í«îÛpki-base-java-10.5.9-13.el7_6Žè$>èìgD-YMuN{DM°Ýœ)hñŠ>ÿÿÿÐŽè7àL?à<dèéêì í Dî ï ”ñ ¬ó °ö ·÷ ½ø éü ý þ % ,' È' ' d'' g' P'ì'¯'r”'0@¬°(38<õ9õ:G¾õG×8'H×Ô'IØp'XØ˜YØœ\Ø¬']ÙH'^ÛâbÜcdÝ2eÝ7fÝ:lÝ<tÝT'uÝð'vÞŒwß'xßœ'“à8Cpki-base-java10.5.913.el7_6Certificate System - Java FrameworkThe PKI Framework contains the common and client libraries and utilities written in Java. This package is a part of the PKI Core used by the Certificate System. This package is a part of the PKI Core used by the Certificate System. ================================== || ABOUT "CERTIFICATE SYSTEM" || ================================== Certificate System (CS) is an enterprise software system designed to manage enterprise Public Key Infrastructure (PKI) deployments. PKI Core contains ALL top-level java-based Tomcat PKI components: * pki-symkey * pki-base * pki-base-python2 (alias for pki-base) * pki-base-python3 * pki-base-java * pki-tools * pki-server * pki-ca * pki-kra * pki-ocsp * pki-tks * pki-tps * pki-javadoc which comprise the following corresponding PKI subsystems: * Certificate Authority (CA) * Key Recovery Authority (KRA) * Online Certificate Status Protocol (OCSP) Manager * Token Key Service (TKS) * Token Processing Service (TPS) Python clients need only install the pki-base package. This package contains the python REST client packages and the client upgrade framework. Java clients should install the pki-base-java package. This package contains the legacy and REST Java client packages. These clients should also consider installing the pki-tools package, which contain native and Java-based PKI tools and utilities. Certificate Server instances require the fundamental classes and modules in pki-base and pki-base-java, as well as the utilities in pki-tools. The main server classes are in pki-server, with subsystem specific Java classes and resources in pki-ca, pki-kra, pki-ocsp etc. Finally, if Certificate System is being deployed as an individual or set of standalone rather than embedded server(s)/service(s), it is strongly recommended (though not explicitly required) to include at least one PKI Theme package: * dogtag-pki-theme (Dogtag Certificate System deployments) * dogtag-pki-server-theme * redhat-pki-server-theme (Red Hat Certificate System deployments) * redhat-pki-server-theme * customized pki theme (Customized Certificate System deployments) * -pki-server-theme NOTE: As a convenience for standalone deployments, top-level meta packages may be provided which bind a particular theme to these certificate server packages.\Š.óx86-02.bsys.centos.orgŸÎCentOSGPLv2CentOS BuildSystem System Environment/Basehttp://pki.fedoraproject.org/linuxnoarch PõÕÖbÌ £”!& #-+,).*)&##"!81;8+70#%Aí¤¤¤Aí¤¤Aí¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ¡ÿ\Š.’\Š.ˆ\Š.‰\Š.\Š.|[!¥T[!¥T\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|\Š.|104e693105a0f33323a500b28140eb73edbddc312c59aff2af732bfcbe4c468394551476c6e1669c47fcfc7410317b2cd505bfe5c3ecefb1e74fecebcf90f871b2df657063377311c021e0fd7006b3ab5ad93e365860dc3ecf68ba0078a90481fdd8d5ef0c8813c633e77997d6dbe23557a5112937962d5ab7b1053de866027b643b71cec56efdc737a20687bb05ccbba40c3481b2c0e100ccf53331e0fba620/usr/share/java/commons-cli.jar/usr/share/java/commons-codec.jar/usr/share/java/commons-httpclient.jar/usr/share/java/commons-io.jar/usr/share/java/commons-lang.jar/usr/share/java/commons-logging.jar/usr/share/java/httpcomponents/httpclient.jar/usr/share/java/httpcomponents/httpcore.jar/usr/share/java/jackson/jackson-core-asl.jar/usr/share/java/jackson/jackson-jaxrs.jar/usr/share/java/jackson/jackson-mapper-asl.jar/usr/share/java/jackson/jackson-mrbean.jar/usr/share/java/jackson/jackson-smile.jar/usr/share/java/jackson/jackson-xc.jar/usr/share/java/jaxb-api.jar/usr/lib/java/jss4.jar/usr/share/java/ldapjdk.jar/usr/share/java/pki/pki-certsrv.jar/usr/share/java/pki/pki-cmsutil.jar/usr/share/java/pki/pki-nsutil.jar/usr/share/java/pki/pki-tools.jar/usr/share/java/resteasy-base/resteasy-atom-provider.jar/usr/share/java/resteasy-base/resteasy-client.jar/usr/share/java/resteasy-base/resteasy-jackson-provider.jar/usr/share/java/resteasy-base/resteasy-jaxb-provider.jar/usr/share/java/resteasy-base/jaxrs-api.jar/usr/share/java/resteasy-base/resteasy-jaxrs-jandex.jar/usr/share/java/resteasy-base/resteasy-jaxrs.jar/usr/share/java/servlet.jar/usr/share/java/slf4j/slf4j-api.jar/usr/share/java/slf4j/slf4j-jdk14.jarrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootpki-core-10.5.9-13.el7_6.src.rpmÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿpki-base-java apache-commons-cliapache-commons-codecapache-commons-ioapache-commons-langapache-commons-loggingjakarta-commons-httpclientjava-1.8.0-openjdk-headlessjavassistjpackage-utilsjssldapjdkpki-baseresteasy-base-atom-providerresteasy-base-clientresteasy-base-jackson-providerresteasy-base-jaxb-providerresteasy-base-jaxrsresteasy-base-jaxrs-apirpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)slf4jxalan-j2xerces-j2xml-commons-apisxml-commons-resolverrpmlib(PayloadIsXz)0:1.7.5-104.4.4-54.19-510.5.9-13.el7_63.0.6-13.0.6-13.0.6-13.0.6-13.0.6-13.0.6-13.0.4-14.6.0-14.0-15.2-14.11.3\f©À\T4À\Rã@\À\U@\½À[Öö@[{þÀ[l,À[`O@[UÃ@[>@[d@[Á@[oÀ[@ZËUÀZ´ì@ZŠ¼@ZÀZxG@Zg#ÀZ.s@Zþ@Z ÚÀZñÀYûÀYè“ÀY¿µ@Y·Ì@YšË@YoIÀYl¦ÀYG¼ÀY>‚@Y5GÀY-^ÀY$$@Y"ÒÀY¯@Y#@Xô®@XØþÀXÇÛ@X½O@X*ÀXR…ÀXOâÀX!¾@X&ÀX2@Wû‚ÀWÒ¤@WÎ¯ÀWÄ#ÀW¼:ÀW±®ÀW¨t@W{¡@Wu ÀWgÚÀWV·@WV·@WV·@WV·@WV·@WV·@W 10.5.9-13Dogtag Team 10.5.9-12Dogtag Team 10.5.9-11Dogtag Team 10.5.9-10Dogtag Team 10.5.9-9Dogtag Team 10.5.9-8Dogtag Team 10.5.9-7Dogtag Team 10.5.9-6Dogtag Team 10.5.9-5Dogtag Team 10.5.9-4Dogtag Team 10.5.9-3Dogtag Team 10.5.9-2Dogtag Team 10.5.9-1Dogtag Team 10.5.1-13.1Dogtag Team 10.5.1-13Dogtag Team 10.5.1-12Dogtag Team 10.5.1-11Dogtag Team 10.5.1-10Dogtag Team 10.5.1-9Dogtag Team 10.5.1-8Dogtag Team 10.5.1-7Dogtag Team 10.5.1-6Dogtag Team 10.5.1-5Dogtag Team 10.5.1-4Troy Dawson - 10.5.1-3Dogtag Team 10.5.1-2Dogtag Team 10.5.1-1Dogtag Team 10.5.0-1Dogtag Team 10.4.1-15Dogtag Team 10.4.1-14Dogtag Team 10.4.1-13Dogtag Team 10.4.1-12Dogtag Team 10.4.1-11Dogtag Team 10.4.1-10Dogtag Team 10.4.1-9Dogtag Team 10.4.1-8Dogtag Team 10.4.1-7Dogtag Team 10.4.1-6Dogtag Team 10.4.1-5Dogtag Team 10.4.1-4Dogtag Team 10.4.1-3Dogtag Team 10.4.1-2Dogtag Team 10.4.1-1Dogtag Team 10.4.0-1Dogtag Team 10.3.3-18Dogtag Team 10.3.3-17Dogtag Team 10.3.3-16Dogtag Team 10.3.3-15Dogtag Team 10.3.3-14Dogtag Team 10.3.3-13Dogtag Team 10.3.3-12Dogtag Team 10.3.3-11Dogtag Team 10.3.3-10Dogtag Team 10.3.3-9Dogtag Team 10.3.3-8Dogtag Team 10.3.3-7Dogtag Team 10.3.3-6Dogtag Team 10.3.3-5Dogtag Team 10.3.3-3Dogtag Team 10.3.3-2Dogtag Team 10.3.3-1Dogtag Team 10.3.3-0.1Dogtag Team 10.3.2-5Dogtag Team 10.3.2-4Dogtag Team 10.3.2-3Dogtag Team 10.3.2-2Dogtag Team 10.3.2-1Dogtag Team 10.3.2-0.1Dogtag Team 10.3.1-1Dogtag Team 10.3.0-1Dogtag Team 10.3.0.b1-1Dogtag Team 10.3.0.a2-2Dogtag Team 10.3.0.a2-1Dogtag Team 10.3.0.a1-2Dogtag Team 10.3.0.a1-1Dogtag Team 10.3.0-0.5Dogtag Team 10.3.0-0.4Dogtag Team 10.3.0-0.3Dogtag Team 10.3.0-0.2Dogtag Team 10.3.0-0.1Dogtag Team 10.2.7-0.3Tomas Radej - 10.2.7-0.2Dogtag Team 10.2.7-0.1Dogtag Team 10.2.6-1Dogtag Team 10.2.6-0.3Dogtag Team 10.2.6-0.2Dogtag Team 10.2.6-0.1Dogtag Team 10.2.5-1Dogtag Team 10.2.5-0.2Dogtag Team 10.2.5-0.1Dogtag Team 10.2.4-1Dogtag Team 10.2.4-0.2Dogtag Team 10.2.4-0.1Dogtag Team 10.2.3-1Dogtag Team 10.2.3-0.1Dogtag Team 10.3.0-0.1Dogtag Team 10.2.3-0.1Dogtag Team 10.2.2-1Dogtag Team 10.2.2-0.1Dogtag Team 10.2.1-1Matthew Harmsen - 10.2.1-0.4Ade Lee 10.2.1-0.3Christina Fu 10.2.1-0.2Dogtag Team 10.2.1-0.1Ade Lee 10.2.0-3Matthew Harmsen - 10.2.0-2Dogtag Team 10.2.0-1Matthew Harmsen - 10.2.0-0.10Matthew Harmsen - 10.2.0-0.9Matthew Harmsen - 10.2.0-0.8Fedora Release Engineering - 10.2.0-0.5Jack Magne - 10.2.0-0.7Matthew Harmsen - 10.2.0-0.6Matthew Harmsen - 10.2.0-0.5Ade Lee - 10.2.0-0.4Fedora Release Engineering - 10.2.0-0.3Michael Simacek - 10.2.0-0.2Dogtag Team 10.2.0-0.1Ade Lee 10.1.0-1Ade Lee 10.1.0-0.14Ade Lee 10.1.0-0.13Ade Lee 10.1.0-0.12Ade Lee 10.1.0-0.11Endi S. Dewata 10.1.0-0.10Abhishek Koneru 10.1.0.0.9Abhishek Koneru 10.1.0.0.8Endi S. Dewata 10.1.0-0.7Endi S. Dewata 10.1.0-0.6Endi S. Dewata 10.1.0-0.5Ade Lee 10.1.0-0.4Endi S. Dewata 10.1.0-0.3Matthew Harmsen 10.1.0-0.2Ade Lee 10.1.0-0.1Endi S. Dewata 10.0.2-5Ade Lee 10.0.2-4Ade Lee 10.0.2-3Endi S. Dewata 10.0.2-2Ade Lee 10.0.2-1Ade Lee 10.0.2-0.8Endi S. Dewata 10.0.2-0.7Endi S. Dewata 10.0.2-0.6Ade Lee 10.0.2-0.5Endi S. Dewata 10.0.2-0.4Endi S. Dewata 10.0.2-0.3Endi S. Dewata 10.0.2-0.2Endi S. Dewata 10.0.2-0.1Endi S. Dewata 10.0.1-9Ade Lee 10.0.1-8Endi S. Dewata 10.0.1-7Matthew Harmsen 10.0.1-6Endi S. Dewata 10.0.1-5Endi S. Dewata 10.0.1-4Matthew Harmsen 10.0.1-3Matthew Harmsen 10.0.1-2Ade Lee 10.0.1-1Matthew Harmsen 10.0.0-5Matthew Harmsen 10.0.0-4Ade Lee 10.0.0-3Ade Lee 10.0.0-2Ade Lee 10.0.0-1Matthew Harmsen 10.0.0-0.56.b3Endi S. Dewata 10.0.0-0.55.b3Endi S. Dewata 10.0.0-0.54.b3Ade Lee 10.0.0-0.53.b3Ade Lee 10.0.0-0.52.b3Endi S. Dewata 10.0.0-0.51.b2Endi S. Dewata 10.0.0-0.50.b2Matthew Harmsen 10.0.0-0.49.b2Ade Lee 10.0.0-0.48.b2Matthew Harmsen 10.0.0-0.47.b1Ade Lee 10.0.0-0.46.b1Ade Lee 10.0.0-0.45.b1Ade Lee 10.0.0-0.44.b1Ade Lee 10.0.0-0.43.b1Ade Lee 10.0.0-0.42.b1Ade Lee 10.0.0-0.41.b1Ade Lee 10.0.0-0.40.b1Endi S. Dewata 10.0.0-0.40.a2Endi S. Dewata 10.0.0-0.39.a2Ade Lee 10.0.0-0.38.a2Endi S. Dewata 10.0.0-0.37.a2Ade Lee 10.0.0-0.36.a2Endi S. Dewata 10.0.0-0.36.a1Endi S. Dewata 10.0.0-0.35.a1Endi S. Dewata 10.0.0-0.34.a1Ade Lee 10.0.0-0.33.a1Matthew Harmsen 10.0.0-0.32.a1Endi S. Dewata 10.0.0-0.31.a1Endi S. Dewata 10.0.0-0.30.a1Endi S. Dewata 10.0.0-0.29.a1Endi S. Dewata 10.0.0-0.28.a1Endi S. Dewata 10.0.0-0.27.a1Endi S. Dewata 10.0.0-0.26.a1Endi S. Dewata 10.0.0-0.25.a1Endi S. Dewata 10.0.0-0.24.a1Matthew Harmsen 10.0.0-0.23.a1Endi S. Dewata 10.0.0-0.22.a1Endi S. Dewata 10.0.0-0.21.a1Matthew Harmsen 10.0.0-0.20.a1Matthew Harmsen 10.0.0-0.19.a1Matthew Harmsen 10.0.0-0.18.a1Endi S. Dewata 10.0.0-0.17.a1Matthew Harmsen 10.0.0-0.16.a1Ade Lee 10.0.0-0.15.a1Christina Fu 10.0.0-0.14.a1Endi S. Dewata 10.0.0-0.13.a1Endi S. Dewata 10.0.0-0.12.a1Ade Lee 10.0.0-0.11.a1Matthew Harmsen 10.0.0-0.10.a1Matthew Harmsen 10.0.0-0.9.a1Jack Magne 10.0.0-0.8.a1Matthew Harmsen 10.0.0-0.7.a1Endi S. Dewata 10.0.0-0.6.a1Ade Lee 10.0.0-0.5.a1Endi S. Dewata 10.0.0-0.4.a1Matthew Harmsen 10.0.0-0.3.a1Matthew Harmsen 10.0.0-0.2.a1Nathan Kinder 10.0.0-0.1.a1Ade Lee 9.0.16-3Endi S. Dewata 9.0.16-2Matthew Harmsen 9.0.16-1Matthew Harmsen 9.0.15-1Matthew Harmsen 9.0.14-1Ade Lee 9.0.13-1Matthew Harmsen 9.0.12-1Matthew Harmsen 9.0.11-1Matthew Harmsen 9.0.10-1Matthew Harmsen 9.0.9-1Matthew Harmsen 9.0.8-2Matthew Harmsen 9.0.8-1Matthew Harmsen 9.0.7-1Matthew Harmsen 9.0.6-2Matthew Harmsen 9.0.6-1Matthew Harmsen 9.0.5-2Matthew Harmsen 9.0.5-1Matthew Harmsen 9.0.4-1Matthew Harmsen 9.0.3-2Matthew Harmsen 9.0.3-1Matthew Harmsen 9.0.2-1Matthew Harmsen 9.0.1-3Matthew Harmsen 9.0.1-2Matthew Harmsen 9.0.1-1Matthew Harmsen 9.0.0-3Matthew Harmsen 9.0.0-2Matthew Harmsen 9.0.0-1- Updated jss dependencies - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1671245 - CC: unable to verify cert before import [rhel-7.6.z] [manpage] (ascheel) - Bugzilla Bug #1671303 - CC: Upgrade scripts for audit event names (RHEL) [rhel-7.6.z] (edewata) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1671586 - CC: Upgrade scripts for audit event names (RHCS)- Updated jss dependencies - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1671245 - CC: unable to verify cert before import [rhel-7.6.z] (ascheel) - Bugzilla Bug #1671303 - CC: Upgrade scripts for audit event names (RHEL) [rhel-7.6.z] (edewata) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1671586 - CC: Upgrade scripts for audit event names (RHCS)- Updated jss dependencies - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1671245 - CC: unable to verify cert before import [rhel-7.6.z] (ascheel) - Bugzilla Bug #1671303 - CC: Upgrade scripts for audit event names (RHEL) [rhel-7.6.z] (edewata) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1671586 - CC: Upgrade scripts for audit event names (RHCS)- ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1659939 - CC: Simplifying Web UI session timeout configuration [rhel-7.6.z] (edewata) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1639836 - CC: Identify RHCS version of CA, KRA, - # Added Batch Update Information to Product Version (mharmsen)- ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1657922 - CC: CA/OCSP startup fail on SystemCertsVerification if enableOCSP is true [rhel-7.6.z] (jmagne) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1639836 - CC: Identify RHCS version of CA, KRA,- ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1645262 - pkidestroy may not remove all files [rhel-7.6.z] (dmoluguw) - Bugzilla Bug #1645263 - Auth plugins leave passwords in the access log and audit log using REST [rhel-7.6.z] (dmoluguw) - Bugzilla Bug #1645429 - pkispawn fails due to name collision with /var/log/pki/ [rhel-7.6.z] (dmoluguw) - Bugzilla Bug #1655951 - CC: tools supporting CMC requests output keyID needs to be captured in file [rhel-7.6.z] (cfu) - Bugzilla Bug #1656297 - Unable to install with admin-generated keys [rhel-7.6.z] (edewata) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1639836 - CC: Identify RHCS version of CA, KRA,- Require "tomcatjss >= 7.2.1-8" as a build and runtime requirement - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1632116 - CC: missing audit event for CS acting as TLS client [rhel-7.6.z] (cfu) - Bugzilla Bug #1632120 - Unsupported RSA_ ciphers should be removed from the default ciphers list [rhel-7.6.z] (cfu) - Bugzilla Bug #1632615 - Permit certain SHA384 FIPS ciphers to be enabled by default for RSA and ECC . . . [rhel-7.6.z] (cfu) - Bugzilla Bug #1632616 - X500Name.directoryStringEncodingOrder overridden by CSR encoding (coverity changes) [rhel-7.6.z] (mharmsen) - Bugzilla Bug #1633104 - CMC: add config to allow non-clientAuth [rhel-7.6.z] (cfu) - Bugzilla Bug #1636490 - Installation of CA using an existing CA fails [rhel-7.6.z] (edewata) - Bugzilla Bug #1643878 - pki cli command for RHCS doesn't prompt for a password [rhel-7.6.z] (edewata) - Bugzilla Bug #1643879 - CC: Identify version/release of pki-ca, pki-kra, pki-ocsp, pki-tks, and pki-tps remotely [RHEL] [rhel-7.6.z] (cfu, jmagne) - Bugzilla Bug #1643880 - PKI subsystem process is not shutdown when there is no space on the disk to write logs [rhel-7.6.z] (edewata) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1639836 - CC: Identify RHCS version of CA, KRA,- Updated nuxwdog dependencies - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #673182 - ECC keys not supported for signing audit logs (cfu) - Bugzilla Bug #1593805 - Better understanding of NSS_USE_DECODED_CKA_EC_POINT for ECC (cfu) - Bugzilla Bug #1601071 - Certificate generation happens with partial attributes in CMCRequest file (cfu) - Bugzilla Bug #1601569 - CC: Enable all config audit events (cfu) - Bugzilla Bug #1608375 - CMC Revocations throws exception with same reqIssuer & certissuer (cfu) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1557570 - Re-base pki-core from 10.5.1 to- ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1596629 - ipa-replica-install --setup-kra broken on DL0 with latest version (abokovoy) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1557570 - Re-base pki-core from 10.5.1 to- ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1548203 - pki console configurations that involves ldap passwords leave the plain text password in signed audit logs (cfu) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1494591 - keyGen fails when only Identity- Re-spin alpha builds- ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1471935 - X500Name.directoryStringEncodingOrder overridden by CSR encoding (cfu) - Bugzilla Bug #1538311 - Using a Netmask produces an odd entry in a certificate (ftweedal) - Bugzilla Bug #1540440 - CMC: Audit Events needed for failures in SharedToken scenario's (cfu) - Bugzilla Bug #1550742 - Address ECC profile overrides (cfu) - Bugzilla Bug #1562841 - servlet profileSubmitCMCSimple throws NPE (cfu) - Bugzilla Bug #1572432 - AuditVerify failure due to line breaks (cfu) - Bugzilla Bug #1592961 - Need proper default subjectDN for CMC request authenticated through SharedToken (cfu) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1557570 - Re-base pki-core from 10.5.1 to- ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1538311 - Using a Netmask produces an odd entry in a certifcate (ftweedal) - Bugzilla Bug #1544843 - ExternalCA: Installation failed during csr generation with ecc (rrelyea, gkapoor) - Bugzilla Bug #1557569 - Re-base pki-core from 10.5.1 to latest upstream 10.5.x (RHEL) (mharmsen) - Bugzilla Bug #1580394 - CMC CRMF requests result in InvalidKeyFormatException when signing algorithm is ECC (cfu) - Bugzilla Bug #1580527 - CVE-2018-1080 pki-core: Mishandled ACL configuration in AAclAuthz.java reverses rules that allow and deny access (ftweedal, cfu) - Bugzilla Bug #1585866 - CRMFPopClient tool - should allow option to do no key archival (cfu) - Bugzilla Bug #1588655 - Cert validation for installation with external CA cert (edewata) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1557570 - Re-base pki-core from 10.5.1 to- Rebuild due to build system database problem- ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1553068 - Using a Netmask produces an odd entry in a certifcate [rhel-7.5.z] (ftweedal) - Bugzilla Bug #1585945 - CMC CRMF requests result in InvalidKeyFormatException when signing algorithm is ECC [rhel-7.5.z] (cfu) - Bugzilla Bug #1587826 - ExternalCA: Installation failed during csr generation with ecc [rhel-7.5.z] (rrelyea, gkapoor) - Bugzilla Bug #1588944 - Cert validation for installation with external CA cert [rhel-7.5.z] (edewata) - Bugzilla Bug #1588945 - CRMFPopClient tool - should allow option to do no key archival (cfu) - Bugzilla Bug #1589307 - CVE-2018-1080 pki-core: Mishandled ACL configuration in AAclAuthz.java reverses rules that allow and deny access [rhel-7.5.z] (ftweedal, cfu) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core,- Updated "jss" build and runtime requirements (mharmsen) - ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1571582 - [MAN] Missing Man pages for tools CMCRequest, CMCResponse, CMCSharedToken (typos) [rhel-7.5.z] (cfu) - Bugzilla Bug #1572548 - IPA install with external-CA is failing when FIPS mode enabled. [rhel-7.5.z] (edewata) - Bugzilla Bug #1574848 - servlet profileSubmitCMCSimple throws NPE [rhel-7.5.z] (cfu) - Bugzilla Bug #1575521 - subsystem -> subsystem SSL handshake issue with TLS_ECDHE_RSA_* on Thales HSM [rhel-7.5.z] (cfu) - Bugzilla Bug #1581134 - ECC installation for non CA subsystems needs improvement [rhel-7.5.z] (jmagne) - Bugzilla Bug #1581135 - SAN in internal SSL server certificate in pkispawn configuration step [rhel-7.5.z] (cfu) - Bugzilla Bug #1581167 - CC: CMC profiles: Some CMC profiles have wrong input class_id [rhel-7.5.z] (cfu) - Bugzilla Bug #1581382 - ECDSA Certificates Generated by Certificate System 9.3 fail NIST validation test with parameter field. [rhel-7.5.z] (cfu) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core,- ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1554726 - Need ECC-specific Enrollment Profiles for standard conformance [rhel-7.5.z] (cfu) - Bugzilla Bug #1557880 - [MAN] Missing Man pages for tools CMCRequest, CMCResponse, CMCSharedToken [rhel-7.5.z] (cfu) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1560233 - libtps does not directly depend on libz- ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1550581 - CMCAuth throws org.mozilla.jss.crypto.TokenException: Unable to insert certificate into temporary database [rhel-7.5.z] (cfu) - Bugzilla Bug #1551067 - [MAN] Add --skip-configuration and --skip-installation into pkispawn man page. [rhel-7.5.z] (edewata) - Bugzilla Bug #1552241 - Make sslget aware of TLSv1_2 ciphers [rhel-7.5.z] (cheimes, mharmsen) - Bugzilla Bug #1553068 - Using a Netmask produces an odd entry in a certifcate [rhel-7.5.z] (ftweedal) - Bugzilla Bug #1554726 - Need ECC-specific Enrollment Profiles for standard conformance [rhel-7.5.z] (cfu) - Bugzilla Bug #1554727 - Permit additional FIPS ciphers to be enabled by default for RSA . . . [rhel-7.5.z] (mharmsen, cfu) - Bugzilla Bug #1557880 - [MAN] Missing Man pages for tools CMCRequest, CMCResponse, CMCSharedToken [rhel-7.5.z] (cfu) - Bugzilla Bug #1557883 - Console: Adding ACL from pki-console gives StringIndexOutOfBoundsException [rhel-7.5.z] (ftweedal) - Bugzilla Bug #1558919 - Not able to generate certificate request with ECC using pki client-cert-request [rhel-7.5.z] (akahat) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1560233 - libtps does not directly depend on libz- ########################################################################## - # RHEL 7.5: - ########################################################################## - # Bugzilla Bug #1473452 - Rebase pki-core to latest upstream 10.5.x release - Bugzilla Bug #1445532 - CC: Audit Events: Update the default audit event set (RHEL) (edewata) - Bugzilla Bug #1532867 - Inconsistent key ID encoding (edewata) - Bugzilla Bug #1540687 - CC: External OCSP Installation failure with HSM and FIPS (edewata) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core, - # Bugzilla Bug #1404075 - CC: Audit Events: Update the default audit event- ########################################################################## - # RHEL 7.5: - ########################################################################## - # Bugzilla Bug #1473452 - Rebase pki-core to latest upstream 10.5.x release - Bugzilla Bug #1542210 - pki console configurations that involves ldap passwords leave the plain text password in debug logs (jmagne) - Bugzilla Bug #1543242 - Regression in lightweight CA key replication (ftweedal) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core,- ########################################################################## - # RHEL 7.5: - ########################################################################## - # Bugzilla Bug #1473452 - Rebase pki-core to latest upstream 10.5.x release - Bugzilla Bug #1445532 - CC: Audit Events: Update the default audit event set (RHEL) (edewata) - Bugzilla Bug #1522938 - CC: Missing faillure resumption detection and audit event logging at startup (jmagne) - Bugzilla Bug #1523410 - Unable to have non "pkiuser" owned CA instance (alee) - Bugzilla Bug #1525306 - CC: missing CMC request and response record (cfu) - Bugzilla Bug #1532933 - Installing subsystems with external CMC certificates in HSM environment shows import error (edewata) - Bugzilla Bug #1535797 - ExternalCA: Failures when installed with hsm (edewata) - Bugzilla Bug #1539125 - restrict default cipher suite to those ciphers permitted in fips mode (mharmsen) - Bugzilla Bug #1539198 - Inconsistent CERT_REQUEST_PROCESSED outcomes. (edewata) - Bugzilla Bug #1540440 - CMC: Audit Events needed for failures in SharedToken scenario's (cfu) - Bugzilla Bug #1541526 - CMC: Revocation works with an unknown revRequest.issuer (cfu) - Bugzilla Bug #1541853 - ProfileService: config values with backslashes have backslashes removed (ftweedal) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core, - # Bugzilla Bug #1404075 - CC: Audit Events: Update the default audit - # Bugzilla Bug #1501436 - TPS CS.cfg should be reflected with the- Updated jss, nuxwdog, and openssl dependencies - ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1473452 - Rebase pki-core to latest upstream 10.5.x release (RHEL) - Bugzilla Bug #1402280 - CA Cloning: Failed to update number range in few cases (ftweedal) - Bugzilla Bug #1428021 - CC: shared token storage and retrieval mechanism (cfu) - Bugzilla Bug #1447145 - CMC: cmc.popLinkWitnessRequired=false would cause error (cfu) - Bugzilla Bug #1498957 - pkidestroy does not work with nuxwdog (alee) - Bugzilla Bug #1520277 - PR_FILE_NOT_FOUND_ERROR during pkispawn (alee) - Bugzilla Bug #1520526 - p12 admin certificate is missing when certificate is signed Externally (edewata) - Bugzilla Bug #1523410 - Unable to have non "pkiuser" owned CA instance (alee) - Bugzilla Bug #1523443 - HAProxy rejects OCSP responses due to missing nextupdate field (ftweedal) - Bugzilla Bug #1526881 - Not able to setup CA with ECC (mharmsen) - Bugzilla Bug #1532759 - pkispawn seems to be leaving our passwords in several different files after installation completes (alee) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core,- ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1473452 - Rebase pki-core to latest upstream 10.5.x release (RHEL) - Bugzilla Bug #1466066 - CC: Secure removal of secret data storage (jmagne) - Bugzilla Bug #1518096 - ExternalCA: Failures in ExternalCA when tried to setup with CMC signed certificates (cfu) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core, and- ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1473452 - Rebase pki-core to latest upstream 10.5.x release (RHEL) - ########################################################################## - # RHCS 9.3: - ########################################################################## - #Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core, and- dogtagpki Pagure Issue #2853 - Cleanup spec file conditionals- Patch applying check-ins since 10.5.1-1- ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1473452 - Rebase pki-core to latest upstream 10.5.x release (RHEL) - ########################################################################## - # RHCS 9.3: - ########################################################################## - #Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core, and- ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1473452 - Rebase pki-core to latest upstream 10.5.x release (RHEL) - ########################################################################## - # RHCS 9.3: - ########################################################################## - #Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core, and- #Bugzilla Bug #1492560 - ipa-replica-install --setup-kra broken on DL0- #Require "jss >= 4.4.0-8" as a build and runtime requirement - ########################################################################## - # RHEL 7.4: - ########################################################################## - # Resolves: rhbz #1486870,1485833,1487509,1490241,1491332 - # Bugzilla Bug #1486870 - Lightweight CA key replication fails (regressions) - # Bugzilla Bug #1485833 - Missing CN in user signing cert would cause error - # Bugzilla Bug #1487509 - pki-server-upgrade fails when upgrading from - # Bugzilla Bug #1490241 - PKCS12: upgrade to at least AES and SHA2 (FIPS) - # Bugzilla Bug #1491332 - TPS UI: need to display tokenType and tokenOrigin - # dogtagpki Pagure Issue #2764 - py3: pki.key.archive_encrypted_data: - ########################################################################## - # RHCS 9.2: - ########################################################################## - # Resolves: rhbz #1486870,1485833,1487509,1490241,1491332,1482729,1462271 - # Bugzilla Bug #1462271 - TPS incorrectly assigns "tokenOrigin" and - # Bugzilla Bug #1482729 - TPS UI: need to display tokenType and tokenOrigin- Resolves: rhbz #1463350 - ########################################################################## - # RHEL 7.4: - ########################################################################## - # Bugzilla Bug #1463350 - Access banner validation (edewata)- # Resolves: rhbz #1472615,1472617,1469447,1463350,1469449,1472619,1464970,1469437,1469439,1469446 - ########################################################################## - # RHEL 7.4: - ########################################################################## - # Bugzilla Bug #1472615 - CC: allow CA to process pre-signed CMC non-signing - # Bugzilla Bug #1472617 - CMC: cmc.popLinkWitnessRequired=false would cause - # Bugzilla Bug #1469447 - CC: CMC: check HTTPS client authentication cert - # Bugzilla Bug #1463350 - Access banner validation (edewata) - # Bugzilla Bug #1469449 - CC: allow CA to process pre-signed CMC renewal - # Bugzilla Bug #1472619 - Platform Dependent Python Import (mharmsen) - # Bugzilla Bug #1464970 - CC: CMC: replace id-cmc-statusInfo with - # Bugzilla Bug #1469437 - subsystem-cert-update command lacks --cert option - # Bugzilla Bug #1469439 - Fix Key Changeover with HSM to support SCP03 - # Bugzilla Bug #1469446 - CC: need CMC enrollment profiles for system- # Resolves: rhbz #1469432 - ########################################################################## - # RHEL 7.4: - ########################################################################## - # Bugzilla Bug #1469432 - CMC plugin default change - # Resolves CVE-2017-7537 - # Fixes BZ #1470948- ########################################################################## - # RHEL 7.4: - ########################################################################## - Bugzilla Bug #1458043 - Key recovery on token fails with invalid public key error on KRA (alee) - Bugzilla Bug #1460764 - CC: CMC: check HTTPS client authentication cert against CMC signer (cfu) - Bugzilla Bug #1461533 - Unable to find keys in the p12 file after deleting the any of the subsystem certs from it (ftweedal)- ########################################################################## - # RHEL 7.4: - ########################################################################## - Bugzilla Bug #1393633 - Creating symmetric key (sharedSecret) using tkstool is failing when RHEL 7.3 is in FIPS mode. (jmagne) - Bugzilla Bug #1419756 - CC: allow CA to process pre-signed CMC non-signing certificate requests (cfu) - Bugzilla Bug #1419777 - CC: allow CA to process pre-signed CMC revocation non-signing cert requests (cfu) - Bugzilla Bug #1458047 - change the way aes clients refer to aes keysets (alee) - Bugzilla Bug #1458055 - dont reuse IVs in the CMC code (alee) - Bugzilla Bug #1460028 - In keywrap mode, key recovery on KRA with HSM causes KRA to crash (ftweedal)- Require "selinux-policy-targeted >= 3.13.1-159" as a runtime requirement - Require "tomcatjss >= 7.2.1-4" as a build and runtime requirement - ########################################################################## - # RHEL 7.4: - ########################################################################## - Bugzilla Bug #1400149 - pkispawn fails to create CA subsystem on FIPS enabled system (edewata) - Bugzilla Bug #1447144 - CA brought down during separate KRA instance creation (edewata) - Bugzilla Bug #1447762 - pkispawn fails occasionally with this failure ACCESS_SESSION_ESTABLISH_FAILURE (edewata) - Bugzilla Bug #1454450 - SubCA installation failure with 2 step installation in fips enabled mode (edewata) - Bugzilla Bug #1456597 - Certificate import using pki client-cert-import is asking for password when already provided (edewata) - Bugzilla Bug #1456940 - Build failure due to Pylint issues (cheimes) - Bugzilla Bug #1458043 - Key recovery using externalReg fails with java null pointer exception on KRA (alee) - Bugzilla Bug #1458379 - Upgrade script for keepAliveTimeout parameter (edewata) - Bugzilla Bug #1458429 - client-cert-import --ca-cert should import CA cert with trust bits "CT,C,C" (edewata) - ########################################################################## - # RHCS 9.2: - ########################################################################## - Bugzilla Bug #1274086 - [RFE] Add SCP03 support (RHCS) (jmagne)- ########################################################################## - # RHEL 7.4: - ########################################################################## - Bugzilla Bug #1393633 - Creating symmetric key (sharedSecret) using tkstool is failing when RHEL 7.3 is in FIPS mode. (jmagne) - Bugzilla Bug #1445519 - CA Server installation with HSM fails (jmagne) - Bugzilla Bug #1452617 - Unable to create IPA Sub CA (ftweedal) - Bugzilla Bug #1454471 - Enabling all subsystems on startup (edewata) - Bugzilla Bug #1455617 - Key recovery on token fails because key record is not marked encrypted (alee)- Bugzilla Bug #1454603 - Unable to install IPA server due to pkispawn error (mharmsen)- ########################################################################## - # RHEL 7.4: - ########################################################################## - Bugzilla Bug #1419761 - CC: allow CA to process pre-signed CMC renewal non-signing cert requests (cfu) - Bugzilla Bug #1447080 - CC: CMC: allow enrollment key signed (self-signed) CMC with identity proof (cfu) - Bugzilla Bug #1447144 - CA brought down during separate KRA instance creation (mharmsen) - Bugzilla Bug #1448903 - exception Invalid module "--ignore-banner" when defined in ~/.dogtag/pki.conf and run pki pkcs12-import --help (edewata) - Bugzilla Bug #1450143 - CA installation with HSM in FIPS mode fails (jmagne) - Bugzilla Bug #1452123 - CA CS.cfg shows default port (mharmsen) - Bugzilla Bug #1452250 - Inconsistent CERT_REQUEST_PROCESSED event in ConnectorServlet. (edewata) - Bugzilla Bug #1452340 - Ensuring common audit log correctness (edewata) - Bugzilla Bug #1452344 - Adding serial number into CERT_REQUEST_PROCESSED audit event. (edewata)- ########################################################################## - # RHEL 7.4: - ########################################################################## - Bugzilla Bug #1386303 - cannot extract generated private key from KRA when HSM is used. (alee) - Bugzilla Bug #1446364 - pkispawn returns before tomcat is ready (cheimes) - Bugzilla Bug #1447145 - CMC: cmc.popLinkWitnessRequired=false would cause error (cfu) - Bugzilla Bug #1448203 - CAInfoService: retrieve KRA-related values from the KRA (ftweedal) - Bugzilla Bug #1448204 - pkispawn of clone install fails with InvalidBERException (ftweedal) - Bugzilla Bug #1448521 - kra unable to extract symmetric keys generated on thales hsm (alee) - Updated "jss" build and runtime requirements (mharmsen) - ########################################################################## - # RHCS 9.2: - ########################################################################## - Bugzilla Bug #1274086 - [RFE] Add SCP03 support (RHCS) (jmagne)- ############################################################################ - # RHEL 7.4: - ############################################################################ - Bugzilla Bug #1303683 - dogtag should support GSSAPI based auth in conjuction with FreeIPA (ftweedal) - Bugzilla Bug #1385208 - RHCS 9.1 RC5 CA in the certificate profiles the startTime parameter is not working as expected. (jmagne) - Bugzilla Bug #1419756 - CC: allow CA to process pre-signed CMC non-signing certificate requests (cfu) - Bugzilla Bug #1426754 - PKCS12: upgrade to at least AES and SHA2 (ftweedal) - Bugzilla Bug #1445088 - profile modification cannot remove existing config parameters (ftweedal) - Bugzilla Bug #1445535 - CC: Crypto Operation (AES Encryption/Decryption) (RHEL) (alee) - Bugzilla Bug #1446874 - Missing ClientIP and ServerIP in audit log when pki CLI terminates SSL connection (edewata) - Bugzilla Bug #1446875 - Session timeout for PKI console (RHEL) (edewata) - ############################################################################ - # RHCS 9.2: - ############################################################################ - Bugzilla Bug #1404480 - CC: Crypto Operation (AES Encryption/Decryption) (RHCS) (alee)- ############################################################################ - # RHEL 7.4: - ############################################################################ - Bugzilla Bug #1282504 - Installing pki-server in container reports scriptlet failed, exit status 1 (jpazdziora) - Bugzilla Bug #1400149 - pkispawn fails to create CA subsystem on FIPS enabled system (edewata) - Bugzilla Bug #1410650 - [RFE] Add SCP03 support for sc 7 g & d cards (RHEL) (jmagne) - Bugzilla Bug #1437591 - cli authentication using expired cert throws an exception (edewata) - Bugzilla Bug #1437602 - non-CA cli looks for CA in the instance during a request (edewata) - ############################################################################ - # RHCS 9.2: - ############################################################################ - Bugzilla Bug #1274086 - [RFE] Add SCP03 support for sc 7 g & d cards (RHCS) (jmagne) - ############################################################################ - # Common Criteria - ############################################################################ - Bugzilla Bug #1404080 - CC: add audit event: various SSL/TLS failures (edewata) - Bugzilla Bug #1417307 - CC: Audit Review /Searches (edewata) - Bugzilla Bug #1419737 - CC: CMC: id-cmc-popLinkWitnessV2 feature implementation (cfu)- Require "nss >= 3.28.3" as a build and runtime requirement - Require "jss >= 4.4.0-4" as a build and runtime requirement - Require "tomcatjss >= 7.2.1-3" as a build and runtime requirement - dogtagpki Pagure Issue #2612 - Unable to clone due to pki pkcs12-cert-find failure (edewata) - ############################################################################ - Bugzilla Bug #1394309 - Rebase pki-core to 10.4.x in RHEL-7.4 - Bugzilla Bug #1394315 - Rebase redhat-pki, redhat-pki-theme, pki-core, and pki-console to 10.4.x - ############################################################################ - # RHEL 7.4: - ############################################################################ - ############################################################################ - # RHCS 9.2: - ############################################################################ - ############################################################################ - # Common Criteria - ############################################################################ - Bugzilla Bug #1419734 - CC: CMC: id-cmc-identityProofV2 feature implementation (cfu) - Bugzilla Bug #1419742 - CC: CMC: provide Proof of Possession for encryption cert requests (cfu) - Bugzilla Bug #1404080 - CC: add audit event: various SSL/TLS failures (edewata) - Bugzilla Bug #1428020 - CC: CMC feature support: provided issuance protection cert mechanism (cfu)- Require "jss >= 4.4.0-1" as a build and runtime requirement - Require "tomcatjss >= 7.2.1-1" as a build and runtime requirement - ############################################################################ - Bugzilla Bug #1394309 - Rebase pki-core to 10.4.x in RHEL-7.4 - Bugzilla Bug #1394315 - Rebase redhat-pki, redhat-pki-theme, pki-core, and pki-console to 10.4.x - ############################################################################ - # RHEL 7.4: - ############################################################################ - Bugzilla Bug #1222557 - ECDSA Certificates Generated by Certificate System 8.1 fail NIST validation test with parameter field. (cfu) - Bugzilla Bug #1238684 - Generting Symmetric key fails with key-generate when --usages verify (vakwetu) - Bugzilla Bug #1246635 - user-cert-add --serial CLI request to secure port with remote CA shows authentication failure (edewata) - Bugzilla Bug #1249400 - CA EE: Submit caUserCert request without uid does not show proper error message (vakwetu) - Bugzilla Bug #1305993 - Add profile component that copies CN to SAN (ftweedal) - Bugzilla Bug #1316653 - pki ca-cert-request-submit fails presumably because of missing authentication even if it should not require any (edewata) - Bugzilla Bug #1325071 - add options to enable/disable cert or crl publishing. (vakwetu) - Bugzilla Bug #1330800 - Failed to start pki-tomcatd Service ("ipa-cacert-manage renew" failed?) (edewata) - Bugzilla Bug #1368410 - Misleading Logging for HSM (edewata) - Bugzilla Bug #1372052 - Unable to search certificate requests using the latest request ID (edewata) - Bugzilla Bug #1375347 - Typo in comment line of UserPwdDirAuthentication.java (edewata) - Bugzilla Bug #1376226 - IPA replica-prepare failed with error "Profile caIPAserviceCert Not Found" (ftweedal) - Bugzilla Bug #1376488 - pkispawn fails as it is not able to find openssl as a dependency package (mharmsen) - Bugzilla Bug #1378275 - two-step externally-signed CA installation fails due to missing AuthorityID (ftweedal) - Bugzilla Bug #1378277 - Spurious host authority entries created (ftweedal) - Bugzilla Bug #1378527 - Miscellaneous Minor Changes (edewata) - Bugzilla Bug #1381084 - KRA installation failed against externally-signed CA with partial certificate chain (edewata) - Bugzilla Bug #1382066 - Problems with FIPS mode (edewata) - Bugzilla Bug #1386371 - Remove xenroll.dll from pki-core (mharmsen) - Bugzilla Bug #1386424 - Fix packaging duplicates of classes in multiple jar files (edewata) - Bugzilla Bug #1391737 - Changes to target.agent.approve.list parameter is not reflected in the TPS Web UI (RHEL 7) (edewata) - Bugzilla Bug #1392068 - [RFE] add express archivals and retrievals from KRA (vakwetu) - Bugzilla Bug #1395817 - Unable to install subordinate CA with HSM in FIPS mode (edewata) - Bugzilla Bug #1397200 - pkispawn does not change default ecc key size from nistp256 when nistp384 is specified in spawn config (jmagne) - Bugzilla Bug #1399862 - Dogtag 10.3.9 Man Pages (edewata) - Bugzilla Bug #1404881 - TPS throws "err=6" when attempting to format and enroll G&D Cards (jmagne) - Bugzilla Bug #1405654 - Token memory not wiped after key deletion (RHEL) (jmagne) - Bugzilla Bug #1409946 - Request ID undefined for CA signing certificate (vakwetu) - Bugzilla Bug #1409949 - CA Certificate Issuance Date displayed on CA website incorrect (vakwetu) - Bugzilla Bug #1410650 - [RFE] Add SCP03 support (RHEL) (jmagne) - Bugzilla Bug #1411428 - Unable to create a CA clone in FIPS (edewata) - Bugzilla Bug #1412211 - Unable to set up KRA in FIPS (edewata) - Bugzilla Bug #1412681 - update to 7.3 IPA with otpd bugfixes, tomcat will not finish start, hangs (ftweedal) - Bugzilla Bug #1413132 - pki-tomcat for 10+ minutes before generating cert (edewata) - Bugzilla Bug #1413136 - Problem with default AJP hostname in IPv6 environment. (edewata) - ############################################################################ - # RHCS 9.2: - ############################################################################ - Bugzilla Bug #1248553 - TPS Enrollment always goes to "ca1 (cfu) - Bugzilla Bug #1274086 - [RFE] Add SCP03 support (RHCS) (jmagne) - Bugzilla Bug #1274096 - [BUG] Add ability to disallow TPS to enroll a single user on multiple tokens. (jmagne) - Bugzilla Bug #1379379 - Unable to read an encrypted email using renewed tokens (jmagne) - Bugzilla Bug #1379749 - Automatic recovery of encryption cert is not working when a token is physically damaged and a temporary token is issued (jmagne) - Bugzilla Bug #1381375 - Cert/Key recovery is successful when the cert serial number and key id on the ldap user mismatches (cfu) - Bugzilla Bug #1381635 - Token format with external reg fails when op.format.externalRegAddToToken.revokeCert=true (cfu) - Bugzilla Bug #1382762 - PIN_RESET policy is not giving expected results when set on a token (jmagne) - Bugzilla Bug #1386257 - Changes to target.agent.approve.list parameter is not reflected in the TPS Web UI (RHCS 9) (edewata) - Bugzilla Bug #1391207 - Automatic recovery of encryption cert - CA and TPS tokendb shows different certificate status (cfu) - Bugzilla Bug #1395479 - TPS throws "err=6" when attempting to format and enroll G&D Cards (RHCS) (jmagne) - Bugzilla Bug #1404900 - Dogtag 10.3.9 logging properties (edewata) - Bugzilla Bug #1405655 - Token memory not wiped after key deletion (RHCS) (jmagne) - ############################################################################- ## RHEL 7.3.z Batch Update 4 - Bugzilla Bug #1429492 - Add profile component that copies CN to SAN (ftweedal)- ## RHCS 9.1.z Batch Update 3 - Bugzilla Bug #1391207 - Automatic recovery of encryption cert - CA and TPS tokendb shows different certificate status (cfu) - ## RHEL 7.3.z Batch Update 3 - Bugzilla Bug #1417063 - ECDSA Certificates Generated by Certificate System 8.1 fail NIST validation test with parameter field. (cfu) - Bugzilla Bug #1417064 - Unable to search certificate requests using the latest request ID (edewata) - Bugzilla Bug #1417065 - CA Certificate Issuance Date displayed on CA website incorrect (alee) - Bugzilla Bug #1417066 - update to 7.3 IPA with otpd bugfixes, tomcat will not finish start, hangs (ftweedal) - Bugzilla Bug #1417067 - pki-tomcat for 10+ minutes before generating cert (edewata) - Bugzilla Bug #1417190 - Problem with default AJP hostname in IPv6 environment. (edewata)- Separate original patches into RHEL and RHCS portions - ## RHEL 7.3.z Batch Update 2 - Bugzilla Bug #1404176 - logging properties and man pages (edewata) - Bugzilla Bug #1405328 - TPS throws "err=6" when attempting to format and enroll G&D Cards (jmagne) - ## RHCS 9.1.z Batch Update 2 - Bugzilla Bug #1395479 - TPS throws "err=6" when attempting to format and enroll G&D Cards (jmagne) - Bugzilla Bug #1404900 - RHCS logging properties (edewata)- ## RHEL 7.3.z Batch Update 2 - Bugzilla Bug #1404173 - user-cert-add --serial CLI request to secure port with remote CA shows authentication failure (edewata) - Bugzilla Bug #1404175 - pki ca-cert-request-submit fails presumably because of missing authentication even if it should not require any (edewata) - Bugzilla Bug #1404178 - Changes to target.agent.approve.list parameter is not reflected in the TPS Web UI [pki-base] (edewata) - Bugzilla Bug #1404172 - Unable to install subordinate CA with HSM in FIPS mode (edewata) - Bugzilla Bug #1403689 - pkispawn does not change default ecc key size from nistp256 when nistp384 is specified in spawn config (jmagne) - Bugzilla Bug #1404176 - logging properties and man pages (edewata) - ## RHCS 9.1.z Batch Update 2 - Bugzilla Bug #1386257 - Changes to target.agent.approve.list parameter is not reflected in the TPS Web UI [pki-tps] (edewata) - Bugzilla Bug #1391207 - Automatic recovery of encryption cert - CA and TPS tokendb shows different certificate status (cfu) - Bugzilla Bug #1395479 - TPS throws "err=6" when attempting to format and enroll G&D Cards (jmagne)- Marked the following RHCS 9.1.z bug: Bugzilla Bug #1382862 - TPS token enrollment fails to setupSecureChannel when TPS and TKS security db is on fips mode. (jmagne) as a duplicate of RHEL 7.3.z bug: Bugzilla Bug #1389757 - Problems with FIPS mode (edewata) and moved the patch from the RHCS 9.1.z bug to the RHEL 7.3.z bug.- ## RHEL 7.3.z Batch Update 1 - Bugzilla Bug #1389757 - Problems with FIPS mode (edewata) (added KRA key recovery via CLI in FIPS mode) - ## RHCS 9.1.z Batch Update 1 - Reverted patches associated with Bugzilla Bug #1386257 - Changes to target.agent.approve.list parameter is not reflected in the TPS Web UI (edewata)- ## RHEL 7.3.z Batch Update 1 - Bugzilla Bug #1390318 - CA EE: Submit caUserCert request without uid does not show proper error message (alee) - Bugzilla Bug #1390319 - Failed to start pki-tomcatd Service ("ipa-cacert-manage renew" failed?) (edewata) - Bugzilla Bug #1390320 - pkispawn fails as it is not able to find openssl as a dependency package (mharmsen) - Bugzilla Bug #1390321 - two-step externally-signed CA installation fails due to missing AuthorityID (ftweedal) - Bugzilla Bug #1390322 - Spurious host authority entries created (ftweedal) - Bugzilla Bug #1390324 - KRA installation failed against externally-signed CA with partial certificate chain (edewata) - Bugzilla Bug #1389757 - Problems with FIPS mode (edewata) - Bugzilla Bug #1390311 - Fix packaging duplicates of classes in multiple jar files (edewata) - Bugzilla Bug #1390325 - Typo in comment line of UserPwdDirAuthentication.java (edewata) - ## RHCS 9.1.z Batch Update 1 - Bugzilla Bug #1248553 - TPS Enrollment always goes to "ca1" (cfu) - Bugzilla Bug #1274096 - [BUG] Add ability to disallow TPS to enroll a single user on multiple tokens. (jmagne) - Bugzilla Bug #1379379 - Unable to read an encrypted email using renewed tokens (jmagne) - Bugzilla Bug #1379749 - Automatic recovery of encryption cert is not working when a token is physically damaged and a temporary token is issued (jmagne) - Bugzilla Bug #1381375 - Cert/Key recovery is successful when the cert serial number and key id on the ldap user mismatches - Bugzilla Bug #1381635 - Token format with external reg fails when op.format.externalRegAddToToken.revokeCert=true (cfu) - Bugzilla Bug #1382762 - PIN_RESET policy is not giving expected results when set on a token (jmagne) - Bugzilla Bug #1382862 - TPS token enrollment fails to setupSecureChannel when TPS and TKS security db is on fips mode. (jmagne) - Bugzilla Bug #1386257 - Changes to target.agent.approve.list parameter is not reflected in the TPS Web UI (edewata)- PKI TRAC Ticket #1527 - TPS Enrollment always goes to "ca1" (cfu) - PKI TRAC Ticket #1664 - [BUG] Add ability to disallow TPS to enroll a single user on multiple tokens. (jmagne) - PKI TRAC Ticket #2478 - pkispawn fails as it is not able to find openssl as a dependency package (mharmsen) - PKI TRAC Ticket #2483 - Unable to read an encrypted email using renewed tokens (jmagne) - PKI TRAC Ticket #2496 - Cert/Key recovery is successful when the cert serial number and key id on the ldap user mismatches (cfu) - PKI TRAC Ticket #2505 - Fix packaging duplicates of classes in multiple jar files (edewata)- Revert Patch: PKI TRAC Ticket #2449 - Unable to create system certificates in different tokens (edewata) - Resolves: rhbz #1374054 - ipa-replica-install fails setting up certificate - Restores: rhbz #1319557 - pkispawn KRA instance is failing server - Removes from Errata: rhbz #1372041 - Unable to create system certificates in different tokens- PKI TRAC Ticket #1638 - Lightweight CAs: revoke certificate on CA deletion (ftweedal) - PKI TRAC Ticket #2436 - Dogtag 10.3.6: Miscellaneous Enhancements (edewata) - PKI TRAC Ticket #2443 - Prevent deletion of host CA's keys if LWCA entry deleted (ftweedal) - PKI TRAC Ticket #2444 - Authority entry without entryUSN is skipped even if USN plugin enabled (ftweedal) - PKI TRAC Ticket #2446 - pkispawn: make subject_dn defaults unique per instance name (for shared HSM) (cfu) - PKI TRAC Ticket #2447 - CertRequestInfo has incorrect URLs (vakwetu) - PKI TRAC Ticket #2449 - Unable to create system certificates in different tokens (edewata)- PKI TRAC Ticket #1578 - Authentication Instance Id PinDirEnrollment with authType value as SslclientAuth is not working (jmagne) - PKI TRAC TIcket #2414 - pki pkcs12-cert-del shows a successfully deleted message when a wrong nickname is provided (gkapoor) - PKI TRAC Ticket #2423 - pki_ca_signing_token when not specified does not fallback to pki_token_name value (edewata) - PKI TRAC Ticket #2436 - Dogtag 10.3.6: Miscellaneous Enhancements (akasurde) - ticket remains open - PKI TRAC Ticket #2439 - Outdated deployment descriptors in upgraded server(edewata)- PKI TRAC Ticket #690 - [MAN] pki-tools man pages (mharmsen) - CMCEnroll - PKI TRAC Ticket #833 - pki user-mod fullName="" gives an error message "PKIException: LDAP error (21): error result" (edewata) - PKI TRAC Ticket #2431 - Errors noticed during ipa server upgrade. (cheimes, edewata, mharmsen) - PKI TRAC Ticket #2432 - Kra-selftest behavior is not as expected (edewata) - PKI TRAC Ticket #2436 - Dogtag 10.3.6: Miscellaneous Enhancements (edewata, mharmsen) - PKI TRAC Ticket #2437 - TPS UI: while adding certs for users from TPSUI pem format with/without header works while pkcs7 with header is not allowed (edewata) - PKI TRAC Ticket #2440 - Optional CA signing CSR for migration (edewata)- Bugzilla Bug #1366465 - Errata TPS upgrade test fails- PKI TRAC Ticket #978 - TPS connector man page: add revocation routing info (cfu) - PKI TRAC Ticket #1285 - [MAN] Apply 'generateCRMFRequest() removed from Firefox' workarounds to appropriate 'pki' man page (jmagne) - PKI TRAC Ticket #2246 - [MAN] Man Page: AuditVerify (cfu) - PKI TRAC Ticket #2381 - Throws exception while providing invalid module. (edewata) - PKI TRAC Ticket #2383 - CLI :: pki client-cert-request --extractable should accept only boolean value (edewata) - PKI TRAC Ticket #2389 - Installation: subsystem certs could have notAfter beyond CA signing cert in case of external or existing CA (cfu) - PKI TRAC Ticket #2399 - Dogtag 10.3.5: Miscellaneous Enhancements (akasurde, alee, cheimes, edewata, jmagne, mharmsen) - PKI TRAC Ticket #2401 - pkispawn calls dnsdomainname even if it does not rpm-require hostname (mharmsen) - PKI TRAC Ticket #2402 - Conflict in file ownership in pki-base and pki-server (cheimes) - PKI TRAC Ticket #2403 - Deployment problem with RESTEasy 3.0.17 (edewata) - PKI TRAC Ticket #2406 - Make starting CRL Number configurable (jmagne) - PKI TRAC Ticket #2412 - pki client-cert-import --trust option does not apply the specified trust bits (alee) - PKI TRAC Ticket #2418 - [TPS] Some template substitution didn't happen during installation (alee) - PKI TRAC Ticket #2420 - CA subsystem OSCP responder fails when LWCAs are not used (ftweedal) - PKI TRAC Ticket #2421 - Incorrect SELinux contexts Installation/Configuration (edewata) - PKI TRAC Ticket #2424 - ipa-ca-install fails on replica when IPA server is converted from CA-less to CA-full (edewata) - PKI TRAC Ticket #2428 - broken request links for CA's system certs in agent request viewing (cfu) - PKI TRAC Ticket #2430 - CA Agent certificate list is not sorted by serial number in migration case (jmagne) - PKI TRAC Ticket #2431 - Errors noticed during ipa server upgrade. (mharmsen) - PKI TRAC Ticket #2433 - Lightweight CA GET /chain returns bogus PEM data (ftweedal)- PKI TRAC Ticket #691 - [MAN] pki-server man pages (mharmsen) - PKI TRAC Ticket #1114 - [MAN] Generting Symmetric key fails with key-generate when --usages verify is passed (jmagne) - PKI TRAC Ticket #1306 - [RFE] Add granularity to token termination in TPS (cfu) - PKI TRAC Ticket #1308 - [RFE] Provide ability to perform off-card key generation for non-encryption token keys (cfu) - PKI TRAC Ticket #1405 - [MAN] Add additional HSM details to 'pki_default.cfg' & 'pkispawn' man pages (mharmsen) - PKI TRAC Ticket #1607 - [MAN] man pkispawn has inadequate description for shared vs non shared tomcat instance installation (mharmsen) - PKI TRAC Ticket #1664 - [BUG] Add ability to disallow TPS to enroll a single user on multiple tokens. (jmagne) - PKI TRAC Ticket #1711 - CLI :: pki-server ca-cert-request-find throws IOError (edewata, ftweedal) - PKI TRAC Ticket #2285 - freeipa fails to start correctly after pki-core update on upgraded system (ftweedal) - PKI TRAC Ticket #2311 - When pki_token_name=Internal, consider normalizing it to "internal" (mharmsen) - PKI TRAC Ticket #2349 - Separated TPS does not automatically receive shared secret from remote TKS (jmagne) - PKI TRAC Ticket #2364 - CLI :: pki-server ca-cert-request-show throws attribute error (ftweedal) - PKI TRAC Ticket #2368 - pki-server subsystem subcommands throws error with --help option (edewata) - PKI TRAC Ticket #2374 - KRA cloning overwrites CA signing certificate trust flags (edewata) - PKI TRAC Ticket #2380 - Pki-server instance commands throws exception while specifying invalid parameters. (edewata) - PKI TRAC Ticket #2384 - CA installation with HSM prompts for HSM password during silent installation (edewata) - PKI TRAC Ticket #2385 - Upgraded CA lacks ca.sslserver.certreq in CS.cfg (ftweedal) - PKI TRAC Ticket #2387 - Add config for default OCSP URI if none given (ftweedal) - PKI TRAC Ticket #2388 - CA creation responds 500 if certificate issuance fails (ftweedal) - PKI TRAC Ticket #2389 - Installation: subsystem certs could have notAfter beyond CA signing cert in case of external or existing CA (cfu) - PKI TRAC Ticket #2390 - Dogtag 10.3.4: Miscellaneous Enhancements (akasurde, edewata)- PKI TRAC Ticket #2373 - Fedora 25: RestEasy 3.0.6 ==> 3.0.17 breaks pki-core (ftweedal)- Updated release number to 10.3.3-1- Updated version number to 10.3.3-0.1- Provided cleaner runtime dependency separation- Updated tomcatjss version dependencies- Updated 'java', 'java-headless', and 'java-devel' dependencies to 1:1.8.0.- Updated tomcat version dependencies- Updated version number to 10.3.2-1- Updated version number to 10.3.2-0.1- Updated version number to 10.3.1-1 (to allow upgrade from 10.3.0.b1)- Updated version number to 10.3.0-1- Build for F24 beta- PKI TRAC Ticket #2255 - PKCS #12 backup does not contain trust attributes.- Updated build for F24 alpha- PKI TRAC Ticket #1625 - Allow multiple ACLs of same name (union of rules) [ftweedal] - PKI TRAC Ticket #2237 - Add CRL dist points extension to OIDMap unconditionally [edewata] - PKI TRAC Ticket #1803 - Removed unnecessary URL encoding for admin cert request. [edewata] - PKI TRAC Ticket #1742 - Added support for cloning 3rd-party CA certificates. [edewata] - PKI TRAC Ticket #1482 - Added TPS token filter dialog. [edewata] - PKI TRAC Ticket #1808 - Fixed illegal token state transition via TEMP_LOST. [edewata]- Build for F24 alpha- PKI Trac Ticket #1399 - Move java components out of pki-base- PKI TRAC Ticket #1850 - Rename DRMTool --> KRATool- PKI TRAC Ticket #1714 - mod_revocator and mod_nss dependency for tps should be removed- PKI TRAC Ticket #1623 - Runtime dependency on python-nss is missing- Updated version number to 10.3.0-0.1- Added dep on tomcat-servlet-3.1-api [Fedora 23 and later] or dep on tomcat-servlet-3.0-api [Fedora 22 and later] to pki-tools - Updated dep on tomcatjss [Fedora 23 and later]- Updated dep on policycoreutils-python-utils [Fedora 23 and later]- Updated version number to 10.2.7-0.1- Update release number for release build- Remove setup directory and remaining Perl dependencies- Remove ExcludeArch directive- Updated version number to 10.2.6-0.1- Update release number for release build- Resolves rhbz #1230970 - Errata TPS tests for rpm verification failed- Updated version number to 10.2.5-0.1- Update release number for release build- Updated nuxwdog and tomcatjss requirements (alee)- Updated version number to 10.2.4-0.1 - Added nuxwdog systemd files- Update release number for release build- Reverted version number back to 10.2.3-0.1 - Added support for Tomcat 8.- Updated version number to 10.3.0-0.1- Updated version number to 10.2.3-0.1- Update release number for release build- Updated version number to 10.2.2-0.1 - Moved web application deployment locations. - Updated Resteasy and Jackson dependencies. - Added missing python-lxml build dependency.- Update release number for release build- PKI TRAC Ticket #1187 - mod_perl should be removed from requirements for 10.2 - PKI TRAC Ticket #1205 - Outdated selinux-policy dependency. - Removed perl(XML::LibXML), perl-Crypt-SSLeay, and perl-Mozilla-LDAP runtime dependencies- Change resteasy dependencies for F22+- Ticket 1198 Bugzilla 1158410 add TLS range support to server.xml by default and upgrade (cfu) - PKI Trac Ticket #1211 - New release overwrites old source tarball (mharmsen) - up the release number to 0.2- Updated version number to 10.2.1-0.1. - Added CLIs to simplify generating user certificates - Added enhancements to KRA Python API - Added a man page for pki ca-profile commands. - Added python api docs- Disable pylint dependency for RHEL builds - Added jakarta-commons-httpclient requirements - Added tomcat version for RHEL build - Added resteasy-base-client for RHEL build- PKI TRAC Ticket #1130 - Add RHEL/CentOS conditionals to spec- Update release number for release build- PKI TRAC Ticket #1017 - Rename pki-tps-tomcat to pki-tps- Merged jmagne@redhat.com's spec file changes from the stand-alone 'pki-tps-client' package needed to build/run the native 'tpsclient' command line utility into this 'pki-core' spec file under the 'tps' package. - Original tps libararies must be built to support this native utility. - Modifies tps package from 'noarch' into 'architecture-specific' package- PKI TRAC Ticket #1127 - Remove 'pki-ra', 'pki-setup', and 'pki-silent' packages . . .- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Respin to include the applet files with the rpm install. No change to spec file needed.- Bugzilla Bug #1120045 - pki-core: Switch to java-headless (build)requires -- drop dependency on java-atk-wrapper - Removed 'java-atk-wrapper' dependency from 'pki-server'- PKI TRAC Ticket #832 - Remove legacy 'systemctl' files . . .- Update rawhide build- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- Use Requires: java-headless rebuild (#1067528)- Added option to build without server packages. - Replaced Jettison with Jackson. - Added python-nss build requirement - Bugzilla Bug #1057959 - pkispawn requires policycoreutils-python - TRAC Ticket #840 - pkispawn requires policycoreutils-python - Updated requirements for resteasy - Added template files for archive, retrieve and generate key requests to the client package.- Trac Ticket 788 - Clean up spec files - Update release number for release build - Updated requirements for resteasy- Change release number for beta build- Updated requirements for tomcat- Removed additional /var/run, /var/lock references.- Removed delivery of /var/lock and /var/run directories for fedora 20.- Moved Tomcat-based TPS into pki-core.- Listed new packages required during build, due to issues reported by pylint. - Packages added: python-requests, python-ldap, libselinux-python, policycoreutils-python- Added pylint scan to the build process.- Added man pages for upgrade tools.- Cleaned up the code to install man pages.- Reorganized deployment tools.- Bugzilla Bug 973224 - resteasy-base must be split into subpackages to simplify dependencies- Updated dependencies to Java 1.7.- TRAC Ticket 606 - add restart / start at boot info to pkispawn man page - TRAC Ticket 610 - Document limitation in using GUI install - TRAC Ticket 629 - Package ownership of '/usr/share/pki/etc/' directory- Change release number for 10.1 development- Fixed incorrect JNI_JAR_DIR.- TRAC Ticket 605 Junit internal function used in TestRunner, breaks F19 build- TRAC Ticket 604 Added fallback methods for pkispawn tests- Added default pki.conf in /usr/share/pki/etc - Create upgrade tracker on install and remove it on uninstall- Change release number for official release.- Added %pretrans script for f19 - Added java-atk-wrapper dependency- Added pki-server-upgrade script and pki.server module. - Call upgrade scripts in %post for pki-base and pki-server.- Added dependency on commons-io.- Add /var/log/pki and /var/lib/pki directories- Run pki-upgrade on post server installation.- Added dependency on python-lxml.- Added pki-upgrade script.- Updated version number to 10.0.2-0.1.- Renamed base/deploy to base/server. - Moved pki.conf into pki-base. - Removed redundant pki/server folder declaration.- Removed jython dependency- Added minimum python-requests version.- Bugzilla Bug #919476 - pkispawn crashes due to dangling symlink to jss4.jar- Added dependency on python-requests. - Reorganized Python module packaging.- Added dependency on python-ldap.- TRAC Ticket #517 - Clean up theme dependencies - TRAC Ticket #518 - Remove UI dependencies from pkispawn . . .- Removed runtime dependency on 'pki-server-theme' to resolve Bugzilla Bug #916134 - unresolved dependency in pki-server: pki-server-theme- TRAC Ticket 214 - Missing error description for duplicate user - TRAC Ticket 213 - Add nonces for cert revocation - TRAC Ticket 367 - pkidestroy does not remove connector - TRAC Ticket #430 - License for 3rd party code - Bugzilla Bug 839426 - [RFE] ECC CRL support for OCSP - Fix spec file to allow f17 to work with latest tomcatjss - TRAC Ticket 466 - Increase root CA validity to 20 years - TRAC Ticket 469 - Fix tomcatjss issue in spec files - TRAC Ticket 468 - pkispawn throws exception - TRAC Ticket 191 - Mapping HTTP Exceptions to HTTP error codes - TRAC Ticket 271 - Dogtag 10: Fix 'status' command in 'pkidaemon' . . . - TRAC Ticket 437 - Make admin cert p12 file location configurable - TRAC Ticket 393 - pkispawn fails when selinux is disabled - Punctuation and formatting changes in man pages - Revert to using default config file for pkidestroy - Hardcode setting of resteasy-lib for instance - TRAC Ticket 436 - Interpolation for pki_subsystem - TRAC Ticket 433 - Interpolation for paths - TRAC Ticket 435 - Identical instance id and instance name - TRAC Ticket 406 - Replace file dependencies with package dependencies- TRAC Ticket #430 - License for 3rd party code- TRAC Ticket #469 - Dogtag 10: Fix tomcatjss issue in pki-core.spec and dogtag-pki.spec . . . - TRAC Ticket #468 - pkispawn throws exception- Replaced file dependencies with package dependencies- Updated man pages- Update to official release for rc1- TRAC Ticket #315 - Man pages for pkispawn/pkidestroy. - Added place-holders for 'pki.1' and 'pki_default.cfg.5' man pages.