From f42c166329be835040fed171923f3d5aa568eab3 Mon Sep 17 00:00:00 2001
From: Patrick Plate <patrick.plate@adp.com>
Date: Fri, 12 Jun 2026 19:59:41 +0200
Subject: [PATCH] =?UTF-8?q?feat(sprint-5):=20Phase=202=20=E2=80=94=20React?=
 =?UTF-8?q?=20Query=20API=20client=20layer?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- @tanstack/react-query with QueryClientProvider in providers/index.tsx
- Typed api-client.ts fetch wrapper with ApiError class + apiDownload
- Service modules: members, distributions, stock, reports, dashboard, portal, staff
- Offline banner component (onlineManager subscription)
- API error boundary with retry button
- Loading skeleton components (card, table, chart, form, dashboard)
- i18n for error/loading states (de/en)
---
 .../test-finished-1.png                       | Bin 0 -> 107321 bytes
 cannamanage-frontend/messages/de.json         |  12 +
 cannamanage-frontend/messages/en.json         |  12 +
 cannamanage-frontend/package.json             |   1 +
 cannamanage-frontend/pnpm-lock.yaml           |  18 +
 .../src/components/api-error-boundary.tsx     |  75 ++
 .../src/components/offline-banner.tsx         |  46 +
 .../src/components/ui/data-skeleton.tsx       |  82 ++
 cannamanage-frontend/src/lib/api-client.ts    | 193 ++++
 cannamanage-frontend/src/providers/index.tsx  |  35 +-
 .../src/services/dashboard.ts                 |  25 +
 .../src/services/distributions.ts             |  97 ++
 cannamanage-frontend/src/services/members.ts  | 102 ++
 cannamanage-frontend/src/services/portal.ts   |  83 ++
 cannamanage-frontend/src/services/reports.ts  | 113 +++
 cannamanage-frontend/src/services/staff.ts    |  75 ++
 cannamanage-frontend/src/services/stock.ts    |  95 ++
 .../cannamanage-sprint5-plan-review.md        | 288 ++++++
 docs/sprint-5/cannamanage-sprint5-plan.md     | 890 ++++++++++++++++++
 docs/sprint-5/cannamanage-sprint5-testplan.md | 640 +++++++++++++
 20 files changed, 2875 insertions(+), 7 deletions(-)
 create mode 100644 cannamanage-frontend/e2e/test-results/authenticated-tour-Authent-9bae5--screenshot-all-admin-pages-chromium/test-finished-1.png
 create mode 100644 cannamanage-frontend/src/components/api-error-boundary.tsx
 create mode 100644 cannamanage-frontend/src/components/offline-banner.tsx
 create mode 100644 cannamanage-frontend/src/components/ui/data-skeleton.tsx
 create mode 100644 cannamanage-frontend/src/lib/api-client.ts
 create mode 100644 cannamanage-frontend/src/services/dashboard.ts
 create mode 100644 cannamanage-frontend/src/services/distributions.ts
 create mode 100644 cannamanage-frontend/src/services/members.ts
 create mode 100644 cannamanage-frontend/src/services/portal.ts
 create mode 100644 cannamanage-frontend/src/services/reports.ts
 create mode 100644 cannamanage-frontend/src/services/staff.ts
 create mode 100644 cannamanage-frontend/src/services/stock.ts
 create mode 100644 docs/sprint-5/cannamanage-sprint5-plan-review.md
 create mode 100644 docs/sprint-5/cannamanage-sprint5-plan.md
 create mode 100644 docs/sprint-5/cannamanage-sprint5-testplan.md

diff --git a/cannamanage-frontend/e2e/test-results/authenticated-tour-Authent-9bae5--screenshot-all-admin-pages-chromium/test-finished-1.png b/cannamanage-frontend/e2e/test-results/authenticated-tour-Authent-9bae5--screenshot-all-admin-pages-chromium/test-finished-1.png
new file mode 100644
index 0000000000000000000000000000000000000000..6bdb204c0e4209243f58cc5c9f377d41ab9196d8
GIT binary patch
literal 107321
zcmb@OWl)@3)2^}L7M#I@CAho0y99T);0__d2_D?t-5r9vI}8vcFt|IM*>93}e}BHJ
zbE?iCpk{_=)-$VD_kCa85T>LciGm0~gn)oRk(Lrufq-}e{t;>l9t!+Th(rbw0s<XE
zT1;5YBmHO{P8ZXH0OD*^;dAvZtgx`D11IX5_bHDK?;L7{+v&|=bwguR>n+gxG~j(`
z=n&95Iwr$M(TPKzEbz0Tc&6a}d7JJDL(=Ga+O20++wHzCCM{GB>hQ`$3ln3!5Ik8R
zx(K{0vKrKXegJ;~K`=o`{C=2hj?56^8~FKuo+}pZhQRytBBhYekW9ZHhR;ETgf{%=
zBL6%`1O?mu=XV2nV30q*{qrJMcsvO5KQ98I@5B6gm~0MqA33-)hdD!ryci2nm`qy+
z)t{wBjAmC|Q;Gs3x8Q#)<)L|?P>w1>#L9E6EEhhr1PeC7+SHm11F?*DRHspm?+xJZ
z;%suK_o?<Y=y2N9a}8Xpg>cePkV2YBQ_=oiXN7dMja1%ry`rj03?<f_bOAkgR*FJV
zj}H2HNRiOrm0GjAz{U@ovJ*1yTo$td5+oQIC(6o7;)e4Z)OVSH6U$$R_t3{-93Z7P
z_XZ~ay+dnuSlzr}3jtY5W2yUa@gKpnqq{7*_nY*{-{eY1WK-F3|NWG-Q5t%NCw=r?
zmF-(~85X(tyDBx5G;K`H#o1KjEwpSta{hN`tSQw-x_-#%%bQ6HyO~Tg7QY`ZViWwX
z-l<&Yy<|NOk*rYk_~12}$^P}vwvx>;Kl9R6(9wUF>09{~Gny|Z3oKrS{B)QOMT7&m
zn8(e6fxTnJL-uGjTSfi*HcEq3ZzI_BZ_A>3Or0ag#GyLXsElg4=-awtqcS<6Z4C{p
zFMg3sWC*}AGvPnK`@8c(-Botw(PiAud%A6Ic31n;#<8TdyUO}|vp<gJj=tahY_DG_
zb<!Gj`XTRGxs*D(3v6|pUS1CK5TGh7^bs)V{#BOwaOct6{q+&e+Qudf=ltrbzP>ha
z*@&#7wtKI(p~3a^2o<`?9vCO3?c_i^M|^O2IGN1M%E$Ljq9`RTZFpBqODp98MkVa(
z=9rh){bcjp<9D2aq$Hw=+5LXNINhCOwD~`shky#iBXENP17mu<Z%=qVf5J@P`1tsU
zh={g&dg`^iXkAC4qN3LQYQLFJGQg||Sdrqnt?GJla&;x*b~060SMNyjV4puTRR8pC
z-0lkbTd2mhF63F2;OiORbX864bS+vE3V>xP#^!y}==S#ZVwH~n%abR(2B-ZRJmxn-
zW)^1VSj*T&0|O@8yR#z2tSCHzTy>l!UEhbBdr(=GA?bV4;?mY|A)?;m={(@;W(ORa
zF$G3VO&CIfFvQs2CxMR-ey;NKnd{#0|M~dmVy})@Ioa5-;{2nD`AgmNNH0E!<rAV7
z<u^B1KpRG70x!@6(|PP@?yvSLR(Bu*&GQDM0=`WQV^W)#kXRqI$VjTx1ef^>J|3}h
zayI!rKUk$Gzu&~&EnMYsH>$Y~U6{Rq@VKic!=(PEN)n%zcDpz*USf67I;K!G%V`hX
zIXpz_jUf#xIx}N5sCl~B9fc7&*7&4^&i1qYdQXR`9dxT6sN3mr9_KY%u2o0H^&ao{
zQOt=7ZWlxkY+iI&yR%vMx=zw~ZnW+ps1o&%vuur2IyA0Z4nZaU<l>~=;pHmzsaohg
zpT{P|{mfBI-G<+z9o|x>$zXn1JO&0v=r2+A?0McSd;pY0B%omQ2w6m~zBCc8`;@^?
z=lNhOZ*arMTUt*q!`>N_-}{;(ZzEdZ;qEL)bZ>7jZ{S;0RQQj&AmuiRyxFw15K0w<
zNMK_S;6GW)3qe@q`l>_~AuLQ*@D3ugbg&!!`NvR}-%Cqc67KXsBEw_%1ki73Do0Ce
znOY%psS)HpFN+>REg-G?JP5MaUk_c#cCdVxATtu~bbwqaM)yvVL8~^uuu#I6CG;sT
zH<y&!+R*UR<Bc6JZ`<qhsXwpVk;mN`nYhf>J^@BWeh?&6TK~oEr8<8Q%3}FGZgNU$
zEOg9DqD+CfxcGIdkkBd6xAS$&n_9AHDWoRL=SkYnPasEbgwfN%(Zj=?nz|@GeU07!
z#qns#(dnW3?96O5(d}gI{$N(j(%kZ{kXWy^{A10J(N$W?4`%)0yZHDiJ9nQUUcpDi
z{dh&46uoa?;N`9>>*B&`IO*Z)nAIQHK0&Ov&-O5$#@Y3BF<Lvrf)n8iy84hKbhmP}
z2(CmOL&C8n{#V1xtQNL*c3lq-v{EMtn%^m@i_rg6hpVQ$JC7E*MypwKyx>nwrL|5Q
zKwl<4GY}TbLr}6M@X3=2W!jv}%Zt@~ERc-?#xd|>&PHmwR1xC*SAG~~*g~F#VfiF`
z;WU1Gs?43GS-&SZ@>M#l&CJ+Mhhpe;8ci)MczJkAC%Noa>et)cyUzD=Uj-n*$2x!Z
zHN|~<uVOshuV=PMaX28$|K4nDsYVi&M8J8k{BDCf)W7=5*C|`GN}pD<GM&$p1^INn
zYjJ%&gYXmtf~v#CO<HSl9$a1ZzTA^XhJ{X5Z}0F0`9|cwK3|c0+WQ(RZSGa*z+MqR
z)VRMwJ};JQ<)s1#1`6G)fO(S9Ux<u{rgFMoJ7w5;eVAiPGI`8sj>ysdXa(*DBGEZ|
zA&%OrsgKv2aLq%C=r~4!z<@u=Jg3WUtvZ(QvykRH4C%hf2|}!hz77A|^}TVOxgsm_
zoE)+zo=#BuufDz_Olo;P_mgz%FDol6A!ys73!<-&_QL3}5rIA_R|daiM@(5l{fx5p
zuVgPSFXNl6-KXf=QB*uW7C+2Vhbe}c%ScIad0pY<*gEYm*ZpFo)y(YjApY|4+KQw6
zwG5mwcif@L$_ff7!9jMq(qOYxZ3O*rJE^{BMXi_#^Sa@6NFVAqIy(Azdq_fv_jGr@
z9qiER`*^e2O}f-%xCET&^nZOpAMn3fwm^TTqN0i-V!gS3Q`L)s+zd<N*GyR0;&lxQ
zcz)ERGkA-E^|V^m^)`G+uvxW8q4bT&mG{rPu<OHxo>loww%Bie8y?TDRh9bQw?~wJ
zG>8-?ygM2Zj~FTmpGV9$KZDOxQ`Ldgue!@^zN<IH{9bgAXQJv7=&(5L=MQIZ$wN7m
zsx;|MOtw=~QwQQo_=uxNcL6EM7!^f9kkwufxKn^G8SniV;rZR5(!p>vL8T5Dt(RRA
zhUf@yDS@ESt6M=o&90QQuy|_Oa9M>69(e)EURlfZyPubgaq)3=b<RJHu`hXO;%j<x
zdcrj)Ge?JqODanyM#gNLS-{Dyw7hiX+5ML&aVGHu14CnDBNOt6{kyxn(Im!=4rjQ`
z;E<4Be?Pr-NfKY=HWP8P-Q_L<@u4+F1d;Q9G~cf*|9~ob3bE<;F`0>e2Qy|;bb``8
zBBZ~|^3-VH@RR0yT$0!QSw+D#cALGFIt#()qxh=M2hdmwD|*TNsC;9hmxa6Nm!|S^
zI$GMprVT%DqKi;{{oW8XMMX`Qvh<9M=YCuRq11Q-O;u%WQY^O9Z`%X)Ob}7tSXD1-
z&t98eP|!~eWAJvw+k^6-bx)ojZxPIpkM{O791z}3*U1)GvGuQ{>LfGjv|g><Uq)jR
zqY(%Y4hW6e4zUNqA>-oUV939PhiTXDr~gPlMxRcYl~Me3Wre{V^Zh&WD;a{Vbz!qi
zi$Ry)YNK5nf$QzjGV2ZusK?)2BG`Iq0;n*E{a3|)nk|$kVZP8xbln+xd-mOfER%x5
z?fR%xV6Xe-`70bsRI9gp_ve6)hpX`L@Gr57S@qHa(LJUmf*s)K3?cDbYOq;U6ns{D
zkA;fI)V;CM1x^7mmhGRmejLmeCDCa?A;^+-MTsbdE=>J^xKn=WQeg7CjJ%hS0Gucx
zljDx1tuKAE<wzqO8W{oBm{4<%nX-fp;1l2<Z*=*;93qk81w+pF&$jarQ|K89DMpL3
zy@4|4_wDb<50?#(h>#tQb-THlggwG?q!U|Dz{alX;IMf%I208TH8wFOLtf}y0)ebW
zJmt9q{zN*;HzHoQE6e_4|9@f`*TApx*8M2k!4N{xDF1=Yj)Iw4c|*t_d;me@&Q4AO
zk4JR^9gkvHVWFD(au3aRP=)|K#~+L^zG<8e`t2UffqLMgdff9B?w_Pyq0=Pd(P-H7
zWqUAMRGaJl`}Y(SV#rts%G?<}6xyOl(3{|@Qd&wguL|$7_;Q{G>@pGbKqQ}s-X0k#
zU0dUG!V^$D>RmeZzw4AuVyLWSFab-B*s}u_Rn>-ehmFuqa4N<KGwlnFHSjw(^LnU*
zp%d$BX$e0J=xuW^QYk?XYHe=iNGH1JI}>!8BCVw@4;)0WIw*1F6KCl#5QB;62dgLq
zM2&QrjO05ps`&9_?sz5L;7+5hA3>{4cGUGF6C+<<Gc$?J_rm8KJIt|vp9m$m#Uh8S
z&`|h!qUa%p>>jX&+Whb>Fo|?0Y=1G@l2tL2uf^y7VvxiiIY7Nv^Z1xZ;AKDW^4DY$
z1vO@cJXJi--uoXN2$<BXOG|+vAyqm}s6U$>w+F6I)(HmuU!QNQHHL?WBXH<hn3$3|
z9e~-wUz>FqbfQ<aZzb&SeLwr(U*A@B-l<)?faMhPbkjn`Msi##>{daWPSGOnScAHL
zL)pdUh`*PbpWTg(3y*Jmob^sH3V{b-W+G=rNd@J1YBEtIND6Nw=VE=H>eo#;*^S%t
z^A?x;+|EwOz*-awgD(5^_&(~L=aBgLxUGngfO-G&;QGhzp@1{2FK*D4kl&up{RQ8S
zpiXVR#^i{SnXLJDLx_|?!=cJ0bG@Bev6x5?_*UPM!5_dwTp}i-*%qZo&LyPA|MDMu
zm4j-wUu|?odg_rckm(}>B)J1iBQYJX*N$6o&UM*Yip3_WZ2q+M#oEWzbm#W<u`|2c
z@L;Auj38UZO2S-&3Bqa`9AQ;@Z8swcw6~`lAxun+jFbKS{maWO+1U^m-6<(4($dma
zR#q{H6Qko>`;K86Ghp>O4`P3Q_i%GOE6Wc1L+?7KIWr=O;q_$@Fh2{{GnD-D09H5T
z<uiyZ=gUI*)uvO@`c|j=5%9SUK_%ibAF~`<XVkhlSv2q$@2oc)HD6SyB$te;uB+<;
z*P8wa+^&}gn`_Sq#0Z590e+jrcO~AB3wHBKt&Y6|;JUzx(+NpNYwDXN;QR3GzOm8f
zj;8;xf%dA?;#3eHKO2aE>3+0iWopSKy}Vs7QB#A~^}LtnzTt~zd>Z#Nj#J<NImti+
zM6i!pOdi(h?|%R%>wcn=K6AQvA`y$ZQ{4&{iGEK9lD{pOE0Za%l8-=_dzHRi&>2kQ
zUlzc#9WD5x)KPDFo*NT`?h)3zHFrqUGB2FzaFxtVo5*NT=O(Z2s;*&<6F*$vP{+Ol
zI9X{p3?X@;-n<NJgv_zEQ@_8qN$R@0D1&@{6o$Q<&XWYID?D~<EEun90Q&9C@hUD$
zH+r6M<_r)BT>DY0G53Qti6Hlre0gXh3nyor+d=wQ(b*CO_;c?YA|-wO=`+fu5hoE;
zlISV?9TP1&H*rtT-XySSa{<VY&XC44Bn;oB@~i|WQDB4#kt&fO4D+x$*MUl{)eUr4
zrY+gXO|~y;S)e+u%8%2LE?L4f3aY9EO$Nr!&X@oh=9PT-o%L4+ykFJcf%EgkL<Vnt
z*3swxq&|KAJc-D3CdYT&gsz;{*P!{*BpgO9!t!=J%%kPH+qvO*vDM4#YZL^ObI=O5
z$VnizV(tkrBHCY!kJFiUbwEE(hH`$lUk%Vv+RjBm!Np1rt&&q%Sm=JTcCgmMDpzei
zUrH&Pc=z}y`jik8Q*F1}Sk?8cFULgYUG5lAAbv0A%%=%~+^l<|DCooMIwD3td$iKw
zaBvYlJRA1b%d=km4>nPPE24yeb#0iJ!_j$POv^Zt5Zb>Zg^3v-goG<1B;b8xi-s0m
zU0ppkCMTtsDd?ZsW16bXvyYEwt*h+}y_uK=C9jgs_q32}Lap#pV_gsw<k_JaAuEH^
z*>LxxA8fOJ%jq1{Xk;_6w-8w5V&#tFqi@g6{n>WfsVYy76A=*}4h02;)%z}1jE+Kk
z_|p8dx+Pm`U0r-#e7t1Rgh~n<B_%yMD=RH+T08Gs5k|7HKcr?3RB!Ql-mFL<QKnB`
z!Q9x$#<q~#-gg?`5F6fQc4lVF@!$gcUur;+ggNp!!4Z~MwT~HLS+jSGvtZp}^@quz
zi?C#DtC+AJ4tO=GEH3#<n6dl|ho0T@Rl=fFS(52&Bsl>YIle3$gPYtNQg8kTuPH37
z6;aqvO*5;xKGNj_a}<I!p~>#h2}2ITs^%1X^*7UU6>ca@f4LGxytKFvSw!!GqZc63
z-e}v@(pXtj^+WM?SieY$+K8$1M?zl?NrNn#az_TTEHno(Hq8HlWK><%QxImu6>KEh
z5lRd__PJ`r-UVDSiZ@j@&TV~|`U|+UF#`(|3i?F?gn&;`sSRJ>{4k~+4c9?`#z=<z
zFG0hxE*&{=Y3<BG$dDi}Mz3z9Fs1y!K$AF3$%0T-iZRnACTsLBW0M!E)>hXSX=gjb
zviwU{{_mLD{~%@m@6fJe_`?z*e-v?2kD-bc8&pnGrW_4+gt%)vASb(WIIQA09pO*;
z9Gnt^u(h<6$eRWO38|r^(Ono3Mt;N~k%H;#s}?$rqSjiu$3E=c{y(8vY%=ABSf5kF
zogjmWc&8GEmuE1i-`$DmO_%R)r3R?q{A&pF=PV({j1NUma51{T^dMeosAzgW29D~F
z)RB^fD7P>qjSWQzTwz@bxxPaAvm*2v3<%bJxfC@K(z(nYfiXj-|2{E;fRiB6d+4X^
z4fn`&qaXGAQt!5W{|A<o-+;r*(M&5TvHJLNsY_ybcNZHwNc>IE8*!+B&z9<BIb@f6
z6T`z3_h!2euCDD=Med(IeeCeUM$RwH_p5fn|0Bh$KOlcrmRua3-yMAQtvaWy`RMa-
zwJe{;QD9+;UJ)RXSMlIVnKVlIqu0jT+E3@&JHCzy54lMp!%(PL^u0oXN+dGMJ(O_S
z;PLO^>VN|8r`;Ek940M7*m&uJ#tX`3mJ~HQjIh8b+)t4_Fj?RPh&Lr@JTq64g0I!*
zY{InvkMiVTVj|UEMceS_b=jY~_J3~hy3YEu6Z;$BOID!e8t_Al-l6r-@P#hGI<jZ<
z6qi-luj74u7yFHnJyof)D>gPZtLpSekb_X8#zyz%<)lCszc=dn8VuAHxOzS==pfZO
zJ8{~siPdu$2nzl=|8wx*`#=1;#)$unVF#Tkm!qU*%MaOgU}NbDx8>sI76m%UlRQsM
zOayCMq~MM=*F2RHmXvQE_94-P0dUi>q#8|i4Sx+>q~(8DW?QT05;qS%0Dy~&y<={%
zW7;s05MS&YfNZxa-bK-(3oC8-MX|mlzDOY!Oi0FA*mg8DG)nZrvhe)sY=3RJqrRN(
z!v}6kO7ZKs%uGK^%W5&YsLod*QuOMNW10M3U~{b7<w#CTySlhII5&qy6%iS!Za^B+
z3zjR+Nep_VsER653m!yOEiEb0P0@LIqFxdM&yUQd_Vt^3UbiRWs5&1%dU$&FKvY#~
zJdfGYAO1$=N|IC7kkxtdvOCo^x}tfhr84?NlbodW-c^1j!(q4+gk{_FpiV-b3`oe&
zYBXdk!SN9~%EFyON|M<eq6IVBgb)OHpUC_w-!rO4GB;IYAiiOrS4Y_hvNRbOpxP1A
z*UzN+XvTzh+Ww3KGZ2HRA@6yAkx<oj-<Y2d6I@YIq48R|-*o?Y>K_^wx!!J-m%B*&
z<<lpZyOTB&ppUar^vU|x0hq#(^!3HmMFZF`@^(o;WqR1U8X7nKNd|f?PU`HzA_d@b
z`>TQzmnB7RUc2M=WhM|zOQ&KY{VOypCYP8^HX)&J!T$QVfxESw^>@}K5<Z0Kc0--O
zEF71Y_Nw(>^-^y>+}vleyj%Lf`paRpTKk<9Pc}O{D+!xzd1MAOOn1;5&!owW_cUYF
z+N;T7vuLNQu^A~6*{@Iu5(&~~C?V=T&!V<OglI=V5doA_{OK0iMU#+QbjHNk*c|`Q
zuWho4-PLL|&*y_#!{=CtX1&4J!T|w+7pYst-nUm=UN0|Tk}1Blx+<T}Chn_=hJup8
zYk`XY{N=mpIR2u05?%06A|V4E9UU#ByQ?cZE9>J;T2%-#QDJI%SrIj#q1na7<*;hT
z@zIgr)5dL{L^M4kEh7WN9sn<f%q8Q?J8peF_4PH^->H5ddjS!WDN=!e#aP!`<>$F*
z+x*}!Q;Q>DtNjGQ>CF-E8K|FCp26ZS`9r_>y(HRku1ay|OAnR#p50rByjO4rCF1hP
zSECvplaiHHI0Efj*qOjFpY=Oa1JWq-y-z2I*P}>)dRoc~_54!t#DZ>W+(J!FO(D&1
zgE29)Ds}HyGuqsTtOlY<BqicBt8^c)E+=VeXu#ELDhE9j%=<hauB>#L>{aQ}-^s;F
zxjbAQth%3wxOiQ!Gz2?<KtEY*7Ub}Xx6gqFtw#fqX-u}3mRu$SS4+uDrKQ%atj_a&
zZEmM8&$oh}?b>M33^t49HPuY+PEMftGHQx&IAlULo4s!ZvVxz7-Hz5ufJiQN3;4e+
zgC<^rhkeEx-!)1zIQs4GRP=~W9}=7eUdZGbU=j_Dtgu}V0a<YKkEyGi41)3=V%eIZ
zIk851ddCIM)MR-`iW$5u2Av)<R7o|<gpspwK{xxLUGIw_{p;DB)zq>wBtAky!l8ZK
zA%vEQh<MOJyQlMTfZ)QDv_u?)$lA`1Dc*hwUz65)wBU2?Q7^V+H1TSUvnJSM^t$`l
z-O%yqO`|rLEHbb>yqTY$_kU^GyUE}MsZ#NIUOeBvZhx4p_IO}B0N>`02QDtINZDTH
zpMb9_)fj@%(OykVz$)X}E}^ETg~qTk$I&pO6xYUihXrrSqGb_XsoYex=>388{Tek>
z;ILt0Qi8sKe{H**<8ZElVW@*pa!!q-mg9MgYRITeM1`&G;}wC^;X}d8*I>t%0UJ$U
zG$ge#0`&4C2MA}qHjhS9gXzJlmI8Il=uQm{4l^@Ki)fPaVh_i2bx93%ErgAWGi6Mp
z$Fi4S<`(cU0I%8$G{nnmG;S|TO|9jKHW7821i$Nf&K;)s{@S`aB4%SQ&!3Ky`urO{
zmv+!!E!OE47Z$$ZvugY5^YinIOylho3b4@g`<?<jRyO9IPqi5I+w*;8es0|Qc*P}4
zp(dxL*`$=T{7HOMwB^`PhQ$(>Ai(in_+Xi`LS7aB$akqe&dSWwdCr--w2fKna|A~;
zYiq0|Mv?48l9}hbo^{IpH+rpJ(EvfaLxZlmB{~z;%RD%Dkyek*DP?Hb=%prS%mkUb
z#s)N$Q{U$iPsl8^>8fb|PoF%hdLP}tV_|<>T`D;-+Wz?ymAOugj+n<uBr8BP>SRMY
z8}}WLOzajRkMYw1Cfx8VfSQ$q842-3p<o)%1@;`OhuCTV%;=gKj6b-Y?y^%-v`+Oq
z-jS1EIyn!YqpK^V@ic5<T%laeXZ`S#Vgno06vFp(?<rEno4iSRxp`usdHx#-)f(`h
zWy6s&^wtTy=YPz=zTjf-y_IkAzctrZ$(7_ZKx52`IRjEhpU5hDg0@LgQxfHhrfqGH
z%4li8cFBBiuYj^&lQEs@mlwwCr@mzA9j5$LMm;XA>)Y#GbiP5cjez|mB{AIBa)>~q
z`GjyxVN4RiqiG9>0DY|62|c~_wvQjR(C`ItUL;ZRGvd-?Vl}#K-iPb@UGxRm10ml+
z2cK+o6dbq0IH-7f-XE{JlcFK_3INxM`8<T86y@cguj(cV6b$tA<k?i|s}heWBYLOH
zipwdqb&RI#SQ)h)Gk!O6t&6nDAQ%{EHUR+cR+o{9si}tAXn!SF*958eb7soe*k<nb
zy1|3h)A6mhM{tl#bSZg78^gWv>6_ENmN^%D#S4w7`T~B1g?s22qNPd=fz}P^Kc=R{
zynjiH#KuTCjPsI_(>Lpq!&xNB{!&B+@a#Pun0%G|*5P#S(iI?jdFd4R+PP&XZszG{
zuORMu|NY=n<cIfqi)YZ?>HeXhY|Mp6du?s)$cT)IiHQzDT3{e`sWW1xq_%czWJ7N3
z(DL$!uIy`XUz><OS-UvHI!K}V!l{;JRs|Ln&~I7`>X<7iYqH?nSY2em7*~r)lP~zt
zO7z9WUSDBvoEBFtIyKc=(>;1Ck6J)JRIu6Nu)w(ppd%&knh;yV9H5U1B}|lLvrmGq
z5tBuoAWb_W({>M2y+l|emG9`~M|3(-K`Y=Vtg+zM=ifIt*rr*PxpM|4Y+L?va&%9N
zvx`|=j>a8f;3^)r=Y91)lQ5aZtoFf!pWhcJ0*9(d_b&^OW(#>bjn7T_=1&w>(K+#3
zG&ZPKphJAcl)PP7&=}XQF0Pa099o{SbYXRlIO%vm!51I~?O<8Yp8nk0<#k<vf}_R_
z%_VCiKqt(+5_^ls7aoa<cxYAHj)@!y11Y?vMl(MFEXi+1hcYQXZ);}vx^exn{jn?i
z6FE61USoBwqvP?~(syvZ=YN#2CKRd=r^Cq-bmn7Zq@{Y`;Op?clyOw<X_=L5*rCA0
zB*xzPC4o$so4Mn_%LcHU&TSeVtTmHeEWbAyys<+L{>ihm|A=P4u5mT|bjjES4--C%
zpGfcfn&A$-xBxAbs205?4?bP5JNy~s3<lFSCu#N@optqUjsZSmVjERm4>M&pns9I-
z=i39B{NC1!6B)J~I=AB3*tqe~&ySK<`@rXh<+`Ke<5lB-L-`ksVXRWK!!Ig_uI@Aa
z=P`OZ1o4noj3MOHl}6M|RD5P)k%;DGZ|%gGxT~d+6}P3Kum{~rB~lMO0@u^1+}?ai
zv^;LF^kG)qp<Q$;Wn%tzG~v_uyCuhXi}Cc^L@~M`gnW#W0W*QnR=e!U4DM6AA?6DY
zcHBuqhof~p-SsCZ(Oi2yJ1$b32>3Y}(vnflLwY_&&az>xN<9HqM^Ji9wZ6N99_0#N
zeFa^zVAs|im}4Z;>qx+YmY2B&pU!$ENh%CkQmPm~LZDrLu(PubGcT>E_@{;Zdb^EA
z$l*PfJPjgZUp)7q8lY-r1cAXD6OySH5fRa1l>w58mkU~!;A^CYfyHlgxAFmTu}@|j
zX~At`K7qbP5Ir8uSlMYm(5RW+kj5PeTJ9{zhhP%-vvKoA^y47D0SweFUsq!7e!9B%
zA)dxU41(Hf5}Of|l!@8@id8TGIj0*uV2&Z3#z{DJAgAZ1{4wQ6yIdq=kAl9kJ|Q7i
zv)SmL7o+e98z(0<E$!o&)~8BfS&Xn=;}Nt0i32pW_^Y}|&c5*2SNXI?F>&#?;b{nM
zVBG@)3vTyP$yaWivji6Me{TY2u-n{xO}3B>EQ=VGq)mLhy9YU9xr;N<((-zOuE6Y+
zhPDi#vl4i|E%5rp`cKdJ7Z{|8MIFsHO==qW*qfWf_EJ(75P-Y$9Ttq9*7Y}klLNWs
zGsMTd&oL+HogfT|Jk8GmIW=-r;QdID0h^}Q)g3Bm!=KzsA6J#E=HlWoVvDh%{G^0e
zS679P^mNxQ8ouC==;-JK2tg><4<Kl}|BXCJeI<x*JXkn7;NC-{6*AZ?QDW4@7%c95
zw*&m0l39seIDkPSbA3ma6+>&RmTT7?_W?$nViWTZe8^{QM`Ez{b!ti1)af^N+?S(D
zSQ#PW5;fMM!x6qJYdu8!gF+6Vpbh7!NO`c~LGZ$}MeqO2woF9?{5$6YLjT|Bfh8M6
zqI3axYlVvWzxv|cnEvHG^)TJWVWBd;47Ey+u#eRr>E8Wo)O82Ta%Pz!B#sF(CW^P!
z|GQ*L2%L+<e3cIo<7DX8Ss!irOT_4~&i-rHfe0F|W+^PN3q{lT9{fz!jD`k5{E6e!
zNnlo|4#o_>@B9P1V;pN=cZ|d=E0gJ`s}eRqz?7^aRYExB&y^MH*zBnPwoBQ46RMPy
zsQZNeu33pU<n~`M^Z!ms{v|~J`)Jeu_CfytoSoWtux%vHn8=?#P@`!?`Ayj7^oLDZ
zO2pnJh6aA&xjqNaBIS1*R$rkYi@ys{qryQ74AfQl(-Z_B^EXb~Y&7FbeP1+n=y8yS
zr@=25V@kHgi5RacBm1+FRS+$@R0$Y?-wmkEYq(*8&?B&znKFNc@$d{ii(Jv-ApD*^
z37n#ZD}A8D3F$G!_~%_63`3_GfA3WlQ}Nj$0p42=L^jaoM>_tu5?z1j21x9kKzv0A
zzTsRBGoD<FuEd|E>02osT1?^NLFA!EN)(Nnf-m@=)N~adKb-GU{EP|jY8d|b{F5m9
z_aeQnhfCO2A|@aRoLblbk$=aY0`=(t5hg-xvmv8Nl2^yx+XIna+gi3aU?P8bv_puA
zndc}0`}G{m(*gMS{ey#;@Xw3L$dOxJpu(l!E6mZv`#NlG1iRETog+C(d@X?r;F?-m
z`Z%g<TyuAIFspof^7hY344jIX{{g{8&u+Ifq)dk+%RVqPW!c>waA0+?V!`LUC#P*q
z^S5CK-|><D2<8yj;mz-LLx_d%`P7HtG#2`nJT5K{@#0c`d~AqWuhj*g-THe*22r%8
z_hxqw_+9btUmj1_+dX+{K=xgseggv%@4_hf=+gVm!ESvQOuPRc4zf88?PSQrVYA2E
zQxZIU>C8)8I};)x|I<{CC}`Hh_1NofDE6PW@x?A}oyDYi-7-_0jpdLrD?<O9-tx}3
zZwn|34E*l<D>HZ{qX@T-j>P_K47!M2-fo8wxCus0!3SO*8*((bX}?gR6BHB#!W6nn
zON|2$xKtT*p>9<sB&c^#?(FTXb$ClsU<f-kx7UvWd;X3wkOi&`IIqLqZRS85_`HZq
zn0qBnWC-5x%z9O&rli~)P0#kvCn#vH-AX<3hulL!ejOnF6OiyZjpw?zkPP%6I>0@f
zxeuz7>Aae%I(aW~VPV7J(E<!~H2QVs<CB7~?~?xJoWLpn{T7z)&A#Dyu(wNMG^peR
zPE16Jkmcr`f)9*?g9F}QQXBXpI!OS5^yUk=*~dwkm7cDvruH<>X|OnVK`a<GIW|Or
z?lqs1Ow%e<^`4RZ&zcxXz$G)>lJ()?0V+U<CIJJ!!w1~V*zzZ;O7%bmODI96wVvVr
znStQm1#&Fh`bBK85Hc+g^g*YLAO3rQWQ7zrVg`QVq1#E&;f$VN7+lq|FsZHe$<pCq
z(3{yC@tgm2iLM0Nq87F1Q;^fQ6q81aDA85e^0at1yMfY^(#C%+zO9f{oa`Q1X>4u9
z2(~*SL=a)XXz+P<wJ@}#z~Fe0h*GG8$`PW8MQ6lc(s1DseZPrmC-InQ1sT;TP@mR5
zM)@mZ?HrV&^#0)i*0?6rLs|ccw-J%()`un%7LGAm6RC~x>#*q*zRE!aZ#Yo~FTxwB
z;ZaR{OPJNco}QN0QbaeuTz;Dq20K$*V_V~aM|VL+#;&~+y}iT*IvgGF48<bYgqT|t
z2>Rn!cJAsthZGXeU#Pnx>v&6gOD4_y6oJaoL<JwYRS3MCq-AH=Zhhbj`GB0c^Oe1B
z+b7U|Cv`N5xq1E%XjtO4HcE`JRu3=l$2ao}3*YPasr#m;?ylVvQ&LlksHjUNcv_m#
z@L1kaJ)j~-6APlyH1~_YSxFMjo5t}y)A|_Qc?OSs0PLR)nJ^RzPn}B1=$O4)1ioja
z1>>D*uAXl#4twSn8k*{J1P;d51LlVaD=aT__ES^Swj9)))bW-C*NxxG(j>(_tvamC
z89%NSZ5TQ|mJx&L@XsGl!ASYD`<FPKMGl5BDVZYs)sQ&@=4K|Es(Rw>LOdrPc4QRo
zw`bGwnSFyl&I=xO0bRHWVY7S4czkhB`t817v98T?vTJjXJb~weMcbKZ{fqUBK#x>(
za1T#1GHs6p>)|~|s)w@qgfA~IYozUjH*wuw7be~eboe?4ioCr1xRGX9hkw%>I~Y*V
zC(By_Vm;rZBcf3m*;HHN2KP@Gh=CQWG}CK(D}#)9enS`}f)p=ETOAK6$*B>6Uxa%H
zOw9^G#8VvZr{Q>9b4z_}wB(T<0-1WgtuEJ55iLamuu-)GBR=$MI{HZ@srtU;gL29G
zry;P!;^OxS*t;tmQoi@4Ji(oioK9!Ocg>F;IMiO(LJ&{wixA{<%qb~4-KUf=P1Mmx
z^z<LBxrC3NdAYUl!TTJJ$5dWSiVNZqWA(hh>pe{@OQV)l%rY1x&zuB%2-ev+ZZEHi
z$_#HwvGAZDcamr>=}q;``@&ZhPiu6!DVu`?0$*qnJ+6x#@I%GnkOAkKpjofkqxFVZ
ziTk3i=T7M0)D#^7-wUa2C`uLSt961F?&Y0XD$eYVJl6WU`pq({q8ZhA(!|a4R7Wnh
zn~q{{jMuZ9NZG)5&-R-~YgYS1VU9KK4*DHSweGe>KS?B5wdis?96z~jRbP{exj4Ei
zD$2goHwLG&At~8lnDU$&=|y`#Rr5~2o1LC|EIV)W)0eN48GLkf*yt5SzQ;2zG?5bO
z-?P|wplcWVWG7bz-)|{@dq}qT3&7qr0}4Q%qn%>X=Z>O{ceHU5e@H@$q?*cYvRU=2
zsSU`}2$|~`$h!OSwAR|H?T%IzC|Ls|QkDLz6$L|t2=nP38WA_7-#10#<vil&T5dv*
z;>^TEtW2)jB$)za07s&T6|e?&*4q=VPhz8_q!Nr8CHXkRKEi~F-Qfoh5wgrQqDHk&
z(qbWy;%%N=hncge?JXG?fpmgbheCFHM;q98dRG>J%kxCm^*;xk8K>PHaCZ2SKBujH
zUeokNT7(W+%}CSSxiHt&t{SDni0D6~@5!rgK6~lVu}~nqLPKt<uD4(2ZBzxr@F{em
zdQPB#aLU1l1FK<lb96?|9Hs2{$ksL&&UK8L{HXM(z7J?Qta#eyRuRzc;LnY-QqKbq
z^Ud++kXt*<deF6)UC(D5OCzha;)PBGyWK{&C{2b8mb&WN+8T0gu_O{e&SwL4EmSo9
z4C7i*DdI(m+B^G&i+N#+(}fn=fT=Qg)^2$Aw7Q74l9c{+9Zgx;@cBVB0(NPt1Y+)L
zQFho;z-^v=aNw<*ljFFYBBje7Xdz|Tn2JBr!jUTmF?d1ic$Sx|CHOX+X$P=)ZsV}g
zoSu@HYi3-crmd=1VK$(33FLM?5~}KiwmTw1JzYh`A1bK>a@D&NJf*VWjS+XiHMh2?
zmRvoxAK4^L#B`;a<0SSNb<ojQjE>4qW(h!DCk*A791*3Ht%7sb;dJl*_aX#|fyhSK
z?!PR6%J&_t&c{`$zMp}2AD384)d4KVKElE$U^<3i27S{_mUnxyCbic=9`cQWW+WPX
zibqRD@)~q3Caa0xKIqyDD{$y2DqiFGLFP<xpdA`0Yj|DHq=a9n$l9cV*C)cxMp2%W
z6DzG@4hpIpG+I}yLnh|n;H0iowNNZ>;gk2kx;=Zz&dD36ugHG0wN^qtubwak6t>4V
zF^LD;YSI7>`wJV4u)C!mJrvHifB>T|;oiIxT}HaG+1m3#h1BaEN4j>sUKDuVxTGdQ
zIaL)EkKLyd20dS&=dbw4u<cgDeiO%sNka~U1@XLc@o5>J$0J&?O8bW-KiFAJr&5#>
zl*{i^$U7b-THP)_FFcpwDq5J)DBP!U-yTQ&iV6w74WQ9h7rzHDekhTM=$1AVn;aIE
zm5n7%Cch;{B4*e@uM1|>VS!_D_Yv%6e|TT5cRVwCl+>Uh8SozgdyM$WD&FE^&hOmL
zD0zWYmv#+T_4(X?6sTGppGr-L6ir)9_)Gedo$2r4Bmz4F;BM_7y{SnwKgOWZD}fuL
z{yU$Faa7-n>DzPE2UAe-VTFlzJfMCV%0K<wqgy#03~u^!*`0K(E)JI$HZ-hHO=EIa
zJtjQWR_gK*VXa_tP}zRG`1JKW^7x*|FRVIeiH?IVMM>Xh=}gHk!GXJ6a-$OXGDVl1
zo-B0#2pb0Aw2cp;&S}?w8$MzZa?{O`&g9C`2g^R9s^8|}Hru=_FE{=u3BG%dpxwc>
zu1g95jcxbXwD{d^lAUc_TT4@24Hc-6uOJW_9CcFnCNWi^IeMQymwP&09>5+_1WviB
z()006ZxbvWZ@Y3;sFaS5Bu&BtJV3xfkC}-LB=`x>hg=Cy1RBLOI)`xKPMxDsFb3df
zdaVZtZyp;{lcd(9w&0BY=y80Z<&+YxnhuN1+EgDrlU-Q&f{laT)QjtQ_#l39kiLkU
zCEy4@0t}WNl~GJ%aTYk5k9nY?KAGoKp@|nUDi}T2*U%;elIO;^!KGEe@pkvu4T`;c
z>-kNV5<`*EU}?{>=JsU0MS(&0wxdj6*zxJi-XlT5LJS!X1UiB2+CF>COhzxd8z9Q)
z^^!<V(Gf<vh@|~B^v$<-gXp5e*7lf|Mh51|pF#Uzj{v?+M!{S{K?9Z|AObNH`z79D
zY|+ETX6<79A*Tec^ZWN5Y6S-Sj5ZJ9Lz+2Cz{zUqZm(kdL;L-G3mN|dSQ3UaL4Q-K
zTju5hOU`1sIRZ50k?p%=FLIK#wu1Ej6iZZxjqLA5ikpK1=jWn#IkoOC(=5z$b&^pT
z0N-B&g|4)dgo0d#Q}8C3;G!nffdXaK)m<HHQY0i!!vhLV#BT`>jun-l5(wjMclVZ7
zhRn}v(G@LL@0JDQbEdlLr8?*Bfrc(VUko&Le5d<~340~p<<0}eV&R)8JhAuMCzF>R
z?25#KeC{Bod`nB0fu%53GN;wf^JsqFmoL_37MdjUAh2$AyS|_d;ctClN}=QAM8h*@
zNjV{2&jw|0mx>S(#a)6+mV<8H#m%@ZVU$3N+}-dk5+bkj6S^A9CNF^5oW<uoO#*BJ
zfvn9cI5QD0)h$l|mj@Z8eDj2{wzf&2gkOL}1Z2p;Eer-+4Q9QkEGg|4Spk78%8K?W
z?dj!%j%e8va3nV~%iDmi!T?dpq$DiKS3OOeBg}(?16C~R$N7!VQw*E9=upQ{IxpJT
zn7)#vSX6!eJEj&`ID5S?;9<LjjR~nxMbsl8@~lun%G0}S%KlMmCU$nm$3nq;m0>VV
zuB&5t(Y|D*7$+T|(uCdnvVS{sk4f<Igdnof(>r+3Y!Dk9g_o6ifz^0lBih#H;UX*T
z1?8w**Vq!Z!5BF(#p<!(AZ|i}b3;-boXPFDKQMpU>ca@Y#@*5RxPl&D#+l|J87D@w
zTyw8@5t|W<xQY%sQOa7F{Z(2Ru%A)DH`pwB`l1GKJv1oW^k8OZt*WS)m>dnDH!(9I
zAY9pAXpogeJNbekp|~NGK%75gRb5olS^hb@TJ~4e>C)Zg*1}R|)ngKT4UQ+2tVsyy
z(tlLx#pM#A-DzvCu%S!jGKEHLy4fg=k55?Bp=%{IHNE`m$CtH>+8KL+mz}$TMxU-B
zBktvt>QcBH+Yj^~Y>(PLqZrv5yZsyjM%wt5R95bDek!(BMsFnIZTCJL*vR>`PxMxr
zO{Ec?=W{&)RzD6-I3`MVV91d5?1O>PDs0eoU}Dt@s5EU6>n&A1OE*wQPj7iiv&7L~
z$?7h4-redBi_EBFd)v6t{*IrWo7rjK5^OklyY~@TX+}ofZ6CJJ0*Iz0lpMyFZTly3
zy-FPn;ZcMDNfJ3K*<s^?@6*%c`i*;&l2fn52DjJ8#^M+^Pl1hozZM$M@nK=yslN|4
zR~bmTn)OG~+b|k%;R9KJfIU)+w`RweFX=N4s!4M@)H(~Vu&ac7UwnnmBYEAw6!|~j
zV^ZXTt7Sk|e(+(*3Ko;B`mUg_QMY-3dzfbC+YEG)+2!7d^b92zk+Q9Qd)raY!;r$4
zq=F@7xOp{ABJSqPgLtmU$HoW6b{<RV0Eg7PDn-((ksh$MG5@NRUtXWTrBxo2_f@hZ
z7QOFBA37^04=Wp+n~NKziPcaQ*yY?=^0%S+UCV}F-t%Q9B+y3;2b=3j{!+LuoL>C(
zV=@!mX+RdD?;BcDd;ErGl1Ih}IWKdK%Cy;3S0~w|qse%Yuox|zD>py)O!~lKDwZSi
zbTv%wyxWq;6sbmoiTI|0eZIOvS9hI@P(j1IH6<meB#fIvM|Z8YII+AOL(35*GW+Cc
zreyRuEor^={Y1NylVepW-B&7WBF*_xUWi7H9hiI!=AB=(FB7XCkFXX6MN?L6mNr!-
z<)(*@a^qMD1jQ8VEsk$eZ;Tj*m|`qCN=K#SzsNw$3FH9aj?dATx_KxB<v%y5XCeP2
z5%=d{ff6Vmu&IO+ZPn4%%HsD`yLG4l!hRn`;EA_7-A86ullssN7l>H@k?xBcvK)i~
zj2NR*kBqD@Vu|@(vS*8yQWiPxn*h#yQbXloMG{e8cx`pVn?OlsFR+<~o%|X2cx&Io
z3BP&<Tt8G=416eNc$}{z5>;eWO_2_EKx~YYTJEu}YxJyh?;jAPgSnr=QH@DL32Ub6
zN*a*LH|E(ku#mFyl*I6n9C>c9>xe(RSCy=%OV2AxO3FYugx!!b5+?RxxbU-@I)l9L
zE&rybo?6Vze0#dUy9QXjbbZB82k@%tZ0p>FKtRU@IJFQ$QCz6nELY1DXRiA|kqXPB
z3Wi0WAMF+K-vxe!Z-m}y!tQ9s#$mhB>*m$(@<DxvFOF#{l3tJyX^jxmigk9l`6;5q
ze^I<86VL<!<M9j^NlFq^Xm9IF8YX#S9+MoDL5LAuodq775n{lVh+BVMIJY)D4N9u_
zNkF-UqbF%0z8nAY^^FY15TEmsS8%XIWyV^L;b(KKyX%0KTGq5_Mz!98{y|_<oqM1d
zTl-2w8Y5eIH{9I0N671xF}wi^#SQCBygGOrF2WRvdn!>YV9$DnXPR5Qle~n5qoftQ
zkR#tPk$;b$;@B#e1N3sD?$X=(hw_oxa&WNQG-sAZqqS(632sd`dwM9tBeG%leA2d#
z6MJ_sGp{+iVB<8(NjLSS*E_xqpAadM9!J0x?AMe^yNw%;R#AF*Ld8XJ>YiOuJ}brl
zGbEP^29G}`kGCb6Q4A2_QA5@?d*R#<BN@jg15)w74r3iI92O=yKs*JC%5v`nAebFl
z8(9?;(9%JhZP(aXpj}ugEBh^XO^(AVF{@ltp$H~|IR)WThxq6>051*)6Wf>91of5H
z?^t1hrX1NlG5`eecNUtQ7ax4Ozg_t&^au9I3j0Ns=_HkgBNmhKdlD{oxce8kHM`!B
z+Mw}N(wL53zIJ}T*|4#PXV;rQirzL36d~K*=sK+4d$88Z^P+ec3ldONqRyVR3Y^I1
zL9z;WE{a+xtte&KNaZQ+TWj`V086|V=nzruyS)aa>k}3`!|XdZQe!e5PWasq2-i4J
z3B>BIk$k?mKMuTR;XzoD075B@gZ5ywTzeEkK9=*ET%P{25(c#!W?;D;@JO%b98E`4
z=ke)wgM+oHbg?CaA#HJPEZ5<c3|v~~fS31q$=+byphB^NMGs&Ixv^L8$k+E?2m*bw
zahY`3vzK7=D;9WdLZ(ewG^BK0t`02hot+-W{>cMIITvEEQnDgANEh?ktqHB4_ADm_
zpbNVitLy9WF8t7!z!42@)_c2MGBY!Ot?t@lh9X4`C}*+tiPVAk`AMDgAab1q74S$(
z=aYM+hY##1OUjCOrVeK5%eC^7)ax7x?sw>omSg+!<oTs(4*<|q`_6AM8Btmw3~j98
zRoY}g+NUSr*P}e5YUm;eTyJx6Jv>6_2hXz^R{%QS+S&o0m&vBeJ7m3ud#cK2H5+w>
z>gf6sH8|YZc7qF4tN@GgFdGe>TY})3|IPs8ux7AwzxYt^4$g3Wg0}T}*EqJGmY{cx
zk(H&DmbR&>{z)|QC#y6gb&$yzM{fXNl?NeF>}eS;@PVBgzt!#X>)uT;WVIYah?bg#
zsTG{6m*=A}6?jNQl%2)6Tgj5w|I=yXfL1m;E|i01F_jDShYW_yb!{f{`*^f#<ZGLB
z7d3S)g#xA1wdS>@^|z{V7&&&t?~I13L}vZmBxvf_L}9r=H?HfN36sBs{o1zfK;ejY
zbD*X|(wEA>26mpW%pOb4`F(>Qq+fY>vs(yA`Ud$w!v&I%4=4nHj^gk9T_?0EY?D3W
z&^0x*<@n$Tc;W8QJ_xKYqC0(f<H;Sv@VQ=2LF1wB+G>Ks;bg(G0<G+=8ai1skDrHP
z9q_GjvQZv2u+>o+`(Ef;+XPn<qXbzcwK|B59472`V5NU2-22k{kW5<7#M=+at!@By
z{?}_FS+ODOVU=k_*NA<m@Uj*@=+^EF3yv{1{AYsI3#Bg^+>Y@2ARxK%S#?d?;%nh~
z+oyv$d;kmhkBt!zgb8>DYcPvAb-!1DXUAw_VrQG*z>8O{yt>?%F=t<+At#NR9gKYP
zUCY<<<ks2|?>C{EpkTA=(JVP9=j28zhmIItU<ok3oN--eg?vg!A!bJPn@*<V&_V{?
zX?b1a!y_Ei;wp*?a8R^!vbmwJXtd4WFx+*Pm)nt%A$wo!99%l+^7@~i$ls}JU-ek5
zSOn&G^lmKDf}xg(me={wd21K+O8Qv+kdX=LTfL9TMd$nW;8d3Hmn5dQU+YkY2T195
zA9wJ3O@i-u`cLM9bK+GhsIIPE@WnxrJp`4?5S<#MX({1EKr0(aXxD-uwZ7O3L}tDL
z3y#CJVHCe5_+7@Pq$dAf#P<}HTDDSZctVNfY~}6?C`o@=fM)oGrfL%Yyzn|FIXz{&
zB#c(e(awp{#qGTz0O5|$QXu3TOnm>ygdAps_!j?TEDB_dL2cdZqSaQ3v?AE`q^GaX
zd_RN@+sK~M2df0rTUMS*Yjdws8*2Ar&+fKvke1eJ{5HuTKRhxj^&*bb0T>!YHW=6A
znFbmXh@z{Uej5~chGk7De^llq%PaNj=9u2aECEkBMes3Wu*6S6Kx$cvIC@b`ejW`%
z8=YPZIbsN0?s)fZm<G!h291#<Lo@4>M&=jz5A3hmOrf--S{08cTbujVCWnUQT<5cZ
z8TOr%X>b}_(^I}h(>e7HfEcdRdA6U&2mcp=PDnn(XXr1zl8VWw=W-en)^$L~?(A4}
zlF|*9{PJ=<r#OWX6r|VjR|d9nyQ6G~n%Y|MFrvHjZQ$*E^B#I~i@Sy{8~iDJ39Cri
zz|GU1{l}@LoQJ0kCvyozQ>bNI)SU#8wp+5KjoRnLqZgW+9-?a}j8u3q4DTVET}ljb
zL*YuLFlNpt6dxg%+IEKw(2$lk^0UWbgDhs*qPQq|7qT!<Eu7Lm?~Bx}P~5!N{TXTW
zbk*MyoFtPbvwogi8_9|^zZpkFf5l5nE=5$o!`bZF1@sz+;rJ#11fAlYYFU>EIXsiQ
zlPW+N!f$TmBrR~IG(}#f7~hu<*Rs*FqU5T+M<5aO63Pt7-L|M{a37IV4Bp3$`r_4v
zi^Bg3G_$io+jv`VDqM|n&Rsv8nx@lZ9EV9FdWB@*8(*;`9&{fwPfdLYHoS^k@ufG4
zcj3;?wL>Q(?8NKx_MW-tBmg3-<tBnJCLQhdc%3YFV*C%tpN~aJuS&a-nMB4lv~_p(
zf0jO8;UsE+iXN@ux>C=aX`gOCe2?BXf&SXY%Vp)K3jY@DWtZAENX3iDv1ruRW>pS1
z&@lDi4ZUR9l#(`5w2jZ14R|r6^KyKeDt_b8$%qvugNVeCA(&%kETt(ShI)Aeb~EQ#
zb0SehEBuC2p`1W1RL|&(i<z>K7jt#eTOAb@n70{9#mxt1=Grn~)TA!0K%|L1gLH$c
z5N|<;j(8ZC$>$e$cGSpl9!*?*&4pPsp$>fd3Z+OOE7tVU&)&^Q_+*W9qwGEHdXqD`
zr&C5i0GX%N!dQz#nWE3l&Q^Zk9hG4018jL|Id~)jMolbx;(JQ0OeQ{RR#REiMp}d>
zMW0~1*TGf7Wzhqe>;H;$C)0vUSm))eLg!&+VoPs3<LA(+B4s>WE9niKSS6(Cadm9~
zPx2`Z2aj|VB{BBJJi6Q2FK{^YR2FZCRNQuWxLqbl<%dPTx^|H)1)q^(A*5?t8hnnf
z0@Z5_x(9|9*M;DIJN<cI?$u$n&e$LHrsnoEijWf<^;iA(ow<CA766#;Vk-?H)o`UV
zpiXo=q5(S(qJtgW9|!ukObW-m51}m`+q@60sofQG9l@Z9eyLhXhK)~6XIH1w`4SZK
zcKcVyy`P=kIGB*CQKvK+c3oebe;tpzKCQfVc4ooWGxCI6YjG9dP7EmwfE1Mweti2?
