From 92867367ee787d5764fe55c1e5216d3a370b752f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=D0=BD=D0=B0=D0=B1=20autouploader?=
 <nabijaczleweli/autouploader@nabijaczleweli.xyz>
Date: Thu, 29 Feb 2024 01:10:31 +0000
Subject: [PATCH] Manpage update by job

---
 tzpfms.pdf                  | Bin 65712 -> 77232 bytes
 tzpfms.ps                   | 800 ++++++++++++++++++++++++------------
 zfs-fido2-change-key.8      | 186 +++++++++
 zfs-fido2-change-key.8.html | 205 +++++++++
 zfs-fido2-clear-key.8       | 113 +++++
 zfs-fido2-clear-key.8.html  | 143 +++++++
 zfs-fido2-load-key.8        |  98 +++++
 zfs-fido2-load-key.8.html   | 117 ++++++
 8 files changed, 1396 insertions(+), 266 deletions(-)
 create mode 100644 zfs-fido2-change-key.8
 create mode 100644 zfs-fido2-change-key.8.html
 create mode 100644 zfs-fido2-clear-key.8
 create mode 100644 zfs-fido2-clear-key.8.html
 create mode 100644 zfs-fido2-load-key.8
 create mode 100644 zfs-fido2-load-key.8.html

diff --git a/tzpfms.pdf b/tzpfms.pdf
index 0abe5ec7fde814304dcf58da21cc9a185b347662..a15e1b57975c9d4715c16055bfd2157f599baacc 100644
GIT binary patch
delta 53221
zcmZVlQ*@wBxUGT4wr$(!IO*87(Xo^6@QZERwr!(hJ008R`S&?{?TfRns>XX=HOEu4
z=B)FFsM~<3g9inQwdE5xMo_!2YtzIk5K3TR0v%RwjqR#0<cpRp##ha2^_Wlyn2h5=
z5dCD8SF#f34d;Nr=eU1ChOX!|RDMX2`K9Mvt<)Mme@yFzvZsEz0>>Ndsax5fz9WaV
zRqymW4Gu@YX6#MgjC+2lGP_`TF(~*@ORsr*VL6V*dUF9nS=vIqX=}_(xxG&p4!uIX
zZ&w3f8^ekYRR>c+Q!(=NEs3uVzjE+@<XoF(zux`zOio_QF6)g`%!-@3XBTqv&MDb~
zpQ86Xm<NwRMo+DT{zD(m-)^IE)rjcj?C`ejP8gf=$34+qvc4OIz7J_5_CP}O_)`Lu
zK@Qz+4^ja5<38x|Tt1r3<1Ap|qS$leyR=$qqV3_{Gd;m)+>1Hd?*Vmne?r}S)_d>U
zIVL^jUc;ZD7aB8^qMgZEVD8Xq>ey~E0A1rqc<AF~c4=goMHUrBTv@R*qeaTy*(}rF
z;M0j^u6v+OpJMA|hMPETCd+y&I_kDC)WPh``f3h*t)Meg^`MtJiXTuo=dLMg*4F+?
zZH%AUJ@`JV8U1wS)1h&k=Wu>37i8)f?fFuZw2MD<c;>ThLM@GyRDK>|E>slj>vwy6
z&fZz#1D}0~xfTz+7wk>*@pADH==Jtl5~txs^aPxd!=lZLjxg!p9gAY{N3C^(n!SoE
zTGxOQO9(N&kq{^(Mewh*e9wix^Be`qtH?S~<CV|Bd|~hA$*~S8o!>NE_!^f#$0J&d
z3;v$(*DzKjEU7Owh<-*z&7@3^fo#Bwj{g3f@ed^CQO0rQT3Fu7$aiOL$g~MX$)e7K
zONEYiV?INw_u<J(dtcuox}%Mwp0EKuX{-RC_A*;i)&{H$lN~@L^YWcAsN4;9+pOY{
zG~f@dOOdR4Ox`6VmGMp9v-t9{b9nY>u_^lF2r-IljBGlmbxw`(9dMMkb(kYMtV*T!