- Added system-wide configuration /etc/pki/pki.conf. - Removed redundant lines in %files.- Moved default deployment configuration to /etc/pki.- Cleaned up spec file to provide only support rhel 7+, f17+ - Added resteasy-base dependency for rhel 7 - Update cmake version- Update release to b3- Removed dependency on CA, KRA, OCSP, TKS theme packages.- Renamed pki-common-theme to pki-server-theme.- TRAC Ticket #395 - Dogtag 10: Add a Tomcat 7 runtime requirement to 'pki-server'- Update release to b2- TRAC Ticket #350 - Dogtag 10: Remove version numbers from PKI jar files . . .- Added Obsoletes for pki-selinux- Remove build of pki-selinux for f18, use system policy instead- Update required tomcatjss version - Added net-tools dependency- Update selinux-policy version to fix error from latest policy changes- Fix typo in selinux policy versions- Added build requires for correct version of selinux-policy-devel- Update release to b1- Merged pki-silent into pki-server.- Renamed "shared" folder to "server".- Added required selinux versions for new policy.- Added Provides to packages replacing obsolete packages.- Update release to a2- Modified CMake to use RPM version number- Added VERSION file- Merged pki-setup into pki-server- Added Conflicts for IPA 2.X - Added build requires for zip to work around mock problem- TRAC Ticket #312 - Dogtag 10: Automatically restart any running instances upon RPM "update" . . . - TRAC Ticket #317 - Dogtag 10: Move "pkispawn"/"pkidestroy" from /usr/bin to /usr/sbin . . .- Fixed pki-server to include everything in shared dir.- Added build dependency on redhat-rpm-config.- Merged Javadoc packages.- Added pki-tomcat.jar.- Moved webapp creation code into pkispawn.- Split pki-client.jar into pki-certsrv.jar and pki-tools.jar.- Merged pki-native-tools and pki-java-tools into pki-tools. - Modified pki-server to depend on pki-tools.- Split pki-common into pki-base and pki-server. - Merged pki-util into pki-base. - Merged pki-deploy into pki-server.- Updated release of 'tomcatjss' to rely on Tomcat 7 for Fedora 17 - Changed Dogtag 10 build-time and runtime requirements for 'pki-deploy' - Altered PKI Package Dependency Chain (top-to-bottom): pki-ca, pki-kra, pki-ocsp, pki-tks --> pki-deploy --> pki-common- Added pki-client.jar.- Merged pki-jndi-realm.jar into pki-cmscore.jar.- PKI TRAC Task #254 - Dogtag 10: Fix spec file to build successfully via mock on Fedora 17 . . .- Moved 'pki-jndi-real.jar' link from 'tomcat6' to 'tomcat' (Tomcat 7)- Updated release of 'tomcatjss' to rely on Tomcat 7 for Fedora 18- Added CLI for REST services- Integration of Tomcat 7 - Addition of centralized 'pki-tomcatd' systemd functionality to the PKI Deployment strategy - Removal of 'pki_flavor' attribute- BZ 813075 - selinux denial for file size access- Bug 745278 - [RFE] ECC encryption keys cannot be archived- Replaced candlepin-deps with resteasy- Added option to build without Javadoc- BZ 802396 - Change location of TOMCAT_LOG to match tomcat6 changes - Corrected patch selected for selinux f17 rules- Corrected 'junit' dependency check- Initial attempt at PKI deployment framework described in 'http://pki.fedoraproject.org/wiki/PKI_Instance_Deployment'.- Added support for pki-jndi-realm in tomcat6 in pki-common and pki-kra. - Ticket #69.- For 'mock' purposes, removed platform-specific logic from around the 'patch' files so that ALL 'patch' files will be included in the SRPM.- Removed dependency on OSUtil.- 'pki-selinux' - Added platform-dependent patches for SELinux component - Bugzilla Bug #739708 - Selinux fix for ephemeral ports (F16) - Bugzilla Bug #795966 - pki-selinux policy is kind of a mess (F17)- Added dependency on Apache Commons Codec.- Add '-DSYSTEMD_LIB_INSTALL_DIR' override flag to 'cmake' to address changes in fundamental path structure in Fedora 17 - 'pki-setup' - Hard-code Perl dependencies to protect against bugs such as Bugzilla Bug #772699 - Adapt perl and python fileattrs to changed file 5.10 magics - 'pki-selinux' - Bugzilla Bug #795966 - pki-selinux policy is kind of a mess- Integrated 'pki-kra' into 'pki-core' - Integrated 'pki-ocsp' into 'pki-core' - Integrated 'pki-tks' into 'pki-core' - Bugzilla Bug #788787 - added 'junit'/'junit4' build-time requirements- Updated package version number- Added resteasy-jettison-provider-2.3-RC1.jar to pki-setup- Added JUnit tests- 'pki-setup' - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - Bugzilla Bug #737122 - DRM: during archiving and recovering, wrapping unwrapping keys should be done in the token (cfu) - 'pki-java-tools' - 'pki-common' - Bugzilla Bug #744797 - KRA key recovery (retrieve pkcs#12) fails after the in-place upgrade( CS 8.0->8.1) (cfu) - 'pki-selinux' - 'pki-ca' - Bugzilla Bug #746367 - Typo in the profile name. (jmagne) - Bugzilla Bug #737122 - DRM: during archiving and recovering, wrapping unwrapping keys should be done in the token (cfu) - Bugzilla Bug #749927 - Java class conflicts using Java 7 in Fedora 17 (rawhide) . . . (mharmsen) - Bugzilla Bug #749945 - Installation error reported during CA, DRM, OCSP, and TKS package installation . . . (mharmsen) - 'pki-silent'- Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . . (mharmsen) - Bugzilla Bug #699809 - Convert CS to use systemd (alee) - 'pki-setup' - Bugzilla Bug #730146 - SSL handshake picks non-FIPS ciphers in FIPS mode (cfu) - Bugzilla Bug #737192 - Need script to upgrade proxy configuration (alee) - 'pki-symkey' - Bugzilla Bug #730162 - TPS/TKS token enrollment failure in FIPS mode (hsm+NSS). (jmagne) - 'pki-native-tools' - Bugzilla Bug #730801 - Coverity issues in native-tools area (awnuk) - Bugzilla Bug #730146 - SSL handshake picks non-FIPS ciphers in FIPS mode (cfu) - 'pki-util' - Bugzilla Bug #730146 - SSL handshake picks non-FIPS ciphers in FIPS mode (cfu) - 'pki-java-tools' - 'pki-common' - Bugzilla Bug #730146 - SSL handshake picks non-FIPS ciphers in FIPS mode (cfu) - Bugzilla Bug #737218 - Incorrect request attribute name matching ignores request attributes during request parsing. (awnuk) - Bugzilla Bug #730162 - TPS/TKS token enrollment failure in FIPS mode (hsm+NSS). (jmagne) - 'pki-selinux' - Bugzilla Bug #739708 - pki-selinux lacks rules in F16 (alee) - 'pki-ca' - Bugzilla Bug #712931 - CS requires too many ports to be open in the FW (alee) - Bugzilla Bug #730146 - SSL handshake picks non-FIPS ciphers in FIPS mode (cfu) - 'pki-silent' - Bugzilla Bug #739201 - pkisilent does not take arch into account as Java packages migrated to arch-dependent directories (mharmsen)- 'pki-setup' - Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . . - 'pki-symkey' - Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . . - 'pki-native-tools' - 'pki-util' - Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . . - 'pki-java-tools' - Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . . - 'pki-common' - Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . . - 'pki-selinux' - 'pki-ca' - Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . . - Bugzilla Bug #699809 - Convert CS to use systemd (alee) - 'pki-silent' - Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . .- 'pki-setup' - Bugzilla Bug #699809 - Convert CS to use systemd (alee) - 'pki-ca' - Bugzilla Bug #699809 - Convert CS to use systemd (alee) - 'pki-common' - Bugzilla Bug #699809 - Convert CS to use systemd (alee)- 'pki-setup' - Bugzilla Bug #712931 - CS requires too many ports to be open in the FW (alee) - 'pki-symkey' - 'pki-native-tools' - Bugzilla Bug #717643 - Fopen without NULL check and other Coverity issues (awnuk) - Bugzilla Bug #730801 - Coverity issues in native-tools area (awnuk) - 'pki-util' - 'pki-java-tools' - 'pki-common' - Bugzilla Bug #700522 - pki tomcat6 instances currently running unconfined, allow server to come up when selinux disabled (alee) - Bugzilla Bug #731741 - some CS.cfg nickname parameters not updated correctly when subsystem cloned (using hsm) (alee) - Bugzilla Bug #712931 - CS requires too many ports to be open in the FW (alee) - 'pki-selinux' - Bugzilla Bug #712931 - CS requires too many ports to be open in the FW (alee) - 'pki-ca' - Bugzilla Bug #712931 - CS requires too many ports to be open in the FW (alee) - 'pki-silent'- 'pki-setup' - Bugzilla Bug #689909 - Dogtag installation under IPA takes too much time - remove the inefficient sleeps (alee) - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - 'pki-java-tools' - Bugzilla Bug #724861 - DRMTool: fix duplicate "dn:" records by renumbering "cn=" (mharmsen) - 'pki-common' - Bugzilla Bug #717041 - Improve escaping of some enrollment inputs like (jmagne, awnuk) - Bugzilla Bug #689909 - Dogtag installation under IPA takes too much time - remove the inefficient sleeps (alee) - Bugzilla Bug #708075 - Clone installation does not work over NAT (alee) - Bugzilla Bug #726785 - If replication fails while setting up a clone it will wait forever (alee) - Bugzilla Bug #728332 - xml output has changed on cert requests (awnuk) - Bugzilla Bug #700505 - pki tomcat6 instances currently running unconfined (alee) - 'pki-selinux' - Bugzilla Bug #700505 - pki tomcat6 instances currently running unconfined (alee) - 'pki-ca' - Bugzilla Bug #728605 - RFE: increase default validity from 6mo to 2yrs in IPA profile (awnuk) - 'pki-silent' - Bugzilla Bug #689909 - Dogtag installation under IPA takes too much time - remove the inefficient sleeps (alee)- 'pki-setup' - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - Bugzilla Bug #719007 - Key Constraint keyParameter being ignored using an ECC CA to generate ECC certs from CRMF. (jmagne) - Bugzilla Bug #716307 - rhcs80 - DER shall not include an encoding for any component value which is equal to its default value (alee) - 'pki-java-tools' - 'pki-common' - Bugzilla Bug #720510 - Console: Adding a certificate into nethsm throws Token not found error. (jmagne) - Bugzilla Bug #719007 - Key Constraint keyParameter being ignored using an ECC CA to generate ECC certs from CRMF. (jmagne) - Bugzilla Bug #716307 - rhcs80 - DER shall not include an encoding for any component value which is equal to its default value (alee) - Bugzilla Bug #722989 - Registering an agent when a subsystem is created - does not log AUTHZ_SUCCESS event. (alee) - 'pki-selinux' - 'pki-ca' - Bugzilla Bug #719113 - Add client usage flag to caIPAserviceCert (awnuk) - 'pki-silent'- Updated release of 'jss' - Updated release of 'tomcatjss' for Fedora 15 - 'pki-setup' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #693815 - /var/log/tomcat6/catalina.out owned by pkiuser (jdennis) - Bugzilla Bug #694569 - parameter used by pkiremove not updated (alee) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen) - 'pki-symkey' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen) - 'pki-native-tools' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #717765 - TPS configuration: logging into security domain from tps does not work with clientauth=want. (alee) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen) - 'pki-util' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen) - 'pki-java-tools' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #532548 - Tool to do DRM re-key (mharmsen) - Bugzilla Bug #532548 - Tool to do DRM re-key (config file and record processing) (mharmsen) - Bugzilla Bug #532548 - Tool to do DRM re-key (tweaks) (mharmsen) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen) - 'pki-common' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #695403 - Editing signedaudit or transaction, system logs throws 'Invalid protocol' for OCSP subsystems (alee) - Bugzilla Bug #694569 - parameter used by pkiremove not updated (alee) - Bugzilla Bug #695015 - Serial No. of a revoked certificate is not populated in the CA signedAudit messages (alee) - Bugzilla Bug #694143 - CA Agent not returning specified request (awnuk) - Bugzilla Bug #695015 - Serial No. of a revoked certificate is not populated in the CA signedAudit messages (jmagne) - Bugzilla Bug #698885 - Race conditions during IPA installation (alee) - Bugzilla Bug #704792 - CC_LAB_EVAL: CA agent interface: SubjectID=$Unidentified$ fails audit evaluation (jmagne) - Bugzilla Bug #705914 - SCEP mishandles nicknames when processing subsequent SCEP requests. (awnuk) - Bugzilla Bug #661142 - Verification should fail when a revoked certificate is added. (jmagne) - Bugzilla Bug #707416 - CC_LAB_EVAL: Security Domain: missing audit msgs for modify/add (alee) - Bugzilla Bug #707416 - additional audit messages for GetCookie (alee) - Bugzilla Bug #707607 - Published certificate summary has list of non-published certificates with succeeded status (jmagne) - Bugzilla Bug #717813 - EV_AUDIT_LOG_SHUTDOWN audit log not generated for tps and ca on server shutdown (jmagne) - Bugzilla Bug #697939 - DRM signed audit log message - operation should be read instead of modify (jmagne) - Bugzilla Bug #718427 - When audit log is full, server continue to function. (alee) - Bugzilla Bug #718607 - CC_LAB_EVAL: No AUTH message is generated in CA's signedaudit log when a directory based user enrollment is performed (jmagne) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen) - 'pki-selinux' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #720503 - RA and TPS require additional SELinux permissions to run in "Enforcing" mode (alee) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen) - 'pki-ca' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #693815 - /var/log/tomcat6/catalina.out owned by pkiuser (jdennis) - Bugzilla Bug #699837 - service command is not fully backwards compatible with Dogtag pki subsystems (mharmsen) - Bugzilla Bug #649910 - Console: an auditor or agent can be added to an administrator group. (jmagne) - Bugzilla Bug #707416 - CC_LAB_EVAL: Security Domain: missing audit msgs for modify/add (alee) - Bugzilla Bug #716269 - make ra authenticated profiles non-visible on ee pages (alee) - Bugzilla Bug #718621 - CC_LAB_EVAL: PRIVATE_KEY_ARCHIVE_REQUEST occurs for a revocation invoked by EE user (awnuk) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen) - 'pki-silent' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen)- 'pki-setup' - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - 'pki-java-tools' - Added 'DRMTool.cfg' configuration file to inventory - 'pki-common' - 'pki-selinux' - 'pki-ca' - 'pki-silent'- 'pki-setup' - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - 'pki-java-tools' - Bugzilla Bug #532548 - Tool to do DRM re-key - 'pki-common' - 'pki-selinux' - 'pki-ca' - 'pki-silent'- 'pki-setup' - Bugzilla Bug #693815 - /var/log/tomcat6/catalina.out owned by pkiuser - Bugzilla Bug #694569 - parameter used by pkiremove not updated - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - 'pki-java-tools' - 'pki-common' - Bugzilla Bug #695403 - Editing signedaudit or transaction, system logs throws 'Invalid protocol' for OCSP subsystems - Bugzilla Bug #694569 - parameter used by pkiremove not updated - Bugzilla Bug #695015 - Serial No. of a revoked certificate is not populated in the CA signedAudit messages - Bugzilla Bug #694143 - CA Agent not returning specified request - Bugzilla Bug #695015 - Serial No. of a revoked certificate is not populated in the CA signedAudit messages - Bugzilla Bug #698885 - Race conditions during IPA installation - 'pki-selinux' - 'pki-ca' - Bugzilla Bug #693815 - /var/log/tomcat6/catalina.out owned by pkiuser - Bugzilla Bug #699837 - service command is not fully backwards compatible with Dogtag pki subsystems - 'pki-silent'- Bugzilla Bug #695157 - Auditverify on TPS audit log throws error.- Bugzilla Bug #690950 - Update Dogtag Packages for Fedora 15 (beta) - Bugzilla Bug #693327 - Missing requires: tomcatjss - 'pki-setup' - Bugzilla Bug #690626 - pkiremove removes the registry entry for all instances on a machine - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - 'pki-java-tools' - Bugzilla Bug #689453 - CRMFPopClient request to CA's unsecure port throws file not found exception. - 'pki-common' - Bugzilla Bug #692990 - Audit log messages needed to match CC doc: DRM Recovery audit log messages - 'pki-selinux' - 'pki-ca' - 'pki-silent'- Bugzilla Bug #693327 - Missing requires: tomcatjss- Bugzilla Bug #690950 - Update Dogtag Packages for Fedora 15 (beta) - Require "jss >= 4.2.6-15" as a build and runtime requirement - Require "tomcatjss >= 2.1.1" as a build and runtime requirement for Fedora 15 and later platforms - 'pki-setup' - Bugzilla Bug #688287 - Add "deprecation" notice regarding using "shared ports" in pkicreate -help . . . - Bugzilla Bug #688251 - Dogtag installation under IPA takes too much time - SELinux policy compilation - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - 'pki-java-tools' - Bugzilla Bug #689501 - ExtJoiner tool fails to join the multiple extensions - 'pki-common' - Bugzilla Bug #683581 - CA configuration with ECC(Default EC curve-nistp521) CA fails with 'signing operation failed' - Bugzilla Bug #689662 - ocsp publishing needs to be re-enabled on the EE port - 'pki-selinux' - Bugzilla Bug #684871 - ldaps selinux link change - 'pki-ca' - Bugzilla Bug #683581 - CA configuration with ECC(Default EC curve-nistp521) CA fails with 'signing operation failed' - Bugzilla Bug #684381 - CS.cfg specifies incorrect type of comments - Bugzilla Bug #689453 - CRMFPopClient request to CA's unsecure port throws file not found exception.(profile and CS.cfg only) - 'pki-silent'- Bugzilla Bug #688763 - Rebase updated Dogtag Packages for Fedora 15 (alpha) - Bugzilla Bug #676182 - IPA installation failing - Fails to create CA instance - Bugzilla Bug #675742 - Profile caIPAserviceCert Not Found - 'pki-setup' - Bugzilla Bug #678157 - uninitialized variable warnings from Perl - Bugzilla Bug #679574 - Velocity fails to load all dependent classes - Bugzilla Bug #680420 - xml-commons-apis.jar dependency - Bugzilla Bug #682013 - pkisilent needs xml-commons-apis.jar in it's classpath - Bugzilla Bug #673508 - CS8 64 bit pkicreate script uses wrong library name for SafeNet LunaSA - 'pki-common' - Bugzilla Bug #673638 - Installation within IPA hangs - Bugzilla Bug #678715 - netstat loop fixes needed - Bugzilla Bug #673609 - CC: authorize() call needs to be added to getStats servlet - 'pki-selinux' - Bugzilla Bug #674195: SELinux error message thrown during token enrollment - 'pki-ca' - Bugzilla Bug #673638 - Installation within IPA hangs - Bugzilla Bug #673609 - CC: authorize() call needs to be added to getStats servlet - Bugzilla Bug #676330 - init script cannot start service - 'pki-silent' - Bugzilla Bug #682013 - pkisilent needs xml-commons-apis.jar in it's classpath- 'pki-common' - Bugzilla Bug #676051 - IPA installation failing - Fails to create CA instance - Bugzilla Bug #676182 - IPA installation failing - Fails to create CA instance- 'pki-common' - Bugzilla Bug #674894 - ipactl restart : an annoy output line - Bugzilla Bug #675179 - ipactl restart : an annoy output line- Bugzilla Bug #673233 - Rebase pki-core to pick the latest features and fixes - 'pki-setup' - Bugzilla Bug #673638 - Installation within IPA hangs - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - 'pki-java-tools' - Bugzilla Bug #673614 - CC: Review of cryptographic algorithms provided by 'netscape.security.provider' package - 'pki-common' - Bugzilla Bug #672291 - CA is not publishing certificates issued using "Manual User Dual-Use Certificate Enrollment" - Bugzilla Bug #670337 - CA Clone configuration throws TCP connection error. - Bugzilla Bug #504056 - Completed SCEP requests are assigned to the "begin" state instead of "complete". - Bugzilla Bug #504055 - SCEP requests are not properly populated - Bugzilla Bug #564207 - Searches for completed requests in the agent interface returns zero entries - Bugzilla Bug #672291 - CA is not publishing certificates issued using "Manual User Dual-Use Certificate Enrollment" - - Bugzilla Bug #673614 - CC: Review of cryptographic algorithms provided by 'netscape.security.provider' package - Bugzilla Bug #672920 - CA console: adding policy to a profile throws 'Duplicate policy' error in some cases. - Bugzilla Bug #673199 - init script returns control before web apps have started - Bugzilla Bug #674917 - Restore identification of Tomcat-based PKI subsystem instances - 'pki-selinux' - 'pki-ca' - Bugzilla Bug #504013 - sscep request is rejected due to authentication error if submitted through one time pin router certificate enrollment. - Bugzilla Bug #672111 - CC doc: certServer.usrgrp.administration missing information - Bugzilla Bug #583825 - CC: Obsolete servlets to be removed from web.xml as part of CC interface review - Bugzilla Bug #672333 - Creation of RA agent fails in IPA installation - Bugzilla Bug #674917 - Restore identification of