zLD2sOZ+gf*_Kph`AY9ma)2c=nq)3s#$E%E!%caVS#3lF9)=kD(WNy4n%y|Td%MW4q
z!*0wg-3NxHHecxFR=6~_o1S$?ObZQ-_a{2>_qWk+eBL@TPxng5qr<-e<6oQKsU0De
zh_QzggBc!JM#}l<cSRrVZ_x6<b<$Z^_Gojt5fEr0SO2rqOP+!C#mHr{GxpryfG2<3
zB48ZqjiH62gXQVy$p4}3t%K_Nwk~ZF+}%BRaCi6M1b5d22<{dn!6mqp;KAK3c(CB^
z?(Wd*ckj*pzUr#3>Z-2yf9kN$K6|e<*PLTKL&nWvdK!Q8;zVB(`fh`IIEV|*fcRu{
zTyTseHa;HSaPYUsNe9bMGh<&&+?{{Q>NMyY6HAL99?n;7zIS@9@T-WCL~QFo(@GG1
zOkFQ9-j5o2Ot4VTxj#QFtnLx=I==J#3Kb_@qWHNC-R6Y$zX+BT<;}6;G+t8lW%k!P
zU&;*xFmWHsCzeAZGvQv8h?mNRFbMkBZjgMP)$47n_|XVtDdTYTAm$eFbB0L>`du31
zDLuZ%${)RXBO~2Uhox_)SQyJxQmiMK(rZJ@ksklbm2mv&ojvwZR^c*C(3TvbJkp*|
z<!u(XI@ADCqVi-!^xd@=DJg#qs7mx>8RFih)`pB^EQ*VH9j&ycc-xqpa(gb;T=_i~
zre<p|v@|y7Mv-b<wQ?+yr<F9O;c^v4#FQ+fV+bi9=)XLm79TxsuWvoLezZHpQkW%s
zlW{}K2=;yi*emf`>~?dRF>8TG-HH_(P5YseLJjo?x6bWd>y|Tyl+zClR9V#@0+`|2
z8a;13-h7);o+O+LEUz*@fN74eIitwa_R3ETwt8WxKv8b9ZZCW`oDjZQo^pU^;DSZa
zB1Vi{Jzc)OR@`?JpUkcNSm-l^$#|cmGBev&3KWX&_lw;1_V@9JO}T5nUz8v63hck&
z8wI5@KCk)MuaH@dh6H`~ti3uMxYut_)z!M$<%G~#Ay1I5X~of$PUZiuwsV_foR?$l
zJ;l)Uvp8|ec49Z_w)r5*V*L5*{zs9>A<bxCc=NEL9+jY8d+7&)#Ds5n_-WTi!T`SE
zKfEpSXZ1SLPk(;q-@8^HYRSA^)z0x)USnGQGIg+rTsUHARBCeO{Wr0^rbaI@F2f<{
zu;F<!o$E&&ER=oQ<**e;(@4Y7>J^(wEtT&&>PIV*rs!g(<MU35jFCQ~$ls%Iyb~C8
zxsSFUFQnU>7$l0vBA940{Z4EepmMVD>CwDiqSDf&<Ix$4Dx+66Th@0LZWW~3gQ`w?
zr7LgLh`CKJ!wp!0V~JQZoV_FH+%CqHW~8wACy&PmKWhpae{C%tR8qmOwpPxdUIo)O
z;0{ViiuTj+w5hhk`hmhmd7L3=thsY>r;SesW>-))L}oeq{2s|EY4moNaao8*RuW#P
z?|g@jE}MZqW6~t%RWAgdi{2<E1f+fYDySAZJBAN%Nter4E}WEQqAN1dSsaemQ*Nc1
z-#mr?d(8gl9}QEEpe2Mn?TAAifq?hVl*T+|GFnDDVDQLQEwZq{*-qqQz$y9Ba0(Vx
z^E|4*o|pEJS1kKunZgj%--vUALT=y@4vKu~;fmBeh4;5x`Db*;NU{GdRw-lzs3X1_
z4S0W9ECltep()Mf(pb&Djj74qKjLiv{+r$4PJ?W88)CHMX${SydpU{!$XSAPFd!ao
zZ(FXeb%79Ib7FCE5dZ=#op^w(y0*5KlQ*t!<EipK8XzzJYLU=9;g!E`6AJsbl$V$9
z?*R+3n3&k()8jwz5(0QkVC)XD@(R)G22v4jB6~|)Ts%CH8Y+8xQW~27*hI;Ll)c8{
zkSby;RVJ63!*Q9(v+{rBC#R-jU?CtWWpQN?H3IBPSga246^xCZXp`xy>Ya1!?Trxg
zGaI(abA+aO6)2=}dpMsJx~-hPf`pC8V)6ZTiY}3+-E;{cJjX9>`)+?PcTBE)s_a!F
z-NtClnDTj1N|E)aPZMr_yuf9|-2V6)5@#Dn(CbDA@J@hL^5wSu<-h6}<r14(2p(!K
zYGGl&nX-({_Xdn7@k+uU9hro(409vm*Iwdjl>WS*c-FhvDT=4T#K8EEECLXxu4*<3
zj3VF3y?eMk-Z<V?6ncDoRLtZN<(L4D-Hi=Wg)AZDkgKaJ;pfeG`k68T?^`ssZWtJt
zpxhOkRzp91kB#j}xg=(v^F5kk{&Ez2zRO<&n3a{4B^pn?;}h>09kzd`?2KeI<NBO@
zj~31!x7x%IdU%|$ohk3^Z|C~p@aYqE0TLqWO0zvF!`k4~5I9P1_9xJ5cAWwz6!O~B
zBlLywZ{YAANf*2zyY9SipH53o{cC6on*W+;<}W8F2NZ~H7bj-Sv~+ZKr3Tp>q&*LJ
z58Wa=BgfcVTi>N4LdM)CwiTRqhV`!&iW{AFQj=4qE+ey*X<r2du+3HLmbzY@CbNEQ
z3Qm}+E7dJf$f)|XL5(+8^q%Ic8k^0f6^(QsakDGn$sDfKzckyobFy&($^}wdkLSZt
zef`H3A@|c&J_G%75<%bRy@G~@27LDXm)ni#di#~K($ZkGo9{|O^YxZ1w$%po3=Eg&
z=Yh(P2jy)-4yR-cP8Zw5f5k;PuDMkBs|tkND@`tPSC=yh?LzKo6FRLT7tmrTX^@b>
z_6%4j@747alCs?H2C?CUu$hP8`T6-tN$o4Oh+J;UY|0EZ%6|SVekZHg=6exhIa9XT
zUsD6{EUt*Rk3W9=U@sWCJeXPe^~-GbbgljI5iw{Q8XEfLVa*RX$5=?HpZ9jMPFC7c
z!<VYvvf2XL!ov|8V|Kl6X3F#*cE`W3udknB_7>#-IGnBgtVhj|^;ZuzsaQh^nVyyP
z^6YgoLkMrJo}1DtVmp~9xAWsi!RF~Ixi}1J7?7dXJ5>OkPY^31*N3r*8Q`Zb6`|E?
zwm52Qeb^r!DJiY2sj+F84I4x#x6?m5Ix^<rrU@m|)_;#2URz!J*_faI0Ui^(-pzz9
z<@8%;_REv;g&Jaj_3?_I2ynElQ@%zBjv4xo+;NOvfjXg%5>misvOg4+G+%^G?XJP`
zs!BH8WGUqF(cA0#(Bt;h81LEP?wl^3<^>4ACJIJ*oLA9!14PJfS5Sq6LW9AJmeqE*
zO}J#=O^AmUlVuo_l!e-@;g?nL(a30Z^H5DI+1}LDY4^1AcSJ-m;z~M~OKMB3Lt#s9
z`Vc4C7`?>Xgu*gP>Hn-^#f2QH64chRQ|<OEZPBECN@-jf-m?q*P|z?Kj9qIE3=E8`
zYg=2K_REWauLJbg8^B(Es_Nh{HdUheXM&wf9vKCNy5Q#ex~{4!5Q3A7T8a|mY=6Io
zVR62<$th_BZ5aulkAsZm6sXa*%*}zt&i7`?ZH_1kAhU9N!b{$kFd4SJj#r`m29^Z)
z+s8I^AG$#=0&eH0`77Y$iXV!Ih`2mEBUk39!3n2@`YXq5J*PE^Eu<<C5#I$KHdp4i
z?>IvajT)hQ>Cguk$OIKU@4?M8Z1Ya>wmz8tXy|*@1E??VwJn6)_Rc5E#8R$jr?(rU
z!ZtQG;Pcy_?+^aOsY=6!_ToI#9*=vSwBe#*L39hhTu#)M%orK<08Yr+7A|;s0$mj4
z<bZdCgn{wxzJZ0sba432&=7r@elrd(Zo#JjOT{b{cz7YlO&J&UtICZ&R8n4vY*$6v
zLUyjo)tRq<AB2+do^>^iZ^{kS8p9bE6Qe@-Tp!$RY~J2+aBw)E{{Xv@%jmM8il20k
zot+(xV*2BCn*EoZ4l}kZp7g=uV$Y38q{!mp5@$WQv|$`)0qjqIdjW7zS5jgKxHty(
zEnh1?F-C)%mZnGlRU&uapP<$dh`fPI7YQbOc>9aQ>;J6tmv2p2=3?$K!X-Iy3g&QY
z^Yeeq^Uua}Z$raglk)gJx&yLQhGKnfEtNFj_B`M9Wr6MOms8BUyw^DuYwkJuv5^5r
zwQDksddm(1zq*@(YAZAx583w;jEt-pRxixh=*UB1$m@XX@jv>xavbV#3M{x^CX!fl
zao`YH4#Ng1kHU^8?*mEE4=H{S!baK4h4LSHIwL~xyF3+IECBl`DGgj?=53+^vZBlV
z0P)<a+@PLqmR$xOnF?F0|NJ>KK4mSX2wZ~qzvQr&s5$=3l(&Bi1N9(lrhot4|1Gre
ze_Yx7Kk^TpbMpYD;D;=x&(ovPt?`G$<<<vxf#pIKij&1gT|GVd{|Y>r;}b3Y-Hw*8
z*3P#?14K`?+Dv-tjuwnIL2WXcB`oYb%aVHqsybFYBx0HnI)H&19-sJZ{5HYH+PY{X
zLMlXxh2pQybr%~*VjFB{$}%%E+n?@r8!(V=@9$mrC#}Jb+w699zaBp7qTL_x88(_&
z7{=J9^$gTafR^%jHIu;d+oBp2D31d)SuxDPK_LW=$h8ddwpI<+7u1Bdws^i5!`$Wi
z?H1<dlDi$P)%?F@{(c2d$yyeOIt{7hhwBrHtYhH{(&vS_xz3l!H14$IWGJZHgDN7p
zAAL%AhW48+cNaf@W=WR54lp`Ob?H+gqRH~T-=opsnhvr9CbtH#-u(Ha`nUX14xQ<;
z^)D%YyVf3FEoUuD$D2*04gHdlLA2(lXjjHG<Z()7F|bYr_*XwSreaOOQn~#*6O-^k
znRB?w#a6w$&b2ORB=apg++IY_wCNZ=2Vcg!Jao96q&Ohle@AIjDM7o5{t-1CI%po6
z0Uu55ibI0|AeI!p?`v9G9>ba2X6t+iL7l<p@=o@Xtg7mtgYtG(x94==W$b*fpXdY_
zKVLCverE~$P1%?9vxYBgJ9F>b**J#1on8X0GGP2TSqgvNKPX3P40(B2LG>1TnNSjv
zRT|a0?}Yu{7m+h=jkb$}gVWp7lfmz1P<sl#KchjF`((cg%i-?s?HLWJ+r@q_?kVb_
zFt|5-VjfE;fH$<<Y@an4HppLpQfM(bF{9h$Y%S3a*QiJ0!o9y>-&R^wl)`EnQk$S|
zAleBW<&@My`Ye7z0S4qqFmfv$%F3D)80Y3L82=K08@$6pP~*w@Bg+Yv$0?2Q9<khy
zMwR}`{DD-EVuhK#VZk_=uaV&wxL3R<e*M~9ux}5>!+=@#JWvP_VX-_u97-x@@HWkf
z8VXR|098;LyCsT8o?U@rMsEc1MLX$pfly>hBd@eld3N?H!21LhfF=C`_QWqHKAzuX
z^Gob^X=GB?T+LB~U`fg8>1mp%Eaj}&9t&L^TE0#bC!Ph@4|4MIM0mUozjs+7VNmec
zJvky?*8GHLXXl5LxlB*9J6oFgrXqkX=W|BJ(hvCf`>P|^&TDB>KMC40c`pBYM7UGK
zDzkwX-`fC@ax|EDU^cUPEB6cN^WSulvIiMhI0SWlLXf5>s+OmY2Wt9{5dS<5xc_||
zT5xw^Z%DzGwX`%$Ou{0PSwlpC(d0cBI^2Z(r`7AmZn@>|*z2T=WmBJgE-f=t(driB
ze7)-p9xWYXu#px6PFiX*wSZzFEpzBv;ewl$n$5?LrM>mL3kA_dm3yUW^+xLY`uc0c
z56HXrHWo0kr_+qOnF2sa(BSZ_y^j}oM=l<s*WiHu#)gzMYj^hnaK2~^F}_L+3F`sW
z8Y5$*NI8PlpgEgXV3W;j^2ucpjF177dQS!1f4&CizrIExE+Qi@w2lj`(HCrW3Sdvx
z@#Z#?xy$79dCSDaM9E<W=v;gwE?|+co+$8Z@b=KQ9@wON-}Z9c+?!uhR~I;o*R^Un
zYF<^MSvEiSw&}3xW!3ldSL}=rqUnc+yE0L8wYIpt%Bp&AVrAeiZN|A-f-K0vwFtqx
zPwAP44~9((gjH&Z6t;H9y&_kOF4nS=g=n$8VNy~W{S)`6=F$%%2P}P`VNprgoOf?O
zZS+MFzHB8Kmfr4uXD?7XsOmU8JOuBD&sh&Hz29AJ%g=~0<R2da>W);{7ua|#Mv_yq
zvQ}=-ovfVa0XA>Y>?OU(#L^P=1-VhLij+AaJ)P**Z?k`G^M~2%)_q`!utEdAnIn9n
z9tJLHAjvL$1@4srvKAXz(7wuMz?|o>5VXz{O2-5_<ipMP=OzD}!|^k_jvvAr<)D<$
zs<T_lHBaReYA-7rnV#;Q{EZZ7;N|sTx75-lCZ0h={2+CC^e0cwlzq9$1<}I$q}6S}
z3#I!PIXSt9M`KY@5m35^##VHA__^6YH?GIiC;|>-V9T1r4pRnLSR}JGu`)W9?Qulm
zYNZ`hA{6aworuBR+nw_N=Zz%c3Bz}ms)jTo-1_K#bGWo{n%DY(MR9bL;0C$eFg`iS
zK}-8(3^}@Qp~3jOa$)I^P^?UiZQlqe7PEMK7khew2h1d-r7bNiDrSFnbaaS^qF(Jy
z=x#(*%-&sW!$L#%`OhYUm%T)BZfmM4ZwSy?NqYr@I=n`Y^((v`??;6na%*Z1?;{Ux
za!&xQ3}vWU6E8zCN%pM9HE5o@NbPkW+xWYR|L=N>)a1X9)9GQBSPXNy_s2|?__?_`
z&D`3&vl-;KZ+E&rob&81{qnt_Pcx((U?~jlh6X`(7q<ae7Y?8T1*kQvl%!z`Osp{f
zm-2YySt7+&R?2=P!d*hO86!>Dat2#|%UeVJ@d%*>G%;oxam=Bx^J(5h1$oB*-%X>%
zv0{i4t=<m!00h9Tu1Bf8n!~?;kEHYJen%ph3e^RW9%|TheLV~LtX?CQ#YKLl48EzQ
zrKbn`_L)raL|RUwqE9A`dQ4cgQwp17LmeGsc+ZH?0^k`RspPqT?R!8p1k_hJh;Xe0
z6=ouEQ;<Dk)$AS23E<f7C+vrlmJ%1|x%TLBn2XPeXyK3UX>ODWOFoH~hy<78nXP42
zD@XB+d6S#FD*AU*6;rTwrP2E9by4;T`hNjG|BsY7e@#LFUHyObvHkD%tB=7p-<b<k
zC;K|y<H`Q#t3D%wPnx8r&1bl%eYy&1E{qN;V2QIC0ktYIMo&=B?gx2Ri{jq?BB-S$
zEyaITu$QmLzH+VZ@5dP`)2?2?2k{ZWBw(8;xUH&2Y5~(6v5EMUX`z9cD|=|{{l=o1
z`Wsor$WsGy@<jA<v|DF#@*I{^+Gq6kvM6`Ed<)<Lw-}He(8>Sg=vY-(M@P>rryxs?
z=BcfMv@1mlRsF~~P!RYKJk>4~GxLrIG9zO7GXC47`V$(XY$@eD3=y?SC6BOhmK8Nh
zD1Z(lLXMB$n6afWh5nE_&fo`YKMvNmrKLIMu$j5}*5RS5rY0fjOY&H$mIz!e0<1Kw
zE@5-n;Q6%R`s|0gMz9BZKu2rJkzIDx`og%+{mI)I$;x8$zz9%=r6^F9_uK#2!Z2$T
z7P_n~d7QNO5v98rRv<XmQ(WH|kDC3dl3UdF&B+BQQhEi$njN>Qa&mHd;R6Fdll&6!
zx6YSOk*}eG`P^y3TC3D;#`Zj4K|&IRg7V9WosCW4)B0=xBy9d@a+!G*sA;<RnY38i
zE8z>(-m0y`2R-vE^Wgc-WsFbNxcaH~aJ#Jue}n1GatS@ly;X$^*~9UqHgpXQVb@RO
z`Z%w~vw0%ifEwD~3!mN4;C+Q4e=#&@xC&4|w`Z7rN*O|1TU(Nf*$<+|rl#T~lSEOO
zQQ&Ubx18}Ym@PJ(NnBj*E#PiH-Nq}yWrRbEsdQV6?|u9;7(FJpTRkfDSv=EQ0$_w)
z_BT^&ZSODlz6&7(%zA}!H(+QYmQI1s=`CAo*3;LoWp+JGu5`F;Z9G-TO<+m+UEcN#
zj*M78*KSt)q{%J~t!g1=XZx)H7#1u%nJ@Q&Esrf{8#KVI<Ky!LT7VN)0LoO?dC6wp
zfCqoPndIkK?Wi7+PPWfvp5*8K{>s0ArOI&%GFb#oy~Bai#65Mt%B<gAK21nrLk<zQ
z?e6tkk5f~RyTL6$ElzO{NS4Q$Y&7neo&DmDGWG>@7^q(7yr5Y6Lrx6;xSzpWE-T30
zeRGT2{hNt89nMQzsC@sRa9`m}4HCvH`}^@w5LZ!f<m9`Y1{U_Gf)4@NvC1&5Ffe+K
z@<S+L(|nX!p-~5`dwcjUC(Dxnn;gW4(esrA`tEf=$8u*5*jL)ipPzuQTcdRztlEGn
zvqlk;mYO2Az$$RGRKR^^GMvJ0Ia#P;o@ahAUAoZX!5%Q?x8`v$>{{oFNv+_IL(LO*
z>;0Vb85Xy#a%^eIXK0#n>`!`3%-ANz;Sn*DVWac*<z7#C657Xs&Q4>{S`&RGsy?L-
zCHB$Zrm%k*&TjMT#t@uEa7SOdACq|8<tT5YV<plX*|lMBF-lCls@WVaK5B1>$xYV}
zE84oc--X!7$jE4EW30UDTwNpcvKJI(We5JCCVIMF&DK~Wo)I;<yON{bE3q!hueP()
zX>o=SSu~`<F>Q7DuX<*#>DlYB^ACLPCMCH!5mqKGDz{f=KIQj&ZmEsr%wql$)+85Y
zJtsP@6S{dZ_KCR3x$`@Tiv*CgV$#S5rNXG8E^A*#wYR^dH#*%MEg0(kq;<&s{vDLz
z%34}*XFH?qk4UvQ8+}oj%o?Maf@?3N0Q7u2W}Lf(VZ?nf{kIoz$+j(>{4SlB%~W9c
zN2xMB)up`9jw<hi#(^Qx<av4I_kx>^=odl(cL%^hcfNeOI(TXFebOOT`ZQ&zqJsX2
zii9*t1(C^PEvBI{?H>S1-luM$Aw_m+gEmm?7hcM(7^kL^p(e_arN<O{>ooX{j*#my
z4`^`?5c@UPW}>X*008ut-&!2T8Bz9+s>-^ejWam#E?2!Je=Km+X6vlB-7wZ-ZBvyI
z%3C1l@Z&YiePA1a^y>_SzBy?x6Y?GWHlVBrsz;WVj|W^+P@_)D0x#rukIve#N%@M0
z61&(ip^u<!<FcDQ-AUyHzPsV!NF;wMi~&$Uh$}kXPg=X9F{gu8{Nw0|ovR@PbM!v+
zHB|7Ju)*s!d?;%u8^W;$2nD3TV<{6<pW}RiT=iN3h~-*ann&;J<EiHC?CiA?0H(yj
z*;Zf*lKLJ=%KdyZ)jkSp!NrD3!smGrvPoZ7tQo8duh~Du4GM~KZkvPfyu5PppeUa!
z(JbF%FF2a7Eh#(JuAN$F)^&I1X)j}<<DDBFRpMmb^aH=KtAj&DWUY&*Ck&;Z>*4Gx
z;n1M-7HLz=jp#%_4%_RWpepT71|Idt(<RhRHsFgO`r7Jw<LKnXTu%ErWDO9Jhs>(n
zmOTpWB@B~0W=7rO&x7(%h4nOa-?Ibyd_Zh0&h~bZwKc$8^LpQAP3s8?wnhs*!x4B|
zJI|*~So#^(A|#5_D&_sd9R;QR$>x4)e45woSS&bN&=$<Bv|0k#&!0Y0pU2KWs4%Gb
z-cR$9O2T($4^c-zLI}vQ3YV=`$w<CEE8YhR<#q;01QctsU8%w|l+@J4%g(=(S>vgd
z933kB;!Zcy?AwA9Yr%^jO~m@zz@&0+Gu3{sWe=dN0ZlHErFhK91h-YCtX4M*4Fg}a
zpo=8}SAx!0gsxZqGkzuunIglCPYTeG=?e;qcXxUF_yG7ze=HG-W$O9*EFk}bGg1c8
z-s*0J=M^ani~0HHGvvLk0Bu)S7g!6Wc9`@xRjt(~TYqd)y2D46rymksahJNuI5z6_
zvq8g#b};)oI-WPV92`q7Q4|DyzVF@|^1R+1Fk%Dk$qz=S<(sai>>)uxV&mXN%L&J2
z@@;tRUR})waJ158SWQD%t~B*>vL^4nKg}oYGbNVH$&P=1d<ATOMtWx5>rT}p+wifH
z9ns&_8tz<a$S<I0@Y=7kk`-WZsd!0HDo;<3f%lf0us?h4!+5UbE71UrL>#c<#Lxpg
zxqPcR0iJ{3{hc%+;eufEO*+q~+%?pjwpOq9yKCLAT0fd_9A{6BFLsz^WM!Azd>-Pc
zPQ<97q?mN;e&*-ngwcKZ^VJnP*U+Z+mytbrz&suY6AS5d$9LCMmtg_^<KF3r09`x?
zr7R&xUzy%0{DoO4G>Eh`Zej>=L9G>$m(8#7QX##VG>U4_9a%olMcIm{8%n~lN}wNe
zeH=%{%366k^wbGUx_fYdi;eAfbHojX0tyk4?f2UU9sVL#>tSuA!y9LSv>tbQdlu)m
zLd;Up{xx<0bZ9gf3{`X=ekL_moL1Z+ZZ|hINl8nWYn`E|IAwC$PJ^AqxDr5N4SlY#
zA8F8Rgo@$i%HaHuzL4-KFl+wqnl>LSY*y**?Ok48jxUg(Z`qsUWJfg6{NV#8vDulK
zoLp@4t!~j785wGC8R;1>uFpcGL63aBCmg;f<#!zk2??NEv9WV+Oik|-;zbbf#tj%T
zyg2X%<tvvS&ezgQ6g#xc&d;`;^%6R0J%PsO+ERB$db*Ko*{k{zO-(!_w&WqrpZ@;u
zDKYZ$^TjwG?r^ijgE4&9`loKe2~vJo9)SN=VO_2dXYicwl?J;#rcO#g%>X&hqxKWb
z5;VPQ7JH|+XA<bwBK7prj}AWov$BwHU~U=_LXM2V96t}h{)_P-cXyI^wwD`}_N|>l
z2M!K~f#Lub8W!~{kwly6iI5KrGJ%9|Va(W=i(e@rulJ9F(1I*Kh@20$6f=vnzk)<|
zgX4c_oGa!XMDPCk>YTVeJ$Bfrh7;-bMj=&Y__UHm2S;LqEjU^Zy8gmNIO%&`zUxWb
zlY@8bbMHYhlg(<<<m4|(A))8vrRHLYWKqk81|H0?A%ANER0Kc27f#!kAXWz>0s{Oi
zAnGA;NEah~-wL7i6vM&F8j$b6@8tzd;C(_^%6?B*GwYJ!00ImXK40TO@r_0qZEI^A
zJQhUrGir$AY~M45U^TFpeReByGBXFIUd1L4m~hsiAS33k$C*e@i5a5X>uT$!rKaKH
zVA=S+2i{>783&e}-!S6zyg597{<(t}7cXDmFfcM2M-&y|=N#IY?TipBd-(H-h#He~
zl!y-JG&MCXvjG^c6RnnssVORnK*!o{BggHUh0`pHDlJx#1?#4xF%qh8W{E8W<L`mo
zj=4F>xA7L1mgq-e*-5P4G5{^l@>xH43h@YfDRQn}_egIS$2E}CW#7zdLq#x{?*`xo
zZ0%o^+RH&ZDR>Ywr}lFlt(8IG{Ph||Xf_wp9)n{`Y%HthQJ}aM!Dsl=sl$Kp+o0DM
zRC5tJl!%R+)FpS~clzqF=H_6=UU@Scz~!-Var*?^#~Q1>0R3ne{d*`f@%HhyklV7}
zRIcac?ki-Kr-v(UR@Nsl--DBMOPw%G6SN(Oqlzh=_gn1%WoqSjhDo+66QRfH$wQCg
z<ui3t)MO;;MC=34^6aaFneLZ8c8eIFdNCqIbh4m8KwN*HbvRtV5=dGx`3-A!02YOa
z=i`12pAhMJJtPd0vch{E4TMkjqnWL~hFAOo!42s1&THJ~mqimX^vAg4s3?^y-?WqV
zCh|p%1Y8CuKkC+F3`#h=Tj2?;ihwB_UJflnzG%GT%PYv7=cn5<(<xmr$Lw$<gRgcy
z(sAc=edM8_=<e^A0eJ%SZ$nT?UpYk*@D>*qS^=0HVC8S>$x}Q1>W|gsve&M2##d9H
z62|=r6A`p~(-n-^>UB*(#OvOBiErq0W^O)JEq5O*)~RdXHrMJEJy$*)Qh?Uc9nB%J
z1iGbAN(b%&j>9>Pks`b8$`6{}!--JZbfme4*0TCn`F*v7*r7-gUCJnGFJ~3&6AM@#
z7m1BN3tT)MYi^*3wF|0RF|`^EekEz^ND=<WT{(h~o5c4PR3khde>QVIhsNN7#c=5c
z?TwAcO|U&vko&oT+GNKo$b6-=Hlw!nun1HkchYB6LO!hAmHGKpaO{c1W5w_dcbXh=
zpJbzef9;6*KHkvxc?%#bLNpG0HT)F|xEa3KEjPeh@BGsPcBfrmg^a=%)Jfu&+{NxN
zu6}xa6cg{Z7)^N^t`DouP|6U1j#O3{X)x;aE)@7tU@784fDm9T9@6>B9R!bDS(Ak#
zT_ITM8s2xRS}nYhwz*p?qoH8OeD}G^vB!f+F3A_7FaIs>lEEp3{G7^c?3kZFwmQ{r
z!Ta(`J{x0*4|dinYL7qJQNIu>W%6O8k1Jihl_*x`_ah=L_aR4P>286&J_%g|ENolN
zas|76A*L~=sa7wZUkjkn_3#MWm;>#ixBF!xAor#Wpztx_B{9B2v31){{|sRDxbsLV
z*Hc-#ebsS>RQX9#vIlS{9_VH~=4<G{<Tn%&FSXgx$q_8Edi*YL&}`7Hp1*BRej!cj
z6xX3f6Qm1$C98ofU<8rb)o)q8JsAV^fJ+U&kZ<Jsz2uX#c}lI?&dY>DQAvv3wjLeK
zT}~(WCMx2)A%36J9+M-*OiBFdgoI^huU@s{b3P@@IV7B3UPgf-yMMYX$TF6K3yCHc
zgfYFmy!!a_BS9Hbq!d+iCJH=C;M|>yOTFFGLCd<KueNsCW9&km3n8T?nZwcau-7k{
zp07!LQAELz$S_8MK)ccDNQV7A^=wr5*?;x{q>JqDaA6Mmw}YW+g^BRfEhYn6uL!i}
z(;<UQT>K7KA3%3<L%BM92-amKpA6fN%1><dC^B0gIIm~Ah!*CblEKs0dS2#y4rU1Z
znX*=XPWHx6eBc;@4A;iO4yI4hsX8?zB&>w1KU;-0TOcP@>SL}y0joF9V<;C7n*x+<
z&bLi0X&M?CDr6Eqs9rF1NEN`#DGL8B%E?Q?`)aaO*!|`6(L%kr14`{tuSWJjpiCct
zw|c5~FtvVssB7o?8QK!n*7m&C9oqh=T0j=x!uEQ;rN1N?F&tqHf|5D&&9|!{e}Dg*
zWk1xYVRKR@dOA9ltolk)JAL^q)~E9J=@Js=J3&OM5h73OED>fRiVSAgkHbFS^JXB1
zzJg(WG>IUAqjFGgFaE=J8lrl;YB?P{%O>(cZ8C@TYqib-F^J;B@;_aFx+W&x%V}z%
zZHb*<FS#ZCPUAkguRU;(0g)4SE0r4$q-~}ZS}^zb#>P1l1;dmyBuEF`w10qlXQWez
zouYc}4;d2IDuKvPJ9E>ICMFoX4rIK(FPT2IoSaZ%qoF2UY=#T%+vV=hdr056I)fxM
z?(T?NJ4Y6wm#Lga28MzqE;`G*PfGkkkw%van?X&D3m2qY_gF%zhKPvh11YJ=hiXb%
zEY;g1h=7Rb=J?63K}062ixp1z!zQ#?5ZgF{uwztIRGsT+Rh8$xC$c3Lg5;P9_BgZ2
zTqx;CrXXx;2N|ZMRLj-r-DA}`+n3zZpQU=~8OBH)a^2!S1pMZ=3QeD$_;TQXV&n*X
z2zTbG4bsEpB0PBtHz43Z7><>jvMh{_*9@nG77$~g$Wmpz+%);xqB{8#+J33&<N6O-
zpZm*zhy&X}iW2Bn>&5W4f07gM*)29VH}MDv#I9lAg}}11>R13B^`G~d7LVZIb!7mk
zk}ehXp#hWMCbvgqP}I~ldWCIrku$6mMSnagR6;6V4*Fkbq;cChA50^^S&O*5H1su)
z<-)gxb+NBHkC~K#LfnD`FKh1l!}!fX>-;QgJ(FI#zF2pcnv!)*Qqz0$6xP-OgL1PF
zr01VZs<`4h7RX+fY)2>enJit3Sk~n)K1j7X@=@qWHMlqGSe_9jcZY~CW_!@x8Nb#v
zU<?-vX#I$>*srTM4i$4~-eM5uiXf^m6Q+EBRT?we5Ifp3;hZOv@oQOxXHj;4Fb~e`
za`N5unzPME{@p%AF0TXEhNU?3#s;41xt{@$6y)tq#@)T)xFdbP9w!zUDQ!Slm*A}|
zm}N{~_d4H$F4I5Y)rV=}9Zhc_8rbNKUZ{9xu9WB+pHTK_#l_|{KgW`j8%m(}^LY7;
zn&^8Ppv3^hF^v7AxTnwuGo?Fp&9#r9KLh5d0Lvrk>Djwr-%eb(C&U^M5OB&4FY4l|
zaSgOut1;AQHiG9mtoHVCv??m)>sbS2(p~TI=w6x+ZJGM_1;PZrkp1lic$`BOHwr&p
zvP%?8M-!FJAPj8_gqxO35q#=*4t@J;>dl)s>rXc;PRb#voC=(frCOEirS&TW>=qmx
z`ooz|1ZJ5zI3p!fEJ^YyGl49+#Y8-x9)Iks8vltT<o=Rh@eTJCLeFqGGMXnoi+E||
zGIF*f9<pKF*)R1H6A6_t`ayZWLrG4Hvr%)6a=#xBjbmsn!~zZwCNm%^q;r0dkBYYu
zx|QQ(uC;Gv#jnHvm2?zIK!LL9KkaxhHesxmF&|a**K4+5tZ^#p72iyc&9u(`DGvlh
z+ap%fzrBC<1{NBNlsqZG2N_@k^$@*=H`J@6N>k~j#U<gp%MBpRvv*{=UP+om>`6VK
zY2@X#w%$X76yLXfs5`paCmA&b@W7o>LuJ9O3zt@=!#wr+e(8OSU-JnJXKV>`yRok-
zjDBFAK>8shym_IDBEuroW|>Z?pG|Y&`JDaUJquctf(`_&px{zwMEvqOgqw#<Rz9>-
zdypl&(0GOabiRB{oqniDw>h4r_O2-vPMVLf#Vy>UT&vFo6Q!bDA6*1}0Pj<tBTlVd
zVkm9bvemVD?uNB2#N*sf*2Udx6zP)!Qa>S=b3@$8NFv^KprjM@zU{B~bE{s)>o@#_
z+~`;K{5|(P3o*6X!!3>D(;KLcB04&!o!>yAM9)N*$!f}{mH}`6d-1#U4Vcf1TV<rA
zP$km3k_j6cmY3;+2JG8GdY~8p(Ozp)tE*&MtY3WBxOsSZw5XGcmUG=!mcd~3^yY?;
z*JiTwbEwg8aK^-8(t~5qFDMX?Wi`1y)o*r{rJOD0^%OF}|JAgaz24jY?oWh`ffVN%
z(KH}L*-X8)w4^D_v72kDT`uux^f0MR?lc1OfEY`X*QADqw^<oe5}KG}&Q}wo!e4{B
zlz_T#aH<3iLO8;!aO?P;^4CYO^J)S`R7Zb5i2e{gayrfK7Y{|5N{i?*(V>0l9vT=K
z9{e4|Ir{r|q1zH$&Y_m-!92S5;8i_K{i*|xw@{{k&^+=NUj-oqY^rb58KZFt&$csp
zsZN(~GFGPs?Q?_1gIz-3UsAh_6Ry80K|ga9oO)uc`!L4_G6Z=V;Ck>Q8241C`uqDQ
zx+$osx53%8MQ6EtHWXmv=PiM48sIwvC~g2jyI81D9U(ky^=7i`PgNs3S5j}F)y=Ws
z$NPM^*3E2WxMGBVR0lES;)+>(KKdy+3Gc8HjB(_|ZFz!*Uk9MY>4L5}0W%(GIO>DR
zabl@1NOCZ$1nDw1hoyNKlBSp*9)V0QdzTSN?r7y`DbQ)EYJE-LO5W|iHCb}=*;RV`
z!{9})=PlkwS4*mW#k)^yUl#)@i1vRV_`hg>Bgwc?XDR(s{_^?FIPIPd(m3;mML?(J
z4cV7q*4*Ri2rK>XhABcB^}j+j^!oI@!}E8mLt=EC%(jUy^%^Y<AwSsKE&zy_lF+l+
z@?s;%ojZH+eFPzMl~4Cqx-DjBo#L=U_q!WFAG+UdK9s6AvPl;Y;&qBho-hXGFv*)2
zKw}Bi==phh25p{qf41aQiy~SIJNjpL0jjfHuhsjx3mR8531pruPUb|7Mn|=2Y8b$*
zU4DtB7)j?h1(nR*PCafbkhkT42Ek&B%lq2LurLHSw;NEAe_W}gpx%D<Xx1g;UJe>1
z$4l+p`v#M9)t0}9hx;FD$u9Mh)w-#kFPXxQpRc5vKS{l{^LVXfOxYq)GdV@CInccZ
z6otW(R}bVt`rLdvpX}p6c2bP#<rVVl1i?0N?ACmU>+b3%b8K^CzQ6s7iS{J6r7n1n
z4Tn{v$yOrH#>p8B4_ZV6m^9@Et?y`?Q`K7EE$^a65OAgrn2AlXlasF{o;yc_IYdbr
zJy$&o&1kWWs^hzN>gw2!*~Oj+EL>~|$jG*iQaQ>HFZlA*LF=G3mcB;VwjNP@u4D&a
zz8yF7QbNK4)7xDFV^7QUxtu@NfbS)+CZe2sP(hJn!*jLjPn9?<*33mgex81VL(ae+
zAqf^FtknG6g7^W3nt_J^Nl@%q_Tr`^(DFgP?2M$96x<x*Nb5H_pIvJ>_a*#nS$8wq
z6gel*2f>7PgJ%jOvwD%(5@G@C>;w+T^Xm%eo_C^=sUHsRZYQF1s39POgTw0FLF;c5
z-<Z0$cZ6xwj{KFh!iS&haiK*M`EkNeF&=^P>a9|zAOQ&@it~0Vq@k(uhKe85@GGM$
z(RxwkRoHDCM#~H_mlZ{exC2?6)CKfhWQ;{!t3wYzzrTcCY)Q$peS!W)5WA=+-Yu~N
z+op;b)k&i=$tU?f(5R+Fk74S8RfCh_!j)W7QHF7r(-0~li$KTM74O7Fa^=~CyE_c>
z^ZvGn1`+A&4f5HL*j%ByAlC3|u7C(%Y<i7;O98vy)*Az=;Sq>t+UP{xdi$xfeL#fX
z`JKW3@t#APrq4^|2DB+W&u_o(6J%iMnJJZCZSL$mxIe^n1AV6dJeSAA8}&B0?Z82f
zNX4BQx{+7_2J$^0pb2;t@On#$n5YnyREUF}o!?{q*PYYOB@a<msMdL4AxHrYfeJ+%
zv?GV#TIx_gX|`L^amT|a=o~E3Tu1k0@^d4ncqxz#7VA$NKTD80Ve~)^oC0s3wKsMg
zx!3h^@Jc~Ov#VH%jj|CLR7#A{QmbwKbx)kI4ybJraTsC-wlJxq0063(WZZta<?Nc@
z{_gIsRJ$1_s(EWD35aT$xtUKM8!tYf&^xY*w23&#l{WW-K*Nm$xujhrn8!eju(FCe
zaU}24)c~N25X-x`oSOh5NE~?JBW!Y-J^YGEy}h+%YbeOGIa8)x?cEawG};dj4@pT$
zH+xG9{j=@>k2r4`5glFrvzUX6ZMnfZKC|r^_M|N-Hbs`~QcQVxmg9Zhst!|Ltc5xr
zv!_<BaBrl^psF)+M-to#wirgTMGiB)b#IYB=%*_xC`7jT875^_guqIAKT;IVczSyN
zqs!dn0D#8RweA(ao7Tjw$ENcc13|Cry@{Pad59ool!cuW5dq~bGd(Gr84DH<2+;_H
zK3=HjZqH_6=`ifW|GEvxQGAY@6}^GG0D_-mYz$Hdug=cs`k8OfhnQ<yitZV8(LBw)
zpRTxp0<N;I%Amz;+-=3z?O}vihCp-)?_8-86}a63vx&7i&+OZuaWF9cG`ras3J558
zBdnFAr7aX>c^9{d++Hm<7<cR1x7U8S3mq$F!m*V(#lgZ6@v2Wsn%NhAZtyusOiOG2
z{8@0^xSyw{sWH=2_*cLD+#@fEswL#-7eO;hH8gnaK=P>l_iXk!2rzS)wI*R&)I>(3
zEe0<?(gv3xHxoTQ4@f2^vY<6o-6(Vv8B0ZJ*c@RJ67`4X&ee$QhW!@OTqv^M6!d?*
z+|2)QoSXJI({zgC!9Hps$4}R0C$(5jFF~mY<CvctC9PDN>)bL{FqcyJFAa>V$fX=@
zIffpPtba1?gNB7^2SKku+4qO_ekvAND*)jW9b|!oArhC66J9^;Pl4utphgL!ZoOWE
zdqB$vc<T2{q<JJ?RlCo?Y!2@!cPF>);fvW6y(y(^m=n=$-^AK0$haS2`|7MvbI#H*
zUBf3gob6<!Z}VMT1R~49rlF7`aA%<Qt=Vfwg+f}4U}v_{ls#X`zKSpc$Xc@aJmS6=
zz_x#UUm!o%V7yUR`jTFV1UtVh=(WGU4?1O{c`C+LAO#o1xV2R8X53xiZf@<gH@nNa
zPFF9af74X+z8S6uL9u~cRY2gTUZN4p{XXD}=e4a9%Aqhss4JMYJzSk6C8a%#OOsMj
zQK9qAR$HFnX8Eb8=|QQ3fQ()>HFZYNK%UE~!EvY%XH7^-g1s^lhb+^VzNeCU;SH;r
zp>Gsf@bKR(DSoarO9&f84qj?8w6uc$M==~93R$!!icUntkRS_K&Fzj`?+RBzMj!e)
zS3I=>0us_#6_Hgnn8#soSg2TEc7BF^fW4JoX|8uad-H{6E!&{US=&Q9C9T;@#DC?Q
zm|qB#`%^yeYktdcNGm9OG=&}q6RC28Mue2Iu`%T`a@=#3(yM&9T6D<9LpkyjsCJw0
z+0<I|U2S5Md6YDuQHv6F1G-W$P*C3z5*ZDz$sYm5Z5PC>)zWK{hyLJuOD=ag|8r&)
zSUmKBz!HEHn_P$I!Mii1yS+V}Mk?rOW@A#d{vA8A^+cLpLnPzXo1<5dFj%<Q{|K(t
z)rq&KMdee|MKMElSj#urM$LwP6CC+Up3Lw()xtxCQXiQ>;R{?x-D8uFG(qV&Qu$fn
ze%)BHtUCSW=!5JdJ9crv!ymtu&%nmc@X6iv8D--glVEj-N2z~T_Q3DCZ#q4SR1<!Q
z51T$%TCHtL!->97B^1k#30<6(Z|2!yKC>FFig4E}zR9^YUhFQ+AGwf_>6stFf7aC8
z^}Lga-?i(tXum`kV!)x{@_7e8F%+?9s&c)oE~}IF$RhGI1rV*Kp@ljkX14uXK>Ka`
z0SVN!NH8VWCz)ldj38j7*w#kvqw0QkueFugq}ENb#kPf5Kw(`Sm0(#K9-*8$Ta^>@
zQc7wnmz!<2>#wn2Rk<xLQRbNMho;}+6mEYASNL4aEvT_{Sx7!os2JkZl<-@Sh8~;4
zdp^Ja^J^5TFYe^l>^}3(Q*vqbA5f5x(m|f%W$P|=5~O56W1|Pa^NT18a~j)NXy~g?
z&F1;*SWIRl2KIOO)8il>1UHnP=NGoR^UA?QwxOMS4pO=mage5bqe~jKa6&Bnh>?=4
zn>;f;8MmXz1vLdBC>WKv5WNSAU$lMn;io*`0c_&yT7m@$n%5@6)lD9m7=}(_4D6{c
zUo$Tl^k3nxHbp~5N@e8~B^-h6ci+Y5vX16c-OI$D(UA%1c#tABWYiE+ihA0;D!ruC
zMY$@J>N250*Iq_rxE+hhyQviwEDP-iSv2;hWK}Ji^l{0PgNMt*`F&&`<mJ|Z2qyIF
z+ASYU8=kF}#c%H~ESax+X*_kapcevJnOsgDIte?wz9wZd5gJM>Gqg;$MjnU(N<FVn
zs>m)CnPMqgFLw1K!&=VJCEDA1m46mASUb@cSWcP9aR&JP*nM?bcSJ^Rs=&A9iD}^i
zqtUjlZII4E<IJ9CWM3Hd-DOp^O11_=n=q}rcE!{ibWg0)-k^r@8D#j6-khK7RGN5n
zZ9u(^+}=5X9X|n(|0(;zd}u7_$fX<62jY;L--Y~)&?=?dzI(cB3g|ZaBy8{!?Wl#9
zN?P~is%LJwP0%KtNen)@$lnsb*?6dXaf-O9tCy?omhks>vwg3(597z5ejJy>u#z1e
zh<Oh$(=mvQ?ZebRJj)jQtpzh~GD!WQ-9bu>*DG|J>BhRp``GfP*zagSH;1gE<!>)w
z-}3Yda%6;ZoGdi;M2xpt)yi636&AAdRuN|C1fkb8*L-Hz51;Yat~5_Q8eMZxAYmZu
zh@9Jq#h$**6BAYkjaa=I70Adul;PfOS-KTUF{FMLjmMO8vN2ar_7mB~rWr1u@?8>^
zl<GhCh!pgB1(X|L_*;9}Z4Rb%<b5IsQ=m(z`O>DtU>AJBf-a_@!>}&5b*_%ogI|4P
zh4dxJYk(3BTR6`|vQ;oZtN!}J=sq4HOy;fSI2jWaRtDpN`U$CoqH-%;;3wXs2kn}4
z(b6ZTZ!rT`?Y`Mt7<y74Ql9svTO@@pZym44k-9xJ_i-Lh3tXuikZgpaeFWk&HF{cN
zx^+pEKN(YASiIttTlng7FZ}DzpORoxJ?QvF+HC*6JNf{$y3d#PCAK$!nLcS!>Wjc3
zw%h(EO3~Td8bD{Yb+tvgc(|F%2Mi$5Y;fl#2hiwnnBw80#*+Qmc)8fDS%Yn;l0KqO
z{&;VVIHz#a7iEB_KhlMLUH|^Fo`EJ=^Fmwm{7W6V<;3KuZiqu_wu-ZGymqfjy1vp@
zeZd&6QouiqVr6=IX8H-=UN*79Db~$%UJT>f^x0k`?Ln+hCw4Gi{GWZkjS$daBY%Tq
z9@B=h5!OmNUlpyX^sHo(WS~fOYEyhb@L3QWI*|_hxA(%PasVTTmwctyXhya0O<?wW
zS|oFtZ@PO7U&406f{|K8;l)ak|0eJmaImL1=Sn2Y=458GAGH1|P~~QyLn9Oq0{#IV
z?EgA(tehytP(**4IGABcT6(COM|%_poyZbknwWlxi8N;eDn-w~62RSH$M|<JvOV>M
zm+te`Bpx=jlcad*n8o3~bXZ>^$;C2hJkW0>#S1t7O80VbZDJ+J5{F*Q944g=ez40G
zzNn3mbG3=)p~ih71D$@cQmFr4ZaN8uie}0sT88>hoMQ~fyN6u9QNO+>TYRFgY&z7+
zUdoMbMoS-1b0s(B-<}-VsUJLi5o3g(O#JWFLFWu?A^r+<46J%T!5Fo_l!NtV6Ve$+
zV#qjddvO=$N!m<`q4AulnUO4clNy|_`O+1Yev&Ecc0u6%JM;+mmn3y9#b)T9{Hv>#
zD+h!v-2BY_IHQCm=R|p?6Q&-BTWp$7-1)+#W?4fyfWf#_xBJ(d5=@(`N}f$jgI+m#
z?>(JcEiaa*j8MqTXS=nzNr@AFadA;Azj3srpfpOx&i=iy@Qa8I)Mw(`i)I3E5{2QN
zDaJE&SZ!qqw%#f4r`l*bG3~8qncgjdPoT|773x8y^wJFb*qFKQK+l^{xX3PI?;=nu
z_RFg|t)`l__S>jX%!p7r%1}__EPs5Ec*dq){`1a_O*^Wk!6+t*Q*NHR6PIwQ*QjP?
zO&avQ;Yxu~-<r<f1j8{zRq>oM(~6aEaF)B?(JRh@j`9<Cf8PF+uG;?mq^3mwmOdN-
z(SEU^&35NFEG#iyi4X^;?YZ2AE#<>~%^o~Fe5AtlKtYzLySw+pa6OQr%<#PW+?lOP
zCzkVNSLWBVMT`0KJ^cn=^iYZ45mWUP_brExUH@t+T(->CeaS{%K0{c0<1_AfoCxCc
z!t!rK-t?n^IJ<mD)4FF%6(~d1);v<d#;}KJmro6x5_R9!`KE`(l1q+1+K<#x>PR66
zi^ebPiXtN1loGbsi`n=haeKccPWDtB`v}98YI7sNP4fKBt@Qka!ajRSrjsT@#!yZR
z^6WGcHNdGCEfob1jn{k-%U7RxTwY2l<dhW0+^B;}Crm6yug#H{i_3MKKl}>{<atvU
zI@3?gl*4#!Ho+#I{<v25l)G#w0}PZ;L7HEu&RFFAl)Ge#auZI;Arj|yRdVIX*cmWo
z_jm<V+~~W4hL>;rWA!AJN-^X=eQqR!2x&B`OxLGlAv@y;c!?-{Bc;PBm=l<-iibL6
zHK2|LF;vP6^#|ea3o_r@5L$_d(}DsCQcpo@b{e-|W_b9;s_5q^B3?0$iMxxP(vLsy
zyhYU}^>gz+933JdBY#B+fiY%mm0DcTsH2OGp;dG&=+Dg9FI)R<c20$`wPKo}H1Kun
zMM%Y<aBtJ1F+DxRo5JHMFXz4jli}Z1D+6L6xCEMNawP#*M_1}pC8i|%g{F@$Z9c!8
z99&$;`ABSxGoEi)E1*4w9*bNsJU<i_W@XIw$xkln9NH_k>(6dt?4FrR)GD)#tFL!q
z%e&At$cLafkuUxC0i>6FoA5;<%r?TKR=^P{SS&@*@_Iy{ADEq5Upk%#;tOIn#Kpv-
zN%*;dm`0ay0aW%&Z9cYLzu-}#P*^ZXh(@X}td|xSHJ+Q!7lWOE2*cp1&qhf}Y08T=
zIfCk>4UmAo4r!KqUk!sJ=RM0gP%>&)nZW~p)1BRX3qHv<&bCCKNGbY(A1?jAF(clw
z+37GO+}9G#o1b@lK_1m2C*?Fvzen^xDOp%5x0*uudE$=TLrrtG<kxflH(Ruo542!w
z_9j;S0MQ$?kosdwd<~}xlt^WcfbVX8VWIrisxh*3xSU>df6oc19l%+H+j&-*?I(8l
zFC;!lDGZ>>z;>%eMuC6!xv~*N31vo8)6lp)UgD?aahKU7a~wEf(D`Lt?NM6`5P9FF
zqRiOvfRBS@S#WV+K(>+%X0gmb-`Ib^2&0^Df}CdH)%KG~^_Pv!inZqYEu^>P@$Y|(
zj#zLJo*v5OXoM?x3Gs_&G(Tol595Ez>z!a4)K&|d=N&C>gb=J0<NV%P&$<aANv0kt
zp#x0z|Jr_(n|C%goNjl~`69PhS4Hwvfn>S;e!nD8O!AzCjSVAr<vc75f5H;v2mnj_
z@lw4TnD{?jA5-mI-P|xUynWo-F&v~H1i!1Pnbi*+h96N$jQTL+Cm>f>Nark8hBA;F
zjG{_@7QdnC9~soCbGCMM9XXt<#$`0%uo}y@Z+mv#|5kL;a&ZluV4x#%XX6|wS^BL%
zV(&D|N+_&>ikmtY?#xvRfpPgT(mLaPHb?<H`fvoi>7wrLcWfyPTmGb<2mT#;GEb7$
z{i&k9zOpihwprBC*%=8D*^~|2V+Nf<y5q%EI!X+bmdqG!?q?VoiohOAy_4`RkF@2b
z69g_RW%6ii=;XI)fgIoweLnI1ThQMR+{Nt`0Eg7yDeT4YC?r7olLF!bP>2O&Xdj~L
z>iwWMUIUr)dIT}U3+%5lA}PKsD?yN5;N|IQw^Vnv56)!ehD%j0;rCY%a4sSr>Xx(D
zHi(JzdGBFBmKLD;QU2>Em|t!!EL_btat8+A;S6@^x3S=o9^Mxy1Sjcz(>ET@WamFt
zA-YS>C$hhB`=O(*jsHSxuwg<T6Y>I#>yna^^O_KjU1%_vVf)GlE1P@5eT`~NaNN{m
zh%|@BNQB^;7*YM#jCi~^PeGTH3PW~f*=LP>6>)X1yuFMv8Z(HGEFjx%xP0YD9`(6L
zt*wS{MoMO`=RnsWaIyqi38I<4x31|msI97G=i;Quj4o|uPb%Sof2Xw4(K(P{g^Gl%
z@Zl)qi^gkS@9Ci%`sLZAlKVF02WZ&Z>Jt9Xon!`+pJ2UsS}1sbwyIe(>UCR8l1*`o
zRYyrvV7|B2h0WzvlSVTez0BHJE*Q>xu<(Nqr?_+s9K3saKt-Xws04xNK`*LX$c~Cc
z!j0!i3H#B&bi~!jfg|^cFHM=@4IkHa>ANr)4gTQ}5oYBhB*J%*-&_jfz_&*77rwvU
z0N?@bWZg-%8IYVALBh_*ENl;=>76V_&-S;GnSFq{DIPJP`@DKo_@B}FZ!a%x8F$jk
zstHLl4EQ4=z2%o%FUYcWYIi{Ae}D?YC=F6981=HXme@S)rQV%$i%D`5={{5T3#@(P
z%<iy@hkL`sVsx^~_TkcOofi*3rR8Sat-DvAd_Gwhcl6a~Y4lRF$y@yQ7L1h7{AzEp
zr(cPA)-xG=4vD6b=DOZ0Zew0u-F#j7I^g+zj^LZ^*4hZMyBQ@$fsC7NRa!KTkuHl*
zy$UJa>IOaqPYoq*47Q8^i?g!|i=*A5bb>ns5?n)YcZcBa?(Xi=NN|S$AvgpN?oQ+G
z?(XicQ~&wTnP;x&o(sCVx@v!Gt-W4V7ehNk<a3Dwg<=cw-044!kzx1%5FAb<iT1s(
zUjQoPlt34=_1X|?+}vE(?Px{y+34TPA6pLW(<76l3cEseVsX5mq7LS0=aQ>yyWg^d
zjK%FFV#6BN-%n2O1^lkT@-6p--(f}y%=X9&WZg@aBdjBruy9osACj?YQq!xMSvLL5
z%=+s6q~+!9owzhLH7|&YUyBK|d1!$UFIT7*ctQ}nBN4|~UCI`Yoxx`3$Q^%&6~Wz_
zf3jHXYV`GGcpQ)bd7Ym|azrBm5Fg-^r2uQFjhEYP&v*ZHYKWoWH=3QMdS36Prlitp
z-;wyESwT)Tg3jj>(@SM?Qizkb4tJB15(HZ{)_esMcTIsB=%YiNnb}$NQxTmJ-Rj+E
z0paY41D64DK@VYjIV*ajjj-wdJ9ud*sHbz@m=;ujyTY-|B1!n-xbibX9n$TG(8-?b
zB0t&&7j;ET$D*7u4r11`&ef}G^xHU~3%}qMEJY>?J?UPtzh{Czgw5}?uuwNByZ$-o
zrYoj@<`+d}SF6@2nX0q8c8gb<?snYq*(4o+oT!52K|s6$%Itg~yWyI?rtM>(!R%Uz
zdKUfOZ8%%Xamxcd6XU+<Kz|_8_uzLtcgpYc9F@iSHZ!Pf(x3sn)b#Z9=F9c0ofHSD
zs8m%|#l*yb1Ke7*Ct?&6JM+=jCe9aE_2(!E|F4!d1_s|-g&Og$gI1#-h3SfQxv(J{
z2(0ph;>OJNsg2i*zG`Vpx3Oa;BxYo=m>m2x9s@e#cBTd19*pPDRwFUNHEyd*{g;;t
zGtDh6`#U=ZG@pcQsgLGVa~>PT$a@fBU9argIvebDkPuFHcQHQ9>gQxgcs?aR$PeaC
zb%Ppyb`OSMHjh7Kc~AZ&)U!nn0-`9{M;{r#2~8`ZTU!^0?<=3v*j<+Al$+*9G<OB0
zuf2xiueR&5!9e)3ARbq@3mauCIJ{2Pv^gUor!^$CRc=?+{zW5<1~0A5+QmPa&3o){
zw=@<OlJA;OF}pS`;#?5-<Kd)y{~%*Adt@D{XXg9%5sO}j`13r91JbX;%OrJ`m%C+Z
zY)+4hj>b#l7MDY(r<23w2K&gMoD0HLE}Od^c#Je1+V*n0(^NJfMyk>3QPtk==jrL0
zwFZukiWZNt+43#{2B+57F>PO8-=BCaJGf&hETJdDC1B&#@*r6MrLx~p9n4Kg5UbGF
zSl*AbNuel2OAYSpvG329_v>nawuC~!{n=={GZ2PBt2N9f(}o_v<$a+x2n+h37C@s0
z1qB0;%mB9x(9PAc;gMCc{4Rq7!Qk)T!rI*R$rIjQuEzmF5CGXp<#sJ@YxC98T2j~d
zfqn;r!ATVwZ_5?!K6j7i?Dg!x$^~FoA;V-$`dv^C1W4si@ys)j_t2azo0%BlGC4FR
z)@1-R=GYd$^E*}SL!!^+<7}lx#R#X9Sm@;9clL<Kixp{EMt&iM04*;#;x@?gnn<8I
z3!4a$lptf(>n56&i7oI~Z{XkK*lofNiTcd7pK%xfCN?sti)LTGppYLK;dmDdd(42D
zTu%RIR+8)W5Z7!o7dH^{Wtmv%N*&+VZ}E@<x9PnrGbRIU#1JVu5{f@UZo6HQaS9U-
z!L#Q6NZ5g+Ua4sPdj~+_eF?-y*gzb5)j?lk&Cc}WIW3Q;hrOVl8-@FL=BL0ETJnnK
zr=ehF=*Pw1YW1(7Q2|SYCenYdD3XQ^>8mtWYVJGabeo+xy;2Sb_vHxDUwz)1{2UtX
z4LGAhPn}PvaGG=q9P7$#PP{~s{A-moV&O=Q6QXW@T~nZT8L3*MXeW;D>2QOh($SCB
zJ2%0GeJuT`jm_?tsAnIidqh@S-S_qB4hZ$yRzb)HRhmFP2_W7GeSAOaRYq>Nz|-#U
zB&9f6cxVyH@#vq#Fz+g8ag|kcud1xZVK*DPLoPvT4Do?Qs;P4is3rV1H=xeu+f?kn
zkBf_n&zw4HhKkFiM~kk{>4S|fvO{QOVu5scpQb*ZFb!}rsQCC67kfts>uNMq{J8$A
z_Vli#G1}6fGy^tf5Hqf$n=1vWs<1J}0-4PTK8c&Gv}~*6VW}0Y-CsTUjm6Q5wJIcO
z>&B9wumvh#FRxJku%w`#uQ!3NnX^X_?udAo@|CeZW+i3B6?kE(7Im2&Bja-~jjg2!