zy69x%Wo08m>>4RS)KN>IPNS1#282tVlL(i^d#=1K2rfV&<DoX)ccNyYL?6%xQ>Osm
z*2*(?5WT<&94EG@rfrM%Ef}62fqyL`6;vTmLwx)97>lXap<2~6_*n|P{jvH(K5^Np
zmC9E|3TJPp<n3Y`xmQS8p8nE}ViFFo4~cR*Lp3vn7Tgq?yUp+2DMVq}D5Xyv+N1sj
z=kEpU+?j>bM6*}<mMev>(&Wz7TqeL{j}~L5b<(+6X-%ni`vqaG)#NiFMWDe?s4rL8
zo$J)L<V7oZ2G=x4O=VyiB_LHbJgeH0T~~DIX&&S$-ON3EF;Y#QbcIbC9ljs0&T(z8
z>Q%z58H9G#_zYAf{}GRV85(6P$r<@?JULmFPJNYGK@EL!Zx8zHfK*!?K><MP-Er~B
z^t=q3KV@_K-qUBnrraV!fniR6=9Rut#%fgrE?!(qhZ&+$2m7K$Tz<?)aG-?Eh*IiO
zX7%s7%79Mx)-Y~NLsXgchSDrJ&6{*?KtIrrM1|p2p~R9_ZBBt47GM@9WE*$I8H1>c
z$Hp^b9Je5Vt+9^f>u0jKK?EpYvuVT`CwUTbs`Mrh|Df?n&u5~zlKh4AGDW@Ht(&T+
zxn5<e+#v7t7Mw6Zvcw+}iW&0LoA9EM35BYWr9NXt^8=%hw$SZIp&%%@FU8_}fIy(G
z_LL&eYT$no43(HyBmR`8YF|<#^AE%$Nino~_UOopYpr3fEvX{$s{jZb2{Czy`WXVt
z_7`ozktzBd{(zP1!so9qEooQ?iePw<(6H*QWYmUNMcT#p+WEy1Q#)1g=rBx^E{+Ys
zUR%D`fLySR-_&^=OBKc;Wb@>REtfY<dHpqdtg`x9Ee-AUlGDvo0J03D+iWi1V%2HV
zx2)ZWg(%bE`CB^dsT_#F&rLAA(AT#tuXg1hsQKrai<mX7c%lpCQ=x)v&UKSOM5|Vo
zJV33n@w{q(5RT;5vVm%%ILs;;tr$2fyrtO0?`xXPfo^Pj=U<s>&*)~xQ<m_^x8c_u
zhC&?%0z*~5+wh4*&uPLCLMoCq1T(v$f<8^;*lZI90<oI@WC7e+?6E|2FtCAA$Z$0L
zWpl)tkW=G7Y3!>@el)F>Z@X^ui6vP%nQbh;f{Vt|k?Z9}LGeQrZeLS_dpCxQAh9kZ
zeLHIr2I<?6a&D$;)?vZpKRJ9aT{=xA_n0DoU^rs<_7)c2`gI+1oz13;(QE$t9?cUb
ze{25k+q%w$Bo4^XY~!9t4we|^USX4g2w=$THwhH1?|#?s=Z8cGs^UZ0jn2YMbUJn7
zW_eC}msc9)uC|cceb!671jf#_4-bkVVXa+aXOdlupC~mTH7%9u<@o97cefr7)eJb2
zw!V-oVAGbI=B!?m*kFY2oiC8PyD>kw=S90dfF;cMvH>yM!b@#i?7H-L^#twIMHzTD
zObO6<BFPIP5Af>ER&j5^<U~!JzES+)2*0zjr1tyMrm?L*KH{Hbb49GbPAz$1tc&FC
zjN0Xs8Hu&!xLb`ZwB}mTlt_R01!@&8MemKSbId!&R!s-ymy<NzMm&swzwm2O-<8!A
zhjgPaIRPr;qTG$;G8kSo7_^S-pZ4U#dp(=xvO%ez`$xrFX7r%b_7J<>t7?%FOSj0D
z;e8qbW7%J^GQTEWSNJj-_ML+H^kJ5sXK^sklo;KcE&WWJCk|cK4c%fVMWT}h{}a_S
zrLgY=#(J4*<?cH%y7Ub6WFb*=h#xcPo{mRio`52Pt27@=F**2~3iA`vUf!u0qkMWn
zJQOXxMmz|$o1r34d6b{-lf*hw)8wLFMAzy+N;;6FRzucBKev`dq&&L1nx{<4gZg<Q
zOF{EBiY@rz6S^&=hEv@ks|{jsfqdBCaC#MvwZ&`%uyAEG`q;S|7>iaU6#Mnc7cV;L
zB>>bX2q&MsK#U++#3L2)=xd}Y!X5UGZH1n7ZEbQA{^f)+zsKKP9mD~YXw6MceulP!