Tomcat-based PKI subsystem instances - 'pki-silent' - Bugzilla Bug #673614 - CC: Review of cryptographic algorithms provided by 'netscape.security.provider' package- Bugzilla Bug #656661 - Please Update Spec File to use 'ghost' on files in /var/run and /var/lock- 'pki-symkey' - Bugzilla Bug #671265 - pki-symkey jar version incorrect - 'pki-common' - Bugzilla Bug #564207 - Searches for completed requests in the agent interface returns zero entries- Allow 'pki-native-tools' to be installed independently of 'pki-setup' - Removed explicit 'pki-setup' requirement from 'pki-ca' (since it already requires 'pki-common') - 'pki-setup' - Bugzilla Bug #223343 - pkicreate: should add 'pkiuser' to nfast group - Bugzilla Bug #629377 - Selinux errors during pkicreate CA, KRA, OCSP and TKS. - Bugzilla Bug #555927 - rhcs80 - AgentRequestFilter servlet and port fowarding for agent services - Bugzilla Bug #632425 - Port to tomcat6 - Bugzilla Bug #606946 - Convert Native Tools to use ldapAPI from OpenLDAP instead of the Mozldap - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #658926 - org.apache.commons.lang class not found on F13 - Bugzilla Bug #661514 - CMAKE build system requires rules to make javadocs - Bugzilla Bug #665388 - jakarta-* jars have been renamed to apache-*, pkicreate fails Fedora 14 and above - Bugzilla Bug #23346 - Two conflicting ACL list definitions in source repository - Bugzilla Bug #656733 - Standardize jar install location and jar names - 'pki-symkey' - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #644056 - CS build contains warnings - 'pki-native-tools' - template change - Bugzilla Bug #606946 - Convert Native Tools to use ldapAPI from OpenLDAP instead of the Mozldap - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #644056 - CS build contains warnings - 'pki-util' - Bugzilla Bug #615814 - rhcs80 - profile policyConstraintsCritical cannot be set to true - Bugzilla Bug #224945 - javadocs has missing descriptions, contains empty packages - Bugzilla Bug #621337 - Limit the received senderNonce value to 16 bytes. - Bugzilla Bug #621338 - Include a server randomly-generated 16 byte senderNonce in all signed SCEP responses. - Bugzilla Bug #621327 - Provide switch disabling algorithm downgrade attack in SCEP - Bugzilla Bug #621334 - Provide an option to set default hash algorithm for signing SCEP response messages. - Bugzilla Bug #635033 - At installation wizard selecting key types other than CA's signing cert will fail - Bugzilla Bug #645874 - rfe ecc - add ecc curve name support in JSS and CS interface - Bugzilla Bug #488253 - com.netscape.cmsutil.ocsp.BasicOCSPResponse ASN.1 encoding/decoding is broken - Bugzilla Bug #551410 - com.netscape.cmsutil.ocsp.TBSRequest ASN.1 encoding/decoding is incomplete - Bugzilla Bug #550331 - com.netscape.cmsutil.ocsp.ResponseData ASN.1 encoding/decoding is incomplete - Bugzilla Bug #623452 - rhcs80 pkiconsole profile policy editor limit policy extension to 5 only - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #651977 - turn off ssl2 for java servers (server.xml) - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #661514 - CMAKE build system requires rules to make javadocs - Bugzilla Bug #658188 - remove remaining references to tomcat5 - Bugzilla Bug #656733 - Standardize jar install location and jar names - Bugzilla Bug #223319 - Certificate Status inconsistency between token db and CA - Bugzilla Bug #531137 - RHCS 7.1 - Running out of Java Heap Memory During CRL Generation - 'pki-java-tools' - Bugzilla Bug #224945 - javadocs has missing descriptions, contains empty packages - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #659004 - CC: AuditVerify hardcoded with SHA-1 - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #661514 - CMAKE build system requires rules to make javadocs - Bugzilla Bug #662156 - HttpClient is hard-coded to handle only up to 5000 bytes - Bugzilla Bug #656733 - Standardize jar install location and jar names - 'pki-common' - Bugzilla Bug #583822 - CC: ACL issues from CA interface CC doc review - Bugzilla Bug #623745 - SessionTimer with LDAPSecurityDomainSessionTable started before configuration completed - Bugzilla Bug #620925 - CC: auditor needs to be able to download audit logs in the java subsystems - Bugzilla Bug #615827 - rhcs80 - profile policies need more than 5 policy mappings (seem hardcoded) - Bugzilla Bug #224945 - javadocs has missing descriptions, contains empty packages - Bugzilla Bug #548699 - subCA's admin certificate should be generated by itself - Bugzilla Bug #621322 - Provide switch disabling SCEP support in CA - Bugzilla Bug #563386 - rhcs80 ca crash on invalid inputs to profile caAgentServerCert (null cert_request) - Bugzilla Bug #621339 - SCEP one-time PIN can be used an unlimited number of times - Bugzilla Bug #583825 - CC: Obsolete servlets to be removed from web.xml as part of CC interface review - Bugzilla Bug #629677 - TPS: token enrollment fails. - Bugzilla Bug #621350 - Unauthenticated user can decrypt a one-time PIN in a SCEP request - Bugzilla Bug #503838 - rhcs71-80 external publishing ldap connection pools not reliable - improve connections or discovery - Bugzilla Bug #629769 - password decryption logs plain text password - Bugzilla Bug #583823 - CC: Auditing issues found as result of CC - interface review - Bugzilla Bug #632425 - Port to tomcat6 - Bugzilla Bug #586700 - OCSP Server throws fatal error while using OCSP console for renewing SSL Server certificate. - Bugzilla Bug #621337 - Limit the received senderNonce value to 16 bytes. - Bugzilla Bug #621338 - Include a server randomly-generated 16 byte senderNonce in all signed SCEP responses. - Bugzilla Bug #607380 - CC: Make sure Java Console can configure all security relevant config items - Bugzilla Bug #558100 - host challenge of the Secure Channel needs to be generated on TKS instead of TPS. - Bugzilla Bug #489342 - com.netscape.cms.servlet.common.CMCOutputTemplate.java doesn't support EC - Bugzilla Bug #630121 - OCSP responder lacking option to delete or disable a CA that it serves - Bugzilla Bug #634663 - CA CMC response default hard-coded to SHA1 - Bugzilla Bug #621327 - Provide switch disabling algorithm downgrade attack in SCEP - Bugzilla Bug #621334 - Provide an option to set default hash algorithm for signing SCEP response messages. - Bugzilla Bug #635033 - At installation wizard selecting key types other than CA's signing cert will fail - Bugzilla Bug #621341 - Add CA support for new SCEP key pair dedicated for SCEP signing and encryption. - Bugzilla Bug #223336 - ECC: unable to clone a ECC CA - Bugzilla Bug #539781 - rhcs 71 - CRLs Partitioned by Reason Code - onlySomeReasons ? - Bugzilla Bug #637330 - CC feature: Key Management - provide signature verification functions (JAVA subsystems) - Bugzilla Bug #223313 - should do random generated IV param for symmetric keys - Bugzilla Bug #555927 - rhcs80 - AgentRequestFilter servlet and port fowarding for agent services - Bugzilla Bug #630176 - Improve reliability of the LdapAnonConnFactory - Bugzilla Bug #524916 - ECC key constraints plug-ins should be based on ECC curve names (not on key sizes). - Bugzilla Bug #516632 - RHCS 7.1 - CS Incorrectly Issuing Multiple Certificates from the Same Request - Bugzilla Bug #648757 - expose and use updated cert verification function in JSS - Bugzilla Bug #638242 - Installation Wizard: at SizePanel, fix selection of signature algorithm; and for ECC curves - Bugzilla Bug #451874 - RFE - Java console - Certificate Wizard missing e.c. support - Bugzilla Bug #651040 - cloning shoud not include sslserver - Bugzilla Bug #542863 - RHCS8: Default cert audit nickname written to CS.cfg files imcomplete when the cert is stored on a hsm - Bugzilla Bug #360721 - New Feature: Profile Integrity Check . . . - Bugzilla Bug #651916 - kra and ocsp are using incorrect ports to talk to CA and complete configuration in DonePanel - Bugzilla Bug #642359 - CC Feature - need to verify certificate when it is added - Bugzilla Bug #653713 - CC: setting trust on a CIMC cert requires auditing - Bugzilla Bug #489385 - references to rhpki - Bugzilla Bug #499494 - change CA defaults to SHA2 - Bugzilla Bug #623452 - rhcs80 pkiconsole profile policy editor limit policy extension to 5 only - Bugzilla Bug #649910 - Console: an auditor or agent can be added to an administrator group. - Bugzilla Bug #632425 - Port to tomcat6 - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #651977 - turn off ssl2 for java servers (server.xml) - Bugzilla Bug #653576 - tomcat5 does not always run filters on servlets as expected - Bugzilla Bug #642357 - CC Feature- Self-Test plugins only check for validity - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #659004 - CC: AuditVerify hardcoded with SHA-1 - Bugzilla Bug #661196 - ECC(with nethsm) subca configuration fails with Key Type RSA Not Matched despite using ECC key pairs for rootCA & subCA. - Bugzilla Bug #661889 - The Servlet TPSRevokeCert of the CA returns an error to TPS even if certificate in question is already revoked. - Bugzilla Bug #663546 - Disable the functionalities that are not exposed in the console - Bugzilla Bug #661514 - CMAKE build system requires rules to make javadocs - Bugzilla Bug #658188 - remove remaining references to tomcat5 - Bugzilla Bug #649343 - Publishing queue should recover from CA crash. - Bugzilla Bug #491183 - rhcs rfe - add rfc 4523 support for pkiUser and pkiCA, obsolete 2252 and 2256 - Bugzilla Bug #640710 - Current SCEP implementation does not support HSMs - Bugzilla Bug #656733 - Standardize jar install location and jar names - Bugzilla Bug #661142 - Verification should fail when a revoked certificate is added - Bugzilla Bug #642741 - CS build uses deprecated functions - Bugzilla Bug #670337 - CA Clone configuration throws TCP connection error - Bugzilla Bug #662127 - CC doc Error: SignedAuditLog expiration time interface is no longer available through console - 'pki-selinux' - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #667153 - store nuxwdog passwords in kernel ring buffer - selinux changes - 'pki-ca' - Bugzilla Bug #583822 - CC: ACL issues from CA interface CC doc review - Bugzilla Bug #620925 - CC: auditor needs to be able to download audit logs in the java subsystems - Bugzilla Bug #621322 - Provide switch disabling SCEP support in CA - Bugzilla Bug #583824 - CC: Duplicate servlet mappings found as part of CC interface doc review - Bugzilla Bug #621602 - pkiconsole: Click on 'Publishing' option with admin privilege throws error "You are not authorized to perform this operation". - Bugzilla Bug #583825 - CC: Obsolete servlets to be removed from web.xml as part of CC interface review - Bugzilla Bug #583823 - CC: Auditing issues found as result of CC - interface review - Bugzilla Bug #519291 - Deleting a CRL Issuing Point after edits throws 'Internal Server Error'. - Bugzilla Bug #586700 - OCSP Server throws fatal error while using OCSP console for renewing SSL Server certificate. - Bugzilla Bug #621337 - Limit the received senderNonce value to 16 bytes. - Bugzilla Bug #621338 - Include a server randomly-generated 16 byte senderNonce in all signed SCEP responses. - Bugzilla Bug #558100 - host challenge of the Secure Channel needs to be generated on TKS instead of TPS. - Bugzilla Bug #630121 - OCSP responder lacking option to delete or disable a CA that it serves - Bugzilla Bug #634663 - CA CMC response default hard-coded to SHA1 - Bugzilla Bug #621327 - Provide switch disabling algorithm downgrade attack in SCEP - Bugzilla Bug #621334 - Provide an option to set default hash algorithm for signing SCEP response messages. - Bugzilla Bug #539781 - rhcs 71 - CRLs Partitioned by Reason Code - onlySomeReasons ? - Bugzilla Bug #637330 - CC feature: Key Management - provide signature verification functions (JAVA subsystems) - Bugzilla Bug #555927 - rhcs80 - AgentRequestFilter servlet and port fowarding for agent services - Bugzilla Bug #524916 - ECC key constraints plug-ins should be based on ECC curve names (not on key sizes). - Bugzilla Bug #516632 - RHCS 7.1 - CS Incorrectly Issuing Multiple Certificates from the Same Request - Bugzilla Bug #638242 - Installation Wizard: at SizePanel, fix selection of signature algorithm; and for ECC curves - Bugzilla Bug #529945 - (Instructions and sample only) CS 8.0 GA release -- DRM and TKS do not seem to have CRL checking enabled - Bugzilla Bug #609641 - CC: need procedure (and possibly tools) to help correctly set up CC environment - Bugzilla Bug #509481 - RFE: support sMIMECapabilities extensions in certificates (RFC 4262) - Bugzilla Bug #651916 - kra and ocsp are using incorrect ports to talk to CA and complete configuration in DonePanel - Bugzilla Bug #511990 - rhcs 7.3, 8.0 - re-activate missing object signing support in RHCS - Bugzilla Bug #651977 - turn off ssl2 for java servers (server.xml) - Bugzilla Bug #489385 - references to rhpki - Bugzilla Bug #499494 - change CA defaults to SHA2 - Bugzilla Bug #623452 - rhcs80 pkiconsole profile policy editor limit policy extension to 5 only - Bugzilla Bug #649910 - Console: an auditor or agent can be added to an administrator group. - Bugzilla Bug #632425 - Port to tomcat6 - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #653576 - tomcat5 does not always run filters on servlets as expected - Bugzilla Bug #642357 - CC Feature- Self-Test plugins only check for validity - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #661128 - incorrect CA ports used for revoke, unrevoke certs in TPS - Bugzilla Bug #512496 - RFE rhcs80 - crl updates and scheduling feature - Bugzilla Bug #661196 - ECC(with nethsm) subca configuration fails with Key Type RSA Not Matched despite using ECC key pairs for rootCA & subCA. - Bugzilla Bug #649343 - Publishing queue should recover from CA crash. - Bugzilla Bug #491183 - rhcs rfe - add rfc 4523 support for pkiUser and pkiCA, obsolete 2252 and 2256 - Bugzilla Bug #223346 - Two conflicting ACL list definitions in source repository - Bugzilla Bug #640710 - Current SCEP implementation does not support HSMs - Bugzilla Bug #656733 - Standardize jar install location and jar names - Bugzilla Bug #661142 - Verification should fail when a revoked certificate is added - Bugzilla Bug #668100 - DRM storage cert has OCSP signing extended key usage - Bugzilla Bug #662127 - CC doc Error: SignedAuditLog expiration time interface is no longer available through console - Bugzilla Bug #531137 - RHCS 7.1 - Running out of Java Heap Memory During CRL Generation - 'pki-silent' - Bugzilla Bug #627309 - pkisilent subca configuration fails. - Bugzilla Bug #640091 - pkisilent panels need to match with changed java subsystems - Bugzilla Bug #527322 - pkisilent ConfigureDRM should configure DRM Clone. - Bugzilla Bug #643053 - pkisilent DRM configuration fails - Bugzilla Bug #583754 - pki-silent needs an option to configure signing algorithm for CA certificates - Bugzilla Bug #489385 - references to rhpki - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #651977 - turn off ssl2 for java servers (server.xml) - Bugzilla Bug #640042 - TPS Installlation Wizard: need to move Module Panel up to before Security Domain Panel - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #588323 - Failed to enable cipher 0xc001 - Bugzilla Bug #656733 - Standardize jar install location and jar names - Bugzilla Bug #645895 - pkisilent: add ability to select ECC curves, signing algorithm - Bugzilla Bug #658641 - pkisilent doesn't not properly handle passwords with special characters - Bugzilla Bug #642741 - CS build uses deprecated functions- Bugzilla Bug #668839 - Review Request: pki-core - Removed empty "pre" from "pki-ca" - Consolidated directory ownership - Corrected file ownership within subpackages - Removed all versioning from NSS and NSPR packages- Bugzilla Bug #668839 - Review Request: pki-core - Added component versioning comments - Updated JSS from "4.2.6-10" to "4.2.6-12" - Modified installation section to preserve timestamps - Removed sectional comments- Initial revision. (kwright@redhat.com & mharmsen@redhat.com) !"#$%&'10.5.9-13.el7_6pkipki-certsrv.jarpki-cmsutil.jarpki-nsutil.jarjavaCACertClientExample.javaCAClientExample.javalibcommons-cli.jarcommons-codec.jarcommons-httpclient.jarcommons-io.jarcommons-lang.jarcommons-logging.jarhttpclient.jarhttpcore.jarjackson-core-asl.jarjackson-jaxrs.jarjackson-mapper-asl.jarjackson-mrbean.jarjackson-smile.jarjackson-xc.jarjaxb-api.jarjss4.jarldapjdk.jarpki-certsrv.jarpki-cmsutil.jarpki-nsutil.jarpki-tools.jarresteasy-atom-provider.jarresteasy-client.jarresteasy-jackson-provider.jarresteasy-jaxb-provider.jarresteasy-jaxrs-api.jarresteasy-jaxrs-jandex.jarresteasy-jaxrs.jarservlet.jarslf4j-api.jarslf4j-jdk14.jar/usr/share/java//usr/share/java/pki//usr/share/pki/examples//usr/share/pki/examples/java//usr/share/pki//usr/share/pki/lib/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m32 -march=x86-64 -mtune=generic -mfpmath=sse -fasynchronous-unwind-tablesdrpmxz2i686-redhat-linux-gnudirectoryASCII text, with CRLF line terminators (Zip archive data, at least v2.0 to extract)C source, ASCII text?ÿÿüý7zXZ áû¡!#¸‡,àýˆïþ]"ÌkÀ%w#–z×ØûIRG¦6"i°l'u ¶f%ÄÜUç½gˆÂ»MºÇöv…‘WjÑ»Ü7-týIÒìðÇÊ§ûkº*œÂ! Æƒ÷]ýf?ä +E$ÊÎmìë¸E*\O +œ?¿Õâ:EEÿzR†Ø›1B¦?¦©“µUÆÛ\sÙêâÕÔH‡üOoûü1ûJ'YÓh™î‚Š’ä÷7¾hùké>o-+_¯òa5qs®À›Ò°K>«¶Ìvü1‚àcä`ñÊ˜iÊón–æ”õ•a…¸½¯Ä/_<©¤ØQm’×œ¬qK°‹ •Óç– Gé¡.£UB{@³Ë{Ñ‰8‹ï U1ðšzvùíÂšLe“J\ ÛÂ! K/¡ßf½ù)ë®`†X>F¾€× ã~H[[äÀüe^œ›£F•cw˜¢÷ Ùñ¾›óŒÀðó¤æJ£lã/TírB-ÿ&s©ÚV2Üáæ476óoe=r$ªlî•ÖŽ}]{)RYŠJil&ñÄ>ìKïùÃös•‰¤£öŸr’ìðÔé¦ba¤+É0Ó?´/r)b ã\_‘y÷OïÓÍ×€Þµ!‡ "õæÿÄVâJ•mäöübŒzÇq„r±¾áL 2ÕHŠ¸‚.áÚ ß:¡ñDÚ\0!c¢î$·âQ\P¹:6i2„É‡²òÛ5æf¶Y96Û’˜uB•Q>‘>IÈâ^ÆçL¯`ˆúâgS¢"Ï€§fyªƒÝå…€´8Ž¸“1Ö¶Ã°Yd¿Õ=áô½\ï†Ëms`rŒ£kA€ÛMÒ=WÈŸs“A³èï…ÖÍÓb!³ƒ=$¦D#¯ÞßY[ö¹Fl±ö1Ïú*60Ìžs_¿Ó>‰ýOa>ª¯´¶~·}Ñ¹¶É=”gj7nÈ/¶¯€ù_ÐŸÝÕ¹ÁíÎ˜=tžkªWOŽï¸XŠÂ|2HÔû˜û&çØƒ!õBÌ.l:òj˜~ŽƒraZUex€ó»¯Øâ·¸2böz¢èelžòåVïzxfšÓ˜~›Í/6¢H¢6O3ao¾ÉáúÅõB½%î`ý7ó*GÊ³vìÝwNE[,ÇYøMÐú£/û©;šQb¸Íû=ã ŒÛ,Oí7²žîænw¬©ŽÕÅ¾S$<;I™sÂ¯u5Q©c¯»@ÞžBîˆˆìášyâI4.H65J¤²õ²Œº¤W0Lü1AµÕX®4\ÈH˜>ÏZbsKvCä¾¯Ò†q¯y`&§7=¡!Ø“Ð\ê/ `z`¶7? uú7Þ$dŒ#ß×»%NJ¶´Ú·De]ŽvÆ…ø¼J1”8‘¾Fß‹'\50>—9\¢û†¬†6:%YÊ¤Ô_ž”ç%¤—kGNK ±n†Ú°@/çC s/ú-5Ïˆ=ŠŒ—'FdÈ>ª÷R"P+“èu˜ó}Ž ÃØ}OÅÉ*>·L^œX9v2D˜Zm|Büj”ýìÝj“|ß3CÚ §˜{¦ÈÒ ÐŠ²ƒ’Ùn°áà²Ê«Š1ªîÔÔV«qQ—·HuxªV¬2‚ô5ìi£åVT×j/ñq¬¯(ºÀØwv.Õ‹5¡ä2¾G½rÜ>^k ŸÒ|R¬`‡ñÉ™e&jÉTànûŠ*…F”Štòíµ!²¸j?“ÕY>ƒw<à›6¹ú ‚Qb_S…@|O hY m"³ò¤¹Í9!æ¬I¼ÝžÆëJ£´=‡QJÆ$6Xg¿&½vµ~$ýgAM`4F¦=½•.¡÷¥o~U€p"%é³¯÷VÈP'ôxÌ€ëŸìSÈ •U÷oK©¶}%áÁãàC4è8f½_¬À7…Oh¡¥0g¸wò*´@-µÉxÊøRÂÍ5ô²Ü”çd#™”¡ˆxRB|õ[m95¸ç@¤›¿YÇR¹§D)”ñÛåy«3öü‰„º#ˆIP‡¼¼A¢Pn…¥jë>™|EJ5<·ÎÓì#cL˜2VUTå¾¥¹9ñJˆÑŠgÁÖÜ=ZS}„Þ´´Q&j*ËSB¥ÐZI6ê-;üM°¬i“oÒ¶sS -:¥Ç‹¹Ÿsƒª´'¹ËÜóÛ‡zuÒÍ4ñýÃ4ú@vÍ4È’›_jJ7^©—>@Û~·Ì-Ÿé ßçñ1»wô¹qarŸýoe‘·«iý¯´IÊ.r4üÆH„¦ gGíÁixXZøch&MvE{¬Gyi2â›êlàl23§ƒ‡"•F¯Mª£ìîl¼÷¸[b¯û<{rIzŒw— :“äKÅ—}ø^¤ÿ3æ:-Ø.MØpoU%ÁNNtÞ}¨a—|^aÁ–óž =Åé*™Ôj§.1»y"_% µwò>¦‡º€ßRÞ~÷æ¥Àõó¼P-ÛÕŠ&f‘Õ{Ž-~b:“ah—džWR—×œð³ê.è„t`¿‹‹kØµT]êR’xül…UNÈ*ÈÀŽ–o2Ñ}ß;·$}a÷44¾òH,ðdB°é¤¢€ÖâøµÒØ’,ãYÜ¨Ó¹dâ¸¸âÜ—x«Åa•“BÙ ^ÖªüâlTI°ÙàO’ Ø³ $d‚-–HeUÂn[å†êŠÌdäUÌÎÀ®`tê`&åÆòÿ¯ti»þT9j$Ü .;†Ûdì£>^CËžcU© Y6•®w GÜ"q$øåSáÐJ4d5±»bÊ¯Ã^[q²¸Üñppî1M…ž3œ«€b…ïÀQžØð6`xôèG5æsýÛîIéòÎÿ&.8MDt‡tºÝ¡ÿ9Y¤ôòPˆÚ›ì0èøÅšÖI'¥˜(¤R½êQÒ\gQ_š9_ª5XA¦hú¥]Æ@’³sºÿyy«$GñÖÄ9¬ZŠ.úª‡ì)ŒÇ*”ÕX7Æü2]üYŠ‘é©y¦óòÿmã;ÂWpÿMŠb?A6Áµ#ÒS°"bÃ>ÆÕáûš=M–Eããš±Ž1²£Y¢Åç¤ÞÃŽø:“oèGÎ!ƒëÉ]5CÊJJZµþ©~j®K´ù‹`=1Hw¯Ú¼hg™ÅÐeýg,ƒ€¦65Ú…\À&ÃÑòÞ¥U÷`áüJ €êWÓ¥n*Ì”´Œ`€IÜÿ5zÎ!äÅ©Ý´ ‹è?Ê€f êé‰mÅŒÒ6ÃµLIŠ$¦{ÌD»oU¥;àJ#‘Ã{[üëZ¢Ç>$Öv*ýòwTÁ…(½ï¾Ð´Ç+å›ëJ¹‚{™Y§¥‰ÿ»Ì(ò&wéV¹wR_%5É‚\›ãéA´(¢jcöiñC²GÎâ™nè,*w3Üùi¹’ÕSˆ0¢–ViryØíJ|¹Y**Üs>¹:¶-Íiÿc5ðVþEåe¯%#É‘q€ Ù{#¾FVÅ¹UÏ=I•€¡äEk7;Còø¿—Ïï|8«k•ÖŽòþì††½Â«®I;zÔ$eìbj-ÑÚU¥u—o2¯Ë’–n.:z.9¡xVT[¨„åƒN3ë5Ü×? /}D"]}Ko`Q©áË—B'ª™Þºê,l™†&u…™>>P^ÈØÖi{Å$¸úg„–“ hµŽ×ç†êöj?tªfDöhv·,hâº ‚s4TeiÏ<òƒ³ˆ½¹ÀÊ„BBÙôt0&`Yn-á½:®Ô˜Ú10¡KÄ’IMk†·«Õ\†ÎÏU1l<¼ Å7tíÈáÈ•=¡[õÌ¯# )Ì:÷x<ŠõŸð„Cì ¥ÉÿU+À G¨lJ)—³ñø;¶™æl¯DÎàŠ !Øþ ·€–5«*ndÞDýû1Ê•¡-—xojÁ —ôåP;Î³Ð‰zOS‘"ÓQ€„»6è¨^Ff îEîjƒÍX¹;Wô]¨•þ5þÏÝï{¶[ÆÔkdò(Æ…Âó\ )ì3øÔE&¯O?€´‡†ÆÎ‘±àXÌ›o”Û}&ïš¯,*["¢<ËaØR—@Z7{Ìõý!A ï‘$Á¶#ÒðXÓNó6£^(%n¹õl)©çÛwHX]4–Ë>xzY–`Ú€*ø¤ëRg†±¥êÏög·$9‹*Õp©CÍT¦W>šøœ¹#³JTBvìÔ >´9ÇðLf guÆXxà_¹A¦á†Ã(÷£èÉ5™ŒLÊ§hè‡Cu)±!¡«Ð6’p½j¨Ùm!ž']&gÀG¨ìt‘ú¿<ŸŒÒ$N®ÜÒy)„`éîiS¬û^/ŸL×€Æ":vñ‘š'Ü°ôÈ¶–òV*¬†©Ê„3Gµä4iuöÑr×D½,)tà,ÙôÊ…ÿO}g:Ö|q“;AôÐï*Â\æv¥îÞ»¤ÀP´‘B…¼†QÏ2ÄãN7m(Rp…hîð”SS¸Û¥ÍYÅ„Êhª‹Žo¥ˆ™ÂL„³Í½" gœ,(íÌúC©Ð¾ý¾$¿[ÿò«"m‰…[¢]¤Æ¾ú&ˆs>«ÐU€aëîÃ“½uy—ó *Ÿv¸#•†ÇÑ[Ñ¡«<6fv?Âik6²9<ùäl3Ï]&”4æ·C2Kh§®ÆcÍ «áÑ²ù¬è~aš¼obx‡f=.mì&4²QDç 0´r ¡^þ¾ôz¾ê ‚°(žQ0ÿÕQÂJÏÈ‰í¢pçÉ¸¦jžv¨ö<¼ß§.Dhª”î9Òà“ô¹z"ÎÙ¥lí½øªä+ÇdŸgÍ[ÍQ½¼‹PíR.˜FÏNjcêÑ¾éK>’“K¦ÐšhÅgA¦ìï#dÏÊ.áÍõLwž§o©ª]Ë¦åO@$ƒýLAˆ=Ñ‰k?°-ÇbŽ%ê]z¿Q³D\Éaãaªº‡oÕX¡I5"o2C÷Â÷xæ8 ó$BÏ8Ü°DàÁÞâ»åƒT|–›–75µ¡Ój·bÁ¬¡èQ‘MX<óœÉR²‹ÒrzÑÙmQõÁMW®€üÇÃ‹ä›Ã!éO?ó4Ø¶Õ]0µCÞ‘>øuÒTÈœHo¯1\XÁ—ÇÁ?¥&¨mÿæ›ò£‡ ®~Q…v v—“ªÇ‘nÒ²3 ®mÔcIßÑ±±i×‰§Î+N]ˆ QYo/c(ûKÉ¾Uí“ìÃÚÈ/ÿý"é ÷ÃÎ•\IW¬Œ2,iäªVoîLFª°‚ÑÜ-Ç‹ÑAýµò„§P‰ò”jÉüÑS¹¥Í„¶¢pãý8]ÝEÝ38`Î8wAÙ„ëÂÞE•L¦j}“Ár@dòP>`‘ÙS‹£s)3¶X:ž9?±¨þý×8#4Ò0ˆ‚4GUQ¢ˆÃTùŽkw‘^–i»S¢•Î®ÄHŽRCÖ[ £ÿ{ÏHàÐ_èpÓÀ/Ÿþát¡Íýô6Pá¸!oÉjK:VÐ5ÌM¤„™ŒÉÈ¿Ë¦û¼K)gÎº–¤Rm(î–¥Ôß_àîÚN„]·Ym“Y±ÎhUKo!#×i‘cVÈÔH2èzëDˆnˆŸl¾>]…Ôò„ó.|•f"bOðdñ~¥· 1âë`'ýr'7£éó§?KÚ5Z6?º@,8‘’ÁÙúyr-¾'à£¨É„.æÊ£H‚k Ãwïº›SaÉÀ}õA1 ÂŽï;Þ.ûW“òÔ¨‹êþe^²ÍøíI`=Óqà á½®í }Â Û¾a¢IÌü<Ï!£°e%‰V¸§ÔÌT¬ãÔJøžãîâx™cÆ±K“˜B<ÈÌTÞ£<:‰R« ¶Ê+júæÍËÌ9<’ƒ¼Ïƒ©)vÞ”Ÿä¡1k¹ZØÉØoPn²ÞvCÐÀvàøª²{b.Ôè5\8ÛƒX& OøŸŒÒŒú~>(y×“œ,–ÜDÅÒt;3ò-VÑžEQýJ=õ½¤":ÀÀµ†qçN|ÃãØ Üv-nœ´TŒòœÊžË¯óR§ÎÙDg#ºü‚)YÎQ›ØÂœ?æñ`¨‡c^ÝñÚIeèå=‘³Ý¸9²ýª‹I¼êÈ¼æ.lÎËÕA}¸(ˆ ^\9»R.Û.•s¤„ëÅ‰€<èçIÇ‘³2ÖÖ¹$I)½¿ê¦7G3Û‘Qž½Ë+ñ[Ÿ)dÃá—PžŒyácØMÖ˜Ê¦(_gºýE¡Ù(»xÂm~§ vÏuúab6|@E~Õýóí.?L5¿³†‰XV»ðÒ‚ýa6á'{Æâ[r›êý“O“EýWœ8ña-#YÆ@Â®‡¶ ‡ÿøÿ‘Z¥ŸGoQÀ(w§è&(¼\`–çQˆ©…zÖ¹åü¢dÌåCS0ö…xÓ0oÔ…UÂM¯OiBGNfu¬ž´ß!0a0SŽÔ+à»pEÙ€ë"²K¿¬à~lðãTýÿï;|cyPpOr¥d®i ù#üCº†÷ÐF¦…WþTUØS©1 ²NKà¾*‰’à„Ný2ºÂU?:UÚŸ/sÍ“¶2¼´äß!