From 7127cc2aabd40d840373dacfb7073bf8eaef81ad Mon Sep 17 00:00:00 2001
From: "Simon J.K. Pedersen" <mail@sjkp.dk>
Date: Thu, 10 Jan 2019 22:36:38 +0100
Subject: [PATCH 1/5] 257

---
 LetsEncrypt.SiteExtension.Core/ArmHelper.cs   | 38 +++++++++++-
 .../CertificateManager.cs                     | 12 +++-
 .../LetsEncrypt.Azure.Core.csproj             | 61 ++++++++++++++++++-
 .../AppServiceCerticiateCertificateService.cs |  2 +-
 .../Services/ICertificateService.cs           |  2 +-
 .../Services/WebAppCertificateService.cs      | 14 +++--
 .../packages.config                           | 48 +++++++++++++++
 .../LetsEncrypt.SiteExtension.Test.csproj     |  4 ++
 LetsEncrypt.SiteExtension.Test/UnitTest1.cs   | 26 ++++++++
 .../packages.config                           |  1 +
 10 files changed, 196 insertions(+), 12 deletions(-)
 create mode 100644 LetsEncrypt.SiteExtension.Test/UnitTest1.cs

diff --git a/LetsEncrypt.SiteExtension.Core/ArmHelper.cs b/LetsEncrypt.SiteExtension.Core/ArmHelper.cs
index 58a15e3..f92cf44 100644
--- a/LetsEncrypt.SiteExtension.Core/ArmHelper.cs
+++ b/LetsEncrypt.SiteExtension.Core/ArmHelper.cs
@@ -4,10 +4,13 @@
 using Microsoft.IdentityModel.Clients.ActiveDirectory;
 using Microsoft.Rest;
 using Microsoft.Rest.Azure.Authentication;
+using Polly;
 using System;
 using System.Collections.Generic;
 using System.Linq;
 using System.Net.Http;
+using System.Threading;
+using System.Threading.Tasks;
 using System.Web;
 
 namespace LetsEncrypt.Azure.Core
@@ -46,11 +49,44 @@ public static HttpClient GetHttpClient(IAzureWebAppEnvironment model)
         {        
             AuthenticationResult token = GetToken(model);
 
-            var client = new HttpClient();
+            var client = HttpClientFactory.Create(new HttpClientHandler(), new TimeoutHandler());
             client.DefaultRequestHeaders.Add("Authorization", "Bearer " + token.AccessToken);
             client.BaseAddress = model.ManagementEndpoint;
 
             return client;
         }
+
+        public static Polly.Retry.RetryPolicy ExponentialBackoff(int retryCount = 3, int firstBackOffDelay = 2)
+        {
+            return Policy
+          .Handle<HttpRequestException>()
+          .WaitAndRetryAsync(retryCount, retryAttempt =>
+            TimeSpan.FromSeconds(Math.Pow(firstBackOffDelay, retryAttempt))
+          );
+        }
+
+        public class TimeoutHandler : DelegatingHandler
+        {
+            private static TimeSpan Timeout = TimeSpan.FromSeconds(120);
+
+            protected override async Task<HttpResponseMessage> SendAsync(HttpRequestMessage request,
+            CancellationToken cancellationToken)
+            {
+                var cts = new CancellationTokenSource();
+                cts.CancelAfter(Timeout);
+                var timeoutToken = cts.Token;
+
+                var linkedToken = CancellationTokenSource.CreateLinkedTokenSource(cancellationToken, timeoutToken);
+
+                try
+                {
+                    return await base.SendAsync(request, linkedToken.Token);
+                }
+                catch (OperationCanceledException) when (timeoutToken.IsCancellationRequested)
+                {
+                    throw new TimeoutException();
+                }
+            }
+        }
     }
 }
\ No newline at end of file
diff --git a/LetsEncrypt.SiteExtension.Core/CertificateManager.cs b/LetsEncrypt.SiteExtension.Core/CertificateManager.cs
index 0aae129..cda8c34 100644
--- a/LetsEncrypt.SiteExtension.Core/CertificateManager.cs
+++ b/LetsEncrypt.SiteExtension.Core/CertificateManager.cs
@@ -150,11 +150,17 @@ public async Task<List<CertificateInstallModel>> RenewCertificate(bool skipInsta
             using (var client = ArmHelper.GetWebSiteManagementClient(settings))
             using (var httpClient = ArmHelper.GetHttpClient(settings))
             {
+                var retryPolicy = ArmHelper.ExponentialBackoff();
+                var body = string.Empty;
                 //Cant just get certificates by resource group, because sites that have been moved, have their certs sitting in the old RG.
                 //Also cant use client.Certificates.List() due to bug in the nuget
-                var response = await httpClient.GetAsync($"/subscriptions/{settings.SubscriptionId}/providers/Microsoft.Web/certificates?api-version=2016-03-01");
-                response.EnsureSuccessStatusCode();
-                var body = await response.Content.ReadAsStringAsync();
+                await retryPolicy.ExecuteAsync(async () =>
+                {
+                    var response = await httpClient.GetAsync($"/subscriptions/{settings.SubscriptionId}/providers/Microsoft.Web/certificates?api-version=2016-03-01");
+                    response.EnsureSuccessStatusCode();
+                    body = await response.Content.ReadAsStringAsync();
+
+                });
                 IEnumerable<Certificate> certs = ExtractCertificates(body);
 
                 var expiringCerts = certs.Where(s => s.ExpirationDate < DateTime.UtcNow.AddDays(renewXNumberOfDaysBeforeExpiration) && (s.Issuer.Contains("Let's Encrypt") || s.Issuer.Contains("Fake LE")));
diff --git a/LetsEncrypt.SiteExtension.Core/LetsEncrypt.Azure.Core.csproj b/LetsEncrypt.SiteExtension.Core/LetsEncrypt.Azure.Core.csproj
index c6f849c..cd6abb0 100644
--- a/LetsEncrypt.SiteExtension.Core/LetsEncrypt.Azure.Core.csproj
+++ b/LetsEncrypt.SiteExtension.Core/LetsEncrypt.Azure.Core.csproj
@@ -106,23 +106,82 @@
       <HintPath>..\packages\Microsoft.Rest.ClientRuntime.Azure.Authentication.2.2.0-preview\lib\net45\Microsoft.Rest.ClientRuntime.Azure.Authentication.dll</HintPath>
       <Private>True</Private>
     </Reference>
+    <Reference Include="Microsoft.Win32.Primitives, Version=4.0.2.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.Win32.Primitives.4.3.0\lib\net46\Microsoft.Win32.Primitives.dll</HintPath>
+    </Reference>
     <Reference Include="Newtonsoft.Json, Version=10.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed, processorArchitecture=MSIL">
       <HintPath>..\packages\Newtonsoft.Json.10.0.2\lib\net45\Newtonsoft.Json.dll</HintPath>
     </Reference>
+    <Reference Include="Polly, Version=6.0.0.0, Culture=neutral, PublicKeyToken=c8a3ffc3f8f825cc, processorArchitecture=MSIL">
+      <HintPath>..\packages\Polly.6.1.2\lib\netstandard1.1\Polly.dll</HintPath>
+    </Reference>
     <Reference Include="System" />
+    <Reference Include="System.AppContext, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.AppContext.4.3.0\lib\net46\System.AppContext.dll</HintPath>
+    </Reference>
+    <Reference Include="System.ComponentModel.Composition" />
     <Reference Include="System.ComponentModel.DataAnnotations" />
     <Reference Include="System.Configuration" />
+    <Reference Include="System.Console, Version=4.0.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Console.4.3.0\lib\net46\System.Console.dll</HintPath>
+    </Reference>
     <Reference Include="System.Core" />
+    <Reference Include="System.Diagnostics.DiagnosticSource, Version=4.0.1.0, Culture=neutral, PublicKeyToken=cc7b13ffcd2ddd51, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Diagnostics.DiagnosticSource.4.3.0\lib\net46\System.Diagnostics.DiagnosticSource.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Globalization.Calendars, Version=4.0.2.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Globalization.Calendars.4.3.0\lib\net46\System.Globalization.Calendars.dll</HintPath>
+    </Reference>
+    <Reference Include="System.IO.Compression, Version=4.1.2.0, Culture=neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.IO.Compression.4.3.0\lib\net46\System.IO.Compression.dll</HintPath>
+    </Reference>
+    <Reference Include="System.IO.Compression.FileSystem" />
+    <Reference Include="System.IO.Compression.ZipFile, Version=4.0.2.0, Culture=neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.IO.Compression.ZipFile.4.3.0\lib\net46\System.IO.Compression.ZipFile.dll</HintPath>
+    </Reference>
+    <Reference Include="System.IO.FileSystem, Version=4.0.2.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.IO.FileSystem.4.3.0\lib\net46\System.IO.FileSystem.dll</HintPath>
+    </Reference>
+    <Reference Include="System.IO.FileSystem.Primitives, Version=4.0.2.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.IO.FileSystem.Primitives.4.3.0\lib\net46\System.IO.FileSystem.Primitives.dll</HintPath>
+    </Reference>
     <Reference Include="System.Net" />
+    <Reference Include="System.Net.Http, Version=4.1.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Net.Http.4.3.0\lib\net46\System.Net.Http.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Net.Http.Formatting, Version=5.2.3.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.AspNet.WebApi.Client.5.2.3\lib\net45\System.Net.Http.Formatting.dll</HintPath>
+    </Reference>
     <Reference Include="System.Net.Http.WebRequest" />
+    <Reference Include="System.Net.Sockets, Version=4.1.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Net.Sockets.4.3.0\lib\net46\System.Net.Sockets.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Numerics" />
+    <Reference Include="System.Runtime.InteropServices.RuntimeInformation, Version=4.0.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Runtime.InteropServices.RuntimeInformation.4.3.0\lib\net45\System.Runtime.InteropServices.RuntimeInformation.dll</HintPath>
+    </Reference>
     <Reference Include="System.Runtime.Serialization" />
+    <Reference Include="System.Security.Cryptography.Algorithms, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Security.Cryptography.Algorithms.4.3.0\lib\net46\System.Security.Cryptography.Algorithms.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Security.Cryptography.Encoding, Version=4.0.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Security.Cryptography.Encoding.4.3.0\lib\net46\System.Security.Cryptography.Encoding.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Security.Cryptography.Primitives, Version=4.0.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Security.Cryptography.Primitives.4.3.0\lib\net46\System.Security.Cryptography.Primitives.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Security.Cryptography.X509Certificates, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Security.Cryptography.X509Certificates.4.3.0\lib\net46\System.Security.Cryptography.X509Certificates.dll</HintPath>
+    </Reference>
     <Reference Include="System.Web" />
     <Reference Include="System.Xml.Linq" />
     <Reference Include="System.Data.DataSetExtensions" />
     <Reference Include="Microsoft.CSharp" />
     <Reference Include="System.Data" />
-    <Reference Include="System.Net.Http" />
     <Reference Include="System.Xml" />
+    <Reference Include="System.Xml.ReaderWriter, Version=4.1.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Xml.ReaderWriter.4.3.0\lib\net46\System.Xml.ReaderWriter.dll</HintPath>
+    </Reference>
   </ItemGroup>
   <ItemGroup>
     <Compile Include="AppSettingsAuthConfig.cs" />
diff --git a/LetsEncrypt.SiteExtension.Core/Services/AppServiceCerticiateCertificateService.cs b/LetsEncrypt.SiteExtension.Core/Services/AppServiceCerticiateCertificateService.cs
index aca1d23..5dc8f9b 100644
--- a/LetsEncrypt.SiteExtension.Core/Services/AppServiceCerticiateCertificateService.cs
+++ b/LetsEncrypt.SiteExtension.Core/Services/AppServiceCerticiateCertificateService.cs
@@ -9,7 +9,7 @@ namespace LetsEncrypt.Azure.Core.Services
 {
     class AppServiceCerticiateCertificateService : ICertificateService
     {
-        public void Install(ICertificateInstallModel model)
+        public async Task Install(ICertificateInstallModel model)
         {
             throw new NotImplementedException();
         }
diff --git a/LetsEncrypt.SiteExtension.Core/Services/ICertificateService.cs b/LetsEncrypt.SiteExtension.Core/Services/ICertificateService.cs
index 1e0a074..5be0970 100644
--- a/LetsEncrypt.SiteExtension.Core/Services/ICertificateService.cs
+++ b/LetsEncrypt.SiteExtension.Core/Services/ICertificateService.cs
@@ -9,7 +9,7 @@ namespace LetsEncrypt.Azure.Core.Services
 {
     public interface ICertificateService
     {
-        void Install(ICertificateInstallModel model);
+        Task Install(ICertificateInstallModel model);
 
         List<string> RemoveExpired(int removeXNumberOfDaysBeforeExpiration = 0);
     }
diff --git a/LetsEncrypt.SiteExtension.Core/Services/WebAppCertificateService.cs b/LetsEncrypt.SiteExtension.Core/Services/WebAppCertificateService.cs
index 57157cf..fea2095 100644
--- a/LetsEncrypt.SiteExtension.Core/Services/WebAppCertificateService.cs
+++ b/LetsEncrypt.SiteExtension.Core/Services/WebAppCertificateService.cs
@@ -10,6 +10,7 @@
 using System.Diagnostics;
 using System.Net.Http;
 using Newtonsoft.Json;
+using Polly;
 
 namespace LetsEncrypt.Azure.Core.Services
 {
@@ -26,7 +27,7 @@ public WebAppCertificateService(IAzureWebAppEnvironment azureEnvironment, IWebAp
             this.azureEnvironment = azureEnvironment;
             this.settings = settings;
         }
-        public void Install(ICertificateInstallModel model)
+        public async Task Install(ICertificateInstallModel model)
         {
             var cert = model.CertificateInfo;
             using (var webSiteClient = ArmHelper.GetWebSiteManagementClient(azureEnvironment))
@@ -53,10 +54,13 @@ public void Install(ICertificateInstallModel model)
 
                 var body = JsonConvert.SerializeObject(newCert, JsonHelper.DefaultSerializationSettings);
 
-                var t = client.PutAsync($"/subscriptions/{azureEnvironment.SubscriptionId}/resourceGroups/{azureEnvironment.ServicePlanResourceGroupName}/providers/Microsoft.Web/certificates/{newCert.Name}?api-version=2016-03-01", new StringContent(body, Encoding.UTF8, "application/json")).Result;
-
-                t.EnsureSuccessStatusCode();
+                Polly.Retry.RetryPolicy retryPolicy = ArmHelper.ExponentialBackoff();
 
+                await retryPolicy.ExecuteAsync(async () =>
+                {
+                    var t = await client.PutAsync($"/subscriptions/{azureEnvironment.SubscriptionId}/resourceGroups/{azureEnvironment.ServicePlanResourceGroupName}/providers/Microsoft.Web/certificates/{newCert.Name}?api-version=2016-03-01", new StringContent(body, Encoding.UTF8, "application/json"));
+                    t.EnsureSuccessStatusCode();
+                });
 
                 foreach (var dnsName in model.AllDnsIdentifiers)
                 {
@@ -83,7 +87,7 @@ public void Install(ICertificateInstallModel model)
             }
 
 
-        }
+        }        
 
         public List<string> RemoveExpired(int removeXNumberOfDaysBeforeExpiration = 0)
         {
diff --git a/LetsEncrypt.SiteExtension.Core/packages.config b/LetsEncrypt.SiteExtension.Core/packages.config
index 77aff90..8e49574 100644
--- a/LetsEncrypt.SiteExtension.Core/packages.config
+++ b/LetsEncrypt.SiteExtension.Core/packages.config
@@ -1,13 +1,61 @@
 <?xml version="1.0" encoding="utf-8"?>
 <packages>
+  <package id="Microsoft.AspNet.WebApi.Client" version="5.2.3" targetFramework="net46" />
   <package id="Microsoft.Azure.KeyVault.Core" version="1.0.0" targetFramework="net46" />
   <package id="Microsoft.Azure.Management.Dns" version="1.9.0-preview" targetFramework="net46" />
   <package id="Microsoft.Azure.Management.Websites" version="1.6.0-preview" targetFramework="net461" />
   <package id="Microsoft.Azure.Storage.Blob" version="9.4.2" targetFramework="net46" />
   <package id="Microsoft.Azure.Storage.Common" version="9.4.2" targetFramework="net46" />
   <package id="Microsoft.IdentityModel.Clients.ActiveDirectory" version="2.28.1" targetFramework="net45" />
+  <package id="Microsoft.NETCore.Platforms" version="1.1.0" targetFramework="net46" />
   <package id="Microsoft.Rest.ClientRuntime" version="2.3.8" targetFramework="net46" />
   <package id="Microsoft.Rest.ClientRuntime.Azure" version="3.3.7" targetFramework="net46" />
   <package id="Microsoft.Rest.ClientRuntime.Azure.Authentication" version="2.2.0-preview" targetFramework="net461" />
+  <package id="Microsoft.Win32.Primitives" version="4.3.0" targetFramework="net46" />
+  <package id="NETStandard.Library" version="1.6.1" targetFramework="net46" />
   <package id="Newtonsoft.Json" version="10.0.2" targetFramework="net46" />
+  <package id="Polly" version="6.1.2" targetFramework="net46" />
+  <package id="System.AppContext" version="4.3.0" targetFramework="net46" />
+  <package id="System.Collections" version="4.3.0" targetFramework="net46" />
+  <package id="System.Collections.Concurrent" version="4.3.0" targetFramework="net46" />
+  <package id="System.Console" version="4.3.0" targetFramework="net46" />
+  <package id="System.Diagnostics.Debug" version="4.3.0" targetFramework="net46" />
+  <package id="System.Diagnostics.DiagnosticSource" version="4.3.0" targetFramework="net46" />
+  <package id="System.Diagnostics.Tools" version="4.3.0" targetFramework="net46" />
+  <package id="System.Diagnostics.Tracing" version="4.3.0" targetFramework="net46" />
+  <package id="System.Globalization" version="4.3.0" targetFramework="net46" />
+  <package id="System.Globalization.Calendars" version="4.3.0" targetFramework="net46" />
+  <package id="System.IO" version="4.3.0" targetFramework="net46" />
+  <package id="System.IO.Compression" version="4.3.0" targetFramework="net46" />
+  <package id="System.IO.Compression.ZipFile" version="4.3.0" targetFramework="net46" />
+  <package id="System.IO.FileSystem" version="4.3.0" targetFramework="net46" />
+  <package id="System.IO.FileSystem.Primitives" version="4.3.0" targetFramework="net46" />
+  <package id="System.Linq" version="4.3.0" targetFramework="net46" />
+  <package id="System.Linq.Expressions" version="4.3.0" targetFramework="net46" />
+  <package id="System.Net.Http" version="4.3.0" targetFramework="net46" />
+  <package id="System.Net.Primitives" version="4.3.0" targetFramework="net46" />
+  <package id="System.Net.Sockets" version="4.3.0" targetFramework="net46" />
+  <package id="System.ObjectModel" version="4.3.0" targetFramework="net46" />
+  <package id="System.Reflection" version="4.3.0" targetFramework="net46" />
+  <package id="System.Reflection.Extensions" version="4.3.0" targetFramework="net46" />
+  <package id="System.Reflection.Primitives" version="4.3.0" targetFramework="net46" />
+  <package id="System.Resources.ResourceManager" version="4.3.0" targetFramework="net46" />
+  <package id="System.Runtime" version="4.3.0" targetFramework="net46" />
+  <package id="System.Runtime.Extensions" version="4.3.0" targetFramework="net46" />
+  <package id="System.Runtime.Handles" version="4.3.0" targetFramework="net46" />
+  <package id="System.Runtime.InteropServices" version="4.3.0" targetFramework="net46" />
+  <package id="System.Runtime.InteropServices.RuntimeInformation" version="4.3.0" targetFramework="net46" />
+  <package id="System.Runtime.Numerics" version="4.3.0" targetFramework="net46" />
+  <package id="System.Security.Cryptography.Algorithms" version="4.3.0" targetFramework="net46" />
+  <package id="System.Security.Cryptography.Encoding" version="4.3.0" targetFramework="net46" />
+  <package id="System.Security.Cryptography.Primitives" version="4.3.0" targetFramework="net46" />
+  <package id="System.Security.Cryptography.X509Certificates" version="4.3.0" targetFramework="net46" />
+  <package id="System.Text.Encoding" version="4.3.0" targetFramework="net46" />
+  <package id="System.Text.Encoding.Extensions" version="4.3.0" targetFramework="net46" />
+  <package id="System.Text.RegularExpressions" version="4.3.0" targetFramework="net46" />
+  <package id="System.Threading" version="4.3.0" targetFramework="net46" />
+  <package id="System.Threading.Tasks" version="4.3.0" targetFramework="net46" />
+  <package id="System.Threading.Timer" version="4.3.0" targetFramework="net46" />
+  <package id="System.Xml.ReaderWriter" version="4.3.0" targetFramework="net46" />
+  <package id="System.Xml.XDocument" version="4.3.0" targetFramework="net46" />
 </packages>
\ No newline at end of file
diff --git a/LetsEncrypt.SiteExtension.Test/LetsEncrypt.SiteExtension.Test.csproj b/LetsEncrypt.SiteExtension.Test/LetsEncrypt.SiteExtension.Test.csproj
index 7825b53..0a2b6eb 100644
--- a/LetsEncrypt.SiteExtension.Test/LetsEncrypt.SiteExtension.Test.csproj
+++ b/LetsEncrypt.SiteExtension.Test/LetsEncrypt.SiteExtension.Test.csproj
@@ -93,6 +93,9 @@
       <HintPath>..\packages\Newtonsoft.Json.9.0.1\lib\net45\Newtonsoft.Json.dll</HintPath>
       <Private>True</Private>
     </Reference>
+    <Reference Include="Polly, Version=6.0.0.0, Culture=neutral, PublicKeyToken=c8a3ffc3f8f825cc, processorArchitecture=MSIL">
+      <HintPath>..\packages\Polly.6.1.2\lib\netstandard2.0\Polly.dll</HintPath>
+    </Reference>
     <Reference Include="System" />
     <Reference Include="System.ComponentModel.DataAnnotations" />
     <Reference Include="System.Configuration" />
@@ -130,6 +133,7 @@
     <Compile Include="CertificateManagerTest.cs" />
     <Compile Include="AppSettingsAuthConfigTest.cs" />
     <Compile Include="CertificateServiceTest.cs" />
+    <Compile Include="UnitTest1.cs" />
     <Compile Include="WebAppEnviromentVariablesTest.cs" />
     <Compile Include="WebSiteManagementClientExtensionsTest.cs" />
   </ItemGroup>
diff --git a/LetsEncrypt.SiteExtension.Test/UnitTest1.cs b/LetsEncrypt.SiteExtension.Test/UnitTest1.cs
new file mode 100644
index 0000000..dd30e8b
--- /dev/null
+++ b/LetsEncrypt.SiteExtension.Test/UnitTest1.cs
@@ -0,0 +1,26 @@
+using System;
+using System.Net.Http;
+using System.Threading.Tasks;
+using LetsEncrypt.Azure.Core;
+using Microsoft.VisualStudio.TestTools.UnitTesting;
+using static LetsEncrypt.Azure.Core.ArmHelper;
+
+namespace LetsEncrypt.SiteExtension.Test
+{
+    [TestClass]
+    public class HttpTets
+    {
+        [TestMethod]
+        [Ignore]
+        public async Task RetryTest()
+        {
+            var client = HttpClientFactory.Create(new HttpClientHandler(), new TimeoutHandler());
+            
+            var retry = ArmHelper.ExponentialBackoff();
+            await retry.ExecuteAsync(async () =>
+            {
+                await client.PostAsJsonAsync("https://en8zkq5hogjyi.x.pipedream.net", new { text = "hello" });
+            });
+        }
+    }
+}
diff --git a/LetsEncrypt.SiteExtension.Test/packages.config b/LetsEncrypt.SiteExtension.Test/packages.config
index d43c508..1549a90 100644
--- a/LetsEncrypt.SiteExtension.Test/packages.config
+++ b/LetsEncrypt.SiteExtension.Test/packages.config
@@ -6,4 +6,5 @@
   <package id="Microsoft.Rest.ClientRuntime" version="2.3.5" targetFramework="net461" />
   <package id="Microsoft.Rest.ClientRuntime.Azure" version="3.3.5" targetFramework="net461" />
   <package id="Newtonsoft.Json" version="9.0.1" targetFramework="net461" />
+  <package id="Polly" version="6.1.2" targetFramework="net461" />
 </packages>
\ No newline at end of file

From fcc737a1667d14af9660e6756c69105247341f2a Mon Sep 17 00:00:00 2001
From: "Simon J.K. Pedersen" <mail@sjkp.dk>
Date: Sat, 12 Jan 2019 13:20:31 +0100
Subject: [PATCH 2/5] updated package references.

---
 .../DesignTimeBuild/.dtbcache                 | Bin 1087106 -> 1087106 bytes
 LetsEncrypt-SiteExtension.sln                 |   1 +
 .../Controllers/HomeController.cs             |  30 ++--
 .../LetsEncrypt.SiteExtension.csproj          | 137 ++++++++++--------
 LetsEncrypt-SiteExtension/Web.config          |  77 +++++++---
 LetsEncrypt-SiteExtension/packages.config     |  46 +++---
 LetsEncrypt.SiteExtension.Core/ArmHelper.cs   |  40 +++--
 .../CertificateManager.cs                     |  19 +--
 .../LetsEncrypt.Azure.Core.csproj             |  61 ++++----
 .../LetsEncrypt.SiteExtension.Core.nuspec     |   8 +-
 .../AppServiceCerticiateCertificateService.cs |   2 +-
 .../AzureDnsAuthorizationChallengeProvider.cs |  12 +-
 .../Services/ICertificateService.cs           |   2 +-
 ...ileSystemAuthorizationChallengeProvider.cs |  12 +-
 .../Services/WebAppCertificateService.cs      |  44 +++---
 LetsEncrypt.SiteExtension.Core/app.config     |  14 +-
 .../packages.config                           |  33 ++---
 LetsEncrypt.SiteExtension.Test/App.config     |  28 +++-
 .../CertificateControllerTest.cs              |   8 +-
 .../CertificateServicetest.cs                 |  11 +-
 .../LetsEncrypt.SiteExtension.Test.csproj     |  54 +++++--
 .../PublishingCrendentialsTest.cs             |   2 +-
 LetsEncrypt.SiteExtension.Test/UnitTest1.cs   |   4 +-
 .../packages.config                           |  16 +-
 LetsEncrypt.SiteExtension.WebJob/App.config   |  30 +++-
 LetsEncrypt.SiteExtension.WebJob/Functions.cs |   4 +-
 .../LetsEncrypt.SiteExtension.WebJob.csproj   |  64 +++++---
 .../packages.config                           |  32 ++--
 LetsEncrypt.WebAppOnly.nuspec                 |   2 +-
 LetsEncrypt.nuspec                            |   2 +-
 30 files changed, 472 insertions(+), 323 deletions(-)

diff --git a/.vs/LetsEncrypt-SiteExtension/DesignTimeBuild/.dtbcache b/.vs/LetsEncrypt-SiteExtension/DesignTimeBuild/.dtbcache
index 89a2b262a8f9cd74c275cde09d3361aed1621125..cca23c557ef622e45af4e95cd7aa716ff8524c9a 100644
GIT binary patch
delta 154
zcmZo#>(sQ?X@bbcCo>rBEg2FSEE&ug%o!{gj2Vm=Qh~HNP|OfWf@pIF6NWUP3R8w;
zAZ-X#VaSjIWTip$P2SB^$Z|)%F0eU)sXc*-5r{!FGZ3=?F)I+W0Wmuea{w_X5OV=B
VHxTmxF)tAF0Wtsf1SSEcDFA%8BNPAt

delta 114
zcmZo#>(sQ?X@Ur2^7O{*9O=`gthm%Bhw$kMBr_B<6fhJq<TGS3+>x&f+$b=IvAKq+
wy@rVqh(R<n5VHU=D-g2*F*^`*05K;Ja{)0o5c2>rFA(zqG5_`&CIPl70M?Ws^8f$<

diff --git a/LetsEncrypt-SiteExtension.sln b/LetsEncrypt-SiteExtension.sln
index f1fe8ca..7553999 100644
--- a/LetsEncrypt-SiteExtension.sln
+++ b/LetsEncrypt-SiteExtension.sln
@@ -18,6 +18,7 @@ Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Tools", "Tools", "{ED36B174
 		build.cmd = build.cmd
 		build.core.cmd = build.core.cmd
 		LetsEncrypt.nuspec = LetsEncrypt.nuspec
+		LetsEncrypt.SiteExtension.Core\LetsEncrypt.SiteExtension.Core.nuspec = LetsEncrypt.SiteExtension.Core\LetsEncrypt.SiteExtension.Core.nuspec
 		LetsEncrypt.WebAppOnly.nuspec = LetsEncrypt.WebAppOnly.nuspec
 	EndProjectSection
 EndProject
diff --git a/LetsEncrypt-SiteExtension/Controllers/HomeController.cs b/LetsEncrypt-SiteExtension/Controllers/HomeController.cs
index f23a03e..abc2183 100644
--- a/LetsEncrypt-SiteExtension/Controllers/HomeController.cs
+++ b/LetsEncrypt-SiteExtension/Controllers/HomeController.cs
@@ -1,17 +1,8 @@
-using ARMExplorer.Controllers;
-using ARMExplorer.Modules;
-using LetsEncrypt.Azure.Core;
+using LetsEncrypt.Azure.Core;
 using LetsEncrypt.Azure.Core.Models;
 using LetsEncrypt.SiteExtension.Models;
-using Microsoft.Azure.Graph.RBAC;
-using Microsoft.Azure.Graph.RBAC.Models;
-using Microsoft.Azure.Management.Resources;
 using Microsoft.Azure.Management.WebSites;
 using Microsoft.Azure.Management.WebSites.Models;
-using Microsoft.IdentityModel.Clients.ActiveDirectory;
-using Microsoft.Rest;
-using Microsoft.Rest.Azure;
-using Microsoft.Rest.Azure.Authentication;
 using System;
 using System.Collections.Generic;
 using System.ComponentModel.DataAnnotations;
@@ -35,13 +26,13 @@ public ActionResult Index()
         }
 
         [HttpPost]
-        public ActionResult Index(AuthenticationModel model)
+        public async Task<ActionResult> Index(AuthenticationModel model)
         {
             if (ModelState.IsValid)
             {
                 try
                 {
-                    using (var client = ArmHelper.GetWebSiteManagementClient(model))
+                    using (var client = await ArmHelper.GetWebSiteManagementClient(model))
                     {
                         //Update web config.
                         var site = client.WebApps.GetSiteOrSlot(model.ResourceGroupName, model.WebAppName, model.SiteSlotName);
@@ -138,14 +129,14 @@ public ActionResult PleaseWait()
             return View();
         }
 
-        public ActionResult Hostname(string id)
+        public async Task<ActionResult> Hostname(string id)
         {
             var settings = new AppSettingsAuthConfig();
             var model = new HostnameModel();
             List<ValidationResult> validationResult = null;
             if (settings.IsValid(out validationResult))
             {
-                var client = ArmHelper.GetWebSiteManagementClient(settings);
+                var client = await ArmHelper.GetWebSiteManagementClient(settings);
 
                 var site = client.WebApps.GetSiteOrSlot(settings.ResourceGroupName, settings.WebAppName, settings.SiteSlotName);               
                 model.HostNames = site.HostNames;
@@ -183,10 +174,10 @@ public ActionResult Install()
             );
         }
 
-        private void SetViewBagHostnames()
+        private async Task SetViewBagHostnames()
         {
             var settings = new AppSettingsAuthConfig();
-            var client = ArmHelper.GetWebSiteManagementClient(settings);
+            var client = await ArmHelper.GetWebSiteManagementClient(settings);
 
             var site = client.WebApps.GetSiteOrSlot(settings.ResourceGroupName, settings.WebAppName, settings.SiteSlotName);
             var model = new HostnameModel();
@@ -234,10 +225,10 @@ public async Task<ActionResult> Install(RequestAndInstallModel model)
             return View(model);
         }
 
-        public ActionResult AddHostname()
+        public async Task<ActionResult> AddHostname()
         {
             var settings = new AppSettingsAuthConfig();
-            using (var client = ArmHelper.GetWebSiteManagementClient(settings))
+            using (var client = await ArmHelper.GetWebSiteManagementClient(settings))
             {
                 var s = client.WebApps.GetSiteOrSlot(settings.ResourceGroupName, settings.WebAppName, settings.SiteSlotName);
                 foreach (var hostname in settings.Hostnames)
@@ -246,8 +237,7 @@ public ActionResult AddHostname()
                     {
                         CustomHostNameDnsRecordType = CustomHostNameDnsRecordType.CName,
                         HostNameType = HostNameType.Verified,
-                        SiteName = settings.WebAppName,
-                        Location = s.Location
+                        SiteName = settings.WebAppName,                                               
                     });
                 }
             }
diff --git a/LetsEncrypt-SiteExtension/LetsEncrypt.SiteExtension.csproj b/LetsEncrypt-SiteExtension/LetsEncrypt.SiteExtension.csproj
index ad720a8..5c830c9 100644
--- a/LetsEncrypt-SiteExtension/LetsEncrypt.SiteExtension.csproj
+++ b/LetsEncrypt-SiteExtension/LetsEncrypt.SiteExtension.csproj
@@ -1,5 +1,7 @@
 <?xml version="1.0" encoding="utf-8"?>
 <Project ToolsVersion="14.0" DefaultTargets="Build" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
+  <Import Project="..\packages\Microsoft.Net.Compilers.2.10.0\build\Microsoft.Net.Compilers.props" Condition="Exists('..\packages\Microsoft.Net.Compilers.2.10.0\build\Microsoft.Net.Compilers.props')" />
+  <Import Project="..\packages\Microsoft.CodeDom.Providers.DotNetCompilerPlatform.2.0.1\build\net46\Microsoft.CodeDom.Providers.DotNetCompilerPlatform.props" Condition="Exists('..\packages\Microsoft.CodeDom.Providers.DotNetCompilerPlatform.2.0.1\build\net46\Microsoft.CodeDom.Providers.DotNetCompilerPlatform.props')" />
   <Import Project="$(MSBuildExtensionsPath)\$(MSBuildToolsVersion)\Microsoft.Common.props" Condition="Exists('$(MSBuildExtensionsPath)\$(MSBuildToolsVersion)\Microsoft.Common.props')" />
   <PropertyGroup>
     <Configuration Condition=" '$(Configuration)' == '' ">Debug</Configuration>
@@ -50,17 +52,18 @@
       <HintPath>..\packages\Microsoft.Azure.Graph.RBAC.2.2.0-preview\lib\net45\Microsoft.Azure.Graph.RBAC.dll</HintPath>
       <Private>True</Private>
     </Reference>
-    <Reference Include="Microsoft.Azure.Management.Websites, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.Azure.Management.Websites.1.6.0-preview\lib\net45\Microsoft.Azure.Management.Websites.dll</HintPath>
-      <Private>True</Private>
+    <Reference Include="Microsoft.Azure.KeyVault.Core, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.Azure.KeyVault.Core.3.0.1\lib\net452\Microsoft.Azure.KeyVault.Core.dll</HintPath>
+    </Reference>
+    <Reference Include="Microsoft.Azure.Management.Websites, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.Azure.Management.Websites.2.0.1\lib\net452\Microsoft.Azure.Management.Websites.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Azure.ResourceManager, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
       <HintPath>..\packages\Microsoft.Azure.Management.Resources.3.4.0-preview\lib\net45\Microsoft.Azure.ResourceManager.dll</HintPath>
       <Private>True</Private>
     </Reference>
-    <Reference Include="Microsoft.CodeDom.Providers.DotNetCompilerPlatform, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.CodeDom.Providers.DotNetCompilerPlatform.1.0.0\lib\net45\Microsoft.CodeDom.Providers.DotNetCompilerPlatform.dll</HintPath>
-      <Private>True</Private>
+    <Reference Include="Microsoft.CodeDom.Providers.DotNetCompilerPlatform, Version=2.0.1.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.CodeDom.Providers.DotNetCompilerPlatform.2.0.1\lib\net45\Microsoft.CodeDom.Providers.DotNetCompilerPlatform.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.CSharp" />
     <Reference Include="Microsoft.Data.Edm, Version=5.8.4.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
@@ -72,36 +75,35 @@
     <Reference Include="Microsoft.Data.Services.Client, Version=5.8.4.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
       <HintPath>..\packages\Microsoft.Data.Services.Client.5.8.4\lib\net40\Microsoft.Data.Services.Client.dll</HintPath>
     </Reference>
-    <Reference Include="Microsoft.IdentityModel.Clients.ActiveDirectory, Version=2.28.1.741, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.IdentityModel.Clients.ActiveDirectory.2.28.1\lib\net45\Microsoft.IdentityModel.Clients.ActiveDirectory.dll</HintPath>
-      <Private>True</Private>
+    <Reference Include="Microsoft.IdentityModel.Clients.ActiveDirectory, Version=3.14.0.8, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.IdentityModel.Clients.ActiveDirectory.3.14.0\lib\net45\Microsoft.IdentityModel.Clients.ActiveDirectory.dll</HintPath>
     </Reference>
-    <Reference Include="Microsoft.IdentityModel.Clients.ActiveDirectory.WindowsForms, Version=2.28.1.741, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.IdentityModel.Clients.ActiveDirectory.2.28.1\lib\net45\Microsoft.IdentityModel.Clients.ActiveDirectory.WindowsForms.dll</HintPath>
-      <Private>True</Private>
+    <Reference Include="Microsoft.IdentityModel.Clients.ActiveDirectory.Platform, Version=3.14.0.8, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.IdentityModel.Clients.ActiveDirectory.3.14.0\lib\net45\Microsoft.IdentityModel.Clients.ActiveDirectory.Platform.dll</HintPath>
+    </Reference>
+    <Reference Include="Microsoft.IdentityModel.Logging, Version=1.1.2.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.IdentityModel.Logging.1.1.2\lib\net451\Microsoft.IdentityModel.Logging.dll</HintPath>
+    </Reference>
+    <Reference Include="Microsoft.IdentityModel.Tokens, Version=5.1.2.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.IdentityModel.Tokens.5.1.2\lib\net451\Microsoft.IdentityModel.Tokens.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Rest.ClientRuntime, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.Rest.ClientRuntime.2.3.5\lib\net45\Microsoft.Rest.ClientRuntime.dll</HintPath>
-      <Private>True</Private>
+      <HintPath>..\packages\Microsoft.Rest.ClientRuntime.2.3.18\lib\net452\Microsoft.Rest.ClientRuntime.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Rest.ClientRuntime.Azure, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.Rest.ClientRuntime.Azure.3.3.5\lib\net45\Microsoft.Rest.ClientRuntime.Azure.dll</HintPath>
-      <Private>True</Private>
+      <HintPath>..\packages\Microsoft.Rest.ClientRuntime.Azure.3.3.18\lib\net452\Microsoft.Rest.ClientRuntime.Azure.dll</HintPath>
     </Reference>
-    <Reference Include="Microsoft.Rest.ClientRuntime.Azure.Authentication, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.Rest.ClientRuntime.Azure.Authentication.2.2.0-preview\lib\net45\Microsoft.Rest.ClientRuntime.Azure.Authentication.dll</HintPath>
-      <Private>True</Private>
+    <Reference Include="Microsoft.WindowsAzure.Configuration, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.WindowsAzure.ConfigurationManager.3.2.3\lib\net40\Microsoft.WindowsAzure.Configuration.dll</HintPath>
     </Reference>
-    <Reference Include="Microsoft.WindowsAzure.Configuration, Version=1.8.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.WindowsAzure.ConfigurationManager.1.8.0.0\lib\net35-full\Microsoft.WindowsAzure.Configuration.dll</HintPath>
-      <Private>True</Private>
+    <Reference Include="Microsoft.WindowsAzure.Storage, Version=9.3.2.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\WindowsAzure.Storage.9.3.3\lib\net45\Microsoft.WindowsAzure.Storage.dll</HintPath>
     </Reference>
-    <Reference Include="Microsoft.WindowsAzure.Storage, Version=4.3.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\WindowsAzure.Storage.4.3.0\lib\net40\Microsoft.WindowsAzure.Storage.dll</HintPath>
-      <Private>True</Private>
+    <Reference Include="NCrontab, Version=3.2.20120.0, Culture=neutral, processorArchitecture=MSIL">
+      <HintPath>..\packages\ncrontab.3.3.0\lib\net35\NCrontab.dll</HintPath>
     </Reference>
-    <Reference Include="Newtonsoft.Json, Version=10.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed, processorArchitecture=MSIL">
-      <HintPath>..\packages\Newtonsoft.Json.10.0.2\lib\net45\Newtonsoft.Json.dll</HintPath>
+    <Reference Include="Newtonsoft.Json, Version=12.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed, processorArchitecture=MSIL">
+      <HintPath>..\packages\Newtonsoft.Json.12.0.1\lib\net45\Newtonsoft.Json.dll</HintPath>
     </Reference>
     <Reference Include="Swashbuckle.Core, Version=1.0.0.0, Culture=neutral, PublicKeyToken=cd1bb07a5ac7c7bc, processorArchitecture=MSIL">
       <HintPath>..\packages\Swashbuckle.Core.5.6.0\lib\net40\Swashbuckle.Core.dll</HintPath>
@@ -114,9 +116,27 @@
       <HintPath>..\dlls\System.IdentityModel.Tokens.Jwt.dll</HintPath>
     </Reference>
     <Reference Include="System.Net" />
-    <Reference Include="System.Net.Http" />
+    <Reference Include="System.Net.Http, Version=4.1.1.3, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Net.Http.4.3.4\lib\net46\System.Net.Http.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Net.Http.Formatting, Version=5.2.7.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.AspNet.WebApi.Client.5.2.7\lib\net45\System.Net.Http.Formatting.dll</HintPath>
+    </Reference>
     <Reference Include="System.Net.Http.WebRequest" />
+    <Reference Include="System.Runtime" />
     <Reference Include="System.Runtime.Serialization" />
+    <Reference Include="System.Security.Cryptography.Algorithms, Version=4.1.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Security.Cryptography.Algorithms.4.3.0\lib\net461\System.Security.Cryptography.Algorithms.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Security.Cryptography.Encoding, Version=4.0.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Security.Cryptography.Encoding.4.3.0\lib\net46\System.Security.Cryptography.Encoding.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Security.Cryptography.Primitives, Version=4.0.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Security.Cryptography.Primitives.4.3.0\lib\net46\System.Security.Cryptography.Primitives.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Security.Cryptography.X509Certificates, Version=4.1.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Security.Cryptography.X509Certificates.4.3.0\lib\net461\System.Security.Cryptography.X509Certificates.dll</HintPath>
+    </Reference>
     <Reference Include="System.Spatial, Version=5.8.4.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
       <HintPath>..\packages\System.Spatial.5.8.4\lib\net40\System.Spatial.dll</HintPath>
     </Reference>
@@ -133,47 +153,43 @@
     <Reference Include="System.Web.Extensions" />
     <Reference Include="System.Drawing" />
     <Reference Include="System.Web" />
+    <Reference Include="System.Web.Helpers, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.AspNet.WebPages.3.2.7\lib\net45\System.Web.Helpers.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Web.Http, Version=5.2.7.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.AspNet.WebApi.Core.5.2.7\lib\net45\System.Web.Http.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Web.Http.WebHost, Version=5.2.7.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.AspNet.WebApi.WebHost.5.2.7\lib\net45\System.Web.Http.WebHost.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Web.Mvc, Version=5.2.7.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.AspNet.Mvc.5.2.7\lib\net45\System.Web.Mvc.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Web.Razor, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.AspNet.Razor.3.2.7\lib\net45\System.Web.Razor.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Web.WebPages, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.AspNet.WebPages.3.2.7\lib\net45\System.Web.WebPages.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Web.WebPages.Deployment, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.AspNet.WebPages.3.2.7\lib\net45\System.Web.WebPages.Deployment.dll</HintPath>
+    </Reference>
+    <Reference Include="System.Web.WebPages.Razor, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.AspNet.WebPages.3.2.7\lib\net45\System.Web.WebPages.Razor.dll</HintPath>
+    </Reference>
     <Reference Include="System.Xml" />
     <Reference Include="System.Configuration" />
     <Reference Include="System.Web.Services" />
     <Reference Include="System.EnterpriseServices" />
     <Reference Include="System.Xml.Linq" />
     <Reference Include="WebActivatorEx, Version=2.0.0.0, Culture=neutral, PublicKeyToken=7b26dc2a43f6a0d4, processorArchitecture=MSIL">
-      <HintPath>..\packages\WebActivatorEx.2.0\lib\net40\WebActivatorEx.dll</HintPath>
-      <Private>True</Private>
+      <HintPath>..\packages\WebActivatorEx.2.2.0\lib\net40\WebActivatorEx.dll</HintPath>
     </Reference>
   </ItemGroup>
   <ItemGroup>
-    <Reference Include="System.Web.Razor">
-      <HintPath>..\packages\Microsoft.AspNet.Razor.3.2.3\lib\net45\System.Web.Razor.dll</HintPath>
-    </Reference>
-    <Reference Include="System.Web.Webpages">
-      <HintPath>..\packages\Microsoft.AspNet.Webpages.3.2.3\lib\net45\System.Web.Webpages.dll</HintPath>
-    </Reference>
-    <Reference Include="System.Web.Webpages.Deployment">
-      <HintPath>..\packages\Microsoft.AspNet.Webpages.3.2.3\lib\net45\System.Web.Webpages.Deployment.dll</HintPath>
-    </Reference>
-    <Reference Include="System.Web.Webpages.Razor">
-      <HintPath>..\packages\Microsoft.AspNet.Webpages.3.2.3\lib\net45\System.Web.Webpages.Razor.dll</HintPath>
-    </Reference>
-    <Reference Include="System.Web.Helpers">
-      <HintPath>..\packages\Microsoft.AspNet.Webpages.3.2.3\lib\net45\System.Web.Helpers.dll</HintPath>
-    </Reference>
     <Reference Include="Microsoft.Web.Infrastructure">
       <HintPath>..\packages\Microsoft.Web.Infrastructure.1.0.0.0\lib\net40\Microsoft.Web.Infrastructure.dll</HintPath>
     </Reference>
-    <Reference Include="System.Web.Mvc">
-      <HintPath>..\packages\Microsoft.AspNet.Mvc.5.2.3\lib\net45\System.Web.Mvc.dll</HintPath>
-    </Reference>
-    <Reference Include="System.Net.Http.Formatting">
-      <HintPath>..\packages\Microsoft.AspNet.WebApi.Client.5.2.3\lib\net45\System.Net.Http.Formatting.dll</HintPath>
-    </Reference>
-    <Reference Include="System.Web.Http">
-      <HintPath>..\packages\Microsoft.AspNet.WebApi.Core.5.2.3\lib\net45\System.Web.Http.dll</HintPath>
-    </Reference>
-    <Reference Include="System.Web.Http.WebHost">
-      <HintPath>..\packages\Microsoft.AspNet.WebApi.WebHost.5.2.3\lib\net45\System.Web.Http.WebHost.dll</HintPath>
-    </Reference>
   </ItemGroup>
   <ItemGroup>
     <Content Include="App_Data\LetsEncrypt.Azure.Core.xml" />
@@ -320,6 +336,13 @@
     <PostBuildEvent>xcopy  "$(TargetDir)LetsEncrypt.SiteExtension.XML" "$(TargetDir)..\App_Data\*" /y
 xcopy  "$(TargetDir)LetsEncrypt.Azure.Core.xml" "$(TargetDir)..\App_Data\*" /y</PostBuildEvent>
   </PropertyGroup>
+  <Target Name="EnsureNuGetPackageBuildImports" BeforeTargets="PrepareForBuild">
+    <PropertyGroup>
+      <ErrorText>This project references NuGet package(s) that are missing on this computer. Use NuGet Package Restore to download them.  For more information, see http://go.microsoft.com/fwlink/?LinkID=322105. The missing file is {0}.</ErrorText>
+    </PropertyGroup>
+    <Error Condition="!Exists('..\packages\Microsoft.CodeDom.Providers.DotNetCompilerPlatform.2.0.1\build\net46\Microsoft.CodeDom.Providers.DotNetCompilerPlatform.props')" Text="$([System.String]::Format('$(ErrorText)', '..\packages\Microsoft.CodeDom.Providers.DotNetCompilerPlatform.2.0.1\build\net46\Microsoft.CodeDom.Providers.DotNetCompilerPlatform.props'))" />
+    <Error Condition="!Exists('..\packages\Microsoft.Net.Compilers.2.10.0\build\Microsoft.Net.Compilers.props')" Text="$([System.String]::Format('$(ErrorText)', '..\packages\Microsoft.Net.Compilers.2.10.0\build\Microsoft.Net.Compilers.props'))" />
+  </Target>
   <!-- To modify your build process, add your task inside one of the targets below and uncomment it. 
        Other similar extension points exist, see Microsoft.Common.targets.
   <Target Name="BeforeBuild">
diff --git a/LetsEncrypt-SiteExtension/Web.config b/LetsEncrypt-SiteExtension/Web.config
index d1fe74f..8b770c8 100644
--- a/LetsEncrypt-SiteExtension/Web.config
+++ b/LetsEncrypt-SiteExtension/Web.config
@@ -14,7 +14,14 @@
     <add key="PreserveLoginUrl" value="true" />
     <add key="ClientValidationEnabled" value="true" />
     <add key="UnobtrusiveJavaScriptEnabled" value="true" />
-
+    <add key="WEBSITE_OWNER_NAME" value="688bf064-900b-4e8f-9598-2d9be0718133+Tiimo+.Web-.Dev1-WestEuropewebspace" />
+    <add key="letsencrypt:ServicePlanResourceGroupName" value="letsencrypt-siteextension" />
+    <add key="letsencrypt:ResourceGroupName" value="letsencrypt-siteextension" />
+    <add key="letsencrypt:Tenant" value="f386b536-faf3-4000-adec-1f6d78dbf0bf" />
+    <add key="letsencrypt:SubscriptionId" value="3f09c367-93e0-4b61-bbe5-dcb5c686bf8a" />
+    <add key="letsencrypt:ClientSecret" value="" />
+    <add key="letsencrypt:ClientId" value="7f257375-267c-4431-afe0-12e4bcf4ab17" />
+    <add key="WEBSITE_SITE_NAME" value="webAppcfmv5fy7lcq7o" />
   </appSettings>
   <!--
     For a description of web.config changes see http://go.microsoft.com/fwlink/?LinkId=235367.
@@ -40,46 +47,34 @@
   </system.web>
   <system.webServer>
     <validation validateIntegratedModeConfiguration="false" />
-    <handlers>
-      <remove name="ExtensionlessUrlHandler-Integrated-4.0" />
-      <remove name="OPTIONSVerbHandler" />
-      <remove name="TRACEVerbHandler" />
-      <add name="ExtensionlessUrlHandler-Integrated-4.0" path="*." verb="*" type="System.Web.Handlers.TransferRequestHandler" preCondition="integratedMode,runtimeVersionv4.0" />
-    </handlers>
+    
     <modules runAllManagedModulesForAllRequests="true">
       <remove name="FormsAuthentication" />
       <!--<add name="ARMOAuthModule" type="ARMExplorer.Modules.ARMOAuthModule, LetsEncrypt.SiteExtension" preCondition="managedHandler" />-->
     </modules>
-  </system.webServer>
+  <handlers>
+      <remove name="ExtensionlessUrlHandler-Integrated-4.0" />
+      <remove name="OPTIONSVerbHandler" />
+      <remove name="TRACEVerbHandler" />
+      <add name="ExtensionlessUrlHandler-Integrated-4.0" path="*." verb="*" type="System.Web.Handlers.TransferRequestHandler" preCondition="integratedMode,runtimeVersionv4.0" />
+    </handlers></system.webServer>
   <runtime>
     <assemblyBinding xmlns="urn:schemas-microsoft-com:asm.v1">
       <dependentAssembly>
         <assemblyIdentity name="Newtonsoft.Json" culture="neutral" publicKeyToken="30ad4fe6b2a6aeed" />
-        <bindingRedirect oldVersion="0.0.0.0-10.0.0.0" newVersion="10.0.0.0" />
-      </dependentAssembly>
-      <dependentAssembly>
-        <assemblyIdentity name="System.Web.Helpers" publicKeyToken="31bf3856ad364e35" />
-        <bindingRedirect oldVersion="1.0.0.0-3.0.0.0" newVersion="3.0.0.0" />
-      </dependentAssembly>
-      <dependentAssembly>
-        <assemblyIdentity name="System.Web.Mvc" publicKeyToken="31bf3856ad364e35" />
-        <bindingRedirect oldVersion="1.0.0.0-5.2.0.0" newVersion="5.2.0.0" />
+        <bindingRedirect oldVersion="0.0.0.0-12.0.0.0" newVersion="12.0.0.0" />
       </dependentAssembly>
       <dependentAssembly>
         <assemblyIdentity name="System.Web.Optimization" publicKeyToken="31bf3856ad364e35" />
         <bindingRedirect oldVersion="1.0.0.0-1.1.0.0" newVersion="1.1.0.0" />
       </dependentAssembly>
-      <dependentAssembly>
-        <assemblyIdentity name="System.Web.WebPages" publicKeyToken="31bf3856ad364e35" />
-        <bindingRedirect oldVersion="1.0.0.0-3.0.0.0" newVersion="3.0.0.0" />
-      </dependentAssembly>
       <dependentAssembly>
         <assemblyIdentity name="WebGrease" publicKeyToken="31bf3856ad364e35" />
         <bindingRedirect oldVersion="0.0.0.0-1.5.2.14234" newVersion="1.5.2.14234" />
       </dependentAssembly>
       <dependentAssembly>
         <assemblyIdentity name="Microsoft.IdentityModel.Clients.ActiveDirectory" publicKeyToken="31bf3856ad364e35" culture="neutral" />
-        <bindingRedirect oldVersion="0.0.0.0-2.28.1.741" newVersion="2.28.1.741" />
+        <bindingRedirect oldVersion="0.0.0.0-3.14.0.8" newVersion="3.14.0.8" />
       </dependentAssembly>
       <dependentAssembly>
         <assemblyIdentity name="Microsoft.Rest.ClientRuntime" publicKeyToken="31bf3856ad364e35" culture="neutral" />
@@ -91,11 +86,11 @@
       </dependentAssembly>
       <dependentAssembly>
         <assemblyIdentity name="System.Web.Http" publicKeyToken="31bf3856ad364e35" culture="neutral" />
-        <bindingRedirect oldVersion="0.0.0.0-5.2.3.0" newVersion="5.2.3.0" />
+        <bindingRedirect oldVersion="0.0.0.0-5.2.7.0" newVersion="5.2.7.0" />
       </dependentAssembly>
       <dependentAssembly>
         <assemblyIdentity name="System.Net.Http.Formatting" publicKeyToken="31bf3856ad364e35" culture="neutral" />
-        <bindingRedirect oldVersion="0.0.0.0-5.2.3.0" newVersion="5.2.3.0" />
+        <bindingRedirect oldVersion="0.0.0.0-5.2.7.0" newVersion="5.2.7.0" />
       </dependentAssembly>
       <dependentAssembly>
         <assemblyIdentity name="Microsoft.Data.Edm" publicKeyToken="31bf3856ad364e35" culture="neutral" />
@@ -109,6 +104,40 @@
         <assemblyIdentity name="Microsoft.Data.OData" publicKeyToken="31bf3856ad364e35" culture="neutral" />
         <bindingRedirect oldVersion="0.0.0.0-5.8.4.0" newVersion="5.8.4.0" />
       </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="System.Net.Http" publicKeyToken="b03f5f7f11d50a3a" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-4.1.1.3" newVersion="4.1.1.3" />
+      </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="System.Diagnostics.DiagnosticSource" publicKeyToken="cc7b13ffcd2ddd51" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-4.0.1.0" newVersion="4.0.1.0" />
+      </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="Microsoft.Azure.KeyVault.Core" publicKeyToken="31bf3856ad364e35" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-3.0.0.0" newVersion="3.0.0.0" />
+      </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="System.Web.Helpers" publicKeyToken="31bf3856ad364e35" />
+        <bindingRedirect oldVersion="1.0.0.0-3.0.0.0" newVersion="3.0.0.0" />
+      </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="System.Web.WebPages" publicKeyToken="31bf3856ad364e35" />
+        <bindingRedirect oldVersion="1.0.0.0-3.0.0.0" newVersion="3.0.0.0" />
+      </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="System.Web.Mvc" publicKeyToken="31bf3856ad364e35" />
+        <bindingRedirect oldVersion="1.0.0.0-5.2.7.0" newVersion="5.2.7.0" />
+      </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="System.Xml.ReaderWriter" publicKeyToken="b03f5f7f11d50a3a" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-4.1.0.0" newVersion="4.1.0.0" />
+      </dependentAssembly>
     </assemblyBinding>
   </runtime>
+  <system.codedom>
+    <compilers>
+      <compiler language="c#;cs;csharp" extension=".cs" type="Microsoft.CodeDom.Providers.DotNetCompilerPlatform.CSharpCodeProvider, Microsoft.CodeDom.Providers.DotNetCompilerPlatform, Version=2.0.1.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" warningLevel="4" compilerOptions="/langversion:default /nowarn:1659;1699;1701" />
+      <compiler language="vb;vbs;visualbasic;vbscript" extension=".vb" type="Microsoft.CodeDom.Providers.DotNetCompilerPlatform.VBCodeProvider, Microsoft.CodeDom.Providers.DotNetCompilerPlatform, Version=2.0.1.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" warningLevel="4" compilerOptions="/langversion:default /nowarn:41008 /define:_MYTYPE=\&quot;Web\&quot; /optionInfer+" />
+    </compilers>
+  </system.codedom>
 </configuration>
\ No newline at end of file
diff --git a/LetsEncrypt-SiteExtension/packages.config b/LetsEncrypt-SiteExtension/packages.config
index 7e7fac4..7334f7d 100644
--- a/LetsEncrypt-SiteExtension/packages.config
+++ b/LetsEncrypt-SiteExtension/packages.config
@@ -2,35 +2,41 @@
 <packages>
   <package id="bootstrap" version="3.0.0" targetFramework="net45" />
   <package id="jQuery" version="1.10.2" targetFramework="net45" />
-  <package id="log4net" version="2.0.3" targetFramework="net45" />
-  <package id="Microsoft.AspNet.Mvc" version="5.2.3" targetFramework="net45" />
-  <package id="Microsoft.AspNet.Razor" version="3.2.3" targetFramework="net45" />
-  <package id="Microsoft.AspNet.WebApi" version="5.2.3" targetFramework="net45" />
-  <package id="Microsoft.AspNet.WebApi.Client" version="5.2.3" targetFramework="net45" />
-  <package id="Microsoft.AspNet.WebApi.Core" version="5.2.3" targetFramework="net45" />
-  <package id="Microsoft.AspNet.WebApi.WebHost" version="5.2.3" targetFramework="net45" />
-  <package id="Microsoft.AspNet.WebPages" version="3.2.3" targetFramework="net45" />
+  <package id="Microsoft.AspNet.Mvc" version="5.2.7" targetFramework="net461" />
+  <package id="Microsoft.AspNet.Razor" version="3.2.7" targetFramework="net461" />
+  <package id="Microsoft.AspNet.WebApi" version="5.2.7" targetFramework="net461" />
+  <package id="Microsoft.AspNet.WebApi.Client" version="5.2.7" targetFramework="net461" />
+  <package id="Microsoft.AspNet.WebApi.Core" version="5.2.7" targetFramework="net461" />
+  <package id="Microsoft.AspNet.WebApi.WebHost" version="5.2.7" targetFramework="net461" />
+  <package id="Microsoft.AspNet.WebPages" version="3.2.7" targetFramework="net461" />
   <package id="Microsoft.Azure.Graph.RBAC" version="2.2.0-preview" targetFramework="net461" />
+  <package id="Microsoft.Azure.KeyVault.Core" version="3.0.1" targetFramework="net461" />
   <package id="Microsoft.Azure.Management.Resources" version="3.4.0-preview" targetFramework="net461" />
-  <package id="Microsoft.Azure.Management.Websites" version="1.6.0-preview" targetFramework="net461" />
-  <package id="Microsoft.CodeDom.Providers.DotNetCompilerPlatform" version="1.0.0" targetFramework="net45" />
+  <package id="Microsoft.Azure.Management.Websites" version="2.0.1" targetFramework="net461" />
+  <package id="Microsoft.CodeDom.Providers.DotNetCompilerPlatform" version="2.0.1" targetFramework="net461" />
   <package id="Microsoft.Data.Edm" version="5.8.4" targetFramework="net461" />
   <package id="Microsoft.Data.OData" version="5.8.4" targetFramework="net461" />
   <package id="Microsoft.Data.Services.Client" version="5.8.4" targetFramework="net461" />
-  <package id="Microsoft.IdentityModel.Clients.ActiveDirectory" version="2.28.1" targetFramework="net461" />
-  <package id="Microsoft.Net.Compilers" version="1.0.0" targetFramework="net45" developmentDependency="true" />
-  <package id="Microsoft.Rest.ClientRuntime" version="2.3.5" targetFramework="net461" />
-  <package id="Microsoft.Rest.ClientRuntime.Azure" version="3.3.5" targetFramework="net461" />
-  <package id="Microsoft.Rest.ClientRuntime.Azure.Authentication" version="2.2.0-preview" targetFramework="net461" />
+  <package id="Microsoft.IdentityModel.Clients.ActiveDirectory" version="3.14.0" targetFramework="net461" />
+  <package id="Microsoft.IdentityModel.Logging" version="1.1.2" targetFramework="net461" />
+  <package id="Microsoft.IdentityModel.Tokens" version="5.1.2" targetFramework="net461" />
+  <package id="Microsoft.Net.Compilers" version="2.10.0" targetFramework="net461" developmentDependency="true" />
+  <package id="Microsoft.Rest.ClientRuntime" version="2.3.18" targetFramework="net461" />
+  <package id="Microsoft.Rest.ClientRuntime.Azure" version="3.3.18" targetFramework="net461" />
   <package id="Microsoft.Tpl.Dataflow" version="4.5.24" targetFramework="net45" />
   <package id="Microsoft.Web.Infrastructure" version="1.0.0.0" targetFramework="net45" />
-  <package id="Microsoft.WindowsAzure.ConfigurationManager" version="1.8.0.0" targetFramework="net45" />
+  <package id="Microsoft.WindowsAzure.ConfigurationManager" version="3.2.3" targetFramework="net461" />
   <package id="Modernizr" version="2.6.2" targetFramework="net45" />
-  <package id="ncrontab" version="2.0.0" targetFramework="net45" />
-  <package id="Newtonsoft.Json" version="10.0.2" targetFramework="net461" />
+  <package id="ncrontab" version="3.3.0" targetFramework="net461" />
+  <package id="Newtonsoft.Json" version="12.0.1" targetFramework="net461" />
   <package id="Swashbuckle" version="5.6.0" targetFramework="net461" />
   <package id="Swashbuckle.Core" version="5.6.0" targetFramework="net461" />
+  <package id="System.Net.Http" version="4.3.4" targetFramework="net461" />
+  <package id="System.Security.Cryptography.Algorithms" version="4.3.0" targetFramework="net461" />
+  <package id="System.Security.Cryptography.Encoding" version="4.3.0" targetFramework="net461" />
+  <package id="System.Security.Cryptography.Primitives" version="4.3.0" targetFramework="net461" />
+  <package id="System.Security.Cryptography.X509Certificates" version="4.3.0" targetFramework="net461" />
   <package id="System.Spatial" version="5.8.4" targetFramework="net461" />
-  <package id="WebActivatorEx" version="2.0" targetFramework="net461" />
-  <package id="WindowsAzure.Storage" version="4.3.0" targetFramework="net45" />
+  <package id="WebActivatorEx" version="2.2.0" targetFramework="net461" />
+  <package id="WindowsAzure.Storage" version="9.3.3" targetFramework="net461" />
 </packages>
\ No newline at end of file
diff --git a/LetsEncrypt.SiteExtension.Core/ArmHelper.cs b/LetsEncrypt.SiteExtension.Core/ArmHelper.cs
index f92cf44..399e2c1 100644
--- a/LetsEncrypt.SiteExtension.Core/ArmHelper.cs
+++ b/LetsEncrypt.SiteExtension.Core/ArmHelper.cs
@@ -3,23 +3,21 @@
 using Microsoft.Azure.Management.WebSites;
 using Microsoft.IdentityModel.Clients.ActiveDirectory;
 using Microsoft.Rest;
-using Microsoft.Rest.Azure.Authentication;
 using Polly;
 using System;
-using System.Collections.Generic;
 using System.Linq;
+using System.Net;
 using System.Net.Http;
 using System.Threading;
 using System.Threading.Tasks;
-using System.Web;
 
 namespace LetsEncrypt.Azure.Core
 {
     public static class ArmHelper
     {
-        public static WebSiteManagementClient GetWebSiteManagementClient(IAzureWebAppEnvironment model)
+        public static async Task<WebSiteManagementClient> GetWebSiteManagementClient(IAzureWebAppEnvironment model)
         {            
-            AuthenticationResult token = GetToken(model);
+            AuthenticationResult token = await GetToken(model);
             var creds = new TokenCredentials(token.AccessToken);
 
             var websiteClient = new WebSiteManagementClient(model.ManagementEndpoint, creds);
@@ -27,9 +25,9 @@ public static WebSiteManagementClient GetWebSiteManagementClient(IAzureWebAppEnv
             return websiteClient;
         }
 