ze#LjUY(j~kYzU;^&4oE-l}7BXiiB4giz0oN#*EJ}DIJ$#YJT%LH!SQa@p%Cxr(X1k
zN;QH6pbvLu>Sq()c5~Iu6I4WM&S@_kML@i$dca`d#r?<jl~%qgm%4h+^?8Qp4CGH<
zbb8)8Dg7CpxupC|Yu8K5Jw9Ll0Ul5If~o{Fe8R33mWIQj{Q|3}fFJc0n6a*ro@qrH
zKi?h`w}`dTc<gBijj{n@qPDFxZq^>*OSn!2-0^{{<g8~Ec&jJU>w~Uodd^mD0zkW)
zS=KBcOApGTPoe-CK{)By$~E>3^j$0FxR?WZVPTZCf((b}tT4(}RiuPHWNQq3V#_ro
zaML~X&?>uGU+83#8F6dGpn^YMbAyppv2n(QG$joAPY@Y`6{M)X9KWWx$qwE64_9!N
zLJH>~?YGE1=tBdsfq8!X$6T=Ne4y1XW2<9iaz5N_V3K|9i%d>zE;z$z^>KWCr4#j9
zvY*_Z;16>NshqX7nfh-ljGtS=<LuzYx;8p;qIkRHs=Kp-syvoW4#WXSqK=HZ<4D7g
z-t_c&Dvs-cA53y0mf=SvQsuW&I12LnmMmyQ%4C>G3$#91;fPrR?wSwMn!u@a_z!(*
zrPccN$(q0jq%9>5hb3>ir*hgsf8~sDv<6a@s}ck}P%obSDt`=VD9?jfh;&(l_oTx)
zzoJt+N{Sy^^DxnFu4=JuQaLv@Y)V_)YWC`lqlGwx#=yVD_a$6TrLP<7y&~{S2NR|6
z!Y{5PpiRVo{!zX>&78WJ3~-Z^MFcIEkQ0>{iu(Hriby77{5u>v7%8B{3hTpJ2T)@B
z=plXTWPWf<wFxoZ)N_xX4yqu$<M944veXcB;9z9~9~pG4J0JG8<#vueg5*Fiz3X4p
z3#mYtW`-avCy7&#g%rwM=;I)a;wf0XKH}JI555~X@eGv6@d*%Q1AId#Wcc@=Y19h^
zGCEr@5ry;ho;fyE(QR`kVBHZy?oBW2t=!0(+w?}FvNcEGQ7O_YP3NkEyDv&Cg9n++
zJ@RiOwcA@q5#0OdrLwVRL$8ypFK^K&_(~M^9|xlr@_{vXaPm~1Yu7ppfgxm9JF_c7
zsMca?&AJ@m2fZ>aAe*eJA9l9RclIud=Zu&^;lA$mh~oWVQh$B$u;0s1l3hAq-<u>C
zid~1TDWtbO#^OlLS$f2Fda74jYoM<;wT9gACcKuW*EH?GG}G(h!HS=5Q79li*dx?%
zBxKn8hx7gM&6}(9>+8td{r3DBo4J<RUZRXZ?T;oV-FYTCkO2!zg?xn6!OyJ}z`wDu
zT7S&VY4HO$(V_u*GR0MM7O^cFrSj<#Y2D9&R^}~r-YmLEn%Dy)6SSip_Y8kKh^hVM
z7f~W~_`bEZe}$}Ab-Q$I93`cvLK<+vp<1EFuEl~dl}tI|1Hz!%?tmQVe9b3P70k-G
z4eRNK3;MGGcqhZp27eUfO3hzx6jv6+*92Li8Mc?&tXdoO=HM3@T-5w*IfH6aI<sOy
zTZM@=5nyh)f~QfB_eXmtQ9zBlV$!m%xw3}%n`b|81ZdokIN_+@xJqk9BFYroZo{if
z#OLE?(Lc7ILoPe%UgAF)lNW86*E2pqy6G+!P)@M`aXvNMdK!EF?E?hI`b_TDg30wQ
zA$0`>dQaG3(D=P!lC|Lc*u1|u+A{z`LN3eQIVarVm3Ficvy;JFibsKS``%<1sDr*#