z1&7gK9F@v%5$%|mTCBv)tTuZ&j`ZLtWSW>$=dcY(bo*ntURz;}+wDL(sEj2ySgemB
zlam)zQes9T6MaPaxIm7(uHv&<ydC$@GEve%zK5x%(ATvIX=o^WD<BCO-AjA&E-6pc
z(&%<JHH#;ta2wJjXP3G9jI>Z?>Do<aZ)mA&U$>e6W8;k9-%thyLuox}oIqXvN4NS1
zct1)%;z(^J4Tq<mx3G`GJWcLp+p~Jy?olTc0V^j>nmEX@I!+|6-kG5#JilO$PRSJ@
zI60d-#LrF+k%Kj+62y@s9Tygl%F532>HU{TFe5E3O(iMsaD1JVfZ6h<FB*?TkL*_l
z@3^n+Sj#y*4y%U(;6@nASXmtbQhP#t{GYCso%s8cMH)1?b&u<4exIj~>Drr{^Y(ZD
z69uivo}M1Sc1ObFZv~R0z=`{}nwsobzy#vNRS%y?+H|38Y*?7a-DWk9VgpHcLSiDc
z;$<R@de}Z1E~eYt3zvoA(cGx@_!<~+|H7Mr@||^G9*={KkXt`jCubhVtp_~&){m3t
zwU+;6kB>)#?K>x-L+60#aVQE-m%)UOx3`|(_HCBmQ&A4Yvf0Eiv=w$?>^a!!O~f4a
zoFtcgZ{Jk-i*478XLzi!Ji(%Lwo<=*rmnW~?Kl44gGR2Wd#H{}gQTGB5QIAXu!H(C
zeP~ra9$542?~ZQinQb2zl~GiF^vPwq?k&9S6vo~nBhi(X4mJelb*5~?X7^#vl?Xs-
z9jp0Z5#iZd*%eicgFT+$a9oNwn;X{~y~~LOV6A3_#bh+H;+8aYy(calUC52k>s=MT
z9CKKhtowJ5W$~)m2Op0@;8gBVTvm1jiK8~(6K-tGP*F%L?(aD)7}YtmAtOZ{NTEFw
zEH-@kZDwVL@`<69)%#=zsDSyNZfRx*U$<`z>-PQj6T|?w?`n)}drfkBm9k#o#oOI&
zBx6-kQ?Ly6a+70SRncP4;kC4MB%wfSg=1Zj3a$zciMgx6y%;29_oedQ6HL%*Y;(32
z*<ah5M2eb@Uvl&r#8QiQ^Y$M}_{8J^p4#u~%~+z9l@=5to-fqv`DEiyeLGIkFtN#%
z_Wk+_g*SJoXRG!HbGI~yE@Isb+?PzXa1QA@tJCpW-)9i~(Rv<DR;GHV3v2&=*!n77
zC`Tm;53rknz+W2g@$Jb7D>LHE#c*)=;FrHe<*jayrIFfL4?+O**2A?90Dl>ik8(SD
zsEb*}ha08QF0>f)iNM+Ly<QN$j%D(?T#i(Q3=5V)xZOrvRolIFHk4<E76MGv5*nIn
zW+g*`&`Js_lCzz-RZL8F9~h+IQ@@uDxoAX74G31=-)v{p4hB!KA;N#^ZY$Q)d0YwE
ze7(%HoPh4mjZF;BC$DGsH&r#Q6&|CXN6{+zQWar>D!8`WsYI48Pdh30d1PceyC!V)
zq(v3f74_6lXVJh6aJF&-%X@o;oHuP*g=$v<kgVw(kfSYB5Nb{MBEa)BMi(i@&pSb_
zRUAOCbiP*Ok;hCUdEM;ncEO0h43!O3kqEcbi;EL|v^de{n#y-!t_w=`r;SWHhnc^A
z2pS)&F-k+U+cvG9p+g=+Z+LwT#3daClgjyX$wyY2-_$K!fDU_o{|0@y(xcIm{g9|+
zPM<ODh6-I?zat5twlYv$PUn8Pp?GxdVnDS_-sZ;kVK%wNf$Fp11aI8$csSAuJ#J)V
z=kQn}e$UUOXw<%+aWS`%=hg0&u<97j+n((brY}6|)+tj`(%_+UmX>gxUS?_3eSCmr
zt@O-HJ^P(cWEjTAMKWr-ucdTmQ$3QmW;gfO>V620S3`+3I7q*bPSKvm`Oa;B60Z<2
zdq`MW;nuQrb~pn~f?IM%urY*uFgVEz3!xKgJFBvn!{%0IPS;P!1CMzHc|bs7{_@CR
zr`A##C`TGIVfOLy`Qm=V&f<7F6RzOa`Zk-S-zg1*dcUH1r2sZLl;)=tnY$ZFeAd&J
zM$hlM;_|4~Nksr%2UwBj;z~jL1{e(a@y-;ed;4ZW%!2fxtu(`(i(jllJ-JeDjR5Xe
z=g)3Qsi;t6C~7waQtvxAct^$-4cZ8h18g;Yh*+Oc_IFxz!D~QU`I4ny*oHPh+!;^u
z5FQ&HfSVScvKOOjz@^X~$g%B&Y-@9RUCqK;Uin1(^V!MCm9)Yms0SES><ut7`~^iv
zCz~*4T!x3GN=m2`&#iyPWg<Z;=!aT;^+fryLkX~bL#QoXU7>^i{ARD;IoZu8b7WGi
zOq7a5Oh6|Rj4C#*BN28zK7s~_=AUfD#H#b_>O(F<C*2J|{4p)|78dwKSjdSs3n#9v
zxX#0Vdq#(j2Bbh)Z#UXE;n8^g{^<u%;V)dbmH}ziez<>Eg+$eeH<p)pFe1uZo5?At
z$L@me1D@!;87>SX5w3}YMOm+Qiz_IgNG^!fklHMg=lca3^BA+nOX})@wlp+vCG(`Q
zonMtcwY0Ex2n%>%p8#T@$)qgJUO~s^b5u}wR<DsD2=+u2EpDydxf>j*Zp??uLHiMx
za5(yu8ZA+<61L_$e`RrX*UFHV{P+jAN`Mt4^(&f|N)opmW%uA%m=?+(4PPHkK{8Ka
zJJE76Zbo#yX>4-({D|O#pl<9MB+0kwg<=TA{rOqJB4{Fi85=8a<!C&S?bOC*PzOv<
z2n?k;R6uiSlzGO5HI-R5WuyDCl%X$5MO?9GH{H5JoezW%%XB>PSZH;Ab2UI`FgJUv
zKzSdQLa1R;+7uQX9N#<;<{_qqjS%ti3G{lkndNa(-OdKvFNds;r7xhKBhuMz7mfwq
z`p2S9cNiHORbTgp^m=sH*~)Y)VS&4bq=vQdW7JgCigWY{;Df(L`A$mbyV9?Yjf~hV
z!jB^#9v{aN@YI`EWHN4?Y{?YT*sZ<J>*KXOzqOEt#=6{IQBzY#M60G>TmG9SFFIK!
zI9ac$s4oby{)5^L4Ew;ujISb+{C);b7&Q_e4U}1!gB1KU<NIff<THZqN~Y>plCM(l
zJl??wDaBW?We@5MnMmh+1{*&o;T@Ug>9f=-uyAqGRMf0mkfKI*r!1FZ+{3(EUjxc)
z2`q*Ni8qTJnIU)igos5AOpK&r!a)uVn+PR=D_AyA?HvmGrW6Yb!gaOPlT%+XXBJ}4
zmY2Zy9e*m<ewH=6oN<cWPP&&1B4D8t{GM~Ws3m5IOmD0yY-kBh$|S^M59rG@fO2*H
zt>&hsrkx={$vUyQMqy<7K=(!ZEmIoGRe!c5Uo`mVG7*!TmYp2;Hz$C61fSO1F(I*y
zm2t!ByKo?hhUI#A<O9s#AKS|##W_B<WAe+3rEdL_gGrbjrT9?YBSSviGZP?I@eV$?
z+I4D*sH|5`GEZTJYmkyg(5}RvVFsqb@68nelq^N2ILz;tI_39n1zXodYWZaSKb&+E
z6BBvGO5J5Bbx9xc$lbpPRaGDyu)-{k#1)=|6f*&1XAC|&;T^1nshh)*%SNAmkR1<t
zHfK;TM@436tc{J4macBfi^@D=JX>3l818(}(p+0>Ypr4D)WRfeYSfL(;+2lDG2DYH
z4J3|wv?+f!?@*p!XkDdL&{es5kR5TUtXx!RXiD%c&?Vg1=n`V%0Je0Y?ZcbWI6{Xb
zxrwlvWb06(()En^g{eZV`V|vnw83~k26UgJUi$F2wbZ6R#vE+%UEAG8M#fcjwklT~
zkUmM(VU`y)7g5gy7TSDTo=(`==b(h%<F>lIC0y59i`@*%N`O7Fl*Z1o>pyNrrp8$}
zJBqTZUxKBAe+9P|k>`ms-EVx<B<M}dAq)O_stAS(4T&3cc6ILB#g)x?1z<ykxpun2
zL&qQ@pZSGfCZ{i#xeL|tLb|_^MEx7=75<?&TFv9!;W1AQb9|T*`MEx+kqivvC(D;u
zK|{jgvS(jDdG0-Y3|EQIN`r=18Zb3AFNjaLJrwBa8UjF0#%NC=w<qTN8!HZq>~3;w
zs$WKRPxqk)FVag{|DFi(p~u@W7Bsi&0QX34qg?#f;wXSP{Se<L^wDo+hO4!CDe70@
zPW}K!;dmhR!(&2dwic=-QI6;zA1JHSqa^QKEXj_2;eyqE1`Pli#wtN>Lvk~<@05KS
zxI$K1`emO1*g3+DwWRte(R@yA5(XEpJV3+F9xd{fhK4HO;tN91U!M6vsN6Fi^qrhn
z$Zlbf$jNG3=0r*#$E?J5>i0B=w4zNIp=bghZY!r@b=6<HyCwipkwg!UvL{IBW3X5e
zhhD#t&b?C7cereI6=^wt-<Jo+^){dVQTv<wFM7DV9*i<#ti3>m%iv(#KShfUH#e<d
za4ZoI%w$DPO+w^w4QM?yI233LZE<rtJ(_i$_#?=O6SV>i-YcHYy1HMclT%YhQ`sWr
z`d6Tz7*@fqiz6#m0|Vi}8I-(WFPrb_5hmzwe>b~Z3@tkzI@=~6=?=4|)7JLLh)KA_
zOs@R5nLzm6BCop`T)Qdj4jddpga2s(Y_-*j=@S}CIv?uxz0~)~`D0w&4o`NrV7h;5
zl092nBB^+0XF}QcPrmQhLjj}S#hWC&qk?UKE3vv5smF0oP$PicjCU^%(g`YTX#d@C
zJkvxI+1mu#X8uN_f;#Zy@qy|L4k1xj!*;++5ceB#9)+rBztF?^iey}g|1T#~PpT9O
zN0&1b>wOa=Geb+;?X$_~R+-7MPBOk*Dv|b|S4!)4KQH{h1j<h?b}x^0Qf(^AIIBN<
zDp0CO=m~xuTj&{C8=Rfgyacn}i3&4Q(;Z62w#88m*@1w!wFrd2z5%x98;iG$H6AGJ
zk;I6JosEUf`Y9yqTb0BmY&g{d(Z=C+==~<a7lI#D_HzgzIQ0~CaRwP3nP0im6ckwQ
z*u?!Nc@)xQQyUJV?#w_2TriuDWm*ZBM^e=o{*Ny$hqb!@LQ8EPCub|i2qH+rLE}7R
zdSQWELu*-Uc_Af5+wJXn<;3h%!aU}@-Qfw&lkU6mgDWqmN4Cn0GNw3iI3<m?j?YNx
zo7?tyghC%;9v$9aWGXjiDv9f()3>i9*~R-j7rC-m$p;zGk|3&yI0L-Q%tm}*mmZKB
z#qeYF#@hmSn5h=AK4gt=<KhVKh7KBWs71|dYp+VL0<$jgul)1W8M2h@X|$X+!_!_y
z6?k!&%9G6UyL$vyyHpu&4<@%G8QLA(+}7%C@nq(9a{8ihkWrl)OG{~KS&__Entf<Y
z+&2aF6p`AG(NGKX^AMnfXlSgHjn7&=G5TWHTg)q};s)1VLA%UcpKk!`#`eUBBuFo+
zIO2*=d;X4y+3DycScST*I_G9)5`1)jN;xu~!D-u;Q(>leS{1lF$UCy>qfHtb?eqLP
zPJ&5IL(}Aa=h00jEP}=5LMx&sgUQ0e*0jbahj8sYmc`BLG9$tz7#G&-{)<46jr>v4
zn`6Dh{kJc?XVmb1CKzibpL%%MjN#>nzIs~9Z=IioWeI)K<}r78tVW$Y!z45`m<aZ7
zs|;0Q{BI=kSv~Mj@6BtRZ=0{c8xRdgNUt|Pp?{@;|8H5Dufx4q6|?5h)&X?L&53|V
ztqyrnSrMP335UweAE4k?2`MYa+F)mw01bc1`o6x7>E7;^h<T}d7>ijHjhB-;?Zd$7
zO3nFqW)ko1p~a}$yuI?f>j@6VA11DXcI<hYBcrt4&G+H4pbtgGeQgJY;jyjWkQhY$
zaq<{M0!XK`vApj%@g2aqEtS!h(3|I{sgmyM>Ng2Nfv7eXqZL*ODx!tD?9$qYnN7Y=
zaowR&$r9O08#Hp#Qr{*JRg#k+c^F?*I@<(e{4><5q>*qSnHZzRhGnFiJ@zz=YpiKM
z9uW+WE~$=XE(my!d``w%irv8Wzf1MP2qWuSNsr<tM2!)TwJY}_6}Qp5m#%U9rcr(O
zJdHjyU720$=`$(5Yuek=P&)ZgfNKsMkI<0yIDJ@+HY(d7L-%*hMAn-&7iB*|3JV9)
z_m+y`Hh6<)Lq1?H?NW?u{pHQhfRNv%15=i+#cAu^*+A;?f@qC8DuG7ui(w^|WOt8s
z_AA=sMgUI~5_NZr8UnABkZD2NcU)0smru`11B_UOiWUn5KsIMqcr#Vw6WtcjTnHqL
zQ3<$jULLO}o+K1MuT+18giYu6blM%#uc^`2Gs4BjmM~@ZU9G`&77^*eL&TCxeK=t^
z<>%+e<FH49M^KctH?dIBRi?AgkNm0FZ)m%Z^j<;}5k3d=5ieTG+GCF;T+V#vxL1k`
zT`QLoxxXZEhN;I+3)c%9$;{Zkc=*>(614DOZZ`-dRnGxxxL}B_rcNi^J5Jf$$s!d5
zPuxlXC2bMg2C6S3)vvC1#pZdeW20#&r!Z#3f#7f7G%`$JKN+t5qTa#;sQ+;i`6fy2
zAEvA;yC_i3mC95T^j-KWyA-N0Io@;7E%-_~uxO=nT(PX$kz{FUhP3xJ*qQ2VB8{?{
zDy2Ir3XhBo=vaS$IO=zDcK;G>`YD^2=P8<u=>2gxshHGaathe8)Gcfd_~YvS?LlV(
ze_|)iD$h}t*dy>y!)6a1=aY){U&CP<b!{Ic6HUC9rv^{^`HcaxP6ot8p|Xaz9o3#<
zr<N+C*0m*e&7%N-@Z(Kbv6<L+D*a3cR9f0XMFjuOVnHG~16Kd%%XII7PRY;^>Zkf9
zz+D;mM2dlt)lgbm_ByXB3AA9z$;D*(y=e+{0f*9DAaI_*0jmc59?Ee6!HAkjt4kt!
zmO<B!Cwn)d(H!Fd^Oc?56wF)Z7BL3aqKcaFXeS#8`pa%;=@=Imj<aJQiFlpuwZDs(
z$6ckvgrk35Fx@Dr?O2DGkdX0-%O+jrE5Jc!W@oy+xf5`-NV=<=lAD>iUrP>gJ-}o@
zs3TZ)hmR)v@l>_4a^6s-fEE)MpA+!OxG=wf*FS7{wVQ_QFx-oHshJ1;u_+Zev#=%+
zqL234N1mVMdJc17FH%o3WFHQYQTb}ZS$4-A$>Y)V9hccA<kM%L=v8e(j{^^41Pf0X
z4c+xHxW8(8EnbNhctDaQE)aHcaWOF|QMcWfl#egt`$1EkE(~@ZcNl1u4;+OQ?fKGN
zTKjD_#h-x!L)jUN1C<Y@u(+9-j44}_4)L!k<M?zlamB&j+U!V|5_KZxj%k8=dRx4G
zgr4nx3I_d+vRxqzf|f{uL<`UZ$A<O)^uQU42mjy7x95QWkIJ_jgdBh+52Hhe!I(^I
zuI`SI?+b5WW@l+<D$5J2!5ld{=i_zjzJrT<%%58q4F<lY%PUK#?FI%h@`AZ~6ezF9
zR%X!BH5Ly;`1^~2WvRhDM1*y6FfdBR{FCz18lBNZGzZ>yR{6Jm!uck^BRn)FQ>K;>
zmI4co6%WK#E8g?cAi%nT%g*i}7e3fX<(y1w2EOza+{|8mwn~SlmOS^l$!HO82w{K@
zy77MBJ_o?Kh93X5Nc(|8ssz$H1#m7ncR0YE|77b>_Mkw$T@awsi%1JzARQwq)>=gs
zHoR+}`<3&Hxo2>@t0HqWU1~$CXanYLSpELwY=e6{36vET06B2~?Nh{W*0C{J0loyX
z0wk&DyDQVpUeDc=J9ubPwPC-F_C4p0dZ#@qzi$$Ko|C?v8R`1xhY3hUpGFJ83lz8v
z3*mm}Tt_2xrG}UQooG)KF5B&&FppM3eqC9Ty#Y85fJQflh>4T{+;*X1W@Y6};91*O
zQbwlrrRUD)2|0Vp;)pbxkZ7$Y>&Q}PWcAs-BB7iAqoEvq^B$&D1VYZa-uUPs0E1Vk
z!RIs?X-a@aKy(T>3uyM(sjMn4w5`27c64w;hC`uH0AVcUR<sn($N6YOd-G4qFq~%Y
zVW24~svT_;3AIw5y1dU%b6~Sr?oIbsp%Sf-rOJb<DuDRre()&3b6}tVZZ|7g&!!YU
zkT^5;J8Q==o<pDz2#|d-$|9^ya&~8@a=NtV=?8Y1b5t)q>X=hT1S(se1^`&~?k-tz
zA(cFlKn&<R3ZA9zpjVJk=dHB4M;%)aqPdX~ztPGK;7k;f^O2;EPh98|)kL%V@~!OI
zXy3#ioNN*-<*rY@@)T1Kh3|p5?pd7?X?Q^U03td?TdTbi<Hz#$n|vXQn0&IPPO{(a
zmSv8p)=SaxDHnr{UJ#lW*Cc$9!m(sj?DZWg0?N71^OLBP%)K6Db<Gq&4M%z}Z^6b*
z6G6haGv236keXJ)u-D<HL5KgZsdGcslOWbdj&n%0FHiV6vKNWG#QfYpquB)@PBTv@
z0BHCgBWD;CoKdqH*l279%y5QuejP<UEqgZZCQrb$GUzXuW#oO1zGukb!<+&$w2FFa
zUM?ELQd7UNfm51xCnggZvUuW>5+-~46NW2v`B^+39sq3`DuBD!oQXMv^*oy|jbhw8
zBRx-iU4lIg@|@FTM?|7TXcsufb9k5MQN;4LdK+2;U7P?Gb}I)W`v-6dsAj7-A^&Ti
zsD3fMU?pyBkvG6j=%i%;rm-`iFdz;<00a8BMF(4uD)3QMudUKO&bm-zh?Zu}JJ7U2
z`;aZ{n5<JUoo2_;DXhnqLOLVhwBk4vxeTvcz{G3VxwIneT_M%KLPeP0$CV;OXE^`B
zo$z?^meIn&z|+#)EpAq|fKkZsQ=%vI-fq%#`#uUA3Nc%uD8Cn)ZFUwg+%D*WM@FTw
zhUT(l&(=dD!1~k=rV5Qt{gs({a<a9zv!qFjuE*ua%y(<4puy1I;Q*8H(LVKGOVGmk
zaMr%Eqy?6Q!l`<yLWh$I9YKYN;;U1h2yL_DF72bs8_%#D;Tj?!Lv_KMN=yT8CL&GR
z&{cKn5j8{|j5SZFAZdRVkK=bA^`P@f2Fj6+AKH3qUe8a#BR8M7cGsqHed+Drf3~KN
zoJ7r>M6nXRZ*;xjJH6C$*{^~fx#-9~g#a33cJyJztU!l@#<=h5O90%iBoW|xmd)=0
z4(1*nHcYUIrsE{=iyW4UG+Za-v?&D#)~HZRN_%>pZWVP*WFA?6A#%2#8ku*ud&(`B
zi$l6cJv6jGciFl)+q1)Tf?hf^@c$b32dyynOgVb;wc*F;q`k%o$BNpKeIfM%4w4s`
z4>rE}6*kuGa7MIazq6sBjsIUi5MZk~qMiv|OLc=|CREng@18}8gC?ZmSvuhA$hk;b
zyf#$~G#IYBc$HZq%hx{6GrUf($rnyj$fN;ta4TRv#1O4m+S##r>_B15=TG5h=w{<O
z8r=5*v~wQL#s?Tmdh|f}qX$<W_Sd%43RN?}g(E8a$4byt<Z5wzTmc04;$mvta+qj2
z_1hR@6B{I|gX=<6Th04Ojc-R7Tq-_N#>zES%4WjIjfV&7RCJH<J>|vDnV`GqpkMZe
zf-zPQVZMWrcz`yptF3+gFbSzKcr){je%|6D4BlK0U*mb%9o6`(+4VBw?ODbWJy>WL
z7kBb+1kK-UqkW>OYhZ>}FplxV=CkUO@tB<&a_d<riZwbb*S{q&vF7p`hcJl7z=*Jc
zZ{2<fdRTaEVgHP^Yx%;t=G%!;FiJ;9*X;BbWR;f^%ofz6=w4p-dYYD|KGroCh(Hu&
zUaj%wzp0wItNs3jOnnBR)N1Ri#z)6IK7&w;%PyFJ6{fu5zR-{#<*P3Z_74PVjRgg%
z))o&pj`${_<T4qsB%OP8?I#N_p=mAV>bqaY{&iNijB+?$AC<4Bp%%3NvTAwTxVWil
z8Tt~o9tO5>7*q>(_v7H=ov+s0ZD$EY^yUC#d6AzC3ar)GyN;ukfdSOBp)q188_r^$
z#p(aF01i`>9%JpfGTufIOXO<2v}znTZXzHK{$Ro|Uu*Uvp<>cwTcaTU)(EP=2)!@W
ze{JsxS^#Y3PC2>O6_6HRC26NNZ$xy+=0l@JY&pLSd8D_bepU%LR)|z?!v2|1ZnB@l
z!`Y}c``hLAYYRsZg#Xjjp94mAHUTe#=cn~Hpmv>z(FBm7g@70)s@n<Ov0w0&IDOK*
zHVuNTqKm@cac=z|9Z|XF6Dy-RTA}rv8u%HjV$oTKhNiAA?{09Us%dif>j5FXZGE=+
zIeL{GE6y;eSq2s+wSN2hm6E+in*zs&GgM?$AK8cFz{`JTfp}TnW-IRSa-VNIn$W@S
zj0+65)?2a-O2$~;q$Qxz@)bd$Q+$p4!SER&>>XkTyLu`fbQ2y#?kO?E=j%dLEMBax
zyTS`JZhLMS0gluw4+mhzNzNHjeMXpxHEjJcK0Y8(Ut8}V_cQeeEYf$`Pv|JW*(08q
zD%9f4{{qCJnS);$Ekv$0%}SprDEj(^oZGB;XNqA_2oO8J<(b20=z<-bj;!tb`c@2?
z7VUJK1xMw#O}zE!^4JXO1`}DCnfwtbQ=W%pqz|zq0qX@9gqZbXVx;yPcLq#&?$MA_
zOlD?E6SPS*aU3D&9Ysb#O9$=|pAMt@*9E!^5>ZMzZLPQfDXA#KG&D5V<<JxNk7AY+
z8Z_5~L%hGtiop4JF{MahHe_=qkHQUQtj&KDK&x+BN;-C8>_R9fpchlqjFgpbO78$d
zetv7!dCq3v{PZ*f^~m=17a{=)ma-Ce;u!{#Cgi%8ksB3fMCsm#^bxtU%pDLJ8UN7u
zXpny+th-PbNO+FGNw$)SOy<*L!B5`vsoDLPqHdjX65gw7mM3IF(Sw4`E<@`M6wl)$
zPv)%OiE%m4!7G26&`85Xj3}@g77mt+6MmBnMTa*lt0}>CS53ONwnF+q0$bEvLan7B
zToG@8ocwM5Y;aqH@|YX+q(CWB&0H)m>-+V0)Xm8rYD!06eV~pUBQ`CpxjJ0!6|T+&
zswmNChVkD-L_9_#pPd#aCVGbY2&H1vOI?IKn}VLSs%qUR3bxHiTqd>xgT->Mj-hnQ
z!*N(Gt}=CNR#(;oyn20&mm@3`Dy6@n-|~qAa%P$I{C23DASoQLtfUt@_ETwWdB5ZR
z;Kzqae_0b#TUfl-HNC>BR$H5lPr#j+NB1FwoDWi%l)MDTomKEa0G5u8l^a%TOH)V?
zkh*2a$@Chnlg39<+o6uoP-5uQ=HF=eS(%yr>y&1HTqib7hhS-j2MGnXJM(1lfmiuj
zZ*CfasRVi4%?>kLLL&Fwc_#EO%zzQ6Ddlif3r=N}M0>VI{#zcgQI5T!l~B@L)znvs
z1(R589y$&Ra3mnSf;dd8#VT}xL0&kZK^cqTiYkwo_-BYLK<>@o?%8p0Rn50zhD(MX
zqP7Ph>Ri|2s5w$n2z~M?kW}kF%kKdzRM}y((IwPxDFuuS{R|4i?mS<!f5;i5aVy(;
z4}5%r4hH1nAa!lTkK>7v5n8mL>xHr>ddpb2m`+H3vRAyv3|Vn!sI{-KZ%{i~12I8h
z7T8H{+;gwW)#6k+9v+q+MBuafqLhMU^i3j3Hlxm=V?)s-Oq%j4f&6ESvMh`&OP?6-
z*~#tIi6tXbkLV8L;*VWCw6B<vz^_d>Cg_GdudWWN1C2!=?7`f6|HEHcjH0Jkr^UNj
zkITSze`6QJz{+ZD^C02%6mYZpOqj)GlRqNHHoJ<>dd=!AaY)y&-Wv=`NQby^#H#Z+
zz1)D8=i>LN8#WsLWQHt9<be%1RO%u3ERXDdcAB_e!#g;+hO)MW7X|kP=o)(tKk%Hc
z?{Jd_O$>k6{xHJEY{-}bC3K2WyXp{4xdWZgprI<tl?V5PiVI!#e0wB@7Jum6G@*fF
zdvq}~q!l*_@E2@OFdG%5YbvY3E_c{LZH9c$g6u#>wIAi|V2uae>NlvNB9PYqj77-K
za18HUGH+@d*8Pw_NrifFP%5x_JKwo~a7Wm9Lwk65@JD*`(*QSrY|$Y~H!g)8<?f+z
z^mab_;Upvv`M9_7Lh@ig%89}bcX4r}Rm1P9+WHdP*<%9|CO!3j8rp$ev|qscQ3w$t
zs+67~^czW#<W9^at!iQf@zG_j26NH^8kB)cNcpGFS^dT=RjW0(f`nHCZMJ~8Ur|a)
zI{sb}z&EO3D_>JhLqq>fOTOgX60NkaSEML2RZ|0SJu`S*!}Om|Y)~ZpQE<3EIR!#L
zHZfN9QTG5e>x&;JTL<AR(ozVjn&KNrXOj$0J3ttOc+$%HoYydQ>yB4}Rky_jhESIm
z92%REnvtScp%NMk|9*(1TS9}&5h=AyKs(Qn;a}-+lQ-{XuiL#p%YNVRhcNm--ynrw
zyasJOHC7q3;}fq%HmBbeqYR7h5pVQ)NmVPG#pyD>i-XzT@6Whjw4$?hy8%|V7EP+F
zAX~6du#ZNmn_gf-q_(0U|DtohbWE;2@#l-dz~<BM3DFr~V>Pj*YnQKZbRx8vg`18d
z0rvi#1_vH)gTp_1&6XFqf4(ZXKt=08BEhpp`6_~7O;`L}p|?-*lI(T3o;UPfOZJ$j
z5=gdy(~2-94-pE&DG&%z(pFwwa5}-)nNrRYx<Qn^x{Db<15sg8z5U6|D{P%XE;w9t
zN1Obr&XE2Y;Su@VDcdJSVJnNf`FtjhZwb+zKMU5<nmYp}`qPCmka~f4LhK_qyOS%A
z8MD(e3n~=?W^4&d^dXEph=3O5qM4DIZyfHZf1QOBC(9y}>Y@XGhllU|K<eA%)21!6
zc}Bq(q#TEIIo#RY*pZ?<ub;{<k#E%^(CzLo-Ddg%!qt{v|DM#q!paV0PTXCNpy0LD
z8|VSQfsvVoMe{5A?E!}5n)p(0S>)0299$a&J?n)6rGoAcdlDv+^79|rJA6Wh7@lv>
zD1)YCq6!}acF<J{A%wiF*7+AxEN%E=l47^)^eXN2`03ggnTuhk3j0ydkJikIJq2tB
z;9;R|iQALP*WTvX-54G-)y@H>>}OZN3h+0D`Q-7j6qi+8nmB7ico5xs^NZcuRb908
z=j#n%whdgZ#f48p7?KY!&0f%OpLrMww`juPRk^H^Gf$LA1UT@zxT>`(+SGsp421s&
zr6h%c@7YT`;2t(R%tUrR4Imu@^>OC_o+Vqw=FDEO+o*lBUa3gEvgDi#%_HgeXV}pD
zkTTdv1e9Z0Imkp;z{7ZeA$ej0Lh{loIh}g*rB`>JzG>WW(f1Q-t2k++TTyAu;`bnZ
z!A@qMvE|6$zD*W~SkCKOm`kJqFK&G@sis9XhMt3+j!fre`G96TScq%yZEIo#qm4ue
zs3fa+k^HzUj+nItMS8b)h#|EfXI>3jn-X1(?elhH7P+qwk^Gzo3%3hLEIq{CJ?^t}
z$?3K3c6p@RlY#K~Um=S}&fAwzch33U-y0S2Vk{jpm~P$ydeD^=!q#6ey9DV@+Y0!N
z4PO4E_DA`9q5e;gPX4{yv(hr_H(-Ivpr8DySUiS4qVbbb5o+#v6gCGk|B}Bh9<8m7
zFrb#VIhR2v@d;n=hj+IWj(A}lu^!Q!Y#r@kea3V>M(|W~5XP~Tl%?mT-&^}ZlI!yt
z$dJhg6CV7sQW~&gW0AtnQG;~6M!|pP-zR4ZZ%PoETgc%#CuDj|3!N!M#z4hH_;vr#
zc`ZObBl+UuG8dZ;17lQ0S=rU%TutJKit4XEk#&9_?{#3!V$r5P{Z9|y!~R$wuHZHA
zjIh4`jUsSVKcllw^=810&P+>C)KeSUtQ^Hpe?r0bJ(-9ZsWs`1VX`?{KKDZ*0zlO}
zSBu+PnDH;)+S2SdfU6kf@Oss>oiv7j%3;wH;Qm`W54}pk<9Z4DHk@P=hUE4Cu_fki
zcx)mN3uDEQ@aNn&E?QTj4tO|tTMUs_tbmR-`gDF?iwDkyv8u@i1EMtkbKAdpLXA#)
z4{s1<_tGGoJJwkb?u^O0w5%g$mBi5db0k8hv!h^Tj`B=AHp4wUY5wx^@>b{9oR+IR
zO^GjJz&sj9t-{BmoRBcv3<W7q$oB(xVZ<|%cp?}QXG<8{($JE{>4lX<zhmz}m&-3;
zq=9wi9eA&96MaT`W{+|_o{F}3Gb7QroemT&;IuZ|4?4UKiAo2~t>tE~m@_nYY<4t>
zUeF*wIywn|?e3THFN2jWnNUDHjb}vM!3Ht}Y=%p%LqPT26w4bwQ`=hWD7Ags3xQxU
z$f6`mdy;u#?!zfApa<}|U!ldS8yjy=uzY0};J{eQ3v+{T+XFR}18#M^JSj{Jr;klm
zrHF8^+51>@es8c^z1zo5zCO7Wu<5B3bGxkS%|HR1?Ew<Es2s@>Oi-f_EDB$%yL5d4
zBC?mLNNS4q=|W?Ky7uwXBF56(V98~jH~tq3=lh$h=_+NV8{U6_ztIfIsoF*QN&yNy
z&|hM%roKiqXfAVgzaK>yZMA=(%TOwkNt(9*)7)pk4E6G4$jiErP$(+sFW@qhmmq$J
zRwh;VvM-29dO`O+w^W20?0U<~ML2~5NTmwUGyFWYA#=wRnDrqt<g*&PR-Bj4MvTeL
z^UE7pilxhga?^XQ&~bihV$_c=BYE?G&ZOPWL@C{oC{t8*d)cj#N%A3^Qu~$!H}cIg
zVnlPNk7kSY%|d`u*xfQ`+O%Y?whg1~)l<vn>Bjj^@gE_neO@0o9Bu{)i)So(n`h?{
z+<e0ZT{R_7(?o}@tS@<CBhT8QMFNd9x9hE3)&SYEvI*Ds`J&TM7WelH@;x`f@Uq$?
zfhQq@^Pqv9A)9q)JY)+;bQ&*cyxz4~JM5N-7vU<RFy<r}|GCRuV6FNL>$aSgjhUq(
zoymSOzovhS$f{AockrqL^?dbrMv7D|jXn7NvF-GDfSyj37?SsV6xGf4t)`MVNx}DG
zUeE9TVy&#1b*SXKlgC_Zuiwj+>F^Pf8RlFCoyN;DYL-xqO1HXs`{i5UU%Ux+k%J4z
zBgOW}Wkj?64PMW^<96?sfP)VJ8if@y3fTN-Ypn%UpUtlb!PD$oCu^vdIJn+7x<BJi
zE@|b@<uu1rQ1FmCEpQfzC@Jfj+87-jp89PmOwXfoyf{uhfTkCE#)~xBe5=N0cUMYp
z_#s1j`&UC%%A(64ldK<h97~U8&2*!5?UA!}zYlAE7zJY&5s0>*>b5LTzm2cyc8JE+
zfBcYjYUF+>_FbWpr?RE$3y&OM%k>y1Sh>CCd5oV=`-Hwn2nneN!ZHu!fBKMV>Vg_>
zs;Ka5|9v@YtnGP>r-p@RnE!gDwPF+Db%rXU#WlykFk9Sxtu6qy-Jhn&ujWA0malEc
zfNC@5VaIy$;vh-yxh?;HS^#C`A|l_t;tU=`<1o@oTkqtLTS_aWQ=vnm6R_JW`JrV|
zuvq&yXX#_|(Pb^o<-7v&W0)R#&R?~O(YnWXtFLzY_UnrY42*A}Z71@C)hca!9uNgW
zq6ZNHRno9NET4a=6B)()o-H>#bf1yq9awvQz_2P3*E3C}A{$oU0?9rv0yMf4^dP+-
z+i*HDnlI(*C|5r|TeGuT2pJLsdi=WKqaxDjUxDbOuc`T!^G>yCH3O3^jHBsLr?`2V
z@@C;aj^jGYOJWCy3Gb?W732xs?sKTqRIGigh5Bk|YHB)HwEnQ*uWK@T<^w~~(-s>Y
zee#oMOz52?mkoF5(D?bv=URe{t1?Xwns3sFuH!eW3I4hFcKI>RX6xU{nN{l<s>UvP
z!c{sK8_%!ztZLc90qRhkD2zhu;E9cS$#6%JN6fdg(<(prj&(T<4COe=?Txdt@XIQZ
zV3+0n>hn5hByM41))3a2PO!E#pNn`{hrHG&hnhcE-^a0+f~N!)T7vVDxr~eyiT}2E
zUG}V<9=k#sVR8RrO_Zvsud|;jy(L(up@@CURV&f1KSc@;TJ<Xn@su5<bFOAKHqIeV
zKig)z%3dEO(0+5@yxEjnea20*0#!1&?AQ{JN2-?CZM%0?Y^ZW3@tqV7Dt<Ebv)B1_
zcP5*Z2|38E1FSl9QgU9nwl(Au1g3Qc$=EbxLXv#JPXJLlDF%ADA5CJ#pTge1)%jcx
z%`;@}pBmDfhb@YnIjmP2vWVhP#JoW6_Zr~ntoglu2HN&9(-P6}oGIK_%k{Y-kJT<(
z@zPN$ogD}{Oa)uUGEI_TVPdvzH{kZY#FQCag2TV|{icW@L~s2{>5IRS14LiAxz&cW
zjR5%b%bl%^4D_pFB-#|JoM(YRvpDfUsJN)N_`PZNIhOAfLU0<ik24vraLYpHT8d18
zl702-WgyQZaBEsoT80VulxGafyfX^nh4u#q)iA4j>qIH#2mHmpnjM69j8C^YUirX4
z#x*(Ebac&n>H`HWzBWd~#zn$?e-_wK0ZGHv(&lv;G;oSiDVTsM<}J7;w{eB+ogrWG
zvHP&8A@p(m7T&`_e4GFZ&8k_w!ucV~Hh$#{vP(#>yS;Vg?EX4BSvJ7-d0;$gLYjJR
z%^t~`CTSQUCI%(Vdc2<PjLoW>o{-z?s{6U&#ZH&S1m7M~oO50v)k_f}hK^xqgwjgl
zB4UFDa-+&vEcVfIhC&oK;13#lmC4Xe3eX(%Khh@jFAJnoBUn%<8qh_U%J{?XyG_nP
zcAhBCdo=PL?}l&T+3O)Ich3T#8mzgy3z1}15R^)D;Ir-+C?g<sCAkYi3m*J^N)AsP
ztZnK?U#)aI8W1R=k_;4=Wo2iY^-JO7D%TM6(&|h?AYj7l63Y4Z&nL)Jx&&5OHWUke
zr|)#V`0p6<h(>eReXAk}WWgFc3s+ttP!(|eEFaFMTjuqb-3d7_*6F-Ym+CdEyfr6=
zlhW8rGdL}^EEeV)f33{SK#k>7ehyw2P##_7<Do!gnfi}K`8Rz+AjGZnsTbuAg=?fO
zP)zU#E{5sBxILe+<bJ+Nv2p^2XbuwGB+=74$vF(5yaoR$`Rj<^h7v5~dwCN_A|PA-
zg+OxcMdyHcO*3W5rnqB4<m;dSQuW)X8h^2Tv(FsV9&MA8*WuC8c?tt0`}~Fjee*0`
zo{G6ec-39p|9*sPLW3|~V`Bs^k^R?dN@ixO<KF-b*R7Ym8nnOu=G(C8xc_^+D4`#q
zLJsa<!v|Jrlw$P9jwSP#{Y3!6G5{Myy3<KR3f%1aU;1?${j0GBmdc62`6t893O(La
zJ_8SM->58c(Ey8+YYD$smknR8_c4)_R)61I=hV{NQs3CfN_DX|a%S9JD0gX7O-Wk4
zc=-zbg!P>5z&;+gMwLHsQ|eMmK&-bqmD^ItFA$4-3iJ?WW`9{--YesdkIOF6Mqb69
z7xDj8b1f+;xq}!a*R&nf*^a5!8=H?5cefzv3_RaVojDm-i)E7rF5H=mW;z^Ok#RP4
z#x0J>v^H~qZ<Cn+op8gui?p_3+U0EFEz1WM=r{+UEd`n2CoG=%CTFbrS8zu6-b}Hs
z^<I=E1i#<l)H;0kfJrs5cFT*3^iAroFSr@7Q@!t6dsx2yr#IkcF@iw2WuoZ@^$w*x
z{a!B0Prp!bn*FrJGW0=C&dcF^@A=^Cx$C^Zui6+PDi9F{$=INwW8)bcO~c_%llwDw
z7%xL6_f)-dY<VUmm5P*!hJ=O#)%r`a{l;+)On}$zR(M?o*u0%2^v;IP3hkT*OWy5p
z&3-E?7>)BAd5>PZOX~II(up^z*}gR|6aU?za67+VE^!13vhVfT=<wEDDw=7YK&xMg
zW{KOX7qUu`3L0p=(d##(2fn?q80S1os+XjC;{-`3P1x7|kL>fHr4Li}h*<QVcvp6B
zt&10znssJAIyx&SDboPF<nQp77puMO0W{7Ahy8k~c6*99xAD`Ao9*(=$!aVm8Sta<
zx!oHb%K%*^f{;)2TjXpt{2)}3s6=mmzS#DE6oX65IrqXh2vWd#>}<mUE}C4x2kkP&
z{nKL&)K_6i;V#dvsNm%}x@lb!UfZ)N;ph6}@}7`HMNGbe`=sY6$Gk|~9z5n*tHi#J
zj}6y3(}zor&8lR0M^T*yU1GxxoRIyO>?T3Ze7QwQF2RTd=r8>R_V@<Eo#bzg?(?<_
zP^eqmuN@-rRI0^2J*eHn0D^TinZI|njN0UVT)*+g{%o`lfE3i#GRjLx;c^)*w745O
z?~Se3n{Ee3CIR>+m<km9i3<61J#z9s#YraZ`nTJwT^h>I2tn<1nhOBR)=};*L{=MM
z!G|K@%(Uwhv8P?n&yD`WjJ1B2LrG$>?0VQ6<@@sn6f&~gt)%LbRD_62pk{|tc`F|i
z<)i)6&tfY6Zg8H54$blu8XsaxM$relBfxz+V*`RLTYB5N7ssvlBuOqkC-G1JTo0}M
zal+CT5mMLV&)l?4{@WgS%w0{HlQYuIU0>*)$b1w(AZe~2vh1VjcMMJz6`H$q2P)3a
z&Q1<q#(sGxb?P?-_GDjy9jYYS*9@_2+m%XkF0S3H#1dZm2InL>v|M`4YFZZMW!2{J
zA}X#Otf02;P~;RocR`7P7OS(f=Hyn%?GQiO_w}Q?V?SIrr@<V3(9MbS*$T8dg}Acv
z^lZs|-0K+Ki|fa<L0kb}Cn>9=(v)eSQL@!&ml`5F9*^0{$lJRV7%oISO^vM9>WyQi
z&0{$%rtrrQ_z*8R9K`OAT=6qX@C6zZ{z0ZI^g7&hpv(ghC0bfl>RI7-Z6?J{C?TLD
z65$8Q%u0*7cw1LiUlawBnTg2`P~MQO1mH@5*Q)gH(Bvf3Xc{{cCL937+&bBTa?RvJ
zwVABug6asm3kt>0nGV=zf4V#L9C`jG($4t0cdD)XSck{&&rplipT+BAwlL8-H>U=0
zWB{%xbpjc=WrZ;lCc<)q?RC3=y0(T^$F}E2Bv*|&8r<t2%Fh8}^LLPf`BRiL=q@d>
zK&e4?gjktUa4YiHHFUUFi8jg)AqK8fGl$TKwl+w(kw~rHw@%CY%Y%nw8Qip*FEl-1
zw6MJ}XWmrb0|fb8we|bwpM_GAvNWtU_O`|Z_j>CN;#>HqrZ7<u8R6a48|zXrF?Vi6
z&1C@c4at83m70#N_j!Uox$zhT1XKRGt^Ni)=6t~JQb`n&G=7;6Qz{?$w2zjx3&6;1
z*jtpyo);E4siT1euwD0gvAm27Gw;zD4ZYg3_{y%ddRNzF4vGpnR3Eu5w@X8vd!AB}
zzdYf??%j%orRj2;HAD6Ul-xmU?A%=->Zc-3iWc8ovpPIhQ|4sLqCp^}9_R-|4YV50
zQJm|}PX@8DiFg`o+}}6FQBMZO(Bn=~ak<_uUwI7A*FN){uj3^xt2<fEHRm=3*NJ>>
z^4T`BsJv5qJOj6ObqlAb>k`nYs}7j9&C>^kTFKv~YHQS;PYrhsk(1J~N&hMWi6^G(
zq%|CV`-~mgyLfM>OG+b5+G(%PtzLel2A%_M7){L-*CP&oHv=p#>3jY_45M`cPnQNg
zVN^o>KT6crGsW`e%vrDx0*&q%)Rl`XF{@t7i#&>dd!7#fcK93jfuxLzNVa{k>2kTh
zJQ1tynwo_T`lq+ErC^LK$F%>nSD+RD0KQ*0=aOdQ=X&qpTwh#q?5IHl_+SWxU?WS*
z$Lj^A$;oqJ;chsoMwPFG0(K`cx=YxNnl%L%#;=PkKDn5>&E9o>?`<6RtKmQ?sa9P?
zN=i|?UtG6RVWGKNg&K0sCu3tnEv={9WB%y^Iju$yphBb`xW`pXn&ZJ%Br4R@T+OYB
zzOI`$pJ-@!;M8(SyNz<XKsN+8SC0weZw;d(bby-dHuwBNq}>&dwQRnzm+KsIQ1a4l
z*7_co(P%veS%rEOSR;_EnREB9kRXfyl?PSDS*W%u_U7&rw&J)ZBQr|cy^h1ofG?Yv
zUa|uAWaFnVu!H>PHRdJ~G_=dip0q#Nx|)bcVXwo#Tx<GF&j)L>UK=l!eTVm=>|w!J
z+9XwUwCIQZ=r%%E_UsW2?2;*nSX71=Ep`|R2(zMmVrHExFuuncC(Po!lK)NFy*L{^
zjB&sYku+>trODW7Qgy_3ana=EwmuduN3ROHCBnqPj7NKKGhH47_UZ2ROMrd4Kc6tV
z0`z<PM84b>P;;rug~eX-w=NGzO!!?SbKj=H@U}|-OW0IN2Oc1Sfx-v`#{*;a57{}A
zKsD<R*t~WnWo43{3?}OsUXBD7&{zO8;+|f+mtvWsxR^*>hV-%HNpeF|%3`PAy;M*9
zOl_^I_1t06iSu+Js9}tMo<YCS!*lg1x@5jQi_Q6IaeA%N!clH)Ocw+fBsD(V@xkdU
zKRq`S$=uKq3WNblKjl~6paFtDf-X@Bk1m(fC)uyv0f#QB(Pdyt(&+Bp)D&xmNpnVQ
z{`oP}g2K2{UcasN9NB%?dv7*e*9;ihz)aY`DpHX9;C)bHI-J*CrEUKix!GR$<q`-s
zV7)aAL<EoFFaLrEszry3CJ`TH*?L}WhOyM6jE(TvKPV+2E_VZq{qJ1ixS$-5k&#})
zFF(DOhlWRRIWXR^fDAEta{R}f@#EwENR*2+jWyg4E?z<#OjG)>@kHt`LC2zCDo)cq
z_har>pRgm+uR^qCw*MU)kuFj`I#@{+X9W5vR&aB33;iFuzB;VR?%P&Dx;rH$q`N~x
zK)R$mM7nzeQUW3+-6btu(%=^9lI{?sVbcwF@qOoa&W-2(t<Prf_g!no7-P<XkSAas
zkfk%B5T~YwN3U#Jtpn50roS6qy}5@+T8(R*i_N9&MM;#e_a0~{pTGZ@ePgjaOy!6*
zNu!p;rWGdQ`Vc53V1Ow-0K>-xE`+LB#A*M*0;=I~f5d(bvWCl5?>4EinW{L{X+n+f
z<KnE(8LKx`5k2o%Y?AGmX3x^oo42&G{M92PL2Ya@xO!}`U=z#T?sbkVcFQ50`&>^{
zYT5+0n=|#ixk=Mq<#UXyN68M@yt;ZKX@NFt4pz00D*5hdpq&Q4j;4H7G?x2LPY;#k
z?r--d8MLDrL1HiM*jf6S+B-xwNte_F<#CVxvw!;;(<Vjw@vgD%n*-%LM<x|CE?Qc#
ze;w*$pMs`C%=O^*D~dQYzZey4JdlEL8Zz2a$&rwVp@9$2B+56|Bt*m{yAcywn+w&z
zRs@RmBo@um1n0y2uj(l4lKHe!eLn_ICuUN@tzyJU(t72n2B)dkeW`c#Ta4nRcQ0^E
zscF=j15b{xeo*H#ET1=>jvgkdm!zES%ICfRl0nWFZ&)QlOG|)BXh`40NSa7GEQ5on
z!8BRY7eS+j_-#h&L3sU%C!zy3NGw~za8@q+d(5w2hgkD`^zb;DU8xg}?8e!ITt*C-
z**?_lx+pB?*Ub1B+t(t0R`N11f-Lyv@#xIY0JQkBS{g#DNm~BJd}Ai1H^{L1)fxlm
zeVZl?b$`JK`UmQEQTM;!^34k*jiZnwdwU08V3&I7uq2KC+=JrPlLi@G`ZRl}k=>C3
zQDj<bkF+&(QC^u%Mg~s67`j2yHSJ)b!vXPp^|AI%B%j*q;cs<~?*_CNr1jb2-l|*b
zMk3xkK5H!8Xpv<^%6^QTCPuCbwy2@V{shQ4-)hUq5VG)Dg}6QsZA=s|u1rQUaF|EU
zoz>LV1&A4oVG&=CC-lEvfG)R%ikD5=OhuylCMPC7c&Yr`o+Oq@f9wbjVEtwXpp8?O
z;eR?IK2cU(8l2jcz20z7!CBppj@TxfE9h4+-^Nc7gE*i@a8!72_S+GrqCd^b&9N3l
ziA9PLmz5-$pt^`i!8-3TJSZpZ|DGs>29)w{9_573aeVG4sPpPjLg~%vM=<>H+>TCh
z@>mkxb_tjd-<fjhF8X3M@A`JnO)V|_xSooNyxz1QYjBN!XKx~zKNenF`{$22XxtUv
zD6^FM*OR(u7%oKLx8$!VfHWUWg15HRXg7VfmYVOPdvsV~*)k0KvvZ$G_LJxXrL`YY
zlvuzHtfi6tq)oHKIkMq-%i*1`p<1>mUnKm^TK4|#il<(C^0iMCn6p-CdM<E%a`;qP
zK`9t15W7ELX8#&SRpjbY16HLRt;a2Y$TjEwt-gwHDE*!z&i4oUaCad+!%G6x_P8pU
z^6RLyI+4}~$M6dQgM*wnJXaMP^_7>9Y{F*z-fNkUVJT_4KQ4H6&3ap5ywA!web&e$
z1cbR*UWoC@jF1JUoL?7k!@8#n&0}URaANKbCBG@GFV#VgCgK`0ecaB-!3;u9X4MKm
zf)%*me%GUwG1H7Cn&hOne;3n}LyS-h_WTq>1Q^1)SDUB5EfmIY0$>Y$nX0p?#&+?e
z66N(36TS-^sIacpCMuTk?;*)NPd+MIr$;X;KfhxTQYQ;}B{MwR?KfgvHo*8&yUamK
z=goBK<Z6g}*G*A>`E7crWG?sCT)RxM=4JgmIkcC3Z+bB8im)}A$@F8io?oMr*8A?J
zjr1x**G%F_gTQ-x`BNLgvC+My0u)TeZ<!3K)1gQ2$D%JK{M3LOc5W+J0ITD*dmVby
zSTD-AU4d1yx8v~6!Q0{?45tdrTV7+5zE&1LZ9%~5McEy;1+lME|45<h-G~omueSPL
zt9$_*VgEbV4O9|H&$cp2mPn1ZHq!l*t#^S7>>^Y{W$HE^*uh!i^aD`I<xcqFFOtE{
z)&0kOlE-b%s|V%GHeQ?F?J9kV6QXyX7w;s~`K%iEx0>u1xfU6h$N#d0cI14?*fU#B
zIIKTe{|Ur)luI3<f2bdyU)L)a0yBlYkY|#3$OUHRd3{BNg@3KB`z-PABwKZAmGf^r
z9eM12<NkgUL%BfRj(5d}wr<#lW$g=9dLz$K7qP%5xcUHke;%Ryiw~=@`S+ji+)sAG
zmbt+^0)0E1+)U?4lMhCksQ2k|3aL_hV<@Y+t#-sE4gtv%sG}DA2!u*AYa^<?ouJ0*
zWoE)x>D&lifc1glG3@B6;&G1U&=zBtw<^^qlJZH6C|uX9jLYdv32Zr&D)jO6|8JKz
zvHoy>PW)Yh<N7ra(YF<^ug?`*Giz|4TyVx&$Wp87IGx^9h$0CI2&L=mye-#ahHVG0
zOtb$|%y2ze&jkr*Zcf;nat>oN6s$+nYuL6hb4ZPkKU>?*2U<x$&$w;<MkC!5x2Thm
zLc#EVTN#HG27NBDw+U9W*b=FrC@Ic+?3r5H7ilsE!NF53b|56STpXifVL7{axPLQv
zOPzdW)PhZMoiu9XZXmbOYEY_WUZv}3j8G%Epyy7u4YvYr2NS_@OS^V&(VxQM7N;G?
