd_param, sizeof(wd_param)}};
+
+    handle = pal_ipc_connect(DRIVER_WATCHDOG_SID, 0);
+    if (handle < 0)
+    {
+        return PAL_STATUS_ERROR;
+    }
+    else
+    {
+        status_of_call = pal_ipc_call(handle, invec, 1, NULL, 0);
+        if (status_of_call != PSA_SUCCESS)
+        {
+            pal_ipc_close(handle);
+            return PAL_STATUS_ERROR;
+        }
+    }
+   pal_ipc_close(handle);
+   return PAL_STATUS_SUCCESS;
+}
+
+/**
+    @brief           - Disables a hardware watchdog timer
+    @param           - base_addr  : Base address of the watchdog module
+    @return          - SUCCESS/FAILURE
+**/
+int pal_wd_timer_disable_ns(addr_t base_addr)
+{
+    wd_param_t              wd_param;
+    psa_handle_t            handle = 0;
+    psa_status_t            status_of_call = PSA_SUCCESS;
+
+    wd_param.wd_fn_type = WD_DISABLE_SEQ;
+    wd_param.wd_base_addr = base_addr;
+    wd_param.wd_time_us = 0;
+    wd_param.wd_timer_tick_us = 0;
+    psa_invec invec[1] = {{&wd_param, sizeof(wd_param)}};
+
+    handle = pal_ipc_connect(DRIVER_WATCHDOG_SID, 0);
+    if (handle < 0)
+    {
+        return PAL_STATUS_ERROR;
+    }
+    else
+    {
+        status_of_call = pal_ipc_call(handle, invec, 1, NULL, 0);
+        if (status_of_call != PSA_SUCCESS)
+        {
+            pal_ipc_close(handle);
+            return PAL_STATUS_ERROR;
+        }
+    }
+   pal_ipc_close(handle);
+   return PAL_STATUS_SUCCESS;
+}
+
+/**
+    @brief    - Reads from given non-volatile address.
+    @param    - base    : Base address of nvmem
+                offset  : Offset
+                buffer  : Pointer to source address
+                size    : Number of bytes
+    @return   - SUCCESS/FAILURE
+**/
+int pal_nvmem_read_ns(addr_t base, uint32_t offset, void *buffer, int size)
+{
+    nvmem_param_t   nvmem_param;
+    psa_handle_t    handle = 0;
+    psa_status_t    status_of_call = PSA_SUCCESS;
+
+    nvmem_param.nvmem_fn_type = NVMEM_READ;
+    nvmem_param.base = base;
+    nvmem_param.offset = offset;
+    nvmem_param.size = size;
+    psa_invec invec[1] = {{&nvmem_param, sizeof(nvmem_param)}};
+    psa_outvec outvec[1] = {{buffer, size}};
+
+    handle = pal_ipc_connect(DRIVER_NVMEM_SID, 0);
+    if (handle < 0)
+    {
+        return PAL_STATUS_ERROR;
+    }
+    else
+    {
+        status_of_call = pal_ipc_call(handle, invec, 1, outvec, 1);
+        if (status_of_call != PSA_SUCCESS)
+        {
+            pal_ipc_close(handle);
+            return PAL_STATUS_ERROR;
+        }
+    }
+   psa_close(handle);
+   return PAL_STATUS_SUCCESS;
+}
+
+/**
+    @brief    - Writes into given non-volatile address.
+    @param    - base    : Base address of nvmem
+                offset  : Offset
+                buffer  : Pointer to source address
+                size    : Number of bytes
+    @return   - SUCCESS/FAILURE
+**/
+int pal_nvmem_write_ns(addr_t base, uint32_t offset, void *buffer, int size)
+{
+    nvmem_param_t   nvmem_param;
+    psa_handle_t    handle = 0;
+    psa_status_t    status_of_call = PSA_SUCCESS;
+
+    nvmem_param.nvmem_fn_type = NVMEM_WRITE;
+    nvmem_param.base = base;
+    nvmem_param.offset = offset;
+    nvmem_param.size = size;
+    psa_invec invec[2] = {{&nvmem_param, sizeof(nvmem_param)}, {buffer, size}};
+
+    handle = pal_ipc_connect(DRIVER_NVMEM_SID, 0);
+    if (handle < 0)
+    {
+        return PAL_STATUS_ERROR;
+    }
+    else
+    {
+        status_of_call = pal_ipc_call(handle, invec, 2, NULL, 0);
+        if (status_of_call != PSA_SUCCESS)
+        {
+            pal_ipc_close(handle);
+            return PAL_STATUS_ERROR;
+        }
+    }
+   pal_ipc_close(handle);
+   return PAL_STATUS_SUCCESS;
+}
+
+/**
+ *   @brief    - This function will read peripherals using SPI commands
+ *   @param    - addr : address of the peripheral
+ *               data : read buffer
+ *               len  : length of the read buffer in bytes
+ *   @return   - error status
+**/
+int pal_spi_read(addr_t addr, uint8_t *data, uint32_t len)
+{
+    return 0xFF;
+}
+
+/**
+ *   @brief    - Terminates the simulation at the end of all tests completion.
+ *               By default, it put cpus into power down mode.
+ *   @param    - void
+ *   @return   - void
+**/
+void pal_terminate_simulation(void)
+{
+    /* Add logic to terminate the simluation */
+
+    while(1)
+    {
+        asm volatile("WFI");
+    }
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_driver_ns_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_driver_ns_intf.c
new file mode 100644
index 00000000..338df6cb
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/common/pal_driver_ns_intf.c
@@ -0,0 +1,145 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "pal_common.h"
+#include "pal_uart.h"
+#include "pal_nvmem.h"
+#include "pal_wd_cmsdk.h"
+
+/**
+    @brief    - This function initializes the UART
+    @param    - uart base addr
+    @return   - SUCCESS/FAILURE
+**/
+int pal_uart_init_ns(uint32_t uart_base_addr)
+{
+    pal_uart_pl011_init(uart_base_addr);
+    return PAL_STATUS_SUCCESS;
+}
+
+/**
+    @brief    - This function parses the input string and writes bytes into UART TX FIFO
+    @param    - str      : Input String
+              - data     : Value for format specifier
+    @return   - SUCCESS/FAILURE
+**/
+
+int pal_print_ns(char *str, int32_t data)
+{
+    pal_uart_pl011_print(str, data);
+    return PAL_STATUS_SUCCESS;
+}
+
+/**
+    @brief           - Initializes an hardware watchdog timer
+    @param           - base_addr       : Base address of the watchdog module
+                     - time_us         : Time in micro seconds
+                     - timer_tick_us   : Number of ticks per micro second
+    @return          - SUCCESS/FAILURE
+**/
+int pal_wd_timer_init_ns(addr_t base_addr, uint32_t time_us, uint32_t timer_tick_us)
+{
+    return(pal_wd_cmsdk_init(base_addr,time_us, timer_tick_us));
+}
+
+/**
+    @brief           - Enables a hardware watchdog timer
+    @param           - base_addr       : Base address of the watchdog module
+    @return          - SUCCESS/FAILURE
+**/
+int pal_wd_timer_enable_ns(addr_t base_addr)
+{
+    return(pal_wd_cmsdk_enable(base_addr));
+}
+
+/**
+    @brief           - Disables a hardware watchdog timer
+    @param           - base_addr  : Base address of the watchdog module
+    @return          - SUCCESS/FAILURE
+**/
+int pal_wd_timer_disable_ns(addr_t base_addr)
+{
+    return (pal_wd_cmsdk_disable(base_addr));
+}
+
+/**
+    @brief    - Reads from given non-volatile address.
+    @param    - base    : Base address of nvmem
+                offset  : Offset
+                buffer  : Pointer to source address
+                size    : Number of bytes
+    @return   - SUCCESS/FAILURE
+**/
+int pal_nvmem_read_ns(addr_t base, uint32_t offset, void *buffer, int size)
+{
+    if (nvmem_read(base, offset, buffer, size))
+    {
+        return PAL_STATUS_SUCCESS;
+    }
+    else
+    {
+        return PAL_STATUS_ERROR;
+    }
+}
+
+/**
+    @brief    - Writes into given non-volatile address.
+    @param    - base    : Base address of nvmem
+                offset  : Offset
+                buffer  : Pointer to source address
+                size    : Number of bytes
+    @return   - SUCCESS/FAILURE
+**/
+int pal_nvmem_write_ns(addr_t base, uint32_t offset, void *buffer, int size)
+{
+    if (nvmem_write(base, offset, buffer, size))
+    {
+        return PAL_STATUS_SUCCESS;
+    }
+    else
+    {
+        return PAL_STATUS_ERROR;
+    }
+}
+
+/**
+ *   @brief    - This function will read peripherals using SPI commands
+ *   @param    - addr : address of the peripheral
+ *               data : read buffer
+ *               len  : length of the read buffer in bytes
+ *   @return   - error status
+**/
+int pal_spi_read(addr_t addr, uint8_t *data, uint32_t len)
+{
+    return 0xFF;
+}
+
+/**
+ *   @brief    - Terminates the simulation at the end of all tests completion.
+ *               By default, it put cpus into power down mode.
+ *   @param    - void
+ *   @return   - void
+**/
+void pal_terminate_simulation(void)
+{
+    /* Add logic to terminate the simluation */
+
+    while(1)
+    {
+        asm volatile("WFI");
+    }
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_config.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_config.h
new file mode 100644
index 00000000..ab11fd16
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_config.h
@@ -0,0 +1,323 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+/*
+ * \file pal_crypto_config.h
+ *
+ * \brief Configuration options for crypto tests (set of defines)
+ *
+ *  This set of compile-time options may be used to enable
+ *  or disable features selectively for crypto test suite
+ */
+
+#ifndef _PAL_CRYPTO_CONFIG_H_
+#define _PAL_CRYPTO_CONFIG_H_
+/**
+ * \def ARCH_TEST_RSA
+ *
+ * Enable the RSA public-key cryptosystem.
+ * By default all supported keys are enabled.
+ *
+ * Comment macros to disable the types
+ */
+#define ARCH_TEST_RSA
+#define ARCH_TEST_RSA_1024
+#define ARCH_TEST_RSA_2048
+#define ARCH_TEST_RSA_3072
+
+/**
+ * \def  ARCH_TEST_ECC
+ * \def  ARCH_TEST_ECC_CURVE_SECPXXXR1
+ *
+ * Enable the elliptic curve
+ * Enable specific curves within the Elliptic Curve
+ * module.  By default all supported curves are enabled.
+ *
+ * Requires: ARCH_TEST_ECC
+ * Comment macros to disable the curve
+ */
+#define ARCH_TEST_ECC
+#define ARCH_TEST_ECC_CURVE_SECP192R1
+#define ARCH_TEST_ECC_CURVE_SECP224R1
+#define ARCH_TEST_ECC_CURVE_SECP256R1
+#define ARCH_TEST_ECC_CURVE_SECP384R1
+
+/**
+ * \def ARCH_TEST_AES
+ *
+ * Enable the AES block cipher.
+ * By default all supported keys are enabled.
+ *
+ * Comment macros to disable the types
+ */
+#define ARCH_TEST_AES
+#define ARCH_TEST_AES_128
+#define ARCH_TEST_AES_192
+#define ARCH_TEST_AES_256
+#define ARCH_TEST_AES_512
+
+/**
+ * \def  ARCH_TEST_DES
+ *
+ * Enable the DES block cipher.
+ * By default all supported keys are enabled.
+ *
+ * Comment macros to disable the types
+ */
+//#define ARCH_TEST_DES
+//#define ARCH_TEST_DES_1KEY
+//#define ARCH_TEST_DES_2KEY
+//#define ARCH_TEST_DES_3KEY
+
+/**
+ * \def  ARCH_TEST_RAW
+ *
+ * A "key" of this type cannot be used for any cryptographic operation.
+ * Applications may use this type to store arbitrary data in the keystore.
+ */
+#define ARCH_TEST_RAW
+
+/**
+ * \def ARCH_TEST_CIPER
+ *
+ * Enable the generic cipher layer.
+ */
+
+#define ARCH_TEST_CIPER
+
+/**
+ * \def ARCH_TEST_ARC4
+ *
+ * Enable the ARC4 key type.
+ */
+//#define ARCH_TEST_ARC4
+
+/**
+ * \def ARCH_TEST_CIPER_MODE_CTR
+ *
+ * Enable Counter Block Cipher mode (CTR) for symmetric ciphers.
+ *
+ * Requires: ARCH_TEST_CIPER
+ */
+#define ARCH_TEST_CIPER_MODE_CTR
+
+/**
+ * \def ARCH_TEST_CIPER_MODE_CFB
+ *
+ * Enable Cipher Feedback mode (CFB) for symmetric ciphers.
+ *
+ * Requires: ARCH_TEST_CIPER
+ */
+#define ARCH_TEST_CIPER_MODE_CFB
+
+/**
+ * \def ARCH_TEST_CIPER_MODE_CBC
+ *
+ * Enable Cipher Block Chaining mode (CBC) for symmetric ciphers.
+ *
+ * Requires: ARCH_TEST_CIPER
+ */
+#define ARCH_TEST_CIPER_MODE_CBC
+
+/**
+ * \def ARCH_TEST_CTR_AES
+ *
+ * Requires: ARCH_TEST_CIPER, ARCH_TEST_AES, ARCH_TEST_CIPER_MODE_CTR
+ */
+#define ARCH_TEST_CTR_AES
+
+/**
+ * \def ARCH_TEST_CBC_AES
+ *
+ * Requires: ARCH_TEST_CIPER, ARCH_TEST_AES, ARCH_TEST_CIPER_MODE_CBC
+ *
+ * Comment macros to disable the types
+ */
+#define ARCH_TEST_CBC_AES
+#define ARCH_TEST_CBC_AES_NO_PADDING
+
+/**
+ * \def ARCH_TEST_CBC_NO_PADDING
+ *
+ * Requires: ARCH_TEST_CIPER, ARCH_TEST_CIPER_MODE_CBC
+ *
+ * Comment macros to disable the types
+ */
+#define ARCH_TEST_CBC_NO_PADDING
+
+/**
+ * \def ARCH_TEST_CFB_AES
+ *
+ * Requires: ARCH_TEST_CIPER, ARCH_TEST_AES, ARCH_TEST_CIPER_MODE_CFB
+ */
+#define ARCH_TEST_CFB_AES
+
+/**
+ * \def ARCH_TEST_PKCS1V15_*
+ *
+ * Enable support for PKCS#1 v1.5 encoding.
+ * Enable support for PKCS#1 v1.5 operations.
+ * Enable support for RSA-OAEP
+ *
+ * Requires: ARCH_TEST_RSA, ARCH_TEST_PKCS1V15
+ *
+ * Comment macros to disable the types
+ */
+#define ARCH_TEST_PKCS1V15
+#define ARCH_TEST_RSA_PKCS1V15_SIGN
+#define ARCH_TEST_RSA_PKCS1V15_SIGN_RAW
+#define ARCH_TEST_RSA_PKCS1V15_CRYPT
+#define ARCH_TEST_RSA_OAEP
+
+/**
+ * \def ARCH_TEST_CBC_PKCS7
+ *
+ * Requires: ARCH_TEST_CIPER_MODE_CBC
+ *
+ * Comment macros to disable the types
+ */
+#define ARCH_TEST_CBC_PKCS7
+
+/**
+ * \def ARCH_TEST_ASYMMETRIC_ENCRYPTION
+ *
+ * Enable support for Asymmetric encryption algorithms
+ */
+#define ARCH_TEST_ASYMMETRIC_ENCRYPTION
+
+/**
+ * \def ARCH_TEST_HASH
+ *
+ * Enable the hash algorithm.
+ */
+#define ARCH_TEST_HASH
+
+/**
+ * \def  ARCH_TEST_HMAC
+ *
+ * The key policy determines which underlying hash algorithm the key can be
+ * used for.
+ *
+ * Requires: ARCH_TEST_HASH
+ */
+#define ARCH_TEST_HMAC
+
+/**
+ * \def ARCH_TEST_MDX
+ * \def ARCH_TEST_SHAXXX
+ *
+ * Enable the MDX algorithm.
+ * Enable the SHAXXX algorithm.
+ *
+ * Requires: ARCH_TEST_HASH
+ *
+ * Comment macros to disable the types
+ */
+//#define ARCH_TEST_MD2
+//#define ARCH_TEST_MD4
+//#define ARCH_TEST_MD5
+//#define ARCH_TEST_RIPEMD160
+#define ARCH_TEST_SHA1
+#define ARCH_TEST_SHA224
+#define ARCH_TEST_SHA256
+#define ARCH_TEST_SHA384
+#define ARCH_TEST_SHA512
+//#define ARCH_TEST_SHA512_224
+//#define ARCH_TEST_SHA512_256
+//#define ARCH_TEST_SHA3_224
+//#define ARCH_TEST_SHA3_256
+//#define ARCH_TEST_SHA3_384
+//#define ARCH_TEST_SHA3_512
+
+/**
+ * \def ARCH_TEST_HKDF
+ *
+ * Enable the HKDF algorithm (RFC 5869).
+ *
+ * Requires: ARCH_TEST_HASH
+*/
+#define ARCH_TEST_HKDF
+
+/**
+ * \def ARCH_TEST_xMAC
+ *
+ * Enable the xMAC (Cipher/Hash/G-based Message Authentication Code) mode for block
+ * ciphers.
+ * Requires: ARCH_TEST_AES or ARCH_TEST_DES
+ *
+ * Comment macros to disable the types
+ */
+#define ARCH_TEST_CMAC
+#define ARCH_TEST_GMAC
+#define ARCH_TEST_HMAC
+
+/**
+ * \def ARCH_TEST_CCM
+ *
+ * Enable the Counter with CBC-MAC (CCM) mode for 128-bit block cipher.
+ *
+ * Requires: ARCH_TEST_AES
+ */
+#define ARCH_TEST_CCM
+
+/**
+ * \def ARCH_TEST_GCM
+ *
+ * Enable the Galois/Counter Mode (GCM) for AES.
+ *
+ * Requires: ARCH_TEST_AES
+ *
+ */
+#define ARCH_TEST_GCM
+
+/**
+ * \def ARCH_TEST_TRUNCATED_MAC
+ *
+ * Enable support for RFC 6066 truncated HMAC in SSL.
+ *
+ * Comment this macro to disable support for truncated HMAC in SSL
+ */
+#define ARCH_TEST_TRUNCATED_MAC
+
+
+/**
+ * \def ARCH_TEST_ECDH
+ *
+ * Enable the elliptic curve Diffie-Hellman library.
+ *
+ * Requires: ARCH_TEST_ECC
+ */
+#define ARCH_TEST_ECDH
+
+/**
+ * \def ARCH_TEST_ECDSA
+ *
+ * Enable the elliptic curve DSA library.
+ * Requires: ARCH_TEST_ECC
+ */
+#define ARCH_TEST_ECDSA
+
+/**
+ * \def ARCH_TEST_DETERMINISTIC_ECDSA
+ *
+ * Enable deterministic ECDSA (RFC 6979).
+*/
+#define ARCH_TEST_DETERMINISTIC_ECDSA
+
+#include "pal_crypto_config_check.h"
+
+#endif /* _PAL_CRYPTO_CONFIG_H_ */
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_config_check.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_config_check.h
new file mode 100644
index 00000000..f18a7852
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_config_check.h
@@ -0,0 +1,223 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+/**
+ * \file pal_crypto_config_check.h
+ *
+ * \brief Consistency checks for configuration options
+ *
+ */
+
+#ifndef _PAL_CRYPTO_CONFIG_CHECK_H_
+#define _PAL_CRYPTO_CONFIG_CHECK_H_
+
+#if defined(ARCH_TEST_RSA_1024) && !defined(ARCH_TEST_RSA)
+#error "ARCH_TEST_RSA_1024 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_RSA_2048) && !defined(ARCH_TEST_RSA)
+#error "ARCH_TEST_RSA_2048 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_RSA_3072) && !defined(ARCH_TEST_RSA)
+#error "ARCH_TEST_RSA_3072 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_ECC_CURVE_SECP192R1) && !defined(ARCH_TEST_ECC)
+#error "ARCH_TEST_ECC_CURVE_SECP192R1 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_ECC_CURVE_SECP224R1) && !defined(ARCH_TEST_ECC)
+#error "ARCH_TEST_ECC_CURVE_SECP224R1 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_ECC_CURVE_SECP256R1) && !defined(ARCH_TEST_ECC)
+#error "ARCH_TEST_ECC_CURVE_SECP256R1 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_ECC_CURVE_SECP384R1) && !defined(ARCH_TEST_ECC)
+#error "ARCH_TEST_ECC_CURVE_SECP384R1 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_AES_128) && !defined(ARCH_TEST_AES)
+#error "ARCH_TEST_AES_128 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_AES_256) && !defined(ARCH_TEST_AES)
+#error "ARCH_TEST_AES_256 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_AES_512) && !defined(ARCH_TEST_AES)
+#error "ARCH_TEST_AES_512 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_DES_1KEY) && !defined(ARCH_TEST_DES)
+#error "ARCH_TEST_DES_1KEY defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_DES_2KEY) && !defined(ARCH_TEST_DES)
+#error "ARCH_TEST_DES_2KEY defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_DES_3KEY) && !defined(ARCH_TEST_DES)
+#error "ARCH_TEST_DES_3KEY defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_CIPER_MODE_CTR) && !defined(ARCH_TEST_CIPER)
+#error "ARCH_TEST_CIPER_MODE_CTR defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_CIPER_MODE_CFB) && !defined(ARCH_TEST_CIPER)
+#error "ARCH_TEST_CIPER_MODE_CFB defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_CIPER_MODE_CBC) && !defined(ARCH_TEST_CIPER)
+#error "ARCH_TEST_CIPER_MODE_CBC defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_CTR_AES) &&\
+    (!defined(ARCH_TEST_CIPER) || !defined(ARCH_TEST_AES) || !defined(ARCH_TEST_CIPER_MODE_CTR))
+#error "ARCH_TEST_CTR_AES defined, but not all prerequisites"
+#endif
+
+#if (defined(ARCH_TEST_CBC_AES)|| defined(ARCH_TEST_CBC_AES_NO_PADDING)) &&\
+    (!defined(ARCH_TEST_CIPER) || !defined(ARCH_TEST_AES) || !defined(ARCH_TEST_CIPER_MODE_CBC))
+#error "ARCH_TEST_CBC_AES defined, but not all prerequisites"
+#endif
+
+#if (defined(ARCH_TEST_CBC_NO_PADDING)) &&\
+    (!defined(ARCH_TEST_CIPER) ||!defined(ARCH_TEST_CIPER_MODE_CBC))
+#error "ARCH_TEST_CBC_NO_PADDING defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_CFB_AES) &&\
+    (!defined(ARCH_TEST_CIPER) || !defined(ARCH_TEST_AES) || !defined(ARCH_TEST_CIPER_MODE_CFB))
+#error "ARCH_TEST_CFB_AES defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_RSA_PKCS1V15_SIGN) &&\
+    (!defined(ARCH_TEST_RSA) || !defined(ARCH_TEST_PKCS1V15))
+#error "ARCH_TEST_RSA_PKCS1V15_SIGN defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_RSA_PKCS1V15_SIGN_RAW) &&\
+    (!defined(ARCH_TEST_RSA) || !defined(ARCH_TEST_PKCS1V15))
+#error "ARCH_TEST_RSA_PKCS1V15_SIGN_RAW defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_RSA_PKCS1V15_CRYPT) &&\
+    (!defined(ARCH_TEST_RSA) || !defined(ARCH_TEST_PKCS1V15))
+#error "ARCH_TEST_RSA_PKCS1V15_CRYPT defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_CBC_PKCS7) && !defined(ARCH_TEST_CIPER_MODE_CBC)
+#error "ARCH_TEST_CBC_PKCS7 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_HMAC) && !defined(ARCH_TEST_HASH)
+#error "ARCH_TEST_HMAC defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_MD2) && !defined(ARCH_TEST_HASH)
+#error "ARCH_TEST_MD2 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_MD4) && !defined(ARCH_TEST_HASH)
+#error "ARCH_TEST_MD4 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_MD5) && !defined(ARCH_TEST_HASH)
+#error "ARCH_TEST_MD5 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_RIPEMD160) && !defined(ARCH_TEST_HASH)
+#error "ARCH_TEST_RIPEMD160 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_SHA1) && !defined(ARCH_TEST_HASH)
+#error "ARCH_TEST_SHA1 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_SHA224) && !defined(ARCH_TEST_HASH)
+#error "ARCH_TEST_SHA224 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_SHA256) && !defined(ARCH_TEST_HASH)
+#error "ARCH_TEST_SHA256 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_SHA512) && !defined(ARCH_TEST_HASH)
+#error "ARCH_TEST_SHA512 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_SHA512_224) && !defined(ARCH_TEST_HASH)
+#error "ARCH_TEST_SHA512_224 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_SHA512_256) && !defined(ARCH_TEST_HASH)
+#error "ARCH_TEST_SHA512_256 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_SHA3_224) && !defined(ARCH_TEST_HASH)
+#error "ARCH_TEST_SHA3_224 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_SHA3_256) && !defined(ARCH_TEST_HASH)
+#error "ARCH_TEST_SHA3_256 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_SHA3_384) && !defined(ARCH_TEST_HASH)
+#error "ARCH_TEST_SHA3_256 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_SHA3_512) && !defined(ARCH_TEST_HASH)
+#error "ARCH_TEST_SHA3_256 defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_HKDF) && !defined(ARCH_TEST_HASH)
+#error "ARCH_TEST_HKDF defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_CMAC) && !defined(ARCH_TEST_AES)
+#error "ARCH_TEST_CMAC defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_GMAC) && !defined(ARCH_TEST_AES)
+#error "ARCH_TEST_GMAC defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_HMAC) && !defined(ARCH_TEST_AES)
+#error "ARCH_TEST_HMAC defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_CCM) && !defined(ARCH_TEST_AES)
+#error "ARCH_TEST_CCM defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_GCM) && !defined(ARCH_TEST_AES)
+#error "ARCH_TEST_GCM defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_ECDH) && !defined(ARCH_TEST_ECC)
+#error "ARCH_TEST_ECDH defined, but not all prerequisites"
+#endif
+
+#if defined(ARCH_TEST_ECDSA) && !defined(ARCH_TEST_ECC)
+#error "ARCH_TEST_ECDSA defined, but not all prerequisites"
+#endif
+
+#endif /* _PAL_CRYPTO_CONFIG_CHECK_H_ */
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_empty_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_empty_intf.c
new file mode 100644
index 00000000..2a28f397
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_empty_intf.c
@@ -0,0 +1,30 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include <stdarg.h>
+#include "pal_common.h"
+
+/**
+    @brief    - This API will call the requested crypto function
+    @param    - type    : function code
+                valist  : variable argument list
+    @return   - error status
+**/
+int32_t pal_crypto_function(int type, va_list valist)
+{
+    return PAL_STATUS_ERROR;
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_intf.c
new file mode 100644
index 00000000..3df6aa8d
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_intf.c
@@ -0,0 +1,340 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+
+#include "pal_crypto_intf.h"
+
+#define  PAL_KEY_SLOT_COUNT  32
+
+/**
+    @brief    - This API will call the requested crypto function
+    @param    - type    : function code
+                valist  : variable argument list
+    @return   - error status
+**/
+int32_t pal_crypto_function(int type, va_list valist)
+{
+    int                     i;
+    size_t                  size, *length, salt_length, label_length, ciphertext_size;
+    uint8_t                 *buffer, *ciphertext;
+    const uint8_t           *salt, *label, *nonce, *additional_data;
+    uint8_t                 *plaintext;
+    uint32_t                status;
+    const void              *extra;
+    size_t                  extra_size, capacity, *gen_cap, nonce_length, additional_data_length;
+    psa_key_handle_t        handle, *key_handle, target_handle;
+    psa_key_type_t          key_type, *key_type_out;
+    psa_key_policy_t        *policy;
+    psa_key_usage_t         usage, *usage_out;
+    psa_key_lifetime_t      *lifetime_out;
+    psa_algorithm_t         alg, *alg_out;
+    psa_hash_operation_t    *hash_operation;
+    psa_mac_operation_t     *mac_operation;
+    psa_cipher_operation_t  *cipher_operation;
+    psa_crypto_generator_t  *generator;
+
+    switch (type)
+    {
+        case PAL_CRYPTO_INIT:
+            return psa_crypto_init();
+        case PAL_CRYPTO_GENERATE_RANDOM:
+            buffer = va_arg(valist, uint8_t*);
+            size = va_arg(valist, int);
+            return psa_generate_random(buffer, size);
+        case PAL_CRYPTO_IMPORT_KEY:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            key_type = va_arg(valist, psa_key_type_t);
+            buffer = va_arg(valist, uint8_t*);
+            size = va_arg(valist, int);
+            status = psa_import_key(handle, key_type, buffer, size);
+            return status;
+        case PAL_CRYPTO_EXPORT_KEY:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            buffer = (uint8_t *)(va_arg(valist, uint8_t*));
+            size = va_arg(valist, int);
+            length = (size_t *)va_arg(valist, size_t*);
+            status = psa_export_key(handle, buffer, size, length);
+            return status;
+        case PAL_CRYPTO_EXPORT_PUBLIC_KEY:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            buffer = (uint8_t *)(va_arg(valist, uint8_t*));
+            size = va_arg(valist, int);
+            length = (size_t *)va_arg(valist, size_t*);
+            status = psa_export_public_key(handle, buffer, size, length);
+            return status;
+        case PAL_CRYPTO_KEY_POLICY_INIT:
+            policy = va_arg(valist, psa_key_policy_t*);
+            memset(policy, 0, sizeof(psa_key_policy_t));
+            return 0;
+        case PAL_CRYPTO_KEY_POLICY_SET_USAGE:
+            policy = va_arg(valist, psa_key_policy_t*);
+            usage = va_arg(valist, psa_key_usage_t);
+            alg = va_arg(valist, psa_algorithm_t);
+            psa_key_policy_set_usage(policy, usage, alg);
+            return 0;
+        case PAL_CRYPTO_SET_KEY_POLICY:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            policy = va_arg(valist, psa_key_policy_t*);
+            return psa_set_key_policy(handle, policy);
+        case PAL_CRYPTO_DESTROY_KEY:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            status = psa_destroy_key(handle);
+            return status;
+        case PAL_CRYPTO_GET_KEY_INFORMATION:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            key_type_out = va_arg(valist, psa_key_type_t*);
+            length = (size_t *)va_arg(valist, size_t*);
+            status = psa_get_key_information(handle, key_type_out, length);
+            return status;
+        case PAL_CRYPTO_GET_KEY_POLICY:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            policy = va_arg(valist, psa_key_policy_t*);
+            return psa_get_key_policy(handle, policy);
+        case PAL_CRYPTO_KEY_POLICY_GET_USAGE:
+            policy = va_arg(valist, psa_key_policy_t*);
+            usage_out = va_arg(valist, psa_key_usage_t*);
+            *usage_out = psa_key_policy_get_usage(policy);
+            return 0;
+        case PAL_CRYPTO_KEY_POLICY_GET_ALGORITHM:
+            policy = va_arg(valist, psa_key_policy_t*);
+            alg_out = va_arg(valist, psa_algorithm_t*);
+            *alg_out = psa_key_policy_get_algorithm(policy);
+            return 0;
+        case PAL_CRYPTO_GET_KEY_LIFETIME:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            lifetime_out = va_arg(valist, psa_key_lifetime_t*);
+            return psa_get_key_lifetime(handle, lifetime_out);
+        case PAL_CRYPTO_HASH_SETUP:
+            hash_operation = va_arg(valist, psa_hash_operation_t*);
+            alg = va_arg(valist, psa_algorithm_t);
+            return psa_hash_setup(hash_operation, alg);
+        case PAL_CRYPTO_HASH_UPDATE:
+            hash_operation = va_arg(valist, psa_hash_operation_t*);
+            buffer = va_arg(valist, uint8_t*);
+            size = va_arg(valist, size_t);
+            return psa_hash_update(hash_operation, buffer, size);
+        case PAL_CRYPTO_HASH_VERIFY:
+            hash_operation = va_arg(valist, psa_hash_operation_t*);
+            buffer = va_arg(valist, uint8_t*);
+            size = va_arg(valist, size_t);
+            return psa_hash_verify(hash_operation, buffer, size);
+        case PAL_CRYPTO_HASH_FINISH:
+            hash_operation = va_arg(valist, psa_hash_operation_t*);
+            buffer = va_arg(valist, uint8_t*);
+            size = va_arg(valist, size_t);
+            length = va_arg(valist, size_t*);
+            return psa_hash_finish(hash_operation, buffer, size, length);
+        case PAL_CRYPTO_HASH_ABORT:
+            hash_operation = va_arg(valist, psa_hash_operation_t*);
+            return psa_hash_abort(hash_operation);
+        case PAL_CRYPTO_GENERATE_KEY:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            key_type = va_arg(valist, psa_key_type_t);
+            size     = va_arg(valist, size_t);
+            extra    = va_arg(valist, const void*);
+            extra_size  = va_arg(valist, size_t);
+            return psa_generate_key(handle, key_type, size, extra, extra_size);
+        case PAL_CRYPTO_GENERATOR_READ:
+            generator = va_arg(valist, psa_crypto_generator_t*);
+            buffer = va_arg(valist, uint8_t*);
+            size = va_arg(valist, int);
+            return psa_generator_read(generator, buffer, size);
+        case PAL_CRYPTO_KEY_DERIVATION:
+            generator = va_arg(valist, psa_crypto_generator_t*);
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            alg = va_arg(valist, psa_algorithm_t);
+            salt = va_arg(valist, const uint8_t *);
+            salt_length = va_arg(valist, size_t);
+            label = va_arg(valist, const uint8_t *);
+            label_length = va_arg(valist, size_t);
+            capacity = va_arg(valist, size_t);
+            return psa_key_derivation(generator, handle, alg, salt, salt_length, label,
+                                                                  label_length, capacity);
+        case PAL_CRYPTO_GET_GENERATOR_CAPACITY:
+            generator = va_arg(valist, psa_crypto_generator_t*);
+            gen_cap   = va_arg(valist, size_t*);
+            return psa_get_generator_capacity(generator, gen_cap);
+        case PAL_CRYPTO_GENERATOR_IMPORT_KEY:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            key_type = va_arg(valist, psa_key_type_t);
+            size     = va_arg(valist, size_t);
+            generator = va_arg(valist, psa_crypto_generator_t*);
+            return psa_generator_import_key(handle, key_type, size, generator);
+        case PAL_CRYPTO_GENERATOR_ABORT:
+            generator = va_arg(valist, psa_crypto_generator_t*);
+            return psa_generator_abort(generator);
+        case PAL_CRYPTO_AEAD_ENCRYPT:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            alg = va_arg(valist, psa_algorithm_t);
+            nonce = va_arg(valist, const uint8_t *);
+            nonce_length = va_arg(valist, size_t);
+            additional_data = va_arg(valist, const uint8_t *);
+            additional_data_length = va_arg(valist, size_t);
+            plaintext = va_arg(valist, uint8_t *);
+            size = va_arg(valist, size_t);
+            ciphertext = va_arg(valist, uint8_t *);
+            ciphertext_size = va_arg(valist, size_t);
+            length = va_arg(valist, size_t*);
+            return psa_aead_encrypt(handle, alg, nonce, nonce_length, additional_data,
+                    additional_data_length, plaintext, size, ciphertext, ciphertext_size, length);
+        case PAL_CRYPTO_AEAD_DECRYPT:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            alg = va_arg(valist, psa_algorithm_t);
+            nonce = va_arg(valist, const uint8_t *);
+            nonce_length = va_arg(valist, size_t);
+            additional_data = va_arg(valist, const uint8_t *);
+            additional_data_length = va_arg(valist, size_t);
+            ciphertext = va_arg(valist, uint8_t *);
+            ciphertext_size = va_arg(valist, size_t);
+            plaintext = va_arg(valist, uint8_t *);
+            size = va_arg(valist, size_t);
+            length = va_arg(valist, size_t*);
+            return psa_aead_decrypt(handle, alg, nonce, nonce_length, additional_data,
+                    additional_data_length, ciphertext, ciphertext_size, plaintext, size, length);
+        case PAL_CRYPTO_MAC_SIGN_SETUP:
+            mac_operation = va_arg(valist, psa_mac_operation_t*);
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            alg = va_arg(valist, psa_algorithm_t);
+            return psa_mac_sign_setup(mac_operation, handle, alg);
+        case PAL_CRYPTO_MAC_UPDATE:
+            mac_operation = va_arg(valist, psa_mac_operation_t*);
+            buffer = va_arg(valist, uint8_t*);
+            size = va_arg(valist, size_t);
+            return psa_mac_update(mac_operation, buffer, size);
+        case PAL_CRYPTO_MAC_SIGN_FINISH:
+            mac_operation = va_arg(valist, psa_mac_operation_t*);
+            buffer = va_arg(valist, uint8_t*);
+            size = va_arg(valist, size_t);
+            length = (size_t *)va_arg(valist, size_t*);
+            return psa_mac_sign_finish(mac_operation, buffer, size, length);
+        case PAL_CRYPTO_MAC_VERIFY_SETUP:
+            mac_operation = va_arg(valist, psa_mac_operation_t*);
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            alg = va_arg(valist, psa_algorithm_t);
+            return psa_mac_verify_setup(mac_operation, handle, alg);
+        case PAL_CRYPTO_MAC_VERIFY_FINISH:
+            mac_operation = va_arg(valist, psa_mac_operation_t*);
+            buffer = va_arg(valist, uint8_t*);
+            size = va_arg(valist, size_t);
+            return psa_mac_verify_finish(mac_operation, buffer, size);
+        case PAL_CRYPTO_MAC_ABORT:
+            mac_operation = va_arg(valist, psa_mac_operation_t*);
+            return psa_mac_abort(mac_operation);
+        case PAL_CRYPTO_ASYMMTERIC_ENCRYPT:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            alg = va_arg(valist, psa_algorithm_t);
+            plaintext = va_arg(valist, uint8_t *);
+            size = va_arg(valist, size_t);
+            salt = va_arg(valist, const uint8_t *);
+            salt_length = va_arg(valist, size_t);
+            ciphertext = va_arg(valist, uint8_t *);
+            ciphertext_size = va_arg(valist, size_t);
+            length = va_arg(valist, size_t*);
+            return psa_asymmetric_encrypt(handle, alg, plaintext, size, salt, salt_length,
+                    ciphertext, ciphertext_size, length);
+        case PAL_CRYPTO_ASYMMTERIC_DECRYPT:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            alg = va_arg(valist, psa_algorithm_t);
+            plaintext = va_arg(valist, uint8_t *);
+            size = va_arg(valist, size_t);
+            salt = va_arg(valist, const uint8_t *);
+            salt_length = va_arg(valist, size_t);
+            ciphertext = va_arg(valist, uint8_t *);
+            ciphertext_size = va_arg(valist, size_t);
+            length = va_arg(valist, size_t*);
+            return psa_asymmetric_decrypt(handle, alg, plaintext, size, salt, salt_length,
+                    ciphertext, ciphertext_size, length);
+        case PAL_CRYPTO_CIPHER_ENCRYPT_SETUP:
+            cipher_operation =  va_arg(valist, psa_cipher_operation_t *);
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            alg = va_arg(valist, psa_algorithm_t);
+            return psa_cipher_encrypt_setup(cipher_operation, handle, alg);
+        case PAL_CRYPTO_CIPHER_DECRYPT_SETUP:
+            cipher_operation =  va_arg(valist, psa_cipher_operation_t *);
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            alg = va_arg(valist, psa_algorithm_t);
+            return psa_cipher_decrypt_setup(cipher_operation, handle, alg);
+        case PAL_CRYPTO_CIPHER_GENERATE_IV:
+            cipher_operation =  va_arg(valist, psa_cipher_operation_t *);
+            buffer = va_arg(valist, uint8_t*);
+            size = va_arg(valist, size_t);
+            length = va_arg(valist, size_t*);
+            return psa_cipher_generate_iv(cipher_operation, buffer, size, length);
+        case PAL_CRYPTO_CIPHER_SET_IV:
+            cipher_operation =  va_arg(valist, psa_cipher_operation_t *);
+            buffer = va_arg(valist, uint8_t*);
+            size = va_arg(valist, size_t);
+            return psa_cipher_set_iv(cipher_operation, buffer, size);
+        case PAL_CRYPTO_CIPHER_UPDATE:
+            cipher_operation =  va_arg(valist, psa_cipher_operation_t *);
+            plaintext = va_arg(valist, uint8_t *);
+            size = va_arg(valist, size_t);
+            ciphertext = va_arg(valist, uint8_t *);
+            ciphertext_size = va_arg(valist, size_t);
+            length = va_arg(valist, size_t*);
+            return psa_cipher_update(cipher_operation, plaintext, size, ciphertext, ciphertext_size,
+                                     length);
+        case PAL_CRYPTO_CIPHER_FINISH:
+            cipher_operation =  va_arg(valist, psa_cipher_operation_t *);
+            ciphertext = va_arg(valist, uint8_t *);
+            ciphertext_size = va_arg(valist, size_t);
+            length = va_arg(valist, size_t*);
+            return psa_cipher_finish(cipher_operation, ciphertext, ciphertext_size, length);
+        case PAL_CRYPTO_CIPHER_ABORT:
+            cipher_operation =  va_arg(valist, psa_cipher_operation_t *);
+            return psa_cipher_abort(cipher_operation);
+        case PAL_CRYPTO_ASYMMTERIC_SIGN:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            alg = va_arg(valist, psa_algorithm_t);
+            buffer = va_arg(valist, uint8_t*);
+            size = va_arg(valist, size_t);
+            ciphertext = va_arg(valist, uint8_t *);
+            ciphertext_size = va_arg(valist, size_t);
+            length = va_arg(valist, size_t*);
+            return psa_asymmetric_sign(handle, alg, buffer, size, ciphertext, ciphertext_size,
+                                       length);
+        case PAL_CRYPTO_ASYMMTERIC_VERIFY:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            alg = va_arg(valist, psa_algorithm_t);
+            buffer = va_arg(valist, uint8_t*);
+            size = va_arg(valist, size_t);
+            ciphertext = va_arg(valist, uint8_t *);
+            ciphertext_size = va_arg(valist, size_t);
+            return psa_asymmetric_verify(handle, alg, buffer, size, ciphertext, ciphertext_size);
+        case PAL_CRYPTO_KEY_AGREEMENT:
+            generator = va_arg(valist, psa_crypto_generator_t*);
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            buffer = va_arg(valist, uint8_t*);
+            size = va_arg(valist, size_t);
+            alg = va_arg(valist, psa_algorithm_t);
+            return psa_key_agreement(generator, handle, buffer, size, alg);
+        case PAL_CRYPTO_ALLOCATE_KEY:
+            key_handle = (psa_key_handle_t *)va_arg(valist, int*);
+            return psa_allocate_key(key_handle);
+        case PAL_CRYPTO_COPY_KEY:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            target_handle = (psa_key_handle_t)va_arg(valist, int);
+            policy = va_arg(valist, psa_key_policy_t*);
+            return psa_copy_key(handle, target_handle, policy);
+        case PAL_CRYPTO_FREE:
+            for (i = 0; i < PAL_KEY_SLOT_COUNT; i++)
+                psa_destroy_key(i);
+            return 0;
+        default:
+            return PAL_STATUS_UNSUPPORTED_FUNC;
+    }
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_intf.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_intf.h
new file mode 100644
index 00000000..d1dabfa4
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/crypto/pal_crypto_intf.h
@@ -0,0 +1,76 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifndef _PAL_CRYPTO_H_
+#define _PAL_CRYPTO_H_
+
+#include "pal_common.h"
+
+enum crypto_function_code {
+    PAL_CRYPTO_INIT                     = 0x1,
+    PAL_CRYPTO_GENERATE_RANDOM          = 0x2,
+    PAL_CRYPTO_IMPORT_KEY               = 0x3,
+    PAL_CRYPTO_EXPORT_KEY               = 0x4,
+    PAL_CRYPTO_EXPORT_PUBLIC_KEY        = 0x5,
+    PAL_CRYPTO_DESTROY_KEY              = 0x6,
+    PAL_CRYPTO_GET_KEY_INFO             = 0x7,
+    PAL_CRYPTO_KEY_POLICY_INIT          = 0x8,
+    PAL_CRYPTO_KEY_POLICY_SET_USAGE     = 0x9,
+    PAL_CRYPTO_KEY_POLICY_GET_USAGE     = 0xA,
+    PAL_CRYPTO_KEY_POLICY_GET_ALGORITHM = 0xB,
+    PAL_CRYPTO_SET_KEY_POLICY           = 0xC,
+    PAL_CRYPTO_GET_KEY_POLICY           = 0xD,
+    PAL_CRYPTO_GET_KEY_INFORMATION      = 0xE,
+    PAL_CRYPTO_GET_KEY_LIFETIME         = 0xF,
+    PAL_CRYPTO_HASH_SETUP               = 0x11,
+    PAL_CRYPTO_HASH_UPDATE              = 0x12,
+    PAL_CRYPTO_HASH_VERIFY              = 0x13,
+    PAL_CRYPTO_HASH_FINISH              = 0x14,
+    PAL_CRYPTO_HASH_ABORT               = 0x15,
+    PAL_CRYPTO_GENERATE_KEY             = 0x16,
+    PAL_CRYPTO_GENERATOR_READ           = 0x17,
+    PAL_CRYPTO_KEY_DERIVATION           = 0x18,
+    PAL_CRYPTO_GET_GENERATOR_CAPACITY   = 0x19,
+    PAL_CRYPTO_GENERATOR_IMPORT_KEY     = 0x1A,
+    PAL_CRYPTO_GENERATOR_ABORT          = 0x1B,
+    PAL_CRYPTO_AEAD_ENCRYPT             = 0x1C,
+    PAL_CRYPTO_AEAD_DECRYPT             = 0x1D,
+    PAL_CRYPTO_MAC_SIGN_SETUP           = 0x1E,
+    PAL_CRYPTO_MAC_UPDATE               = 0x1F,
+    PAL_CRYPTO_MAC_SIGN_FINISH          = 0x20,
+    PAL_CRYPTO_MAC_VERIFY_SETUP         = 0x21,
+    PAL_CRYPTO_MAC_VERIFY_FINISH        = 0x22,
+    PAL_CRYPTO_MAC_ABORT                = 0x23,
+    PAL_CRYPTO_ASYMMTERIC_ENCRYPT       = 0x24,
+    PAL_CRYPTO_ASYMMTERIC_DECRYPT       = 0x25,
+    PAL_CRYPTO_CIPHER_ENCRYPT_SETUP     = 0x26,
+    PAL_CRYPTO_CIPHER_DECRYPT_SETUP     = 0x2A,
+    PAL_CRYPTO_CIPHER_GENERATE_IV       = 0x2B,
+    PAL_CRYPTO_CIPHER_SET_IV            = 0x2C,
+    PAL_CRYPTO_CIPHER_UPDATE            = 0x2D,
+    PAL_CRYPTO_CIPHER_FINISH            = 0x2E,
+    PAL_CRYPTO_CIPHER_ABORT             = 0x2F,
+    PAL_CRYPTO_ASYMMTERIC_SIGN          = 0x30,
+    PAL_CRYPTO_ASYMMTERIC_VERIFY        = 0x31,
+    PAL_CRYPTO_KEY_AGREEMENT            = 0x32,
+    PAL_CRYPTO_ALLOCATE_KEY             = 0x33,