-        public static DnsManagementClient GetDnsManagementClient(IAzureDnsEnvironment model)
+        public static async Task<DnsManagementClient> GetDnsManagementClient(IAzureDnsEnvironment model)
         {
-            AuthenticationResult token = GetToken(model);
+            AuthenticationResult token = await GetToken(model);
             var creds = new TokenCredentials(token.AccessToken);
 
             var dnsClient = new DnsManagementClient(model.ManagementEndpoint, creds);
@@ -37,17 +35,17 @@ public static DnsManagementClient GetDnsManagementClient(IAzureDnsEnvironment mo
             return dnsClient;
         }
 
-        private static AuthenticationResult GetToken(IAzureEnvironment model)
+        private static async Task<AuthenticationResult> GetToken(IAzureEnvironment model)
         {
             var authContext = new AuthenticationContext(model.AuthenticationEndpoint + model.Tenant);
 
-            var token = authContext.AcquireToken(model.TokenAudience.ToString(), new ClientCredential(model.ClientId.ToString(), model.ClientSecret));
+            var token = await authContext.AcquireTokenAsync(model.TokenAudience.ToString(), new ClientCredential(model.ClientId.ToString(), model.ClientSecret));
             return token;
         }
 
-        public static HttpClient GetHttpClient(IAzureWebAppEnvironment model)
+        public static async Task<HttpClient> GetHttpClient(IAzureWebAppEnvironment model)
         {        
-            AuthenticationResult token = GetToken(model);
+            AuthenticationResult token = await GetToken(model);
 
             var client = HttpClientFactory.Create(new HttpClientHandler(), new TimeoutHandler());
             client.DefaultRequestHeaders.Add("Authorization", "Bearer " + token.AccessToken);
@@ -56,15 +54,31 @@ public static HttpClient GetHttpClient(IAzureWebAppEnvironment model)
             return client;
         }
 
-        public static Polly.Retry.RetryPolicy ExponentialBackoff(int retryCount = 3, int firstBackOffDelay = 2)
+        public static Polly.Retry.RetryPolicy<HttpResponseMessage> ExponentialBackoff(int retryCount = 3, int firstBackOffDelay = 2)
         {
             return Policy
-          .Handle<HttpRequestException>()
+          .HandleResult<HttpResponseMessage>((resp) =>
+          {
+              return IsTransient(resp.StatusCode);
+              
+          })
           .WaitAndRetryAsync(retryCount, retryAttempt =>
             TimeSpan.FromSeconds(Math.Pow(firstBackOffDelay, retryAttempt))
           );
         }
 
+        private static bool IsTransient(HttpStatusCode statusCode)
+        {
+            return new HttpStatusCode[]
+    {
+            HttpStatusCode.BadGateway,
+            HttpStatusCode.GatewayTimeout,
+            HttpStatusCode.ServiceUnavailable,
+            HttpStatusCode.RequestTimeout,
+            HttpStatusCode.Unauthorized
+    }.Contains(statusCode);
+        }
+
         public class TimeoutHandler : DelegatingHandler
         {
             private static TimeSpan Timeout = TimeSpan.FromSeconds(120);
diff --git a/LetsEncrypt.SiteExtension.Core/CertificateManager.cs b/LetsEncrypt.SiteExtension.Core/CertificateManager.cs
index cda8c34..cee4c53 100644
--- a/LetsEncrypt.SiteExtension.Core/CertificateManager.cs
+++ b/LetsEncrypt.SiteExtension.Core/CertificateManager.cs
@@ -147,20 +147,21 @@ public async Task<List<CertificateInstallModel>> RenewCertificate(bool skipInsta
         {
             Trace.TraceInformation("Checking certificate");
             var ss = SettingsStore.Instance.Load();
-            using (var client = ArmHelper.GetWebSiteManagementClient(settings))
-            using (var httpClient = ArmHelper.GetHttpClient(settings))
+            using (var client = await ArmHelper.GetWebSiteManagementClient(settings))
+            using (var httpClient = await ArmHelper.GetHttpClient(settings))
             {
                 var retryPolicy = ArmHelper.ExponentialBackoff();
                 var body = string.Empty;
                 //Cant just get certificates by resource group, because sites that have been moved, have their certs sitting in the old RG.
                 //Also cant use client.Certificates.List() due to bug in the nuget
-                await retryPolicy.ExecuteAsync(async () =>
+                var response = await retryPolicy.ExecuteAsync(async () =>
                 {
-                    var response = await httpClient.GetAsync($"/subscriptions/{settings.SubscriptionId}/providers/Microsoft.Web/certificates?api-version=2016-03-01");
-                    response.EnsureSuccessStatusCode();
-                    body = await response.Content.ReadAsStringAsync();
+                    return await httpClient.GetAsync($"/subscriptions/{settings.SubscriptionId}/providers/Microsoft.Web/certificates?api-version=2016-03-01");
+                    
 
                 });
+                response.EnsureSuccessStatusCode();
+                body = await response.Content.ReadAsStringAsync();
                 IEnumerable<Certificate> certs = ExtractCertificates(body);
 
                 var expiringCerts = certs.Where(s => s.ExpirationDate < DateTime.UtcNow.AddDays(renewXNumberOfDaysBeforeExpiration) && (s.Issuer.Contains("Let's Encrypt") || s.Issuer.Contains("Fake LE")));
@@ -241,13 +242,13 @@ internal async Task<CertificateInstallModel> RequestAndInstallInternalAsync(IAcm
         {
             Trace.TraceInformation("RequestAndInstallInternal");
             var model = await RequestInternalAsync(config);
-            this.certificateService.Install(model);
+            await this.certificateService.Install(model);
             return model;
         }
 
-        public List<string> Cleanup()
+        public async Task<List<string>> Cleanup()
         {
-            return this.certificateService.RemoveExpired();
+            return await this.certificateService.RemoveExpired();
         }
     }
 }
diff --git a/LetsEncrypt.SiteExtension.Core/LetsEncrypt.Azure.Core.csproj b/LetsEncrypt.SiteExtension.Core/LetsEncrypt.Azure.Core.csproj
index cd6abb0..9c020b1 100644
--- a/LetsEncrypt.SiteExtension.Core/LetsEncrypt.Azure.Core.csproj
+++ b/LetsEncrypt.SiteExtension.Core/LetsEncrypt.Azure.Core.csproj
@@ -69,16 +69,14 @@
     <CodeAnalysisRuleSet>MinimumRecommendedRules.ruleset</CodeAnalysisRuleSet>
   </PropertyGroup>
   <ItemGroup>
-    <Reference Include="Microsoft.Azure.KeyVault.Core, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.Azure.KeyVault.Core.1.0.0\lib\net40\Microsoft.Azure.KeyVault.Core.dll</HintPath>
+    <Reference Include="Microsoft.Azure.KeyVault.Core, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.Azure.KeyVault.Core.3.0.1\lib\net452\Microsoft.Azure.KeyVault.Core.dll</HintPath>
     </Reference>
-    <Reference Include="Microsoft.Azure.Management.Dns, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.Azure.Management.Dns.1.9.0-preview\lib\net452\Microsoft.Azure.Management.Dns.dll</HintPath>
-      <Private>True</Private>
+    <Reference Include="Microsoft.Azure.Management.Dns, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.Azure.Management.Dns.3.0.1\lib\net452\Microsoft.Azure.Management.Dns.dll</HintPath>
     </Reference>
-    <Reference Include="Microsoft.Azure.Management.Websites, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.Azure.Management.Websites.1.6.0-preview\lib\net45\Microsoft.Azure.Management.Websites.dll</HintPath>
-      <Private>True</Private>
+    <Reference Include="Microsoft.Azure.Management.Websites, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.Azure.Management.Websites.2.0.1\lib\net452\Microsoft.Azure.Management.Websites.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Azure.Storage.Blob, Version=9.4.2.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
       <HintPath>..\packages\Microsoft.Azure.Storage.Blob.9.4.2\lib\net452\Microsoft.Azure.Storage.Blob.dll</HintPath>
@@ -86,31 +84,23 @@
     <Reference Include="Microsoft.Azure.Storage.Common, Version=9.4.2.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
       <HintPath>..\packages\Microsoft.Azure.Storage.Common.9.4.2\lib\net452\Microsoft.Azure.Storage.Common.dll</HintPath>
     </Reference>
-    <Reference Include="Microsoft.IdentityModel.Clients.ActiveDirectory, Version=2.28.1.741, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.IdentityModel.Clients.ActiveDirectory.2.28.1\lib\net45\Microsoft.IdentityModel.Clients.ActiveDirectory.dll</HintPath>
-      <Private>True</Private>
+    <Reference Include="Microsoft.IdentityModel.Clients.ActiveDirectory, Version=3.14.0.8, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.IdentityModel.Clients.ActiveDirectory.3.14.0\lib\net45\Microsoft.IdentityModel.Clients.ActiveDirectory.dll</HintPath>
     </Reference>
-    <Reference Include="Microsoft.IdentityModel.Clients.ActiveDirectory.WindowsForms, Version=2.28.1.741, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.IdentityModel.Clients.ActiveDirectory.2.28.1\lib\net45\Microsoft.IdentityModel.Clients.ActiveDirectory.WindowsForms.dll</HintPath>
-      <Private>True</Private>
+    <Reference Include="Microsoft.IdentityModel.Clients.ActiveDirectory.Platform, Version=3.14.0.8, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.IdentityModel.Clients.ActiveDirectory.3.14.0\lib\net45\Microsoft.IdentityModel.Clients.ActiveDirectory.Platform.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Rest.ClientRuntime, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.Rest.ClientRuntime.2.3.8\lib\net452\Microsoft.Rest.ClientRuntime.dll</HintPath>
-      <Private>True</Private>
+      <HintPath>..\packages\Microsoft.Rest.ClientRuntime.2.3.18\lib\net452\Microsoft.Rest.ClientRuntime.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Rest.ClientRuntime.Azure, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.Rest.ClientRuntime.Azure.3.3.7\lib\net452\Microsoft.Rest.ClientRuntime.Azure.dll</HintPath>
-      <Private>True</Private>
-    </Reference>
-    <Reference Include="Microsoft.Rest.ClientRuntime.Azure.Authentication, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.Rest.ClientRuntime.Azure.Authentication.2.2.0-preview\lib\net45\Microsoft.Rest.ClientRuntime.Azure.Authentication.dll</HintPath>
-      <Private>True</Private>
+      <HintPath>..\packages\Microsoft.Rest.ClientRuntime.Azure.3.3.18\lib\net452\Microsoft.Rest.ClientRuntime.Azure.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Win32.Primitives, Version=4.0.2.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
       <HintPath>..\packages\Microsoft.Win32.Primitives.4.3.0\lib\net46\Microsoft.Win32.Primitives.dll</HintPath>
     </Reference>
-    <Reference Include="Newtonsoft.Json, Version=10.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed, processorArchitecture=MSIL">
-      <HintPath>..\packages\Newtonsoft.Json.10.0.2\lib\net45\Newtonsoft.Json.dll</HintPath>
+    <Reference Include="Newtonsoft.Json, Version=12.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed, processorArchitecture=MSIL">
+      <HintPath>..\packages\Newtonsoft.Json.12.0.1\lib\net45\Newtonsoft.Json.dll</HintPath>
     </Reference>
     <Reference Include="Polly, Version=6.0.0.0, Culture=neutral, PublicKeyToken=c8a3ffc3f8f825cc, processorArchitecture=MSIL">
       <HintPath>..\packages\Polly.6.1.2\lib\netstandard1.1\Polly.dll</HintPath>
@@ -122,12 +112,12 @@
     <Reference Include="System.ComponentModel.Composition" />
     <Reference Include="System.ComponentModel.DataAnnotations" />
     <Reference Include="System.Configuration" />
-    <Reference Include="System.Console, Version=4.0.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
-      <HintPath>..\packages\System.Console.4.3.0\lib\net46\System.Console.dll</HintPath>
+    <Reference Include="System.Console, Version=4.0.1.1, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Console.4.3.1\lib\net46\System.Console.dll</HintPath>
     </Reference>
     <Reference Include="System.Core" />
-    <Reference Include="System.Diagnostics.DiagnosticSource, Version=4.0.1.0, Culture=neutral, PublicKeyToken=cc7b13ffcd2ddd51, processorArchitecture=MSIL">
-      <HintPath>..\packages\System.Diagnostics.DiagnosticSource.4.3.0\lib\net46\System.Diagnostics.DiagnosticSource.dll</HintPath>
+    <Reference Include="System.Diagnostics.DiagnosticSource, Version=4.0.3.1, Culture=neutral, PublicKeyToken=cc7b13ffcd2ddd51, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Diagnostics.DiagnosticSource.4.5.1\lib\net46\System.Diagnostics.DiagnosticSource.dll</HintPath>
     </Reference>
     <Reference Include="System.Globalization.Calendars, Version=4.0.2.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
       <HintPath>..\packages\System.Globalization.Calendars.4.3.0\lib\net46\System.Globalization.Calendars.dll</HintPath>
@@ -146,23 +136,24 @@
       <HintPath>..\packages\System.IO.FileSystem.Primitives.4.3.0\lib\net46\System.IO.FileSystem.Primitives.dll</HintPath>
     </Reference>
     <Reference Include="System.Net" />
-    <Reference Include="System.Net.Http, Version=4.1.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
-      <HintPath>..\packages\System.Net.Http.4.3.0\lib\net46\System.Net.Http.dll</HintPath>
+    <Reference Include="System.Net.Http, Version=4.1.1.3, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Net.Http.4.3.4\lib\net46\System.Net.Http.dll</HintPath>
     </Reference>
-    <Reference Include="System.Net.Http.Formatting, Version=5.2.3.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.AspNet.WebApi.Client.5.2.3\lib\net45\System.Net.Http.Formatting.dll</HintPath>
+    <Reference Include="System.Net.Http.Formatting, Version=5.2.7.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.AspNet.WebApi.Client.5.2.7\lib\net45\System.Net.Http.Formatting.dll</HintPath>
     </Reference>
     <Reference Include="System.Net.Http.WebRequest" />
     <Reference Include="System.Net.Sockets, Version=4.1.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
       <HintPath>..\packages\System.Net.Sockets.4.3.0\lib\net46\System.Net.Sockets.dll</HintPath>
     </Reference>
     <Reference Include="System.Numerics" />
+    <Reference Include="System.Runtime" />
     <Reference Include="System.Runtime.InteropServices.RuntimeInformation, Version=4.0.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
       <HintPath>..\packages\System.Runtime.InteropServices.RuntimeInformation.4.3.0\lib\net45\System.Runtime.InteropServices.RuntimeInformation.dll</HintPath>
     </Reference>
     <Reference Include="System.Runtime.Serialization" />
     <Reference Include="System.Security.Cryptography.Algorithms, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
-      <HintPath>..\packages\System.Security.Cryptography.Algorithms.4.3.0\lib\net46\System.Security.Cryptography.Algorithms.dll</HintPath>
+      <HintPath>..\packages\System.Security.Cryptography.Algorithms.4.3.1\lib\net46\System.Security.Cryptography.Algorithms.dll</HintPath>
     </Reference>
     <Reference Include="System.Security.Cryptography.Encoding, Version=4.0.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
       <HintPath>..\packages\System.Security.Cryptography.Encoding.4.3.0\lib\net46\System.Security.Cryptography.Encoding.dll</HintPath>
@@ -171,7 +162,7 @@
       <HintPath>..\packages\System.Security.Cryptography.Primitives.4.3.0\lib\net46\System.Security.Cryptography.Primitives.dll</HintPath>
     </Reference>
     <Reference Include="System.Security.Cryptography.X509Certificates, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
-      <HintPath>..\packages\System.Security.Cryptography.X509Certificates.4.3.0\lib\net46\System.Security.Cryptography.X509Certificates.dll</HintPath>
+      <HintPath>..\packages\System.Security.Cryptography.X509Certificates.4.3.2\lib\net46\System.Security.Cryptography.X509Certificates.dll</HintPath>
     </Reference>
     <Reference Include="System.Web" />
     <Reference Include="System.Xml.Linq" />
@@ -180,7 +171,7 @@
     <Reference Include="System.Data" />
     <Reference Include="System.Xml" />
     <Reference Include="System.Xml.ReaderWriter, Version=4.1.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
-      <HintPath>..\packages\System.Xml.ReaderWriter.4.3.0\lib\net46\System.Xml.ReaderWriter.dll</HintPath>
+      <HintPath>..\packages\System.Xml.ReaderWriter.4.3.1\lib\net46\System.Xml.ReaderWriter.dll</HintPath>
     </Reference>
   </ItemGroup>
   <ItemGroup>
diff --git a/LetsEncrypt.SiteExtension.Core/LetsEncrypt.SiteExtension.Core.nuspec b/LetsEncrypt.SiteExtension.Core/LetsEncrypt.SiteExtension.Core.nuspec
index b15caeb..48db96c 100644
--- a/LetsEncrypt.SiteExtension.Core/LetsEncrypt.SiteExtension.Core.nuspec
+++ b/LetsEncrypt.SiteExtension.Core/LetsEncrypt.SiteExtension.Core.nuspec
@@ -3,7 +3,7 @@
   <metadata>
     <id>letsencrypt.azure.core</id>
     <title>Azure Let's Encrypt</title>
-    <version>0.8.5-prerelease</version>
+    <version>0.9.0</version>
     <authors>SJKP</authors>
     <licenseUrl>http://opensource.org/licenses/Apache-2.0</licenseUrl>
     <projectUrl>https://github.com/sjkp/letsencrypt-siteextension</projectUrl>
@@ -13,9 +13,9 @@
     <tags>letsencrypt ssl https</tags>
     <!-- Dependencies are automatically installed when the package is installed -->
     <dependencies>
-      <dependency id="Microsoft.Azure.Management.Websites" version="1.6.0-preview" />
-      <dependency id="Microsoft.IdentityModel.Clients.ActiveDirectory" version="2.28.1"></dependency>
-      <dependency id="Newtonsoft.Json" version="9.0.1" />
+      <dependency id="Microsoft.Azure.Management.Websites" version="2.0.1" />
+      <dependency id="Microsoft.IdentityModel.Clients.ActiveDirectory" version="3.14.0"></dependency>
+      <dependency id="Newtonsoft.Json" version="12.0.1" />
       <dependency id="BouncyCastle" version="1.8.1" />
     </dependencies>
   </metadata>
diff --git a/LetsEncrypt.SiteExtension.Core/Services/AppServiceCerticiateCertificateService.cs b/LetsEncrypt.SiteExtension.Core/Services/AppServiceCerticiateCertificateService.cs
index 5dc8f9b..0c848f9 100644
--- a/LetsEncrypt.SiteExtension.Core/Services/AppServiceCerticiateCertificateService.cs
+++ b/LetsEncrypt.SiteExtension.Core/Services/AppServiceCerticiateCertificateService.cs
@@ -14,7 +14,7 @@ public async Task Install(ICertificateInstallModel model)
             throw new NotImplementedException();
         }
 
-        public List<string> RemoveExpired(int removeXNumberOfDaysBeforeExpiration = 0)
+        public async Task<List<string>> RemoveExpired(int removeXNumberOfDaysBeforeExpiration = 0)
         {
             throw new NotImplementedException();
         }
diff --git a/LetsEncrypt.SiteExtension.Core/Services/AzureDnsAuthorizationChallengeProvider.cs b/LetsEncrypt.SiteExtension.Core/Services/AzureDnsAuthorizationChallengeProvider.cs
index 406cfe1..139a7d2 100644
--- a/LetsEncrypt.SiteExtension.Core/Services/AzureDnsAuthorizationChallengeProvider.cs
+++ b/LetsEncrypt.SiteExtension.Core/Services/AzureDnsAuthorizationChallengeProvider.cs
@@ -13,20 +13,18 @@ namespace LetsEncrypt.Azure.Core.Services
 {
     public class AzureDnsAuthorizationChallengeProvider : BaseDnsAuthorizationChallengeProvider
     {
-        private readonly DnsManagementClient dnsClient;
         private IAzureDnsEnvironment environment;
 
         public AzureDnsAuthorizationChallengeProvider(IAzureDnsEnvironment azureDnsSettings) 
-        {
-            this.dnsClient = ArmHelper.GetDnsManagementClient(azureDnsSettings);
+        {            
             this.environment = azureDnsSettings;
         }
 
         public override async Task CleanupChallenge(DnsChallenge dnsChallenge)
         {
             var existingRecords = await SafeGetExistingRecords(dnsChallenge);
-            
-            await this.dnsClient.RecordSets.DeleteAsync(this.environment.ResourceGroupName, this.environment.ZoneName, GetRelativeRecordSetName(dnsChallenge), RecordType.TXT);
+            var dnsClient = await ArmHelper.GetDnsManagementClient(this.environment);
+            await dnsClient.RecordSets.DeleteAsync(this.environment.ResourceGroupName, this.environment.ZoneName, GetRelativeRecordSetName(dnsChallenge), RecordType.TXT);
         }
 
         public override async Task PersistsChallenge(DnsChallenge dnsChallenge)
@@ -35,6 +33,7 @@ public override async Task PersistsChallenge(DnsChallenge dnsChallenge)
             {
                 new TxtRecord() { Value = new[] { dnsChallenge.RecordValue } }
             };
+            var dnsClient = await ArmHelper.GetDnsManagementClient(this.environment);
             if ((await dnsClient.RecordSets.ListByTypeAsync(environment.ResourceGroupName, environment.ZoneName, RecordType.TXT)).Any())
             {
                 var existingRecords = await SafeGetExistingRecords(dnsChallenge);
@@ -50,7 +49,7 @@ public override async Task PersistsChallenge(DnsChallenge dnsChallenge)
                     }
                 }
             }
-            await this.dnsClient.RecordSets.CreateOrUpdateAsync(this.environment.ResourceGroupName, this.environment.ZoneName, GetRelativeRecordSetName(dnsChallenge), RecordType.TXT, new RecordSet()
+            await dnsClient.RecordSets.CreateOrUpdateAsync(this.environment.ResourceGroupName, this.environment.ZoneName, GetRelativeRecordSetName(dnsChallenge), RecordType.TXT, new RecordSet()
             {
                 TxtRecords = records,
                 TTL = 60
@@ -66,6 +65,7 @@ private async Task<RecordSet> SafeGetExistingRecords(DnsChallenge dnsChallenge)
         {
             try
             {
+                var dnsClient = await ArmHelper.GetDnsManagementClient(this.environment);
                 return await dnsClient.RecordSets.GetAsync(environment.ResourceGroupName, environment.ZoneName, GetRelativeRecordSetName(dnsChallenge), RecordType.TXT);
 
             }
diff --git a/LetsEncrypt.SiteExtension.Core/Services/ICertificateService.cs b/LetsEncrypt.SiteExtension.Core/Services/ICertificateService.cs
index 5be0970..4d139a1 100644
--- a/LetsEncrypt.SiteExtension.Core/Services/ICertificateService.cs
+++ b/LetsEncrypt.SiteExtension.Core/Services/ICertificateService.cs
@@ -11,6 +11,6 @@ public interface ICertificateService
     {
         Task Install(ICertificateInstallModel model);
 
-        List<string> RemoveExpired(int removeXNumberOfDaysBeforeExpiration = 0);
+        Task<List<string>> RemoveExpired(int removeXNumberOfDaysBeforeExpiration = 0);
     }
 }
diff --git a/LetsEncrypt.SiteExtension.Core/Services/KuduFileSystemAuthorizationChallengeProvider.cs b/LetsEncrypt.SiteExtension.Core/Services/KuduFileSystemAuthorizationChallengeProvider.cs
index 893c342..9b89844 100644
--- a/LetsEncrypt.SiteExtension.Core/Services/KuduFileSystemAuthorizationChallengeProvider.cs
+++ b/LetsEncrypt.SiteExtension.Core/Services/KuduFileSystemAuthorizationChallengeProvider.cs
@@ -14,15 +14,14 @@ namespace LetsEncrypt.Azure.Core.Services
 {
     public class KuduFileSystemAuthorizationChallengeProvider : BaseHttpAuthorizationChallengeProvider
     {
-        private readonly KuduRestClient kuduClient;
+        
         private readonly IAuthorizationChallengeProviderConfig config;
         private readonly IAzureWebAppEnvironment azureEnvironment;
 
         public KuduFileSystemAuthorizationChallengeProvider(IAzureWebAppEnvironment azureEnvironment, IAuthorizationChallengeProviderConfig config)
         {
             this.config = config;
-            var website = ArmHelper.GetWebSiteManagementClient(azureEnvironment);
-            this.kuduClient = KuduHelper.GetKuduClient(website, azureEnvironment);
+            
             this.azureEnvironment = azureEnvironment;
         }
 
@@ -54,7 +53,7 @@ private async Task WriteFile(string answerPath, string content)
                 var streamwriter = new StreamWriter(ms);
                 streamwriter.Write(content);
                 streamwriter.Flush();
-                await kuduClient.PutFile(answerPath, ms);          
+                await (await GetKuduRestClient()).PutFile(answerPath, ms);          
             }
         }
 
@@ -76,5 +75,10 @@ private string WebRootPath()
             //Ensure this is a backwards compatible with the LocalFileSystemProvider that was the only option before
             return azureEnvironment.WebRootPath.Replace(Environment.ExpandEnvironmentVariables("%HOME%"), "").Replace('\\', '/');
         }
+        private async Task<KuduRestClient> GetKuduRestClient()
+        {
+            var website = await ArmHelper.GetWebSiteManagementClient(azureEnvironment);
+            return KuduHelper.GetKuduClient(website, azureEnvironment);
+        }
     }
 }
diff --git a/LetsEncrypt.SiteExtension.Core/Services/WebAppCertificateService.cs b/LetsEncrypt.SiteExtension.Core/Services/WebAppCertificateService.cs
index fea2095..4fc9ba0 100644
--- a/LetsEncrypt.SiteExtension.Core/Services/WebAppCertificateService.cs
+++ b/LetsEncrypt.SiteExtension.Core/Services/WebAppCertificateService.cs
@@ -30,37 +30,30 @@ public WebAppCertificateService(IAzureWebAppEnvironment azureEnvironment, IWebAp
         public async Task Install(ICertificateInstallModel model)
         {
             var cert = model.CertificateInfo;
-            using (var webSiteClient = ArmHelper.GetWebSiteManagementClient(azureEnvironment))
+            using (var webSiteClient = await ArmHelper.GetWebSiteManagementClient(azureEnvironment))
             {
 
                 var s = webSiteClient.WebApps.GetSiteOrSlot(azureEnvironment.ResourceGroupName, azureEnvironment.WebAppName, azureEnvironment.SiteSlotName);
 
                 Trace.TraceInformation(String.Format("Installing certificate {0} on azure with server farm id {1}", cert.Name, s.ServerFarmId));
-                var newCert = new Certificate()
-                {
-                    PfxBlob = cert.PfxCertificate,
-                    Password = cert.Password,
-                    Location = s.Location,
-                    ServerFarmId = s.ServerFarmId,
-                    Name = model.Host + "-" + cert.Certificate.Thumbprint
-
-                };
+                var newCert = new Certificate(s.Location, cert.Password, name: model.Host + "-" + cert.Certificate.Thumbprint, pfxBlob: cert.PfxCertificate, serverFarmId: s.ServerFarmId);
                 //BUG https://github.com/sjkp/letsencrypt-siteextension/issues/99
                 //using this will not install the certificate with the correct webSpace property set, 
                 //and the app service will be unable to find the certificate if the app service plan has been moved between resource groups.
                 //webSiteClient.Certificates.CreateOrUpdate(azureEnvironment.ServicePlanResourceGroupName, cert.Certificate.Subject.Replace("CN=", ""), newCert);
 
-                var client = ArmHelper.GetHttpClient(azureEnvironment);
+                var client = await ArmHelper.GetHttpClient(azureEnvironment);
 
                 var body = JsonConvert.SerializeObject(newCert, JsonHelper.DefaultSerializationSettings);
 
-                Polly.Retry.RetryPolicy retryPolicy = ArmHelper.ExponentialBackoff();
+                var retryPolicy = ArmHelper.ExponentialBackoff();
 
-                await retryPolicy.ExecuteAsync(async () =>
+                var t = await retryPolicy.ExecuteAsync(async () =>
                 {
-                    var t = await client.PutAsync($"/subscriptions/{azureEnvironment.SubscriptionId}/resourceGroups/{azureEnvironment.ServicePlanResourceGroupName}/providers/Microsoft.Web/certificates/{newCert.Name}?api-version=2016-03-01", new StringContent(body, Encoding.UTF8, "application/json"));
-                    t.EnsureSuccessStatusCode();
+                     return await client.PutAsync($"/subscriptions/{azureEnvironment.SubscriptionId}/resourceGroups/{azureEnvironment.ServicePlanResourceGroupName}/providers/Microsoft.Web/certificates/{newCert.Name}?api-version=2016-03-01", new StringContent(body, Encoding.UTF8, "application/json"));                    
                 });
+                Trace.TraceInformation(await t.Content.ReadAsStringAsync());
+                t.EnsureSuccessStatusCode();
 
                 foreach (var dnsName in model.AllDnsIdentifiers)
                 {
@@ -89,23 +82,26 @@ await retryPolicy.ExecuteAsync(async () =>
 
         }        
 
-        public List<string> RemoveExpired(int removeXNumberOfDaysBeforeExpiration = 0)
+        public async Task<List<string>> RemoveExpired(int removeXNumberOfDaysBeforeExpiration = 0)
         {
-            using (var webSiteClient = ArmHelper.GetWebSiteManagementClient(azureEnvironment))
+            using (var webSiteClient = await ArmHelper.GetWebSiteManagementClient(azureEnvironment))
             {
                 var certs = webSiteClient.Certificates.ListByResourceGroup(azureEnvironment.ServicePlanResourceGroupName);
-
-                var tobeRemoved = certs.Where(s => s.ExpirationDate < DateTime.UtcNow.AddDays(removeXNumberOfDaysBeforeExpiration) && (s.Issuer.Contains("Let's Encrypt") || s.Issuer.Contains("Fake LE"))).ToList();
-
-                tobeRemoved.ForEach(s => RemoveCertificate(webSiteClient, s));
+                var site = webSiteClient.WebApps.GetSiteOrSlot(azureEnvironment.ResourceGroupName, azureEnvironment.WebAppName, azureEnvironment.SiteSlotName);
+                
+                var tobeRemoved = certs.Where(s => s.ExpirationDate < DateTime.UtcNow.AddDays(removeXNumberOfDaysBeforeExpiration) && (s.Issuer.Contains("Let's Encrypt") || s.Issuer.Contains("Fake LE")) && !site.HostNameSslStates.Any(hostNameBindings => hostNameBindings.Thumbprint == s.Thumbprint)).ToList();
+                foreach (var cert in tobeRemoved)
+                {
+                    await RemoveCertificate(webSiteClient, cert);
+                }
 
                 return tobeRemoved.Select(s => s.Thumbprint).ToList();
             }
         }
 
-        private void RemoveCertificate(WebSiteManagementClient webSiteClient,  Certificate s)
-        {
-            webSiteClient.Certificates.Delete(azureEnvironment.ServicePlanResourceGroupName, s.Name);
+        private async Task RemoveCertificate(WebSiteManagementClient webSiteClient,  Certificate s)
+        {            
+            await webSiteClient.Certificates.DeleteAsync(azureEnvironment.ServicePlanResourceGroupName, s.Name);
         }
 
         
diff --git a/LetsEncrypt.SiteExtension.Core/app.config b/LetsEncrypt.SiteExtension.Core/app.config
index 0ae7ba9..b4c3921 100644
--- a/LetsEncrypt.SiteExtension.Core/app.config
+++ b/LetsEncrypt.SiteExtension.Core/app.config
@@ -4,11 +4,19 @@
     <assemblyBinding xmlns="urn:schemas-microsoft-com:asm.v1">
       <dependentAssembly>
         <assemblyIdentity name="Newtonsoft.Json" publicKeyToken="30ad4fe6b2a6aeed" culture="neutral" />
-        <bindingRedirect oldVersion="0.0.0.0-10.0.0.0" newVersion="10.0.0.0" />
+        <bindingRedirect oldVersion="0.0.0.0-12.0.0.0" newVersion="12.0.0.0" />
+      </dependentAssembly>   
+      <dependentAssembly>
+        <assemblyIdentity name="Microsoft.Azure.KeyVault.Core" publicKeyToken="31bf3856ad364e35" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-3.0.0.0" newVersion="3.0.0.0" />
+      </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="System.Net.Http" publicKeyToken="b03f5f7f11d50a3a" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-4.1.1.3" newVersion="4.1.1.3" />
       </dependentAssembly>
       <dependentAssembly>
-        <assemblyIdentity name="Microsoft.IdentityModel.Clients.ActiveDirectory" publicKeyToken="31bf3856ad364e35" culture="neutral" />
-        <bindingRedirect oldVersion="0.0.0.0-2.28.1.741" newVersion="2.28.1.741" />
+        <assemblyIdentity name="System.Xml.ReaderWriter" publicKeyToken="b03f5f7f11d50a3a" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-4.1.0.0" newVersion="4.1.0.0" />
       </dependentAssembly>
     </assemblyBinding>
   </runtime>
diff --git a/LetsEncrypt.SiteExtension.Core/packages.config b/LetsEncrypt.SiteExtension.Core/packages.config
index 8e49574..8e63676 100644
--- a/LetsEncrypt.SiteExtension.Core/packages.config
+++ b/LetsEncrypt.SiteExtension.Core/packages.config
@@ -1,26 +1,25 @@
 <?xml version="1.0" encoding="utf-8"?>
 <packages>
-  <package id="Microsoft.AspNet.WebApi.Client" version="5.2.3" targetFramework="net46" />
-  <package id="Microsoft.Azure.KeyVault.Core" version="1.0.0" targetFramework="net46" />
-  <package id="Microsoft.Azure.Management.Dns" version="1.9.0-preview" targetFramework="net46" />
-  <package id="Microsoft.Azure.Management.Websites" version="1.6.0-preview" targetFramework="net461" />
+  <package id="Microsoft.AspNet.WebApi.Client" version="5.2.7" targetFramework="net46" />
+  <package id="Microsoft.Azure.KeyVault.Core" version="3.0.1" targetFramework="net46" />
+  <package id="Microsoft.Azure.Management.Dns" version="3.0.1" targetFramework="net46" />
+  <package id="Microsoft.Azure.Management.Websites" version="2.0.1" targetFramework="net46" />
   <package id="Microsoft.Azure.Storage.Blob" version="9.4.2" targetFramework="net46" />
   <package id="Microsoft.Azure.Storage.Common" version="9.4.2" targetFramework="net46" />
-  <package id="Microsoft.IdentityModel.Clients.ActiveDirectory" version="2.28.1" targetFramework="net45" />
-  <package id="Microsoft.NETCore.Platforms" version="1.1.0" targetFramework="net46" />
-  <package id="Microsoft.Rest.ClientRuntime" version="2.3.8" targetFramework="net46" />
-  <package id="Microsoft.Rest.ClientRuntime.Azure" version="3.3.7" targetFramework="net46" />
-  <package id="Microsoft.Rest.ClientRuntime.Azure.Authentication" version="2.2.0-preview" targetFramework="net461" />
+  <package id="Microsoft.IdentityModel.Clients.ActiveDirectory" version="3.14.0" targetFramework="net46" />
+  <package id="Microsoft.NETCore.Platforms" version="2.2.0" targetFramework="net46" />
+  <package id="Microsoft.Rest.ClientRuntime" version="2.3.18" targetFramework="net46" />
+  <package id="Microsoft.Rest.ClientRuntime.Azure" version="3.3.18" targetFramework="net46" />
   <package id="Microsoft.Win32.Primitives" version="4.3.0" targetFramework="net46" />
-  <package id="NETStandard.Library" version="1.6.1" targetFramework="net46" />
-  <package id="Newtonsoft.Json" version="10.0.2" targetFramework="net46" />
+  <package id="NETStandard.Library" version="2.0.3" targetFramework="net46" />
+  <package id="Newtonsoft.Json" version="12.0.1" targetFramework="net46" />
   <package id="Polly" version="6.1.2" targetFramework="net46" />
   <package id="System.AppContext" version="4.3.0" targetFramework="net46" />
   <package id="System.Collections" version="4.3.0" targetFramework="net46" />
   <package id="System.Collections.Concurrent" version="4.3.0" targetFramework="net46" />
-  <package id="System.Console" version="4.3.0" targetFramework="net46" />
+  <package id="System.Console" version="4.3.1" targetFramework="net46" />
   <package id="System.Diagnostics.Debug" version="4.3.0" targetFramework="net46" />
-  <package id="System.Diagnostics.DiagnosticSource" version="4.3.0" targetFramework="net46" />
+  <package id="System.Diagnostics.DiagnosticSource" version="4.5.1" targetFramework="net46" />
   <package id="System.Diagnostics.Tools" version="4.3.0" targetFramework="net46" />
   <package id="System.Diagnostics.Tracing" version="4.3.0" targetFramework="net46" />
   <package id="System.Globalization" version="4.3.0" targetFramework="net46" />
@@ -32,7 +31,7 @@
   <package id="System.IO.FileSystem.Primitives" version="4.3.0" targetFramework="net46" />
   <package id="System.Linq" version="4.3.0" targetFramework="net46" />
   <package id="System.Linq.Expressions" version="4.3.0" targetFramework="net46" />
-  <package id="System.Net.Http" version="4.3.0" targetFramework="net46" />
+  <package id="System.Net.Http" version="4.3.4" targetFramework="net46" />
   <package id="System.Net.Primitives" version="4.3.0" targetFramework="net46" />
   <package id="System.Net.Sockets" version="4.3.0" targetFramework="net46" />
   <package id="System.ObjectModel" version="4.3.0" targetFramework="net46" />
@@ -46,16 +45,16 @@
   <package id="System.Runtime.InteropServices" version="4.3.0" targetFramework="net46" />
   <package id="System.Runtime.InteropServices.RuntimeInformation" version="4.3.0" targetFramework="net46" />
   <package id="System.Runtime.Numerics" version="4.3.0" targetFramework="net46" />
-  <package id="System.Security.Cryptography.Algorithms" version="4.3.0" targetFramework="net46" />
+  <package id="System.Security.Cryptography.Algorithms" version="4.3.1" targetFramework="net46" />
   <package id="System.Security.Cryptography.Encoding" version="4.3.0" targetFramework="net46" />
   <package id="System.Security.Cryptography.Primitives" version="4.3.0" targetFramework="net46" />
-  <package id="System.Security.Cryptography.X509Certificates" version="4.3.0" targetFramework="net46" />
+  <package id="System.Security.Cryptography.X509Certificates" version="4.3.2" targetFramework="net46" />
   <package id="System.Text.Encoding" version="4.3.0" targetFramework="net46" />
   <package id="System.Text.Encoding.Extensions" version="4.3.0" targetFramework="net46" />
   <package id="System.Text.RegularExpressions" version="4.3.0" targetFramework="net46" />
   <package id="System.Threading" version="4.3.0" targetFramework="net46" />
   <package id="System.Threading.Tasks" version="4.3.0" targetFramework="net46" />
   <package id="System.Threading.Timer" version="4.3.0" targetFramework="net46" />
-  <package id="System.Xml.ReaderWriter" version="4.3.0" targetFramework="net46" />
+  <package id="System.Xml.ReaderWriter" version="4.3.1" targetFramework="net46" />
   <package id="System.Xml.XDocument" version="4.3.0" targetFramework="net46" />
 </packages>
\ No newline at end of file
diff --git a/LetsEncrypt.SiteExtension.Test/App.config b/LetsEncrypt.SiteExtension.Test/App.config
index e51dd11..642ed8d 100644
--- a/LetsEncrypt.SiteExtension.Test/App.config
+++ b/LetsEncrypt.SiteExtension.Test/App.config
@@ -16,11 +16,11 @@
     <assemblyBinding xmlns="urn:schemas-microsoft-com:asm.v1">
       <dependentAssembly>
         <assemblyIdentity name="Newtonsoft.Json" publicKeyToken="30ad4fe6b2a6aeed" culture="neutral" />
-        <bindingRedirect oldVersion="0.0.0.0-9.0.0.0" newVersion="9.0.0.0" />
+        <bindingRedirect oldVersion="0.0.0.0-12.0.0.0" newVersion="12.0.0.0" />
       </dependentAssembly>
       <dependentAssembly>
         <assemblyIdentity name="Microsoft.IdentityModel.Clients.ActiveDirectory" publicKeyToken="31bf3856ad364e35" culture="neutral" />
-        <bindingRedirect oldVersion="0.0.0.0-2.28.1.741" newVersion="2.28.1.741" />
+        <bindingRedirect oldVersion="0.0.0.0-3.14.0.8" newVersion="3.14.0.8" />
       </dependentAssembly>
       <dependentAssembly>
         <assemblyIdentity name="Microsoft.Rest.ClientRuntime" publicKeyToken="31bf3856ad364e35" culture="neutral" />
@@ -32,11 +32,11 @@
       </dependentAssembly>
       <dependentAssembly>
         <assemblyIdentity name="System.Web.Http" publicKeyToken="31bf3856ad364e35" culture="neutral" />
-        <bindingRedirect oldVersion="0.0.0.0-5.2.3.0" newVersion="5.2.3.0" />
+        <bindingRedirect oldVersion="0.0.0.0-5.2.7.0" newVersion="5.2.7.0" />
       </dependentAssembly>
       <dependentAssembly>
         <assemblyIdentity name="System.Net.Http.Formatting" publicKeyToken="31bf3856ad364e35" culture="neutral" />
-        <bindingRedirect oldVersion="0.0.0.0-5.2.3.0" newVersion="5.2.3.0" />
+        <bindingRedirect oldVersion="0.0.0.0-5.2.7.0" newVersion="5.2.7.0" />
       </dependentAssembly>
       <dependentAssembly>
         <assemblyIdentity name="Microsoft.Data.Edm" publicKeyToken="31bf3856ad364e35" culture="neutral" />
@@ -50,6 +50,26 @@
         <assemblyIdentity name="Microsoft.Data.OData" publicKeyToken="31bf3856ad364e35" culture="neutral" />
         <bindingRedirect oldVersion="0.0.0.0-5.8.4.0" newVersion="5.8.4.0" />
       </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="System.Diagnostics.DiagnosticSource" publicKeyToken="cc7b13ffcd2ddd51" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-4.0.1.0" newVersion="4.0.1.0" />
+      </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="Microsoft.Azure.KeyVault.Core" publicKeyToken="31bf3856ad364e35" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-3.0.0.0" newVersion="3.0.0.0" />
+      </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="System.Xml.ReaderWriter" publicKeyToken="b03f5f7f11d50a3a" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-4.1.0.0" newVersion="4.1.0.0" />
+      </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="Microsoft.IdentityModel.Clients.ActiveDirectory" publicKeyToken="31bf3856ad364e35" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-3.14.0.8" newVersion="3.14.0.8" />
+      </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="System.Net.Http" publicKeyToken="b03f5f7f11d50a3a" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-4.2.0.0" newVersion="4.2.0.0" />
+      </dependentAssembly>
     </assemblyBinding>
   </runtime>
   <startup>
diff --git a/LetsEncrypt.SiteExtension.Test/CertificateControllerTest.cs b/LetsEncrypt.SiteExtension.Test/CertificateControllerTest.cs
index 374a3a2..795ad24 100644
--- a/LetsEncrypt.SiteExtension.Test/CertificateControllerTest.cs
+++ b/LetsEncrypt.SiteExtension.Test/CertificateControllerTest.cs
@@ -22,7 +22,7 @@ public class CertificateControllerTest
         public async Task TestRenewCertificate()
         {
             var config = new AppSettingsAuthConfig();            
-            var client = ArmHelper.GetWebSiteManagementClient(config);
+            var client = await ArmHelper.GetWebSiteManagementClient(config);
             var kuduClient = KuduHelper.GetKuduClient(client, config);
 
             var res = await kuduClient.HttpClient.PostAsync("https://webappcfmv5fy7lcq7o.scm.azurewebsites.net/letsencrypt/api/certificates/renew?api-version=2017-09-01", new StringContent(""));
@@ -42,7 +42,7 @@ public async Task TestRenewCertificate()
         public async Task TestRequestAndInstallCertificate()
         {
             var config = new AppSettingsAuthConfig();
-            var client = ArmHelper.GetWebSiteManagementClient(config);
+            var client = await ArmHelper.GetWebSiteManagementClient(config);
             var kuduClient = KuduHelper.GetKuduClient(client, config);
 
             var body = new HttpKuduInstallModel()
@@ -71,7 +71,7 @@ public async Task TestRequestAndInstallCertificate()
         public async Task TestRequestAndInstallDnsCertificate()
         {
             var config = new AppSettingsAuthConfig();
-            var client = ArmHelper.GetWebSiteManagementClient(config);
+            var client =  await ArmHelper.GetWebSiteManagementClient(config);
             var kuduClient = KuduHelper.GetKuduClient(client, config);
 
             var body = new DnsAzureInstallModel()
@@ -114,7 +114,7 @@ private static async Task ValidateResponse(IAcmeConfig acmeConfig, HttpResponseM
         public async Task TestRequestDnsCertificate()
         {
             var config = new AppSettingsAuthConfig();
-            var client = ArmHelper.GetWebSiteManagementClient(config);
+            var client = await ArmHelper.GetWebSiteManagementClient(config);
             var kuduClient = KuduHelper.GetKuduClient(client, config);
 
             var body = new DnsAzureModel()
diff --git a/LetsEncrypt.SiteExtension.Test/CertificateServicetest.cs b/LetsEncrypt.SiteExtension.Test/CertificateServicetest.cs
index 670a4bc..9ec3849 100644
--- a/LetsEncrypt.SiteExtension.Test/CertificateServicetest.cs
+++ b/LetsEncrypt.SiteExtension.Test/CertificateServicetest.cs
@@ -4,6 +4,7 @@
 using LetsEncrypt.Azure.Core.Models;
 using System.Collections.Generic;
 using System.IO;
+using System.Threading.Tasks;
 
 namespace LetsEncrypt.SiteExtension.Test
 {
@@ -11,14 +12,16 @@ namespace LetsEncrypt.SiteExtension.Test
     public class CertificateServiceTest
     {
         [DeploymentItem("letsencrypt.sjkp.dk-all.pfx")]
+        [DeploymentItem("App.secret.config")]
         [TestMethod]
-        public void TestInstall()
+        public async Task TestInstall()
         {
+            Console.WriteLine(typeof(Microsoft.IdentityModel.Clients.ActiveDirectory.AdalOption).AssemblyQualifiedName);
             var config = new AppSettingsAuthConfig();
             var service = new WebAppCertificateService(config, new CertificateServiceSettings { });
             var pfx = File.ReadAllBytes("letsencrypt.sjkp.dk-all.pfx");
           
-            service.Install(new CertificateInstallModel
+            await service.Install(new CertificateInstallModel
             {
                 AllDnsIdentifiers = new List<string>() { "letsencrypt.sjkp.dk" },
                 Host = "letsencrypt.sjkp.dk",
@@ -34,12 +37,12 @@ public void TestInstall()
             });
         }
         [TestMethod]
-        public void TestRemove()
+        public async Task TestRemove()
         {
             var config = new AppSettingsAuthConfig();
             var service = new WebAppCertificateService(config, new CertificateServiceSettings { });            
             