ûí¤tO!ö…ý‚›Hl/½×˜@n$ƒ™„%u,?W¤³7VC‹Î»MCM;ëÅx}"CŽÇˆm™„s)ÎÛák‚˜.qæxg)£ÚœÔN¹L¦t™þø¢ªÁþµKFLðZ~'Ï¡„§LA½ôBÏÝÇ¤&ÖÏùI+ _úP¼>8¯Õ?T½iï6Å'•…#µ9°Ãö°â¯Ø³îï0qÜ«/á M2]É›èŸë= ÊÇIqÚ“ý3 Õß 4cvõ”F-’Ÿ}yT¸÷Œfp@wôõh&±êùÌŸ÷—¤4iŒ·C@‹Í«8éˆ·{h’C…—?¥~s÷¥I*¿ BžSZ9\M³Rþ¶xÏH»;Ã_k5k:ËZøÆÒ·¼iÄ]åµ¸Œ«ž"„N¬¬/bŠ}v/\¡“ØEd‰yÂí#1NË5àj\Ä0ø§Îâ¦L‹¦tÏq»°EÑ,Æ2L{Mðdk]<ïÜédÍ¸…!UãÂ¸€`É]I–¹I$ëKy8pâGSu2¼MÅ@Ÿyîå)ÞËfŠõgô/Œû©ÝE3[£€{ArÁÞG/_ä—¥¹³ð5‡ŠÌk§õ Éfà‚e",Em=’ó¾|tsö£qXÄ0–•— a™Àl×&?Ÿ vÜýdDyNd“2.Z¸…·“Rª7°28™¹€˜oŸSw'Ãù¾—ºvòÐÈ8Ùî*Ë!÷ z¢¥ÞÎŒ‘—LFl2öàÁØYÞqþlSJ»’WEn“ÏõûUÊüƒ)EèíA2¥j®2ûOS#3¨÷3Ðâ™J€¬¾^ÆÄñ=Å¬§EŽe¯ Ê€“Û[£¸ì¼¬ålí¥ºkÇ€0NÅó¸&®0/ðSÙ hQÍ,û£+Õ"!TjœhÀ‘öGûi8ðò÷)í&L dS¶Ê(úÙXÃÂí¥P2xþp ‡Ú‚¿£°sÕÎ¥‚ãCø%|"§X¼zÇÍÆ£èËA$/yÏHéËNn‹¯ÀÀ(.ÃálE6l/ŸÉŒÙ&¼²l*ðŽ7Ú;ýì>»C=^…Ì™+ê—ûVìRÿíe:pî>e„ø6)ØYf#«ÞyÝ¼ß—à-äõàÌlP\ÅŽñ3-©K2rñŸX*r¨O#ÖÔ\ß+‰‡¿ Ùå{,0œ÷ÃÇ5µ*,)ÞÍÀµ}DH\«ÍìF—^FÔv”Þí–U¨HÐ¡¡‘lÃþ¡î@=_²PÙÂ"XÉ¦üçaÎ×™ÜÍv8[!TèÄ6—>mÇJØVßT];Eùàx¬q¼Â›y< LhË¯ )Pæ)ìëª(SmÖšÓ ï<`oZiÍU ¤õÊtoâ9Lh€"l‰[|IÃ ¹È"ä°ïôì¼K¸/˜ý’ŒC_tá#ÊãPý=WæÉ[.ê¨êã’Q¸íOª„4W™!Zý Ce11pž†*¨jê®3öÔ§«µ'E°ÎiÚ@¸Rù°!þ%ë¦è»%iº }Ôâ›d¨l’Òhô$ö¬)Ï™q{©ˆÉ«;Bêû²ÓÜ†+ˆ=Wà¾kÅßµ,yy„ðá ûÄµoh©§&=üå=A òõ:ÂÓ*ÔYºl:TÒÖá:E÷./¤àÝuˆ/” H6[Å¯8¿¥RÖáGa%«Ðºµ‘¨ôÔSÚ¢0Ð½ðM#õ!e¤¯Ñ)©1º“ëŠ :-±1úLuM”|D4b2égo&…5¥®°€SÒ2å4ÞðÒÅÖ½êêà`Gk…þVO`Í }„ñ_sø^ýñ.%¯òÜçí@7»cþÓÛë[ÝÊt!øú@(ü!E`ÂÆõTÂý™AKYáÊ†¼k6JË?&Yj73– Ó×|ˆ9Á<å1¦p–øsÁ©Ä×ˆ¢øù‰WÞUÿÒji†%…tùìsxÛeŸÉòå¸p’‰™´zIíoûœD+Ùœo„kº<n!ÍU`·ùöˆÖÓ±ùå}üÙ+Î½šW#ëEûŒRå,öQGÑ²}¿d[:¾=ï *X` ›‡ªÚžFuì%vŒ ù‰ô;hSÚV‹©íÇ(ò fM›.Ëw(Áãø=k®I‚£µeÑ)Ó÷("Dæà²O†éšÎƒ†,š$³Ó‚B+±Í›Ù…–¾×áçäùQÝûj…‚n/z$3?·ÙYX\Kƒ‹·t 5ìJvVžù˜râá• tVÑñ¾ë¼²ë^Ä– u§Ó–NjÏŽ•‘ê%)ì¬‰\¼\"d›Ž1®zXë«àÓØ¦ûïYžvL4l@µöŠè{bÇìÄŽ¾ ŠŠ7º¢õuÆó¸‡å.M‘š®U„,Ö+‡Â—Çç˜Ó`A?©yÈbÃ$•zúªZÄ²[2å [†½o‹†©«FLQZÆàæÇ=àç”Ë“Õù°•Db)+zp)ÏZÐ7X<ÌÖ€}õ²6À@šru‰ËeIuÓ#‡|ú,"(ksÖDììU×mxÿL×¯¸ÜèÊ³4Ò4a›p@ÈÍ:ÛÌËYC–ä¯u„`¦Å½kòæÕµá£âL6&‰‘ /×§-áô¡ŽþH€‡Ï]™H‘éª]W3lœ¯·î>úQ1Ÿg¿þÙ‚ã[õÄZuÀ(…R®ÒåŠ†ìÁÚ*ƒÙ ‹0¢$ãSçíúH‚Yœªÿä×SÓ&ßxæÈüOfu¿•o~õŠ÷ cúÏ•»¸HUaÙ*vF½>ô[,Ã-êA*ŒÔ¡x}Ð·É5H¬ÏiÝxs‰œ {›sòSXT.õNL¸vöÒÚVHÇ=g«YxíF]i”óçlä1y©O¤²cp|1Njù¸ÀèAã®É£“”x \˜m²V¥6v‹5ƒ)ôáWÉã¤È¶ÓÚÄiJ³žËO-¥Ü{9‡RáÛOáñÝfaGýø z¶½öw>ñbñëk³'Ô¢3:FªAcqUÀýU‘ùÂøOåé5øÚ!¬Ee9Ë„Ç=zODÆû_înÍüÒ8;–Qæ4sÐE§ ã ï¦rpÇ¡ÙÈ¤\Mû†« -nàsN½,@Fº £é"Ós‡oºÿý_aéBw~uŽB+Érq½pgä«F}¢.P$· KèW&ž_®/‰ï‡"PÊ%É?k ÑF?e‹åJbÉ¡À <&Vi©yÎ(åÞWì:·ÞX¢înaO{øI˜:=Sqêe>G“ñ¸×i[ˆ«ÔGs84N@Þ„¬ÈÚ ÐÝ|V’›ïÕcãüå2 ¶ßKŒ;ÓÕ£¬-W6ÆB]kM£óëßÐ³€P€ÄŸ0yRÂc?Ì…HPÕÈ@ëþêÝ½™2–šÄÚò¯† •ÛW³jT:ûYZPcËlÂU%¯Ÿø—_Êëƒ~»Ð—O§44¿ió’š&ùþÿuÉu3ìÍ; RßÆ»íiK:‹“(Hyrç%<»?zLÃùŸ<:ÓÂõ·\äå…-(Ðÿ>á×I%Cßxa×3‘l£\ Áó H-½º{R ßÚ[Ã,Nž ´×³Š Ï]Œí-ƒK•›·^o0rr„ü®#4É‡71¢®Ê ½îãŽ¼¯i'«VøW÷áW¡€ij©‡zê4ÚöH¬†ÏÅ ±EÊÊ’¯Ìt',¡EŒf?Dx0m=Tää‚g5ÝúE,HÞM=›¾øIéx©q¸§ìœ˜A5çæ¢â4¿²s#ÈáÑ °O.œÏçòrx°o* eØcéÒhâ.µö€”•èáªðaóMÆ–—~þA;1m©dJ½+áv¼^´1w§«`¬‘æÉÝÅÞåÙßÈµ¯¹†£–ÔýÅ²Çÿüml‚]‚æúá’u¡òáv}â]·å)´#*¯ü–f*öÊv(óaã(ð?ï%ß#®ÛÎga"o©¨ †Œí •ÅFA9%`^˜çèä ¤Y™é»C°j}RËèš@·<‘¥bÖz|×³j³«ÂµÄ1—Úz½å9Ý¿ÇüSƒ Àj·¿h´íÂÑuïë;Ö¯“ë7k}êÐá/—`ÚGfá‡Løÿ‰ŸÏÚGˆ%VxóeQ¤õû>)‰:OÐŽo¨+ûÞ‘¦@ÏU_ke_þŒÊ†ÌEQªï7Û+…¦†£íK-eÍƒ…_gå’Ü+Rrü÷Î¦W¹¥à\(zœÃT^s°NQ¼:ÒYÖOj·3Ù7€KhÕH%~V–¤"ŽàÈ’Š«r/sócqÂ;9áfìæÈ" ?É÷ûLeb9«b¿Ln\ÙYTÔ^ ¢šc¾©ˆT‡#öö\¦0ƒž¾ýUl/ûß,‡¶Z!äWÍº %È=öÙôÕç9!„¤Â£×Ý³¶4St”Ç+ †BÇ?¹Ö¸çò@)-‹fJÃ»U¿#nC½H,‘mÂ†=”¬^E; D«(y’2ÓW‚#Wõ¾•0uûLùî°µŠ›ƒÃ_Q¡H%îý}4Á7oÜ»ŒÑÅÌL5û‰@ÿòRb?>BC½C\©åfj%Éz @8X%T7ý7îÈöÿØöÝ2·äC@S#|ŒÊGjä«BìKYW¥`?î™Ê\v_öÊ@1’¨¨ˆjóõžWFÀ¾—['5SxeñhG§å›â5M~ –*78¢ So‡©e/ Òxn`jp-ín'3q=*èÁšo‰üR÷-r³¼.ÝÝ”ôý„Ûc0o‘s§'6™Eâ‘˜^ápçgraOõå±æC\‡©)2^Þ°À´hÎH'Ÿ!8Ãi#dL"ÝÙ£‡Ü=‡Î(#ÓpPç"¦†j©QÝ†ÂÔFG”5„^H—5€¶ÐÇ@„¼š1ôm —k?ÿÈã‡¡`ºïí4£Ñè_¨ºükø'„Æ´Šb^x©m¡žœÜ W[XÊ‚WL›ôl{ÂÄ-ÝãN20y}²`ˆ9æS¯Ú(:JGÛÝˆ¸•ä™ØËY*,:².¿æbÇ.aIÁ7 kO™2«ecTÁßTDãÀ&Ï9]³»Æ6Jêf~ ½%®ôsâª+_E6öuo‘{£@6)Ÿßef¨×?—¦´v±½‹a5Ç‡Ñ+~‡ñ7j@z·.y"C–zÁ2*í}~>ðÎíWjñŸ0#—‚xcÍyÛ}zåˆ´/7_}JiÐw®‘V…ª!‰¸‰E±ŒH9" ¬=ßÃõ‰šCZq[&“ºº'ÄV†>$ÑZ¢t®hà±8K÷?¤O}Ûòí–#ØQðò7Ç:¶:½ëÈ»Ö·ýw¤Ì„(dß\Ö‡êm¡Ò„k-žO$Ñ€¥;›ZGG‡öpûæÌÈ²¬%XBXãùV:ûDZm Ë\›î@ï!ù|bc½¤ðµ_æ‰½“·[»azé«É·À;c†¶Zlˆ×O_Èº·räpÞ +¶pl^³R–Îñåê»k"Jr›é7¬oš"Œ“ Ýÿ@Ñ~j|²G2ö”{£, ?Ò‰2¿‡½c†DSÿ²*%;Juß š?n6:^¡Õ'Ê_cÃ÷>a]æ'h%ýŸŽ«'ê…È áƒcøTRøŒ¸%$ÙíŠAî–P@¥ýõ(Ñ5‚Ë×58Ôj§r”;°øaœÀT1ÀåYªK¶Ëé «ës£MpâäE/^>Ætpou7³H¼Î¶ òf“é¸à"S¯1Û©DDr–E`p‰Ž¹ í¬ BÎ†Þ0ë”EeSÁÈpF95ÆÜJµÔómwíff‰¿%ð¬ÎŒ´ EL_þÝ¿\F½à©ô‘±g™ýÑ œrXn²ýŽP¨*ÂÙN=˜6º¾†Íér ;!6S;ÒmIý¨<†!¶¨| Ì`<–0—41Ø-nÖTßI0iÜW¿TÖoÈÄRW=(Ä+¦ð»¦GU«ü‚]9Ð øÞ=áÎç;úï¡ˆü h-Ê¦#špPão4~¢„ã˜F.ÁnâB™@ñÃ†°#Æó6†µoR94×?òLjUÁM¼O2PWKa0ªxyííi4Yèý«{j\•;pýOLã¿ör‘à!Œ£]É>xIÆå,£¼/õÇŽëOZwK¡¨ËÃN°BRÉO)jÉÎ^¯ÑD$/¥¸U-@øêì·—Å©:Ûû;-¢®#RO¬V{â’vªEŸøûTv·,Öè¥ä©ýÛñå®¬óÖn k&Eíj•ìŽ’Y¶tØ²}Ëz¨EÓ |:…E{œûšðzÈ`÷f\xüø¿ŽÃÎ¿vœXk¥5ëúÌØŠ—Ã¶/ÖÛêž1áOÅgÙ=qúËvt+“©D ¯®âÒPð]ˆ÷íkèø'3tÄÊf.ÛQÌÑÆß!tU7a¨‰„ç¼—¤Ä«i¥«Z^ÕÐèÒwLgõø§ÆùØ|šòù}PXtN!Ñß4;LÀxˆ¡×§$Ôˆ3PÖHXå}ƒÈ`Å¤M!‚E0!œd«¤I"ƒwy»’o§;ŸßÞ÷¬JsØmøÒáž9LŽü¸£Ÿ8¯ ™ÙŸÙÂ{íê†cJðWšäI«BµÀþû…C8é;#ˆŒhì¥“§ì³JS÷Þ†"÷¯gë-S7]Û—¢©0ô›šÏÞ.øN;Íýûžé™ƒ @õ™<–]mõ¯’rñÐÅäšÑÎ_xkZ–ÏÕj%]›Ü çÃD©Þt#Nõ†5)¡ËÁˆu0PnìÞq>âB«iˆÏ`f(sëœ4æbw y£ƒIÿï ÅnVÏ-’G«åþÝ¾}‚Á˜iV¤18Ž…6ÃpÙ×âó€þ Å¥’H¨îhZlR|“B¶ â˜Ïƒ›‚K%Ýc®4€v‰n–yÂL2ž€B2£š8W–“"ù›ÚÝcHTË'3Žøþo»«þ-÷ªî(ªât~Ý Ž4…ëlÖ•cÞWC£Bo©£üÒºØ°8<›v’4ïRÙ þ kïDÁ)?jám©¯'ƒÅ²õ¤§¢¨î6ÝY7Ä>„ÎØ{]V¦dÏÍr™y[£ÓËÊ7,a¸Àj±`§"†€€4jb å ©2xŽêÌÊ–@Îƒvyïv®…,«_ðÜ˜ÚAúð˜{ÇÖ.¸ö”âVÎ•VkUˆém_¹à½òM‰'H s?ÞïžÆØ&e»ýèGPŽhJaDã\LkUã\Nj yõgœ x#Õ{…ˆ[Tµp¨NØm&øt]øÜÓ?ëšcùO«WuÉ‹cÒˆpaˆEún@ö$©·ZZÃ´ªÍD¼"”(ãœØ2¬P ¡‡ØmôR9øs ‰ûGu%Üe¬à÷w=¾U¡ˆësÍî¤xF¯Dú jø{òòžlÓ¯œífI8Â² ™ùÈu[J×ŠÀs9u¨¯@"©jœÎ"0n¦l0D¤MÖÎxshfíŸ£&ïÀÖp£ÆÍÌtˆuV;ªñ 1ûÓ-ó£FU ªRØYÆWUÍ»2?Ÿ«Âð‹³š;úù¼×G«ñ¸lzRÐ£?–×€¤ÓÊ’vôˆ¨‹ÔâjotÄ¤þTéã‹K‚æ]AfbÜb©ƒ§!¸Ó¿Kð@:Š†>oÿ;?^˜P6ºf™¢õŒöÓHúßÁª>ë÷6ƒÚŒBÌ»DYn‰î,… ðú)«›Îa¾ÃluQ%:—â §}±I4Cîñþ €Æš£ÍÀ‰lY¸Ÿu9¼‡w$€$ªHjébòKÕXE;¼zÙMüÄ.Ž{Ð÷È3.$ÍÎ”š5ª°M=&óÕ¸áú‚›ô{œfûeéˆ<7*û¤ÂBT9aî‘Á-Z¾puÇ2õ.ªé~wDÇOöŸ^‘·N-ÚŒ„4AƒàÍúSñCóð€qèGYkÄëþ/ÀŽ¿èI|9ëüvóðý-#Ðlw2Àæy…™— ½YÑ2¢Ô›Ã§úØ¢v"î›'PÂUO÷ûT+”^º ¬z¦pæ8…ý6ùÖª§þýÅà«A‚TØlöØ¥u[«~r³èÛÐM%gènÌä_ŸaþŸ*!¬ôÚr{ ª‚A4†Ž¯ùd1Q;÷v$Ù!á2ÊŸ“~ª îð7)‰¢ÞÃß¤šq¡v·X²î~ÈU²2ú1’o~5å)ÑÒªy/üíH²¨È8ÖlënheˆÒ}qN£îžE•dóZß‚wýQ¯+O:ûLÚ9wì¬GÝK\|I È[9l#™ØÎªÆ5V<-¢8ÕLñŠ¶žc—³Sj8’@f™ùðg}·îA<ÿäøÓšC8„ß™úd¬à2×®á ¾8UÔ¢ŸH¦7«U¼n¥âÛOKlŸÂ”BlAôjØÑ¯$1T@Qôê£B$ì.‘Pº-¼0{áhµ)N½‚úaO¿vÖ)*ýu#Ûzò¦°a+W‚$ë˜Ïv,˜ï™r”ežj¥Ÿº:`Ž‹VUö®ÆÕhìÜ»ï°tì°'¹À‡;·˜ 4Ú±^Ä›ëØ(Gq(°ØT›ÐÂ˜;\l÷-V`Ò Ö &žñÊù.x9¦Šð©ú¯Ö#Ë%ÿ†MDÑ‘âêî"pì o4áèì =&ùCçm§üJþ²›D’¹SÞ:§¯2"@¹“ì-îÓ®,<šžPÚt*\´{JúñÙ°7|°P¸ˆ¼\XJ ŽEçPœíŒw2Æo& [[—°'á±¨~—°àIØ”f-vÏ /qÿ¡”»Rþ«aæ³7B¾Š¨L„e÷ÕïRÙO'úÊ¶%˜ Œ±ÒaldEC‰„ºÁ# èÂÈ?Ï©Žô™,£§Ì.4~ãªe–yòTàDg1äs¦° c½«Ù–ý¯nUyÞkG•Ø$L Ç¬i)êßÀð¢X‡AýÜÌÂ½Ï×¯=™õ.ÁLBFò×OÊeªÖVOsU‚9wŽ³’Øç?@ fµ¤ÙÚjÄsvúQ™hòåôDæÔQˆÈCýí¤¢R}Ó•]¿•Rº€f³XÈ^—Î5¶Â8È!Mw'6Dùª2iIœ-ù~Äìƒêo²Ùg+ Ó{ã³* 1ÞIOKŒ½ŠíQ0Ÿ|t›ˆ¿ó{Gò” kqæ±nèy.E²ÞÄ èêA‹Us HmDpçß|þá…c†›rT»< Û+çø˜b"M™† vzYÐæÀRYw0Á"—C.ƒøéÁlùÛãx´÷ìÑwyp³uK¨ÖÿA˜öŠ[¸Èi .MY^‡NL(…“Õ $Ñ^„‰,-•=ÑWüÒ‘e‘/4%Ù» ÂZëej:›zlz,Ð†[˜º.)šŒÐÿ%Œ•ÓžMÂeÜ½ŽmýãÇ_ûzb¾|Ù#qæEà^þp¨Îàr¢ó_°ÄIY.ßg,˜=Ì¹_Àž oäêp›í› H«æ¢ÀaàÉ˜{iÈ*kkZÝÅñ*Zh¦Ì'ÕÌæ×C´9ÈtpDšðìˆê8ñæ¸îï ÐFŸ<w›žy?âÄÛünYö1d'ž¼á÷¤ ¯¸«Ó•º7MÏ\¦$ç¸$öÎäw©ûNÊõdh«4'q$¬àZ¼ž•\ë«7‡¼âú¥ƒ0´h †ù“çz±54>1ÿ×i)¿(›–dÿÊnÜÜáÑÀ`Š ¤¯\C ·‰&±Wj1u‹=$2G‡Ô¦›»û'h“¶Ñô«óG Ð¾lÚ;a“mZÅòSÄ]¦§Ç”s#Q2_ÆLÜÐ‹ü˜™·9g«Ÿ8júLXÊâ‰g ‰·sÜ A˜²åUÜ\-Ù£ÿ07&3ã¥tlþfõ`A’x@¹çLyf?Õ°8ç´0F!~ëªxè.`†‚Õ¤BF”ÝZSÕfÉ9ú2A¹nü}áX‹#U‘”ÈHŸÔþ›ÿFå8IÕt æÔAo]µÞ#·_«° žý\PþðéyùB«m˜Ôòü9ÊlRûP¿›¬–zjŠ8à£Ì°i‘ÍšàÚSådSx}YÀÃ-Üb.˜o´MÒ!!|˜žŠÎ0{µöû;®ÛCñð‰R›«4 »o'ïÕ(æ=2xï-[¢É&¹48Pý|²ºèS‹ˆ¢z®§ ÞèŠ¢X0o["iàWŒ>t<<.ül™µ”-€?#2›Ü¸Ò“5þEz²+èôíä@5^·†š¦/S@lå¶ß"XHšN˜Œk3}åòÂ4RýyvÌÔ¢`Ùå—Ü$~{Î9öfÔ‘aLY¼dóàÈ¹ßVì]1x–4á“mZ(÷¶Ó.E´Š‡èrH»!EÍUâÌø“ú|p†[R\èŽÚ=4 AÇE8M™Öç˜¢@÷FÀ¢åg‘m¹¨ãPßTì÷-ß1ê:’5[åK¡‚ð~YJ×h¤Ék‚îÓNb;vtqmñ8Ey+èº3HÅt?<$*F;[äãºÊrüÎÍ/1.>;ÊƒiçâÑppÃCÓ{¾ÛBÊpqÊ&j.a;nç¶+ü{/&©~Ý¬Ò¨ƒ6;ŠO7¸¬2/ ·‹*gûq—Q[;Ÿ(¤\G«vH½ª´ê÷uDŸNÚÎ"’¥mÐR¹ìÿWHÑÍ 3Ö†ÎŠ3w³,Ëp£µ$¡mŽH.6Ò7å ³f"KàŒqhÄTˆîX™°†M7ŠbM&k O‰Ãê ‘ãg ;—Eº3€~Í¤~^H°iû„Â(žÐxQ´úU¿»kŒä…ÿ¤#I\ ¢ä²#÷ïÓ‚U^IÕ°iÖ‚¬ºÝ2†Ü”tQRnsð ‘&r÷ÃŠ€KR<èùsùË|²\ÝPÎ‡‚b†YÉÕÏ¹ù—Ã]Úžá!.F£[JLQB±Šv\ /6;s4É•\hÂòÑ¤ÿr¢ êé<ì3*e}÷-—îV¼+f*u€[šå@ávªwgiåK)05yé<,¬]OÁŽ’õÝO9Ïaµ²Œi)6+\“ qÑa+šen.5'ØvëfHg‡_ÂG›f4\³»Ÿo¥wÆ+ìš¥”cç)]“æ.gÕ«3£OùŽM—4’Â:÷&áù*v±&70†Ør-k´iS´G¹#L/C´éofÃ€bjtÅIm…LwVŠç¼ný)Dœ“ï³qÙ„àÒŒ9éC"3Ü²ÉþÖ¤ðìWå¹bÇ‡Ëqyˆ Ò#fà‰WÏ^ü´â "B·d°dX,SG« X 0t³Q¾¬±‚V»³¬!ÓÅ! R1´Ø‚öÛ¶–ÝJÿ_´Ó©6Œ »§–ëóK–mc½CP{«?Å2å÷1¥ Ã3+o¸pËù€Gÿ÷šŒÀ½"¹AÐÂ’BDÑd îÓPx«îiu²H¬HÐ·Î‚|Àáôp?ó»ƒLP˜îH%*tn Çƒ|¦µ_mq\äQÍ}ÀáeZ¨—®ý×Ö¦g¢²Ð\šH0lÛÛÒï~‚dCÕ)}”‡º¦ZÙ‘¡&vÌÃžâ“ Š#ÒYUZ¨(i“#RÄ÷ÒŽ0syïð¼Ü"t‹q'.vÅÇùÏPc(ì‡5C]LÈ™Ø¦TÊi€å-ÚHÜÏ§Â~üì‰ç¬³ ‘TÏ¹ dq‘ÒˆówaÆ¬ég}T›½!(|ßÁKßtØøK¿¢†7–ë³€‘ ¬ðtøÔÔErílã®£GQã0Ý1dté”C}æ¦šøB?Ö…áNÐqþíßEAy_£©ÇTºlhŸ²½3ˆŠ×E=Éy¥Ñôeäh¹¼$fY+eWEg² HÞ?hÉƒR”$›˜Hð‹–Ô 'l®ŽØBœ»•Ú°åãýn®)1WqìÆöv0æßqóq>®b»[• ñ˜ýyø˜bX´x™õÜXãOÄ ÊZÀÀ6…©ÿµ(H¢cöä(Š¾L'‚–&|4Ù€ÚXH‹Ð½¾yïšð[ÈàúU½öœÊ/ÓæÔxãô·ìçOá ,<Ôl°Ny;ý~êóïØ-¸ñ,Þ£ò]¡³5æ‘Üì¦ÚÁ¦Ð‘Ð•` .ùžDL§kÒ^6)æõŠûÌñèkäÓ2%cR«¼Ÿ±R/c<—_Q‘B!qDòepÊ¡ÙìÑWæ¢SÓ°Œé1ËÂ¢©CÌ?ý²x}Þ`ê:f™â‡ÁdŽ.ÓS×. ¶jVÔš·iöHºð˜`ž›Œíºpï¼ƒÕºª·;˜‚Dºp@ïm”ÂQ«&/%ð_õ;ô‚'€‰?Àù÷âTðÀ!è®$0dc8SL¾Zy êÑýU,öóË³ª3ÈxYe/ë§ðÊ•ïT”»Ñ¤nH,›™€HMÙ<Ž1)†ùñ£žïrÜ2J xzV!qÝáR;g#uå- ¸:"³‚ú*9óÝå‘Ì$1 ;úXX.Ë¿¬±öë‹MUQÃ¶‡`Š—, ‹õ„†z¢rJÈð«¯÷Ã‘jç(¦€nÚ<€Âä`['âc¤49&Øã&!p ËðCœ¸t—êH„AÒ‚¡Rí"iyÍ9b@:‘¤öï(iÙïÐ´Ó$¼ÚÎr¸4Å¡€ÙGÀ®"žÄkÛçVÔãÿ`²€M9ß÷‘&çM´¦tLN`²b ·€]†åêG>Q0 å¹AÝ6ÃrÖ—è)éiÓ-èšÏ3g9tÁráZÝ>ß¨WWø™È†%¯xÜÛh¾›é„jZ{·6OJäyõ<,žwÆ}ŠAç!Ð¤è™EG…Ì«pÆ‚‘Š`¡ÜOmèQ˜=¿ÚFs¦žŠ·×@b+& RJï¢€WŒ×V%æ‘<#’¬U|>©ÔTôÐJ$â$'¸¹•_\Nºqâ°*S’ŽË|(×iÖ—…`«táÒíìÉ~g;úAãUMMsøxðL˜ÏtÙtQá“¶ùx0€*/Iœ¼#:5^0X¨`4¡R_<ô×ûrÙúúÝ¥¾ê×bu²æoRh‹î”™w×û¦ý'eÜn%‰_ ÑÚî©xïdo/K·ph‰·o¢©¶Ê¶"‰3³rHÀ b£`[H32—#€b`35wÿøÜèR×ê°(o¯ë+a³Ç¨'ÐróØrcI;–æNê0·=nMÅèØÔYZŠn™:Wþj›¦6|ýCÊâ§š—ŒÌ,uuè7mþS^¶q BÔÃÙ mò¯–c!‚¿=y:Bº8KddöCŒÌ •€Áí·‘µouê×%2°šêMçŒ¯©h'ë±Û@ÊpŠ3gþ²~Ô «JÃJCPƒ½ŸZ¢¬´¸½>¶2(ÓYXÔ¶‰.ÂkùÖüî!àt¶Ðl¤0h,ëÒ°5NQ˜§ìé´>~Ù#8PÜËPœžÙÈsr÷Võ‡›$ëáðƒÊdÛÒñœÖÓE;óîF-07ü»ý¤•¸läŽRN“h#l»vïb$µc?êY-B^þëô#"ãàBv‰é¡ö'šüu6w_ÆR½abÉ0lÒxû-EE§QŠÚÈˆ¹Èãá{Ô/ÞËf_˜ÈC„ç0vù“¹ÑˆéYÔoDÂBP¾wÓXMÀi)Ê¤ƒE:Sè&ÒÞÜOÐ±Z.’dý©õ(:Ð µø_ñ”¶ÜÎ+ ¿}Ö3bÛ¸Šr¢}b—C[–î'þžÈ«“TËf´dð+VþiV!¹VôŠdQ(ç×fpl8*¸¿—9(&/G\>sœz¢ (PJ¥n¤~Þ·»ÔUaI—ÏE¹P˜u«¹Áþ#[–B›“Ë*w•™Îºãì9ÂJZ·go¸ji|V´WÕÐ=œ‘Ì!›²Râ0Ä¾n‹‰yøŽã•ù3mÏ«Yem|#ùM* êÊ$þ‚5ðB'VhÐ+¦9“êÙ¥ôËµ®…ä‚mk}™9Z—\Ñ-@ˆÃÐlcƒ/›M0I`›ék¦‹Ç²³ŸéÏÊ?>F2ª«OŸÎB³¯~¨G¬™—GÜ¾1¡NLi*Óê‡H¥TbØ€ãDŠŒ•ç ¤wkRÈKw‹_fÎ¾×ô7ïaò×ê‹Ô)v8²!Ä.zæ‚–{« I8 ½™Eˆ—Ñ‹“Ea%ÿÿ¶nvkÌ¨.>6C s¹$í¯T…jùžlD²†}8êUãµ+§Ü2Ú——5qÿ#®^Ö—UÃ»Ênw½îÜ-„ËÀÄV¤ÑÅäèÆI%¯yáwäŠš.Ït÷@–õÅ¢òùºö‰Ê‘eU S’ÊT}ô‘“ÜªltõHNšîu&VÉSk^9Wå?:IAx¤ŒÔÄøNt~KÆ–¤®c(Pb’ßwãºÏ*¥Iei_‘ r_®ßÎ»ÒKÁ-½6vŠIËUó‰päÇìšå¬eËH!Tã®h¡¸~TwAJPõÝPCÝÕ½¬¢GÏÊÜ@¦&•ÒÖ+‚B¬{+ög,1ðÉ ý(ºR–¾iNJmH34hç_!…–5RÓ¤Ó¸;^lG)Œ·—AÂªÎÁ˜Þz–UíK~÷CÕiøãÝš'Ã£Ò€€,²ÑÝ˜³*}£Åù§òøOšýüe>Bÿ½?ÔÝ.ç 6Ut‹è0d<ˆ;¥Û–û+_&ÀšRú 5Ú§AÅ)Ÿ’ ¢Í»ÉÒ‘ëv»-»ØN6ž%ÑùÅ¡¯H¼UW=_†»P´[:uÒøá,j[DGI 17â0owñNOf‹€ò=ô`/_úpDŽØ¸Æ$z/{{ú¢ç‡ËOˆîrç‹Ž+0Ö42OŽdðv„»rÄ_#"nþ=q¥‡‡J tó}o² Tpf¤·i RvdÏg»9BÃ«ÝäšoxÚu°æW¢ÊØÚ¿þ“¡ÎÎœÎ2Or«X÷²UÊj Æƒ“'…=†¬Æ•ã“]§èO7sYq¼“„ÌÞ†½ ï(¥./‡ð¥Û€#ôô‰tÒ“|äi²ìé"ª-ö;2ØºgA·g)ðW¢ÝÂ´»oÀ{X[RârØ¹Ïéë½9²] þ,Ræru”m”ß€Q.!»Ï™ÔâÜK—1ŽÈÎ‰¶ÆNœ4"¯›ð>#t©O&ß.‘xWZÌžÓÏHÊyQ-”\.XTv°Už5kÆmýGÜÚïÈ=ÊöRqÁÆ?ã®Þ=†{Ê÷;‚œê98ªJ/ÌÝXf×ÄY3®R…Ý0Ó,áƒ™Ó91ï¬iv@Eé_pSð'Ÿ´nÁI”qc”ë˜”D|p;W—óêSn×í€Þ¸ðÃBørSW Ë¨®ÆàèŽß‘ úÛCÁ6Ä\ý©+ò‘A÷¹FŠŒÅ€GSb_ ÙÇ!!î±¢Âd{êÉì;qŠH¾#K$²¼»3™´ÙêÇgßm¯âääØ*y8ÃÖ|(ÈˆËÍmvÇ|ZH>>Ýc“KÈr¤øûáC’ùûÿöKý `~÷ø³„Á>#3ƒdŒBPQ/ÂnÍˆ‰®³Šbµ37]àÉwÕÏ íÎ?H^B¡E:È=À}4žu¶Ã/ì94ÓJ¾Ï>2êUÎžóyßg†ÃJ]?ÉŠ¶>;M9b’ å$´ÆvÎõÐòNú¯þ£Ê ]•Üöóˆ½,â3Ä4TQ& Ââ1¦ð[r«ÂFZôï‘«xD³!.ˆ4Æ·]¶u|Ú=o95óòs•¯ÛqXõn2•µ=é‚5ÇÚmÆ ”û¡ŸÊ ¬”µž!P¬ÌùwKÑÉF©ÁA„ç¼¾gX•Àjyô…Ëiñ w¤ÏçÒ_|†êÈ13L| ÿP¯ÚsSmƒ„çÐ€‚¼V/È6r2Ù³\¿u1«¡dGLVfñ)PHò’)ßeôûÉ™?S€ËòÃç%‡îå¹«ÙÊj‚˜2 \ÓD‚¹ƒZD™qNÿØ°ò/ì3½0€tÌAÐEzÏ>8×Uíf¹ØHå[ª¼g³¢MHkw“¸æŒ³ýjÃ‰ÃÂ œoCþI×—Ä‚èŒåƒkæúYÍ|¯éÕv ƒù’ô8;P~5§INú^bâwVÂGŽÜ+i¨q O*óüo·Û»;ý¦ÐÀ`6’™±Öú%‚šÀË;C²Ì‹Îiéóî%\ìåÙÉÔ_ï6?Ë« taþ+)½Ë _€nTåZ&XúÔŒNX2.¡siÚSB:’Ý$)¼Ãdç#råëyœVªOaÙ9ÔõÑ§_›²ÏAìp‹jy.5Sô@:ôÌ÷„p¥S¡Š¢Ÿ@dåMùŒ€¡ì§Y(.[õÐŸ¾^w8ô #{D†¿UßqMô½{™FY_½ßž tö†,÷`Êø,æÉ¥Af¶kq¨k]ÿy6iÖÅ+Å Šü$ÈP¨ˆ¯;Ü|Ë‡*Æ{„l!Na³kÎo£M]kÓ€Ì±\Bª¶ÀzôÎöÁÁ³û·÷›~nU©&ÂfáêNW˜öZ&Òqá?tžÀP—Tî¥u›l–ˆ&‹Y¦lf²õ§lcs¨÷p"¡tüÒò8Ê.Uæ7Y5êû"[Lª-€=lv|:û>,û»ÀÊemýª>Tõ»÷$ýÝ"§ÑNHtÉƒ–¿1nÜ:?É«ˆœ¶Ôëé§¥*À‰ÎÐÖk]mªGŒŠ¾¸ýÁ.¯0Ýl!IÁ3G} Í–£ö/|Ÿ# qjæŽ&ðµÀ«Ø‹òNB&}O´vI§ÙoQñOó‘2è\µ"´éúDÔ@ö£Þ]°¸:„©¹ÐË¢¤D Êë°Ç`£y¥Ìæ$ß¿ ÍWAÄ°…¿Ú‘âôAžæ '7Tâ{é¶ûU/Á½·¼˜J[;#ýÓ*cõM‰Èû“1Ýê¹0Š§…Ý(wÕÉ‡¬²‘šu÷ÛiõW_éø»«mö·Ú¿Ú$àÙ&à‡“ Ž1ÐÂd§›,ÓÝä&ºiÔ|Â»¬¡5@03Sµ/?¯ÓŸèøçù|µ<( O˜÷Ã¢üèñ[“Ðdþ1Pë£ÿåÎ¼Ë,¤:!„(æ/L«mjQŒ‚÷¶6¹?öp…A•ë€ÈQï®¥Ì?¼V¨zÔáUÕP½Óø4£¸tU[(‘’leCg;‚g|¿zC¦%Mx–¤8•ì6°q-šÌ[ˆ+ß?y”YÌ+~WgÑ^&Ø†ØvÌYCŒR†U¶CQ"ñ¾eš3šyã’(½ž¿¢u.ãL}s#ëFí,9kvn'Âr¬,“‹mc@k2²©»<6ÜöÃÝ\>êhvãœ–×ßþ[ÕŒÂ€“ì'Ì«ÓpÃ7SU{¼${Š—JuW–š\›¬¤¶Ðš‹•”8ó¹„±Y‡ß!|ŸÕZþœ ¬0ƒÛ:{úøÝNÍœÏºƒ~Åj9¶¤Ë(–v¨¾Ê´¸F&_Tœg_Å˜t$ìƒ+`ÛÜmÿSøc À$Î‰æØO9ªÆª„…PåÖ<‰_oæŸ>ÑfWéA}UHúÞ`¸Ã†o*Wö86Þ4¦¿êSÀ½ƒs¥¯Â–å«²çÄ$Šn™Z{ˆ;P@¨t)Ý*š B¬«·ÐŒý%P¥¯¡÷ïÿ’!Œ£JL/óçÇm¾Ô@N1îVÉ XrM÷‘tÇˆÉ—€RÇ‡ŠÑYÂ±Ü²Ÿ” 7Ó‘’{äÂöã'˜Î:Â› Ù\PU °Sdÿ¾´Øèß½ãÛÐrVå½!èôÞ0®ãy.Œ«ÚïYûë}ÛpQ½¡eI‚H1{7Áy¾Âm@~9Ù»««ó€wïx0 F°cÚ8ƒÐô—}ÐZŸ5bâßST£%Ð½à7¹Å_NM<ÎóOÐNÕó2kÃ²SÝ5ÌBÔ“8A}e.¹CÕƒ‚+ÉØ{…Ï|ðaÀºm…ˆEIë¦ï¼™x—.¸˜¤3u"šîŠå^`däö‘¢( 5ë…pÓÛU1ÁÊ›ÍŸp³ój1E¨‰¢=í«ÄÔÅúˆhÚéó¡ý3Ž|+C4¤¤»\ž>ž³ÇÄTo}wœ|µ¹WAÉ~ñë×°R$( g¡øm¯Ù-Úí{ü84O¿µé<œ¤GÆ‡™õ75Àð04ÙµîªÔ&SËÆK"Ë›Ì‡`c6CDÑïý¢ÂÛ¯TJ %h”HÕtÜØ_ÇÇLC’Â´k<ÕŸpãŠþQüÇ#8ëyv¶ÖRáâþRž°^NM–F€Q‘©ÝìÅš–î>É¶Þ+Æ}t7Ç´L‘èG7'lÓãI§®¿A$³‘çŸìKtš_ ¬¤;ÈÀ§. #¼ç*QqIË8 Ã{m};2NÎæ×§?º9=ÒÖ’ËùûBÀŽLþ8 5á"§…‰î«Ó@ %·6ÈêLÅ"W—¬œHâÆ ÁwÝÂ¨3?tÓ…~ßÃ$YDY?²2f«[øa î@’ž"cEŠ¸…Ù 5uÒ:„|dDKì ÄœÏZ¤J“bÁîæ×{ß‚Ú‚[‚ÔyˆÂ›D£Tâ™3¨(Ç)±øŸš¤ÁéŒgœ¿Âb ‚àj|4çWä·Ô$<„L¨Ë~#ð?UÝ=Œ¦.ç^Nÿ3Ä°ªU_D6ä¤}sy·&š‰A-Ì1c8*~:|\DDFp÷B@¿Õ¬ÇðÜÝ |3>\‰S”!A«ŒÚ?ÚºÀÄ³ˆ, ¤w¬aÂiù—m%¦O– ÁÅ0 U3_—€¢:6ï0!q\h,vß¹°yG&»@jUÔÉ(XnË”ÃíŽç£Æƒòj{œÊ|üS©Ú Ä>Æ$bí® ‚(ßô›4á&gƒàH¨%u¨Ì ¹þ¬S=ÝPïLat]¬z°0S+ˆ6þ !Õ¶õ~3ã“u]Bõ$¾m”ž£ˆõ½_ÅWòä³¯±ìR¿ß£rÊ? ÓUJÃ4™^®lœŠŸ[¾‹õh¯è¬Tõ³rYŠû*E0v3m²(!–Oú’ þ²3¯³Ôz¿¹4Ú&àOîtòålDÃÙå£‹ wZÂoÌzqD`T0þž¨³I,»žŠ³÷«qwj¦Þq…à9$ŸL,¡n¼oˆ,Â#ü‘D¡àc$¸ÁÆÃ`1nPØÑ ¡ð]Ó¦ƒ¡…®ëÀÓ—h˜æÓÒ•K×fhàªyÛâ NìÃ “G.fx(ör©ÄQ£ÏYQ•ûò‡£äÂE‚±²ðÕ7]âÁPÿþÐÒ¤oÈá“ž"Ävy¬àûÑÂ@;Äî‡â÷>ò è–¡•ë~Þ÷È1;©¹È m:ŠRÌñ'sàyeóAÒ5û&/.}ZƒœLA£NßÎ4G|G$¨Ùø¾ù¸!ª×ða?þžÜË+ÙÙóïÎº£„!;,ôv ,ñÝSûÃÐ>Hí) $ådo}G=dj´èNð¹vN—2ºPÎTÁòÐB3m®ÂHÊ3}×Ü³~„Ãr£g4·|ieE¥ »•RÇÚnýÆÁÙ¡¡EK¾ª"9©Ô&"Öµ[íý?û>¨^/cH©vE´?lF«Ñ'F(QÓiíæaüÁ0€Þ1Ú^?° 7iØŸ'«Ãþ$àE†ìóá‹Ãœ»ìPN–d’øÉ/‰ÈOòWÏ~-n"¸´ImJ@Yu,œ{¸ÙDZÁÑ˜íæÈQ‰÷ÌŽ¸ÃBÂ}3üLÑg¦îkˆ‰ù½ßÉHa$%1!*|DìSÝM¹žmuÜ´wD‡ ¸žcßðäbUJy‰õUÈS•ˆ¬Å¢½O±RÈ›Ÿs*ê±1äM¢ŽŠ€€ä°}'Y¯4™…øXS–vc;± VJåðµ÷KFz“’-ç¼Ü¦Û86Ø^B;ä¡„FÚhå&vúô`Ú´þ»Ÿ¢W¿îÊ…ª`6± UíH S”/ùŒ‰Mó[xåÖHÖ.=„Z ,ÓjRYÈ‰È›èjinCÞ…¿½ —Û¦}ŠT\Os”4Â¡ÔÎàTiÀéÒÐjVµ¨ªkÈËV OpeGè%{á^sÙkÍ1ª÷cŠ:is‡–”z¬shéÃl2I¨©Kfyžføg0n'§íž?ql;u&ÇÎª8IQaL–Àx›ÑÜB€ØÌ:ÔHøùÍn²ÃçÊý–Ë¯z"õ FÜü£W%¶ À:«|çQük éâè ``ý$Ù›®0vÍÂOÖcy•Ky‚<»×ÝÎçµÉÇŠ¶l}3€{ã3Î¿ñKušŽL*ÿ&ûKâœÐL¼«\QÓH¸D¿¾ÄÒrvCÖ5KháÇª—…ïÈæ?òo@áÁœö¼®0 1dùBFÛL([û]¾ZÏ¢l^Å´äb§ç#>:•Z¹>RÞ¶¿'Žº6kÈƒ´Qm%ÌË )XrŠœ°³sÄÞ÷F+±9s0QÍVžU`UZV{ÎÄÜµØèŠ@ Eûšž>.›JÄKoŠÿm@)þÎhiÓXÐ8‹ml2g`–?ÜâÒ€VÅ];ªÒ˜ÌQîcò; ÂDPá&Ö”?+ ÔQYarñöôÂD… V*³lŽ¾oz+Ž£¹ˆÓÏD2ÆIž¤ÎEúÇ¼n¶„õt©{pn¦€f§-ÚÈÇib>³!æ8ÌÛpÚ–ƒ1×4ÜôŽAøØç÷ÙÁœÖ+§‚ž:~+ié»Gµ&‹úiÕ8GyÙÀ´‚iúÚ,–Äµ›_×ß=Ž’1†–ÄÂ¸üIwÌ÷¢žæ^U™6[P¨_.Ÿš¸†µ- Õi6`lÏÐÖØ‡&‹‚žh¶3T>4ø¬¼ÁH³©XW$†1û š»ÀHD ¨¸¡¼§ñ¨—oe¹ü×ÄÔª¯Ì·ˆV›§ –>Jk—%£ ßÈ¶gö°v^w÷¦uu(?… ²xÅCóÉŒÅ‹B“ëÚÝYµã$¸jÇho2K†oÑ±ßµ†D¿£L‰·\©ËcÛçn-R° ß§JDT_×!ÛÁXÂSUuçÝæÏÄï„ñNÿ¯–j 9ŠÜG¹‰Ä¾¾ Á?Ÿô]ª’68 ƒ˜IcNÅFÕnü¸-o¡ßÈÒÁ£$ò˜õvëµÁ¢R'a½õw¥pPbÂéÁƒöÅÖi®6–p: 7Cû¼¥Ó®¶ï€¡Z³àW4Kžé•®ïÃ¬Â+¼²&áÁÒB:9ou îÍæ2ØVÎù.ý°iòq,›Rð‚”€òXÉð¡sJ^ý£ /_U~ é“dSH¨sjÿ1â<žØþþšÕ?óKÎêû¬ÄYIhñL ìïA„3&?ñ…B3§=A£ Á–",9äS0?8ØŠŒØ_1»aØõÄÖ²îìh‰%®@Q,V¨5¹óÌ‹ NIt‘Û„òžêyˆµˆyËi˜öŠõ€y’¢·;o¬FLH'6‰™”µå3:”—Íú‡‚Æ’$å¢v×¥†¿8¾·Šcˆ{Àê8}õõÚ>õ›¾Â“m”OY—†cwˆk,Û…FU…eÜ·•2ùx'¤êg¶ØÉôÙ:tQæqpoŽ¢{¿?ÏJþ÷¢ÅMðFK»±îQó@)û¿U=ó£î@n×Úrã=ßDØÄ¡lNÑ+pÔÝ/<Â…‡8ZŠ”üÀ|\e-4YVÏE #*[[¤sF… \ä6ƒC9G&¦=äÍ@‚‘À²»s2!o%HŽ.›1(äeáÔˆ-¦8UÆð 9™.“x;“´8 }þ}}ÁáóiHv3·»oxmÛóö¶ÖAÙ<Šk¼ò‚•Ùi&Ïg½Xšøé œ‚Õ<#éˆj56÷Ù`³ø€BWip•]!É™-žÇ<sphïÝd|pgH†í—ÿ¯‡^¥Lˆ5Àœ„S*$yPæ˜Ã5-ö„@$J‡Õæ¿½åÈ˜YÅžþOÓ~Vh¶5¯yz}¼Êh«ÄðÄûž¢ADÏ¼.Gî÷ñxª)q¦=J¸™JŽ€e;VÆ'xmÜ§›EÎˆ¬ž ”"´L@Û«·:×8ÿ@[±ÞÒÄÿ®îÐÅ=å›ÜyúË©ê§TøàŸ8ýº—È4÷ÃÃP›"ûLLÒcÆýÂä˜çTk,Bùäÿ¢uäœ$D™åYFøÕ©è"‘üG‡ ©±ï¸c¿R$i‰¢Ay±^ea+ù£ù™Œ2+3œÏ`À¸ð Yešà5)‚ÿ3¼Ò¶Æd¢,éž¿Zù$O›þ;ËNÞAH3.*¡2³·aÉÇÇÝþüáýŒ]‚ ò OÓq«%û’ïCËÿ,ÎÖ²ÓÞÔª²ýî³×lýµ[2ácbV¸1NBtÆ‚¯-g1ÉO‰3¿«~Z›ÍDî¼¾– `:â.9D™~šÉY§0=‘Zr,¨DHv.Ô(Rê3\ò±]¥üý ñ~”Í,Éu>*´ çi7jV™"¯KLßiÃÕ¦úæ÷™«äöÞ3^¾óf§¬Ç!¶ ýsü˜|ßõÁÉÝÐªOP——ØÜEŠk9œOÕZxDZœUÎZßcLå>‹ÇD“¹”ÏLjŽNâžì\˜3¬$b,kx7±°ÝIýÙÇÃ»W²,buŠsBÿÒBŒH"5ÁÂ¼hM¯ç¹°*§¿ÐJ±bíÄ Ø/ï>!Ü¬rÃJÆ!/“ŒçÉùgl®’Œ½^—Ú~Ë)p“YþÉÚ ¨K_ƒV×ì¨J œÚò‡ûB·°¡¹ßñ-Ô'ÅÑAêêíÐ4‘Ïþ§2>…4’!n¨Ë‰©É%Éÿ€‰ ¾ôgPèSûz!¬+ÙV¦PA%OÓä`Æ„VCÇyº"Iñ½-Q¬„8ñcóÈIÛô8Í)´d¶÷öÊË‰E±aÛ' +»¼Œþ©gÌ‡6«ayÔëE U.€«š;C5[‡ô° Æ=‡ÃW¨ßféì%!vÍÐªÍ•ÂíÊ˜ÉX“W"Å³)n2.ÿ|¿îá¾é¶˜œô¦£ ¤.±R„¢¶ãKñ ]a£eOkô0[Fßèfvé=}2¤Ó,WæÓsºihÚ?ñPàç è¬Y{ªÜÊ1¾dI¬ O<†«lÊv³ tøNHü\p¯°d¤ 8»ÂGjn]'’~"Pž5Ÿ¸ÌëªÈØQYB%‰Ò;2ˆÍÞ_L¨©¹C?˜h¢úÕm¤Ë®™Ü`þs‘p¸ÕXóŽ¨}ïLÕ\™¨Wp#‘Êwkõ´ñ´JÖ„¢ò:vÅð:e•ö•¹â°Ú½µ‹fnÔÉâO«¢OØ]JU‘®éÀÎÚ´°{^Ã»{¨¡m†À×¾;T¥\§Ë‰â<‹Fó¯`=ØßU—!kycÜø:3CUqiqHJwQæu(r_É&DdÝøŽ‹*î°Zª$²ùüèÖ[ßé•1ÄŽª¯Ë©ûRÖ5ª±¯f#Ž;z¾åˆÑv²Âtú.ú‰¤œE#äm²ß‡†™‡>£ ór½‹®½!„íõßx’MÿvU‘¬la yÐÛž5Ùå8hÂ« ÖM›ÉJ”ÅR¥OÐVpLüó‡®‰~WŽn±ÕØø#þ$dûÚV¾ä‹£ ð;8>Ùu4Aó!¹*EÒ}Á¦œ SY³m±KëGÖÝšeÜdˆ/3=i:€ÿ—$jân§{îù6¢¯"ÆÁóˆ ³i˜›m¢štÝ—Ö~hX™+YÆMˆÝÏÎ]$Ð§÷}eùSvR° àüBâxÿd»’~3k`—ÌQ‹ãi$3ªy áÓÕO:Øõ´`¯cnŸHÔápÑ·ÉIÒaì×ê«UGÿ’PimàŸ5ëRK¬æ‹Ð‘ZÅÑÄ¹CUWE„l”$ÍÉMí Ù¾¼$ @õTq^/ÚmhclT¼»œ¼M3*|cq=Ø³'ATüénlq-#ÊÂä(ÕÅVOãõ0ÿé†„èæ"¤¶1êwiTŠBüWX ÉÓPqÑÎÅ¦—¡ú¤mÕJ k–†‰ÚHÚúPžšë‚:ü™5v§@øÞ}x¤ø%"W¦aÕÍ£ïò¡@Ìp‰‰|ÎøYûÃÂHÎƒ+‹Úuˆ{çŒÖöÑSÄ×¾éŽÊšû˜Á0ç£Ó»åû8&©4~1¢¥G o/Ìiíäí´Y1;ûg¢0.³\vù©Wœµ,ÅÉùÓ?^hZçIÔ ,Ûe×ÌÊ¸pìãÄÅZ—IÒA™LSŽŽËø›r¼ï1Ìòå\"F8O.jÄSz[SN¾Ì1N‰]¹\L´óÜ*;[ÑIuÜI@—ÒmÜÄ¹0Jg‚j±‹«ždZ™E#hå™'û¸8·^•)N¨œÁÙFKw¼÷\Ð’n×¢ó¹’½»MñFÚíô>Nì´¯YýÿüŸ™¿ú/”žÑ_áo¦éƒòÐ!âúO½<ùÊöUÐïÃäDmðõŸ$)<È“’Â„t5x¯C©€LA”_ SüÐ¯Ã„‘™Æ´ 7º½“uë‘š úgì}.J$E)sœÅ–PLä _;©¶ê,Ûn4nà…Ng:v_w³a°ØxÎ¿Ûœ:ðd{ƒDˆS¯Ço¶…‘8Ä«Súþ©sËú]‰¦xë…9ã®‘b¾[ŠÃ-uJ'ÀÂžu¯„ìI}ÔÅ×™"§d`8´ ¦ŽP”6aVŸæå$~¿ß$gó’ ÑžˆŒzéý"ÙË¿Í°3F×oZQÏR±#ìle€ñGÊçþ²cñ 0gÅ˜f4lÁ{+ù2êK¯–rÔìÆJÃ¶7¹þòž8`»Ïšhþ÷ì€®U£/ ôŠ'°œT'võóÅ¢êž'¡ÎKKÛge[l"W?ÃGs¼È»Ò*áL¥Ÿôb\öïÖÛ]vü¼%$5ñR#ñ%8qž…FáCJ–•°Æøð†º)¶œ<Jk ¾hkºä¼¬¨i3~~èz˜‹¤lNEµïJ„ègQW2+Ë-©ÿ”óš¶)?/ùíWl•‹¼C@ð¿Ù1Ëè0öÉ¥à÷'Léˆzµ0Èµµ-¥ñüÌ :zX=Ì*_6çÎœúHŽGPe<ÄHãdŸÁ4ôökî‡,RæOm–Kñ§-ó´&L±6‚¤‡·•±,g4„€´ÀSHXœäž "ìxùåæ&¤ìfÁy¹@¶R‚Œ5Ö¿Sy-”tºø$NVÆü¹;zå[=¤Ì5ÔM) ïÁYLÿÙ<7ƒ]ÝiÅÄ^IDTÛT*ØÊ@8}^'3¨õÛçÜfËæ…·ŒÒõæÑ_(MÖ’´Šâª?÷À~ðÄª?:âÉ4ûD.F«¡ç;y‹ñ¿b¿«0ÜÛßšÏvÌ8ßTáÌŽû©w¢ljªõ£22(vð-ôÈçØf="à¦Ù°FW€DñoÃ¤VËRBù6ÊâÜXKSÝ®¤)©wÚ4Xˆ(6ŽÜ/~sG&Žºrß®ËÈÄPø›mó hmÓÎæ <’wÓ¨’Q)QØscI@•.zß«:Èi<£b*Ðxó(iö úÎ)çªÚÁdP6[¹zFæÂŽsÌ c¯)ÖÕ}>å§_”~ïƒSíŽ˜&TºÍïÃ°ß‚ŽU†žÑ…M´ÌJ¼¯ÿ›m=ðí•;kŸOŒÐ»rôñ^†ÍÝqîIÉ"§F?Ú3Éª²ä]¨¥ð ÿ%m/¢GZæÜËf ªpë¾Ñ½Ó«Q30ä]ãú/HÒÆä˜žðä¢Á(S$$ê#”ô¸[ÒëúÈyå˜°wm_DÖI–Ùh!j\ú!ýä!eM˜éä%oà—nèù[òH®HI†ý–‘¿Žò•÷ÔÖµ¦ÍLphº÷ *”“Óä0¬)Œh‚~¶|3I³ìí9Âõ@\ç]ŽÇÚB0^yØýçÒn²ðŒZ®sˆ5ñÊRkÂü~$ Õs¶BÅ§"¼rs¿@å^ýn¦¢z¾…4âáUlÞûÂZô‘¬Ñ²}X‘pþÎ ¼à˜fo–Þ¯ £ëÉ\6ú…ÝÃ 3ðÚc·þy-Ø @n’ª$ÔÎÝ«ˆa^7º{Ì»¢«ùDA1²4uÑ.ÙHX¶ŽDcþ¸Î—U`ípŽ¡Ò«ær¦„áØ£Ð. {ª÷¥kÕ!ùçMf½Ï{Vk“ÈVK‡‚ÒÄr})‡\k®¯XæûY)&è2=Ò™Ÿ÷H£ÃÖ5·èDé§Þî&HÚùÝxæF.†jŠ"Ä¸½[rxeWk¾Yd<k®êûUÍ®çA°È«%Œ(a}/iiïÌ`:÷Íƒwä4Zòz¿6+šTgDeÓŠrÚÉk¤1Viôá"†%ê°Ö!Ä3ê™Lñ$.€uË< õÊ•pZoÜBÕ¿ÑŠ¦mþéýât]½z”Fq>13A^†+ÑÑ$n"=¨Ùw'‡müY9`½òc3·˜^É;¤$ôû8g¾zb÷¦ëž—ª» ë×ˆOl]ÜŸ€~Z©’<¬YŠûY@®‹ÓóÔ"·v?BQ1†o Š» ‹‰(¾þXÇ.Òt[¸À•\à@.ÅÙ6ó¸ !$ž’<ößïÇ¨¾IÞN\,‘éAAC>5Jã+›O¦Áp-çÕ¢[³Úx°cŸÓµ>¬É–öe{m‘íÊýHÑÌ$o]ŒŠ7“›—nzvgtŽ© â½W±¢V|áEŽÏ¼m¦¸SKÉ|!±ÚÉÈæ8yå©C\ÿI7¾áuLÛÈaŽêŠ¬ÂT³ E¿YDj•®«‹4FN¿ª{ak{¼Ý„î‹ô5žë½‰ÔgÝkÙ&ûé„U…ÐIòt%€--FÊˆÛ\&™6¢5Û™ÌÖø“_¼ò|åi•_» nÙÄ!ˆß”aYôsiÆ)gGâ’é9>òq(,ÚÎ4‡ÇBÔ¤.…ã‚*”·]èÒlŠ¥üd; ÊZvJ›h‹<…žAÌ–r§#¬ðÞD¾4c~‚¯EaVä]Û÷Ô]àJ•^t2Ï,ŸU}!*Ù#ùÝ¡=À6 ¨.³Â´MÕ)8EyrÐè¼„Á ý\so5ã+ 2>Ø×74²(•r.øu³[2®8â>Æ‹×0{'À.1äŸíÄÌVrôMùr†ú%;ý•§·\>œ3k¨Å ”ÛH8ÕðÚ'3Æ—Ö –xßTq^ÉúG=)·Ò¼f%.˜³Ébù´í a}zQØAIx¢¢?ò=•ô›ÛÚE°¿)âtaÚàŸ² ó)LÐ%¨C‡x•iøËMüÅ,u¦ë$³ŒØý¹ãz_×ùªîLŽÐYlKyHúÖ+Â|h*@!ù©F>Z‹§\5_^î‹tfÄ~]>f÷ÄÔ®ÿ†zÚ¿#†»wk ¦9rÊ€(ú8ý v r+æiS¼Ÿ^ƒAƒÀ0&ï¢`ƒ<{•¤Š^ØàÐÊë}ÄªLQ]Õ5¢ÄßPÂ}p‘sèÈI³J™\Ý >Îk‹úŽ n_7HýMæHç¼¥|9ÕîÍBo{ûÔPK€«€xmYz¹]7Ñ;b?¿"lðáí{\·×½Ã›,(ÍùóÆ%Éø'Þ÷?AL^A}«UQØZÖü%ë–sÁã§ÜÅ%çæ÷Î“&zFMè~nÙá^H`g ß#o˜ŸœêùOØrÏ¿9»È<ˆ‘±Û= §Ñ™,ŽÆj„µraVÎ/Â'kÇN‹„; ØÒâf#ÎÄ“Ó—RÙ(é#sã 9divVf°ª]DpÔu÷ 5[÷¥‡ðG‘û±^fÒKáMä bÉøë{x>b_ÉØYrá B€êMˆ g¥²1SRJ>‡˜ŸŸ<ÝÏU“Š“àT|9*˜]VQÒÅª÷§Ñ¹gdf–¤¾!_É†L|²DèâãíÒ/eË¿4’=Bµ 37DöFQä®}Ç»|f®Ðx:K^aý…¹Žš€þÖ]XÒ=¦8ãß)ÈwÞ”¾¥·âé×¯5â‹G•OBê‡1m¼}•"”›¿p;¦°ðŸã ¶kÜ½Ãm1Ù6MÑ8ºÆ±ý¿ƒ hzÖãèBhF¦ú‘¾"<ù©6¼÷H¡¥¯ybgVÈ}½í¢†…ÔYÎ™1½™FØÉ:`â†^fJcš-¤T»R“J»›µå‡Áöa‹õ„ÕTý‘ä¿\Ëž÷›Åh_K¯' è•þÖßÖQ”ø8Ýâ¨ ñ¨ò~†Í‹ç-_È ~äsÊQñÛ3guj›X‹ßÍaÁå$cwþóK@Ê½¢ê™¶ñÆ/Që’„âðÄ³šfßY¹ižškãœÐæÑ3(”*+˜o Ÿ-’¸ßJÚêèÈÒ¸†oRW!ó³„›q 8gÚoÔÍŒƒ9¥SAC?®G?ÜŸ?€¢£Ë¾}ªDÀ@â+Än¤X•¤ãŠd<=Õ€áÕ"’²Ñ':o?“Ç;Æ9(5 AB¯2°¤¯î›üi¤,øá¦”eé"À9@Ô,ã 3è¤ŒP^JiáÕ _£5¶€n£¥þíd,éÌa^Sr<€µQkbñºŸmIi…ýÌ×ƒ(ÍgõO¢d•-òqNÏ£®‹T—£ÀæWðà§‚`´2¿:øvS°ŽÅ‹þ4Î)¡c›(w«|ehIÁnØ[M*jÈ³Üì9… ò‚Êë \‡¡‹ZÓ¤¬ÅP/[ÍÙ9W·¨üX‘ž$2Ý"ìÏ#OF\Ï[cß—–ƒÔä«¡´ÜÀùã«Åó}Ÿl¸’vŽ]†” 80$@p×–^ÉöSÄi¨¥&–Ý–\\‡Œ¥ú·Óý6§ È¼µ;Ã^jTðW!à´ç4»2BSááñŽÅ^Ì¿ï§LðúÒ®2iÚÄ„Uw±ÁÎ4‘ý¢1Au+³XÎ¼òáý>ŽÓzÑô¿†ÎÉƒZx(xF<ÀS®¥Û—7™†õmM'§M7VD²7 ÖÃCd‹lÒ×ðBÏÓØÚS¥`o¬1^±óv6ñQxl³à¸}Û§5¼ÕÑ|Võ¡ïœå]FÈøGEçpÏåP¡úŠQÿ?Üýè”ÄS1|‚J¼ö‡¹¾§S? ,,ˆ€vãÂu‚\¡à-shèqÀÛ“§âÄÝnž–|¾]Mî„É"¾Qq‡?®)È•*üÌä‚ì?W1ŒìeìMžåíu9ªÍR‚í„Ž61±¦0Ûæ™»ÕO|˜úmˆ6Oªå"ëýöIqh/¼/*º/6¦Brí‡Õ° dËRþ)~¾*Õ˜Bµ¢»*,À‰÷ç-ˆs#±,òJ›õþ’ðŒVyK‡bˆ¾iõÎõf1ûéäøšNàò‡o¤ £)yûÁKy7-m:BÁB¼²ß›M!ªo7½r]Ò˜¤~ÕÒEÎy3'ïìUcpè½:¾-S …i5Ð‹ÃÆgð©Åù¦Üê«B_ïÙS>&tŒZê½¸m€rG 4ßãÑÁõ¬z?;ÂZ^åŽ¢ó„:+FV’ù/‹·íÊ_!ŠzúÃ"ŽÜb—™=5h«ãróŒ2†ã¸ØÈz'ÃˆÒÃJ¦øâh¼ÒOÍA •…]DÖ5£¯DÞ¸Clmèžž|y²íå$7`óbÇ„8§ß|scå×kÔ¹D‹1 % )í¾¾®($îa®zùÚ×ÖUëQ_¢{~çP¤ç´ZïÐnH¨7Åh´å¥uÿ1}³‡®:ëÞŸå#™~D|q½ü{PÒcÃ·ÉNë©ëyÌ½”DùÂ…OHƒ¦¯’ÚÆì€c-œ¼×¬òP(ÄõÀµ›øÎjê–»ÔÔônt™$fž;ËAÈ{Óyë'’¡QšOÌç¬PÂ9³;öÑ-g;N0PØoPa·e#ÿoÈâ‚ÞYã1!ìæ€¾Un" °åÒ˜©Ó°ÉÃ(P…’£aƒ ŸK=Ò_¾wHÖ²mk/cE«‚ˆ„oc!¼„½~/èŠ§Ä€HA£Îªñ÷¨>1ÛÖ …6Ñº`(<Æ¸>£_ÚzðsÓdcâ“7¬jÑ³×<ó*œïµ½Ìf}FSÝCÛ÷Â³5ê¦rOÙ¾¼Ûñ@JÇúú™1ÕíH/Ù€²|á«Ìº1(WRéÑ†fµb¾‹‘ÿ!˜H-—Æ Ò9¬ToQy¬ïp¼ÿÕ¿Ï¸cŠW¥ê¨‹t1n‡Ä_øÁœuÿ4mJ¹;YA‡°³ØZ`˜þ¹±ô€Õ9ã1fWjWÂ4Ž@†ê¾{òEš"Éµâ¯Ñ*˜~NHU¸¼µ™,¤ÅéYÔ=Åñz–àõãi¯/z?µ(MiÄ•DÚÈü+T¦â|£€ôP8®¿Æ¯ UaÞ^rj—¬ÕÛa$yyGQyQ¡?&Ów+5Bù±œ)5~´¹ÃÞª€¼xÔß¤ÚD"DûŠW†Vè ¸;ê•}¯|÷4EI®-x‚„'Šã×ra|ØÖâ¤ö"«:TÝþŽcíïÙÛ/È`vò×AnP:¦Ôf½À¯÷ ¼È®üxqðÒíêã½&åÞ6ew%cøBf§y´^%˜´ð‹lÎÖ&m?âw†1Ý ”¥ì?®¾ô2Ô3èíÝ%=)n«ë¦…V*eq´÷Q‹D’Y'UE`òê_kõášŒ"”}‹ùHGÁøã^=oÅI$&è\Xñ_RCQJî¤C)Iáª`¸VræÁÆhbzûuœ5™Î§^ŽcÓ_’˜” ÷ögá£qÍIfý¥°aP"<ÉK’NÃî@Ëh/PNä‘ Ÿí‡ÀÁ_§Bß²šg{!Å!Hâ˜¥^¨ÇÍéÒÄVP`Pÿé ñ *¬jÞvH€åc•|eŠeŠó£uÚLÕÅz:@OòÍYnEŽþ]¶zH#¬flŠˆàtQ`ÌÃÓ”¤‘Ñ—’¨íqÔ?D.Õ`åÚ¶6”:4¢hD °íÉ ¼œÂjD)Ã´¦Bô›—ËÇrÖ%˜‰2p »kxBã’»Ÿ‡Æ™‘ûùj,'fŒo tù)þiåwËFÀ(7B.ÞZÌžªâÉ$é¤=ñ¤JúA[ñMä/¨ˆ’²QL0…í#k{ÿÜðëÎÀ-š‡w^Ryß5‚Zéà~Yqq ¶\Äq›; Ïö%¢‡ˆJFÙ¾°ƒW×=Z?]D¾Fðý÷²{¬W‹Ì^1º.LF»O4Hbâ«µrãlp9fú, Ñ¹¶ãógf[¾Ç ˜ i!5Ž¢˜Ga9G»\TøTú‡7¢Ò¸½f æJ¾Xƒ\”Ó-/r9QhpÓòÂ&÷eIkx&Äg0Õh*òíðØ|îUL_}XÃ»îAUr«Q|òæ‡Ã1 %¶ Í,|¯›F>ûx1û@)nÏ€{öÐ@Q&ØËV*·L“ Óü=ŠHú2ˆÄE·²N\M5‰eº!âNÍYož žÃ+-©¥ÚrÝ9(J3dW žp‹Z ì’»ç+¡ÌÀõ=ˆpˆËÆ±ºÁ½‹À'¿é#äð8ï*Wã6â›\H-w8§Ä™FûÇç…Û,4Eæ÷å¨4 ´Qí¿ùà(«îy¡‹…¨ˆëWJG):—€WThðŸè½Q)ƒ´NÄÊ„¸f;2îÔSÎëþ$iÈåÎŒ9Õ ûrÙ\Âî²_j•hÜ¹"ã«ÉZHzLØ'¦ä–Z¢dRyYæòÂfR¼Çï@Š}Mv«RUÀrW¯X>Ë~%QvQ>ñ™Ç £ w>`öè6‚ö×²1Þ³a)Íâ¼Œä×9jÆIe 0CÃ”FB\S“„ÅÌ8'q›ÖöçŸ@€¦»Hä4µŠ±¶š’¤Û‡¥7W%å¥pK¥°ñCb}{=ò‹¤ Uû["ÿÇ•LmÃ-–g«5‹²ÙÇÉ1pÆ.Å.