+    PAL_CRYPTO_COPY_KEY                 = 0x34,
+    PAL_CRYPTO_FREE                     = 0xFE,
+};
+
+int32_t pal_crypto_function(int type, va_list valist);
+#endif /* _PAL_CRYPTO_H_ */
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_crypto.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_crypto.c
new file mode 100644
index 00000000..ae2bdba4
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_crypto.c
@@ -0,0 +1,346 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "pal_attestation_crypto.h"
+
+static uint32_t  public_key_registered = 0;
+
+static inline struct q_useful_buf_c useful_buf_head(struct q_useful_buf_c buf,
+                                                  size_t amount)
+{
+    return UsefulBuf_Head(buf, amount);
+}
+
+static uint32_t check_hash_sizes(void)
+{
+    if (T_COSE_CRYPTO_SHA256_SIZE != PSA_HASH_SIZE(PSA_ALG_SHA_256))
+    {
+        return PAL_ATTEST_HASH_FAIL;
+    }
+
+    return PAL_ATTEST_SUCCESS;
+}
+
+static psa_ecc_curve_t attest_map_elliptic_curve_type(int32_t cose_curve)
+{
+    psa_ecc_curve_t psa_curve;
+
+    /*FixMe: Mapping is not complete, missing ones: P384, P521, ED25519, ED448 */
+    switch (cose_curve)
+    {
+    case P_256:
+        psa_curve = PSA_ECC_CURVE_SECP256R1;
+        break;
+    default:
+        psa_curve = USHRT_MAX;
+    }
+
+    return psa_curve;
+}
+
+static psa_algorithm_t cose_hash_alg_id_to_psa(int32_t cose_hash_alg_id)
+{
+    psa_algorithm_t status;
+
+    switch (cose_hash_alg_id)
+    {
+    case COSE_ALG_SHA256_PROPRIETARY:
+        status = PSA_ALG_SHA_256;
+        break;
+    default:
+        status = PSA_ALG_MD4;
+        break;
+    }
+
+    return status;
+}
+
+static int32_t hash_alg_id_from_sig_alg_id(int32_t cose_sig_alg_id)
+{
+    switch (cose_sig_alg_id)
+    {
+        case COSE_ALGORITHM_ES256:
+            return COSE_ALG_SHA256_PROPRIETARY;
+        default:
+            return INT32_MAX;
+    }
+}
+
+int32_t pal_cose_crypto_hash_start(struct pal_cose_crypto_hash *hash_ctx, int32_t cose_hash_alg_id)
+{
+    int32_t                          cose_ret = PAL_ATTEST_SUCCESS;
+    psa_status_t                     psa_ret;
+    struct pal_cose_psa_crypto_hash *psa_hash_ctx;
+
+    cose_ret = check_hash_sizes();
+    if (cose_ret)
+    {
+        goto error;
+    }
+
+    if (sizeof(struct pal_cose_crypto_hash) < sizeof(struct pal_cose_psa_crypto_hash))
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+        goto error;
+    }
+
+    psa_hash_ctx = (struct pal_cose_psa_crypto_hash *)hash_ctx;
+    psa_ret = psa_hash_setup(&psa_hash_ctx->operation, cose_hash_alg_id_to_psa(cose_hash_alg_id));
+
+    if (psa_ret == PAL_ATTEST_SUCCESS)
+    {
+        psa_hash_ctx->status = PAL_ATTEST_SUCCESS;
+        cose_ret = PAL_ATTEST_SUCCESS;
+    }
+    else if (psa_ret == PSA_ERROR_NOT_SUPPORTED)
+    {
+        cose_ret = PAL_ATTEST_HASH_UNSUPPORTED;
+    }
+    else
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+    }
+
+error:
+    return cose_ret;
+}
+
+void pal_cose_crypto_hash_update(struct pal_cose_crypto_hash *hash_ctx,
+                                 struct q_useful_buf_c data_to_hash)
+{
+    struct pal_cose_psa_crypto_hash *psa_hash_ctx;
+
+    if (sizeof(struct pal_cose_crypto_hash) < sizeof(struct pal_cose_psa_crypto_hash))
+    {
+        return;
+    }
+
+    psa_hash_ctx = (struct pal_cose_psa_crypto_hash *)hash_ctx;
+
+    if (psa_hash_ctx->status == PAL_ATTEST_SUCCESS)
+    {
+        if (data_to_hash.ptr != NULL)
+        {
+            psa_hash_ctx->status = psa_hash_update(&psa_hash_ctx->operation,
+                                                   data_to_hash.ptr,
+                                                   data_to_hash.len);
+        }
+        else
+        {
+            /* Intentionally do nothing, just computing the size of the token */
+        }
+    }
+}
+
+int32_t pal_cose_crypto_hash_finish(struct pal_cose_crypto_hash *hash_ctx,
+                                    struct q_useful_buf buffer_to_hold_result,
+                                    struct q_useful_buf_c *hash_result)
+{
+    uint32_t                         cose_ret = PAL_ATTEST_SUCCESS;
+    psa_status_t                     psa_ret;
+    struct pal_cose_psa_crypto_hash *psa_hash_ctx;
+
+    if (sizeof(struct pal_cose_crypto_hash) < sizeof(struct pal_cose_psa_crypto_hash))
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+        goto error;
+    }
+
+    psa_hash_ctx = (struct pal_cose_psa_crypto_hash *)hash_ctx;
+
+    if (psa_hash_ctx->status == PAL_ATTEST_SUCCESS)
+    {
+        psa_ret = psa_hash_finish(&psa_hash_ctx->operation,
+                                  buffer_to_hold_result.ptr,
+                                  buffer_to_hold_result.len,
+                                  &(hash_result->len));
+
+        if (psa_ret == PAL_ATTEST_SUCCESS)
+        {
+            hash_result->ptr = buffer_to_hold_result.ptr;
+            cose_ret = 0;
+        }
+        else if (psa_ret == PSA_ERROR_BUFFER_TOO_SMALL)
+        {
+            cose_ret = PAL_ATTEST_HASH_BUFFER_SIZE;
+        }
+        else
+        {
+            cose_ret = PAL_ATTEST_HASH_FAIL;
+        }
+    }
+    else
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+    }
+
+error:
+    return cose_ret;
+}
+
+int pal_create_sha256(struct q_useful_buf_c bytes_to_hash, struct q_useful_buf buffer_for_hash,
+                      struct q_useful_buf_c *hash)
+{
+    uint32_t                      status = PAL_ATTEST_SUCCESS;
+    struct pal_cose_crypto_hash   hash_ctx;
+
+    status = pal_cose_crypto_hash_start(&hash_ctx, COSE_ALG_SHA256_PROPRIETARY);
+    if (status)
+        return status;
+
+    pal_cose_crypto_hash_update(&hash_ctx, bytes_to_hash);
+    status = pal_cose_crypto_hash_finish(&hash_ctx, buffer_for_hash, hash);
+
+    return status;
+}
+
+uint32_t pal_compute_hash(int32_t cose_alg_id, struct q_useful_buf buffer_for_hash,
+                          struct q_useful_buf_c *hash, struct q_useful_buf_c protected_headers,
+                          struct q_useful_buf_c payload)
+{
+    uint32_t                    status;
+    QCBOREncodeContext          cbor_encode_ctx;
+    struct q_useful_buf_c       tbs_first_part;
+    QCBORError                  qcbor_result;
+    struct pal_cose_crypto_hash hash_ctx = {{0}};
+    int32_t                     hash_alg_id;
+    UsefulBuf_MAKE_STACK_UB    (buffer_for_TBS_first_part, T_COSE_SIZE_OF_TBS);
+
+    /* This builds the CBOR-format to-be-signed bytes */
+    QCBOREncode_Init(&cbor_encode_ctx, buffer_for_TBS_first_part);
+    QCBOREncode_OpenArray(&cbor_encode_ctx);
+    /* context */
+    QCBOREncode_AddSZString(&cbor_encode_ctx,
+                            COSE_SIG_CONTEXT_STRING_SIGNATURE1);
+    /* body_protected */
+    QCBOREncode_AddBytes(&cbor_encode_ctx,
+                         protected_headers);
+    /* sign_protected */
+    QCBOREncode_AddBytes(&cbor_encode_ctx, NULL_USEFUL_BUF_C);
+    /* external_aad */
+    QCBOREncode_AddBytes(&cbor_encode_ctx, NULL_USEFUL_BUF_C);
+    /* fake payload */
+    QCBOREncode_AddBytes(&cbor_encode_ctx, NULL_USEFUL_BUF_C);
+    QCBOREncode_CloseArray(&cbor_encode_ctx);
+
+    /* Get the result and convert it to struct q_useful_buf_c representation */
+    qcbor_result = QCBOREncode_Finish(&cbor_encode_ctx, &tbs_first_part);
+    if (qcbor_result)
+    {
+        /* Mainly means that the protected_headers were too big
+         (which should never happen) */
+        status = PAL_ATTEST_ERR_SIGN_STRUCT;
+        goto Done;
+    }
+
+    /* Start the hashing */
+    hash_alg_id = hash_alg_id_from_sig_alg_id(cose_alg_id);
+
+    /* Don't check hash_alg_id for failure. pal_cose_crypto_hash_start()
+     * will handle it properly
+     */
+    status = pal_cose_crypto_hash_start(&hash_ctx, hash_alg_id);
+    if (status)
+        goto Done;
+
+    /* Hash the first part of the TBS. Take all but the last two
+     * bytes. The last two bytes are the fake payload from above. It
+     * is replaced by the real payload which is hashed next. The fake
+     * payload is needed so the array count is right. This is one of
+     * the main things that make it possible to implement with one
+     * buffer for the whole cose sign1.
+     */
+    pal_cose_crypto_hash_update(&hash_ctx, useful_buf_head(tbs_first_part,
+                                              tbs_first_part.len - 2));
+
+    /* Hash the payload */
+    pal_cose_crypto_hash_update(&hash_ctx, payload);
+
+    /* Finish the hash and set up to return it */
+    status = pal_cose_crypto_hash_finish(&hash_ctx,
+                                             buffer_for_hash,
+                                             hash);
+
+Done:
+    return status;
+}
+
+uint32_t pal_import_attest_key(int32_t alg)
+{
+    psa_key_type_t   attest_key_type;
+    size_t           public_key_size;
+    psa_status_t     status = PSA_SUCCESS;
+    psa_key_policy_t policy;
+    psa_ecc_curve_t  psa_curve;
+    psa_key_handle_t public_key_handle;
+
+    /* Mapping of COSE curve type to PSA curve types */
+    psa_curve = attest_map_elliptic_curve_type(P_256);
+    if (psa_curve == USHRT_MAX)
+        return PAL_ATTEST_ERROR;
+
+    /* Setup the key policy for public key */
+    policy = psa_key_policy_init();
+    psa_key_policy_set_usage(&policy, PSA_KEY_USAGE_VERIFY, alg);
+
+    status = psa_allocate_key(&public_key_handle);
+    if (status != PSA_SUCCESS)
+        return status;
+
+    status = psa_set_key_policy(public_key_handle, &policy);
+    if (status != PSA_SUCCESS)
+        return status;
+
+    attest_key_type = PSA_KEY_TYPE_ECC_PUBLIC_KEY(psa_curve);
+
+    /* Register public key to crypto service */
+    public_key_size = attest_key.pubx_key_size + attest_key.puby_key_size;
+
+    status = psa_import_key(public_key_handle,
+                                attest_key_type,
+                                (const uint8_t *)&attest_public_key,
+                                public_key_size + 1);
+
+    return status;
+}
+
+
+uint32_t pal_crypto_pub_key_verify(int32_t cose_algorithm_id,
+                                   struct q_useful_buf_c token_hash,
+                                   struct q_useful_buf_c signature)
+{
+    uint32_t status = PAL_ATTEST_SUCCESS;
+
+    if (!public_key_registered)
+    {
+        status = pal_import_attest_key(cose_algorithm_id);
+        if (status != PAL_ATTEST_SUCCESS)
+            return status;
+
+        public_key_registered = 1;
+    }
+
+/*
+ * Enable the verify function when Trusted Firmare - M Supports
+
+ *  Verify the signature a hash or short message using a public key.
+    status = psa_asymmetric_verify(public_key_handle,
+                                    cose_algorithm_id, token_hash.ptr, token_hash.len,
+                                    signature.ptr, signature.len);
+*/
+    return status;
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_crypto.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_crypto.h
new file mode 100644
index 00000000..2d63ad13
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_crypto.h
@@ -0,0 +1,102 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "pal_common.h"
+#include "pal_attestation_eat.h"
+
+#define ATTEST_PUBLIC_KEY_SLOT            4
+
+typedef struct{
+    uint8_t  *pubx_key;
+    uint32_t  pubx_key_size;
+    uint8_t  *puby_key;
+    uint32_t  puby_key_size;
+} ecc_key_t;
+
+struct ecc_public_key_t {
+    const uint8_t a;
+    uint8_t public_key[]; /* X-coordinate || Y-coordinate */
+};
+
+static const struct ecc_public_key_t attest_public_key = {
+     /* Constant byte */
+     0x04,
+     /* X-coordinate */
+     {0x79, 0xEB, 0xA9, 0x0E, 0x8B, 0xF4, 0x50, 0xA6,
+      0x75, 0x15, 0x76, 0xAD, 0x45, 0x99, 0xB0, 0x7A,
+      0xDF, 0x93, 0x8D, 0xA3, 0xBB, 0x0B, 0xD1, 0x7D,
+      0x00, 0x36, 0xED, 0x49, 0xA2, 0xD0, 0xFC, 0x3F,
+     /* Y-coordinate */
+      0xBF, 0xCD, 0xFA, 0x89, 0x56, 0xB5, 0x68, 0xBF,
+      0xDB, 0x86, 0x73, 0xE6, 0x48, 0xD8, 0xB5, 0x8D,
+      0x92, 0x99, 0x55, 0xB1, 0x4A, 0x26, 0xC3, 0x08,
+      0x0F, 0x34, 0x11, 0x7D, 0x97, 0x1D, 0x68, 0x64},
+};
+
+struct pal_cose_crypto_hash {
+    /* Can't put the actual size here without creating dependecy on
+     * actual hash implementation, so this is a fairly large and
+     * accommodating size.
+     */
+    uint8_t bytes[128];
+};
+
+struct pal_cose_psa_crypto_hash {
+    psa_status_t         status;
+    psa_hash_operation_t operation;
+};
+
+static const uint8_t initial_attestation_public_x_key[] =
+{
+    0x79, 0xEB, 0xA9, 0x0E, 0x8B, 0xF4, 0x50, 0xA6,
+    0x75, 0x15, 0x76, 0xAD, 0x45, 0x99, 0xB0, 0x7A,
+    0xDF, 0x93, 0x8D, 0xA3, 0xBB, 0x0B, 0xD1, 0x7D,
+    0x00, 0x36, 0xED, 0x49, 0xA2, 0xD0, 0xFC, 0x3F
+};
+
+static const uint8_t initial_attestation_public_y_key[] =
+{
+    0xBF, 0xCD, 0xFA, 0x89, 0x56, 0xB5, 0x68, 0xBF,
+    0xDB, 0x86, 0x73, 0xE6, 0x48, 0xD8, 0xB5, 0x8D,
+    0x92, 0x99, 0x55, 0xB1, 0x4A, 0x26, 0xC3, 0x08,
+    0x0F, 0x34, 0x11, 0x7D, 0x97, 0x1D, 0x68, 0x64
+};
+
+/* Initialize the structure with given public key */
+static const ecc_key_t attest_key = {
+        (uint8_t *)initial_attestation_public_x_key,
+        sizeof(initial_attestation_public_x_key),
+        (uint8_t *)initial_attestation_public_y_key,
+        sizeof(initial_attestation_public_y_key)
+};
+
+int32_t pal_cose_crypto_hash_start(struct pal_cose_crypto_hash *hash_ctx, int32_t cose_hash_alg_id);
+void pal_cose_crypto_hash_update(struct pal_cose_crypto_hash *hash_ctx,
+                                 struct q_useful_buf_c data_to_hash);
+int32_t pal_cose_crypto_hash_finish(struct pal_cose_crypto_hash *hash_ctx,
+                                    struct q_useful_buf buffer_to_hold_result,
+                                    struct q_useful_buf_c *hash_result);
+int pal_create_sha256(struct q_useful_buf_c bytes_to_hash, struct q_useful_buf buffer_for_hash,
+                      struct q_useful_buf_c *hash);
+uint32_t pal_compute_hash(int32_t cose_alg_id, struct q_useful_buf buffer_for_hash,
+                          struct q_useful_buf_c *hash, struct q_useful_buf_c protected_headers,
+                          struct q_useful_buf_c payload);
+uint32_t pal_import_attest_key(int32_t alg);
+uint32_t pal_crypto_pub_key_verify(int32_t cose_algorithm_id, struct q_useful_buf_c token_hash,
+                                   struct q_useful_buf_c signature);
+
+
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_eat.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_eat.c
new file mode 100644
index 00000000..178fdc9c
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_eat.c
@@ -0,0 +1,491 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "pal_attestation_crypto.h"
+
+uint32_t    mandatory_claims = 0;
+uint32_t    mandaroty_sw_components = 0;
+bool_t      sw_component_present = 0;
+
+static int pal_encode_cose_key(struct q_useful_buf_c *cose_key,
+                               struct q_useful_buf buffer_for_cose_key,
+                               struct q_useful_buf_c x_cord, struct q_useful_buf_c y_cord)
+{
+    uint32_t                  return_value;
+    QCBORError                qcbor_result;
+    QCBOREncodeContext        cbor_encode_ctx;
+    int32_t                   cose_curve_id = P_256;
+    struct q_useful_buf_c       encoded_key_id;
+
+    /* Get the public key x and y */
+    /* Encode it into a COSE_Key structure */
+    QCBOREncode_Init(&cbor_encode_ctx, buffer_for_cose_key);
+    QCBOREncode_OpenMap(&cbor_encode_ctx);
+    QCBOREncode_AddInt64ToMapN(&cbor_encode_ctx,
+                               COSE_KEY_COMMON_KTY,
+                               COSE_KEY_TYPE_EC2);
+    QCBOREncode_AddInt64ToMapN(&cbor_encode_ctx,
+                               COSE_KEY_PARAM_CRV,
+                               cose_curve_id);
+    QCBOREncode_AddBytesToMapN(&cbor_encode_ctx,
+                               COSE_KEY_PARAM_X_COORDINATE,
+                               x_cord);
+    QCBOREncode_AddBytesToMapN(&cbor_encode_ctx,
+                               COSE_KEY_PARAM_Y_COORDINATE,
+                               y_cord);
+    QCBOREncode_CloseMap(&cbor_encode_ctx);
+
+    qcbor_result = QCBOREncode_Finish(&cbor_encode_ctx, &encoded_key_id);
+    if (qcbor_result != QCBOR_SUCCESS)
+    {
+        /* Mainly means that the COSE_Key was too big for buffer_for_cose_key */
+        return_value = PAL_ATTEST_ERR_PROTECTED_HEADERS;
+        goto Done;
+    }
+
+    /* Finish up and return */
+    *cose_key = encoded_key_id;
+    return_value = PAL_ATTEST_SUCCESS;
+
+Done:
+    return return_value;
+}
+
+
+static int get_items_in_map(QCBORDecodeContext *decode_context,
+                            struct items_to_get_t *item_list)
+{
+    int                     item_index;
+    QCBORItem               item;
+    struct items_to_get_t  *item_ptr = item_list;
+
+    /* initialize the data type of all items in the list */
+    while (item_ptr->label != 0)
+    {
+        item_ptr->item.uDataType = QCBOR_TYPE_NONE;
+        item_ptr++;
+    }
+
+    QCBORDecode_GetNext(decode_context, &item);
+    if (item.uDataType != QCBOR_TYPE_MAP)
+    {
+        return PAL_ATTEST_ERROR;
+    }
+
+    for (item_index = item.val.uCount; item_index != 0; item_index--)
+    {
+        if (QCBORDecode_GetNext(decode_context, &item) != QCBOR_SUCCESS)
+        {
+            return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+        }
+        if (item.uLabelType != QCBOR_TYPE_INT64)
+        {
+            continue;
+        }
+
+        item_ptr = item_list;
+        while (item_ptr->label != 0)
+        {
+            if (item.label.int64 == item_ptr->label)
+            {
+                item_ptr->item = item;
+            }
+            item_ptr++;
+        }
+    }
+
+    return PAL_ATTEST_SUCCESS;
+}
+
+static int get_item_in_map(QCBORDecodeContext *decode_context,
+                           int32_t label,
+                           QCBORItem *item)
+{
+    struct items_to_get_t   item_list[2];
+
+    item_list[0].label = label;
+    item_list[1].label = 0;
+
+    if (get_items_in_map(decode_context, item_list))
+    {
+        return PAL_ATTEST_ERROR;
+    }
+
+    if (item_list[0].item.uDataType == QCBOR_TYPE_NONE)
+    {
+        return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+    }
+
+    *item = item_list[0].item;
+
+    return PAL_ATTEST_SUCCESS;
+}
+
+static int parse_unprotected_headers(QCBORDecodeContext *decode_context,
+                                     struct q_useful_buf_c *child,
+                                     bool *loop_back)
+{
+    struct items_to_get_t   item_list[3];
+
+    item_list[0].label = COSE_HEADER_PARAM_KID;
+    item_list[1].label = T_COSE_SHORT_CIRCUIT_LABEL;
+    item_list[2].label = 0;
+    *loop_back = false;
+
+    if (get_items_in_map(decode_context, item_list))
+    {
+        return PAL_ATTEST_ERROR;
+    }
+
+    if (item_list[1].item.uDataType == QCBOR_TYPE_TRUE)
+    {
+        *loop_back = true;
+    }
+
+    if (item_list[0].item.uDataType != QCBOR_TYPE_BYTE_STRING)
+    {
+        return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+    }
+
+    *child = item_list[0].item.val.string;
+
+    return PAL_ATTEST_SUCCESS;
+}
+
+static int parse_protected_headers(struct q_useful_buf_c protected_headers,
+                                   int32_t *alg_id)
+{
+    QCBORDecodeContext  decode_context;
+    QCBORItem           item;
+
+    QCBORDecode_Init(&decode_context, protected_headers, 0);
+
+    if (get_item_in_map(&decode_context, COSE_HEADER_PARAM_ALG, &item))
+    {
+        return PAL_ATTEST_ERROR;
+    }
+
+    if (QCBORDecode_Finish(&decode_context))
+    {
+        return PAL_ATTEST_ERROR;
+    }
+
+    if ((item.uDataType != QCBOR_TYPE_INT64) || (item.val.int64 > INT32_MAX))
+    {
+        return PAL_ATTEST_ERROR;
+    }
+
+    *alg_id = (int32_t)item.val.int64;
+
+    return PAL_ATTEST_SUCCESS;
+}
+
+/**
+    @brief    - This API will verify the claims
+    @param    - decode_context      : The buffer containing the challenge
+                item                : context for decoding the data items
+                completed_challenge : Buffer containing the challenge
+    @return   - error status
+**/
+static int parse_claims(QCBORDecodeContext *decode_context, QCBORItem item,
+                                   struct q_useful_buf_c completed_challenge)
+{
+    int i, count = 0;
+    int status = PAL_ATTEST_SUCCESS;
+
+    /* Parse each claim and validate their data type */
+    while (status == PAL_ATTEST_SUCCESS)
+    {
+        status = QCBORDecode_GetNext(decode_context, &item);
+        if (status != PAL_ATTEST_SUCCESS)
+            break;
+
+        mandatory_claims |= 1 << (EAT_CBOR_ARM_RANGE_BASE - item.label.int64);
+        if (item.uLabelType == QCBOR_TYPE_INT64)
+        {
+            if (item.label.int64 == EAT_CBOR_ARM_LABEL_NONCE)
+            {
+                if (item.uDataType == QCBOR_TYPE_BYTE_STRING)
+                {
+                    /* Given challenge vs challenge in token */
+                    if (UsefulBuf_Compare(item.val.string, completed_challenge))
+                        return PAL_ATTEST_TOKEN_CHALLENGE_MISMATCH;
+                }
+                else
+                    return PAL_ATTEST_TOKEN_NOT_SUPPORTED;
+            }
+            else if (item.label.int64 == EAT_CBOR_ARM_LABEL_BOOT_SEED ||
+                     item.label.int64 == EAT_CBOR_ARM_LABEL_IMPLEMENTATION_ID ||
+                     item.label.int64 == EAT_CBOR_ARM_LABEL_UEID)
+            {
+                if (item.uDataType != QCBOR_TYPE_BYTE_STRING)
+                    return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+            }
+            else if (item.label.int64 == EAT_CBOR_ARM_LABEL_ORIGINATION ||
+                     item.label.int64 == EAT_CBOR_ARM_LABEL_PROFILE_DEFINITION ||
+                     item.label.int64 == EAT_CBOR_ARM_LABEL_HW_VERSION)
+            {
+                if (item.uDataType != QCBOR_TYPE_TEXT_STRING)
+                    return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+            }
+            else if (item.label.int64 == EAT_CBOR_ARM_LABEL_CLIENT_ID ||
+                     item.label.int64 == EAT_CBOR_ARM_LABEL_SECURITY_LIFECYCLE)
+            {
+                if (item.uDataType != QCBOR_TYPE_INT64)
+                    return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+            }
+            else if (item.label.int64 == EAT_CBOR_ARM_LABEL_SW_COMPONENTS)
+            {
+                if (item.uDataType != QCBOR_TYPE_ARRAY)
+                    return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+
+                sw_component_present = 1;
+                status = QCBORDecode_GetNext(decode_context, &item);
+                if (status != PAL_ATTEST_SUCCESS)
+                    continue;
+
+                count = item.val.uCount;
+                for (i = 0; i <= count; i++)
+                {
+                    mandaroty_sw_components |= 1 << item.label.int64;
+
+                    if (item.label.int64 == EAT_CBOR_SW_COMPONENT_MEASUREMENT)
+                    {
+                         if (item.uDataType != QCBOR_TYPE_BYTE_STRING)
+                            return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+                    }
+                    else if (item.label.int64 == EAT_CBOR_SW_COMPONENT_MEASUREMENT_DESC)
+                    {
+                        if (item.uDataType != QCBOR_TYPE_TEXT_STRING)
+                            return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+                    }
+                    else if (item.label.int64 == EAT_CBOR_SW_COMPONENT_VERSION)
+                    {
+                        if (item.uDataType != QCBOR_TYPE_TEXT_STRING)
+                            return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+                    }
+                    else if (item.label.int64 == EAT_CBOR_SW_COMPONENT_SIGNER_ID)
+                    {
+                        if (item.uDataType != QCBOR_TYPE_BYTE_STRING)
+                            return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+                    }
+                    else if (item.label.int64 == EAT_CBOR_SW_COMPONENT_EPOCH)
+                    {
+                        if (item.uDataType != QCBOR_TYPE_INT64)
+                            return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+                    }
+                    else if (item.label.int64 == EAT_CBOR_SW_COMPONENT_TYPE)
+                    {
+                        if (item.uDataType != QCBOR_TYPE_TEXT_STRING)
+                            return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+                    }
+
+                    if (i < count)
+                    {
+                        status = QCBORDecode_GetNext(decode_context, &item);
+                        if (status != PAL_ATTEST_SUCCESS)
+                            return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+                    }
+                }
+
+            }
+        }
+        else
+        {
+            /* ToDo: Add other claim types */
+        }
+    }
+
+    if (status == QCBOR_ERR_HIT_END)
+        return PAL_ATTEST_SUCCESS;
+    else
+        return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+}
+
+/**
+    @brief    - This API will verify the attestation token
+    @param    - challenge       : The buffer containing the challenge
+                challenge_size  : Size of the challenge buffer
+                token           : The buffer containing the attestation token
+                token_size      : Size of the token buffer
+    @return   - error status
+**/
+int32_t pal_initial_attest_verify_token(uint8_t *challenge, uint32_t challenge_size,
+                                        uint8_t *token, uint32_t token_size)
+{
+    int32_t             status = PAL_ATTEST_SUCCESS;
+    bool                short_circuit;
+    int32_t             cose_algorithm_id;
+    QCBORItem           item;
+    QCBORDecodeContext  decode_context;
+    struct q_useful_buf_c completed_challenge;
+    struct q_useful_buf_c completed_token;
+    struct q_useful_buf_c payload;
+    struct q_useful_buf_c signature;
+    struct q_useful_buf_c protected_headers;
+    struct q_useful_buf_c kid;
+    struct q_useful_buf_c x_cord;
+    struct q_useful_buf_c y_cord;
+    struct q_useful_buf_c cose_key_to_hash;
+    struct q_useful_buf_c key_hash;
+    struct q_useful_buf_c token_hash;
+    USEFUL_BUF_MAKE_STACK_UB(buf_to_hold_x_coord, T_COSE_CRYPTO_EC_P256_COORD_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buf_to_hold_y_coord, T_COSE_CRYPTO_EC_P256_COORD_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_kid, T_COSE_CRYPTO_SHA256_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_cose_key, MAX_ENCODED_COSE_KEY_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_encoded_key, MAX_ENCODED_COSE_KEY_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_token_hash, T_COSE_CRYPTO_SHA256_SIZE);
+
+    kid.ptr = buffer_for_encoded_key.ptr;
+
+    memcpy(buf_to_hold_x_coord.ptr, (const void *)attest_key.pubx_key, attest_key.pubx_key_size);
+    memcpy(buf_to_hold_y_coord.ptr, (const void *)attest_key.puby_key, attest_key.puby_key_size);
+
+    /* Update size */
+    buf_to_hold_x_coord.len = attest_key.pubx_key_size;
+    buf_to_hold_y_coord.len = attest_key.puby_key_size;
+
+    x_cord.ptr = buf_to_hold_x_coord.ptr;
+    x_cord.len = buf_to_hold_x_coord.len;
+    y_cord.ptr = buf_to_hold_y_coord.ptr;
+    y_cord.len = buf_to_hold_y_coord.len;
+
+    /* Construct the token buffer for validation */
+    completed_token.ptr = token;
+    completed_token.len = token_size;
+
+    /* Construct the challenge buffer for validation */
+    completed_challenge.ptr = challenge;
+    completed_challenge.len = challenge_size;
+
+/*
+    -------------------------
+    |  CBOR Array Type      |
+    -------------------------
+    |  Protected Headers    |
+    -------------------------
+    |  Unprotected Headers  |
+    -------------------------
+    |  Payload              |
+    -------------------------
+    |  Signature            |
+    -------------------------
+*/
+
+    /* Initialize the decorder */
+    QCBORDecode_Init(&decode_context, completed_token, QCBOR_DECODE_MODE_NORMAL);
+
+    /* Get the Header */
+    QCBORDecode_GetNext(&decode_context, &item);
+
+    /* Check the CBOR Array type. Check if the count is 4.
+     * Only COSE_SIGN1 is supported now.
+     */
+    if (item.uDataType != QCBOR_TYPE_ARRAY || item.val.uCount != 4 ||
+       !QCBORDecode_IsTagged(&decode_context, &item, CBOR_TAG_COSE_SIGN1))
+        return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+
+    /* Get the next headers */
+    QCBORDecode_GetNext(&decode_context, &item);
+    if (item.uDataType != QCBOR_TYPE_BYTE_STRING)
+        return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+
+    protected_headers = item.val.string;
+
+    /* Parse the protected headers and check the data type and value*/
+    status = parse_protected_headers(protected_headers, &cose_algorithm_id);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
+    /* Parse the unprotected headers and check the data type and value */
+    short_circuit = false;
+    status = parse_unprotected_headers(&decode_context, &kid, &short_circuit);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
+    /* Encode the given public key */
+    status = pal_encode_cose_key(&cose_key_to_hash, buffer_for_cose_key, x_cord, y_cord);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
+    /* Create hash of the given public key */
+    status = pal_create_sha256(cose_key_to_hash, buffer_for_kid, &key_hash);
+    if (status != PSA_SUCCESS)
+        return status;
+
+    /* Compare the hash of the public key in token and hash of the given public key */
+    if (kid.len != key_hash.len)
+    {
+        return PAL_ATTEST_HASH_LENGTH_MISMATCH;
+    }
+
+    if (memcmp(kid.ptr, key_hash.ptr, kid.len) != 0)
+    {
+        return PAL_ATTEST_HASH_MISMATCH;
+    }
+
+    /* Get the payload */
+    QCBORDecode_GetNext(&decode_context, &item);
+    if (item.uDataType != QCBOR_TYPE_BYTE_STRING)
+        return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+
+    payload = item.val.string;
+
+    /* Get the digital signature */
+    QCBORDecode_GetNext(&decode_context, &item);
+    if (item.uDataType != QCBOR_TYPE_BYTE_STRING)
+        return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+
+    signature = item.val.string;
+
+    /* Compute the hash from the token */
+    status = pal_compute_hash(cose_algorithm_id, buffer_for_token_hash, &token_hash,
+                              protected_headers, payload);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
+    /* Verify the signature */
+    status = pal_crypto_pub_key_verify(cose_algorithm_id, token_hash, signature);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
+    /* Initialize the Decoder and validate the payload format */
+    QCBORDecode_Init(&decode_context, payload, QCBOR_DECODE_MODE_NORMAL);
+    status = QCBORDecode_GetNext(&decode_context, &item);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
+    if (item.uDataType != QCBOR_TYPE_MAP)
+        return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
+
+    /* Parse the payload and check the data type of each claim */
+    status = parse_claims(&decode_context, item, completed_challenge);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
+    if ((mandatory_claims & MANDATORY_CLAIM_WITH_SW_COMP) == MANDATORY_CLAIM_WITH_SW_COMP)
+    {
+        if ((mandaroty_sw_components & MANDATORY_SW_COMP) != MANDATORY_SW_COMP)
+            return PAL_ATTEST_TOKEN_NOT_ALL_MANDATORY_CLAIMS;
+    }
+    else if ((mandatory_claims & MANDATORY_CLAIM_NO_SW_COMP) != MANDATORY_CLAIM_NO_SW_COMP)
+    {
+        return PAL_ATTEST_TOKEN_NOT_ALL_MANDATORY_CLAIMS;
+    }
+
+    return PAL_ATTEST_SUCCESS;
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_eat.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_eat.h
new file mode 100644
index 00000000..8a0c5455
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_eat.h
@@ -0,0 +1,170 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "qcbor.h"
+#include "pal_common.h"
+#include "psa/crypto.h"
+
+#define PAL_ATTEST_MIN_ERROR              30
+
+/* NIST P-256 also known as secp256r1 */
+#define P_256                             1
+
+#define COSE_HEADER_PARAM_ALG             1
+#define COSE_HEADER_PARAM_KID             4
+
+#define COSE_KEY_COMMON_KTY               1
+#define COSE_KEY_TYPE_EC2                 2
+#define COSE_KEY_PARAM_CRV               -1
+#define COSE_KEY_PARAM_X_COORDINATE      -2
+#define COSE_KEY_PARAM_Y_COORDINATE      -3
+#define COSE_ALGORITHM_ES256             -7
+#define COSE_ALG_SHA256_PROPRIETARY      -72000
+
+/**
+ * The size of X and Y coordinate in 2 parameter style EC public
+ * key. Format is as defined in [COSE (RFC 8152)]
+ * (https://tools.ietf.org/html/rfc8152) and [SEC 1: Elliptic Curve
+ * Cryptography](http://www.secg.org/sec1-v2.pdf).
+ *
+ * This size is well-known and documented in public standards.
+ */
+#define T_COSE_CRYPTO_EC_P256_COORD_SIZE  32
+#define T_COSE_CRYPTO_SHA256_SIZE         32
+
+#define MAX_ENCODED_COSE_KEY_SIZE \
+    1 + /* 1 byte to encode map */ \
+    2 + /* 2 bytes to encode key type */ \
+    2 + /* 2 bytes to encode curve */ \
+    2 * /* the X and Y coordinates at 32 bytes each */ \
+        (T_COSE_CRYPTO_EC_P256_COORD_SIZE + 1 + 2)
+#define USEFUL_BUF_MAKE_STACK_UB UsefulBuf_MAKE_STACK_UB
+
+#define COSE_SIG_CONTEXT_STRING_SIGNATURE1 "Signature1"
+
+/* Private value. Intentionally not documented for Doxygen.
+ * This is the size allocated for the encoded protected headers.  It
+ * needs to be big enough for make_protected_header() to succeed. It
+ * currently sized for one header with an algorithm ID up to 32 bits
+ * long -- one byte for the wrapping map, one byte for the label, 5
+ * bytes for the ID. If this is made accidentially too small, QCBOR will
+ * only return an error, and not overrun any buffers.
+ *
+ * 9 extra bytes are added, rounding it up to 16 total, in case some
+ * other protected header is to be added.
+ */
+#define T_COSE_SIGN1_MAX_PROT_HEADER (1+1+5+9)
+
+/**
+ * This is the size of the first part of the CBOR encoded TBS
+ * bytes. It is around 20 bytes. See create_tbs_hash().
+ */
+#define T_COSE_SIZE_OF_TBS \
+    1 + /* For opening the array */ \
+    sizeof(COSE_SIG_CONTEXT_STRING_SIGNATURE1) + /* "Signature1" */ \
+    2 + /* Overhead for encoding string */ \
+    T_COSE_SIGN1_MAX_PROT_HEADER + /* entire protected headers */ \
+    3 * ( /* 3 NULL bstrs for fields not used */ \
+        1 /* size of a NULL bstr */  \
+    )
+
+/*
+ CBOR Label for proprietary header indicating short-circuit
+ signing was used. Just a random number in the proprietary
+ label space */
+#define T_COSE_SHORT_CIRCUIT_LABEL              (-8675309)
+
+#define EAT_CBOR_ARM_RANGE_BASE                 (-75000)
+#define EAT_CBOR_ARM_LABEL_PROFILE_DEFINITION   (EAT_CBOR_ARM_RANGE_BASE - 0)
+#define EAT_CBOR_ARM_LABEL_CLIENT_ID            (EAT_CBOR_ARM_RANGE_BASE - 1)
+#define EAT_CBOR_ARM_LABEL_SECURITY_LIFECYCLE   (EAT_CBOR_ARM_RANGE_BASE - 2)
+#define EAT_CBOR_ARM_LABEL_IMPLEMENTATION_ID    (EAT_CBOR_ARM_RANGE_BASE - 3)
+#define EAT_CBOR_ARM_LABEL_BOOT_SEED            (EAT_CBOR_ARM_RANGE_BASE - 4)
+#define EAT_CBOR_ARM_LABEL_HW_VERSION           (EAT_CBOR_ARM_RANGE_BASE - 5)
+#define EAT_CBOR_ARM_LABEL_SW_COMPONENTS        (EAT_CBOR_ARM_RANGE_BASE - 6)
+#define EAT_CBOR_ARM_LABEL_NO_SW_COMPONENTS     (EAT_CBOR_ARM_RANGE_BASE - 7)
+#define EAT_CBOR_ARM_LABEL_NONCE                (EAT_CBOR_ARM_RANGE_BASE - 8)
+#define EAT_CBOR_ARM_LABEL_UEID                 (EAT_CBOR_ARM_RANGE_BASE - 9)
+#define EAT_CBOR_ARM_LABEL_ORIGINATION          (EAT_CBOR_ARM_RANGE_BASE - 10)
+
+#define CBOR_ARM_TOTAL_CLAIM_INSTANCE           10
+
+#define EAT_CBOR_SW_COMPONENT_TYPE              (1u)
+#define EAT_CBOR_SW_COMPONENT_MEASUREMENT       (2u)
+#define EAT_CBOR_SW_COMPONENT_EPOCH             (3u)
+#define EAT_CBOR_SW_COMPONENT_VERSION           (4u)
+#define EAT_CBOR_SW_COMPONENT_SIGNER_ID         (5u)
+#define EAT_CBOR_SW_COMPONENT_MEASUREMENT_DESC  (6u)
+
+#define MANDATORY_CLAIM_WITH_SW_COMP           (1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_NONCE)              |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_UEID)               |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_IMPLEMENTATION_ID)  |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_CLIENT_ID)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_SECURITY_LIFECYCLE) |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_BOOT_SEED)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_SW_COMPONENTS))
+
+#define MANDATORY_CLAIM_NO_SW_COMP             (1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_NONCE)              |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_UEID)               |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_IMPLEMENTATION_ID)  |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_CLIENT_ID)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_SECURITY_LIFECYCLE) |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_BOOT_SEED)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_NO_SW_COMPONENTS))
+
+#define MANDATORY_SW_COMP                      (1 << EAT_CBOR_SW_COMPONENT_MEASUREMENT      |     \
+                                                1 << EAT_CBOR_SW_COMPONENT_SIGNER_ID)
+
+#define NULL_USEFUL_BUF_C  NULLUsefulBufC
+
+enum attestation_error_code {
+    PAL_ATTEST_SUCCESS = 0,
+    PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING = PAL_ATTEST_MIN_ERROR,
+    PAL_ATTEST_TOKEN_CHALLENGE_MISMATCH,
+    PAL_ATTEST_TOKEN_NOT_SUPPORTED,
+    PAL_ATTEST_TOKEN_NOT_ALL_MANDATORY_CLAIMS,
+    PAL_ATTEST_HASH_LENGTH_MISMATCH,
+    PAL_ATTEST_HASH_MISMATCH,
+    PAL_ATTEST_HASH_FAIL,
+    PAL_ATTEST_HASH_UNSUPPORTED,
+    PAL_ATTEST_HASH_BUFFER_SIZE,
+    PAL_ATTEST_ERR_PROTECTED_HEADERS,
+    PAL_ATTEST_ERR_SIGN_STRUCT,
+    PAL_ATTEST_ERROR,
+};
+
+struct items_to_get_t {
+    int64_t label;
+    QCBORItem item;
+};
+
+int32_t pal_initial_attest_verify_token(uint8_t *challenge, uint32_t challenge_size,
+                                        uint8_t *token, uint32_t token_size);
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_empty_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_empty_intf.c
new file mode 100644
index 00000000..faf3f493
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_empty_intf.c
@@ -0,0 +1,30 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include <stdarg.h>
+#include "pal_common.h"
+
+/**
+    @brief    - This API will call the requested attestation function
+    @param    - type    : function code
+                valist  : variable argument list
+    @return   - error status
+**/
+int32_t pal_attestation_function(int type, va_list valist)
+{
+    return PAL_STATUS_ERROR;
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_intf.c
new file mode 100644
index 00000000..2d99f74d
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_intf.c
@@ -0,0 +1,54 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+
+#include "pal_attestation_intf.h"
+
+/**
+    @brief    - This API will call the requested attestation function
+    @param    - type    : function code
+                valist  : variable argument list
+    @return   - error status
+**/
+int32_t pal_attestation_function(int type, va_list valist)
+{
+    uint8_t     *challenge, *token;
+    uint32_t    challenge_size, *token_size, verify_token_size;
+
+    switch (type)
+    {
+        case PAL_INITIAL_ATTEST_GET_TOKEN:
+            challenge = va_arg(valist, uint8_t*);
+            challenge_size = va_arg(valist, uint32_t);
+            token = va_arg(valist, uint8_t*);
+            token_size = va_arg(valist, uint32_t*);
+            return psa_initial_attest_get_token(challenge, challenge_size, token, token_size);
+        case PAL_INITIAL_ATTEST_GET_TOKEN_SIZE:
+            challenge_size = va_arg(valist, uint32_t);
+            token_size = va_arg(valist, uint32_t*);
+            return psa_initial_attest_get_token_size(challenge_size, token_size);
+        case PAL_INITIAL_ATTEST_VERIFY_TOKEN:
+            challenge = va_arg(valist, uint8_t*);
+            challenge_size = va_arg(valist, uint32_t);
+            token = va_arg(valist, uint8_t*);
+            verify_token_size = va_arg(valist, uint32_t);
+            return pal_initial_attest_verify_token(challenge, challenge_size,
+                                                   token, verify_token_size);
+        default:
+            return PAL_STATUS_UNSUPPORTED_FUNC;
+    }
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_intf.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_intf.h
new file mode 100644
index 00000000..12f6ee94
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/initial_attestation/pal_attestation_intf.h
@@ -0,0 +1,30 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifndef _PAL_INITIAL_ATTESTATION_H_
+#define _PAL_INITIAL_ATTESTATION_H_
+
+#include "pal_attestation_crypto.h"
+
+enum attestation_function_code {
+    PAL_INITIAL_ATTEST_GET_TOKEN        = 0x1,
+    PAL_INITIAL_ATTEST_GET_TOKEN_SIZE   = 0x2,
+    PAL_INITIAL_ATTEST_VERIFY_TOKEN     = 0x3,
+};
+
+int32_t pal_attestation_function(int type, va_list valist);
+#endif /* _PAL_INITIAL_ATTESTATION_H_ */
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/internal_trusted_storage/pal_internal_trusted_storage_empty_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/internal_trusted_storage/pal_internal_trusted_storage_empty_intf.c
new file mode 100644
index 00000000..133cfa9d
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/internal_trusted_storage/pal_internal_trusted_storage_empty_intf.c