-            service.RemoveExpired(180);
+            await service.RemoveExpired(180);
         }
     }
 }
diff --git a/LetsEncrypt.SiteExtension.Test/LetsEncrypt.SiteExtension.Test.csproj b/LetsEncrypt.SiteExtension.Test/LetsEncrypt.SiteExtension.Test.csproj
index 0a2b6eb..0857c93 100644
--- a/LetsEncrypt.SiteExtension.Test/LetsEncrypt.SiteExtension.Test.csproj
+++ b/LetsEncrypt.SiteExtension.Test/LetsEncrypt.SiteExtension.Test.csproj
@@ -76,22 +76,24 @@
       <HintPath>..\packages\log4net.2.0.3\lib\net40-full\log4net.dll</HintPath>
       <Private>True</Private>
     </Reference>
-    <Reference Include="Microsoft.Azure.Management.Websites, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.Azure.Management.Websites.1.6.0-preview\lib\net45\Microsoft.Azure.Management.Websites.dll</HintPath>
-      <Private>True</Private>
+    <Reference Include="Microsoft.Azure.Management.Websites, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.Azure.Management.Websites.2.0.1\lib\net452\Microsoft.Azure.Management.Websites.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.CSharp" />
+    <Reference Include="Microsoft.IdentityModel.Clients.ActiveDirectory, Version=3.14.0.8, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.IdentityModel.Clients.ActiveDirectory.3.14.0\lib\net45\Microsoft.IdentityModel.Clients.ActiveDirectory.dll</HintPath>
+    </Reference>
+    <Reference Include="Microsoft.IdentityModel.Clients.ActiveDirectory.Platform, Version=3.14.0.8, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.IdentityModel.Clients.ActiveDirectory.3.14.0\lib\net45\Microsoft.IdentityModel.Clients.ActiveDirectory.Platform.dll</HintPath>
+    </Reference>
     <Reference Include="Microsoft.Rest.ClientRuntime, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.Rest.ClientRuntime.2.3.5\lib\net45\Microsoft.Rest.ClientRuntime.dll</HintPath>
-      <Private>True</Private>
+      <HintPath>..\packages\Microsoft.Rest.ClientRuntime.2.3.18\lib\net452\Microsoft.Rest.ClientRuntime.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Rest.ClientRuntime.Azure, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.Rest.ClientRuntime.Azure.3.3.5\lib\net45\Microsoft.Rest.ClientRuntime.Azure.dll</HintPath>
-      <Private>True</Private>
+      <HintPath>..\packages\Microsoft.Rest.ClientRuntime.Azure.3.3.18\lib\net452\Microsoft.Rest.ClientRuntime.Azure.dll</HintPath>
     </Reference>
-    <Reference Include="Newtonsoft.Json, Version=9.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed, processorArchitecture=MSIL">
-      <HintPath>..\packages\Newtonsoft.Json.9.0.1\lib\net45\Newtonsoft.Json.dll</HintPath>
-      <Private>True</Private>
+    <Reference Include="Newtonsoft.Json, Version=12.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed, processorArchitecture=MSIL">
+      <HintPath>..\packages\Newtonsoft.Json.12.0.1\lib\net45\Newtonsoft.Json.dll</HintPath>
     </Reference>
     <Reference Include="Polly, Version=6.0.0.0, Culture=neutral, PublicKeyToken=c8a3ffc3f8f825cc, processorArchitecture=MSIL">
       <HintPath>..\packages\Polly.6.1.2\lib\netstandard2.0\Polly.dll</HintPath>
@@ -100,13 +102,37 @@
     <Reference Include="System.ComponentModel.DataAnnotations" />
     <Reference Include="System.Configuration" />
     <Reference Include="System.Net" />
-    <Reference Include="System.Net.Http" />
-    <Reference Include="System.Net.Http.Formatting, Version=5.2.3.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.AspNet.WebApi.Client.5.2.3\lib\net45\System.Net.Http.Formatting.dll</HintPath>
+    <Reference Include="System.Net.Http, Version=4.1.1.3, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Net.Http.4.3.4\lib\net46\System.Net.Http.dll</HintPath>
       <Private>True</Private>
+      <Private>True</Private>
+    </Reference>
+    <Reference Include="System.Net.Http.Formatting, Version=5.2.7.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.AspNet.WebApi.Client.5.2.7\lib\net45\System.Net.Http.Formatting.dll</HintPath>
     </Reference>
     <Reference Include="System.Net.Http.WebRequest" />
+    <Reference Include="System.Runtime, Version=4.1.2.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL" />
     <Reference Include="System.Runtime.Serialization" />
+    <Reference Include="System.Security.Cryptography.Algorithms, Version=4.1.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Security.Cryptography.Algorithms.4.3.0\lib\net461\System.Security.Cryptography.Algorithms.dll</HintPath>
+      <Private>True</Private>
+      <Private>True</Private>
+    </Reference>
+    <Reference Include="System.Security.Cryptography.Encoding, Version=4.0.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Security.Cryptography.Encoding.4.3.0\lib\net46\System.Security.Cryptography.Encoding.dll</HintPath>
+      <Private>True</Private>
+      <Private>True</Private>
+    </Reference>
+    <Reference Include="System.Security.Cryptography.Primitives, Version=4.0.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Security.Cryptography.Primitives.4.3.0\lib\net46\System.Security.Cryptography.Primitives.dll</HintPath>
+      <Private>True</Private>
+      <Private>True</Private>
+    </Reference>
+    <Reference Include="System.Security.Cryptography.X509Certificates, Version=4.1.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Security.Cryptography.X509Certificates.4.3.0\lib\net461\System.Security.Cryptography.X509Certificates.dll</HintPath>
+      <Private>True</Private>
+      <Private>True</Private>
+    </Reference>
     <Reference Include="System.Xml" />
   </ItemGroup>
   <Choose>
@@ -142,7 +168,7 @@
       <SubType>Designer</SubType>
     </None>
     <None Include="App.secret.config">
-      <CopyToOutputDirectory>PreserveNewest</CopyToOutputDirectory>
+      <CopyToOutputDirectory>Always</CopyToOutputDirectory>
     </None>
     <None Include="App_Data\settings.json">
       <CopyToOutputDirectory>Always</CopyToOutputDirectory>
diff --git a/LetsEncrypt.SiteExtension.Test/PublishingCrendentialsTest.cs b/LetsEncrypt.SiteExtension.Test/PublishingCrendentialsTest.cs
index 660bee7..2aa0d8b 100644
--- a/LetsEncrypt.SiteExtension.Test/PublishingCrendentialsTest.cs
+++ b/LetsEncrypt.SiteExtension.Test/PublishingCrendentialsTest.cs
@@ -20,7 +20,7 @@ public async Task GetPublishingCredentials()
         { 
 
             var model = new AppSettingsAuthConfig();
-            var helper = ArmHelper.GetWebSiteManagementClient(model);
+            var helper = await ArmHelper.GetWebSiteManagementClient(model);
 
             var kuduClient = KuduHelper.GetKuduClient(helper, model);
 
diff --git a/LetsEncrypt.SiteExtension.Test/UnitTest1.cs b/LetsEncrypt.SiteExtension.Test/UnitTest1.cs
index dd30e8b..7b6c5a7 100644
--- a/LetsEncrypt.SiteExtension.Test/UnitTest1.cs
+++ b/LetsEncrypt.SiteExtension.Test/UnitTest1.cs
@@ -17,9 +17,9 @@ public async Task RetryTest()
             var client = HttpClientFactory.Create(new HttpClientHandler(), new TimeoutHandler());
             
             var retry = ArmHelper.ExponentialBackoff();
-            await retry.ExecuteAsync(async () =>
+            var resp = await retry.ExecuteAsync(async () =>
             {
-                await client.PostAsJsonAsync("https://en8zkq5hogjyi.x.pipedream.net", new { text = "hello" });
+                return await client.PostAsJsonAsync("https://en8zkq5hogjyi.x.pipedream.net", new { text = "hello" });
             });
         }
     }
diff --git a/LetsEncrypt.SiteExtension.Test/packages.config b/LetsEncrypt.SiteExtension.Test/packages.config
index 1549a90..74a7042 100644
--- a/LetsEncrypt.SiteExtension.Test/packages.config
+++ b/LetsEncrypt.SiteExtension.Test/packages.config
@@ -1,10 +1,16 @@
 <?xml version="1.0" encoding="utf-8"?>
 <packages>
   <package id="log4net" version="2.0.3" targetFramework="net461" />
-  <package id="Microsoft.AspNet.WebApi.Client" version="5.2.3" targetFramework="net461" />
-  <package id="Microsoft.Azure.Management.Websites" version="1.6.0-preview" targetFramework="net461" />
-  <package id="Microsoft.Rest.ClientRuntime" version="2.3.5" targetFramework="net461" />
-  <package id="Microsoft.Rest.ClientRuntime.Azure" version="3.3.5" targetFramework="net461" />
-  <package id="Newtonsoft.Json" version="9.0.1" targetFramework="net461" />
+  <package id="Microsoft.AspNet.WebApi.Client" version="5.2.7" targetFramework="net461" />
+  <package id="Microsoft.Azure.Management.Websites" version="2.0.1" targetFramework="net461" />
+  <package id="Microsoft.IdentityModel.Clients.ActiveDirectory" version="3.14.0" targetFramework="net461" />
+  <package id="Microsoft.Rest.ClientRuntime" version="2.3.18" targetFramework="net461" />
+  <package id="Microsoft.Rest.ClientRuntime.Azure" version="3.3.18" targetFramework="net461" />
+  <package id="Newtonsoft.Json" version="12.0.1" targetFramework="net461" />
   <package id="Polly" version="6.1.2" targetFramework="net461" />
+  <package id="System.Net.Http" version="4.3.4" targetFramework="net461" />
+  <package id="System.Security.Cryptography.Algorithms" version="4.3.0" targetFramework="net461" />
+  <package id="System.Security.Cryptography.Encoding" version="4.3.0" targetFramework="net461" />
+  <package id="System.Security.Cryptography.Primitives" version="4.3.0" targetFramework="net461" />
+  <package id="System.Security.Cryptography.X509Certificates" version="4.3.0" targetFramework="net461" />
 </packages>
\ No newline at end of file
diff --git a/LetsEncrypt.SiteExtension.WebJob/App.config b/LetsEncrypt.SiteExtension.WebJob/App.config
index 64ae67f..56fcf5d 100644
--- a/LetsEncrypt.SiteExtension.WebJob/App.config
+++ b/LetsEncrypt.SiteExtension.WebJob/App.config
@@ -13,16 +13,12 @@
     <assemblyBinding xmlns="urn:schemas-microsoft-com:asm.v1">
       <dependentAssembly>
         <assemblyIdentity name="Microsoft.WindowsAzure.Storage" publicKeyToken="31bf3856ad364e35" culture="neutral" />
-        <bindingRedirect oldVersion="0.0.0.0-8.2.1.0" newVersion="8.2.1.0" />
+        <bindingRedirect oldVersion="0.0.0.0-9.3.2.0" newVersion="9.3.2.0" />
       </dependentAssembly>
       <dependentAssembly>
         <assemblyIdentity name="Newtonsoft.Json" publicKeyToken="30ad4fe6b2a6aeed" culture="neutral" />
-        <bindingRedirect oldVersion="0.0.0.0-10.0.0.0" newVersion="10.0.0.0" />
-      </dependentAssembly>
-      <dependentAssembly>
-        <assemblyIdentity name="Microsoft.IdentityModel.Clients.ActiveDirectory" publicKeyToken="31bf3856ad364e35" culture="neutral" />
-        <bindingRedirect oldVersion="0.0.0.0-2.28.1.741" newVersion="2.28.1.741" />
-      </dependentAssembly>
+        <bindingRedirect oldVersion="0.0.0.0-12.0.0.0" newVersion="12.0.0.0" />
+      </dependentAssembly>     
       <dependentAssembly>
         <assemblyIdentity name="Microsoft.Azure.WebJobs.Host" publicKeyToken="31bf3856ad364e35" culture="neutral" />
         <bindingRedirect oldVersion="0.0.0.0-2.0.0.0" newVersion="2.0.0.0" />
@@ -47,6 +43,26 @@
         <assemblyIdentity name="System.Diagnostics.DiagnosticSource" publicKeyToken="cc7b13ffcd2ddd51" culture="neutral" />
         <bindingRedirect oldVersion="0.0.0.0-4.0.1.0" newVersion="4.0.1.0" />
       </dependentAssembly>     
+      <dependentAssembly>
+        <assemblyIdentity name="Microsoft.Extensions.Logging.Abstractions" publicKeyToken="adb9793829ddae60" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-2.2.0.0" newVersion="2.2.0.0" />
+      </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="Microsoft.Azure.KeyVault.Core" publicKeyToken="31bf3856ad364e35" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-3.0.0.0" newVersion="3.0.0.0" />
+      </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="System.Net.Http" publicKeyToken="b03f5f7f11d50a3a" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-4.2.0.0" newVersion="4.2.0.0" />
+      </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="System.Xml.ReaderWriter" publicKeyToken="b03f5f7f11d50a3a" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-4.1.1.0" newVersion="4.1.1.0" />
+      </dependentAssembly>
+      <dependentAssembly>
+        <assemblyIdentity name="Microsoft.IdentityModel.Clients.ActiveDirectory" publicKeyToken="31bf3856ad364e35" culture="neutral" />
+        <bindingRedirect oldVersion="0.0.0.0-3.14.0.8" newVersion="3.14.0.8" />
+      </dependentAssembly>
     </assemblyBinding>
   </runtime>
 </configuration>
diff --git a/LetsEncrypt.SiteExtension.WebJob/Functions.cs b/LetsEncrypt.SiteExtension.WebJob/Functions.cs
index 3e26f27..00122b6 100644
--- a/LetsEncrypt.SiteExtension.WebJob/Functions.cs
+++ b/LetsEncrypt.SiteExtension.WebJob/Functions.cs
@@ -69,10 +69,10 @@ public static async Task RenewCertificate([TimerTrigger(typeof(MyDailySchedule),
             Console.WriteLine($"Completed renewal of '{count}' certificates");
         }   
         
-        public static void Cleanup([TimerTrigger(typeof(MyDailySchedule), RunOnStartup = true)] TimerInfo timerInfo)
+        public static async Task Cleanup([TimerTrigger(typeof(MyDailySchedule), RunOnStartup = true)] TimerInfo timerInfo)
         {
             Console.WriteLine("Clean up");
-            var res = new CertificateManager(new AppSettingsAuthConfig()).Cleanup();
+            var res = await new CertificateManager(new AppSettingsAuthConfig()).Cleanup();
             res.ForEach(s => Console.WriteLine($"Removed certificate with thumbprint {s}"));
         }    
 
diff --git a/LetsEncrypt.SiteExtension.WebJob/LetsEncrypt.SiteExtension.WebJob.csproj b/LetsEncrypt.SiteExtension.WebJob/LetsEncrypt.SiteExtension.WebJob.csproj
index 1bbb29a..962e485 100644
--- a/LetsEncrypt.SiteExtension.WebJob/LetsEncrypt.SiteExtension.WebJob.csproj
+++ b/LetsEncrypt.SiteExtension.WebJob/LetsEncrypt.SiteExtension.WebJob.csproj
@@ -12,6 +12,8 @@
     <TargetFrameworkVersion>v4.6.1</TargetFrameworkVersion>
     <FileAlignment>512</FileAlignment>
     <TargetFrameworkProfile />
+    <NuGetPackageImportStamp>
+    </NuGetPackageImportStamp>
   </PropertyGroup>
   <PropertyGroup Condition=" '$(Configuration)|$(Platform)' == 'Debug|AnyCPU' ">
     <PlatformTarget>AnyCPU</PlatformTarget>
@@ -69,9 +71,8 @@
     <CodeAnalysisRuleSet>MinimumRecommendedRules.ruleset</CodeAnalysisRuleSet>
   </PropertyGroup>
   <ItemGroup>
-    <Reference Include="Microsoft.Azure.KeyVault.Core, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.Azure.KeyVault.Core.1.0.0\lib\net40\Microsoft.Azure.KeyVault.Core.dll</HintPath>
-      <Private>True</Private>
+    <Reference Include="Microsoft.Azure.KeyVault.Core, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.Azure.KeyVault.Core.3.0.1\lib\net452\Microsoft.Azure.KeyVault.Core.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Azure.WebJobs, Version=2.3.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
       <HintPath>..\packages\Microsoft.Azure.WebJobs.Core.2.3.0\lib\net45\Microsoft.Azure.WebJobs.dll</HintPath>
@@ -91,34 +92,38 @@
     <Reference Include="Microsoft.Data.Services.Client, Version=5.8.4.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
       <HintPath>..\packages\Microsoft.Data.Services.Client.5.8.4\lib\net40\Microsoft.Data.Services.Client.dll</HintPath>
     </Reference>
-    <Reference Include="Microsoft.Extensions.Logging.Abstractions, Version=1.1.1.0, Culture=neutral, PublicKeyToken=adb9793829ddae60, processorArchitecture=MSIL">
-      <HintPath>..\packages\Microsoft.Extensions.Logging.Abstractions.1.1.1\lib\netstandard1.1\Microsoft.Extensions.Logging.Abstractions.dll</HintPath>
+    <Reference Include="Microsoft.Extensions.Logging.Abstractions, Version=2.2.0.0, Culture=neutral, PublicKeyToken=adb9793829ddae60, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.Extensions.Logging.Abstractions.2.2.0\lib\netstandard2.0\Microsoft.Extensions.Logging.Abstractions.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Win32.Primitives, Version=4.0.2.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
       <HintPath>..\packages\Microsoft.Win32.Primitives.4.3.0\lib\net46\Microsoft.Win32.Primitives.dll</HintPath>
     </Reference>
-    <Reference Include="Microsoft.WindowsAzure.Storage, Version=8.2.1.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\packages\WindowsAzure.Storage.8.2.1\lib\net45\Microsoft.WindowsAzure.Storage.dll</HintPath>
-      <Private>True</Private>
+    <Reference Include="Microsoft.WindowsAzure.Configuration, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\Microsoft.WindowsAzure.ConfigurationManager.3.2.3\lib\net40\Microsoft.WindowsAzure.Configuration.dll</HintPath>
+    </Reference>
+    <Reference Include="Microsoft.WindowsAzure.Storage, Version=9.3.2.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\packages\WindowsAzure.Storage.9.3.3\lib\net45\Microsoft.WindowsAzure.Storage.dll</HintPath>
     </Reference>
     <Reference Include="NCrontab, Version=3.2.20120.0, Culture=neutral, processorArchitecture=MSIL">
       <HintPath>..\packages\ncrontab.3.3.0\lib\net35\NCrontab.dll</HintPath>
       <Private>True</Private>
     </Reference>
-    <Reference Include="Newtonsoft.Json, Version=10.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed, processorArchitecture=MSIL">
-      <HintPath>..\packages\Newtonsoft.Json.10.0.2\lib\net45\Newtonsoft.Json.dll</HintPath>
+    <Reference Include="Newtonsoft.Json, Version=12.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed, processorArchitecture=MSIL">
+      <HintPath>..\packages\Newtonsoft.Json.12.0.1\lib\net45\Newtonsoft.Json.dll</HintPath>
     </Reference>
     <Reference Include="System" />
     <Reference Include="System.AppContext, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
       <HintPath>..\packages\System.AppContext.4.3.0\lib\net46\System.AppContext.dll</HintPath>
     </Reference>
     <Reference Include="System.ComponentModel.Composition" />
-    <Reference Include="System.Console, Version=4.0.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
-      <HintPath>..\packages\System.Console.4.3.0\lib\net46\System.Console.dll</HintPath>
+    <Reference Include="System.Console, Version=4.0.1.1, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Console.4.3.1\lib\net46\System.Console.dll</HintPath>
+      <Private>True</Private>
+      <Private>True</Private>
     </Reference>
     <Reference Include="System.Core" />
-    <Reference Include="System.Diagnostics.DiagnosticSource, Version=4.0.1.0, Culture=neutral, PublicKeyToken=cc7b13ffcd2ddd51, processorArchitecture=MSIL">
-      <HintPath>..\packages\System.Diagnostics.DiagnosticSource.4.3.0\lib\net46\System.Diagnostics.DiagnosticSource.dll</HintPath>
+    <Reference Include="System.Diagnostics.DiagnosticSource, Version=4.0.3.1, Culture=neutral, PublicKeyToken=cc7b13ffcd2ddd51, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Diagnostics.DiagnosticSource.4.5.1\lib\net46\System.Diagnostics.DiagnosticSource.dll</HintPath>
     </Reference>
     <Reference Include="System.Globalization.Calendars, Version=4.0.2.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
       <HintPath>..\packages\System.Globalization.Calendars.4.3.0\lib\net46\System.Globalization.Calendars.dll</HintPath>
@@ -136,8 +141,10 @@
     <Reference Include="System.IO.FileSystem.Primitives, Version=4.0.2.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
       <HintPath>..\packages\System.IO.FileSystem.Primitives.4.3.0\lib\net46\System.IO.FileSystem.Primitives.dll</HintPath>
     </Reference>
-    <Reference Include="System.Net.Http, Version=4.1.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
-      <HintPath>..\packages\System.Net.Http.4.3.0\lib\net46\System.Net.Http.dll</HintPath>
+    <Reference Include="System.Net.Http, Version=4.1.1.3, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Net.Http.4.3.4\lib\net46\System.Net.Http.dll</HintPath>
+      <Private>True</Private>
+      <Private>True</Private>
     </Reference>
     <Reference Include="System.Net.Sockets, Version=4.1.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
       <HintPath>..\packages\System.Net.Sockets.4.3.0\lib\net46\System.Net.Sockets.dll</HintPath>
@@ -147,7 +154,9 @@
       <HintPath>..\packages\System.Runtime.InteropServices.RuntimeInformation.4.3.0\lib\net45\System.Runtime.InteropServices.RuntimeInformation.dll</HintPath>
     </Reference>
     <Reference Include="System.Security.Cryptography.Algorithms, Version=4.1.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
-      <HintPath>..\packages\System.Security.Cryptography.Algorithms.4.3.0\lib\net461\System.Security.Cryptography.Algorithms.dll</HintPath>
+      <HintPath>..\packages\System.Security.Cryptography.Algorithms.4.3.1\lib\net461\System.Security.Cryptography.Algorithms.dll</HintPath>
+      <Private>True</Private>
+      <Private>True</Private>
     </Reference>
     <Reference Include="System.Security.Cryptography.Encoding, Version=4.0.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
       <HintPath>..\packages\System.Security.Cryptography.Encoding.4.3.0\lib\net46\System.Security.Cryptography.Encoding.dll</HintPath>
@@ -155,8 +164,10 @@
     <Reference Include="System.Security.Cryptography.Primitives, Version=4.0.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
       <HintPath>..\packages\System.Security.Cryptography.Primitives.4.3.0\lib\net46\System.Security.Cryptography.Primitives.dll</HintPath>
     </Reference>
-    <Reference Include="System.Security.Cryptography.X509Certificates, Version=4.1.1.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
-      <HintPath>..\packages\System.Security.Cryptography.X509Certificates.4.3.0\lib\net461\System.Security.Cryptography.X509Certificates.dll</HintPath>
+    <Reference Include="System.Security.Cryptography.X509Certificates, Version=4.1.1.2, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
+      <HintPath>..\packages\System.Security.Cryptography.X509Certificates.4.3.2\lib\net461\System.Security.Cryptography.X509Certificates.dll</HintPath>
+      <Private>True</Private>
+      <Private>True</Private>
     </Reference>
     <Reference Include="System.Spatial, Version=5.8.4.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
       <HintPath>..\packages\System.Spatial.5.8.4\lib\net40\System.Spatial.dll</HintPath>
@@ -170,12 +181,10 @@
     <Reference Include="Microsoft.CSharp" />
     <Reference Include="System.Data" />
     <Reference Include="System.Xml" />
-    <Reference Include="Microsoft.WindowsAzure.Configuration, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <SpecificVersion>False</SpecificVersion>
-      <HintPath>..\packages\Microsoft.WindowsAzure.ConfigurationManager.2.0.3\lib\net40\Microsoft.WindowsAzure.Configuration.dll</HintPath>
-    </Reference>
     <Reference Include="System.Xml.ReaderWriter, Version=4.1.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
-      <HintPath>..\packages\System.Xml.ReaderWriter.4.3.0\lib\net46\System.Xml.ReaderWriter.dll</HintPath>
+      <HintPath>..\packages\System.Xml.ReaderWriter.4.3.1\lib\net46\System.Xml.ReaderWriter.dll</HintPath>
+      <Private>True</Private>
+      <Private>True</Private>
     </Reference>
   </ItemGroup>
   <ItemGroup>
@@ -194,6 +203,13 @@
     </ProjectReference>
   </ItemGroup>
   <Import Project="$(MSBuildToolsPath)\Microsoft.CSharp.targets" />
+  <Import Project="..\packages\NETStandard.Library.2.0.3\build\netstandard2.0\NETStandard.Library.targets" Condition="Exists('..\packages\NETStandard.Library.2.0.3\build\netstandard2.0\NETStandard.Library.targets')" />
+  <Target Name="EnsureNuGetPackageBuildImports" BeforeTargets="PrepareForBuild">
+    <PropertyGroup>
+      <ErrorText>This project references NuGet package(s) that are missing on this computer. Use NuGet Package Restore to download them.  For more information, see http://go.microsoft.com/fwlink/?LinkID=322105. The missing file is {0}.</ErrorText>
+    </PropertyGroup>
+    <Error Condition="!Exists('..\packages\NETStandard.Library.2.0.3\build\netstandard2.0\NETStandard.Library.targets')" Text="$([System.String]::Format('$(ErrorText)', '..\packages\NETStandard.Library.2.0.3\build\netstandard2.0\NETStandard.Library.targets'))" />
+  </Target>
   <!-- To modify your build process, add your task inside one of the targets below and uncomment it. 
        Other similar extension points exist, see Microsoft.Common.targets.
   <Target Name="BeforeBuild">
diff --git a/LetsEncrypt.SiteExtension.WebJob/packages.config b/LetsEncrypt.SiteExtension.WebJob/packages.config
index e605959..6598652 100644
--- a/LetsEncrypt.SiteExtension.WebJob/packages.config
+++ b/LetsEncrypt.SiteExtension.WebJob/packages.config
@@ -1,30 +1,30 @@
 <?xml version="1.0" encoding="utf-8"?>
 <packages>
-  <package id="Microsoft.Azure.KeyVault.Core" version="1.0.0" targetFramework="net461" />
+  <package id="Microsoft.Azure.KeyVault.Core" version="3.0.1" targetFramework="net461" />
   <package id="Microsoft.Azure.WebJobs" version="2.3.0" targetFramework="net461" />
   <package id="Microsoft.Azure.WebJobs.Core" version="2.3.0" targetFramework="net461" />
   <package id="Microsoft.Azure.WebJobs.Extensions" version="2.3.0" targetFramework="net461" />
   <package id="Microsoft.Data.Edm" version="5.8.4" targetFramework="net461" />
   <package id="Microsoft.Data.OData" version="5.8.4" targetFramework="net461" />
   <package id="Microsoft.Data.Services.Client" version="5.8.4" targetFramework="net461" />
-  <package id="Microsoft.Extensions.Logging.Abstractions" version="1.1.1" targetFramework="net461" />
-  <package id="Microsoft.NETCore.Platforms" version="1.1.0" targetFramework="net461" />
+  <package id="Microsoft.Extensions.Logging.Abstractions" version="2.2.0" targetFramework="net461" />
+  <package id="Microsoft.NETCore.Platforms" version="2.2.0" targetFramework="net461" />
   <package id="Microsoft.Tpl.Dataflow" version="4.5.24" targetFramework="net45" />
   <package id="Microsoft.Win32.Primitives" version="4.3.0" targetFramework="net461" />
-  <package id="Microsoft.WindowsAzure.ConfigurationManager" version="2.0.3" targetFramework="net45" />
+  <package id="Microsoft.WindowsAzure.ConfigurationManager" version="3.2.3" targetFramework="net461" />
   <package id="ncrontab" version="3.3.0" targetFramework="net461" />
-  <package id="NETStandard.Library" version="1.6.1" targetFramework="net461" />
-  <package id="Newtonsoft.Json" version="10.0.2" targetFramework="net461" />
+  <package id="NETStandard.Library" version="2.0.3" targetFramework="net461" />
+  <package id="Newtonsoft.Json" version="12.0.1" targetFramework="net461" />
   <package id="System.AppContext" version="4.3.0" targetFramework="net461" />
   <package id="System.Collections" version="4.3.0" targetFramework="net461" />
   <package id="System.Collections.Concurrent" version="4.3.0" targetFramework="net461" />
   <package id="System.ComponentModel.EventBasedAsync" version="4.0.11" targetFramework="net461" />
-  <package id="System.Console" version="4.3.0" targetFramework="net461" />
+  <package id="System.Console" version="4.3.1" targetFramework="net461" />
   <package id="System.Diagnostics.Debug" version="4.3.0" targetFramework="net461" />
-  <package id="System.Diagnostics.DiagnosticSource" version="4.3.0" targetFramework="net461" />
+  <package id="System.Diagnostics.DiagnosticSource" version="4.5.1" targetFramework="net461" />
   <package id="System.Diagnostics.Tools" version="4.3.0" targetFramework="net461" />
   <package id="System.Diagnostics.Tracing" version="4.3.0" targetFramework="net461" />
-  <package id="System.Dynamic.Runtime" version="4.0.0" targetFramework="net461" />
+  <package id="System.Dynamic.Runtime" version="4.3.0" targetFramework="net461" />
   <package id="System.Globalization" version="4.3.0" targetFramework="net461" />
   <package id="System.Globalization.Calendars" version="4.3.0" targetFramework="net461" />
   <package id="System.IO" version="4.3.0" targetFramework="net461" />
@@ -34,10 +34,10 @@
   <package id="System.IO.FileSystem.Primitives" version="4.3.0" targetFramework="net461" />
   <package id="System.Linq" version="4.3.0" targetFramework="net461" />
   <package id="System.Linq.Expressions" version="4.3.0" targetFramework="net461" />
-  <package id="System.Linq.Queryable" version="4.0.0" targetFramework="net461" />
-  <package id="System.Net.Http" version="4.3.0" targetFramework="net461" />
+  <package id="System.Linq.Queryable" version="4.3.0" targetFramework="net461" />
+  <package id="System.Net.Http" version="4.3.4" targetFramework="net461" />
   <package id="System.Net.Primitives" version="4.3.0" targetFramework="net461" />
-  <package id="System.Net.Requests" version="4.0.11" targetFramework="net461" />
+  <package id="System.Net.Requests" version="4.3.0" targetFramework="net461" />
   <package id="System.Net.Sockets" version="4.3.0" targetFramework="net461" />
   <package id="System.ObjectModel" version="4.3.0" targetFramework="net461" />
   <package id="System.Reflection" version="4.3.0" targetFramework="net461" />
@@ -50,10 +50,10 @@
   <package id="System.Runtime.InteropServices" version="4.3.0" targetFramework="net461" />
   <package id="System.Runtime.InteropServices.RuntimeInformation" version="4.3.0" targetFramework="net461" />
   <package id="System.Runtime.Numerics" version="4.3.0" targetFramework="net461" />
-  <package id="System.Security.Cryptography.Algorithms" version="4.3.0" targetFramework="net461" />
+  <package id="System.Security.Cryptography.Algorithms" version="4.3.1" targetFramework="net461" />
   <package id="System.Security.Cryptography.Encoding" version="4.3.0" targetFramework="net461" />
   <package id="System.Security.Cryptography.Primitives" version="4.3.0" targetFramework="net461" />
-  <package id="System.Security.Cryptography.X509Certificates" version="4.3.0" targetFramework="net461" />
+  <package id="System.Security.Cryptography.X509Certificates" version="4.3.2" targetFramework="net461" />
   <package id="System.Spatial" version="5.8.4" targetFramework="net461" />
   <package id="System.Text.Encoding" version="4.3.0" targetFramework="net461" />
   <package id="System.Text.Encoding.Extensions" version="4.3.0" targetFramework="net461" />
@@ -61,7 +61,7 @@
   <package id="System.Threading" version="4.3.0" targetFramework="net461" />
   <package id="System.Threading.Tasks" version="4.3.0" targetFramework="net461" />
   <package id="System.Threading.Timer" version="4.3.0" targetFramework="net461" />
-  <package id="System.Xml.ReaderWriter" version="4.3.0" targetFramework="net461" />
+  <package id="System.Xml.ReaderWriter" version="4.3.1" targetFramework="net461" />
   <package id="System.Xml.XDocument" version="4.3.0" targetFramework="net461" />
-  <package id="WindowsAzure.Storage" version="8.2.1" targetFramework="net461" />
+  <package id="WindowsAzure.Storage" version="9.3.3" targetFramework="net461" />
 </packages>
\ No newline at end of file
diff --git a/LetsEncrypt.WebAppOnly.nuspec b/LetsEncrypt.WebAppOnly.nuspec
index 715c87d..0fd60d7 100644
--- a/LetsEncrypt.WebAppOnly.nuspec
+++ b/LetsEncrypt.WebAppOnly.nuspec
@@ -3,7 +3,7 @@
   <metadata>
     <id>letsencrypt.webapponly</id>
     <title>Azure Let's Encrypt (No Web Jobs)</title>
-    <version>0.8.10</version>
+    <version>0.9.0</version>
     <authors>SJKP</authors>
     <licenseUrl>http://opensource.org/licenses/Apache-2.0</licenseUrl>
     <projectUrl>https://github.com/sjkp/letsencrypt-siteextension</projectUrl>
diff --git a/LetsEncrypt.nuspec b/LetsEncrypt.nuspec
index e8a04a8..52a9cf1 100644
--- a/LetsEncrypt.nuspec
+++ b/LetsEncrypt.nuspec
@@ -3,7 +3,7 @@
   <metadata>
     <id>letsencrypt</id>
     <title>Azure Let's Encrypt</title>
-    <version>0.8.10</version>
+    <version>0.9.0</version>
     <authors>SJKP</authors>
     <licenseUrl>http://opensource.org/licenses/Apache-2.0</licenseUrl>
     <projectUrl>https://github.com/sjkp/letsencrypt-siteextension</projectUrl>

From 622528c36ed5d15dabef791673b9026299659ede Mon Sep 17 00:00:00 2001
From: "Simon J.K. Pedersen" <mail@sjkp.dk>
Date: Sat, 12 Jan 2019 14:23:40 +0100
Subject: [PATCH 3/5] UI Fix. Fixes a wierd bug after package upgrade where
 Kudu.Services.Web is not found when opening extension in Kudu portal.

---
 .gitignore                                    |   1 +
 .../DesignTimeBuild/.dtbcache                 | Bin 1087106 -> 0 bytes
 .../Controllers/HomeController.cs             |   6 +++---
 .../LetsEncrypt.SiteExtension.csproj          |   4 ++++
 dlls/Kudu.Services.Web.dll                    | Bin 0 -> 56320 bytes
 5 files changed, 8 insertions(+), 3 deletions(-)
 delete mode 100644 .vs/LetsEncrypt-SiteExtension/DesignTimeBuild/.dtbcache
 create mode 100644 dlls/Kudu.Services.Web.dll