zZ&eD3Hmq|VrZp*oG;xP#kw?yBFxO)9#wCw)WqhV1F(Gxf<PJ=qFW8jRd2eNj8h5Jx
z#;sBVx_;vBoWp5XcXp=UZl0ilEW}mPJU$%eIn9<adZ$;c(edW)*N}Vq#;T}sCC(qL
zgIW0otx9KCU*DdSB1|dT@_EmT7QZ$>E0y-n%fqMvcdLh!vEuq!%m{(7QA}u;-E4)z
z2Gc=^j4w*o;ThWc+aZ{6Prl{NPCXe1@#oE__h2IF1v3=U+1<5hJQbyyv$4WhQALIN
zLJl^cJe*k8{I(L|>d8#i+XY)b+sUzT_VB2P6(_Ie*F=y*RRI8JWiwlm@!P^XQnT`I
z_v<>=%);%KH~F2oBvaf`?@Qdv<0D7ePCKGDMM=>9+BKFo8q#ww)-9r59}YHd8(p;G
zKP~FRI#>!h<;rba9$KnhuFBNEpQv>JkFr9oOw3|M<I7sDG|i=5r)(Od{cFU|ss|n7
zC;5lQg6N;5^G^Nd`87+lpffW(vNU1=$FI748JN=YkvzU@l{maJEm1F7VQybo;t2x1
zM<S{$!!+38B?TLsx3vH<h%HmpXlv`D5yB=B0{gph0!kivS6aq))tT<vfX;khz(A@f
zf99^Odc@vAqz8yzqT%A4`woip%y`em;X*5yNpH$-@-XB2@!lQ_UzkRB`LB)Io&+0$
z%wb{<i@o&Z5w<Kb)Hs<3iTv7HF2IwRyLwX$%^Nm39fSX<q~CD(+qLstiJ97jxz1(j
zLcPc+K6Y9HJ5%x*f*SU-bxt)?)#24D0`EK&T3TvRZP1aaP|hO->{18OjU+bO&6D6d
zwmj%5<&PsprC<}@GV#&(_s<!z;84!grgpENJ{Ku99ZzbGoJL>p0TX*)G&Vvmi4UPI
zQJ<dy)o_VMhjk|u%X=8K5htH7n}>b?3kEpq&}(X!V7VA5FO5ssVAX$f6R~?kM0Yha
z<l$E+s4sSuGMTiSoUS>%r`la({N3pPY~AnA>gIW5`ZjFO+|7l?t2(^1yt~~Fz7ysX
zXwuxD4A24So#gF}vgq}Xmmh*#8oPc4!oELLal)k3a$}(sfh4A)D&$uT3JIpxmb<f_
z;UEM`jKF_Z8oI_HRjQE6Jv7W$LyL+c<Fj_&|NTb5b*wyDdslgJnEa-3RK;AUclYa0
zuNcC8h~xVnLhG@@agcmXTeg|-o5NdKJFkM~+{uhvAWSqoGn3^qcl1MjE)+3XtD=HR
z1!Gr~EnKW_iwm|BB}TPN9W8tV>%XHHuVDyq%eH~iBsqj<L7HErs7~*gv$HJ(x(HAA
zIB&Oo&U>-)jcNGRD3AGiA1bgiw0~_8QHP9T9fB~A`zBhN#{U{-w81oqyx-Oy`q`ho
zukWLH9JU6as+h$7if1EScA)qmmPjV5zil!4v(>ALY?7n*9=5x}&%VP0`yixV&6kKY
zMl^_A9Sg?FOWtx|U<kD|J2%B@VDL6p0V9%_hzPen!>3Pbd)i_`Mwwv|;$LN`@rsMM
z-Z1hwf7_E^Vn~e7L~!;3ozH29Cq{0``Z^q^;O#S-9@TZ27i^j`$keOo$eB|<5p_+m
z_g?h01%)nF@Pk2JL6rTQMv6G!;IifNUF`3LFBoK`L%{s&Z6j&61EDB0`mA2I?Pgt<
zjluoB#(TFku=b`pqA8+;Bx;zWaiRe$9W(DIs2CvaPo^07gd`iszTmB`oCd0we5ixG
zlWA^B<kj@3G}_EMeCs7!Mc?ShCh@JJ4C_Sf_#|}WM?<-8BXuj<%ngUHygJ+q<vyX;
zZJyXLSQaC#VMaU#C9#6SKH@jMa;+i<ztyp3sm4~v^{F$oQOuu{u{)mbW!{HV^{tgV
zx<A8E-N{0qA%%AMmW{oq@?v9plcn9|{>Q~T0;Rg@`3jUA4`oxe_@ja2CCR7ZCj*wS
zK-v}r*)3tZczJwF*Y$rIUq8WWok6o|>N9N+B|?WK5u;w@MmWFoX+C%<-R<rQZzB5n
znPjTs-#xuV2&%J*mjgqlcU&M+rVM+7%aBhL)!&l&oHv=*bKi+vN|Utse8A2+#*4vf
zKM(=!X6gt+62!DeB;>EWJMRFU2VF~1q<<0Hc6jiDS*lK}yA3gUfQU35e-0z%zP!hz
zM$B7-D>V)$`;sN^^JmF{?%7#SM<e<o1i1KY`k{{|Z@=UZwZHP$e{Uw=j;}MrLHO8G
znS++XM2P!DYWfHEhc00{v<S$J-g{i_nH18G5Ely<5{qe58fI?1AjP~+-Y>CpekVJ+
zkyDu~KYxz*_{TbZoLPds?nLcb8s}dMqiA+V^T*R{G##JXZ~1Fs1?`DYlubtP%QT6o
zeXU5S@SyV&IZ>aqUWfrL?2qIl8hK^8xq@6x6A~I4?QhHyZbdaz>}z9fpUleiw<m^?
zHA=GJda=3C$_@dZ83@kw+({*sx#(#WwPz}9M@Zdw#Lqk6tqlMo>r|0a91iv_Nfs}Z
zPv<1r3mb}Umj8zz>a`a;?T~uMPK8}lRdd$lLJ0SxkaccWP=LTr{$Yyy+N-Oay4T2j
zi?VY14n4MHxF1(ncNS614_U>y-7Be4Dn8F*Bl@}RPogiG)|{y<=6JQ=et6{Re1WpC
z@ayKOV6IQDs%<I6p50mhV3F$p6C=H`ubo`kaTp{9v8-rN8&FD25XVQAP+MNH48IAF
zDZowuvS2A}<phk<tZ7XqOB;2FmJI3Fu}?e5NV&&|Vr8(1&=FS1HnGc7#K)&Js{MCw
zP3C<ILaAn()?#v?O2oo9J!l~-wY}W>N5V5Q-e4GRA>9{pxet<G;&pXC9C2}U&UP<$
zRdXpqI{+Ysgn+nZ>}FvRuFmGT)Qp$90V<f<%Jp0CM8i@ot7?Hcqi7e|a4O15xa^6F
zd19l`l&P)86}|sp0b{cS$9bT|^#4P+J|7s6X;62yo?&-codmbNv9P~lVr_40Z*KL@
zL3gqok)2<~c5{WC;+ineI2`4qJa<)p#7UPX4rCVH7O_xCUQSNWGOdA}Sw>C1bTlk5
z-~sdiM_w{j!?EIF<)ejC{9N=rwN({bWkzZkubxm69v6D=M!N~Y*HnTV5&NdwqEhWj
z`XgeCmUGyYiShU5$*Klts)3H%wg8>@jJ-&!XhRXduPdQF-E1^8BE&8YRrfG95xs_K
zI@MKf)yX!(J&757cT%3o4!BsEhMJnn^)0y6ll}?^pgRmXpZJhtxS0j0a5bM#l!z#}
zM_jX;7jM8|+amz{JCG;2scGZVx}$0)0~DIKhXxET=AR{HJFp<v#ZuEt?mN6-u4r#w
z`|9SI{O6c9w*#F`iaQ`0`<U}g%o|&Efl)e^Nx<FCxah#IXz(5*DKRY#a?;;4Qf2_c
zJ0P1+FgS2dMRH8XwEzTbEaLa9>nf$swWjv93dMpF*m<O_OYRW-i*?R(yIhUAwzg&@
zTMRw)-}Z{QCY-#&cc|Z9$opWi{a~B6<J{1<Wx5z1Wwp1;Gcm(Z+<cb=^WA9^q|m%k
z?2Oc>v-C$Qf_7tC_pqgdsi60{nWS%)WJX4c)6N#4e&_UEb4xrjMFX;$UzMmcS=0b2
z@vilH{}tYT%Xu2d9T93&QqmW<oh^TF(=KgTI+brvKh!@BJv9q})g6$d1eS;6iwZm(
zLWB3-)sf!=c4a_W!k}o3EC{>ttY8Qrm)$uiFKa{moWfyF{q^GRaH074h-OD}?7iD1
z@z;VvCjmQdq#nNKJ{h9kPik}l!iwRI_hR^E{ZYY72p%(BE^6Q0Fv>ka0Rs+l?qNpf
zPcG4Nw|`7k)F1S6#@^fUF%+HNdy!!(LxnY6syG_G?*2x-Xw)D_3?BRL{0Gn{^8N3m
zRYUq?T<(Wn{T)R$Do^q}y}{yjy-}YMub~a@(qvqheluFnZ={|eAN*^8QEj7@>PDL*
zA2}B@QJ&gSDs+MBncO4M7L_INFVR*+&+v*DF<xy8*8S134L9&mvDY-oO<~6xW2rr`
zM7kI~faTM3N!*4Ay>cd=pLahl9FXrKKPYK$F?<~zc_kqgkOmpKu+fxeysC?tF7B;b
zv3hzBCJFIxP6I0uNFz1UP%J~*X=UKdCFj)$J-nhvJ!8686Sa~L$uTSOI|#oUEFE^R
z>tA&|+=<+8W@TlSlvwBH&WZ02D=Yu{_2V<TU*itSv!FCy(6IL4We-eEd0b>I{`nOR
zRz&%q?YQfuHN+E`o0}ivEfEc8kM!=37ntUM1Y37qyti-Xq>2q*HZG&TP^t*pD21a|
zRpUJg$_ZzrcCV-@&PXn;`u-d@qIpV_sQ@%Mp#CLMEQ~6b8feJGTQfHn@s-nJW}@PO
z>?TfF*}V~6StK!<jb+V94`wyfHNIVnEC|4PUEU#YIZDsV%Ue0#87yCvo~}Pxvix&!
z;TV7}RnqmPJQv6iR{Q`Ip2xc=HgdYH!QAp4eNUW<j<?=Ded^%gK)b>q@c5~b(U{s;
zT-^2bpxsQBY2(3SmWa0`q(abjGn|WCzrn7+O8WHb<nIG8{KAIE1C3=Axo8!%Uf!J>
zO(8si;(GN%IKhN{_5fzCqx~MapdIFVpkGB6YyJ}CU;BuDd5xHNNSL=|I3y_JM8gmK
zdBNpT7|%MdH|wkGsoT+C#5O*(8LFJ>Gbu<Q=dwS0*&f>{@lzk}trMpj4veaQX44Jl
z<6}UPvUvBd&Svsc_q7FfIN%R?Y!;kmsvhm$_JN&Q0*}LQuZNDC!{v(>w=4CV^Zi_l
z_2M|GFbvz#D(Z<;F+ZUMaxs_hO7nacX!SOetsZxzf}&sv&44yL)Eq4R2U~qDsMCk$
z+N@%lnyzB0gL4s%IY$SW4{c_2=Iw55$+AZt?qZf#-!d@BGTQzAx(ys1!TLt9qsDZo
zFO7&T!_(DuzS{K$DjTyiQNry7qtYor!J{_-{(*m4jdh;>1K22=AU--`FfoG%J6mN6
z-2m=w#%(?a3s>5eMiQ%Y?z?4gE1j=?7r0uDM7UInp1<Fzw*FI?lanJ6jL2$y-xG|4
z1>DQuHn~^=6Yh-;b_QY9YL3R0DnW}{bj0y~`S~zQs0;=Y2FXID%5q&@9pG!Mto*jD
z6qpi+(gaWD>dTO@D125Pp2#QNRZlD}u^l$ky`TqgzWQ|}VLG2f^rz2?N($xb^*dAc
z`hN#gT`z_Wd*l<Tm?(IC@GVNq?d_=K#GF<-r^@FggM!I;ZFt_tPJ@+r;CWBCdY_z;
zO)a-<UhGUNJpNp!3l8|l1^0=GJuws)TT^~L%fbd_nxbx(qrfFJmxGn}ZGmREv@Ukg
zr|vlicPj52a7sfZo!5S%u*D$t&4A@9)jBMR^0~@B4vud_$KQV^clh%wiUb|8j%sLJ
zut@HOdfDVQ$@VCmh=sa$pe}FUn+T4$v@|#ZlWjn%WB8MymuctAxYM?)z29niM={jb
z4?KR`obDw@BdJmq=arr0dV$xOiE}J-bX26PYo+{Sg}Mws_=NV66=$U7KAEY`hY@dW
zob6V2fOWs^dwaK{%CmEG=iBo|TIG7Nb97?p{ARHqJ}?0L*i;VZwKclP;Vi*M|2v-z
zqEk2<OG}K02HWW@$o0<T?&v7Cix68y?{G1wGZhgdA6e3NB;tSmm@yRiv;kH>QNB;x
z!QRpj2FpDId#7jHkX%Yf;IoN@S|khBodggD+G2d6`95bmVE?f{@bTOpFNzo;I1!U6
z(2@{Jd;COyRj+^Uye2)^(a&z!JX7w=4_q_H0R?_>aX}Oz4O92=X|9jrO&{XoT5HjA
z5AD3{-(beRYp|QdE$o{eAOB6wSEyc6`0gEyhlS^xc~P`T7EbmE<rZ)3H*;%i-Fz90
z6l4^XK77k}n+bLq>VTV0k~2|KR8lf+vQo~r9?P@b<ttyMBaEDFG&bH{$lw5%_Z0fC
za}5(-_2Kg2Qk&I}5R}Hl1wq%pJU<&d?weyF+uwn3-S6gd;WRLuf5rKgqT6ZH$tLD=
zF-@>xIVXpzW_YqpTS@Wrp*W0E{NBn76~#zawkN%vAB$YXYv3ZuprVavx_@rxLfl{6
z{qJe_01<pP($aVTOh%OV>oalrw$tUp{<q)b^UZa1W?GwESDi1G42_MAv9PdG4P+i)
zyf`-M^3P9~W|+Wc7USsN53t%7(EoqdTybi0NmVRR-(a=iAcj>s#2T6Ba>%l<3A|$;
zWX6efSD}W_04p^rF_Q=42Q0JwF4)7Mz>2|J!Q>@Z>ZyVQgG{jq<K{9ta&9G7JE1%^
ze5)zcM}T_YclU4UWEl$hLdbroG&7Jf_BgWZzZjm}T-<0f9qX;$*@U0{19dV^=(=p$
zw~`G|WjY>TyPPrU6McRC3)pFffazL7pT_n1J}o|S1pBW)NAd-kK?Vk3GtOef!pT9o
zUVYH`&VTvq0F}ThkjnwL>V-B>&xOnE2ZOUBMg=!;&%hG&i0(CvbUwut4jd!BMt{TV
zD6edRBeqk+rLbu#cE;uQyF>Gy7#zBZ?{Dy)8s~Hj1FuPXMPe*GNTA8ck|^KQOe4}i
zrJyA8TYRwXM7`2TbiUp(V55K1TBGQ%#pY*{J3Rb;iyBVxsM%(BTd;nf&A9z{fr8aY
zR@UZ7=JYbyxL(BfO~2ANEp?v%Z?05W)aTFPxO%N#W8ZXZsYw~YL&`mt&mY4^&W&+f
z%mTw<(?^0&oofHGW{LXAc;KU`2z%@yqnLvIq1SF8%J&HY+ImPt<P*jRIx}Z8Gqd&|
z%-R*$bXK-j|M0RK=rXOy+i{0ay1a;~HK)WFo}4#1n**7Izu|YMjZXx?4tBQ2T|rY5
zKT3IbDZdBQMh;g?dUalE;DKEn%t}F$fUE8iLQp{mYx&!<sa9`SED8}G>*E(-!FY@3
z0n6ovc6h3xfx*4by)0dryzZ>7@A+Qa;pW8+We3`2(A%>61i2THM69S-G4H3o&3>EZ
zwzuC?A6K8Q)IZ$a)t^{X&J?S+pXbXa6XP%}QqC-&Z)mU^!!4{dYH6_B{taviH7j*#
zS$H7#txY&MajIgT!x>9p=kbl-&AGj#q@;<-N*q*{>1}D9)7XzRUK{zZxQBljJoaWV
zd4aWJz~=D&UsgSkoM;#rtga{r&c1<$Dwh)L>QC0N38#*oP?SW$7;?yH(F9YXdVy;1
zSNTwMOp?!mIFgn-u5c?L3f_T&iuH0M+1++p(hkWv#|le@vBUq5&+b(D-Qi6Px#01I
zWe2$CEDa?#2b2ES);xlD>wOx?^breWZc(9g%2mYZKJkT0#?RV`1tB4!iIew!Hy<%c
zT756FEIZgwE-om!yuu@@tJ{L5AduUg$uiS1+v#sn;o)*`-Z+CCT<<$wSEAwP=O`#B
z_*}^CJ#0lHE>119BDf%wF6<<ip9L}4^zP`F2@=vx_OIL1-AXj-Lc>OnMRwrJbn-o0
z)Ys>HZ?P<_$jU=&ijp}=$`aXjmVEdg{$?agP#E~+kR~=<WCwh~#Z%4}G&i&1^6pPS
zKm)4V`7gjw=bKSWv+nr2P><sXz*F`}$#k&rsg!G3MRFye3MztAs-jk+DHPoI7nWj|
zWsnxk$st*+=x5D73Zr{n07Nnlr0u`}Fmq&681e!e|92<>1ioUqiW+1hL%H5eUr$gT
zD6`drmGiM~N+Z3<sHj2ia`K}_vY8oQ;JP@ZQ-Tq_+x+k7>F5YtdaJ@?V`B+f^>FAK
zJx7*OQc@Du6M#vsR%M}KT}i}tS#ss?@!uvdu?}y>izk4ODPOsMI%)d#;z`+>UIADM
z6+<CvGo33s`=dZ1IqR7S&Sp3krH~y9PXlzf4o9-s?2`D7v}+kn?OmDyefJhou4Gs4
zQ>1W4+P5W|ohY<$j^wY96AMQAo_Oxf;Qa3Jy||~1?>ks%`or71TX?8M8uiZBw#B7e
zo^hcg;32O&GA}P5T&3U36Zt(cNvt=S9E!>wNd*N2ii6n?1K=L98MML<7F!<5Z;fBQ
zdexpbHN^*WEQ)^KSHvD1Bq<pb!Tv;zExtP>Vj!6v>p7p@eGo#)%f4Vlto!Bu#HPqv
z8t4jE{p3!NBe@pEy(Ne4Gsz9bC{o^<n%cblypzP~GHrG-HZf|>K=8G(uTC;$tcoW~
zGxikWs4YGKdyDqb1bOq)w=RS5v?2Yyo6kD;g*`reqbIom7Vq|8L$IibFJodqsN0s>
z(~mH={(}YhA)zKeRJUrC&pn^>WaN8tFH&872->NxRTrzllxlzIwHE7%m1lll{#%<#
zuooP|S}9lENr3zZhZBuBE9*Y+BZd`-m|cbgD+<QX(b2hM*1J=cJ+(Ik3&7`;MDZ7J
zsXFn)1<eeIJ6R%rH756Pc?mpr6C9WJPFh-85r2VZ5nRi~M#t>bR9%pnlUa=5LV>Z3
z-xb&U-6Z=fCiZ*#KCl}NR2F#1xg$R;oB^ti90Epg)gy3>8T;Zu(XYuTwu!rSb8+yt
z%*g)gc;o*59u%xf%F1bC_SbtL5~HE2+}+-;(0O_`-rV1J^C3uldrM&lg&PCsuWHsV
zLI=HL&NNq*CaIIVy1YE9B$XtjkU=@){bI8_C>>WovA{cOn-dkKq*mUBh5{78k#TWg
zr2w&zTloF!`T6<jZ@T%`@$}J&O!e0DzlMe|P*+)@zpaMS-WXkCY=G=VuNu03aIn;(
zatP#4GBI^^H812RZ@o`eW2xnlqcQ0tQ7AQ;qJCL$Acv^x=8cocBiu*J7C&2w4TKK^
zdz83N1fRm1TsJ-U7baURPugzoBUHkd+qCEBxqqg%cpgSXMT$DDm_%x^HaxW5{qBzJ
z=9{c^T=w<9aEmc&^T9>j8m)$&kxjE3v~sxb)OAM^N<<j2iMy?=B(drbXA5uc?U7#}
zJpZ}g!Dc`V<5>ak4x2;4vL;VYztN){?6-V?4*-oMKg2;&!-sIlf{Q}jpPYoG%dD1^
z=e^VMMBh}oexF4Ra2Mvao7sBlb?)~2YacciUa_Rl{q5EIoA}ki=!%~UKOjG0tL#Rt
zRPu>Y<rr!%K>Y=dCQPu+e}66rp##JpuKa!4U>PWLFg6oTy&eJ*<`O8;nS}A%-$caA
zd6S@p#$-QJBo@!=GI5w~E|6$L%wxe(JEw|6K$%w@W8l}4n4rGmISy&90025uVmBW$
zFZf#iMatQF9S(QE!@jo&xJop;-V6uABlQ-=CV%9Omw)l>nnGt@u&X2Q^hI6*DA!;M
zS0^AJf#*GJJbzDvM#OGpXKIZ@NQy|!?2S^F*>(pCG~3CNa!p3y#@^-(EzHQ+BjvRj
zOyT?koQ?nZQ&>4VZf<%$G}3jvd4bE8%x~Gh&bL38h8*gDk?U0QVZ^x30w-h2`)nss
zn&$4$g{1}7X1(q7z4?_(Wgz@2H<k*&<19HYuA<Qly7#uYb~)*2M@K>8WX5dm?nIeF
zz8Y9O%3!?MZtkn7h#oU=_I}AABeTtB(ncqM5mc9T2e@1GN@>cOeBHn1=vi4YhI!%$
zhO>klUAp_L&3iP<j96)C%*KAaR#Q_0QqiFQ4Q^q7&>LOn;;U5-k9vVEN%u4$lUp5+
zu_>HgW2qhNg<B?vutGpOAW2OHL1MPu90@2xkKFT&X)YRHw{H>2p{^TJ7xKQirn4ng
z-(Q8wf}}N2tVVl-MO+2Bav>v22N7u7D6|tke;HLdU#-%x_T6PTPEyjGZ5FezFsL<}
zOc#9&5%|)<;~1{0s;bBo9?9Swn4EOKIu;LKXmKUub$Dh98v*4EIcKTF9pa<&lZ&=?
z^6BYk3HY|_v;D)hH6fRY@Q|M&7-W1u6hPBxbU9F2UF~c!fQ^L~6-q%t!GRHHvoGZC
zbGD~+@3S>gGT!1z9eZ!TP#ia+ls)`hSSeHFtSI|eCvKm2y0@2?Z}!$y{rnl3*nl>R
z6~xEgEwS`%qr-d+2wTz5g(bJz-L`+rM<?bi3=ez!>|IqzX5F1EBO><$LTND2@!)O}
z`I03>Ed3nTB?8hZ3&i>f`U;Y>ey>WsH4@&>7>CL105-#Opb)CAuMc!HI5cWQ`?Xpe
zgof<37VvPNP@-YtbN!jbYB(c0{PRTHT;6L1TH1X3`G!7=V-V#IZmf)3&i4md2O}1C
zNgEs%(^6leVqlz|bQ~U3v_WryvpY6Nq;%f*OM%`NtuiePf9w|w);)LfN=ktyI{Y<t
z@&(P_&?5Vm29CvQjUELe_AZo?X7}A6;|=?Bh8-Ty>6Np^{8n!fQV`PoPX1yDekb}4
z**FH7nkrn>e=kLqanRGx{lVWaco`9F*_$d>TMT!^C%vvnm32KX2)LjO_j?fIr91l(
z8hPMw@Ly&9#?0m^oZ;xr1*dfA5pqo@79}n+f&JYz27^i#Ix4EoOmU!9jLLysV{NU1
zykdw+B82qxnC{lrHa_6PR>qzk8XB5Qvw4y7bD=tZZr<AZ#>gq(s3UM@9vXK7G@0r(
zHkEC)D*Fa|KV;a;Jhqc(i!GiJ3-`soXUC`Sr_kxipFbx-xbEuj8#6-fvfwx&)YH|4
zcI?mj5iec?iFR%-HNv|=)2fvJd|#dIXPrPvvefgFT-f7u+Bjgb+0s@|Pj4xC?av<|
zy{3|(Yxz}Tq?FF9BqzsMnt!ZYYt_`!RBq731qMuRFOSZ4rpId+dSWOgNSgr33{0g1
z0|Rww#+HQ}fvRJv#aH`_uk-zZXbZr%YEByqs<c`>_G!@Z{^_0V=jtN<5iOU(R>Cqs
zo^)~H3T&4ua00D#an63g;S4DBLCii*1n@>t0<%mE1;%)6@N+S<%e$M4_%EOKwDbM%
zu00QyLbsB8xNSyr#B>?s<hpTD*4>qqlupiZ;36!Iv(q&SmFU>LFk`}d2`#-bj%l)8
z1TsKeGiY_f$peDw#Egs#WN3z<U*YS>r1JSX`ntO|?wj*n+st%48Du{Mbi{mM(P*)J
z48SU-G(I{IFIX@2_dFkrfS>4b;>Gs(=DnXdTe579i~05Gb|5?4>X8VnDJBNX0?xqD
zurC?drFd@a5Y#}4P8YkL5a)7H6K?J;Hv%^!B9?3(Z<qN7`@^e6;lF+&46?1T=}@0J
zK{wcF2nrtP!|R;?_$<!MxisDWAKmoQHMk?Sbycm9ZLX`+wE_i5;D^?Gu#`0n^Z8P>
zZ4ZFS7?d*P&e!e2LAddD-Td+Apsl67y&c2}uBOkR*m|0sE(V~C{IU1VxB?*;dyD4g
z<)XV2#cF>5F%44IA>l1+yVLy-Q0W{eVo`7r-&;Uqp1~zDn69ptgI;C6aQ_RPg5r>3
z<6T?St^ax321wXT6BC+neqrry#4keHjSIxk)g!8ASwbaCT1a%T=;QlVtGKyOJgYIS
z;^^oO-O0K7Z0hBYbr%z%tz4-SomrDO*J=HeCJYwS^`udAGlPZFP%2)>CCI=Ot4k_m
zH7`_*AJQwS!Cf1MMd@}hAt)l!YTM|bK*&xn>?^w^n<$K~E)trj^c%7&C%55B{Gyj8
zOT^vfvg)7YtY9<s4aKS%37r@lms~Q(1)i%D^yGWfmEu?UHAH0m_NO4&Mt`Co^(@2x
zC;?yqiW1Fta;FOGe|-T0Abp@~k+<&RQbU(5tV1*yImRw&X*Iec(Fk$8y1YbZihVA*
zb+h*O@8kIn+E7Ji$05*v|9%VLKQ~xgmCW1I9mXamRMH*fY@T3QX@x<H%kJ<#tA3-9
ze{1jVi1@=aw6^CH0a)07+~##8S*BHvd^*`R!WW^L7MJyOyj;Ig%;T0=SL}a-PS?Lv
z6lXyH@%p_!U$N2v6`jg^Z)l~yu)gr!88hfL%{MW{#XHEv_<zM@zXGBsj?_Uu`#GNX
zGaQc8BB4Km;ITDd^~Csk?kuE^Y~nR(YrF6N?!LKnPBCge<!4|h>M{yO!hp%YQC@2D
zW$=FJsE+8n%ntbI7<RDOY}~P03+Z-Q_-u@1Otm%N$exj#0zUlb8@$btbOu~&S6mjt
zfgc9Kdb0l_qaxr$S7f#vEO&?tGpE1Wp!mnId9-o5((wVf69SiAao=+h79O_`(@#Vb
z|84!2TfM>XdXHG!joa2tuFByOXdYx#Rb!X$Zido%$GbZ@o~q=+EDtUN2r@>Z$Z#XR
z`d(0QESCFfml%N3ix<!Q51V1L-BO*PsHiA4r|I4G8Maxy^<rAa#!h`1Ff57>@9v3t
zj)xiw?82Tg`J&U;e#y@dmMQ=-LC4M`k?HM;aZ=@&li&il!O)i|a(fB|>Trp^0_eDs
zmf@`g*woUHqc(`RNF~V8F~0HROG``UzdkS4cq^#!%Xd1OX_#wt`1-#!DC-=TjiIRD
z9lbwI<pw|ESNw-3mqbBE$1h3lzJ$uLC1;EJ6@obc@SnD)E0>#Utt`2kY!6n+$!@Z~
z0sA8Y0s?zm+jPgJ408MEIN*p{yjM{0b*q`8uD)6{;OKTBCmD<4a+m4ZGZEbukD-tV
zJR){oxAQ?k0sBDy$ix7Ec50?^ti3K~yo$#B9Cl(emKO>{@Zil%H&=uf!3B2q&y|9X
z3SbfJb?x=_ZvkAx#w%Ss2~IZ-aw504xyfh$lOr)_vxzM=ctlJmPtR<AM~Z}>Jw4El
zB&{in9!ilcwE}s}SX6q|D{Lal<dl>xqajvDP!cTAiIi$rwu1$`AUtG>0pI%#GVtyb
zNsli?GrP>HX52`F)2yiQLa<fKH02W|spFXlxCD$i5T}5v)F^zwgA@|hwtTT>sR#BU
z4cyAs7BOjNgTtLqy`B=4X0*g;*>GFzD(J$V_0yi;-GFm6lEQhn3PrN0{9$cv-RQWO
z#pQhrRxj(a{2dXGA+mh8)NZ+z5?ain`ku!;7aI(_{4f&rO-)T*Zo2EEs0QeLRh8G-
z&RaP-xk5&6VI-uQYfRu6tGZ2<Z%mku)FE5@nnXU7JRpT80qdE&8)E#>D(9?76AzNP
z3GVFO<kyIJh@YQ(sG!+V$HM_g^vQB)+YO5&BPuL}BWb*@pcsI?9WS&ebB?|o%a;X*
z0qbM?YeD~8uamz+F_b4$i7dLUm(#D&{2Z2YesAHduEsN{^bHTwj5hvJZ#v#@nG5IV
z=H`AOU~&94Vs&-Zn^{L!pVhEAL9*c3%b=shpZ}A9ZA3o-ITG<(g8~6eSkKn9TyE^9
zg%wz~-sT0N4jztuQ*YI;K!<o=(epHm!_@5I>79`KUc%wG*#ZTk%H{9X0S_Ia(eQg~
zYc*!wsGgpl^)k;%NzZR;EN2?AuQ_jFf1VJb4HIysqL*mO<QzWx2Wj=XIP`qlP6*g1
z0&Q!A&h;2W(#)rQtZMH_1F^ZD7{4#oDw$vsR3qhtc|Ly<fWnuKk*;#x6zof@iTP-p
z%p?q}{{W?;))Y!%0Zk5YQvVqDh7Rb^UKz`v{v)jnLH~FGj<L{|+edY3fIxl>{DTlp
z`bc<4ZZQMPbD-`Wdtb~$dhQb%y9%KXAN~&(FkwSL&O3ueD2a?C@Oe%9Xd}SEiQn(J
z<sJ0Nf2^q6na~T`+ee6_DLlvdk4St=rNQsmiiC(rAKl>Oj==X|BAkFa2{rWg=#^C!
zF$-VjubkiSpItM_^N@=k6gn15`<8zFmw0>pHdg{}H2)1hElHkD5{r@Fg)RQ%43b0l
z9G@<l*KqpUdwNhZ^5LJY#+qp>F>VL!45+tuLE@{I=_u4twGtiyrxh4=|GikJ<C^)Y
zEg1WCt>H#Fb?+joF`y4cieaC?)7=K*1>f3Q@N3|kMJ<2wzjOBDdSm^o^D#aF^ngA=
z9wDO>JW9l1DMU>2HKf-c-|`4am1~)v-q>$gSe8!MFe%*-WFAJ3KX~A+`*U93P1V$L
zX_o%Dn6LtgCHF9<yxcx_!%YYvV?@`uF+I$63p$LTfwFv}tU2)2j4xf5Dg^9Na$4=Y
zsuo5tsre2@3tla!-LGyr^CwbXgO36HL#|`Kc4bx<b(eG>ufxLSdFK3Lv*(CD^3i_t
z*=~>#B7z9Yceib`Od)qScBND<x)tjW4Y$VybM>~n{R~QJr@%2eEQV4Pa$05F;eVB+
z-sG|&8$*dfB9!n7*^ezzQYIHyL@eu_WG|ISJEz1Lg}_g&C}k@~0v9+x+v~9Wo<&Xn
zt!0hur{HC`b2~1#F4o(6cK+${Mgu;~&#YGgp)^_X_GT3t2FkE}^?KQha2(o?=p<Y&
zmvW5aet!o8gOL;!m2z7_{(=1l?BT-Vf;NkByV=GkrnhA~dgdI&yZqleKvTUc6$UU`
zt9;e3YXGqw=I1l75zu5hr~0Hyy)ya%UfRS?rf6&>mfC;ov{EJ?Y(t*medV1)7Tvz0
z@IAesK-72V!~_Vt{j8*Q^Cru*Hdu328O!zSvv{n{T-3QlLSbGruvM^>901I;vQZ0w
zwgEh5-G;Eo`Od6s?@AXoMdR+MKVSeXu0W4(HJCA*BXQ?RO>Gg(Z8c=ZMGU-Tsj-=&
z)6>Z!yM2z<Ubi2EXFOn0v$8VMG`NcN>O45nm!wFBsjrZmSO)SmYWV9aBPlXL4xD_G
z=9heRrj;D(%79<FW8nQi?!Rtt(<oArP~CBbA{FjVl+?P<PbIPH{WzVpolask6mnh*
z+2OSf3H>;d%}->ehldyMx;cVDCd9+Ul$P<_--_RMN^zQ$|H5M#fHeC0E%J#>SJ&4&
zM$O(Q?*L_BqN`D)IMf1XfC(y*u#9sUjF_jlETH2amviYl=u?jc*L<Bd)PyVh*|RNF
zG9J5`R$cDPRvdzv9^w?#o?`jjUNs9)#pbEG#H3LQT;HX1Fx9gVGSOwD%f_^nkl$FS
z_@RI;(AVcItSo}$Y=T239N)^z`>g*5pQcmqYp&n*zdD=F?zvOURnLWs(pv8V#0IhP
zvOXA2k4onWtc(Z=dA6u<baa%JC3-x0IA4UNd2%%NaXGeMzuM(ButUrWIIkl9M#k^(
z&8SUCSUCMvF|ve&gd$;?_rXhIE=2l#<BppP<95g!O}mGUz&-<x`wGco>?>NM!8@9e
ze*DKwY3qBj7Zni^7y+8o;WXZ|nQOq<*e!fN`T)*!TDL_hn3MK+)s2Pkf)L-;uiqgN
ze2wORXL<a!Z;jl(-4h`3h4h6Wi?o9Zqpj_(p`(FSug0sZ_3D}AYuZ0ce<|6esPdOv
zQC2_g{YmMhEbMy#Tc&XygKi@4<0IlL#<y7-t<#D9Xj$`#MAhwdON~}0nwZbR%SN6_
zBr3{JC4X#iaH!WeI508s?cmKt^EJRI7MksM0Y*s~u%}*TnlIA>{_^du2`Sv6y?$f)
z<uWQ<?%H}(Am{ZE!!p*j`ra@2T*@aht;G|4mS#ekZ-!jUGxQ2HnKl#&lV5H8;$Kh#
zHO#5~%*-5+g~X4eCI&&Tejg3}ihA&d<w#)P{rc7Yg^rW+P(wpQzu~?2&cw@_udfFP
zN3z8kiqd_&?3P+l@|Hn^vP0U38*zLuR5Z4&UY+o&_X+lCsq4tLi0}F5SFfSjH^{kP
z){eicN7RifN31G(R&S02-di(XUi<`0C{sDi_$5%9AQ-P5c{PhkA9E3+0(vmQ@hJ^s
zsOC3Q>-XM#$?^rN{V%X>C4Rn6;ABeFb5cP;`0;J;n^{ZZ-;=9Q2P=5z?*>tNhEB3X
zXHQ3Ktp?^A7nL64wK2gh1~(U1sYcOoEVWdHL6baT`#+E@S^^-b00oCl2jDh*xqCMK
z=815}^`yw5cg*;o423<F(>XyOV*^{{x0&b##LVGhEz(Y--7FY0*5|ih$Vf<#o?-}-
zZFX8UTlV+cnVQ6;H2^UbP=TO1`tqumW5fjqP?_>?Hu{Gdl(UeLk-b0{3n+CeuHKs+
z5Db@E{r;@2sZZ=-=QzyO9c|YZJyn4NY>oLl2bm-(fzzF{GSA$@-k#K2t50cui`VWF
z?7=4I3dw9gDv1^qU{KosE22LOK&BA$KZT7!LGw=FC7ehp>d#}brJ85QxUT+2t68u7
zi$V?E>~=GfNT{UO8{MRQMSVRzqwij((2r-{X!DJZn}Ds&{~*gAWW=J^T3qa!1EA{`
z_syw4A9?^r4zPid3#QxR;AQhF=14sr2x9be@%z2m@lK+^mW#cq{jEH)CqCyaeYHgl
zdp!UMz_whOKcI(ujA=F50ryw4Csx3^xcTs~!+u_?#%Xb`et1~<9_zME#cLVX^fEcw
zZpHm_E=|n5xgc@lK-707JsEPkJ&$BGS8G*y!FhOxbPk<90Jk#?<2mr%gj_i+HV_2u
z7Yz81Pd?c9nH3*yZZ^I<OWU9K?DV9$?FQV@T+)#KKl77*?uzs$D_v5cJE=6T^as?f
ze%*Us+jG0cG7!Zxg#1eHBjvR!b?vP!C!5{LVhSl@pDZ-FGUy(xufOQWcR!ejfS{8J
zeH)#nHmR+zx1TJ1yRTPIDF*ot=u0_A+@?VOj2=os$cuz*G1tGHUGVGHr($isPzC5m
z3|CKA<7&v&r$pvb&GJ%PjN$Ie<*NJPOyMxB=QRBv3%}zt|J0VAb#ieL@whEctbe;C
zX=PP}0fL)OM{b&L{r%nb#onYVEVc__GgP`esT^!<Hq_4di2}txt5NHt3doyz(3oR6
z-0G14L^A}h#$#{c=y)Tt*?q^yi|5Y?!ecXU%(MfqI*~;uC?Ig#zIX9(cO~x9I;ehu
z;fWXVgTI;vyEOLOe#VNinh)*~LND4!UefyNR3%Bfuhg}$D@e7D0W65F_erv0z(A}w
zeM=KptSZ$YzF&G|vTFC!9upZG$iXWKV;|G1M}T-gGTQPvp2h(CtsVeH@HTeRSGoN;
zPWQ*HmTs?D_3Bia5@B^3MamEQXC05}jq((LDIWVv?o)%hAf~mr9pDlYYB_lzn>$=C
zY)#fqgX6jS(&7PdX8e#Dr(Oon?cbKLl`dM@=!sglOTCZdYw`3-kb4pAEXh{4n_>I#
zBw8Ap+}XRE^M{+m4htoLDF3V9mdJTjpL~zjx<Sj_dko|j)N4XM>x@_UOA6^z<=1DF
zsvdt>`Yp{04Eim|2<}UH(uXZJ+q&ykvU5jfl%x-S3A$fTfc65+oRviMoo;jY9)ru%
z=rC@xFyp+gf&6loWoj_>>W1gebut_F#|h+$bq%>QZRc{-BHZ30fWj_*cQyy`7PY?d
z*6+oIh4Y7&4y9eb_1D8rq-MZf30QtH@4&;>`{E@p?7Y05#re8-#^uXGX@3k<U`>2E
zpwFud-~h6#+)7qv=CaXw_kOp!T-?_kPx6f)3-)=Ny|L5b#TJWGG>66JZvHi?FW7}(
zGsg<Ald6SgUDhnnI3>i!zCskI;-%x|fV~D4foU@+5spxffQBx%aWMUQ08LT?Ij@&E
zVl?Z`CeGY4lVC%`W6yqkb~ZT)R8jv_5oS9HCCyvf!f0V-EmAX3sQD;W<x7piB*WA6
zmfzUV)wa>!<zjI`n9!;+H-}SOoTcs+5`c6dC(=Ixt5K2Y_&lA*e$AJA<oxu=e&Rb$
zlQES|Xq7i8o?gH1pb`-HZXI9PtPg1t$=_QTGMYfjDHc@_%j9xL4TBmruk+{aLGl;B
z2LH#qWFxvQ(@;{f^`OLnEsXeA*Ahh`fH>k4G!<olqcoeC7`5XYNk~Rpu!o1M>j^+p
zSd5Q)x`M+X4og%w_oI$`Go0=1jV8IHEYhmjy4yydVqzH5htPgcs}A+_AQkGeOo6Kl
z2H7ueYd1j@?0C3uiHpNIf>$e>^lrgtO{lHKvvYNHJcMk-0%PBXG562%>kcYlk!mPM
z+xu0?@DK*Y6d2>mSjA#X4$hr|Y3(fZBNkBW5$9gO$0j?B{HU`{WU69G`G7|rD@wur
zmtjpd<iCF#W_+J|FM+qhI;vo><$I(i7J7}6*Z`rHFMXrK_w$Y&62nyi9Zy;H8(N+J
z{QVe3cFNBS@)ZD9fW{H7MmPN8*k}NexzD2Nc*=1!=RU|dAeGOa)cffiVC@u@6qD~8
z>I~C8jEs!jcP9<&EI8HTUeS2oL}vm`9|}79;05l_X6!X4{D=MbE@^#cngBryE7}CC
zhtI_Ud^#H~t?Oom;gyi&0NR{xt%njYvCdkYqfj}6JaIcd(B<%*`Ub0lZI2g9{JKv@
z=y>(3-Eq17Cl(UO2|(;Z9nzmUbHSOEl+;{=kBX4h9^>t}vUg~1&dMUbz1uU_zvH*Z
zP%HK2ymu9Pevau)lrXY2mM;@cDhSzf>J_)0W;z#r!Rmg80uL@j%EbfkJm@3r1MYZz
zr}hAL9>8clvGu*NF*}=*g^iy6-Tah2U;r4H(9skkf%MQwAVBQ!Y*mOWm4!~Q`}a<V
zD8f7*pQfE1xm_PXY=Eu{>C40H>@2hPHxQaj)eGcv6#_fG{uD-$V_Jdpzn(eR?f>L>
zUw1S|Ef{D8<N4vC2S8Kd2C(9AO3Z(NIPfDAg=1Omrdm@g2C@s4(wP$b`6(T@S^Up8
z13}LL)LH8qV!*0aIdgL)YqJb7m*}Snz*j=~xEyXrpt7GI%RxH>7F}Eb?ep^1TSg`|
z3js-s*Zr+jt&*t7{q;>{lk4BVZ7&2AUeHK!;YKMZe-d|9T|11fuRjCj4ZG2I<n86W
zozCcw_Qk%a<CR8jK{@=)yYc%n1=jHV5np3l!XG7wSYw9(VsQ(O*m`(^zfc?Ep<;>S
zoh(=I<}2=6*#F$L;p#t22AH11d$V@H2_F4FSOD07QXn5m$SUM>s-tI9nx#wSeL4So
z`5%_)Cd6^ExgOAY8r<B-{{9bsx)z%2L+SirDh4R#9>L?>`pC$E%8q-N+e^-xGFGNU
zA<v~&p!JL^2YsvMM0ngl5*zOtS<^-kuNotMi^o9*pE;<^CaDfUkzsMRGkI|^X5>0w
zV>w_SV82-B?5eJgtD8+uu?<Khzne4aLmp7~9RnGSN|w+Y%_klW9$_)${+BCVXS>sV
z7-m)%tAqxX5=PC=UmmV^4*>}4zCA~vz6)Y8nV6Zti@x03;YDAMa}R*fh1{93;IrvB
zuuxG^adCa>-Cwa8&cHG^1IkXhru0+*CDwrxLz1+XmQKgE1OE!Y+6rYqtC_?4*aCUZ
zv>EUnZ8xW4?#K8?&@R(h)$X@UP%50JWUQxw)vx8%zcqi48^V@+Ay8@OV9newSGZ2o
zj*b}&w5MCXl!y_%`-0YIY4yA|n#pf0K}l(FwwZ156_s;msqLXNxyU0$s#+(1%I$E8
zmhT*JZ$l5W7b8`<Pzq5W>2(j`R>&3QzOdVeG%QN741PzkpCj1pLm9lbot^hGBKd%;
z$p>Dj3w05SWT=-xE&iTBJW%hxtJO=GCE!i7e9fX;v);Q(%fab=ybdzban$9i=_*hP
z;o_gd5dvODF!`o$i<gMqAcfPMUJ?D2RKWHxOBN2++9m)RL4B(`-Qxc8%fL_6l9XW!
zqU%z1Hp?n+MM7C^bv-CmU}lR4pTk5-pP8g^RV~$*5IjOqQGyiazGU;V@8u&2>wG%H
z8EU`>xePFW&U$5E9TjD7BfkSqiAvV3QxH%TUkBVC$<oQn>Trg?OJ*~aH>wb^J^!`}
z{mAb)W{^Sq(cl2k@F(Reo64C`C=~7P$<}PGlZ(ZDkoVmU#s@oBJ-xZ+dfSmqVU>i2
ze-dq&1c1K)*hlunHR>}^k*wEza(RO#X^ec|KynniwucUyI7!QOB;*fo>@a2N6aTi6
zYQ-#6d$=4Y#V)dJSA3?Eh)`t&gR&$1!eIlvkgqiMmxf=Q2}9vbQ=@B<)3w<q8^sj)
z_zxL{3y7a2<G&b*h`BS|#;+GO&6Y3t4GDfv+FpbTzUR~QAHBVd%*>IDWOR#4($+|w
zZgAA6-7X{N5wmuWfImq%boGbY$wuy>XW-<oz{Q_wtM4Sa|2zt`O4R8-t+;JNpUsvN
z!x6|Zz3lQ!xymzEeP01)riniLOGNzIW>q^y>*u+qtLx|~c5+F)q*zDud-K|UB<LoA
zu`i3sy5{*XT!P`LLPGH3V_qtdDu^8;L8mZIiGSN*e1LrS#0z2`lqYJ#I6>LUj9QAI
z&C!HemPHqc%><W0oX7j8Dt)$pZYHt;p)_8BPy>v8MLgm$iMXh*nT89;w;<-+^pR2p
zzaNEoE8jolOZ^Mzcu_OGy4Dsb69bA+5@bxm)o(t4UQMI}dgfEGEbx;|eqY-c4cbHt
zDT<kJ_MEX)9@1Z($bOOt2`(isWD7JqaiokMZsCm)h8zw%zc~O=Ec&l+4wy*M6G)Yz
zV3QgFczsL=l;$Q(KRcO1X=LLhs6sxy>Jzo_zuY3K(w_mNCAdNGkC{q!_K{uuePm3L
zGKdhcRXUb~NrqEOd@S244#CoKv!VvSlv>0I;5U!HUGf+t@Voyu`=(5i4<kHyeBj@6
zDbG5uE@=bvv`PTxu2)V!%Ky6H_rzRasF<K&BtTA>+*JJ3f}cqipQ?%hCmyjM`S8>s
z$onZgs6xSSavU+v;r1f)jJp2|bsMJwpUHj6O!<h@3c;YS=m}~8TCOOc<0wDkbV})g
zhvccz)VX^6X-*>>33&QE4%>Zkr=_`h_aYGc8fODDP#JdVRd&+&6#!+$sB??b)Sq)m
zuM0mv`_*JP*dPA;-<Yr29)4%;deDOlWRtj|Gz3=T)^6?9B=Oz3>dvD-D~p~%$2Je>
zNi*p?7f)HY&hex4{uf_w8CO-?c6%!#(jeX4-5@Ecq;z*T($dl)-Hmj2x0KS|jdXX{
zKDn;@e)jY353gTYE+*@@<~ffT<3ASDX+E?-;(+VAv;C}{Z>WRBiK~;*|8zphe=b!a
zR>Vf2m|dVY{)`}>Cr*Sd1ftk+<|>wI3^0FWbZ;*X;fDkWF_nBPQCCjI*)n{5*6tVO
z+)NBD5S7V4M95h<f15^wY9vgrBA*oS<RGrSIkLYqSZY(+u0Gy>|3JWyI<E{VWOUH}
zniM)rF<RP$Df9*cCrvzC@9Sk877N}ZWwUr_^X>u@7*lb)+`iz?3f$?X-5oG=a<upS
zgCtj=PNrhAzt2y0FT++Ij9*<8%tl3S+g83C3-y3Fd{zNJx1hN0J+(?1$U@9>>vcVM
zSwd&R>3uh!u$+VArbKCyfAVxspD7V1`<5<ikZka@QhO=9-xy0?EsAXVb8L^Y0)=5A
zLP3CR;SH9ioPGJ8;szB9*h!-EyiC09vS#@%UH+YTdm{H6R^F&(?IzBvVRkvZt{_%D
zGH!`S6f4Cq)NI-r<bnPkyf|4V$3s~K(cUb1;72>x7A0m?OYXq>tuN|k4-Mu6Q0p{4
zql6kppLV?p!GVZtM0uIg?WWLlq~F2+E7ji=8l3&{+hgf=Nz;Km>qll%zAwI$GiQZ=
zN%7iZp3_4a!|uIKKPgM%aE8N5v<DB(`3^2@icI~6>Y$BSCdQeY&!%~_J!78k2kBmn
z3wz8oBywPSMSG8ZdTv9LC0de<5f8^p#a6^d#%{HM8W!@?ZpRpPpOqFj|LHPTtw+^?
zTIzk2+OFww;`?p9t7|`%DOjb!(Q3r!E5%?#Y74@Oq9jRzo?;QZ^SQ9b%Tm;YC8b<R
zRL|BS2bAP57CG%|e^5OHT-KLul(1O>N~1QTG1y2cQmH>{-+z3cf*@TuE^tvQZ|cit
zAHHGcLqel)?F8-DHv6Z;SU@V~8Fgo$h9j?YNl_;D?kCNEJ`jkRE(W76QfP?2{3H{f
zi8?-X_#)%g1DslleY?cllHZCPzB6?w-QHU<xErOf)>4O>uB6<&X%vzf@202}&4cCN
zr^MM_u$TJ_XC77;B^naAip$XIixj#+^qC1dV+Pbll_g7*RNQ5wXHw|@(ZLW1U7xI%
z(6swwu4nH=FRAv8+b_+@%TaE-mldhKPIJ-6+CU^zVQRMushtIM<Q#ZYzx*ylt4@RF
z^RoAUseP|W8);Z*R)3h6T0CsH?4Le?nvxf-9NJS3?$=X&o{R4{B71bA+!rc1{kcb-
zLcogWr#zrxv9Z?xlaMJRhd>i;U*c&~=*H7xd<7|#OT1#^s`b;qf7qm3t|6r@xQajw
z?Vn=3K$8hqAt7r#$I7GgD{}yrtUHf7*RLf9DXljqm;&LxT=9AXDrCm?`wKZGUZ&i6
z;bpXRzX~mq9t6BR6Z%^qR2cJ*zQx<Fk`JX?Opb}Ks@0BOO?`lcjS!a+#z`_eC*H|r
z;@`yz(CYFz$Pd}H&XXF94`gB27oDDh{`N7GS0YEQNUyWN-sp2>C**An5$uoOz~N?9
zQKocvw0)}`7nrwi!@+26pkWj*b;s=w+qja0hX8s11;w)7DXTM?)szi2J{{`36(1tA
zN^ZLSMy?PXSqA_5IPT)BtVKTZ$G0p@Uu?TV#>CsorkJv0D=iqR4*58SSZ?cME%_we
zT~8p5sMVx4kGUK});;7lk})waP|~dT(l%=?nYBDOMYCj#N6w6Uk4m}=#HZm#K{UPP
zJkFi>_tgo(ffdXjr*ko$;NQp^GGTj&Ov&|frLPq8;&}^;V9CL05Yt5dF^<?^rgE}i
z>O@l`M}A^x7K%Ob_z-wG?uK7hc|bWKiL8o(CWN_|99~o!H01MD67vzGL?Mzzlny4y
z`DP}@dYD{NWP4?EA67DnW^J-kf2J-J+f^owegOB?etv&!$Z%i?;qSS}r6eliyy{A^
zlGs*pe^KFCYNQceCFUWG*MFsoU?i_7{1-;W2vYO%sSk}79E!xU#+i0|IEu4_Mur=o
zmrqRz6J>%i1mUGJCx|5Jt|Hc*9p%UjWAH7omx;iEdW`c==OcToUt94(PDo9qvr*d8
zag1@b)=_E&l`7(f$u&@{P)6-pmQ=+eM?%}}69AM}T7_hgiCmopz$Aa~DKj#wZ-rY5
z6^=!Y6RlUB<aJypg$;xKu~k>7$W+0GuSID#$0tVqy15N~sHIo*Bb-=TnnAv{!3<ly
z=4i>Ru{gXWLDxK$=aDpQ#Bc>0iJi?FYsxs2ORmn=9CCa$b8%Cn_x_8b{oTj4l-1tj
z0-vfndmk^+U2%~@{aRaH&PwBkq)~|{$@iIrDKtu1&@u`9Qjtp`#1e7;OZzx}r(VIm
zFc4`TO#1+xJHJ;Sf44{1EU7n2=Vc}4j$JDyo+(H4R>IxUJUF^D3w{2QEi-JSR?7>!