zoo<{qPc&wzYG7~Q-xRy!TxV4#Rv9W8Q@C(?P5#TD@&}+?ky>`E6&B3|y`>HEbEi+~
z_ShJhcxw>;!b|u?Ne$=7Ep5MmyU`=bKY4+Jl&>qlgi#@l>q5<iOe>9k9;~(aUM0xJ
zoX&<^KU^4e$KKNBIyC%oas6^nyxf;@Wo~cg;_7T}YzOz>&cVbQj*Ena<o~SfT<om>
zGh<`@ze9e0W;t{FU#<|ABy4Pn`P>vhvWBk11{cPN!6SW`i7;hff%w^WDQ9$MvE4d@
zJFD$D%Pg8*dAxXP(tc5`*JbQBDdk#2VhcXnP?$K8?{O!=8T%cJNY2-(U}N%Oe(~cP
z*^%y|j~TryTjPjk{g+8g-TE-ZFvf6sY$C>#hK6t*@vCJ^^M#P1;?~M>DRCL_ezuZ&
zJwtW1F;2|w?!2FO8fg78k?zw_hHY~8uJkKK_X)CcEn)Kb2o`CMq45LaokG47@=R3d
z?g1POA3e4S*+?Bt*@do>yGnG2U-z2WFun&mm4a0P#P3}4C@A+o@>?<6%-K!fOKhNR
z`*{O>SY;f+U1mWa^Yfjs_9X&XK}3VUzrMHw!=y}=vlz~!JR41$ttkwB?IHi{`b<fE
zM5`{=s>aVL42~PEv%)a8Tn+vK)%?wIX7jE+MTloI6Y1mij*yI}U5@f0sy>9m|7G)3
z5}KlNL1{IgzgqLW3Px~kZX{C;4|^FKHydOtJ3QBA@_0$^NsAMB;RFTj42`EKz$dO(
zRUytdcnCsZ7o{Op&0h2sr~R~AXNMc2&k6r=4Z{)51!*(;_TIKdG1POlO^K=yb&@tz
zkNVZ6-n6@f_b>yg>2^FXRXbLN<DKzGpe+QsZ&)Ph;;oBWJ<#4(UrwYM&MDOOZZkDn
zRM#=h%F{d9ouU{vW+4w?mbdgCGX8~!$i-^pkcCQ<nQE&Izm$Z_7Ep<(6%NYycA+zd
zIaFjm#-S(>pnCSK((D@=jbGgAum4a%(r0ksCWo)>x>qrg-FSgjc<&yMWLle8?qZip
z5-7%h5l;f<Q#tMXsI(I&%rM`E9P)<_hsrmBo$@T+s_0U96tWIzXpcj|*+fga8W1%h
zknqxmjVTxt<|YTTx?zI0=;Jg@#UIa5S?qvP+L&{)Q?wpcWL=F~{atM9^gbv-8p}vr
zz$Laj?fB0a@1n`H!R$Vwaz6<|kcvXeoprA6OE5djo1ZV~2OP2#r0M_!9;rcQMH$_(
zp^J#}^fA(-j;bAyQie8JOjU*&!n))KoAwtq6^%m)akhOxGRGwm)bOdio}HA3qWk6D
z{dz)<x@J#Xaf8S)0vtxIjvX_`YSZMqdzW)!*Rool{!kNkZmiQuJh0`ag{Bd#e99AX
zp02w_tiv?c6Ba3Pn`Ah`oaw;uZh1Kl&a?(JoJGQNQ4t>S6_TRkH0ma@UKF+aQ=P}Y
z7!1m1j}u6~P-Itt#;_uQqsJ8d9`xscMWTZ*O+b%JpHMyQQRi4DB3hwH_ydFycGvI9
zzVZ5H0j1XN73437KnTa+3OOOHut1t+x2-Bt8XYAPWTE8PFF)^J^zn90jq>~`e-{d@
zmd}R&WD)xVvHWd~0LXR?gq%t+G1omCIuClK)9>jQW$%B4|HdB_n5k>04SU4c+xB)8
z_z=eP*L@ecA>P+hAWYup&`f_IBqO4G=!R`OTGq!~91t|84J0>uy}sDTX4Ik5*|d2J
zf7+_DzV4L?fqf3YcYfp+-friDspw&qj(UwFKg(+XE>sS4O=}0mO5a}J&7UE(KBw6?