diff --git a/.gitignore b/.gitignore
index 5148a6b..8a2c5ff 100644
--- a/.gitignore
+++ b/.gitignore
@@ -49,3 +49,4 @@ azuredeploy.parameters.serviceplan.local.json
 /Letsencrypt.Azure.Core.Test/unoeuro.json
 .vs/
 /LetsEncrypt.ResourceGroup/Templates/azuredeploy.acm.parameters.local.json
+*.pubxml
\ No newline at end of file
diff --git a/.vs/LetsEncrypt-SiteExtension/DesignTimeBuild/.dtbcache b/.vs/LetsEncrypt-SiteExtension/DesignTimeBuild/.dtbcache
deleted file mode 100644
index cca23c557ef622e45af4e95cd7aa716ff8524c9a..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 1087106
zcmeFaTaX>ec_wy9S(LbxNJ$iLk|+*2yh$Vv(2d(*XljYUWd=h40}e2QS*j(X(cJ)g
z(6>3=7z{?DRuUzxq?Kh^mRDZw#awTMyuO4Z{NS+tV28uuaCpNZ`@t`^L$7|&gCqQ4
zKR6tY@b~3^va|A1Raw_lbtY$`(WlR;Q<eGW|NZy;^G7C=$;#x+WI8#ApVN~kfAd!x
zTX^r~$@7!7$<4`ZvOjrqvNhS598C`K&JJGl)z)MW@69GpCkOcZYj|fHzqj!JJL>nI
zdS@S3txc}YzjN98&UErB-ao|sALBk7c>SV!+GE_Y&UdDhP2A%EBivV`l96*hAHjSs
z;j?>q(u2vbPcC2_PbbezE@FPK;qRO8n@q~C!7UVRejdMHz<svyoK4(e9V35;dtby;
z_b~Hye8Rck#H$(p-p218Jbhh#_5pnRih73><k&uncWf$OQFnNN&u5s;O#O8<`7EwG
zk8hrzoW)8#H#s#~#TC!t^*Yw?ocetZ>vtbloWYpx<K0#KY~t1Z`S<?%Gr#d|KJ!`J
zOVfU5@;2^ckAR=uSI?JK<|>hXT;m6r-EI8d#oxRaNH@83`Px<9JM?pe`H~```8+o{
zsYb_9Z(+0>82K6XnzQ5U(`t5Saoriba~|_OiB-IZD>pIYzURaFc7+WaPgC&dy9yUu
zKqYx=1`16<d9K1y1|QYFHwEPm6;~0}oKG3wfB8>8I0|fR01@O7$})2NIlSHkR_>{H
zD8J6&uk(2SG~Pdr-}gXEqJyY9eauUr0zZ@9JNRFu9+A8;d4zw-!y#;F9K86#wW}Y;
z_pgKFDI51e>wP@o2rGAEav7^<R`LQ?;b8I;xcZ0ivx3nRN%H!1=JlD(>$92H=Q6LK
zoBS*I?kb*ga(;*N$Dgj^J$+|V$Gl$6yf#l?1ucFUcRRxPA7j285wU2#XGXCKDw_A7
zQ?E&bFXB5P8f1C;I_SAKrzvF#W#<%9hO%=CnX#ju&Uf3Q(T`wME4cT{{9mDUGfJ7+
zSEJCEb0~D#)1IV;=$89R`chX?mu!Qx_VC%uipTa^qY^a~IY}tBNE&@2hem=VBMYaK
zTfp(7)+iu+qAj9!5LK5?XdPU~{IuLRv%Y{iuS0^+=9;xOcdkBHUN~TptN*dwnO{)|
zQ1%BfFl%w;hcSC?O;M{n3o5i}sZlyV!9Dx1?z7U~=)Kp$TWiq0v<cTTR{0wK7SDn<
z^q%7G8U7WmmhTVbKZX7PwfN6qzU1UH;B4aXNAW{@cN>;3CFz!W_tSWnqdb6Ta1FmV
z@YxQKCs*)3;@@0=yru2Fi#hN;+G85sT8sY}?sW@u`_|+t#vr<l-+rpD{18690_{d?
znlk(bo<VN@Hr~(kl=5f!)yXrH*YWMy@%_G`5PT9SmLFbm5zpJf2&g@_Cf`uBevH4V
zOLiu_;wC<m8Es(PTNvwYjP4O$?Wybe{hc`-pYtq)71&n4gz-=Df1S0e^Bvok6<H-V
z2w&4n((7_+zVaVbl&9ymh1t<_m9^*fr(pN!>sMeC>er{N`-tts6}+XW$Mt(~yn_7B
z`|%_6`8?M5aPoO&J--U-(v}gw$zCshi#%zsk$!%R&2}ndJ<>}u-<9!ZCCZo7ld|@$
zEnhb0oEx%pi+sT9wl6&oB1NN)cJ@=O%|3o_syXn}ONxs0>iMb03TH@MhrdhCy`}h>
z-zLX1dO=+w2>fw;Q|#|Ij<K#SDos0bw0;V$vI9JyQpu-Fu|yD#{4ky<65&;hV;`fr
zf`1u7Aacz!W$nI@nVFGA*-_AQi604{p8YndMs5_z#HZ8Fkn!2x&Q*2QE<PhxHjYQC
zy@cBsz3~#xD!HKf{-<zHUss1DVwOKYk8g2&#{YT^&*q9s426*v##`u-UBxU8@cbjC
zNAjW*<jh;R>ptY$n?aqkfzQY#w5JX{jYBG#NLQI>Zc8QOyK_#vxVuOnGjiJZ)HM=C
zaycPO8Pe0fOBo*j7QS%;qo+3Gii-z<Hz%YCrQr!Bmk#lKMqs|ikJM-KO&Jp@O@1?<
z(!Z1YKEXF<xbyRnu;-v}R-jAd)#~x9Gsmy&PwAPSgsjxhq*Rr=GQvUKy^R(7%JJtv
ztv)AS=vnh$M*H~c2+wDvOelPG{0&Og6B9GW)5o8DPJKf3ktVb}o(GS;3aM}rNclSW
z=`x~xuOTA&^<&Td6?}dfSKP$^tCR0y?EH_E<jS1DJ@m-PF&w{G5n8h7tLfLAP~+86
zHqK-dD?#3%lzD*B@E%{o2*|neltcABUTeqZp2wIOt9=dHM(hCESG*Guu?GIy!@U{1
zVBCmu%tSL7(bY6uSKnfk=^jQ-eYF93N#5joP-m`TZKqf<@eWVpZ&{-<+wFzS{TMOT
z_ai!V1bH8K6?;w3_qC4Z%SbbMhL+o!Li;H^`(*TNE@r;(j`^268uKPr;}B~h7AIx5
ztc7^#vFjkwm5Z6Xxa0rr-0{DcJO<5yf0j#)W{BGbF5URxdM4hx3yk=&G2wwJ&~IX6
znhWCifL9T<?ZxI?{`rpvMKQ|CY<?+A*BNNBC`!KSj4K-p<+!rZPnW{GJyKXaa%~+=
z!IiX+L}rR_xdur}eWW#jzSg#+Li~0Sn(ZO($Q+kD$A7cOIc`EX9RY3Bj#G?<dh-Y~
zqFq6Lxu>)h{bc$O;;~b25KE-NDZDP$g1nMfg{W{zJ^jY~={KFHU&wj7ORs;gM|y1q
zBh*>@(v48((@>&}v?j`EsG~q38q%{7Uq(k%%3|iRbp6)`Ojki+oZN4hdbXAJ9}bvC
zl<?wjg}8Qc6udGYRhV;a`u_Q#>HDVAuZ-j_3d=hG<;ui=W8rk8cgd*99{d`KAv}df
z*;jw<fMV4&$k`kX66PUB2Ha;~KYq4LtHtXNjZ^XB-v&NNGsd)Ob>!*bE_qI4R4QZa
z5yk3{e`n!5SVY$Y*k4aUVfrG>0(6VvB6{9*M&k14;$@(w<DsG$t&LqoR2bo5H4-C8
z4|<~Ct;`5sbVlIP?e8s||A=SiJed7rzRkp3y0Tn|SNDl7UH(OnbP-7=xgTZ#jRs)c
z*Ti!~(ut2jI&ESW^sP+hVhvsdZDsy@9^6*$b>#W_ZVW!F8M4tKj_JbO@8OvIY>G?S
z|0GcsbTX^mgtD$T=+e4RbQf_krQienuce?Mn>8d|@hEd*=7}y{es>@|$c&@p&lxXZ
zJrOC>9aWek)6a8h(x;auQ8z|Yvht02Lcs-V9ca~=`qp)PcBHa;as}-X9cvM*gfg!g
z<s|0DQDr5ZotL+Bdlw2u<<j?$d*r#Q^cB4!x}!YHK_1Q18`WuO`?9|^Fe(||YNk))
z=wj32AM{8I$#orh(aoufn=u>r5VC{6>6Mzw#~As22Hy!q<!%GzyrZwhF5+3c_@DAX
zd=HKF*Kj@KHDWFD`!3G@WDr!7N&>OXj6K&E?TG(!O8x7Dpp@pke)&r(@3{v@qWPDV
ze<pc;m!tahEj2X`=Ht>?hA9xi+LT3bl%|m$OKfao)+2v)nTL8E(&iAdh!Kz%@UO%}
zTrTO;)@Ck+(J%g{*Tviut2e4f45{lwk~ur$TadVqm9NSA3rc1_nZL77W`+Gj&}r9`
z$9-n%^3kI|X<y3Z)9N<pRIJ}vapm&SKk5-RnkxNEn>ti`B_jc|UbAgAb!TUDEoDWG
zRdiorFT2w~Feq{780)Ay2J`t!f8y6vx?J`TJL9r(Qz@J)u{rEXXSDNce!A3acOb9#
z5Gy3F#>7Oqul0nAIJR3|$k?x2>(th~cOikPC1=WKxaUdRha;Sm(1tk6?t*a<-qp<b
z^e1>Wb(h(@YO=htcan84<<S^&9_8PS;63y5wtFL7vusX=F(g(=(S~9)ODYfC^?Nk>
zS+WNL_gU*Ktu0009sT^cer6AXuKN-jnU&G3a-t{BHFj5be`#lLukzESo#)kggo;v_
zwe*Zw+jC!D4!@x!*Ncj`iEip|clN)wv@5T7I!WJ_ZDc8!i*@J!8%r^N?nk1Q5-FDT
zx-Q^d?i(Wi>*%Z>ja_ysPzMN&7!}fVaCsqr&qVvX1jITNn^&@E^(wM$i^a?{#0$E2
zQ5;W<F)mnz8nzZ#_O-vP;()YqBsNM}cmbZlQ%DD2D|~OsrDBX9{hLcp1HEsaGGlKZ
zC8n1%^K|4}OF;>}Yu4S>V9SB=`*X6M^!Y>9ZddV!E~7)fRHwh@YVYy;YFa;wZ_3O%
zk?GEJ{3~eYX=88vUMTA-nd76y&Bz};E?V1yN$JwUI#AyNe>{2_n>TmvV32;DE+>y)
z!{*P~=Yw0|3F;p1T6Zb&cb9hc^=^UJm1Uv#^<4!*Sf}99VT?H&TRY`(1T9W>kzi)h
zNB{U^P<ivd1!*UJD%fF$uYB(BvnHb(zdLXC%=B_k>mAIUaR*x0h7Q;8p5$RUD&Ov2
zUY)=SXWFMe62>2o%;yEo|3#W$c_pCcd)Zy!O8$+}Ye3tU9lsxWNy+OckWt(d=dRb=
zqhBv~elanjt~xjM=RIFi5kK~+lx&c@Z^Gu{@k?X9vyxSz%mJA!2)#1C%bdw3UdbM1
zd;a5(d=<^#p6joV9??Z}jj0$Lf5zkL<du1}f!Qub$>?q94&(NEk3Ys=JX`H~+WwhM
zgYo-a#WeU1*8TupsHAs_tHbY)9`Q1JdrikLvt?F#)r$Cc{Q9|QuC&mk*FavpX#6^>
zX#O!4>G)&jMHINB>^13L>&HjN?}NzPuR=#N8baHYd3nanSPLz?g<Prq&XP#&>zFGu
zT<jamzKN`V;q0~C^J7ChOEUADN-NVgbJuoR<k@TRsj@vfH?hKIwaMSKP3eWY6c~SY
zlTqEh$y?sc*v)!u`!a0X!_17{l<Qyk+&q3u%*>eG^eK_0l6=Qo-SPX5X0G2xo|5^9
zr<iZJX1c3r?IE5i84*eb?$^^AVhz14rt{t_Zm(K?BfG~&?^m(8H!Fc$sq<j;*t`K+
z`TG~fuQBz!Uc&6y_rhJd@k>>AhQy&@Ae<Fko;9V_$H;`crsKEk^_t$m3@OE4#gEwd
z?2i<V$BjQ0WoAuT^hDYAa<+@^Ns*1d+fke4;c8m<p^Vx1Ed;&3F>#55rO~Lw?pw+t
zqEz;++~t|+EzDH*L$X%osVA40N7r(uGt|5@2g)<E_Z4P+`)T|&#Tv7$Ig#_9LOeWv
zPfgGB4%YJ?GP^ri(eR$$@yE>VxxR#X@|-<#H0zArz0R(6wLJ1l)|%RAAMprZUX4FC
zZm+b9;UX?y9&1BZ*`53HS&xsEry#queJf)bbgw%@)`aV>*#3;iuY2P<VU0iLPYanR
zaLH<F@0NA2hltqF=VJyhUrvv|Q%slwwu~Bo?O=G8mm#<4FSvHbZ;svrESv9DoH=Z|
zYvji^#=pC#j1r7lJ^;oU_1QXp?Q+EU?Xf&Mgw8Fq(LesW{_xzHRblpp6}0^QURm>)
z7})qLEW>NAI|szn)Q;b7B@Gz6*Lyc<sq#JTbGsbB9IGCharQmtZuaoQe#U-f)^e_T
zb{C(!>i<?p){dPKchBC~0AHH3=(&R-8`mVKvNyjz6~1{6-Q6w1cvJTIc3hRuXC;t+
zzDu*;>4;|i?WU<tk8DTfi=MU||E@8YBDNJY{>-jBzZf0344xn52s78rW=|(CDe2F(
z4OKCYKf>;=GV9M}_x3&_8ordXxxBmH=FC^gnHc+sxX|a`!wN9I!a7>6Ox=^c?OLg-
z^S7_p)%tSoc3!>1A1<BrFXIyF<jr%+pFk(tG;?+1_~ZBP{CL(|p3S@r_M$BzZ@}`R
ztjvq&FGDQEp0P+p(`_|B9=3dTU(wvJDA~+vcvdiyBm7*)`1`NAXfL8jUdQ<N7GJzq
zB1rL4;tfblzZ!J>)-$nS*Htld&)Qd>d*N#S@uMI#U+yM2fc)cmuiQr=XO{Dfg&n*@
z>y<gAhe3*rKcZHJA{W6Eex3XH`x958!DaY0^l3K16`@+%_ZCKCG{yM6sVe;O26h6S
z#M$W=l|4ld^FDs$wBb-hV*J(RK6UJv!}ud>{tSihDGAucf_v{=T{(U)%Ad7)XG`q_
zr)CVv!14RcoT;h8&YoH!HGl4Ek3S}2&zSt3-xGBFHQBeZzO0OxPRjK8_-o*b<{FbD
z7=O&%P=ML-2Z(>s$C+X6WA=*gjy@WE8{P|J@QiVWCHD9`cZBBn%KYpIuD0&s;Y#jh
zz_-7;w=v_x$s^^%>z?+kgJpc*rNH>37@@V#Qoy!H#~;xwn{SL%Uw*zX>x(gdD>cjq
zMjE(CUrs5Xr2_X$a-W$y^JSHBQuW|hxs87(o%H0E3N7x$F{h*2(tP~Uh5VT^FU`o2
z&(GuEm-4!r7rXh~hCP0OIr^tBjKB9yI9f1%X{6_+d*8gK5Xzm+q22l8uN}1OV_fYr
zem)K7H^(2F*7M>npylj*r)QY0`!A{nAOFcMdd3p5jH&7wf4ox9`HjgXWfMpRSLj^$
z@#_{dSJqsV&3AeDS?29>HS-Xzz8QZ+(yTGP^drP4-8qhbS7K<6<@o)rj-t)>Zk>1L
z^-PR^Yx>K3tN~_45GzC}Uu0*_NvzKbUNee(AHSux+wE?-f~!v9Q@dh2Oote3_bIno
z|H%2!6Cp)(U$`k=%O?*(8D6mlN}Rz=&*A4J{-V`;uaG8Z@Tq$jm*2<OUD&pY_37R2
z%zjjHG`j%FS({(M-;>FUFI>C&6V4~kgZiwu;%;5(?y9f+h`N%M6!a765p!4f-sE|#
z#L8rqm#I6-vv|fSW8JLY(w}??FHYcZR(dgN!V`D4CSN=L{2TMn*#+@=Tz7BsCRWXy
z5UP1z?`M#Vg6`*f4fkUADq@EFAf%#<HDvDsOGJ&Fv?{Ndk0K|zl=^cuhMCGw@e1Da
z`N`){OY%I%A~{*9QQMt7lj%nO%;d|+WIZ=IJNX4%cO7%H_hLLV$?olXM&<4wt6b1N
zu3rTguYjA^R4$Z!Is=uM+vf;Y@jl1PZjsO6l|CJhDCatnnj84!0%p#2VV7Kf)4q01
z?J3~e@##V<8R;Ib-c|C37A&dD(}hV#a?IxO_gIZ+Q|5EWYxiS{ZXC@FYc5n{es}Bm
ziVv$Ro~SE0PR?wG|H*BJ2jo8Ffcu~(_tjD!@L&FCbF9#be8d@WHAx4<+n>NU%<5ml
zRflTkrmDbj0Z-!9Pxv-o$a=pvALSudfN0>TxAFP{#&iJAB<<Jnw}}$TN^#fY8mM&x
z>v>!C-6Ge?x4sHa;LP>OJKsQtOn8{Q$`g6m*O*UxioaPEPCg)RIbW_pcC3FJW9<tm
zHuu}(xYXk~Tq<3~%F21MS;~A2BRYXx8#&VDx32)rH?aG31$aFP`NjV(UA}hpuRrq}
z-+uBpf3@)i{7o!yPxFq-VA4inhdkNSOqs;<2m~QggT$-(KG&6U@iu-FMZDkpa6j_y
zr|`QfSNs&d^F#PqfnMi*<n`&y>oe*#=X(`Tr+hd7M{cQc(|UKu`ZV+1vzgcDCPZI&
zeDc)iGFP8Jeog7ck^MM+{HL+g-r?k5;xk_=+R{0@Yh2qtQ{0ibokG^`00UwXod7jx
z4avV>58gSPfx8ImkXyJ$)CwX!<s@~z^WcQSW6`|@*Hh4%bE6iy1v&W${Fb##!sD`K
z0x3XQBG06acXGn--OAisKji|RL7hiAFjLQ(&PST}jVo$~iVHFC*?ffhTU^ssj97Ek
zD*iIB4Y#eLySjP*%!C?VODq|&+{y6LDs<V8;Hujguhs{0jc^dLa1x(~c`aW;o&air
zC{TbaMs&(PN3(Lm6CBm*qzmMH0HeNwS@Cq*tvMFWys5)ArB<N7NQ3N%1Vz=5^Gmo#
zm06#_*r+c~fI_0>siP>VxE7o9l`Es9wu`Fph)<hU$W~2{RmfUeo5gdH=bckLX3Jd7
zKWA}|V(rX*uaD<e$QtmHmE6?iq>Il(Zz_J;!{^x*Bd2~5Ppr<Vy84(BLePCmp?mRM
z$#o)rWju9w@-FUBypEKFl%Rsdud6P)S+8O`c>(C<?w<|VIXr8Va+KDo$oA*(U4H*G
zq+uQ<V>vzh{ciZ0IL|(%oQuDzzCoWN&&Dj{;tkM>6eWMrgV5_qjy;FFSLaw}?(415
z;(3}niTq;trVd|U#a-%CA(kKWIG_Hh_FMNc7s;{<FU4u;atZwLN;53yWBTmPq_G=s
zm_m0M$-vyZmJF24*%c<IPx1WfoNh<QUVt3BkN?FhJE6{!IgPuX9DoJE73ElDJau^5
z=-;+@h>@To3YK%tW!zyyMN}B&(7XN^-O%wR$~4A7kCe7%#P1M)Kf-VBoo8Rgqq!Zn
z1AY+=&%M+;xQgq@>$9f?(SJ5;ED=?qDY@tuYH^WxCfPpA+ApE*TD(jo?+`KaQ-^o1
zl&o|XD_@^`YI*dCm5x4DyOD%{3v=_IRnEI7@V#adZxcLy2>z#?F8-`YHd!a~Bk5jU
zs&(aGcfrX&j2W`(iXOdiW|<dd{QWwd{Qu#3_2{GHK)S<UHcBzWDpie3$o-D+%`8&f
z4hbf1c|zIgwAEKsY(U}%w;=zrUfmQCA9{U^XwZhR;|aF3rsdA(>&hWPv3LXFn1vb5
z6jU_5{i;N1%J5I_KaFwMTO~oVy&B!fjW5>bq|g}4<;^ububI5r1!vgVh$+_4WJTD0
zgb`B4?ahjcl$t_onz);mQ$|v~iqZ8Ysp=!K3kgQ;S~U{XOon|Ird$XeO(jYj_hcNC
z8H$H<jYf_$u~ifQScN~|wFC=GJCS<D=Z@Ku(7q3;Of1-a?2EeH+II_4xm>Q+=lO2s
zZIy9#BZpUO%i$_xFPG16EJ!}jz=_$OyICntyQEldUu;co3pMN7GsBR~w0*RNRmZyg
z&vSS&hBihvp06nzt3_f%awuk;*<77%lQxkwRiE6AEP1xU`eo@-E-e^gY~PxjDOo@a
zX1z*!SF9hCJapFPTeEx$dYq?f$%E>eeDQdv-NtCS$y~0WSB#00mFKcq^%6pno7uey
zYk@Y9u4B`AAoJwd?5pc7yLq*r#)#t9qMSp|<6g};bPwFfN-WnymAs_(P$g#}v>*pE
zu2S8Tux+#=&vqD`cY3aAPR^qq)j03J!16WcystaaTh>Il=K_*f%~;)U@bo77i>&hF
zI@8)e#LQUzAr*%8zU|-j7M`FZFLmxIJNwuph+T4u?(iaLz)C8qY<$=9Uh*lC|E;O&
zZNdB;qkVesWYGw&PF^V-AwOq?Ln<({oL_WTjR{t7N!2CS>usemioPeB*-)SB>%Nzb
z1+gL}pH6msEB?yrRJ5Pub|bIyWY(2Qtxc$}chQ|#U+MOAG?~5f9*1q+`!Z(0dQRPQ
zq^<kDf~pGg^(}DrPT{&&p+r><t#a?Oo^VB!xsADoI~5gw%X9%Kmp<7Y^l~+;%b5FQ
z2NC-@u3g92oyIgP(M;Z}?)RvNi(<s_Bj9-Au@KK!MdLdGNyk`CUIi4Rm#6S)mQwzV
zyYVzw0ag6matn?1s?994!wiq;Qv#-l-Lcx3mCHts(=uZ{bal%tWT%M!IKtiHav$+g
z#bH=?x(a8tmUXw16W_h6a@yj_ac_6F7haZ*)X*0o@3kzTl}04!Q&gE1k|+oNWwar*
zMnz9!ZSf=AkrvGfwF8G(VoW!5r<m0qWAr1QEBlR%6h+{>k!Guq40TsN8#gJYXt_kZ
z(^w+z0xNEgjM$-f6B|`wge5-*VrukO)m{KrPF0txVcj9xFg~|23~6b!3|F{n6y|*`
z`NARom0fkGRGg@)Rob36-L>!9jlY@irB2oUxhg&=YZ}-y!nR|>7^u2V+Ja<+fjfI7
zW>xeg(PzmcW_?|Ak66}={;BETZ0}|*S_|J_s&@4hu@uHYW-3OjJ5yG@N1lgfbErR7
z`gX=Uto~H<T~;eIdS~Aw-aoUyXOCMWq^fpl=6}UJts86R=b?q_Q=r^Rx!BlBISl%3
zdrEd`?N5oRGY+N#!}aODiLo@bJ}3|CS41p>4f01G$AoB7gfTl>S$t&^YR6#m45Wz7
z|DoAXc5!e0RxrNZ4KhC)Md#v?mE)6Dw{6B%W<h+=gD3SQrf6peT$HY~fKu6CD*Ij;
z&1NK1_>8{$koGvpc(_hgeSy~l{E^Ll7vZXmJ~7BS>mes}*KV*uIclRe^z3r(=bo`P
zxqls8egNx^J9RbR34hBvGqT8iAl0={$YW!Vs-xqmwVQdrfV>_(dFGz8olIrF26ND-
z2DD#8##09e+lU~R^FkK=Zf3W-_u7pYSzYrKVcgcT&2x%Z=R95A4{}FRd?#jHvvQ1A
z`?j4u^KQ@)6Uk&wrM;(jBQ5i)_v^`za;f^Q#!_`R5Sh&GjGIEr+I2?k+!T^_QoS$I
zh0>SN+v?KSmM`V<Vj1lGzW}8|oGmq1qycR`#<%R1V3x$xnuW6@?mZY&&^<HweQHb5
zn69k0WrHmRs;*Lul|y{T+_xL#eiUmE^Yn5|KGztNhn62s8^^Doa&7r~dra*aySjE6
zu=QV$99wNwhve6L6!Sm~a(&NUqV!#K7~sBIf5hdeY`(A7MkOomTnwJZ*qUm*{QO2%
z0xttHe<7zH!PQv(YCTs5x>_-ReX8f5;x(*&WtFPKMaYlxD$*FK;@bm7wC_UJu;-mG
zYr?ZDmq5?sZf!<DD1o>SOX_vA(#e%ethsM0ms}1E^}ky-3H2{Pw=vu0Ro5&AmA<Zz
zc}h1n`_Fjzj2TNgQrY#iO{C7OD9bb|HqX9%ZDY1L8nkTa{oo+&i%{e-OL^Dc2wgu+
zOT)!pJh!=WhaN8@9uni12!$IPsP?pO<j-eH<xepU$|Vu|9(O5;wyj9>A!u&8SF=Z!
zsiCW1scl<ORoBhFp7bn^P%ndLbkobTgrq=qsZnOLg=9~*2f(8CXceQVhz{90DDt|y
zM{nk6=GeV1{qnRc9~phmc4ulwLdGDi8#%h#P>#msvC5@w^E&UW7bd3}WOv9HOI!DP
zUhT^|S0=ww%T5e=H6iIBXIgL^p^oPHd2ePVge!+3kIi_<1y$=m{yDxAPqA>Nuo*!(
zPty(c%krv{JqqVl+Z$0gQiC1d<5z`Qw5ohuE-_xi7@FB<yMg@cma3w%Yqz*dB!33^
zIa$MZwBTOAc&mGrZBSV<mCGX&{$c0bm!()cG9!D(ekDT}(b;EPT7hzuzcdJx%MLF=
z5V6cCRhL*U(__n^+5ahMXxsAF;RElg_yhN|(*Na2a4Xn@YF}qt%VH<-TqcRe&v3Qv
zOHa{>pZi+ZVN3B8g6y5+<!jlRw2$i06T8vp&tNT@QKB5ltO)H(UmqZr;_gOsG2GtX
z_v+S~?(`D+W>!-y1J3`t5^v?(idni;(aD<DMAJTYhHcOL$TOmH6MMDfOg;8A<z6de
zvsHOU{-{mHvTUu}mmhUU)s2i{q#<6$)E#@d9BLkE*lopc(AndV$KlE<)|z%{Z`8%e
zGRUX@wGv+zQ7R@TQ$?!iXJxG)-IeSfcu-=h^(2<QcU7s_zLcsml5QjuPi%^pOjX8P
zE{)1hBrQ8FDqb4h2hXs}HLW986COC4(3L<hb}WI4<h?lq(C~T}lE>}E$umTe4w`rT
zvCse0y+*|+<T_W4Z2s?+xGtYQi?mtT@jZ0no>?*bthjiT<<ECIF?Too(7s%X89_Jl
z=*ul}hM`os9J-EY_T`;z6hu?aS&e3G8F67YzDo<pKixLljceI<6aGIr99D0yRF*nb
zB|_G=VV7CIPb~ek*zU7WVH5Ezb#{DmGm{ec;T|c<BsZoM?ne_Zuj2WqOj1#!aMy8L
z&+bM>eIbW~LSC+{pM9!!7G34i>E#}!)26bJm;vG|cCmS?qLTb;2X#4IAG6brJC3T$
zr6ye8h2=wQCjP`5UTvzA>exPii93Y&d$Icu?6`7KZA&#d6;ngvSKOCBqZ?#@3Tso9
zKg$u!n%ZXe#i6w`Z!<?z5T(+m+^yDN7lh_Wjn^=X$0^S)CQh}^tAo@Ze!t5Nw2S>c
zk?o<y)yz8LQLTG>SfAT`t*@D?emC@r*%i|5=q~c!9n~w~vNv%(drp|Htyvp`y;JSy
zwN*(-`$l(qk+qF^5@#vjoKCLdOhKNs%KlR9oWZ`btZ>MVKklB4AGw*9B3=m5pt!qF
z+1-XvB^k1MipE`58)@^+B}l$lySA>bDSARTdgc=WJySG_avjtB#A;W^*yFJ)Rz<&P
z*-9VvD=lakEt9g`vv^I?+~WI}-fH))M<{v5C@Vr75rcBSbCteRH+cRrZ-w>q%8|=%
zXl+`DJJ3n&F6-KWU03WD<pyH1L&HG2iM-XZ82>reGUVHZbY$LcDl>vQ`La+>D~9@I
zkr|HaWTnVV9e(Hroz*IK>x{b`<$YG{7UjBPD|Wlid1)$Vtv&7Sgz~$~ARTrqNr$Qw
z>JGt0Yt#*5t7U;=C{>QoKC?g?p;?>z0U`@LsZDdgn}z-wxTk3hC$GwM80a#!sdaSk
zeb6V%scsIWS*@&n=R7)=*``{H=HIOwJbl=sO?C$5*x)&;ZQ7{2@JDpDv)HLp?MzSd
zN(+2$N3)x({4yZpk+=Ho(Wf5AH+z0J82M7mR4PZ+wU$w3$7p2dR(5ZIyU%{Ab|LG%
z0WJ=2*1}=P`zbnmtI0`Ui^nFj3_NvgMg4oe*7<0UQD!B%zgy1!>M0`C+pq`p*}_uo
z#HicJKzu#hQCH3<WOUlk9GJ=&iL>#3p?H1#{qp1BQXv-hW4q#tGCP=KI-TRmwl^kv
z_jcD*Ew$d8)aYU-UY=jy-YS;MaQ5hLW*IRr<(|>D?VOEBTS;m#DAgI^WB!V#k@Ivm
zb2cI~!_4HFvk})U`9%BbLM^#&Tdc1BmR)D@(q{3JTSxUp`ql9_{!`G=rb<~4N0F0n
ztDGbIDqm8s*1<n=nt<-(pHEGZ*jlREPq)`3n?v!lnenpS)SK#T`YL26d93&(TE+^C
z#uuldw9FJ7t{hh+uR>$#>f}{$xOshg!j-k_c~-HP(p+(N@;PtiY}&<*tz0%RhSp3r
z99nfBu6-x=To`qxmei~p(O)mFSAQkTY=hxQ0zp+BN$~Fn_-PpVwtPvFmwh0&2qj`r
z?pJPAK~jh}x<NeSiS6=mIr^K&6YHb@AW)ei{++BXB?0@wHjO9d)#>G*@i`p4({DRj
z%VYZwK)H~gJN63B{8fvQ1%8LtIPT~M@jvS!K5jJSxc(;Y+@@Bi&AyHfaeJ@=*<p>|
z0PT8xu9NI_bhG*Gb>S%Tmabt;5AeU<Zz<A)@q%IC*o>!+-u`cE@<@?wt#g=u+@<JS
zWu8NR2XgzaA*obveY=XH*c{aj_MgGJHlswj6zHa-N0Hyp?4ZG-?8PAe%em`qoB<KX
zyTd>}?bP}joc(t~95NOS9=B34THCka^Y7gaTK&@w@<&jP%eGHDcree(`|{k?$n`p>
zhq$mvV&8@o;HmEH>2zY=BWgJMShBbrPaS=H5Bn{u(!<s#=3FsmG^*{-w*ABQDs;JG
z``{w3myue<F}e6FxwC<1-wH>_PKGK^;(iD@$#jUPKH6)-XvPL|mdtDMykX|`nPcG|
zjN&<mzB$7k4sai8RYqQ=3&eDC0rz}>cjYM$TfO&1jPsz752}px4dDOe<UFXroh<Ym
zSXabuPUMGTikS0xSR4KTR3#;6g}Z@7-@2SzZ9m5wpyv)&j!#{mccZ#9r!{9`bADB6
zkS86xvSzc->qa}W*MAc#lxxi9z5aI<*HM0OkHLL#-xTl24q|d8v6{_b5p!CHtz~o=
zqf%Y&DduYVl6V>H*}u%;lCjvc`LUVMipAKqe*UTa8QmZ_eowLC&vMlEwWpX^70kHy
z?i4)NG=6Mn3$n6*8BqDXk)bjMSALY&Uc+uM^bt_fwgv5{mg9x-kv5~YGwTEo7aM0=
zz(&Xt3|qU)fRzs+L2s{cbq_2*ZjhBMuKijTd!?m1#=Vn1|46=-U0t@}g)pK~L>K@2
zdEQox+&G12+3Q<;|8C@nzwf$u6y<W|Uu{{g9D>_yAD8uB+Q)U}OdHi4Aqv#>jh8_Z
z{c=tes;Vt*b9;4Zwybi=*4$Oj6n4MaUgYWqv^n>rFy_PTYgM_JhnLHUt!==5W{%fC
z1<dA<DmV;P&J>N=M0<)yWLq`tzAF7u-Ue-06~}(zj4kb|zg$Um5%kN8sU1M$u>Yz(
z%C4UG3ZBM@=q-%5x|YkIMR8;>Mi2U(3977nC^p%Rrt~YOnvSzvm$qFobqF4Cb!pz(
z(i(E3zOJ_YW=B?i-kAJo@iOSw_jRIQW3=UcC4r<`-gJBlN43Xl^}9OqB}ni+=pV}7
zV!h^mv%Yq1Dk*FoQD5s6>$>{)?MnOFBdV5HsX}vKuEc1rI1jE^mUW}6J`1^Q)2=!-
z%C!^sCAS$ts-m4}lOA{-eW)*+MqsN@s!G0b88p@Z2&M?--um_g^D-BgAk(GaXOYCL
z7ZuC@7PIcOmS|sZ;?=A~uas$Ker`?*%Hp_aR{7s5+S!nFz4&hJ>3a80U3t<W&!>n#
zs>rpA;AHoN?kpe5elXjU$oF-9?dnFHtBkEH8>Sl%c^H<_%*xFaMKNp+ivJ$9?v|=^
zcnSX=K{waGQx$ILX4R_b^%zT$yX))Yr))Ic*pSR-cQ@v8>+;qDt;=`jbz~dh=};Y+
z8waUZ>1tEgL?o-$pDlxBx$kkCtw(KX(iY`h>@qSv!<w`9@!)vZXOpLOgH6`JH5pYo
z`kL3k9a^z*#>iQfJ5}^G)s=krK)sjkweI4JeJz^$b;Z$xWx&u|9#>Ss(8D?B>&y)M
zu&=|Dc~s)f6w}p37_%i3f1{tYsW9fpQT%&$gQK7HDCR%894oACX)_LTgwyv#3hA|Q
z@zBQU6;<kvmjNB0MwH!_nbkAUi-<d<Xo23>=6a2`bX(-U4`aJk@lNx<RedhzURA9}
zm#V%5tgi{O->g2TDiW%mo+*1mH(KYDp4KTFN4XAa`?QO9=DSj~9-<%g1V7xnz}M|)
zr2JSiIfwZ<T8y_~Cp>}&y`pwToWnaOJK1et<-}L^In0iSD^&H&SK8Pi3Q#X`uLys$
z&V+lh9^kiqvSR3)nr42dJ^jf`xF@M<Q&ae>t!`4RDGZHHvIPFh_QBn|s*cItk;C(j
z$Y11W;j}}=Y1~Q9eVf8*+=ElEdO1Xcn6({-wZ)zE>;-qK*3Q*m$>D*R`N!-{<8GD^
zeP72qA0pbxe9SGZ>|?Ab_kc>r;}EJSUmoHbR&aIElQ9nsd6XzeL-PvT5E?e-Qis2@
zQpY{x@|#%M>b`hrt+Y(4Dy<fek2a+L|AG4c5LH6Em&?vfZK4_S&aTVKz^XgPL-VS;
z+A-3AdvK~fljz&U|LpsycL>W~@z)?Vwjn)e>9DKl;jvr@_o*G)yhO(x9(UWNM<V@-
zSg|S+Za6c^m)H4p)oaI!wZ+cpXl^+?1UHEV(S-(iCP$a%Q%HZJt-W%c(!7>uSK-LE
zurz&G>CC$6`=HZIX<Ge>rkrncooP+ah}}u9p*O>R28`}!dxv+SQL1<o?9eJFVbtxw
z_tGzhwTV0T?3wPGJ8pt9ly^MaI!l$XlyL9pYH!w5nz>MOT!t@4TPz#*E$-wVlI8Am
z{Z({h0JLPpf8~1XlSV@KzNl<KMx+l)BubZ~$jZVOKrNm<%aiMiWOkS1xr68L!Tu-Z
zLUj!NjLeSN%BmB~(xXLkN_|ks9>)u?9PZ<Pdgo;pLR)KOkAO7rPhJ*3hkI<;6^7hT
zIxS+Q^2T>{Zg){0+`|mYtdf4IcSCWOISsi#1jeoIEl4Qt;V?a}w;&&ew7&ggk(|a;
zT__WT-_04^)b@M$e_!bzTJ*eXafr<yr<n!iz8>kKRyKc}x<~(5=z3X2GbjZ`rxGt0
zzyUnXxi9VNV>_R|L(#N`A490Rt@brajCyY#FQQF9TbL}$r|4oN(jKgXZFt_)!?I_z
z++XcZ*HPxtURa#A72m7>wb1fPEF;Ez7PSs$B#WRzxTiKzPT8nWT3L){EU&9rgdWTv
zl~2oCpd*paiqRpBRi6a=x{}SbEV$m>$;epDkVZ<qx3B2OO28qFOkx)s$U*D#0EV^3
zjP}tF&UTG7Bjt&Cj7`!qUX*^$Lz3z5Hl+17v>Pg_^$4Yh#$sqkjqwD$#q7dx;zO5|
zCNtw&gr=ouu?{;!Vh3)OTK^-ewsUb2+*CBea6WWcRP28=vfESpXtb?O{d{=u=pxp&
zc$D7(LJn{;9kZ>A(Wu4aThyv*ir7&DO15p~X)n@x6N-gLIF!gm(HQS2Uwi`<KZ~-3
zibl66j=MUK4oIK$O_i-<?o8?q7biKcW0mNyvxmlYjD~qU#_u%$Eyhof6}+jWS9yI%
zH!&R<!)vfKc0m`~8>|rB1eFZM=(kAz)6}-b<#g-jR&9wTW9*-&>GAAM-hx$1+u=ab
zz-Y(C@QfMLO{^7>CAm9x{$C`8zKy5_CE-(yXmQy%L!JI<aRc*bhE(rcU&MO2V;F+Z
zuE#{VOABq0bh&{sup8y8_>nmFW2~9PvKBio^3D^bp&lJa)mY)Q*oePgJL)L$&liWQ
zp;(2QCgh>Fl+<HXY%$tEkHznFvAA{OSZ44q7`50!z0bbloyF9S82T_G%#%?Ty;65D
zhI`nNvjeIuuBJxQMMm=yMxsv)VkE$=23n+Klo3iy{~cHtiysSPxmjKs)>^uwTbvwN
z#FOn_)6)sFRqRSi&u>u@+8tB>bP4awSOk)&Gu>XX+>^r063<OI!fHKKHKP0QxE6!<
z@E9+{7GpIPPxZStF?D^5wa?1NO8fr-C`#LM>-hC>R^Cvxe^lhr&Oh^UIP_vvhV`!O
z4$0rc8QD;*^YE(bDzl;FfWo6(3<l^2>xvWVNRCZggNx#?(3rCCF_xfXm5ZqqB$cuw
zBIUAm6N{l7cOf#K!5D|GQ#-)l%!|zsjn8^!9C3E1$VL3U2oAKzJRF4D<FdQG4}nt5
z-btnGK5Qp{ZS8sio$FhCOvxTs*(u3H6=P4EkWx>8IQQF&=h(7!So{cilJ{aIx{W2b
zlkpJHB=|AAVX}7p73DulELIS=7+=!m{h~3yth7_vzUFRnidDur9J|rx(IVRFE=!9?
zcF`yoKf3-$Kzg{{#LXFhi;y#+5#^oa5$eP~^f60M_MwmRGAxJ<NbyZ&OR&y#7`&Os
z2}6;JRk$~{yLg|KBmVe>vg8JRQtL2y!HjfERZX!*Z&4XnGZscX7ZZi$7)%y1yAM|~
zLW^28GbVD<V)vQo{Ti%Ka^>4l{OF=F_Ai6YXc)gS-NT1d-xcbb`pSG?EG-#bxwr`a
z4~^|M#w5MHna7c+G&4N()`vL8;o!pU&29I%9YS?q*?KPmzagrb_lCo9W=yPrVNJzw
z#wPLM#l+1+JhccuV&yFNvaiDu)D?h?>M&Nefp-_RUU}o{pGL1MDzK{eHu6L4ytbIV
zHQL_Ob+y^Pii@#L^@#dk6FU~Z2#KO&UyH1?)?>(KDi@u5(_<39B^*cYpI`K--hgdJ
zxhAzp%o{C|ciupS4=u%q7{zc$w#e1mg|r>kig83PZ_`6xBp>y^LVY~ZmhrmRR6lgy
zg+;_T=?tsAjXLFip1KFif_2%fXxc+$R!(%%&#rQ&fZHo|75(?o9$R&uU!9ztd_1QE
zZa5EC-tG45xL>mqn`C#t-R)NBA?rY!OT7NIOgB`XCGY~C-A?~>clK3!yLQp>mR)SG
zVAea}iLLpm0cVfbaRuio=rvuLJU40H^Y$x|ToIy+t^?Yc$7r%WYpZasKWCSBpKUP8
zY-iqbu6_wm>Yl4NA!m+&cVb_6Z)WdBN*;C)cKMxH>xSQpI}a}dhikm7;zSbjdNuR<
zROa<*g((|>E;s&MBscoBE$6=rz3?ABT3VsHm-wN_aXeS28;+|gNtS^JzZl6eS=z|{
zaou0MJK6e$8e`L=ay39Xf4|%de~0Aj4APcWt6E#RGWKux!twd5x(s}7<ZD~9_L&;o
zY16ozColKTlVa6s&F^v|&n9X|_6j~3@yPDfvuo5uvYf&-=Q}wO&bRJX;EiZb$+Ku>
zJY2h~C&K+cz9UvWdw1Ag6(e`|;Nj8Ba?fetzR)N5275bFPTa@q=|tBO@^m15n%C+i
zT*pzB+9#B~cMoShguOsMkEh;;PFsk1Rvj<WUoF@A`84QTcSPk_q-WQ@{VlSe>$#z5
zF1wFshzXiK1A;=~JNlRxF_Lyr$jm!EeAgbFPQtqr?Q;beuNT@lsq4E~`Z}nzyWwz$
zc7BiQ;x6SUfF(JNk4Sb;Y%RXC-b2N!>`vWsSCI_vJ@Yzt+SN04?x1TqvXOt?&vFZS
zJiA+|Jb|2j(wleQ7|q>oVa|GwRMDL%k^KFw?yfyKWi33G@EtVmL)8n#<H@4Ce6NMA
z6~lW*syr{d^FY4GlOX*Su%FA56d79%XHkqc(!5MvWMibt{X(^tGFEc5kCIRZJNsS{
zeM~+kn*j+$`wg`?f{?ChCQ)PbZoSj+sAsY{+Gc0p#b}3a=HhCq3$U7~!Du<zH3LOi
zfyJ#-c5ff8Ky!j=)iHHrLp_^gLscDJxjl8Y6MO1tZqc}Lq$za8y~&&Slw88DgFG#E
z2hpYMNtm>*uGF%wY)MzFv#VGG!?3ZmOs9Rqm96Ue{BQV<O(AMjcc-rVp1q&ANP^p%
zrRd76PLNveYFB6L0gJxb9tWI&Y@_{B<cpocr#5|?Jii;s!boF#V=R|1*YLb%{@Nit
zaq1TK+@yczTKGnaOmPiQRi@8&51NP>GG<J92iAbESr&eMAFc}hv~@~O$oC8uFJI`_
zQ@)6&Qb)R+cz=kq+<sX+xsuNbTll1s{|$QCq@L+4!z`HGhc>fshvwZUe6m~Fo$@@&
zy59?T@|U}XJ;nUq?eeWKHR<QEM{ChFl=iMyR`vR+>H$lHGBT!5f2)3%d~YK>ztGsJ
z8J?mdbF0>v7NHAmty!Ix)pRM5k;l)5cE!>vMi<gQYDZ3XqX$1<Q4eaa@+niU1Do5}
zRdnFdoc}jGjU)O`Bn-9R^PoZX2&TQNdGVqA7}hfAy8j-!E);i=2qt-i)*|J+n@7*)
zX~VG#sd39c5!jZip;2V-KpDxC>BT!|PD6VUex!-x_O-A5ytviBgs0wvSN)(+_tevB
z?08-@Ch3T-yVqyOTkl&%+B#n^jZu@hn#k_!Q$#)Yn~aXq9$@XB-+!m*PPg$bId9tC
zw^{F7UF%a{`^NgF;cuF~QN{B$*NOkkr<(WlzAF13Gb^7p#TrQ`7y3+$D;qz{{$BPI
z=}5_w5P04%r3!8FLnZ67dw%5(qHAL81?Dm9Jf|D$;AcJSAWqMf+XCOjo!j(>H$nf<
zY8)u+vCA}1WpFh=t8BW`{2Ia4b5Fyu3`DNi@q#~&!i6|KuAV{bMqkoGScJC9%B%7i
zU>^SJb6bp5@*{ffjH4T=#aiuH-V-ewhtYDWcC#m`Mw^1x!4pU~_TQj|p|eiRBiMOu
zk$Qq<`a8eWsnnC)7dw=M^Wn=N-M$Oy7V<c%`aL$6j>GR*l$>;J>#B7QWpcJ#tFT<l
zwJnE3IP6B=ex`!F4UMW?uCmI$4{OoL(5xlk%Fj09MMRMsZ=OP?*uA^6RY1d#oAhMr
zTZKQ;VQ%Cq;<>x<>{!bxr;7>oRxx5f#*=5i#6@h%VlVH7j6)V7^m|>s&_%wysSa?z
z|K5quRF^j~6;mr-v?A^~-RL1dS`jyza{cqomi5mpDE--yozhF6+`wueEp2JHpTQ`a
zMk`zd<W*k|L)(}beVrJ@?}1*ng<U4ML;O+{1GK3bf2H&g(*3sOds6ipV+Hy-MSC3f
z-MhgWcgfqdEgC~P!kX`rKg`5!r|^gEs%CbZ)ASa5PUuZsoofMCzIS0qqO-g)9BkFM
z<nEQMe|ElZ<#iQW#o)n@PL(~O8%%uCqe<B~%5m`x+_O#3=O~jM(HWEMd#<ljZ;zcV
z8R}KE4+kYuTUAE`-Swj2)nh!%743GlMB7oEFy~RPYw4ej^%hAfpKFbt_ABko)#W=i
z!eg{MUX|UYo?JAeEZbYsjfCW$$hxyHmz6KHEGyqZJb^tPd9J(eMJDfY-+Z=Hnz1NW
zCiN?dLJ{R`4NF;F;BX{neY@fg)-Xhes*&}Wd)&sV&XB>E&QcOBl1#m8vDi{8D>Z~G
z+uFrX4>mONGA<~`#y1;dV^>u;*j=ce;JrP>0~upurk!15nUC65_2)X@F5Ey|oX04t
zd$1vjxcrd6mcu{=`AT@Jjvb-90JPVe=Vx*_t(dOme8%n|&Fs|>pUJ-e4M<%^PNphK
zVvs9w5}_`+?77ysEQ>qZ5P21Z!{D)I(USiwk|WA$Ic@#km%Yo?S%!#oAGL<<>a0)Y
z@J$hR%H;@a6xx>~S$#!GlEt&J;Z7<W?wc4vbzNn1e>1Kej#Q~{&;3mfcer|{OsX`q
z0bF~oo=?rybaS>@ThM(<zSZbo*+hE9_<|>cnVM=6vm2lAv*3`Xs415x+(+F^o*X*y
zWq-veQL+@}X^`dwVmGpOwiWqeN4fL0$1=#0e|M0wqzcMoS1Sh5e$?9@$#i0KLpSLC
zL;$@-vn)p{BhKw2)gI47g-Z70AX;5iuGT{3bx1H);Bp@T^FH$Gg39C`;62u7nrf7l
zPWs2WeXYy7$I)M+-(IhW!nZ&t(c!n0H@2tdI>W!rKIV6ivn73A6%HxL`qpf$)>P2(
z{-iYb*$QRp`4}6eJumsAm}Sh`mUA_I(q>%EzU!Q`@R)wZs5ZMK^6#1IAEH;4p77}w
zx%mq2zmE70yZ_M-f3##A{Xgffb@9w&>SSnrg)G=Q{daE9dB7jlG`QDW%YE*$3`r^f
zK3PdMq}fRiCBa%-5!a7ZSoLz0vof>`l;8KTCowOP-$Z)7+Mt<JB@wq1ZW(Mz=88gy
z?AI@CmzP<S6ThP6+}yk-r+743kIJ>f>g`b}ex7Z6+<+XVwWiMu%X;#O!=(c#>!xE+
zlAnEPm&3W!pvfAS^L+E22F2sc@;rAQ3lBa7Cmz9yb5ZaB^Q|6(bVtDb$?xDkE2x8)
zf4_#m&#Ddx?zQ<EKss(R>n(fEc&^?>yk?gfc7uL^*R(_*;+^S4dW+M?S~gs@pNr#J
zD(*TgcFoFhvWqb{vvk^<v5hHqJF~fTBbQ61zdX6rMc%htL0&==(emT?;l3Jnqhg$Z
z|8BsCr!RX0pS8ycwuWbiV4D-F%Byy@7h_BAT-)c6a_q9krd{mXv*-ek4>9KEnvlGA
z51hxi{1oScb*~3snRERu@cK^Dg;>SnGo#oe%*Du}SFIdTd#xj??wspmj~$9Anb{|W
zorq0LmGOmJt>Dj=6ZNI_a--^NV7Q@SAZx{c-5cF~a1Lu?=>ahQd}^VRwS0W12R1%~
zy~jWwE8JF8K4W$8<2*gjAuUpq`s=+2?<rp<`Qw|xOJ<*zDb6V!7UdqReueB>_gHZu
zwZKW}f?<#H>}W>G7|bGR*{(;!{GzL=y3z6FHrU^3-3GH~(v@Yk-HK&3EDgL2@$>fM
zeC#&pqGj>xR*tOw){#|z*5g9qV)bT1q44&Z<5M(Ok@bi{VgKtk1Qf>4x+@eitI#~k
zH%xCTp)rKUaQt6Kq89B9m!tBqb=}yUd&h>(A;b_8I_slzQR_DhbXJ{xSLkfVj~rIy
zETJ-l%8&)S_;o8sWBYz&{aJT~!uzdQutSLtC;Wx*_afHVjpHnG#mbSl)4G*fXTDuw
zj<aj-H4ZWJk?<G7-}M0ghO&C)Se&(v#inx~7cPg8>r1$-i_1l=-VktEb?)QC<)X9O
z371W9xro&p3NEY6y(?U@*Kc(@_LkL`B;0R{J9T(+xKzWlPYEl0vNe6nfSjL0%07k~
z*?GI2c=9?DTmsF?Pjb!sw(ea}e!g2@or$>j!ko`_2)=WBRSog{4!@sv(OUXf=bcF^
zQmCyx<v$M`$M9homE{ugVq*`&mSF6w=%05yg|zTxhFcfD(t^w?>#Ma4vgv;Sonm&<
z_S*-o&UqMh&VkN$;3-0E87IW_MGBpc;rDIRT`}54J~`D!erQJJ2<M3u&30(n2%kZF
zxt;4=B)8FzEMDR+1E$B`k1T$*VsPj8BP+gtHwg6mkrj`k9E)xDBRdM7z_AW{>=Axk
zRJL*cMxIYld}7`(5URVBot$u`Rwm~&wR|Vl>!RJoCl>Az)U)Sf&ktOF8@?Xz#&)f;
zb#?r+x{+P}=@{`NDwktzpN_GS<2CRM0Q($H)2m84D|Z>^xS@QO7gdCV9r3o|#fZfz
zy-$WA)nr#y-QJ5I@T6K^+#xP%QBOwEvVHH$pE5qHXEEjBJ@mA0WKewUA~dFQDRi-A
z&n8a_?I}6Hvt6V|DCL0IRw4(ur@dZ}u{fP^OYNp-my>nGR<<YaVkDbOCyD+S&)==W
z!CATN#$oHpr2KD%dt;WxB9>3S2}0Y7bowX1=dFJj59RWrc|SHg5|Sq`4ug1gB?eEo
zX_}#F!lT2nUQD;;sy^9&1sb*y3AN>LK2?_y<F7h>TjS3$Zx{d1c=A7g9l{d0TmoFi
zGun)WK7c;nM=nq6WuEM}t*nJ9bTqq;OBWn@&yUE|>$GcgE2ZQvBo6Z{l8e2L*X;SD
zdqgddxALnVkJ#K>gwI$y#aP?^2`EK(@5Z|JPt7hGLpe5@cj)!Cqs^DQ$9(DP!f#?-
zo9e=%*%#%R<gB;hXhRtf*Q=^F{Lege6w#!}VqTO#UNqkFHS7Ypp>tBZ!SiP;tzMWK
z<tT6a?4k`%`xulLo#QE7PS3fGtVAd?8nzL#8e%w@uWteWci@^fEZ~@X<ag$FJ?_wY
zWGU}o-z2MFzS8w1LueM^XLTbH{1|@xh{`2F+cEqZEKavBAkGTzP6C9aca{&AK?3~8
z1C;>H5M8!%Z6Z4Kti>WaG@_v(`aosEcH!sdpUr&{JlWKq&(A|K4*me%E_dv53>&DE
zGWDm+hVS19+J%0NWp>`Ke$At0d@XTE^AtTX-Y@rSYO?ngu5T;G{CSU-d6WsgpXIW0
zG_w12o3W-%aJtL)thElmZ}8w&0ksi#X07KG-M6<9W7=}66hpEryQ0gWb7vkO#q)a;
z+Qn!+zjm(b6T8uU&v-PeI<9iewH@DO+;$49R`}eGZ^h`rdS@ou@m-$L$4D|g5AM2Q
zY}eoWu?(pCr{ItnKeXSv_IPB+tyDb>=ij><wDK&&SUxPrW%IKPZR|0xBA8&tBa4YH
zv|SPHF9)(b%ckxAr}qRdU7NYds<)5v5TA8}{AVg4KO7A!mj`X@>3n$*7lC5#tEs>0
z`!U=h_z>Rm7VP%T$xUc(?u}bE>9FeYOT5OkuXInD&r(Wwsx3e8=e#jzS4ym_@amQG
z_66L#O~3Cb!$W#x+4q?FCttamkNduw^0eMNAULPR%R1dd*q^L6IGpqH@?=miz2CKZ
zn2~HJ*3xDDG(D*-T3lVG*RklDS5U|DCf0WYzDBr$WECg4+BRYJs8A?Ja2fS0j3&zH
zq*^8BN#siT=5%s(a&2NN^-Ud4lY5eC4}iWSoKnAa{JPE^{Ys#sl?YKaobRoEm)q)$
z)ve&^?qzpdz6w^C%QQ}6<Xw!7cNRQtBc|*L-Pm-W^z>cXILh@LciyzA=XQXwy~$h9
zS@i9ET_gI<)D4_!LBGYwyv0XWegrc$yL?t_?Ovo0XLDlTnvGIz5fa3=?26=E3`fKu
z-;ctE@7xXEKkBV^`03>+KaV@LiSqr7m0>D{1lywdS0}6rYNLZdSdVI(LAYRfYGeP<
zTk|rjFhrjsY=o}w#s(|PA-Q_n_9L@%XxDG_I|3Bbq#R$YeQ6V4Gf3G`6^_`+S)37N
z7xDC_K4LKi;w<yU>(~!~5=O^z-KtjK-o$ro4I83NmN$Ja4z1l#vEb*@L-UQ159KIn
zJC|OJk|`|F9e94sEpXqr@g`mT{89_}Dca?75zl6ZeGl=&b&NzuT%=xfIH;*#zd8d2
zhnMrqUz1||=GD9jhqo2I^mj_;kC%PnTplXNTiZJ&i}p!vc;ge42~SZ=u~M~bEk%F0
zIMy>9w294HM@PNek&e<fb)2>zx88d;iiTOe7v`;U6uyKf^=BJSp=m-GaCKfAdlqj%
zr?H}?%(fX0=IU#>{}QV>JPnucG5P4sYPF&qo%_w$RjwCLDY|<%Q5Ap3WziVQ@!j^0
z%e^_O7&~R>q@oIKX5gFZ)LVF-bb;oRp5lHN@#Lq7-5w!p_CQ(A2gslBlVz`6`+w0#
zsST9d9%S_xZTK7E?!ZO1EOi#6@kQ6r-&;gP*Op!6t*ZI8x)RNO@>S4?wI?(1`vJUv
zzIq#!+fbA#qFoj2lxay<?&eo6*&~`cogeHo>TOP}GTv7}3;L|Lz#VqIi#yUPcP)}2
z^)yJ6r+1@azUbMOO~zQRfxgwUg?Wf|w>82>u0|k-Yyda9n%VXG=!5pDq4K$Q8LZI%
z#_RJJ))cmcuw_6@J|XFYdiucCEH@yVca=V&HnHP=O{C}r71`VeDrvJl#53Bvcael{
zGUnyce<G3FiUWS3k+!hqUAeB{NwIB4BdX{MT36H;tUdHA9eIXkpPHhKAD2O2e96-n
zmmo1h`wtgc*SIJTq*_ghe|6s3F<nZ@?rr1{F1oRkzuZXjg~nMf|9Dd9qU7I!($~ci
zoz)hkppIwVf?d9WGXxl=we5ptkZnHzrP_$q#M~pkXHJ=Qt=A^Ry+u~LZCMsw884^W
zwPXBhH9c3G56dz7T+0~M5mkCM1`n>M${io=+aI#d^pUq={V<0+o!r4|)&lIKB7F&Q
z*-{KOgiE2^smUs+SQSClJ>_P$QmBrm2)B!}f^5mMJaO0^ppE$x8)4<PnUC0_Rf~<%
z+A$bkMrWVVu3Y{c<eL3-KN{)J*_Be|Qk(u;x0cm`vY%{O`oxl@u1xQ0N9Zfa4=_tW
z9y?H8t?uN%JT+avhV=}|;2X%)+{Q{X`n09wFsX2adR4w7c%yt~eap$<Ub7)Y7hl4d
zse@UUXG@57(HFNzHN;Qlh@-{QCgP3)dsO!WobIBG6)sIJCy_vJD^4O;T~e>s6`wIX
z$NEj~X{798)RUGJ&(JVcogzWGvuI^99REhf!?mnhiTr=Iu!}Wp^Hk3xH?xHD>l(9K
z&(+Ljo>XjZ+pVK7dS=LGqeZj}USp+G+MnvKQkY`zwf(8C4V^Egiu@Ll6)uJATA18_
zNuG7{In^zEGXk#m1LU-*@n@=HgEm>Hn}FCs{#;Ba4f?<j3M*55D>*je`UVh7Pn+Xq
z*AD88J4$azUav?7=<mw!ODbj{Sv=|?`KHwFy0f#t>GA-_kp1?G+5x%>y#R-K{(3d@
z`c&ri=?QnXTv1x@5VH~6;7sO<vy)%I6}Fw<T&I@XAUE*THf<2G@r@n89TP|R*}ytv
z?Eq3CYzK&SB3No`52C%YMLaPa%cFjM`FFsOHYbJch$0jX(PE%97=rInwbISVUsskF
zt$;5*i>}rj-mS!}m%Y+slix1-y2(xXdqj&zQ7$Rl-Xr?XT*t|8Mw3~y#cC7ENs)pg
z11JT#1H7q^W>cVCzb#%C+C3LU<5u;<{_hr~;j(x@S^LGcekeIyU#lzMscNNgXk=m?
ziD$R1q8xS{C~ki5HBZOrBCdCTzJQiJ-RdWi;%!;vpYkknJq!6AlAz^!gq^?Jw7B1~
z^oVO$)5^~3k`>k0qm8a~uFqUlE4g@0qB{%J-$C}o<A!=#fe09b727VB{N7h({8Nsk
zwtHXAyqy?!^{*Q@Z^I^|46$qVMXzPEWLdj^8IW|}Lz2x4+4;I!yehq7JQn{P$(W~f
z<G1{bN1K?jlw+lBt#jz{twesZeCy)no0wZuAI7If{%*&MUW9TP&~pfXrv1EbS+-^@
zTFaFewq&WYZ`%E4Kf4Um&XDQE*l6uV*FPH}SIZ<xxs<(vr?hF?`%*T4C*OvWcCO65
z(1OhMBazuWPI*3R8Kf@vXf}<h+Y+V7$|<IJ_M7cm>3*$Q@kqjJUyhTuYt4=Vl`qUX
z9in>v5H^S8Qf2Rw?wal*<zx#;G4X+$D)05s$`}p@2laDHr&@@nrrZ)wOx!};h8b?V
z3qtkWQk9In=FetPxDap0_*tib23v;e@w|a*aOR00f+DQx+i5ws{*#{c_McoXwb%`}
zP3`{9apaCW3pjg`Nha%4Z}<I0@YYOm7$f4W<rItR1n9br&c7#MDaf88%1BmGvKnMl
zT}fX!`+dD0i<eyxJc=u-=703}+Os7;r1-$lSkp*z&<FAP1?U}GZ@ZxP4tnp%XU|QV
z@84xt6TP}?nblpJukKpm>aGP>ml;Nmth#r82~Ru3J;_;;xjcc27}jv|Czj*<yJ(sw
zzSFfuXD1)V3guHOhWpqZx0wXnRO`KwS?{&XddKo${w&Ce->=1qp_s@8R2V-7T3C^M
zUCBD`ohB-US6Qb_{^cpEJGj#3;5Z)URj0w}?L9y7{seN(u8#Xf@I?C*j={_yG{(#>
zWF!4{o|L_h96PHz*E5{C8{|wu8qYm7oT;%UoLPo8;moxT=th+OqaIP}Mjx|So-Gi)
zRmPQ2?W39&bv;zqp?nP5|Jj1jP92ra3TI^kIebx4pbniW9o}wDI<R(?72y0WyY@tf
zi=9bdiGF3VXG2Ly&nCocuR}T?Lick=(k;m5$9S5YIGy+8DXx2nYv{j=x0<X}W2JsA
z2h(lPIR?SM-U)&?=3L0%SuPZfEL<3)k59tK?}`hFyWegNcdXMrn&=)7?rGl_;MX#W
zrT6vesA^SI61yRK)O&iuqpxH0EazqvjzQw@cY;J#N*~Q*98>Jwws$YD=kR4!oSw?T
zX)~%3p_EV6<18VJgkr^dZ|HsKCsuc6&rOk7p!g1D8dG+Fhp}1pxe1j%D!&9SXk$$^
zZDa6A-Ow!hvkR_rJ=suhZHlY7-z&t060?l+V1*0A8nZ4J5`+I>VHlhuGMuM5Iom~`
zGjBwiw~}>htlQJA;kJzGF^K-hgFrN+Sz(@D9M;RIODXUd3zPy^AW7M~BqYTar>BcX
zm85~M#q;7<p;axi%$R@3=Lb#s7>V$Mfk*^ue)4z7I#`@kh@mni!|yFnGQ6zffP3(Z
z7iACV5oo?k`rqjPuYxn$vD;lL$DsR<27>N4=RCSNB)iljYJan1)UwC6bU<f3nmZky
zf)^w@%@bB6${ZVyKARKy3hR#IXD6ikx|#h{;*lCh-x!Qicl70DlMh{v%%10NI5H+S
zeKsfN)r2Ga@V2#9=gv7s=eJe9i0AY!%G<6pqJ&`|!_~a)CRC3>cAwt%{ki?jU3D%`
zFUH$$LS0IMKkisN7me>G^0iMP4;Z~<p0``uy2?lr>V4F6Cq}&Hu0!n@wEtO;di;I?
z+U4v{!@J$u+;ynghsUhPmEAv}`!C!B^`sYJmmYJ>2ojooG*|POt57)x#eI6r_va`+
zRJulX_&k8N*++C-^JqWlEkcRrQKGiJDy^`OAiXS@H9W!(>t^(hl&<nzp(pAYr#P00
zV|~7ojxC~U3<|rc$qL1mSrHOCciU)&GEbOS=2dCMbGha@qU;BtbvqRwSCwbW{(y4U
zw~0P6yI}U<i08|G>w-G&xMYPX-(i>kr?7yzCu~Lidmew4*H7l{acFN$?5%89^Jpq2
z<Qn9%>ru!$?qeNdu>O}AU;FVdiRl>5H&HIun%JB#Ck+VavzFK9{56a7%cKGI)ajhK
zSRWLp{P^=EKOnctWm=LJzV)3KL2HwDvpcrWO^SBE{*xpdAWy1kYR%Q{+UrH@e+@Rm
z1N^VOYO&R)$VYc&C)iKaGfrCHX#G5UJ$@ZERbzB`H}?9rW4&f|IK5=Ub9$d6d9EuB
z9p*Wr?5G!gdmA(6*{<Awd;+^&rS`KsjAfsvc_AUpAnaMJdR4nRMAI02z1zDUq~E8x
zZ7suXU7;&P8DeX#HEi8L?PT^Gy9@CA4}c``-(|laE&uy?Px_s(CY|rdnSXL!c!$G9
zwZo5HQ4WC1w8zigjsLM6tc2(mgNJ*a;K5#XRw<K1Bm&DFdyMi3hv=RuAr1-eJ_yZ}
z{JlO3{?6{jd;xTk>{8-%-+y91-jG%(reF-uKNua)7tfj8e}5F*Uv>(0!hw&2&*b1B
zmX<My*clxnVrNfm{L0|4k<AjaQjXg3B5Wi^StYlUkl-WX<5<Ud%Ej>g#-RB=ey-&5
z?+l#FU%;N|`}m(d^cYc2w!LfHf7IjeFwJ5(`|gN1J3LGB^!C7cnlhU`QzgHvJ8|g!
zW^%d+{T#~m#PPmF_q$%#p=b;q_D6(=Iy4|!9*z_(SJBUD7utb6aoMw#JtLELaJ9o{
zvAVWJkjE$a^o&8u-Vz`sp8{jnDmRpe@S@Tuw4zv3pODf-s}xZ*1}n>;Rf=dpw7fY|
zt#S)KHSMx(Xcbl|y^Fs#6JD^Iu4Z{QTC)_>GzKvTOQ2nfsX)y9>PRt@tS%QD{%PiU
zR+rE&1_PT*fB~5;d3|>TyuJ%v!04)Y;@R5m3wU=ApV9YV%{H$}(JA3#yAS*qvCh8#
zQJ1nYI5`{{PU_NP{3xPKl-V<%t#Oom6W`XVilSo5zPC_RObeputx@ZuOG*c=BOjP_
z(kk|Td;qI?MR{*L&ncvn*kQSfPKu*&461l0efxWD+NzsspC;o+*JZT}mYEo-yJ9qe
zXN5fl+EN^?4Rpm(_`QX$IGPY$tifq#uWDQMxmBb{(LUu=>uze@zfe(Q711>YNwcNV
zQ$>^@ei(}%FMe)A4>4X%8+UJh&IxP5W+`Hgb#<e1U#^Iva_Yul>G9HFshl1})bJ|m
zt7xPY%XU%2iu&plj6ue*E9$GyncROD)Ec@z37_+k;%>gi_*9Vhi|H4``P_FgrZ_<H
zjLG*yuOk)<i6=IuO0jTM%&#L3(=3L+DFw&H-!5m6r|)1ELzm^O6Hb!bm)t*rwevN2
zmRd1<%soJ3;^XZ6$iYLeDAAF1seNZXFa6lW&pto<6(z;Ai{b7uRg@IZb_~+m%pm!g
zu8-+UYnNIv{5&RU?aq%JJoKFy>`KYAyjl6gvxHem&Z;M|6V2JesS--K)vko{cVbkh
zXABC)v=gH`1&9;sts&dxd9&h~HTSS%=|Qq^u!61*__SxS$I~$e7u=CB7F#}k=ETF$
zb6EMa@%70q=oX%Wy^;LdVC|Bh!)i+180?HGht-rGL=<)C7&VMOjp22b17=k%{pqXt
zxsO-LulBVL&vm!sM0xxZN81=Qv0vrbHBlTjh$ZGa#)u_Wj_fNvbeQ&b1a%R6OvPa*
zOv@Oo47<lvli3p+L+@0QCkt=E`)AkwN9gD|Q?F7MLb%!X`Tb5MbtoExlQHcnuR{Z(
zrM=USx~X-|o7ZhvWA6YlcYqb{b7Fm-!Ob<i$7mXN8K%m;aBliUw5F*?>llP}(__7x
zy&LUvBC$8tm>c_Av*shkq(k~CKIZ1rF$Ocs5OecqPCRgCWAti_-bs<R;$4EzR?s=x
z1`g3Q1}9_cZ<4QDil{)$j5QLVF(c>eq$rvnMT?IFglQRrk!6SkglA7|Yz<zY5ZzDU
ztMKGzp8V*a+L@5yBje`-S|py5F}QeyCyXbW96xuWV(3-nmsIr2pdwXvxmkU`sys}y
z7*4-CVoo=muXuLOussL%Hdse3u5=2075R8M$8{I+sU+il8UM3bQ8yD1L&F%JXHDRE
zq<hS)$KXA`h=|cXYPEC^P}Aj&)sB3Z(b`SCN~aQpBeu_an5ak77>ta`d#*<XVup6!
zko88<%r2|^2Qi~-Qc^rtINQz_e!dcFil`cc8}>aLi*BjQT|~~^5hEvg6s||%@5wIW
z4WVBQ8pgCIyL`sv`=R%Sx;l9U8jZV0*aeh(7g=c~HH%a9@Y_~)mTg%lJh*u9dqdTy
zYYa}t)ElZkC5WG)S7#N^?mNKG!7+-G-|qYEesxwIipF4OOx0O+Xh5_Kz3)@;ypmpV
z^@`v3DTabEXc$x9r<ggD`-ff+BJ&8_RE)@PtL}kmrwA*>Vk27hXc~i%F-5fMQGu8l
zdPJ*eW-0$2*K6I6Xw{`^3~t60(W*-aB4_BGB8ujA2U(LN>>YUsIh*>_3Rl}vV82sD
zb$Z62WlWtSs#AbC8G7WmXjaK1aXk`0@>@>77#xf#@>@P*^8L`O31t>nVQX`52K52Y
z)!?qeedq-C7)q5UA<f`d6IP*Q3>L;zO;}~_L<QpxL(ZVfe6EA{*#~ik-u~Btg#*>$
zfAct!n=<DiWIThlwKGLksTqR~o?1DUjCs}h6CuAm3WVHLnGI$OQ&z*zYW#E#5`3z~
za6F^><KlRKp5*Lt#F}11h14!&KI?C318qVB7;QlNh*@&h<|fYfIX^GfRGq3Z$QWO&
zsX85qoYzL76Oy;=ddnZq(E~!M7!Id3FfQ3Ib0gPo44iA(^<!`H7UVdqINj=}WZ4LR
z+HujJ^Ef(|iZR^IYM-%id+fZ4guA0b!cAB<jQ;GXy1$)d<6z}nsqV)>4KL);FNXWa
z6ay`vG5LPz^+;wG-^LC*=E9zW_wOm*Pu9K9`F=f83<YC&e@yjAF>@yO5B=;SGmm7s
zyE5KC4a22Y3|EioGz@os<lv#lB5y!uAHha>3I86!f=@Erm)U+SGLLF896hF3WZpc<
z*&745$lb9MovA}*akntvH;tuY4Cjx@H;tY5m}ETju-uK7WPBAF?@}#>)5j>|-FcF;
zhhBlBQF;TM&Au+L;zz1+9>bc^doYu2?%L*l1x^)8#vou!6*yJqPE-tiN2Qq$ZTlyx
z3g^-B`6)A%n@#A*-y`GisH{WL7?g}@M`axvjLAA;#f5Z*O!~sr7x^BrOSKrTAER~T
z&Xb%y^w_*cY}(}&x68|q&BstMhU3Q+n~#|@x&ON(iT}_icuVD`82w2#3Bs>-O~NO!
zmUi8-=7K!x#c(~n$FbBRl+AZc9DfTOzoE__<vBf1Q@jU!=vp-S9G^$MW##z1`I6%|
zMk3=mhZ%Z5u-ESvy1MTxTb_BXWXrpppC98dqhbsK#u(!-n>Ug0tD`{zPy2iX6eL?G
z+yUhiSjn)h!*g$Z+Qo1^&lMY+r4ybldHwE4c>NBz{2u7O18L8$yh+{*uiCb~Uu&st
z-F*7R@cfu+Ez4(2z8`w`D|;3%f#=s@-_Y`5_fe@g-T(?x-s=!l31Q*cT-h&Jh^1)^
zKE~Ajsvc(%Gh>MY$@(%9x{sYI$tMn>Bi|>^qh1US#ux?4n=d(j=v}L9EW1`-vX+V~
z;67WTA!6tmgNiYAt*XvZ#K~B)V}f;eT~pl1jT_}>$BHNzgM~3>$BO1m?tgtGK6K)9
zm(M?vs{w>oF&w>ydyFj}B(o#$ZVaAxAFFCl_Iut?8Qs_6@6q#Rzp0er6%MtdK%uCA
z92H~ueOyuhxOo!^!{5E-&LzonSDuGz*TPhb;q-CUu7&4G&K`O`>lH-y-<(VJ>yYb=
zbEcguA<6FNvx;dK!{uYjXBE$uygu}<X{@oj5AGHlMn~^2!MZubj$GYmJjE{AQzb95
z?{`hBOVt>BjHzo{T{;js+@CPyUbEr3U50nS%C{-@yj+{S2wd&qhdp^xZY&=`U-tao
zrqqo=(&G_%%1!A(L^19=W<+rp{R5nO!F^?0$FEbJonK-4rOJ3Jrfm$Gj+O{b#nd2{