@@ -0,0 +1,30 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include <stdarg.h>
+#include "pal_common.h"
+
+/**
+    @brief    - This API will call the requested internal trusted storage function
+    @param    - type    : function code
+                valist  : variable argument list
+    @return   - error status
+**/
+uint32_t pal_its_function(int type, va_list valist)
+{
+    return PAL_STATUS_ERROR;
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/internal_trusted_storage/pal_internal_trusted_storage_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/internal_trusted_storage/pal_internal_trusted_storage_intf.c
new file mode 100644
index 00000000..4f04ab01
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/internal_trusted_storage/pal_internal_trusted_storage_intf.c
@@ -0,0 +1,60 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+
+#include "pal_internal_trusted_storage_intf.h"
+
+/**
+    @brief    - This API will call the requested internal trusted storage function
+    @param    - type    : function code
+                valist  : variable argument list
+    @return   - error status
+**/
+uint32_t pal_its_function(int type, va_list valist)
+{
+    psa_its_uid_t           uid;
+    uint32_t                data_length, offset;
+    const void              *p_write_data;
+    void                    *p_read_data;
+    psa_its_create_flags_t  its_create_flags;
+    struct psa_its_info_t   *its_p_info;
+
+    switch (type)
+    {
+    case PAL_ITS_SET:
+        uid = va_arg(valist, psa_its_uid_t);
+        data_length = va_arg(valist, uint32_t);
+        p_write_data = va_arg(valist, const void*);
+        its_create_flags = va_arg(valist, psa_its_create_flags_t);
+        return psa_its_set(uid, data_length, p_write_data, its_create_flags);
+    case PAL_ITS_GET:
+        uid = va_arg(valist, psa_its_uid_t);
+        offset = va_arg(valist, uint32_t);
+        data_length = va_arg(valist, uint32_t);
+        p_read_data = va_arg(valist, void*);
+        return psa_its_get(uid, offset, data_length, p_read_data);
+    case PAL_ITS_GET_INFO:
+        uid = va_arg(valist, psa_its_uid_t);
+        its_p_info = va_arg(valist, struct psa_its_info_t*);
+        return psa_its_get_info(uid, its_p_info);
+    case PAL_ITS_REMOVE:
+        uid = va_arg(valist, psa_its_uid_t);
+        return psa_its_remove(uid);
+    default:
+        return PAL_STATUS_UNSUPPORTED_FUNC;
+    }
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/internal_trusted_storage/pal_internal_trusted_storage_intf.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/internal_trusted_storage/pal_internal_trusted_storage_intf.h
new file mode 100644
index 00000000..6db6aac6
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/internal_trusted_storage/pal_internal_trusted_storage_intf.h
@@ -0,0 +1,31 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifndef _PAL_INTERNAL_TRUSTED_STORAGE_INTF_H_
+#define _PAL_INTERNAL_TRUSTED_STORAGE_INTF_H_
+
+#include "pal_common.h"
+
+enum its_function_code {
+    PAL_ITS_SET                         = 0x1,
+    PAL_ITS_GET                         = 0x2,
+    PAL_ITS_GET_INFO                    = 0x3,
+    PAL_ITS_REMOVE                      = 0x4,
+};
+
+uint32_t pal_its_function(int type, va_list valist);
+#endif /* _PAL_INTERNAL_TRUSTED_STORAGE_INTF_H_ */
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/protected_storage/pal_protected_storage_empty_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/protected_storage/pal_protected_storage_empty_intf.c
new file mode 100644
index 00000000..ee9b13da
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/protected_storage/pal_protected_storage_empty_intf.c
@@ -0,0 +1,30 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include <stdarg.h>
+#include "pal_common.h"
+
+/**
+    @brief    - This API will call the requested protected storage function
+    @param    - type    : function code
+                valist  : variable argument list
+    @return   - error status
+**/
+uint32_t pal_ps_function(int type, va_list valist)
+{
+    return PAL_STATUS_ERROR;
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/protected_storage/pal_protected_storage_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/protected_storage/pal_protected_storage_intf.c
new file mode 100644
index 00000000..a4241533
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/protected_storage/pal_protected_storage_intf.c
@@ -0,0 +1,75 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+
+#include "pal_protected_storage_intf.h"
+
+/**
+    @brief    - This API will call the requested protected storage function
+    @param    - type    : function code
+                valist  : variable argument list
+    @return   - error status
+**/
+uint32_t pal_ps_function(int type, va_list valist)
+{
+    psa_ps_uid_t            uid;
+    uint32_t                data_length, size, offset;
+    const void              *p_write_data;
+    void                    *p_read_data;
+    psa_ps_create_flags_t   ps_create_flags;
+    struct psa_ps_info_t    *ps_p_info;
+
+    switch (type)
+    {
+     case PAL_PS_SET:
+         uid = va_arg(valist, psa_ps_uid_t);
+         data_length = va_arg(valist, uint32_t);
+         p_write_data = va_arg(valist, const void*);
+         ps_create_flags = va_arg(valist, psa_ps_create_flags_t);
+         return psa_ps_set(uid, data_length, p_write_data, ps_create_flags);
+     case PAL_PS_GET:
+         uid = va_arg(valist, psa_ps_uid_t);
+         offset = va_arg(valist, uint32_t);
+         data_length = va_arg(valist, uint32_t);
+         p_read_data = va_arg(valist, void*);
+         return psa_ps_get(uid, offset, data_length, p_read_data);
+     case PAL_PS_GET_INFO:
+         uid = va_arg(valist, psa_ps_uid_t);
+         ps_p_info = va_arg(valist, struct psa_ps_info_t*);
+         return psa_ps_get_info(uid, ps_p_info);
+     case PAL_PS_REMOVE:
+         uid = va_arg(valist, psa_ps_uid_t);
+         return psa_ps_remove(uid);
+     case PAL_PS_CREATE:
+         uid = va_arg(valist, psa_ps_uid_t);
+         size = va_arg(valist, uint32_t);
+         ps_create_flags = va_arg(valist, psa_ps_create_flags_t);
+         return psa_ps_create(uid, size, ps_create_flags);
+     case PAL_PS_SET_EXTENDED:
+         uid = va_arg(valist, psa_ps_uid_t);
+         offset = va_arg(valist, uint32_t);
+         data_length = va_arg(valist, uint32_t);
+         p_write_data = va_arg(valist, const void*);
+         return psa_ps_set_extended(uid, offset, data_length, p_write_data);
+     case PAL_PS_GET_SUPPORT:
+         return psa_ps_get_support();
+    default:
+        return PAL_STATUS_UNSUPPORTED_FUNC;
+    }
+
+    return PAL_STATUS_UNSUPPORTED_FUNC;
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/protected_storage/pal_protected_storage_intf.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/protected_storage/pal_protected_storage_intf.h
new file mode 100644
index 00000000..a338cdf7
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/nspe/protected_storage/pal_protected_storage_intf.h
@@ -0,0 +1,34 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#ifndef _PAL_PROTECTED_STORAGE_INTF_H_
+#define _PAL_PROTECTED_STORAGE_INTF_H_
+
+#include "pal_common.h"
+
+enum ps_function_code {
+    PAL_PS_SET                          = 0x1,
+    PAL_PS_GET                          = 0x2,
+    PAL_PS_GET_INFO                     = 0x3,
+    PAL_PS_REMOVE                       = 0x4,
+    PAL_PS_CREATE                       = 0x5,
+    PAL_PS_SET_EXTENDED                 = 0x6,
+    PAL_PS_GET_SUPPORT                  = 0x7,
+};
+
+uint32_t pal_ps_function(int type, va_list valist);
+#endif /* _PAL_PROTECTED_STORAGE_INTF_H_ */
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/reference_logs/attestation.txt b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/reference_logs/attestation.txt
new file mode 100755
index 00000000..0c918099
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/reference_logs/attestation.txt
@@ -0,0 +1,36 @@
+***** PSA Architecture Test Suite - Version 0.8 *****
+
+Running.. Attestation Suite
+******************************************
+
+TEST: 801 | DESCRIPTION: Testing initial attestation APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_initial_attestation_get_token with Challenge 32
+[Check 2] Test psa_initial_attestation_get_token with Challenge 48
+[Check 3] Test psa_initial_attestation_get_token with Challenge 64
+[Check 4] Test psa_initial_attestation_get_token with zero challenge size
+[Check 5] Test psa_initial_attestation_get_token with small challenge size
+[Check 6] Test psa_initial_attestation_get_token with invalid challenge size
+[Check 7] Test psa_initial_attestation_get_token with large challenge size
+[Check 8] Test psa_initial_attestation_get_token with zero as token size
+[Check 9] Test psa_initial_attestation_get_token with small token size
+[Check 10] Test psa_initial_attestation_get_token_size with Challenge 32
+[Check 11] Test psa_initial_attestation_get_token_size with Challenge 48
+[Check 12] Test psa_initial_attestation_get_token_size with Challenge 64
+[Check 13] Test psa_initial_attestation_get_token_size with zero challenge size
+[Check 14] Test psa_initial_attestation_get_token_size with small challenge size
+[Check 15] Test psa_initial_attestation_get_token_size with invalid challenge size
+[Check 16] Test psa_initial_attestation_get_token_size with large challenge size
+TEST RESULT: PASSED
+
+******************************************
+
+************ Attestation Suite Report **********
+TOTAL TESTS     : 1
+TOTAL PASSED    : 1
+TOTAL SIM ERROR : 0
+TOTAL FAILED    : 0
+TOTAL SKIPPED   : 0
+******************************************
+
+Entering standby..
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/reference_logs/crypto.txt b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/reference_logs/crypto.txt
new file mode 100755
index 00000000..39743ad6
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/reference_logs/crypto.txt
@@ -0,0 +1,403 @@
+***** PSA Architecture Test Suite - Version 0.8 *****
+
+Running.. Crypto Suite
+******************************************
+
+TEST: 201 | DESCRIPTION: Testing psa_crypto_init API: Basic
+[Info] Executing tests from non-secure
+[Check 1] Test calling crypto functions before psa_crypto_init
+[Check 2] Test psa_crypto_init
+[Check 3] Test multiple psa_crypto_init
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 202 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_import_key 16 Byte AES
+[Check 2] Test psa_import_key 24 Byte AES
+[Check 3] Test psa_import_key 32 Byte AES
+[Check 4] Test psa_import_key with DES 64 bit key
+[Check 5] Test psa_import_key with Triple DES 2-Key
+[Check 6] Test psa_import_key with Triple DES 3-Key
+[Check 7] Test psa_import_key with key data greater than the algorithm size
+[Check 8] Test psa_import_key with incorrect key data size
+[Check 9] Test psa_import_key with incorrect key type
+[Check 10] Test psa_import_key with already occupied key slot
+[Check 11] Test psa_import_key with invalid key slot
+[Check 12] Test psa_import_key with zero key slot
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 203 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_export_key 16 Byte AES
+[Check 2] Test psa_export_key 24 Byte AES
+[Check 3] Test psa_export_key 32 Byte AES
+[Check 4] Test psa_export_key with DES 64 bit key
+[Check 5] Test psa_export_key with Triple DES 2-Key
+[Check 6] Test psa_export_key with Triple DES 3-Key
+[Check 7] Test psa_export_key with key policy verify
+[Check 8] Test psa_export_key with invalid key slot
+[Check 9] Test psa_export_key with zero key slot
+[Check 10] Test psa_export_key with less buffer size
+[Check 11] Test psa_export_key with empty key slot
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 204 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_export_public_key 16 Byte AES
+[Check 2] Test psa_export_public_key 24 Byte AES
+[Check 3] Test psa_export_public_key 32 Byte AES
+[Check 4] Test psa_export_public_key with DES 64 bit key
+[Check 5] Test psa_export_public_key with Triple DES 2-Key
+[Check 6] Test psa_export_public_key with Triple DES 3-Key
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 205 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_destroy_key 16 Byte AES
+[Check 2] Test psa_destroy_key 24 Byte AES
+[Check 3] Test psa_destroy_key 32 Byte AES
+[Check 4] Test psa_destroy_key with DES 64 bit key
+[Check 5] Test psa_destroy_key with Triple DES 2-Key
+[Check 6] Test psa_destroy_key with Triple DES 3-Key
+[Check 7] Test psa_destroy_key with invalid key slot
+[Check 8] Test psa_destroy_key with zero key slot
+[Check 9] Test psa_destroy_key with empty key slot
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 206 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_get_key_information 16 Byte AES
+[Check 2] Test psa_get_key_information 24 Byte AES
+[Check 3] Test psa_get_key_information 32 Byte AES
+[Check 4] Test psa_get_key_information wit DE¦[Check 5] Test psa_get_key_information with Triple DES 2-Key
+[Check 6] Test psa_get_key_information with Triple DES 3-Key
+[Check 7] Test psa_get_key_information with invalid key slot
+[Check 8] Test psa_get_key_information with zero key slot
+[Check 9] Test psa_get_key_information with empty key slot
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 207 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_set_key_policy 16 Byte AES
+[Check 2] Test psa_set_key_policy 24 Byte AES
+[Check 3] Test psa_set_key_policy 32 Byte AES
+[Check 4] Test psa_set_key_policy with DES 64 bit key
+[Check 5] Test psa_set_key_policy with Triple DES 2-Key
+[Check 6] Test psa_set_key_policy with Triple DES 3-Key
+[Check 7] Test psa_set_key_policy with already occupied key slot
+[Check 8] Test psa_set_key_policy with invalid key slot
+[Check 9] Test psa_set_key_policy with zero key slot
+[Check 10] Test psa_set_key_policy with invalid usage
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 208 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_get_key_policy 16 Byte AES
+[Check 2] Test psa_get_key_policy 24 Byte AES
+[Check 3] Test psa_get_key_policy 32 Byte AES
+[Check 4] Test psa_get_key_policy with DES 64 bit key
+[Check 5] Test psa_get_key_policy with Triple DES 2-Key
+[Check 6] Test psa_get_key_policy with Triple DES 3-Key
+[Check 7] Test psa_get_key_policy with invalid key slot
+[Check 8] Test psa_get_key_policy with zero key slot
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 209 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_set_key_lifetime 16 Byte AES
+[Check 2] Test psa_set_key_lifetime with Triple DES 2-Key
+[Check 3] Test psa_set_key_lifetime with invalid key slot
+[Check 4] Test psa_set_key_lifetime with zero key slot
+[Check 5] Test psa_set_key_lifetime with invalid lifetime
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 210 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_get_key_lifetime 16 Byte AES
+[Check 2] Test psa_get_key_lifetime with Triple DES 2-Key
+[Check 3] Test psa_get_key_lifetime with invalid key slot
+[Check 4] Test psa_get_key_lifetime with zero key slot
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 211 | DESCRIPTION: Testing crypto hash functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_hash_setup with MD2 algorithm
+[Check 2] Test psa_hash_setup with MD4 algorithm
+[Check 3] Test psa_hash_setup with MD5 algorithm
+[Check 4] Test psa_hash_setup with RIPEMD160 algorithm
+[Check 5] Test psa_hash_setup with SHA1 algorithm
+[Check 6] Test psa_hash_setup with SHA224 algorithm
+[Check 7] Test psa_hash_setup with SHA256 algorithm
+[Check 8] Test psa_hash_setup with SHA384 algorithm
+[Check 9] Test psa_hash_setup with SHA512 algorithm
+[Check 10] Test psa_hash_setup with Invalid algorithm
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 212 | DESCRIPTION: Testing crypto hash functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_hash_update with MD2 algorithm
+[Check 2] Test psa_hash_update with MD4 algorithm
+[Check 3] Test psa_hash_update with MD5 algorithm
+[Check 4] Test psa_hash_update with RIPEMD160 algorithm
+[Check 5] Test psa_hash_update with SHA1 algorithm
+[Check 6] Test psa_hash_update with SHA224 algorithm
+[Check 7] Test psa_hash_update with SHA256 algorithm
+[Check 8] Test psa_hash_update with SHA384 algorithm
+[Check 9] Test psa_hash_update with SHA512 algorithm
+[Check 10] Test psa_hash_update without hash setup
+[Check 11] Test psa_hash_update with completed operation handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 213 | DESCRIPTION: Testing crypto hash functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_hash_verify with MD2 algorithm
+[Check 2] Test psa_hash_verify with MD4 algorithm
+[Check 3] Test psa_hash_verify with MD5 algorithm
+[Check 4] Test psa_hash_verify with RIPEMD160 algorithm
+[Check 5] Test psa_hash_verify with SHA1 algorithm
+[Check 6] Test psa_hash_verify with SHA224 algorithm
+[Check 7] Test psa_hash_verify with SHA256 algorithm
+[Check 8] Test psa_hash_verify with SHA384 algorithm
+[Check 9] Test psa_hash_verify with SHA512 algorithm
+[Check 10] Test psa_hash_verify with incorrect expected hash
+[Check 11] Test psa_hash_verify with incorrect hash length
+[Check 12] test psa_hash_verify with inactive & invalid operation handle
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 214 | DESCRIPTION: Testing crypto hash functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_hash_finish with MD2 algorithm
+[Check 2] Test psa_hash_finish with MD4 algorithm
+[Check 3] Test psa_hash_finish with MD5 algorithm
+[Check 4] Test psa_hash_finish with RIPEMD160 algorithm
+[Check 5] Test psa_hash_finish with SHA1 algorithm
+[Check 6] Test psa_hash_finish with SHA224 algorithm
+[Check 7] Test psa_hash_finish with SHA256 algorithm
+[Check 8] Test psa_hash_finish with SHA384 algorithm
+[Check 9] Test psa_hash_finish with SHA512 algorithm
+[Check 10] test psa_hash_finish with inactive operation handle
+[Check 11] test psa_hash_finish with invalid hash buffer size
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 215 | DESCRIPTION: Testing crypto hash functions APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_hash_abort with MD2 algorithm
+[Check 2] Test psa_hash_abort with MD4 algorithm
+[Check 3] Test psa_hash_abort with MD5 algorithm
+[Check 4] Test psa_hash_abort with RIPEMD160 algorithm
+[Check 5] Test psa_hash_abort with SHA1 algorithm
+[Check 6] Test psa_hash_abort with SHA224 algorithm
+[Check 7] Test psa_hash_abort with SHA256 algorithm
+[Check 8] Test psa_hash_abort with SHA384 algorithm
+[Check 9] Test psa_hash_abort with SHA512 algorithm
+[Check 10] Test psa_hash_finish after calling psa_hash_abort
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 223 | DESCRIPTION: Testing crypto key management APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_key_policy_get_usage with usage as encrypt
+[Check 2] Test psa_key_policy_get_usage with usage as decrypt
+[Check 3] Test psa_key_policy_get_usage with usage as derive
+[Check 4] Test psa_key_policy_get_usage with usage as export
+[Check 5] Test psa_key_policy_get_usage with usage as sign
+[Check 6] Test psa_key_policy_get_usage with usage as verify
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 224 | DESCRIPTION: Testing crypto AEAD APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_aead_encrypt - CCM - 16B AES - 13B nounce & 8B addi data
+[Check 2] Test psa_aead_encrypt - AES-CCM
+[Check 3] Test psa_aead_encrypt - GCM - 16B AES - 12B Nounce & 12B addi data
+[Check 4] Test psa_aead_encrypt - DES Key
+[Check 5] Test psa_aead_encrypt - Empty key slot
+[Check 6] Test psa_aead_encrypt - Zero key slot
+[Check 7] Test psa_aead_encrypt - Invalid key slot
+[Check 8] Test psa_aead_encrypt - Unsupported Algorithm
+[Check 9] Test psa_aead_encrypt - Invalid key usage
+[Check 10] Test psa_aead_encrypt - Small output buffer size
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 225 | DESCRIPTION: Testing crypto AEAD APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_aead_decrypt - CCM - 16B AES - 13B nounce & 8B addi data
+[Check 2] Test psa_aead_decrypt - AES-CCM
+[Check 3] Test psa_aead_decrypt - GCM - 16B AES - 12B Nounce & 12B addi data
+[Check 4] Test psa_aead_decrypt - DES Key
+[Check 5] Test psa_aead_decrypt - Empty key slot
+[Check 6] Test psa_aead_decrypt - Zero key slot
+[Check 7] Test psa_aead_decrypt - Invalid key slot
+[Check 8] Test psa_aead_decrypt - Unsupported Algorithm
+[Check 9] Test psa_aead_decrypt - Invalid key usage
+[Check 10] Test psa_aead_decrypt - Small output buffer size
+[Check 11] Test psa_aead_decrypt - Invalid cipher text
+[Check 12] Test psa_aead_decrypt - Invalid cipher text size
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 232 | DESCRIPTION: Testing crypto symmetric cipher APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_cipher_encrypt_setup 16 Byte AES
+[Check 2] Test psa_cipher_encrypt_setup 24 Byte AES
+[Check 3] Test psa_cipher_encrypt_setup 32 Byte AES
+[Check 4] Test psa_cipher_encrypt_setup DES 64 bit key
+[Check 5] Test psa_cipher_encrypt_setup Triple DES 2-Key
+[Check 6] Test psa_cipher_encrypt_setup Triple DES 3-Key
+[Check 7] Test psa_cipher_encrypt_setup 16 Byte raw data
+[Check 8] Test psa_cipher_encrypt_setup - not a cipher algorithm
+[Check 9] Test psa_cipher_encrypt_setup - unknown cipher algorithm
+[Check 10] Test psa_cipher_encrypt_setup - incompatible key ARC4
+[Check 11] Test psa_cipher_encrypt_setup - invalid key slot
+[Check 12] Test psa_cipher_encrypt_setup - empty key slot
+[Check 13] Test psa_cipher_encrypt_setup - zero as key slot
+[Check 14] Test psa_cipher_encrypt_setup - incorrect usage
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 233 | DESCRIPTION: Testing crypto symmetric cipher APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_cipher_decrypt_setup 16 Byte AES
+[Check 2] Test psa_cipher_decrypt_setup 24 Byte AES
+[Check 3] Test psa_cipher_decrypt_setup 32 Byte AES
+[Check 4] Test psa_cipher_decrypt_setup DES 64 bit key
+[Check 5] Test psa_cipher_decrypt_setup Triple DES 2-Key
+[Check 6] Test psa_cipher_decrypt_setup Triple DES 3-Key
+[Check 7] Test psa_cipher_decrypt_setup 16 Byte raw data
+[Check 8] Test psa_cipher_decrypt_setup - not a cipher algorithm
+[Check 9] Test psa_cipher_decrypt_setup - unknown cipher algorithm
+[Check 10] Test psa_cipher_decrypt_setup - incompatible key ARC4
+[Check 11] Test psa_cipher_decrypt_setup - invalid key slot
+[Check 12] Test psa_cipher_decrypt_setup - empty key slot
+[Check 13] Test psa_cipher_decrypt_setup - zero as key slot
+[Check 14] Test psa_cipher_decrypt_setup - incorrect usage
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 235 | DESCRIPTION: Testing crypto symmetric cipher APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_cipher_set_iv 16 Byte AES
+[Check 2] Test psa_cipher_set_iv 24 Byte AES
+[Check 3] Test psa_cipher_set_iv 32 Byte AES
+[Check 4] Test psa_cipher_set_iv DES 64 bit key
+[Check 5] Test psa_cipher_set_iv Triple DES 2-Key
+[Check 6] Test psa_cipher_set_iv Triple DES 3-Key
+[Check 7] Test psa_cipher_set_iv AES - small iv buffer
+[Check 8] Test psa_cipher_set_iv DES - small iv buffer
+[Check 9] Test psa_cipher_set_iv AES - large iv buffer
+[Check 10] Test psa_cipher_set_iv DES - large iv buffer
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 236 | DESCRIPTION: Testing crypto symmetric cipher APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_cipher_update - Encrypt - AES CBC_NO_PADDING
+[Check 2] Test psa_cipher_update - Encrypt - AES CBC_NO_PADDING (Short input)
+[Check 3] Test psa_cipher_update - Encrypt - AES CBC_PKCS7
+[Check 4] Test psa_cipher_update - Encrypt - AES CBC_PKCS7 (Short input)
+[Check 5] Test psa_cipher_update - Encrypt - AES CTR
+[Check 6] Test psa_cipher_update - Encrypt - DES CBC (nopad)
+[Check 7] Test psa_cipher_update - Encrypt - 2-key 3DE -CBC (nopad)
+[Check 8] Test psa_cipher_update - Encrypt - 3-key 3DE -CBC (nopad)
+[Check 9] Test psa_cipher_update - small output buffer size
+[Check 10] Test psa_cipher_update - Decrypt - AES CBC_NO_PADDING
+[Check 11] Test psa_cipher_update - Decrypt - AES CBC_NO_PADDING (Short input)
+[Check 12] Test psa_cipher_update - Decrypt - AES CBC_PKCS7
+[Check 13] Test psa_cipher_update - Decrypt - AES CBC_PKCS7 (Short input)
+[Check 14] Test psa_cipher_update - Decrypt - AES CTR
+[Check 15] Test psa_cipher_update - Decrypt - DES CBC (nopad)
+[Check 16] Test psa_cipher_update - Decrypt - 2-key 3DE -CBC (nopad)
+[Check 17] Test psa_cipher_update - Decrypt - 3-key 3DE -CBC (nopad)
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 237 | DESCRIPTION: Testing crypto symmetric cipher APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_cipher_finish - Encrypt - AES CBC_NO_PADDING
+[Check 2] Test psa_cipher_finish - Encrypt - AES CBC_NO_PADDING (Short input)
+[Check 3] Test psa_cipher_finish - Encrypt - AES CBC_PKCS7
+[Check 4] Test psa_cipher_finish - Encrypt - AES CBC_PKCS7 (Short input)
+[Check 5] Test psa_cipher_finish - Encrypt - AES CTR
+[Check 6] Test psa_cipher_finish - Encrypt - AES CTR (short input)
+[Check 7] Test psa_cipher_finish - Encrypt - DES CBC (nopad)
+[Check 8] Test psa_cipher_finish - Encrypt - 2-key 3DE -CBC (nopad)
+[Check 9] Test psa_cipher_finish - Encrypt - 3-key 3DE -CBC (nopad)
+[Check 10] Test psa_cipher_finish - small output buffer size
+[Check 11] Test psa_cipher_finish - Decrypt - AES CBC_NO_PADDING
+[Check 12] Test psa_cipher_finish - Decrypt - AES CBC_NO_PADDING (Short input)
+[Check 13] Test psa_cipher_finish - Decrypt - AES CBC_PKCS7
+[Check 14] Test psa_cipher_finish - Decrypt - AES CBC_PKCS7 (Short input)
+[Check 15] Test psa_cipher_finish - Decrypt - AES CTR
+[Check 16] Test psa_cipher_finish - Decrypt - AES CTR (short input)
+[Check 17] Test psa_cipher_finish - Decrypt - DES CBC (nopad)
+[Check 18] Test psa_cipher_finish - Decrypt - 2-key 3DE -CBC (nopad)
+[Check 19] Test psa_cipher_finish - 3-key 3DE -CBC (nopad)
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 238 | DESCRIPTION: Testing crypto symmetric cipher APIs
+[Info] Executing tests from non-secure
+[Check 1] Test psa_cipher_abort - Encrypt - AES CBC_NO_PADDING
+[Check 2] Test psa_cipher_abort - Encrypt - AES CBC_PKCS7
+[Check 3] Test psa_cipher_abort - Encrypt - AES CTR
+[Check 4] Test psa_cipher_abort - Encrypt - DES CBC (nopad)
+[Check 5] Test psa_cipher_abort - Encrypt - 2-key 3DE -CBC (nopad)
+[Check 6] Test psa_cipher_abort - Encrypt - 3-key 3DE -CBC (nopad)
+[Check 7] Test psa_cipher_abort - Decrypt - AES CBC_NO_PADDING
+[Check 8] Test psa_cipher_abort - Decrypt - AES CBC_PKCS7
+[Check 9] Test psa_cipher_abort - Decrypt - AES CTR
+[Check 10] Test psa_cipher_abort - Decrypt - DES CBC (nopad)
+[Check 11] Test psa_cipher_abort - Decrypt - 2-key 3DE -CBC (nopad)
+[Check 12] Test psa_cipher_abort - Decrypt - 3-key 3DE -CBC (nopad)
+[Check 1] Test psa_cipher_update after psa_cipher_abort should fail
+TEST RESULT: PASSED
+
+******************************************
+
+************ Crypto Suite Report **********
+TOTAL TESTS     : 24
+TOTAL PASSED    : 24
+TOTAL SIM ERROR : 0
+TOTAL FAILED    : 0
+TOTAL SKIPPED   : 0
+******************************************
+
+Entering standby..
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/reference_logs/protected_storage.txt b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/reference_logs/protected_storage.txt
new file mode 100755
index 00000000..b7f12d55
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/reference_logs/protected_storage.txt
@@ -0,0 +1,154 @@
+***** PSA Architecture Test Suite - Version 0.8 *****
+
+Running.. Protected Storage Suite
+******************************************
+
+TEST: 401 | DESCRIPTION: UID not found check
+[Info] Executing tests from non-secure
+[Check 1] Call get API for UID 6 which is not set
+[Check 2] Call get_info API for UID 6 which is not set
+[Check 3] Call remove API for UID 6 which is not set
+[Check 4] Call get API for UID 6 which is removed
+[Check 5] Call get_info API for UID 6 which is removed
+[Check 6] Call remove API for UID 6 which is removed
+Set storage for UID 6
+[Check 7] Call get API for different UID 6
+[Check 8] Call get_info API for different UID 6
+[Check 9] Call remove API for different UID 6
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 402 | DESCRIPTION: Write once error check
+[Info] Executing tests from non-secure
+[Check 1] Update the flag of UID 1 with WRITE_ONCE flag
+[Check 2] Try to remove the UID 1 having WRITE_ONCE flag
+[Check 3] Create a new UID 2 with WRITE_ONCE flag
+[Check 4] Try to remove the UID 2 having WRITE_ONCE flag
+[Check 5] Try to change the length of write_once UID 2
+[Check 6] Check UID removal still fails
+[Check 7] Try to change the WRITE_ONCE flag to None for UID 2
+[Check 8] Check UID removal still fails
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 403 | DESCRIPTION: Insufficient space check
+[Info] Executing tests from non-secure
+[Check 1] Overload storage space
+Remove all registered UIDs
+[Check 2] Overload storage again to verify all previous UID removed
+Remove all registered UIDs
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 404 | DESCRIPTION: Data Consistency check
+[Info] Executing tests from non-secure
+[Check 1] Call get API with incorrect length
+[Check 2] Old buffer invalid after length change
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 405 | DESCRIPTION: Success scenarios check
+[Info] Executing tests from non-secure
+[Check 1] Set UID with data length zero and call storage APIs
+[Check 2] Resetting the length check
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 406 | DESCRIPTION: Flags not supported check
+[Info] Executing tests from non-secure
+[Check 1] Call set API with valid flag values
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 407 | DESCRIPTION: Incorrect Size check
+[Info] Executing tests from non-secure
+Create a valid Storage
+Increase the length of storage
+[Check 1] Call get API with old length
+Decrease the length of storage
+[Check 2] Call get API with old length
+[Check 3] Call get API with valid length
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 408 | DESCRIPTION: Invalid offset check
+[Info] Executing tests from non-secure
+[Check 1] Try to access data with varying valid offset
+[Check 2] Try to access data with varying invalid offset
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 409 | DESCRIPTION: Invalid Arguments check
+[Info] Executing tests from non-secure
+[Check 1] Call set API with NULL pointer and data length 0
+[Check 2] Create UID with zero data length
+[Check 3] Try to set NULL buffer for existing UID
+[Check 4] Call get API with NULL read buffer and data length 0
+[Check 5] Increase the length
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 410 | DESCRIPTION: UID value zero check
+[Info] Executing tests from non-secure
+[Check 1] Creating storage with UID 0 should fail
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 411 | DESCRIPTION: Optional APIs: UID not found check
+[Info] Executing tests from non-secure
+Test Case skipped as Optional PS APIs are not supported.
+TEST RESULT: SKIPPED (Skip Code=0x2B)
+
+******************************************
+
+TEST: 412 | DESCRIPTION: Optional APIs: Invalid arguments and offset invalid
+[Info] Executing tests from non-secure
+Test Case skipped as Optional PS APIs are not supported.
+TEST RESULT: SKIPPED (Skip Code=0x2B)
+
+******************************************
+
+TEST: 413 | DESCRIPTION: Set_Extended and Create api : Success
+[Info] Executing tests from non-secure
+Test Case skipped as Optional PS APIs are not supported.
+TEST RESULT: SKIPPED (Skip Code=0x2B)
+
+******************************************
+
+TEST: 414 | DESCRIPTION: Optional APIs not supported check
+[Info] Executing tests from non-secure
+Optional PS APIs are not supported.
+[Check 1] Call to create API should fail as API not supported
+[Check 2] Create valid storage with set API
+[Check 3] Call to set_extended API call should fail
+[Check 4] Verify data is unchanged
+TEST RESULT: PASSED
+
+******************************************
+
+TEST: 415 | DESCRIPTION: Create API write_once flag value check
+[Info] Executing tests from non-secure
+Test Case skipped as Optional PS APIs are not supported.
+TEST RESULT: SKIPPED (Skip Code=0x2B)
+
+******************************************
+
+************ Protected Storage Suite Report **********
+TOTAL TESTS     : 15
+TOTAL PASSED    : 11
+TOTAL SIM ERROR : 0
+TOTAL FAILED    : 0
+TOTAL SKIPPED   : 4
+******************************************
+
+Entering standby..
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/spe/pal_driver_intf.c b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/spe/pal_driver_intf.c
new file mode 100644
index 00000000..4d522071
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/spe/pal_driver_intf.c
@@ -0,0 +1,131 @@
+ /** @file
+  * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+  * SPDX-License-Identifier : Apache-2.0
+  *
+  * Licensed under the Apache License, Version 2.0 (the "License");
+  * you may not use this file except in compliance with the License.
+  * You may obtain a copy of the License at
+  *
+  *  http://www.apache.org/licenses/LICENSE-2.0
+  *
+  * Unless required by applicable law or agreed to in writing, software
+  * distributed under the License is distributed on an "AS IS" BASIS,
+  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  * See the License for the specific language governing permissions and
+  * limitations under the License.
+ **/
+
+#include "pal_driver_intf.h"
+
+/**
+    @brief    - This function initializes the UART
+    @param    - uart base addr
+    @return   - void
+**/
+void pal_uart_init(uint32_t uart_base_addr)
+{
+    pal_uart_pl011_init(uart_base_addr);
+}
+
+/**
+    @brief    - This function parses the input string and writes bytes into UART TX FIFO
+    @param    - str      : Input String
+              - data     : Value for format specifier
+**/
+
+void pal_print(char *str, int32_t data)
+{
+  pal_uart_pl011_print(str,data);
+}
+
+
+/**
+    @brief    - Writes into given non-volatile address.
+    @param    - base    : Base address of nvmem
+                offset  : Offset
+                buffer  : Pointer to source address
+                size    : Number of bytes
+    @return   - 1/0
+**/
+int pal_nvmem_write(addr_t base, uint32_t offset, void *buffer, int size)
+{
+    return nvmem_write(base, offset, buffer, size);
+}
+
+/**
+    @brief    - Reads from given non-volatile address.
+    @param    - base    : Base address of nvmem
+                offset  : Offset
+                buffer  : Pointer to source address
+                size    : Number of bytes
+    @return   - 1/0
+**/
+int pal_nvmem_read(addr_t base, uint32_t offset, void *buffer, int size)
+{
+    return nvmem_read(base, offset, buffer, size);
+}
+
+
+/**
+    @brief           - Initializes an hardware watchdog timer
+    @param           - base_addr       : Base address of the watchdog module
+                     - time_us         : Time in micro seconds
+                     - timer_tick_us   : Number of ticks per micro second
+    @return          - SUCCESS/FAILURE
+**/
+int pal_wd_timer_init(addr_t base_addr, uint32_t time_us, uint32_t timer_tick_us)
+{
+    return(pal_wd_cmsdk_init(base_addr,time_us, timer_tick_us));
+
+}
+
+/**
+    @brief           - Enables a hardware watchdog timer
+    @param           - base_addr       : Base address of the watchdog module
+    @return          - SUCCESS/FAILURE
+**/
+int pal_wd_timer_enable(addr_t base_addr)
+{
+    return(pal_wd_cmsdk_enable(base_addr));
+}
+
+/**
+    @brief           - Disables a hardware watchdog timer
+    @param           - base_addr       : Base address of the watchdog module
+    @return          - SUCCESS/FAILURE
+**/
+int pal_wd_timer_disable(addr_t base_addr)
+{
+    return (pal_wd_cmsdk_disable(base_addr));
+}
+
+/**
+    @brief           - Checks whether hardware watchdog timer is enabled
+    @param           - base_addr       : Base address of the watchdog module
+    @return          - Enabled : 1, Disabled : 0
+**/
+int pal_wd_timer_is_enabled(addr_t base_addr)
+{
+    return (pal_wd_cmsdk_is_enabled(base_addr));
+}
+
+/**
+    @brief   - Trigger interrupt for irq signal assigned to driver partition
+               before return to caller.
+    @param   - void
+    @return  - void
+**/
+void pal_generate_interrupt(void)
+{
+    pal_uart_pl011_generate_irq();
+}
+
+/**
+    @brief   - Disable interrupt that was generated using pal_generate_interrupt API.
+    @param   - void
+    @return  - void
+**/
+void pal_disable_interrupt(void)
+{
+    pal_uart_pl011_disable_irq();
+}
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/spe/pal_driver_intf.h b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/spe/pal_driver_intf.h
new file mode 100644
index 00000000..cef34ca8
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/spe/pal_driver_intf.h
@@ -0,0 +1,35 @@
+ /** @file
+  * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+  * SPDX-License-Identifier : Apache-2.0
+  *
+  * Licensed under the Apache License, Version 2.0 (the "License");
+  * you may not use this file except in compliance with the License.
+  * You may obtain a copy of the License at
+  *
+  *  http://www.apache.org/licenses/LICENSE-2.0
+  *
+  * Unless required by applicable law or agreed to in writing, software
+  * distributed under the License is distributed on an "AS IS" BASIS,
+  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  * See the License for the specific language governing permissions and
+  * limitations under the License.
+ **/
+
+#ifndef _PAL_DRIVER_INTF_H_
+#define _PAL_DRIVER_INTF_H_
+
+#include "pal_uart.h"
+#include "pal_nvmem.h"
+#include "pal_wd_cmsdk.h"
+
+void pal_uart_init(uint32_t uart_base_addr);
+void pal_print(char *str, int32_t data);
+int pal_nvmem_write(addr_t base, uint32_t offset, void *buffer, int size);
+int pal_nvmem_read(addr_t base, uint32_t offset, void *buffer, int size);
+int pal_wd_timer_init(addr_t base_addr, uint32_t time_us, uint32_t timer_tick_us);
+int pal_wd_timer_enable(addr_t base_addr);
+int pal_wd_timer_disable(addr_t base_addr);
+int pal_wd_timer_is_enabled(addr_t base_addr);
+void pal_generate_interrupt(void);
+void pal_disable_interrupt(void);
+#endif /* _PAL_DRIVER_INTF_H_ */
diff --git a/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/target.cfg b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/target.cfg
new file mode 100644
index 00000000..629efb53
--- /dev/null
+++ b/api-tests/platform/targets/tgt_dev_apis_tfm_musca_b1/target.cfg
@@ -0,0 +1,56 @@
+///** @file
+// * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+// * SPDX-License-Identifier : Apache-2.0
+// *
+// * Licensed under the Apache License, Version 2.0 (the "License");
+// * you may not use this file except in compliance with the License.
+// * You may obtain a copy of the License at
+// *
+// *  http://www.apache.org/licenses/LICENSE-2.0
+// *
+// * Unless required by applicable law or agreed to in writing, software
+// * distributed under the License is distributed on an "AS IS" BASIS,
+// * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// * See the License for the specific language governing permissions and
+// * limitations under the License.
+//**/
+
+// UART device info
+uart.num=1;
+uart.0.base = 0x40106000; // UART1_NS
+uart.0.size = 0xFFF;
+uart.0.intr_id = 0xFF;
+uart.0.permission = TYPE_READ_WRITE;
+
+// Watchdog device info
+watchdog.num = 1;
+watchdog.0.base = 0x40081000;
+watchdog.0.size = 0xFFF;
+watchdog.0.intr_id = 0xFF;
+watchdog.0.permission = TYPE_READ_WRITE;
+watchdog.0.num_of_tick_per_micro_sec = 0x3;         //(sys_feq/1000000)
+watchdog.0.timeout_in_micro_sec_low = 0xF4240;      //1.0  sec :  1 * 1000 * 1000
+watchdog.0.timeout_in_micro_sec_medium = 0x1E8480;  //2.0  sec :  2 * 1000 * 1000
+watchdog.0.timeout_in_micro_sec_high = 0x4C4B40;    //5.0  sec :  5 * 1000 * 1000
+watchdog.0.timeout_in_micro_sec_crypto = 0x1312D00; //18.0 sec : 18 * 1000 * 1000
+
+// Range of 1KB Non-volatile memory to preserve data over reset. Ex, NVRAM and FLASH
+nvmem.num =1;
+nvmem.0.start = 0x20060000;
+nvmem.0.end = 0x200603FF;
+nvmem.0.permission = TYPE_READ_WRITE;
+
+// Miscellaneous - Test scatter info
+dut.num = 1;
+
+// Start address of 12KB NS memory for test ELF
+dut.0.ns_test_addr = 0x28110000;
+
+// Start address of combine_test_binary in memory. Memory can be main memory or secondary memory.
+// Size of combine_test_binary = Summation of size of each test ELF file.
+dut.0.ns_start_addr_of_combine_test_binary = 0x28120000;
+
+// Is combine_test_binary available in RAM?
+dut.0.combine_test_binary_in_ram = AVAILABLE;
+
+dut.0.implemented_psa_firmware_isolation_level = LEVEL1;
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/Makefile b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/Makefile
index 58167536..894cec4d 100644
--- a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/Makefile
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/Makefile
@@ -83,6 +83,7 @@ endif
 ifeq (${PSA_INITIAL_ATTESTATION_IMPLEMENTED},1)
 SRC_C_NSPE += pal_attestation_intf.c
 SRC_C_NSPE += pal_attestation_eat.c
+SRC_C_NSPE += pal_attestation_crypto.c
 else
 SRC_C_NSPE += pal_attestation_empty_intf.c
 endif
@@ -98,7 +99,7 @@ INCLUDE= -I$(SOURCE)/platform/targets/$(TARGET)/nspe \
          -I$(SOURCE)/platform/targets/$(TARGET)/nspe/initial_attestation \
          -I$(SOURCE)/platform/targets/$(TARGET)/nspe/initial_attestation/ext/inc \
          -I$(SOURCE)/platform/targets/$(TARGET)/nspe/internal_trusted_storage \
-         -I$(SOURCE)/platform/targets/$(TARGET)/nspe/protected_storage
+         -I$(SOURCE)/platform/targets/$(TARGET)/nspe/protected_storage \
 