z8@f3ExXPZ!%)UW~w}Qu9m|~}6_xjV?GxU7h=HWj;n(mN>bFzDd#Hf#~f~@c!gN1VB
zkz-wre;4FlOZ>iGkT?LNKMi6rl1f`|vm6oXzhDrmzmSE*g>%dZ^6x%W=QZ%A#pWH_
zw_I-mjCQo2j0&}PytSD%&Qjs7enW-|+a0$jzwj(y7mG=%)V7XVUJqg%$qVV&{n2MY
zMu%jkf;M1x`y36KgvRud>()ouFvjVV$1D10YT>!4fOA66^d-n?S9w`BcRl3@h~tgy
zTA!_o<?JWSBKvc^bLLJW2F8mgq8701{!`wQJy)=`mXWtucDT7`PU#h``(Jv_#`b@;
zo0Wr=^ZyAt=l`Fe|EK3%|35v~vUAvwK$GY_(`1MM%SSqj==4Tb+P(NGy|^ATt>R^w
zEmlXSiDna_CN<IEd{XMmcToEvw0*&p>d^8Y0AX3-<8_pt{>$P8Ry&PE_M`k8|55^L
zJxVY->;rS@JKX)mgg0aJWiRy5vxp1*K=mM$3rVzTGg=Q`byQ+<e++neof`0F_xjAq
zsAVcW=018}$Q8ut4`tQKnuxd_nKYDGbY^X~YqP+OjiOJfM`Sh_!@MXk=V$=8O=PL!
zPSP|PM}vnzg2GaUkBRjOosiUaH=^~tvU1vl2-*u7m)F8KQQ__b?PIZ1>~Zng?%4<F
zW0{31H8FM;lk!PIy8yhf#HsR~2anyXY7%)$Es~ry(tdwXD6Fm`dOunY65alj^tt_p
zLzK^u=O;khRcE|2g%33f)p`W$Pie!fVp=s=jWW@wPtZK6>4_fO@W$tB!8{Xl_X*2Y
zng@r@@~klw%DCK+JdDY(2~0Mp1y#l`n`5%9KM;@7!XlRjsQ?78S31$8f8`O@rqSjr
z=kDee%kOIZ<q`zdOcNF(S-}?4@6Bblhy;Cio+00BW!P|>;=gF&+*gB0UgC%OiMUOH
z0&Rc1wz4o>nYrf8>jhN1zr_-@1WmP$ymstCb`Ybl?20!CQm$Ei<R1RsIu?lN9&ytL
z8BqLOb<Bb~i3i*oK)bFzr!XlU1k6M}tTl18)v}&2W9L}QTfisuq%doxX%4gf?fiW|
zmbL0n><RW*iVTcy7;5b1gVvayHZGC`i8jrbY?zZ*z+rZjRF5YdNpUVc>Zjp@2N6Yt
zti?zO{^gpeHXnuoKPb8>>V0gvjqNrYL!wa<Nf5F;Nr6M{;JZf_SJ4|N#EsA-Z(*E#
zUl9LE$FlBQF9X9u#2^B{!gX>-iYampN{^?@p0VHW);DyZ-F4Nw?Hh6%$SjXrR2Bb3
z`w=R8w#3#iTOm~yuEm?5)#SMIi|VtbucVBgPfKwyy;Gkbz&0z!JC7s4FJL{e7w3_h
z&6gxdc!0sBp4B^2c}Grys#IcyT&EF@ab||MtUGeW#8f&ICt^OQW~*<)&10jf{4gcd
zG{DI9n81t+M^xwcWA!<I_4RjivIxt76%sVrNYc|0O0W8WY!g%}a+m4);_yIB&Ah-h
zg|y%4tN!V}7@N40rR@Cuz{*9b8<tEpn;K$B9UzJ@Ofn`7Cxd#=MwieXrpJ#VPK?%f
zN|Isl&C?kl94MR&m)WuBk>kDl`MC7p8Sa~OdSOx-9eJO*_Bwp%%8KA+i6^>Z7u2uy
z#SgeNzwihdG8|poPh&5{UYDfapUUqrtsjI3Gmff@dOLyXE{isTg|0&J6)oXfCzk%K
z0(PYisnQs={dCkFu?i`~JVJsNlQ2KV@?s7{t%0(G6bkfjI{H;QFm;%GLg6QLLixtW