zO5ePY<v48UE@ev2XrPc+tnL1K(vIB4t9)%gxGlU}+a!2gmcRW)KZ)#4|1#{67p`4}
zrI^v1ss>9!fA4Cc8e=>sRt+^=x3Rj9j#Y^tAv+4KlIreV7A*<+95;^TrT<Kkwqb32
z2)6O-AFDU*GB|4)vjJzqXlSB8TMwO~_8VLgU}H+_TsuIfVeeGCWWE#aMgE!tZ4xKM
zb#1U(YtM33Bty;p$}b`G-OTFl;cK{;LL=bUL@IO~qLbS@V@Fn?B*!v#wC6I<;m>ua
zzqk(iZGeST_!{Y-)v*ygs5!tZ;dmg36;ZxTzBrP0XuIG+_2_#<2mT6j?@tIX1AsOb
zP|qoHn^IW5yinjlE?Xi26dNd=Z{86r=KcF5?Du0K0rb*1WCAWA`St&Ixl7TlLIU<F
zFl*jG{HyS?#RxN63hHgc7ANxa<T?w4smc$A6zbI-4?O+4iVW7a#xJ{PT-5tNTZ<7u
zYbKCYvLtBU81fMs`y;)a;h{Sy|A3adl1mIy2t7LL7uHjpxP8#LF57I{4c!OlEEw3H
z0wwaS4Uw5na-{XyS~^GazTyXJO{lKClXdmD?9Y$;!8d{>8@4UHG%?nF*=Ja?=~b8F
z!;jap3<y$+c@jGu;0I#ES#H7Zqf)aD_6)c34=pJrMR{!NReOIvgObKHAU)>?w*6Rv
zZ?$zToQ-Uz>+`u0I6Tp~)9+~+?ZTl@bG>`k#L08*>Fl{$!1wP}GM)b{k4O>`1se`*
zg3Klmx{u~77NXpqZycZ=i&$isc1vVk#4gwbBs=0v7OqU@O4I_rn<jw(JGmTCs159M
z)YyNO3Ud46&de}VARTyA0Zo}eLt%^oxT7>i%nNk|xeK%N06>L(MnPpm>@SonOLao7
za&Yk0!Uv~zkJD<5;REsV<l+NC=8yl*0>(T0aU?X0mA^=Yl7_5nXNPNqaWhBh9df(T
zpux%+i)Buk&)5ta+q1BapA8o*AySLG;t;a9%A1~8<jM=Wm$@SF9pI;~>t|n1j#Y2@
ziiJnOdr>9~1hGUqe;VDrfRa`x>+YGfnB*m;&z-H8Doadi^#3$~xOTjZyux~;{!1?s
z`A%DqE1``xQnt|L5D$BrkVIQFT9uUgjxkjz$%A>&T^ltKO(0~13(K&%6mCK=(t}--
ztAM*JAU~>zYy^ens<lFM+(&B&ugFa2tmt>eW(>lpl<G4(MnWld^<?~wZR&+f)^39<
z)U=A&59qMGL<yWQ!6{@Kt11oV6Cz|Gssy(%SL!|(fYznMC{_=1b;RZ1yE>MMlMv4z
zqejD#!y%gW-MQ|6YlHCvVN4gj9tWgrO$tcLNe1SbUOa39UK0Y62P!_c_R9yY?BrOk
z)IQdu@Tt0r#p;mu6g;JctPS>0SeU+3g#*Z|SatvmPFNJ~FnV~`8aKC6a0oPc28-Ik
zRhk?A+;e?;d}erVT-e6IaH6W}0tF`KZ_L`QiYO~f+TfmCr*!g+79O7t-4EO<E~f`k
zG1V3#I~u_vB_?7^A*XMDJGkz;^S9H#tShyHk9$T-8{kdWOC<I31g4nX#bi)<n!fiO
ztA4QleR)8;mbboV4!5rn^`5akMe_HU3iUqWoYk=qh3*H0lD>pC3L_!4$JZ~y)HeFe
z%G2!o`Yh7gwK;&p?D`{9td_60I`M8KgO^Am_}45KAK%+5Cnoy-K|Cf)%gSoBS_f!1
z*gRUR1N;mD58Ynyxd<5|9^+)`BzmG>#L^Ao67Lfu!y06f=>EOSRd6j5w7A6KnBXg&
zsW3AXfzIi;tg}p|M|rO!M#Y8*=ULh=BWHoQ@PU#?vXrKHQfL|fwe3@Imz(b2$x4r&
z;R21yo7tUjt$l~bZ^6UN1DDx=5$D=5&{RQ%qzNn8g?m=d+4+q|Zxh<^v1Zb)VQRxe
zdS8(GEyKR_5-Jr!P<}<hqA}v{H^u1l5EE01<nfqvm{-mtCy4P-<hFb2sIEpU!7@u%
zB2WC1poHo!ZgMJhCt;0f%R9qjvoE_H6k{V`wccZ2i^MTo$Y43Rjg%VZdYIoDsgqSe
zNlbJ(sJ-m3o2$>tVN{q@V^RA`GZkdi*wDyJ$2V~wCRP~LCe4bk61ZueTzBk$qlXtJ
zX);qulKt2+q+V_+Toxf#2;Plm`^ilyAa*7z`Zg9ymdYb3wu<^=_E<%6;$G3Fg=|!8
zOx4xv;^f8+xfTgB&Wxo*4G{Sh{!)Yxw0%rWN-A@^yP7%&hY9kl>jQxUmtSw7L+R<P
z)N7A{e-X{@_EsS<)3aHIk6JNAil!A{pbQ1i+thQ_rAY}ghSri3lhb%yf-DsxDb3lL
zS-l8L5pd@4WSWOtLql(vj%$D9qe+M^AoBU>w4azx={=W)fe=-S1Z#6+#Hj{NZDX;!
z9#)|7ilLJeyDw|S!`E7AaXs>y$+wSqQl73$YrckayQWy}(6Xc6=m+qly~%9Cgn?Xn
zGnL^q@P7O{(pKC}>e9G8?^x|=O*6XIZkE~*H~H=mT^|3MecM^k6OeAS-LwSEU5|3D
zP&Yzxj^!$=grXyMR+e#HBW);tfB3xy>htTTR+&OYMR0opdR&}@2O+BC^_EeUr~ZQ*
zMGQ3?^MKTs+=*RecsGEdGg|{hj+7*gqN%-s?TCCb3dLfjFZH|HZ~2EF8hU6xG;)~F
zhe%`t?%dN-BaE@-LQjm0L8o0VO6AI7ab(X>Gn_*LG8`lYr2n|vDzv?QF#yZ?tUzuq
zY$5yYPp78#boRfXJu05mvZUmW@`awQNk})AwMlQpgc4V=PZ`sA5DA0bHCVV=q(;Jf
zpP^jD=+zy+J?^<==aqs5$L{*Gv566eW+kAnkMD-QySDB;2urE;wye;EA{0N}w5Kd;
znCflD<aXG7yxXkCsl`>aD|z^PoBij>Iq2*k*$P5gpjLmtC-a`bbNBz<IGtUSfS!3E
zm!7E8&s5=oD1N4MtzE@H<O6>c;=5Wey0|O|=jdL=BD}@}C5hpo&p-T!U^!&GkH1l7
z@{;(%f3F@6j9zkJwsLtWD|4|JzoA<Q!`HJt{-gaD)Scv8IfviO+lz6fdjp(fZC7*W
z{O<Z4%&sn>Q!eofc$+Siitg6$OgCtt*<k=>i$?ro>d^cZ8>`G2jn`OVy)i28=an4!
zN%J$5ozR$$kQ4akc5dOwjEno$)OW`&(ue09_bae+)KVq}>zV9qpfx>#6FbCD8t&{~
zIqopWs<roVj`bjwZ>}9_8<-&)B=?B2<jtzv-QoU9L1MMddURFxVhK>354{lz5+}-;
zjQgC6!trS#Gr&L2N=AmmPown?iO1z4<Dw?kyUQ~`x52i0I^w~mN5r2siH;*B=2%HV
z;k;j|2oQH4M@Lj<C?G>H;-~SOuhwv|1!tWAu9WIv&Sv&Ue#CMcqUCgvujCX!&m9lZ
zm&!-eM-a@u)<bV}Pz4z`1|VD<ikVfUQz94TY^v@md|L+ZoBQ)sknIHVE6>&K{hfp4
z<79KYEA>lUlbl>lZhPMjL+XtxA9lUBL>E3+fMv|%w4V}xMobH5BSJUq9SN^os6Nz$
zDML7P_bvQq<tGae6z%0yl0UYyo=^YX{+)Xpb6UrDtSW$%3m~9xMLLu#jzi639Dn-@
z`S0)FA^-|5^a}peR?0!dTw?rZ)Vkg-rVM`B%xJa;<p@AIZ7w-XSxixOwE#%0o^J-9
z=POU-uoP|`h6Km`b@Yo3Th$$0=riG!*7%?v;ZI+No8kVh^KXcTL3Zx3?`v_}4-R(}
zx}=07zuI2d3Q6$ZNRGMGdtq}wfC#oq<|ygpdjER018Wi!Ui$-`8_c?#+ENb(kphj{
z`P;gjbbPrJ1oedvvr2X{GUD8xUnx`H*%tnN+EUW(K=-xB5QnKm-gG)W@cKHU{F(Gi
zV&%!|5j|qK%<Yv=W1JG}MEDFtn)}_(@-ICD=2v3SW=Ua%l5%F_b^Lk_Sg1Hc?mRfr
z1$hR0I9zU5n@loVw2pOn1iVPiC6bvgZ*-eJBy{FbJlRI9EW?l-x}X0ZX%eh3g|{F*
zzm;x8u!ObJNh8faN!(x?N)=u<kYXQNSwYWFM}HV_KpvHzD?+Qhk;97{_`HA)?O#Nf
z#C_j&-Td_@4``>*q!)y&SJc6b>_f!abuhiljdu2Ej`jF5PL4!WukbkWD~1|1=o=S$
ze6-*X{eG6o*cwTR!UdCl@?93|1xs{JVxsKOubKQs*C!`E+pG80bB{e`UMhQ|S3(m9
zbaKnITGCQO3ehn{Qk&;*k$tDi7F5al9UO}h1r_b&g@oLtjK$OkoV18SzFl7#0hG~s
zt2%&%#pd|cmqVO0hyoD&!<Lchi6nu}Xp7^gdYoF+b$yU;M7%IpyZsT=N`;~cMN?F0
zdyhQ)IAQAb7s-x$!a35$p%d~7b}F;8&t;5|ZjqLLqiL3!WD+CITuTR8p%-Fl8bZlz
zJ1!qH*@KZ_PC^$|!brP>`7JR%tC{4Szx`byG4ket`0G^d;!m?5!p{$Hnd$wr0=_b6
z#KOQB7QmNJ+blw$G=}l1&&~5JT{R{;Qv>GW6{1X}Rv^98){SS->8#}uC}RAsAa<Fc
z_j)}t7aSlA3|L+T7~U6VyOE<*)|S3egK*K3JA#2rk0PS~Q0Q6;b?fxHQAFE%`06Qb
zA6cG)vIj0~sHEiZ%*tND9?ot^oZVu^ixB;_Acd5$E<CeWhuYauUW-jdRk7RDUTyee
zbM+`a46VXsIMof5zYuCL*EV=}v^WVEV(SicQcjhf1(gbAS%@)4%P+a|h#gMgDS3AI
zc2*zY<T}iurKPAR?VJ~wUTPa9HBJ(u&%TyqQYlZG5xV0nh;4pmF><xi0aJ9U`LdCm
z7+PVvD(vD*S8K!A;=0i!#2Pc`7;(b&3u8(TOfn8vT31uh#RBS^X-mc$CQaXSO~^NG
z)j|^KoGy{BABCW`9{7Hth16*Xa>r?n^jqpbA{k90sTg^UCsjW&6aazOPbSj`2AM^S
zE5dZogYTKTgkwcgX5$%8@VKPP=rM~%W*~F00lzN)2`aAd!|e*(%Xtb#ls<@y%7O(C
z(k&R$KfosGL8lU_y<?Ua6El}mgzWZ)^}kX)E5*eG0Zu}A7RJ^v#QJS2nH?>SD@c;>
zvHtuK6P`yUkj)IykoMPn{aV~yLg-{4(@^D$ETWkhOUXF>(ja_vSO$F0;C4!6JuMt$
zCtcLlZ>^v_mI(nE3&-j}|CWH+T0rV*g;Er-{pQ?}?A|6zF)>Z1LPX1n5&&PFEDO>T
z5HXa4ZI6j(pN_+@x(FR$vDumw3*!ND@qMxr?p6RG0L4c>`+cv|b;rWT*Dh6lG-ux@
z@9z0n*9f4^*k*)2<^~4U7d0F1fS1@DG^&e=Y7ed7*Gnk0IJmgUf7U!z=|;$96-D3w
zSt_Vht6jWJ>%=z2qHA|@F+7jH)G7w$FH!7J{ZN{pl88&0XMI)WkBG-nn>vfBJrH9?
z%O$zIl=CLTj|0Eig>X@rA_mU7FUtu;GawsBjP{HO8GP1kRw|CO=?PloNo5t?MgGw4
zd787b$_!7je)`y4!2`ZfpVx(N@UaP`hNG_^<59UVpoMheZagi+SG-6e6T^#!EcSaX
zwsU@X!c9}>yl=l|BOY)y(%4_oh(an0^q9_N(s~;vQ5r=Rs;<P6GWQuHN)SsbTTxOw
zmyEuZ_F(&W4JI;qx0NZW3)Z_}9h#UjxdLK}5fyLi;iykP6hF+<W*Bvtxh7{-nSv1u
z9){0EF9pwa&MUTJsi=agP0=Cpw&!#TT`(r@-d~l9XG(ipBvQ#MwovMSaU0ly1aI>a
z7ek|kJhp51J@WpL@2g_(LPDgu@2gOFbde-%ItsW>j$C=QVr$agI>BKCh|ph@NOP7l
zZ7RfSlvK!u5d7UVN%QU1QWT)Y;~smjhrEY%`WAWWqw3~gb%eio-*%v2$LaZKB@Oio
zTVIFB<g3`0_idVulnT!lS}B}lB0^T8oKkxIb*#2;6hpRJZuju*T0_&GnB9m83KClT
z`VA1vO+0#GQa13Lp#f_g3!Z`um-u(tOs_Am^G^*;W8<cP(O)QPmho<3Ul_7|LpgPb
zOczVSp82eTQlg>|1*yYid_QGxm8SDwQL2d5@2<uQ##7;EeL_rt!yW1z|2@=-(TEl#
z@P%**gpMeZP&fD%5PrE9Mohx%fL3l$8$kR*uuN~6;&pblrj?SI*dY?LWu?m~JaFfX
z3R5Q*(I(80!6)cMro0nRXZ{K84$6LgdoUsc?@>j>^S`qItET4F5J8&d&qQPbO@QO6
z!|zPD<`Jq$!_a_9)P*EiB~f^HlSJKtG*<ow42(Psl;KiP$zvUvrB-kIS{qK-ZohcN
zysz!e59v<bh`Tm}h-Z=3zp55YP@)_>_ea%_R4|&wg=sB1U*LI9{>P4)8C#py^Uks8
zdu}{6amxs%C@a2yi&OY<V7h_gUwfPdxe)%hf2@oX8g|0TPNI8S@*qZNBBMN?Cq!u?
z#PwtcO*qLzdUdP!RPza4(<(L){Y4FC%>u2nu<fOOPY0*C`05R<v)AV*Sv<p|Sw?m~
zy>Ghw1dgL85NXI@%}yb8uT&~0tb6|VcAc|vW)n6ntZ(P<ZOpv~R5%`wOS&e72WYV?
z3)MJByt7K+apF987j0`LlCG5sYz)bejXY3Z2|pops+8*qSU?w)xu3I~^pRS<Q;b~0
z<8<_lry?c3@-Xb?v0}P9>!KHE%5DF4_p^ScAZk6Ym>s8mVWx&p*TWJIf|sSi=WDA4
zBO`9J#2=)i0LY)#P9Xc$;ulk)V!wW+wdMy6Q|Ut?f#1)9BM`3FganwFj~A6X0Fe)g
z{mKi6Q7{Bu*=%EEBC`-6=#+|-N3>8;?P@YX!@+xxP^wg4DWBPJehQ_Fl0&ktpM?hN
zVs0(O!$CnpcQG_8eoi)D>_gb<c8>xv(~^R?3_-`u%16)gumn(sU75ds<kQ4;j?LBD
zR@YT<<x1=x>_J5tw&CX}d-V<pLDRqg@h&2{ck?uZuZ@u4t}fE*$#zKGW(D%{fM;@e
zjQZCzL-&;$a$bJ^&YX0P@?rC@D(=f2xCvq#pNHeSjfLntXOT9}&quM5GxKmL)Mzv<
zg0ll}RYIlCy0Yaal&`|$Vq*SgdQQY2uC&1p)?*T(rqkac%WQA$4QRcRT1!!V53Tfh
z+DYc5oQf})3PIV#4O^bx)}Js_QR8u1UMJ1SnHoNMvwSFsF&l-p0Iw-s?yMhiL(xoZ
zFiTrW5*=)Ys1P?Q*G3YKd`zs=HOc~<6$dp>e1%GS>m7P6QDYwxq;O}6XcU55hf#6`
zb@h|dmAU^^1s58bdC>2SV$*%r9o=y-zimc`&9spz4e0$`7%3SCi!E2wf6M9X2@gej
zyjgpffrE(hGqQx%sRX}QPiUv09G^Q(>J**FrY#v1wZ7=zE>1fQf*Q`W7B#47!tzYg
z`aIL2-~3vjTtCq-+Em+KGss_RaG>C4!10s~!{S^Iy>8!l>=QloSzOVIZLukuwL+|p
zOlZO8m(&Z}Sc!IZ@=IUJ_v%r#yaFxnv-<Npzei*gBm#ENnfNI}43iV>o4Qqt*Iu{8
z7fQC~8hMAF1e^<>zTn?BD^^{vGm5NZ5E{n6=Nn^W0yclx#lLW0s8jzQ&;OLAew&bP
z6Iy`69yE%nU+F><M<W@FC~)E!4B;1vNcMLJo+8ko+wgot9uM-#*S#a|DL;Uf>|wyF
zJu$`i!tcxN){qJ+NniKP^U*mA+1=YaVZp9-hBqso%Z`XH=MZ+KAk1Tko=ykAPhGcZ
z%rQ5_LX%PG*>obsv0BnIIHJ8I_vYRQh_w5cB}&nN)}2{*XZE574dj~^V?N<d+%yMy
zioZ;il}_hB6jpCUZ^I;$w7F2Rb$<JbpgqQ?3#M44^Mn_6E;3FOU>6UR4$%WSC#$Fa
zSZ|(BvPgx3kNZJb(#RWvuZ?0^B@S=ae-kbw89bYpSLTn2W`+8^KXd-aIzxjKp~ss8
z#S2Ea5#eGcAEzOJloLKSCXO08xzjsa-qY9>HM5E+Mtn{1XGE{eSewqbTf&zbh$4}W
zVNRGrsQ06Mp<l<}e@EQ^66#=Z(#jN9i8P?&Ug5Dg%yaJl0>kz9FPnt%Oo=}h2FNr?
zgii&T@@BL9=tAUK%Ebk22Xy$viUD9mUf@7Qdcq;#Cjk|K1LDFIt7Uw{weEjqi!Kbu
zrP5%&WD+h{ACI~N2`m5?OM^OZ-Pr1)hLMeVU%(Jv&Q;a2&SZrcFa7;#qbXa<0a_g9
zjhaY-Lr}R$)!ur+{L3Y=L-uzqcDC3VCA5%ZU|^JMLy3xs0l5WX5SW{a2Um_o>0w|@
zd$fpUa5phh(9r4Nqq4%`@OiPM8W<W{=ukf_X}G=1rxZmpv#`{cpq&!o1{X87i}shb
zQL)h2$iVp-JgqbBUTkO*fe(5<2WBKd8G`-!j)?#`+dSB;?rMNm^;h}ea|qi>aSZZy
z5YXAZ$HMvyHV0@z2J3;IZO9j50se}1c7Tpai}eb030Z@o?*0IMpI~6{&ydh{ejCp3
z?e-&zeDKELsaNobk;QRhdb$viBL9o4v9NC*zkAkH#^~>mBs9A4zYB(+yihI(>dn?m
z!$5~cuGQ?g0F1a3CSR_P7I+LtBUe{-fviV(6smy4>bpel*v;?X#|9*NO+{{{u3@|d
zihK8o1<jm{aDEhOS)pK>^ntsn&E;|tki|2l@n;HG8a^agTpU@A0(>QeK};RKD`dOp
z+E`K7lNN4q)0E|OQ>zG_a-m{nqm{bqe2w`EdQ}H(<HJK?SO4N^E>Y!TrX(S0+xHH`
z&vxDAKIs8a?dHo(*}euwsu|zkISVgCZl;Wl&)1p#aLNyVB1KECIs7Z0&%9=trbu$t
z>``02{hfBZC9|s0ALLA#WRVE{-+A6WnCIc8X@RuL$e1{#zREL@^bF(I#@_M{thTa4
zhQtZJ5*u_W>^^cS75RMxoVai}F78z<aRLYNG@r-c9-W=zB-}Jjy0_iIF`YtPNO;_<
z8ylao@~oG*2jb}ss^^-bfeQPXSFh!%(GOw`NJO82G|r}--g`EM4&dx$8>}Cj8qc>n
zV86O7uEakX)1hspRjO4R1HaEC-%`C-#*ZHW{FEq_w-(2!(>S<(dNE@Lw6b~9xZpA|
zNZTUCvN^4m>%epoOd8s@-Prj#n*JSYe8FGvdKfL6zr;apRMW5Db4=&I;ITFQ;!8pQ
z6OyD)Oj;w2tHuN*k1G{T`KX144S}$(K{`4xnbET{SSe8o%zi%Nt@3IHGkkcaz%Bs6
zpB*aR4kujf(XArNBUkyU?Q1Mwc(W1JN?h(s7L6C=sV9aQ=zOt)576F)O8Igf*kRIx
zL?{6+#CHg;XE)tzODsub7fbttq42a8%}`+)V3Kpu*X72(&*8((caH#v<nrcRi0MGS
z_73C|C`n8;Dg**c(k7%aP(vC0XMs_W!<O7K0{CjHIzYV!RO|GbH~Sr3?=;vf%s#WC
zQb<{j7Id7Oi~wesaC~AS4jiNqU-e{>lEt5JeBfa@T5J=Rr6LuBFW-<g`xAah`+P0H
zpW)THu+Ug_-YNRycNo43kZ*cE-XG3Yt8gAKy4Xh$J|8=mW*Y!>l4xugpbT+bo~Ty4
z)_PxRX=#~F>X-Ge*||7f0fmANT#gelKF-N1qQ97<UD<e^M}5%f>Rp&d4jBd8l_|Il
zLE5suHM_xcbK9;NH7_YY`?bO1Pw|0I*EW5dEF{<JrUnZ3Vd}z}vd1f@-a+*SGs|G&
z7HnU&ro^2Vm6W92s{AI3YGSIiDa}{mWo+>fNJt4`uzqpDmdJzx4aOTk{aq1KI$ErF
zF8%0^mNZmghj%vQMad*)hH06I?PqvN1=a0PYF_PseLg|}CzB#gAsS70SKd~<C1SnB
zh&LSuF3T_E!!C{9{%&m~IT!DL7n<5!z?M<@fD|THZFm}8F*@q|4iT6-z7%je4gKlw
z@6S&91AKEWPzYdx)^i8otzR;@YmE=p&vyGzDSJgMwn6eCup3AIY}Ig^8P+;E20WcS
z>9iua?-r8<YX=+dM+YDN7FRg``i$;zO;k11`&n9A+{X;sb)VDRTF=P9*ccoCJq|v$
zm{|1*N`?&zK6X(lBeHRD%~*C}lBlaX%^Y-&A)xv0tnQp$ITESqEDTH@?u%FlVCRV@
z?OIQnclqdNk)*%75&mAJ;r%N=g2(yT!otAD$fDkBCU5aoN^*28U>8ECWI~X6pAYq7
z;!sll?&v0M*T8SS?i)ri`oV&Ns!#i&QRoA<W7mB@O0Mt)(7=9?7KiqHgcu)?wbs{9
zk4aNf^wNU%@c0iFlz-#u``fW{>x)&R0Z$v%c0KeN8sKT*tOx@_{gtyzzN15}9)zvp
z=;J8{t>$!o`@55<E`S`HaBNTlJQ!$wkdTpA47E=bV^%GNjg6h&>e?A$up~KCrj3pR
z2OKz3{Fi5E+-_HvGBPsDxeoi&m*99oBH+j3v8Kz!fAZr1L_%Q6BH;0K-zrIx)wi;0
zwRvs>$B}^h#n;7=b)ZnLxz0d(@3>AO?Q}ecfExLgfX4|wb_MV$*MB2aARhA65V9Ie
zMG!0je}rtY@}YjpR4LMAD!0`hFn$5MOZ~S#lB%!0qr`y6^1*i8tv8am$^0$u3ui7g
ziB&iIcKPb^1gstJ^ueh=7|Lch-&2c&7hKo}gX{uEJrZ^#KZfke<q}eOR*}2I{H_A@
zQ01&O0sg{xd-X<-frg!%1y5f_OF=CQJ~J3QM}tqj#y5w-P*e1!1*RotfU>Ku-QyU?
z@2zM+4ZL1#c9hN?FNme7<VyJ|U!@x`=+OI$hfA4(i<Hchm9=L7)#=r4_C0Y!oJ38%
zYX@vl6+gINs}Wd**h$-n_^<dx+AGp!UsrX{i*B&g*VNTikt5&b{fDfJ$;`~0{V9xs
zAM+uaV3l2WjS+6Ge%Id~6AIx>{prtH3pxg)I-A2zB#^_R8W;@yp)FflToUS9juJ3A
zPvW$B0_<L~2t3Er@!T{XXEI81VeXxrYZ##I2K2wbUmF1y8|eOrIWhf)e4!BRoSd2*
zZqI_(mw_g`Z0~5gSj8sM88A`6frkKtXf|8%!U&kJw_r>d(3_u~O-xPbF^ryYZ;J|(
zZiQK={1tJ0jyYU!H8Z^(@MVeHv4D-+1?B?at1dZ<H3+#fksmm|0n33D2HY@WDxW>#
z^8LYw>US5o$OHuZhC8FcXZ*1i*rU-cE9BP2QaA)(wb}lh`E?7ob$v9I@^NPX`t9#B
zC5zA$b+zniL*txu?j|IDJ7<sbZ&$eL#nvFx%{K7hH7#vg2_qB7aR1@>ZTLuT`eWc!
z(Tpm|Fu%Q}fZ*>`#*CP$^mn{Fv$f9Z=4T*~D^0Wb<L}G=rzd^yVvImCj;M8S_=5$6
zip5GaYFy4E4=uOY4O`5PAWI4}T;JtRfQb8BV>XUysQU2XGO!%-k1dzab#QWAKlc|h
zu==7!IIUochjT`A<Y6dcdeTsMp2;itcvJP?SpYFcdP~f}h8S;0P~`+e#<}%u&D*qL
zF0VZ%@6r1Is7<xOLu9|<+LrsV9pG07W-Wducvsh(FNO5z0%y>|-2CnBEik!;)LKkS
z<UU_=LaEI;?$5Znx#_fgl~YLsGNA5t%=uM7w*Z;SfUxU4I9myxN&B;z*%G<jb{Dg`
z1DIj{orw56ZEy&H*=E(&c(igI=mo4|3i9$LC8fZt{zsPum=v%xhYIH>OO#L{Bzt+R
z=34wm_r*WH!u|sV1=Y#Ze_gaTB-G#rSSYx-xPcOJC^0C92Zw2CsRVZdemj`jVZq_k
z6GWD+fO;m_*Yyr*YdA%c=%S}ghaVxr-9PxWvbny@m`N>UQNz7sxqT)E^)=E_G%9k!
z(Q;j~SboQLD%}Ss-TX3tFc%kIZc{9-VLY7A;u9x}k%)L|_U+K!XnkrF%*Hs*CI!h<
zqNX<AIrW)pIC)xJPd6M#6?zF`mPCBrS&yD95FQpB4{C4|hP(fWb~SP&fCxf|CY>YE
znVj`^&b!O2Ll)b_nbKwOet&uD9>g<Ezldsm@QOa0%Z4FUl=zSO=0{La5OBt$)73bC
zWiq@H)b{=RcO8S_A<ms9rnkvyH~Ly;b*|c&(|WN1z>|OrZ*M-A)@9dj^amzl93CL`
zb_of?SzXOlZ-cB=xAzyF^Znc$3;-&E_4!#yyI$j(;1eSLcs2it8>T1Kz{c77^72f%
z7Af2sWo>C#sYGeNMoiZAr%LsOi7!vE0c?^!4%hRS`$Wx8AUYa4Ad?!}ff$7&NAPj~
zyX@|`XuIo9){0N>cUG?ymn<D*j4KS3o;+g=O@=Qt=zwz&N*5?B3}kcMq|h$sSqc$t
z|I;QK=H;V^mTu%bKbRBEmEIacWZFRgt9)$v9;BG7IJyI`6)aCY;v8rtM@J6~SLQG<
z3pqJtRfgbfzHRDcsb}(v-3J(k-$DjeMnUkvW&s>2Tes&JkZ)VRKiD7hdrV3g{feQ~
ze)G<HrIHj_mK^t|cXxMz_s)>#Q#hVljVbX+@6Pz<Ku_6h+JZB13wvDlqk|D75b?`-
z4}<wHDq!v2xbxE$I33QrCPzycVZ=kcNtrTRsWcE1`#ruAFC=C$TahVy#zJMf+;VHl
zfs4{2ox(<K<_qo74w};I!$qRil%SqD7PY>BY_}cfeXzLi#r;t=e%ZYS9cTX^39Kma
z)Bq4Qv~6;k2t^F`H<$}xx_!Z~j4^UKUoDo*RXb?ujhWWO(LVn%t^}!qxAxma3B|>Y
zc0D1?27fH)>gH5`hK0O=AOOg2DViAU)7u#vO-eQqb@e^Ka&~C7zg@m~Jgi@l$>0{g
zipyOA#~@8JmsX?e+rJwALbn4xZ{_<a1)94$I~h_1j@=eGdFlRMm1;y<&=(bghw{N<
zZMAp|#rf7SZJk<LAQFL8I`8Rm`!k3*1&l)3zw7qZk~7w$>YDBkJ#d)4<TyZ>xWXQ!
zH8G(OGy?HXPQ1(5uOIh?kNvSg=>KZ}vRGB&DN@Ap6@K8lqrBuzD;LH_j>XcT_k5Bj
zCt<3T`a+v#FxNd<Rnvx{TZ*Djics>vaIpl4fMsY=vWN4f3tK}eMGeZtZ6G^Y-t1a<
zO*s0aCEfcU2-I}c!1$$KeOc4B^%eFos92ZhV?6+iN@mGYxs$e0NygSk_8D#+(iV##
zWL3TKN|QXrq6>VXY1=>p_{*D6Su-#qIT>I9Ba-%0$3hf8WEdehK;B)$dV%Cj{v2?n
z4d2Mw0Dz?s*V?LTRz)HS-=|coOmCe+5#N)zf_8l2ES;*fmX$K_OUF&wUMwI?ckC^K
zV0*Vh{o;gRpI><yW^gQX1jw!t)kOYxn6YhtF*^n<X1}sWRfs)l>qZR0e}P7aduguU
zg$)C^5Y{7!VGv--dXJ)o<HX4e{?tt2wBmQa`MTN9;NNz~Kt{&Lm-Zt28BO@dN6`V8
ztRgq(XvD(exhSOG$Zu9#<f9c<1z$Fa1%v-EfqstdO8BP&X&zKKCV(`*`~=!VR1r)u
za0(RvMbQBKOx%_4b!?eOgyI9w4_O$~=ft9~-_`tNu{#9@U;GY9vea>aBLv<BK%H}8
zk6-9)#K4-6X#=JYygD|V|DV}|k0yn&{WlPa1YRG|wMl&vDG1CaFTy9NJn0M$zzBf#
zKhuc{Afoc)`oyc>9rWwhN6@Z6Do~?Kam4(=+%nXAK7mG$_`?|>5K2StQ~-uT!Y@_o
z$}ggFLBMMV9AeSyL=KSLAmDN3aNO2vZEX!Hv=c~_u*HNW<^8Xz!t2B>{rw&9SJPjw
zAp&92WD+EM{>Su!psK1a@<|l1?YL~mfeF=Zb=2GY@g3GTdWRK$54zHldYfkrl`8Yg
zJyt+RyT9L08tCZ(v}1-iEgH)19$>LQJ(#nnVq@jR<ui{BD?MzE1U&{)jrBx;SZ*qh
zvo<GYoJ1O@*AoD)WM$XVt^oTW_(IcbT=B?pn6f2{WiwY;RD#mhKCFSK{&-Z!3J@z!
z7_JWHz_YFPBfL~LD+s&d4m<6-zV{zB`4>CIfLa_U0VJXQSTD;)QXJ`J6JlcGlk)uh
z?K-Ok@D#aRUGt?+uBEF(fbxC)o;ps3&+EzE^1!WXba*)a&-!js@$>iBKQI`8HU0+R
z+6IRPr%QDNK-K;8X9D1QwR&F8gTGOo&4%A;QPu1D9q_HT*=-hSKCPM80IM%>!&wdO
zO>HQ=&ag2skc>@AVm0AKgl_QIuOp6=mI`|dp;tLII5<d^=r633CQ<n7eZ-3^<m_d5
z)P@Z(=K}H1uf>PSe<T3p3IXp|UEmiJdXvSK7M{l48sR~Rg2y{*@hjjG7e1+HeBACd
z>%~&t>T!>#X1CD`=-BF@%YgN-avj2<I&EANZi`KiUoN!YhT9e(^M2>*f-m5yd07ip
zP*GnW_$u+`CIR<A>?+^OXVu83yV=_9JXf`XJ8e_YO89Nw;mrcp#-<}k<N$@~)$vS*
z^6Gd$V05K{zGkP=z~E2#82Z)T1P>FFEaoFbkmuS;XsCmQ#eN<Efr|#0-Np$~x%Wm5
zfQkIT08A{N^m?CB)tA|b#Y}ky*RGX;!5eZAl#o(y$?tY_U~6*>5Cy{GGuBJS!^yYp
z0?(K?Bo$!hvfz9G9xfj~+z)H<@Yy9m(|#~L`APaIg7@3atLPC~7PIl3EqaZ?G@k3#
zjyI7z40UQtfas%a_5AdhP_7y92|Qea7kO{N!|~za0g-@PwO#N{m3k%ugLakaVN<Qk
z3L+S90@ZsII0{BN!9$PLb#ezV^}S)THd0gZh^^e77H<Lh)7Z!eAUqk4ivdM~&+T$=
zA)gVlkFw><PXE%<BH$mPThi0exDM^Hdp*{IP?aCZOsq-s9g?7JRw#C|GKI|pP&2RX
ztF-R!?iPChDl5OUR{{iXQj#pO=L^)>64kbcp?%I)*DKJ&ZIq~06Af=vsFDUm0C*-;
zchgA5I~+KF!}VXYvwnT!G8$@XSf}3r*N=eLbQGYKGKY1%9?=OfDgoUb+%f<u^3vC#
z#7Ss1UDTIpHKm_i1wdm<h=pPuZ5=IxAW1#pKypg*s3};h3Zntgij)rDJAqRVoSG4k
zjNW29DTM&QZ+pD%aOV|BEaIyDrWHQb<JU*V=XXeu?yq@)m;C}~!}0OXaj6(4Sezy4
z1@34vl6rZ1Iu>VQVssuF3TuUok`HbftFfw{i`@yJf*(oY;Z%rqxji#d9ZjApzDGJ}
zHyn$0ul5V{C*KT+eL<#A<gr6$&}-Dj4j4V(uSifC+Nze7l`)-i5q)%4bCf$;nYo%r
zfB!xyI$GbzDlO`ErGlB<{0fxbk!Pi9)f7=~@7W&~Kv6%Cz>sTVh}=ktPo=0Xhp^?w
z^N%pfSk($|R=Nb+nu3iL5hNQ6$I-|^=1US%^jdq!#D5leIe(2wNJzxO@suh?mpd|N
zU5J10&y*hnEIQy!iNv#+jdu?ZYtNv^i_l#ijJ<$vy8@ApXWF0rPS^X+er=EBOQnFV
zmm!N<hjAvdP=9D>DEQVyl7B)ZoU63|6Z8F#dE6anvqeiI#7gs!(Q4I8<%^U{RFk4`
ztsojTtyl6R?j{xj1h8K<zA`1#dHW`XTrjT*khehKhaR(9g~Ys7k0F_-)We<))5-!M
z_yURg$NxXMzMUCjWI)14(u<)D@NXYWxiC^Vlla_eXO@|d&*LDm5>=pScb#?A;(Hkc
z*@s5nWsnYpL9f2Cr7WuAxpklxbjM-6Xli98ZR%!+F_^^K4DwT6h6ucdOoMOz0sG`z
zIuDpr!NW^QN%=A1Mt232%%(LvL&0MajVOV!n@=SeqzJXTItDKuH2^l#1si#cM589b
zoDeVwNTu*w0X#;t^C2P}9I2#_k9PD-pzy3ty|vbx8B}mr(vbddx4;ys1UeWT-Wd}e
z@P0iZ+OTsZkNnPlg0j=$3x&`9jmxGlv+EOpeK)&I7@rjaRM8#6KJn)OuJe)S(s3o<
zjqRW{QqRZB1c0!TGn=G~+IhHz>*(kpk(&mv9^>K3Wj0(iG&Y-M-X%JKCe^Mo>;sVy
zFmLF<ArDRw0NVBoVxi-82hi|anuEngxEh<4CoNNe&9u2>bKDxlRvpRkBH;XX5(#d;
z#;->Y(^d;vSy?}AMUQU%!Gz#DIQWEJAHWH!h_e)V2`mwQ{SeKqZ>pQH0bLKiy6FQR
zyL^UxGe+|NgGZ6Wfux9ssf>bB_Qbri-kUU2VbEc?m?~RpvRZB_46#7}`@_~n(>8qe
zM8&Mp;mxxr2SrTbm?>Ha$vb|d>N&&XiM!2a#b#ht;Uz%YlBbEgRW4k;XQ>cW6kElj
z>v_Wj^30N1m}}`uYsWLkuup!<?|z*IOkWR)QXl*3{wgenW_M3ktmo-iB|<MxQbh=0
zcEBDWK+b(Z1-=2NW@KutW?!YeT)DE7Qvj@p*(mBG#$6E&=4np|LMB46XYgX|x8P)Q
zbXRPb%yUndf`~{@5ZBYOHM$EAiY!R089z3Pv<^iYbl5_XY&lc`wx;SxP(F$560pB4
z#SrlLoE(l)Kb%lqDD{e4gZ3C)+jF8NBErk^>P>zKm8B2`a{*)MG3Jn;G?AY~mP15-
zco_75X8}0>)Kwfd^X@k%YyELrupXCMpFg|0aszMbaFhx^fb{!DeUdKJfeQon)|cOC
zl|z>Q%l9MnV}q%~%f5}6>+4H<8i#)n27I!}G^lJiVgFi0MEjcFM|rSDgDb**DQxl0
zYeVovFo_MJY2xx2!U$&iSz$dXi4^U=t)ht@5T@7*#J{}sr7#@Nl&9H+&(k!P-Tn<t
zY!y*X)6)MQEcya!TD_%IP_vZ@#ePP%iT80`&AXZvXYEM}%U3h_cR<F88YrUR)H>%>
zVTW`dgp!u`!Lk`}6o*jHbcGA${+eiEjFS2@or`T|^F}T&2sL53c40n=3Ku6g`6n`3
z7gQ4MRagv*Oba<1&id;q=nK+LdrM%RX_Ok=IswrIdR&_65MMyjmh4<itK<OpGlR#q
zeVCYVJdm{-wX`kQ#huPY|AAQy;Be6JoDK_WD4dzH%cT*H_h9!?SU@3QBW7LiPPxIJ
zQB0b*Ig4Oa+a*Bz9Y`gdEe~voB1z&4&q8>}HoBYoD_k(kvD|N-g&r$jT8>@W|0!*a
z{)Jo`zydTRULZEOO;UH{soIMrhg-4wCPb{?SiITJI@@W%KxERJ?D*iiYSvdxmdyO)
zr+n!AhbVMNzG8|eCr+ysxF5S=_9ovG@Pf-_k|KpCYlx6pUJAoFoJO|5zAc#0p&XP-
zd194fuakS+_cWks5;I|%!(;FliUNf&O=wbMl7Hg|DYE>WoV*-h6AGa>J`i1RJ9@Bw
zMo6RjA8Ed@v5I8u2hMCuPUozXL^Vv|^S8ffDoHlIu9Zlz1&KpHO>RvylJVx9V!`u}
zhN;SYe3kmnUyL1FjTWfxtAj6psKJC$SlRr%kxS*4)Z=evrW1{0ke);N88nc^QrP)4
z^{te~XeA^%(4=6T3<&W{RqA6}KTq~fQIMK<EMf=hm`&ou=&`RGYqFXjr#iCAzmFlu
zTebeH#P>KVY4)*&gogF}Mq^)K!L$nfF6Hq!%;d9ty+F(-<06)vJcIo+9<E~aqRIC3
zpyNL*2XFn<yUMKdN|k3_C3Nx%ssUI~vFQDPovnQUy7sG^w10XkNM@#oUz{k=yKGSC
z_mv_$3g&SVh4Q^d`nB@nKfhFdH~<VOM1l<?bNv!pDM?8Ihm9SO?_$J~^fbrgVEQFn
zzD&D0lQvTx6qeGwj(1X)2bh=12G+(;+Zh9Y!c#uRzG-#4Wc!PY&-*R$V?pPt>uj#&
zH^?>YTefqluk&^JK7s+u>B;N3Jq{Qw`2LCvq{fr9M#+BG{kO+cDRO8GOIH!oqitfD
z!#vqy!Uee!VTw_QxVaKh75l2xG3OZ#hTOOoY&bplbR^f>i<5lbgwu`Q==n!pm27@h
zslV%h-Nbv8?_WW6A1*=V;$TU9&39;C&od=pnXT0%=f>4%Ug>g>e?t?<;DTIydlRpO
z@>aC8^_xZ#iT}4{YvE5Wp*xSWl9AIK*y;*rR5DySP{7`;_<43Uzg=zjM-EbP4#kZY
zO_zj(usrJ4%|~?&2MUq*QF`swv`W7u)NM0Lly_VuApTlT*X1YKMyuTZkZEO4nf?B8
z<sXiK5lt?{J0=n6xS+V)%`NHuM$O?h(ockZt`Gbi@nX4iv#Oj{^M*S_j3Y-&c`_+)
zcXj#bb8>S_Roez<uIn^U*Y5L^K20Fv&p%yWJN+GC!gBcZ>0Orl&xu`loF@lC^dEDH
zO=xixR{N*{KbSL#yX&)wZ_T*#%Dk(8F!-M(&(We(>m@5qvE8dToc_dVQc<(cGkb3N
zJa^|eGaRL`#Csgtf2~%D%AhdokQY-qba#c!feHVeSSYUmh9)AjKT?hga^iOoUH%zA
z_S>}1EL*#BdE=Sd@#T;bc}a-B)Kcna^MUhX8#FF8S69qV(r~IuLX0wev^NR6L_bri
zl&JNaR@-wNf|LF0-ypdd25>7toql+rb;0{%vH2Obs<wRoga}4c(RV&K#lDtSVS#4*
z{nfzZV@Es5OMzQ&Xlz|)GIMnj)Z2LO<t=5iuT1|59v5OWfk6l4ltf+!$Lvp+%-8Oh
zgW-~}P(y)OI=@GJQq)|Nbn*U-M{hI$4X5&W30@k6u{-|VpoYi{A>J2*++0Vf&l8v-
zO{@v^Wz?HDRI~#3Bv2y8(y?j1Porkv{Jdg*od0vQP%WX;PkYJ{T~$d6|H@&g4K=1}
zK4T?2#MaAsNfQ2D+vBjcpSJ$9YBG6(o)P40Cc*5jR+;9n$mA9^&TtB*iq$Ze1wKf&
zEOFv0nsAgnu}=}dzvrE?RLp6PuTIvqXH@O0nlpaOlVzJ1sS7av&5_f=yDz&ak!1%1
znoQt})JW!b(GQ@qpH6j=$gR>!nWj~K0JuFjoV4Xk;rluJ?UnXt-K~<w=c5Hym%rTt
z$|aK%!@H~|Zr2xNZ*<}8&jIbJRJ%G|Ec=nyNvhgdx<T`(`WHa2TlNk2r89e&fBpIy
zaPKs=Xq<Pa?H6Y=lG&^w3)evpkH>8{*xmi@>L4i`@rtGK@8mA)NIHMMe8Kvkh)dIP
z5hAn_%|`CkKCo<A1N<CK8Xh17{1|=PKeZ34Y$FydkXPxO8-d3kDv|wIZ6naA|CUxm
zU6oG#W?(>tkuRA8EYbQn0LRWi-xA{T)*a;5dDI=xZXO+RSZq1q#F1b~a#+rz5D+jM
z_7ag2IB%D=)|yX$Pf#>xe}I(vEWvO4cLU&6|3u(Uw768`Rbr_xG}?d3lq5#JlL3dL
zkb5qiwe+Vc<!)oag1moZrd0d#1#<69&dtI=UdwnWfvfTvTa?f<GHOxPCK{sfY&A`s
zU|gFNF??P;4bh$S(&?a`wnCO42rJCbbexX+de-_`SYE9x?{;sLzG03(DtVEugoMs_
zmyWKAokELLPDmQs;fIy-CkO7?g6!&_&BZLDQX5X;Lq+B!R}rk{hXwJ}M&$}~M|lAy
zly?OG@olqOTPyK6?{PWK(-|FkjDfHN7z8+6{=bxofY&I?ii8CHebeqXAWVaZpV#gJ
zt3_Q=A(ENk`Mg0Q?jSpR<$7mqY2{hZPNM(U>&K#|#&81G^bSM1L{5{ljniV~a#ohV
zAl~F)MpP0E<_`}nxt)(@>oYJn1Rx>!YglcL4tfg;M1Oetu3|%&-N5wfG9BOF9?w?d
z>TglUP=?-_;l)X`emzCWNh20psxw-jvf$*x<A}LkQx}1*D|Gq2L8pqXUZzn$T(;y!
z6gyS>!C*_X;9ym^-g;;c%pt0052n1zG|v{Qw!IlOwKOs4HBTlIPb<(ER2EhSK?dgY
za@+aX`gc!{d&N@q&AIB2<=&54np$FyY|5Fko#K95LwucGB(MzrA9tFKYAalV_bi&*
z&%&y-C$v={Zl$1aiD)n`N`&G+`$kV(xBg7AC-S$@`%FcvB6@X3VOMT$+?cG&Xw&1w
zNhvXGDbcmTj<g)n44Fwek#57!`J4qTpu}gP*iPZr2Hho=CHd6a@A7N#M_3|SE9XYr
zW{sayiv5N6u1x-Z|JFnuC@21kJQC}RrX8j6q)QWegwj%~Y%zk`mkT}s1A3WC7%S2o
z+R(+_8I<edAmnH`mdguhH|8r+17c}y!UH<M^6lr9+q}poysWM-4(iOOxT*X?sUS1@
zH9^0k-SG9b+U-M+WTdQraLxu=qg18-Z57}Rue5HzTPyoCL4nI*IjqI0B&44eR$D8@
zfZ%!?(%U-fde(g^VtuT60!U<Nuztt{!r>|-A?WIjx+$-GmIVM9xYiio@5s@7=I?0(
zz$SUWYuPy15E+=L)&=>P@4w)}bhRg8W6wL!mtdy}X7HF`NNK34eyl)v{WVikaOeJG
zHnM~xvm>w(xAqcn7UDIn?>^naN(ao4P#!ot_<Ok!IGxCDQkn9KEt^L|`+sV4nX@(?
zo_UAaM0Y5O`3~a_rK`Vp_u!RXvYExkH?d|32iEYR467+Sa`#d>?D=}49Yt({rbbiV
zyrsHf<gTvfQFLYQ+4J_@uGU@{!R>xAD;l{(wwt@GD(t(I&B@BUliwO#UvU<YX-I7D
zoiup5S`@du$nR!iR;Jz(K;A8b(a_6Cm^CvqlfSLrcqkD{Ts=tc@&B~<mTy(H-`+Q(
zgkXS_q=JNWcS=ilcXxM7NGj3|(%sz+(%rED>F$o_M6YZA_TGQMb07C{+`OUYT63-$
z;~eoF<MWQgS8eU{!3R04f!SV@vFJi6{~j$KKaecq)xRrDVsm#G*yhI92Sd~GxWG`X
z#kMR3&l(VC$VhX49nK5IwH75B1?zUT(fUZUW(wXy{h(^ekKy|qs@p0iqoD9PUPecN
zCCTP+zh)p_Z~S^GC5(>{I)qrLRw7R0IY=>$bts{&LZwJZNL;91|HTbV>pF8jFywMN
zJWQOSXS3f1I{!vPNb~G9LT4=^#sSdDC`f&bDtUsaj=&3nkudM8SQz?kaI=~F!868$
ztqAX^^H`u+Q+!dX{15@hhZl`3SR>8gOpd+*$-Oz}F@fUSlw_{@;9zH`((J&P(B5Q!
zGw7{}-sp^t^Y&6_a@X0z<6f%9`2^P0wZ2gGfvPGOU=T70NrvKS&rWAf^a3B+g_77E
ze#+z`2{`VJZY}@zaw~5URioNiFP!r%(%4v$!Q_RINT%2yOh&oo+URfaVlZg&G>gU*
zgBr}m(eG@%`GmwsnRLO*`JK$IB6+n_MJl<JMbO3>@(PEAp9|=X{L%8I%h~v=km@#6
zQNS_;t=YigxZGCA?${F!@VyQ@v!4q`c-#?1MY$jWJe#gvrW<;@@<}qM0YQi1M@v`@
zX_g?+Lqixcd@KV%WZZb$+B!v}A4>agHdE7uLb(x~jyF<FL8IxnZ)Z8k?fA5PYe(p}
zbszC*M}AC7B(buauAhQMBuuigQIchP4wtPYw0*4s(Yab@Ezj-D+{_F-J%Ey9Y++DE
z#N72YW2a1C6io0=SIC!4;ySss#>W*}XmU5auIK@!Gzsy~--3dC!-3!7a=PiTy;@o`
zT{B!_br*%`J&{1`E&^s#r~1qml}jYExo?lh2?WPb#WJhr%30UW?=ZXZ@-A*|XJ=*{
zhlFs%GgZ-47s!`)f#ha;9vj>2JJt$rc6K<MtwV`mTn^0C;}>ORU3?~wVQ&=K|EgAj
z$^kpc|13$>xaqc&*UJ^nXG>BGkMfpellKqyG}&Cu_KX=4d`J(VhN@M=`i2lUo<_!V
zONuOd99^PBarcBUBQn=6UXB0^%DvilBXS|bhM$f6tnXahTUAz}R&6m+vYg(NUGI3`
zXmOXtYzcW&dl1>9<FV*1b%j6J`(A|a>ec`Z!T<o^C@G!da(-j4Vwk_oVTgv3)8(u^
z_L8=Ng@Ja_o;)Kf5sXY0zp)gXGdb12xqyvPS$xe?#31pMUNi(~yc9CBV~UEhF9=o7
zRf!2WR*DM~Al*&X)#aY3NIZ|c7<NEs#P|Jy_fM@7{#j!t+Qog&`(E|ixdZ4YkdA3W
zTGr<uG)~>6GewOb=St|&u$cTi(8{-on?M>JsBN2=djrHC^8?6#{@KX$NJ$1WF`|G{
z6-1Wd9~aVL|F~z5580b5FhEV#hs|CH{>fIm(|_Jhj+nvaCJEHT@(6HPl<R%QZO}k+
z;=4-Puh}c_kMd5hX~28R5rafZQV>ZzG8ra|RlvI>GA0t|78nI=I0qEduL;iwLipbM
z9!q74ptf#}g25H4wEV_@0W@SNB7Px*T40b{xYtwvoVQCc?#j0{LhxJuhFOng3c6GU
z(x?>nOG;j}2pN3;zwkdFOi;QYvPHBNMHGz{7Lfp;8IYFbM)wmFOMm`R4&m_t1=FMZ
z2>(-AvSLXb;r`a-+&9(Tz42@0!=cx6O-KTmhObwy+&TD2#{oI;b;{DpQcxe_ItxBv
zGMlT~qi&{n-}@w0s>Gw+#gyC>I`tq<Fg<KluNR~(ohf%w5L0<u07MfWhdA5}83zDb
z{+ZrZ`AG_>?j-PHZVvA6?l11rb#*ow;sF!k1bsm0``ej%$CQ-rZ=w<slVi|Pg1Fqv
z8(^sRmI&-?Tr&fMy!(}8`YS;}0L<iP<-z~>0yZKD7ifpQMRL91zJN=ZYWdPrjo?&1
zPBr!&o7+cPe1L!1zqy|=G&HQX+p-Ksr!Fg@fz%sX0!kAYYYx<;S|$cr*<rFIl7QZ(
zq^uk!iTOhCwWOq_rR54-cvu{(eQzYdq5YX_0-q}5{djuwfZ#!2FGDh(K{;0r@Mf(+
z;evK#M2@Wy)Z1jU#A;nP_E$fngyLQ#v)Zn&2m}Y25Yp0)93*Q3I$D(_<dr1IQKp0?
zBOkJ~jE~#37B{o7vsu?Bj%5$+E;eFoa5^0>6{**+_s8L4qH$U-HgE$CC5kKx5C@v?