 VPATH=$(SOURCE)/platform/targets/$(TARGET)/: \
       $(SOURCE)/platform/targets/$(TARGET)/spe: \
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/manifests/common/driver_partition_psa.json b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/manifests/common/driver_partition_psa.json
index 5d57571c..3e2ec674 100644
--- a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/manifests/common/driver_partition_psa.json
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/manifests/common/driver_partition_psa.json
@@ -3,11 +3,9 @@
   "name": "DRIVER_PARTITION",
   "type": "PSA-ROT",
   "priority": "NORMAL",
-  "id": "0x00000003",
   "description": "Implements device services such print, flash read/write,. etc.",
   "entry_point": "driver_main",
   "stack_size": "0x400",
-  "heap_size": "0x100",
   "services": [{
       "name": "DRIVER_UART_SID",
       "sid": "0x0000FC01",
@@ -33,9 +31,9 @@
       "minor_policy": "RELAXED"
     },
     {
-      "name": "TEST_INTR_SID",
+      "name": "DRIVER_TEST_SID",
       "sid": "0x0000FC04",
-      "signal": "TEST_INTR_SIG",
+      "signal": "DRIVER_TEST_SIG",
       "non_secure_clients": true,
       "minor_version": 1,
       "minor_policy": "RELAXED"
@@ -69,13 +67,9 @@
   ],
   "irqs": [
     {
+       "description": "Using UART TX interrupt to test psa_wait and psa_eoi for irq_signal",
        "signal": "DRIVER_UART_INTR_SIG",
        "line_num": 17
     }
-  ],
-  "linker_pattern": {
-    "object_list": [
-    "driver_partition.a"
-    ]
-  }
+  ]
 }
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/manifests/ipc/client_partition_psa.json b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/manifests/ipc/client_partition_psa.json
index 081dc95d..b93377bd 100644
--- a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/manifests/ipc/client_partition_psa.json
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/manifests/ipc/client_partition_psa.json
@@ -3,11 +3,9 @@
   "name": "CLIENT_PARTITION",
   "type": "APPLICATION-ROT",
   "priority": "NORMAL",
-  "id": "0x00000001",
   "description": "Client partition executing client test func from SPE",
   "entry_point": "client_main",
   "stack_size": "0x400",
-  "heap_size": "0x100",
   "services": [{
       "name": "CLIENT_TEST_DISPATCHER_SID",
       "sid": "0x0000FA01",
@@ -20,7 +18,7 @@
   "dependencies": [
     "DRIVER_UART_SID",
     "DRIVER_NVMEM_SID",
-    "TEST_INTR_SID",
+    "DRIVER_TEST_SID",
     "SERVER_TEST_DISPATCHER_SID",
     "SERVER_UNSPECIFED_MINOR_V_SID",
     "SERVER_STRICT_MINOR_VERSION_SID",
@@ -35,10 +33,5 @@
       "size": "0x20",
       "permission": "READ-WRITE"
     }
-   ],
-  "linker_pattern": {
-    "object_list": [
-    "client_partition.a"
-    ]
-  }
+   ]
 }
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/manifests/ipc/server_partition_psa.json b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/manifests/ipc/server_partition_psa.json
index 3541387c..146b8fbc 100644
--- a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/manifests/ipc/server_partition_psa.json
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/manifests/ipc/server_partition_psa.json
@@ -3,7 +3,6 @@
   "name": "SERVER_PARTITION",
   "type": "APPLICATION-ROT",
   "priority": "NORMAL",
-  "id": "0x00000002",
   "description": "Server partition executing server test func",
   "entry_point": "server_main",
   "stack_size": "0x400",
@@ -66,10 +65,5 @@
   "dependencies": [
     "DRIVER_UART_SID",
     "DRIVER_NVMEM_SID"
-  ],
-  "linker_pattern": {
-    "object_list": [
-    "server_partition.a"
-    ]
-  }
+  ]
 }
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/common/pal_config.h b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/common/pal_config.h
index daa0ec5f..e3f70ad7 100644
--- a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/common/pal_config.h
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/common/pal_config.h
@@ -50,7 +50,7 @@
 #endif
 