zLfe{^?;PzR*g8zl40Ud`Dk@5}WPRcByC`tqQwzzf;FF+MuodJc=UhtDQMi2j4GFg-
zOLYV>`d!s6M@p**4Fb$ige_`Y5aOg&zyV`Ett!EmZE^NTO&;=1l0vHPgBJ%4s3=Yb
zOj*+WDrm6iE>Z+dn>oTKmKy#}o1#gaH<lgWG#@y%@bQ?5crV<T>`hPUkLg1p`{+aT
zD^-R6{KM?dLs|+3FhNo)Q?<iB+K(xAn(ftwGSe*g*ZiM`DoksFNqQp^D#<W1fV9fZ
zS&&vai4v@^5L3<dz+p5mGU|?|+q^pD0RaaL&AzD;bR<uX6URSn<6XS%B+WoPubKox
zDaML)B#Ig8s1*HE#LSw!5;VU$69x^@OuWoNq`1jdpnM~NN~RnkkxHtUG|+Jo@n6?&
z37rI)O9MfG#2W1e!VpPH(5G|>z~!GHY+KyXu-GE}aq3P?m)~^wCuDico$n$769wu6
ze5+5lwxH!kpH;N!=9K-W6a;OPiR6rl*OV{D`4M07Re=-k4oJPHZ<7DhA7Qy+)kpJ_
zea^&3r@3xpIstyh9r6g(Xa@bu7Gy&ayoa-=W`FR`ZvUkjCfXWa86Hpv2>Kgt%n=!j
zX8pO<|FvDKtXs|hm`jHjje(u*l+kwQ9+K|U6rnfR;hEVp%d8KOMock7vr_3k32@1C
zIEiwy+W@J?b1lqJj_>53AU(zKpP#j!tT50J@ZUht!?792t5%tHe4*2{=x&O2F|c?H
zIt?deA?lA>YvRDXHoDIS`sRIoq$c2e;%E&9^l20D1;9d1ebu|lE%KmAvFx4+TXasi
zm{HG=H?lns2VdkCkAmzPx~dXjq-#^5YoO>sNzr*z+*JlJ*ihF6#4$O=DzJ-U<yh0`
zt0ZWPY=(xiN=i-&SX3|(CKPAoV4AZib|Y9Hq*W?~yU$Smb_luyutgGO3ztbk$pmbW
zB2kn4e2MNf;6EooG+HL$r811cMTd(v)1fvL#N?B~y2gix(tjCpg^F6o+FoRUx!A}x
z)-yumf)y7lwO!Wa$0bI@@+XQqGPk1`vS(5KjtHt&F+gG;u4nbH*eZ(fd%S&o*b8m-
zf%dYGRfCaJA}vD$(z`H=$Isv&oMwBgMrLg$x`b?%G90)9NNCi$w}Y@DUxb&q_;LRJ
z&Epg3)sW|ZK%4ql%kawmNp`M6WVNo-mv8w8ywtAI`;7MDd;1PS{HEz9+xajR42=S6
z+?tL@&wG<fX<%~D7rBOUxX1W2AM0<XFFWsrmRSH4#--&2@WkhWToiOhvyYr@dnrc+
zR$d#Y!A~#FSm6R1E02w*lS_j>pEW!HrtWODJLz7L`g4FwiFj_m(q_W0XD70XE)Qw~
zD&V;e4I0egckuIvRZy#h6PSS?fk-<2n&*M|oaZx#JRf2R*nc-z&@xP#xcwwJBX5Fy
z4WeuSA)=!isPK7pW($Yj6@cFWpthxk|ElgS7$^Vajk((@^8Iy3<H3kilRL3B?EPl#
z?i-$RJzd*txQG+bQ@b(4;HZ!ev8B^`o4=LBCY&6*p%;p;LkvgD1CB0s>(lo}&jmN|
za{=}cx{H`lMWc&ALDDF9N8^46Dxt;@RP%3ZZRoFYAU7xTN~5YxEb<J6+T*o#W(RMl
zUL~m;-uE{&n7!W$5#*YouoI9x%E}CN{d}~TdHT_v0Y|urz`VXTx%Q~*N~$R!C#Gol
zF}NZAEsd@KZPJZuPgtr>blk=;Vp2e1Z@Fv7`C9QAL1IqrNGRs5kX9u`eU3A4n#bvB