z?u{Hv$yaxM^`EVbnfRD2^R{D&$(Csv6RRD1Hac%6??8jlF4HF^r>L#ScROn9XQQjr
zGe&QWDH~m#0@M|(Rve$*#lGoBs>+YP%Q|L|bcU-lJ`<@k@@N@@51v6kZrzbLdtzgp
zIwb9Cj@#87t3!(D8H17W>yRP}5GRxZ<I^FxQSEvFJ;Dy{$>#b1*08t&@C%XpB!;dr
zxS5S!x5Q9__+c;C@!=;~T&~6S@koTk`{o;?$AIz3IhUbx`5`jukC74KZfSbn^r`e-
zqU2-vv0T4;iWG~XVvGhDQ}tBryvJfMh1M|p9=l@dbIj5?-@?syj4Es|Wof7-O!mDn
zU1QKPHhU>M>v&2KKV#G+cc4|6duP5qX_C5{Bt*p+Y>Zu#gyu~o91h;5daU{nY^%ET
zsoIad3$L5qwuuD0!w99o>-g*tHW+J~E+(X4eO)i(t9Z}u)A1_k#V!v`sT_l(r+E5!
zBEId=g-GLW-C=t#_FPj`D=rG`cl>tIR7A-b#Ehxqca^yl6~nJIu~G4o@>&>^Nau@(
zJAs5MO=4&mgM@Kan#9bS82H}EG{aS8E71Ddhb87)V73h4)%Vr@!Chb{)d}a<37;*s
z%i5%T4Boy!Vq2|ES`nqRTgPO-mCgSSto=Pyz3ijj_z-bwTUw>ujO#V6Hb!R*#bZ$U
zcb6EIF*G6?hu%@n#Zws?6W(0BJ=+*>Lem&Tjj5wtJ<cL#hTb>Go!K?$rj$F)w-^1s
zK`|7J!NZvP2F1*o+`ln0`|SoSGM>C=da)!O;p&J`^?+^1=20;Q1>?&3#Lb&X7+cOq
zA`IIqqq9AE*NP%s$wU?;H_9APLW+x&@|;gyD#svc%sHRBbRp7qN2YU%=K8X#%Gyil
z!kW71`eLcCQiZZHh@uQ1YZkQ%EtXAR743xhDXb~ier0lM^1kEOr!%jmKI~)o>?+WB
z8@lfReK@voJ`a01UBbWIkHDxN|J}g;1ivbOWpXxi$8(w2&t+bpKYqPBIjLU%IG*Z1
zf#*XUX0Bbyyk5<`HZzLLsy5SCMO2PK*RtxXBDxT1!{3KvTe(G&<PCUFsjr!EdwE@H
zUAo4gX<T)sbtyso41d38{Opns<yv{6{hn3n8H1N`?f0xo0pjF4uqDQnOHEjCvG7r>
zU~vtp&@6`E@8Vu#^<`w1<msVTve8zu&#vW(CF`o@H^t0Cc9LJo7DvMvo*z>sTimRP
zfuTp1Lo=DFUHt5D{{Xp`b$HMZ)hSjNfQ|<$y3AcS58+KDl!Q>?d+KdbIR-~#^3>a+
z3z0T-Prb@qF9KNyDXt7F$hETk9ia8;8iS@WdFu5kLHw}K^pHJ}Dzm$+V!iC-&x+0m
z2}uDY{UYA8{gpN-9D}JRc=A}hn>J{&Y<6H#%sgdmBxALToKiD8u!zbrC|g!Lu!t^1
z8t1(%dhCtK8RQzzLt3)xjXQ<z<7Y$F`=s4=;oWwtjr3Y9#bXdSrd<hD^js{Bh{mDs
z@%HB}@`bem+wj5IGa*&a`F@zc$GZw8W6(3EJ>FI3PE-s%E9%e3yt4(b;YihBC(kOZ
zf&8qfp&lcrPa#pvJ7IdpAY@EgQ8V9I3J@nlKNHiRRmzLH5j+1(%si^a@H}^HjW>2+
za-$m~@KR=|qNKO6HOZceDW{Pqo5;6`{Jl5i^cX6}aQ>L~-o(zEGM<PYy1#DLklw+*
z!o*?9eyZARSKj-3Fl}xKQ!oYrW7>lmGiP%D(9es#4GG3x{!{eyr%#;CsT6hbN^xKl
z2lmg4txMGyl#J=T*t&Eea_$aXZxqcfc?qu8_!L&t&PJBgF9r=fi)$?YLivoz_e1aV
zVrIeq?GLbLpEZ>;btcRKelu^8PU0&%U;NnuEL5Rs3_ixx=cOKJ5i_(LhwNkAMl~go
z!QL*qV&xUJhjFIRbD(xHZek8ebGVx0nE+a<Q8NZ7+_yd+JyLD{<M2cLIo$?c4kwS4
zAASk1d1~c-;D!DB5>ov5RLBphN7Wd_jLQ$HM+YKj=p8LWx+RO8<i*GBzxO*@G@)z^
zg2vR*q6saQLI2!@?%`gU9sJME6G{KHp?~tI8iSr?(m#20AaaJj%d$)|B#*}RX#8E4
zaWsrU#h7+k#?6`-*chRIpPgOO7QVLdv*}ri=_pC|Jx#?J9E>TOo}FXSyorP{M!K@|
zy9w`oKiN;g%z9j;tB9I0$QXO1t7!h?wU^`^x^&K^aIoFIE7o3eX&8fs@!L!8tciiO
z5!y@1PjLMNcD;0S=6)Pg=oZ84^d!fe<B*w>zlXl-=(dU#?IClqj+!cc0vNlg@Pr5M
z?@JM+kfir_9aW)Z3<k!u>!`}yiHh$IUg|S~8bU>q{jTi)WI*;8Q!j@5DL2QX0gC5K
zj{lW`bNuT{(mzJV;5O={4pi<yM=??bt*M~>xX0~9l#Ai?jS+Er(Ok*pL(c%{9YZg{
z(m4W`zosmn9aK8WUdSZfUFq(7v~e_y;ruaqv~ja023{Yyq}MY^yzcV)M?BeX(<+9i
z8P6Dt-D1y<ygT&X&-MwV$v*LOReta1FwJ6k`R=HAnfWMvVzTB8^7PPm?(4HKuBm$K
zw^F?hxXzW#{?7e8s>Sg2n0D^x&6AwH0ZI*dFM%FAcZ%q<V(%c{NNbzB(KSkwe`)+n
zzt$j@iZPr&rdos8c@qhnBSC`f#SWjAne1^_>VF!mYG;)+Pn6R!1`XW5I2Kzye&)o(
z-I3to4V+rXER&q3ya&CIbb@dF_&bs{H{{bVhX2R3Be{IW<a^F&3>MKF6V_25VXx(M
zlD~$@E;4q}XRxwiT@Xjh7(DRYhOy~`xY-jML$9<k2shYBHj!%+`IR>Lbc^BnF;&{+
z&y@T<^xTsfJ<mQ(cFzYOZLg@T^C6-E!mDM~lyNkS;rlV=p5kUr42;DOmKnKTT#5;W
zaggr^m(wu@3uE+y%V$nJ3_TaCk)7-u*Us^Cu{Nz@_<BsaSbKKl-B$<h%O;+6dG<q|
zk18~Z;ng=r<a^4j$fI`#$D?+(`vusSv@TOr(T^(r1lF#YS}}afy4K;wOp5164!%7&
z4(3_5>~70`Yul51iFdI=uB82Oyq8C(7_McV({Q;qZ)U@kxO<SVN8nlZJljJB4!h5!
z{(!=Tc07X;x0qTnygO`(TRcB<F#CMAlcQl>3HfdcEK^o)fx1VNSCLKRZ`o~n0<vQ|
zIfb9|lM{1^dLm~PR&dp6Ty-7a-2fNw<L>+D<Hsk&JS$llzNF>}L`~@#gNnC1k?8D%
zDjc?v;jo#-VQU!<Tbpy(S|Nw6HKqu0^u1njG@V?Syo-60A}17{h^ZBv3E4fW%##zs
ze1v_e5yE`h#-Q!{3q#u!_J!udHH#0s$DU6s;_xpPhC^cVF|^aex#rX7v2H_a?E#ls
z^R4!b(V|f$1p5d++ZuvnC?A9G9}EKD#Ckq|8@;<a=@<JkRHkI$sk`l1y6iVkJLD$p
z3)T(YSMh;e-2D|q2;Rh}?A>6_Mmqt`d<LJM!%v)sJ_8vMveWXPd{K>I%i2Rp8=So(
zQf%0bSo}f`#+%SL2FbtM36fdAPk!V+aho6aGyJ#<4%x(&JHTg_A7jvZ2H$C$ABoA|
zTWU<Y^5FtjgX_fp1a^0qgisfuCo3bgDz#(q`bX~>yjG<i(ffx>fZo>;T{?ta!_G>#
zfX&B{k+j&S=)6%)%O^eS+tR0VP~1M%W6=C3ONQq5sYq1QM(Ns4*4TOpNTWvV%R=5o
zo{I5k+c(el9Z5EGUj6544wm&=x*CLefPK)r8pUI9{P%mtv9_-t&bhTO`?)IZh~D2=
zTJ%Z==<wL<=DD*EfMn*llJ50&?^kNzHHOA92>qS+1VUq|MNIzos4-c`%FvRZk?({}
zADbs~u-O)^V=(&rOM}t2s79>b9Sv4pt0dvf#~CZr^5_(Uk#6>6>k%Dz@ml>!GfUIG
zi{=dSH&I{5ySsH94>6IED=Lz?3;XK{EaMqY+@v2jRhiC}s4OS5A)&Z(9Yo)r$7}pi
zP1PCGqzZcoOFlN`MTGzDnz#$#jzzCW3@-l|<7`?n%D96>_@>9N?t2_fUr%#%Os3>y
zPNt+!jwa6Q)+3D@=P8fk=27yh8QSJYp?nN>zyF@cuF#4ot+!+6hSIo4(7DuSx+eBz
z^_rDND@taaRC24V9*|W@)WXI0)D}eQfns`~unS@w)nZW5ypEi4uqV)DHdnkk=L+gE
zYBJ%9GEF92u@*T$a&o<X4?NXvhB2=rGtTpIr;``(4kPp%lc&(|+%I;dJ`v0EIb5OZ
z!eu|s30xc6@u2xS?|zI<&+v=`MX|)+zVF17B&ty_hR>UKdN}ZS=3a(pct(!q8L{0A
z&%|<lwONz<>vd|jJ1AWMFCM6z3HM8EP2R!3C$IxTIG!?^)!z5<JIwLK#aVn>e%Hk9
zKDU1y+#XN47*4;7J2vxC4k4e!OJQx{y5bM+MKt`emf?@JIe!%Gb~p>~Bz~6U?0S8w
z>}N0<Ea#tRtDc0nxo;tkw@-Pz9lmekZlAk9;c<5{?PB=5d9Ny)zscD?mk5Uom&9=R
zDUZX8XG$Kgw+AkU$ETC4^9;DLaZHSid|zzEh{fj0^t>7Q&q`SEvA{iWb=OYQGX@{c
z_rS&AV~TjD)Cm|4GchYhqlCkXv;wbcN)h5{2Fg~CEyq3ihSGa4!UCf8!>;8UKo6}W
zdNhnSms>~i8YJ{Iz4plmHa_s@qOnv&(HJzngD16VO@+116x>Do>Vd^)qJxCb+SNft
zR3W13dDT9mc40emUa}`UyECO4f~c|L@179jYoDJ9A|`KrGzDW2(%iE?wEPVs#2#06
z2Z`aE7(|3MjD2^*m3r1h!1r6yDf!R3Jb8PL3*Db+6FWIc3r3-`I;M%1sr!6Qi==go
z*7?PX7%E<2P2m`f{Xqv>$mR@#u_?GxbLKr2)!M?|1V*=nGqYN01s0sxKSg$4*f+AD
zpG9FD-H1|Z=Qb?A{IT3rHs3DnKK2qJT@L5i)IL(V{a00cg`TOoCE?NF@e394SVY$t
z6tc#-ZClXhyetY20-RSh?p9U*6;X(It5@Y+#d5n1DRTgnG1joB@Wwn1J+G=UY3^li
z=gA3szCHQnirC9vS54g*1U9elrWP}??IK%~)j7h8yvpXqsyO66=5~3JXr$%cRQp|m
zR$GVPN&k~{VSIx%YL|eyd&r1BnB%TVyuADwng^10GurLb9>U`37=xv~mbDr8uZB2@
zd;f)#1T{@!>hTmHK6sK#SNNc&<e62p2di6z>@R1_gS?s9&q+A(HIaWNP&Hb{U}e@5
zR%r7XuBxhKPJ3FW8YPGsb{^;oGq-^jRu^PX|GbSEvn$2c<Qn9MXl9ADH_y}N&A!?=
z66So&aUW5f{HjOm7)<_YPne|lL9TrQPSt1D>Ru}BYGZS4cRH>fCA+p0Z$n-&f39_4
zyq)MrMe^~gpOLWWV=>-NG;5{l7=yFE>_k?O3MW;?kRRoU=Op6es8gM%_1i7Xj-6Af
z>$=o!q37xKPX3kgub!=-!-{AcgQ0hO(^Yz;tk2inRuxZvygnaK`gvLI*4);$52kHL
z_F||Wr|{#0WwVs$=-DMK87#&7VD_46TE<|gFCR?XcCy-4vExVjs&N%Dv(<_|VzzD_
znRG_<*ty>Bhi~%eb+gNtR6a2833_D{N(@SVHlT5eR!P$^1|5%D*D&_T+-~<-{;8J(
zj^iKV;cg3fco9AdyOOfs-ZpxNvtOz1kj=To`z?MoU;e%I3MLd76!_=Zm(wo>0nK|R
z*twwxxg1kfC;0YM`Hac;FSo$=SJ4}~s<+`=M!ZYnW#9MyFjmNpgJmfd!?ibYhc;^p
zDATI)r*E@lXVI1fmU~`-)a8!LEY+&=r!Rr?@13~T=UQI^m(wqXm)n-W(hv9koMW=m
zxhjYI61aTE<a_R=XqpWvdQzy~rdu?Go|rJ=W90KWl0789rsxgH+<;vrsHqx*oL}!i
z3rw+RS7dD#Ia5?u`D5)CPes%r%5JoPGG-6=CT~@?b^M*n`c8WNlI?D6_n+`k;ZiGx
z+j-h*n>G(UI<9?HF7|gNyR#v8QmZx90p`A!kxL{3rEWy`1QVGbUr}7dwc#fuZuVvT
z&lPZUF%@IDoYhBNa5?MqLp&thFFX_zktyQ-;@J}wueN}S>zD~Ep4ksY5Wv%l%Hxr`
z$4b_Rn4*82xm)6PpWCU&$|)AZ+09R>w=EKOa@2evTr7N0#>Ki@Q2DILv9Gtlu{SW%
zBk<@;_?PD%HMiB>J0{NcIhP%;>^07#S`7EHvq+nAd2h}W59d5l)e7-_)4bV{i)Srz
zu{=ljP`wHpN}nj#W^`Q7Cgy30`+e^B_qx}iXbdvi-s`?MM~3{?d`4T{=d<=uQ-#ln
zs5bVx>lF!ky6x$R(A^Vae8l*B-HX;oQ!oZ0ZSQp#WONmiiJ3JKz#foIJ>0w#NKKxY
z=MR_fmGxu$;XCV9OVJq<o$<SE71J(;<2PEimY9RrC)JwWt|I-V(+SV<t+S`Rc&_C0
zHo7Ig3Y~UeWw1<7xvCQ0&##8=nmF8-?0&bzBFe?^_uZEHTR4{)PQxEnZ5uxyTQo~@
zb{n1K!p~qNh&v#%Cm2-acfZm<{#gkHJ_`I!a@FY>gN?R3$;|??bBgzT4y%e7e+NKy
ziV#O_>=+F{nbAph%3~)L{+4cxy6TJ>jC*)b>_P5=TgPi&JHx+>=`t#6$3Wtqlknr?
z$FEkdM#~uNFiz8ElxY^k4kM>ou96OndWW@eRZ(Xi_U~!JRo&{IkiXlN?g>3BVaLZ#
ztnMkIXAFM&(LD!{uWsE&SGuQ&BE(S}y{y7=O!r=C!<LKnU5cKWaOLC5?`2heEj3+Z
z@YQxNtFV639dz2T@nXHA7|v@GZ`qx8hp^PRZrS&)D_f48QA`&rZTAV)itN6y@07iN
z`7<?Nq*$4Wm4)$EkFJZtn>$)^Q}(@Gi}TviYuWq9a~|==s;{O|=Fl#-cr1l<S9Vui
z!ile!K8jUyJ%kX=Vlcq?Yr8&Cb|h8#JETvt_tV@!-euppc6pcQKuMotsnMN*%G3{U
z!yc8cQq#$6D(be5c(d*p(4;=f#!l7eYicANVsr>kx-Z5?wKdi>j=|C&c8aAbc+lp~
zLytR&l|yJ4a;IRgN!3<6+)1py*#TC&@|<jW6MBl~iG(|YyPq$`T@fW?(8YX8cbcl5
zn0LAUDxw0Bve^MrUQ#wEPa35yS~XhdXa8NfVBbHX!?)P{E(38ijKKwEYnQlqXmL+f
zi_Wj4jGH;JaM%GBSW(H`DSJ8|c=lZpHmH5+&B@t&dHEk(dlWw{A;m|^vsm+D`z?;9
zG01t^F>+W{X?V@G){2l6;x#`jREO7ytH0<SS8lHxuAyIVT7<sX{A)Fu*s>@*s)SM>
zrDq$Xv<l^8u>6CCVtES9kmWog-{<cl#E1F2DdwwCnUbN6x@-HHQ}httht6cjaeZC{
zYYG`dFORgBM+dWaPe}EV>epQtt&gT)4C30ZyS5QDRh@n`-w1MqZ(=G@%l)tr-w*-s
zcAy(2ipWm<tp3RMxtdO1R@s5QxmU&+#?@qpa!^?bG@aYF#ZT4iogx_~lJUh--4?T+
znzAuS`pu4Ymsp-*PIz<9e+FT3wcerXzWV$}<o#aH$P3kehy|*ByK?<h9vdm*mCy(@
z-y}pDM1HjqB8#XTgHE2l&}Dq32%QJ8k;1i5!lN;|usi}&mq&@(HsY0h{)Xy|%wGOa
zp#v{MQ?9F-w-K)_zJEfTZ#DYy$~YRv;Hm9+<)Ozt8yW7Y>T~&MiJN&_8Z7iQ_To4I
zGWJog#NOTqlZOf=7ckEUDk@3bJVd{S>S*!1)-)YK!jq3DUxT$p<ru`Zt-%fhh|A+q
z`aCX=R>h>>6{jug5w&g9_*NOuMWFPcg)Ch4XC`F&$n<Lt>(ey`i*48V9#+62Pmw&R
z+>tF#Bj({>xLtD|@%Gy-_<2><=rUrl%%^O^o~&~wh414vdAg=V^6!j)_lur?*9L`S
z(D?f;`*u~($o;!nzO1Sho8i($h33me*s&oGy=pG78A?MV&=g5XHArn{#}-jJ2Ca*<
zWAh_1QtMtX5>rLa6;Y3<{nMWH>Kl_Y$l{$xtcICAp4`FS#vAZYS@Tfc6ZOyEtwNo$
z(Ihncw(n{qy&FsM7-aw33)I8!%=wrV{vkfDs+au}f4ksgBEF5PYJY4ZXK0&j!&{*L
zUR4+SxyhKPB!v11^{c9@P%;L2ZC6zvdj6<r&MZGwMU<awtU?7M<!%eQ@iu10t|-%q
zYdcrPhi|Lq-#ekgM}>b@N;&;vu+a8dDYS!xW7_xi%4bZzXUB%7d*q6q6xz+uEgC{k
zOc?Po;-8gLbsaTTW02GKSt<F*X=k5~A3Lc_9ips_eG2CJuR>}(KsKBi@ELSX=v;v!
zjD>2)-9A;-o~Ah=MM6v@<XK2od!Ir*n#Q23?R^SI$9jnsPKMX0t!S;$dq0HrzmEvz
zVPU=?#A|NNay_~bS8ueUy&kF=v68f{`2TI>+DRpI&x8<P1AQ!jkUYA@px{?=zc%Zz
zSTSL*VpYE+q($6&YR(`(w^1t<;=SA8#KXxW{1oYh&<=x;C*se*++WWoX#%4O{938v
zHPSSU;rX^}rF@>B!lTvP(+&Uo+(Rt1ae`Nv&W3-xLW6mNUdx0Bg9rZvud;R0RE$By
zPUl*Hh%hVM6(-CR^z7S0#T%#t+=18s>fAzMRQnEoSR-imV8wT6@^wVn6ZDJ{DvD4M
zOT|T?;+;7UY5RzL^CZJV%~26M`?l;R{XF@73BC<0&e^M%d$dJU$XN$5`x5gp5x##y
zgzq2tc2n^hX&T1hp>4bAojD%l_ol-=f(GH9dUXJCGba|>@QKaSZo>AXwri9B^*!}^
zB`sjIfbSFgYoX~D!{=@L#KPZG6$cW|Xp^^H&LBUxaY{yrhVovQa^B1){4BkWiT@4%
z`<=?;*G|(j1{ZC2Du3r#{vXUGCNV-gyGvaV%VC!;U%UF(pZSe%Klz)#+F;&?mOp#K
z?x1t!*5m?SGb_J~(=2wdZ-}3=KOk*8X61S9CH3z%V!?Zp+wc@<7x8ZI!`+C|=6n4Q
zFdkOdtgBIM!9Tf&cerDC17l*<7~@myP$uUkJclc|$C1@E#b+ky6K7w@-0x!Me%wuH
zs?#+WeG)VKQT#}?%iFk~-q8o}&V9VzQ4}MmtxQf$NQEE6&n?jDTa&A*mj$gx*{#S=
zKZKtvn2nB_-@rXc!#j9CZd_lTJTrM6-<TcW;~Q%Jnhqx?yyBwD3mxHKuHH95y)C>x
z!e1OSuegc7xz4P_`xZWZiuK$_Y>;dH4b<yxp<?em=5!8KPh0pojaO&Yd#BNPKxTY)
z^1~SS=W&li{QF@wH$Fjeg<8i)n630k<?Q*bv$zxc(*7FG;bolt2qO^<as{Jf-^#0s
z!n>32&7bm|qN{xOoO=C}_`c7b`ujqC{k&744qtx|KYA>>%ecAbv^5i%-TC9^k_zV9
zv+6Zh@|L0~vmXy8dL?<?`|<Ofb;pn39lM`~y@vc2xy)WS^Gx9_j%yY4)9<fhJ<Mwv
z7g6}Ky3_MO#A}K_$t!DWwTYf>yq;prk1=YVK(eN)w>Gf$(&wDl>KZp<ehtr@f)m(_
zB^G14)|21w7fCXA;)6InRJ?A}`Wu<~a87OD<rMDo94LGql;f){a15pAef)h794H)>
z@InbRJiOd&jF(N|=@4s8c`A_t(N22zeVk^xr0&8!?fNeLV&^*O;Ey3s<H+3FLeOdG
zm~)VA_wfH2_4*X(c?Q^_zB!!`q-=+wYMei4jG$fc{DzVav`FtmdQYK`-kn=8Q`iMO
zRZTRMj>Zuk#N8Cv@8C)sd2!g&w&V4{^DktcpFIi0JYUc<g=Jx$-!Env!D?^pd03Z@
zT2okWZRyJu;QT(Uisyjwvsl+nyrylqh2Liq+6RsHf3_gB)0fGfVUm>zvjs{4`XbqJ
zWn~4&wK(a(_(nbHP-RX@YS0TyUa5}Xg}qYt3~g4I6|xcJ)Ky(yNSomR|BKHmTFcF}
z=xgOl9Tf_p<RUzLb~T^jj{RzNp0`vsq7dp%W1L!7x1*`=;eMx}sn6i&9DY{t|0e!A
z3A&uZPx5Ss90_XPw;+T$#<GuKc{6%61vXfLegxiN<d!=59<-sv8qGQCj3d$3CU>4H
zjU(|&UKPRsb2UeZx5?9QI#0il^Yni4yPbpIdSeeEUDHy2^9nn5SUu)T8=MiWbNHcM
z&gkMM{$B^BY4<0j4;ktIxD)NlN`J;t>1FFW|0(=*#_+g{pL+rr@n?>M?@|Bep`V(T
z+{$yS<Kkf<^oRF#T`U;UFeC!^{&YK^kd!bqZ!1ohq{Is3qRzUEEi=TPTJ785Ri%Vj
z=Zla9Jlkq#(oas8mFsOFKH)m~)>_`=Wqf}y2wXD`FWLT(L|7c^b>2U0JM<|N9=9YD
z7*iBVhvt+dMv@q15~F#Kv|VtZo3RVwzSv(d=Smn`wO{{0pRCevgy2zYl0c6?p+2F$
z4E4X)qn*H$ybe_CfUl%}a~FO(|Jtb>4P<Zccx#$<s_wI|A3wWaq_ZZrt&xW?o+5#)
zR!r5O#6GJ(`-}u?d!OAv_EAN?t<cSS(?vxBwO!15ZFfXtj0D!1Pe@7_>ncS8cjp!Q
zT3fysYsCMoM@yhcO2`>C%r0<m2kipGsqOm#MQFN-T>n#*=a7-~YbESgvJ$GyBT0kg
z7idYB7eDMX8la`Yp+Xz8i@V4p?m%0!_FH;y^&<tcec4`gM$j+%t3?Ae`isV&P@hm=
zhWh5+IOAi0^bq_LD!bJ6vSX7YWOV{}xc0plZKIM-4~;jWIH9-<#s8!eOI|#AvwPV@
z?ikNEJJiI}mpVUUjNLO?r_Xm-5BL-o{V7%T!++1?uj1MtMzgq=I}|Z<cT{I1df8ob
z9Mc6g0>S+yZ%qAa_a`}WpuPEo<V2S0th!o(XLYuv-L7f(&UkBp{xZo6$cL)(!mTsz
zSAzUz=MrR!J`8ppcakaWR*^bR#B`kK#*-+rK^QN1fd6&8K&lC+&~aT^7}u;P_KW{K
zPol_zu*Vxhv!PjAIRQq})4pD9v5&1f_}$(u1NsQkbBOzc&Ok4dC%eP2>2X9Kq0h=c
z?tZN5(_}{*!mpuM!f(pyUAy{&PVg(c?zz)1>-W#F^GBis?1sT?zv<Pnj?dUFRQhp9
zW>4=BlE^-N(`G1_{plQ4){?h-Y%vO8Ms=ZJRQ<|=yei;!=M<6{jJLMCKR9XpG4BWZ
z{vafVL<l8bRo-K+C_-2rL4Dc)c{_rtjyi;FQZFGpRRPlXU=?8V&bFc4-V8dOd;5!Q
z0i)rYMf>AW(I<ZIg0>+WK4zpL%qDG|DtDQa(U|@FooHj}gL>rk>6ik?g64<t!ij2j
z=%7z|PU(`EINF(<Ox^AIo!yu+t#$VJ-BsR$?HRm=5pYkN<m>y-*3WX#-OgM>_!nxo
ztF=?Vo-y0wzuU6}V9ni|z$&x#Cd1#C9H2F^Xw>I*>M2Hjc;pG=)MTj-UU471-{~3S
zi_!AjeZ%u4v;}Y((L%}AF<RKC)t*;dTZHhU(I=EAl$W2u&`m|X#`1wvt1$)I7NyBG
z!gc?@VeGQwc~K!>Js<V4^GNtl_%Fx*gHE)3m)&k(hv$6=znr`9UckSyC$C>!{hb`t
zhQ}60qVcEO%8DnSddxm`H??W(fyqu5{LQ*|cERL%N>#huGT#-_Q(2DZsUMG3W&J*E
zXGYNYWd6=Rd8)cqbB|5GnB9%QY}FZrk<HkoK{u~y+VeIcd(6o0rn_~%jjcavKVF`X
z_I!Jl_-7<t`tJ7WQRnSdZ#s*F`ea#`Th@QliDj*^-M?pD2Q{x`y#4GhxIU%8QDwcK
zFU!L7N%A1cgK~M$MhzRY-@39zzq+q%`s`V@V%y7}^_c8<b=y84A^H<mIN2xc_G|6u
zohVgDisjEKjQrEd{s)()8aGNs*0}v~3zopRkss>*+^;<Ntro3-e0eaPgl3wgM6wUc
z?Sq{bq=et;y30uX9kr|V6n4mPSGM0br(cBsY7WB7Mj1jUH8|_{C5p!@QUs3}{vrIl
z7rRh0-_!niG;LvX7dbG-_h+gq^&a@PPyhNFXyc9`4^wSN#m}JzcpbICJc0cz5X%$c
zPQ&&*iF4u3r<33YeLC~63>s5{O<LVN&z+|W&hT%)$a)173Xda%ul9FoYyem15W!mk
zs_x_e4NzbeKm7j;-laBJ0q%Ynzdx_C@}Hl47_WWbUw4AkI)o>ve-u~#+T<l=Lma_=
z;OTr1kG;mLD$=n#`QH2~&mEs-mU^8`unOh&WOICx_nu%Kn7QG(;rH=+iaKn*-cuQ5
zZ6lTMkrwV;Q|F=j_ta;D^ouW^UVI}sM?Ibp&e)+$TZU~_Zk&R~;)#W)L1Ug`dJikS
zj^8}fl)dT_(msT>Vs@StudL9$0opL;Ns01){5)q#p^xAldyoC=xR(9?<@`^6>qqfp
zTlHExor1j6uVaw5q3-lN5b+wGAkSID8nRCnpST8o*+XRn>n^x^=>YF<pr43TVz8q~
zXb+=EezEJMb3wfm!?WFY*=c}xVNRA^5#$`Ceo^-ts8v3u5c24i87;>v?DeaDmT;=8
z7;|04-4WsL1>m1Hlt_nu5%;QxID0gCSfjTlcxwY|$(kH9)>un3+z5!RPpI8^ey;2n
zH0Obf*4qFQXZT;b{`8APcGs#u)*_s)z;<lQ8ckYp%t+l_0;KjCzkEFslX>Vf-e4PA
zGGTAb*xOqI>|KR7%DxwjeA0*QdmrrGNIXs_{zyX@B|d4zwr9yEjE)(j%V5dgQ1P1=
zl?_Xel6n7rE!p*Gl!nF{!fDF6r!G_3E>qkYJ$8@t7GkaRLbsty*)i%}{MC0BG2Z74
zk2Ya7^@=gs5ObbP7ORIN!|E<@$qb0ZfU-MNF5ulgd`9b6_k!-b2m4k~w^ki<9&S?x
zB~_*q&#X*e9^5jvD+po6RU@}wo46`&!(-0FZK|D1xYfAjNqu9ojq`QaC8cNAQJ1iI
zy~`epes-qr*!#h8I@e&#v8Z8pU#fzIJ~K9drxH$!a44q{@QPGPq<y^i;{J~1(WjSH
zuO-&@NpCd9n=YUV@hS9c-!bB<`m}iLc{on_*JKxKyO_Q4m%}bz{C-N-kyNn&LL<(@
zY>Gi8%xcW?l)2@=>}_aS=6j^hP<kG+#(vgwZkAp}73AiRJK;Cwezae(iXFA)wK)xl
zr^Ss4zk8^{-^N}XRsowFPrs4kH-ZQak1P*^ZO4O8s$HIEK%H~=;Vw7s^5nj>Q}{_c
z(1yGN?e6F>$UUU}*B1IaVMJH!(d1z*`IyOG)%I%hebxQ#_9S<6r%S)ujeQGz`;+6y
z!&lq7EcFF3w%RG^b8WYs!k%)z9<nYQ)BY8my)@@VvZ|<GwE6p2!lTN=UW&ye-8M$u
zX1Ki1+@r7C^f>bHm2_Lem&Vta_J>_kRqGE_H7xsJagPZrVZ~!&Cl+=wIa2TSi9q_g
zwsjdl(jtteS^!p1-kMyRd@ExwuBg`^1kH61FC8s5Hsxun_l`u0#%q7RiMfs?o|(t_
zm*8vNLxl4|&$j4VG&ao$^DvoWE=g}{y*Z{FVLm3g3(VH1w-BFU9)dgn`t=(99AVvY
z=i!%jFMZ1u74>OaUzfTEjk(U1XYh<&r)vAh?j(2>_AyTs?ianxxyISR#iK66?#WiL
zoBAb;8N0(immm%WtWDcjTK2Gaf0gGF)EQ+SHdDMd*~Qu}9#b!qJo}PeeWf4n?RiY8
zZ(Ddh8lj=F=HWE?uL-9br`??G-A#w+Je=~>t9O9aJ3uLSShKFxAod#GW0aU375cAu
zWn4W@$5xv~!gi{EC59Q(&Z~c2hIsL9SjVi#>$}rQe7x9<Fkv!bvJ8`B>K&G^ZzaRJ
z1<kgoD6!u=tlDT3Rufjsu(}NKC2a?9!}{$z=NcbhvPYSR%@kiseyjFdxld^<d7D0K
zkY0BD%{(ln+P{P)jitLI!qO!biG6~YPXGGM-=k%ZrZ23e{gC6W;d?Y<tcCh$^jlrP
z9d2$kmA<Hv2ca?M;WFhxk`B~5@ZqR%$(~s}WmHaAu+J0i7m+-F-bG~5=n@uF+@&n;
zGNu^mi^xsvqoQ4(qLA&|aZ$a?yyGTb@r>VovFXQ1tBp2cHDR?3t7Gc1Q^fs!#%TN=
zJNY9^7)%%}!{A#ZvR(5zeLA_Us(7d`c~S!V74)q!H#}>$>Ua}g6JE>kI;P(0S0}H)
zYUR#qo;JWvIjmC`boOh_`n}bQ#+HY}wsVN7pU-$>v197VT*T|s;~nsJB&JWB*6+z&
zeZ+Z~O}WYxr=?EixnN`3S5l0C??8(l93!`1UApesxmCtmgwr;Al_cFdUfuf3Bl1aw
z_xseA*Ms=W!&TchYpNd@FRsQEZxvkWeg2EHP5pRl{>bt$m}&)*4XSO>G36)oIem(L
zYTPf$(?Ax}E5y%FRvT@?YKpa%#ahRd8!6)cP+eQUKBJ!-sXE?-*M!$HypE|4Z4v+9
zLB-Dz`uaRvK+l1@LGLmzN^FlbVKia145MSJVHb>EMb4641c*tVJIii4Jb#2;FZ=H4
z<JYjqj4|Od;j#>uyQ7P_UI+Si6%wCLt^<t+>XgdO<E%*E^*`Uu(VXSuO!!RrEW_ve
z=<s<{<tSP6)32|2D+h;WJPB_JZ)JEJU+m|#|DU~gYqBG|&cu?`kRnBjlthW5C{hH~
zO^TGr15_2R&EZ&R0NsryfJOt=07TVDU8pJ)s=IDoRcJJt7d1sm6e(#m)=0KyERCso
zP>e6(2tPQ&ez3#g@S8*a1^NSe^NXJx4*UD|s*TK@d*{xbmy_pY=I)L{ojNB^=FXMt
zTlcj#YF>As2ie_4%XA%DG1ZW?T3La|&aZCqSQPsSUvI=~#A_K|`?P;0r%LW7Z*`1A
zdyg-@jv{=;+JTt2B<@%{x78#2Q}eZSh2$&GyS7JJ&1BXul&vq~G3vWAeb=X2o|NBj
z!v19BbQ}L~;HO(l)UM?zURe<aSx??(oocM7>u)_>pL(%UPJb19b8(jW6X5W^!eO^4
zw0p69Yl}FHy0A<aHlOEs2sFr?e?~`kGI5iY<TTzngP(<DMMY2^;J55iz;7_#A`?2+
z)xL12@TqC-Wuq|NBJEYn^31Nqhb*aB<q>g*JI#Gd-~hfJ)2^|cWZ#!bsW*VyBjB{l
zUW^+S!ekXbY)MCA8`z3F(Diu-y44<H>m?xU2zmByQD$fKG}iTcitrXAm@$G$o!z$x
zW}d(4A&Gsut9-X^@n=Uc%hp$f$9B8%<L=2(|E<9%+fx;q50v#se6V(!6`HKhl)A8$
zW8Z9&&_ClRsTZe@l_N!C<b62J@2oT1>O5{)tpD_SBHm(@MEj{lJG%9$@>=8V2Jpsc
z%q{##74{>bdlnO<?8@tqH5TDAb_7SeRNJL}no5)MJhkj&rDflI+5vo^>d$6_PkPg4
z+_lPDi*OqK$B0vnQ*v0}Vxg>g?tZVEVtZAurwDIRFGjp+y!9!&u651qJMHc4x^Ha}
zhtY2&-h4ZOZ}d>_(O-N^)wwWg+I7X}-9lS5zpjYCh`%A??>6wa2K;eG)DdcHy3JP<
z<1fFih`)%xGW_+a^FiBs<nseeXX74k8_7+?Y3K)bT^&=LH!NCT5gudSF#3hsFXXiN
zzQti~1A%MFo4{iC*65u=Yt&p-5%yvXG-6L<uTNb^S{L30>h42gY(ocff2gjtpxt#;
zys{z;M*SBts4>{53Bo3)zXbfPqCT6pDR+gEF2FS)auykVdxCJa)fQnj<}e~wHCFo=
zI~9G&OvWDeRGgpKO@3WP_=~zS;!oqRPZNPn?PL08+(mI#_Ur3~{-Yq$x6&evMjaV3
zsxjKfJinXsyX-tH&hxw07I7H!9K@S1&%cV#`x94vr0T+%UtH@vzwfGVGuKmuw{~sQ
z`$^p8u)ot|`juBS`FoPwK@^9P8}?asU0>tMEBe=0gh$$;ahenNXTOady}qI5TTn-g
zan?nj@`|q@qw&Tu0<QyujHz}#P0h|Lx>x1Hp6Ej!(R9vCoQ2WnUf@1W+hz^t1E5Xx
zpUzxdh9!E4$ryU)rdh>L?P=Rp*IR^FVm0c@s4F>3gIv}ZU(wC~UB+r&1GUWFMAw>%
za2M-uVyslhN+0$fcURzRuqM3Qituj+A&~RJWpzbZjCqTQMUBNr1H$6f<XZ9~EZSZC
za6b2JDsq?!D%X=KN+*~+;9hqTexnT=@vHHBG$8zPKHMhu3+7CYji;}>)v>G%u7+Os
zsv~w|u96t_<tqDB*W>c_WM>-gC%lWOk;IU?&Z4{?jMsM{SIm_bVKmyuQNL>ax()v7
zcZ`VB@;Tw3^Zog|TYdUFf%wd?(uGap@-%)Vmc%1szD4VpG3Gk^uRmu$X(v>Fx>oAK
zDDfHfXVjlse;)K+e=ehYWFI>83i?R$7G$@&l(iipzNv4;KFmhF8uOxk+hc%!=^<)|
zIHiYELg;_;J>8+%Ekf;@zOwcC@EGfgA|8pyzUfdG9<%Rp-v2IsHi6Rv;I+#t2Dc8)
zu1-sk?0e>lBW7c4SNq*X`xNx4F5ac1?gE*taOfVPVLCLszKF+&$1*(rsIeb<XzZ?f
z0E?4Tc(zmr*95jFZIyle&6-+vlki_XyN)`A#~(uLJ-{c;_hY@4yFMq8WUp_|rsMTr
z%Ur)(o%@EvZ#Ah`ZS_TXr@hSh)2W0<#MrRL#2914Pa5N$HFVwV%T*oAcd)iYNPtyH
zn@iyME-h&8z?6?dRYkM8{vtfbIC6|5Q-;w8e!a(d?h>81O3+z^wOF4Yv8J)sr#<%a
zx^wnf8hekukTphJMjuw&>qRl8e)Y|mHsMPu=1WZ|IhrnYqN{Jlx4I%MMtd~sNUbCL
zG`}{lf3B*?72{KTh*;T?qAsy%&#$ev+9Iq*dp2TKWA*zz_8rTxYNCZlKLDy{xrZ$~
z3jOh+Htwki_lyC@I;L1R!I;tS4H)-#5dq#s+;<PXa)+pRGVR$eH8`i<G{d{^UVJ!T
zin$)-{Nl{BKF!|EBlQ{(JeyiYd-kqxZ9W`EeH-;{|LTTKjd=qabVt=}%wiU=tLDkS
zz9Kxv7*+Ipwcp#X{y3B0B`US0Djc?wckz2R(_CIJwQh@7T7*%l>u;}4DbCOC@BHjO
z*C`cq{v>%J6NQp0V%8vb>6ez*DOFv+56{sCjy5oD;KLrroP2nA8BwM^M4Y<CFn6Bw
z$Cg6Y?89xW7mm0kZilLeU2_|{#c(q{>{@>jo@358`o7xt?N`rixbJ%pQL3)@$Z++{
zR$XxsW*M)Fd7P+&se}7e-$=W24KZWslI8xw+}m^&S=k*}%H3*MyS~xCIv*C}%!!D_
zzS+YrZa+{{o4B*vCNR2+I>(1<7x0Tf>86TJvAg}@4A5%Z!%f#;glEyK?Zuf-K~q0S
z&fw=9eircmI{rEZ>Mr4jlWrH1v&jeW`&reW_-yhqyrxaMs&Z?O72V&&JJKahTaDj3
zi>}>I;P<zZmsC~DQF0UC;M39e>{a}=fpdK4_$ue0?(udOYvFl*7C)S0!0ze;{Oqb}
zK>GW!Mxsyla1}gUg0|i7Sl`<AaP<`zVK(M(BWAS^`xr8<FSCcMAmECU&fM>jHH@1b
zqnDF;%$RbMwMQIB-K*`GqQ1R8#g?mJ!4;eB*7I#<OS{$|@f`77hUY%@6;#3VJ>|_^
zfXzW4iuG0x@Uy0TvF^Ke?Y@FG@1+RmF^3fGZ*70C_S*jLvexQ$sZCvkx3+5`V~nc5
zwUD&t`s?qCHOaW+79vud%+{?fY|ovs^`*VWB3#BeRMdl75B8~#z~=e%oeji&j$ql&
zBI@*dsfL_jbvmbPt~6pa`lMw(X`kkelh4!H$k&k-T*o`qmv`~|e#d&#?!7BpUlAVL
zwPiWA_dY!ErQ|&P^0Tlg*72IT(hdAR6Z5UfN0dyZL}z9CW^w~GVh<;=@_ziBH*(P*
z$2(?+^Bo+^N!_w@DZlk0{Frm2HSU%`bNzY|&meuB+S`kGI((n?6MgDQH~F15;-1Q$
zA9h~JWcQ@|*47OU@1w#Y);(x`UplV0VBH3#5#OI@9CAPJzW9{OkVo8Oj{7RpkDOJ8
z^d4wtW=M-yR)oRmKSuvi>q18Ihk(J^&lX;*fK2!9>=Ccgm(;qvs9vE@vrSXY#OlvY
zROGV?|3K~5x{u$?TWSlx>$-e<wrRE17GX8!D5GxGx|KZEAKm&;A(D}dS;SzM9ojR$
zq9V*idp2TDV{WJCn0p2L(lPQyO}UT%H-N`(bCtgvfW%4ST4%&(v|r2Y*M9k%c?~p4
zmVwK|<V_WQy^PmK_;~=da@KFRICc4()z({t*R!~jI5R2sn)a>ldl_Ac^eVG9Y!<Iw
zR^8cs-~QDVVKLga(YDpLZJ*|s`MKR4|Lj(O+Vjimtl5WK!7h(5^VVNS25AG)FlNVD
zi^wBx;_v%-&6@si;L|6tH1=R;uv_};cyA54z5A#-V7BuC{#u8IURVF0!Mn`(#r|%o
zAe+B>gCW_x?EV+7<!*6Z*U?tDdGqTn!Yk{8;;f@+^U~(+Q@x&BXQg&<w>s6X*DG6J
z5gw!68|_|g_x3%eo5jFQSao}y>&>v3u4|nUpE0IO9MZ!ms!8b6Y``p!>pbT&ye`>a
zrdw?p8Y9xHi&%_UEW;wB8vUs`peMPDT*@jU8hQ_zt}B7=f@1lKTKBq&@Yil{$$dn6
z&VeFlKoj<sEF>4;nVyEXeF|L@7h<euu4~%+)F-{HA~`PnapyzM7U?>^WA{mitg#zh
z#uzLmk=8$b>osBIurGS?jzZoeNc?4F1@?i$jgD&zUbA$fYfV1fwO2n7ao1<ut@H?Y
zv*>WXVIfUc;lq~Ln>?avUNQDh_8D7!io0lRy#zn+2s-UG<?k`yeWYf;&$c$lzq)R)
z81-DAvG{tg^c*9f>+ta&t2)*$v3JX%@3O1u25V98^%-k@vMFb=Czx$h$|}0TR*YZv
zH%_wJBR!_Ebxn0FzSVJz#Gb2~Ur)qa%-897X;JRHPqk*6zuC>t9t-v<-o+1nIKJ*S
zdv4d7m94J`kFjSz)|wHgto?kWhx$+Eux+WV!B+Ave(PL%w}_-&Zf4RoB8yj8gvppw
zkC@b$?9-e$&GGk=%PNQdNL7~Y0+HQf(Vi1mys{z;#v1I1L5;ya<r-2>=YH(7#i3o}
z>0e#MV)Plye8xW7sKWJmJFt7NvDii}USY&!#AF#J`!wq<)j)bL?`~~Vd)Ax1qKLVO
zxiZXc_b^s-50f4kpLqy>aMnKJ?-a&s{Hu)EjMyy0=G%?2d5F5OLzP+B0ao5Y9EIHo
z@1S-}<44|O9m^W(q}jp8ILiupWhUsAnV@rK1zCv=%u89pCmZ;T=VQmwI{rPtzl?A!
z;Zt|i(nP`ReaY7Y@#<P>5oU!>q!*8f^`x4wxx)`%e;7Y6Aj8EP{AF+?Cvv98oHll`
zktsa=&HYa&&dS^%amPLeBKHCCdH}Re@LE23h<A9z3TS=?@1MiZDg4Fi(EDEOp24U2
zvvh0AUI%~VSKz{$+*#XMjkx<wf6>NXxB2Zzx~pnxbdBiqK<**X+AX$T0fpS_a3M@<
zeZg28+AQw!*4HZ0%U7;l{m0LJ_tnS$^bc!aP&nhv73y&InZE{I#OZo6zjp&De5gKo
z6H~1@m2Y4Dds%6xE$mydi=$-*1J6h8pFRJl@b~lh25p2Rcz4{P?TzCrWzYAb`h@*_
z`YfzB_#wXia`GJXnEA~^rT@fcrCqy*Z`1lXO1=stO2v)rNX1X}E*dMzHC&l?uKArw
zauIa_k8loR_>$7Ve6@_fMf2WQcwYfcxXa@s+_koux!09URpmT#sg<dFoe9qL2<v5i
z0_}C4dlwb~sXPJI4%Od34VrL|z*B~G#dj90cNUX>_LPD=Vk!A`{9BI-zSZ&Er;`uj
z-*laP?@Yovq&_}DuKp}y5J}HCkLy0CY;e9Z_mSi~7t|A3Q<&l|Gkf4I&U4sFPAE>J
z6d<~&+m66}#LEiaS;w@^6~*853KzkBv_WsH_j&wva4AtpTXhd-Vn+W4_Oe;VZ#im3
zA%}8cJ?MB^!1O~m)fx_uCp(;iG)ZtJ%7j_2U%Z)x<ma%O@_Uz~7nQ%1zc0$UcX5_^
zK*=7S(Ho%bwB?-i)cg$Y`lI-{3Z9Xvu33%n0er$4u<Z0E=bnO$o)0Q@r458i+@q3n
zx-}AXg!Ba7uPe#r%)*stEv*rvM?O>g>U@?G8PN7J-<cmxQ56GR{XA%jI_vgpiYK@;
z@xjFUN;QR!`5Z!Pd<jv<^Ps?&ol^ZoatE5>5GdxnloQYeM|jO$l=g5u^~eJB)r#6T
zl#zl1CDr+j4SY(ya{H<MNWGyW1uJ-$opEl>LmO@f|I>b=MMv9?RvK+9bMNH5G!{&p
z!hXwrxOc6EPGGezEfh`%pN7iX^Uo@}g!v1p-S6`j=1Ko`E7>VIgzgfjVKns>@G0$m
z@-`7ee~J`3kKa`h-b_2p>+1F)J?<-upbG7}da~74mqpg+@Pvui)DyoAJM0^fM9k4p
zGK$wq`@9TKpTxOb@<1$dUWI3)-%GFcV>p_27~kKAA59D63D&WP-|LD4`RQfw<RLz1
zocf8eWBsQKzsoqnZAjny>f5{~BMiLy6Lnttva*JIuw`Vbmafhx=kv_myOvok=A~>}
zT*R8FD|T=VM#M=Sep7hkyn4<1)3oG#*(2mENauANeULd?P^cp!q=a76wy_HCIu^bX
zUOjscq%!r8Xd|xm6HnJi%CEuGT2)@pRdv)3*3P`j+S8RT9@|fx{zdDU_qqrTOpEzh
z^^~4fehKSy>Dg_dlbtkw6P7mbnOB#|61;kr2Y(rVn>={&SPngb^-XH|c`th|@-wMK
ze{fsv+r~5RI4Bo>&Xd;q%qy&`)$f2_^fS{=5Bq8PuStp9yry?wQJr2ad6Rg%k9Qd1
zSp#ozf*hku{DgMR1XdKYvJ*Vrvh0qIGd-U<-=)m?X!GcZ*dET9+WX{{rQ=Cul<;PR
zfS;a*O-8;T4PM6YW>NSx#Wj)xlK6q_BM^Frmone4e;+p+-^V(h+995q$QU9>o*ADP
zGwJ?poPJ)H)mbiO&QkxL9^;;-5i_`=_)~LFQEc>%vd)XODmgn_OQ0#BZIbY-xG404
zIk@*?Ypl(CUjx@koa+s6n%2-FNoDpOu~m*_M$(%hc?U8zAK_cg#Laiq^A^pet4;Xq
zh?@y4m~Ex2vd9U;j+TfndnOyVzwW%gAZ`MUpI+a^QIvS)RQ$UcQSkuJn0l0cEG24|
z)(11BuGYSKUD;>Ab+tqF`%|I1#J1Ozj;3yw9c4vFNtQHUAEl3#Beg_x@#Q7hY!7ip
zMl<Sj+aFKmzO#}23D#%UozPaH{G#QUojNVrj&xx~m|xowu{_E}naiN}5xfWH6(;aB
z%&T84xO#mW{>@ZqXy+Cw<H#R6Uq?iw_9wZkh_2+LFiGg+IC>c3Q|N3bS42Hgw4(ND
z{rhu4>oiLhZkM?@wK_%XTG>CI3%XH9OC_I+yJtsL9cy+!kGeGf(>bBJ&g##OzAr1w
zf^qV?wEUwEY03BnqanM;kqmm$jPvvT?PH%TTuYrT&{A$*yX?63^{3aaProj8l*YLD
z6mJ9Zq#WZqv(ix--;!f8SJb|a`pXV^)ko`n*oUm(r%%N=|8(*1qw&q$O6v1*moin;
zHrofW2|Cg%m#745w5DlWX_{ucBVNp{pgt|X-65Y+7O>)sG2ty0sbxjaG-*ey=dW0w
zR)0GcT8U&#W96xqp{1Y30Y!3(uk<!#DRbNO*V9bL3cMlO`26<*C|mA5F#_zeN%Qgh
ztoF%96}hI1Y6bE<nY%I9RG->^AE^!MR;6~{)2&bc=|~12w^OQa9_OSfRmEFn72vdZ
znR&PLiuGy5im~>io<3SJyD9sUQ--o%ht!%LrI=yW*Q-ybA5Vo&618NUCo3<_8fRLa
zY3=nYBAo30)j3MqMmirX8i_Kr88szl$yH@Bd`so!crC`R&8){o&#LOv{QGl3bJ0zr
zpTfGzigZ(Ty4LkKn|IIB*2(8GLbx^M!Df0qj8=8&^Cwf`EXm<cuT#-w?<@n0j7Hnq
zlaWnU_%WL<K9rUd*}XHQ9;7}-|FC09N={L1$JE}W#;xA@S)HClK%3P2gN~`EIkZ{F
zY*o5R&%@zU9%W`*>i4Ke>SB00zO<%LKI=09nppWi3(m`9yZxBY=2ZA_n)$<Q&9rov
zQpVNirs?<$%y%(*$lvsQnek$`PSso??G6{}vQ)SYEuibhC9lORQwwCT%wD61%7&{?
ztLbE2i;<^4X<up;({CBH^XpZqoUbdr{`FK4rzzFF^r}P2S27Yc8>gvD(>DACK682U
zlc%p9DBNbNL<PSR{|oW(tK+wr|MVwz?P`5Q|Em_bvEP()=d<c^;&u!4wEeGX>QkAM
zu%u$z?Z%$JIoGt<ft06qJ~)m!*T>L&&*Ko@Ax5(`r?b3UuIMq=Lp_>yM5o#Q1r--$
zrn)?urR#ofIM3NUf4?@@Je<w1>5diJeay^ArAqzh{Cbb>oZWN}jyr*v->ECT_j+{C
ze9mb<6njRcnpmDc=h~%xo%JcQJ^+f;<%Zn>-22tzNMN?prY=2(fQ}mqCoe)eQVTKD
z-XwOgKL8HV9dzj~K+MzEml%gVqX|3WC_5#umi0#2-?xj;h#eh4Z=zj>LmBEAp_@#U
z675r;XV|aRelD8N^yt{eZ_>qJT3PA6yLd(>gRP>%q+Q;b?>KE03f0v<!{L!DDlSVK
zT~9|`2frMm=8@g6^-**%7!<V|hj=s?y68E=V&hA6pPt@91Fo6Q?B40g-lCqJx^m_9
zo^gl7Or&SN?mf?U#LCtt%)Zx`i+%E8wf!J@ymU^}7@l-`?{)9CPaZq#j+qmthr#G9
zJyCiWBHPn0(<UBApZ5DIq6a&RWUg#|3D74CpqLIezuX4z=>GEh)H&*r1}vhE?l`%l
ztRda!dll&7t^xIFGvE0<Q&SevhSoIaM=`tIM4I#|{#Qhc+mN&}M~V}o_^OFzF`e3>
z>DbOi6k$~X`{VDbXsCD-DQ&JnFG+r%t7_tB3_%yMqkvhLCMfDt%($3mG<Mq2KtqtS
z8Z(?u$(i(ZZCK7#?@KJS?mhO&=f14;#AC?8X3zD_9zECmJ+~W=Yd$@2M|n%;MEz-L
zO-5xoDN-_p`Ch2H2<Vd*(4E`t#ot0lTAB@`x5{^!J6p#qnUzqNCVh%T`e;)3{@?16
zgz(*eyA_pv%6whLjA|XZ+XouN<7%26?NeUIPXX<vn|^Cuy!6Q*_0#2>kgNMocZ;lV
zJ90;%zSxdJk-E>mPr5?xv|Zlsll|bke_EO{hogC{u21^YN0WA~?LOs1d{nus?9Mec
z0ij78s!x8H(BmrNO^iCx?q+QsW0>q)kdDIo+G3}7+TuFypS|Clz|DEO+@XOK(XzEk
zTyC{@)VQgv2HKeQd7ytX^ELRI*%{C4;DnSbhz;7^^w{fDrBC${jL`2UZ#B5vtsZfH
zdbjj4^FCG+B=pImOsT+KQK$)|6J)yq7xc-`PVfI!<iDAhdIB2gokZ&T6wM>=tl^Yw
z8Kn>VhPAd@!QLU0<C$0a+3Ea7wl`1rw3%LVR?5|vY%4v&`VG*Jv#9Dm&pv5%eXlR!
zjyXrD{$2M;n&<DDxEA~{n%~6A@8h$lMawDU^`Cv8d>j4jZ{V&eDR1FN{2b1?YZ^1{
zQ*1D$1m#`2ADPrH9e_I7jLVp$Aw8UCS=T;UHJT6FjsI-)P~%e;yrnEVYJ(<LeIM`s
zHtt^fw`C{7`ud=cwgB(`03A}yw{Ku_+@6vFP3*uv)&FZ5z`82#c1exUg#Y{G)#`h{
zi@Uy$Jk~azymaN(M?jzQB<B6UgnQ>6vqS@X0`jvS>eHl;GEsPfnsE<tpC=7$<UZv?
zOpeIQgmw_pM+-@~Ay1ESSjLZ(w<MD*nrMc8*#`N$W}k=NMWP86`eYllJvFgUxgUB2
z+$U9@x{eO8KAn5O(m!TqxDEZ#r-@%~s??Q(eX7fK-}x2DM*2+kZKFPQ3YO8}YH}?}
zCmppBL+VqfU>S87Yu<#+V8m_X>FfHO(<i&Kh&HZ$QtL{SKK1mt>A{Q}GjptL=kGD|
zM!PY|K2<ckc|%WPX}8wBPc}K}!hDVHKc^MW_jJsnK3e+59WE+l-(y~nJw%-U-z2Bm
zckak`7}w{HA2rTrm{l72J-61t)0}N5`#rOxDI1R_mvdj8Lp;w1_@sGVN4}$svA*o}
z&3HJk&k8tw{rYr#(wL6jb>UT~QFd2?OAR#l>piAYUCXUcRRnp?XjdQi%Oj>-V&w#@
zDJIEFO6!mZnpFt*DT9*d2KJQ5M2kI0bX$_vMMxX_jWEC2MF(?LnwZDyuAH{2P=2q+
z^0bVbWG9Vv=<mnS&n6w~>*+q_XY%*Vy=t5L1O2jlO(}c>)*|I`^L$Oe;!7qKMDnH+
z#@mQR_St^*(c=YRMoU}KT}|>^eVRF*mmWSUHQ(7~sQfeLNL{$pxd*A-q|&-io&j-W
z))TUFgtg|}1FODe(kBGDXuz(aefS4^h|IBvY9HAkRu)|ZbvBh0W-jqzLn`$tnpuTP
zm%uws`c(Qf&%X*?uE6JH3~?R!YF4{GRD89oq59-eR^g+2=oUPcTtMw7y$8m19^hvU
za*9@A6S>`|-YA=5bz?StifY<-EtsKX;iMq;`_|Xneexu2N~G^>s7V;~teeT%KE)S!
z_i1-TcDE|2iLK8SeTp-gR3J9mm~Y*uUWsM!0jqT;NqhE2pXxz<_up;~s89Kilq#&m
z*hK7+e%=9iq}^E=_j?q@Uxo*F0BSG}-BeTbX=0M=zF$#0k8#KAbaqmGjnOZ8VROMU
zsBnlLJKEBE?-|yZGk;T`Dt(F!xp*W?mAbZepQ6rXG-y|w3<)#s%^vEL1@7jTRJzoc
z9DUa=S<0|)n?0-bsnLHqDwQ}*Dn9$vsVn<mNM#~B^Q1?sNt~)r5u4(>XAK0Sc1^I*
zr=GMs>RvgOZ5jT@KJL584oiKSSJpHF(<h0i?^Vw$drcvp6B~{ib?5h~-qx)5s;}w#
z#N$o#=6%XN=zC?S;CLpi>buVN^0d>r(Wf2YG!-P$+-~JspW@7#4)+itp&cXDjI64z
zFYo%K=hFLUy-<5J=pz<{7I{Q4A61_h`V>h{d4Z9SBgB>K-*=z7qh0siraXANaW=v1
z=zHh5wvRav{hZ`I*5+qrm~`)*!gE|eCm*u}5Ab^zzd3b{J>R>k`}+X@F5svod}>Z*
zcGIR^Suq`bAyp)tH7q+zaGzw>9ZzuItS=#d%g*F0xc4)7{~Uf!fdaJh?|bQV2A}57
zQXebxJ&oV=0-guY9M<-DFJHNK^&da?-B<HJkN@c()@V7uoID50O1}FIT!nF#L-j<2
zV>vC4T}4vY_*HyHe{2K)=O;U?U^a++NAkz|JFI?u7h0ZJke$rr)tzJ!*Qx%U3D(0p
zL1yURNO&I~$9<%Gx_=wj+r@fMpw8(gI$OV;Joo>7Fey6*r%>nm75si4t7Wh5I?llT
zoF8K4?4hNN!Wvgbq$E<!m=xnMI@j|-eES9U4xbp;_6fXWQkOf6u)2g=j(5Soj*`#g
zI8Np}4?LWKR9L`u&w)Z`@%K4QdOwe!MZ9|&$1LE7v*{P{?-D*`*YF~a<1^+pe+lQ}
zdeixSTrFomO2;_uaDIo+flrs%<oDi(@4fi^wW~jm-#3uqT~^gFS&22l^CD7N+sfzr
zGdS`m@Uwt*@Z0kGbmsM$%<Hq6*XJ^?&nKkYqLKxan{t*5Pmkce>9dmt>FdShpW&OV
zuH9DOTFk6t5w!XMKIQHmj2-c;i=b`#?Q}hhpkn&|dG(r<_(^<6SIdz~ZQt*by5}nQ
zo31jYIPWxlzuF!C6z=e{;^^$`zc%laT26jud7odzeO?Fe<~t;_vMD=NfgM)jlL&Pt
z!1cD`Bfi@feaK%zo7q!{_r&Rtk8yvLb(}Zx0Iw&|5q!Pd@?G<eX(ugK!h6c+&G}#J
zM#{ctaQBppywhz}(_l(%m&~Njp+4LMZI<zyJfr1k_T0aQbDQ$myb|}{x}1DNT|Y0E
zeb=ZatEmA$dc2Z-$ZqO{C%9MXrzBnZsh)pF3+@T{K_=<*(@z(EmwVXX1~%@iZ&R!2
zIf_q|T>5Ez^CEQJesT}`Lvj~7o1>rS0yLeziqsZ~-m&R^5j3ZE-NE%}H}V;zXA#-`
zF<ep8lv%?gpqI~;8ulP_wCI>GWbRC_Z~M5yNmjuf!NOO<t7q>)+YTa8xK>&PvOZHY
zU&Ts!XSYEsQc>TR)@95IrMm2_(r?d#28YSB$<N`OFW_@|V(H9(-ZN#E#L;=iEN?!G
zzfInJ4cF!q6`O{Z5A7dX4_9%XeO&(tpA~aHx$+jyx`*fU1}r=tdmrE0#A~-7B$~gu
zEtp!DyrXpDNxE+44w*R<n@&@A0X6Y?x{#XYS<3F2n)D>@ko-+)$=Z5Wz=}=vVf87y
z$@H9+uRi@uzA0;x3Ek^S`YAP+ocA$Set<JP2c2;avU4H%%JHkkr?1XDePw=18|oCS
zNdCts^pU4$rC-LX9NKli@$_@rfG6?f4)8y{IHG!Ay*k46#rh_NIloWN_#yR;bd9H<
zenQ!LQelrYArCwU4!Z@Ja0xj18aU(%Z0^@ES@3I5?apO<dIO(a#BrCQBYqdF=YL!~
zpG|gc<Zs@ADOvQ<zo?GpinZ0tSL@(N+W5rxCf37qd=+cB&9AAeu;S=s=36|1w(@gW
zHGQVnloaALpA{vE=%sDp^#sR}+vy9ffI?Zzo5yM@rn^hs$I8hWYmm6)PCgOlIO!!%
z@XW-1I*q^mezL~V^O^I}gVE<BKD1Z1hqFp8mcHNDrgXog8M{p=F;<k7FII2p-DK_W
z{F=Et@id;%I-bTMo`vWaN>6zfVx@(y+_tOp>;KCst=~0AX*J`8bN?4TKP<I$<*p}?
zT&bn2?>p?yc@+7yJxe=JvHy0iC`L(=oy(S`D`VKRqU5dIy0V@P*Om2U@)Z7$9a4Bp
zX@%4};of$%S6JDSMIZGx<tVL~xA8gau1WjU&Rl`#PdUkdFO*73AD>>$tts0Pll76g
zri+<1(Q-D|l&9=}A1RAxmOkw!l)VWaVI)3{F`L@#2XjJeS|ywKpLP!|V3DKrddsv(
zT^^+elU^~;gMT<DbYYBvd(lwOuBco9?{|7sp+}>ym#4{p(;-bnV=$_cm2dRw1Q*oC
zlyzyud=;NDbE1($3sHN|sXf(<a-uJ|s;q>|Pfy9l$}W0Vm8b8&nq&Hk-VogpmWe8|
zZ>rPKlvv-JGb*LL)l8p;(Z!_2pBK{NSAiRPU*dtvl#QL_gz~oOGf|o_Cwl}ui3fIw
zzu&~WoSVhj^^65EXR{5jO?<O#Y^W$kF~RZK%!g1%=Xn|5kc?5$_qA_E{4*o$vXCY3
zx1@X|MjshbWYk7%9@-m1rC$Yg#7F(k;OWG9GK{CN!;JK|Y4G0QY2c2U*_2=v)HJ+d
zUf<3NyrDdwUGVaPvT7ujUuM;49Nci8Q)e3Vz2SybEas02?`$aYz^nn0XgTALv<f8G
zu4$5@|D739#jKB^{Cj}^8R?+}J`J4mhZ<E&JU16>elYK!8Tj;k_MQL54DZ~1A8qRg
zlOE)RG@GCH!3c-QBrejK++tI!*cTcmdWxu(*PfA!=zUFK8BxyAHX?7!Tv3~g{!PT3
zqL$9hr4`(aN7?lH&qhcuW`xK~B8klSj%4Im|0gyrkF%-vBM;Ri??TI1&)1{n&w47c
z{7)obLRH#%WRkxOy+gml%%-0}yw1)YyKM0lM<$h-9jS`4v#cwKN>bmQ#dU4TT}%~S
zH+B)UVCInZW!krQ+50}~48t#~LcP2^|92kV86S17s7N_20$oA6uK526IBm^=yuXUn
z0|IsSA<X~&>qxT<&GZgdVwEyaBY9tDobp)x{s<{YYm0V#+P$3ma_^0h9`smj&KR4w
zqHO@FUfMy-&utlvjYCqp<YmWyIx?&<v&_nUT8OOWVHGp2Ly@zrZ<pM-%VPYqNGnCF
zv<lIdIRAO1k)o0Iq_`70<9HHhV)Z1m>^9wopQSOqks=(5N6I=kdY3kx#ujHPqSI~V
z-?GA0X4{ZrHnslCh(^Ul%b*T>?6Q**Qo3COI;jhE%+97`l>DM4S@}V$+l9=r#WahM
znex?b&`R&WYx7i;_?oB0=8~!|n@-;vnGDNY=wtKlFDo1TF=TRfZhY$97gs<HGXs~W
zM_4rNPez8C%joxD6~0vKbFXu=3NVkVv1zLpp|#mX#%irCR79q^5&FJ-m)6fZUeQ~z
zrSK0&#!o(a<$0;N^JJJ3$wwRZYKkSTeO?zgjV<?fHF*V?VvLFTOU7#H-AYWr#@g7j
zM}F$)NQxOh$YXG9aREQgz6svif11s=IqbV5ljcILJkN|xrwJ9p@H962$VVGm;8HhU
z9KRi#4dA0!n1?d9%#)8|ca=RZQwv-f{;~PILaVE=kr-{Hufn=O#=P0RAd|Ojt@f`+
zsnxE7Hq3K#8UcHgIU9!5(sJHqfB(TKDRom>MYO$b-WjL-ehof<w$FYY9F%es@kU>T
zQ5BnF?~ROym?g^28BZgUe>z%9$YdtdpLL;YY?gM)E1XG1jU^o?=`JHF_lzwTlG5f?
z#AsO^@dWhY{4rMsoBKz*`|yStTe|@&xcZL9rm;00^bRJr{u!H1tSNFs>EjL6lOgso
zXBrg662}%7OQ}R0rIY)l?urw%vzd>4L};uiqh;*QwvJ6ZY5oa|Vf^t(wbLzVskfB&
zX5Ey_;u|Yvxc`Rq5X+2ETW^i6CSN0p)lf2#)6Fqsi#Th#$X;zPfp546Htk_o&$Z1*
zV~d}f^vZKncGi+jtFdY^;jKKaqSYh&WJ!0vOM8t?M!y38Tklws?KIDG%GhSd(9Yr9
zQJIce<YSFZ61%AqR{0ZY#Yqie-bHcLRHir7otk}!h@12~Fs{$&t<B@yCzg36>6>6}
zpsrWaGl`b)-SU}4oJ7g}rp)RcHwWpSXCEiQ;Zjqq#ujrY#Tf0;{RGrnd{5hqw#_rP
zDzYL9WvP~*-JI8Nk*g*~kCe?-e>1X(N4}0+*Ko?5oCC-;dTehaekMJOljIIw9|EV$
z`CI}@^E@`TevUi^^Yj>796wJFpSDZ0gk$UH$W!Sh;AvN3$z8uOw&+owKCDb+l@#ZB
z?K`AW9(8{|ayec`FO$AJT2IIK<&VZ^KbT!soD0pV>&20k@%euyg~VP+=N<aEY3#O^
zk5-&BuCuu!_grzjvCWM%rPkzF54gE4KOZ`^H6q`M1atLDhDC11=X-}sIlU))-Xa;B
zg==SunZx3q*qqaE`;B8mrHel4j(f6O#Xk0Oc>-Ep1m!lBMqt+cVF3llhRP}wyab-x
zcW~X<=D=2=*%f#NYv8)|!s@Ar+3YTvCT7Dl>3<lRpIU|g?jf^s3On@aT|KwpqcRRD
z{ZcL+GPYQoO-<oC;+7rKwD4?AJ2oHHrc(OO27Cy10TtDUjxFLr%B1oBY^{XU+SuGw
zoW&hx2g5Qb#2FwH>_lCrAIH{p=c7$n9$;*7?v!H8?`|T#NFV6{y!8&`_W|BZC#kqJ
zUhy8CLq*?1MHSWs6v^zd^+_+oBP6F}Y4VEN(SbYRr5)3@>>gW8!bPcNQ0NeIW?kqS
zpZvBtDNCR7ZqKpVOKy%zsc2&^N~Z~CI;Rx6i3kIyVAzz3(utH}yp%S%O`oy#Aj#xm
zR%*%~22!u=lG|ge<GurmY{Pck0KYtf-57h#S@~P!v5u`mP4<fBPS=l}R?gUF5ENzT
z#?~FJ>5xvW$mcA_X3c4e&==R0=h;0KY#ltdof9;LBu?nAyvTFW*dm0QM)#7-kh$!Z
zrUmETZ+UDsZc3XSSSjW787sboPI;8M{eZE>08<`fJmLtxq%D`nw)=>SCL!|YLn{Bw
zzWn=;Q=7?e;BV<b`<dJ)&%v)?O(ORlmT6Y{$d9WdnVY5GAysAEf$llvZx@n99;SNQ
z<XYUBj<fn%&!Rv12wt4T-}^W_{asG*-$=gt^z(my{5dB9J%{7i&AS5Wp;x_vt8pF<
zyZ)q(o-y=wTw8kht{s0W85><?!@8Pxao3EU%Jg!1bw_<qw3uF@-uI31dB)^<wdayw
zMQ-{ztb|$DkbS1F<IdL9vFzG<fODKM`e{z6Y~&*q+up-@7m@#7NY3FES1xs+%nGmr
zX9J(Ez~3Xqxwmz?cM-c0Ne9{ek2_g&=ZJ0970GX!$8z^;xhq~>s3`kf@2Y1(?L~Wt
zl_1=4lA4VCvi|gY^uP~}&mojaYb}L~xS9hzaiQ8a&U+t!^SviepYg}kGk&bz<$8Ih
z1N={(OF7}A>L~KT1MJ?-e!(Mf4gckTFFt?mYRb1lFLD#_guFrOryTwXd?V$6%Q)&#
zQ6SBKPH_C;(=&exuiUi=X5Zc0ihr`-Btou&U(2rWX&jg4T-k~0zMihvH`jL#-=5(A
zm86K@Z-WA)ik*u~`F{l~O{qe@WA_)I17~US=`;74y}QdTT{ra31?8MLn0~`t(fO&Y
zh;&&~G+>t;J0`Zk)8>_L;mZE*<%{6geeeSDxvHKOZA9Wz(99ha(*5HF$wZt;w68#3
z5Er^z`RjN(BIPK}vOCs4!QV&tpVES|ozI;}%|5wHSZz1bG`}`C2mb=ra}rSs-fLb4
z{01cLjpQ}R!?TczXK-YaT)uMc>OX$&yRSa}r+--c0{*6)qGa7x*)LiLoX8{dl&LM)
z@h#G87oTjYqxn9mNsXnWtvuiRa6ZZtVse5jU%{v0PvhtCt)IZpLb8<bO!E44=Jgr%
zns<B^*QfN}SGeU~*tCrEt9_FB?%B-ibIDKR97QXX>z>aXf8ptCY8S4J-?y(P)Zy-A
zS_Y9$Cl$9X;d-Z%uN_OY>};BoxZ}z3&)0y@yuLGaZdPulvPI<N1QVVmrb&sT&nsvD
zTEX*}fPz`wBC9>6R>bdYfVVhfn{rt6?<CQE0=xpx&Z8IA^IF8;`q?ewz4UeZOc#^%
znJ$7WY2#=-@=T|W&y+r~Md<UN#8JzN%S9*hDJ?>u@e1U*U&HUBCt554P8L3?X>j8Q
z)ICt|Zya-XdXKbOG_@9RUmsNWHvtwjMHW!kr;iBX!`E?!D$nn0u*pnob&@=fcUZ^2
z2CIX6LQ#*<niJkSkG1jnp9WtSar{XfPyRZIvlQE#=5x@#i9F*ljv~EYzzVq&rBIi=
zmD201;-Ks*<?QDa|Cw@6^VU~zPQPZF;I8Nc@Xl5sjk3~{w#XVjq5V%eK-*M5Pjc)6
z&R&OOt31<Lb1_kyml0L@_+Q{0Rqi>I<NW8G4iD1O_FuQ0E6?H_&A4(G{Af${H<X0m
z1)pZ07&%pJ!>aoHWCM9J4ZgJ{1nnX%A@cH<T8XkPm2rGBReAR+zEfYShH`R|l%|KG
zJ@<5napADGr0ORt-C;R*e;wy*#@+dt%LLjd)nfD;v=$?$XP+>6{nv5*I#O9Iup+x|
z8vI<<n&7?4PaRHv0dz4ZHa!o`_W=KkZ*>w@04;$KD>sy{ZJJI;D*qJj&AwJSubyno
ztLw_HUQ;%b#0i8a<vEcbd5t>!82YTH!I{-0Essulrw(s^4QB|w-;<DtoNiWTkNVCx
z9WG?V%Xigse!PM+tf}ZKBc9pls*W_%3T0Kp(XlnY0$I2Ye}4s5$)n^&Q0C~^ir$9Q
z6l<1!_1id#IOp-%NpXylq%vS7^Bl>$FJe7)cz0Sp@HBY6iWC-Wm{PdD9R7bn(|YvL
zksduSE*nWWz;p7&4qR81^D(lS)q44P18H3Jr1E9y&n~D)h})j@$0JO9(30l$^^Opt
zgLI_DwdQm+6Ht+P4~cYDiKLWiFFxDTkT30Be>(E!i?umPbfw8L<<jXIuGh@6+i}Fk
zRx|mi9p@7j9Xo-XN@HVM%cgqvcBitcJ{G4T!>Z})Hl*0^!tHY5qp3`3<D87QGWP!v
z(uHwU-9Ia}vuQMU5mB#c%P_aR6S?Q#$;6a}=6OhEd%ml0)~b0n7nRE;Yki)duEedf
zuIWhP#oCg%%G%2%^t~BL=mYR$b|!09j?*&nOK!=fx{>IM{JXeV=vmjMnGe}a`$t<@
zb-bznv49&xXp>6E3pJ&qKRRk=oZQ*6kacErYNlP<MAlTj@^qxhGYy_!mM-P;g3-<P