‹ ”UÑ›<½¹„Ä]Kö™#)d•ÍÉFOIMo¯ÍÉ2Ï@âøàµ§5t¬<§ç-I¶öõ†¨ÄF¨á÷ŽfÞLØ3GiÉµR†´[K5‚³å³;9m¡‘õqœüàß,,Òw‹W’æÙì©]©iŸ÷ 4Õ§ d8âóœÌAÊD*£f[FŒõÊ\Å jæXaOQˆön:Dn™˜Ðœ·šwþÇ¶ ðÕ™Þ H8ãY S†BŽ´æBf8¿ˆŽ=«,¶b:^ }]à%C*ž¯mÆmñ¶š¼BÉuÆóõ4²/3~èR7ú©P(qy„<î`ø—¤}G@;7îYÍ¡(è4ßÁ9ëR-ª,ûÇ0Š@TL¼n3½¨”ÊÈdûí¼7`y©ÙÌæ:ÂhÏsPx"]¥R ÷A>nÙ~£ÈôcW¨|÷G·›9ŒÈÐ@7ÊLÐ xžØ ñÏ—JˆS"Àè|³~…8œr¢‘À½Ÿ˜ž¦uŒõ$5aÑÍ2Ñ- Å°“À¥úšÁµaÛ·ajÒØ‚Ÿ æ–ðgRgƒà®,½âÕÀÓŒ¨Íó{ûm´ÄÖú+â¦Ok”ßÝ`»]\jOcbÔ|¥êH”kä]õÂ7sŽLu>wÑdQ÷;PÃU¡Ôýey2²šš`uåWñˆÛþ½îc0Ç8›!¶‰’êhB]Úu%½ï°ÌäõúQWù§]¾kA"&0é4;ÏüG<ÊBæ™;bÕ3›øÃ"èÃ¦ïË3c.4;Ã4¦öÝÄãÿè [E‰9Ã00P1³‡Þ…Ñ”$e>*evÄ ‰´JLU6¶»aàëcôsƒ#ÌŸË-‡t”` Kü[5ÜA<>¶½?£í n$`†é¹^å3ØÁHM#á~èYgi•o"F*GvÈëRÉË'¾¹ÎÏâÂ”9mñXíÿSÏ ŽÔ6w]ŸôWŸIŒâÁ¶ô€:˜Ê8O>Ö=lËdqé0ŒŽ7ºÍa ±uÏ27¾îÞ‰½~ w{÷ª –Ào®>å t@nÄbåä+ˆ&BÇ±ú2¯8 ótÙpFN§&Gòã–Wå@Ø# ÛRÖ„ €žH¼é8ùâÃ·Õì–Ã…øoéj,{½ó3r^+ÿØÏÆb:þX“P2ècöôŸ.zÝH9—@ôG¿Òh]kŠN0'* Ñ_`t†U‹Û¨à6L…QÖ•vŠÿ¬˜´J)»|ÖÀ&E¤¢é~ùäš~3ï‰úT,OÅZÇKÜä8è‹“€5rµf&ˆLõ;4)ˆPAÌ;"íOJãi{$‹û~Wšðtä>©hCÔdèã|“3g™™÷UöÐUŒôëÛYè¶’•¾c6K‰Î€Sâ+¾xE¶QYÌ%;×u˜ÖWÓŒŽw•µ;ªðµØJÌ×¶ ©ÉNÙç³Á#Jšƒ>]ŽwÕšˆå‰]¼Ø=˜²NêÙ#é¨.‚Üó‹N,©zI¨Ü"!{vÏoBä9…O£b]ö‹£×º »)Ó3j’ô•Ïˆõ_‰‡ÄlÓ3ª]ÉÔ’ñ^éÂ¦ >É-éS§9§¥2–@Éð–„Egå^]m¹F÷LÛåÀ§¬…ªªËpdY1XskÏ.ñ:¤JÆ„Lx,VKù[ÚkêUJt‡@“K½ïœú¯¾ZwÁ>¹žâV¹rrÝ¯HôX™ÿNWÞ0ÔÚÀ¡¼§øKµÉË^ò'¤ÄT1™“1b_ÌñFõ¹RëP72$4§áø“úÜWcPãôZ†øÁ°RcZ úµôO†60ý¯Õ4àŽ™•§·ÝÕŸhD£cê‡“UÀî¸E×ˆ &€ÇOæ{UŒë•‹'Êú=ÖS`Ò5+óy:¼!5ô]…WÎM¼PˆúFàŠŒjPãKmkeÛ:OšÚÄ2äÌÄÇ.ÝŒ s¦Z" úsÙ.õÎêx‡„±WóETS¦]ç*ì°ú˜räùs¶è€54”¥Z°b·j‰ségè‹e¬ï2‚`o”“¨x–rX]O6ÛÈ•l‡F•¡Çx¢€ Þ20²†E‹ê·ïrµ-úôÿ¼Á¤>Â8ìX‹ÀžõŒÖC…2U2â\¼Q‘Î%CÚ¼ÓÚ¬,1èiºáø¨ÛùŒ/Ì^@ñ÷ÿ=ÀºÒ‹}@eÚ¥›@2ÊdåwpË}Ô6Â;t/z¶-Ø¹…&* ‚½NdÍS”\’uI>OãðFEº‡{Û0*Üƒ×P=!Æ¼kÁŸ=ƒ#IŒ„ÑÅ†€áu!›ŸV®cˆAâK²Üæ¢zaú¸ÁQqèËžºè:÷U¸©|ËºW°Ë¯äL¾’7ç—}È¡ÏÕÓßõž^ÐÛèsüüÍ3¥ ƒV„ší=úcÎzÖ”Œv_?¶öjý['ûA–Û³\ÈóÙÒû9Ÿ°{¦¡²$n$÷r;"Cû#ý™‘…B¥=Â‰YŠ«.ã;‡9‡ŽÌ O¡Üûè£®•M‘åmoÈgñ?œMûÐÊkÚ÷^lq,ì}?×w€'ê”¿*ƒ,Ÿ,Rj&óÜFéðKÜá,‹àl6tŠ2gtX?Ù$àÀ©-öÈÞi+0œ&Æ¿\áú‡‰FÓ´Þ5ÅGO+$hQu›V¡¾ÀEØhzÖüàU×»ƒÆ¤»ÍFKÎÙz{st|gm©6ˆ~3üƒXÉaPZCm«™q 5Óhr4%Éä¢ñ@øq¾e£NK†yO4’æ÷ýIËñK°?µ1 +ùåÏÍÑœÂ¾×|×–ã”)N/…¹~ÿô;/6ƒA—a8 ¤s¶ù†>¿Ùvº˜òþjïÔGÂ,š€…ê5·6.]Õ²†Wbh;ÄV´âïþ|ÍjL¤@¯ßSåÆêtn€0‚‘P’^ÑFâ `L ‰ëŒãÂÏÖ†øöU^•ÈZÀsÀ.’uŽ/7CiŽ?‰ñ\«°2—-Q»>*dï úÓ%¯$2'+S· ':u7Ë½¢–ŸO§~‰Y×~õ:zåBqC«FR®ö‘HðUnŠ-ó†oÏ¤”j~#•’y1ôàÉˆÎbpÖPþ²„è3„˜J2¨Á Çøér›£ˆíö„å˜Ê¸RÇ Ô|Ñê[½ò¶¯~Í1œ®P-ÔÃo)›ùõÿ¯³ þþÙ6¾üx¬bð:êG¬ÇÙÍÖD¬!˜fßåþÉñƒ‡¿)ZììmPýØ(òj«×J®ìöõ£î@«œ[Œë~bÈŽê4¿M:]Çñíž^@fèj5’T6ìàÓhÅü6ÉÞ6ñ2ÒR¹Þ{ê/—Åˆl[PÓ{éJ¨ÒSÉ;Jò†ßÚÃ$WOºuö~g«(çÓÈv8íÞ"Ù¤pÒˆGfˆX•¤Ì§ªœ=päÃGm°Öµz®å÷Ï‰Ÿ|Þ5Iøxá÷MU~ÅF^›å2l’©œ Kþ&Ùh÷™ß€«âÙè zÐá×¯Ÿÿ·h ^èèY.TÖ[]ƒDb¼¥£†Q ¹bXB’Þ¯—Êðè_±÷qüL+°D¬eHa¹ÿr©$q§jAA[5¢ÇYnçµ®aÂY›}Ëà~éîÇ—©Êê»·•FCÊo‹[hoæ5ýÂø5t !ÇÒšÚ™ÖUNiÄ5p±ø™EgSTßghì'¹ 0D§#¾ôÙð jÄz#ˆÓnÅ\Ç-Ô`]ÞÔðGÁªÈ{éwþøì’˜Ö@lå»+ßû¯ùùtFäžc:â LÊÿµ²§¿+ƒžrR¤Tœ—ªNW{+2ºÈÁ¬»¢¼KBéëvr.–œ(ü ÝÌf®ÂœGvr;b¢á’ÏlˆƒÃ÷íNl–ê¼/Éw”—v«€åéÛxæ?ýîÀ¸?®ÙÈ·#¬<ßah[RÀ îœÏ9gFÈËQœwµMìQ5C1Y½Ê¾è “%Ù€}¨ëøßƒ/ù³û³CÄÊÕÒR™L\ƒY'Ôƒ‚¥œà¥´ô:Í~dÁÁƒ¢CŒbmMZôw2c?ï?‹IíM~{ÏHq€SI“{‡ÒÒ¥ÿ.çÔäZÊ£*:”0d»¶7âzbC£6Þ©¸]jóE”ÅóÚ)á^ó#Ã? G˜•?gÜxŠRB±ÈÄßOÎE¡z¤;ºØö³{©®˜ÞªAæ[~9ƒn›‰zÔ?7eh¥§çÆýG²§=yÈœW*6[ šV¼…ÂšH3²a…UTêGµ«ÙrÞ¿ïÓô¥yW"§Zd ãÑ_¼ÐfzÝ,Ž·¯I.+=î@ç¾ïÆù÷à#ÀöCôš”·èÉÃ(ûQ˜ºsjXâÐ§zÆã¤ú{Ðû'¥ÔqI$&õ^·_úi‹â¨ÆÝ×!ê¦žAšê³£ëºt äê*¦4*‹NÂ<…—V¶{m"h¸Ì“‰»³¸M±df ³¶»Öˆ±¥ÍúOùv: œÉ[nFG™€ËnÊ›bßzf¨ßÂ+>@”Ü4°óŒÇ(Ñ˜îE9sÔŽ¼SmT$¦Á(Öõkpº€ÜðYíZã¶½Èò¥¬l±sà)ìrsh¿'‘ô7–HßCëN.ò&Q%|f³âYR……;2 —á8§(Zé¥¾}ú ²ˆtÚÌFx1•Â„Ìy˜ãÛ#¯ì`f·¹uec=Tf?ÐéaÔJ¡7Ò‡ŸY'nøäüÊ6ékÂll%¿´ bÄfÌO×¥¶‡ÇÜMÔjò;~¾ÇäÜøîÀ®+‚¡a¨YØ— ñÐ}ø.BÅÝ.a_”Ói„Èl¤GÓˆ—¬;ö,[-„°‡$¢PÊ‘ôXeàw`ÄáB ù0ÝÒ“Ù-¹Ä—ÞŠFëßHî+<ìbô>melP\¾$däfÓ!¸Eì„Ý!]ý˜¸˜àÊÅ°ÏþOhõÒ |›†/~ÝÆ+ê`ñè])oNú‘v2ü*ë?šëë E/ß°í&™Ü8ÉG'ü)1ƒ^è.²=s?}}Þ}eDºy³þšé›·ìu`7gBÛþðø{³4§kÌ¿½\ÀÖâE>”s_Þ#knUõ½J¹TxbƒÙŠá÷ÐÆTäô‘áà*5>Pü¤Q ÁºˆbY9R«ÕÐÌ9œTýëJ\¢H: ùßâ²¤Ï22 }M Oïf_xýæî.XT‘.½ Lð‹hpòB©…B²~àÛÂG)}.j?•$O´YŸmCŠ¬J›úìò¨æexsØp‘UÁ*,K?(Ù&"÷;¤˜>lå«5ŒÉ¤b¼Gd‡r‡ZA Ï_:]ªÍä&ËµRXJT]Ù!ªÌÏf°Fì^*<ûjfDŽ|€‚k.ÓÅïÎ*^ Q‹Æ¿O $DÙÚ*£>aëý°LrõàÉÁ=Yè}îÇç•M¡_Ÿ E¦{à"‹9¾*0¹+öxŸ£³õ¤5ÒR"—ªýáÖ_ÖÚOU÷hj¿Y?liKÙëùV#¼…Ú<¢—ÃŽ’™Ë° '‰ p]ö£ð¿ó_é Dâm¤sºe)ó`žµTUçQ€¼!IÃðœ¦à…Mñ×S --ã•â–˜ûgt_oS<Žåê1Þ7hw`GÃz£CKý Þšq[ëÒÂg\ð¼‰C’FšáC¶Á5•*#? §yªD’SŸªÃîYë9¯ýÞìrÒ—as‡õ6#¨Æ-À ¦Xø6¾Ær`$8ÿ²6#tÕÏèïP.‡N“•Þ>A‚Dó:Àã²‡SÚw¼ñ$-©úÑ}µ¿›ûÎÞÝ>¡¯¯’Bq’æä*ò¸ÏóaBsÅOL»*óí-õn[‘k0Ì÷ž2&#p!fLóÕ ‡Øq!†¨ÄH[er^¶ÙŸ„¾*ax©øQhÙÑËmE‘Î€ƒ‘¼:”¸rY¹]«böøì†}Þ`«jðÔ[g@øI²^úÁqÈO‰±.§1 ððd) ÂÍO¹hÑY¹\BŽ{e¢Ôzâ,[ç«ÅÕøˆ=ÁeIERY¨Ú¯ÒDif4 ˆ½Õ¢º©¶±¼®úI£(”ávåÛ6ð›iãù4´…›^-rŸ`ã²ê¥j‰Å‰¥ƒõy^éÀ¶ªå¬§>ˆl’ýDq#$ëwLE]:žðººÍ°‹ž,…¸6xyvì){8Lr›SþÐßÃò„9ç¸~8%ý·¤GYwžÏ¹¡G{§0ùÉ0Ìü;Þ=÷w[È^OC±±Ìj•óc<äb¦-ã¿´x‡M ÉÙ]6c"1Fƒ‚#è›*PÃk™Ø„¯}°ßÆ¥’hÄª¨ þ/âž0RThüYÁ¢f€|±ÈG'Uó.(m–åùDù¥›‘¿ˆÝœ†ïÒ¤iYhiSlæ—-[óZþäxIäöãisàfÒßÐê›ù'‘7úÐ‰´`Çrœ2vCGtÅ´Éôùži”Dw.“†·í€»üþXY\=a§*³0t»èÀ‘RˆÚ}À±’—/*j#Ût&gÁD¹Ü/ƒó¢ÿ”U½¦Yñs–È×‚(v—ÃÙdJ@Ñ³wÉ(Þ„PôèŠ×ßÈ‹ç·"ÝpÀ!¶2à-;\œè)-¬ ‚ÕýqO,Q¢–9rLb{2Ð2œdˆç®«f.[kuï†+åÔ¸¤Í•Å¢:T×ÐÒO/ ™ü,ŒÉyéõmÉ2Ó?…ªaæ¼¹ºyÀÞ“RxU=‚ÿÏ*]Pƒf "w1ZÅô>ñÄ2Y'€çìœ4ªyt™‡Utî‚==‹^ ¶b(ý"À|Ð[wÀc,àœYŸÛ7íá6®Ù;‚Ì²6À/á‚Vÿ˜ßB$ê…X¬FÐ ¤„yÚËã²$¡!ÄÑ÷ßO ¼‡P½ìÊWíÖñÒ²¥…æï2ï“q¦¯—21”¶^ß——îà)µkÛ\ž0±H»fÀÔÊJcTÚBˆÀjKßÒV3ÎB8^$ ¬G‹ÕòFÂOCØ’âåp‹0³¢Ó ¥öAÞŽM*ÙýÇ7ßÉÙ€3LËÍÀ&xˆBøáª/µà‰yN„»ö`,MìJŸ,ïU žçÖ—_¾ãq.*¼$¾®ò+Jfìw„Ui` xW¥ñ(Á1Ì§Wº½Ñ0ÿ+Ü 5ÛÃ‚¢’†bÓ.¼=wg0Ô²‰s“cVÐœÂyyq›©1Bwfý°˜¸äBÓge<5B©0+§gÈ³óX ||ÅhÏÏBþÖÆ-1÷=KTº#Ý—ÓöÊPôÓ5J6Ë%ùFðçòvâ¾r(ÍpŽA‰Úæ½A5} Yâ)_—žç5^á¿£ÐRyXÚù˜~ßjZUPÊ,¾$V~xòÌ"ÜÁ¯)®0YúHCbn,úN.×"¸‹‘s°Œ×Q"g ÎÄwÃ{2fä°Í¿?"9òü‚dÂcå'XÆX´mS™Êð¡’LöZß£7ö–Îšª/s¿^»óücÐe_¿;.¯ûœB@ä!2À'±øAÎnäÜ„‡þÞî™ëŽþÛIlQ‡CÍ.ømÁ®úkŽ!£R0`Eˆ;÷.ŒÊž6Àbš »‚ÓÔ²3—-þ›>º‰h–L8óÑNøöD4^»yõ"W»Ô²›ŽeZ€ô±ƒEÏœ'Qýš½Ÿâiy®fòB°¤ÀOáÑ \Ò®fx;]%£ÀdÐ‡Á~±ÝHìÖH¹ä6‹Ñ¹<0Ä&O™Š‚³lð*¢ˆ¡Þý_®}±mÛEC§ì:"„V¥öCU6Å5›Xi=·z¨ŸN§”ø)oAÐ‹F“å”z±@8êÇŒy§|H½Qç«£E•“X ¼{M8F/ú7o¼Ÿ‰(Gßš÷Œ„¡D4–'Tðõ ¼ZÛ2ð3 ò4CvEsiS¿¨ÇÍ í´â£%ÌêÛ©¶*¬_ˆ¤™6…[L\ Ó‹13ë×"/D¬›ò;%OFN£w°Š&å”Ø5©p‚>Ø_ƒ—§-cºº”FØ_ˆgg0ÜjÓµ´d÷ŒŽ2.f¸ñòÝÓ£M:‚_Î1LÓ#î'}×¿(˜e¨xxùWùJxÇ•kÐDŒÁiXuH'»`ËvÄã¢êýÚÕ [ Zó¡—÷/+ôeó@€ê(Ä3=UÀÇ÷áÿeøÚÚ2TûÓf-ïŠªlÍÿCƒg9ÞJs«÷Ã×ÌŸKÕEl@Û£«º>rsŸóñ•†_R]{÷ÐLà^ÂŠ‚¹VÑw`]¸c,Ü8ŽIÜ¯ÃÙû>Ž—Ø6B>K4ý{–zÄ+s#A].ïYì$ûÓ¶ Ã£’k³Xù¢¾àå¿¦ÙFÄÄén›y&—üþŸ"h>µH×W .ìœñ¶×ˆ&6CÒ§ÃÅÞHwo€¼°ëªL’ÔRa«×LQö©Ü†øñ5Á+£‰g°ÅÚ=>¨i:œ¡À¬e£òÅŽ+)héÐÑí¹çÎÀuÐµ på"*~ù§à¨>µø^ò.Œ¨û™`õ‘_fLnäExØœ9)QXÝÛj¬ØG}rõâ Ü².cNaEj,Fädõ…¾Øärr³9„]¬0ª¶3p0êæÀî„šmÀêÜø0“°s›ôL´.E‚r~¯íô¦½{ULv-æþ<»Ô®s=²¤å}ä€±2øÅþÿÔ¥E Ìz_/òéh Ë å–uê´6êÀÚ-Ÿû”›3™þÚ9>Ë5Ö§¼mÛ˜°Q„¿ì1†á×ªþ<æJl‰(£Sçà³{LôÊìsDšPp°ÓÆží°?F¿'çÎ¼q©JfrE;·~` ¼CPŠ†UãØÿ)k†î¼ý€ã[éØ’FˆN>3²4Gtë½ZÙðžPÎ“·DâåŽxÍZ²D°9'/êþ®aýÍ>†Ò!•y{û”¬'±¿üËGŒ³ ÒÀ¿±£MTª4»b_F~¡{hÁ¯ÅÚË]?ˆ=³PÒ!ÇF¨€Ú¼ºe_½ãöç`-÷ üœ`¡û†ÛFÄ¨Æ‘v¸¡C”°:ßóÿ‡ç=,»Üf®‹cuàŽ&¡áz:ô>éXçš=°\¸”jâf±@Å0ùÂ|kNˆ#Ì¶‹G]w/ür…fwRL´HÙ·A ëÈ”rù*%Ó‘êjÍa1vj”“Å8ójû¤^`‡0V¹ú†r9®½»'Gü^;°mœÐÝèàVf:8ôÚ‘‰©8ñ1uÁqæWw[†–†®¬:·_.>Á³ÝÌéüX@¦ Ù='Î%¢Ó¿¾p\rÆm Þ%âÕ›÷lGŽ 2p9©mS¢Mq$ç-?o5töîÎâù@®a@½°Ý!á¹MÑƒ L,³'†wpQ¿/šÿ¥Ÿ€¹ebè¤˜nÓ¡©1g™©’¯Â>ÎŽ»ÄË¼¢·,Çø™!I,ì>zÉ9nécªÇú‰¿¸ÊÏd¾'÷8ëº@ŠŽê‘©xAU·2Wu"1â¼=3‘†æ|Âàœ€òè¼ßÅÖ„<ÀÚ¸çÏb€ì:nsƒÂ©1€Á‘™Ð‡‹ü†ûhlìÖL©Ìj%¿T\]Ù12a¬úV»†Ýˆâ†‘ûÐÞÙÍ/òÝÎQM‚èï7Íˆõ.ÌÅØ2j%ŠïM.'a6OÊß‘Ëå¹¢H¢à£;j. i¬JšÏ””Ek^æçQûð9(2Îñ½0HC€~mÑærö¯‘ü*†¦q#Z‘Lï,½Áµr¥>aZ¥äSe‘:2÷ër¸<Ÿ!wâ ‚Ô{Œ^¥çsl>´_'êWCtok)µç±>FûCš©ûi)‹,<î‚Lû¦m {$fLˆLP<‰·gN ¦âÃDÈîÛæÌÀ\2vÅZê¿ óér{(&³„‘÷ —gŠ ûº#ê8j1k[Ñ'p’W‡ZÞn¯=°ïF0îjÆÝ<$~¡ýÝéöŽàƒ«×Ìƒmz]X~ñ‘\bJ»e- ä±&øç?'ÂCat>“6ø¯¿‡“¯Ö‘-†zÐ#=eIokTjèÓvèV¦1â9Xì+þî#T€@X³ê‹ÄZü±¸iOrígP$×;Pà›é87Œ¢Mpþ9ŠÛ#5¤÷à%údJ ÜêANI0tbFG1<Óû…Þ¦êI÷âX¡ !uãF_ÌÎHÌ0}©µ‘k€ÿ¾¬.)]1XÊ±©ÎžÀ‰äõnrÕ<68I1ÍÎ³â³ûÂÐ¡±½h|q¶ðüYtiRs,ÖåèšêM,“àb<&ÊAJ…å…¨šôÊ•3.gzƒÝ¼!³o•ˆµbòúô‘ !-ÙŽ†ú×ËPp0ä+ùèQ(Î<\œýÏ×[Kõš¨CÎ2°h»•™Ã»‚tô^!xB1`‹öõ±&Ð½Øí·‹0eFj1ò³ô¦qxi£ ²À¬êá€vC²ƒÁ¥&/ÑQU^¹ü'~øYÏqÂÀ®:$=W˜˜A'$ û¹8²amûx×`wž‚×bygP‰ÇÞSVÏ±•ë˜tüìaqÂª¬bÒÌîÿûÁ,ojwùh$3ÆÈ~ 58‰Y§ç°³…e lK°ð 7Åk®Ôš0ªR‚^ááBLeI¹NãV†DÍ9)§1ã»Ãˆ§ Ä¬è3í±ñSÚÁUŸ+røÖ¤u³|Ìp€îr:ÌðYôš0¼QFb4¯F—LØDU‘ásÿ—¾)žA(Û¸fBgC:ý#8¹-EÙ…Õæ›ˆî¿2uÂPÙŸ,1˜}©±rQïœÏh†‰fò+CÀ¹ vZ2èŽ>9&íšÂmœS¯™€ Í«!—Æ£Áã×kûàÉ¼+Ãû¶sYÓ‘©Ïð%ñ^iEñã_ün3v¬â =%Þm> }" <ˆÙ'Iè~Ý ãñ~g‡{#.'Â±D¨\‚ýýË²ØNÄéKÂ\ËyDäWR…;¤‚$ÁÛ¤gksÃE5§ÕÍÍ´ÍÅ$CÉ)šãX7y0øFcÁoXÀåÖ™¿ïX,ó"êVè<=(OêF’aÉ6"e*#oFí+Rø°Fz[G!óZ³(é};BóÜÏéÅ¨üx¾w U¼Ûêdƒih’PùóG±·²uÐùðÿcJš2ª¨É©ùã5rÜ&¶Tóã’cU‚îJZö‚§NböBgà‡«hHGÜxÿjaõÊUbps-Pñ?muô²SgŠo ¡E}ua·Ù—8w¢CŠû HE.],ÃAË_$ì»g†‚ì\™æ„^Õ¾:«¿œàt]5“iÿ¹§&Dä ƒê ðƒ 5ºÛb’yþöð,¿Nû¢2(þU]§80,\)œW1òQWó mGÕ Gro»1÷P˜Aw›HïÆ“,`ŸÄwqÇ…Ù0÷Ù5†*GÖbÒÌ•àƒTZ½3†K9=ë^¾3µ€AýlDÈÉ´N‰K8”½Q ÁÅ•H›n†=~c†ŽÃ›£œ°"Ô¹ú¡ØXßØo$»‡o\™¤Üª{ÝÔ |_qÙ 9t<Þq`Û_¦UGÂÀß•¹0 â˜ÎH¶`ðeš‹=,Ï;¾‘¥…ÈJs¼¢õÏG‰¥ƒ¬llg"mØ¦„yqš'Î·Ìo¬”ÆÒ¯KôÍSY}Rüö¶þ (x‰“?ÔvnpzžîøÊñ6®¨l›+êðÀJW³Úc`Foµ€Ì`ö¿\&9€cY¯wHþx‚&J*ófJö ðüü¡|¸ˆÌ°8E^Âw7„Ü7²ää¾§–ï„6âå Ž1 Ó'N"¶ó9±5¡ƒ•zY7ºEA„ñ–:E‘li ªDãlU-Ç™DK_Ý2SˆBl?HµÆy/x©Ùä,<§µjÿ»‰&™~EKû€,Ònä5®Í«&ó`aøÛùê#‘pXRHâ8&JT§²>0ZŒ6¿VýL&ý\° æÝâQöxþ*‚ë‚b¢îèuï”*¯©@EvBxìª»" v$”¢´w½¨[ó©ÄËŽfzËøt…r°¶iGŠ‰/Ó£w1•ex$:¸¹ú)>pYŽ±{xÙ“XiÈÛIçMõ¬W×šT>$×Ï€’è8÷DÜ‘±ÉJõ¾cn'»~PàíÐå`Â¤½Ô…|÷(ïûUÞÃÃ´†þˆ%.Á¥Ã\$ÍÃ YUvþ"=áfµ‘þ;¡l®J±•KÇáô5ÄX+%õéYŠ}oÊQúz€¯½Î›?‰„=Fß8¦à}ÙûÛ¾‰¾Q8“¨Ð‚Á*7¨Èè'L4¯3Óðæ‚tŸÇ‹7:q$•ök ,W %($¨$EiåæÁÃH&œ cÚ‡óŽ§|²°5<ŸèÅ6Ë|ï¶E)áAà)þÃZ”¤ì/SŸ{ÕÞòÇqVlôA&uˆ R:¿.Ý\b®lO¢¹ºö#r`™e¡fà2¡ºYIÏ¼Úcãgí²aˆD5,þŒF£Ðï$9á„vè]8å])@¯;B)8·á…Ùê6Ú½eš1zé‡³'-‡Öâ*#Ö,Ã ÌÁÀæpÊ Í×îYìˆ^s·³ó0,*iæš-kÒ Ò`å¤P(úàk&„Qyçšæ·ZÝgƒ¦À6 ~Iò‰B¹±©—Jfáÿ‡•-ó©’½+VÒîrähZ]}~5ËTKüÈ¶û‚{ý§û%î“`§ê?ž˜s^é¯^Yro:»¬‰yä¼«<ù @V[˜c6Ë¶¿YOVG¥ë¦EáŠîwb7¡êà–ú(Ã6è»÷2¨Bˆ´[/P9½`¾ÊÔÌ~¯ö~WA÷R?Vÿ÷WÎŸ»žÍ@<þ ¿)í"..yµ“ý¡ÇK-‚9ƒq¨ÎQ‰¼ P|M"owdÎOÆ¹I«tú˜È ÌææªÚæà¨ êòyÑ U>¬;Úä†ëØô_1(eâ|›¸¤XEÍ~²·HFFf- GU¹8³ÅœÜü™Ù„ßì£Ä9‰7HÜ‡áéŠ²¦Æ×JœÆÔ0VÚì?€¼¯ön&kEa¥-–¹1á ©rà2ê$TåGˆ-d=e™nNë8!_Ó6~ÙñIy@ë:„ /HÒ¶b‡ä?»EçÓ)¬€Ž+÷ÒÓµ¹o¨óµÃ„ÏG‰6P²h@ùÈ‚V¤^q´á‡Ê,?ka[µoÝU³m×Ùa³ºCÄX„CnÚIæácÅì°%UÃ ç·’N!ÙIª,!KÆ³rV˜Ý¸"ÂÈº‘²-¶™ÿ1ÜÊ{s‡sýü„²\Ãèî÷ÒøçÄdÂbi¹r…[ªŒ¹,~6À`Ù<ª>øèUŠò é®V5óá"€þNë[eÀ«Aò_EŸÁBƒŸXM nªÍ³® ü³—G*ª¶Z =%íÌÔ”à¨ðqÝÇ„™H ýB¤‡Íäzðé‡¢™Û7M·MË‚ Š)Ý[™!º%ö§0øG*ÐQô vüdat³ËCÍ”ìJ3QR®´˜l€çq¸jA^æÔl½ be˜n@´_àQÆAƒ‚$RÉ„´QÑ™m“WeZÚêhkÚ3×š¸?*§9'v{C›g3&ˆ²JüS]æ>e.[´]t€B7šÛ»N:ö1ëÓéênò§Q9,Qó‡äÛ|^á/ñ²O×cÏØ…‹PÇŸºý%:6;Ûdyn?"Ç%¨×Œg[ù¬¬ÜžgV/}îô5£[‰s7x’/xqPQŒšcCSIm Œv£ 8–4`yFÙ©OÊ: –C¿½XŒaQ%#yu–{ñÕƒP0U6£ÂÄ)ïØ ·«tB ¯£<²WkKèK›ÿè™ŠP–Q£A×‹(}ù©óÛë¢Q?0®7±Éëà•>ˆK<ñåÓÄ§ˆ_!óÿ)3ÑÉUýn¥j”f#€ë¯˜càW‰yˆ3bÅ0ýñiMÂ$AñõÔáM[ä¾Tôe³6 ¡wéãc~¦ÔgLe‘“ÚZ jFNeu¹©´áõ½m+Z§ø¸ïx<~$Z«ˆ°‰çZyc¨ŠÏ$Öy@Bc‹Ý¥êÈ$ô„wW]'=f¥éÊTþd›rÍ}ãœ8Ãà*ŸC;oÞ[·ª42`K«èR› …U ’l^-`í«©[føÚfýêh]tAÔ™ÄVçõ‹Ï”Œ•òÉ.ÑhvÂ~ÐO=Un_ÖÇ*—À°žÉ3ŒÂäš€À®+pôÈòßlíÖ;ç:ÂÚú]KÂh)“t4xÔL@5ü2ëD+f÷ÏÇ†’{}^š58¨]hœ™‹èå¤}Š0ê44Qº¸K&ûX.¨`!1Æ¡ÚþçË¦©¬ä«Q½’õ^×öÕ-ú8ì)¼Ixð‰†:)*¶HÅ³è³dd¾3P¨gxf)áõÓÿ TÄÍ’†MÄÿP|I9lÕMÚ¬8ó©Gw™Z²Ó‚¢Ä¾ÿ¼”\$¡ó„Èv´ÿ„£u/J^¼öËÔËé‹ªîN…Ì37dxX#H ~rUïY*O6K½¹€½úåëOâÅ o-‚7ËäØ»ÎÉxëô÷ ^eè]Ça7÷šèfÅvv‹]ne¥¦{n(WfÝWýõÜe?ÍgÃ+"ïÓ±&¦Ä¿"¤˜E.Fp;`"}ÄãÂ³€ÐÅ4û¡õ/8Ú]úòg|s8õ1Îd%aZÿ1àIpLqæ¨m:©-2Ã7I¹°5iýCG*«ê²Î…óÕR³ Ê¬l¤¡0Œw«š…ýG{¼`¾ÓáéÐm×%[{MF½ky<¡P‚d.ØÕßé~&†(H›ãQXiÌZî$ªÊyúÅÜBÂDT/Ð¿ &‰ëñ'÷kEH°*©Ï[èvPÙŠ>¿©C'AÖ8þH, lY êø™^%Ò ½´Ãèþ«rˆ”¸IþÍÚu™®HÔUØº-k©ÒA½H ØyÖ[×?-ÝùÈ}îLW£N¬—‘eÄ<º–.K¿øUhAãÄ ï"º½t7³h}©YòET+øLëŠª Í)sÙðm™U¯ƒzŽsžØaÛaŽ†•² ÞWÐmž:¦°Â4ÃWM·pbÒó;U9¼˜ü©ý¨‚Téßôz•gtëž²Æ«»‹Ñù‘@ž½j¥ö64þÞWE«ˆí-^‘¥^Í£Ça4·)æŒÉEÏ}.k,É¼Qƒö~ƒ¶>ò™HT²+~èCè 7¸ËŒMå /,ŒôvÂ†¿lØ×2Ò¹ üŒË‘")r}U_û ßXn”ùn ¶£ÜÕ‡„´°’QÈ¯/6†³ïwtŠ_úŽÙÛ_üEÄ{ÂHÒÏI»~%ÁÿôeVÓ%ËÁqëdgs²! ·¨ yd¨ºêÓm% é „¦û¿N=ãÁÝªJ]—&…ˆÁ½t¼ÉùØw¥jèà÷ú¾gÛåX' nšæ—ÐÛJ˜ÜŠr™tQj-î<•¿äxyÃ³•7y \÷ï/Ü á‘r=”!«Ü€<ØJ¤úèÍøYKqÊÚ+TªwbÛÌDkªúÎíéø(F¢J©giO¼;¿±Ÿ³ 'Hñ`/Ìr*Ö }uƒxdØàT“7JÍŸ°¶‡_ÒêÞò!q!S9KîR¤O7Y%;ÄánüV€™o™sŒy¤î@¤;y´÷FK²áºq\rHKñVDº®*©¬»ÞmèjÑÖœÁÈwsSÏ®`(:’S½újîÄOE§¢¼)m;ÇüÉìîük¹Çjº¶j…{DŽÀÎÓ©vó,m¨Œ+<ðGƒ×t£ïâ;©=K}ÊI¨‘–‹ÛS‘ìÈ²×Šn–ž¤üˆÝ‹JrÍTh†ÁWÚë÷b‰6ˆ±ÖÝJB#ŒïÜ© ×D¡ÃhÝú&˜v&Ë§{‹FQªLå\Z{1Ã¶›3eiTD¬°Çh¤àS£Ì·8•j]5a@¾ ùÑ° ¡-œ`V‘\|•‰"iI¨=B"³{Kð'…ô?;±OŽ—qîgz¸{êî¯Gx@y¸A •±ýáË±ê{Ü4×..Í«jëþÕvioæl¢¶âËMÇŽ O0M€”‡5»À›êOÀE¸Ö7Ï4ÅêGSÂ‰3xO½!BO%=ß£Dš«ÏÁ«Ž2Ù¢OgõTZH¤ƒ{šÎaÚ7X€/€}%10c3Ôsž–Ð‰“Zýóƒ|C.[²–ïÉf°±¯9â9dïîÇŒ_¹áÉ*8±”“ýÝq3.µXA§i"×’Y¼Jz›jø³Áuèˆái-·ÅÃW y!•/‰«Iw·•¡³¹kšŸg÷p÷ê©øãQ"ž÷sÂ¤ uÝ9çpæ4ùÆxÕ,+ ¯Ú"æ¸E$WcO&‹ÃBœEqIî²1Ž©äî>)ö§ãã\ 9ÄsKT”È*(o n9o@£±W #ìoy^„Æ¿ào\¾ƒaÈÑ0%08ô0±ÄŒÒý— 8^QTL{ˆœä.‰ï5;ß²zxòí èmÚ12ÕÅ¬ÿ5h×¶Ø%|õíÓ¾º`Y9ž’¥ÏœHŸ(Èi'Årøü2xü·eZU06,n$::ýãÂãþÖ–Ù˜`qciqfdn£Kæ²ƒàKY 7ˆyzût%Þ6#ê« ÏÜsÑ’âtºó%´×ˆ“øVbÏ“mvxájÒ§[ÚhäìA½ÅžwkIWTÔ P(§ýî7±¬«éQÆÂ ~›ÝCpËÙ/B„sR&ånÉ uYfµb˜ˆ‚ÑÞ¸”çÄKx#ÞšbCÜkD.Šû0‰:k¨œÆ^v]9ž½êŠoÿ]O¦7€/ñ2û†¦¸UÄñŒv–‚ÎG‚/e³:¬b‘¶îYÿï\T’Hvœ>#§QNaùN FöytTôAÁ;Ø}’ëž©yÃÚv,ë€9Íý3Ñì¤-ÂÚhVìÜ¼³-p”gIÉ¾âåçYAmòŠ¨ñµËI¢@£¹æ¸.Íù”Ý€¾\ëÎQtœje(YÅ© 2%‚àÐ[ÿ"¥rË’6Ñ˜¶×?. Sƒù÷ ‹•ý¶G¨Ìÿ£D4$‚®&4XtÏ›ÈÙ4<=;E3â'®ØÒEëWÝåYÔE‹ÌZÉñk!ÍÑ»4äl»D?™\½à¬µpúï_äy4åIÅÔÖ¡yþÂ3ëðˆ ¶>>:h96üß¶ÒÞÃ)f?Ã.Ã5 c¤tþð4>¡°œ¸F½Î>žÔ ÃëáàýUÂÁÐƒÅ¸o¬\Ü‘8r£ƒû‹}¦!ªU²îÊû¢)®¸ÉznetrUžjFnþüÔ¼Ê!+ÌîÇþ“/Ù@0Š§ˆËmG ç%çäùVà½akËCvSÚV¦¡ÆLÑªXª’¶ÐÐšü¦Ä.…”§¢ævsea—š=qÍäØáÔÞp!kU L“ú×F½Ð?¡J“ÞOy}L»AeG»:=*%u;,L-®,þÀíœÙÃ$†Xæ²o|‹ƒÛÎÿ3DÙOº‘˜Îƒ°\/^6>’ï”™W’Gú$)ü.ÁÐÈ8*<ÛM}æ¸#±4;ýC‡¡Ð–ân–ÿºÅôÒŒ àÓÌ°¾\·,îe2®ëÙOµ|ˆßw–kBC³<´ž]c ‘Qªh£Å¡Á3_Xu÷ÎS±dÅ1ÆmG°²æ"ÂØÌFgêÆ 0yÊU¡kÿ2ïÅ*ç~/œÐu’ ŽµˆNITHÎµMÉkyÊõ#¬:±£l_—®¯Šz°ø;¸ÿŠi_Q†º70²8Óho®2RY¨—op•`ßå{ ¢ÂoÊRH!ÄP`=2”¹5ôÙQ•:-íøXF:G,Ã F^RqÈys‚¿<ã¯·{p8y°Bp³¿7Êì%›[¥•WÅm‡*Ë§ß|™¨Ùáë¶rqºËò…ÕÒ+>ª%^1É¸;f7\ÄìÓR‡KDSüÝ £†ÿy/|#Õü@+¾ù2Q i†`&²ø,tÇß¿e³K&£˜¨³´žx)¼¼ÿƒˆnhìÑAÆˆšœ•#:’Í:KúÕaI)Ïë'W•Áç·’ÝYJ2L5DÁš{ÇX¤Ú¬‹&1*ço Ò¶aâ@Ø»-Ø¡ŒÊÂ´ /&ngïÀâñüžt?q_=Ó·†•dí!²TÌ!¥Z³ÐŒ_÷[m^ÒpvÈ²¥ÿ†Èð—Mœ˜l‡±Üá°âÓ6(ÁS‘°¥N1pïÄ–r— Z²Ï¦U "8yZ| †u~€ÝXáÚ@ë»3S=úæåZ«#´4Ä3†Í‡ðÈ0õ^‹9‰ˆgÛŸ½‹ŸG².ÿ:0`1‹Õò%¿ùZøçÇsÛ….mºrìŠ¢Aå7ÙX‚oÛ€ GBõ×ä‡1$j æÃlûY‘ÆûÕ{˜üWxóÛš®+!¿2´øêÅ¡`¯ÔØ;Í"àKï6(uÃç” _´>Ã%‘‘ËNkÑZsüÔmÅ¨‘4f”ð:DUÙ”;F ŸƒªÕÍK8…£Zos,§õô%Þ~yêm‡Ä·b uàb €ºdŒ, †8âéÔ¸Šxgz[ö8¯0¯—è³þuÌõ—Ä*’‰sœ¶ K¨U“ŠyþºZ_ØìŒ`¼õf²Ð\„3É1ë›vÖç«8isU1ùáni¿Ò¾zÈå¦%´²ÊØƒõèTË//!å›+U?5Äz>“€¹„ÁV ;±<«0)Ï±Ißˆ“÷9ùæÓŸ|ÍªùM'Ðžë`jÆ‘Ì¥Y+¿bTw¡éXX›þ*™òxÒ´~ù¤ð·,²¿=Gr<°V_ÊÁndÿ†ñ‡‡ÞaÞÑ×Ÿàº>Ì®õß¸®Š„7þÇB±£˜ Ö|I&ª¥+jÆOX¨BÊÌ°ó/jÒúè_›95Aœ]ºL>ŸÚ (eØàÅâÛ-þ–>ªâôi¬ ¸Œo«iôO…õøV™%æ8Þd|YmjJR äÈêoz¶>õœúÎ*uê×-UßMðy8,jï†ÈEHdHêê[huÏo›¬ Ÿ.®÷¿aÙµ }#”íÕ˜öø|ì$Jz¶w«ë©šœ|C¡öôkÂ”ÙJ²KÝqwŠ^´a@[¿9gëdFdÏØÑTÏ*-B åt1B¸å‹`hpçÈ±²d·‰È¡L§ÒœÏ·˜{Ï3?j2ŒXõÉ³Y<à:1¸CŠ%8¸gÁ™ÛY`upÂl¿i‡rCOr¹‡°™1c¤éJôÙmôXeA/Ã`ø•fßqHNÔŽpà\tÕ¿Ip½QÎHbÖ:½ž'ðð:‰Z3ñX‚¬Êèl|5&¾>ÄuØÍ(kº²€ö ÍŽZF8ÛôÇÃ¿3íî›þøû¸31“§÷ûW•2Þ¬¾ñòðÉ(ˆ&%ëuj)yO[Ëd5ðÃžöq Á%ëª®qŒaÌxÏ³|Jß]¢ÇšòŒÏñ‡ôÄ ¥ûgç‡ôá%½VgâfZ"— êæTÅ,‡Àéêîèk3·ƒáÁÔÜØ\¬bLN Ð®Î¬ŽFz7#r¡oº_P•³òû=äFü÷wZ0×=‹‰À¨ SAõ;{YÏÜÖlª(HCÙ¨q8ÿ4ïª]ã¦51Ó9(–¹p°Ý‚b‹JPU }ÏüjÊ)1ÀÐ–§y0u"ÞÈ8Î7¤iŽÜL`kÞ‡ºÐéžÌÈ,`<8äG™ =þ¸ý:C£JQ®ÅöÈñ‰ÏÛœ’Y;_ÚHJÒd/¨;fäÍbñã•1sOŸ-J4ýp÷—µŒˆ¼Á{1ý—k ?ŠˆK¦\î±}£&g×?”`¬Z»ÇfìDMßhc°+#Rð™*€š6V‚<c~hÒ‚cçÆAÄ9ë7ü¼wöOûF¹³ƒl’9kXºüïªŽñ*k“ñ€îW-þ2"Ö°!œ_*åÇºÅ{ÖT´hµÔ£—n%{hJ¹˜U8Õ¯Ûy†©¦¹4^,1=ñ“ÌG0mÂN®èˆõi†?ÙbHªAPGRÖ/»™ôè)CY7ÚV1ÒN¦‘=‹•a0ÐJßÎvåL‚òáHÄS>™5: ƒ_[&œ›miÂbµm¿5¸Ã%s)–—iK[2m;g0Ÿh¾ pÕ€Í:éSµYï¡‡CÃã°IP ™ÛI¾7–¾¬Ò÷¼Ûûš~VJ’ŠÅŸ‰GïR‘î½€dÔôžñè—RùHø¸¶6fX=x§]f0…ËLêIºQJGL¤\*£ƒ»\"g˜4XÍo8®O>/”Å ‹Íé¡–új#Wb!ÑDÍ{[Å¶þJpüõîBÑh’UÔìÐxÈ^!æËJó—ä ¥í.ÃÙR ëd|VTé2ûÙY\gxA—Û1›~(_Þ¡¾ê©@WÈ@Ë3ÜúcÁzô©†°euùëÑ^æ8°ˆ¸MDéömªfN_ô6‡à›¡bô€ÄoÉbÚè•ÎÌ¿‘_KQÙm‚Ž‰Š¹€J61ÃÖö–?òÀÚáì—!Ö”°]£_b5jó•mî6]Mí¨y=íXA¨3®ÙÅTPË©·"Š! ÞJ´o§QÄ›5¾o&5ƒÅ@zuUîðBhOÙ3ïLHÚýãrÈ–àiô¢ŽÔ)4ï¨ÈE“);d¦?³eîÍ~ìŠAÍ578Þ[Ç=—ut=j¼d$î\uV;Ú`™m0B°iËÚŒ´!XgáäãÛy–49&Ã¸,pÇs”—ó¶@%tvNëpP2à%uÇ¶Ùg—þ&\¬ž_)J9Š½À•ÐôdÚƒ»Ý®–2å·éG€åÜº9ºTßâƒcqü™µ€ }‚û‚¯†åzÜÆSÍÏi+c²#:*dÒÛáµÂäBð7µýmIÔ½ˆP¹—ã)h±ÿÐÐœrP2u¶Ëc„µ‚`7âR=Æ¸ÃÇ¶4Ö@Q-À§(_©aGŒ±åoŠó‹Õ@ãëJàPL2ê>¾jÕQi]ÃE?ÊÖZ('º ÑÄ^é¿²ø^=á¹ÀûÈÑàW×,ûuÏ’‚4Ü`±p««?Qå¸:ÁOtŽ²#@ÇÑêvó, ¿'3ÒV"©ËU& Ô–ˆôéš× ‰lßQ‚³Ë’,Uñà¦÷°²È ìAÀãÁwü&@T#BÜß8µc ,‚¸ñ|˜ úü¯«ˆZm(xÌÿôYq1ÛÊ6Û³Ã\¡ã¥tƒ_µbž7¢Ù— ˜ˆªÿIôì£òB»vA,ØÑ3s—6$ žÀ9öÿYÓÁc´Í¸XËÔK¦ÕãË¾¡qIœ¤æ5h kF€cY35Ÿ¬%Ç–Tâ37êÜS„¯KÎwcÏ!-– s’Þ²hØŽEþæù“St~ºhié?–AøÆ“F±…¡¸y˜—œ¹¡ãýþ!Ï³R×`£Œ—ó:iè±QºTaYõÅÅÔT§/‹G¯<µ/åÌ¯Â2Ä}'qC\o6ž¹ÅR›þêª8Þf;G·ÙŽ’ÎPý§[É±´ »t ¤ñÔ1}šÒ„aÂN”ÝÇš`ÚOèþ\ØŸbHuLiœ.Í…üƒàÂ~ÿd1CÐJ{þ%ÈN90õ3CzuÁ~Åú8]{P„©‡»ZúÔþ';¥³ô uŸø¡ƒ¹yõœ!_¦ ¹Iy›'ž§;@—Lê›P€’*Uàöäån{ êgUµZüWÖ¢£Ñó×ÉR?ÐV·¸_)£cº9ãqü ÑÔîk:ÉÕ0âÙç;Ì…c{·´ÙðÙ"ðÑÖ¦q¹Þ|¼P¢É¹Üœhç"g2pvo1Ð›lè˜«D6/ûýpŒµÌyãÇðŒ‹õHç&ùš³›~š$ã ÷KçGÅAPP9ò–IÚ› ëøÉP…—wP8šq˜Añá!<úpYanxé|çìÚ1= ï„0¥…I…"„æ÷üð€T>ÕÁF´)`Î¯ c³™@¨ÑÜÑw™¬šŽ8— _ôŸæ*oö––tÃè€Ö ¤ñ&B”B~6jS÷ÿ$æSŸx ›úàRöÝmÔg‚Y@Ò[ì!ôR¹CX@2)Ž×È.¡5/ô±]bÒpoº1 2\-tzQù¬Ó•¿Á!ò‚ºbM¢oßÞÉú–)sÇÐ¹.ÒqeØE#y/^ÖqÏcÞz´T³ÎùXÕIdi-êÑ`ï«p‰ ÆvÜ¾xa‡Ë¹S¥ˆnðåÑ¯>W—¡edo¬R©óºö« ˆ‡§Ü½w?¤Ò4ã*è®‹’ât¥-†±/ºçiWÕIˆ4Kø#”¡—Õ¨Õ^´êéô's„Ë‘‡¾?e{°o¸âi‰EÖµv®ã‚D×0AÜ¥þÝØÞýÛ c¼€W~Â?q‰ÀñÀ,•–›ÓmªØuÖPHó+ ÑDYoýþ\PŒ‰–¦hÄ''¹¨ê!ìq@gây’®‰^†Òr(²UÛG5¤i•—• FØÚ&Ói´ôóÁÍÌZ`d>ÊxD‡Ñõ´jRºèd:êô=âDÙIN¬ÀõšéÔèOaZ´S~ì£ÇýR—O„öDß‡æ«£œ;œÆÇaŒææX$(®”Ò²#ÌSßä³¸o°—h½®‹AýÃ0Feýzu7P—¡¦cÉÜ!¥™þ‘-EÆ« Ò=ÏU¯¤*½Ã¿YŒT~ÓjLÉ¼±^9Êóï«*7©@~ah÷$±R“AÔ=¡À—vô/™ßþ%—IÏƒyµ|cî«}ËâÌà\”¤F¬2nÃšr%’I8eÔzlU"¶,L dÉô%ÙÔ%ù]Ø£àý–!T‘„hlÆFUØ–Y¥iƒÇy•ºj¼ÏÑŸÂòª¤žeÌ*¦IvgéO°}ñ¶ VCý‚¨ÅÕÜ?w§eŒ?@G}Yx¡Ö9,©¾ëâ•dãÈ•:*8r[™¢û¶NI›Ê[Ü”ø”ztN¬1o7ú|Œ7®l9Bô¢Úvüž¬º‚8ÇgÛ‹;8X³Û¡Ö:×®’å³Vî2›Ôšˆì¿óõ|Sý_XûÛE5¥îò øìvn|òï‰‡g°±L‡ºüÙÙc9}uÞNÄÉqƒs.é'¢l´–©%£sž=K(4"b§ÓÚùàE(#'ì•§]½ eý °ñÍöùbZÆ'ìŠ=gh©¥ñ¡zŠ %X^¤ë¡'a’P›y²¹ã'Jwl¸¡lAÔ9µM0ëƒ„“Î~„þYÏ×¥Ë;?Ç³öfÿ£7‡äô¸ BANQ#»Ê••ÌŸ¼k<_Ú¾§!V ®¯Dšú5<ÓÄÏÅ{=?¼ûË5`ì:2)®X<‰$¸ö w8³%6É(©…‘á9…d±8àÏ+"üòô³EŠæ§"3ùwÒ»˜¤ß}÷Ùzk;^«ÌÅiE9æv£Ï¯k•ö<Ý%¬G#KÛ€;žsoáž¿¤5×ƒÌ£Çˆ€Þø²DÃñ¯3Y#^2>š~QÙ{³^÷?Q s=ñi5°¥o¼–9qé¸kQŽ* £½Æ5'vó,Š®%ý°Å¿lÆœLÎËäZŸ)÷x@F; ã’ÃLtæM’àcm:ÿ#Ú¥œŒÐl©YOFæÖŸQð¢ïHÈÂ¡áÈÓÅG%äÎÎB:^ÝM0£ç¬þ†Ø`-»ô7ÜÍ7þÙ¡û˜D]€½žJ2mK &w¸˜¯•\wÃÎÂ{‘`3YRÌtAî@ìÖ¤EßÚËg‘=Œµ2/$\äèWµ‘?:è¸²¶SÁo%U¸Û™‘èl^'rºÛÈãvnÅvëO¾aªW}£Hµƒ¡ ÊÇí´g_ƒØþä§\Æô›…ÀR7kbÌ[TŒœ!°cç¶lX¢ptæÊ†á)ùûü3$0ž*DQíÐ?½½÷ÜL¦€R¾yI½@çTâëc/<á¬ÜÚßš¢3_È_»4ý¶ V|7…2+âL¨—x\•sÆr€î°ÒBÁËÉyŸT€_~rBC¦qqä_¹ê,ø2|ù„j§%ybVœiÏzy 5ÑÔÜ+o]T_N«Q€©Y¬ª§óà1JÕäÿ¤ô¨ÅÉ6¶§zî #_%¹$ÐltÏUdVš¦J*ÁÀ—Å¼Æ »Ë1Åshˆ¥Ã«H®5«™v^Ž7È‹”sãe‚¹m‰ÿœË¯—ÐDMJ*qH¿¦y–¨žIð8 TƒWó:îœñ÷/&xóÂãõS„ú5Œh·œD»4\ÄPXZ¿ŽSêÇïr+Õ!8Õ£3ª‹è}ôè3ãÚ“Å£ €CêæÑÔ¦ëdÈø•mšåiê¶NW¡^ÓÝ+ƒF2çëD€”¿ ·í@ìø3™\Ä¦C¹Ì ŽœÕÛ·"‘I©ëôKI6$‡».ŸZÑù2Ž’=Î©ç=©ÙnU·Ÿã—n~Ý<{|GRÐ«é(ÿ˜Ö[ÖÚæk¹šÈYOl6òb¾|yÔPx[ P«Xa.u¡Ëõwè(Ÿ¿9<¦U+fò[s/š£ÙQ†^c"Š>W°¥=èM"{ó„»¬'Ë^¨ƒ§(²í’×éƒ èÏT4Ù5Â‰ ,úÃÛ¥xÖÍSvMÊ±¡däæñXOÝ\ØAé=* ¶ˆìÍ]ÞmZè"³;¶ÌOžBCDò½SíÎî-„\‹êãêzi÷Kgó4‘½OÌ1%u•¤xØñø€LŒê[&Of@žòª+MÕGº~³hº¦V”,*™t5Éµvúí38¨š¨–œeL®)Î¨w Ï—àoõ…¼>œÚ6Ûâ JmJEÅYT©˜ƒ~%Qˆ§ÓªæœîÕ<¾%NUƒ ¼cô½Í±™šï¦&WrgiÍé¨˜:ÓËž'B>ô8É+¯s0 {Öèƒä-2?÷Ã€-Ægü‰Èf)eÇ[øÀºÖ’/ÍœÉÂzAìXç§tG€B3s#Bq7{Ð°ñ¶nÍûqšãØøåÏ¸oÅ&¤tW9ôv)˜t„Èý´ç<ÆnŸý) pÃ®m&ŒC(_€}¬{Qa*Ùzi\ã‹LÊEà{ƒÿPÒ äˆœãéhFî€}Ÿ§)³9‰Kƒi:ì•Œ#ëí?r“(g•ÅEq~ÀSêãÕ`Ëxë 62ûPØ›¦ç!e9Z3©šD$8)ššÚZ!¬¹îrÍÑ®ûF$. þÓ{ÌAôƒÎ.B^§;P÷/Ç7(xŒÈè¨ûD18à‘š£Òk³m 2Qh€c¡ÿ§ðŠŽFMï=|Ý:§«6{ÍØA;Äolt‹Cg³^*ë1|A%è„a²é¿¡Úe76·ÆI–ãÕ@/¦heUJiUrÀ.í©aÞzJa°Ü9í›Æ¥KºÐÇŠêvƒ×‹Û\¹jY¨sÚû{žgžÚ¶{¡dÞr·ãrzL?uþ¨Ê}pÿd%¼Ò.ùð•R¢q×¸Ï,Þžº-¡z7ÈMç¨yãÕ¨Ðº6"p#úåõíÆì/ýN/¨Ó½DµU¿xn BVâc}tü´á@û£¨.Ô‘Èôc+`AµÔÿ¸tL’¼ ¨û›‚pâ-)`RªÈ_Å>÷´ÒŽÂöæL‚pÔñOÁ>%Û5D¤ðpS.¤tî–¨†_[ñqØïÛ@bÁCŒ7Ôß5B¥fÆ3?ÉbÙÅf˜0=™¡“^dšã*P'¯Í®kc°&8ni]ÜÀ~3¹šjlÄÉ?}¡¸çN `S×¦lû¬€ûÂ}úE«¢SK*ÇùŸùklÓJpÐ'm‘BË¸…ã—@6;ºÙ |¨Â§Û¹qP¤Ó‡%ÂºK<-³™-y±¨åíÌa¹˜20tÍÊ‘½foÆmžPÙ‹I•rÆâlÈï,¢û·ÂÎaž È@wlœYmPêœÊ¸êüöõÃ1‚vVÿJ;jð¡xiï,9âkôƒ÷â¨KJGÁ†› žÎ†9^ ÕtùPªú8\dœYUa èãºâ[zÚCâfYô‚(7Òn'¸jµÁ®ño,{ 4Íôg¦³UÇÉÒ£åŒÓ¡4—è¯³ÞPHUî@Ç^YJ²73þOÉúâ(Œ)×ªåäµ6PCØ¦Ò`ÿ0ð~”þõ-Ù+ÂŸ$øêýÅ„âì½m3L pÉJ¸ÿófñ‘HDx„7„ºÅ¯‹7÷Ÿìh [UÚxÜõ/?F,µ!7+ËÓp)³™šŸú²ºêhÌô³Þ¶ïKYNLÌquXrêa`K—sF£à-–H—Ê-þµ‰²Ú!ÇX&Õjž 6Éá#œÃÿ¾+GÌ:û¢ Êlôòµëê†?‹9fXUÇáû$¹FE¬Çs|¹¬Ýrö¬=QÑŠ+B^±_H—7“di.&³cîÿ)‚¶«|2MÎ&x¦,µ÷nþ=KÚ€Ž>Êïé‡'''éª„üDAJ¹“=Š¼ª“Ü6DžÅ jO4É;tSQ_#h(Mf3#}Ã.d÷ÑÛ{ìhgk—[R…ˆÔŠˆèuf'&ÒÇCÑ…CL-Èƒ §@€Ü9œ:p”ÚàÉŽO’w»¶ÞÏd»pÐó1•å±p‘©cH-9Ì‚(&&³'éÌÕÔ}ºçûp4ië-¨d2“Ê<„º…Ë?™–¤®^jj6I÷~‰¶‡OSÌ\TeíL:?æž>æBª’Ð¤ëL®¢ôI_-ä.ˆÔºhyö‘Çö±W’"ž¢ˆSØ3‘Fû MþÍuj#_rÆç"í¥4Ý$J‰ü½SÃÜ;9‹6qOyù3c“ÃDŒåºœÈÖÄ;Ùðf à¶‘\Ié®ÌX9›,Ï¥™œ¸ð$?|Ž¿§G¦²HdÏàH†HW†Z´wj||"ÍRô‡åæ¾4¼µp«]±He#C,É‹ —t!;Œè9’;C¸4š´ç:Ï8µŠBd If N¤ÑnDË}Ä>Ä²Ë ‰‹Œè‡:kxÉ´l•A-Ðz\m/€|i.À\G7eÎ—þDÁáñŠó´Ì!Ijd~Ž› ”èlÂ ‰×F9\˜Šü˜ë(Â‡³éû¦ÎtòëmHÏ½Š«¢|>±8jöaŠŸZ,MžÇ?lL/—Z²ëÓN,ãC!ÔûsŒÿX]¸HjÈ˜'ËkcY?²óÄ•Ô@÷£>štÐ±ÈÝ¾ÉŒhÑh¿M–~;¸5N6¥›`iòy â”ÚWN®r1'ê£nÃ0P0Uém é’Gˆé—›h pš<bø>êÐù¡.zÝÇ›YÀì°Î!cko÷f#hu’W—+;rbÎäYÀÉÁá"žbÙ§…Ì¦a]K¼R´DPR†‡Hmˆ6µI·n[l.FÚfÌ‘>7Åè!wL‹;Š;;”RÊ($ƒ n½b\E™j·‘z†×Jµ s˜–"É\qKCvGXº7áNu]š¯z¹ÉEËÁ‹ÉMA1Âi<Š-,trž&»Ì"oø9"~(Ð-pòý|•]Iq “rq¡‰sZÆYÌF]SEüØð*5¾(S_X1›$am´hÏ>{EïHoÓí®ŽŠ‹|•bÞ½1×âQ“/Êc™;³Ù\Œ:w>ÌçÇaD>ŸÌpÏ˜v²ÀÑÇfµ£4n,×E‹É;naÆ -‹Àíã6žëxj}böø¡1Ý£˜´=À¯“mp8º ¨•Åò¶pC_Ä=#ÿÌãC\Ð²,jï<»_Û†'u+1m[Hé`.„•UvFbn1ñŽ…X³ó×‹[ìB«›cjÙºì1Üì2œh AÐy×±ÎîÞäáîSÒ=â)Î ®i¯@{FI_çæè›ÝùÏN¦GQÜdÈFÛNƒ„{`£YrÚG²ÝE}hÆÉK„øÄ§!#cÜÕ¤©Ÿö¸‹²içY‡7(U<°¯K?=Üž¨#o¸’ÝeBîÓR>Pê Š|ázGXjb% ký?Ê<òHQv¶!]4$¯w@¥çPò.óFKYÎ1Î©ä0˜LûMÑÛ O™·La3³4ækÂfÔ~…¤ÛRõè(œðwT”Î‘•„Uƒk9þÜ]päÏƒæ â’¬i™3Ç‰æÔrÝ©SÝ˜»„¦~òU¬KYH…¥Íï%†»²×£vöºÍÞT‹°Sð}ÌDï19Ü×;*T“sâ³èÝ8gêãá0ÝÊ-Y‚æð½½)³$k~[B>ByÅ\”Oÿ×˜B…±Œì)k+Ãï£Ã#ò¼©Ûæ;cÍ·HŒ_Ó*úá¨Ûàœ );x-Btâ'}={ct!A=¹t2V¥ñ{Öyã$AÔ½ÈNnD¾ Ú·ñ¿t[wÝeo@ÛïÙmÕdÜxßð6`#Ž{òÓÄÅIxÉ@™µ¸âá+4}8=LK^~œÚ'“œï”4˜?Ïm¸y¢(ió‰ßéÌ„Ðlœ…šÍf+Mx(ÒIZ`°Ù^mÉæ%˜²ç6jÉòÈ-w¶ãëMFh5ÛE«Ç¾h{’'ùQ|È%›Šth®ß”à„®:ÔˆõÜ:2¢¯š“éjÙ.ºåÅóÉ-¯œå%æ“îö“I”~`*MæV<º¡°XþÊý~gÙ]îWp\á2Ä¹ŸH„ÓÍŒ!]Ì™¥Üîèû \ÌÅlåÃpRF],—¼Ì^ËLÑSKaËÖŽúL¹ÒÅ÷F$ü¶Û3ÃM)ª/eJñùhuÚ¬îië4ÉªÅøJÄ6Óqe~íUXÊEQ±}@ü.‡ˆO˜ò§P Q‚9lòôtO´HDa7¢} h¼ÔØ1æyÎühgÊq¸q¨v3`KìšJÐ…Ö3Ñ¬”ÍŽ£ÜžÎADH!i:”Ù?LA"³D°(¼Íìb½«† T’rnžö‹EÜk>nÊœKéû2|IìüHf`(Gžd_A˜ù1dFvPLnpfÇ¢¡ Þ„Ô2ëgS ñèBú;Äû „—k‰>Ea·å)“çVìj±…‹ÖKLßX(ˆ¤ÕAÏw•__§X$¶8ŒÅÖÈ-Ä¼%ßI[Âó6 Q¨LÀ£wŽLÓœÂÔI22áØ ¬Ÿ‘<Çv¸k…Lw¼ûÄÑÖì½˜Êbá¢m˜¦_eúš6w—¥@MÔÍˆØvÛ®6kŠ-ÕÕÙ©žV‘ÞÍá!b…Ê)n‘¹*<Á‹¸žKu³ü¸%óË îyŸý§'2£½=‡’T·}Dª¼Ca´†È‘îlo=™;¸Å£À¿ï(a9xúù¢ãcÂ¼>]xÀÔbjj‘ˆRgp”rR†Ys;ùY’WQOzbTL‹É4”>ÓäðÒ‹eiºßàö¬¬róá*Z(°ÂgÝXbú$ŒÛii3ðuäœ* Q÷ÁÓëÝPç<uŽU¸0 ?¶ z.@¤¸&½‹Fë²m©à’cÆI3}‘ülVäƒqì9w³™2ƒQuÌ½‚lbº$‚êea&Ì¡¨Û]ž¢;8}Ž±?F³MþVIµkUàÉÛ¯ûƒ10øbN$ÛùÊˆÄ,z'}ÞuµE™*ä4‘Ãÿ\´pžÔ\*þ_öCmÔ ï_hkt?Ž-©ùäu2ÕøÃ–÷$ß[b%Ò‰Ly9ª.å¦@‹(Áý'ÒÃvòKâ´à'ö L•9Š¡¼œtDŠFñ¡Î“§ÈÐ¶ Ø†¥RÒa~[–¢jÿ9Ê>/– õCVëÍ+í#8›–É\’hÌŠ+9ëmÏ å‡Ï_áÐ2##˜VÀùI‰h?B1÷G~mn¸œàÃZÐ´× ‚¡Ÿ"Ú›ÚOAÑþŸUí?ñýgÚÏõw`øþ–éÝ‹ï¿0åÿ/|ÿoí—ø 0yøýWüûÿÀ ò9‹Ï+ÈË¬þ)¬Ÿñ®B€|žäÖ“ÿzå¯ÿ~Š‰ƒøV þà‰]å2>(¬ÿzùÇÏ#°RV&³ž ÿØ{|ñ×À£½»¿þûô í©Š]*cU[ãU[ù§§TeúÖOØK-‚Y|DKBU!¨z`±ê…%jVªAX§–@>'ÔrVŽyËÀëWü7AQ*~Dc«hÆ^#äVÇfA}Â±›ÏóPyñá"øØ40-Wo;ÔÖ¹ë«„Ujˆ×á-¢íCŽe‹Yóðƒ\Åß¥³àKaþ‹àÏ@àR<6ÁKy0«©«¡D]j-‡éå&TøØVÉkPY˜-Å–«¡Ä¾†Ö°kØˆ5l)XÃr‘5Ô#|¢S B/íJ¬œ…²KaƒT¹Úu7À°/×òâ+dñm²xeì ”_ƒE* Œ¨HÌÀâœrÊ£îÃNmÅ,mX+Y•¤ÕQÙØ•Ø¶P*Z2•H©x(ŒÁÃ^2Ñi)ÔýˆÚäƒ°LMBD=Ä[õ&,ó±j"×*£©k°N‚ïT”YXzÉÊÀjÇ+ŒwR2ÇK¯•¥kÁGŒµ2Ñ¨©ê,,Ëða[5ÀØ ”wŠzºÙw–7û#¾ˆŸ÷Zs H4Î@$ î3^ÂÈ®+Âö”Fø¼rÊÃÈ¿˜]Ã·°×H©¢¯žR¥ÃA:4#&V¹™ÔÀ«f‘U&a©ú T«Aú0ÄÔó°YýìP}ê£Ð©^€CêãpD}îVŸ„SêG!~Î©OÃ„úïìÅÀÞƒ}>Vëcë|l}°t©?€£êá.õGÐ¯þªoÀiõ_á¬ú:Œ«?†‡ÔŸÀõ§œõ6‚÷]ØjðÝ-TAÎˆÕ>–ÀÿE‰¨µ|¬1`Ó‡ØFI„H’dËç`ÝÉØË°>Žÿ®B]×¨OÌBôrž4û9 Ù·PìüÂf{Þ&7ðìàýá½ðÞ±ÀÛÌ¶HxÏqý°+öøf!v9B‚$RñëÏ»<ñ®Äõ½Z6®úE'ÂlK³'âa³°á)†Êõß/" †Úk¨÷¾>í«à×þi_ƒ°öuX®}Ú·`þîÔ¾Ãû¹j×RÛúuðVEAD-hn3¡©q^nB4Ùå9Øxm…M)DuóE¨ÅŸ-]lo"´u¶]„mo™m{W¢Ñœ¾õ½Žˆ¡µï¢mðP®}qû3?DVü'X¯ýêµ†FíßÏ×a»öÇs 0ÏMðûØöwa‰ÿwP½›Ñlb;4uzP×4…vpl*cÄ¥¢bvÎÂ®®ih¼Í˜Þò ìîJ¼«æ`ÏÉ9Ø‹œGhß´bZë´]…ö¨ï:Pwvæ° 5hoB)ÚkÕÚÏ Šv\B{ ½vX{[WTÕ7¡ÁÇvZÐÜ…—@óË’èš…ý‡xÆà{´½ÕU/Â¡xõ"÷,hò„Yèà…Pò¨¤í†ú0Ó¡iXE"WàNÊ¹ë t¸¨Xðó) 9c&‡ô(E¤o"g¼‹&å-XÁPI3Ä£hÛíB´w£ur„…á¦ß‹¦5¤ ¼7!àcÍïÿ*Ê»8¾ÿ;°âmÔÛæ¶µmÁ¶‘4®·k[¥l›¦#ùfÉÔ%l5Žã5°‘¬…5ø[ÇÖK6Ð¬È¼ a»ÙirÄñ‹Ê5Â+JÅ¯A—3Ð'ÂQxPXØ^ç‚‡mnÀ‚›°àlŸÕ;¥ê¸0=ÈHGRsp™ªÿ;¿ Ç¯BßU8Ñ¥t'½îB¾:Ý=ýÍ,ñ*T7¾ŠC{î™†P³§1‚û¡iðÑ—»D*;Ân4{ó³ú#>SVï ìùfØp/Jê-Ð+û³4#mîåßúö8k?¡µ¬;»bìØ‚-ëÁß^üÞÏöqÿ-íñ±Vkó±vëÀáHB¸#ˆ\ƒsÿ~ÿÝ‚ ðYR@Oj_Æþìdû Ý)áCU|*Ï'ˆì ¥èvPÒð‹Ø T4;FR É98C'°ßÓ©?€x\ö˜V‘šÓ8ÚCgÄçÙèãöCÓ·¾I~…›ž]Ï:›Ë= Á8½@8|)¯_c¿öÀ"v–³^hbÇ`ëƒìœa'aŒÝÃûµØMXäcÉMu^lÉìì„³(Ë¤sâ¨YîofhÕœköÄ",â™…‘f¯äµf1ZÄ‡,†¶—´ö(ñÅX®×¸ÔbÃØï÷C;‡b~ÇÖ( €1$u†÷døeø†2ÇRðcÖ…¢ †cÓ-±¹ûš~›6Ž7ñ`•(t2„†ÀÇÏññ>4…„ßŸGŸGŸ8/}jØãÐÈž€mìÉø6èümIç'p*$Z¡|_ÊQý–êyTŸ˜Ou®ÝØ3PÂž…rö XÊ> Õì9UŸ‚öièf¿ ÇÙg`Šý<Â.ê³Üœ×”ôï1Zø4çnœ.¢õÄ.