z!qRgF0KREuGsxd^`6H<}Fq;Ctq*Qb}jqj+^jD$qLvajVyxHS?vW?88|lLEGjux;;5
z-gx%*rjuDzIf>trFn$zqvp4^>Tr_Rf*cK|10IcEzsL>IAN_b~l!K+RYHH=U>*<nku
zZ{Mgp8Ifpn@QC^S#f?;y9zY2kt1OwE>)o9Z`36Ns`^oyhDe`}80X9w!p8rRYy#I?L
z*;)P{MecK<jrcs)l0<;fV`DL@T)&?t=sT>~8F<&%3THCHjTD%2HXJ0M{OLBl-uU+=
z^SzHKtz6K&)`<lhH{|^vLFRZ^q{WU6LU`O&eztE%^FQ#s@sORVE`DiU&mLNHbVnXS
zS58SeP|=joDEMR*SvKSI_IBxZTpu|&0Oek8d<LI_5u$R&8+7==q%r)&)iLD9d)4pz
z7stp7cg9gEr4l#Un=)X?UOlzH`BtjTV!M1PHEEFMtOf4SFA_QIxH(pw#}nZpq9};0
zE??6AsI3_v`eRzcghOCJD@RU@kYVd1-wY%#bT&OMAo2%T;gPMxE{11DZaeyw1G!XC
zcXCW}*DzMGDgpa2b!|Zvh`HR+o#TxW9pb}m&*8ZY*HvR^$b$2~zdHY{$tv=~w31xn
zF|RyYG5?|3630ca`UfV^%oMLwi0EXrS83-3Zs@~2k_55~Lv6ircbvH~?A$}}2P*$%
zzWgyIId-$n{8h~Ac;<7r0HoCF07%dJQbtm2f$wb@{ctB83cvQCx~cB;R6K^4hIz6w
z<Gpup@pj=htU7AtK6dx~4MPPwN3jKCQ1~l3A0w2O)xYw7ik6ueI_v}G-5_*DlwuIb
zF_aR+NIQ>_v%g!SW|M>nO<-dj^~m)JSV&7#)o+PyUquqd6TuBWg1YtS1=cvh9Tv8~
zy6^jz756dbg$sxNnR9))JqBV*5C^PKOT}Lz)VWo!*k{xcakB8TmYUnD8*lT;58BL;
z)E`<Jy1eXrAUr&EVUU=?gsHW`g`NlQG#qU_{CWG+?{A6z@bzZGARZW0et!h(T)<?j
zMXIK^XsCW_;VnlwV|l@U4A`vpt#D$a4^1G9i!SnjjO3%-B~aU~Cq*MGyx8&o;}%Eq
z6>YBuGhRGZp{)SroQ8YOsv@M6>!~Y<%2kpx=|tdlV7`<gAFyH;07_s4ba|Uz>?`nC
zlbrhR!1i)(E%cAQ;x#FWuvF!o@U+70)p33D;aOt}4Ddr95du!$0soPIrf`r9^<C8<
zKegMJd^47))rcoxbsEtG99=Czu!J=0Sw>isn%zIN8AEtdepgG<{`?^iHh9TK99kcW
zE}9jsq^%BH*q|Yn$TIfXuAq{q7Kf8$964Xq)hG@knU&VW_4g?7c=U93s^Ex$k9Oo%
zZkSu94jWf?`eL7y8(@_3%GfPaymfIP87_KO!3%2!HGo^Jua%Vsfm|F%L=k6a2wBDq
z)i1dSfdCm0kv$Xcv94;FTl0gH{<x{6BXYen?3QE71!J}?&e{6l=vDmz-mvoMT`)$e
z-`(AwvsE>#NJmOS(0v=(`5$#I+49n0b3ZuZg=EL^R2pJk12w6=j7%w$|2^3w4=-Au
z8!Lw|?1fjEL=({SHF77>)g~mYEznSQj7jj(n|{eR?kp><BbqcPHCvZr=q%yTME@0>
zkVT=WRsj<<a|@{mTqO=#Pe{FMmFQd655zS5gh*;h{Cu@INzwkcv5yByOO>FiFs>-f
z;FeNAM3d1@1_*BG1tF}N%?NBMjkD6uG7j>3X7SK>P$ernya|RD|KfTmkBNp9NX+o!