 #if !defined(VERBOSE)
-#define VERBOSE 4 /* Print verbosity = ERROR */
+#define VERBOSE 3 /* Print verbosity = TEST */
 #endif
 
 #if (!defined(VAL_NSPE_BUILD) && !defined(SPE_BUILD))
@@ -62,7 +62,15 @@
 #endif
 
 #if !defined(TEST_COMBINE_ARCHIVE)
-//#define TEST_COMBINE_ARCHIVE /* Test dispatcher code selection */
+#define TEST_COMBINE_ARCHIVE 0 /* Combine test archive or binary? */
+#endif
+
+#if !defined(WATCHDOG_AVAILABLE)
+#define WATCHDOG_AVAILABLE 0 /* If zero, skip watchdog programming */
+#endif
+
+#if !defined(SP_HEAP_MEM_SUPP)
+#define SP_HEAP_MEM_SUPP 0 /* Are Dynamic funcs available to secure partition? */
 #endif
 
 /*
@@ -79,6 +87,13 @@
  * of this file.
 */
 #include "psa_manifest/sid.h"
+
+/*
+ * psa_manifest/pid.h: Secure Partition IDs
+ * Macro definitions that map from Secure Partition names to Secure Partition IDs.
+ * Partition manifest parse build tool must provide the implementation of this file.
+*/
+#include "psa_manifest/pid.h"
 #endif
 
 #if PSA_CRYPTO_IMPLEMENTED
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/common/pal_driver_ipc_intf.c b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/common/pal_driver_ipc_intf.c
index 32aef9c5..f8f773fb 100644
--- a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/common/pal_driver_ipc_intf.c
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/common/pal_driver_ipc_intf.c
@@ -56,7 +56,7 @@ int pal_uart_init_ns(uint32_t uart_base_addr)
     @return   - SUCCESS/FAILURE
 **/
 
-int pal_print_ns(char *str, uint32_t data)
+int pal_print_ns(char *str, int32_t data)
 {
     int             string_len = 0;
     char            *p = str;
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/common/pal_driver_ns_intf.c b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/common/pal_driver_ns_intf.c
index dd6b14c7..2af6fcc7 100644
--- a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/common/pal_driver_ns_intf.c
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/common/pal_driver_ns_intf.c
@@ -38,7 +38,7 @@ int pal_uart_init_ns(uint32_t uart_base_addr)
     @return   - SUCCESS/FAILURE
 **/
 
-int pal_print_ns(char *str, uint32_t data)
+int pal_print_ns(char *str, int32_t data)
 {
     pal_cmsdk_print(str, data);
     return PAL_STATUS_SUCCESS;
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/crypto/pal_crypto_intf.c b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/crypto/pal_crypto_intf.c
index ad838f91..3df6aa8d 100644
--- a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/crypto/pal_crypto_intf.c
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/crypto/pal_crypto_intf.c
@@ -36,7 +36,7 @@ int32_t pal_crypto_function(int type, va_list valist)
     uint32_t                status;
     const void              *extra;
     size_t                  extra_size, capacity, *gen_cap, nonce_length, additional_data_length;
-    psa_key_handle_t        handle, *key_handle;
+    psa_key_handle_t        handle, *key_handle, target_handle;
     psa_key_type_t          key_type, *key_type_out;
     psa_key_policy_t        *policy;
     psa_key_usage_t         usage, *usage_out;
@@ -325,6 +325,11 @@ int32_t pal_crypto_function(int type, va_list valist)
         case PAL_CRYPTO_ALLOCATE_KEY:
             key_handle = (psa_key_handle_t *)va_arg(valist, int*);
             return psa_allocate_key(key_handle);
+        case PAL_CRYPTO_COPY_KEY:
+            handle = (psa_key_handle_t)va_arg(valist, int);
+            target_handle = (psa_key_handle_t)va_arg(valist, int);
+            policy = va_arg(valist, psa_key_policy_t*);
+            return psa_copy_key(handle, target_handle, policy);
         case PAL_CRYPTO_FREE:
             for (i = 0; i < PAL_KEY_SLOT_COUNT; i++)
                 psa_destroy_key(i);
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/crypto/pal_crypto_intf.h b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/crypto/pal_crypto_intf.h
index dfabee18..d1dabfa4 100644
--- a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/crypto/pal_crypto_intf.h
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/crypto/pal_crypto_intf.h
@@ -68,6 +68,7 @@ enum crypto_function_code {
     PAL_CRYPTO_ASYMMTERIC_VERIFY        = 0x31,
     PAL_CRYPTO_KEY_AGREEMENT            = 0x32,
     PAL_CRYPTO_ALLOCATE_KEY             = 0x33,
+    PAL_CRYPTO_COPY_KEY                 = 0x34,
     PAL_CRYPTO_FREE                     = 0xFE,
 };
 
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_crypto.c b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_crypto.c
new file mode 100644
index 00000000..ae2bdba4
--- /dev/null
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_crypto.c
@@ -0,0 +1,346 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "pal_attestation_crypto.h"
+
+static uint32_t  public_key_registered = 0;
+
+static inline struct q_useful_buf_c useful_buf_head(struct q_useful_buf_c buf,
+                                                  size_t amount)
+{
+    return UsefulBuf_Head(buf, amount);
+}
+
+static uint32_t check_hash_sizes(void)
+{
+    if (T_COSE_CRYPTO_SHA256_SIZE != PSA_HASH_SIZE(PSA_ALG_SHA_256))
+    {
+        return PAL_ATTEST_HASH_FAIL;
+    }
+
+    return PAL_ATTEST_SUCCESS;
+}
+
+static psa_ecc_curve_t attest_map_elliptic_curve_type(int32_t cose_curve)
+{
+    psa_ecc_curve_t psa_curve;
+
+    /*FixMe: Mapping is not complete, missing ones: P384, P521, ED25519, ED448 */
+    switch (cose_curve)
+    {
+    case P_256:
+        psa_curve = PSA_ECC_CURVE_SECP256R1;
+        break;
+    default:
+        psa_curve = USHRT_MAX;
+    }
+
+    return psa_curve;
+}
+
+static psa_algorithm_t cose_hash_alg_id_to_psa(int32_t cose_hash_alg_id)
+{
+    psa_algorithm_t status;
+
+    switch (cose_hash_alg_id)
+    {
+    case COSE_ALG_SHA256_PROPRIETARY:
+        status = PSA_ALG_SHA_256;
+        break;
+    default:
+        status = PSA_ALG_MD4;
+        break;
+    }
+
+    return status;
+}
+
+static int32_t hash_alg_id_from_sig_alg_id(int32_t cose_sig_alg_id)
+{
+    switch (cose_sig_alg_id)
+    {
+        case COSE_ALGORITHM_ES256:
+            return COSE_ALG_SHA256_PROPRIETARY;
+        default:
+            return INT32_MAX;
+    }
+}
+
+int32_t pal_cose_crypto_hash_start(struct pal_cose_crypto_hash *hash_ctx, int32_t cose_hash_alg_id)
+{
+    int32_t                          cose_ret = PAL_ATTEST_SUCCESS;
+    psa_status_t                     psa_ret;
+    struct pal_cose_psa_crypto_hash *psa_hash_ctx;
+
+    cose_ret = check_hash_sizes();
+    if (cose_ret)
+    {
+        goto error;
+    }
+
+    if (sizeof(struct pal_cose_crypto_hash) < sizeof(struct pal_cose_psa_crypto_hash))
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+        goto error;
+    }
+
+    psa_hash_ctx = (struct pal_cose_psa_crypto_hash *)hash_ctx;
+    psa_ret = psa_hash_setup(&psa_hash_ctx->operation, cose_hash_alg_id_to_psa(cose_hash_alg_id));
+
+    if (psa_ret == PAL_ATTEST_SUCCESS)
+    {
+        psa_hash_ctx->status = PAL_ATTEST_SUCCESS;
+        cose_ret = PAL_ATTEST_SUCCESS;
+    }
+    else if (psa_ret == PSA_ERROR_NOT_SUPPORTED)
+    {
+        cose_ret = PAL_ATTEST_HASH_UNSUPPORTED;
+    }
+    else
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+    }
+
+error:
+    return cose_ret;
+}
+
+void pal_cose_crypto_hash_update(struct pal_cose_crypto_hash *hash_ctx,
+                                 struct q_useful_buf_c data_to_hash)
+{
+    struct pal_cose_psa_crypto_hash *psa_hash_ctx;
+
+    if (sizeof(struct pal_cose_crypto_hash) < sizeof(struct pal_cose_psa_crypto_hash))
+    {
+        return;
+    }
+
+    psa_hash_ctx = (struct pal_cose_psa_crypto_hash *)hash_ctx;
+
+    if (psa_hash_ctx->status == PAL_ATTEST_SUCCESS)
+    {
+        if (data_to_hash.ptr != NULL)
+        {
+            psa_hash_ctx->status = psa_hash_update(&psa_hash_ctx->operation,
+                                                   data_to_hash.ptr,
+                                                   data_to_hash.len);
+        }
+        else
+        {
+            /* Intentionally do nothing, just computing the size of the token */
+        }
+    }
+}
+
+int32_t pal_cose_crypto_hash_finish(struct pal_cose_crypto_hash *hash_ctx,
+                                    struct q_useful_buf buffer_to_hold_result,
+                                    struct q_useful_buf_c *hash_result)
+{
+    uint32_t                         cose_ret = PAL_ATTEST_SUCCESS;
+    psa_status_t                     psa_ret;
+    struct pal_cose_psa_crypto_hash *psa_hash_ctx;
+
+    if (sizeof(struct pal_cose_crypto_hash) < sizeof(struct pal_cose_psa_crypto_hash))
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+        goto error;
+    }
+
+    psa_hash_ctx = (struct pal_cose_psa_crypto_hash *)hash_ctx;
+
+    if (psa_hash_ctx->status == PAL_ATTEST_SUCCESS)
+    {
+        psa_ret = psa_hash_finish(&psa_hash_ctx->operation,
+                                  buffer_to_hold_result.ptr,
+                                  buffer_to_hold_result.len,
+                                  &(hash_result->len));
+
+        if (psa_ret == PAL_ATTEST_SUCCESS)
+        {
+            hash_result->ptr = buffer_to_hold_result.ptr;
+            cose_ret = 0;
+        }
+        else if (psa_ret == PSA_ERROR_BUFFER_TOO_SMALL)
+        {
+            cose_ret = PAL_ATTEST_HASH_BUFFER_SIZE;
+        }
+        else
+        {
+            cose_ret = PAL_ATTEST_HASH_FAIL;
+        }
+    }
+    else
+    {
+        cose_ret = PAL_ATTEST_HASH_FAIL;
+    }
+
+error:
+    return cose_ret;
+}
+
+int pal_create_sha256(struct q_useful_buf_c bytes_to_hash, struct q_useful_buf buffer_for_hash,
+                      struct q_useful_buf_c *hash)
+{
+    uint32_t                      status = PAL_ATTEST_SUCCESS;
+    struct pal_cose_crypto_hash   hash_ctx;
+
+    status = pal_cose_crypto_hash_start(&hash_ctx, COSE_ALG_SHA256_PROPRIETARY);
+    if (status)
+        return status;
+
+    pal_cose_crypto_hash_update(&hash_ctx, bytes_to_hash);
+    status = pal_cose_crypto_hash_finish(&hash_ctx, buffer_for_hash, hash);
+
+    return status;
+}
+
+uint32_t pal_compute_hash(int32_t cose_alg_id, struct q_useful_buf buffer_for_hash,
+                          struct q_useful_buf_c *hash, struct q_useful_buf_c protected_headers,
+                          struct q_useful_buf_c payload)
+{
+    uint32_t                    status;
+    QCBOREncodeContext          cbor_encode_ctx;
+    struct q_useful_buf_c       tbs_first_part;
+    QCBORError                  qcbor_result;
+    struct pal_cose_crypto_hash hash_ctx = {{0}};
+    int32_t                     hash_alg_id;
+    UsefulBuf_MAKE_STACK_UB    (buffer_for_TBS_first_part, T_COSE_SIZE_OF_TBS);
+
+    /* This builds the CBOR-format to-be-signed bytes */
+    QCBOREncode_Init(&cbor_encode_ctx, buffer_for_TBS_first_part);
+    QCBOREncode_OpenArray(&cbor_encode_ctx);
+    /* context */
+    QCBOREncode_AddSZString(&cbor_encode_ctx,
+                            COSE_SIG_CONTEXT_STRING_SIGNATURE1);
+    /* body_protected */
+    QCBOREncode_AddBytes(&cbor_encode_ctx,
+                         protected_headers);
+    /* sign_protected */
+    QCBOREncode_AddBytes(&cbor_encode_ctx, NULL_USEFUL_BUF_C);
+    /* external_aad */
+    QCBOREncode_AddBytes(&cbor_encode_ctx, NULL_USEFUL_BUF_C);
+    /* fake payload */
+    QCBOREncode_AddBytes(&cbor_encode_ctx, NULL_USEFUL_BUF_C);
+    QCBOREncode_CloseArray(&cbor_encode_ctx);
+
+    /* Get the result and convert it to struct q_useful_buf_c representation */
+    qcbor_result = QCBOREncode_Finish(&cbor_encode_ctx, &tbs_first_part);
+    if (qcbor_result)
+    {
+        /* Mainly means that the protected_headers were too big
+         (which should never happen) */
+        status = PAL_ATTEST_ERR_SIGN_STRUCT;
+        goto Done;
+    }
+
+    /* Start the hashing */
+    hash_alg_id = hash_alg_id_from_sig_alg_id(cose_alg_id);
+
+    /* Don't check hash_alg_id for failure. pal_cose_crypto_hash_start()
+     * will handle it properly
+     */
+    status = pal_cose_crypto_hash_start(&hash_ctx, hash_alg_id);
+    if (status)
+        goto Done;
+
+    /* Hash the first part of the TBS. Take all but the last two
+     * bytes. The last two bytes are the fake payload from above. It
+     * is replaced by the real payload which is hashed next. The fake
+     * payload is needed so the array count is right. This is one of
+     * the main things that make it possible to implement with one
+     * buffer for the whole cose sign1.
+     */
+    pal_cose_crypto_hash_update(&hash_ctx, useful_buf_head(tbs_first_part,
+                                              tbs_first_part.len - 2));
+
+    /* Hash the payload */
+    pal_cose_crypto_hash_update(&hash_ctx, payload);
+
+    /* Finish the hash and set up to return it */
+    status = pal_cose_crypto_hash_finish(&hash_ctx,
+                                             buffer_for_hash,
+                                             hash);
+
+Done:
+    return status;
+}
+
+uint32_t pal_import_attest_key(int32_t alg)
+{
+    psa_key_type_t   attest_key_type;
+    size_t           public_key_size;
+    psa_status_t     status = PSA_SUCCESS;
+    psa_key_policy_t policy;
+    psa_ecc_curve_t  psa_curve;
+    psa_key_handle_t public_key_handle;
+
+    /* Mapping of COSE curve type to PSA curve types */
+    psa_curve = attest_map_elliptic_curve_type(P_256);
+    if (psa_curve == USHRT_MAX)
+        return PAL_ATTEST_ERROR;
+
+    /* Setup the key policy for public key */
+    policy = psa_key_policy_init();
+    psa_key_policy_set_usage(&policy, PSA_KEY_USAGE_VERIFY, alg);
+
+    status = psa_allocate_key(&public_key_handle);
+    if (status != PSA_SUCCESS)
+        return status;
+
+    status = psa_set_key_policy(public_key_handle, &policy);
+    if (status != PSA_SUCCESS)
+        return status;
+
+    attest_key_type = PSA_KEY_TYPE_ECC_PUBLIC_KEY(psa_curve);
+
+    /* Register public key to crypto service */
+    public_key_size = attest_key.pubx_key_size + attest_key.puby_key_size;
+
+    status = psa_import_key(public_key_handle,
+                                attest_key_type,
+                                (const uint8_t *)&attest_public_key,
+                                public_key_size + 1);
+
+    return status;
+}
+
+
+uint32_t pal_crypto_pub_key_verify(int32_t cose_algorithm_id,
+                                   struct q_useful_buf_c token_hash,
+                                   struct q_useful_buf_c signature)
+{
+    uint32_t status = PAL_ATTEST_SUCCESS;
+
+    if (!public_key_registered)
+    {
+        status = pal_import_attest_key(cose_algorithm_id);
+        if (status != PAL_ATTEST_SUCCESS)
+            return status;
+
+        public_key_registered = 1;
+    }
+
+/*
+ * Enable the verify function when Trusted Firmare - M Supports
+
+ *  Verify the signature a hash or short message using a public key.
+    status = psa_asymmetric_verify(public_key_handle,
+                                    cose_algorithm_id, token_hash.ptr, token_hash.len,
+                                    signature.ptr, signature.len);
+*/
+    return status;
+}
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_crypto.h b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_crypto.h
new file mode 100644
index 00000000..2d63ad13
--- /dev/null
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_crypto.h
@@ -0,0 +1,102 @@
+/** @file
+ * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+ * SPDX-License-Identifier : Apache-2.0
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+**/
+
+#include "pal_common.h"
+#include "pal_attestation_eat.h"
+
+#define ATTEST_PUBLIC_KEY_SLOT            4
+
+typedef struct{
+    uint8_t  *pubx_key;
+    uint32_t  pubx_key_size;
+    uint8_t  *puby_key;
+    uint32_t  puby_key_size;
+} ecc_key_t;
+
+struct ecc_public_key_t {
+    const uint8_t a;
+    uint8_t public_key[]; /* X-coordinate || Y-coordinate */
+};
+
+static const struct ecc_public_key_t attest_public_key = {
+     /* Constant byte */
+     0x04,
+     /* X-coordinate */
+     {0x79, 0xEB, 0xA9, 0x0E, 0x8B, 0xF4, 0x50, 0xA6,
+      0x75, 0x15, 0x76, 0xAD, 0x45, 0x99, 0xB0, 0x7A,
+      0xDF, 0x93, 0x8D, 0xA3, 0xBB, 0x0B, 0xD1, 0x7D,
+      0x00, 0x36, 0xED, 0x49, 0xA2, 0xD0, 0xFC, 0x3F,
+     /* Y-coordinate */
+      0xBF, 0xCD, 0xFA, 0x89, 0x56, 0xB5, 0x68, 0xBF,
+      0xDB, 0x86, 0x73, 0xE6, 0x48, 0xD8, 0xB5, 0x8D,
+      0x92, 0x99, 0x55, 0xB1, 0x4A, 0x26, 0xC3, 0x08,
+      0x0F, 0x34, 0x11, 0x7D, 0x97, 0x1D, 0x68, 0x64},
+};
+
+struct pal_cose_crypto_hash {
+    /* Can't put the actual size here without creating dependecy on
+     * actual hash implementation, so this is a fairly large and
+     * accommodating size.
+     */
+    uint8_t bytes[128];
+};
+
+struct pal_cose_psa_crypto_hash {
+    psa_status_t         status;
+    psa_hash_operation_t operation;
+};
+
+static const uint8_t initial_attestation_public_x_key[] =
+{
+    0x79, 0xEB, 0xA9, 0x0E, 0x8B, 0xF4, 0x50, 0xA6,
+    0x75, 0x15, 0x76, 0xAD, 0x45, 0x99, 0xB0, 0x7A,
+    0xDF, 0x93, 0x8D, 0xA3, 0xBB, 0x0B, 0xD1, 0x7D,
+    0x00, 0x36, 0xED, 0x49, 0xA2, 0xD0, 0xFC, 0x3F
+};
+
+static const uint8_t initial_attestation_public_y_key[] =
+{
+    0xBF, 0xCD, 0xFA, 0x89, 0x56, 0xB5, 0x68, 0xBF,
+    0xDB, 0x86, 0x73, 0xE6, 0x48, 0xD8, 0xB5, 0x8D,
+    0x92, 0x99, 0x55, 0xB1, 0x4A, 0x26, 0xC3, 0x08,
+    0x0F, 0x34, 0x11, 0x7D, 0x97, 0x1D, 0x68, 0x64
+};
+
+/* Initialize the structure with given public key */
+static const ecc_key_t attest_key = {
+        (uint8_t *)initial_attestation_public_x_key,
+        sizeof(initial_attestation_public_x_key),
+        (uint8_t *)initial_attestation_public_y_key,
+        sizeof(initial_attestation_public_y_key)
+};
+
+int32_t pal_cose_crypto_hash_start(struct pal_cose_crypto_hash *hash_ctx, int32_t cose_hash_alg_id);
+void pal_cose_crypto_hash_update(struct pal_cose_crypto_hash *hash_ctx,
+                                 struct q_useful_buf_c data_to_hash);
+int32_t pal_cose_crypto_hash_finish(struct pal_cose_crypto_hash *hash_ctx,
+                                    struct q_useful_buf buffer_to_hold_result,
+                                    struct q_useful_buf_c *hash_result);
+int pal_create_sha256(struct q_useful_buf_c bytes_to_hash, struct q_useful_buf buffer_for_hash,
+                      struct q_useful_buf_c *hash);
+uint32_t pal_compute_hash(int32_t cose_alg_id, struct q_useful_buf buffer_for_hash,
+                          struct q_useful_buf_c *hash, struct q_useful_buf_c protected_headers,
+                          struct q_useful_buf_c payload);
+uint32_t pal_import_attest_key(int32_t alg);
+uint32_t pal_crypto_pub_key_verify(int32_t cose_algorithm_id, struct q_useful_buf_c token_hash,
+                                   struct q_useful_buf_c signature);
+
+
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_eat.c b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_eat.c
index 262dc5dd..178fdc9c 100644
--- a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_eat.c
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_eat.c
@@ -15,10 +15,56 @@
  * limitations under the License.
 **/
 
-#include "pal_attestation_eat.h"
+#include "pal_attestation_crypto.h"
+
+uint32_t    mandatory_claims = 0;
+uint32_t    mandaroty_sw_components = 0;
+bool_t      sw_component_present = 0;
+
+static int pal_encode_cose_key(struct q_useful_buf_c *cose_key,
+                               struct q_useful_buf buffer_for_cose_key,
+                               struct q_useful_buf_c x_cord, struct q_useful_buf_c y_cord)
+{
+    uint32_t                  return_value;
+    QCBORError                qcbor_result;
+    QCBOREncodeContext        cbor_encode_ctx;
+    int32_t                   cose_curve_id = P_256;
+    struct q_useful_buf_c       encoded_key_id;
+
+    /* Get the public key x and y */
+    /* Encode it into a COSE_Key structure */
+    QCBOREncode_Init(&cbor_encode_ctx, buffer_for_cose_key);
+    QCBOREncode_OpenMap(&cbor_encode_ctx);
+    QCBOREncode_AddInt64ToMapN(&cbor_encode_ctx,
+                               COSE_KEY_COMMON_KTY,
+                               COSE_KEY_TYPE_EC2);
+    QCBOREncode_AddInt64ToMapN(&cbor_encode_ctx,
+                               COSE_KEY_PARAM_CRV,
+                               cose_curve_id);
+    QCBOREncode_AddBytesToMapN(&cbor_encode_ctx,
+                               COSE_KEY_PARAM_X_COORDINATE,
+                               x_cord);
+    QCBOREncode_AddBytesToMapN(&cbor_encode_ctx,
+                               COSE_KEY_PARAM_Y_COORDINATE,
+                               y_cord);
+    QCBOREncode_CloseMap(&cbor_encode_ctx);
+
+    qcbor_result = QCBOREncode_Finish(&cbor_encode_ctx, &encoded_key_id);
+    if (qcbor_result != QCBOR_SUCCESS)
+    {
+        /* Mainly means that the COSE_Key was too big for buffer_for_cose_key */
+        return_value = PAL_ATTEST_ERR_PROTECTED_HEADERS;
+        goto Done;
+    }
+
+    /* Finish up and return */
+    *cose_key = encoded_key_id;
+    return_value = PAL_ATTEST_SUCCESS;
+
+Done:
+    return return_value;
+}
 
-uint32_t  mandatory_claims = 0, mandaroty_sw_components = 0;
-bool_t    sw_component_present = 0;
 
 static int get_items_in_map(QCBORDecodeContext *decode_context,
                             struct items_to_get_t *item_list)
@@ -90,7 +136,7 @@ static int get_item_in_map(QCBORDecodeContext *decode_context,
 }
 
 static int parse_unprotected_headers(QCBORDecodeContext *decode_context,
-                                     struct useful_buf_c *child,
+                                     struct q_useful_buf_c *child,
                                      bool *loop_back)
 {
     struct items_to_get_t   item_list[3];
@@ -120,7 +166,7 @@ static int parse_unprotected_headers(QCBORDecodeContext *decode_context,
     return PAL_ATTEST_SUCCESS;
 }
 
-static int parse_protected_headers(struct useful_buf_c protected_headers,
+static int parse_protected_headers(struct q_useful_buf_c protected_headers,
                                    int32_t *alg_id)
 {
     QCBORDecodeContext  decode_context;
@@ -156,7 +202,7 @@ static int parse_protected_headers(struct useful_buf_c protected_headers,
     @return   - error status
 **/
 static int parse_claims(QCBORDecodeContext *decode_context, QCBORItem item,
-                                   struct useful_buf_c completed_challenge)
+                                   struct q_useful_buf_c completed_challenge)
 {
     int i, count = 0;
     int status = PAL_ATTEST_SUCCESS;
@@ -281,16 +327,42 @@ static int parse_claims(QCBORDecodeContext *decode_context, QCBORItem item,
 int32_t pal_initial_attest_verify_token(uint8_t *challenge, uint32_t challenge_size,
                                         uint8_t *token, uint32_t token_size)
 {
-    int                 status = PAL_ATTEST_SUCCESS;
+    int32_t             status = PAL_ATTEST_SUCCESS;
     bool                short_circuit;
     int32_t             cose_algorithm_id;
     QCBORItem           item;
     QCBORDecodeContext  decode_context;
-    struct useful_buf_c completed_challenge;
-    struct useful_buf_c completed_token;
-    struct useful_buf_c payload;
-    struct useful_buf_c protected_headers;
-    struct useful_buf_c kid;
+    struct q_useful_buf_c completed_challenge;
+    struct q_useful_buf_c completed_token;
+    struct q_useful_buf_c payload;
+    struct q_useful_buf_c signature;
+    struct q_useful_buf_c protected_headers;
+    struct q_useful_buf_c kid;
+    struct q_useful_buf_c x_cord;
+    struct q_useful_buf_c y_cord;
+    struct q_useful_buf_c cose_key_to_hash;
+    struct q_useful_buf_c key_hash;
+    struct q_useful_buf_c token_hash;
+    USEFUL_BUF_MAKE_STACK_UB(buf_to_hold_x_coord, T_COSE_CRYPTO_EC_P256_COORD_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buf_to_hold_y_coord, T_COSE_CRYPTO_EC_P256_COORD_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_kid, T_COSE_CRYPTO_SHA256_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_cose_key, MAX_ENCODED_COSE_KEY_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_encoded_key, MAX_ENCODED_COSE_KEY_SIZE);
+    USEFUL_BUF_MAKE_STACK_UB(buffer_for_token_hash, T_COSE_CRYPTO_SHA256_SIZE);
+
+    kid.ptr = buffer_for_encoded_key.ptr;
+
+    memcpy(buf_to_hold_x_coord.ptr, (const void *)attest_key.pubx_key, attest_key.pubx_key_size);
+    memcpy(buf_to_hold_y_coord.ptr, (const void *)attest_key.puby_key, attest_key.puby_key_size);
+
+    /* Update size */
+    buf_to_hold_x_coord.len = attest_key.pubx_key_size;
+    buf_to_hold_y_coord.len = attest_key.puby_key_size;
+
+    x_cord.ptr = buf_to_hold_x_coord.ptr;
+    x_cord.len = buf_to_hold_x_coord.len;
+    y_cord.ptr = buf_to_hold_y_coord.ptr;
+    y_cord.len = buf_to_hold_y_coord.len;
 
     /* Construct the token buffer for validation */
     completed_token.ptr = token;
@@ -345,6 +417,27 @@ int32_t pal_initial_attest_verify_token(uint8_t *challenge, uint32_t challenge_s
     if (status != PAL_ATTEST_SUCCESS)
         return status;
 
+    /* Encode the given public key */
+    status = pal_encode_cose_key(&cose_key_to_hash, buffer_for_cose_key, x_cord, y_cord);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
+    /* Create hash of the given public key */
+    status = pal_create_sha256(cose_key_to_hash, buffer_for_kid, &key_hash);
+    if (status != PSA_SUCCESS)
+        return status;
+
+    /* Compare the hash of the public key in token and hash of the given public key */
+    if (kid.len != key_hash.len)
+    {
+        return PAL_ATTEST_HASH_LENGTH_MISMATCH;
+    }
+
+    if (memcmp(kid.ptr, key_hash.ptr, kid.len) != 0)
+    {
+        return PAL_ATTEST_HASH_MISMATCH;
+    }
+
     /* Get the payload */
     QCBORDecode_GetNext(&decode_context, &item);
     if (item.uDataType != QCBOR_TYPE_BYTE_STRING)
@@ -357,6 +450,19 @@ int32_t pal_initial_attest_verify_token(uint8_t *challenge, uint32_t challenge_s
     if (item.uDataType != QCBOR_TYPE_BYTE_STRING)
         return PAL_ATTEST_TOKEN_ERR_CBOR_FORMATTING;
 