zExH3G4T!;PT!dLO(Z;mZC$RK%9ny;7SJ3Y~jdj)WJKZwG=aEbU@l`xZT5dXbx^SFR
ztd=GGYp{z;5(+I?wZZ4X`Sh~uvYvU#ytY`+67j1}yOXNMf)#M<rO_C!fiWA`N~Kq0
zNzs8-Wl{}CyNz`LhgiGRrPZ<4>a3Box>)(ePGV+0yS_fNJ9b@P*Q+osPO0FL8X#sv
zWg0}c&&6C3*CIQxt|=Q|DjcMyi}`LwNyv3lyETt1oyRrZ09AKY9Fbf|EUtCV|6$Mh
zwyJDmMUzzDvU+xX4%W(AHquZyFI%lgj+IYYdqw%i<7SKNbWN@m&zeJvX?aEI24eep
zJbzY<tgBkUC!pv&aBT6)=Rw2S2rFK%jw*=kr$&}~82WXy<`1c9V?ERC*CJNdEGeSv
zYefgLZhiLhC0)~ODMKy6YS%r;3W*5Pt`weTy)ZLn**z?~vNcU4URK)7UMDM6rB`LP
zd|tG^7qD)k(5%x=>z(KE*;5X)3Y{KC_dZ70bC=p{)^p1o2(ETMIbazpqfe0S98TBF
z3T5JsHWBs5yxxOMWtmrQNa=YSoU60I^GZvRsq8~yzsM{lz$~wQS?QL?;Q!gvA-|US
zvqUeWHia4e9ngzbe7+W8mQV6UXgKx_X>U_{4aLG@Wj*!ZF8G{%JhPS{zO~LP4ekEC
zSyS<9@(OrRd&so!)47zhm1zEzX=}{1F=qMP{p<ZE(7uoAC9xsrfwHrwm8QnLJwx}p
zs97XhKOZ)~@SA(B^QZNEtGx?-as*w-T9#Sc&9Y8*ZZh)DbusEjABDLRsl%HG^j^oh
z82e!71ZxD@d(4$;ewYuva#KmYS>(4&nIcd1HP|lMs*QC}E~O%$G4&rUv)MjjdXl@z
zTXVAtS}psEHmPkeYyL`U#I8spQ}Sf#ywTZ2x6*aJ3h$Nj><QK;b5&-`RX4C2)+@|X
z@9Q<_TIl&$%?*Y5jm(q*R#whK=1S8`e*0@F=Yy7%__L1!Xu8dx9i&%w3ut^xNeIRa
zXDv<js%~RdQdPj*Eq5rJ2Wi1bAmhVQF)|-(k{PrwVNH6TBz@?7t;Rg9HBZHCKg>L@
zbG97l-WPZ_w#6&3Bi>L5J%Z)R{o6QEX133ca?GyMpXD=iuW0@vZ|-%@pT^=k=?&{#
z40RRX({gY2{O4L-_C5N?x`%Go@dXz(v-!kXQ`4+p)^TBpS{@({LXU=X<0Pj%F{T_|
znz<}8S3g@RWUgf%<&U|-mlR4!v)RXM@;Na^Tp5XDHN(Dx3+L%cm#x*jHy*94)w9{Q
zdAcKZ-Ls!TDrINwtC;lj?-f5!R212nR`O<_Hm4UHsMsVYJCf3UqOzW}H($ETNAG#G
zvP^00TfLqMJxlK9`pifH{mJ|;@U!ugTx&}wOqshmU&N}5c3_|X)n9^~NOwP<|Mgyh
zwp&x4>pVmWtMJMENsKD158ZKlUN}goO<u|Gc0DgEOsVhQX?k|+O#QQLjL6(GYc{J}
zhR*Qsusnb3nm@lSr6OYqp*suDin8f`kn<q%v-?x(_4szwogb=ks<gSA?R>6nzOwPI
z=be3TwjN7%C7K(v?{Ow8b4v5L%KYx7v*Jcpey~GMdYke)ht6hIzFj+Kv!Z#>{_fo>
zXG4#9@Syb?(u$#3`ty1<+04%T<R$d#Xmv9R>FQ6I2kI5?%r#p+7y1?L$~O;d%RgB@
z=h^B#&2#rKRfe(JbT_(L(<@z1F~7-Nq_Fwv`B^^sJt=-3^LxT3=af%ldKu@M_VnLf
zND0?$nQcgpbbm70=|c99;XI~OHRmyzmBzY~N>?~$XA(|h4pX(Mm^}J4aJ7UV*}<mj
zUIG6T9<gh_QPoLICe>WEQ=HwDuJvoVsnbPW+G!Vgy>Ht+^sJlGwGVa9sXJQ5!uOq_
zxTCG!w<eDL;QUl&oxJZ_#a$e}Z)r@pVyM3FxoRcy@0qn7{<CE>Ea691r(!-sX=c`|
zT=}Xu@9jHN8lTjaoY`GA%5xxXojV`#Z|l6TsD77SNQFaq$ZegqDu-5~a#;-CcMoaI
zuL?c0v4nEzV;?<Hdznep$z0t5Bw}{XA*-wOEIVf8)9L$lzsJdl(y!psq+f$|7`g(f
z5Xk2$i}HcteC1o;NvzMee*<R{E`e*al(O$w+rL$8Iolq{TXWpq$$#B)D~`J~Hk+w=
znBfubPbSa$A-IV9zRDgAVx`bFyH(RRb6F~)LD&hCt$@zU?ChlI&`I0#Vc#tt+jp|p
zVO9HXp<w3uRaI>)m}h4|Hn)_eBkNW!!ot_mfOZ<Oz;~ouQ6|}P|I7*Y3Up7$^<9lS
zYO)uAQNNSeJx}%v;+*rkPrHxvfWzm%pM-w&?QKX|RJ0RByI7fyJX?fpsQcuzlZ5>g
zEtiRR8_UEUJSTG(aqhp(YD`M2HT4|H_v}+OwO=}Ccmhpaye~kyyW^tTkCeL>)|o-<
z)*qq~{atEVdtg4~W$I({8CR8;@57f|+*j2fcAcYaW^k64dH=XQk9ykv>vVk1Vo#M*
zq8URb+O(GPd&N3J@1wW22CJT1e~(dyw8zbNC6UQ#OoAFW|6cTp#dgf2!uHqXd6|_)
zW~R#bENq{t+R+olTV&cOYbW&#hpOjDYXho(Gp)~P@?D*&HqVjQQlVaAJKCk04;G@!
zren|i3bast3Y6O^mm1qCZr^QJ`EXkMGu~kLHRS!ei>=rnlzw&(qMqsNs^H4<=@6`t
zKec$qMU(7Z=Ov@*|N4(?LhTS#p0Oe$uDfA$>WPX1x}NZKu=)8QI{Q~vj?focM(BYP
zAN1lmGe~MO#h=#oGkKi8S`()(tJde+H;E+79>?5sj&_HRZSYA~^(P)7{vy5u=Mk~C
zNv17w>Obw!G=C{k3&~&l(d_S$(%n0Pd7h846jKA4(!qbeVhdPyVsXc5ro|Oaq95(8
z$=;bp%cpTtLuz$I5{A_%l*hH1zn`wWDVN-Lu!d%FaeAfs7|>QO_R6_$diFy$Dnw6E
z*Fn;&SjV|2`_tH~>_VmG6C>--W5vxQKvm>}OWw?0cI(Ork$-h0_x}J&no_eYvLTZ4
zZ9Fsfd`_^tJ72A;X{-|Elc$-ljgnj&r}B!-)^gRny7^4}7M&SQEWX|(aXq~do9>ju
zrmKEcEj8Pf9KUKkIg@sNeWxi>E*-ejcr)o>dR_;)DDWY;sHi&f4MdU2F=E*XmlOXl
zb&mfs`(S=#f#9l+EcmY+9Oa&(Qaq<59I@d?`Z>Am$%NqC&T3b|l4}Li!TgsTPbgd-
zxz<^Z|LZfv|Gp#UEwVtkoU-6+t;m9+%Dmz{!u%j!qQ-R)|6hZ4F6*<6JW&1|jQ1X(
z^G~W=%^fc5+5pv`T8K2TBROH$nGWWE*}{C-YRZxQn>cfuntdIXyK65eW`1cCN;OwL
zO2bvuvE^NS>+^lD!IId-|GK73BnaaM^MT}aJ#~=$zk`Y<io&?Wr-kcP_Llh%#W_xM
zE$uzuX+={^j+zeoPvE&WqeQtJxPogmlLI?IRTclA`?aK4TzR_NvDA04POpwcF!?`>
zd*=iD&8j*6eF2Z;HE`KJ(=I;CpJN(YJnTt@Xl~n%FFyBl@cIjQ7NLAtj?Cv8BlFOx
zSlvW5mV2k9yjK48Rxp^?1w%mF{|d^4AZ1?B)>c)1ah<)%|9Kt=!Le<Di`6iV2>egs
zdD<&3$L2|VubI{~vB@lE9);~_!Z3?#2-y5`K^=Hri*<|5JOc80%Hro!z3R`5TbUNM
z$>rvelO(*~YZek@@^p`&>|JE<FGQ}`_JNP~(~vf{eNeoDav9XNeLxvBK~<7WPR`1w
zykz=MApPpt=q}Ca^V*C0Cgww0rF|THR#mGe?!Vt{N%-ht`kZMLjnxmV{(FpE95W`2
z&_BTIZ0>78`C0B-i8d>*^<KSMbmnEADSg6^oK)@(Hm@{Eu7WzuT)L++S6PYwO!+-h
zd9+<y=)0a>_sdEnJ*~9rH;Z})U9&{nI=4*vZ0l_8^rEsVuWbIDZ^hNBr}aDzURCcs
zkeyItUa2kVIIW0RRvJ&ofBqcgXcH=w>&(lI?e?9D(Jo44-TSwa>HTB&YN@6k&00aS
z6K;MNAG14TKJ;a?IM=@`;EmZ@_ojX^@m%#O)w5yUx_dhK`~;ps$X%7=@O)z&X6;jU
z8ty?mavuok;}t6?Z?|4(1#iW<6_@QZ1nm8N&#_nSiG|?Mt_>@{#&j_GOBN=}S5l5o
zcG<QW-&%*(bZ3V(X7X5NgsqN`Y09T!`8)(%ey3-+3_+G1{WYKAbWrqh3q|Ht%Mo+B
zWyBm9m6CaMF!s|nI?BE4Az<b|_6#%r*h%>_YX@`P^{ail1c~lDF2^ThmThV@6Q2`U
zp4=zE-;-81ZtBx%RbpC0!0%7ZWtN8#o_s&A&l_|dKcD#?Qx8_*wss^>S)6qmc^bx{
znqaP68a0nYnf`BH8f_VIZt1c}_rT0s6Sr``?OPLNPtN45@(B45q}NSIuRLe9Avs+7
zxlI0K`#9K#N12p;uZxK+ejf4NL0Kd|kBEAcJWL)flYZ5+J|Qx4p|lUpPsOlRO~<cV
zY$!>?)?O}en@>7xB5yepE!(NH<;(`=rSiE}q;hy3aR~DDBbI!1$H#q=rMPO;_pP!z
zpS*OPmBg*8DQy0cPO|L$DIZ<z?-%8<Lu8>{!{a~ybfnrZT2jrwigNk%&vC{!z0*VJ
za&vw#yY6-MKwi?c(^2c9LEXB8A;_ZNE~xOSnz1zP#p?2GsFEpfn}ydf=D+E;pM26S
zf2RDt<G$}!!OIm`49sydkFtvjmbT98>I(LqJGA=Kw0AfyyJ*_F^mm)G$~X6)69<{+
zHCH*U>xIu&uktj@s;)vb;aSToXu5*w=t{e5z3Dp3wQ1X3>xT|)TBO;y&sTnT?!3Oe
zI5o?@XjOJC-VikG`=+8{L-b|USZ_A2(ih7=uiIv!Uz^GbQ%jhZRF!l0P5+vAS{5ra
zkFG)&TdsuYt}rjoFUzK*tv(;*+4)yiuAkbTmRUtVts%y1?^bf7bB$D`o_h$o>i+~=
zxN4ib_6Ccp!@_o<s}~z9{uZm3X)!TxE>lCz%H@3ZLz!;o=jGjEuCuzoRVOEFW>KQH
zXSYq7d-Q4Kyu~psZ@SF?%JWAxjo7AtZtK@3Ynzr8GaWB^TCoY!+9|V*!XpbNXNP}}
znfLkLH?9i*SJCSswj%d=GM`wRtC@}!Ica1?mQk?WzPyd=Pdl4XWCOp09;Z{-C2b8n
zeSnI%E!9!Hrs99pjQLndJ2i1>T#|XVDjj}9ur1#|v#e)dvzld6-;_A@xhq7%*^%68
z*PD(Evuoh0t*Tr~wOs>u1mv>@S9YLFWdPshEKy3IL&zg{Z`eXB9<ZOUh9GO+vUHni
zwVPH@9!KfkO_Ik7og?I@YY58hn3H|Z=^*K6EsEJ!E=SARmUa43l7AL?&CDLn=2f9p
zdf<nEkIy0}VRC)-jQuQPG%>Qm{jDdkUGpBcDc{`vCqAi{|9<^ygH!`o@#KrYRsCMl
zb5*so^HjBEV0~SX{bu!hsv@E4X_~StOh@m0%F;V!>nPVkUvF6py@NeXw~sA0Jt5^W
zY&Gt4O8+shlX(3)I>{Az7vF{UA}bQNa6QfjGSQmdXL~-hlin-+Lc*t2b?Vd~<2#aZ
zsJ2&EwdqoAP`k+#n~*0v9n5_e^sRgM<>-4JXKxnQ*#V#DXElpwL>#b2RO8^ls8~;T
z;l7}D;by&RTR0Scq?N>#*!zw#Bc$h}pPI9I?Wby?5aAm2y+zzt`g$?*dMWezbW*;P
z*k=m(uAH{zTz7FQT(^s7eWYp{<*Bo(k2QjNN*W`D=~HjA*M|#_RrV>L54qoLdJ_9z
zTy!Ysk1Y1wJOAa+(Z-Z;;mWqq!Cf?5cVET@<=FVmsbJ$Vr0_1h5$bwIuJSv-=dGf;
z(;!?l34faNfs0f|@M%@Ghf?X=7O!!BL3O&8a~ks`?d$%$6y{!j={`Mq3CtK&9j$NL
z625BitRFoe{MAhE(qaqYhUw0vZdaOq689ATM9Vpwdw4bDZ2xKwGrJ(<C1>62qyLI#
z{Lh!&k37!3rzPqZf|Fv~qFo+m_N&P=F6a8@*)RY4vRqGzD-|XWVPPLR>OUXie%p}j
zd&sc8gEK84jw=6t6@Q;iC`JA2H8E4A#^WOH$L<Ll0<zk-PT1+0e-5*KX5~oPX<a|m
zzhe_shd`CtxyIPa6L2G^{%+#+DqcUtJKW`3b7@`&-D(MY)9tYv0-jjqK409QwRhXq
zV2h4>ZJ$HR(c66TM*fMJcQFk_ZncC+?s$J6-uo)_?<6^&OkWokSK<x<zwPV8s}7XR
z`l*#;Y8R_+*JG-C&-Kx_2Ytwl8*8$*tvugyO9(V&MSUA{*tq&CSS~MR>vF_2X#6#6
zbq~Nh>ndZk3dy>NSm`WfYx(+4&)ND?^gROpm~~rF)h~;4zs}PtD!wpx>+Ig|EtW|(
zKOVpf*?^p#B<JRga*tpk$!xSoiVGPjIE8q@eBn92%Co&$B_lDjq-DEa4X3Q<HPv)<
ze7P0&TdiAR=ABH-wtAx_+iJdaaP)74W6xwNN6scMJMc35=T?rbz1Fc+|E~Ln!`bT2
zh{L)#?EbmU0}jLQdRjPSG^L%~myT%6lTQ`#=)$8r6EH8&uN;?$t?S3;5rO{Ua~@&|
z5uf$(IjiS4ANZ_#_tU~>TmEGIto-dvg;%wCvc)m9h)WkPUH;_kpIbQ|+xI8y-}SU`
zxY?2&J1?=~h(H$tU&K?+M?h!!#LBU^-MXz>=YFS!I##E(;XURv4D*l&i3oHdkkiHU
z2%MLvSB}Pm*3sDX-us5kdC2`mWY$IIte)OHAhYVd_Ys-1&UZ&-HbLerp5DA5v&y|s
z3z`3-rZs!ph`_ifUUAL}XYWbJ1iSt@ZzWp+KLqT221Uvt)X3g<el}9G`CmofUWV1W
z3hI~dAXPlC-M8vnc%oz27sZ}j<)eyybaq-*_M0My+Ui696(Bi;58bFNmx-4e`w^xL
zTZ3%a#{cZ7;?!W7(#e@Lw#>+PP+e$6Y8Bz;GS<WzMRV7+A;_w6PX+lU3nAqkP>u^~
z&}O|ECN9=h|Ij9MB_qy626u4b^eWAjc{D7xf`&3_J_P>%KR~IFuJh?mXUJ>+vPqn-
zCsSvilI)JuSv{0rkL!Bb<3na5p0TF*yUseDnQY`#Qxm$bU5@N?EhGEDVK3#ee6ckw
z*WZC|2uT0YTq3<IJG%(!!t-reoS%2%tQy~yqp<D0(}=?S8uRb%s1Dv$Sb(mXq?8MF
zGC-zG3ilI+fXDwZmw3Eo%)HF%xV%mbe_A2hF>E$HXWtwqZysBJ^p)Dh?=M>T_1|SV
zR@>gy{>YkHKY>N8sgl>7oUqdzm&HB-`}$40{5EX#M~Jd;@0%?53<0s<wYb9_<;&i8
z9yLX@43A8?EH~d3n;<%S-gc4ptVPQr%DCRoa#=YBIpLrif7Hf9R<GvKS$Fc9sWpo&
zsIr|Uhk(fgJlpy6UyGkf7EyWGP>j@evB$}7O?apram^>Y9U9q`O=$W(L?F3O>Q?eD
ze(U%sqoeuVQ}a0cP26vDEm-_aC&?AH>ypg!&~e-BlO6)n{+E`J7Rq^9`q@aaJr?T4
zthBujzF;@8cr5<26?upDb+bp7Kliflhwp>Zt^_!NXBqk&+;>?n1Fqm2ZE9Vg43J&V
zO#J1gz!|KkxfDouf4QRaxO<2~+u6h+;Qil&Uh}6}i*;lkYhh2Su5YUM*~@dmbmF(a
zVBxj+?#hwLS?O&ell#=ju7gA%vy~bXc?|w0uG}1h#XFpr=KzL)OxnDr^bSWw6WZ0o
zO4Tb)2SFz+npIs_Ij-8)c(f!ZYVTmy1eg|a$esx8L}g9hnj|kNyJ}t4DR5t!bUOSH
zu+{gdZ1~fvhi3ozr-NNPD(hcGIa1q>${rX|^9f?K^gT32@>=jKt!Tk(%I<t?a0vWM
zOH#KNWp&pv<t@j&C&^lq{Co4@T?(JKmAm|?MR(0%<#^)G(QR6kjPmRzZ&@=@>+Zf{
zT1$F2ikrw&<o6XCnm+rV@nrh!#rY+D_G#r&9Qu^&=|SJwr=tbA=S(;smt(g1o-?LJ
zs`u9ju}oRP(A*EKvO`ARPtS7B5bW0f2Q~L?;N0Y}>YCU64R?ig_8H{St96g>n7mG&
zS3RA-xB4<I|IP6DaefU|uv4Zd^XD#(O_@(KZ#A2<KTS@ovfko}Ci#_CIjc{C)YBnN
zu09<d^F>R?G+AT04*CYJ*QVWgh&V~;ZZu`FN=9?K)ltQKI|L2&zqQa6#+aQcLrf_V
zH9~!jkk>6Y5YyNJp6Da7-@-@tDpKMiB8QuZY|0Mz4{?q5&h3-YO=SOYG+?_igD*7F
z7pA-`*A|?-H7jkg=iRG?d&+gIE6O->2pZ$pEREr+1*Fv<7S}7T;PJ_}dDS^~WwP%s
z?4yf%aHlCJr*9{_a4{WQ`AdytpKG1v5|DG3W+egl9nsQ!W@D)pIjCc6tnyt$wLkZ5
zHEo0;NVgw@R&7LVLe5dVXK)_vWztSR8yElj<d11x`i=~jRPEX_pTP4ly$OA<CLflg
z^gPbgCQ5Z=mDP<Y9`e}ZKI_x4LF7rZu4fB25NmBG$z7G7;qGIPhltFUVyP}<3gwp6
z4qjC;<c_WSu++?6qBlK;X(py@@>RIxrDgt`^}TPG2fYonF+XYQzWf^OZ`z3U@knU2
z)|8F5l+IqGUCI2bmShgO=e(3Em)o2x+os$;w4#yw%7!v!>0?8d=A}9-Rhmn6`)N%O
zNqbvGcgSVjmz%puW}o2@Y^-mAdM+t^105U7c-D+Uap%Xf=@usM&r6iCxDu~j{C&p4
zUnoD7WA0+hm^*Ux$L={eJ&!ZmY}3J6mR3W<mtB``YQ*gQw#$>B3gXEu?aO)b>mBf7
zmOt}6I6YaPrNd1~J<b`+KAR!P`bCQ)ig___LzzeVEWmcTI83s-o?baOcOhA`+`NCx
zS9z{x_jPm0DmLxguvOS?!iX<lttuVP8JaTJ@dzHgWUTB?QQ`Lme0L$4AAXnh@M$h2
z7c%=+o>H%W8t*f<ExU4Y-kI2r><0M1-k*<GRQC_v->6=#)6CDDPFy~;f~cy8n?IiY
zkvp*AkHA@1lWWO~>M4;6(=KJ<y;F+!Y}sRb+1YdQJ~m<193j@S@$_|_GqOjE9CV1Y
z$ZW~14hUOU)tH4VhQQ3j6UEbIebcTrWqW-4TJcpZrF<Q1A}jJVsq4S%p1pj|+}-c%
z<CJs-eA=6+8=y~lpt|De@lsla@myBZu>#zjH)`McLv{Amr~QVZIjws@EaRA5FTYK+
z-o+15%-6oV)!&uhmw_Z!9I;X&o#pICy7|pK52V+XZ!few+vv-debij1mRlj*WwOnf
z3i)XZ{+zZ0*3~P{bf!d0?EuDJc%*Fyh<zehdhz*dSKFD9<d$>QG{gK@CBlJqtdg4+
zm$@k8!<XxLpHy4|j!z|d*<f1q+3N|<w$(Lb&oOeZznl}wvDEe)qXS^Xwq`b-S~FXa
zk({2v{8QGN5d;a35J8vl%$r;IWppdIgNA^gcc+A(a{d#HxHXsi*;Ka$v(r<ihskGx
zXjpDzmm`vOUu|l)GDL1equIVd9*>M;O%IQLFJgW$D0+d<u&QUxoif|V8ibr9yfVXu
z!7PSmr2#(+YT5Y_Td%l$y>f)Hs-X*n*<78EV@(rPWs-CVsQT~b6jen!$;Ok*S}J>T
zAr+6O;BST?$aSsh)Ha4<+O?v2!SufJ|0FU;kC9P`Jf?pWJlR}Rrty#Jv6LYo`=IB@
zE`EMl{VIIjmfv^+G&3<@yb5<jt{i7=&m&@N%suC8a{LK>#Wd2FM_W7dh|DOOFa9<^
z*s32-`MA{s;m+A)IW@1j<}o`%YqpP({9=^)o<Oy@w&rlss4P0&u2ixoE$Ow$?>ySd
zWe{r`+O*%_IgZ@RZ&n~@qwjf7n3E2h>vxj|<#GGj%blOZear6Y%yvsAp{f`Bf43lc
zhLYJ8Y*&emO(Wjs@}PZE#}zTC6G?aZJ!8w@rgEQD?JmcuWlxAM$m@OmUHP4t-C3S)
zSBu!Y3Ysf%Nzigl!rc<4r%CepLS{U&+GHVNrlTDT){RRoF|yBP_L}5_h9==ts;Wo0
z@0jW7l=Yao=u=(JX?nI<mE($c_*YgGU1}F`w%z8UVVdzMM_b!=+X1Ae9TVO-&NXI{
zMx3=%jcw+DX$KZhw3r{H)z4czwvblO{vz-6!8dCcLv}@Z8UK`{h&h8cb=Cnmm{l(9
z3S$-QZjPh#5tnxSAL?s!s*=dTY#&or3Jw8F4=gO1+>pKByxmomUiESWAy=7BcHq+%
zZ9>*kj+VA9yhDp`B`1*O+dN`eHQzj9VAJCg>`B(V9wB0}sj6xAQPcYb*SZ80n{|#u
zz|SF~2O;_IYMpl>mSZ0@S6*V6vc=bbQufVuJCKWbHqP*xB&nUY2%iY-eq67+n0dXF
zd3`#eFZF_|NTp;Fd3Yvs#M$KY0g|;$l9bEY7jTs}trA<#t`$nVH6`uxQn#Ji6?T+8
zTMzEeqGk2?5acc=YMS15^?Z>jjj|NVOCLYQv)>f1Yzrs$L;(Lv+|RxoDQ!;#IC69+
zr@QxtWl`(SCA|chbD;VgI8R~`mWN2Nlc@6D!rqD}flQgS#1-wLD}p^7>*`2WsARvd
z?aJ9BM$6r*Q7Qes_GI@*lvGV=tZAgV?8Er{BK&Gf%N@{r8`htEc0Or7*^v7!>!-Vt
zdAcjdPj|)pbXS~DmysCClREbBWnAwNXC-gx&KT*rU`8sG=j^j+sz%P!_Qu)dV|Yfz
zlnUWLc5O7X2-el}Uduf16+CA?YyO0CVews%7yqCpFS`7Yi`Ye$`;;?^lHJQi_i?eq
zm>fKT#kP$jO&*rJD&t}vbsD_h-t{B*Cy;HX&HU@&iuNfSf|?&TM$HbSBW>k9aM~W?
z<Ln_`&2Z+9(!{cdZOWN~HSP?Ta;8RG7~X_4SEfKW;`DDi#c4iTokjD(4DnlKT@lwd
zuDRD!JzUqJd<fqEZbo>gmdZx8vQmK@J}Ws;ht8A_q+=bM(!~u|Rrj{!M2=ulUxyrJ
zKR3I(v(_gy`9;WD=1y1(&YDQlmG5v0*c0e!`a=uq-wUM{s!zAKw<dcsS(FsEq+ph9
zy1Y^R975#A-%mwuY~?tAC&T$!JDi-){&>y#>lWv)7@S{btNUz+E;yeO<gcRyfp@~G
z*kw{J$_rawobEtgaPQac<M__G#25Sd+bA8t#np7R=4#3UR=sp#O<aR~-NgTTE{%9v
z6ZoS|;s8F0X<kv^bBuhYkuOf)sH*whR1MMN-|if#+Xl~RAD=uoEiLV)4srIVBb+Vc
zp1J1(qi-h>>ya4Z^iY<)Uc{KKEuX1@F&9lk5XR{z&En8Ikk9#un$J?E_oumSCBtpg
z!k3FOMAus_qD%a8#uBqyHJ{bh8Ng<~ZpgJFs%%t!z5rEK=ox~jx2J+AMotdle@uY2
zG{bjbRHvp{$P10MRTYX5N#E@lN%X*UE=giY5=Uar+@D$Z#gM}8I=ynln2oVtYlJbI
zwjp@?{><=}%^XQYNAqD5T~?P5iNyb6hDanTA3;JrRF))TUu%eh@i*s0ru8q)?8@rY
z@vSOi*v4>C7HB$@4?*~k=K|qGdoh2fy0@99I2|feHr%Tz8*Tv4kAY*EU#)ZIFRT0*
zam{Xb&I1jJ%g_R*miC`BqS8j?&*SNZQ7r^f|FSWnSh;9(#T&<5!MI7v6=m8`xMC&n
z{>aN~HF=pkaj<4@RaFDB66txo!w#=C<RdTPecIUDxHt0kBsq^CZ8Q2UOU>Cu=c8ws
z*7ipZw>g~MfYqoM!s!nib2@j~FnQ*FhG%HwXr7U1VahY1d|&OZ$^Wm_<bShH{dsWy
z1N_fAR=wk$%rGhIkJH@lJ745+o5$@PPt9kbX%@oSZ-NKblIP&*v&T;Nxa}k-@I*OB
zn(=}aWUTif(I~Bt@Yf;!eiOghm(5)>j*h!ywjmFhv3?VO@8P>LpP$D+!4Id9?LZRV
zH~2+5N`zllumX0Qm(@In@C*5y`l(Ka$vl5~A4VCUQ}!=G7lfQwKf9PMO0z}wlmz!P
z(X<QU`}>V0y2;gRisOkFsn`%ZH`^~&#@)gtE0wr}T)x!`mlw^NW89lq){>pE3EJL*
z)S})K-V2X1IllZF`UytvPr3iIc)oS%7=nb|mXW|ZC00J~f^R7G8Np$_3w=M~q^hVm
z1&vUb0z}Bplo29(nCbcg>auW@oT-44>~$hiY`f@l6_DbhWe8dhIzvl#g;f!ArUGKJ
z*U?->)U39Gny^VWA^OC&po-6}?<4AwRFBxx-OA|~f(TArX_ospEvZdd8+*!=V65a_
z=n@_MuZn^t3kBtOOwO;{J89~u{LG6G9=Ejt&l0)Wmi6qNwCSxW6~ed8dnZl4WrnIM
zhuU&F`@Gwe!gAIZjy?J;-Lk#@AslK;;o@`arxB&FPYRdQFNB-hmcry_b|~o>P#VFh
z%Hy^aF27@Pe%<=uEO&E;B;}`z^UEjdwvPwb9Lk6iTe{o3^HqJ0nyMk#X<i>}YXUcR
zCMwFxDS+Iu)U~@wy(m##>JVplTe0(*Rb*Y+OZfK)ciCL8<j<&|Xw)XDHeo*3ly^l`
z3&Fuk%a*+43npq0Z1O~N%~5oB<m1Cu`B<*>7+UZE`3z2Hd!SykhgbU}?eTcX)gu4f
zdcvM3r8%SuMMJRh&XlmRtK_EUGsX~YK5Gv*Rj5Ktt+k3Nm-W*ghFoWln6WWqPl45#
z@lh}YBh9NMOgl=jF)f=Z<gST<-);p1tjNpHQLoDTc67*f*2wcV&wmon(6p0$lndeY
z*Kx)+qn?saHS@<+<-Q$F^4%qQyKeVV2rXUGq$<bTIb`=8xvmv)VB>(@OLd=}re_E`
zns+amn!tsQcJzXsTdvMwMA8#bwt20Q``V#<Hig8iLUoAmnwk@$C!TuZUkF522wg)E
z#%{T3>mSx^aQ6KM{`c>*9TK$))lMN4BI4SqUd?ycHm%+;&lizm>ma*&)lIVy6nwLF
z6lC{lX~X`?o=<ZFxtDdfZRiX0{AD{0*3}T@SJC$tbwa8We#M~^!YLWT|NB$r|H;(k
zemE6~m5r%j<t0RNcTuA*HSSeC6FU!{mtyAmBR*_R@XMw6aMLgZ8E;G(84nHasj4aL
zoOl@b5Dj(b`Q-gR6NAifutS4AAp7tU`RZ+CC^?_LdhNH%%cyd_h!z_y&y=FY{|q%v
zL(tQFo=@I?H=jQ994WVPXN4@cRYjA_voNn0Mj4{3?(Bmm=$a%Z`ng&=3shA@akqx)
zuS#=OwEI%KkFyWDqkIUSe>`Pv=*RN}=+5GiN89{e74_VmqB|;6Hhc?IY~N=SUCW-C
ze7*Ao`^#{CIOiishonqLkZ5SN-YZkWOpZ0Y|Edw&wif<kDYiqNr>1NOcHf&ac18QT
zIU$|Ikn&$htj`ry&q{!5{73BlpmXfGa!P_jb~jSHmgBJ8OZ0JzYXzEfqP|V_?N=IM
z(nsYGeE#VS@wpEkbXSuKkA`5i+!w9Oqr`1Hu^X<y+{u~~GFR2TSNBeBRQk^!F=y*R
zJ9ZOB!w^KZ9lJTSxQEj(HTP7tJ8is#-FbUj%yqqVDv-HLb=i);AzJLL<w-VOK}3{|
zC|irQMdc98wXMYt9hfWPQF=a`s=At85f9NFaag%l{H)~-wnaVSww>yZDl57K8nn?x
zQT>_`n>IG>>W=z!4MAhu)g6Zw(8y^WZS-o?rw|eM{Z{<FDr>lcI18uvaDK@y<Wbdl
zYnWA8Bm?tTk0`WJ$Q?t?h+mWEt0^3U$3Je_$E$)z?x>OF%jwvwRrzu@)~w4{?-r-7
z6=+V1F&SS>rV3VlR1U%GEUnq%n2bz?suz=Ki+aTEzv*1J-op+pr;-b(SY@V{{ga$5
zAd}te)E97f?)sXbY&8+jw(ebQq<cdt9)fM|A=zf-a}{0u&M_aeD#pdfRdw^}MqX<u
zRf+j_>P>AaB$ApI$`-r^dh%8EvEAbna+Qct8>4o;X%$L_V6W|ZQyY7tJ+u5&6;pQZ
zu?iK4m3AiIEkj1IYhse*eY>g%u|3P;b4Og*xUeVRmD4W-4Q<a{Vnv*AO#41x`5lw<
z+o>&0uf=}0P1OD{+j0OLyaOG<tob4SmmPhoXYcH6M78ThgxCmq#<K3}(KG}#ZP%6_
zJw**UE9Ev~$>z4I+QiN))T0d1^;@m@UCYRj@J?4-j8xj^j3}{D@(T`><e!D6TL=<<
zr)5uuxigb9s&c!X+b-q|a&$Y@9j<FEgTD_kd8xX7a9K-vx=fPv{Q8N-=v^AUv#UG&
z&q&iSgzMX`?y$L@eao7Arh@>Rdx(b3R^<CV<iEG!HQYLu@r*Rw#Se4ieBIo8D7%7w
znh_BxB0giu{!l80U}C#vP4Lb!4{2>czImMCq2{Ovy?f$<cUPxw{sugTWyE=j=3Q7j
z^dZ)9rfa~$eZ1!1Pk;y6M@njPxw{Z&)~@4ynIFYHD6-$zyH1fd4{+3V9G~BL{4U<x
z#V!s!Rw7*H#Lj6W<N;R9Jy$joa?e6?HhCX@%j<KQ*XJ{@FC-ttF)tY3Ttw8J-~4I(
zT*lcr%Yl>>|8fhz51*c45!caIS;U>Eua`2fPphk#>sv%rG(Gxk!hIN;P&EWGzmIFI
zO?lrcH~&oVWU~Axdv<c?N_M2A{8zS%mGIw6BT5lnoPjXE=wdAwv)2d5REx;TB0G;9
z;<SijA*f({b{MEAq5?U-?!Io_=#wI;!AS$#$+T=LQzD0Ij1PccmVwPj&;-I?v(Ohm
zgH`yc7Q*|S|2quc_tSz1Si`-}ugo_y^A}-t>?32#KE^awH;-tT7yHScR_UW*2sT*1
zJPd4v^A>Tk*CU(|A=D7&4wBsQnaGjuC)$ieQM96bR+K#zybf(caP@}+#Z?`85pU}Q
zz+2QzY2+dApG;#XUgiUbsGEu~B>XiL?Q}zFC+-4HtCdmewWytPF*q|i7OtIqw2j)y
zwv>GIBHkDs>5JD?Bt34c7%r<VX#sJ6%ncP2k6No(YdwSKZu$-Ns2hU0KN^`f^YbH7
zS9f2gZlZNIU+e&3^ti;+x{lY(moOtsu8~h!y{318ioTf77yF_Udv$3Xg1{dR7=d-^
zMjY0yPMAL&MqO8|>poo(Z$iruTzzMhxJtdXy8F@2AAYW2vae{j=V3*%%3wXYh~H0C
zoH6P%pFXpD&{M0xWiy1)Is|`zHcI@3(U1D=0QBjTcUP>-W5rR`iX(eIiyxIf3Ws2k
z^B{&Av#iILL}1<Sq50F0dJiIU(XP^#?Dl1RGipblcKi}>QN^P!r*jAz|74VCET<hY
z`8sIRC#|>(JCu3wjfgaF7Qx;{OJr4^dLj7XZjD3LW;Q<&74uy|XiHGmeMHUU(>$yp
z^wTW_3B#!&^wWYE=u@r6WynHyap)NQj<U-lB7BIjYc>2-48g}xYc>3o>6^w#?<Pjd
zizDT>#>mqx1QA2k7<pO{1G_!)B`&K9iA{L#d+;cjtL0o<T}^ugPkt5e9I5vrN{UhP
zdCRV<PT3F~{lP$ekm}ST(%2*47q7kO4%u(YZph8(xp+PK&jusRrf3MV-WwURY$_2^
zM*~3A3(#VWjNQS{0W_CP(7Fm8$KCXzH{|n%ek~YfVN?!5-j7CxyfDfUjq^Pb!i=31
z={M#O_h3WHG`omCANn{Eq6t+)&^DZj5KSmWboHt0u?Sr<^<@ncz}TNoUoA$!%^v@J
zZ<gIxQirx7NE>R`V;y=CZ{Hq(ZK<bPW+#oM$m7H%Mp1N^SJZYsZFe$Q+ts6b2uA;6
zWVUBLN)o+8h_x)k5@po{Bb+gsSscv_kG0qo4ME*|qeESu?}(^A^;s6_{8abd2C^Q(
z28|YIf;f{;?>$pN?`fOfMcojj4Ykj*9zPOwLx`zp)X5HvQJ4A979LY^Q#Ax-V~eS{
zDMfVMgKX<dMlM=_#TMX4EFC4(3PA(wABI>bD-<A?zuqG*zpUbdj}e*RZoN@g_;iI`
zE$*gX2nvQ;E$*fWQBimAyjk=$<?q7R={8@pXy;}6roD?^6`F=1=z9azBUR``Ts`cS
zwqbYtD(1h)gtJ?S32+kU7T$@ODSuqR-c9DRnl(^H%@8bocd%Fr;WwhFPtmp)5u@Hi
zRUmB@&MsqDhg31KGMDc%!?cc9tZ#}oozJFw2ApqJ3e=-+2+D>UZL3EyqV7SDbeHcg
zW2~S!R$%WNTTaOkG_hV_h;f8+>JT|^4Foyd%~mQRbR}-oSbjV3*-9GAN8b>X{a}PB
z^U;jh>(dOttH~>{0QDRncEG2*Mn}ugXBpZv07GaQf~ld-01TlI@zbXnWBz;6wfd$9
z5v{>uYtWuCR-eKlSR3k$vHDaa0{c|k?!VJ-BJ#11{W_(mD{3^KMzd?%>(Dj?bwjOf
zuR|~5?YDd6t;sz`9agNvK4y7fS(=65gWmfPV;5OEknj5x-;=d#O%g4-1iM#<>{D&W
z_sS_5f{~%d_sXe5<n$>Y<+~$hv$xdj*Vthnf~IE*bc<Uq6;n3^VMEPF)#FE^u1`^Q
z-(ALfrK+>f?WlTP`i3BHs8RL0G$Z!<G#AZxpLbO~##-_avGzFW+@H&`=b}}oYzW?l
zIv1@vwTQGnRpQDWUPac5ow=-Z;yyc^Yq6&)*EjKZjQaVaes(2p6`F>iYp9jDRp>-q
z?es3ncOB^A6zBs~l3oY8_SL?q>rdn9u@=LxzfKf*YvFVa!Pob3mElGU!)Zl~t@aLM
zH&up;br(@j`SjG!7huVzUkGNn&){$|W7CA#=wI~WHPor^K<}_8gqGYov{0&%XyvhD
zi5(6RJ3j0bMK7w;Hw0V5j$Tx!8L`)=y>K{(Y&Ur;VhWO_ILmAAY>=m02v&x=vq7E~
z#K2aMY_oLztoGekdM2%mjkcQK@A-^ntA)}t1T()kP}?n(M#NH|DkswWx(SKOnN-`V
z2XQ-U7_Wx0D<{e+8G@goR!)>thsfzucSd?guc8y4`JyM_nEMJn(c|%1XLff+2rWa<
zGt};k5c&{5D?PH}ZU8e!QOkI>%*QQT&7@igCfKnv#AupH337j*;>&vVF98Eb@L{6H
z@M#P?zFb7V5JU_$zFb5TVxv!W1NuI0KsN3`OWeYb)DS!ZR`j%#*yT_h|FY`_s?an9
zLqn|_s6r>=s!!c`>AlhNdaP;(-b{3D_kqghM0|x*dfVN2b!Z!cv!Qn5)uC5kZ9Hat
z<Am0-+4;pbUY>p-xEZ>Qm!}D_(WmH{#((T~sM_sdN6$iN8G@OiM$ba%L;P&?FnUJc
z=q(k0=I&%M_vz1leyT8@Rz$}T+<a@`5w;@Q^c6F=ftfY6qtO;H^CZUJyfNrv%oNcv
zVrGIa7dMX)GwVInGu)+$d(kp-5Vee7%lu-YmT^-t1TXInT*tU6L$vg1nu4}8?*b?H
zlb7)CD(a$H8^9@!QdzSG1jQKk2f@#N6g^XjqH5F)LDx{HDb(XfqOMOJ-R529CCMe=
zZVMRXUKKIR>dUfzz65b0lnp`KP&>M-^C6Me$Ecl1;5<LXjBIg6wm53%qh$!1h90%^
z(TDiySJlrWRnfq?T5HjdDzN}v86h|QLU1zNjF6iq#73VY4X?msdINSE{iEyfmgqOd
zE(E`iWJenOR1Cq%P$La~$`CDUuz&lq!!cv>4^*!~j3<Q6I{l>O-S}u2f|MsX;}9#W
zeRLsC`V<>*--~aTn7Ajb@cx<Pec*3-eKxUU1Jx-Tf~ld#2C7qQ7)XotJyq*_LXqa9
zY(yIOQO#OLK57wZeVTtjS#k&u=@IfuYwGnx^+@PkQ;c%^qTKfUgHU>gplYb|4?<}~
zEcI!Ru%i3Q;)~N2^^~hP71$q<u=fb7PvH=}4Rw#O`cxZ&HoFVW#@f6%g}bauB21gP
z=ox~pF=;awjff>idHNF-e5C3ewp5lW-8)ux*gH^Fi3ixxh1n;WYI+B+4`E5tV!9OT
zBfOQcUvWeb+o5*|7XN&((Z+UYNUXlzW30yNiQ?*sPn050s275xw?~2_p$JjYr`Zp;
zpo>_kr!`oN)K`rk+Or?3&@===-x~>ne7r|oJ?yczc}c}IC?n!@`!XNvmrJ#eo0=h5
z`tC@u<faf&)TjQAyd>r96p2#oVTKobzD(~b+H}P>-7}@A3Zrfa%7)tCQI8*qy6^W`
zca`ylNfjRb0NJuQ-$;-WGT-QIV{BG=1|bOkw<FP$ZSpp8-mkp2>HFP)FUa|Sv06R^
zv#v})7(GMqH{47>7>$Ufe$_pi_a(OJmWpq0CGX;Q>_QGfm8%-7DrH0PHQc(#s?;LV
z`kZs~A?<~X9V&ifoTcHfCn?Xl)und`D#wy@t4l*-mAhp1H9zjV@0V4L<!;Q0dvoGn
zEcFzt&^QE>KOBiCScPsw)|tM_?bxd$h%tM0n(0g*y+iOBb><}T(U4f}SA}%A1%D6m
zn%J}Lw`g4z(sd~ug2&-jNY|wr5!k2PJuLxqUMXi<t*RQC=s)_=X6Nq1s2PH+q2}(x
zDAYHb({)$evvD7h&^_#6&%ICglZR>^@I~NjQ^ji7h42tsE#l0NGu!5Di{2qf9IDOP
z77hDmb5^<UOTcE_KhKX&+vcoK;Sf9y)#j{EH6oA`$odi~t#YSVP+_wMZMhDMH12a$
zR!#crR>ZUoT8E(W&juPfZG(P8wq||Ns2D*N<dj8FtMHhQ-XS=R)@*qMmGwwN)TQ^5
zGs&ss0(x;-_r@BX2l!c2^*XUrqfEChHqx!3v=71XUqxM;gwm6`w@*Eawk{BfPb+u}
zz9@U?;|wO>3?{oru?kH?@Hf;R#VT|nuKHB7YTsM>&IY=xj#MRh^f1e`pk1??(oyet
zm%ihsYzW4NTC<wcCX`x4TAw;Cc!z1HVs_fP?6wfKmrr}yofe_=3_;aUJ1s(KL@Yh%
zk$1NYEWHEWG)ZC{RL_eJ>8$uA%U3I>WC(t~Jy6f9oH|6#TLVFkZ}vuvSqcu!nB}vT
z@Z_U!2+DpiLX`PvM(p)zl0_;_IB9efowlqfJAe**2N8?|ymyHIWuMYm`{K{8KjT4O
z73zlIZm5$i>hU8{cfVH}@1epLC$-01`3Ldj{K)zR2eOJN7=oU6aK0h#*t3ipMapcO
zuZWPHo+IQHOsr+Rf*NWc|8D?2F+$;sP@D+DjgPJ&X!`z$(Bz{PG1jMk0++N{2DT29
zH}MmZ<wKU;PY_1U5IhaFpCF7vL{Yz@7q-sLqUfgbr^rj3u^BVMeoN04y{Jdu5Tp$^
zdQp#N#9p8BS8j=t-h0$xJ{@M~uR`e=f~}$EuR>`w1dl6wuQyTIzZdmaNu(mo<MPop
z1Y6%9k;mnu)i69R+2bJYDCf5fLp`oMHAC<;E{`iuA);sl5~VM7^vj3=awo<^{G0CW
z8Y32d{Co;e_%^!Q4^gACfll^GQbxxR<a}$en#j*%#LQZcFmnf3*+zDE15f=CV&{xS
zMDNJw9evWmi;spOSm89&A!eO?bRkYwdW4f$_gbEf{kVk;lWHMY;N-I*V!@;Yx&QTE
zaX+gO*5T(rjv1g5Pv72)@UE)m$Wt!_4MW|F&`puP>4Z4Vu#QeJsTP8Qq3Q&a66F5X
z9_a+V`fEzMy%oI%<w+gFe-fTHtFM0^PuBFZi|7}E2u=zbqLoxc6Jn!J`A2;ptnOva
z9jnt^`^U#l1s7KA{9`CRL$EW{{9`DMh^04rsAr@<Fz!%Pb-(A&7HXbyiiY6ny@BhZ
zaw-u~4|<5Gd&y;Z^qd^cUG%t9ZH)Z-BENP=s+PIMlng=8P&-n~sYB%SsWLjfBkp4m
z(Nm?L+s@O6Q8NTVL(S8NQK+vLo!nhsztUHVddR1TiY>ZwiiV(R=oVc$m58W5^^K--
zf?Wki==O^U@*&9X8!e__2x5lXH(E>;B4oRlK2M5}VyivI<%H|a820DzyxlSEd)U!T
z%bjAXh9K$pag8BIw!<iO`O3Ac|M<D@zWVr|{$Y)sPmCiUsw#VSI$y-=L;T)J?!yat
zqCS0qzuDo<8KXS*vif%mlRI`%*(H^oJlp$lHtls?N}fwrlGoI^4)E`aIv@KyxA1y`
zZ$85JH=s{eP#MOW$~W;Z-{G<QSPv%<uc~jcYV1DV;htM-SQ94_v!amoWGl%6K0S{g
z{yvSrw{eC0_`R#n&f{3OxsHDi@b4myI)zW4&z$d4=6n-OKTdb%(VC8Rj32^}%vyaL
z$FrW%&QLBS5<&YYj=c>!eIvQ5BJ_-Z$UHyN=p*=f0e7QkoZP_q7$v!j_ruopmE=Tn
z2j3uNWlqZ14LY1kc*G@KV;fg~gyS}nuPcf?!r!bi+*U{2#AkfYobvn)9P<Rva}Q5~
z&-&}2(*~wNU%)+`!(`|U{G7(Cv+BLmpd>N3fWJS0-_PP4hxqqn>fU$--qB<A9N)y<
zZs95$3GbfYI*T*0mf>5;OZbG;(HMULtJ}kOui`y&;dhR&az69jbL#ca;``)XlRNeI
zh5Gt>OIRmge;7Y{Ez7uD_VcI5oHp)6?(Rb7bGa_xU&0;mdwh~I8*~qMv6<*6$<N-8
zpYz5US;KS-6c=tFeavUbZ;{K)=a#O|jLz!!7x6sO*Rn36@MU$TCMYD@i9*37k+XD+
zo-mB*IpX|&w@8wEPgn24OL{+)2yNhH3FkQvJY4{q_-X@aA%8x=-}k|R5ij$Mmz$08
zvJPY);#m_N67v@AM9s7iteGyWvv8M1eU@&qa~*WB*Wf~s+?QzHb`W$LI_4a7!+rdJ
zM!jAFJ<ou8)HkOig63M|{ID^CcEIy%$^xK8`T)9T0!!lEV+&>idw{l_*ooP^5^*=d
z@zQNT{i=}{hCOXNUUyvoV&?kSo!1w%Oki20*Y6gy%(=I>_9CpG0*(1|wl#gZ0GvO7
zRdF5|KMUHfE6eIMq~{XeiTZM$_2u8q2<`M`C>`k4&_d111V;B~B?ah<WY?9I6<pWs
zqysCx>q&<y_Y|cDy|Cz&>b$MnEB)K4NR6#rlw}9<ft8V*e3Z4vX(j0XT}Hb&36t`K
z9leY=J%QaoAD3~Q3H-RSXp+xv$VYy%I~`=Ld#>rCTEUi@HF()tQ@6GR>wjI+qP_cZ
zNs27hN&f}d`)6D7%A=K$Vv(^t9WClZ6zlJ!ynuYDDlcwA@-asJKuI<B-LK=F?WCJH
z_Ip#8Al#$Tyu&C{7*&svaYl)>d@G8KvnH}xerm@NC-B)I+rZ%_{+GGiIyNzZj+>T+
zam~15xA<SHfq!$oE;Q?CBjfh%L>rkEitz`HmcCgA?{<!2`UsL6Wsdp`_>ep~Jq)M0
zSo#QEYH-%4RrLX~t99WwrB}r7&T(}>ioNmWr++*Z{7Q6?d4sIqe_&+Y&78t2K4Vp*
zWbE{Q*HTrn0(48(yBW$Qj>c7GEqSvRfKh-n({a(Ws%~Y$qXJpb?mf9AhG=@pIYf;g
zD_Xuk7ZO7vgc7e}C7Hh##up*1j-W1W0CpX^Y=Ek(b|IV8)7iv`?1*e;sM`0)51`Xo
z|LL;@QVriM+8>6BF7f+%1N^!$8?`aB&9T0eJ`3whhf_`O(sD9IY)RSwQuWQ4AFH^T
zH|*LU|D6IXm#xx;<I~5wS9CCsFzb!0*NNYUE?+{f;S7Gx;fL9~b^LV-Ify0vG^^ub
zMftZ-H@%8#a$UQ91AnpptJ~^u?X52$Gi=xX_bq<L9b<>l4YLD0uBl9y*y7##$Jao|
z{0e-y6T7z^+?@m7R)I9u$eso2*sH<nIaZ%vh`3Xgr1RF7aX1*<xjU@7Mc*r+rh6SO
z47P8>t^s@JkVRs}kaT*m$825w&${)f``FJlZy5ZS;F@OsCVB2L>_OgJTC4tsdcBLN
z5N#ldag;}ng)3LkJ?1*+%g5*J7FWxlkbgZce5H5Yo|a=*6)VF}1791^a`%C+Rs3GX
zU##G3hOpR$INdJ9q3%C$5xt}PkRilBJ0#yxai%WgJFfwuX2-m1O)iwu1C-2lTbbDC
z0a6O}%>#TBYo4|Tc!-*6#$aXlpZmya(n^xf^%cl;_Uw}jS5zJL1N?Sdb6Q859RIv=
zzHT+-Een6<YKo9Y%_w)nBbvrurfYvj?KoZS_=g=J(2b|bao&=X8l>+*`$p_kCQdoA
zVZ9WO%&`!)CN8NLW$$TouQbt@YdHIX!aH?mx2R=hQ~kC2Fs*IhHc%b)X&?0|D-x%z
zPv;5EU0S=GjT3^~h|qQ?;tVV2F*bdBL;0sKLPt|>96+b9b*yh!198iJVChSnYxSWy
z<}WoiL#JEm<A;&I{G*X++uLed*%~m+>1|u66=w8vUae>MY9pT8oK`n1Jac-`P_5@3
zV3*oWdJN1-0GxKnPdUkv^+i0cTU2u&cH6eDx@I4?+sg*sN47QAJoGKn{2g$Z<Xc%w
z$6i>O5PITiMb}|+BKZ=sDCd#c`!eE5tfw_)<%!&ET29AfAD&&kx1y>v%?YHOIeR0y
zg88Pb;LLyawu(ZZb;hxZac~*u;dI%HK<qB=imx?-%PIs@+1+GfEcdOef?WTKyFqYh
z*X<Wuy|*}*mi3b4x>?Vqr7Reqp6@bN_FI*Z<3qjFu<(ecd8!!E?qfvz&qj&WE2_qy
zxvA%&(K!u&UD+N_pyj)cpK-Eh6%FrSyC3Tj?b<3EXGHCfM~U{?clWGU#JFq4MaYhI
zUfhLa+_?UeQQ}(f?;$lO?AnvPEDk!3u5DICck#L-#?6ROvtC>+6NZruV+Z|Ey=v*O
z;Qm3~#>MRlPmv|;_uy)Z@YrsJXY`!==s6Fk%g^>cS@YQ~64~YFUWX5ZG3%st+&KN&
zq1I#SEDop1F?-Bu_g&|V?^uX*uc`>2(JzgD=}>iKii9q+KDLh3>nOsY=*RYY0ApoF
z|9SxbV4!{@cTwR!ajeT={~;@%S(70ioa}+i-lVcR4SUW{vps%acj(Q~mHKcTb2sC*
zb>ABqj=2XpyA(G&_Cz^3#PmdqBu%<PKW-y($Bo<{jSRVZhM&3j`Bi9Y?pD-oT<JkD
zn*FQxA-ug_{}>7GV<dPub5g_fo>X{qR_<Zv)-~s()>&l{eq)p>MyZC{GhAf1-iBAq
zJyPF9uLL_Kh~#dy@@g=OU284EGNWBGYluh0dgiblhqP@zj4Fx07@4iT4D50;-CZD=
z-G!`yN>P0c@5yW~nGVn`%6EfNUhOV?_>Z=@#`8Ec!tad^|9kMMw>!7PS1Mpzuh56v
z7$X}uZihPSqsRtNb@XlEm(%jPx5Dj7dDT|y!*kTb<HqyYVqzN4vj2Ctc6NA7%v@y=
zeq&55#>D8m4YAvx%X+Psb2f4j-eQ$j#M@B2doHU8^JB!JxI;|0deQFgF;~+S9^>A5
z{i~Y%-az%AiGWGs>NM{brLKA_W~EY@;aZ~)yV3U?x9|Dg!D5&5X*k(Vraa$5+=w%5
zw(w5Z8QkB_*|wA9GWLNfUY!rGabJb8&#xG2^!G(%X7*6UtmiqW(<9lZz;`(>b{(${
zI?v$P(cfyT^&vV=ZXdS>{`NpMun!?!MwaaPkHstV;WTRAv1{HRj1Z|;RK*lEFDJ6I
zv%c#d!8OZzF2?T!Gp$+SWv<tU>ZpCkt$l|&fB9<i3L?ld5n~?~v-BU#Vm}32|N7Qe
zgjMEQ+r(<@&hKBGd8iXveR!BW-4nv><mu9awkNVyUvUwxV?H<LbBEef<VVRjVNdTr
zMR&J(q*cqNuCi7imZOdyw>|yVKz(GvN0(anx)Y;C*o$?DQI8Hak}TNMGbd(e2j6od
z(ruv^;gt4nn>sSqOZCr>9cl*Ghf~&4ZK<7vW;5Hy&fr#Ctq;$!hHBh4?@;qXK7_dH
z47>GV?YvOc_4+U!b@aF~J=96CK8)N&ZPgJvnI0lrbkK4C!Rr-l>j@@!WLN6Lan#M@
z#_{*SS3~U06C7VfH3lbI5DnaylM|r!fL+dd?z+m^?o9|;W5jOU#cMIS@N`eYMeKM_
ziS^?1*RFnl(Ad2WgmSNv1M~u12V(c}KQXN1T!$TN;NLCKz~$?V7>*b&!tmokWB8`Z
z;j*@>Ti^F~0anxXL`+6Z7GZMO@v7HQqr3xs%Kkc9!Ryejsivic%xXw>26l_tqIgyK
zdVQFV@v3qAxkKGOj8j>6leap?s=a%dUPloIWBo;}zxcg@+Pa$erMo8IP0+RNYj@L^
ztuJCW+QLP)@K9@}QcT>0t;>k;w(6kY?pTxBHB-eaE5a#jrl?;}sXgZ7UIk;^t6->o
zdMO%S#e^E>U7rA}_Z3#V^-t|SJ>S|QR-;ZW(y0dnwS#W}pGO_*&l^^xS61P}pY+u6
zh^Q;as4It>bJ6&F2`D^5wzOOQXy;t=>nXxyj19%u&`|4;GzM;{jLJrG3p!G2k{$u0
zvzRww*CB<hu?V}=rLl%^+_{yZ_NS+~pk4b|)grx_=>D7ol|`KmhF1%$-bo^B_OG=F
z%TW(UJv?;Vm=!?X?;cQW8|(EHVKVC1h{>VGcC~(;eXra%3-zgMZ9c5VDX3$gg8Hq2
zM|bJLzNK<8+zq<x>IOSss-;MNT@j@lNzB0%<zR-6(%V4kn%WDNJGnpUI2L@jP@m@4
z<wI$VD~&s@^zOhlDR*mLOWssj)2{XC9S=gYt17~0j1@({bf|Nhv_*Lr$h@Dtgnw7j
zCBxby&I^}1!L=D>Z|pfu)mB@CXU3Ug4dJ-;?NDdBm<Y*h-Ah397SPSz@4Bs+c)d^u
zi{$aG)Q96}H;)^~Lys4`(b47XVY?RCCu1U3V;rg|4mI3->m$@h&}QcTvR!+(u6(Px
z9v>!Y3%Auv6Zg^S-~8dB#+_b)H~R)KN#FH4JX!j*UH7}$kzx0$eE5tx*0JYUpA0lI
z%pB$e)!R0!_|j{ZPwHAz5jta3I7Wqs8bxy9z`dX9tfNTbD=ortj0Q&>j|<1HI=}hE
zv1_Ff$1%cG6k+-<EV@g{bID5b8sadF$Q<G|Cn&7q)fQe)ko$O~W&s}IuYJ7Fssx!1
z$YT#tKg3!;P6?dg`z{-mHAbAzyW!Yhd?h)J?=7jQ%F6NgS8z>s)$qKWMYxWC5AZK7
z$TPU6xr>!sqb(m_)3v90x7b||vYID}Z^cCzmaJ@h5vghJi1i83;akX<v&Z5n;bfg7
z?3VBXp6niY=PLdp4}B;32^_bOoPRpi`fPGez5ZFeFVC8M%ADL9{?*^Voz&6FAHX@E
z#flE`uUt2sroD80UB16`JX!lAcr8;f_i+79bX0K`=7w6|`|;WNBzwk><DFYT5ASzN
z9d`%E5@XWa$xPIT@MBIINb^%mPie3Sl<4=1usqZWYJBGGihTsi@rg5D%=dKNMYm|S
zC#aRJuL!%bd#4U!H3}9m_x^*x&I9nlHh5w~;kR#?9qO*^MVQFqm~;E}oZ$mty2~7`
zTPJ5%r=?8xJ#)oAT*qoDjngIQa=!jBe)R4P+R{mnNwwQBa6Kknd>49|eFU^@x<zrA
zF3zschuK&emEv)XnEi7|s3GolWqKeJRj0fIe|$^jk`Ca{5V>#TZ*5)Q!RtfV+qA4M
zb&TmZ@f7m@eb$4jzW#{$82>8rncp4>=DW15Z<Qdp2#+y89R1<%jRcRgk4oE<-tu;W
zYmE`RQI{6!Qs$DzU_Za4;#SnC-S1sz&!Wkr)?8f?USkbM)U`wH(9I))GZ`g1wFj@)
z_IA6pjqMKIYO5{6bF`f!p8xGg^lurSO+@kN2gn}Jaw6-a5|4PI=EnMDRLDIQ$%dF`
zj<R96`6x3sd;?MI*>x7W@=^Zv`7j%E$m7mO4Y$VH#DrMnTPoYMmAs4JvzeRzda0H!
zUa1eq)W5M~SgI&vUU?5yqufz)CpiJTRC2Jaqh5!NdIVdQb<eD-UPqPn3hGNAB`>P?
zUQqbhMs2oKV84Llw{aA6w?*~R6CAOHZ}58D8*k-!Hx5p7VwLwJb^Z0i?@L8QT9xh3
z%NC<!g36!N0v9{C>#qOuymHm``!FACNye?ae>f6f+=rQ$A;nlF-)&9UMguKAN%We1
z*p7DjxUoH!Ix!!%U44e#;=GwYcdfq&^TfOKr|}50SLf@>V&iUYvP(FRxCy(89dxXx
z`v&Z@C+O_jQ<Hpmldt2GY4%us4ASpg=#E*%j#RqZTK6b*+gYV$#4zf)hufzS?u*}p
z&(ifoAXlG8)fGov$C{O~)vQo=n>##klI<#V(hjWhZZ)-Cv*KS}5ndTbi+Wh=)p7P!
z4b}E`A%YRReOQ({Vz`fPdG6J65lG%t@icZ_J)8leZQHx)`in5nI9iOQjT`erwY{rg
z<`T5_e#d&-w!N#bxCqy=CMDLS{MkTb<W*2|1@WUb=<;<~=H2f+yk*78o2)%zJ^I;2
zes;9mCx{DkPQng;Sl{wCJoK(T@n&|rYyA=P5%Wcu|Es9qlY5v~cnXuME~z>l;+{1>
zYly_L3Z`rPztu?Jm)%Q|EQq}+(boUoXk>wCNm}(=@Yp#)rQ2w`-Pdi~^!6HyuuDHZ
z*1L>5{x;M)bQ>4xI~&JSUT5KzzaF5ai&pBxag3vn8^=TK0V5XD`DNL?t7I?8ZuPI-
z16H;^A7-h4+vy!)zW6@8k0s2gK7(o2oSw|7)~7+eCA=fkug@Cut65FP`Pwq$`mxG6
zzWKDSOrweCh;?Vvnd$xQf!fW>;JSC<19Oj@Sw_I^y;_S`=EG^+b#Cmt&i!D7NOesJ
z>sH&^IqG8ky7%LXsOF9>w4mDAQA1k=!>Icn>WrimC7jg1iH-$UhaNy1zk{e1dEpTM
z%Pu8dN2%=@N!3<cglNXGVk}GJbDZ^~?+jK;KUAotS2v58mAy0UGAdIkN75A);ZkDE
z5t-vg=J!X0%vV(P$AQwh`_Q)=Ky9~n^Y4P%<}?Qzuam^JP9KV6cgDCeJk$xmE^I7A
zvmK(Vw`=RzjxYOH=fi7^TE(c<FlToAF~M3)db_O7;1ut!Yc$q^v~O0z<k#y*bz3>3
zIIBRWmdXCJ^7^dW&F&-W33BQ~+y{0S)~oE#Jl%O?ZcL|MX15k}s2)z&=fiBQ%^0`k
zJSOiqi{qP+pPXaZEp}fI)W0cq^*VhRUWlE_PxmMvXLNa7{;%w4f6y^@?P(%ed7@+A
z%ZP%@9B@Bkqotf2@0&ix$-Li!9vI?|Rm;k^-9>DQvx4<B?XDwLcO6=mKDWItA4c1&
zfV`ia!~d(ObzD;wkgQNxQuU9gP!o9}RzS|BH~VCu7`+2d+(zBS2Bt$kLJo*=sBW!b
zJ7?=!lMkEid97=}<T=zQF94Ab@c$ZO3XAyR|7Y+nV=oJ+R{j8fKMUP{h<{^s^7}!J
z^9D^mj(5zxg6@E?4nQxd<)N4TA^ezAOjF-`>8S<32+645FY53;z?p`qKWEW5a09e7
zGqSP@AO70Zjd3b%0@>5ANbgX0FTbm5n7AXx<IeM|_U`58Y9bzEweZ;V;VdRU+xk#e
z(G~upuh>6*_;{f9sK(zlr5E4o*iXD|S*H2*L`+7VSfmq&+I6lm!2TK5xYNtNiyuyR
z<Lho?Id(Nd+4_nw8@puUw5In4u194e!|Zn)T`AP8#Vahrt;B-b%V$RWw}1BUP^U#`
zU3M?IjF=GjHDPXlSIv)DN9JTZ`4o`ExVB6-dm9>=TKI!_=Yh(z9O5s@AxMP#qY8PH
z^jDSc=DDc3pFFMZd;wR{QFFb6mOU+^cx67E#=85l*WC}bQYgg(_X?XWTJ1_9|LS~*
zjh$^e7dXz!zW1OnhM4Iz5s|k#yZ2-5>80f>^x-yY+Occep-y~AalziOBTQT9HsZ9b
zEa)e&k!fk~;Oh2@e8`L%b=(^D_Xn?0Q(Vs4Z~dJBtP;O@dp+Ve=5<_ooy%9QUH!+;
zefQPJ|MU-QUjT1iQaxO(U}d%WYp7=Bj^~$;qcE4CoA}9_m?y%W()ZQBm+>CsE1QVp
z=xz<3k5Vyvenxhl$2Yd%PadiG&R+7y@s+aYdl5O8Jsh{6=(D`|{I#ph2)~>>m#pNz
zd5Cwo-Xp9*=HBVuHovM?MV%%SO8Kdd1Fa<2j=ysS@2=sBvO_2L<a`&`=DeecqK3S>
zgBsQqtm-~iyaIY`;MF7C@d~~z*FFM`b`gP+{#mJ~t#cKv`+o-a%h=XctXcM+&(et1
zv+P-B)iG;FPochQ_Vl@rXS>@Geb~3nzWM_^1wH{SqkjeOSAVve>aOZ!(s#kA&E-3b
z$v?xt!jb%YDfu-1t$t;G_p~~@UIX7blQ8DdKYr)h&mwy&@!J&N^NmujTIxml%B;iY
zI~O1wC>vAhvkAWAEbS9dXJ{Yd^_MVn@jUMT%fP^OV1aUF5BS|f?D`0w-@$u_z%2U(
zPN;ne9zkNTo_huSbP8N{4zDPYB=gMqjr_)jl0Mh*4J|*{aohs9gju2$yeqh~uPHKY
z2P@@t1O7$XMw!NIm=)y{yp!VT@HonT3RUQRxOYMB0_d7JXkUd6a;C-P!#Go(CjWnX
z=h7U<RmE}h0oVXL7RiG3@Ng1fsYp)j#E~7OU>Bv09<k%HC66UhMo>v5Jc?IQR8hr(
z1y!)&Q}JQ=|L)1<-k#}c&z##<TxV1&X`~r-_w9e5_v_aB>^lh;dY;ig!}>BmxAUYs
z7HP{@MbBNP9EZOQ@gJv*4XEEqbpJ3>HN5gQy$3cw)azyH;8$~PQ^|~jr1e+9?Q)*!
zYHO>x=`}suuJySiUU^^AXLhRb*$a8-TRPXa<mhgav9(<`k%oRG^pM`zd~_aRWpU-H
z{>F;95XC*!>rtXRKHW-En9eRf%{fG<5}n_FEOzsbr0qdE8i|X9c$%)tkzd#MhORl4
zw{~0a+fH(&w}&&^3}0LSJPsSu4CsbqUE_&Xh!xJ6jVgYWe&_x&j?8B`m%c(`S(Q`y
zZ{xk}0f0na)056Bm~XiJO1OG`4<Kc_jh|fooBv-Q$m3b;CwuOeKIhJMgb&E&mD0<E
z?Mq)QwlDYkgPCr!Z|J@Gy)OE)!!`YVTSs;2Z$oQE`dr8(u+FPxJsoHnl+gT7(u7FP
zeB6WFFfG^X`|jNOx>q<#t3MWA_*cXcjh5!0*6=lvv!A4EVeNdBD2%SNy+mb9%6p{W
zC&C8*2g`d;*Q}o%|2x(Fp6avxbQHeSf!_JKjye>c&^pmZ^d@%9L{^hcbbdpBL(2zx
z9rmo=uFkhvoexc)y}744t5p?1CwyO*Ee9>l+j)HYhO8+*1%vnWY8IatgTq8M&@qVM
z5n7~l**nZTO>(^dKJGT($B~}InVy-+7&zCSnbj9AdpBF@ESuF?{P*<7=6hoA-mY~%
z5e*g3|5$&){ZM#ap#l;US@YKKTVt^t8vGYD-e;-Tk%td@uWuMmB;CsO{V4wXD?;%!
zaRk!fRL=l>3)WQIepTpZd79T%KLge^4(k7WDX2e68XbDH+9&)ybUgEzYR-jv^CSuO
zt;YN0c@*1ZFG(r7w<nU7FXHYYdY;v|^?qKp9AHfwX$7{IHr7^mO@12x&lTE2cU83S
zif*tV9waSJM$oH8sbg%@qJ5Hjh}yB;AL`5I2Ng|4{C3!~@X|7ta=D@(t6yF^R`?^2
z#r<fty%bFXgO`UCK2g4&AE$r46r4;ev5#3TFYz)=s$vCnZG?S&Mz-E!X?ZVjv$~7D
z*M_F)Bvw`PaCa_5H)pXiuqr?1zj-AvH{FD0`hJRg`uTZvT)h&I&i?Tw;4;)&Xs}I>
zFNc*EpI-}~!xUL3+KnX5k@W|X;dqG1CMF1+ixbV?Jk#Hg_3pN4{oVB5JJMIgVGojZ
z!_Jl^%CX3k9DBxXpG|KQ2d*dY&nnu{XIN=iUsyg~+@@i0I~ERydS2|Jf#>hX<SYy(
z{jm=}GE`%>Ng-DBT$D=$FK4tS%7*hhIp18Lxs3ggv*X*n=X~$WbNcT#>ZCD?7ndli
z?YrugAdfGBTh0{iD|Lm`OfVD7qN#g|gb)p}93~p=f#|58@-xMB=PHp^E9djm%kM4$
ziT?W<TL*RV>Bh6oGDYVY1<`#~a>0J|@LOVN@a53+^4q#m*>=(l*k{l_l?;asx;^Ut
zor`!hXTC~rbG^6N>iG;}=25wntQS^@dE(tTBY8JIC2y5;Vt!fosZcaK3TwXhR^HM1
z&0Fc#0pUG$YfoQSv~xal+m{pA>&au1d$Zj3e2#NZUIqH}E$PvDS+*D@tMA;`x=!?k
zr&aQYEj|iptsl*K^}}D*60IA_6DG#?wy2JJhNHwE7ox-#ees92M04C2!=Kj@!(I6-
zRGpZWOq_;F27dbWM%4M9hLP2|l&RONTPJZMH}iTI&(=>lQN62dbC@?;DwMt2Gb#lY
zoV>{VHmDS*PJjv>ELLJn_?IQRL3fN*I<#1@pRXBqrL)N|vHrAXm}Sqe+f8vxbV>b$
zAICVEv93;B#JA>AQxS%D?8hx?oNW<qJIP<CcG`9e0zp4|e_J!|-4$BoQR<1G1;^Xc
zDwe;n7^WZBb<-r&`jCTf;pC_>-$k5U=x#^Y<vLV9&8?dT$@p3ApC7lApfb?wK}3yS
zY$YGzxn%r_{0Kk2d=ZphX7L#}x)^nG;+Eov^p05N@<d%<-5OFa7e>{F@5)M`tCtGC
zN9w^TxhG;nyh~osCTp}<6H#aC4&mpewciJoXhT@hsY;xm`nFOl<3%uP?(>$q^K;C0
zD*b8Ry5Z&5pi#4R!)WEmQ8zx~rMReZk6{ddCSIMYPQt1${1o^ssKhh$yfhV6XBsM*
zYR2KesP@?qR(J^3%g`S0j%srZ;Ww^F6*bd0gy6m8FC3;myp{@$s6M=5#}q-LvG`V0
zSdlZJ<HjZ&__Zc|fe|bG47Cr06`l0V6JZ(v(|SNJ>x~v~lzEMDk-M9$vbGMl*!tij
z`I+_Piz883p*Hvv--;-bpF5-0#E_Lcx%R99nW%di7G!MhR@XmokylYYfr1zl$k2#3
z&ymR~Uau)??5AM$p<>!p#9jz5rq8uh9GnK#gxf-e$qimAifSQbTy6>-W{CR{ifXfG
zgtn9Z|G1hZ$i$J>SZmZcVL=VPd!Fp}$C{sRb$F-A+G<BHI#*)3w`IelYQIch<Hl@$
z6<quML|X7!vKFYLYq3D1Bef%>tS8@Q`1$o>)Si*dfmFv)?~0snp{S@4`;5~)A#`x<
zrhevq?fbgT{d5*J-rU7+mfGq`Y<}#bYe}QMS?sQSp>D2`31&<dwCNZvvMj31zat5j
zcZsSeJ9sH6>TD?NEG8%0EZ<fiF{)(mM`_&3ul2%iTyKb)V4JVvow|Rfn51>=kU1g#
zJ<k>A`X4fR*7?(|__L{G*L5sAE7|djrjju&_szLkEB!Q<rwWWqYf<wUU`WO~_rRbT
zc`w_se!DAbrQssPY7}QD+Iw~AI#FHS7wD(DzXpx+%=R|mU*<h%uxg2EoNB@kz4=xR
zQ15}aDX#X?VAP(ZSwy|~M9q!N;xn#3joOnmi`q?T(v!q{Z8bVkBWSaDkwvl@Q0x;o
zFV(zU`j0iy3opX2i}%<$ySVmBx3h4(Xi{7swu_i?a+$GO_a1tAdR=V2A?(<HA!po8
zZnnfWqt34FO1;UKdZnKl+o$4R(d9(@yAo+1YY&dNv4rKN<b9#pQY#tN;zl}lv-#u=
z_Y?KC$ik>x+=o}$$JKTPnySm^LNS94A^9+A7%C+`5e2p&8kLJzL3C3Hwp3z9on5^O
zhBxFR9*QcDnk(q8czkS4{r8}L_A2ywU%9I9X;0V96qBVA_JO`_-}$yEP}ErCJi2B-
z!skpKpjX5n!H()<&!bk}`8ai+VuQEU7)OohfK<ts)b%b_Pvxh!sQp{JLd^C-8&Cg6
z?K~aAYTP_Z)Vx4JkbL_?)hFQ7on8aIsb0~eV@!|wMNoTXSKb;ZQOD7$1ES6z=)>qv
z+9ih_Qp*$qzb=RxbLm5FSBRadSD+<A5LX|}b7PIycpcGE?X`Z2E2#Q;be*JIjpAKJ
zP?%KXM{d2O8`%te20va=`|4~OIMY0BADH%;o>6-Tekz2Xq#n&({haFet9cIWMcwVy
zY4yOPRxI92mi&>V_VXqyE9xAO)(mOXi31szGF8S~aTC?L%m@){$ej=4)T4hMG`^4#
zvp8yhC5@NLqDD|NX7{gcNrqFifJI5YtKX)KYJ(T7sCpR>uju?}xXp59o8J;OMp|f$
g_{+H>rhYz*x&u@nMq|mZtsA#*{r9!cKJ5GcA3*8cBLDyZ