zXoAE%7<+#Wbd#(&-{r{E%UvkPG2mf9g1#4v(KLuZjkSCotU)!kwFAkVee*J|#mB{n
z9?pPd1nPM}mvFrFg*(!0rf#jJ87`I7W&uIrt6v)e^O@21%E~b)UTC7<>KJR+8ut;G
zHO1x5fXe#*#s-{av;2+%z|anlPg2e;Wddfmi_3X`PtX2b@xgE^pFEkoi;Idu*5(km
zqOz(o<)!|URevI#qdfV1K0ZD~DuHi&B?OPpSgNG<;{fAq!EacASfN>I@{+&#utNF7
z;DDFc<@9iOGSk#fP7Wx0Q>BO_iZv?p3?(H42+tT`t`-;FU1dMcCfkFtkFISuEMgQI
z4J^Crn?Rk=b<0p?dSL-zJAMFUHHMeW35qylV8AF~(~+TXguLa_0jYH`L4De6vP&Er
zc*v~3OouCS$8>bkQk&x9X0Fe$!N&;+3c&(1KO=b(Yjrw%n;LHtS?yhV$4U7ue)Q{k
zyq)g^GO(U&%bzjcQQs~FD|g0|xy)UFv$s8w_bC$bQ{@y7wbSlQBMBKBRvP4!51f3i
z3XH<j$$_4pT2KO;Wu#?JmmyW7vIGNEKL~|jv1t7ijs(n5b8Cq~FdUZ2Vw%Nlvt+__
z^8UX2zz=xD!1#awQ8xC8;N}j#ZMex<_Y*vZXGBAsMRL9V#+f2<$ziF@r0`f1BJ#n}
zlms6>m`)aPnogPpa3oY4mFlb^IH3{rt1??wna!*muk{_;LAY;vsIoL0-5B+^$AQ*N
zv(AomQviq;D%a@Znwy!z5U(`K)&dUUk6*0<w~6P5=4gEY8<b{ibz-Y3%g35^{1m=M
z7Jxy^fdFH!n(+GKts+P<!#kgDj{KN4U&upCYE`N+!Vhx|wL8O_IGC^HQ;6uvm|<mw
z=F%iUE}y~qWv`g8Fz_p2s$5ah$!N~nI(5WIfD-00iJP+d0^O%4Yh(++O?lwgQWf$m
zK0NQu)TgCkd8{6DBH=8a*0OrudjohK-<!+DMprQ2wb5>iAWEXVv`V>L&=rO*q9>8t
z^ZvI`sJD;LS@pX63V(CcU0Zv5v3g^CR20mo_p3e=+pq5o0q|4(wM<^9E*TKwq1%+>
zvfHba>iAt)9{@MqC}`gjrOh58b$|v~iF((I{fpcE(pZYJXFqy2yb%f$vj<+&+tkd<
z=POd*nHxXy8lrm8zz|=+V<J`-4>R19gAWaTckz{>7|_Qzz%=q(Ai~9r`B4H8!DVg7
z+|hhVyfNP3VTh8XV0wM;q#rn1sowFMlO3qvJvv4)#a?v>^sM(}vhwG)iT*^s&I2`{
z&6VxrDa|<+obREbL;aZanoS;eyFFt)5yYPcQ4k#WXSX&tYqS@>>Ljq)UW<V;w2RZZ
zmsIqxm#FVJoHl3D;lvW&Vpp5a?ccjUxc!;v&a!b?s{62emn||u2CDLcf`Xu`;uG@>
z`inU79k*m6$5H5-Cm`x^6A*Y)d=?S$-lY{&0$(c1+r?@*nWCQTj{EZf#nzMUadFGx
z>e5CHCA_SnqWt{XZ9~*D1DLPNykrg(bG&-kSXgbptpNfPCTf|(J3pWN(Neo}zrXh5
z)=ukZs1*wW;5Qg!Pn6z_I80ImKO7ycG`T-!f{cvp5r_!FqMBt}_k(25_aqG~q1>A<
zzN*Ss)9Qlf-T*KulW9B}@EhM{XJ<p|?E89Vt^jFRujiP%<zT_puDYax!x0_2-}cHN
zSF`zkl{5lSQ^dr@(W%u4!-Us|9@Z`(G5SILzF(CpUF1^{>)eixukClzbamcqDXgy>
z;Cn0roO?o*d0SgMpEn<HadV7iLjeL!E?1?}5yEw7*OLZ-XYXun95}%EX9WkQj*4bV
zjqtdu<#00=(!=#LQ*2f2DKaXg9lEz6pwK&zMDN(MLL?Fu-nXV+YlBHQ_vp)?a{e5_
zv>Ie1VF#KOG!hbW+4l?+c#N6M@$daCbp+na;Vb`xon6VNXQaQm+OP&x#j48E3AC=R
zE&#ZDtcC}e1yZ-@(V-#uC7UMT8~JirExut&Ad1?q?}Ro8>(keRsCN#^8|m{&<;tN4
z!)QA%@&;^}PUM|!Jlqr7P$xFooY^EOnE!GVa?mK;NJ<Oh`%jzN8uQiTF#o#atAUo~
z=jHrcKNbi81xc%nMG!ibL5M#R7K~qd9GMHDfto}{fMKeowNg_{EW##>jH&gz0$D2A
za9IH1=^c!^0Ch?re})EY!6T(A=dqggd_d-n?oqFy?+gCS(SAzva)I1G&g37-4k^8C
zM*SoP8i<p?2?VqdTIK%Bn#&<!ibua~4emC+8@Pq-xf5h$g$%AD-5^*$#T6D4BLw%^
zW7tmj*Ifk8m;`VP6pMDlt2^4-Rwnv>0xdBpdD;Be|MA2@4YW6sH06awF+My3{vdMb
zTUr7dn#cMV()T|NR-hE)%m9{;S^FIz_Zr~@0-;xHk|~@E^_Il|1N2y)0-oic9g~Gp
zP*A3&ry)j5CbE!HFx<AJJ_U2XeYFh+k|zKcY+($98kRSvs-?D!z-}+j*8+8V0)ToJ
z?)jHu1EX;S=4jumHRgFf-2X`Wieq1>Qh73{Z)jR=bVNWFm8bfs{RyCJ*C~Bb++cEM
z^7{4bJNvgUy4J{JM8_$vzyA%C9}oC!%j)94NpI*z>0jY-83|*9T0N*8A12n?+7X$(
z>TYfQ^q@wrSfo^Kk@S&#u6u(xcmOD8;X}J^t*x&NA>0Rxev5TmbD5?wpeik8JWeW0
zvXNwc`3rd+bR-WJQBqR+b@8T|mCWq=_`kx`fD8_zFZ$iHAx+fR)yd?%{dgC9i1(QG
z1ec|kIzaA0>E2&3UAfHZvy#zf>r=RO>R1xg$oCni$H&K99%-`K-+zoW0>Tb{dBwqS
z6JPfC<OR;2FK?;T0nJU*Q<Ny&0e2Qs<8fzY(eJ$0i*|XjQ18ga><$XsC~w{b%%2*k
za5VzMEa-;zBWBPwn1Q#m4F&tpvI-xiSi6kN-(2UrU8dj6TmX@B<vy&~`pVF<Y{Tj5
zlFR{;kAV>Yx!!w07Sjzvz?)K#7R6(azIdFS4|nij=((s3kALmwIW{&5P)T~051Qw1
zR~A8D^~GBnFSprTTf>}_&E@t6QEOXA|AwOlS4SX{<<Y<b7-Mmz&A^Dohx;2#fCo<1
zTTT;jce(h=aS~xD3Hp$lo4E^E!?2~>8T4H6yB7aS{Xw_Qp6eXOWEGgT?pdU=CNr}J
z1U63_VR_e*IXM9*+X<|}z==4%a{CCFf@#1P0;)?$t*PRo{Pt)ixfwD<mHA>1Lb8PT
zGviY`EX_e?U(CHylbT|omQP8l7JZuwm(!)zZcXWbC0M|HbA|Rl1UMk*MSgQkMM1GU
zo+}GLv$XWgeK&d8*@oX)x=oi_mfOF=G+h>}8apyy#8CSnR5`4lZW#_GYt*`6>PRez
zcLJU37WYr?8C6CG7|D|XeLX#f`;8-9cDn-Ua)UVs^BJ61{0jiayAQE!0o+c7!fTZ6
z!z)1)VhOdf)oSzs)jT;e5ZcgHA`Y}M+zO?SVli6SZJh6MHQwCbO+ijD`a{2eUu-az
zRdSjJFaV%((g0mvFo+(QOm>@KN;ouhvRE=5i~%z<^WH-C1&|qJiQf>CQV#Z98IMcu
z%~r*TWN7#_YDHC9%v?`FJRNst&8NDhYKLJ93n)UI8i26jH6DWz5WRJ^mDSZ@M<M?m
zb`0FwW57mG0n?_&wjS;*6hET=k?1V+nJ#_X;Q}+~Y3_gn)^vBhH(M%uVKN;26EvVv
zYLso>)}9QdJYYb9_~azy5=K>)EDCX*TIp;fZ&01>0r-JPGs!I0D?p2dR90m%#zw%=
zAhEzEODx&LJOy}{wQ8?W02{c37>tGY$Gkc7vEM@U0}>qute3>^iEgMahz*a8Kgr|*
z#g8G)(P66(XoOpL1(V$;flqd_KICJZI;`{_^~V~Rt1lrTGN_0-sr(TM2#}a%3CqgI
ziU3id-tLH?0TmZ5v$^%=;%*rd5b!H95|!L^C!}8t+MWBaOdROeZi4~>-m==rwesGq
zxRgQzM2@Y!wclZ}1g^QzfQa84x(er~OMt8Z&@E^M8s+DkVePIL_r5MXpZ?7S@I`aK
zc3UjvbESJv@sX4BZZj+$Ft%P|Gx|ck75R?Ci9qYDq_he2eqa?zn-nUX<PlV)lI`g1
zzB`|jDYH6SAwuHbC`u-<)JOO<0+DFqt>xYKeBjE6?8(+ks72}Zrle4>8Xq4&UG@PP
z{Fmq*S~U3a6K=C>N<fmN{E`vI^3(m|64CHK_CXUwJ7jAlVW}Xt=H**I0|Kk{-MGMa
z->?{i26P@tYl@#*Fam6CUcF<h0HnG+XIS*b3TxQ}Ci85G1d;Q&g1vy9Q0^Lz{hA~0
zh-!p(yYlscWNuH1N$zEL==i;f`iro3p&<4AA3wB=0E@fs2m04Yn~8Z>uM=-6dLq_L
zjYb##{Qz;7c<)4-+OJ3f0Q_7G(A#cL-o@*eD!qDjE-)aUE0YPDh{O`u_J&h^(&lf?
zt*mG=vXYXLwCaq<vh*0+vH2m$e-kob_4AM~*0^hF^?3oyr$`Xd^P=`yeEXWi!H9cD
z33A<=UrKm>a(nNK`TSo+5dCONqO}#|<xPu=+iIviv19!G`!@(7Pv%B5b-P2NdNTm0
zLbcigWh1~x;~D4>%=hzyi4x@W+@C+v?e4kWGB)Po;sV;!W~ZaHX*8d+6fX1GcYQH@
zr+sV3R2mIXftzmjKpRvIBwNEJQomZm??f>W2&{}&0c;CS3zV8moX6II#WmE^1Nn)U
zJIwrof@o}tW@fuUxc6{(0RjB4ni?nAD1@D6mouzix_nn>rp&*HfT5mjfgN%5{a>P;
zM{UV-F^aJ<kqsp#+RBb%7+;SUYbOa$Cdu%bMq7Fhcp>6RY<s<HeSS@|m8#W%Q6X<#
z$m>QcoQ57HlO>ZYMvU^N&>3;YjOkhF71i7O7f5Mf{Yjg}w{-n_SvBpT<$he08Wtw)
z;NVbd`{|q=GBL}5MQQ0jM`Vr^g?u@p5d`-hsHOh#3&JD9$ypW1wkLWA2Vrg;t~p$&
za=seTXaX{_hLcz%Y@kxXhCCmyrcBcrEsYYTQ?X5Jy_@Lx`)jKItm$_DO`EM)tABzH
zJefED@np;wE3OWg+oQ<qQLne_fBZN-1>k`Hwt+<EUr|le8ywi@kC7(0@1^{_{`4b)
z-!ubN3e#kcFj#oMrpXv@6R?ro^us>?yV<bfAFT|K;?TXop%#hq{>b_7eov!-?tsbv
zkzv`se2iK)is=yiUpyPlK#^RKZsuqL?i8ATH*=QMQcf63CY<XR!9Ne(=1!QXZLC>x
z%d{97GC7(}WgWwTB|n(dn>h+50wlD90i-s$u^;9CYiIJGUcBHw{Prk3{**Za?<<A(
z-=q(be}}w3I)JlsA~26l_EUZUcl!4;Amt(bYrDXcf&cGm1(uBW?_B8rbv^*8^s#0C
zuSdy?1`T4;e@+_Nvw!_PUU+%<e~-=g|BoGP{wV{1W5%Jcrm3zd@dah2jL20~piQp@
zDxSaB)VX8XO7MZ<dYw}9-MbW^)opo7?B;Iy9fvV|zyOV&I_3uOSK$4;8~nuM8F1Om
zJ|1;uNhFPqjYWKfGnp!C1iV^kd>;^x{rSA9HUQ1z(p{9qL3II`(RT+oLfsw1#tf>e
zbL*7xp*XZ<jt5-aq1Z8riE87!Z%U^pDn$Ty20XHw>dPT<W0Fa10&cX3qJ5_!FVb)T
zUiJlg1kW!mkmUGtK6Bh?t7*9HE~RvM-9TI9#a;Q(;Go6UC<L8SLr+_~$#G~A#N^po
zS$HgVE#v)Sk{=ekLofEGBrhre6-MIwcK{(F@OTeO4GGMKR9}9y{(F&g+~PP*6$AyZ
zGd@Rvt{Tu7#%wk(mF{w;^5}x^6h{}Th!BQ@cv^(049LW{jRA*Q=shZcU;<~ZShE=s
zgF2{_74+@1yX<aWod8_f?AGq;Gio5nHtrqo>GRNBe>nV9I9mzm^cN5Ho&de=xI6zU
z(CAm0L<-kk$MXZ=5mSM@*o+ET8><hdJ@&3EK?(uL#B=DiSDqQ2gS-~-U`T9i%b6_~
zSFKoR06tTT?LdDHWGB2QsnnaE1uvakNkNP5a{qkbzPYb;?sHtt36mNHxkBCU(AM9p
zJt)A%q(Mgz7Z;x@P=87U_X=-wIQ1!T*0NtUAjW#dXt^&HJdx9=_E>27@-($X^}+%q
zh3?(+rwW+p$lOSC(tw`mpR4>#rt)us?i-jekv$O4?27SbG~M5@no2!AJq@txpZfuw
z@mZcc@Rq?az{(s4RD{l%F~jRM;xG6}dy|Fv)z#JY^*2DIN-UW?4<LT3)t1F`HD7pB
zOOy-nef%%4ud7Vws5S+Lr%QDQlR0n3HdEI7lM`Yi0j1X~p3(FbCY{~%ur}N)9761k
zBPY;5wzIXR+^ABiP^g+avF(U|@Dmwi->862-96`#n<({>=1K6d1PbaxU7)QEu|({2
zqpBnP@0+u!qExUvh4z8ghto%|LOg*O72&<XIo2jjD5!5GbGj0LpttP_Cu(iQmpVQf
z`kgJ7gaFcoJxEyC?Yn@>>2`L!HjK}=F_3VeP`Q2dyIY%nFqzS{Us6}_8_wD8*4Pn>
z2bCS^vplW;gg3}hDliXu6TPp87@zrFYfc7<T+tNDk&e;ReMEH^PXb=u>Xt0hdZqas
z6$J+eU{CMXSUVofgT8D(Mad)%M%}I#u5hlg9>=FMln~WbwI_ge!*Op&FM9&A%#ZSS
zlZEU48G4&q9E~9Nhvb5j-5L5a!jB(+O?C;UkMOi%j&`0$?M8%0n46meB3im(Cs5o!
zgZ{KPTPdKdEEPuq<d^uj*l1``@$n|c`blx5-q|2u;%H-+NTW@#8kfLmNu~HJhDsG-
zje@DXOjKXp$2d3F!C}?`)c5G<=(N)Wf}>ei5;4mwKHH@7{K9}grGSyg`Pcr*edmdF
z0sFc-!FYkk@ix2#<kEKLim5x&<k$wfW`Q!k64Yn)22;2n08>v&SyHyNv{Vur+J#4<
zN;Kwo_jlyk%eb`3oE}9+Ea7>RUjaaxy|vD^?7q_T+iOt09*4utXm&jJN3-8$RgOT;
z#O$-;QmLBbp$8Bz-UI2rRNOHwRW_0z+-5V??L<ch;nEQb+cyzXq>gs1aQ!0ryb$b*
zlTGP#Edg6anOXpj?C%#V!{T28{w5*l+~jIBJV^eA&1|4&&=Nh;l=tIP0peK?LLLVY
zddo=pc>@jipS3`)$xNxb6^u5}^fdo%#qvWr2`D7`KuZOuGn?~h2FQ`|EQ3}FTpTiU
zrTV7ntcJ!$KnPRmDSh*7;&2@D-~lqXzeGLj?GKU@Bj1A5lqEX7ZF#`2UwfXG&7MO;
zGb39d+yr55_PRl8ejS=er~RD69vwZMLXnd5avMz9GiZrl^i#RA*jYW~Y4*FgIABT#
zyW`+I=m!bn7a-Ph=17;%zgKH;k_HM}Wt*X)V({UP)j*Ko{Nb?+Cx~AeglL?O=ZQ)b
zgYMb)g(}r_D<`QSm0DI_{Q;>BOl|*TnAgPB+~yNmZ6^zqZGq(aDcma_`0JZdNUmH^
zVd361Xp4A_)xo#|xLNdE_~3(rIS?mcT}kA2)FA#)tmJVul<fHmj{}}mJx-3va8Qk|
zHa;dMMzP#rz{aKw4PmWvXDXE!H1LCi>FGyp^f<X5dbm@zA`Qjk#=AIS5pL;SE!zx5
zJ_AJzW;3OC=y>;st?eBh{OW6$HJ}PR4FX;ReM6EClGVl*_Tm%|EPYc@@|mGKHg4u}
zf4FFVpww)-1s3v$-S>b1r3R<KBDxGe+p=<yTQt(q*<D^fnzIyL7Hfsf-E$ot+=J+b
z$-msZZ*nuo2wL6=wJ8woi<F<9`Np${pwS56N;pdVCpSjqLHYhv_wq>-rdqxnsPcIk
zhT^H=Nj~-@+b`exflJ}<?~kJCHDK^Lvn)-+&y6~wCsHJ{?hULD7!Yx$hWPSI>BEQg
zf`WnuKf5|6h~W8p)a#U?A;lS<5}gt(1U~}HWk19X|JT?O-z7MJVGzbTfHbGLJ*VqI
z>PLZJ^PmLo3mFw~L$0+S9T~Dsp=$%0|LGB+(SWABq2y#xP6Cbg(xmdu_t*LS1VBuM
z>PGpWsK*rPRA)XP^5rQUxKj%Y3+dh?-j>Et_#*sOz<_(<bRj|{6F9ohcwMxq{|T1x
zeg6+SLI1As|2MdC(tcSA`5#d^5Rk5$?ot|Wydu(?Zdka=%iS%DcjZ}nN03QJLy5i9
zDx}Q3I0L11#b`~ENoaM%k}nD4S4#;6Q~2LSb$BCughmiPXuNP}w03uOzjqDpwyt(m
zn-OifYtXz<SvPoKr+1wnylXy5xC*^Q4IU~(#otBuvV=W<0k!>n5B-wxL*7+`MpRlf
zl-dBQ03}zSjBkl5R1@YjJyZ@!h3b2#4|&cFcu_%;Pps@C<jJbLKM26r!z?9y;e6`l
z!dnl+)e~Ssm91{cAPQAvup+zbFp~+dT@B?%Ut$O)C23U610`5duAG0GrS!aI;<IH)
zr80SDfKD}(+TP<HvK{_xaN?w95hLqHNC>5f?L#`b=1}WrvGi{)z=gwtG;Nv^N|EvL
zm~-n@rR=`GeI6h}TY4nnFP?`vD;*9^TN>>JDGrza!o%Z6{-lPWr%a@9@}tSOp2Q`q
z>4vcV-(SIpDx%uOgc={4w)n(Ek|Dw)Cn7rZk(#`ST__tsVN?V_moMt`7PQZHJnkCB
zLgP9Fj`o@;kNbsr+^?}&b&Jz}ivU#&pWA1sLq-QgC@h^JD7D5K*tbyN3keOr<?*{$
z4i6OU;}85W&@_+V-;*JEJ$d{=`U@1`Btk(2AUxB0{LUly9_s1i4{6X({@+{t-*PT0
z#|QP4Wmdh?!aIElVW@6V-~$Xhe1_f~US)a_iauUWsEX`!#Fi(O1o`r<M)^6Qk4!LH
zUW5h?&UEmL7lfqDvgN?R)lDOmJJy$|m^(Iz=+BF0Kh;0e5+E{0RhAwXO#c+=X3hj!
z3FC%#5T7%_OOq2v^x$BVBeXfx^BuWxG<k9J!2Z3<G<=_yh`cgFMfO5V@7X+a2@Vdz
zeI?Xxu!sd9-*dY}GJ&mH!X<<OLjDW;XlU9gI25pdZaO5^uoo?iTg*Sluu-G(GHM9T
zPG5>v*sZeiLrI8<$hn#HY@J@~r)WYy9^HExJzL&9)aNGhJcZ#eh$E(claf({tB^BN
z$`_8Xm@$QYY1GrI$gVhj@f>W;GaeuYqeKKpef^C#AwNIAPoyt{32AvI+=#ZjOC>+w
zr(MtbGtI25_9E+_&FunsprSLq6v9pgBPLADb+2C{BZlcKThct+b%<eZ5fA@!g3PnS
zXT|cPD_q=L4yZXb$piwFA|VGD!4p+C--7-=V5x;qz;4HbRMHhN&{0K@<>izzCX71T
zqTqe)9^Zqf!ql{8JO>&!y)>hSAJr@~;0+>b@C5b?6SNEdKOeM0J^{K!g(#O%rFiPM
z9b2Zuk`>FXM~cc%_&<-XQ9>1rmcZzi9U2;%Og$+z_0-m>j=-P8tME&s?+`8|fO~4y
zqGWq-i!zWL_t1CrySO+nkBp+gGwiU!Sazeok)E8rzAUY*G{%)9xg&!=rf=(n9-V=J
zf|zMhW#PNO<>Q;FNvmi+QIHEyGum}<9UDka;?{KAo2}JtX?b#%+=~<C3~9W`%*<qL
zd{&B3O7OMq@1YCq=w^aDfdMOFz+omj^#`C}zKhcxu-}M@0*#-B>gU(mr3eCrzv%e1
z|C}zB;<G18(L_-q4)yaf=Cy#w3+gC9N4Jl-=$^fQTQ)jcP_Wwvs}(wz{>Jq0H85&q
zN>ZZeBTE^YN{kNWJa2yr_xdrSJxbxyU@w<@wzNwT(>HNy+DV2Ql>_z9)1aa%@g;iP
zBs1=bQY@pXgMdJ1F!e2$t(<|8gt4-+13g)b4w{ZY<X<CcKGKC?B}I=NT)=L*sIIdT
z5z1XgsFJb7*rKmI@Q<nWsxozldL?WlZmzI!8&jZCd0jokof02^J<|3%bC`5^AO|W~
z{?hH<i~so_yE^P*4&U<RGZ@V!t#X=Yxba|ecYOx(i4PODL(x&Nl3yHHscm1DDEUDS
zUemxcJYIpHFK1<*MBhGXR>+Q0+5FDFfr^H9cf6HNB39G7a|TO=VctpR{Y2@{iT`<~
z^3F?u`0U0_FkRXNU;46f@0=Y}tCQUwJT`Tfvf{*uL#KXU{Bt(q|K27D)nq-EObLB`
zeF-KcqB~QT)76%m3(mE*wIJ0DIugH23Qsq=*N<m_1iSyj`q2ahVnAZ-w3Dg5-!pK0
z@7XH2pn_TQ6bPe4j;<T<LbFQ+UyfP+0-gG&E{!75xDrC2KY!MxW{wY0DU_gq?2z0M
zwEbD2c;t-7%zrdAdG)Q8DN%W1*($wrJ6!$(;tGpuk%>(MLSo`NHHlJ!=QS>GU&J&s
z@Z8SsoL<wMpa~RCGBn?<ZJ~a)J^GL(LBDlPEJB$bH1hUqwqF(_=gNe-PUd;WyXY*s
zYNr5jgIN*LcXi~buza<kCsKOD?y!w@PFgBhcn+D&-5jrUHB)OC=c>EdRxO^38)=Lg
z(Ti3QFAP7Utm%{F%X^k&Athp@!jvZfCsWr}v9;%X7rtU0%v(g-rB^<if&RvRL7m-^
zQJV8RZSZ!*?!{Gu8dOOBrw~?${>#q>wq^p(aT=CC<n#6trqD6a#!a&(wz38r$~7Na
z%P3N)sczkl;GAofQ?JGh2lm{>J(a_Uk~q({NFGX53&ksnCp?FLkkYSHT;AmS!PMGs
z<g+J4B>x(}5RJTjvT;;a#(iLuLcuJ)X@av@x|E%ti9V{=k<H1y+@EpLu}(D4-lA$o
z>1tj)ZZYcN%GWwHS#yp7F8&h4d}UxvfP{o$&yFoP_*fE$wZ#0Sjz@HVoZ!{b!(reR
z-1)xR(TtExhB~{I(M7WR;@wUD*}7x`Yc|BI)uSgR!QJ5q?jT@RwGkHLad{-6PRBbo
znU|N=cB?+el+5BG9Q0$0eq(pK%46s|r3`zlBc%PoX{WNFoWyiv-ebx!n#$$iGR#K?
z5z}(>4R>`)m1#jvos&&|fo5{y<z>$NF>2Pk*!auMABn7@9d_Hczfptn59<3e$v*?5
zxOCJfk^O;`v}eoe+N}w_NyUWVjx2}(-L!I6O{2HD27yp1JgdLvcb|SrWHf5<Q%i|#
z^}>&`27|06hBq@~B->RD&a;Kq*3XL@F3J7dxr}?oN>kp9tsHds&+RkC>u5M1O>w0d
zb`?4fG+v}u-(P1F&-zEBr)VK>IZgz1o{bj&xb9b)%01rQU=l9FVQ<XNDp!7{1s0H>
zYlAVU)K2tosqNX^yHBZ@C6Y(7AwL}-?t_|VbSGRIlf`!w^pn^r@A6+XSU3rWE*3Xk
zCeHnicYOE|r%Pg?bRy7haN}U9S-)*ds~tppv1vbG?&$8?J$a_-eiVnwxbhAM)l)U4
z%<&a#)f&t^*PRz?-v^&FADN(J4eH8I6NcGxU6u+kN(hV3Ki`tMs#{2!sF-+YG@-H@
z<Bld$#Xt^zzY?w?6HE4(+YsfVc^eXXySZU~^qe4Nf4)is=Sza^(1nfdpz}74#qLBt
zr0wF~qOj=Am?~2dX0mf55$(*z$$67O3*`PdZ9#!@o%+UXS<>Tt2P8f=^pc*>HJ!SZ
zFp%}-DLXED?*6)WudkYz!;2Cq-b2^C-4VY(UMj32U;H-xMGQEpe$XD8Im`rj0^F<f
zGqR9}BkHgE-{(p*VK9wPuH{FYrDQ}*943vk`|z{4Z&p*va6F{&L%Y>)CW8=;!C79g
zo^pJ302wQ(JN%ZhkA>~&3JJ%knw`}1UspOQERxmVDi&w@zGDW7{ZOf(sxjv=i{%AV
ztr(v4%BLqXHd4u@NiN7YW0i2E+L1k}2puEpi>J@`q&jqr^?KYvOYYMMM)DZE`D)Sh
zi7bcB)r+h1{aKg2med;u^Fs4m?q<&{2bKJZK%tnvnRG+Qb{<0Mk72j^iTId=C}2Y1
zTeRo=n;Jb<C{+p#I<vJ0KOE0-JW0{qts;YP%RI1F;&@s<#3t0|o{FqxlaN1HE9KQP
zO&|Y4x~mL)5|!t&l^az3T9|R_j`-dxR$EU<Gjp!Cx@4bDuaNCXs68Z|9j1XRtf-KD
zNJHt@h5zOa5iG}(o2rJg<^#m(#wVmm?CFlX)h<DX3masj_azGnXt&rA_k(s}LzEEg
zf`b&f%Xg-ULLw;pdzQ)bd@_1-b!M>ca8OGk#MhMd)s{G1+t*T1`;+MxFC(%#yOqt(
zw=2nGk~r{o)k6}j`s~~3I(>zs`nc6UuB<ge+|3~S=4si46Nw6(R)_FWBJy&vn)1qF
zF|I}LsW-Y*4R&XnjOSl6casn%b2-~>tz7WQ`<C=cO6<|tcj1y6Z>?n#={$eQT=t&(
zpsR;(9IJ5ZcTrJZWc)_Qh|iVtOgnuymHO?MONWk}BR-+;$nG@KPajrJLi+||I4*ri
zriwKjR;HJwZW6Nkk8c`G6+G}9KJ2_vuYVqqMUs^<o0osSJ74C0!bU4Q&ZN_Ckln|s
zcWKnPSYo*`S*$=6<=x1&*P&`~y6sws3ZKYsYqEAMKxJ40$8z6AI`wh@mAkqf?)>Yw
zQ|qJX+6%78MaJ~92D7VhKR-X`*Id`DU6tgacy(4sv*Hnk*H6DNYHED6?v~iw>M6<-
zZ^lm^L#ui@Q%dg=gk%~&P2}KG?49C)=0bM0HB$6DQ~uq%m~Y#@H*i?p8TtKe8%5sX
z+!h$P&2@;MF9&(#L#j@rmOQIHtVG(X;f(7#u0?Ps`Xm*p*r?zLPx=?P2^*`Y@wg9E
zrs9rQG%bcTW3W6QprkvG6zfGG(>v3sSGq{%SkK7$QH>V3dbG>qOz29+4Rr897FN4D
zuoL#<!-~mpuBf2HWL!vcBRP35-;G^q`QQNC2VyX_Q`%MgGhcd_1c&o($)zh&j8<-g
zUAMZrGL^&Kx5^lAIL0wv#oxDwJy+b9Tl8_d#A>7CYvi7$o^4N`jzJQ!9EU1Jjys>c
zsaRNPfSH_!i-~Dy=(Bm?F;7`yaj4soF~_zo+i+L7?Z3XPo$?i=7Iq<%{Y;C-aU{R!
z7;}XivpW(Jw^j9$mDSNx<$nE328o~vTO3hg`1uOIq=WwXLJAsZwR8c|m0>!+XlKEg
zT@Yz}GrsHKo6^PAcduVleu~f$^Pn56+csO4)vT3>?jG1TPo6D5jY^t1iDr3?&g>9^
z4t!hu<Kr@*$gyWr7cud#z2IzcUg(X{h<)gRvjobisqonGO4T9c^sdIM*%S@;quRpA
zxuJ@Ga{<^>ET(M<J$jSlAwrMK^pmNVp1&tBG+dTv^74YFYcAVw9La+S2z0tn2f^A$
zZTYabR)opv|LyGuEPwT;fJ#U1!@JS&mFA|?InR5D<{2zsJ0*wXdWJ-Hv+iOw+8Xan
zabT<C4%x3h^r#oKv}UW*$huwB*Gow;nobS}`-P5+cRypDuUAXMG%xD;_0X`LPlxYI
zu$3L-dRk#$n=h7JOAc{UZWE<#5T{kj(a#3QB6WsNY2F`PEZ*-7hyCW?<L`f%EOhK7
zB5b(p5-q-8o=OwsG~PC&we8qE;`{nd<7lQW#)DfEwYvR0=KAH^GLx&7n0r?bi}M-P
z4bJz_6Fs{AUEiBYPYYVL-dJuQep#s8tK?isBI(1T>UK{PdnQebzcZ0{8O&EoW_>*z
zI4~Q+qM1qm5Jr96RLvWKjN#bLcozMB)Y1rvLcF?W91>D|xg>nP7u>fv`_54nQlsqd
z{W4@b7Q23{NSw;W!*=EY_5erkZ9KRo?sw-f<SALhZsoFmP0M5myoVA^MM=FYtE^MG
zUAGrInC{mspixbi35*HW{80L_lt;p&Yl2rgANQ5&0A>CB%M|(ic2B!bDzRJhOS2=_
zRHigFwF~9qp=^cmZ<QFt67f_H*C`DT=MT60aYJ0rmh&AwKCq!Vb4@nOw8&}#jEn}n
zQxcZq^ac(u1{_lgN{YBh-juQAtdo`nH73Uz->ih}<=d`A?6S#hv&k17m?OKgjcrQE
z2Y(Od^U`T@KOquYGQ%!Qya^)IY^h@Ei%=!X>*zwp)r-j5eRw5e(R|~iyyo96rpuN~
z;o@0YzgyY32%W(4(ddp$bnaxO<|ry98HwB;mlB1VR&q;wE>af~O?^Xj17_N$ctSxH
znSr#?Ga7+(OgbGqZI7Y>lfBqQfns`83^a!W=WjW>#uarTc#U#F;Su&-uEy_rj2JLh
zH&}KRMjm?D++`@b*AO%+h=?bPRQ9c=MS~C|lGx&BX=8cYshSm2JZRUa8S|q9+q^cv
zCb8N#EUps~XLFrS%g!+sPGE-E?q6waQelTa+&1$=H|(mOIB{T!m)s2_>q?}skX;*Z
zCDkcJM`7uTeJ0Iyt+Lz?AK|0WWO&P<=bNJyeDMYtZz@?-C(!bX-`lrB`HtJ>@UXQJ
z82*=>L}aTs7iJgEjcKqRx6@x1-HRCCir>M$;PP0NGBayXvOljKbH6@+O{E9=V1>>D
zS8U%Su{bz+P9v67Td1k4sH~hgGZ);+;G_zF-m9^l6O?Aznk|fRI<H%fyK+|6`Bu57
zUr6A`zBhSroGUiV^PA}Th;f12K>%d?2yKoZLt>6RwKRG?mlMYo5m)t?KW4O)b*PSO
z?zS))V{+vv#nU?BX4u)%p`_&l8F>*OQJV5u*;tTt`WEWd-1iD18O>47vul&<e5M42
z;)D52TVvzg%2~2XU)D*pQYAHu&^dgQ<}ytRiK1#YGTs_qG>ldI-EsNdK8s|Je3k}9
z8Tw;eGdEs&0q5>P_3eEflW#bj9+#U(i1+6k!%{<NYx?fjFZ1Sjb`Oqi1{o(cHWNqO
zw@83wA9fI2R4d5$#XHztNPYS~FGuYJ8se)cYL?jJ)7Z-!*Z_Cg#(~4R##VNhsSw$B
z^ttugN_o9MpGVtHklCA*80~V{U0KK8$x{(&Q0MDGoQ3wjkZ&BFtVl-~*hI0~Pbqb@
zfhP$qJBks5`&Uz1aC&$CnAo6av@i%Y$ne9X22?0rh)YXbSI0p3FnsIXP_UBby=$AT
zK&8pyv9fARzdzq>*u701JuYr4^lA?`n)N)Zhu(ZL5C20~kxEm}^6>&y_6!aQ47-4K
zbjo6F@Ft8OtmN~Z_1tnv9QF$5yS$`1rvCbaW!4KW@S8|BU(M}+X@@F#UM<Z4PKp)<
z?L?8w!FNik?DV{{mGQt2d_o}_wPvO8rPxz$Gt+{T>IMy+GSUu5HY2z51<P^2v5IE3
z%Yz3qHsOM{GBQwu*V?YU>Z>f@gjzq3-nBQ(T(_RxBOpoWUvKlC_qlQWhC{D$n;md`
z5R;;LJa(Q~IBwuuD;@Fi(B(L9txNRH6H=|ZreI?;l1?2YT-K32vx3YzzL4rA9VR<m
z>TgLi<P3Y%_QLiS&iNVf{jzmC*TlVyjz<M^mLZYClaZap734?_93wkNK@WMCmzSd_
znJbFBWz-CBUj_ySmKBsKo8Nm4twlj6UWerOZbfu|HPrCby7<19Le;SGMX0Y=q@z{9
zn$Tt<hzP_OR2nruHEyJ*AS`y5Z^I18$*B{q!eb)zKZ^xPmIM$|G)-)str$VR5A0x@
zQo~sCF6Fr5h`4#TO{VxrelBC-&o(|DY&52pu*3Vv`p}(pk6<_(+*<D9hSvJDH0U!n
zmSDa#R@BFBl_`T8GIf(+uAkw&AJ%tF$Ql=Q>T@_$@vv2nZ_EeViLOl}*c)i@cXc}Y
z<g>^v5_!P78oikxg2U(m*<Yeb)Ysn-s8KIJK5;QW-<>9CVzb-j*jPM3Lt8t5xLfy2
zqzoCBE1#U$@>A=#s(PX``Vdc|Ib1z|jxKFvz9Jv^nY23;wwuAaUhSaqr0yg1P(4_7
zV%!PTC0sT@&-nS3R_jC1R?z6ljIyDF#e!7vK#@7N;ZW_vd~SqG<MOXmcbVVZzAEx)
zXsJrrqp5t^B~z4++u_n`YEsg86odh7f<2j}vlivs_Aa^3qwJ0-XlK3gDSPJwJ9sX;
zhTuG3x_e0b70ne~=iB1m(@1-&n;fn-6_b)?#eT*_Lo}h%J%^QBws>XcY*bPu#5<E;
z&wu)@enZ9mVYREOL(xo;M7;q=a_U2?s*dHf*k`7!2WOeBog1=6Zi1juO!5tpz4vt4
zJX3FKCzfB;%xmOV&aT;HXJqNw^$AOSW{MACOQNzP$hovcLRnFzr5}G!L?pmaHIt`~
zm(o69-&{jhc&*b@ZIKX@V85P;k*r>~*~qN<@Vm>N+;GwQ;(Wjq_gr-F>s#h!^dmUk
z&e2f2>m^3|716>;RJ8R#zQ8eq0s8p<73$t`OvmV`Xy5%$7*&n2o=y+Rr6?A(Q@fvC
zPq*2v4iE2KtEP%N8A?t46^XZCvjRqoKDKlX?&IPp=OLGA6doiQsk<v=Xxh7oZJME2
zhD{{NV>)gy5{%`ooav<Pi`uzI$kE0xEx}!!zP@}4+`;cjS5HE@_Xj;ztbXR;cP~y(
zHRbb+`&QmXEM$|b!HM##Fn`}1o@QckK<$t?$fPqRN_qn#tyvT<*w^nEjeZG(82whY
zhm5EThrEfuWS84&(}&wBFD=c?eL&rh|Hb~yM*O0Cag<3BV!efu0Z0t7G8OT;7}5&a
z*?9ZhxN-U#2C!^`$+jC73oam)<O(u1b<E-gY`e!p$*kHmn0!gkfDu8?yU3#_34Mvp
zN;NJUBq@xF%!g{(8SPKSTO^u3@^w)~#a{yW)-^j{gd8mvoUS{hkH(XeR67zoR+pwf
zrbRI6j9(6SCZ}C$SI+?Bzq6>W>ds}Ui>>^ie!7pr_F9?a9Gk`IV9N1GSXk^0x4d-!
zTdM_{Bfhz2SO2~>whGUS4AOF5e9dv+PFWpb@6v(2qkS7<^6mUOFrr=K>3pN1CM`GB
zAl>zKU@hy$AO>7FE!roQTOMMu_$pn~JL!6LxFB+jB;mWWGi%553A<pF#u^Z=+Pmq8
z?*PYyq?`ZgMXiW^*$54X_~}tcde(;DMdrI7yVJ=eqs5y@+i)4e-}3KQLbUn)hmq)4
zMi^2>&w}V*CK%Uu1{N5p#t@AbYwL9n*P}EGM>N~llXg)E2(K2Cp(kveh;ljd6gqKe
zgc9@xspys}bv)#x<#eQ@_V;+C3{m4PSV-E-M^PgkUU?UXv-Dvq76KO<O_UqYwS9oC
zv30AYvx|rY7g#UFDRv8z?K<Xp26?f0`-cye^fB(&sVrP|PRsRU27^~45htD9?|1rh
zJ)7=a#`c(t?qv8^gglQCm5GAezx1JdI-QSqV!xVWS~GH0mhqrfNisTAUYJNpDY!f|
z(oHG$8dI&kRGLLZX}p?PbW`0FGq&chTJ<yUkqqs*JbfjpVSkly^Rj)^M015rBmR8l
zTfAL)^}O=!u3%VVXMdY!fvAfc|Lwe~p1|6)yw&~Ml9Se?ydnFo1#dSqG2DDpo__Y-
z{-Glxh3kgaHnotWGRvInqQ?FCr;9kmZhj!4T0U{vF>r-~IxLQfOgz5yyca}B_F1Q(
z>V=fMk5vuq@MfC_1ypX{ITDLE+js3<1T5aiMF@qyW7YdCmdIsVbg7U(7D(e<ktL=g
zI^JG3m_)^?X-0z;AyWt8&_8dxShQnpPhrDyxJqj&G3#kd$R12)Fn5rc+@i#udQlJ<
zP^sWqsyEwT%k6fI89FB`uiWI`SN9ryw@G)=aed+9@aCXN`T{*_>Lo5|Q-^P5US1B(
z!<Zi;uK;{5F%))4798GnASx2>Tj!x7%1Xn${l%uEEYfm^gZa@8!O4YW?}o(Aca*W#
za~zF}Z+~Piy|x<jvySQnmT0%O#~Al1S8<MWK=lWMqRZ2CRfGBS^c2pG6K8%rjcSv)
z*jkITpt<$Mhs&Xd{JcD!yX`drzq4Wslmx@VqU%<aq1XZItJ;kY;t4LI?Vc_5dcQr{
zsOF|_`(3x&M31A_FXW6-Eh|L>N6<OzY3*#vZuphg(thVQV;)r3?Wx-A?NHCp=a`HH
zcD#E{FWwJ7-I(?}`&~F0BQHhjs^eUE3RW(iu>eN7%T`Zb=yxWw^=ZxB!Ab`g*Sg}-
zwdt?}4s;41lFW=(*sSNjTHTpU)3cST1I#3Zqg1GeI~+BK-~*=f!-<ZFrZ_|xeGCF2
zIGzKF1MVK}xb;7%PdJAKjkhrUoHsHY-hZF)+h>_VSSd-HHvamGh$$lHt^e1~*UdZ;
zU6v=p14uZAL+@U+zf?f-F!B{l872E7DpZQ%>MUO{sJRwS?dl=q0~7SYaHVt+UK@C7
z2pMBr9C(rortSjQXBuoItM#E=r4DNwl^+xb8V|IQ!yPT=hDX;#8P^o73mQseJ_e~M
z<TiX$Bc60~kzTf9%6G&7&iklI<v!byD@cAfx?H&4SW*X%+AS#I5#;@3D{Ru}rnA!}
z$^HCtuD|X?!_@w48%;FcC5|9J1k1B>?$`%E%UT`5qi#0g;Vdphg^1zwh-i<IEJ}lN
zR&?M4cBI#Dx+JzJW$cElfQxVlL3JMyFdO78FMqXqTSdGiTuR8C*iuB$5T)kYyGL)#
z2s|a9m`74FNp`8W$S?Qq;%?PWvANlH&lA{xDOVSNCT&^5lST~%rHH8L6FI76(ZgnI
zG8(Du>S&2Vy)~X|YNmGE>du}SO|5A}a0i=$Cg3M*M-(6DktxVjMpaD<UE~Y}^`z=E
z|0g+iH?>pW1ZuLnm+a94Jtt?g9i7TWTg;o4G0DySeQsZ*;wkU?ETjv?Zx(!SyA`iQ
zP3z+Kt+<84PE~EJmdmyjjoxN|i1o-kFM?vGD{d8JFr{L}M4t3O(*gw+hC<Wo<gKK7
zV}|XOw6@<u=giV{cLt*3qM^Z|+}67#<H_MNqi^24k;Jo{QPGPaUOM``Z#nKMUJs|W
zWrL|?v5)dhi~sGPx_$r|GA@jY#mFvk3c=o=iV;EHw<)N;0ru|NJ?Chizm>%ZcnBN|
z-KVGuM6h?LfQl+Ot*bKn*%}UL+Q&cq+#^tb^2*p=hiLoHTg(daLzm3=I~OXwi2ExZ
zKsLvDmakAVQo=h@dBzMKE!_P0IxpcsIjCqXT;w{7uP+(snnz&%yc`J=`9;g<+Ck8`
zx3K6n%;T2)G97TOD_kIa0IwpK)+2AhA80<WE}i=O0_{CyFFqA4pTMR+8#s)6JYmTw
z#V^6)`g6cM>?Q|LY8ciSkN-WiL^=9Y^7s=}%^T!@)DO!KpeXe4kZ<0z2L2BFcm<zA
YDKGHxd~6!Fecbf3fCPULua@`!2e$0Ea{vGU

literal 0
HcmV?d00001

diff --git a/cannamanage-frontend/messages/de.json b/cannamanage-frontend/messages/de.json
index 460eafb..7923ac6 100644
--- a/cannamanage-frontend/messages/de.json
+++ b/cannamanage-frontend/messages/de.json
@@ -292,5 +292,17 @@
     "allMonths": "Alle Monate",
     "footerText": "Cannabis-Anbauverein — Sichere Mitgliederverwaltung",
     "adminLogin": "Zum Admin-Login"
+  },
+  "api": {
+    "loading": "Wird geladen...",
+    "error": "Fehler beim Laden der Daten.",
+    "retry": "Erneut versuchen",
+    "offline": "Keine Verbindung zum Server — Daten könnten veraltet sein.",
+    "networkError": "Netzwerkfehler. Bitte prüfe deine Verbindung.",
+    "unauthorized": "Sitzung abgelaufen. Bitte erneut anmelden.",
+    "forbidden": "Keine Berechtigung für diese Aktion.",
+    "notFound": "Ressource nicht gefunden.",
+    "quotaExceeded": "Kontingent überschritten.",
+    "serverError": "Serverfehler. Bitte versuche es später erneut."
   }
 }
diff --git a/cannamanage-frontend/messages/en.json b/cannamanage-frontend/messages/en.json
index 3218f21..8ffe64b 100644
--- a/cannamanage-frontend/messages/en.json
+++ b/cannamanage-frontend/messages/en.json
@@ -292,5 +292,17 @@
     "allMonths": "All months",
     "footerText": "Cannabis cultivation club — Secure member management",
     "adminLogin": "Go to Admin Login"
+  },
+  "api": {
+    "loading": "Loading...",
+    "error": "Failed to load data.",
+    "retry": "Try again",
+    "offline": "No connection to server — data may be outdated.",
+    "networkError": "Network error. Please check your connection.",
+    "unauthorized": "Session expired. Please sign in again.",
+    "forbidden": "You do not have permission for this action.",
+    "notFound": "Resource not found.",
+    "quotaExceeded": "Quota exceeded.",
+    "serverError": "Server error. Please try again later."
   }
 }
diff --git a/cannamanage-frontend/package.json b/cannamanage-frontend/package.json
index 1247706..09c103f 100644
--- a/cannamanage-frontend/package.json
+++ b/cannamanage-frontend/package.json
@@ -36,6 +36,7 @@
     "@radix-ui/react-slot": "1.1.1",
     "@radix-ui/react-toast": "1.2.1",
     "@radix-ui/react-tooltip": "1.1.5",
+    "@tanstack/react-query": "^5.101.0",
     "@tanstack/react-table": "^8.21.3",
     "class-variance-authority": "0.7.1",
     "clsx": "2.1.1",
diff --git a/cannamanage-frontend/pnpm-lock.yaml b/cannamanage-frontend/pnpm-lock.yaml
index 6209c85..6ec7e99 100644
--- a/cannamanage-frontend/pnpm-lock.yaml
+++ b/cannamanage-frontend/pnpm-lock.yaml
@@ -53,6 +53,9 @@ importers:
       '@radix-ui/react-tooltip':
         specifier: 1.1.5
         version: 1.1.5(@types/react-dom@19.0.4(@types/react@19.0.12))(@types/react@19.0.12)(react-dom@19.1.3(react@19.1.3))(react@19.1.3)
+      '@tanstack/react-query':
+        specifier: ^5.101.0
+        version: 5.101.0(react@19.1.3)
       '@tanstack/react-table':
         specifier: ^8.21.3
         version: 8.21.3(react-dom@19.1.3(react@19.1.3))(react@19.1.3)
@@ -1642,6 +1645,14 @@ packages:
     peerDependencies:
       tailwindcss: '>=3.0.0 || insiders || >=4.0.0-alpha.20'
 
+  '@tanstack/query-core@5.101.0':
+    resolution: {integrity: sha512-cQetA74EB+seWySv1TTKr828TnP0u39m6LykwDXIo84SNortpDkp30TMEjkqtYCNP9c40uT/iwl6MLiufEt0Ow==}
+
+  '@tanstack/react-query@5.101.0':
+    resolution: {integrity: sha512-rLlJXSpkqfizLWgkR5+eLeIk0MvTx/meEIR7LRjxic+qxiQP8zVjq7BqQkiCMNLQBlLfuOLqqr6KO5GtrDlmSg==}
+    peerDependencies:
+      react: ^18 || ^19
+
   '@tanstack/react-table@8.21.3':
     resolution: {integrity: sha512-5nNMTSETP4ykGegmVkhjcS8tTLW6Vl4axfEGQN3v0zdHYbK4UfoqfPChclTrJ4EoK9QynqAu9oUf8VEmrpZ5Ww==}
     engines: {node: '>=12'}
@@ -4918,6 +4929,13 @@ snapshots:
       postcss-selector-parser: 6.0.10
       tailwindcss: 4.1.3
 
+  '@tanstack/query-core@5.101.0': {}
+
+  '@tanstack/react-query@5.101.0(react@19.1.3)':
+    dependencies:
+      '@tanstack/query-core': 5.101.0
+      react: 19.1.3
+
   '@tanstack/react-table@8.21.3(react-dom@19.1.3(react@19.1.3))(react@19.1.3)':
     dependencies:
       '@tanstack/table-core': 8.21.3
diff --git a/cannamanage-frontend/src/components/api-error-boundary.tsx b/cannamanage-frontend/src/components/api-error-boundary.tsx
new file mode 100644
index 0000000..f318f5b
--- /dev/null
+++ b/cannamanage-frontend/src/components/api-error-boundary.tsx
@@ -0,0 +1,75 @@
+"use client"
+
+import { Component } from "react"
+import { AlertCircle, RefreshCw } from "lucide-react"
+
+import type { ErrorInfo, ReactNode } from "react"
+
+import { ApiError } from "@/lib/api-client"
+
+import { Button } from "@/components/ui/button"
+import { Card, CardContent } from "@/components/ui/card"
+
+interface ApiErrorBoundaryProps {
+  children: ReactNode
+  fallbackMessage?: string
+}
+
+interface ApiErrorBoundaryState {
+  hasError: boolean
+  error: Error | null
+}
+
+export class ApiErrorBoundary extends Component<
+  ApiErrorBoundaryProps,
+  ApiErrorBoundaryState
+> {
+  constructor(props: ApiErrorBoundaryProps) {
+    super(props)
+    this.state = { hasError: false, error: null }
+  }
+
+  static getDerivedStateFromError(error: Error): ApiErrorBoundaryState {
+    return { hasError: true, error }
+  }
+
+  componentDidCatch(error: Error, errorInfo: ErrorInfo) {
+    console.error("[ApiErrorBoundary]", error, errorInfo)
+  }
+
+  handleRetry = () => {
+    this.setState({ hasError: false, error: null })
+  }
+
+  render() {
+    if (this.state.hasError) {
+      const error = this.state.error
+      const isApiError = error instanceof ApiError
+      const message = isApiError
+        ? error.message
+        : this.props.fallbackMessage || "An unexpected error occurred."
+
+      return (
+        <Card className="mx-auto mt-8 max-w-md">
+          <CardContent className="flex flex-col items-center gap-4 p-6 text-center">
+            <AlertCircle className="text-destructive h-10 w-10" />
+            <div className="space-y-1">
+              <p className="text-sm font-medium">{message}</p>
+              {isApiError && error.code !== "NETWORK_ERROR" && (
+                <p className="text-muted-foreground text-xs">
+                  Code: {error.code} (HTTP {error.status})
+                </p>
+              )}
+            </div>
+            <Button variant="outline" size="sm" onClick={this.handleRetry}>
+              <RefreshCw className="mr-2 h-4 w-4" />
+              Retry
+            </Button>
+          </CardContent>
+        </Card>
+      )
+    }
+
+    return this.props.children
+  }
+}
diff --git a/cannamanage-frontend/src/components/offline-banner.tsx b/cannamanage-frontend/src/components/offline-banner.tsx
new file mode 100644
index 0000000..88497e7
--- /dev/null
+++ b/cannamanage-frontend/src/components/offline-banner.tsx
@@ -0,0 +1,46 @@
+"use client"
+
+import { useEffect, useState } from "react"
+import { onlineManager } from "@tanstack/react-query"
+import { useTranslations } from "next-intl"
+import { WifiOff } from "lucide-react"
+
+import type { ReactNode } from "react"
+
+export function OfflineBanner() {
+  const t = useTranslations("api")
+  const [isOnline, setIsOnline] = useState(true)
+
+  useEffect(() => {
+    // Subscribe to online manager state changes
+    const unsubscribe = onlineManager.subscribe((online) => {
+      setIsOnline(online)
+    })
+    // Set initial state
+    setIsOnline(onlineManager.isOnline())
+    return () => unsubscribe()
+  }, [])
+
+  if (isOnline) return null
+
+  return (
+    <div
+      role="alert"
+      aria-live="polite"
+      className="bg-destructive/10 border-destructive/30 text-destructive flex items-center gap-2 border-b px-4 py-2 text-sm"
+    >
+      <WifiOff className="h-4 w-4 shrink-0" />
+      <span>{t("offline")}</span>
+    </div>
+  )
+}
+
+/**
+ * Wrapper that prevents hydration mismatch for online/offline state.
+ */
+export function OfflineBannerWrapper({ children }: { children: ReactNode }) {
+  const [mounted, setMounted] = useState(false)
+  useEffect(() => setMounted(true), [])
+  if (!mounted) return null
+  return <>{children}</>
+}
diff --git a/cannamanage-frontend/src/components/ui/data-skeleton.tsx b/cannamanage-frontend/src/components/ui/data-skeleton.tsx
new file mode 100644
index 0000000..3f4b30b
--- /dev/null
+++ b/cannamanage-frontend/src/components/ui/data-skeleton.tsx
@@ -0,0 +1,82 @@
+import { Skeleton } from "@/components/ui/skeleton"
+
+/**
+ * Skeleton for KPI stat cards on the dashboard.
+ */
+export function CardSkeleton() {
+  return (
+    <div className="space-y-3 rounded-lg border p-6">
+      <Skeleton className="h-4 w-24" />
+      <Skeleton className="h-8 w-16" />
+      <Skeleton className="h-3 w-32" />
+    </div>
+  )
+}
+
+/**
+ * Skeleton for a data table (header + rows).
+ */
+export function TableSkeleton({
+  rows = 5,
+  columns = 4,
+}: {
+  rows?: number
+  columns?: number
+}) {
+  return (
+    <div className="w-full space-y-2">
+      {/* Header */}
+      <div className="flex gap-4 border-b pb-2">
+        {Array.from({ length: columns }).map((_, i) => (
+          <Skeleton key={`header-${i}`} className="h-4 flex-1" />
+        ))}
+      </div>
+      {/* Rows */}
+      {Array.from({ length: rows }).map((_, rowIdx) => (
+        <div key={`row-${rowIdx}`} className="flex gap-4 py-2">
+          {Array.from({ length: columns }).map((_, colIdx) => (
+            <Skeleton key={`cell-${rowIdx}-${colIdx}`} className="h-4 flex-1" />
+          ))}
+        </div>
+      ))}
+    </div>
+  )
+}
+
+/**
+ * Skeleton for chart / Recharts areas.