+    signature = item.val.string;
+
+    /* Compute the hash from the token */
+    status = pal_compute_hash(cose_algorithm_id, buffer_for_token_hash, &token_hash,
+                              protected_headers, payload);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
+    /* Verify the signature */
+    status = pal_crypto_pub_key_verify(cose_algorithm_id, token_hash, signature);
+    if (status != PAL_ATTEST_SUCCESS)
+        return status;
+
     /* Initialize the Decoder and validate the payload format */
     QCBORDecode_Init(&decode_context, payload, QCBOR_DECODE_MODE_NORMAL);
     status = QCBORDecode_GetNext(&decode_context, &item);
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_eat.h b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_eat.h
index 9f435fb3..8a0c5455 100644
--- a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_eat.h
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_eat.h
@@ -17,16 +17,70 @@
 
 #include "qcbor.h"
 #include "pal_common.h"
+#include "psa/crypto.h"
 
 #define PAL_ATTEST_MIN_ERROR              30
 
+/* NIST P-256 also known as secp256r1 */
+#define P_256                             1
+
 #define COSE_HEADER_PARAM_ALG             1
 #define COSE_HEADER_PARAM_KID             4
 
-#define MANDATORY_CLAIM_WITH_SW_COMP      862
-#define MANDATORY_CLAIM_NO_SW_COMP        926
-#define MANDATORY_SW_COMP                 36
-#define CBOR_ARM_TOTAL_CLAIM_INSTANCE     10
+#define COSE_KEY_COMMON_KTY               1
+#define COSE_KEY_TYPE_EC2                 2
+#define COSE_KEY_PARAM_CRV               -1
+#define COSE_KEY_PARAM_X_COORDINATE      -2
+#define COSE_KEY_PARAM_Y_COORDINATE      -3
+#define COSE_ALGORITHM_ES256             -7
+#define COSE_ALG_SHA256_PROPRIETARY      -72000
+
+/**
+ * The size of X and Y coordinate in 2 parameter style EC public
+ * key. Format is as defined in [COSE (RFC 8152)]
+ * (https://tools.ietf.org/html/rfc8152) and [SEC 1: Elliptic Curve
+ * Cryptography](http://www.secg.org/sec1-v2.pdf).
+ *
+ * This size is well-known and documented in public standards.
+ */
+#define T_COSE_CRYPTO_EC_P256_COORD_SIZE  32
+#define T_COSE_CRYPTO_SHA256_SIZE         32
+
+#define MAX_ENCODED_COSE_KEY_SIZE \
+    1 + /* 1 byte to encode map */ \
+    2 + /* 2 bytes to encode key type */ \
+    2 + /* 2 bytes to encode curve */ \
+    2 * /* the X and Y coordinates at 32 bytes each */ \
+        (T_COSE_CRYPTO_EC_P256_COORD_SIZE + 1 + 2)
+#define USEFUL_BUF_MAKE_STACK_UB UsefulBuf_MAKE_STACK_UB
+
+#define COSE_SIG_CONTEXT_STRING_SIGNATURE1 "Signature1"
+
+/* Private value. Intentionally not documented for Doxygen.
+ * This is the size allocated for the encoded protected headers.  It
+ * needs to be big enough for make_protected_header() to succeed. It
+ * currently sized for one header with an algorithm ID up to 32 bits
+ * long -- one byte for the wrapping map, one byte for the label, 5
+ * bytes for the ID. If this is made accidentially too small, QCBOR will
+ * only return an error, and not overrun any buffers.
+ *
+ * 9 extra bytes are added, rounding it up to 16 total, in case some
+ * other protected header is to be added.
+ */
+#define T_COSE_SIGN1_MAX_PROT_HEADER (1+1+5+9)
+
+/**
+ * This is the size of the first part of the CBOR encoded TBS
+ * bytes. It is around 20 bytes. See create_tbs_hash().
+ */
+#define T_COSE_SIZE_OF_TBS \
+    1 + /* For opening the array */ \
+    sizeof(COSE_SIG_CONTEXT_STRING_SIGNATURE1) + /* "Signature1" */ \
+    2 + /* Overhead for encoding string */ \
+    T_COSE_SIGN1_MAX_PROT_HEADER + /* entire protected headers */ \
+    3 * ( /* 3 NULL bstrs for fields not used */ \
+        1 /* size of a NULL bstr */  \
+    )
 
 /*
  CBOR Label for proprietary header indicating short-circuit
@@ -47,6 +101,8 @@
 #define EAT_CBOR_ARM_LABEL_UEID                 (EAT_CBOR_ARM_RANGE_BASE - 9)
 #define EAT_CBOR_ARM_LABEL_ORIGINATION          (EAT_CBOR_ARM_RANGE_BASE - 10)
 
+#define CBOR_ARM_TOTAL_CLAIM_INSTANCE           10
+
 #define EAT_CBOR_SW_COMPONENT_TYPE              (1u)
 #define EAT_CBOR_SW_COMPONENT_MEASUREMENT       (2u)
 #define EAT_CBOR_SW_COMPONENT_EPOCH             (3u)
@@ -54,6 +110,40 @@
 #define EAT_CBOR_SW_COMPONENT_SIGNER_ID         (5u)
 #define EAT_CBOR_SW_COMPONENT_MEASUREMENT_DESC  (6u)
 
+#define MANDATORY_CLAIM_WITH_SW_COMP           (1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_NONCE)              |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_UEID)               |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_IMPLEMENTATION_ID)  |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_CLIENT_ID)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_SECURITY_LIFECYCLE) |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_BOOT_SEED)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_SW_COMPONENTS))
+
+#define MANDATORY_CLAIM_NO_SW_COMP             (1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_NONCE)              |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_UEID)               |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_IMPLEMENTATION_ID)  |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_CLIENT_ID)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_SECURITY_LIFECYCLE) |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_BOOT_SEED)          |     \
+                                                1 << (EAT_CBOR_ARM_RANGE_BASE                      \
+                                                    - EAT_CBOR_ARM_LABEL_NO_SW_COMPONENTS))
+
+#define MANDATORY_SW_COMP                      (1 << EAT_CBOR_SW_COMPONENT_MEASUREMENT      |     \
+                                                1 << EAT_CBOR_SW_COMPONENT_SIGNER_ID)
+
+#define NULL_USEFUL_BUF_C  NULLUsefulBufC
 
 enum attestation_error_code {
     PAL_ATTEST_SUCCESS = 0,
@@ -61,6 +151,13 @@ enum attestation_error_code {
     PAL_ATTEST_TOKEN_CHALLENGE_MISMATCH,
     PAL_ATTEST_TOKEN_NOT_SUPPORTED,
     PAL_ATTEST_TOKEN_NOT_ALL_MANDATORY_CLAIMS,
+    PAL_ATTEST_HASH_LENGTH_MISMATCH,
+    PAL_ATTEST_HASH_MISMATCH,
+    PAL_ATTEST_HASH_FAIL,
+    PAL_ATTEST_HASH_UNSUPPORTED,
+    PAL_ATTEST_HASH_BUFFER_SIZE,
+    PAL_ATTEST_ERR_PROTECTED_HEADERS,
+    PAL_ATTEST_ERR_SIGN_STRUCT,
     PAL_ATTEST_ERROR,
 };
 
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_intf.h b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_intf.h
index ef132b5b..12f6ee94 100644
--- a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_intf.h
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/nspe/initial_attestation/pal_attestation_intf.h
@@ -18,7 +18,7 @@
 #ifndef _PAL_INITIAL_ATTESTATION_H_
 #define _PAL_INITIAL_ATTESTATION_H_
 
-#include "pal_attestation_eat.h"
+#include "pal_attestation_crypto.h"
 
 enum attestation_function_code {
     PAL_INITIAL_ATTEST_GET_TOKEN        = 0x1,
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/spe/pal_driver_intf.c b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/spe/pal_driver_intf.c
index cc8b5373..fd307839 100644
--- a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/spe/pal_driver_intf.c
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/spe/pal_driver_intf.c
@@ -33,7 +33,7 @@ void pal_uart_init(uint32_t uart_base_addr)
               - data     : Value for format specifier
 **/
 
-void pal_print(char *str, uint32_t data)
+void pal_print(char *str, int32_t data)
 {
   pal_cmsdk_print(str,data);
 
@@ -110,3 +110,23 @@ int pal_wd_timer_is_enabled(addr_t base_addr)
     return (pal_wd_cmsdk_is_enabled(base_addr));
 }
 
+/**
+    @brief   - Trigger interrupt for irq signal assigned to driver partition
+               before return to caller.
+    @param   - void
+    @return  - void
+**/
+void pal_generate_interrupt(void)
+{
+    pal_uart_cmsdk_generate_irq();
+}
+
+/**
+    @brief   - Disable interrupt that was generated using pal_generate_interrupt API.
+    @param   - void
+    @return  - void
+**/
+void pal_disable_interrupt(void)
+{
+    pal_uart_cmsdk_disable_irq();
+}
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/spe/pal_driver_intf.h b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/spe/pal_driver_intf.h
index da85a63e..cef34ca8 100644
--- a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/spe/pal_driver_intf.h
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/spe/pal_driver_intf.h
@@ -23,11 +23,13 @@
 #include "pal_wd_cmsdk.h"
 
 void pal_uart_init(uint32_t uart_base_addr);
-void pal_print(char *str, uint32_t data);
+void pal_print(char *str, int32_t data);
 int pal_nvmem_write(addr_t base, uint32_t offset, void *buffer, int size);
 int pal_nvmem_read(addr_t base, uint32_t offset, void *buffer, int size);
 int pal_wd_timer_init(addr_t base_addr, uint32_t time_us, uint32_t timer_tick_us);
 int pal_wd_timer_enable(addr_t base_addr);
 int pal_wd_timer_disable(addr_t base_addr);
 int pal_wd_timer_is_enabled(addr_t base_addr);
+void pal_generate_interrupt(void);
+void pal_disable_interrupt(void);
 #endif /* _PAL_DRIVER_INTF_H_ */
diff --git a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/target.cfg b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/target.cfg
index 37b2628b..9a407b80 100644
--- a/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/target.cfg
+++ b/api-tests/platform/targets/tgt_ff_mbedos_fvp_mps2_m4/target.cfg
@@ -62,18 +62,21 @@ dut.0.combine_test_binary_in_ram = AVAILABLE;
 // Level of Isolation
 dut.0.implemented_psa_firmware_isolation_level = LEVEL1;
 
+// Are dynamic memory allocation functions available to secure partition?
+dut.0.sp_heap_mem_supp = AVAILABLE;
+
 // Assign free memory range for isolation testing. Choose the addresses
 // for these memory regions such that it follows below condition:
-// nspe_mmio.0.start < client_partition_mmio.0.start < driver_partition_mmio.0.start.
+// nspe_mmio.0.start < server_partition_mmio.0.start < driver_partition_mmio.0.start.
 nspe_mmio.num=1;
 nspe_mmio.0.start = 0x200AF000;
 nspe_mmio.0.end = 0x200AF01F;
 nspe_mmio.0.permission = TYPE_READ_WRITE;
 
-client_partition_mmio.num=1;
-client_partition_mmio.0.start = 0x200AF020;
-client_partition_mmio.0.end = 0x200AF03F;
-client_partition_mmio.0.permission = TYPE_READ_WRITE;
+server_partition_mmio.num=1;
+server_partition_mmio.0.start = 0x200AF020;
+server_partition_mmio.0.end = 0x200AF03F;
+server_partition_mmio.0.permission = TYPE_READ_WRITE;
 
 driver_partition_mmio.num=1;
 driver_partition_mmio.0.start = 0x200AF040;
diff --git a/api-tests/tools/makefiles/Makefile b/api-tests/tools/makefiles/Makefile
index 6891f43a..1aa790b1 100644
--- a/api-tests/tools/makefiles/Makefile
+++ b/api-tests/tools/makefiles/Makefile
@@ -30,17 +30,32 @@ all: clean target_cfg gen_linker process_testsuite.db build
 
 #Generate target files from User provided data base
 target_cfg:
+	@echo  ""
+	@echo  "Processing target configuration..."
 	mkdir -p $(BUILD)/platform/${TARGET}/
 	@if [ ! -f "$(SOURCE)/platform/targets/$(TARGET)/target.cfg" ]; then { echo "Error: Target Not Found!!!"; exit 1; } fi
-	perl $(SOURCE)/tools/scripts/targetConfigGen.pl $(SOURCE) $(BUILD) ${TARGET}
+	python $(SOURCE)/tools/scripts/targetConfigGen.py ${TARGET} $(SOURCE)/val/common/val_target.h \
+	$(SOURCE)/platform/targets/${TARGET}/target.cfg $(BUILD)/platform/${TARGET}/targetConfigGen.c \
+	$(BUILD)/platform/${TARGET}/target_database.h target_database ""
+	gcc -D__addr_t_defined -DTARGET_CFG_BUILD $(BUILD)/platform/${TARGET}/targetConfigGen.c -o $(BUILD)/platform/${TARGET}/targetConfigGen \
+	-I$(SOURCE)/val/nspe -I$(SOURCE)/val/common -I$(SOURCE)/platform/targets/${TARGET}/nspe/common
+	./$(BUILD)/platform/${TARGET}/targetConfigGen
 
 #Read target.cfg and update the addresses in linker script
 gen_linker:
+	@echo  ""
+	@echo  "Updating linker files..."
 	mkdir -p $(SUITE_OUT)/ $(BUILD)/val/ $(BUILD)/partition/ ;
 	perl $(SOURCE)/tools/scripts/process_test_linker_file.pl $(SOURCE) $(SUITE_OUT) ${TARGET} $(TOOLCHAIN)
 
 process_testsuite.db:
-	$(eval TEST_LIST := $(shell grep "^test" $(SUITE_IN)/testsuite.db > $(SUITE_OUT)/.testlist.txt ; dos2unix $(SUITE_OUT)/.testlist.txt ; cat $(SUITE_OUT)/.testlist.txt))
+	@echo  ""
+	@echo  "Creating testlist..."
+ifeq (${INCLUDE_PANIC_TESTS}, 1)
+	$(eval TEST_LIST := $(shell grep -o "^test....." $(SUITE_IN)/testsuite.db > $(SUITE_OUT)/.testlist.txt ; dos2unix $(SUITE_OUT)/.testlist.txt ; cat $(SUITE_OUT)/.testlist.txt))
+else
+	$(eval TEST_LIST := $(shell grep -v "^test....., panic_test" $(SUITE_IN)/testsuite.db | grep "^test" > $(SUITE_OUT)/.testlist.txt ; dos2unix $(SUITE_OUT)/.testlist.txt ; cat $(SUITE_OUT)/.testlist.txt))
+endif
 	perl $(SOURCE)/tools/scripts/gen_tests_list.pl $(BUILD) $(SUITE_OUT)/.testlist.txt $(SUITE)
 
 
@@ -60,9 +75,17 @@ val_nspe.a:
 	@echo  "----------val build complete-------------"
 
 test_combine.elf: test.elf
+	@echo  ""
+ifeq (${TEST_COMBINE_ARCHIVE}, 1)
+	@echo  "----------Combine NS test objects into archive start-------------"
+	$(AR) $(AR_OPTIONS) $(SUITE_OUT)/test_combine.a $(SUITE_OUT)/test*/test_*_nspe.o
+	@echo  "----------Combine NS test objects into archive complete-------------"
+else
+	@echo  "----------Combine NS test elfs into binary start-------------"
 	perl $(SOURCE)/tools/scripts/test_elf_combine.pl $(SUITE_OUT)/.testlist.txt
 	hexdump -v -e ' 1/4 "%08X" "\n"' $(SUITE_OUT)/test_elf_combine.bin > $(SUITE_OUT)/test_elf_combine.hex
-	$(AR) $(AR_OPTIONS) $(SUITE_OUT)/test_combine.a $(SUITE_OUT)/test*/test_*_nspe.o
+	@echo  "----------Combine NS test elfs into binary complete-------------"
+endif
 
 test.elf:
 	@echo  ""
@@ -80,7 +103,7 @@ endif
 
 output_list:
 	@echo  ""
-	@echo  "Below are the list of output binaries/libraries. Integrate these bins/libs"
+	@echo  "Below are the list of output binaries/libraries. Integrate these"
 	@echo  "to your software stack to execute test suite."
 	@echo  ""
 	@echo  "a) NSPE files:"
@@ -103,5 +126,6 @@ endif
 	@echo  ""
 
 clean:
-	@echo  ">>>> Cleaning the build directory..."
+	@echo  ""
+	@echo  "Cleaning the build directory..."
 	rm -rf $(BUILD)/*
diff --git a/api-tests/tools/makefiles/linker/test.linker b/api-tests/tools/makefiles/linker/test.linker
index ee746997..69fc4d15 100644
--- a/api-tests/tools/makefiles/linker/test.linker
+++ b/api-tests/tools/makefiles/linker/test.linker
@@ -21,8 +21,8 @@ TEST_START = 0x2004F000;
 MEMORY
 {
     TEST_INFO  (R)  : ORIGIN = TEST_START, LENGTH = 0x100
-    TEST_TEXT  (RX) : ORIGIN = TEST_START +0x100, LENGTH = 0x1800
-    TEST_DATA  (RW) : ORIGIN = TEST_START +0x1900, LENGTH = 0x1800
+    TEST_TEXT  (RX) : ORIGIN = TEST_START +0x100, LENGTH = 0x1A00
+    TEST_DATA  (RW) : ORIGIN = TEST_START +0x1B00, LENGTH = 0x1800
 }
 
 SECTIONS
diff --git a/api-tests/tools/makefiles/linker/test.sct b/api-tests/tools/makefiles/linker/test.sct
index ef86c3f2..4d5a7a91 100644
--- a/api-tests/tools/makefiles/linker/test.sct
+++ b/api-tests/tools/makefiles/linker/test.sct
@@ -16,7 +16,7 @@
 
 #define TEST_CODE_START 0x0
 #define TEST_INFO_SIZE  0x100
-#define TEST_TEXT_SIZE  0x1800
+#define TEST_TEXT_SIZE  0x1A00
 #define TEST_DATA_SIZE  0x1800
 
 LR_CODE TEST_CODE_START
diff --git a/api-tests/tools/makefiles/spbuild.mk b/api-tests/tools/makefiles/spbuild.mk
index 21fbc965..1479e744 100644
--- a/api-tests/tools/makefiles/spbuild.mk
+++ b/api-tests/tools/makefiles/spbuild.mk
@@ -59,7 +59,13 @@ $(BUILD)/partition/%.o : %.s
 	$(AS) -o $@ $<
 
 client_partition.a:
+ifeq ($(wildcard $(SUITE_OUT)/test_i*/.*),)
+	$(AR) $(AR_OPTIONS) $(BUILD)/partition/client_partition.a $(BUILD)/partition/client_partition.o $(SUITE_OUT)/test*/test_l*_spe.o
+else ifeq ($(wildcard $(SUITE_OUT)/test_l*/.*),)
 	$(AR) $(AR_OPTIONS) $(BUILD)/partition/client_partition.a $(BUILD)/partition/client_partition.o $(SUITE_OUT)/test*/test_i*_spe.o
+else
+	$(AR) $(AR_OPTIONS) $(BUILD)/partition/client_partition.a $(BUILD)/partition/client_partition.o $(SUITE_OUT)/test*/test_i*_spe.o $(SUITE_OUT)/test*/test_l*_spe.o
+endif
 
 server_partition.a:
 	$(AR) $(AR_OPTIONS) $(BUILD)/partition/server_partition.a $(BUILD)/partition/server_partition.o $(SUITE_OUT)/test*/test_supp_*_spe.o
diff --git a/api-tests/tools/makefiles/toolchain.mk b/api-tests/tools/makefiles/toolchain.mk
index 2a3c9983..699e6bbb 100644
--- a/api-tests/tools/makefiles/toolchain.mk
+++ b/api-tests/tools/makefiles/toolchain.mk
@@ -82,27 +82,35 @@ endif
 COMPILER_OPTIONS += -DVERBOSE=$(VERBOSE)
 
 ifeq (${TEST_COMBINE_ARCHIVE}, 1)
-COMPILER_OPTIONS += -DTEST_COMBINE_ARCHIVE
+COMPILER_OPTIONS += -DTEST_COMBINE_ARCHIVE=1
+endif
+
+ifeq (${WATCHDOG_AVAILABLE}, 1)
+COMPILER_OPTIONS += -DWATCHDOG_AVAILABLE=1
+endif
+
+ifeq (${SP_HEAP_MEM_SUPP}, 1)
+COMPILER_OPTIONS += -DSP_HEAP_MEM_SUPP=1
 endif
 
 ifeq (${PSA_IPC_IMPLEMENTED}, 1)
-COMPILER_OPTIONS += -DPSA_IPC_IMPLEMENTED
+COMPILER_OPTIONS += -DPSA_IPC_IMPLEMENTED=1
 endif
 
 ifeq (${PSA_CRYPTO_IMPLEMENTED}, 1)
-COMPILER_OPTIONS += -DPSA_CRYPTO_IMPLEMENTED
+COMPILER_OPTIONS += -DPSA_CRYPTO_IMPLEMENTED=1
 endif
 
 ifeq (${PSA_PROTECTED_STORAGE_IMPLEMENTED}, 1)
-COMPILER_OPTIONS += -DPSA_PROTECTED_STORAGE_IMPLEMENTED
+COMPILER_OPTIONS += -DPSA_PROTECTED_STORAGE_IMPLEMENTED=1
 endif
 
 ifeq (${PSA_INTERNAL_TRUSTED_STORAGE_IMPLEMENTED}, 1)
-COMPILER_OPTIONS += -DPSA_INTERNAL_TRUSTED_STORAGE_IMPLEMENTED
+COMPILER_OPTIONS += -DPSA_INTERNAL_TRUSTED_STORAGE_IMPLEMENTED=1
 endif
 
 ifeq (${PSA_INITIAL_ATTESTATION_IMPLEMENTED}, 1)
-COMPILER_OPTIONS += -DPSA_INITIAL_ATTESTATION_IMPLEMENTED
+COMPILER_OPTIONS += -DPSA_INITIAL_ATTESTATION_IMPLEMENTED=1
 endif
 
 CC= $(COMPILER) $(COMPILER_OPTIONS) $(CC_OPTIONS) $(USER_INCLUDE) $(INCLUDE)
diff --git a/api-tests/tools/scripts/gen_tests_list.pl b/api-tests/tools/scripts/gen_tests_list.pl
index 8b27b50b..f98bb562 100644
--- a/api-tests/tools/scripts/gen_tests_list.pl
+++ b/api-tests/tools/scripts/gen_tests_list.pl
@@ -33,8 +33,6 @@ sub gen_test_entry_info
     my $test_entry_list             = "$build/val/test_entry_list.inc";
     my $test_entry_fn_declare_list  = "$build/val/test_entry_fn_declare_list.inc";
 
-    print "\n>>>> Generating tests list by referring testsuite.db \n";
-
     if ($suite eq "crypto")
     {
         $suite_base = 1;
@@ -73,7 +71,7 @@ sub gen_test_entry_info
     close IN;
     close OUT1;
     close OUT2;
-    print "Output files are:
+    print "Non-secure test entry symbol list:
     $test_entry_list,
     $test_entry_fn_declare_list\n";
 }
@@ -87,8 +85,6 @@ sub gen_secure_tests_list
     my $server_tests_list_declare = "$build/partition/server_tests_list_declare.inc";
     my $server_tests_list         = "$build/partition/server_tests_list.inc";
 
-    print "\n>>>> Generating secure tests list files by referring testsuite.db \n";
-
     open(IN, $tests_list) or die "Unable to open $tests_list $!";
     open(OUT1, '>', $client_tests_list_declare) or die "Unable to open: $!";
     open(OUT2, '>', $client_tests_list) or die "Unable to open: $!";
@@ -123,7 +119,7 @@ sub gen_secure_tests_list
     close OUT3;
     close OUT4;
 
-    print "Output files are:
+    print "Secure test entry symbol list:
     $client_tests_list_declare,
     $client_tests_list,
     $server_tests_list_declare,
diff --git a/api-tests/tools/scripts/process_test_linker_file.pl b/api-tests/tools/scripts/process_test_linker_file.pl
index 3a31b3b5..4b0bb276 100755
--- a/api-tests/tools/scripts/process_test_linker_file.pl
+++ b/api-tests/tools/scripts/process_test_linker_file.pl
@@ -16,8 +16,6 @@
 # * limitations under the License.
 #**/
 
-print "\n>>>> Updating linker file... \n";
-
 #inputs
 $source=$ARGV[0];
 $suite_out=$ARGV[1];
diff --git a/api-tests/tools/scripts/setup.sh b/api-tests/tools/scripts/setup.sh
index 46058a75..7d6b36cf 100755
--- a/api-tests/tools/scripts/setup.sh
+++ b/api-tests/tools/scripts/setup.sh
@@ -21,16 +21,21 @@ echo ""
 declare -a INCLUDE_PATHS
 export SUITE=" "
 export TEST_COMBINE_ARCHIVE=0
+export INCLUDE_PANIC_TESTS=0
+export WATCHDOG_AVAILABLE=0
+export SP_HEAP_MEM_SUPP=0
 export CLIENT_FILE_FOUND=0
 export SERVICE_FILE_FOUND=0
+export MANIFEST_OUT_FILE_FOUND=0
 export CRYPTO_FILE_FOUND=0
 export PROTECTED_STORAGE_FILE_FOUND=0
 export INTERNAL_TRUSTED_STORAGE_FILE_FOUND=0
 export INITIAL_ATTESTATION_FILE_FOUND=0
+export LIFECYCLE_FILE_FOUND=0
 
 IPC_HEADER_FILE_REQ="If PSA IPC implemented in your platform, include path must point to path
-where \"psa/client.h\", \"psa/service.h\" and test partition manifest output files
-(\"psa_manifest/sid.h\" and \"psa_manifest/<manifestfilename>.h\") are located.
+where \"psa/client.h\", \"psa/service.h\", \"psa/lifecycle.h\" and test partition manifest output files
+(\"psa_manifest/sid.h\", \"psa_manifest/pid.h\" and \"psa_manifest/<manifestfilename>.h\") are located.
 "
 CRYPTO_HEADER_FILE_REQ="If PSA CRYPTO APIs are implemented into your platform then you must provide
 \"psa/crypto.h\" file to setup.sh script using --include option to compile tests and framework.
@@ -42,7 +47,7 @@ ITS_HEADER_FILE_REQ="If PSA INTERNAL_TRUSTED_STORAGE APIs are implemented into y
 \"psa/internal_trusted_storage.h\" file to setup.sh script using --include option to compile tests and framework.
 "
 ATTESTATION_HEADER_FILE_REQ="If PSA INITIAL_ATTESTATION APIs are implemented into your platform then you must provide
-\"psa/initial_attestation.h\" file to setup.sh script using --include option to compile tests and framework.
+\"psa/initial_attestation.h\" and \"psa/crypto.h\" file to setup.sh script using --include option to compile tests and framework.
 "
 
 HELP="
@@ -50,6 +55,7 @@ HELP="
 Usage: setup.sh [--source SOURCE_DIR] [--build BUILD_DIR] [--target TARGET] [--suite SUITE]
                 [--toolchain TOOLCHAIN] [--cpu_arch CPU_ARCH] [--verbose PRINT_LEVEL]
                 [--include INCLUDE_PATH] [--help|-h]
+Toplevel script to build tests and framework sources for given test suite.
 
 Arguments Info:
     --source <SOURCE_DIR>   : SOURCE_DIR pointing to architecture test suite directory structure.
@@ -59,7 +65,8 @@ Arguments Info:
                               target.cfg file corresponding to input string must be avaiable at
                               platform/targets/<TARGET>/
     --suite <SUITE>         : Compile tests for given suite. Support values are:
-                              ipc, crypto, internal_trusted_storage, protected_storage and initial_attestation.
+                              ipc, crypto, internal_trusted_storage, protected_storage,
+                              and initial_attestation.
     --toolchain <TOOLCHAIN> : Build using the given TOOLCHAIN.
                               Supported values are GNUARM (GNU Arm Embedded) and ARMCLANG (ARM Compiler 6.x).
     --cpu_arch <CPU_ARCH>   : Provide cpu arch string as argument.
@@ -68,9 +75,13 @@ Arguments Info:
                               Supported print levels are:
                                 1 - INFO & above.
                                 2 - DEBUG & above.
-                                3 - TEST & above.
-                                4 - WARN & ERROR.(Default)
+                                3 - TEST & above.(Default)
+                                4 - WARN & ERROR.
                                 5 - ERROR.
+    --archive_tests         : Create combine test archive(.a) file by combining available test objects files.
+                              Absence of this option would create combine test binary(.bin) by combining available test elfs
+    --include_panic_tests   : Consider panic tests (mentioned in testsuite.db of respective suite) along with functional tests
+                              for building the final executables. Absence of this option would consider only non-panic (ie, functional) tests
     --include <INCLUDE_PATH>: Additional directory to be included into compiler search path. Provide --include <path>
                               where path pointing to location of PSA defined header files.
                               You can specify multiple source locations using --include option.
@@ -118,6 +129,9 @@ while [  $# -gt 0 ]; do
        --archive_tests )
                   export TEST_COMBINE_ARCHIVE=1
                   ;;
+       --include_panic_tests )
+                  export INCLUDE_PANIC_TESTS=1
+                  ;;
        --include )  shift
                   export INCLUDE="$INCLUDE -I $1/"
                   INCLUDE_PATHS=("${INCLUDE_PATHS[@]}" $1)
@@ -134,7 +148,7 @@ while [  $# -gt 0 ]; do
         shift
 done
 
-echo ">>>> Processing inputs..."
+echo "----------Process input arguments- start-------------"
 if [ -z "$SOURCE" ]
 then
    export SOURCE=./
@@ -179,6 +193,8 @@ PSA_CRYPTO_IMPLEMENTED=`grep -c "^ *PSA_CRYPTO_IMPLEMENTED\s*:=\s*1" $PLATFORM_M
 PSA_PROTECTED_STORAGE_IMPLEMENTED=`grep -c "^ *PSA_PROTECTED_STORAGE_IMPLEMENTED\s*:=\s*1" $PLATFORM_MAKEFILE`
 PSA_INTERNAL_TRUSTED_STORAGE_IMPLEMENTED=`grep -c "^ *PSA_INTERNAL_TRUSTED_STORAGE_IMPLEMENTED\s*:=\s*1" $PLATFORM_MAKEFILE`
 PSA_INITIAL_ATTESTATION_IMPLEMENTED=`grep -c "^ *PSA_INITIAL_ATTESTATION_IMPLEMENTED\s*:=\s*1" $PLATFORM_MAKEFILE`
+WATCHDOG_AVAILABLE=`grep -c "^ *watchdog.num\s*=\s*1\s*;" $SOURCE/platform/targets/$TARGET/target.cfg`
+SP_HEAP_MEM_SUPP=`grep -c "^ *dut.0.sp_heap_mem_supp\s*=\s*AVAILABLE\s*;" $SOURCE/platform/targets/$TARGET/target.cfg`
 
 # Check PSA_IPC_IMPLEMENTED validity
 if [ $SUITE == "ipc" ] && [ $PSA_IPC_IMPLEMENTED == "0" ]
@@ -238,6 +254,14 @@ then
             then
                 export SERVICE_FILE_FOUND=1
             fi
+            if [ -f "$path/psa_manifest/sid.h" ] && [ -f "$path/psa_manifest/pid.h" ]
+            then
+                export MANIFEST_OUT_FILE_FOUND=1
+            fi
+            if [ -f "$path/psa/lifecycle.h" ]
+            then
+                export LIFECYCLE_FILE_FOUND=1
+            fi
         done
         if [ $CLIENT_FILE_FOUND ==  "0" ]
         then
@@ -251,6 +275,18 @@ then
             echo "$IPC_HEADER_FILE_REQ"
             exit 1
         fi
+        if [ $MANIFEST_OUT_FILE_FOUND == "0" ]
+        then
+            echo "Couldn't find psa_manifest/sid.h or psa_manifest/pid.h file in paths: ${INCLUDE_PATHS[@]}"
+            echo "$IPC_HEADER_FILE_REQ"
+            exit 1
+        fi
+        if [ $LIFECYCLE_FILE_FOUND ==  "0" ]
+        then
+            echo "Couldn't find psa/lifecycle.h file in paths: ${INCLUDE_PATHS[@]}"
+            echo "$IPC_HEADER_FILE_REQ"
+            exit 1
+        fi
     fi
 fi
 