diff --git a/LetsEncrypt-SiteExtension/Controllers/HomeController.cs b/LetsEncrypt-SiteExtension/Controllers/HomeController.cs
index abc2183..c11b566 100644
--- a/LetsEncrypt-SiteExtension/Controllers/HomeController.cs
+++ b/LetsEncrypt-SiteExtension/Controllers/HomeController.cs
@@ -217,9 +217,9 @@ public async Task<ActionResult> Install(RequestAndInstallModel model)
                     PFXPassword = settings.PFXPassword,
                     RSAKeyLength = settings.RSAKeyLength,    
                 };
-                var thumbprint = await new CertificateManager(settings).RequestAndInstallInternalAsync(target);
-                if (thumbprint != null)
-                    return RedirectToAction("Hostname", new { id = thumbprint });
+                var certModel = await new CertificateManager(settings).RequestAndInstallInternalAsync(target);
+                if (certModel != null)
+                    return RedirectToAction("Hostname", new { id = certModel.CertificateInfo.Certificate.Thumbprint });
             }
             SetViewBagHostnames();
             return View(model);
diff --git a/LetsEncrypt-SiteExtension/LetsEncrypt.SiteExtension.csproj b/LetsEncrypt-SiteExtension/LetsEncrypt.SiteExtension.csproj
index 5c830c9..f1f1010 100644
--- a/LetsEncrypt-SiteExtension/LetsEncrypt.SiteExtension.csproj
+++ b/LetsEncrypt-SiteExtension/LetsEncrypt.SiteExtension.csproj
@@ -48,6 +48,10 @@
     <DocumentationFile>bin\LetsEncrypt.SiteExtension.XML</DocumentationFile>
   </PropertyGroup>
   <ItemGroup>
+    <Reference Include="Kudu.Services.Web, Version=62.60603.3754.0, Culture=neutral, processorArchitecture=MSIL">
+      <SpecificVersion>False</SpecificVersion>
+      <HintPath>..\dlls\Kudu.Services.Web.dll</HintPath>
+    </Reference>
     <Reference Include="Microsoft.Azure.Graph.RBAC, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
       <HintPath>..\packages\Microsoft.Azure.Graph.RBAC.2.2.0-preview\lib\net45\Microsoft.Azure.Graph.RBAC.dll</HintPath>
       <Private>True</Private>
diff --git a/dlls/Kudu.Services.Web.dll b/dlls/Kudu.Services.Web.dll
new file mode 100644
index 0000000000000000000000000000000000000000..f96e319db5c10553286d665a579551fee245f50c
GIT binary patch
literal 56320
zcmbrn31C!rwLgCDEO(YHWU>;%k^o7DY!E1=ETx1bKqz|xg%+BIWPmBj+;C?Cq!bKv
zv$nO;O{-SB>g%TBQmxvbMQtl;t@PDb@wHW~wXfRuwA$*c*82aP^SyWG&P+n_{R4CE
z_nhxJ=X<{Ad%o-aX0rO?kCB^*Jox<cpG4ollYf>7JTn+UcK(!a=F?XL&sKdyTlH*J
z*RE*1a?mt(nmq%Ry*;s*k*M4rsWgXTmC;yb+uF{`0i!R{l$RHrZmC|^PP9sMQ_=C+
zTkO()MN=ztv{^(ifTAnvhCkt1$!U#2fuvo^ZYEf4FdX@y^N*V@yM|f$f9h$WOyVEt
zT`LKVzQK;j{HfF^7qlPzk!WIO-kI=9BEKWw4}66KZ%Rb=CxCB$9sqe#SIcf-@>5B4
zS(6zzdx0t2P&aO<|B&n?Sb|zNnUQ`2jBG2xX7Rx<k}Q%~LbNoULUa!M6+dj7i@fC7
zM)dt#EiX&XzXm3|4wMoF>+me&=O$NpJf1H1K_<IA2Zc&hG|Np3p&FKk+(W2%MNn^;
z87^lg(Vz=7CV<dT7OoIF%j%-nKwAXsO6#7lT=bh=AFZ6RapMCQJA{o%$lh#`Q?kZn
zCf60s^3jK-z7#4pVZq?|n~Gsdb*U;kSV)E1`z2l&<-3t#WAPq-<P>Ta?x`uR&w0O;
ziN+M@ytlec)i<}$Rp@@d1kqR#xRD`5`H@%Xws1?7iApqF$yI^Bs`$Ae=`TUWPt#y4
zLKA-SK?;5<v#QE0y2y#2;E%nP>rTJ+M4CUCN%^A=dbsYZ@kAJ*?iZr&Wy!iT=l`MZ
z$qG#63ZNpeSDxtO!8$WpA<jksaIVXHP%>2<biy9E67@rm;rcDN>c<lL0fs6LW?FH;
zDs(AE;sE}rW~B#Mr!LT_K@$ED|Dl%hQ@Qn>&0T4}5!KnT!unOLSllV~MlJF-vtA!P
z1FdLB_;CP!EKmB8wf-Oc$T7qv{~uzgdc3N9k*Cm8=zYH=2tS6rH}a#gbPqp@yoFwy
zVuc`+ogs*>8b<Nxst7X=S_-Y<sY4wrX6f`Oo*;+Z4a06@23JsTFmwai!G@jcY19MB
z@ilDr84XNcr=I4I;2fioDU01k6P~%Q16+d7m<hyhV4x2g%>dyN_|tF9P9^7X);SF3
z0=V4abMbhkHqUi{Z8PQpGfz8WIAGQ1JZ2-dU6Zk&=$dP&7V)jkb~U<+>s-QDx5n*y
zU&jce$LB-9SOCB>JT{>QJbs7bdypN}!x*cA2Qhqj^aBhV3SIj9y2+x8kP|+iMRf#!
zcrmB&#8@Tx1&k}5&`$yAG|M#_3@<?j6u02fFi{UL#nY@sMupMJB%dB`6OKBw8Ps??
zkSmm)TIdNv&mj!<o}ixNbA^|Il0dU)xgTPp-xt=1>Vvv(&aYG-7)55q2g#s(`S~e=
z+!gKsdw3<lPY<IU2bz<XdkB_!ir?4aY(0*i7c^D@)cr(^Z3xQ4zz7sP1UXMbfjo>g
zAQX=<MdS@k$w7?M9@=WzP<GQ1lv-UH$7rtK8()X~YQu#(9zt*PR5zB@9I8a(eSMhA
z-N4x+oMT{c3D#5_Zm=320Him9WMIIluMUGnM>#sJLt~@(Q2bg@g1YM<0@V}02%I@#
z1gIWHRO)(haTp<~A4K3H5EzCLow}7o3?s>c20T`O2%Xt!*#Tt7vB-gCoMT*!WEdTx
zzQz)Q3H3e$5t5|9m-TVX$Uy_Pfr^;Bj<s}ybP#5FK=?2dE(0MK$n|z^ya$v#OEE&C
z{tyO7r!`kH=XNkvk8lpJ9fGzYdEgHi`BLNoF2)~5gILuxBH%P{<`CY&;^wF9WRa)Z
zd?JZ>tIeM!5#9W6I~{`O*hk@U&>t=Uh)1DEH9kjxaXHYCH<PP0z8mx+U&!)tO5V!x
zk0BATybwZBA-_?GhfxGz*H-90MaMEAogPqhj7({C6}4E>fEtg%u7ijRRE(iv0JoeK
zMvUn3K@fN#2_8g<fQw-mgGVsDhTV#G`v|jft4g~aM6h`dVbXCn*g>16dW3U?u?W*0
z`_jN@Qx7#aFi#w63@p0pYr;cFf_x*B_cD2(BHYA;{YZx~`RRHna1dc^wTpo@80-2d
z^Po2c4GcTU(3pVCLpAA^9b!&IH$sVX41`vYXX>QKCbAGlAZK+x#6qYOggD2560s&J
zgkhG=xS9FD9ONOpK8#MD<iHS9Z=eU)htZ#sR77*V0T0!OVN8;WGU|;mQ)f7+bxf^i
zY6DY4mOE8wValp^h7=r~hNEfIaCDUV_%*P!D936Qv~ztZhbOdp1N}Bw6UyNtAehz%
zMpGO|w+<HNT8a=>^`Tsz3F{4n3Kadzmc|hq!J@oSPWAgf#6wUuKLQ~b$^!|l?I2mj
zV$!V-<r$cC>y3|r!R|5hKtR)gq{okfZrlP8#-y8c_k0#v0KgMxlDdeg=Q9<vWRiLT
z(udGA&gd9n)we@y^$6z}cW?nq96~Kf8%r5{0$H|UtxRZhu(cz72rcf^eVBEBQgm~U
zu?#%n<qn}0NE;nYU71O}kg2OOsjHc~CX>3Bsp~SS>zTSCliJDDu1xAirf$llVp6IP
zZ_cD*VyO>boJqZesarFt+n9Q3CbgTXm`IWhgDIrmz!Xs*#^jKs_AxcW)Ey4$PNwc+
zYE)5GkjqGierOMe=$v*ET~y}<r_Mc6H{C8wD0ib(%sHI82dReXhtNTtO?L#G@q4A|
zI467`lHvPVXdZ;jEda&?Nm?(Xp99)ZpqQ9YEDTn^{yg(y@PJL|gr0bU&G|PbJ_uku
z1YmKF<Eo)fX+6FGc)SQQ#=~hc@kdyiX;@nX=$pl|FAurYxN<q9tO6cozAxCa<BcyO
z8UGSMjxvDrea11H!NqF<-T1PNi-B?UJ7s{|yo$Z>AcH3uJO>c}3UhxIpvG<f5(M4&
z8W8jENQNKd)Tpd3GvtPb^8rf3yJ4~0C5R>64Z27tGp}Oyn}xk!vERj%XM{4KD2!MN
zUPsbWU}Xk8V4n+68jdl$xta;x4E8WM3?P*$E)Amu-EBU=<j0c?&t@^4;=Dg38UAWB
zl--0fv6wWyUK+eN{&jdE{tW<IaS_PoOa`kNL;<Aa@wVJBDA@CxhxwT;e*;UU<UeoA
zC(Hf%=yKmlmph#$H-^1`Ww|09pq|0MZ0{VFO39zKy=&9u&e~oai42-IF?fK%zijWL
z>GEf7?+KQBgTcED0zRu<lkHLq$|&vG46?bNL6pIV03;rgauN^Oac~cFKa-Su<80;r
zkuEpQPlJaZ=OFziK(f#=f~XnXjzZ5m=(n-lRScw(k0O=c-JasSzb6^y1~M5g0mZzI
zfoM2pGbAm}a8vkOs18P@Q!Mfa2LE7?6Ff`zR)f(Yw=hd?3=dtDE*H;|8>5@u%yOS)
z@O1{yWyxjK&mK-*WbQvO&~gBZ0Mf%}jIgU<?v&j5S#o2PcOlF5GLZ7l+Rnr2a%UYm
zpJlnPGdRxR6hM09yw2pZT$|yn9niueDY>(DzyX$fI9c9VJK%J>+}S$7WtQckz<PkN
zAyd~{#&<Fhk6edTdW&bYoZS=dW0CKO9D|b|D2JID6X9FT9Lne7I5i2WGZ&}C=CDLc
zY)h6{MnB+n07~1#Vz)Ao(jLqb%dDId`xZ;Qo)jB5F4M@2USO3r2Ylu>22$EpSz@D?
z_5e#fkrX?1mSXR)L`8vJ+9gPxjVBG3xGpJn-&u-%hb3N1icJcgU1`nWGg}x$84Q1r
zm^}`Cmbs5Jc#**yS#lZeZOdteX>vtC&*&6eZU)P>Gm!EQXUS!>xGnc77WraQ?ps-M
z8BK1>{d>CHTUl~rl;<r%dD80yR54l)aK=i8v5ZG&Xl3TzNd+SNp|g~|FDd&Br$qMU
zvy}ZuQnt3(mTgBW-R6u6TQ=`z39<RJN!h2eWHX#>$^JPhJEg=fcOz2i<&G|UfF-2d
zRDB=FlFgX3t#W@fitIaCvKawv$ySuw<*w(H_<0zqv$6TXQDlFaB|Ey!<H}Ild<Lnw
zS_|}S${k9|rhN6Ovy^=zDf@d)Nquw1XO=s9Y|I6pvbl#-B74<Y%08TwP1*cnmh9-h
z`sXOJ_2rp1kKVqW;8QlI+V_Sm+0kS2iBV+V$&wx2=GqB%xdWUMUp<VJwC}`G_lniy
zP0>|dZi@e_C#XGWb%l8nl8(KH6}vC9=8_6q{c5Dn96r{X`eqjS9)s5zxF?>aTs;`g
zZ45;2hO?DB#v-pK<pPt=vb>pKG`kr{c{iV}+*i`&Ud@ur3>C{Sfyrs*wE|7|XJ%7d
zauJrhi@`GtPG!kuhL<JxZn|9al(Q^vJs8b>45YkAv*a?nuT|bNEb@<kU2aY#<W@6~
z^7bKhR(`piMZS`hdoD|E48NRWkyLpfxJ0*C$bV+JyeiwywMeDgIfh>%EOIz0_e7T5
z7<RtMBJU*SW=zd2Zw$G1Fgoh@fm;c?ei4?tfq}HcQ)gFR_}kb?H=gG<-(bnVG8i`v
zU=qMtxo0kOcQDw(V7D!&4i4)sbs0~f1ala4dFxje{(r!6xx@Gl(+{)I4V?KTP%BgJ
z4Kxr@9^R|E!nIg0y)uno;@2Z(-VSd2>WOX~huFR0?*ihrz5UMK@26>1IH;?@`*^%-
zpnTS&UO&ES8xsE>WP-Z!eLNcWSmq>ibA0lCz0v0jKLv&w-FO-g;~9Y5`mo>l0TOw>
zfN=s(saKIF<O%-}SYt2{@{}1rLbAqh{Fo^}eI@8`!2N`0fxM)b89%{OY<1B}I_D6-
zk|(<35NhW<vc3wHm3J-GBb*byiKXs11iv`Bu1;}rj^g6?()*zkXV3Q8aU-^uLF*j3
z32AwYnByyLULU>?DjHVm#&ak@5UEgZ`AvA?g0oJQ;fwzi**LoN`%2>{B{^O<o@bF&
zY{I`YDgFXr-Jzc`e2m}1=+*9nc<1A(b{)iFGhVXeb&Psl86JcY)s1?M;^zAaK0;{l
zmAjDD)bSUgD2O+}93<~>!~Glt;}pP+zlLq{meTkIP+YJI|0kZ|mzd$@B*QC={t`ep
z^QJ={Z<lo3l6k*$3B=_phm~8wxeG?mH5VdNH+}^*hu}u1_pjmVz|(l!#5v0Qzi_ML
z`lOpnn<ptJm%5D8U`{zXj%vVRuQH5fwoYlYE}V76b<14FZ@^=2V>9vgB*=F&T!i-{
z>R!k`roRTdeJ`X?5C4`?^D4GI{JMz9{S=r?A^Z>j7iccy4dJ?p<?lu^=g{u}ap^4l
zdpz~<n}E4KzwzIAHm>uh<@&<^18R=X{5YhAqhXrQd;mxqn;h03`U6;vKQh0`h53|8
zSD3GH$#1cCpZQOu>%FG08l<`KEZ%{52``tZknNoaO0`^c5f8W;{I2kyAP9*fmSDF8
z!++)?+>LHrvvY^v1`>V;AUBQj7f|wi;lJXc`vdX+#Z%pNS%R|o$D9F$@={3bFb5bt
zYMT{)7Xl3v%uj(}jT?`19vh(SUg{EOHu@0A;`*le-;g<ijxP72xa}%Y4&DHT_*Eh9
zjWh&w<L}@pou$?3ZsR@H^$!5P5%fMkmxlj|$Duq9GhBX563|~P!Ygjvo>{~Zi7*cu
z8km@JL6YLKD2tO6L_Df4<L%`xqGGm(iy2|9uEcciC2mMzoMd0dJxJ&1;U!SuGrT~|
zXHau_RTkEPHg5MBK0L#I03!fkT}oPMvH#s>H_xxZjiqpqg&KWE4)dRbBKSg--dLd<
zxu8@Y)rgEdq!e!CBkAKiODKLE(&mM%#VA0sbatyn+bFaUXpKb{DUu{LOwx@))}rKx
zkRbtDW)y*1CwHgxTwk~tSi=(4)OEga32U3`3zsr^f@Mt^5c4`{Fh37qj0YNC4cjI(
z;SSb%B<lRtjlLS4-`eWA{)T`*)x_a;(DL*^xD`+3T?4nfa9<Ii$aCIj5gs9rQ2{J5
zfMzJdB|P((R09&h#sxs1O`-Kb-L>`|u*Qi2T!WD&6Qv=qG?6h8+Ui$iXB6q+59z82
zt3rBdc}O=VfjK-Gz?cGH&V_dIRJ{wCtO@4*7^W=P_|Jd-^Ocg2XXs+K(--nJ;A2g8
z25uAw59K48{O0-45HPA(<5U2|9naS;x>o!0d9D)FSH>sA903W%KMu$6eJTXA=MY9L
zzOwWQ(Bjh|9NvTJqpkw?yk;RpO2MBNt^D>}N1(Rg;cE!^l75#drP}O<DP|NvhW~2w
z0FqXtRzo}AhLril%08OPu3__kiE8IM_$xmKBW9QR&Ci3eEF~@e_UV3U<S_2&1sk?H
zVn?;Lw?2&aNj0?Y$3-Oxe}e-I&i)*VQy%xK1;ul4w|5kG`^+a`fM2F6J>_}>clv?}
zZk@b9gC3BkvDP2oq`7}!ck>wFBDjmnlD@><H^^ZU5N8@QfEaZExv0?6bjP}0!6YH$
z)hq6r^!t<NpHJ>86umcoCuFb?z?g%Dz$byEZj#jPjeknzE|lC)r{~@hzf0v}bn{?I
zfiVIqK9kM_+xh+_`W21mI;ilkhr#A)c%{N<K(evHN&jn#UhI~}E64R))$-hS2vPXO
zO{eiJ=a@vVl$gW_>M73o5Y|_ovT!3f7d#0T{Q%RYx99lg!(_4oZ}HJoF8BLfzZnW6
z0{Oy%G;FvDI*geBdG(6}5)2P)<=(`BhzNI#0W%<|>e5i`4|$P~Tb?RkR0ULseDjs!
zfQk@3q@zRXszdtBX2@F+^1gm|nhSkgU)3l3Xyq4pI#BB}bUT{B_2&gywYeTD9B#Ba
z$(9s#HrIwbiPh6~B1>?4F}Du{``UBHq7F;U>~-C})#EdkcK3$o*oEjA2i%0!mi(9p
z#Ex^2YfUdD=1oG9Ic6^CGAG-CYVR59>d1`>YnX2lK79YeOPej7YEI;-H_mw@Jf2Os
z=^}9BD!@HZUKT$Wdillv&m7ozvwlV@uiU&Qg^lolhB7o>+fW63D;I@>I$ttYJr0e*
z>jd<jtbEnAv3l@G*B;^tg4>Suq5o#{^W<%CtJF<61O^XQ6(jOI*ENFP?{SY{2=&xm
z>{6OxlcgCwO{;s_NuCES77lmeDs>7MgBVw~=yU|OOq9MT(?C*fg4Lp~J1s>lXr5b#
z3FbUVhvx%eMQ^TQ$^xb=1dvI?QSu=+*;r)f9O8Ny=L5CP<KlFY((4YXhGUXSagi#;
zwQ&6Q1RB^=w<)|Bip&i#z`U5PcoGh*o9#Nlxw4VOdQ4dQIhR*{4iy+GSYsJq)YV<#
z3!qA^*DK+VN$`ieVWR5*b4d@y;tvD<v(VuxJ}9yesocf_^GdehT7dWxXt_est^Gv{
z>peTxrOdh*t5HO>j(hs(%pPni4)D`xMP{5c>aK7%6e(guj+H59x%qyWTuN_aMN^@u
zof8uzXw}-e8g-k@W5hjR4eIWL7eKduK;ZlOy&$HRrH)_jL3r?Q44?;ia42v<&;yLA
zJ=8K3lZbK<@}71Z%HSWD+x#hf;_*sg<a_eHrD5~|)XaRF+v73#(tJOiqs-=*SZ{OG
zAmz|eCbxs?UV)ayNuD*#BMQCwo@6PPr&IgcJKuDc?g4kQ#5<ha`Cc(Z#+NYaG6g=%
z_cr7?OfS$}ZdM>iJ3(aXI&YWty3c`bChhl@@g}~WX<UL=tSl9pj2&+IJqFhAb^o*j
zqk>$$kMH89SPsA9cWQKF1rqt5WC<T}#XCSTRsy(;3jyV~Fv@QHJKDfl1-$N3x3QX8
z;#{`;PJ^+Q=~uYSyJ1E+0eX$gd>ZNadSrw*0Mu~z=tKg+2a7y)dtC?k=?LZOMt=<g
zt4rx}=5q8RXCodwHPqKN@ybCTsbob*4q=3J?#Zv<`r%9?SUtiyVE!AB@I|aQ<~BC7
z7EIjrVaynE%QPrg^XnGNPAqjKu~hb~0_1c9YZOf5e4;TIYTwsy;c~V>Tl`{Hy*GZV
z$~{+dZ%gK0!nr&)dkHIdg3%$l1nxAY5vDkCHqD7+om?N^3PsgHV;dei_c=dd+>swA
zE30zqhbrtRQ?=fkp?Y5iK5EgIavg$Ybze5$<R-qGy=%V5Ngn#b-N>#nJq>Ai-7<4L
zQ<zzCAm)99(<1pfbQy%gJpkq`X8SqVMmyS3Cp|m?q}n5uGPWaw2WFV<3B%2L-Ab3-
zleS23hmPTVB_7p{xiv2Ntpu4SQjE<ki!(O8?#oV3WqRUrc*=EPHkjkRTq?JzPH1j9
zr}P+oAPynqFtatFAhAdSZ6*ZuGV^j&)4UO&@_UdmBCI26tk}@NHXx7nUL;<^SSPhn
zr=|6cmWQ2Ya)UeZOtaBdVD=oC?K*G{8^41K#^4XLJgHwZuuZX4iQg`D9pG4(=&^b#
z56C#xJ-|_(Md$Sjk7;m1$aP>I>&FO%EktQ^q3ghTEb<(1UCt7%bHa1ot^@NqXD4gs
zx(DbZ&@okXEa05CMTZ>ZR5upa$ofD|@h;^-3ByPbvz2i2GQ&I{Uh=8cf`ht^efLlB
z-nfaSrh?NEf>$9|H+Zw4%R0$dT6(!2-UZx<0$6t44!fp_T?><TxeiF0k1Jq>q?1;t
zjn@Fm!*8yove*>KdVo#I6RQGpsKdW(7rq>-E-&&pth*<}I=|20Z7O~tCe1|g-Q7tW
z7ddQ{v}L2DN4GJR^)K7_E!gNffQ6kWyc@PTojIzxJQf^+t=R7)R(RtiYfovtl;48k
zekd~r0KzeV9EVp<qr|fqHgvPL35@UyE_>T4pJA|G89jdOl2wZAcGaeF5P1!i7I_bl
z%3C$-Aj%?|AlA{+&Xr3wLKc2<@!5M$)2yaBv*t7-pb5X3igf{<Q-hd6MeoM53%zPu
zXTprec4GD<db^Wo9s29Ejh)nn#WIF@nznpnM;o49zz4BQn6|W^uhPqp3*mCnl*a;r
ze4u~R=J3G>m+k_n!t(-r?!|}uPaZz7Qht|wDbjqd!o2*^@xjO>dykbCtq4z6>&FK}
z27cbgp%?$?)I08%RTz;97=BLR6Zw<y*1BOT=iXHCR+&y^;~3s5aIe5O^PdF&zJgt)
zIz5!Tt29W_{2$c?X&GQX{m-~(K_}rnDRB0<{6d}T^SP8zElX)AMW>SjFC53|YipQ(
zWB#tvLYh`EuBMb$Ry`gnrSI229x9|cb>FToq(cJVD0rZ70!<8jvs|ZV#_uYfOwDEE
zYp2o!!Q=W=@|PXg@s4ELuF|R0S$ABYOjnkSuboW);~HP9(@)EGmDbRYCci$ul&%eW
z@^rdC|4Y+K>A^BipK|Rgt)o2?>%*mZal)m43_Nx8K*e7wOX<Mm*DLGjTS!kO_xM{1
zOX=Sr)kKr0L<;NZsoGPyb@Z2tDbsX1SiToFY;uqD>9h>#I_jA4qtI;nbqUw>Di725
zm2!Riz;iB5t9Y?=0exZ02&8`H;@krsu9v6oiL%ACV)E~%ET#}(9nEW)T3SjkPuW^K
zn=US%-Kf(K@*bKxo31WpxU^<=<6?TGa#CI?T?p^#v;%%vOv@`i<zGr&(^{q#(qj0w
zkjm@E)#&uyoL!}}>5V$AdMbTmGW)H)va(vInjqWOE$KHJDv>)pgL7Z>u~)y6cU+%M
zmzGbesv}>xK3qsUau-gWOm~ETQCCPyr*OI@e0NO^JyiPo_{p>c>8bR?iMJHuCFCS-
zqa$^kt`6OTsAv^0%`4;*-<!a#|7HCF(2u}N6KH>RSM>xM?`F6##BiVgo8_}<L-8*7
zVaIf?<7<;xcAT4GVVL1B8`%Goiy8h65rQZk&*`7%aeA-s*N~cxI@ZvsAX`|P^GVoz
zv&6|qP>ad*j+^1P0c+@(@NCcHD7t0x-8GZxdhpcH8b8Y(63*R#rIcI2k&_2FnckcH
z9z6NyI&R1Rm_EL?jy_ksAa5~UGP$;XGW|-VJ}pwyB;E=q7ELduzgFZ<TT1iLQg!rF
zDaX=BB~Jbwb*!VQ!dcwFrIa)bAsRy>^|^}I5ue`%tfO<>e*t`5=ZK9}aP+>7bR8`e
z*+qbLw0&Y}eJS+<E~eKe%&J;UzXhx#SLN2)#k6G7C#x6Jw<a=tRN!}oQsZHYYcj(>
z3FXrQZxr|ifh6!wk@_QG9c`|-8THyyv3GhM-BvNDx|D7QtfQY)URG5~&jHS+H4|sn
zE~5`stSp;NMdQEVn@Xz#w-hd*mu8IU3lLEw`bs)d_E32t-661cJjZb9lyNnS$z5=N
zRTC{5A3@C2y0?`y(Ny%uLi$JDL**;!+tVK^UrddYxCiA=x*s*IKzb@A!nc6OH-&S%
zCVk3ZO7~R$9Jc+gn#X~)(tmFY?$t{vF@eW{UkF?;@DhPhz}aNfaF4D;Z`Elx;;NKB
zI+6K@;peIJTI~jm5|=f2&>!!}W6f=d@Tv5>oa6dp`u%k7r=Oe5<raod<xZt*(X*zK
zw~_nTK;9QH4xEsFabJC9^%{H)!rO@a<<%PEDz0;hhh+47t@zz(lj+YjlS-!2<~;6M
zU##bzWgv1U(*=P)hZa-A<ol}@(4*6NoY_-0f_klK2%-ml*UvrZj{3K7W<)ffrw_~{
zm>qC<7V!|RPh#K06ty1TIpLGMA4#4EbE5{%FOU1N9z{-(V80Lk7{7EJz!auo-mA{}
zF?wDACs&8TId{sB_4U9e3RW=n8+e-%z{v?~nP2eP(0VP8=84>$L138c<_qVSs~9W9
zTXoj?#oFtu*5fR=OR#;pjFsa|kMjnmTwiq_&NR0P_HgO-Rkv#ubeUjnIc1IOVM#==
zpHF->m$6+^!ndb0Hi<4LH*Dcad_7J*_RtYvKg8M1dhF-pc&AZ7H(_0xr%j;*j=u{i
z2M$?Jm9$Ufu7K;-Qxjb)*vG|ZbLpsH^TlW9(yf9)B{=8N?Sf%>25dfkT(A!dwt(&w
z>@$Kbq)!R<Rlyd~U4l)Q@)px)1yfdEK=)wH5b&=A{9oT1z?XcSc2a)tdm5CDRkL%!
zQ-5ym`jMYE-0p9tpHE(p8=@Z;UjTS+d0TEXeLklH@bdaKp!~LcJ>X-Ygy_@Lx<KCm
zdNXYm7#E)Zt-lz#;f6lI$^IDhPY%biKK;Rz{YXDtauD#|+#^<c(@0zW?S7rUQFpCH
zIhQ8uH{_xRxo!qrpxp_$S$i1pUC%cFw|g%J+~|4=@ME6m0k8J{67W0THv#|VeHZYD
z)CTw$fg1pIdIaU_GzFIE^q1m`0iUmUAMn@pZuH70D*b?8E6xM_MqObNZkxtDN@`j$
z+u02})8U(SW#Cuz&y`QiTUUt&qHF#AlVA2}wAsR5EUU`X=rV<kzpb(gdHV%>nx;*!
z$#c_pEbMvzLcfRJwy?Q{x8i$QK3qlkxz_LUz3lVQ#}o!FdBE-#Olk4ba~8&0bo!%(
zu@;>=u%@#u(`mhhv1K}Kv9M=-^}u=*h7$TP2Jx3B5UCOZ^eYSF5`uIdHcgzzB?Kvl
zm!fnP<YwgsX}Vxf(@5cZEtmc%*imqvmzPKX5bU?w{@U~N@~N1Q7}008;!V^zS|!+T
zwI|`RakNI|K__FI1UpPKsV#3DUFygS(JsO6Ag%Zje~7*$*inCRdAm16zp=0?V1+au
zD|Xz=p`V0T<rUE`3%jSBu}=$jls;3k4w$EwIgipmt2P0<3>#~f`^(gAdBs%Irt)4Y
z+=+2~v4w38?aV8qtrj*VKbAM1?zga+6+81L5P!cF>-<8)s=Nx?YhiK0K5b!#ChSLE
z<ub*2cirK<iL}nbn#*H(lWD?om3Q^ToAN4Yy@hQG-kCR*1}yA>qPz2^(TIg@4y?je
znXg*d_M)A@+E*woKR{kJ^;y{e)_xw?Pc3Y3U}s(}O~g4PTfLz6Qh%5l6*m5pm8-DA
zSR~lf^wjvT0NW+lwbEiZND}N0|BrIMnO9GTE$lx8yG1Y+1@-h}!H&|x8BgXlP}eFh
z?+&_d+Fe=`T`kyA`bYT5yqWaV)ykHsl~3k1)2uZLtDo_Myg9VS!u}BcLEbskZ(+C3
zcrI@)-DY7YOHSp@qyMt7Q{}Jc&8PobtF-)l>L2qK(2aOA%C-Gu;2(Jl(;{*a{ao@?
z{T9)$6sLG%5w)#nxm*3mCwTG~QJ;lf9(=^Vh;Fm6xSz4FTi91hg5dmr7WUne0$@)I
zb_YFQUzUG9y`b{wOA}ttyMTUgVV|DxgS;hFxk1XK4<oOIz9869v1KX!L@>6qK7T2_
zEZA=Y)kU}BwDQjuwni|*Zk6b_fv*V`5{!HC?EF@$RC&@H+h~?x-v?GgZM4<O`<VZQ
zU^`uBVU<&V5nM)J7K}@upTC^GYvoPIU6Q|oUJ&g2#9CI+pOc&#b<p1hds^~3$kQd3
zX`6DF<*!V(!%y(q`@$r44{leaFdj87q+Cmm$CnG!T5J`aFL`X)>ikvIX>lH$v?+fL
z4GM-aB-EY1mQGn%NoaTeMhb0YTkfFqOZMhpOiL{6?Sj4emr=sP)|4E{-$8d<SY*=8
z`Ipmw2zHcyQE*qjk!H&vy(@WF(Vw*W`GXX~sS%g(#j^YJ_s}fClm|_^K(MEYeI2K5
z7RJ6#(3OIzb{|SBVTe8~c~?=Z_Hh0XJ!oM^T&|qG^fe3X(H_s=OD8SN<^68{K00k-
zyS*1_`{_>>*6sRH{(dTuBh0Jllb#pyhiR6DeboDM{uMN0VJE!5%|AeYvM`VShx{w)
z9SeH_>#q@-x|wTx71ooConv8JCC}N%M(9Q>?-AEU+6digVQW19$RD9cEbOZu&ik%~
z&4JY;^fL?lH?Mo#2zj=s@?Q1kjyp`tENrT-!G^6Crcv>@tLQrxR^gpA?rJ(|VJp2g
z<E}~b?zQwAE6?wFA$V<C-gWezm3JC>*QMosn2Ik}w#-9~KAe%a!pgf>n>j8$?|Ry7
z<-G)-U7sd*J^j(j`@txAw_T#jtHOa&rreUPD(~h|<bG)7J)yPbT@N;m1}F2)p5K*m
zdP9hz?n|Xpxo$e;pl`xT#6|DoC|;v>oVjYWshHt-(euf2&b?i<DV+*FQo=k8@jZlC
zX=qrBr9&5ObI=t(^Em10>6Fftwt@l;dI}0$SjVOG-<!jFlqKH~`sZM$MoTJE)=raJ
zI4RDw(w2fQdQ<c;#YMlYWNoQjjlMF2DXK*Fm5XLHWb!C}<%bj4iD<N<kl`J<DX8kG
z=n6XRSN^<D_>YP`>{}Oceckj?&^`2L95Q<8<23~ZI3>c0NE83tJe=#1T<-_wvWD9v
z5}c*j8n_hJuhV@F9=6ae_IPMRX{z*0y4RAbm&j4IR&AuxPM`ciYO4HjX1G~rZ!86L
z(>g#8^#J0#Kt+RU-y;%r*?Rt;@F@7Qw67fxI8DX3iQR-9?KN6HU5`&x8%Ia+xgMV=
zcA0nLa~D2QEd;(ox<?BTuX;m(UhHo<T?H7VW<czh1-1z65V#(&gtiEb0#3mGmEka8
z6&(gFK<{UGRN$R}8XW_yrN<?G0<e*KwA(5d;*t>W7>i{Od5`2yq=U5)?A@nLH*o6A
z>FJW5NYDE}gfzo@WG@hPzghE1S|mHqHqp~2dfJG0o~uN5mB_9Vsgt7r4ccAzKD|Zv
z>uzn>{nLVg_AXs8Jzv{Ohw3Y}H|T|M4JfDcZpD<*U)`Wx@4l^ewx(&V{__Es7q@B;
zx{I-fIYmc&9ok9Rd7P$06E4z@xx<Cqw8!1IRqoWPv|oh>v}SEXcv$O0xjVIxRyX~_
zfb5N2vE+n%^VCmhC*9B2+@+mzZ_oLJ7IjaXelOBTk$wYu3g|8OUveJP-gVCmd{=wR
zod`Xq^-x>zXVCA<d0Fch&Fi%Tp*OV-ZCL>0uJ+Su8m-rIuwE(m+*bL&T9s$9pIiyy
zypk^W&vji*t>v3tEuOE`L|q*o(`UG%V%2)#yiquB6V5H3<+<N=eVVSXebqG#Z5rJ#
z=|_a;s{#*0c9Q$slK#F({aAR8Yky=f!TyWf*L&79ZgU^?)Yo3_-U9x8?(4PRz|QND
zKIDEu_+O$M%I|j%ySS8L*MX2mcOqRtCs6J)?o*y$mi)y18!6>Yl=4USY0oE0b3AV#
zcc*sRvvYjN(*bQewYP=mJ+Z_ilw6H#T`cK|lAbQ<2BiP!K1XA3EE3ozaFxK2_qNLC
zJzW~teXDkE?%zFkLdxsy6H32O%E8m*O=!U?jhemRFKG8(De0?)=SJbVP0ISTlzYEu
zenj9`h5l`!e_tp+)~Zp;3zB|Ga(^QhzA2Qq1->WH<6@gnxc@uAG4pQ2WBL~O3NfZ1
zD*m=!uCJc<J-tfrE?r1f`liwo`V9T|Q-7j2>zk&$pttDVW&f#n=(RPc_4T^xdtL9*
z+2<YloSMJtxvs^yLfoOhTc`UThYg5Tm+8y%bwIYrSBz4seAnx57tHV-(>@ozm7?y~
zYA$j=2o1}96Oo(eJEj+xZ1hb>x=%P`zT^6-n!~>1+HHu36Z(7pYmk1`ij5n50j(f#
zD;;xx#J^2Di4qIwr2dndhkYmApK17_@1%Ca)W>`cuJx5a^qu3{5PsQrQs0t;xYD`T
zoYpQV|F!Rg>+dtb@8VVYNo{<72_4sdg0q6tu<C8!8-VYj#CG4U^cK<!>0LmtU-Lcg
z&+~Ju75W#!T8#p}NX=Y-z*py6=s)dY81nI%L%HuV-v$11Uo$8?=Cp&~^i}!Z&_3c{
z?LV&l0X$VcwtNP3ZUN;v)UMgLujmu#%gul%+@9d2{`tPI`3L<iz8k9d`cJv%RUYwo
zi2kVi2c_3Q^S0?91AMLK24B>@rtx;9kN7{~KjGd0@1635iXZT=_dV0_h`(8TA^au(
z7GJ0DF~HYnJm&B5osUwYu;B@R)c1VtVc&XbyEnA2l>FHLpli$c=l#drWtBho-y=0W
z=6bU3*ZyO!Uzh!tze<}hV*ukxUZudgae?FDDGBWH^;b^}MBU38@6z`8;{IFd9(QH!
z)WALNR-}2P3WMi@(pHRepUZ0wyzBaJzn9*1E%0l!$LE6wqVA7}=0U@p;(NjK{FDm<
z!@g@~v<Hs4SI)Q)@Bx9poqQo=xvVNg<3f5v(x^e@hQJB5_~yVOS9fU@d=f5R=)c}K
zQo0p77Z+|1G;4FG?+U!3eY!jrIO^*zy)w`S%Xeyb`aWBK6gpqQ>CwBcljCot^}hFW
z4*QP!HkCddsIn}nt9;)7hHH5#+qno9zUw|W@J`@_J3jS2Xj@<D3Z8Z?s^1(q?P?Bf
z4!q%F4{%Er1^4)FtG$&Tbbo8ct@JoboDe+fON7F~6Yf~fBmTEsFZj+4zU7)*ctYoB
zSrq&#EepKtdqm)R--n7G@jvLhHq;tChW1)WM?K-%HNm5v|1P;CIA8lk@j!3}Mt+Ts
z`*`QdW9FLR7ErDWKB$?#n}a7IrO_7mn&}@0{etPA0j0b2e#olvyuS9K;A!9D3E|*d
zzB~2Dg6|4Hr=JOyOY4`rcz;*!;(gtnzSnAA3$E9$E^*~FyBKzf59b4ha#{px{@W_2
z<!sSbHq6Xf56ZbYC-jdtd_oKOpD0|F6V(o()&c*e;q^I(k$Xwb^)65C=D;bsWBksX
zqo9~MkGqZ+ehjgCZ|!5?+#S9nM{~uizLLZK`Fc*s|B?Fd15Pi)oa>I2|1d{$|1a9*
z4VS;<VPBO*SCtmTxm`Zye_w7sPQ^=e3+Z;M2fS0@dX3W&fy00<I;hRct-?9@yigO?
zMBU?>@aCWou!05vr_qgo^>jPn9C`?Fp}<!964Dn+x>MjK^gU2|>2H9$X;wiKPUr^#
z572dhSJ7PsEmBG=-GEXq!wGu#xE`VO3S~qnhlO&LQ0^AWJwmyU?xQ84CxvocD5SB5
zN`XrRwrclLN9Zz1AJ({(UrCx=!YOcxz+M;E^ePwgoEG@1K)0JI(*!ON*ebAB;8g<e
z7I>e)Ck1{_;Hv`N9?>9hiRWQ@z2NQuQ=SyKBrgZ)%LI-Hyj$Rt0)HiN16@N8(^qkB
z{!6UB654IrL)w+D|Iu&peZu!U-xPnJ|1<ul{crn^1Rf6jDDYz7KLh^YRQx{VieNlA
z9GsMMZO)B3_vSp26Ce$H#B<9Z!1`Ik>e-F8vj;8g!>THPl`pmp*gu|&3ktt0TL`H8
zIPIjI@+|@7xtw;uUkH3^!i7l3g6jeI`5FGYWFz2=qDufb2z(sSk9Rlxc4ji5DxIHR
ze0=!l5(`|gAP4DuJY85nj{{tQ^)>&tW)a|pR06mPH?3XxM)Y#jVGW>*HX<@zv`I?1
z2=9UBPz&BK?Za=NejKZ=Z_$hNKQvzZkoKxp>Z*0Ebv^2O-1Q6Bd#)UJv3sU_p}WI<
zqx)0tm)!s5p6sdf%=ff=x;&S849@}2$2<>szUn!FwbGwF6TQ{mMc!53OT2yFxc5We
zk9zO(e#85H@4tJ0?S0GZ#clr@{h)q}{(1c$`UKx<-^IS;z88Fr{_6r)2mLvo5hA>`
zee<DwI9YyvEPEFlBRZM$3Mjm{N&WmH=SSGFC>pmN|Gb*>EcRTyGjpK@)z7Or4`J_{
zS;8so6?uP@`gt?wo5JUIl=4o__}Xl~<6=uX-|OR<FTED~YM7R8O9VUK^m0$)CIi##
zI&k{^oEL@0(O}bG&H19(oL<KLRm{)Qc72Iju)|9)<IS9vIIYOE<@?yPr}Lf6c~;6O
z#;&#mabJp089w9jDaU65J{9;(L@Z9iXEHuh@TtV7ihqMs^wnXl$9gABU>wepr=Jwv
z4?4G_pYnzNGTlFs`F@G#&GZ~br5qPVCf9@1>w1(Du4D9h*VpkmMlZM?r$6HP7uOTy
zbswV{__VoC(0ccCxQ%iW>0@-Q`xM>o{!jWMK3~J<TfmQl{-XO0@_LTZczot~zK+i^
zT7%~rJfj{>yBg`Mk^YFst=)<Aok)My<JG?A{yOv=qc3=T+7qBZ0s8km0qt9$e+y-P
z-gOc(C!zl&=*Q?)PoDNFo~7O*t<-yrHhQOM8}S_QejT4<^kHwU_Hm>?j`UsL8QLRA
zKZ5j^@%%EL&w6KSFX8!n?;P!Kc>dEnPn)2BohInVs8XM=%|v=8o^$b>i|0Z-7vkB1
zXA7Ro@m!AQYCKot*@<T-o?GzTf@e3L-FQaujNrK&&)s<L!E+DF*rzYlu0{G<q;J&E
z*FJ^xr;xr!zd-vE(qGa~q8(nLxxQCuAwDhmtns`=2YioeGu$1n2Li9qhk|#xz7)L2
zbv*c}>;2$K)axYba}w>v?M#a{M0Q5wiHO-5G51D$Bk{%CyStlb(W1q@-Q8``_+Wp}
zaBF{0JU)9?H>e%4Xo5Ke$z*A6W|qbCySrygs>|%@jdboBO7t1~Vl1V|Sz;oUQC#ym
zqf+ONN<G&uw|O3?+GFt{GqPrIU^y<v_4Kzz%}8&;Fo&gT!ofB+pO@m@7>}6iOk+p1
zKa$QZJXr=SDs)Jq)r|BcA{R!?SfrneNaoJx0!H(%WMpa;qH<ZH$4m?jil5=~_=fF0
zy%+6@CL*iQQtNsWyQGnvtwD=c89Uo!eH$Wsh9Ys*LPA@L){Ui8+af)^iRfOK+!2c>
zdSYnvWro>0WSWs!Vnre`n9k0MP17*bsmmh?G1a^%n%HFwC0dOb|J51GWOncT?&jvP
zYR@^$b6z(R+3w@qjBtRq(Umdpj_&T3m=PNuFoxn?!-J9L%bID~P^=e^j`rBlK*a3X
z-X8&`;z6~PY8SI75jA3~jlLmaXn|*p7&zGvD<VC85pz>d|4^jW=<i1isl1Mr#`gH?
zo><S$hzZvAJwrYH(Zq18F)-L;3dt@NK?eqIH9R_&Mq_=r*Vz&49F8S=_B%*xdIlnW
z?8&v}+U(qp*qQS$+7*eN4Nq3FT}F~LYM3_9rjA%*4(<a+6WfP+cSjN{dSZS3@X74a
zS_s6^f}MFYTWHp0vsDYBgtn+Sw#OU>QNjX^J!f=XW9L91tCZQ7jiILb9J?SSMzeW-
z_ZS(?b4M2#gWP<sT@VtZ7nI~^o;McDSUC`|dfItoijI*3vL!lyOi|=49xIm?sXnuq
z7WGEVM07{A7Xu1oyLzHAJmZlVIu9q}{p*bWXz#F$B5_<IZKcj(%s2y09cyWIwAVD^
z#*Rc&OMGxmB+=9v-5KlY-$1K-2JPg|NTPcK#+XQ3Pojr9WQa<lma2;)+v&ogzM&?2
z8f#+8K)ly5`=i^b%Z%<sZ;kY!>k^Mu(by0M3&vRc-iWy!mF=|+OLg~n)AC3xVn%y~
zucJ>Ms_*x8?ZUv{XVI+T5g3NX6vEoAp;fU{OJ5)Ns)&idskJ-OM{SWoOiyrLU&~+=
z^H3jcHxj#2RO(AIjAmZvV5B#S@#hK%a$(UvS`*o~d<f4)T&=~??(SvLNI%eMp9A4J
zz=$~rz3__3!<^|L${4>YvKJHE?(XiTJ-xdzfGKsDZ7?nXaH*>!m<9UCs&{9vF&Jsz
zpNPcbD8tI@GOPsia~mdQu*B$%pothRk0h)X%xKPa5p#!O4)AoPn!=j9gspuqrmjw7
z$W$6u^u%|y;*Y@zV`ri#F%%axj*=Z{TckgNpt4s7ojp60#Og>qj<H?l0INne$r|I^
z_an?>VCiV>>D`4#Y_G99LK381JlBv~f~+tGBJHugQPYSGz`{*EX4H|}W+V{tt%f-&
zPnU@qC59$USWT>^qj;Aww#H7Z5inNAP=V2y;M~#3ouiXeGbfMH@j)Xlwr?0h?-_{j
zJga5{ZZpP~nZ`hhVmVG)bs3gb(iT=v$jU>s_Z!3PqE+Y=!Y+bpj8R?QN^|723=U#I
zk(ry<qZ0mtNm$8TPHUpE%Q0g+DBQklV-W<BRlXz79-8d}EolqQl1$IWuV3`;hT%Q^
zyNr0klHn-lX`8*n6_PX)S0iGgF@+<~Q5Ty%8IeMWv65~q)XW6NzepE+Pu*CM+k;G!
z$jUbkN<Jr7rC5Z<wYAy~BjCVx*dT4PF)nM8L<E0W5rfdW=wPIu^JL{HJsIKM2_AG7
zBW4rOJm}oq>$tCj!}6&@QLi+-0}agcL9BOJF<1`FBwuc9=SU)~#(6Iy>2CBiUULXC
z)^yRty(l$2A}y1FP_w3mrjFPS6W%e0dK1_uq*zDINKPoDOJUH&P#Vt^m7!p1PaN81
zUm!_t&$Zh*EK?JVWJuenrMuv~#^0ET@~TpBZqE%7bio)DDrO5&9Wz3k=gyknnwp3)
ztMo^9qCKUF)wmQHz(5O%$#Z9yjkQI#5AoEv)HL=<2j>AYBJy~wj!IPUxWYj*h(I=F
zLgY|sN#OUCwnG^?g4o{fsnI>fvd)Y+xj39NS(3~fdH79Y)HyVWDKZ|n2H{kOvYkhz
zOq!!UsVr1rQ#2k;V{eJaBLmy}hr6N)r<Nqy#1>$n$K0LL($!<4IhNtCkVf_y&J5d=
zE24df^prqyB21BN^*k_aikLi0W@lpb-x1w8q;@E&Y#A8QaqLBd%;TwSTXkC`-fKn&
zd6G|MuH6@np?!ICnIfvG%IdEjeQF3dQ~7F71XHnQNm0cN%!3grA~RRTij2t{BK<x4
zB^6Iex321Bmi}l@ERmwxwsTfbY&ex+jax!bM7K-FNagbI+`d23%aJHOg#$dbu9E0?
zEE{=gDSb%TECj1X-qk5yi-rRM?2Y3Qiz@v_3Xm-!A-fMF2!;j2u~VeIykEphXu#Mj
zy^PzKr$#<vXfvaG?L3T`*3^Z8%Zl)2QLKHjltW%$WdGV78EYUI*~EUwVC)#QGAQ<d
zWRtB0vRZwzq&4<7al7Ia00Gj(s~FC*crAA~S)s`}(%cvIm@z>N^&5(?dpm|vCiTez
z!J&g~U4iM)LE_~-JH83W4Ff$1$yysz;icNo!OZg98W|*!x9K>VpbqTB6TQ38sEJ+D
zIASRepjI2K?e9yGI6P8|jdVIUl*lnt%l5d@k1$FSV4$Rzqwf#(_e**W*Mr*&>)<4#
zW0Vsb20otqmKpun4`KBtL`0ZVpv@TQiN+wAB%*3;Ph1En6Kgbfg~Hju)tyU+qWyiz
z!6lWGs$Yt>!7$|DNIb-&d6Ix>#pvIg!co?S2-bR0J}{Hg2W`);io|xptyuWS`K*Fu
zBvDDW$QnU5no%;gUoPHHL>zMxdQG%X;;pr(zaK|hyD`sWL5{gTVxF0=W9=Z$a5z+X
zeMtSrP6S}2XTUmy5n^{=+9Fb|Uu0=U9jQ=PgkCwZljb+Ob`8aLi(fk8vWTO#GNkqN
zCwofz%->`!hWpb7k~SOy2|=w^1hu+TYO;?vsp%hU#7IANsHK6FZ6)E-SYMCXXQ9rc
zG3wqeD~VK)%f3u}C^b<iwwDeJt(lIs^!JZ4sPx%XUNAMOjTG;au^+St8hcnt&*XOB
zX!eUu8+!I}a>znEu)`PQB%xeEOAVtx(i0<Ik#=H?#{wg!)-HT(!0QOr6-1%6Td*h{
z*0{wZfU}SF58;H9RvG}Q)ge!GJOfy}3cL3tdyDAj4rUE;vZ!)srJmFlLwGqdIR3^w
zLbS)uv{_qK!#R)BilOc4Eb2@$oyK)cr*v4|Bu!WLNKR@rm2!JzWkAMYH-_m1uTt55
zdx($hunsiUt~C{-#H-YdLr-xJ+=Uf@gK>4FFWMtJKQ*4GWpZRBmj~3-*Vnx<rdIM8
zv#eDEsor3%VIB01vB-X$YhaC;;!W*}jKnfyDCWpo8%wcqxx9oOiaS<7$)3!!3RV#V
z><F2-WJzI0<4nMdiZ;Bc5M%9SESWNqcPDY_PD!lQ7#!|0h$D&D0g_N2PNG(X36AdQ
zM3YsLOm&RQyMss{4u}j`7#RdG200q-hLd>};bG(Uq)OIlnYFxA6Sj?XbMr@R%nE^3
z(byjAjOg<2?yhw`rW_F^(<)#VC-L6Y0g+8>MQ1jtbr(Q~IL4&*u8XWxYfrovt7i*a
zgGtj$ZXU2x@Q2MTBeFGxSTwbUN~b|0oxtrq%CUk;U6K8^@(xGO#>5)mAP4)@q1GW-
z$L)<`ZpHyU&!|8#*(8QjWJpU6SXN_EhXqAv=L$8SV}RphPJ-678HqZ0l1&ab);xuo
z#hS)!LRu%ci5>jzf;(%H;5@#>dPm+o;OxnHj+rFK45p*<so^hfkAF$gR9;pV0&In0
z>`v<Ay}Lb(O1~OKiA}Qh%Ih!~Cu~{=oONMjIElhl*lrTXgOx;^S}ATbE4it2t+f-O
zE<3S2n!xax#MHs8jdsY|-NtwXwbE&H90188+~&J5+8<l7)5exXu#~isji`1{-#V;Q
zY|4g6Zv+c?CrQR-996K(Y&O(D1%plC{e)T;sBMUipyCcY3DxWG*}h_roy}*K+i`@D
zq9_NbZII2C`EG`?$5}ZZwfR}=y8g(18*f9rZ#R-?>rgyl44|OYD$wS{$yuCV6~}OV
zF))A%aiFOqV{BM<7#kuxaL$?}sdje|xU2T2^3#I46UV6h4i3GLt7pWd6uc(GQ4|K1
z)EVlENIyD}bqFFaJ1;UZJc5L^MIxTCknZhHY;`n_4F?y&TN2obR{<yqLmuWjOloQl
zOrafWuA`Nh7qVwL;$^Y5ZiW{059@3zN#k|xC}eBCMi0YL|0wy^5N@%J!q67k(KFP~
zJv+0+ZXA&CI^LA2Uo93mps;PRko03PWLfl%RFY?Dc}t^a50%8^%CCR<9Fva}6~Z3q
zjNo-=54H)(m#mxyn{{w3IjNU>4r=mjt_d}<#uoLSMbtI%%X(_+mB-r7Hnfl=?O8WT
zh+9_+k_3(&4otP1gc9sBaYPlj7qM8}@-E*-?KQ2?crJ?#4XT#{{GKRoPqA&$o}Dq?
z%Jy24)-V^xP9T-j(Sp7EurPIFgtn5Ys#>PSrGdJPL{I<fXn%h+9zmDr%T&y>yj@EA
zdfl4Xt;-s=iS~|NUMv}dNl|;Xr_Sto=_5yY$$b0VJ4vu&FNvc$lWBFpg<U9bUy|Oj
z7bM)4Dk`JMY~PR7eV?P>+V4K%Dnhc}i9kfXsZT_BH5E@T+0=P@vbav1^O!gnZE7`#
z2NMR4CkJ;8H)R}uN+Gg}NS+cYzsp<@$KF)kd9hHFPlA$B!8;&px1AX%NjipowI3%e
zW|C<h;ILRo;&Gd4j3K$j+!-evC&qD#k$uO5y3MS6A9i~?0uPPa7m?V*;EYv|Ie<f?
zM5HA?9P8zcF_b3{njFOJy+f1ijh$|gb%46x5a+$E+LbC#@~%#$+VEDk3$MRoaoO%U
zP#*g+fWs<YekNB#&LYy5Ny!YmV`k*?uFj!FS}(O9apv$~h_fTZ$<9-)wRUu{T0MkU
z9!&^~q5d8dv5V1^4`q{4mntP`Bf`X9r%6EJyiU#yk}~$nyvcfTCmr8TJB+bO=xRKy
zS_ehxz1|)S9LtPkImr%~nrfX!stGgh*qYcBI|P#RUbad#52|)fOWQj>h@`*Yms)nj
z&pik05-g$l0F`^ZwM4fm*05-`GbMYeI$V$AowrPMsZk)gC{VUIPz;|u>tn^KvfB4!
zjlw-@ZR{evp2k}Ze&LVZJE`S9S;sec4WPE4VsUZ<Y0)g-NFK~b1P}AWiWW32p_h*`
zymjnYV<fi7d7V9YWS*!rVZxO@Dax%Wow|709>?)dLdbkt+_DpkAa-5~NzIoi+eC!&
zJ5!#2ljA8W-g3oI+AC$U&S9Ng(CS1Ti+m@!JK|8Bn#xjEkbNqXY!I>DYHipqcPC{1
ziNl?!N^tC}cRx~PX}jd@C_b2^4p~V_2NrxM2G-;<MJQs7Ju~rLk0uPfyzw`c|E!KK
zd-?X{y*S>dIWR13QdwLBz7OD(bl#q0*))7@EDi0%H8|`HcSr3(2Io(_h5q1+c04@B
z;#iZ~MYENTD|g(am-p<qb4~T4P#n!IYX@a=96&<o>SReJ5s}!CZirwx#ODhu_a$U6
zy9UFa+DLMO-HayT&7(RHlU=A<Ohsh1pPpm$s*?g6<L0%~yBulOZq>ogc8r2H$*P@=
zB2H!U$hc=ny_T7*bYr4-jj@kV?H1*414DRn{h+S6@suCgPrZr#)MA=F!|G%**4sbS
z7ZG1$4cQa5ZYnu@u54a22V+I#vaz#Gy=lU+?J%jcmQ;#YGlF5~gc%eJ{jvk*B-fHB
zNKT`s%F|e2*)PJVB{uB5AgA^zayXY-SX)Og%g_oqvgdJ0JZ9s`^MEv}veM>JF19f_
zyRc3?Y?@`XjiQ6v?+9!X7CUI(Oe)W4)|+gbQN3^EF%7f94tOVd3})S$N#W}JJB2IJ
z?2Ek;xp)ba;_U3(&ErIhkn&eMW}RU^7PT*KO04r(5-}}PGuoSbmc8z@dmGR0Nm@so
zk2BVq?E`~}VWN%$_|2h8{63LEG5j8riDy6l;nh2+=i_sLX3;@vK&l5^3Bnr_aN2pz
z$g9NXAW@alv{z)eCplQ!;@I~8zbv*RN_|P~vs2nj`cU#9?2f?B9#|RyAI<9mg)NUj
zW;BjU<e2zp;IjZcs=kEp0$M@1^M}8{QH?)K6-TM8k+yZ=yVF>gO{qny5;TJbtTLj|
z#5N>E=P+{FyF>6Q+Z{tXf#-JN?gy5#R?AU1-ZsIX%37uji*9b8IKF4i=Ap7UC|uK_
zEP5Ok?M4a1PW}?M(f~b8%gj!EH_mGOWvWj6E>H)plT;^uBd8m{{nLVH2fp>D1>ZZ@
z0e|4@gWS!qZ69=RhqrrZCsJ{Et{pY&0gYn^eh+Xg4Ixca4B7|p#lX`837iIt)uz}z
zNL0O3eA_5IJ78a<_-_Zaa*8cZ;BSYp2F{(C%%xC=McaUKn4iYA<J(@@_d}3D*%f2!
z)=Fk3OLXY0w<S~?M!>@njW6eg^}X<&!=|ba;?<_jgnu}4RGl~qGxcdXJ3vi9_bz<J
zp0mwqhAlgU(z(@p;Mq|vnQ~@Mttw^5=(@CIz1ephR~*mE>OrJcv~wRBCap}BHWPgX
zf0Y1MC15*7fKVK@U@5z;G>ek*G>uzjd7x8xY1(qBJ-1+HId<z(k*&8^qN@k3u35C1
z(83YNG|FjBrAurX_9%03JZL^erMxx=m9cijc{^gf9Wi4|a%6MM?SRFsAx_#PmA6--
zEvx<&>2+&IYjNAN*JzxoXNTA^fWM`)T*{-s3OrlT!&2oAO7y0cJ8qrOQqt@2`+4}H
zrYhT3XD!ntOPn=L%2%iwG)nKysAJg}wexLKeJm+Eik(%q-ZAZ|xB@;IgjYxLZkfu<
z@~iJ+k)fpQC?!vcr1ktp#05w2fJ8<gY2(sy8rPbZPm|I|j*Q&EI*fgt?C~i*h=qRG
z&oxxN(m6V7Wuwzc+98vls#H{P8`*i>6XIy?enbjJv}&GhdHfkoukA%`jJbk6$+IQ;
zW|1n%sr`d=D=%x(S8VI3{>=8UmC4@r0k-pqwv)6Oqtz^qao)ClCNwf9m8m+c5{%~?
zo@20vnR{lNl(h07&zIbr(U<3+ZMkfT($S%OSv|TPZK!)nKVd{w<Hu;_G{S;jSkHX{
zv)c@w8KbE4XuM8Ns#RrkS$3Q7x`Tbu>Ci|ecIi0jO0EU8JSRqZose09S)bPlRIW7h
zNW-&u6xytu61%@SrL~Gqsoy%O#a@{OaD!Cos^EIqalmzT*igZ?+j)wAowN#%lD5@c
zqrI4E)RR|K+{SiIsf=5HFKo=9V^n3I^U6s1UOjo$8sk{Qe8hAcNB_bX|7B2oib9y(
zl@7bdXUb}Ms<al=rXOY6{ONo=XQY?F@w6MXVeXfcGCk$w<<TSx-|U3-JO{Jgy?9cf
z53MwS2%xgI(K#&JR9~T)qwC?8QFTnWk^AIm<<7MD9sWZv8jaH)nee?z;vKuBl%zJM
zO=I|R?&u|D+mz<tF{IRJU`Ju5by|_?@9c422ll|%G%cIPC8e!^%9xv1dE6fxQF9)*
zFxFt!Q2pDcs1>KpNfj!RcyzXDt1MZnusz6o8{RGO{J`x6z4&@q?tdvNO>xF#dLB#g
zYFy1H>Duh}(sH;?)|^qIbfs%a%^H~+oRO@RT?j4QFEXU7#wy>AXkM4w7Vvmz#d&Bo
z^u_RLvnlo5Iz6a8dpgq=h1)APt=6eCJ&)tZ)`LH1kxVPQZ4E8p8b<lO_!0)@H&EgS
zmRkKmrLq>P;xaikW{G8X1n@dr#bY1r(JGw!)AQ_zQezYESyOUjx1dvpb^&WwzOrLZ
z&3`jtuTvlMIVsjGX{|V%WmB>y1E?{#E%(68nxyBY*JO2?+}Jg7>d@vn{p8G1tBmc4
zBJNKuu&7V`#QiI^W^$HE<9Jugy*nzi5!H@0DrNAE+mJ42ts&B>n_z{Bveg+2dTSMz
z#jC;XfNH(K=LU`NzuL)bjy-*<mK3@OT-!0X+xvYg+c>Hw3fZG=N~7xa=^Chl*8pl=
zz;k)Z0<_*jTbBKq&c`;{x$Ux(X5V$8FAc&%__#c^-eA2c9xBST3?=2*y5JjYHJENE
z=$LQM;IE?2tX!(#)eiUS)NFM*JjXuQ0xPW)mGSP5xm2G@(rZ)FJX=ID;<M%4-*~s4
z)Krw6OVezfU0ISz{nKneWXs#y)tISDS|hWS_|}>W#?nnQctqWc`tfR{5j7jjdTkQ7
zW2Szd!#F;vns@59o-s?C^TGAts8T+*P8wtc%`P{ciyD{1evYb4`;`w@r0Gnp%g3%S
zpL=l4w7H|#JH347QT*xqgR$&UeV%4;f9ACXpG=(5`_-)u&at%84A#b@n>w!=yLMXj
z1_$Su`sSWZd!?@%(O+by&2F(wKAL&vHtU3iY3ua4O2e7_l(~w7H8|TmQ)Fb7G9%TO
z`Mf}l^D)E%pWpI%q^cP-myDKA)pmd8^Mg!j6^$67aN?;}-J|KS%h0NnhsM@KjXd|@
zR)&nr97AW+H)Zr#wpTMWqb*I_8Op8a_3c@fij&9DMh-4jt=*`W_j0zjGnJa&U(Q(9
zT4#?rlg{)$b7q~+UULSW^UkJqM~T(u4{GnMXq{*Gi8I+fT1iUN*mcM%sh$0_2YrB7
zYihmCYbH+fN|1ZUPNY5{0?!{k7Wf1?TNm@D?X6_gO4-0?2H8@SvrgVsv|{Z;^HRNe
z?9q^WbsTRfc$dvBXOcG0-mPUzsrMfCD3C5kEq3o8YfQye55#(BT4~GRJrm<L&jU0^
zm2B_E)cHG)>1vMPGfqzNn$TV&YSV0Mvvc{)g1n8vSq+~=<9GeDG}tFfc65)<g;A^d
zU$sqZ{9wztm95=oaz(6WvC-|wwt{!m{05EBWV1bhk-FNpLcPOak7Rq19A|n;Tehd*
zgPEB=ICJTm#m{?8<^R#jcKE=08^U}4v8+hhz$+A9!KtxSol0lx*Q$BtpU#(EH=1wP
zES<9vJ$n%ASbLQ+ivB8&>68tl=uVD^JD`pC(7b!%`H}k`ujtj7qDC{v2~qM?G+S<_
zHP`X}94Et}Wf_|7bC4C5_N)<Yo_(g7t^15NP2v3tuAGde*NQeCQ`C6@zm3VPwKms|
z$?QCi6(yNI`XKtsJFT4b@dY`SzB8A~YbQQ4+=bTUH<{Yp(Mq?+%(1N)%X6ty?9ucd
zKzs8!n(Ry_Ip^oK82>gpqKqclHjL^!oQJ8iwCqwSV2{95ZqLG*Tv~ZbJ4c*aRq(qO
ztz~S@+(%RP^BW1ZPf6E6)`=NMTS_m#g;wi59_2aKd6rQpz}mtymC5gW2T)QB`|502
z`^0{=L#sMZr%85+DGhwa#ARYvW6d%%M~Tdt(3L7PC6hXZv2(kU`e=&t<S)C;wCX<a
z?nB8uTC)CZ9(dmxfj-!(Ol>r+EkpmZtRBa2)_F{258yom&ec=cOc{gNJNza%MW-^J
z6Zz~*y|d>&FI+{egI7H!YH|+l$DD)riy5nxP<xU`aZuh0)IEmU^O+aF|K%BhPx5(e
z?Ln#wbUD*sy$rZ|=gc=oxD_gqqjq+cBEJ(Hy%-HDaleCCLA#LR+Yx-ngspSjWC_?D
z<l}yWyBTHnot^{4_jei)+kB6P@_4LIo@`C&M;RQg>1)4aew8|}w9f`Bv98%AV<Y>P
zTbs(ccQ|)(O_+HHU?bs_xf|N~HVD4~SNCiPZ&~@C307`->j2l$R_tZx;tv70p*~x!
z^U<BKhsTjhT4wo(@85)>`8@pf@)^Qs%g%#$X34nO0ln=gb17C}UAV>44r@En3QCG{
zT5toV4f5v@m2iDC?;=oZ8?024U2;RlzALi~8aF@}Q~8bz-x%t~XEW?=M@|Re8r-nK
z&4OubFwUv>{@uu5jXMXdwH5rU@#I?weA8$*>IJ_{a&oh0TJd(RMdV?5UK2dbt8Vr%
z&Do4dTn#H4ac8FkT#eAR8TN45ouKf|9nRf=6yF?Z$7q+5X_Z?(%-aQ?7UAGlVe2mj
zZr}ZBgbtS9AobDmIFjv1q=0>IfaLqBIVO3&L2Cowi#=)*$2VZ_hV6X*J5T=66t-m<
z^m042BfS>hvrFy7DIEJ|4gSgpRkTQq@v4DOd#*q%*sBSeJ64U>NlmyF_<j@LX=;Qv
zRhHJAl44J>Z`e;9AzdQZDzr9GSK{y3ci|RE6XL1~r?b5B;k}m{qjw?>dBjNVQTP^=
zI_abkM-{%Q8{E9^!3cmGD%|hY?JeGmanDVs@`%7|RVv|LsBW>X0*z02;MZwu#TPpv
z%X0*mpIwUm_T28t@-C}<tT)Z-gr0XpxOR%V+NBcSit;Tnn$js&+qbu}YU~?=3~bBe
znVxrtTrWN~PxFhr0c$osN3}~@3;U^P1xoBf3w5LSTlX#IT#C8Ro+Hn+iVlPCN_-zX
zzM6QWQzmo%k7KMz@rLOVV(x9&Ybxm(7!7A(Oym(U#W$U3i&HDNRp$Hm|Fh<iFFI9+
zq1gFKkHh9lIEoMS?TzP^aBb#cXC}vJhXUz5GtSZ#JV~Uv!kR!D;VRB+f;Akbnj6=c
zeA^`$DP(u?CRomw@@U)uYO)<6%TpVI0-Zx0q~cbvmEvoaY&X9g;7gS}0rADte$<wa
zO8aEW<5wWOkl_oRybM!=wQO{gn_)G@rPo(kO9A^bjW)>+EX8emH^rwWRISX;;bkCS
zXtg-Tv8L2@Pc6AL&2B-eXU^<b`TW8pv$ZK;+eJ74x6^8%;bkB%BGS6EgUfzl$;)@<
z;Uxu6%iH1q7Idw3m}YoDZ$V4NP&Qs{7pW&7-tZ8^*IPBbF6zV(xB>h;W$+}&7vyMu
z<|JPU9lWSmV0nfw=<))9?c_m;=^P_ewE=qh;-Iq1gnnMA@FfnlgrJeTT4kQU5a#mS
z;GE%k_P5_Z^<s{XLzJJ+Rq<BLk4myBOL-GUZtg%^QE^^%@NHN71ad3p0ygz>aPZzV
z)37E`vBwJWu6(Cs)j?DCV@}|pR_8RSai4EM;?7ydiB%h1!VS`eTpk@a0>k^{Nj&x~
z1<uZiWzHbwoXaPq_{K``q{^Ubm1D0&({q#enA=nJ<kej!*I72+IKEpn0L!h}tn4D#
zv=pAQ*HwIXcq6`|``yE*|9#OxZPhpD&wQrt-fj4D`AX6}m73=F0)$F9na{wbSGu&q
z=6og>HcRG4fjz#G!jXHl!tq`(<mdZK3jMAkD$?9~5#gf+eVR=I=iy^o5x!QQtdy_P
z#mr>oXwc{{qM*;i#3HRoLoO`JcNO99jJfj*4?mtiX`)_Im<ug_R?G?ACpv;9g#~Vr
za-m#TE@#^WOTR1M2dk9kB3BX02AijFxbR@%$l=0~Ydn=yIP3*D`~)Wt1}fRm<F5RP
ztbm^|5QQ<z$YEi8DkwZBw8F#B3gM){pZO|1@J7D!*N_OjgDPl+Bk!OJ?5m06b@t`q
zm+^)3h3mWom3P8>hfjm&t{i09X}1qeK+pz&8o*`wp~G+G_}qmf52*k6dl7|)-&Ox}
z3pDp+DwvF~?4L~DAe24eBQ#m)h~_13JCrf<c&ZGQ_MyB<g+~IxSsJQ*q(qxc!5}P9
zxdkw#1VxnFggoJ~v7$<F9w|pt*nDsimwXe-f-WR1z2(r$IY%b3M~+l`X5kMX_<~S<
zXW^1MUw+|bg(F|H)IL!-avTmU9C^zAf4p$yMB&J@g(D|L`{^9JxWbXsc1fp01?;&a
z%_s?vxmJNAr)-8(xwC|UO|cyGH8E+v#c^c5pyvaX+P`Bbo=}aVh+@Gz4hxt~>iUic
z72Jb>VQi1^9mk)BKvi`73CBs616t5duE~hBo8a~q?p*m0s&w<iB?hdv?O824o?>((
zeEF2+%PsJ?Fs>K4O<<4kJ}QxQB<jZvx{-GaM_yx-22#czZn4Z8C{8)UcBV4$a0^G|
zkv&S&5UV}h;n2`wS$DWYvL-pQCfQk&B&*7iRb^*Yan_NjBP&_ms7R?wzh?1|ye9k+
zfx{N@$grRXZS<g^hXr0^6R#<#^r9IMA#g+CK;e;VIDh1XtymIsnIfGXaZ^Mhf>29J
ziO93Ih$L9#**tXe6c^|Jf9;)NXdK5C$9GSsyS<aN=+>^O!`Zz+6)dN|O17jX2G>z+
zm$=kQTPvo9Gr?{IRk0#l#%|pbx~sE3<byvLYN!ea^#@a25G2r0Oe=~DruaiYsI5K(
zYN((hm^RcZsGtvS`}@DSmCklaFyxCNE8XnO?3<Z4Z{EB&yKnc+6?%0wr+F4%Pty%6
zzK|BTh>ANdp5LHBJfFhMTPLnHlhfBMdELSrY32<}&M8cKHY!PangB_U0lb^SziY|&
zl%(}(WBMeeQ!*nK88DEWEtU1ArEgk0y#|n?IqlHAWtq1vykp@XEVTYjFIxP43-4OE
zWZ|-f_bmL-!j-hG6-%yKxRz$FS@MCxy5G#K`<85HdNIF@?8z?iZM}rfLikFkE?Rzl
zo8|XN?$mpYtLwXhd?t$DkK((QJ4mhd7pZ=qE|==V2z#j)!YH|d)(L0?@k`z&zr)K$
z$sDzZC<Wnk*g|95`ZrW^TgW8q<jQN=TvR_^kTyb`5o4A+J=N*8uUFz~Il;~u8M@<#
znH&mF3Iy#C&qVq5D83gWl0GE4!heWf1cubT(CMI(uF!|XBF4@@qbSo-*@{$cg+8x@
znS%7k65_$S6cPy}eRR$XdlVIT$E(OG6Qzi~?Os>DjmjQChoF@B^v~i(*%|O*12?F9
zIqzkmO1a!2sRlkM&QLVCY8?wZ@>w$5r5@X?z%>M`%K@WIuB|9(Y5maBBLgW=qhy7-
zJQdqOqZXDS75RwJ^N@kH!TErxuIr9wt6ZZuf{14dkd)34qs3Bk9F0i_i17bRK0x(G
z$w>g3J&KYshAJ7i!n2M8Oo`V^!Z=w7yfzR*4I2V)LDV2k)#q&`q_N3F^_vDT264*t
zJ_uM>WkQ7z>P{D9k&LG#vPD5ztAR5xiz(a_nN6sPjL|~+j7;{95~n36nrOG+JRS&d
zYJ_S~UjsbrI?WP-4G8m59JlsyqLiE!cn-w6!HJ&L?-;%l#XOC=f#zz+l7%k99rXp{
z$5~qN%Qk&hOUXr}=|yAMa+y_%Ulvp{-s!cK(Qr|}bX>`Uci_#993#SAtMHN)m_rEB
zzwKgDjp#LZt}na!dd~_Fa<SabO2w(F`brTZMM;7G&}QK(4L8$K{Q;A)9Q7BC$JBiP
zX93?JY020d#I}2FMKBk?G&GG^@$|#Pwh*(p;n>r`G-;|6ryY}?&r~!?m!jz-Al(xs
zGtxC@Vfjn#g-XuxWa!E*OW>R>N-4!N5H{E(fM$I#XtIx5Xb8^L3{B3%Ru?-efvY4a
zhTZubxl!^K7mgQUVpyvS)?&u75T^Y^<9Mkc(U2rz@T(uxj%^+I>)XK(pZm+s1ONWn
zpM(D2zHn@AXk;*WXaDOzDlHcG2EX6B>-GzULmve9|Gx0W#pT-V@Znqk&F=BZ6gM=w
z=hRKn8*WQ2ZWwaW1V8mQzM)`F!S!qo^fI|}CKt5lw!y9i1gKj&t;gm8iq{0bM37uo
ztU+D<ip&zJt%Ej76n}UP+PR)X`PRg0OCs6Uns~M~(bJmf6#~1|?y`bgO72tawqjcq
zn^ABjiwyN8mCA}`#GtGy&cgK2A6@}OdF3d+ihS}l7IA~I;6lR*p+>5b;w6`{M5C<K
zY^FA}l$V@Rro~wX6IT^*N%OR1R|Eo`oOF7PmL!rr*S2eM)-`|-m|-(HT9{2Ib+ftI
zPEU(`33SyYG?SBt^Q!8L*ObMHjpqcX+Xjh9o#$O|mt6CgU8-Ty<82bm@~r`c0B3GF
zD%5*DN^W#`IdagMsE4AbIUxO6Ue7L<Gw2%@Rq-MP!?3H{Hy}$$qEgSCI~BS#p$(OW
zwMC(&G{QWhb%5bK7kM^~Fg;yPFA)}S88GdSlEG5)qD}pID>uwVH;&06%Q&1CJJO8A
z^F-(<g6Bkb2Z~jJuOQPNXebDwRvWvYDIKr1?eM~^&pkIAoCew+%iFF!-$pZA<YjC`
z{$!fIEAgj{YY`u~jKOW@vw`Z!q0x%@rgXkSA)c;9zSlLhyE@c2)VHU)=SzdwLxz0s
z`Hyg6QGLV>Q@e9);SD}nv8*|d^!EGS-Y016`A0lSdRy2!{IT*p9`L<xWmot-zS4BX
z!ME?e_l)SU?jZdOO^=uRE(}!Z_Gq|y{gOPfu)UZZjz*4lsaN$1u&=Va^@c~+Bl7UV
z@1*no{ka3f{eykG_YPl}95+v(`0KgAHcj&3@qOGwsiCf~;>*tMOoOKs4XHbbWG(ib
z&x1SdSvZ<09DegVZ1aL^41YA!g_qpP?;XL@+Bnr&u}!yjV<>U^8<xrW+kJk2^t^8#
zJ$Up_zl+}6x$x7MfBb6l^YRCizf^$(duv7;d4D)p`}+A)Y*<k{H}&n>1U}TprtBjA
z1KgHt@?TP$JoVigzS74|o*R4oYW2(;r_}sYb?o@p2D&dRUfD>u#s*s8JP!{fQwL9<
z)_A-9d&b79@=vVezdh8^-CFk3_|rlGqy?z5F=zZR#%@o|zW<XixL5dn3kh69QKv_(
z4GD@(_9#!BkMYb@mSSg(eVy}&_Z1$l>zL2}^FP{)^Vk3QGO1sL>3P3hb$e|(;oZ#O
zBzfRdtKOqcZQ+M`Qmpp?bbQ`KhqK|y<|upqx~<e8-pT%kN_}v0<|Nq=AFt^r2GfV(
z!~G5L932|)tiD89SuXXRwG1-$#q#=7_)7DcyWR|Febld}UxLDES-t=HCQp_}IIA8V
zRZ{vMUp4@}U8?8bt=NCfizuJsdXQ4-_c87bhDl23_;`x|+e)%G?nYe?e}khshOh-z
z3H$7~hxi_>)`NOi0Heqj%8Ke*#7=RRv1+3yAK!kJp4s=KnAo&ytL(e7sh>8=o`EjT
z&?oD;XJTn5P_1xogterWHAHU~VXbH$qlTZ}u+n>SvM;FSlx|8nia!aSFB!eu+aI#i
z$Y$~=)jo=5uh`fRgQe`?6L8aMdRcjbI_#~Ew2Pn2`M$?)$(}d5`;)2e(^{S`3j7bk
CH!iRM