+ */
+export function ChartSkeleton() {
+  return (
+    <div className="space-y-4 rounded-lg border p-6">
+      <Skeleton className="h-5 w-40" />
+      <Skeleton className="h-48 w-full" />
+    </div>
+  )
+}
+
+/**
+ * Skeleton for a single form field.
+ */
+export function FormFieldSkeleton() {
+  return (
+    <div className="space-y-2">
+      <Skeleton className="h-4 w-20" />
+      <Skeleton className="h-10 w-full" />
+    </div>
+  )
+}
+
+/**
+ * Grid of card skeletons for the dashboard.
+ */
+export function DashboardSkeleton() {
+  return (
+    <div className="grid gap-4 sm:grid-cols-2 lg:grid-cols-4">
+      <CardSkeleton />
+      <CardSkeleton />
+      <CardSkeleton />
+      <CardSkeleton />
+    </div>
+  )
+}
diff --git a/cannamanage-frontend/src/lib/api-client.ts b/cannamanage-frontend/src/lib/api-client.ts
new file mode 100644
index 0000000..2d63817
--- /dev/null
+++ b/cannamanage-frontend/src/lib/api-client.ts
@@ -0,0 +1,193 @@
+/**
+ * Typed fetch wrapper for the CannaManage API.
+ *
+ * Routes through the Next.js rewrite proxy:
+ *   /api/backend/... → BACKEND_URL/api/v1/...
+ */
+
+export class ApiError extends Error {
+  constructor(
+    public status: number,
+    public code: string,
+    message: string
+  ) {
+    super(message)
+    this.name = "ApiError"
+  }
+
+  /** True for 401/403 — session likely expired or insufficient permissions */
+  get isAuthError(): boolean {
+    return this.status === 401 || this.status === 403
+  }
+
+  /** True for 5xx — server-side failure */
+  get isServerError(): boolean {
+    return this.status >= 500
+  }
+
+  /** True for network failures (status 0) */
+  get isNetworkError(): boolean {
+    return this.status === 0
+  }
+}
+
+export interface ApiClientOptions extends Omit<RequestInit, "body"> {
+  token?: string
+  body?: unknown
+  params?: Record<string, string | number | boolean | undefined>
+}
+
+/**
+ * Core fetch wrapper that targets the Next.js rewrite proxy.
+ *
+ * @param endpoint - API path without the prefix, e.g. `/members` or `/members/123`
+ * @param options  - Fetch options + optional token and typed body
+ * @returns Parsed JSON response of type T
+ * @throws ApiError on non-2xx responses
+ */
+export async function apiClient<T>(
+  endpoint: string,
+  options: ApiClientOptions = {}
+): Promise<T> {
+  const {
+    token,
+    body,
+    params,
+    headers: extraHeaders,
+    ...fetchOptions
+  } = options
+
+  // Build URL with optional query params
+  let url = `/api/backend${endpoint}`
+  if (params) {
+    const searchParams = new URLSearchParams()
+    for (const [key, value] of Object.entries(params)) {
+      if (value !== undefined) {
+        searchParams.set(key, String(value))
+      }
+    }
+    const qs = searchParams.toString()
+    if (qs) url += `?${qs}`
+  }
+
+  const headers: Record<string, string> = {
+    "Content-Type": "application/json",
+    ...(token && { Authorization: `Bearer ${token}` }),
+    ...(extraHeaders as Record<string, string>),
+  }
+
+  // Don't set Content-Type for GET/HEAD (no body)
+  const method = (fetchOptions.method || "GET").toUpperCase()
+  if (method === "GET" || method === "HEAD") {
+    delete headers["Content-Type"]
+  }
+
+  try {
+    const res = await fetch(url, {
+      ...fetchOptions,
+      method,
+      headers,
+      body: body ? JSON.stringify(body) : undefined,
+    })
+
+    if (!res.ok) {
+      // Try to parse application/problem+json or standard error body
+      const errorBody = await res.json().catch(() => ({
+        code: `HTTP_${res.status}`,
+        message: res.statusText || "Request failed",
+      }))
+
+      throw new ApiError(
+        res.status,
+        errorBody.code || `HTTP_${res.status}`,
+        errorBody.message || errorBody.detail || res.statusText
+      )
+    }
+
+    // 204 No Content — return undefined as T
+    if (res.status === 204) {
+      return undefined as T
+    }
+
+    return res.json() as Promise<T>
+  } catch (error) {
+    if (error instanceof ApiError) {
+      throw error
+    }
+    // Network errors (fetch throws TypeError for network failures)
+    throw new ApiError(
+      0,
+      "NETWORK_ERROR",
+      "Network error — unable to reach the server."
+    )
+  }
+}
+
+/**
+ * Download a file (PDF, CSV) from the API as a Blob.
+ * Used for report downloads where we don't parse JSON.
+ */
+export async function apiDownload(
+  endpoint: string,
+  options: ApiClientOptions = {}
+): Promise<{ blob: Blob; filename: string }> {
+  const {
+    token,
+    body,
+    params,
+    headers: extraHeaders,
+    ...fetchOptions
+  } = options
+
+  let url = `/api/backend${endpoint}`
+  if (params) {
+    const searchParams = new URLSearchParams()
+    for (const [key, value] of Object.entries(params)) {
+      if (value !== undefined) {
+        searchParams.set(key, String(value))
+      }
+    }
+    const qs = searchParams.toString()
+    if (qs) url += `?${qs}`
+  }
+
+  const headers: Record<string, string> = {
+    Accept: "application/octet-stream",
+    ...(token && { Authorization: `Bearer ${token}` }),
+    ...(extraHeaders as Record<string, string>),
+  }
+
+  try {
+    const res = await fetch(url, {
+      ...fetchOptions,
+      headers,
+      body: body ? JSON.stringify(body) : undefined,
+    })
+
+    if (!res.ok) {
+      const errorBody = await res.json().catch(() => ({
+        code: `HTTP_${res.status}`,
+        message: res.statusText,
+      }))
+      throw new ApiError(
+        res.status,
+        errorBody.code || `HTTP_${res.status}`,
+        errorBody.message || res.statusText
+      )
+    }
+
+    const blob = await res.blob()
+    const disposition = res.headers.get("Content-Disposition") || ""
+    const filenameMatch = disposition.match(/filename="?([^";\n]+)"?/)
+    const filename = filenameMatch?.[1] || "download"
+
+    return { blob, filename }
+  } catch (error) {
+    if (error instanceof ApiError) throw error
+    throw new ApiError(
+      0,
+      "NETWORK_ERROR",
+      "Network error — unable to reach the server."
+    )
+  }
+}
diff --git a/cannamanage-frontend/src/providers/index.tsx b/cannamanage-frontend/src/providers/index.tsx
index 7928a7b..7734c80 100644
--- a/cannamanage-frontend/src/providers/index.tsx
+++ b/cannamanage-frontend/src/providers/index.tsx
@@ -1,5 +1,7 @@
 "use client"
 
+import { useState } from "react"
+import { QueryClient, QueryClientProvider } from "@tanstack/react-query"
 import { SessionProvider } from "next-auth/react"
 
 import type { LocaleType } from "@/types"
@@ -17,15 +19,34 @@ export function Providers({
   locale: LocaleType
   children: ReactNode
 }>) {
+  const [queryClient] = useState(
+    () =>
+      new QueryClient({
+        defaultOptions: {
+          queries: {
+            staleTime: 30 * 1000,
+            gcTime: 5 * 60 * 1000,
+            retry: 1,
+            refetchOnWindowFocus: true,
+          },
+          mutations: {
+            retry: 0,
+          },
+        },
+      })
+  )
+
   return (
     <SessionProvider>
-      <SettingsProvider locale={locale}>
-        <ModeProvider>
-          <ThemeProvider>
-            <SidebarProvider>{children}</SidebarProvider>
-          </ThemeProvider>
-        </ModeProvider>
-      </SettingsProvider>
+      <QueryClientProvider client={queryClient}>
+        <SettingsProvider locale={locale}>
+          <ModeProvider>
+            <ThemeProvider>
+              <SidebarProvider>{children}</SidebarProvider>
+            </ThemeProvider>
+          </ModeProvider>
+        </SettingsProvider>
+      </QueryClientProvider>
     </SessionProvider>
   )
 }
diff --git a/cannamanage-frontend/src/services/dashboard.ts b/cannamanage-frontend/src/services/dashboard.ts
new file mode 100644
index 0000000..0b32738
--- /dev/null
+++ b/cannamanage-frontend/src/services/dashboard.ts
@@ -0,0 +1,25 @@
+import { useQuery } from "@tanstack/react-query"
+
+import type { ClubStats, Distribution } from "@/types/api"
+
+import { apiClient } from "@/lib/api-client"
+
+// --- Query Hooks ---
+
+export function useClubStatsQuery() {
+  return useQuery({
+    queryKey: ["dashboard", "stats"],
+    queryFn: () => apiClient<ClubStats>("/dashboard/stats"),
+    refetchInterval: 60 * 1000, // auto-refresh every 60s
+  })
+}
+
+export function useRecentDistributionsQuery(limit = 5) {
+  return useQuery({
+    queryKey: ["dashboard", "recent-distributions", limit],
+    queryFn: () =>
+      apiClient<Distribution[]>("/distributions/recent", {
+        params: { limit },
+      }),
+  })
+}
diff --git a/cannamanage-frontend/src/services/distributions.ts b/cannamanage-frontend/src/services/distributions.ts
new file mode 100644
index 0000000..b4245bb
--- /dev/null
+++ b/cannamanage-frontend/src/services/distributions.ts
@@ -0,0 +1,97 @@
+import { useMutation, useQuery, useQueryClient } from "@tanstack/react-query"
+
+import type {
+  AvailableBatch,
+  Distribution,
+  DistributionRecord,
+  QuotaStatus,
+} from "@/types/api"
+
+import { apiClient } from "@/lib/api-client"
+
+// --- Types ---
+
+export interface DistributionsPage {
+  content: DistributionRecord[]
+  totalElements: number
+  totalPages: number
+  number: number
+  size: number
+}
+
+export interface CreateDistributionRequest {
+  memberId: string
+  batchId: string
+  amountGrams: number
+}
+
+// --- Query Hooks ---
+
+export function useDistributionsQuery(params?: {
+  page?: number
+  size?: number
+  memberId?: string
+  from?: string
+  to?: string
+}) {
+  return useQuery({
+    queryKey: ["distributions", params],
+    queryFn: () =>
+      apiClient<DistributionsPage>("/distributions", {
+        params: {
+          page: params?.page,
+          size: params?.size ?? 20,
+          memberId: params?.memberId || undefined,
+          from: params?.from || undefined,
+          to: params?.to || undefined,
+        },
+      }),
+  })
+}
+
+export function useRecentDistributionsQuery(limit = 5) {
+  return useQuery({
+    queryKey: ["distributions", "recent", limit],
+    queryFn: () =>
+      apiClient<Distribution[]>("/distributions/recent", {
+        params: { limit },
+      }),
+  })
+}
+
+export function useQuotaQuery(memberId: string) {
+  return useQuery({
+    queryKey: ["members", memberId, "quota"],
+    queryFn: () => apiClient<QuotaStatus>(`/members/${memberId}/quota`),
+    enabled: !!memberId,
+  })
+}
+
+export function useAvailableBatchesQuery() {
+  return useQuery({
+    queryKey: ["batches", "available"],
+    queryFn: () => apiClient<AvailableBatch[]>("/batches/available"),
+  })
+}
+
+// --- Mutation Hooks ---
+
+export function useCreateDistributionMutation() {
+  const queryClient = useQueryClient()
+  return useMutation({
+    mutationFn: (data: CreateDistributionRequest) =>
+      apiClient<DistributionRecord>("/distributions", {
+        method: "POST",
+        body: data,
+      }),
+    onSuccess: (_data, variables) => {
+      // Invalidate distribution list + member quota
+      queryClient.invalidateQueries({ queryKey: ["distributions"] })
+      queryClient.invalidateQueries({
+        queryKey: ["members", variables.memberId, "quota"],
+      })
+      queryClient.invalidateQueries({ queryKey: ["batches"] })
+      queryClient.invalidateQueries({ queryKey: ["dashboard"] })
+    },
+  })
+}
diff --git a/cannamanage-frontend/src/services/members.ts b/cannamanage-frontend/src/services/members.ts
new file mode 100644
index 0000000..3d57047
--- /dev/null
+++ b/cannamanage-frontend/src/services/members.ts
@@ -0,0 +1,102 @@
+import { useMutation, useQuery, useQueryClient } from "@tanstack/react-query"
+
+import type { Member, QuotaStatus } from "@/types/api"
+
+import { apiClient } from "@/lib/api-client"
+
+// --- Types ---
+
+export interface MembersPage {
+  content: Member[]
+  totalElements: number
+  totalPages: number
+  number: number
+  size: number
+}
+
+export interface CreateMemberRequest {
+  firstName: string
+  lastName: string
+  email: string
+  dateOfBirth: string
+  phone?: string
+  notes?: string
+}
+
+export interface UpdateMemberRequest extends Partial<CreateMemberRequest> {
+  status?: "ACTIVE" | "SUSPENDED" | "EXPELLED"
+}
+
+// --- Query Hooks ---
+
+export function useMembersQuery(params?: {
+  page?: number
+  size?: number
+  search?: string
+  status?: string
+}) {
+  return useQuery({
+    queryKey: ["members", params],
+    queryFn: () =>
+      apiClient<MembersPage>("/members", {
+        params: {
+          page: params?.page,
+          size: params?.size ?? 20,
+          search: params?.search || undefined,
+          status: params?.status || undefined,
+        },
+      }),
+  })
+}
+
+export function useMemberQuery(id: string) {
+  return useQuery({
+    queryKey: ["members", id],
+    queryFn: () => apiClient<Member>(`/members/${id}`),
+    enabled: !!id,
+  })
+}
+
+export function useMemberQuotaQuery(id: string) {
+  return useQuery({
+    queryKey: ["members", id, "quota"],
+    queryFn: () => apiClient<QuotaStatus>(`/members/${id}/quota`),
+    enabled: !!id,
+  })
+}
+
+// --- Mutation Hooks ---
+
+export function useCreateMemberMutation() {
+  const queryClient = useQueryClient()
+  return useMutation({
+    mutationFn: (data: CreateMemberRequest) =>
+      apiClient<Member>("/members", { method: "POST", body: data }),
+    onSuccess: () => {
+      queryClient.invalidateQueries({ queryKey: ["members"] })
+    },
+  })
+}
+
+export function useUpdateMemberMutation(id: string) {
+  const queryClient = useQueryClient()
+  return useMutation({
+    mutationFn: (data: UpdateMemberRequest) =>
+      apiClient<Member>(`/members/${id}`, { method: "PUT", body: data }),
+    onSuccess: () => {
+      queryClient.invalidateQueries({ queryKey: ["members"] })
+      queryClient.invalidateQueries({ queryKey: ["members", id] })
+    },
+  })
+}
+
+export function useDeleteMemberMutation() {
+  const queryClient = useQueryClient()
+  return useMutation({
+    mutationFn: (id: string) =>
+      apiClient<void>(`/members/${id}`, { method: "DELETE" }),
+    onSuccess: () => {
+      queryClient.invalidateQueries({ queryKey: ["members"] })
+    },
+  })
+}
diff --git a/cannamanage-frontend/src/services/portal.ts b/cannamanage-frontend/src/services/portal.ts
new file mode 100644
index 0000000..b76698c
--- /dev/null
+++ b/cannamanage-frontend/src/services/portal.ts
@@ -0,0 +1,83 @@
+import { useQuery } from "@tanstack/react-query"
+
+import { apiClient } from "@/lib/api-client"
+
+// --- Types ---
+
+export interface PortalDashboardData {
+  memberName: string
+  memberNumber: string
+  quotaStatus: {
+    dailyUsedGrams: number
+    dailyLimitGrams: number
+    monthlyUsedGrams: number
+    monthlyLimitGrams: number
+    isUnder21: boolean
+  }
+  lastDistribution?: {
+    strainName: string
+    amountGrams: number
+    recordedAt: string
+  }
+}
+
+export interface PortalHistoryEntry {
+  id: string
+  strainName: string
+  amountGrams: number
+  recordedAt: string
+}
+
+export interface PortalHistoryPage {
+  content: PortalHistoryEntry[]
+  totalElements: number
+  totalPages: number
+  number: number
+  size: number
+}
+
+export interface PortalProfileData {
+  firstName: string
+  lastName: string
+  email: string
+  phone?: string
+  dateOfBirth: string
+  memberNumber: string
+  memberSince: string
+  status: "ACTIVE" | "SUSPENDED" | "EXPELLED"
+}
+
+// --- Query Hooks ---
+
+export function usePortalDashboardQuery() {
+  return useQuery({
+    queryKey: ["portal", "dashboard"],
+    queryFn: () => apiClient<PortalDashboardData>("/portal/dashboard"),
+  })
+}
+
+export function usePortalHistoryQuery(params?: {
+  page?: number
+  size?: number
+  month?: string
+}) {
+  return useQuery({
+    queryKey: ["portal", "history", params],
+    queryFn: () =>
+      apiClient<PortalHistoryPage>("/portal/history", {
+        params: {
+          page: params?.page,
+          size: params?.size ?? 20,
+          month: params?.month || undefined,
+        },
+      }),
+  })
+}
+
+export function usePortalProfileQuery() {
+  return useQuery({
+    queryKey: ["portal", "profile"],
+    queryFn: () => apiClient<PortalProfileData>("/portal/profile"),
+    staleTime: 5 * 60 * 1000, // profile rarely changes
+  })
+}
diff --git a/cannamanage-frontend/src/services/reports.ts b/cannamanage-frontend/src/services/reports.ts
new file mode 100644
index 0000000..b25de97
--- /dev/null
+++ b/cannamanage-frontend/src/services/reports.ts
@@ -0,0 +1,113 @@
+import { useQuery } from "@tanstack/react-query"
+
+import { apiClient, apiDownload } from "@/lib/api-client"
+
+// --- Types ---
+
+export interface MonthlyReportData {
+  month: string // YYYY-MM
+  totalDistributions: number
+  totalGrams: number
+  uniqueMembers: number
+  averagePerDistribution: number
+  topStrains: { name: string; grams: number }[]
+}
+
+export interface MemberListReportData {
+  totalMembers: number
+  activeMembers: number
+  suspendedMembers: number
+  expelledMembers: number
+  members: { id: string; name: string; status: string; joinedAt: string }[]
+}
+
+export interface RecallReportData {
+  totalRecalls: number
+  batches: {
+    id: string
+    strainName: string
+    recalledAt: string
+    reason: string
+    gramsAffected: number
+  }[]
+}
+
+// --- Query Hooks (preview data) ---
+
+export function useMonthlyReportQuery(month?: string) {
+  return useQuery({
+    queryKey: ["reports", "monthly", month],
+    queryFn: () =>
+      apiClient<MonthlyReportData>("/reports/monthly", {
+        params: { month: month || undefined },
+      }),
+    enabled: !!month,
+  })
+}
+
+export function useMemberListReportQuery(status?: string) {
+  return useQuery({
+    queryKey: ["reports", "member-list", status],
+    queryFn: () =>
+      apiClient<MemberListReportData>("/reports/member-list", {
+        params: { status: status || undefined },
+      }),
+  })
+}
+
+export function useRecallReportQuery(dateRange?: { from: string; to: string }) {
+  return useQuery({
+    queryKey: ["reports", "recalls", dateRange],
+    queryFn: () =>
+      apiClient<RecallReportData>("/reports/recalls", {
+        params: {
+          from: dateRange?.from,
+          to: dateRange?.to,
+        },
+      }),
+    enabled: !!dateRange,
+  })
+}
+
+// --- Download Functions (imperative, not hooks) ---
+
+export async function downloadMonthlyReportPdf(month: string) {
+  const { blob, filename } = await apiDownload("/reports/monthly/pdf", {
+    params: { month },
+  })
+  triggerDownload(blob, filename || `monthly-report-${month}.pdf`)
+}
+
+export async function downloadMonthlyReportCsv(month: string) {
+  const { blob, filename } = await apiDownload("/reports/monthly/csv", {
+    params: { month },
+  })
+  triggerDownload(blob, filename || `monthly-report-${month}.csv`)
+}
+
+export async function downloadMemberListPdf(status?: string) {
+  const { blob, filename } = await apiDownload("/reports/member-list/pdf", {
+    params: { status: status || undefined },
+  })
+  triggerDownload(blob, filename || "member-list.pdf")
+}
+
+export async function downloadRecallReportPdf(from: string, to: string) {
+  const { blob, filename } = await apiDownload("/reports/recalls/pdf", {
+    params: { from, to },
+  })
+  triggerDownload(blob, filename || `recall-report-${from}-${to}.pdf`)
+}
+
+// --- Helpers ---
+
+function triggerDownload(blob: Blob, filename: string) {
+  const url = URL.createObjectURL(blob)
+  const a = document.createElement("a")
+  a.href = url
+  a.download = filename
+  document.body.appendChild(a)
+  a.click()
+  document.body.removeChild(a)
+  URL.revokeObjectURL(url)
+}
diff --git a/cannamanage-frontend/src/services/staff.ts b/cannamanage-frontend/src/services/staff.ts
new file mode 100644
index 0000000..721c356
--- /dev/null
+++ b/cannamanage-frontend/src/services/staff.ts
@@ -0,0 +1,75 @@
+import { useMutation, useQuery, useQueryClient } from "@tanstack/react-query"
+
+import { apiClient } from "@/lib/api-client"
+
+// --- Types ---
+
+export interface StaffMember {
+  id: string
+  email: string
+  displayName: string
+  role: "ADMIN" | "MANAGER" | "STAFF"
+  permissions: string[]
+  status: "ACTIVE" | "INVITED" | "REVOKED"
+  lastLoginAt?: string
+  createdAt: string
+}
+
+export interface InviteStaffRequest {
+  email: string
+  displayName: string
+  role: "ADMIN" | "MANAGER" | "STAFF"
+  permissions: string[]
+}
+
+export interface UpdateStaffPermissionsRequest {
+  role?: "ADMIN" | "MANAGER" | "STAFF"
+  permissions?: string[]
+}
+
+// --- Query Hooks ---
+
+export function useStaffListQuery() {
+  return useQuery({
+    queryKey: ["staff"],
+    queryFn: () => apiClient<StaffMember[]>("/staff"),
+  })
+}
+
+// --- Mutation Hooks ---
+
+export function useInviteStaffMutation() {
+  const queryClient = useQueryClient()
+  return useMutation({
+    mutationFn: (data: InviteStaffRequest) =>
+      apiClient<StaffMember>("/staff/invite", { method: "POST", body: data }),
+    onSuccess: () => {
+      queryClient.invalidateQueries({ queryKey: ["staff"] })
+    },
+  })
+}
+
+export function useUpdateStaffPermissionsMutation(id: string) {
+  const queryClient = useQueryClient()
+  return useMutation({
+    mutationFn: (data: UpdateStaffPermissionsRequest) =>
+      apiClient<StaffMember>(`/staff/${id}/permissions`, {
+        method: "PUT",
+        body: data,
+      }),
+    onSuccess: () => {
+      queryClient.invalidateQueries({ queryKey: ["staff"] })
+    },
+  })
+}
+
+export function useRevokeStaffMutation() {
+  const queryClient = useQueryClient()
+  return useMutation({
+    mutationFn: (id: string) =>
+      apiClient<void>(`/staff/${id}/revoke`, { method: "POST" }),
+    onSuccess: () => {
+      queryClient.invalidateQueries({ queryKey: ["staff"] })
+    },
+  })
+}
diff --git a/cannamanage-frontend/src/services/stock.ts b/cannamanage-frontend/src/services/stock.ts
new file mode 100644
index 0000000..8e47e92
--- /dev/null
+++ b/cannamanage-frontend/src/services/stock.ts
@@ -0,0 +1,95 @@
+import { useMutation, useQuery, useQueryClient } from "@tanstack/react-query"
+
+import type { Batch, BatchSummary, Strain } from "@/types/api"
+
+import { apiClient } from "@/lib/api-client"
+
+// --- Types ---
+
+export interface BatchesPage {
+  content: Batch[]
+  totalElements: number
+  totalPages: number
+  number: number
+  size: number
+}
+
+export interface CreateBatchRequest {
+  strainName: string
+  thcPercent: number
+  cbdPercent: number
+  totalGrams: number
+  supplier: string
+  harvestDate: string
+  notes?: string
+}
+
+// --- Query Hooks ---
+
+export function useBatchesQuery(params?: {
+  page?: number
+  size?: number
+  status?: string
+}) {
+  return useQuery({
+    queryKey: ["batches", params],
+    queryFn: () =>
+      apiClient<BatchesPage>("/batches", {
+        params: {
+          page: params?.page,
+          size: params?.size ?? 20,
+          status: params?.status || undefined,
+        },
+      }),
+  })
+}
+
+export function useBatchQuery(id: string) {
+  return useQuery({
+    queryKey: ["batches", id],
+    queryFn: () => apiClient<Batch>(`/batches/${id}`),
+    enabled: !!id,
+  })
+}
+
+export function useStrainsQuery() {
+  return useQuery({
+    queryKey: ["strains"],
+    queryFn: () => apiClient<Strain[]>("/strains"),
+    staleTime: 5 * 60 * 1000, // strains rarely change — 5 min stale
+  })
+}
+
+export function useStockSummaryQuery() {
+  return useQuery({
+    queryKey: ["batches", "summary"],
+    queryFn: () => apiClient<BatchSummary[]>("/batches/summary"),
+  })
+}
+
+// --- Mutation Hooks ---
+
+export function useCreateBatchMutation() {
+  const queryClient = useQueryClient()
+  return useMutation({
+    mutationFn: (data: CreateBatchRequest) =>
+      apiClient<Batch>("/batches", { method: "POST", body: data }),
+    onSuccess: () => {
+      queryClient.invalidateQueries({ queryKey: ["batches"] })
+      queryClient.invalidateQueries({ queryKey: ["dashboard"] })
+    },
+  })
+}
+
+export function useRecallBatchMutation() {
+  const queryClient = useQueryClient()
+  return useMutation({
+    mutationFn: (id: string) =>
+      apiClient<Batch>(`/batches/${id}/recall`, { method: "POST" }),
+    onSuccess: (_data, id) => {
+      queryClient.invalidateQueries({ queryKey: ["batches"] })
+      queryClient.invalidateQueries({ queryKey: ["batches", id] })
+      queryClient.invalidateQueries({ queryKey: ["dashboard"] })
+    },
+  })
+}
diff --git a/docs/sprint-5/cannamanage-sprint5-plan-review.md b/docs/sprint-5/cannamanage-sprint5-plan-review.md
new file mode 100644
index 0000000..66c413a
--- /dev/null
+++ b/docs/sprint-5/cannamanage-sprint5-plan-review.md
@@ -0,0 +1,288 @@
+# CannaManage Sprint 5 Plan — Multi-Persona Review Panel
+
+**Date:** 2026-06-12
+**Reviewed Document:** `docs/sprint-5/cannamanage-sprint5-plan.md` (v2, ~840 lines)
+**Review Method:** 6-persona stakeholder simulation, scoring on 4 dimensions (0–100%)
+**Iteration:** 1
+
+---
+
+## v2 Decisions Incorporated
+
+The Sprint 5 plan v2 incorporates all Q&A decisions from the planning session:
+
+1. ✅ **@tanstack/react-query** — caching, refetch, optimistic updates (Q1)
+2. ✅ **Per-component loading** — independent card/table loading, no full-page blocking (Q2)
+3. ✅ **Stale-while-revalidate + "Offline" banner** — graceful degradation (Q3)
+4. ✅ **Full CRUD staff management** — list, invite, edit perms, revoke (Q4)
+5. ✅ **Dual seed data strategy** — SQL for dev/test + API-driven for system E2E (Q5)
+6. ✅ **Next.js 15.2.8 → 15.5.18 upgrade** — addresses 8+ Snyk CVEs in Phase 1 (Bonus)
+
+---
+
+## 1. 👤 Club Member (End User)
+
+*"I'm a regular member of a cannabis social club. I want to see my quota, pick up my cannabis, and check my history — now with real data instead of fake numbers."*
+
+### Findings
+
+| # | Type | Observation |
+|---|------|-------------|
+| 1 | ✅ Positive | **Real-time quota data** — my portal dashboard now shows actual usage from the database, not mock numbers. I can trust the "28g remaining" display because it's coming from the real backend with server-authoritative calculations. |
+| 2 | ✅ Positive | **Stale-while-revalidate** — if my phone briefly loses signal in the club, I still see my last-known quota instead of a blank page. The "Offline" banner is unobtrusive. |
+| 3 | ✅ Positive | **Per-component loading** — when I open the portal, I see my quota radial load first (fast), then history loads separately. No frozen full-page spinner. |
+| 4 | ✅ Positive | **Distribution history is live** — I can see a distribution appear in my history immediately after the staff records it. No manual refresh needed. |
+| 5 | ⚠️ Minor | **No push notification for distributions** — I still won't get notified when a distribution is recorded against my account. I have to check manually. (Acknowledged as Sprint 6+ scope.) |
+| 6 | ✅ Positive | **Portal auth is explicitly planned** — Phase 5 specifically calls out wiring the portal login flow with session-based auth. My separate login experience is preserved. |
+
+### Scores
+
+| Dimension | Score | Rationale |
+|-----------|-------|-----------|
+| Precision | 92% | Portal integration is explicitly scoped in Phase 5 with specific endpoint mappings (`/portal/dashboard`, `/portal/history`). Loading patterns and offline handling are precisely defined. |
+| Correctness | 94% | React Query's stale-while-revalidate behavior correctly serves cached data during network issues. Quota calculations remain server-authoritative. Session-based portal auth is appropriate for member-facing UI. |
+| Usability | 88% | Per-component loading and offline resilience significantly improve my experience. Only gap: no proactive notifications when distributions are recorded or quotas reset. |
+| Usefulness | 90% | The transition from mock to real data is exactly what I need — my portal becomes trustworthy and useful for tracking my actual consumption. |
+
+**Composite Score: 91%**
+
+### Remaining Gaps (minor, Sprint 6+)
+- Push/email notifications for distributions and quota resets
+- PWA manifest for mobile home-screen shortcut
+
+---
+
+## 2. 🏢 Club Owner / Vorstand (Business Owner)
+
+*"I run the Anbauvereinigung. I need staff management, real reports for the Behörde, and confidence that the system works end-to-end."*
+
+### Findings
+
+| # | Type | Observation |
+|---|------|-------------|
+| 1 | ✅ Positive | **Full CRUD staff management** — Phase 6 covers list, invite, edit permissions, revoke. All 8 granular permissions are specified. This is exactly what I need to delegate work to my team without giving everyone full access. |
+| 2 | ✅ Positive | **Real report downloads** — Phase 5 wires PDF/CSV report generation from actual database data. Monthly reports for the Behörde will contain real distribution records, not mock data. |
+| 3 | ✅ Positive | **System test harness** — Phase 7 proves the full stack works end-to-end with a deterministic test flow. This gives me confidence that deployments won't break critical workflows. |
+| 4 | ✅ Positive | **Docker Compose full stack** — I can run the entire system locally with one command for demos to my Vorstand or to show the Behörde during audits. |
+| 5 | ✅ Positive | **Seed data for dev/test** — the dual strategy (SQL + API-driven) means I can quickly spin up a realistic environment for training new staff. |
+| 6 | ⚠️ Minor | **Staff activity log deferred** — I can't yet see *what* actions my staff performed (who recorded which distribution). Deferred to Sprint 6. |
+| 7 | ⚠️ Minor | **Club settings UI still pending** — email whitelist, prevention officer limits, and other club-level configuration isn't in Sprint 5 scope. |
+| 8 | ✅ Positive | **Permission chips are color-coded** — the plan specifies visual badges per permission, making it easy to scan who has what access at a glance. |
+
+### Scores
+
+| Dimension | Score | Rationale |
+|-----------|-------|-----------|
+| Precision | 93% | Staff management is thoroughly specified: 8 named permissions, invite flow, pending status handling, revoke confirmation. API endpoints are concrete. |
+| Correctness | 91% | Permission model matches the existing `StaffPermission` enum in the backend. RBAC enforcement (403 for unauthorized) is explicitly tested. Report generation uses established PDF/CSV generation code. |
+| Usability | 85% | Full CRUD staff management covers my daily needs. Missing activity log means I can't audit staff behavior yet. Club settings require direct backend config. |
+| Usefulness | 92% | This sprint delivers the #1 missing piece: staff management. Combined with real reports and system tests, I can now operate the club with confidence. |
+
+**Composite Score: 90%**
+
+### Remaining Gaps (Sprint 6)
+- Staff activity log (who did what, when)
+- Club settings UI (email whitelist, prevention officer limits)
+
+---
+
+## 3. 💻 Developer (Technical Implementer)
+
+*"I'm the one building this. Is the integration architecture sound? Are dependencies clear? Is the testing strategy robust?"*
+
+### Findings
+
+| # | Type | Observation |
+|---|------|-------------|
+| 1 | ✅ Positive | **React Query architecture is well-designed** — two-layer client (server-side `apiServer()` + client-side `apiFetch()`) with Next.js rewrite proxy keeps auth tokens server-side. Clean separation of concerns. |
+| 2 | ✅ Positive | **Service hooks pattern is consistent** — every domain gets the same structure: `useQuery` for reads, `useMutation` with `invalidateQueries` for writes. Easy to replicate across 7 service files. |
+| 3 | ✅ Positive | **Next.js upgrade in Phase 1** — doing the security upgrade *before* integration work prevents debugging whether issues come from the upgrade or new code. Smart sequencing. |
+| 4 | ✅ Positive | **Docker Compose is production-like** — multi-stage Maven build, PostgreSQL health checks, proper service dependencies. Build cache optimization mentioned for developer experience. |
+| 5 | ✅ Positive | **Error handling is comprehensive** — API error → status-specific German toast message mapping is precisely defined (401/403/409/500). Offline detection returns "Verbindungsfehler" toast. |
+| 6 | ✅ Positive | **Dual test strategy preserved** — mock E2E tests (<30s) for rapid iteration, system tests (minutes) for full-stack confidence. Both have clear value and separate configs. |
+| 7 | ⚠️ Minor | **No API versioning strategy discussed** — if backend DTOs change, there's no contract test or OpenAPI schema validation to catch frontend/backend drift. Currently relies on manual verification during Phase 3. |
+| 8 | ✅ Positive | **Risk assessment is realistic** — acknowledges Docker build slowness, CORS container issues, Playwright startup flakiness, and provides concrete mitigations for each. |
+| 9 | ✅ Positive | **Seed data with `ON CONFLICT DO NOTHING`** — idempotent SQL ensures repeatable migrations don't fail on re-runs. Correct Flyway pattern. |
+| 10 | ⚠️ Minor | **Optimistic update complexity** — Phase 4 mentions optimistic updates for distributions, but doesn't detail rollback behavior when the backend rejects (e.g., quota exceeded after optimistic decrement). React Query's `onMutate`/`onError` rollback pattern should be specified. |
+
+### Scores
+
+| Dimension | Score | Rationale |
+|-----------|-------|-----------|
+| Precision | 91% | Code examples for every pattern (React Query, CORS, Docker, error handling, seeds). File paths are explicit. Only missing: optimistic update rollback detail. |
+| Correctness | 93% | Architecture decisions are technically sound. React Query + Next.js rewrite proxy is the established pattern. Docker multi-stage build is correct. Flyway repeatable migration is appropriate for seed data. |
+| Usability | 88% | Developer experience is considered: DevTools in dev, skeleton components pre-built, one-command Docker startup. Phase sequencing is logical. Slightly high effort estimate (10.5 days single worker) may compress. |
+| Usefulness | 92% | This plan is immediately actionable. Every phase has acceptance criteria checkboxes. Directory structure shows exact file placement. Minimal ambiguity in implementation order. |
+
+**Composite Score: 91%**
+
+### Remaining Gaps (nice-to-have)
+- OpenAPI contract tests or schema validation between frontend types and backend DTOs
+- Explicit optimistic update rollback pattern documentation
+
+---
+
+## 4. 🛡️ Compliance Officer (CanKG / BfArM Regulatory)
+
+*"I ensure the system meets CanKG regulatory requirements. Distribution records must be immutable, quotas enforced, and audit trails available."*
+
+### Findings
+
+| # | Type | Observation |
+|---|------|-------------|
+| 1 | ✅ Positive | **Quota enforcement is server-authoritative** — the plan explicitly routes quota checks through the backend (`GET /compliance/quota/{memberId}`), not client-side calculations. The 409 response for exceeded limits prevents frontend manipulation. |
+| 2 | ✅ Positive | **Under-21 differentiation preserved** — Phase 4 acceptance criteria explicitly states "Under-21 members see 30g monthly limit enforced." The reduced quota is backend-enforced. |
+| 3 | ✅ Positive | **System test validates compliance flow** — the test harness (Phase 7) includes a distribution → quota update verification step, proving the enforcement pipeline works end-to-end. |
+| 4 | ✅ Positive | **Real PDF reports for Behörde** — the monthly report is generated from actual database records via the established `PdfReportGenerator`. No more mock data in regulatory documents. |
+| 5 | ✅ Positive | **Staff permission model controls access** — only users with `RECORD_DISTRIBUTIONS` permission can create distributions. `MANAGE_COMPLIANCE` controls compliance dashboard access. Least-privilege principle applied. |
+| 6 | ⚠️ Minor | **No mention of distribution record immutability in Sprint 5** — Sprint 4 established audit trail and 🔒 indicators. Sprint 5 should confirm these survive the integration (i.e., the real backend enforces immutability, not just the frontend). |
+| 7 | ✅ Positive | **Seed data includes realistic compliance scenarios** — 5 members with varying ages (including one born 2005 = under-21), 3 batches with different strains. Good for testing age-based quota differentiation. |
+
+### Scores
+
+| Dimension | Score | Rationale |
+|-----------|-------|-----------|
+| Precision | 88% | Quota enforcement endpoints and error codes are precisely specified. Under-21 handling is explicit. Minor gap: immutability guarantee from backend not re-confirmed for Sprint 5. |
+| Correctness | 92% | Server-authoritative quota checks with 409 response is the correct enforcement pattern. Staff permissions align with CanKG operational requirements. Age calculation from `date_of_birth` in seed data is testable. |
+| Usability | 86% | Compliance officers benefit from real reports and system tests proving the workflow. Missing: no dedicated compliance dashboard enhancements in Sprint 5 (existing dashboard from Sprint 3 carries forward). |
+| Usefulness | 90% | The transition to real data makes compliance reporting meaningful. System tests provide regulatory confidence. Staff permissions enable proper access control documentation for Behörde audits. |
+
+**Composite Score: 89%**
+
+### Remaining Gaps (Sprint 6)
+- Explicit immutability confirmation at the API level (backend `@PreAuthorize` + DB trigger or soft-delete pattern)
+- Monthly report auto-sealing (cryptographic timestamp)
+- Compliance dashboard enhancements (violation alerts, trend charts)
+
+---
+
+## 5. 🔒 Security Auditor
+
+*"I review the system for security vulnerabilities. Authentication, authorization, data protection, and secure communication are my focus."*
+
+### Findings
+
+| # | Type | Observation |
+|---|------|-------------|
+| 1 | ✅ Positive | **Next.js upgrade 15.2.8 → 15.5.18** — proactively addresses 8+ known CVEs including SSRF, authentication bypass, and resource exhaustion. Doing this in Phase 1 before integration work is the correct priority. |
+| 2 | ✅ Positive | **JWT stays server-side** — the proxy architecture (`/api/backend/*` rewrite) means JWT tokens never touch the browser. Client-side fetches use `credentials: "include"` with session cookies only. Reduced token theft surface. |
+| 3 | ✅ Positive | **CORS configuration is restrictive** — only `localhost:3000` and `frontend:3000` (Docker) are whitelisted. `allowCredentials: true` with explicit origins (not `*`). `maxAge: 3600L` limits preflight cache. |
+| 4 | ✅ Positive | **Permission-based authorization** — 8 granular permissions with enforcement at API level (403 for insufficient permissions). Only ADMIN + MANAGE_STAFF holders can modify staff. Defense in depth. |
+| 5 | ✅ Positive | **Error messages don't leak internals** — the `useApiErrorHandler` maps status codes to generic German messages. No stack traces, no internal paths, no SQL errors exposed to the client. |
+| 6 | ⚠️ Minor | **Seed data contains plaintext password placeholders** — `$2a$10$...bcrypt...` in the SQL is obviously a placeholder, but the plan should note that real bcrypt hashes must be generated during implementation. Password `admin123` is acceptable for test-seed profile only. |
+| 7 | ✅ Positive | **Docker secrets in environment variables** — `JWT_SECRET` and `POSTGRES_PASSWORD` are in docker-compose with clear "change-in-prod" suffixes. The plan acknowledges these are dev-only values. |
+| 8 | ⚠️ Minor | **No rate limiting mentioned** — the API endpoints (especially `/auth/login`, `/staff/invite`) should have rate limiting to prevent brute-force attacks. Not Sprint 5 scope but worth noting. |
+| 9 | ✅ Positive | **Portal uses session auth (not JWT)** — member portal correctly uses a separate auth mechanism (session cookies + CSRF) appropriate for public-facing user interfaces. |
+| 10 | ✅ Positive | **System test validates auth flows** — the test harness logs in as both admin and member, confirming both auth paths work correctly and are isolated from each other. |
+
+### Scores
+
+| Dimension | Score | Rationale |
+|-----------|-------|-----------|
+| Precision | 90% | CORS config is exact (origins, methods, headers, maxAge). Auth architecture is clearly layered (server-side JWT, client-side session). Permission model is enumerated. |
+| Correctness | 92% | Next.js upgrade addresses real CVEs. Server-side token handling is the security best practice. CORS with explicit origins + credentials is correctly restrictive. bcrypt for passwords is appropriate. |
+| Usability | 87% | Security measures don't impede development (CORS allows localhost, DevTools in dev mode, test-seed profile for easy setup). Good security/DX balance. |
+| Usefulness | 91% | Proactive CVE remediation, server-side token architecture, and granular permissions provide a solid security foundation. Rate limiting and 2FA are reasonable Sprint 6+ deferrals. |
+
+**Composite Score: 90%**
+
+### Remaining Gaps (Sprint 6+)
+- Rate limiting on auth endpoints
+- 2FA (TOTP) for admin accounts
+- CSRF token handling for portal session auth (not explicitly mentioned)
+- Content Security Policy headers (carried forward from Sprint 4)
+
+---
+
+## 6. 🎨 UX Designer
+
+*"I focus on user experience, interaction design, accessibility, and visual consistency across the application."*
+
+### Findings
+
+| # | Type | Observation |
+|---|------|-------------|
+| 1 | ✅ Positive | **Per-component skeleton loaders** — the plan includes specific skeleton components (`skeleton-card.tsx`, `skeleton-table.tsx`) that show shimmer during loading. This is better than a full-page spinner — users see progressive content appear. |
+| 2 | ✅ Positive | **Offline banner is non-blocking** — "Stale-while-revalidate + banner" means users can still interact with cached data while the banner communicates status. No modal or blocking overlay. |
+| 3 | ✅ Positive | **Error states have retry actions** — `error-state.tsx` component includes a retry button. Users aren't stuck — they can attempt recovery without navigating away. |
+| 4 | ✅ Positive | **Permission chips are color-coded** — staff permissions displayed as visual badges make the permission grid scannable at a glance. Pattern is consistent with existing UI components (shadcn Badge). |
+| 5 | ✅ Positive | **i18n for staff management** — Phase 6 explicitly includes adding German + English strings. Language consistency maintained across the new feature. |
+| 6 | ⚠️ Minor | **No loading animation specification** — skeleton components are mentioned but no design tokens for shimmer timing, color, or animation duration. Should match existing shadcn skeleton defaults. |
+| 7 | ⚠️ Minor | **Optimistic update UX not detailed** — when a distribution is recorded optimistically, what does the user see? Immediate list update with a subtle "saving..." indicator? Or just instant appearance? The undo pattern for failed optimistic updates needs visual design. |
+| 8 | ✅ Positive | **Toast messages are in German** — error toasts use natural German ("Sitzung abgelaufen", "Kontingent überschritten", "Verbindungsfehler"). Consistent with the i18n-first approach from Sprint 4. |
+| 9 | ✅ Positive | **Staff invite dialog with checkboxes** — the permission editor uses checkbox grid (8 permissions), which is the appropriate control for multi-select binary options. Familiar pattern. |
+| 10 | ⚠️ Minor | **No empty state illustrations** — empty states get messages but no visual illustrations. Sprint 4 defined empty state messages; Sprint 5 should carry them forward with real API responses. |
+
+### Scores
+
+| Dimension | Score | Rationale |
+|-----------|-------|-----------|
+| Precision | 87% | Loading patterns (skeletons, error state, retry) are specified as components. Toast messages have exact copy. Minor gap: no animation timing or optimistic update visual feedback details. |
+| Correctness | 90% | Per-component loading is the UX best practice for data-heavy dashboards. Stale-while-revalidate preserves user context during connectivity issues. Checkbox grid for permissions is appropriate. |
+| Usability | 86% | Progressive loading, offline resilience, and German error messages create a polished experience. Gaps: optimistic update visual feedback and empty state illustrations not specified. |
+| Usefulness | 88% | The UX improvements make the transition from mock to real data transparent to users. Loading and error states prevent confusion. Staff management UI follows established patterns. |
+
+**Composite Score: 88%**
+
+### Remaining Gaps (nice-to-have)
+- Optimistic update visual feedback pattern (saving indicator, rollback animation)
+- Empty state illustrations (consistent with shadcn/ui style)
+- Loading animation design tokens (shimmer timing, colors)
+- Accessibility audit for new staff management components (focus management in dialogs)
+
+---
+
+## Summary & Composite Scores
+
+| # | Persona | Composite Score | Top Concern |
+|---|---------|-----------------|-------------|
+| 1 | 👤 Club Member | **91%** | No push notifications for distributions |
+| 2 | 🏢 Club Owner | **90%** | Staff activity log deferred |
+| 3 | 💻 Developer | **91%** | Optimistic update rollback pattern unspecified |
+| 4 | 🛡️ Compliance Officer | **89%** | Immutability re-confirmation at API level |
+| 5 | 🔒 Security Auditor | **90%** | Rate limiting on auth endpoints |
+| 6 | 🎨 UX Designer | **88%** | Optimistic update visual feedback unspecified |
+
+### Overall Score: **90%** ✅
+
+**Verdict: APPROVED — exceeds 85% threshold on first pass.**
+
+---
+
+## Dimension Averages
+
+| Dimension | Average | Min | Max |
+|-----------|---------|-----|-----|
+| **Precision** | 90% | 87% (UX) | 93% (Owner) |
+| **Correctness** | 92% | 90% (UX) | 94% (Member) |
+| **Usability** | 87% | 85% (Owner) | 88% (Dev/Member) |
+| **Usefulness** | 91% | 88% (UX) | 92% (Dev/Owner) |
+
+---
+
+## Consolidated Improvement Suggestions (Non-Blocking)
+
+These are recommendations for implementation-time refinement, not plan revisions:
+
+| # | Category | Suggestion | Priority |
+|---|----------|------------|----------|
+| 1 | Technical | Add explicit optimistic update rollback pattern (React Query `onMutate`/`onError`) | Medium |
+| 2 | Security | Add rate limiting to `/auth/login` and `/staff/invite` endpoints | Medium |
+| 3 | Compliance | Re-confirm distribution immutability at API level (not just UI lock icons) | Medium |
+| 4 | UX | Define visual feedback for optimistic updates (saving indicator, error rollback) | Low |
+| 5 | Technical | Consider OpenAPI schema validation for frontend/backend DTO contract | Low |
+| 6 | UX | Carry forward empty state illustrations from Sprint 4 design system | Low |
+| 7 | Security | Document CSRF token handling for portal session auth | Low |
+
+---
+
+## Comparison with Sprint 4 Review
+
+| Metric | Sprint 4 (Iteration 1) | Sprint 4 (Iteration 2) | Sprint 5 (This Review) |
+|--------|------------------------|------------------------|------------------------|
+| Overall Score | 78% | 88% | **90%** |
+| Iterations Needed | 2 | — | **1** ✅ |
+| Blocking Gaps | 8 | 0 | **0** |
+| Non-Blocking Gaps | 5 | 3 | **7** (minor) |
+
+Sprint 5 plan achieves a higher first-pass score than Sprint 4's final iteration, demonstrating that learnings from the Sprint 4 review process were incorporated into the planning methodology. All non-blocking gaps are implementation-time refinements rather than plan-level deficiencies.
diff --git a/docs/sprint-5/cannamanage-sprint5-plan.md b/docs/sprint-5/cannamanage-sprint5-plan.md
new file mode 100644
index 0000000..2067b03
--- /dev/null
+++ b/docs/sprint-5/cannamanage-sprint5-plan.md
@@ -0,0 +1,890 @@
+# CannaManage — Sprint 5 Implementation Plan
+
+**Date:** 2026-06-12
+**Author:** Patrick Plate / Lumen (Planner)
+**Status:** Draft v2
+**Base Branch:** `main`
+**Sprint Branch:** `sprint/5-integration`
+**Sprint Goal:** Wire frontend to real backend — full-stack integration, Docker Compose test harness, staff management UI
+
+> **Sprint Structure:** Sprint 5 is split into two sub-sprints:
+> - **Sprint 5.a** — Phases 1–5: Full-stack integration (~7 days)
+> - **Sprint 5.b** — Phases 6–7: Staff management + system tests (~3 days)
+>
+> Both are delivered within Sprint 5, organized as sequential sub-sprints (~10 days total).
+
+---
+
+## 0. Decisions (Confirmed ✅)
+
+| # | Decision | Detail | Status |
+|---|----------|--------|--------|
+| D1 | API client library | **@tanstack/react-query** — caching, refetch, optimistic updates, loading/error states. Wraps the existing server-side `apiClient()` with client-side hooks. | ✅ Confirmed (Q1) |
+| D2 | Loading strategy | **Per-component loading** — each card/table loads independently with shimmer skeleton. No full-page blocking. | ✅ Confirmed (Q2) |
+| D3 | Offline resilience | **Stale-while-revalidate + "Offline" banner** — React Query serves stale cached data while attempting refetch. A persistent banner shows "Offline" status when backend is unreachable. No hard crash. | ✅ Confirmed (Q3) |
+| D4 | Staff UI scope | **Full CRUD** — list, invite, edit permissions, revoke. Activity log deferred to Sprint 6. | ✅ Confirmed (Q4) |
+| D5 | Seed data strategy | **SQL for dev/test** (Flyway repeatable migration `R__test_seed.sql` activated by Spring profile `test-seed`) + **API-driven for system E2E** (Playwright calls API to set up test state). Dual approach: deterministic SQL for fast local dev, API-driven for realistic integration coverage. | ✅ Confirmed (Q5) |
+| D6 | CORS approach | **Spring Boot `@CrossOrigin` + `CorsConfigurationSource` bean** — allows `localhost:3000` in dev, configurable per environment. Needed when running frontend outside Docker (dev mode). | ✅ Carried from v1 |
+| D7 | Docker profiles | Remove `profiles: [full]` from backend/frontend services → always-on. Add `docker-compose.test.yml` overlay for Playwright + seed data. | ✅ Carried from v1 |
+| D8 | Next.js upgrade | **Upgrade 15.2.8 → 15.5.18** in Phase 1. Addresses 8+ Snyk CVEs (SSRF, auth bypass, resource allocation). Performed early to surface breaking changes before integration work. | ✅ Confirmed (Bonus) |
+
+---
+
+## 1. Sprint 4 Recap (Context)
+
+| Delivered | Status |
+|-----------|--------|
+| Next.js 15 + shadcn/ui frontend (12 pages, 23K lines) | ✅ |
+| Admin dashboard with KPIs, chart, sidebar nav | ✅ |
+| Member management (TanStack Table, add/edit forms) | ✅ |
+| Distribution recording (multi-step form + quota check) | ✅ |
+| Stock/batch management (chart, recall, add batch) | ✅ |
+| Reports page (PDF/CSV download triggers) | ✅ |
+| Member portal (quota radial, history, profile) | ✅ |
+| i18n (de/en), dark+light mode, Docker multi-stage | ✅ |
+| Playwright E2E (66+ tests with mock backend) | ✅ |
+
+**Critical gap from Sprint 4:** Frontend uses local mock data (`src/data/mock/*`). No real API calls. Frontend and backend are completely disconnected.