ÅBY®ÐVÄ¨îÉ‹°8V±’·/2„-Âô)=ýA=½–§¯é9DkHX±Ï¢¬ýxÙ"{þ"ù§È;ÙŸÃ~v…#çÍ»z5"uÄ@ª™RáSC‰ÔC¡ñxøÔóy3W´»Š|ÇÀ9@,Km:Ðà£Cýã9xÛñ(*€øûX—üíŽ‘¿ÞäÑš¼aoØó"|6ÂÂÞ-4Í˜Ç¯Á Yöøü¤xÄiùQÒê«ç`a¡<…lH£I˜(»Ùhbðq NàS€Ï©±'ö5FvÅŸ¦â\ñÅ±UIOy±óú¯À¯_ƒgñ'øzöü† ¨?¡À5ø$âˆ-º¿Iž¥§çx>ÕìÁÌzuŸ¦ê<¢:^<ñ\ƒßRÿ·’ï€²hþŸÝ}ú“„Kž´K%ôË%ô€ô*IDiEi‚ Ò¤ÛEÁ" –ˆ´ð’pPDñET±¢ØëKÍovï¹'Oôÿþ?È÷fnŸÙÙÝÙÙ™Ý}NT¼Ê>¨í*ý8/¸J\¥±£ª—~‚—V]¥‹*§‡áIüî©<É¦Ì¥5}ü“¦ð*v)E•_ WEòi CÐ ðÖ<Ãˆç}—´œ÷ç |ÖÜik€‚‘÷,Ö ðgE ]ù'»•·|å*0½rÒs¨ç¯Õ}UT÷¤ÕQ·Ò+»‡jÝwÏÛC†µÈ×ÊÊáEW6ÊáµŠ~z‰×Ê%¿ìwxXª¨ò8²QXÑNx)¯ì†uUÓb;:.¾Âiñ x¤ïÐü-¤Ÿá*éè+Òo0UúfKÿ…û¥sð¸t6K—`»T {±ì;2…d'd‰0Y&µe•øeÈ*›d¶GæÊrŸœD^•SH™œNÞ½d¯œIÉ5ÉÇrmrJ®C~’ëÒ89›Ö”ëÑr}ÚIn@‡ÊMèÙO§ÊMémrsºPnIÛÐ§ä¶t¹Ü^LÍÛ ¹’gÛ*¬S¥Aö?XGÐM]‚|U,RÇ¬´†1bàzêªÒ‹pc„}ç€^„Uºù ž`ÆY¡¦*«`Õ=™¢ÜP$WÛî ³—ÉŽNY¯öË\.B˜õ¾×(wYîºÜâå^Q×_Mæpi„-ósü’çCù~!A—²§_1ýßÄ'á>¨Ë0W@Ã¨X©9èXäÜlAqÁbgò·E bª£óýÅâ‚ŒK il.¼¶nÁ:Ln;À[ÍnµÜs¯ë@‘C ùzH‘‡B†<È# ±<:È£ £|t‘ÇA/yäËa < ‚ò¢YÙ WBÙ1´TéUº‘À!Â‘IàãÐ¡n“Rp¹ß!o´4ÆnýX;©k†+ÎÇmÁ¤×J!„Ó¡”÷BzÚrœ3Ûqn„Kazü»¡¢À_\=³§aS¦C‚<ÒäÛ¡¡<òÑžOˆî¤¢c±ö›¤qN>ÃbjßÅkÇŽÜÝ1ó9›õº`±¼±ö`|ôfqõŒQž‡µÏÇÚ‚%/B C]ù^ðÉ÷ T ‰D·20ðÉ†ÃÒxÔäfÛ"šôcÄ7½C°—§Þû p ÷s+x+2Œ¸««Š²"í^‚–öò£8„Kq—AMù±+T4ãÂHEÍEGˆ=Ž·±gßáÝ|#&2KáÝ˜],ùiÇl£œIWFäôÅŽãrRÂð.ãP¼WŒÃu‡êý]"Š0qÜ·Ù%6LäU'¯ÆI±ÆÞŸ'8'W«`Š4Õ®à0~/‰½××!9xÖVUÚ/Ò¾RøÀ&®ªŸ_=ñ—C’¯Žàör›áóG°è1…aø˜?uœ@ >??ãr>ä$ÅóPu_U^‡Ê¯Ç>ÞÙòFh*c4%o†Î8&=ä-Ð[ÞŠÓcàù\ 3ärÑHX‹”£JÓª5tº4ÃnèËv&0ø_ÍÍ‚Ã>n!ø"OŽä ÒCp‚ÿ9Éãô/EºðßJÁ©âêrZÌ.ôM»ÑVß@kÙƒ¶ú&4’÷b‹öA[y?t’@Oùmè/¿¦`‘jÙLé6[{~Ï 7 µÿ4Óˆä0ßÄZÒQ!AÃÖnC'pXH¹Ý9ÒˆHáŽõ_Dœ¼‚ˆY¶ˆiv–^+é4f.9^¥¾-æ½ò]0éûRø[¦„ñ^dWsÙ?âþ’ä_ Y>#š]H%~‰Éí4Uº#²œ¨ÒâŸÈ‹ïº‚2³…"¢L0üäCâ/…ŸJáç<Õ—ãUÕ~‰É}qùJ”/¹æ/—›-$Ï±%Ÿ¶%/Ã¯8þgxè”ô[~¢Ñý‚?‘ü+óùü_$ýû0DQ“Îú#_Ãy¡P@(t!Â½†KA®T)T ŽE LHu$´”0›'…‰Œs(6†‰,%º c"qE]1 ]‰ƒFJä(5 ¥’}•d¦¤Â8% &!NQÒažâ…G”ŒªÓ¯–˜:^¡æb"5—ˆß6-bàX—3¦'•& )>!$Må¦”JÐ?IB$7ß±áˆ8CˆŠ+#ñ1ç`J;Ì•Úƒ¢´ûW‰þ?$^û¡Ä«ÿF$RŒ)ø)\“„ ?Dj”O)I,“$Kbåáà$ã–’”<9':~rdð|"ˆ%©Íâ˜¥á˜¥çi˜\„ˆ×«úËIFä4]Éä‰BˆÔ‘,L%Hè~ÀÃ÷ÀŠá5(ƒð:Îƒ6ÁŽ9 ß`—@ÞQAGlq(¤bg…Ê0ð*Ã¡¾2Z)#¡2 º(cÐo‚k”qTn†‘Ê˜¨L„iÊ$¸C¹ír2<¤L'”©°V™/+ÓáâAäQ¦{]Ç÷ÍÊøÏ"4ZUZ¬J÷¨Ò½ªtŸà`¸y¿*= â£ûÅ–ÚƒøOl™ßU‹ÿôn$þ¯UmÆ™Ò¿ÚÙCÒÃÎñµ$–ÝÔ¤Ó…9e¤Æ¸8É }âÜmJL¤«ÌE+ž†‚Ñ²°j' ‹õ% ãÎ–òqoãû<¢¦%vMuq0yM:—MÊHÃo¯<ø"±E¼"0ƒ‘iTˆ~_ÂÀék'ñp F9ü‹"hÊ6‡ûN×âbv:àÙ˜d'Î¤ñ.ŸWÉ ‘&»‰Ï+ùmÍ\‹¨ò$:—§ASžÁf/~è–¥<‹¶µüÊsh_«Ñ¦ÖÂå®¬ÝRX%Ôç« ."ªÒÒè‚²×\÷2þ±Ù»ÐöÝºœ<9`?ŸÕè ÌÆaHÓpC˜4–æÜ´ÈÓÂ$glË<½„´²Ûk‘Ö‘Ò¦œ´åÛà"M%í"“?ÂäŸÚ‡Iz¯^J:ä©E¡KIÇH¤ßO¼†«‚|o²”t²7Ig÷‚ Î¯• h+!N)†$evÚVÈV¶As\LÚãRØÚ âpe;Üªì€»”p·R÷+»á1åuXìÁ ø¦èÌ@/ÁÝba~\•ž0þ¡ïž”ž²í¤È>áb‘.ùUÝ€ÖÒÕ"]ÖÛ![¤[é^ØµcK÷pJ“â0éÉ}o¯âêÇtÊ4·¡–rj+ïb+BCå4UC®ò>ä+B¡ò‘hIKP(ÓÕIT²E<ñ´ôŒ½“VË¾£øp¢ôŽ(ÇEÙåvÙ/í¨±éS4µ0g?ŸÂ}óÑb®æÑ£/DúqKÉ ®‘æùí9Àw$ ±ÕlbÔù×ïI1ÖUíºjÌ±§sˆ,RLåsì‰/@UN€©œD'| ÇýÈTNc¯| ”ï18ø:(?B7åWè©ü½•Ÿ1@øF+g¢™¹{å³sÿ»0±ÔÄö®žµw©í±úøJHAˆ†È5»Iÿ|l¶…M½Vd8šE`áºx]ˆØMzb,M„É E{’KÉÂûõ!ŒÙIUþÂ6üý<Úí%ÈVT rU :«º=Šô~![ý]«EÊIÏ¹ŽYùáY.wR…î¢¤€ðPzÒiÔ.³<î Ôñ1‰m†Åh¤¦€¬¦‚©¦A’šéªê¨ÐHÍÂ4£¶Ð¨°K÷’PÉkŽzÇçü£ÇYe+¼Á“¾.…ý¶çAÓáð÷ŠãTádÌCÐ#DŽ-Ð#(Uv+ŽPÔF¨Ucl‡’Õd©Í ±Ú{6{¶ôRÛüƒŠ«¥5¶Sü.’;‘î¤À"Ã«&kà²©MFpã¯6£#…npÍh¯„QmˆÜÈÛw…¢#]E«ç•CdT•Eª ÷ÎW1Ú]ecxPæUËÉX¾Å8Šº)²Å¨Å>:Îµ=Ìká×;’—ƒ/¶Üøª"Øõåäf »É„‚¢ÊgcKNtJº¶T&BN' jPÔ®h\Ý¡¡Ú«'ôT{Aoµ\«ö…ÁêÕ0UíÓÕxD½žTûÃ õZØ¦^!uìRÃuQ¯‡?Ô \T‡’4u©¯Ž ÔIWu¤0Öú€óª·*=/Œsíð©Ò »*½(®¼tÆÒª=°¼Œ+¸pw”O*Ôš´ “[‚h“…¥dÃ…„‡Ä·#N™y2Áäåð;Â”6 k£¦¨)¸LŸð¥àOù2™æ^&#}4=²«Nf¸VIt3—ÃšØ¢·Uu'7,’[äv§H˜ô2^ç¬¹£”ÜÉƒ’æ±ÅïrŸÌq•Ÿ-‚˜<#Æˆ‡Æ«¤¨²vdÅÊœSÕ‰ßþY¿ÁŸÎNÍ]¸Ø€z3NÍ §N: ,õÈPïD7š¨s ™z7´WçBGutUçãP-€>êB˜¨.‚êbX¢ÞO©÷A±z?”ªÀ^õ!øB}N«X—ºþT…¿Õ¥Ä£ÞMRÕ'ˆW}’´TŸÖÐ’GÔ¹|Ü_¡í:ahbÏ÷"<¦J¯"áï¦J“ÏBÆY© b½´Á^ÿÚÙw“}åän3=ÚÂŽ¾Ìr2BÕ ¿ªÏaD¶›¹›ølC~N"<#DæxÒ…0/ú&Å>lÐÛª¾µÔC(´ÄÚËZ+"ÔÓÅ–ÙÅ–ÙýŠ2?D™atRÔã¸|†2·JÛl™ƒìÛË#cYF/‡,ü|ý9?ßk®~Ù42¾§°é_C}õìöo£ûÁ¸øH¯a$©âj;´ª›áÑæ®‚Ì!9ÃÓ!{|>buÙ"ƒWBmÏ@mõ÷¨\~–Z*•Û´ÈÃºûrÊÉ}˜`Ë¾#ÊÉý¼rŠTNÀ~)!¾‰½ÂÃ/óR5ËÉ^ªœ*nçW¿UÎÂ?LôRyQå£Îì\™¶dçN’]èÃt¸MJ†Bô’c1Äîã`:6bLÈéYd‡ 9Fúx2dbïÄU â´Ý¸ ¼Úìã½à×öAkí-è¢½ý´ƒØÏ‡`”ö>ŒÕÞƒqÚa˜ }S´c0]ûfjG`–öÜ©…9øÌBí8Ü£}kŸÂ#Úçð”vžÕNŠ±™Æ%¾z8:< ùð®><›pxøÀéWøFì•ŠMØ÷¥JŒÖ®ø4~ûAUúP²Çø°3ÆZÌ ‘>²M|˜ýfM†Oìµççˆq,ð#¹‹BHù[Äú“édwµyô#®&?A‚özº38‡~Å•å·èéñõªtb*=&}lW:ÈTS¢êëü)+ç“bQ_"$9#©ïÎŠó`hpa¸„3£,DOû®ãÍ®^Ýñh\Lˆ½)0ÏïÍ_±‚/h;ª´7ÜÚž]þÂ@EIÜdH‘ÖB·@ŠœË3ä×É›Ë!Õ«ì&oò¬œìåùpèü©Hb¼EÜžÒx²¼‚¸ô°sKõZÝICOÀ†Ô€fzôÔS @O…zŒÐ½0RÏ€qzLÑkÁøý\½ŽhpsþF‚‰Ã3/ñ¼c! ‘*ÝpïšÔ«Ä‘‰$„±÷M6—ì–ø²ø‰“6ü£Á1“6Ä4¿c¤ù9üÄ¥,ÒÊÔH+#Í‡1¢¹E`ðîóTÑð=[°‚Ðú¡qìïŒl'tî 7ÆŽh‚‘ ºjèÍ ÞzKh£·‚Îzè£·‡~z[ìœöÐ_o×a™ëõ¢3ÚñÎ°“’h_ðlLuÚ/XØ7|‚åäè…ñ*{ùTúÌy§"k&c‡àL‘ýèõÞâGÅÕ³1½/ê~5êIzAtïGJ‘>—¾ »Åå]:!Œ=ŒHF±oÇêÃPàp— QBŠCA_J_Ù‚zÚ*fUÝ:!ï “>XàG¡ïâdúO¡KW‘·è#A×GA¢>Rõ±©«¶ëwJúÚÞÒö 52vhùeäù^NlÓ1¢Ð§c<…~[TùE}#¶E5¶3•8‹Ûpï÷óÅ¶øNúÙÕžÿVúÎ^Þ;ÙÏ{0ì×|â+#l©Úêó±iQÎb4Ÿ{„YH@qÎëÒ÷Ò¶¬%vŸµ¬’Å‡ËMa˜á»âí²ÈÑÈ•É«9†«ÿ÷¸4p@Q=W.¡ßÕ>ˆÕ>ŠðöìR´‚eØ³O ?‰ü4äê‘kµPtè¥J?Šw~JD$ý,-·»i6ªÆOÈ»“‚òq¡`Bä8Æ0|CèØOùí‰ÈPç)aò²>ç3ñ‹ÝäDŸŸƒ‡ÈI>+c6,õÕØ/aåEèe0˜Ð×CC}z›8¹6C}‹èùTl¿itXú²¥_Å½§3Òo¨äïÒ®iÁÃçt_ä¿¤"Ôá;Ð_‰ÕS1ÇÅúNì˜ ì”]U[¢âïW[òŸÒ_¶älûF?z.!_—‘Ø[ú¾jiáßÒí'ëãbÃCÒ8_ñ“}OÇ>û^µgÏJçìg›á³¼=–ëYqG¾5ÑãhâŸÆˆ91Äÿ¯b¾F1§cZráò–øÉ?´äLŒ /WÁyöT8*\t‰1¤KüP×>®“ÅBð°[ÓwüÏ÷§Áy*®—uüeäÇ<Ý‡n¿øÉËo“’ŸËÈ/<~ëØ^¿&‚Ì_ùŸ3eä7þóeàW~÷;ÿ.ß²ÈâÚPNDâŸ8úb-Ñøáç_U±ñ8ðb#4`†šaB<~N2<j$AMÃ‚ºF*46Ò!?772 Q®2ê@7£.ôÄÏF=¸ÎhA£ Ü`ø`~ž``¦Ñî2ZÁÝˆ6öl•ø•¼™DvV}Ðdâ¼KlFÎGÂäï ñ‡Éƒ>VJÎÂ?æð¥äÎçóÜ½\à“ù¢8y¸3YŒŽPËèŽú÷]¦2³vŒ}þÒŒäÛw§ |8á*ý!8™ÏýAúƒÂ0…`)%¥»ÉÅ<Éå©ÅÎžÑ¨Ñ£j×@²Ñ²ŒÐÀc°»i²$ËNî£òÅžàÕ¸Û‘ìz¼’]¿ÀKˆBTÇ©,îŒS…Ÿ©†¨šgøJ¨ÆJ¨žãÕCÔà“›šy&Æù4./Î·›Æ‡iJ¢ž#1DîÈCnRÐ_J¼ŸŸyM¯Á§ÉÞ„2šRÕ>@#°m7@¦q#d#¡‰1 `4ÀèdÜ}ñp â@c3&Â$ã¸Ý˜ŒÉN0V´^‘<Îe¨ÈZ‘ÉyÀ,ÓÔ ¿”¦|!š¾¡úZhLÉ˜º1Mò¶êÆcÑH««-Õ{e©Þ!1;Æ(ö.;ÅÎtãîÑš#ºË¿+œ+yJ^ˆ’¡äÅfÜ½&$FÙºl ÅýÂ|"¿ýeó}&?`Ük—y-hÐ4›ï™Ð€ÏêhLM3í˜Ú¢5£·üC»Äé¿¯ŒfE=ÓêþÿåÉœ%bNqDJk£¡I^Ý^5ÄÅ#rkÞ+ù½*)¡u¸¯1‘oÚ|Y\›—Wó÷\µÕu¿iÚÅïb:aˆs>,.æcÏ-Aƒ{,cÎÚÇ ‘ñ8ÙSo,G#[ CŒèež…áÆ*ô2«a‘±0^€'—aQŒWa»±Þ46Â!cü`l^çV~5¹¯¸Fï#Â×zü¸lòÜ0ž‡·WøIñê±Ô°Æó7h¯\†Ÿ¢Êq"÷ïjçbÞG~¦CŽÇAOkØ‹A ü.žßCÀA\à4íÑ–íÑF“¾ü c&Nlh¶»/qxÊi=ÊO %ô_¯ãJ<×/‹Ü½ å´>¯ŠÎ¢+§ %È34¾Èsè¼k„Åâr"Åc1ÓkÊi“È½ë@6¶Cœ±m»ê»px ½0ØØ7ûÑ÷€YÆAôýïÁ½ÆaXj¼«ŒàeãÃª{Ýì.”Mç°ºb†dcƒ¡œeœèÊ4ù†Ñ}õØ?Iâ~ÝÅ/º&§êuŸÈÊ©Ÿ@aÔå+¦p ªpµt¬A4ÝÉüuÚ”ß‰á/Ûx•b‘w©tchmQaWÂeCþ;ç8.8_@+ãKô•' ½q_¡éž‚1Æ×ØAßÀdã4Ì1¾…yÈ»ÇøÉ~W¯igeªÒ K•“.‚BHö9×[¸ÜŸZr²½PÖQ<~SB›ÅD5Æ,™"§Fœ Ì²÷Z 3ižO röñß"¡-xÊnù-š+Þ)Óý*¡»„¶ôó7§Ék…˜ÆŸh@5.‚i\I –I¡¾©@3S ‰ã¯YxÄM´,ë²é†j¥ËÞ ~Q±V^Ùyðk&‚a&A¢iUë9ó2yG\¿âòÕ•åyA73P^f5y5å,×‚ÅåÕäú‰)ÃâÜh3Fö—Ó6beÖAë‚efÇÈ¬õ¿Êl{¹ÌF(³1ÊlRMfm¹Ž-³ƒÑdb»…Hþû8±Û¡HéÊj6Å¦7ƒ$³y5‘uåúN.¬ˆí>> êE~‘ý‹q×¹¦G›TNÛË— oƒú¶…³]Œð¶ð(œgfõá*e£ë_ewBÙ!Ùì#»¡s/:²Áº€¿•Íßãz“<-§œæ°hñBf íÈƒæ€Í&C£ì«8;5Âæ?gƒ\„vâËª^s9$‹Ø›KëŒÁD‡ÑEû61¯˜½Qñ>¨x?H3ó¡¡YMÍB¸Ê¼zšýa€y-\o„aæ ¸ÑSÍ Ì5‡ÛWŸä‹ÐT•©rãÔ$ñó8‹ª½E$7‘íß#!{°ñVAíÊ/}UùûcoÂDGõðV—Ñeô†Rzãe›DæJH0Ÿ«V[3çÝùö)~;_>ZJKŸEGŠ•ÐÀÚó‹ £¢ŒÑÈHDÆÁP-:ÖýæŒØ21_jb¾‚«Æ:œ¯bŸ‡ÆæÈ57BsKÕ™5ÿù'œšË-ì²µ) \›ŽŽ6ñ%ô¦‡õ7vBÞø/ÙÑ ³œ›9 ÞŒþNNÌQ£¹UÜ‰*V Š» ÃÜÛë8Kß€væèlîƒîæ~èg¨z£?C•ÖYÓéÃlÔ:÷_´ÕpBˆN´µåÝáqÇFµžÄyÿªõÔú#Ôú(j}µþµ>ŽZ‚ZŠZZŸ@¿üw[Êl×ÛÖs³ëž0½UDòt²ûú¶©3çEZ#®9©Ü6#¼[\¼Ñ6o’‹7¶8Ú¤Kùê˜¿b#Î@+ó7lÄïÐÇüòÍ?a¸ùŒ4ÏFßZogYÕšÐZnÓñ×bµSò1´Š1Î:Ó]Œœ‘ìbÌäŒÛª1.ÓUìUÆ™ ÇÅAR\<¤Æ%@½¸Ð(Îâ¡]\ôŒ³ o\JUÇ§rËöxªiÝVngk=Ï~•®¿®æ+%“¸æÓ"ý…MàJÍˆRÓ953J%_®Ÿˆ×â0Â‰Ë+.Òâ² n\-hWšÅÕ…–qõªÍ¸uññ.µ4¹}ô—=GEô æCI¬ŒÞ¾î÷(;¡cYôŽ2h? ˆþèNñA¶è]âƒbÑÙâóñ]ôÝüÃV:—g¹%tnWJço…«=½vÂR.mµPÈY$„,îß;—‹Þ‡€¼ûù‚nÑÐ =„`Zôa„8‹.Aˆ·è# }¡†E—"x,º!Ñ¢!$YôqË¢O $[ôI„‹>…jÑ§Ò,úBºE—#x-º!Ã¢Ï"dZt%BM‹>‡eÑUµ,º¡¶E× Ô±èóu-º!Û¢/ Ô³è‹õ-úB‹¾ŒÐÐ¢E,ú Bc‹®ChbÑWÐ)¬GÈ±èŒÙ7",º ¡©E7#4³h1Bs‹nAhaÑ„\‹nEhiÑm,úBk‹†ÚX´¡EËÚY´¡½E·#äY4ŒÐÁ¢;:Zt'ÂU@èdÑ]èv#t±èë=¼ÐÍ¢{º[ôM„Ý‹ÐÓ¢ûpì›Ù¿“°•¶Ä$Ã¢ûÃô-\w„èÛCã0=ˆŒwÆÂô2Þs‡Ãô}d|à0>Ó#ÈøÈa ÓcÈøØaÓOñ©Ãø,L?GÆãD˜žDÆ—ã«0=…Œ¯Æ7azß:ŒïÂô{düà0~ÓŸñ³Ãø%LEÆ‡ñ[˜þŽŒ?ÆŸaú2þvÿ Ó³È8ç0Î‡éd\t—Â´2XÊ Ê`$Ì(2˜ÃÂLF†â0Ô0Ó¡;#ÌLdÄ9Œø0K@F ‡á ³Dd$9+Ì’‘‘â0RÃ, éÃfÈÈt5Ã,µFí0«ƒŒº#;Ìê!£¾Ãhf ‘ÑÈa4³&Èð9Œœ0ó##à0š†Y3d4w-Â,-F«0kŒ6£m˜µCF{‡‘fÑÑa\f¸ê±Î£K˜uEF7‡Ñ=Ìz £§Ãèf½‘ÑÇaô 3OY?‡‘fÈ(t×„Yd\ë0®³Èè0…Ù`dq×‡YCÆ°0ŽŒã†0»#Æ¨0Œ1cl˜Ý„ŒqœŽWyo±›ÑI‹¢œž`±‰nú‹MrÓ·Zl²›žb±©nzšÅ¦»é›é¦o“ÜÔí²›š¥¸©;T7u§æ¦îòT+:ÛSìOµÂw{t79×c¸ÉyÓMÎ÷Ä¹Éžx7¹Ð“à&yj¸ÉÅüb[y'ÑMÞëIr“÷y,7y¿'ÙM>àIq“zRÝäCž47ù°'ÝM.ñxÝä#ž7ù¨'ÓM.õÔt“Ë kú˜Å>vÓÇ#Ñ®Cb±Omšòu‡dFÿ ”Ì>ë”“ÙýƒJ2;Ù?¨"WÃÿÅè_Ê¾ÚJð,v cÿtZ„øZ3"Ä7‚˜é<Éy¤?¿‚Á~$ÁÈ„7¡>ì…ì‡6ðt†ÐÁ`8L»ÁW4¾¦#à:ÎÐyð7] éó„Ò¢Ñ=$ž~H’è×$þEj1•Ôcé¤ kBš±<Òšõ#ØpÒ•ÝJz³¹$Ÿ=J®ekÈ`¶…coÑì2ž"·²?ÉtI!³¤42GjLHíÉ½ÒÕä!iY*M"OJw“Ò#dµ´š¼(“uÒëd“ô>Ù*}EÊ¤?ÈNY&oÈ©d¿Üˆ”Û‘Ãr_ò‘<”|"ßBNÈsÈ×òò½¼Šü"o&È»ÉYù0=/B/É?ÐJùòßˆçQ$FÑdû[RÒ3™¬ÔgŠÒ1‡©J+¦)m;0]éÁ¥7b?¯\Ç”AˆAVCÉ<ÊÄñ,Q™Ì’”iˆ·1K™Ã’•yˆ‹XŠò KU– .ciÊr–®¬D\Ã¼Ê+,CY¸™e*¥¬¦²±‚e)ûX-åâ»¬¶r„ÕQŽ!~Ê²•S¬žrñV_ù5PþB<Çª”5ReD5VY51ùÔ:,G‡ØˆùÕf, æ"¶aÍÔN¬¹Ú±'k¡°\µ?â@ÖRÎZ©7"ŽaÕ[Xu2âtÖV½‹µSïF\ÀÚ«°<õaÄ¥¬£ú»J}q5ë¤±Îê«ˆ›X5Äºªåˆ;Y7u/ë®¾…xõP?d=Õ£ˆŸ°ÞêW¬ú â÷¬¯ú»Zýñ,ë§–¯Iˆ+ÔÙ5Z2b:ë¯Õe×jõ³Zs6Hk‰Ø– Ö:³!Z7Ä^,¨²¡ÚµˆƒØ0m®DËFh“Ø ÚÄl¤6›Òæ".d£µÙm â26V[ÎnÒV"®aã´WØxm=âfv³VÊ&hÛ+ØDm»E;€ø.»U;Â&kÇ?eS´Slªvñ6MûM×þB<Çfè”ÍÔeDÝ¦'²ÛõdÄt6K¯ÃîÐë!6b³õælŽÞ±-»[ïÂæêÝ{³yz6_€8„-ÐG²…úÄñl‘>•-Ög Îb÷êóÙ}ú"ÄûØýúRö€þ8âÓìA} {H±ˆ=¬³%úVÄRöˆ¾›=ªïAÜÏ–éï±Çô²Çõì ý+ÄÓìIýWö”þ;âßìiÌþŸ1¢Ê–¶ÂÀ¥ÙHc+:ì9£b#¶ÊhÎV-Û²5Fö¼Ñ±7[kôg/‡°‘ì%câxöŠ1…3¦#ÞÎ^5æ²õÆÄ{Øc Ûh,E|‚m2V²ÍÆjÄX±±žm16!–°ÌM¶ˆo°mÆ;ì5ã?ˆï³ñ +5>Gü’•?°rãgÄßØvã<—Øv“²¦Évš ˆI¬ÂÌd»ÌZˆÙl·™Ã^7›"æšKÌ1æsªyÑ¼Û¼TÎ‡RØ÷>èÉ¾Æ¾ëâe7‰V¶ñF‡Û´q°lìocWÛØÛÆ6vµ±“llgcksmlf£ßÆ&66´±žulÌ²1ÃÆ4“mL´1ÁFÓFÍFÙFAZiãÏÚø—¿Ûø«?Ùø½§m&óG„|\Å'œø¤Óð¨ŠÇ\˜ƒ*¹PÇ]ÜëS*>íBœøŒM8,“ÏÊÊçDüó*žÉ€Š#²LµŸÄT<å‚OdŽÊø´Çd<îÂ œ5Ó"3èÄ)‘9-äŒC2~QV¾äÄY9çœ_–ñ+N|UÆ¯9ñŒŒç¸àÂE<ëÄs*.)pFÚô KìVÐÔŒEüQÃLõ¸áF’)3†¿½+Üf˜Yh«5’á(˜Ô±Uß¡[¨‹«Z¤=O™]fÂÐ# j3PÌŸÇ&¬*²6eæá¦Œàòùºó÷ë4ô^#¡`†Ý®™EŠÔì}K"dŠLí ™U MŒ¬Hõõ £wøi#…+×FFÂ¼1OÄvèá€÷èÁm æwÄýþHlO(Öý[“I2öwuu<Ô ê¦Q,Åí\‘@,5‚¦Ñ«@Ù¤ ,²*–¤ÝÂz´ßO}CÑþVY\Kp±|i(2oPPêiÚ¨Àˆõ¼GG(j¬IEzŒÄz½'LŽÏ3nçÊ>·~9·•#Ô`æº ¦zFß°½]0U]&á«õxö®•»‚FÜÅ¢IF‹˜HUs†¤YhJGÒˆrró·Úbšqÿ*’Nc{ÊHšMÿ—ŒS£•)ÎÒ@ÅzCÉ‘ûLè7Ì‚øŸêi#&Z˜Óò°EY0‰àâø¼">*B'*2,So¯N.°‹”Nž+ÇPm$}*(8\j†Á…A%"Õ“‡×ãZ™ÈvDôPT¼¼y4®i#‹'ë¦Š¯Óö]±T"h´…$B&Š{á5çˆ˜†·áV 7a•†v¼YÃ[Ð¡a5ÖhX‹unF§†.¬×°5Ü‚·jèÆ&Ïkø¾©a³L¾¥áÛøŽïòˆ¢kÉ}¾‡xë»® Uú4K…{£fCDßf4d…K"ú¢†(bâØ®`ú˜~¡A6¬o[,ß§Uì}.«/1(Æö’ ~ ¡A³Çä˜Ì> Ik£†hÌlªÒÃ¡=F¯†âG~ŒŸhˆˆ±Š[ÌzýÍ3.RpÍ¸RÅÏ4ü¿`*ÇÂŠT(l™gÂ°Y£ý f¬AÃ/ñ+Òñã^¿Öð±õoñ;¹~KÃM+éößóx‘qÈóËñ' !leƒÜa$’äq£?c/{[ÒÔÍT’^ì5Èû‹ðTÚ%iAþ*S'U1y=Îÿ&s×6Ãˆ·ÐZ;×ð¼Ì ÇÄ¸Õ¹íÙjš+/Š&å¸íÜ¾_.í4c30k=í¶Õ8ÎB.ˆÑ9œ¿öEÙ&§Ø!/§+Œ)cÅJžd—ÎøiDÔV1-)åh}(bÄRRPo×yÏª¡ùÜ‹½åœ.iö¥q}þ¦Ü£%¥#[å-Ë¬Ý`·¶<³öF»µ3k+FÖ,%Rw 7=Œ¥µŽ²C¸¿Öáx•TÏ½òÿ¦Ý€C9üZ2W¹ú˜‡ÀÌÊ#¨Æ“pã)6™£¬eÇØ³óž`½:Éº’f%9ÅŒ9M×ŸÁ/á~œÇË¸€á"^Ã³JžSfâ’²ŒŸ›Ýx^Iá¼²/XÙ<ŽW¡«¸CÅÌéWp¯Róo†ÐpþÝÅÿ>K³»ÿWëoUÿÍîv§cE Ê"E„íX <[Ë ²¸-ê–Gñ9¶ÓÎÎ¬3Ób}¾ß¯ÄÄÄÄÄ˜c$Ñb4jâ>ø7ñwf·»-ì6âSæœ»çÞó»çuï¹üù÷Ï¿ØO4lÂà2Üƒ!!'„<"äQä1 E«8©¡§„œrFÅˆgåÇãBžÐð$žò´ü|Fˆ¡bT…©a5J:a©Ó°%ã*&4Ü)C[C&5LÁRVá ÷TTT<«ÂWp[Î±-7XÕÕƒQ#H¤ÏÊŒÎ™¢7l—-o:i^¤‹zBµ("œ.ÞWK¥qoË»«µVøzµj¼ ×àåãV˜wƒÐpMÚ~wº»°¤ÉÊ1Û-I`Ï6óÁf½®Ðâ¸ŸÙ³ãÀ‚È³³‘øEý¾cÌã-[wQA{èÍŸ†Õéîf¯ÌÒÝ•5é“nEçPºð/d³6K„6†Î—üNz¶+i>.RÕ{ÆŠÞgq7__›Àû Ä¤ðµ“Žq6…ˆ³/·s»éNþ:B¹BžÊ\’Q~DLH\HBHÛeNò”“®E’t;·èÆ2‚wx¡×N {kC„Œ‘¯o™é¡¬»*éÎ&¸»øØë°w×°Ï9NÞÓ »ç*Ú#ü2ØÊ¹Ë‘ï²Qéž&íÅ:ìc0‚}œéç*p.vÂ¸Š½*öñ_5xû¹,Y³‘k´LÏ:E‰Ï!ù}Ý«dÖC„“qŒ/Úµ‘nUWù’&ˆßd~@ü*!È~‚šùí#D‹oK%®`™¸õ‰¹hA¢³mË•¾ä/ÐG[ú’"M%çÐÁAÛÕˆ‰×ÝJ»ŠÔOX!£9Üvº6ÉñJÎaÕ%< h#‚q{*ywüÞ¤æ©ä<™ŸZW˜ïÑF?^bnVGücTøWôXø%ú.ü[>á«‰˜Œféÿ“pwáQícŒË03} ÷ã4ß g8;Â¿Çñÿ¦0Š”ˆr§1\Ä8w²ñ)Ñ¾‚ƒ¯QæN¾A…;ùø~¥†$²Ë:þÂq×]cØ“Õ„**îSÁg6‡Qñ¿Uæ—[qCâ¬%ýÝ•ƒÀLu0ñW°¾/‘b07¤]¯Ïá®KhëkÁÆÏY™Q€ø^dPîd1Å”ü‹üOÑËœ9Ï¹‹œ½Àrøfdt ñk¶ÕŒ¥‘GÄÒ£ü›ÆVítl¬¼¤œ€'W‹¤ïÒð÷(Éãxm}ŠŸÔ¯rùº²ý Gç¦€-û ï˜ÍhÿW‰[T×ÿ=™ÇøDÅˆDG2è€*¸†AGHfp«fž8:›³¸5‰©1IÛ$Õ4KkmÒDMij4 XšÍÚféòïôûÚôwß¼7ó?Ë÷Þ³Üs~çÜsÏ}|ýß·´â_6lÆa¢ˆ•#Ž„Œ#bNÊH‰9-##æ£2Ž‰ù¸Œb>)ãÇb~RÆSb~ZÆ)1?#ã'b>-ãY1Ÿ±â9Ïû/Èø©˜&†Ÿ‹áE/ÉxYÆ/dœ•qNÆ+6,À/…ìU±zM¯Ûð~eÅ¯mhÄy+~cÅV‰åoxSÆ[6´àw‚õ¶ÐÇŠ‹6´ã¼ Í¸dÅeÖã°°ù®Xý^—„â¨P¶ÕÓÕãñK¨ö º"ÁØˆ+N†c#*ÜñX*Œ¥w#•Ú½ƒB[yt»;°v¿±Y' é,¿ç±žÀ .—ñž‰—U’ñGšÛŽ…Ó›$”:vJ°¸ãÃtRéÇÔþLtHM‡"äÌŽ]‘‘x2œ>ŒoK¥$lvLÜà‹'G\ÑøÉp$tJ¥\¡ä‰D:î „GbÁt&©æ¬ˆàé`èp_0¡{©HÑJ¢;I¦š¦‡E=ÉR•¶Ñí÷å÷ÎÎ²Ôd:Ï³2 Á‘°¾¨åµBÁ„êJ©¡Ažpok^ïÚÍAlóF‘N+®Xñ>«… Áæ9Ré0‰(tó½ÉxT;ŽiüìÍòrNBÜ“s>Ó*ý\`}ñ„„Q¿OBóôÉ(bÉï£…ôý¾¢‹Å“Ñ`$|Rnh€•)¡¦Ûö«G¨ž&Sª u‹ÓÍ,â™dHí ‹C,{V EÛ°Ò¾ž¶c²bLÁU\Ó„«u¡‚gf`kWKŽõ§I¬ÁúD°*ÈZÝÖžÓ7˜kÖµæ˜³%ïäºæÖ°èq+ø³à(yƒ‚wÃàéöï¦ÁÓÍ Þ§‚·(ºrÅŠ¦2épÄ¥ Ùr[¸Rüt{¶xûínÐÛëuw z4®‚[¸-aFxú{Š(ÜÁmŸás_àK óLÖ´:Óh sr&ÌÜeÚöekíï–~O½§k°K×Z2ioqÆâQØýž\xúí>o`P×n(PQ]Á¯à+ÜU0(VÃð[ñ÷pøàVŠJû«„ú"·ÁTÁ¹»*¡nªÑÄáPÊ¥_Û9ù:7mÊrÃq—wÀÄµ%ÖÚÃ){,Ñ`üMÁ×øFAlÃKï‡ÝïËBÿwy· oVwæÀ5©à;ü]Á?ðO„Åª¼ÞÀÐ!5”ž|À“Sµû)<½NU! %â~×NßeØ Ô#™`„íož¹=dÁu6ü…ðÀOo¯hŽ¿‹<öŽžðˆšbœÿ×ÛRÄÒjÃRm¡Ltƒœ°ç>Âº";Ù5î'f¹Ÿ˜½Ä/ð¸§u¼pªÌä·ˆÔä¶ˆÔäÕÆÏ‹d:%gh´xž¡¬Æ†u•²ˆ~2xÙîS™¡”^,5¯·èûlá‚§;×QTºxúö¹ƒKK ¦ÔöÖa5¤}ŸÌpìíŸ+EÑ’_9¢¦M÷žêöê2ÒtÜ¨ý²ÐÁ`²‹)²8¼ nÒÁD‚y`Bî©d/l'–ðËn3¿nË8ÿ]ÐMªµ¤Ý&ºŽt‰¶“ö˜ha§×Do!½ÕD{¡pÍ–£œ‡9Kœg8' ]åBBŸC0£ýÈªJs¹]p_qV—Œ£ô<¬×`sVÏ0ˆ2VƒI”„ÄLƒPHTÄ,•QEb¶AT“˜csIÌ3ˆó â¡1iL‹LÀÞ‡ù›{%*øe]3ØŒeüÔ®Çj®Öðÿ‡VlDsÒÎ<¬e€ë°‹×{ÑÁ'¤±G¨‘Á&<Í39Íóx‘Úg™ÁGi½3+”Ü]ñÒ“ù),Z†ÒÎ{L(QÖŽcáyØÕuãxø<ækœENþ Î¢áq,¦–ÝÐZbhÙ %y¥šV³z™¦5ÛYµL¨T-ÉÊóIpÂÆ±—X¶ð·á!vÃÜÄ“ôó…ÙÇçr;Än- 2XÊ–/gÈE²OÄaDòˆá}¹á½QóÞPè½–ö€qÿã\íG5ž ‚ V ¤y³ ¤LøÌùÊ—àu¬+(ÁªîÀNª§PŠœ¡ïúëplç–_ãu8û¤þ›hÜÓ4¦þQÌè°¬ãþ¹4ng-d¡-…Ì1Ê1ÆSLÚj¤©s”ZÊi ä{2,VìÒ~w[±’ìh{µ$–S9c|\‡uN‡ÕRÖ*ËEX•–›hÙS½zkî¬Gkc³Žq OãSÄxŠŸ¡Æ³ÔyžZgˆñ9æÓáÜ'pîŸ9 çÌ~Ñôµàl8×NI_ó¤ô½ÄñeB;Khç¨ñ*u^§Ök”¿1¬! Öäô…r°N–E® –Ó'õ DDÔ7Šª~‘8¦lH]“WÉ²ZXîÇ7 î-Jß¡ü25.²g^‚ïjàj¸…(ŒL™„l8Wš7ˆ¬”óÞ›X¿g¾Òu¢ì/b‹“¸³Êö6ÊFÑš%*4¢>K,ÕˆÚ,a×ˆŠFÇ†]gJ¤Ñï'Ç±1sÚ x!\anß'ìØ?D>â‘Q~•mêŸƒy»?a8Wx1&´°fÃúØ¬P¥¹lJåÿæ1—‹O?=ŽËzýSâè0ÇQoŽ£ÖG!ô¯&C_…™oú-B¿Mèwý3BÿœÐ¿ ô/ ý.¡ßâtOƒ\…²Àgutàsø|_à‹|IÇe|Y-êø Õò†‡uñˆ†Gu<†!µkQ|¾ª£«Ý¨Ú}MÇ×qEížPËŸkxRG.ð õü‹žÒñ—xZžPTÏèø+üµ†g5<§c5þFÇ*|SÃ·4ü†¿Ó±VÂø¶Ž¾Àß«÷ÿ –ï(ÈwÕîyµ{^Ã:6ãÿˆïéø>þI½ûg?À•¤Ññ#ü«o<ûàßtüÿ®áEu¸¨ã'ø©ÞòMüÌÆ™!›{hÌŒ·iØcEÁ« qºÄ¤PÜ]òíÜB´Çë&÷&rˆÇë 2}RPí¶¢§$ÓöuÌ¢“ô½ç¢V¯K&ÒšhôB4ÙÛ'X]½' ™w/h 3EÌw–Ù#X—eKFê½Û…oÍeì (9I±`ËM]æÔ)+eu±ÌN+U˜¬-³ùNë‚édÊv5K;Ž)lqq<½Ç´-B+²ò2v,QÐÂzQPÖÑg[»R)³/½+eí=“1ãÎ§û)ÙÄí½9“´-Êžßeeq(ö¥’=G¨LM8Ö‘èØk…RÏæXWÂ´3)FyëµTÛ®¥ÙqNF‡™¶6o²²)3Z[S±|2bc&nÇTíÐ—“áÍÄ[î‹,çÎlÖÎJ$S=f@Ÿ.3ä&Ä iPK£4irÈÃ*In–#>†>ý`×\•LuEÌ^“}7Möô°©FTeDU¾™©¾HS.†4“DZpV“VCŽJ›ã~CnQ©[1Qén[’§kŠî-*ÑUpîb6—èKiW=¦jÆ3ªßõª¢pƒ–”µ¦ø—.`5ñÆŽfR)+açÎs¦èäBU»åº [‰.›íÉ[]¯®,´ÛLí²Ý3é;«*kŠÃwÃŒ:5èëŒuÅˆì«Þ]¯4ØÉ\œ*;ïèv2ß—”gÒð›½½V‚ ¯ý?Í1n'˜š9ª1v)•(à€u.§E9¸Ž”™ÚÍ*¡®ùl«ç²«³3å$a1ã[××dªð†®¯Ù4:rŸ=1[dg åÚIÐü4A×© Ðõt¯:Í‰uœiî‹Æ“ikòå01ÞÐ{n”}j.«ÏY1mnq'‡z'¶DÜ\ÀqÐw»èÅ,qVÕ’¼ÎLGV3§Î4$§ÏZœ‚`œz;ö¥m‹ •æ²”h±x<–ÎñqÐM•Ž³#òã bb0?â}‡M›Ò+þSNwe¦m3e§ÛbŠ"ÀÊn‹Ó™Žt6æV×Nàô1‡âÒì}ä¤fK&Trúh—ëtÎLwBiÉç»áN&nÛ’šÙÉƒ¾¹]Õò¡SŠí”©(7›¨)ÇÝf«¾¤ÛL7&UØ—UF&xÍ8*KÁ=XÊï–(Ôo.D*\OñTÅ'oBøBÃ‡¸tqõ;Àj«Ù%‹ºEƒâ‡QTæ‚÷ò4ô¢ßVÝW}=ÑO#î¢K1<ü“†øûQáÿ:´†°§,Ðö–7‡}¡æÌÍAuá@G`„‡PÒ¸v3Û¸Ìº>ïeÏåBK “ßì!Ìñ\†—ü÷¡žÁûqÀyªóÍ(sÎêYäèw”ß¼àGh¶ðòF” –ï¶b¶aÞ„åØIßì¢Áu´b1öbyìÅ!®íä|qM¸•\ßŒ#xnÁIô8nña‘†DÙÊ5$ÇU4ôªåÌ~ )?Ý’†õâè?Ÿ™Ð3ðÉà(ÊÛCC˜;Œy ží•j{ m¡Ê!ÌßQ_¤+‚K†P1€mUÁå±>t¡HÔÛ`p6{§}áro0Ø]î;yCWñI”ñ:oá »ÙY\;éA‹êœ¢7ºQÉP/c«Ãõ´môf8ÃdK3Ítè¦i·;–—Ãï %22†JÙxÞ«ðÑÚÛqöÿµ•Ó½ƒÖ¾•êÜIkÏÓÚ·ÑÚ·ÓÚwÐÚwÒÚ´ö]´öÝ´ö=´ö½´ö<}ÿ¶öú²Ö~0›òûGQÕ>ŒEŽW.aC¸lñ–ÐÐ¥?^‚.[ª@á,lËÔÑQþ[T~ùVLè¿ŒY|˜ëÝÌñ{˜·Êœ½!|„¹z73øcŽŽ%ð¼]Ã²ø*æP··ÒØ"G·eÙ¾à`eÛDcÐª¾Ÿ–|Ä—ðó¤|îr)å.hüÜæÒQ¬jÅêvv—êa¬iEˆç0ÿm£fë†i*»¡ÖËÊ]ßy|l¨õVxŸÿUM…wÆ_Zû4J ßÄbV¯XÖ5OccÍÞ0€µ.dK…÷‰ZßdD…ßEÔb…ï‰‡¨tk±•>ñ²>»Xáêy†Êž¥éç ïbÎžÉû1Å¨yú1?M}a|öóì_`ø"y’óÃäý¹?‚6<ÊêfÅÏeÖÉ—Y’ó %=LYQÚ#tÙ£Ì afÎ>€Ç±Q'.Û¡¿Žˆ†·kx[ÃU,8ÈæàçòÎz ÆaÀO¸óWáÐßœþá×^¥²¹¸lf\Þ…?ÎFôaªV–ñµ@cˆ~zcûŽ¢P^ëa%Ü80þòCyÓËÜ+Lÿ'QŠo`!žrT3P4¦„¿{s$/)èHzO!I>GRídI[Hz†’ž¥¤ç(é›S$½÷IïÃŸd+è}YI[=Û†®x;/aãBïI·Š–‡nUnÂ¶O¢”û¦ÐB›C•5ÍNÙüà‚p}nB‘Ud |‡)þ]Fúy,ÁXï±j¾u„mâ»ZüÐQ®¾1±²g¨Òñ¹•ý~1WÙ^§Õ±emß¹xvÜ{üe;G°«nu¬öÝµ¾¥‹ì™ƒ½÷Þ’ _Ùþ!`ærWÏ]…Ä§©÷cJz‘…ûzâ§Tó%Þà?£Š?§z¿äõ²£ÞLxÆô¾†å^ T7Ê‡˜\®nV¶ë¬] _y>ÏålÛ™ÃÞ®Üè€ýÂ¹²]é‹œšþ5×ßÛ+tÀo±¯²@^a¯ø#u¼Åc ºî¸;‰Ýâ„Ž&¨¶•Ý4„†~Ìw6ý˜òªÞîíBÓ`hÂä¹äñÁ+~ø9!Ì+¤ÄæE‘¿ŠRîaosÓ.Â§jN³ÈëBlŒ‡ÃƒùÞ5SÙ-sù(‘ 6D%èÏÈä#øhVÕ-|*&3ö#ÀÞwó —#*¹½ÍA¿?‹þzWýz³¯ìõÄvN‡ëGé(Ž·‡ÊNãÍMÊHuz‹:±ÓÞÚ|œtÛ²É¾®žKÚÆ_dX>áÉÍÌbÈqzòƒ{+fÊIÅÄ<éÀJéÄ r [¤Û¥{$†›ä64Éél~{y¹rŠºCÃ'tåˆO:|ø=û…ý‡”Z$$ˆ»Ò«,î,Û#Ä=XÌ‹$þ½ÊÂv†aFy¡Úä•Jå{a”F8…ì)Pl¶½áÔj«:i6Šü~Þ!L6P/òe¬Æá’ÉñÂîo‰0²nòøü¬JÏ¦3bu.ÖyC*9•oºF@xŸÙ+ïåò—ƒŠ¡é¤¡‡ R ã‘œ$šFrûgÅŠ»¨ „€¢Dýì½÷Þ{o|3ûöÝ]â"ù1³ÿ™Ù6;;;ïžÜÿÈÑ˜Ïd¼‹È 'j8Éœ¬ãæS™¸ÀŽÓ4,d£éQÐÐp††3u,rAoœæ"Ñ,ÎÆb&%LJyÔ2¬Æ9Ü:’É\&å<È<&Gq·nÍwÁ6œÌÚLr·VàÑl²ˆ[Ç°Ýb uÁ(œÌ¤’ÉqL|L–0!Ó*¬æ–_Ãã]K¹_1ZÃ¤–É LNdRÇ¤žI“F&M:.sA63hÑ1À¼UÇ“t\®ã F+uÁw’/ÔgjÝÒFjÔÔK€ÖA=œMÊ|hwÓú›åÒÈØ0ËÍµ K<æu¾†¥£MÙè%…Y•Õ¾€A,*’8Wá˜ò™S3+ËŠ(M8+7/eÍ C¹™ÖHÚÈÞÐx8³EfË¥Æ &x³CáL5œA9³‹aùÔ°eÅ0Sës ›M5§7T5¯l Ð*¡wjiyQåÂqyY•MKêj«*Oô¯Tº!]K/³r9@¥¿JiãY+•Ó§UÎ1ûÎ¦¾r¹Þ Rºm÷$3©sÒd#ÚÚ‰Bj#j¿åÊAÚ\«ÛyRÖ›WÆÃÓèæºbI’••óOYnÞ?däëÈÈådÞúj)ˆè½úêÜîtñÖÊ")…ÔZ;µZf$õÈ3‡‚¤°¾sèôµºuÇU·Hcya‘Õ+Ìóò(Üý…Ü…¼.E":ÝRåv£òFÞ¸Ô ìÎãAmD‡µý-µƒ»w·Ô{ºx[ ûtuvçhF?n•Í(-*Q9µxFÙÜ¢y3KÊi€E‘X¿¹Ý˜Ç‘g#ÉûM-.Ž¨ˆYê„’-Âá‰I=ÊÉöiÕ~ÚIqmƒ¿´µ~‰¿yžoIIútÐJÃ}a;ï£OK$ã¸ÄÚ&ÍG°ÑÐc#i#<+r3Æ…_T=ž“{ÀWub‰¯I®•ÞnÊ¾ÓWTùåIÒæôv´Ðf$ò¡éÑŒ~,ËÂBzjôp¡Î µ µI©‰=~YÙC%=7?ôÙã‰L]…þ¦f•/à§H5ªýUtôæNå1-ÖßP%ƒ!å`n+k 4µè¼ü¾z9vTµ¿yºêéUgZÛ8º‹Õ·T·jHÅ†=1iQ†ŸR4Q ”×.m £úŽo\bO¼›ñF9©*)ãzgbÃ«»òF£J) iHZ¥2%ñ_ @ÝÌô@£u%Ü$4UmÕN½ÌBg^ÐÆé_Öê«#Í¨žùáè.7Í\‹”ë5¾–ó†Sý»8äþªêT»Ê[›«üGÔrrp‡- g6àxÐ€‡àa1 adçäSÚXÞZUì¼¬ý»žRAkm…”ýÐKÙºµB¶‘bädu‚Ï ¡<›Ÿ`àgø¹é¨±yÂ°C;Œ-ûø~‰pØ!.e6+ž‹ÊÂ=TÖË 2Í$ø›››S ¾„:<ºG~¿Â¯)o˜‚©~ƒ¹~‹ßðì60óøžZð“YÖ8½êeÀý¬Ø~oàø£?áÆ_<ÈÃ=»£þÊÛýþÿ0ðOü‹®!séoöqŸÐÌ«in\ÎIÕÀÿá~ÞæU¼Åä@ðn½ËäÃ×¸õ:/`?…ÕË¼·lž„Ýgð„lR9B7Ÿ‹JÏÄÒ2 xŠ5N³ 6kì4jð´%§G\É©eÀ³r$z2éèôxÓ%*¬=ž¢6m¦¿®®ÞGQ8Ó€7d‡BîÀÕyærY²˜CfŽæVlfzVúØœŒôÌŒŒœÜôœtZÖ·ÜËàeeåX=¢L(ûôéÚ';=SuÈÍëÔ!7¯»YfªaÂ;ì®C¶ÙüÞ`wrÌï¹gé2]nZ6ûÍ3³ssÆ¥gÒ_®¿ðÆcBû˜k9Ž7"A\„Ž™ä²_žjCÁž¼£î{Ò™þfõT;öäuß“Bìwîé¢vãï5îcÀÏJ—®Ë2u?IÍ°Ü,ÜÂü$ÇèÂÇ ¹ÓßéÏXqI»¢›>Í€7Yþ“?Yi§w"ÝÀdÎG¨Ñµ KM03|BkƒLÕ|G0¡(ÕÃtl`¥xþkÀ£Lc²—É>&Á~xŽáóL^`ò"“—˜¼Ìä&¯2yÉûL>`ò!“˜|Ìä&Ÿ2ùŒÉçL¾`ò%“¯˜|Íä&ðÞÝ]¹ÈYÁÝõe¢ø³’j¹ü™¢öd³äÚ}F3ßÌfªk»·)j&½°)Âs!ÿLPÀ5BS“¿j ´ˆ5B7=é¶€Þg¤!ÜÆ®3&u_t6•¿œä«3wM%Aè½~ÐQ¬G†²´7Ç-’?÷TÑ¸cºßê!¾¢+þ©ÍÍ¾•á\P çx>ÿ¤ÓjÖF5J[ëêÈžZ¡ýŒHìQêXN ?×'ÿ¦ötTÕ5r¡ã«®.om¢ê¶¥…‹Ûá» ¾i²KOt´Ü`QÒ| Ñ° ÜÛaÄÃh§+½€d»è?½Ò²MÕq;?Ø’S!D<žï«ä*þ˜â{ß§øã’{ù±”üIÅŸRüiÅŸQüYÉãù²Kþ¼â/(þ¢â/)þ²â¯(þªšï55ÞëŠ¿¡ø›Š¿¥øÛŠ¿£ø»jþ÷Ôxï+þâ*þ‘â+þ‰âŸ*þ™âŸ+þ…â_*þ•â_+þZ÷·jß)þ½â?(þ£â?)þ³â¿(þ«â¿)þ»â(þ§â)þ·âTI~Àä\÷HŽ’Ç¢@Q;¡Á)dŽäí€mÔ@tuJa)!'jLEWÓ¹„¨$T¦Ã(Úë’Sv€Ø´uIépÀBˆBFƒö•¬IKÞ¶â”}0d7Ø+vƒ£b'8=Z;èÉô¿¢v‚«c7DW¤ìƒ— ä°àAªhX?DÁñ0jÐ ‰ø7ŒÐ0{É€§Ì@ÓöF·9-N&ì$Í5´£wÆõ³zWxÜ;!¶ƒ&ô”¦µCŸb"}7€Ž%›ÀCí¸’T²Öo–`¾=eôk‡þ`4µÈÖáÔòÊÖ@jÅËV¬\uêN˜oßÄó˜{È·§îÝko‡A˜ï vTj;Îwxí^G;ñÚC›<ú=™6¸ úÀY0Î¦#9‡6{.$Áù@¬†±°ÆÃPWB9\‹a-¹f,ƒõÔó8®¥ž7Ãyp+\·‘õp5l–KÏ~ˆ#†± Ø5ô”4(ÄÆjØ'Jÿ ûÝÚ[º5Nf¼ ñ€jëü‰£âeºŠoòN8,w@“¡L‡PB(„âå‰í¢A&“+Šh‰³É÷‘;î§ éûD-b% h#žÔÝÉ©·ÃÐ½ ÑaÚôôH(WvžbMÑAˆ<þ0$Â#ÒcÀläÓM´ÎÎ{ôªM ±úFXPh{ý€é“]æ~ ãÿÙùÛK×¤|6*™6‘ÐÃvÁð€›ÀUÌcâV¾Ñ¼¿vÑ‡o•“÷‚X¾jrªat?€’³ƒs/J®±”˜=”tûSÂ@Éu$¼%·¨8RÃAÎ°}Åâ`¢Öv×Ûad×»þ! ÿQ'Ðw¡º~é€4Ò<¶FÑEO,ÁRÕÊ·{íæ®’˜YW¬Àæ-Ë5yÑM`Þµ¼ë}Í×*yr,rCJª;ƒe©)tÉè&§Ó}›¶âŽÞSòíi¬ÎÜ¹¦$×QêµwÈ«98dêÉw¦yÒTc‰×Ñ±•6z]¬ó ƒ¶¾‚.›Éo¤ n†{èÎ ÙÍ›þ/7ÑïÈê{:â`=”ü'RâŸEI%ü”ì+)Á×Pên¢„¾‚q=õ¹‘ø£ˆò|€k?Tj8TÃaDõ0„¯-ÅãpSTäsAdý?@Ó:;©ƒ&¶|–¦®SóyP§v5Îýê¬Š±DµJÓ"œÙ”ð3Ë?³‘ágæ5ÏÌ•&,:MXŠ;#ŒÎ‹R-C\Š:G*'I>–P®,M+IëÈwvµÓR½Z˜³ƒŽj%œJÇÅG´.W|íêFÊŠ·¾œÜ¼®óQ¡.zá<è‚xJéäŸñØfÒsRJ¹ñ(ºûÇ`_¨¦¬v"¥¡etS/%~9õ[‡^yTÇðQ<*í‡ô·%ÁÃÃŽÂTIa¡:=-$†°Ãë”Gâ(•[×ªûYFI.«˜¤léðjåPk=hÛ ·P^P>Æ’eù¸ <ß’oÃÐÃ$ó¥÷p8#`0í!GB.-¡¡„>5yó1àü¼”%m}è|™ˆIæm‰fn½“=Úa¢œcR[²g²¦˜J`Ä%{ dÃHöL³Ô…¤žnI°¤3H:Ó’YÒY$m<ÅC Ä²/µ¤e$clGZë˜kÙ–[êy¤>ÊRÏ·Ô,u?R/´Ô–úhK=€Ô‹,õ1–z±¥ö’úXK]i©³Ôñ¤öYê%–ºÊRW“Úo©·ÔK-u ©k-õ –úDK]GêzKÝ`©-u©—YÒfKÚBÒ€%mµ¤'‘t¹”Iö¬°Æ\iÙlÙ ±7©´K=b0úáxº„`4N¤8›ã¨–›S §‚ÀG@Î€f,‚U8NÇÙ°‹á*,X 7á\Ø‰åð Îƒ‡ñ(xçÃÛ¸ÞÇ…ðVÀ_x4ÀETâƒñ¸‡à±˜•8Ã‰èÃ¹¸bi«qúq9«p)^†5¸kqž€÷à‰¸ëð>¬Ç§°ŸÃFü›ðêñ'6‹(l1Ø*ïÆ(8<Æˆ·ÅÒŸaÐÿx[×?V ·‘;’‚\Ü`ÞÜl&ÒIòv:=ÚLIá€ÂÕ û®QØ¯pÂµ 7)\¯ð*¹øÁ&8#|'g*ËmÖ—ËYüåbVgæ÷K(¢¡GðŠæsÁçQÖ<ðHÃÕÂD¼¦àÅ”=/9x),ÆËà8¼êñ*hÂµp6®ƒÕô_Œë©Ø›ð¸¯…=xUaÞ/ãÍðÞãðÞ?SuøÞŽv¼ƒžŒ;)º7cÜ‚#ð.…wcÅìlÃBÜŠ3pÎÃ{qn§ßA±ÝN¾ÏÇ]x Åô|PFî@ðº{Ë^Á½ƒÿF ªR05ÂçcB—|œPZ„/ÍðŸ®¦/JšfªªÚ«\Î=ÌÏÅ³Cïþ¡ÑV1ùj¦X³üp`›ª˜CÕ‹?#ðzh?¥ôó¹Ü4}=G…=·vþU-¨T8ÈÑé9‡‡Ä½Í¬Îmóœ\–ûø= þ=ˆ?’Ã~¢7ô9 Õé®^4j&f©±’_–¾)2®(ú¶-æ\FŠ¹ »ÂJ‘"wtþ–à¤C¸êÆýÐ‹>]Ü4Þ Œ6H9¹lîÞºœ=[Í>OÍ>,åaˆ^O¹:å!ˆn‡¶^ðêv¸p‹mKçý *YD,Måþ¢MgíÏÍ9˜«føH}³UÛ'ºTÃÛš>iLß]tœ%OÉÉ åCCrÚó%A¹ÉE;\zÜÄA¡5Ê/J1„ñb0d‰!0KKD‚\g PI+‹1>[ršÓqÎ¿ÄtÄ™˜§6Ø^Év®Ì#žô¯!:ð/º>@»—Ž!þixàtÅ v!Fò¹$–ƒHã…0„½„vmÑ±…Qí‡Ýqð•è´Ê‘6ŒóÑbVDÒ.¾Âžl2ùf OIùá7ú}}ïËbþD Zö9Æ’FF[ÇŽB,… ú2±'î?…øH&Þ†u7£% 7ºŽ®‚ö,²ñjãËfð3H‘Mz…´aM\ “íAü?¤³©oˆ±1J”æº“®CU ú> ûÞzÒÉ6R*þ6Òmì|ý«!ñÐìÉƒa”‡¾æ&—´„.l64]„´iIÊ"²•²»A¡PöÛô¶\HoÂÍ mAE6Qµ>ãŒà8ŒÓBGÑqôÜžttœaœñÅŸ]ÿsnhYÚÉÜÿœüçû¿9çü7·þ½ñ)€YxKÆ4¹P‰õ.8°A&ÑÌÅF ›ø¸YÂNl•°Í‰í2d(Zdd`«a 2<|ªJh“‘Í§ívÈÏ§š„2&ñé.N‘Ð!ÃÝ‰¨„˜_Ú-ÁQ„&'â|4¹H8±‡cD³SB·Œ24qÍ^ û8ãs\ó<û¹ú%¼ SN/J8Äà‰«†¦DšT#®Eõu¡j¶Š!ciT›Šn6)‘„šž_|1òGÿ•Ûv]éPÊktÕŒ‡•˜Œ«á„¡™ÝÁ®ÊŠyÁª®J¤ŽP!ÝT6%¬Îgp<£éš¹¡ÂÿX–%Märi´•\ŽÑtµ.ÑÑ¢k•–iŠ‡ãJ˜Z$X"paŸÑh*á]µJL˜Qö´{ò²®°3)é8ƒÔ®šk»cÄ™æ/ 18Íh£ihz;CŽ¿¤f§²G F½=hiyBªaF¢>aÆ&©JÅB[Ä0fÑZ‰&bùÛÈà¶t‰B’Ò‘Ð; %Æ$çWh¹1š0Âêr“{îMçI¸±/¹±Ý8Œ#nEƒÇÐÀÿRºq/3ŒÎšåKçÎ˜ÁqK²EÑ´h0T?XiòÒEª>Q>ª/Úæ³l}zÊøÃ”¼T×5Ö‰ó—7ú¬ã9’ýº5!Ë~Âpö´J‡jÓPÃ’ÖVCÇ-‚)Ã„|ŠbðÀSoîPQ8¢|ý!iÔ‡ªG)¦jù ^vcÉ†ÊŠŠ;ûu’¡pØŠj†6£Fw* ¢¸–U‡Ãì%*‚¤H&ÜªZ¤U5(Ôu:ù‹¶ëÚ^µÕw×áõ™J{™ÏïÆ)¼ÆÅiêR%n¬Â³n¬íÚÔG»ƒnÔ –îìcÜ)7^Ç7ÞÀY7Þä¢ž_™ÕüÊ>œÆ5h¤‹8”r}ËN*©¸øÔ›Ò(1Ê¥Šaœ§žkª]fcL kmZ˜:—ÐÅM#6ÕVjKt´¨Qq»¿ŠÛçúlN\ŸI žŒÌ;mÌî/ÙD^Òý›„C‰ÅT(Ë‡#¨a‡¨¿äùC£-»ÂTfS!:üU«J¸ÓNª m|™¿êÑ{%e/ÌB±ˆÖLÐ;k¨'Â†É˜‹y4šÞÓ6Ì§‡ZÍ¤[„Å$—Ð¯™¤·Ñ8¶´¬”}[i€ÄUR1T‘Ì‚äB’sà"ÃLaJí‹ÌˆÀö!‚ý0H¸†4OþþÓgä}þaç`}œôü.þ6Š¥g‹éÙM¿OÒ3@óì@öäÓþ&<ã“JàlôÁEô—ØÎÈÍYcúà¾98ƒƒ3xìáàqìà¬!ð´Hú;7“D&j!ëÌ9ûì÷ùöÞ÷•³/œpN±=AXØ€;‚\vªHÊß]rÙD ½A¤ÑD?nR‘ "[ENÃž J±WrHÞ}öKÊÍòp‹†[åá6 ·KŽ;äá>)/?Äy8 âÓAÔá3rù¬ŠÏQ½*î”ç»$Ç^¹ÜâóÒôär\¾¨á^ù{P._’Ü_–ËW$÷}*¾*`dLÒLm²2Ùd_úÚÄjq•@éª¾tÖ6Óö&3•³üß[øúKž·”9ªÙÓ“±²YÏ¶-±~ÏE7®[ÓF±U^&Ê—§Å$Mž åÒd:i¯8?².mÙÙn³ßjÎZÝ¹LÒÞ×œ³“©æÕVÆ1´¬a“€oU_%P¾.™¶Úr½]V¦ÃìJ‘\3ÐmõÛô3«âkþÈ¶)°0²n—¹ÇlN™éÍíL2½cÙ¹ÉYºÑ6»w·šýŽF¾žŠû–“?×Ó‹—,m^•X}M›e÷šÙÝŽÆP¤¸%½ßÌdËÇ“53²µŸÌ ºÃ²;öõ3•§m¥²<-×eg,+Ýí¤(ú~ mÏÙý9›¦,³×qI³ûò†fDÎu‡@UqH °—z,ù°ž^K.™ê±2n†ÓÉ¾æ–}¶Õ’Û¾Di§ £ç´Þsa¬%i'Ò¶À¬Hq)Æ]¾=™JI£…œÍ*’Úm-‰†«HŸ‰¹"*.!H6öå2ÝÖI™¾ÊÄz÷®Íìµš¤:Ëñ€Š¯ëxéˆáWáj¢sšŸ¢BÇÇq½ŽN\ÏTéx‡UêxGˆ$â1¾Ê4Š®´ÒVÆLI5L†•Ùnv‚ëx«ˆiòLD<ˆ×KïÒîŽÍ¸ŽU·HÇ“xJÇyR—49ÿulD/›tÅ1Éqœ§¸ŽØ¦ãiœ;ö°äíuôí¶ÒÉýVFÚXãhX2]RÒ$ž*S b"æ©ðtè8)Î¸Í×ö}™^Ó.Èëø&Óñ,NÈå9¶™x\æõyÃh•®èE»Žoá¶¯ uí]»¬nb¬Ê!`‰öI^ïMï8ãT(:GÏý€F%PÆºmï¶-{\/âÔ³ooÆì˜ÍÞ”H4…»ÀyÜ]ØÞœ:š¾hè¦šL÷XíÛ¥õ„¬¢®Ð}î§¸–Ítw³¿ßJ÷,.Öí¦íL&“ä¤”‰©$ÞµÄî[k Œ{*Æ,¹ºûriÛ*;D m äìnIwX‘)efÙoÜÌ²¹®¬«¶:’(®·hg>•”•Þaïˆ|¨³Õ2;Ílk_Æ÷RsFÓÿª‹há»a'ýÐsøPƒñî?Êééá‡‡Gö(îkñ1,-ÐãÍ§Pº¥²l„_¢RË(ŒÖ|”ƒ(‰.EÅ®+`z¦C‰VV£j³{/äÂáŸ1„H!"‡Æ$~Þ£•!ç8Œê‰çmae‡éø ùßææs".Æcì³<Á@†ˆ¬'ÄSÄêQtá1w7qŠpðÊ<•Ãÿ.æ«¸VÅ¦ºŠ:… ùáÆ|ƒóïòZõæÕ>Ì¢¯œ)½‘ÍcVÆnFxóûíDqV³¶€ç‰Àa:7‚¹Ü_ÀÑ¼ÆÉ´÷‘Uþo‚òû¤`ËS°ehGPŸ7V“76ŠÙ£¨•ûâ¶^äË}›Eš¶^¤ïN¶e¼ƒ îù•ãÚZLK*¡F7Cßv¾Ú/³‘ñóÎ}…ÐÐ¤»§P·…¹Áœ¶ÅÃ˜ó…|º~ õ[Xøó¾SòuÆüµ1%¤„üçÎÛBÆù#8?®FCJXÆ;(ç7C(‹û¢!ßqZ«gÝgwÉ‡c¯~ÈYð#ócö»WÉñÞ¿Æ’þ)Kîg¬Ø×(óKJýœ˜ÿÃý•“†jùÆõ*nïBâmÌoQqcquŽÇåõ1åüiãìŠZÃèŒùj]ï£§ Œ{ó¾þ½ÑhÊ·¦†FÙ¤®¨óNŠû€ïLc¯s‘hÈ'{Rc\©3ÎÊºõ:ô†¸V*™îhL +qMÄ"ñ’J¥MaÅR%—VBª_*ŠÂlÁ‹€"H ŒoÞ˜Ö^Ælùa²Æ;‚Åñ`Hù ¼Œ_ÜË^–ä/Cº¡=Š:Çµz”GaÐƒATÉÃä—”6–KM‡p±ü/ —Æ(šcLŒÿ€_„Êm¿DÏÁŽqBþ44ö}éE"äsìúwöÄürç¨*ùUI˜(¿CÂdƒxP.ÀäuNï|¯ú=Ÿ÷ Nñ7ùü`{x“ÝþˆâOlæøùÿÊ™þ76È°Ë½Åúø'zð/ôâß°ñÎŠ·9³ßÁ]ø/îÃ<„wÙlÎ²¡ŒáGÃ áÁ³Â‹—„? ^åÐøµÐð†Š€ÐE¥(3E™˜+ÊÅaˆfQ!V’Ú&ªÄ›Dµè"Ç.1KÜ$Âb¿¨w‹Ùâ¨eLõâ°˜#¡ôQ1Ï±‰Š1bTuæ¹)ä?Ð½Š9ÆT’8ÆO}â’;‘ýD>ÿØÎ`®¨×|K16He‚—ýÔ©Á)K÷uPËNÂ@=Hk¢ˆòîŠFêBãB£‰ a!ÆÄåÐNÈh;mJKð³Ü@¢‰àGgÀD£2ÉÜÇ¹Ïsß?^ÞcWÃº‚ y¥7u”Þ2°Œm E %‚ì)<>“°Õy #j{Tì^q1h7î2Ër.X7ñû,º¥}O"F/H"‡]qåT¯ÅˆzÜí²Ø§ÃÇË±ÃÂ˜¢©z·>O¸ç²È„²\ñ«º.æåuËD;¤a¢ŠšJ[!hÊðÐ¡!³‡ÌI"?Ùã“£–½`6Aå{ìM"bî³Á´¥èei2áþÇ¿³`ï6sˆ `ýMlcº<´z’‡" ¥)½ÒHI]Û¹Ÿ"•OO9?¿$ÅÙ)´çYÙª”Æ,¹$ÏP–Èš´SÈ}IDRNetmaskessName›Ô¿¿zƒ /©—¸‰’CbW‚ÿRóˆˆû1^yêðeÑ†¥¡¯¶6€¶éß YZ