literal 0
HcmV?d00001


From bc8bd930d037393179df3cb8e45039621d752539 Mon Sep 17 00:00:00 2001
From: "Simon J.K. Pedersen" <mail@sjkp.dk>
Date: Sat, 12 Jan 2019 14:34:28 +0100
Subject: [PATCH 4/5] fix docker build.

---
 Dockerfile | 1 -
 1 file changed, 1 deletion(-)

diff --git a/Dockerfile b/Dockerfile
index 616ae73..8c46e5a 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -6,7 +6,6 @@ WORKDIR /src
 COPY LetsEncrypt.Azure.Core.V2 /src/LetsEncrypt.Azure.Core.V2
 COPY Letsencrypt.Azure.Core.Test /src/Letsencrypt.Azure.Core.Test
 COPY LetsEncrypt.Azure.Runner /src/LetsEncrypt.Azure.Runner
-COPY DnsClient.NET /src/DnsClient.NET
 COPY LetsEncrypt.Azure.DotNetCore.sln /src/LetsEncrypt.Azure.DotNetCore.sln
 
 

From 6fcd8e1a3b14437be6c390260f32c775affeecb6 Mon Sep 17 00:00:00 2001
From: "Simon J.K. Pedersen" <mail@sjkp.dk>
Date: Sun, 13 Jan 2019 11:19:03 +0100
Subject: [PATCH 5/5] fix to deployment template.

---
 LetsEncrypt.ResourceGroup/Templates/azuredeploy.json | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/LetsEncrypt.ResourceGroup/Templates/azuredeploy.json b/LetsEncrypt.ResourceGroup/Templates/azuredeploy.json
index cfbe993..a568266 100644
--- a/LetsEncrypt.ResourceGroup/Templates/azuredeploy.json
+++ b/LetsEncrypt.ResourceGroup/Templates/azuredeploy.json
@@ -213,7 +213,7 @@
       }
     },
     {
-      "apiVersion": "2015-08-01",
+      "apiVersion": "2018-02-01",
       "type": "Microsoft.Web/sites/hostNameBindings",
       "name": "[concat(variables('webAppName'),'/', split(parameters('hostnames'), ',')[copyIndex()])]",
       "dependsOn": [
@@ -229,6 +229,8 @@
       },
       "copy": {
         "name": "hostnameloop",
+        "mode": "serial",
+        "batchSize": 1,
         "count": "[length(split(parameters('hostnames'),','))]"
       }
     }