+
+---
+
+## 2. Sprint 5 Scope
+
+### ✅ IN Scope — Sprint 5.a (Full-Stack Integration)
+
+| # | Feature | Priority | Effort |
+|---|---------|----------|--------|
+| 1 | **Docker Compose full stack + Next.js upgrade** — upgrade Next.js 15.2.8→15.5.18, remove `full` profile, add CORS, health checks, Backend Dockerfile fix | P0 | 1 day |
+| 2 | **API client layer (@tanstack/react-query)** — React Query provider, typed service hooks with caching/refetch/optimistic updates, per-component loading skeletons, error/offline patterns | P0 | 1 day |
+| 3 | **Wire dashboard + members** — replace mock data with real API calls | P0 | 1.5 days |
+| 4 | **Wire distributions + stock** — real distribution recording with quota check | P0 | 1.5 days |
+| 5 | **Wire reports + portal** — real report downloads, portal dashboard with live data | P1 | 1.5 days |
+
+**Sprint 5.a effort:** ~6.5 days
+
+### ✅ IN Scope — Sprint 5.b (Staff UI + System Tests)
+
+| # | Feature | Priority | Effort |
+|---|---------|----------|--------|
+| 6 | **Staff management UI** — list, invite, permissions editor, revoke | P1 | 2 days |
+| 7 | **System test harness** — seed data, Docker Compose test profile, E2E against real stack | P1 | 2 days |
+
+**Sprint 5.b effort:** ~4 days
+
+**Total estimated effort:** ~10 days (single worker, sequential)
+
+### ❌ OUT of Scope (Sprint 6+)
+
+- WebSocket notifications (email + in-app)
+- Inspector read-only mode
+- DSGVO consent management UI
+- PWA manifest + service worker
+- Micro-interactions (Framer Motion)
+- Monthly report auto-sealing
+- Cryptographic hash chain
+- 2FA (TOTP)
+
+---
+
+## 3. Architecture Decisions
+
+### 3.1 CORS Configuration (Decision D6)
+
+The frontend runs on `localhost:3000` in dev, but the backend is on `localhost:8080`. While Next.js rewrites (`/api/backend/:path*`) avoid CORS for server-side calls, client-side fetches (React Query) go directly. We add a proper CORS bean:
+
+```java
+// SecurityConfig.java — add to existing configuration
+@Bean
+public CorsConfigurationSource corsConfigurationSource() {
+    CorsConfiguration config = new CorsConfiguration();
+    config.setAllowedOrigins(List.of(
+        "http://localhost:3000",   // dev
+        "http://frontend:3000"    // Docker network
+    ));
+    config.setAllowedMethods(List.of("GET", "POST", "PUT", "DELETE", "PATCH"));
+    config.setAllowedHeaders(List.of("*"));
+    config.setAllowCredentials(true);
+    config.setMaxAge(3600L);
+    
+    UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
+    source.registerCorsConfiguration("/api/**", config);
+    return source;
+}
+```
+
+Apply to the API filter chain:
+```java
+http.cors(cors -> cors.configurationSource(corsConfigurationSource()))
+```
+
+### 3.2 TanStack React Query Setup (Decision D1)
+
+```typescript
+// src/lib/query-client.ts
+import { QueryClient } from "@tanstack/react-query"
+
+export const queryClient = new QueryClient({
+  defaultOptions: {
+    queries: {
+      staleTime: 30_000,        // 30s before refetch
+      gcTime: 5 * 60_000,      // 5min garbage collection
+      retry: 1,                 // retry once on failure
+      refetchOnWindowFocus: true,
+    },
+  },
+})
+```
+
+Provider setup in root layout:
+```typescript
+// app/[locale]/providers.tsx
+"use client"
+import { QueryClientProvider } from "@tanstack/react-query"
+import { queryClient } from "@/lib/query-client"
+
+export function Providers({ children }: { children: React.ReactNode }) {
+  return (
+    <QueryClientProvider client={queryClient}>
+      {children}
+    </QueryClientProvider>
+  )
+}
+```
+
+### 3.3 API Client Architecture (Server + Client)
+
+Two layers — server-side for SSR/RSC, client-side for interactive pages:
+
+```typescript
+// src/lib/api-client.ts (SERVER-SIDE — used in Server Components + Route Handlers)
+import { auth } from "@/lib/auth"
+
+const BACKEND_BASE = process.env.BACKEND_URL || "http://localhost:8080"
+
+export async function apiServer<T>(path: string, options: RequestInit = {}): Promise<T> {
+  const session = await auth()
+  if (!session?.user) throw new Error("Unauthorized")
+
+  const res = await fetch(`${BACKEND_BASE}/api/v1${path}`, {
+    ...options,
+    headers: {
+      "Content-Type": "application/json",
+      Authorization: `Bearer ${session.accessToken}`,
+      ...options.headers,
+    },
+    next: { revalidate: 30 }, // ISR-style caching
+  })
+
+  if (!res.ok) {
+    const error = await res.json().catch(() => ({ message: res.statusText }))
+    throw new ApiError(res.status, error.message)
+  }
+  return res.json()
+}
+```
+
+```typescript
+// src/lib/api-client-browser.ts (CLIENT-SIDE — used with React Query hooks)
+export async function apiFetch<T>(path: string, options: RequestInit = {}): Promise<T> {
+  // Uses Next.js rewrite proxy → /api/backend/* → backend:8080/api/v1/*
+  const res = await fetch(`/api/backend${path}`, {
+    ...options,
+    headers: {
+      "Content-Type": "application/json",
+      ...options.headers,
+    },
+    credentials: "include", // sends session cookie for auth
+  })
+
+  if (!res.ok) {
+    const error = await res.json().catch(() => ({ message: res.statusText }))
+    throw new ApiError(res.status, error.message)
+  }
+  return res.json()
+}
+
+export class ApiError extends Error {
+  constructor(public status: number, message: string) {
+    super(message)
+    this.name = "ApiError"
+  }
+}
+```
+
+### 3.4 Service Hooks Pattern
+
+Each domain gets a service file with typed React Query hooks:
+
+```typescript
+// src/services/members.ts
+import { useQuery, useMutation, useQueryClient } from "@tanstack/react-query"
+import { apiFetch } from "@/lib/api-client-browser"
+import type { Member } from "@/types/api"
+
+export function useMembers() {
+  return useQuery({
+    queryKey: ["members"],
+    queryFn: () => apiFetch<Member[]>("/members"),
+  })
+}
+
+export function useMember(id: string) {
+  return useQuery({
+    queryKey: ["members", id],
+    queryFn: () => apiFetch<Member>(`/members/${id}`),
+    enabled: !!id,
+  })
+}
+
+export function useCreateMember() {
+  const queryClient = useQueryClient()
+  return useMutation({
+    mutationFn: (data: CreateMemberRequest) =>
+      apiFetch<Member>("/members", { method: "POST", body: JSON.stringify(data) }),
+    onSuccess: () => {
+      queryClient.invalidateQueries({ queryKey: ["members"] })
+    },
+  })
+}
+```
+
+### 3.5 Error Handling + Toast Pattern
+
+```typescript
+// src/hooks/use-api-error.ts
+import { useToast } from "@/hooks/use-toast"
+import { ApiError } from "@/lib/api-client-browser"
+
+export function useApiErrorHandler() {
+  const { toast } = useToast()
+
+  return (error: unknown) => {
+    if (error instanceof ApiError) {
+      switch (error.status) {
+        case 401:
+          toast({ title: "Sitzung abgelaufen", description: "Bitte erneut anmelden.", variant: "destructive" })
+          break
+        case 403:
+          toast({ title: "Zugriff verweigert", description: "Fehlende Berechtigung.", variant: "destructive" })
+          break
+        case 409:
+          toast({ title: "Kontingent überschritten", description: error.message, variant: "destructive" })
+          break
+        default:
+          toast({ title: "Fehler", description: error.message, variant: "destructive" })
+      }
+    } else {
+      toast({ title: "Verbindungsfehler", description: "Backend nicht erreichbar.", variant: "destructive" })
+    }
+  }
+}
+```
+
+### 3.6 Loading Skeleton Pattern
+
+```typescript
+// src/components/cannamanage/skeleton-card.tsx
+import { Skeleton } from "@/components/ui/skeleton"
+import { Card, CardContent, CardHeader } from "@/components/ui/card"
+
+export function SkeletonCard() {
+  return (
+    <Card>
+      <CardHeader>
+        <Skeleton className="h-4 w-[120px]" />
+      </CardHeader>
+      <CardContent>
+        <Skeleton className="h-8 w-[80px]" />
+        <Skeleton className="h-3 w-[160px] mt-2" />
+      </CardContent>
+    </Card>
+  )
+}
+```
+
+### 3.7 Docker Compose — Full Stack (Decision D7)
+
+```yaml
+# docker-compose.yml (updated — no profile gates)
+version: '3.9'
+
+services:
+  db:
+    image: postgres:16-alpine
+    container_name: cannamanage-db
+    environment:
+      POSTGRES_DB: cannamanage
+      POSTGRES_USER: cannamanage
+      POSTGRES_PASSWORD: dev_password_change_in_prod
+    ports:
+      - "5432:5432"
+    volumes:
+      - pgdata:/var/lib/postgresql/data
+    healthcheck:
+      test: ["CMD-SHELL", "pg_isready -U cannamanage"]
+      interval: 5s
+      timeout: 3s
+      retries: 5
+
+  backend:
+    build:
+      context: .
+      dockerfile: cannamanage-api/Dockerfile
+    container_name: cannamanage-backend
+    ports:
+      - "8080:8080"
+    environment:
+      - SPRING_DATASOURCE_URL=jdbc:postgresql://db:5432/cannamanage
+      - SPRING_DATASOURCE_USERNAME=cannamanage
+      - SPRING_DATASOURCE_PASSWORD=dev_password_change_in_prod
+      - SPRING_PROFILES_ACTIVE=docker
+      - JWT_SECRET=dev-secret-change-in-prod-minimum-32-chars
+    depends_on:
+      db:
+        condition: service_healthy
+    healthcheck:
+      test: ["CMD", "curl", "-f", "http://localhost:8080/actuator/health"]
+      interval: 10s
+      timeout: 5s
+      retries: 5
+      start_period: 30s
+
+  frontend:
+    build:
+      context: ./cannamanage-frontend
+      dockerfile: Dockerfile
+    container_name: cannamanage-frontend
+    ports:
+      - "3000:3000"
+    environment:
+      - BACKEND_URL=http://backend:8080
+      - NEXTAUTH_URL=http://localhost:3000
+      - NEXTAUTH_SECRET=dev-nextauth-secret-32-chars-min
+      - AUTH_TRUST_HOST=true
+    depends_on:
+      backend:
+        condition: service_healthy
+
+volumes:
+  pgdata:
+```
+
+### 3.8 Test Compose Overlay
+
+```yaml
+# docker-compose.test.yml (overlay for system tests)
+services:
+  backend:
+    environment:
+      - SPRING_PROFILES_ACTIVE=docker,test-seed
+
+  playwright:
+    image: mcr.microsoft.com/playwright:v1.52.0-noble
+    container_name: cannamanage-playwright
+    working_dir: /app
+    volumes:
+      - ./cannamanage-frontend:/app
+    environment:
+      - BASE_URL=http://frontend:3000
+      - CI=true
+    command: npx playwright test e2e/system-test.spec.ts
+    depends_on:
+      frontend:
+        condition: service_started
+```
+
+Run: `docker compose -f docker-compose.yml -f docker-compose.test.yml up --abort-on-container-exit --exit-code-from playwright`
+
+### 3.9 Backend Dockerfile (if not exists / needs update)
+
+```dockerfile
+# cannamanage-api/Dockerfile
+FROM maven:3.9-eclipse-temurin-17 AS builder
+WORKDIR /build
+COPY pom.xml .
+COPY cannamanage-domain/pom.xml cannamanage-domain/
+COPY cannamanage-service/pom.xml cannamanage-service/
+COPY cannamanage-api/pom.xml cannamanage-api/
+RUN mvn dependency:go-offline -B
+
+COPY cannamanage-domain/src cannamanage-domain/src
+COPY cannamanage-service/src cannamanage-service/src
+COPY cannamanage-api/src cannamanage-api/src
+RUN mvn package -pl cannamanage-api -am -DskipTests -B
+
+FROM eclipse-temurin:17-jre-alpine
+WORKDIR /app
+COPY --from=builder /build/cannamanage-api/target/*.jar app.jar
+EXPOSE 8080
+ENTRYPOINT ["java", "-jar", "app.jar"]
+```
+
+### 3.10 Seed Data Script (Decision D5)
+
+```sql
+-- src/main/resources/db/migration/R__test_seed.sql
+-- Repeatable migration: only runs when profile = test-seed
+
+-- Club
+INSERT INTO clubs (id, name, status, city, max_members, created_at)
+VALUES ('club-001', 'Grüner Daumen e.V.', 'ACTIVE', 'Berlin', 500, NOW())
+ON CONFLICT (id) DO NOTHING;
+
+-- Admin user (password: admin123)
+INSERT INTO users (id, email, password_hash, role, club_id, created_at)
+VALUES ('user-admin', 'admin@gruener-daumen.de', '$2a$10$...bcrypt...', 'ADMIN', 'club-001', NOW())
+ON CONFLICT (id) DO NOTHING;
+
+-- Staff user (password: staff123)
+INSERT INTO users (id, email, password_hash, role, club_id, created_at)
+VALUES ('user-staff', 'staff@gruener-daumen.de', '$2a$10$...bcrypt...', 'STAFF', 'club-001', NOW())
+ON CONFLICT (id) DO NOTHING;
+
+-- 5 Members
+INSERT INTO members (id, first_name, last_name, email, date_of_birth, member_number, status, club_id, joined_at)
+VALUES
+  ('m-001', 'Max', 'Müller', 'max@example.com', '1990-03-15', 'GD-001', 'ACTIVE', 'club-001', NOW()),
+  ('m-002', 'Lisa', 'Weber', 'lisa@example.com', '1988-07-22', 'GD-002', 'ACTIVE', 'club-001', NOW()),
+  ('m-003', 'Jonas', 'Fischer', 'jonas@example.com', '2005-11-01', 'GD-003', 'ACTIVE', 'club-001', NOW()),
+  ('m-004', 'Sarah', 'Braun', 'sarah@example.com', '1995-01-30', 'GD-004', 'ACTIVE', 'club-001', NOW()),
+  ('m-005', 'Kai', 'Hoffmann', 'kai@example.com', '1992-09-10', 'GD-005', 'ACTIVE', 'club-001', NOW())
+ON CONFLICT (id) DO NOTHING;
+
+-- Strains
+INSERT INTO strains (id, name, default_thc_percent, default_cbd_percent, club_id)
+VALUES
+  ('s-001', 'Amnesia Haze', 22.0, 0.5, 'club-001'),
+  ('s-002', 'White Widow', 18.0, 1.0, 'club-001'),
+  ('s-003', 'Northern Lights', 20.0, 0.8, 'club-001')
+ON CONFLICT (id) DO NOTHING;
+
+-- Batches
+INSERT INTO batches (id, strain_id, total_grams, available_grams, thc_percent, cbd_percent, supplier, status, club_id, received_at)
+VALUES
+  ('b-001', 's-001', 1000, 520, 22.0, 0.5, 'GreenGrow GmbH', 'AVAILABLE', 'club-001', NOW()),
+  ('b-002', 's-002', 800, 430, 18.0, 1.0, 'BioHemp AG', 'AVAILABLE', 'club-001', NOW()),
+  ('b-003', 's-003', 600, 380, 20.0, 0.8, 'GreenGrow GmbH', 'AVAILABLE', 'club-001', NOW())
+ON CONFLICT (id) DO NOTHING;
+```
+
+### 3.11 Optimistic Update with Rollback (for Phase 4)
+
+When recording a distribution, we optimistically update the UI (instant feedback) but roll back if the server rejects (e.g., quota exceeded):
+
+```typescript
+// src/services/distributions.ts — optimistic mutation pattern
+export function useCreateDistribution() {
+  const queryClient = useQueryClient()
+
+  return useMutation({
+    mutationFn: (data: CreateDistributionRequest) =>
+      apiFetch<Distribution>("/distributions", { method: "POST", body: JSON.stringify(data) }),
+
+    // Optimistic update: immediately reflect in UI
+    onMutate: async (newDistribution) => {
+      await queryClient.cancelQueries({ queryKey: ["distributions"] })
+      const previous = queryClient.getQueryData<Distribution[]>(["distributions"])
+      queryClient.setQueryData<Distribution[]>(["distributions"], (old = []) => [
+        { ...newDistribution, id: "optimistic-temp", createdAt: new Date().toISOString() } as Distribution,
+        ...old,
+      ])
+      return { previous } // context for rollback
+    },
+
+    // Rollback on error
+    onError: (_err, _variables, context) => {
+      if (context?.previous) {
+        queryClient.setQueryData(["distributions"], context.previous)
+      }
+    },
+
+    // Always refetch after success or error to sync with server state
+    onSettled: () => {
+      queryClient.invalidateQueries({ queryKey: ["distributions"] })
+      queryClient.invalidateQueries({ queryKey: ["dashboard"] }) // refresh KPIs
+    },
+  })
+}
+```
+
+**Key points:**
+- `onMutate` saves the previous state and applies the optimistic change
+- `onError` restores the previous state if the server returns 409 (quota exceeded) or 500
+- `onSettled` always re-fetches the truth from the server regardless of success/failure
+- The toast handler (from Section 3.5) shows the specific error message ("Kontingent überschritten: noch 12g verfügbar")
+
+---
+
+## 4. Directory Structure (New/Modified Files)
+
+```
+cannamanage-frontend/
+├── src/
+│   ├── lib/
+│   │   ├── api-client.ts          # MODIFIED — server-side apiServer()
+│   │   ├── api-client-browser.ts  # NEW — client-side apiFetch()
+│   │   └── query-client.ts        # NEW — React Query configuration
+│   ├── services/                   # NEW — domain service hooks
+│   │   ├── auth.ts                # useLogin, useLogout
+│   │   ├── dashboard.ts           # useClubStats
+│   │   ├── members.ts            # useMembers, useMember, useCreateMember, useUpdateMember
+│   │   ├── distributions.ts      # useDistributions, useCreateDistribution, useQuotaCheck
+│   │   ├── stock.ts              # useBatches, useCreateBatch, useRecallBatch
+│   │   ├── reports.ts            # useDownloadReport
+│   │   ├── portal.ts             # usePortalDashboard, usePortalHistory
+│   │   └── staff.ts              # useStaff, useInviteStaff, useUpdatePermissions
+│   ├── components/cannamanage/
+│   │   ├── skeleton-card.tsx      # NEW — loading skeleton
+│   │   ├── skeleton-table.tsx     # NEW — table loading skeleton
+│   │   ├── error-state.tsx        # NEW — error boundary component
+│   │   └── staff/                 # NEW — staff management components
+│   │       ├── staff-list.tsx
+│   │       ├── invite-dialog.tsx
+│   │       ├── permissions-editor.tsx
+│   │       └── revoke-dialog.tsx
+│   ├── hooks/
+│   │   └── use-api-error.ts       # NEW — error handler hook
+│   ├── app/[locale]/(dashboard)/
+│   │   ├── page.tsx               # MODIFIED — real API data
+│   │   ├── members/page.tsx       # MODIFIED — real API data
+│   │   ├── distributions/page.tsx # MODIFIED — real API data
+│   │   ├── stock/page.tsx         # MODIFIED — real API data
+│   │   ├── reports/page.tsx       # MODIFIED — real API data
+│   │   └── settings/
+│   │       └── staff/page.tsx     # NEW — staff management page
+│   ├── app/[locale]/(portal)/
+│   │   ├── page.tsx               # MODIFIED — real API data
+│   │   └── history/page.tsx       # MODIFIED — real API data
+│   └── app/[locale]/providers.tsx  # NEW — QueryClientProvider wrapper
+├── e2e/
+│   └── system-test.spec.ts        # NEW — full-stack E2E test
+└── package.json                    # MODIFIED — add @tanstack/react-query
+
+cannamanage-api/
+├── Dockerfile                      # NEW or MODIFIED
+└── src/main/java/de/cannamanage/api/
+    ├── security/SecurityConfig.java  # MODIFIED — add CORS
+    └── config/CorsConfig.java        # NEW (alternative: inline in SecurityConfig)
+
+cannamanage-service/
+└── src/main/resources/
+    └── db/migration/
+        └── R__test_seed.sql          # NEW — repeatable test data migration
+
+docker-compose.yml                   # MODIFIED — remove profiles, add healthchecks
+docker-compose.test.yml              # NEW — test overlay with Playwright
+```
+
+---
+
+## 5. Implementation Phases
+
+### Phase 1: Docker Compose Full Stack + Next.js Upgrade (1 day)
+
+**Goal:** `docker compose up` brings up PostgreSQL + Spring Boot + Next.js, all healthy and communicating. Next.js upgraded to 15.5.18 for security.
+
+**Tasks:**
+1. **Next.js upgrade 15.2.8 → 15.5.18** — addresses 8+ Snyk CVEs (SSRF, auth bypass, resource exhaustion). Run `pnpm up next@15.5.18`, fix any breaking changes in `next.config.mjs`, verify all pages render.
+2. Remove `profiles: [full]` from backend/frontend in `docker-compose.yml`
+3. Add backend health check (curl actuator/health)
+4. Add frontend dependency on `backend: condition: service_healthy`
+5. Add NEXTAUTH environment variables to frontend service
+6. Create/update `cannamanage-api/Dockerfile` (multi-stage Maven build)
+7. Add CORS configuration to `SecurityConfig.java`
+8. Add rate limiting to auth endpoints — Bucket4j or Spring `@RateLimiter` on `/api/v1/auth/login` (max 5 attempts/min per IP) and `/api/v1/staff/invite` (max 10/hour per user). Prevents brute-force attacks.
+9. Verify: `docker compose up` → all 3 containers healthy → `curl http://localhost:8080/actuator/health` returns UP
+10. Run existing Playwright E2E suite to confirm no regressions from Next.js upgrade
+
+**Acceptance Criteria:**
+- [ ] Next.js upgraded to 15.5.18 — `pnpm list next` shows correct version
+- [ ] All 66+ existing Playwright E2E tests still pass after upgrade
+- [ ] `docker compose up` starts all 3 services without errors
+- [ ] Backend responds to `/actuator/health` within 30s of start
+- [ ] Frontend loads at `http://localhost:3000` and displays login page
+- [ ] CORS allows `localhost:3000` to call `localhost:8080/api/v1/auth/login`
+- [ ] No `profiles` gate — services start by default
+
+---
+
+### Phase 2: API Client Layer (1 day)
+
+**Goal:** Typed, reusable API layer with React Query for client-side data fetching.
+
+**Tasks:**
+1. `pnpm add @tanstack/react-query @tanstack/react-query-devtools`
+2. Create `src/lib/query-client.ts` with default options
+3. Create `src/lib/api-client-browser.ts` — client-side fetch via Next.js rewrite proxy
+4. Refactor existing `src/lib/api-client.ts` → rename to server-side usage (`apiServer()`)
+5. Create `src/app/[locale]/providers.tsx` with `QueryClientProvider`
+6. Wire providers into root layout
+7. Create `src/hooks/use-api-error.ts` — error → toast mapping
+8. Create service files: `src/services/dashboard.ts`, `members.ts`, `distributions.ts`, `stock.ts`, `reports.ts`, `portal.ts`
+9. Create skeleton components: `skeleton-card.tsx`, `skeleton-table.tsx`, `error-state.tsx`
+10. Add React Query DevTools (dev only)
+
+**Acceptance Criteria:**
+- [ ] `@tanstack/react-query` installed and provider mounted
+- [ ] `apiFetch()` calls go through `/api/backend/*` rewrite to Spring Boot
+- [ ] Each domain has typed React Query hooks (queryKey, queryFn, types)
+- [ ] Error handler shows German toast messages for 401/403/409/500
+- [ ] Skeleton components render during loading state
+- [ ] React Query DevTools visible in dev mode (bottom-left panel)
+
+---
+
+### Phase 3: Wire Dashboard + Members (1.5 days)
+
+**Goal:** Dashboard shows real KPIs from backend. Member list fetches from real API.
+
+**Tasks:**
+1. **Dashboard page** — Replace `mockClubStats` with `useClubStats()` hook → `GET /clubs/stats`
+2. **Dashboard recent distributions** — `useRecentDistributions()` → `GET /distributions?limit=5`
+3. **Dashboard stock chart** — `useStockSummary()` → `GET /stock/batches/summary`
+4. **Member list** — Replace `mockMembers` with `useMembers()` → `GET /members`
+5. **Member detail** — `useMember(id)` → `GET /members/{id}`
+6. **Add member form** — `useCreateMember()` → `POST /members`
+7. **Edit member form** — `useUpdateMember()` → `PUT /members/{id}`
+8. Add loading skeletons to dashboard KPI cards and member table
+9. Add error states with retry button
+10. Handle empty states (no members yet, no distributions today)
+
+**Backend adjustments needed:**
+- Add `GET /api/v1/clubs/stats` endpoint if not existing (or adapt `ClubController`)
+- Ensure `GET /api/v1/members` returns paginated response compatible with TanStack Table
+- Verify `GET /api/v1/distributions` supports `?limit=N` query param
+
+**Acceptance Criteria:**
+- [ ] Dashboard loads real data — KPI cards show numbers from DB
+- [ ] Member list shows real members from PostgreSQL
+- [ ] Add member form creates a real member (visible after page refresh)
+- [ ] Edit member form persists changes
+- [ ] Loading skeletons appear during fetch
+- [ ] Error state shows when backend is down (not a blank page)
+- [ ] Empty state message when no data exists
+- [ ] No mock data imports remain in dashboard or members pages
+
+---
+
+### Phase 4: Wire Distributions + Stock (1.5 days)
+
+**Goal:** Distribution recording hits real backend with quota enforcement. Stock management is live.
+
+**Tasks:**
+1. **Distribution list** — `useDistributions()` → `GET /distributions`
+2. **New distribution form** — `useCreateDistribution()` → `POST /distributions`
+3. **Quota check (real-time)** — `useQuotaCheck(memberId)` → `GET /compliance/quota/{memberId}`
+4. Wire member search in distribution form to `GET /members?search=...`
+5. Wire batch selection to `GET /stock/batches?status=AVAILABLE`
+6. **Stock/batch list** — `useBatches()` → `GET /stock/batches`
+7. **Add batch form** — `useCreateBatch()` → `POST /stock/batches`
+8. **Recall batch** — `useRecallBatch()` → `PUT /stock/batches/{id}/recall`
+9. Handle quota exceeded error (409) → show specific toast with remaining grams
+10. Optimistic update: after recording distribution, immediately update local cache
+
+**Key integration points:**
+- Distribution form must pass `batchId` + `memberId` + `amountGrams`
+- Backend returns `409 Conflict` with `QuotaExceededException` details when over limit
+- Stock chart re-fetches after batch creation or recall
+
+**Acceptance Criteria:**
+- [ ] Distribution recording persists to DB (verifiable via `GET /distributions`)
+- [ ] Quota check prevents over-limit distribution (shows remaining grams in error)
+- [ ] Under-21 members see 30g monthly limit enforced
+- [ ] Batch creation adds real stock (visible in stock page)
+- [ ] Batch recall changes status to RECALLED
+- [ ] Stock chart updates after mutations
+- [ ] No mock data imports remain in distributions or stock pages
+
+---
+
+### Phase 5: Wire Reports + Portal (1.5 days)
+
+**Goal:** Report downloads generate real PDFs. Member portal shows live personal data.
+
+**Tasks:**
+1. **Monthly report** — `useDownloadReport("monthly")` → `GET /reports/monthly?format=pdf`
+2. **Member list report** — `GET /reports/member-list?format=csv`
+3. **Recall report** — `GET /reports/recall?format=pdf`
+4. Handle binary download (PDF/CSV) — create blob URL, trigger download
+5. **Portal dashboard** — `usePortalDashboard()` → `GET /portal/dashboard`
+6. **Portal history** — `usePortalHistory()` → `GET /portal/history`
+7. Portal auth: wire session-based login (`/portal/login` form submit)
+8. Show real quota radial with live monthly usage percentage
+9. Add date range picker for report generation (month selector)
+
+**Special handling:**
+- Report endpoints return binary (PDF) or text (CSV), not JSON — fetch with `responseType: blob`
+- Portal uses session auth (not JWT) — different fetch pattern (cookies, CSRF token)
+- Portal API calls go to `/portal/*` endpoints, not `/api/v1/*`
+
+**Acceptance Criteria:**
+- [ ] PDF report downloads as file (opens in browser/downloads)
+- [ ] CSV report downloads correctly formatted
+- [ ] Portal login with member credentials works
+- [ ] Portal dashboard shows real quota (used/remaining from DB)
+- [ ] Portal distribution history shows actual past distributions
+- [ ] No mock data imports remain in reports or portal pages
+
+---
+
+### Phase 6: Staff Management UI (2 days)
+
+**Goal:** Admin can invite staff, configure permissions, and revoke access through the UI.
+
+**Tasks:**
+1. Create staff settings page at `/settings/staff`
+2. Add navigation entry in sidebar (under Settings section)
+3. **Staff list component** — table with name, email, permissions, status, actions
+4. **Invite dialog** — email input + permission checkboxes (8 granular permissions)
+5. **Permissions editor** — inline permission toggle grid per staff member
+6. **Revoke dialog** — confirmation dialog → `DELETE /staff/{id}`
+7. Wire to backend:
+   - `GET /api/v1/staff` → list staff
+   - `POST /api/v1/staff/invite` → send invite
+   - `PUT /api/v1/staff/{id}/permissions` → update permissions
+   - `DELETE /api/v1/staff/{id}` → revoke
+8. Show pending invites (status: PENDING) with resend option
+9. Add i18n strings for staff management (de.json + en.json)
+10. Permission chips: visual badges for each permission (color-coded)
+
+**Permissions (from backend `StaffPermission` enum):**
+- `MANAGE_MEMBERS` — add/edit/suspend members
+- `RECORD_DISTRIBUTIONS` — record cannabis distributions
+- `MANAGE_STOCK` — add batches, recall
+- `VIEW_REPORTS` — download reports
+- `MANAGE_CLUB_SETTINGS` — edit club configuration
+- `MANAGE_COMPLIANCE` — compliance dashboard access
+- `INVITE_STAFF` — can invite other staff
+- `MANAGE_STAFF` — full staff CRUD (admin-like)
+
+**Acceptance Criteria:**
+- [ ] Staff list page accessible from sidebar navigation
+- [ ] Invite form sends email invite (or shows success if email service is stubbed)
+- [ ] Permission editor shows 8 checkboxes per staff member
+- [ ] Saving permissions persists to DB
+- [ ] Revoke removes staff access (deleted from list)
+- [ ] Pending invites shown with "Resend" action
+- [ ] Only ADMIN role can access staff settings (403 for STAFF role without MANAGE_STAFF)
+- [ ] i18n: all labels in both German and English
+
+---
+
+### Phase 7: System Test Harness (2 days)
+
+**Goal:** One command runs the full stack with seed data and executes E2E tests against real backend.
+
+**Tasks:**
+1. Create `R__test_seed.sql` — repeatable Flyway migration with deterministic test data
+2. Configure Spring profile `test-seed` to activate repeatable migration
+3. Create `docker-compose.test.yml` overlay (Playwright container + test-seed profile)
+4. Create `e2e/system-test.spec.ts` — full integration flow:
+   - Login as admin → verify dashboard loads with seed data
+   - Navigate to members → verify 5 seed members visible
+   - Add new member → verify appears in list
+   - Record distribution → verify quota updates
+   - Check stock decreases after distribution
+   - Download monthly report (verify PDF response)
+   - Login as member (portal) → verify personal quota visible
+5. Add npm script: `"test:system": "docker compose -f ... up --abort-on-container-exit"`
+6. Verify CI-readiness: exit code 0 on success, non-zero on failure
+7. Add GitHub Actions workflow stub (`.github/workflows/system-test.yml`)
+
+**Test flow (happy path):**
+```
+1. Admin login (admin@gruener-daumen.de / admin123)
+2. Dashboard → verify KPIs match seed data (5 members, 3 batches)
+3. Members → see "Max Müller", "Lisa Weber", etc.
+4. Add member "Test Neuzugang" → verify appears
+5. Distributions → record 10g Amnesia Haze to Max Müller
+6. Verify quota check shows updated usage
+7. Stock → verify Amnesia Haze batch decreased by 10g
+8. Reports → download monthly PDF → verify 200 response + content-type
+9. Portal login (max@example.com / member123)
+10. Portal dashboard → verify quota shows 10g used
+```
+
+**Acceptance Criteria:**
+- [ ] `docker compose -f docker-compose.yml -f docker-compose.test.yml up --abort-on-container-exit` runs full test
+- [ ] Seed data creates club + admin + staff + 5 members + 3 batches
+- [ ] System test covers: login → CRUD → quota → report → portal
+- [ ] Test passes in < 3 minutes on clean start
+- [ ] Exit code 0 on success, non-zero on any test failure
+- [ ] Test is deterministic (no flaky timing issues)
+- [ ] GitHub Actions workflow file created (can be enabled when GitHub repo is set up)
+
+---
+
+## 6. Risk Assessment
+
+| Risk | Probability | Impact | Mitigation |
+|------|-------------|--------|------------|
+| Backend API mismatch (frontend expects fields that don't exist) | Medium | High | Read actual controller code before wiring; add DTO type assertions |
+| NextAuth session timeout during system test | Medium | Medium | Set long session expiry in test profile (24h) |
+| Docker build slow (Maven + Node rebuild each time) | High | Low | Use Docker build cache, `.dockerignore` excludes target/ |
+| CORS issues between containers | Medium | Medium | Test CORS early in Phase 1; add integration test for preflight |
+| React Query cache stale data after mutation | Low | Medium | Explicit `invalidateQueries` after every mutation |
+| Seed data conflicts with Hibernate DDL auto | Medium | High | Ensure `spring.jpa.hibernate.ddl-auto=validate` in Docker profile (Flyway handles schema) |
+| Playwright flaky on container startup timing | High | Medium | Add `waitForURL` + health check polling before test start |
+| Backend Dockerfile missing (never existed) | Medium | Low | Create from scratch in Phase 1 — straightforward multi-stage Maven |
+
+---
+
+## 7. Open Questions — RESOLVED ✅
+
+All questions resolved in v2 planning session (2026-06-12):
+
+| # | Question | Decision | Rationale |
+|---|----------|----------|-----------|
+| Q1 | API client library? | ✅ **@tanstack/react-query** | Caching, refetch, optimistic updates built-in. Eliminates `useEffect` + `useState` boilerplate. DevTools for debugging. |
+| Q2 | Loading strategy? | ✅ **Per-component loading** | Each card/table loads independently — no full-page blocking. Better perceived performance. |
+| Q3 | Offline resilience? | ✅ **Stale-while-revalidate + "Offline" banner** | React Query serves cached data while retrying. Persistent banner communicates status without blocking interaction. |
+| Q4 | Staff UI scope? | ✅ **Full CRUD** (list + invite + edit perms + revoke) | Activity log deferred to Sprint 6. Full CRUD is the minimum viable staff management. |
+| Q5 | Seed data strategy? | ✅ **SQL for dev/test + API-driven for system E2E** | Dual approach: fast deterministic SQL seed for local dev, API-driven setup in system tests for realistic coverage. |
+| Q6 (Bonus) | Next.js upgrade? | ✅ **Yes — 15.2.8 → 15.5.18 in Phase 1** | Addresses 8+ Snyk CVEs. Done early to catch breaking changes before integration work begins. |
+
+Previously resolved (from v1):
+| # | Question | Decision |
+|---|----------|----------|
+| Q-v1-1 | Proxy vs direct CORS? | **Proxy** (Next.js rewrite) + CORS for dev flexibility |
+| Q-v1-2 | Activity log timing? | **Defer to Sprint 6** |
+| Q-v1-3 | System test config? | **Separate Playwright config** for Docker-based system tests |
+| Q-v1-4 | Keep mock data files? | **Yes** — fast E2E (<30s) coexists with system tests (minutes) |
+
+---
+
+## 8. Dependencies & Prerequisites
+
+| Prerequisite | Status | Action |
+|-------------|--------|--------|
+| Backend compiles and starts on current `main` | ✅ Done | Sprint 3 verified |
+| Backend `Dockerfile` exists | ❓ Check | Create in Phase 1 if missing |
+| Backend `actuator/health` endpoint enabled | ✅ Done | Spring Boot default |
+| Frontend `types/api.ts` matches backend DTOs | ⚠️ Partial | Verify during Phase 3; add missing types |
+| PostgreSQL 16 compatible with Hibernate schema | ✅ Done | Testcontainers use PG 16 |
+| `pnpm` and Node 22 available locally | ✅ Done | Sprint 4 verified |
+| Docker Desktop running | Required | Developer responsibility |
+
+---
+
+## 9. Success Metrics (End of Sprint 5)
+
+| Metric | Target |
+|--------|--------|
+| Pages using real API data | 12/12 (all pages, zero mock) |
+| Docker Compose startup → healthy | < 60 seconds |
+| System test pass rate | 100% (deterministic) |
+| System test duration | < 3 minutes |
+| API error handling coverage | 401, 403, 404, 409, 500 all handled |
+| Staff management operations | List, Invite, Edit Permissions, Revoke |
+| Remaining mock data files | Kept for fast E2E (not used in production pages) |
+
+---
+
+## 10. References
+
+- Sprint 4 Plan: `docs/sprint-4/cannamanage-sprint4-plan.md` (v3)
+- Sprint 5 Backlog: `docs/sprint-5/cannamanage-sprint5-backlog.md`
+- Sprint 4 Persona Review: `docs/sprint-4/cannamanage-sprint4-plan-persona-review.md`
+- Backend Security Config: `cannamanage-api/src/main/java/de/cannamanage/api/security/SecurityConfig.java`
+- Frontend API Types: `cannamanage-frontend/src/types/api.ts`
+- Docker Compose: `docker-compose.yml`
diff --git a/docs/sprint-5/cannamanage-sprint5-testplan.md b/docs/sprint-5/cannamanage-sprint5-testplan.md
new file mode 100644
index 0000000..d8af631
--- /dev/null
+++ b/docs/sprint-5/cannamanage-sprint5-testplan.md
@@ -0,0 +1,640 @@
+# CannaManage — Sprint 5 Test Plan
+
+**Date:** 2026-06-12
+**Author:** Patrick Plate / Lumen (Planner)
+**Status:** Draft v1
+**Basis:** cannamanage-sprint5-plan.md v1
+
+---
+
+## Test Overview
+
+| ID | Description | Type | Target | Status |
+|----|-------------|------|--------|--------|
+| T-01 | Docker Compose full stack starts healthy | System | docker-compose.yml | ⬜ |
+| T-02 | CORS preflight allows localhost:3000 | Integration | SecurityConfig | ⬜ |
+| T-03 | Backend health endpoint responds | Integration | /actuator/health | ⬜ |
+| T-04 | React Query provider mounts without error | Unit | providers.tsx | ⬜ |
+| T-05 | apiFetch uses rewrite proxy correctly | Unit | api-client-browser.ts | ⬜ |
+| T-06 | ApiError formats toast messages | Unit | use-api-error.ts | ⬜ |
+| T-07 | Dashboard loads real club stats | Integration | dashboard/page.tsx | ⬜ |
+| T-08 | Member list renders from API | Integration | members/page.tsx | ⬜ |
+| T-09 | Create member persists to database | Integration | POST /members | ⬜ |
+| T-10 | Edit member updates in database | Integration | PUT /members/{id} | ⬜ |
+| T-11 | Distribution form records to backend | Integration | POST /distributions | ⬜ |
+| T-12 | Quota exceeded returns 409 with details | Integration | ComplianceService | ⬜ |
+| T-13 | Under-21 member enforces 30g limit | Integration | ComplianceService | ⬜ |
+| T-14 | Batch creation adds stock | Integration | POST /stock/batches | ⬜ |
+| T-15 | Batch recall changes status | Integration | PUT /stock/batches/{id}/recall | ⬜ |
+| T-16 | PDF report downloads as binary | Integration | GET /reports/monthly?format=pdf | ⬜ |
+| T-17 | CSV report downloads correctly | Integration | GET /reports/member-list?format=csv | ⬜ |
+| T-18 | Portal login with session auth | Integration | POST /portal/login | ⬜ |
+| T-19 | Portal dashboard shows real quota | Integration | GET /portal/dashboard | ⬜ |
+| T-20 | Staff list loads for ADMIN | Integration | GET /staff | ⬜ |
+| T-21 | Staff invite sends email | Integration | POST /staff/invite | ⬜ |
+| T-22 | Permission update persists | Integration | PUT /staff/{id}/permissions | ⬜ |
+| T-23 | Staff revoke removes access | Integration | DELETE /staff/{id} | ⬜ |
+| T-24 | Non-ADMIN gets 403 on staff endpoints | Security | SecurityConfig | ⬜ |
+| T-25 | Seed data creates deterministic test state | System | R__test_seed.sql | ⬜ |
+| T-26 | Full E2E: login → distribute → verify quota | System | system-test.spec.ts | ⬜ |
+| T-27 | System test exit code 0 on success | System | docker-compose.test.yml | ⬜ |
+| T-28 | Error state renders when backend down | Unit | error-state.tsx | ⬜ |
+| T-29 | Loading skeleton appears during fetch | Unit | skeleton-card.tsx | ⬜ |
+| T-30 | Empty state shown when no data | Unit | dashboard/members pages | ⬜ |
+
+Status: ⬜ Open | ✅ Passed | ❌ Failed | ⏭️ Skipped
+
+---
+
+## Test Cases (Detail)
+
+### T-01: Docker Compose full stack starts healthy
+
+**Type:** System
+**Target:** `docker-compose.yml`
+
+**Preconditions:**
+- Docker Desktop running
+- No port conflicts (5432, 8080, 3000)
+- Images buildable (Maven + Node available)
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | `docker compose up -d` | All 3 containers reach "healthy" within 60s |
+| b | `docker compose ps` | db=healthy, backend=healthy, frontend=running |
+| c | `curl http://localhost:3000` | Returns HTML (login page) |
+| d | `curl http://localhost:8080/actuator/health` | Returns `{"status":"UP"}` |
+
+**Post-conditions:**
+- All containers stable for 30s without restart loops
+
+---
+
+### T-02: CORS preflight allows localhost:3000
+
+**Type:** Integration
+**Target:** `SecurityConfig.java` CORS bean
+
+**Preconditions:**
+- Backend running on port 8080
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | OPTIONS /api/v1/members with Origin: http://localhost:3000 | 200 + Access-Control-Allow-Origin: http://localhost:3000 |
+| b | OPTIONS /api/v1/members with Origin: http://evil.com | No Access-Control-Allow-Origin header (or 403) |
+| c | GET /api/v1/members with Origin: http://localhost:3000 + valid JWT | 200 + CORS headers present |
+
+---
+
+### T-03: Backend health endpoint responds
+
+**Type:** Integration
+**Target:** Spring Boot Actuator
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | GET /actuator/health (no auth) | 200 `{"status":"UP"}` |
+| b | Backend with DB down | 503 `{"status":"DOWN"}` |
+
+---
+
+### T-04: React Query provider mounts without error
+
+**Type:** Unit
+**Class:** `providers.tsx`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Render providers with children | No console errors, children visible |
+| b | Check React Query DevTools in dev mode | DevTools panel accessible (floating button) |
+
+---
+
+### T-05: apiFetch uses rewrite proxy correctly
+
+**Type:** Unit
+**Class:** `api-client-browser.ts`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | `apiFetch("/members")` | Fetches `/api/backend/members` |
+| b | Backend returns 401 | Throws `ApiError` with status 401 |
+| c | Backend returns 500 | Throws `ApiError` with status 500, message from body |
+| d | Backend returns non-JSON error | Throws `ApiError` with statusText as message |
+| e | Network error (backend down) | Throws TypeError (fetch failure) |
+
+---
+
+### T-06: ApiError formats toast messages
+
+**Type:** Unit
+**Class:** `use-api-error.ts`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | ApiError(401, "Unauthorized") | Toast: "Sitzung abgelaufen" (destructive) |
+| b | ApiError(403, "Forbidden") | Toast: "Zugriff verweigert" (destructive) |
+| c | ApiError(409, "Quota exceeded: 5g remaining") | Toast: "Kontingent überschritten" with message |
+| d | TypeError (network) | Toast: "Verbindungsfehler — Backend nicht erreichbar" |
+| e | ApiError(500, "Internal error") | Toast: "Fehler" with generic message |
+
+---
+
+### T-07: Dashboard loads real club stats
+
+**Type:** Integration
+**Target:** Dashboard page + `GET /clubs/stats` (or equivalent)
+
+**Preconditions:**
+- Backend running with seed data
+- User logged in as ADMIN
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Navigate to dashboard | KPI cards show numbers matching DB (5 members from seed) |
+| b | Refresh page | Data reloads (React Query refetch) |
+| c | Backend returns error | Error state shown with retry button |
+| d | Slow response (>2s) | Skeleton cards visible during loading |
+
+---
+
+### T-08: Member list renders from API
+
+**Type:** Integration
+**Target:** Members page + `GET /members`
+
+**Preconditions:**
+- Seed data loaded (5 members)
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Navigate to /members | Table shows 5 seed members |
+| b | Search "Müller" | Filtered to Max Müller only |
+| c | Empty DB (no members) | Empty state: "Keine Mitglieder vorhanden" |
+| d | Loading state | Skeleton table rows visible |
+
+---
+
+### T-09: Create member persists to database
+
+**Type:** Integration
+**Target:** `POST /api/v1/members`
+
+**Preconditions:**
+- Logged in as ADMIN or STAFF with MANAGE_MEMBERS permission
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Valid member data (name, email, DOB, phone) | 201 Created, member appears in list |
+| b | Duplicate email | 409 Conflict with error message |
+| c | Missing required field (firstName blank) | 400 Bad Request with validation errors |
+| d | Future date of birth | 400 Bad Request (validation) |
+| e | Under-18 date of birth | 400 Bad Request (CanKG minimum age) |
+
+---
+
+### T-10: Edit member updates in database
+
+**Type:** Integration
+**Target:** `PUT /api/v1/members/{id}`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Change phone number | 200 OK, phone updated in DB |
+| b | Change status to SUSPENDED | 200 OK, member shows suspended badge |
+| c | Invalid member ID | 404 Not Found |
+| d | Unauthorized role | 403 Forbidden |
+
+---
+
+### T-11: Distribution form records to backend
+
+**Type:** Integration
+**Target:** `POST /api/v1/distributions`
+
+**Preconditions:**
+- Available batch exists (≥ requested grams)
+- Member is ACTIVE
+- Quota not exceeded
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | 10g Amnesia Haze to Max Müller | 201 Created, distribution ID returned |
+| b | Batch available_grams decreases by 10g | GET /stock/batches/{id} shows -10g |
+| c | Member quota updates | Compliance endpoint shows 10g used today |
+| d | Stock chart updates after mutation | React Query invalidates batch cache |
+
+---
+
+### T-12: Quota exceeded returns 409 with details
+
+**Type:** Integration
+**Target:** `ComplianceService` quota enforcement
+
+**Preconditions:**
+- Member already at 24g today (daily limit = 25g)
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Request 5g distribution | 409: "Daily quota exceeded. Remaining: 1g" |
+| b | Request 1g distribution | 201 Created (exactly at limit) |
+| c | Request 26g in single distribution | 409: "Daily limit is 25g" |
+
+---
+
+### T-13: Under-21 member enforces 30g monthly limit
+
+**Type:** Integration
+**Target:** `ComplianceService` age-based quota
+
+**Preconditions:**
+- Member Jonas Fischer (DOB: 2005-11-01, age 20 in 2026) in seed data
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Check quota for Jonas | `monthlyLimitGrams: 30`, `isUnder21: true` |
+| b | Distribute 29g across month | Success |
+| c | Distribute 1g more (total 30g) | Success (at limit) |
+| d | Distribute 1g more (total 31g) | 409: "Monthly quota exceeded for under-21 member" |
+
+---
+
+### T-14: Batch creation adds stock
+
+**Type:** Integration
+**Target:** `POST /api/v1/stock/batches`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | New batch: 500g Blue Dream, THC 19%, supplier "BioHemp" | 201 Created |
+| b | Stock total increases by 500g | Dashboard total_stock reflects increase |
+| c | Missing strain name | 400 Bad Request |
+| d | Negative grams | 400 Bad Request |
+
+---
+
+### T-15: Batch recall changes status
+
+**Type:** Integration
+**Target:** `PUT /api/v1/stock/batches/{id}/recall`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Recall batch b-001 | Status changes to RECALLED |
+| b | Recalled batch not available for distribution | Distribution form excludes recalled batches |
+| c | Recall already-recalled batch | 400 Bad Request (or idempotent 200) |
+| d | Invalid batch ID | 404 Not Found |
+
+---
+
+### T-16: PDF report downloads as binary
+
+**Type:** Integration
+**Target:** `GET /api/v1/reports/monthly?format=pdf`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Request monthly report (current month) | 200, Content-Type: application/pdf |
+| b | Response body is valid PDF | First bytes = `%PDF-` |
+| c | Browser triggers file download | Content-Disposition: attachment |
+| d | No data for requested month | 200 with empty report (or 204 No Content) |
+
+---
+
+### T-17: CSV report downloads correctly
+
+**Type:** Integration
+**Target:** `GET /api/v1/reports/member-list?format=csv`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Request member list CSV | 200, Content-Type: text/csv |
+| b | CSV has header row | First line: column names |
+| c | 5 seed members in CSV body | 6 lines total (header + 5 data) |
+| d | German umlauts preserved | "Müller" renders correctly (UTF-8 or ISO-8859-1) |
+
+---
+
+### T-18: Portal login with session auth
+
+**Type:** Integration
+**Target:** `POST /portal/login`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Valid member credentials (max@example.com / member123) | 200 `{"status":"ok"}` + Set-Cookie session |
+| b | Invalid password | 401 `{"error":"Invalid credentials"}` |
+| c | Non-member email (admin@...) | 401 (not a member) |
+| d | Subsequent /portal/* requests with session cookie | 200 (authenticated) |
+
+---
+
+### T-19: Portal dashboard shows real quota
+
+**Type:** Integration
+**Target:** `GET /portal/dashboard`
+
+**Preconditions:**
+- Member logged into portal session
+- Some distributions recorded for this member
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Fresh member (no distributions) | Quota: 0g used / 50g limit (≥21 years) |
+| b | After 10g distribution recorded | Quota: 10g used / 50g limit |
+| c | Radial chart shows correct percentage | 20% filled (10/50) |
+
+---
+
+### T-20: Staff list loads for ADMIN
+
+**Type:** Integration
+**Target:** `GET /api/v1/staff`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | ADMIN requests staff list | 200 with array of staff accounts |
+| b | Includes permissions array per staff | Each item has `permissions: [...]` |
+| c | STAFF without MANAGE_STAFF permission | 403 Forbidden |
+| d | MEMBER role | 403 Forbidden |
+
+---
+
+### T-21: Staff invite sends email
+
+**Type:** Integration
+**Target:** `POST /api/v1/staff/invite`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Valid email + permissions selection | 201 Created, invite token generated |
+| b | Email already registered as staff | 409 Conflict |
+| c | Invalid email format | 400 Bad Request |
+| d | No permissions selected | 400 Bad Request (at least one required) |
+
+---
+
+### T-22: Permission update persists
+
+**Type:** Integration
+**Target:** `PUT /api/v1/staff/{id}/permissions`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Set permissions to [MANAGE_MEMBERS, VIEW_REPORTS] | 200, permissions saved |
+| b | Staff can now access members but not stock | GET /members → 200, GET /stock → 403 |
+| c | Empty permissions array | 200 (staff has no capabilities, effectively read-only) |
+| d | Invalid permission name | 400 Bad Request |
+
+---
+
+### T-23: Staff revoke removes access
+
+**Type:** Integration
+**Target:** `DELETE /api/v1/staff/{id}`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Delete staff account | 204 No Content |
+| b | Revoked staff can no longer login | 401 on next auth attempt |
+| c | Staff disappears from list | GET /staff excludes deleted |
+| d | Delete non-existent staff ID | 404 Not Found |
+
+---
+
+### T-24: Non-ADMIN gets 403 on staff endpoints
+
+**Type:** Security
+**Target:** SecurityConfig authorization rules
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | STAFF (no MANAGE_STAFF) → GET /staff | 403 |
+| b | STAFF (no MANAGE_STAFF) → POST /staff/invite | 403 |
+| c | MEMBER → GET /staff | 403 |
+| d | Unauthenticated → GET /staff | 401 |
+| e | ADMIN → GET /staff | 200 |
+| f | STAFF with MANAGE_STAFF → GET /staff | 200 |
+
+---
+
+### T-25: Seed data creates deterministic test state
+
+**Type:** System
+**Target:** `R__test_seed.sql`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Backend starts with profile=test-seed | Seed data inserted on startup |
+| b | `SELECT COUNT(*) FROM members WHERE club_id='club-001'` | Returns 5 |
+| c | `SELECT COUNT(*) FROM batches WHERE club_id='club-001'` | Returns 3 |
+| d | Second startup with same profile | No duplicate insert errors (ON CONFLICT DO NOTHING) |
+| e | Admin user can login with seed credentials | JWT returned successfully |
+
+---
+
+### T-26: Full E2E: login → distribute → verify quota
+
+**Type:** System
+**Class:** `e2e/system-test.spec.ts`
+
+**Preconditions:**
+- Full Docker stack running with seed data
+
+**Scenarios:**
+
+| # | Step | Expected Result |
+|---|------|-----------------|
+| a | Login as admin@gruener-daumen.de | Dashboard loads with KPIs |
+| b | Navigate to Members | 5 seed members visible in table |
+| c | Navigate to Distributions | Distribution list renders |
+| d | Record 10g Amnesia Haze → Max Müller | Success toast, distribution in list |
+| e | Navigate to Stock | Amnesia Haze batch shows -10g available |
+| f | Navigate to Reports → download monthly PDF | File downloads (200 response) |
+| g | Logout, login as member (max@example.com) | Portal dashboard loads |
+| h | Portal quota shows 10g used | Radial chart at 20% |
+
+---
+
+### T-27: System test exit code 0 on success
+
+**Type:** System
+**Target:** `docker-compose.test.yml`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | All tests pass | Playwright container exits with code 0, compose exits 0 |
+| b | A test fails | Playwright exits non-zero, compose exits non-zero |
+| c | Backend fails to start | Tests timeout, compose exits non-zero |
+
+---
+
+### T-28: Error state renders when backend down
+
+**Type:** Unit
+**Target:** `error-state.tsx`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | API fetch throws network error | Error component visible with message |
+| b | Click "Retry" button | Query refetches |
+| c | Multiple errors on same page | Each section shows own error independently |
+
+---
+
+### T-29: Loading skeleton appears during fetch
+
+**Type:** Unit
+**Target:** `skeleton-card.tsx`, `skeleton-table.tsx`
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Query in `isLoading` state | Skeleton shimmer visible |
+| b | Query resolves | Skeleton replaced with real content |
+| c | Query in `isFetching` (background refetch) | No skeleton (data still shown) |
+
+---
+
+### T-30: Empty state shown when no data
+
+**Type:** Unit
+**Target:** Dashboard, Members, Distributions pages
+
+**Scenarios:**
+
+| # | Input | Expected Result |
+|---|-------|-----------------|
+| a | Members list empty (API returns []) | "Keine Mitglieder vorhanden" + Add button |
+| b | Distributions list empty | "Keine Ausgaben erfasst" message |
+| c | Stock empty (no batches) | "Kein Bestand vorhanden" + Add batch button |
+| d | Dashboard with 0 members | KPI cards show 0, no chart data placeholder |
+
+---
+
+## Test Data Requirements
+
+| Entity | Count | Source | Notes |
+|--------|-------|--------|-------|
+| Club | 1 | `R__test_seed.sql` | "Grüner Daumen e.V.", Berlin |
+| Admin user | 1 | Seed | admin@gruener-daumen.de / admin123 |
+| Staff user | 1 | Seed | staff@gruener-daumen.de / staff123 |
+| Members | 5 | Seed | Including 1 under-21 (Jonas Fischer) |
+| Strains | 3 | Seed | Amnesia Haze, White Widow, Northern Lights |
+| Batches | 3 | Seed | 520g, 430g, 380g available |
+| Distributions | 0 | Fresh | Tests create distributions during execution |
+
+---
+
+## Test Coverage Matrix
+
+| Component | Unit | Integration | System | Total |
+|-----------|------|-------------|--------|-------|
+| Docker/Infra | 0 | 1 | 2 | 3 |
+| CORS/Security | 0 | 2 | 0 | 2 |
+| API Client | 3 | 0 | 0 | 3 |
+| Dashboard | 0 | 1 | 1 | 2 |
+| Members | 0 | 2 | 1 | 3 |
+| Distributions | 0 | 3 | 1 | 4 |
+| Stock | 0 | 2 | 1 | 3 |
+| Reports | 0 | 2 | 1 | 3 |
+| Portal | 0 | 2 | 1 | 3 |
+| Staff | 0 | 5 | 0 | 5 |
+| UI States | 3 | 0 | 0 | 3 |
+| **Total** | **6** | **20** | **4** | **30** |
+
+---
+
+## Execution Strategy
+
+### Fast feedback loop (during development):
+```bash
+# Frontend unit tests (Vitest — if configured)
+cd cannamanage-frontend && pnpm test
+
+# Backend integration tests (existing Testcontainers suite)
+cd cannamanage-api && mvn test
+
+# Existing Playwright E2E (mock backend, ~30s)
+cd cannamanage-frontend && pnpm exec playwright test
+```
+
+### Full system test (before merge):
+```bash
+docker compose -f docker-compose.yml -f docker-compose.test.yml up \
+  --build --abort-on-container-exit --exit-code-from playwright
+```
+
+### Manual smoke test checklist:
+1. `docker compose up` → all healthy
+2. Open http://localhost:3000 → login page
+3. Login as admin → dashboard with real data
+4. Add member → appears in list
+5. Record distribution → quota updates
+6. Download PDF report → valid file
+7. Login as member (portal) → see personal quota
+
+---
+
+## References
+
+- Implementation Plan: `docs/sprint-5/cannamanage-sprint5-plan.md` (v1)
+- Backend Controllers: `cannamanage-api/src/main/java/de/cannamanage/api/controller/`
+- Frontend Types: `cannamanage-frontend/src/types/api.ts`
+- Security Config: `cannamanage-api/src/main/java/de/cannamanage/api/security/SecurityConfig.java`
+- Existing E2E: `cannamanage-frontend/e2e/`