@@ -344,7 +380,12 @@ then
             then
                 export INITIAL_ATTESTATION_FILE_FOUND=1
             fi
+            if [ -f "$path/psa/crypto.h" ]
+            then
+                export CRYPTO_FILE_FOUND=1
+            fi
         done
+
         if [ $INITIAL_ATTESTATION_FILE_FOUND ==  "0" ]
         then
             echo "Couldn't find psa/initial_attestation.h file in paths: ${INCLUDE_PATHS[@]}"
@@ -352,10 +393,16 @@ then
             exit 1
         elif [ $INITIAL_ATTESTATION_FILE_FOUND ==  "1" ]
         then
+            if [ $CRYPTO_FILE_FOUND ==  "0" ]
+            then
+                echo "Couldn't find psa/crypto.h file in paths: ${INCLUDE_PATHS[@]}"
+                echo "$CRYPTO_HEADER_FILE_REQ"
+                exit 1
+            fi
             if [ ! -d "$SOURCE/platform/targets/$TARGET/nspe/initial_attestation/ext" ]
             then
                 git clone https://github.com/laurencelundblade/QCBOR.git $SOURCE/platform/targets/$TARGET/nspe/initial_attestation/ext
-                cd $SOURCE/platform/targets/$TARGET/nspe/initial_attestation/ext; git checkout 01168ef3f20e81d5db1ebd0cfa9a70055ee5b155 ; cd -
+                cd $SOURCE/platform/targets/$TARGET/nspe/initial_attestation/ext; git checkout da53227db1488dde0952bdff66c3d904dce270b3 ; cd -
             else
                 echo "QCBOR library already cloned"
             fi
@@ -363,7 +410,6 @@ then
     fi
 fi
 
-
 if [ -z "$TOOLCHAIN" ]
 then
    export TOOLCHAIN=GNUARM
@@ -411,9 +457,23 @@ then
         exit 1
     fi
 else
-    export VERBOSE=4
+    export VERBOSE=3
 fi
 
+if [ $INCLUDE_PANIC_TESTS == "1" ] && [ $WATCHDOG_AVAILABLE == "0" ]
+then
+   echo "
+Warning: You have set watchdog.num to 0 in $SOURCE/platform/targets/$TARGET/target.cfg
+Note - To test PSA APIs panic conditions, test harness may require to access watchdog timer
+to recover from panic and to be able to continue with next test.
+Ignore this warning if system under test has capability to reset the system
+when it encounters panic condition.
+"
+fi
+
+echo "----------Process input arguments- complete-------------"
+echo ""
+
 MAKE_OPTIONS=" SOURCE=$SOURCE "
 MAKE_OPTIONS+=" BUILD=$BUILD "
 MAKE_OPTIONS+=" TARGET=$TARGET "
@@ -422,6 +482,9 @@ MAKE_OPTIONS+=" TOOLCHAIN=$TOOLCHAIN "
 MAKE_OPTIONS+=" CPU_ARCH=$CPU_ARCH "
 MAKE_OPTIONS+=" VERBOSE=$VERBOSE "
 MAKE_OPTIONS+=" TEST_COMBINE_ARCHIVE=$TEST_COMBINE_ARCHIVE "
+MAKE_OPTIONS+=" INCLUDE_PANIC_TESTS=$INCLUDE_PANIC_TESTS "
+MAKE_OPTIONS+=" WATCHDOG_AVAILABLE=$WATCHDOG_AVAILABLE "
+MAKE_OPTIONS+=" SP_HEAP_MEM_SUPP=$SP_HEAP_MEM_SUPP "
 MAKE_OPTIONS+=" PSA_IPC_IMPLEMENTED=$PSA_IPC_IMPLEMENTED "
 MAKE_OPTIONS+=" PSA_CRYPTO_IMPLEMENTED=$PSA_CRYPTO_IMPLEMENTED "
 MAKE_OPTIONS+=" PSA_PROTECTED_STORAGE_IMPLEMENTED=$PSA_PROTECTED_STORAGE_IMPLEMENTED "
diff --git a/api-tests/tools/scripts/targetConfigGen.pl b/api-tests/tools/scripts/targetConfigGen.pl
deleted file mode 100755
index 602de991..00000000
--- a/api-tests/tools/scripts/targetConfigGen.pl
+++ /dev/null
@@ -1,238 +0,0 @@
-#!/usr/bin/env perl
-#/** @file
-# * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
-# * SPDX-License-Identifier : Apache-2.0
-# *
-# * Licensed under the Apache License, Version 2.0 (the "License");
-# * you may not use this file except in compliance with the License.
-# * You may obtain a copy of the License at
-# *
-# *  http://www.apache.org/licenses/LICENSE-2.0
-# *
-# * Unless required by applicable law or agreed to in writing, software
-# * distributed under the License is distributed on an "AS IS" BASIS,
-# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# * See the License for the specific language governing permissions and
-# * limitations under the License.
-#**/
-#---------------------------------------------------------------------
-# USAGE:
-# 1) perl <this_script> <targetConfig_file>
-# 2) gcc <generated_C_file> -o <executable_file>
-# 3) ./<executable_file>
-# 4) Resulting output file is target.hex
-#---------------------------------------------------------------------
-# THIS SCRIPT :
-# 1) Reads the targetConfig.cfg file written in pre-defined format.
-# 2) * Generates a C file based on targetConfig, complete with all
-#    variable declarations and C syntax formatting.
-#    * It will #include val_target.h header file which contains
-#    template info about each device described in targetConfig.
-#    * This header file is also used by test code to unpack the
-#    resulting hex file.
-# 3) The autogenerated C file will then be compiled and the resulting
-#    executable run to generate target.hex file: which is the packed
-#    output of the targetConfig.cfg parameters.
-#---------------------------------------------------------------------
-# NOTE: Only C-style single line commenting is permitted inside targetConfig.cfg
-#---------------------------------------------------------------------
-
-print "\n>>>> Generating targetConfig data base... \n";
-$source=$ARGV[0];
-$build=$ARGV[1];
-$target=$ARGV[2];
-$targetConfigPath = "$source/platform/targets/$target/target.cfg";
-$final_output = "$build/platform/$target/target_database";
-$output_c = "$build/platform/$target/targetConfigGen.c";
-$input_h = "$source/val/common/val_target.h";
-
-$final_output_file = undef;
-if($final_output =~ /([0-9a-zA-Z_]+)$/) {
-	$final_output_file = $1;
-}
-
-@unique_devices = undef;
-
-sub uniq {
-    my %seen;
-    grep !$seen{$_}++, @_;
-}
-
-open(IN, $targetConfigPath) or die "Unable to open $targetConfigPath $!";
-open(OUT, '>', $output_c) or die "Unable to open: $!";
-
-#---------------------------------------------------------------------
-# Open header file and go through enum definition to find group of
-# each component; rather than making partner do it. Store in a hash.
-#---------------------------------------------------------------------
-open(IN0, $input_h) or die "Unable to open: $!";
-my %comp_groups;
-while(<IN0>) {
-    if($_ =~ /COMPONENT_GROUPING/) {
-	while($nextline !~ /\}/) {
-	    $nextline = <IN0>;
-	    #print "$nextline";
-	    if($nextline =~ /(\S+)(\s*)\=(\s*)GROUP_([0-9a-zA-Z_]+)(,*)/) {
-		$comp_groups{$1} = $4;
-	    }
-	}
-    }
-}
-close IN0;
-#print keys %comp_groups, "\n";
-#print values %comp_groups, "\n";
-#---------------------------------------------------------------------
-
-print OUT '#include "val_target.h"',"\n";
-print OUT '#include <stdio.h>',"\n\n";
-
-print OUT "int main\(void\) \{\n";
-
-while(<IN>) {
-    if($_ !~ /^\//) {# exclude commented lines
-
-    if($_ =~ /(\S+)\.num(\s*)\=(\s*)(\d+)(\s*)\;/) {
-	print OUT lc($comp_groups{uc($1)}),"_desc_t $1\[$4\];\n";
-	print OUT "int $1","_num_instances \= $4\;\n";
-
-	# For each instance of this device
-	for ($count = 0; $count < $4; $count++) {
-	    print OUT "$1\[$count\]\.cfg_type\.cfg_id \= \(GROUP_",$comp_groups{uc($1)}," << 24\) \+ \(",$comp_groups{uc($1)},"_",uc($1)," << 16\) \+ $count\;\n";
-	    print OUT "$1\[$count\]\.cfg_type\.size \= sizeof\($1\)\/$1","_num_instances\;\n";
-	    print OUT "$1\[$count\]\.cfg_type\.size \|\= $1","_num_instances << 24\;\n";
-	}
-
-	push(@unique_devices, $1);
-	push(@unique_groups, $comp_groups{uc($1)});
-    }
-    #elsif($_ =~ /(\S+)\.(\d+)\.(\S+)(\s*)\=(\s*)(\S+)(\s*)\;/) {
-	elsif($_ =~ /(\S+)\.(\d+)\.(\S+)(\s*)\=(\s*)(.+)\;/) {
-	print OUT "$1\[$2\]\.$3 \= $6\;\n";
-    }
-    else {
-	print OUT $_;
-    }
-
-    }
-}
-
-# Remove empty elements from array
-@unique_devices = grep { $_ ne '' } @unique_devices;
-# Remove duplicate groups
-@unique_groups = uniq @unique_groups;
-@unique_groups = grep { $_ ne '' } @unique_groups;
-
-#print "@unique_devices\n";
-#print "@unique_groups\n\n";
-
-foreach $thisgroup (@unique_groups) {
-    print "\nGROUP $thisgroup \n";
-    print OUT lc($thisgroup),"_hdr_t group_",lc($thisgroup),"\;\n";
-    print OUT "int group_",lc($thisgroup),"_size \= sizeof(group_",lc($thisgroup),"\)\;\n";
-    print OUT "int group_",lc($thisgroup),"_count \= 0\;\n";
-
-    print OUT "group_",lc($thisgroup),"\.cfg_type\.cfg_id \= \(GROUP_",$thisgroup," << 24\)\;\n";
-
-    foreach $thisdevice (@unique_devices) {
-	if($comp_groups{uc($thisdevice)} eq $thisgroup) {
-	    print "DEVICE $thisdevice \n";
-	    print OUT "group_",lc($thisgroup),"_size \= group_",lc($thisgroup),"_size \+ sizeof\($thisdevice\)\;\n";
-	    print OUT "group_",lc($thisgroup),"_count \= group_",lc($thisgroup),"_count \+ $thisdevice","_num_instances\;\n";
-
-	}
-    }
-    print OUT "group_",lc($thisgroup),"\.cfg_type\.size \= group_",lc($thisgroup),"_size\;\n";
-    print OUT "group_",lc($thisgroup),"\.num \= group_",lc($thisgroup),"_count\;\n";
-
-    print OUT "\n";
-}
-
-print OUT "\n";
-print OUT "uint32_t\* word_ptr\;\n";
-print OUT "int byte_no \= 0\;\n";
-#print OUT "int instance_no \= 0\;\n";
-#print OUT "int instance_size \= 0\;\n";
-#print OUT "device_type_t device_id\;\n";
-print OUT "FILE \* fp\;\n";
-print OUT "fp \= fopen\(\"",$final_output,"\.h\"\, \"w\"\)\;\n\n";
-
-# Printing out main header inside hex file
-#print OUT "fprintf\(fp\, \"#include \\\"pal_fvp_config\.h\\\"\\n\\n\"\)\;\n";
-print OUT "fprintf\(fp\, \"#ifndef ",uc($final_output_file),"\\n\"\)\;\n";
-print OUT "fprintf\(fp\, \"#define ",uc($final_output_file),"\\n\\n\"\)\;\n";
-#print OUT "fprintf\(fp\, \"__attribute__\(\(section\(\\\"\.target_config_ns_data\\\"\)\)\)\\n\"\)\;\n";
-print OUT "fprintf\(fp\, \"const uint32_t\\n\"\)\;\n";
-print OUT "fprintf\(fp\, \"static target_database[] \= \{\\n\"\)\;\n";
-
-# print OUT "fprintf\(fp\, \"0x\%08x\,\\n\"\, \"_CFG\"\)\;\n";
-# print OUT "fprintf\(fp\, \"0x\%08x\,\\n\"\, \" FVP\"\)\;\n";
-# print OUT "fprintf\(fp\, \"0x\%08x\,\\n\"\, \"_CFG\"\)\;\n";
-# TBSA_CFG header
-print OUT "fprintf\(fp\, \"0x\%x\"\, \'T\'\)\;\n";
-print OUT "fprintf\(fp\, \"\%x\"\, \'B\'\)\;\n";
-print OUT "fprintf\(fp\, \"\%x\"\, \'S\'\)\;\n";
-print OUT "fprintf\(fp\, \"\%x\,\\n\"\, \'A\'\)\;\n";
-print OUT "fprintf\(fp\, \"0x\%x\"\, \'_\'\)\;\n";
-print OUT "fprintf\(fp\, \"\%x\"\, \'C\'\)\;\n";
-print OUT "fprintf\(fp\, \"\%x\"\, \'F\'\)\;\n";
-print OUT "fprintf\(fp\, \"\%x\,\\n\"\, \'G\'\)\;\n";
-# FVP_CFG header
-print OUT "fprintf\(fp\, \"0x\%x\"\, \' \'\)\;\n";
-print OUT "fprintf\(fp\, \"\%x\"\, \'F\'\)\;\n";
-print OUT "fprintf\(fp\, \"\%x\"\, \'V\'\)\;\n";
-print OUT "fprintf\(fp\, \"\%x\,\\n\"\, \'P\'\)\;\n";
-print OUT "fprintf\(fp\, \"0x\%x\"\, \'_\'\)\;\n";
-print OUT "fprintf\(fp\, \"\%x\"\, \'C\'\)\;\n";
-print OUT "fprintf\(fp\, \"\%x\"\, \'F\'\)\;\n";
-print OUT "fprintf\(fp\, \"\%x\,\\n\"\, \'G\'\)\;\n";
-
-print OUT "uint32_t version \= 1\;\n";
-print OUT "fprintf\(fp\, \"0x\%08x\,\\n\"\, version\)\;\n";
-#print OUT "fwrite\(\&version\, 4\, 1\, fp\)\;\n";
-print OUT "uint32_t total_size \= 0\;\n";
-
-foreach $thisgroup (@unique_groups) {
-    print OUT "total_size \= total_size \+ group_",lc($thisgroup),"_size\;\n";
-}
-# foreach $thisdevice (@unique_devices) {
-#     print OUT "total_size \= total_size \+ sizeof\($thisdevice\) \+ \(8\* $thisdevice","_num_instances\)\;\n";
-# }
-# Add main header size
-print OUT "total_size \= total_size \+8 \+8 \+4 \+4 \+4\;\n";
-#print OUT "fwrite\(\&total_size\, 4\, 1\, fp\)\;\n\n";
-print OUT "fprintf\(fp\, \"0x\%08x\,\\n\"\, total_size\)\;\n";
-
-
-foreach $thisgroup (@unique_groups) {
-    print OUT "word_ptr \= \(uint32_t \*\)\&group_",lc($thisgroup),"\;\n";
-    print OUT "for\(byte_no\=0\; byte_no\<\sizeof\(group_",lc($thisgroup),"\)\; byte_no\=byte_no\+4\)\{\n";
-    #print OUT "fwrite\(word_ptr\, 4\, 1\, fp\)\;\n";
-    #print OUT "printf\(\"\%08x\,\\n\"\, \*word_ptr\)\;\n";
-    print OUT "fprintf\(fp\, \"0x\%08x\,\\n\"\, \*word_ptr\)\;\n";
-    print OUT "word_ptr\+\+\;\n";
-    print OUT "\}\n";
-
-    foreach $thisdevice (@unique_devices) {
-	if($comp_groups{uc($thisdevice)} eq $thisgroup) {
-	    print OUT "\tword_ptr \= \(uint32_t \*\)\&","$thisdevice","\[0\]\;\n";
-	    print OUT "\tfor\(byte_no\=0\; byte_no\<\sizeof\($thisdevice\)\; byte_no\=byte_no\+4\)\{\n";
-	    #print OUT "\tfwrite\(word_ptr\, 4\, 1\, fp\)\;\n";
-	    #print OUT "\tprintf\(\"\%08x\,\\n\"\, \*word_ptr\)\;\n";
-	    print OUT "\tfprintf\(fp\, \"0x\%08x\,\\n\"\, \*word_ptr\)\;\n";
-	    print OUT "\tword_ptr\+\+\;\n";
-	    print OUT "\t\}\n";
-	}
-    }
-}
-print OUT "fprintf\(fp\, \"0x\%08x\\n\"\, 0xffffffff\)\;\n";
-print OUT "fprintf\(fp\, \"\}\;\\n\\n\"\)\;\n";
-print OUT "fprintf\(fp\, \"#endif \\n\"\)\;\n";
-
-
-print OUT "\nreturn 0;\}\/\/int main";
-
-#generate target_database.h file
-print "gcc -D__addr_t_defined -DTARGET_CFG_BUILD $output_c -o $build/platform/$target/targetConfigGen -I$source/val/nspe -I$source/val/common -I$source/platform/targets/$target/nspe/common\n";
-system("gcc -D__addr_t_defined -DTARGET_CFG_BUILD $output_c -o $build/platform/$target/targetConfigGen -I$source/val/nspe -I$source/val/common -I$source/platform/targets/$target/nspe/common") && die ("Failed to compile targetConfigGen.c \n");
-print "./$build/platform/$target/targetConfigGen\n";
-system("./$build/platform/$target/targetConfigGen ") && die ("Failed to generate targetConfig data base \n");
diff --git a/api-tests/tools/scripts/targetConfigGen.py b/api-tests/tools/scripts/targetConfigGen.py
new file mode 100644
index 00000000..6442f74d
--- /dev/null
+++ b/api-tests/tools/scripts/targetConfigGen.py
@@ -0,0 +1,183 @@
+#!/usr/bin/python
+#/** @file
+# * Copyright (c) 2019, Arm Limited or its affiliates. All rights reserved.
+# * SPDX-License-Identifier : Apache-2.0
+# *
+# * Licensed under the Apache License, Version 2.0 (the "License");
+# * you may not use this file except in compliance with the License.
+# * You may obtain a copy of the License at
+# *
+# *  http://www.apache.org/licenses/LICENSE-2.0
+# *
+# * Unless required by applicable law or agreed to in writing, software
+# * distributed under the License is distributed on an "AS IS" BASIS,
+# * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# * See the License for the specific language governing permissions and
+# * limitations under the License.
+#**/
+
+import sys
+
+if (len(sys.argv) != 8):
+	print("\nPlease provide following inputs")
+	print("\narg1 : target name")
+	print("\narg2 : val_target.h")
+	print("\narg3 : tbsa_tgt.cfg")
+	print("\narg4 : intermediate source file")
+	print("\narg5 : output database file\n")
+	print("\narg6 : name for table\n")
+	print("\narg7 : section name for database table\n")
+	sys.exit(1)
+
+target       = sys.argv[1]
+in_val_tgt   = sys.argv[2]
+in_tbsa_tgt  = sys.argv[3]
+out_source   = sys.argv[4]
+out_database = sys.argv[5]
+table_name   = sys.argv[6]
+section_name = sys.argv[7]
+
+minor_major_map = {}
+unique_major_groups = []
+unique_minor_components = []
+
+def get_minor_major_map():
+	""" This method populates the dictionary which maps between every available minor component to their major group """
+	try:
+		with open(in_val_tgt, mode="r") as f:
+			for line in f:
+				if "GROUP_" in line:
+					temp_list = line.split()
+					if "=" in temp_list[1] and "GROUP_" in temp_list[2]:
+						minor_major_map.update({temp_list[0]:temp_list[2][6:temp_list[2].find(',')]})
+						if minor_major_map[temp_list[0]] not in unique_major_groups:
+							unique_major_groups.append(minor_major_map[temp_list[0]])
+	except:
+		print("Cannot open %s" %in_val_tgt)
+
+def generate_source():
+	"""" This method generates the source file which gets compiled on host machine.
+		The compiled output then generates the database file for a given target """
+	try:
+		with open(out_source, mode="a") as o_f:
+			o_f.write("#include <stdio.h>\n")
+			o_f.write("#include \"val_target.h\"\n\n")
+			o_f.write("int main (void)\n")
+			o_f.write("{\n")
+			try:
+				with open(in_tbsa_tgt, mode="r") as i_f:
+					num = ''
+					for line in i_f:
+						if "/" in line[0:1]:
+							""" Ignoring the commented lines """
+							pass
+						elif (".num" in line) and (line[line.find('.')+1:line.find('.')+4] == "num"):
+							""" Pick the lines which tells the total instances of a component """
+							minor_comp = line[:line.find('.')]
+							num        = "".join(line[line.find('=')+1:line.find(';')].replace(" ",""))
+							if (int(num)) != 0:
+								o_f.write("\t%s_desc_t %s[%s] = {0};\n" %(minor_major_map[minor_comp.upper()].lower(), minor_comp, num))
+								o_f.write("\tint %s_num_instances = %s;\n" %(minor_comp, num))
+								num = int(num)
+								for instance in range(num):
+									o_f.write("\t%s[%d].cfg_type.cfg_id = ((GROUP_%s << 24) + (%s_%s << 16) + %d);\n" \
+										%(minor_comp, instance, minor_major_map[minor_comp.upper()],\
+											minor_major_map[minor_comp.upper()], minor_comp.upper(), instance))
+									o_f.write("\t%s[%d].cfg_type.size   = sizeof(%s)/%s_num_instances;\n" %(minor_comp, instance, minor_comp, minor_comp))
+									o_f.write("\t%s[%d].cfg_type.size  |= (%s_num_instances << 24);\n" %(minor_comp, instance, minor_comp))
+								unique_minor_components.append(minor_comp.upper())
+						elif ("=" in line) and (";" in line) and (int(num) != 0):
+							""" Pick the lines which tells the component details """
+							period_1 = line.find('.')
+							period_2 = period_1 + line[period_1+1:].find('.') + 1
+							o_f.write("\t%s[%s].%s;\n" %(line[:period_1], line[period_1+1:period_2], line[period_2+1:line.find(';')]))
+						else:
+							o_f.write("\n")
+					o_f.write("\n")
+			except:
+				print("Cannot open input file %s" %in_tbsa_tgt)
+
+			""" Populate major structure details """
+			for group in unique_major_groups:
+				o_f.write("\t%s_hdr_t group_%s = {0};\n" %(group.lower(), group.lower()))
+				o_f.write("\tgroup_%s.cfg_type.cfg_id = (GROUP_%s << 24);\n" %(group.lower(), group))
+				o_f.write("\tgroup_%s.cfg_type.size  += sizeof(group_%s);\n" %(group.lower(), group.lower()))
+				for minor in unique_minor_components:
+					if group == minor_major_map[minor]:
+						o_f.write("\tgroup_%s.cfg_type.size  += sizeof(%s);\n" %(group.lower(), minor.lower()))
+						o_f.write("\tgroup_%s.num            += %s_num_instances;\n" %(group.lower(), minor.lower()))
+				o_f.write("\n")
+
+			""" Start pushing fprintf into the source resposible for generating the database table """
+			o_f.write("\tuint32_t *word_ptr;\n")
+			o_f.write("\tint      byte_no  = 0;\n")
+			o_f.write("\tFILE     *fp;\n\n")
+			o_f.write("\tfp = fopen(\"%s\", \"w\");\n\n" %(out_database))
+			temp_out_file = out_database
+			while '/' in temp_out_file:
+				temp_out_file = "".join(temp_out_file[temp_out_file.find('/')+1:])
+			o_f.write("\tfprintf(fp, \"#ifndef _%s_H_\\n\");\n" %(temp_out_file[:temp_out_file.find('.')].upper()))
+			o_f.write("\tfprintf(fp, \"#define _%s_H_\\n\");\n\n" %(temp_out_file[:temp_out_file.find('.')].upper()))
+			if section_name:
+				o_f.write("\tfprintf(fp, \"__attribute__((section(\\\"%s\\\")))\\n\");\n" %(section_name))
+			o_f.write("\tfprintf(fp, \"const uint32_t static %s[] = {\\n\");\n" %(table_name))
+			o_f.write("\tfprintf(fp, \"0x%x\", \'T\');\n")
+			o_f.write("\tfprintf(fp, \"%x\", \'B\');\n")
+			o_f.write("\tfprintf(fp, \"%x\", \'S\');\n")
+			o_f.write("\tfprintf(fp, \"%x,\\n\", \'A\');\n")
+			o_f.write("\tfprintf(fp, \"0x%x\", \'_\');\n")
+			o_f.write("\tfprintf(fp, \"%x\", \'C\');\n")
+			o_f.write("\tfprintf(fp, \"%x\", \'F\');\n")
+			o_f.write("\tfprintf(fp, \"%x,\\n\", \'G\');\n")
+			required_target_name_len = 4
+			new_target = target
+			if (len(target) < required_target_name_len):
+				while(required_target_name_len - len(target)):
+					new_target += " "
+					required_target_name_len -= 1
+			o_f.write("\tfprintf(fp, \"0x%x\", ")
+			o_f.write("\'%c\');\n" %(new_target[0:1]))
+			o_f.write("\tfprintf(fp, \"%x\", ")
+			o_f.write("\'%c\');\n" %(new_target[1:2]))
+			o_f.write("\tfprintf(fp, \"%x\", ")
+			o_f.write("\'%c\');\n" %(new_target[2:3]))
+			o_f.write("\tfprintf(fp, \"%x,\\n\", ")
+			o_f.write("\'%c\');\n" %(new_target[3:4]))
+			o_f.write("\tfprintf(fp, \"0x%x\", \'_\');\n")
+			o_f.write("\tfprintf(fp, \"%x\", \'C\');\n")
+			o_f.write("\tfprintf(fp, \"%x\", \'F\');\n")
+			o_f.write("\tfprintf(fp, \"%x,\\n\", \'G\');\n")
+			o_f.write("\tuint32_t version = 1;\n")
+			o_f.write("\tfprintf(fp, \"0x%08x,\\n\", version);\n")
+			o_f.write("\tuint32_t total_size = 0;\n")
+			for group in unique_major_groups:
+				o_f.write("\ttotal_size += group_%s.cfg_type.size;\n" %(group.lower()))
+			o_f.write("\ttotal_size += (8 + 8 + 4 + 4);\n")
+			o_f.write("\tfprintf(fp, \"0x%08x,\\n\", total_size);\n")
+
+			""" Start writing component values to database file """
+			for group in unique_major_groups:
+				o_f.write("\t/* Writing major group details to the file */\n")
+				o_f.write("\tword_ptr = (uint32_t *)&group_%s;\n" %(group.lower()))
+				o_f.write("\tfor(byte_no=0; byte_no<sizeof(group_%s); byte_no += 4) {\n" %(group.lower()))
+				o_f.write("\t\tfprintf(fp, \"0x%08x,\\n\", *word_ptr);\n")
+				o_f.write("\t\tword_ptr++;\n")
+				o_f.write("\t}\n")
+				o_f.write("\t/* Writing minor group details to the file */\n")
+				for minor in unique_minor_components:
+					if group == minor_major_map[minor]:
+						o_f.write("\tword_ptr = (uint32_t *)&%s[0];\n" %(minor.lower()))
+						o_f.write("\tfor(byte_no=0; byte_no<sizeof(%s); byte_no += 4) {\n" %(minor.lower()))
+						o_f.write("\t\tfprintf(fp, \"0x%08x,\\n\", *word_ptr);\n")
+						o_f.write("\t\tword_ptr++;\n")
+						o_f.write("\t}\n")
+			o_f.write("\tfprintf(fp, \"0x%08x\\n\", 0xffffffff);\n")
+			o_f.write("\tfprintf(fp, \"};\\n\\n\");\n")
+			o_f.write("\tfprintf(fp, \"#endif\\n\");\n")
+			o_f.write("\treturn 0;\n")
+			o_f.write("}\n")
+	except:
+		print("Cannot open output file %s" %out_source)
+
+get_minor_major_map()
+generate_source()
diff --git a/api-tests/tools/scripts/test_elf_combine.pl b/api-tests/tools/scripts/test_elf_combine.pl
index 109a4e79..fb50e321 100755
--- a/api-tests/tools/scripts/test_elf_combine.pl
+++ b/api-tests/tools/scripts/test_elf_combine.pl
@@ -1,6 +1,6 @@
 #!/usr/bin/env perl
 #/** @file
-# * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+# * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
 # * SPDX-License-Identifier : Apache-2.0
 # *
 # * Licensed under the Apache License, Version 2.0 (the "License");
@@ -19,8 +19,6 @@
 use File::Find;
 use File::Basename;
 
-print "\n>>>> Combining test ELFs... \n";
-
 #Inputs
 $test_list_file = $ARGV[0];
 
diff --git a/api-tests/val/common/val.h b/api-tests/val/common/val.h
index b3dbcd55..2af2858e 100644
--- a/api-tests/val/common/val.h
+++ b/api-tests/val/common/val.h
@@ -178,12 +178,18 @@ typedef enum {
 } test_isolation_level_t;
 
 typedef enum {
-    BOOT_UNKNOWN               = 0x1,
-    BOOT_NOT_EXPECTED          = 0x2,
-    BOOT_EXPECTED_NS           = 0x3,
-    BOOT_EXPECTED_S            = 0x4,
-    BOOT_EXPECTED_BUT_FAILED   = 0x5,
-    BOOT_EXPECTED_CRYPTO       = 0x6,
+    /* VAL uses this boot flag to mark first time boot of the system  */
+    BOOT_UNKNOWN                       = 0x1,
+    /* VAL/Test uses this boot flag to catch any unwanted system reboot - SIM ERROR Cases*/
+    BOOT_NOT_EXPECTED                  = 0x2,
+    /* Test performs panic check for non-secure test run and expect reboot */
+    BOOT_EXPECTED_NS                   = 0x3,
+    /* Test performs panic check for secure test run and expect reboot */
+    BOOT_EXPECTED_S                    = 0x4,
+    /* Test expected reboot but it didn't happen */
+    BOOT_EXPECTED_BUT_FAILED           = 0x5,
+    /* Test expect reboot for secure/non-secure test run. If reboot happens, re-enter same test */
+    BOOT_EXPECTED_REENTER_TEST         = 0x6,
 } boot_state_t;
 
 typedef enum {
@@ -224,6 +230,7 @@ typedef enum {
   VAL_STATUS_INIT_ALREADY_DONE           = 0x29,
   VAL_STATUS_HEAP_NOT_AVAILABLE          = 0x2A,
   VAL_STATUS_UNSUPPORTED                 = 0x2B,
+  VAL_STATUS_DRIVER_FN_FAILED            = 0x2C,
   VAL_STATUS_ERROR_MAX                   = INT_MAX,
 } val_status_t;
 
@@ -237,13 +244,21 @@ typedef enum {
     PRINT_ALWAYS  = 9
 } print_verbosity_t;
 
-/* Interrupt test function id enums */
+/* Driver test function id enums */
 typedef enum {
     TEST_PSA_EOI_WITH_NON_INTR_SIGNAL    = 1,
     TEST_PSA_EOI_WITH_MULTIPLE_SIGNALS   = 2,
     TEST_PSA_EOI_WITH_UNASSERTED_SIGNAL  = 3,
     TEST_INTR_SERVICE                    = 4,
-} test_intr_fn_id_t;
+    TEST_ISOLATION_PSA_ROT_DATA_RD       = 5,
+    TEST_ISOLATION_PSA_ROT_DATA_WR       = 6,
+    TEST_ISOLATION_PSA_ROT_STACK_RD      = 7,
+    TEST_ISOLATION_PSA_ROT_STACK_WR      = 8,
+    TEST_ISOLATION_PSA_ROT_HEAP_RD       = 9,
+    TEST_ISOLATION_PSA_ROT_HEAP_WR       = 10,
+    TEST_ISOLATION_PSA_ROT_MMIO_RD       = 11,
+    TEST_ISOLATION_PSA_ROT_MMIO_WR       = 12,
+} driver_test_fn_id_t;
 
 /* typedef's */
 typedef struct {
diff --git a/api-tests/val/common/val_target.c b/api-tests/val/common/val_target.c
index ae3c2f4f..3564c7d9 100644
--- a/api-tests/val/common/val_target.c
+++ b/api-tests/val/common/val_target.c
@@ -18,7 +18,8 @@
 #include "val_target.h"
 #include "target_database.h"
 
-#ifdef USE_RAW_PRINT_FOR_DRIVER_PARTITION
+/* Use raw print for driver partition */
+#ifdef DRIVER_PARTITION_INCLUDE
 #define val_print(x, y, z)                        \
        do {                                       \
            if (x >= VERBOSE)                      \
@@ -26,7 +27,7 @@
        } while(0)
 #else
 __UNUSED STATIC_DECLARE val_status_t val_print
-                        (print_verbosity_t verbosity, char *string, uint32_t data);
+                        (print_verbosity_t verbosity, char *string, int32_t data);
 #endif
 
 /**
@@ -52,7 +53,7 @@ STATIC_DECLARE val_status_t val_target_cfg_get_next(void **blob)
         /* Sanity check signature and version here */
        if ((hdr->version != 1) || (hdr->size == 0))
        {
-            val_print(PRINT_ERROR, "Target config database Error. \n", 0);
+            val_print(PRINT_ERROR, "\tTarget config database Error. \n", 0);
             return VAL_STATUS_ERROR;
         }
         hdr++;
@@ -82,7 +83,7 @@ STATIC_DECLARE val_status_t val_target_get_cfg_blob(cfg_id_t cfg_id, uint8_t **d
     val_status_t    status;
     void            *config_blob = NULL;
 
-    val_print(PRINT_INFO, "Input id is %x \n", cfg_id);
+    val_print(PRINT_INFO, "\tInput id is %x \n", cfg_id);
     do
     {
 
@@ -138,7 +139,7 @@ STATIC_DECLARE val_status_t val_target_get_config(cfg_id_t cfg_id, uint8_t **dat
 
     if ((cfg_id < TARGET_MIN_CFG_ID) || (cfg_id > TARGET_MAX_CFG_ID))
     {
-        val_print(PRINT_ERROR, "Invalid Target data config ID = %x \n", cfg_id);
+        val_print(PRINT_ERROR, "\tInvalid Target data config ID = %x \n", cfg_id);
         return VAL_STATUS_INSUFFICIENT_SIZE;
     }
 
@@ -146,8 +147,8 @@ STATIC_DECLARE val_status_t val_target_get_config(cfg_id_t cfg_id, uint8_t **dat
 
     if (VAL_ERROR(status))
     {
-        val_print(PRINT_ERROR, "\n        Get Config failed with status = %x", status);
-        val_print(PRINT_ERROR, " for cfg_id = %x", cfg_id);
+        val_print(PRINT_ERROR, "\tGet Config failed with status = %x", status);
+        val_print(PRINT_ERROR, " for cfg_id = %x\n", cfg_id);
         return status;
     }
     return VAL_STATUS_SUCCESS;
diff --git a/api-tests/val/common/val_target.h b/api-tests/val/common/val_target.h
index c32f0a57..c8b14661 100644
--- a/api-tests/val/common/val_target.h
+++ b/api-tests/val/common/val_target.h
@@ -64,7 +64,7 @@ typedef enum _SOC_PERIPHERAL_CONFIG_ID_ {
 typedef enum _MEMORY_CONFIG_ID_ {
   MEMORY_NVMEM                    = 0x2,
   MEMORY_NSPE_MMIO                = 0x3,
-  MEMORY_CLIENT_PARTITION_MMIO    = 0x4,
+  MEMORY_SERVER_PARTITION_MMIO    = 0x4,
   MEMORY_DRIVER_PARTITION_MMIO    = 0x5,
 } memory_cfg_id_t;
 
@@ -82,7 +82,7 @@ typedef enum _COMPONENT_GROUPING_{
   WATCHDOG                 = GROUP_SOC_PERIPHERAL,
   NVMEM                    = GROUP_MEMORY,
   NSPE_MMIO                = GROUP_MEMORY,
-  CLIENT_PARTITION_MMIO    = GROUP_MEMORY,
+  SERVER_PARTITION_MMIO    = GROUP_MEMORY,
   DRIVER_PARTITION_MMIO    = GROUP_MEMORY,
   BOOT                     = GROUP_MISCELLANEOUS,
   DUT                      = GROUP_MISCELLANEOUS,
@@ -195,11 +195,15 @@ typedef struct _MISCELLANEOUS_INFO_DESC_ {
     addr_t                  ns_start_addr_of_combine_test_binary;
     is_available_t          combine_test_binary_in_ram;
     addr_t                  ns_test_addr;
+    is_available_t          sp_heap_mem_supp;
 } miscellaneous_desc_t;
 
 /*val target config read apis */
+#ifdef VAL_NSPE_BUILD
 STATIC_DECLARE val_status_t val_target_get_config(cfg_id_t cfg_id, uint8_t **data, uint32_t *size);
 STATIC_DECLARE val_status_t val_target_cfg_get_next(void **blob);
-STATIC_DECLARE val_status_t val_target_get_cfg_blob(cfg_id_t cfg_id, uint8_t **data, uint32_t *size);
+STATIC_DECLARE val_status_t val_target_get_cfg_blob(cfg_id_t cfg_id, uint8_t **data,
+                                                    uint32_t *size);
 STATIC_DECLARE val_status_t val_target_get_config(cfg_id_t cfg_id, uint8_t **data, uint32_t *size);
 #endif
+#endif
diff --git a/api-tests/val/nspe/pal_interfaces_ns.h b/api-tests/val/nspe/pal_interfaces_ns.h
index 186a5fc7..0b506121 100644
--- a/api-tests/val/nspe/pal_interfaces_ns.h
+++ b/api-tests/val/nspe/pal_interfaces_ns.h
@@ -100,7 +100,7 @@ int pal_uart_init_ns(uint32_t uart_base_addr);
  *   @return   - SUCCESS/FAILURE
 **/
 
-int pal_print_ns(char *str, uint32_t data);
+int pal_print_ns(char *str, int32_t data);
 
 /**
  *   @brief           - Initializes an hardware watchdog timer
diff --git a/api-tests/val/nspe/val_attestation.h b/api-tests/val/nspe/val_attestation.h
index d860739b..58ea59c1 100644
--- a/api-tests/val/nspe/val_attestation.h
+++ b/api-tests/val/nspe/val_attestation.h
@@ -19,7 +19,6 @@
 #define _VAL_INITIAL_ATTESTATION_H_
 
 #include "val.h"
-
 #define MAX_CHALLENGE_SIZE      PSA_INITIAL_ATTEST_CHALLENGE_SIZE_64
 
 enum attestation_function_code {
diff --git a/api-tests/val/nspe/val_crypto.c b/api-tests/val/nspe/val_crypto.c
index 764b44a9..da1aced4 100644
--- a/api-tests/val/nspe/val_crypto.c
+++ b/api-tests/val/nspe/val_crypto.c
@@ -30,7 +30,7 @@
 int32_t val_crypto_function(int type, ...)
 {
     va_list      valist;
-    val_status_t status;
+    int32_t      status;
 
     va_start(valist, type);
     status = pal_crypto_function(type, valist);
diff --git a/api-tests/val/nspe/val_crypto.h b/api-tests/val/nspe/val_crypto.h
index 6cb1b2f0..6fc3f562 100644
--- a/api-tests/val/nspe/val_crypto.h
+++ b/api-tests/val/nspe/val_crypto.h
@@ -48,6 +48,7 @@
 
 #define PSA_KEY_LIFETIME_INVALID        0xFFFFFFFF
 #define PSA_KEY_USAGE_INVALID           0xFFFFFFFF
+#define PSA_HASH_ALG_INVALID            0x01FFFFFF
 #define PSA_ALG_INVALID                 0xFFFFFFFF
 
 enum crypto_function_code {
@@ -98,6 +99,7 @@ enum crypto_function_code {
     VAL_CRYPTO_ASYMMTERIC_VERIFY        = 0x31,
     VAL_CRYPTO_KEY_AGREEMENT            = 0x32,
     VAL_CRYPTO_ALLOCATE_KEY             = 0x33,
+    VAL_CRYPTO_COPY_KEY                 = 0x34,
     VAL_CRYPTO_FREE                     = 0xFE,
 };
 
diff --git a/api-tests/val/nspe/val_dispatcher.c b/api-tests/val/nspe/val_dispatcher.c
index 29c72dc2..86755187 100644
--- a/api-tests/val/nspe/val_dispatcher.c
+++ b/api-tests/val/nspe/val_dispatcher.c
@@ -126,7 +126,7 @@ int val_copy_elf(uint32_t saddr, uint32_t *info_addr)
 **/
 val_status_t val_test_load(test_id_t *test_id, test_id_t test_id_prev)
 {
-#ifndef TEST_COMBINE_ARCHIVE
+#if (TEST_COMBINE_ARCHIVE == 0)
     test_header_t   test_header;
     addr_t          flash_addr = combine_test_binary_addr;
 
@@ -260,7 +260,7 @@ val_status_t val_test_load(test_id_t *test_id, test_id_t test_id_prev)
 **/
 val_status_t val_get_test_entry_addr(addr_t *paddr)
 {
-#ifndef TEST_COMBINE_ARCHIVE
+#if (TEST_COMBINE_ARCHIVE == 0)
     *paddr = (addr_t)(((val_test_info_t *)g_test_info_addr)->entry_addr);
 #else
     *paddr = g_test_info_addr;
diff --git a/api-tests/val/nspe/val_entry.h b/api-tests/val/nspe/val_entry.h
index 2b885e0c..2236016e 100644
--- a/api-tests/val/nspe/val_entry.h
+++ b/api-tests/val/nspe/val_entry.h
@@ -21,7 +21,7 @@
 #include "val_framework.h"
 
 #define PSA_ACS_MAJOR_VER    0
-#define PSA_ACS_MINOR_VER    8
+#define PSA_ACS_MINOR_VER    9
 
 /**
     @brief    - PSA Test Suite C main function, does VAL init and calls test dispatcher
diff --git a/api-tests/val/nspe/val_framework.c b/api-tests/val/nspe/val_framework.c
index 1bc3b128..4f6163c1 100644
--- a/api-tests/val/nspe/val_framework.c
+++ b/api-tests/val/nspe/val_framework.c
@@ -111,11 +111,31 @@ val_status_t val_execute_non_secure_tests(uint32_t test_num, client_test_t *test
        return status;
     }
 
-    if (boot.state == BOOT_NOT_EXPECTED || boot.state == BOOT_EXPECTED_CRYPTO)
+    if (boot.state == BOOT_NOT_EXPECTED || boot.state == BOOT_EXPECTED_REENTER_TEST)
     {
-        val_print(PRINT_TEST,"[Info] Executing tests from non-secure\n", 0);
         while (tests_list[i] != NULL)
         {
+            /*
+             * Reboot have been expected by test in previous ns run,
+             * consider previous run pass and jump to second test function
+             * of the same test if available.
+             */
+            if ((boot.state ==  BOOT_EXPECTED_REENTER_TEST) && (i == 1))
+            {
+                val_print(PRINT_DEBUG, "[Check1] PASSED\n", 0);
+                i++;
+                continue;
+            }
+
+            status = val_set_boot_flag(BOOT_NOT_EXPECTED);
+            if (VAL_ERROR(status))
+            {
+                return status;
+            }
+
+            if (i == 1)
+                val_print(PRINT_TEST,"[Info] Executing tests from non-secure\n", 0);
+
             if (server_hs == TRUE)
             {
                 /* Handshake with server tests */
@@ -204,6 +224,17 @@ val_status_t val_switch_to_secure_client(uint32_t test_num)
 
     if (boot.state != BOOT_EXPECTED_S)
     {
+       /*
+        * Reboot have been expected by test in previous s run,
+        * consider previous run pass and jump to second test function
+        * of the same test if available.
+        */
+       if (boot.state ==  BOOT_EXPECTED_REENTER_TEST)
+       {
+            test_info.block_num++;
+            val_print(PRINT_DEBUG, "[Check1] PASSED\n", 0);
+       }
+
        status = val_set_boot_flag(BOOT_NOT_EXPECTED);
        if (VAL_ERROR(status))
        {
@@ -399,7 +430,7 @@ val_status_t val_err_check_set(uint32_t checkpoint, val_status_t status)
     }
     else
     {
-        status = val_get_status();
+        status = (val_get_status() & TEST_STATUS_MASK);
         if (VAL_ERROR(status))
         {
             val_print(PRINT_ERROR, "\tCheckpoint %d : ", checkpoint);
@@ -451,15 +482,16 @@ void val_test_init(uint32_t test_num, char8_t *desc, uint32_t test_bitfield)
        GET_TEST_ISOLATION_LEVEL(test_bitfield))
    {
        val_set_status(RESULT_SKIP(VAL_STATUS_ISOLATION_LEVEL_NOT_SUPP));
-       val_print(PRINT_ALWAYS, "Skipping test. Required isolation level is not supported\n", 0);
+       val_print(PRINT_ALWAYS, "\tSkipping test. Required isolation level is not supported\n", 0);
        return;
    }
 
+#if (WATCHDOG_AVAILABLE == 1)
    /* Initialise watchdog */
    status = val_wd_timer_init(GET_WD_TIMOUT_TYPE(test_bitfield));
    if (VAL_ERROR(status))
    {
-       val_print(PRINT_ERROR, "val_wd_timer_init failed Error=0x%x\n", status);
+       val_print(PRINT_ERROR, "\tval_wd_timer_init failed Error=0x%x\n", status);
        return;
    }
 
@@ -467,9 +499,10 @@ void val_test_init(uint32_t test_num, char8_t *desc, uint32_t test_bitfield)
    status = val_wd_timer_enable();
    if (VAL_ERROR(status))
    {
-       val_print(PRINT_ERROR, "val_wd_timer_enable failed Error=0x%x\n", status);
+       val_print(PRINT_ERROR, "\tval_wd_timer_enable failed Error=0x%x\n", status);
        return;
    }
+#endif
 
    val_set_status(RESULT_START(VAL_STATUS_SUCCESS));
    return;
@@ -483,10 +516,20 @@ void val_test_init(uint32_t test_num, char8_t *desc, uint32_t test_bitfield)
 
 void val_test_exit(void)
 {
-    val_status_t    status;
+    val_status_t         status = VAL_STATUS_SUCCESS;
+
+#if (WATCHDOG_AVAILABLE == 1)
+    status = val_wd_timer_disable();
+    if (VAL_ERROR(status))
+    {
+       val_print(PRINT_ERROR, "\tval_wd_timer_disable failed Error=0x%x\n", status);
+       val_set_status(RESULT_FAIL(status));
+       return;
+    }
+#endif
 
-    val_wd_timer_disable();
     status = val_get_status();
+
     /* return if test skipped or failed */
     if (IS_TEST_FAIL(status) || IS_TEST_SKIP(status))
     {
@@ -509,9 +552,12 @@ val_status_t val_get_last_run_test_id(test_id_t *test_id)
     test_count_t    test_count;
     boot_t          boot;
     int             i = 0, intermediate_boot = 0;
-    boot_state_t    boot_state[] = {BOOT_NOT_EXPECTED, BOOT_EXPECTED_NS,
-                                     BOOT_EXPECTED_S, BOOT_EXPECTED_BUT_FAILED,
-                                     BOOT_EXPECTED_CRYPTO};
+    boot_state_t    boot_state[] = {BOOT_NOT_EXPECTED,
+                                    BOOT_EXPECTED_NS,
+                                    BOOT_EXPECTED_S,
+                                    BOOT_EXPECTED_BUT_FAILED,
+                                    BOOT_EXPECTED_REENTER_TEST
+                                    };
 
     status = val_get_boot_flag(&boot.state);
     if (VAL_ERROR(status))
@@ -519,6 +565,8 @@ val_status_t val_get_last_run_test_id(test_id_t *test_id)
         return status;
     }
 
+    val_print(PRINT_INFO, "\n\tboot.state=0x%x", boot.state);
+
     for (i = 0; i < (sizeof(boot_state)/sizeof(boot_state[0])); i++)
     {
         if (boot.state == boot_state[i])
@@ -585,7 +633,7 @@ val_status_t val_set_boot_flag(boot_state_t state)
    status = val_nvmem_write(VAL_NVMEM_OFFSET(NV_BOOT), &boot, sizeof(boot_t));
    if (VAL_ERROR(status))
    {
-       val_print(PRINT_ERROR, "val_nvmem_write failed. Error=0x%x\n", status);
+       val_print(PRINT_ERROR, "\tval_nvmem_write failed. Error=0x%x\n", status);
        return status;
    }
    return status;
@@ -604,7 +652,7 @@ val_status_t val_get_boot_flag(boot_state_t *state)
    status = val_nvmem_read(VAL_NVMEM_OFFSET(NV_BOOT), &boot, sizeof(boot_t));
    if (VAL_ERROR(status))
    {
-       val_print(PRINT_ERROR, "val_nvmem_read failed. Error=0x%x\n", status);
+       val_print(PRINT_ERROR, "\tval_nvmem_read failed. Error=0x%x\n", status);
        return status;
    }
    *state = boot.state;
diff --git a/api-tests/val/nspe/val_interfaces.h b/api-tests/val/nspe/val_interfaces.h
index b41aab1b..8e9c56bd 100644
--- a/api-tests/val/nspe/val_interfaces.h
+++ b/api-tests/val/nspe/val_interfaces.h
@@ -25,7 +25,7 @@
 /* typedef's */
 typedef struct {
     val_status_t     (*print)                     (print_verbosity_t verbosity,
-                                                   char *string, uint32_t data);
+                                                   char *string, int32_t data);
     val_status_t     (*set_status)                (uint32_t status);
     uint32_t         (*get_status)                (void);
     void             (*test_init)                 (uint32_t test_num,  char8_t *desc,
diff --git a/api-tests/val/nspe/val_peripherals.c b/api-tests/val/nspe/val_peripherals.c
index 9f153e00..dccc4e40 100644
--- a/api-tests/val/nspe/val_peripherals.c
+++ b/api-tests/val/nspe/val_peripherals.c
@@ -56,7 +56,7 @@ val_status_t val_uart_init(void)
               - data     : Value for format specifier
     @return   - val_status_t
 **/
-val_status_t val_print(print_verbosity_t verbosity, char *string, uint32_t data)
+val_status_t val_print(print_verbosity_t verbosity, char *string, int32_t data)
 {
     if ((is_uart_init_done == 0) || (verbosity < VERBOSE))
     {
diff --git a/api-tests/val/nspe/val_peripherals.h b/api-tests/val/nspe/val_peripherals.h
index dfea1431..d1b75389 100644
--- a/api-tests/val/nspe/val_peripherals.h
+++ b/api-tests/val/nspe/val_peripherals.h
@@ -21,7 +21,7 @@
 #include "val.h"
 
 val_status_t val_uart_init(void);
-val_status_t val_print(print_verbosity_t verbosity, char *string, uint32_t data);
+val_status_t val_print(print_verbosity_t verbosity, char *string, int32_t data);
 val_status_t val_spi_read(addr_t addr, uint8_t *data, uint32_t len);
 val_status_t val_nvmem_read(uint32_t offset, void *buffer, int size);
 val_status_t val_nvmem_write(uint32_t offset, void *buffer, int size);
diff --git a/api-tests/val/spe/pal_interfaces_s.h b/api-tests/val/spe/pal_interfaces_s.h
index a9edd70a..2ca9e28b 100644
--- a/api-tests/val/spe/pal_interfaces_s.h
+++ b/api-tests/val/spe/pal_interfaces_s.h
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -19,7 +19,7 @@
 #define _VAL_PAL_INTERFACE_APIS_H_
 
 
-#include "val/common/val.h"
+#include "val.h"
 
 /* Peripherals APIs */
 
@@ -37,7 +37,7 @@ void pal_uart_init(addr_t uart_base_addr);
                - data           : Value for Format specifier
     @return    - void
  */
-void pal_print(char *str, uint32_t data);
+void pal_print(char *str, int32_t data);
 
 /**
     @brief           - Initializes an hardware watchdog timer
@@ -90,4 +90,19 @@ int  pal_nvmem_write(addr_t base, uint32_t offset, void *buffer, int size);
     @return    - error status 0:SUCCESS, 1:FAIL
 */
 int  pal_nvmem_read(addr_t base, uint32_t offset, void *buffer, int size);
+
+/**
+    @brief   - Trigger interrupt for irq signal assigned to driver partition
+               before return to caller.
+    @param   - void
+    @return  - void
+**/
+void pal_generate_interrupt(void);
+
+/**
+    @brief   - Disable interrupt that was generated using pal_generate_interrupt API.
+    @param   - void
+    @return  - void
+**/
+void pal_disable_interrupt(void);
 #endif
diff --git a/api-tests/val/spe/val_driver_service_apis.c b/api-tests/val/spe/val_driver_service_apis.c
index 46a31622..05b14fde 100644
--- a/api-tests/val/spe/val_driver_service_apis.c
+++ b/api-tests/val/spe/val_driver_service_apis.c
@@ -17,7 +17,7 @@
 
 
 #include "val_driver_service_apis.h"
-#include "val/common/val_target.c"
+#include "val_target.c"
 
 print_verbosity_t  g_print_level = PRINT_INFO;
 static int is_uart_init_done = 0;
@@ -39,10 +39,10 @@ val_status_t val_uart_init_sf(addr_t uart_base_addr)
     @brief     - This function parses the input string and writes byte by byte to
                  print the input string
     @param     - pointer         : Input String
-               - data           : Value for Format specifier
+               - data            : Value for Format specifier
     @return    - error status
  */
-val_status_t val_print_sf(char *string, uint32_t data)
+val_status_t val_print_sf(char *string, int32_t data)
 {
     if (is_uart_init_done == 1)
     {
@@ -199,3 +199,47 @@ val_status_t val_init_driver_memory(void)
 
    return VAL_STATUS_SUCCESS;
 }
+
+/**
+    @brief    - This function returns the driver reserved mmio region base
+    @param    - base pointer
+    @return   - val_status_t
+**/
+val_status_t val_get_driver_mmio_addr(addr_t *base_addr)
+{
+   val_status_t     status;
+   memory_desc_t   *memory_desc;
+
+   status = val_target_get_config(TARGET_CONFIG_CREATE_ID(GROUP_MEMORY,
+                                  MEMORY_DRIVER_PARTITION_MMIO, 0),
+                                  (uint8_t **)&memory_desc,
+                                  (uint32_t *)sizeof(memory_desc_t));
+   if (VAL_ERROR(status))
+   {
+        return status;
+   }
+
+   *base_addr = memory_desc->start;
+   return VAL_STATUS_SUCCESS;
+}
+
+/**
+    @brief   - Trigger interrupt for irq signal assigned to driver partition
+               before return to caller.
+    @param   - void
+    @return  - void
+**/
+void val_generate_interrupt(void)
+{
+    pal_generate_interrupt();
+}
+
+/**
+    @brief   - Disable interrupt that was generated using val_generate_interrupt API.
+    @param   - void
+    @return  - void
+**/
+void val_disable_interrupt(void)
+{
+    pal_disable_interrupt();
+}
diff --git a/api-tests/val/spe/val_driver_service_apis.h b/api-tests/val/spe/val_driver_service_apis.h
index 9614e352..251a0655 100644
--- a/api-tests/val/spe/val_driver_service_apis.h
+++ b/api-tests/val/spe/val_driver_service_apis.h
@@ -20,20 +20,13 @@
 
 #include "val.h"
 #include "val_client_defs.h"
-#include "val_service_defs.h"
 #include "pal_interfaces_s.h"
 
-/* "psa_manifest/<manifestfilename>.h" Manifest definitions. Only accessible to Secure Partition.
- * The file name is based on the name of the Secure Partitions manifest file.
- * The name must not collide with other header files.
- * Compliance tests expect the below manifest output files implementation from build tool.
- */
-#include "psa_manifest/driver_partition_psa.h"
-
-#define USE_RAW_PRINT_FOR_DRIVER_PARTITION 1
+#define DRIVER_PARTITION_INCLUDE
+#include "val_service_defs.h"
 
 val_status_t val_uart_init_sf(addr_t uart_base_addr);
-val_status_t val_print_sf(char *string, uint32_t data);
+val_status_t val_print_sf(char *string, int32_t data);
 val_status_t val_wd_timer_init_sf(addr_t base_addr, uint32_t time_us, uint32_t timer_tick_us);
 val_status_t val_wd_timer_enable_sf(addr_t base_addr);
 val_status_t val_wd_timer_disable_sf(addr_t base_addr);
@@ -42,4 +35,7 @@ val_status_t val_nvmem_read_sf(addr_t base, uint32_t offset, void *buffer, int s
 val_status_t val_nvmem_write_sf(addr_t base, uint32_t offset, void *buffer, int size);
 val_status_t val_driver_private_set_boot_flag_fn(boot_state_t state);
 val_status_t val_init_driver_memory(void);
+val_status_t val_get_driver_mmio_addr(addr_t *base_addr);
+void val_generate_interrupt(void);
+void val_disable_interrupt(void);
 #endif
diff --git a/api-tests/val/spe/val_partition_common.h b/api-tests/val/spe/val_partition_common.h
index df36402d..76b5c8c6 100644
--- a/api-tests/val/spe/val_partition_common.h
+++ b/api-tests/val/spe/val_partition_common.h
@@ -30,16 +30,8 @@
 #include "val_target.c"
 #include "val_service_defs.h"
 
-/* "psa_manifest/<manifestfilename>.h" Manifest definitions. Only accessible to Secure Partition.
- * The file name is based on the name of the Secure Partitions manifest file.
- * The name must not collide with other header files.
- * Compliance tests expect the below manifest output files implementation from build tool.
- */
-#include "psa_manifest/client_partition_psa.h"
-#include "psa_manifest/server_partition_psa.h"
-
 __UNUSED STATIC_DECLARE val_status_t val_print
-                        (print_verbosity_t verbosity, char *string, uint32_t data);
+                        (print_verbosity_t verbosity, char *string, int32_t data);
 __UNUSED STATIC_DECLARE val_status_t val_ipc_connect
                         (uint32_t sid, uint32_t minor_version, psa_handle_t *handle );
 __UNUSED STATIC_DECLARE val_status_t val_ipc_call
@@ -52,7 +44,7 @@ __UNUSED STATIC_DECLARE val_status_t val_process_call_request(psa_signal_t sig,
 __UNUSED STATIC_DECLARE val_status_t val_process_disconnect_request
                         (psa_signal_t sig, psa_msg_t *msg);
 __UNUSED STATIC_DECLARE val_status_t val_execute_secure_tests
-                        (uint32_t test_num, client_test_t *tests_list);
+                        (test_info_t test_info, client_test_t *tests_list);
 __UNUSED STATIC_DECLARE val_status_t val_execute_secure_test_func
                         (psa_handle_t *handle, test_info_t test_info, uint32_t sid);
 __UNUSED STATIC_DECLARE val_status_t val_get_secure_test_result(psa_handle_t *handle);
@@ -70,6 +62,9 @@ __UNUSED static val_api_t val_api = {
     .ipc_close                 = val_ipc_close,
     .set_boot_flag             = val_set_boot_flag,
     .target_get_config         = val_target_get_config,
+    .process_connect_request   = val_process_connect_request,
+    .process_call_request      = val_process_call_request,
+    .process_disconnect_request= val_process_disconnect_request,
 };
 
 __UNUSED static psa_api_t psa_api = {
@@ -78,6 +73,17 @@ __UNUSED static psa_api_t psa_api = {
     .connect               = psa_connect,
     .call                  = psa_call,
     .close                 = psa_close,
+    .wait                  = psa_wait,
+    .set_rhandle           = psa_set_rhandle,
+    .get                   = psa_get,
+    .read                  = psa_read,
+    .skip                  = psa_skip,
+    .write                 = psa_write,
+    .reply                 = psa_reply,
+    .notify                = psa_notify,
+    .clear                 = psa_clear,
+    .eoi                   = psa_eoi,
+    .rot_lifecycle_state   = psa_rot_lifecycle_state,
 };
 
 /**
@@ -88,7 +94,7 @@ __UNUSED static psa_api_t psa_api = {
               - data     : Value for format specifier
     @return   - val_status_t
 **/
-STATIC_DECLARE val_status_t val_print(print_verbosity_t verbosity, char *string, uint32_t data)
+STATIC_DECLARE val_status_t val_print(print_verbosity_t verbosity, char *string, int32_t data)
 {
     int             string_len = 0;
     char            *p = string;
@@ -108,7 +114,7 @@ STATIC_DECLARE val_status_t val_print(print_verbosity_t verbosity, char *string,
         p++;
     }
 
-    psa_invec data1[3] = {{&uart_fn, sizeof(uart_fn)}, {string, string_len+1}, {&data, 4}};
+    psa_invec data1[3] = {{&uart_fn, sizeof(uart_fn)}, {string, string_len+1}, {&data, sizeof(data)}};
     print_handle = psa_connect(DRIVER_UART_SID, 0);
 
     if (print_handle < 0)
@@ -301,23 +307,21 @@ STATIC_DECLARE val_status_t val_process_disconnect_request(psa_signal_t sig, psa
 /**
     @brief    - This function executes given list of tests from secure sequentially
                 This covers secure to secure IPC API scenario
-    @param    - test_num  : Test_num
+    @param    - test_info_t : test_num and block_num
     @param    - tests_list : list of tests to be executed
     @return   - val_status_t
 **/
-STATIC_DECLARE val_status_t val_execute_secure_tests(uint32_t test_num, client_test_t *tests_list)
+STATIC_DECLARE val_status_t val_execute_secure_tests(test_info_t test_info, client_test_t *tests_list)
 {
     val_status_t          status = VAL_STATUS_SUCCESS;
     val_status_t          test_status = VAL_STATUS_SUCCESS;
     psa_handle_t          handle;
-    int                   i = 1;
-    test_info_t           test_info;
-
-    test_info.test_num = test_num;
-    val_print(PRINT_TEST, "[Info] Executing tests from secure\n", 0);
+    int                   i = test_info.block_num;
 
     while (tests_list[i] != NULL)
     {
+        if (i == 1)
+        val_print(PRINT_TEST, "[Info] Executing tests from secure\n", 0);
 
         /* Handshake with server tests */
         test_info.block_num = i;
@@ -513,7 +517,7 @@ STATIC_DECLARE val_status_t val_set_boot_flag(boot_state_t state)
    status = val_nvmem_write(VAL_NVMEM_OFFSET(NV_BOOT), &boot, sizeof(boot_t));
    if (VAL_ERROR(status))
    {
-       val_print(PRINT_ERROR, "val_nvmem_write failed Error=0x%x\n", status);
+       val_print(PRINT_ERROR, "\tval_nvmem_write failed Error=0x%x\n", status);
        return status;
    }
    return status;
diff --git a/api-tests/val/spe/val_service_defs.h b/api-tests/val/spe/val_service_defs.h
index 51b6d5cd..b499b5d3 100644
--- a/api-tests/val/spe/val_service_defs.h
+++ b/api-tests/val/spe/val_service_defs.h
@@ -1,5 +1,5 @@
 /** @file
- * Copyright (c) 2018, Arm Limited or its affiliates. All rights reserved.
+ * Copyright (c) 2018-2019, Arm Limited or its affiliates. All rights reserved.
  * SPDX-License-Identifier : Apache-2.0
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
@@ -20,16 +20,25 @@
 
 /***************** PSA Secure Function API *****************/
 
-/* Note - This header file containts the declaration of PSA defined secure partition service API
-   elements. Ideally, These elements must be defined in a header file <psa_service.h> by SPM
-   implemented library and provided to clients operation in NSPE and SPE as per the specification.
-   If this is available in the platform, the elements declared as part of this
-   file can be overwritten by passing  --include <path_to_psa_service_h> to setup.sh script.
-  */
-
 /* psa/service.h: Secure Partition API elements. Only accessible to Secure Partition */
 #include "psa/service.h"
 
+/* psa/lifecycle.h: Contains the PSA Lifecycle API elements */
+#include "psa/lifecycle.h"
+
+/* "psa_manifest/<manifestfilename>.h" Manifest definitions. Only accessible to Secure Partition.
+ * The file name is based on the name of the Secure Partitions manifest file.
+ * The name must not collide with other header files.
+ * Compliance tests expect the below manifest output files implementation from build tool.
+ */
+#include "psa_manifest/driver_partition_psa.h"
+#ifndef DRIVER_PARTITION_INCLUDE
+#include "psa_manifest/client_partition_psa.h"
+#include "psa_manifest/server_partition_psa.h"
+#endif
+
+#include "val_target.h"
+
 /* struct of function pointers to uniqify  nspe and spe client interface for test */
 typedef struct {
     uint32_t         (*framework_version)     (void);
@@ -42,21 +51,38 @@ typedef struct {
                                               size_t out_len
                                               );
     void             (*close)                 (psa_handle_t handle);
+    psa_signal_t     (*wait)                  (psa_signal_t signal_mask, uint32_t timeout);
+    void             (*set_rhandle)           (psa_handle_t msg_handle, void *rhandle);
+    psa_status_t     (*get)                   (psa_signal_t signal, psa_msg_t *msg);
+    size_t           (*read)                  (psa_handle_t msg_handle, uint32_t invec_idx,
+                                               void *buffer, size_t num_bytes);
+    size_t           (*skip)                  (psa_handle_t msg_handle, uint32_t invec_idx,
+                                               size_t num_bytes);
+    void             (*write)                 (psa_handle_t msg_handle, uint32_t outvec_idx,
+                                               const void *buffer, size_t num_bytes);
+    void             (*reply)                 (psa_handle_t msg_handle, psa_status_t status);
+    void             (*notify)                (int32_t partition_id);
+    void             (*clear)                 (void);
+    void             (*eoi)                   (psa_signal_t irq_signal);
+    uint32_t         (*rot_lifecycle_state)   (void);
 } psa_api_t;
 
 typedef struct {
-  val_status_t (*print)                    (print_verbosity_t verbosity,
-                                            char *string, uint32_t data);
-  val_status_t (*err_check_set)            (uint32_t checkpoint, val_status_t status);
-  val_status_t (*execute_secure_test_func) (psa_handle_t *handle, test_info_t test_info,
-                                            uint32_t sid);
-  val_status_t (*get_secure_test_result)   (psa_handle_t *handle);
-  val_status_t (*ipc_connect)              (uint32_t sid, uint32_t minor_version,
-                                            psa_handle_t *handle );
-  val_status_t (*ipc_call)                 (psa_handle_t handle, psa_invec *in_vec,
-                                            size_t in_len,  psa_outvec *out_vec, size_t out_len);
-  void         (*ipc_close)                (psa_handle_t handle);
-  val_status_t (*set_boot_flag)            (boot_state_t state);
-  val_status_t (*target_get_config)        (cfg_id_t cfg_id, uint8_t **data, uint32_t *size);
+  val_status_t (*print)                      (print_verbosity_t verbosity,
+                                              char *string, int32_t data);
+  val_status_t (*err_check_set)              (uint32_t checkpoint, val_status_t status);
+  val_status_t (*execute_secure_test_func)   (psa_handle_t *handle, test_info_t test_info,
+                                              uint32_t sid);
+  val_status_t (*get_secure_test_result)     (psa_handle_t *handle);
+  val_status_t (*ipc_connect)                (uint32_t sid, uint32_t minor_version,
+                                              psa_handle_t *handle );
+  val_status_t (*ipc_call)                   (psa_handle_t handle, psa_invec *in_vec,
+                                              size_t in_len,  psa_outvec *out_vec, size_t out_len);
+  void         (*ipc_close)                  (psa_handle_t handle);
+  val_status_t (*set_boot_flag)              (boot_state_t state);
+  val_status_t (*target_get_config)          (cfg_id_t cfg_id, uint8_t **data, uint32_t *size);
+  val_status_t (*process_connect_request)    (psa_signal_t sig, psa_msg_t *msg);
+  val_status_t (*process_call_request)       (psa_signal_t sig, psa_msg_t *msg);
+  val_status_t (*process_disconnect_request) (psa_signal_t sig, psa_msg_t *msg);
 } val_api_t;
 #endif