z_aUnipj)eO`;1MV#&sKv-bp<lT10+nA>-*peb$-!)qoV|i{K&sfG#qZ>#&G(8d~$T
zp>zO~_VZ6N|M8I#ry2K2qcrhf{$*RcJ5Dg0L(NXj8EEZV9lQa##o$#E_UlW&(NFG}
zoa^JgtPl(QQgy_%qjc$uCh#P~a6-B~4bmzkRf6op(PUf*nB@B{Sp90yl)z-I<hnK~
zbK+x^01@xv`Vakd7s@sR3%fZ2x>#Jks97(YMdvXAYrhF!c3lY!MI-i5=1leYwhsIt
z;=OhQ6)5;ctIlyM^~Q)h%WALMTGkGabdeU9tg0c5cUgLMjL=5$IV0N*TLjUju2yZ?
z+ynCcmp-8B@{LCXUpHr=k+dV_Hq=pU({%|cGAdvQB%kl)f&S(f2--XoX$EYU8DE;n
z!>_JgHi;05%3;p+qb`d_Pn&LVn!5H(az$i;3&1z*h^?`u&l{8{!c35_?`zWUI@>|V
z_fP#bL2vvbimnl(w+&H$!(VfF#^P1kju6+)4btfM)b!zL8K{Fau|LFc8iI&UXk+U0
zkt?nJnobR)^&!%PDXDN)Oa^PaU?-o;=Sr(vXeI3EbJZE&bTmH*g%8VC*_<@gnRngM
z(*V4pXZ_Rw57OmkHX-`=sy+ENLA^q)DL7VsefdFmh}ODck-hXT-wAww!7?<5-5OCv
zK~#RBaI4+<lB=iOBCUsgVBN-eRhx{1=;vbE8%xgEIP<Sq^QAEFXtm``@Ed8kgdn8}
zJo>5x$6~pnuk?b6ocu-j3CUzFkgWn$I3OAC6@?j2vxl8!o)BSOabEs!b=E;#1nX^+
zhQDVs2E!#m=nYO@Ic=-zql!}*8U(979S->;xY!R8S*W^(&<d=}7jt<M3^Rr%s5sww
zEhY<xBWz8}$FIGkQS(ZU@!dmH0piDUOqw3X9F8VTXg04+jWXVgXFn)Aq-L<}Yyi2V
zoZ!CW*I=VOp3PYBxE-^)I2Ti%BVs#0MwPDsK|Oz(u9x`BiXYYpTvN;N)8!4rYwxi|
zC$xr8eld@k$I{2){qr<(ReZ6_cy5j##LbvJ)b*@T@ZM|31e*c!h2)d$nSD#!QlhzE
zC+HZ37iaG)k$%Mz%mN1+_V@k!A<!<3tw8PE9SpIh6y|g9`2$m3<6jBUWVu?8?5&2}
zw?;$g$M2Rey^~Z+G^pu#>{r)&-W@Y}&WluwGsmhx>t5ff?{1K6%fA0ZK$N8oJO#&5
zMLGGQk2s0~e>!jogGv%}=MbsTzoTr<48COt%$K9@ZvSP{SjEGPt!*wz0wZ}up_hGk
zLSlvb!<PVPULOdU!U2HGH*8rL+Ep(rDioB*d;KEjV{{W%G!CJR(_};&&+dGI;<jYV
z`3CL%iEZ+vq5Qufh@IvC@(vptJInt-5Ig(-h9FRm|1SkiX>B<F=cV}^YswX?m|M!?
zOd(u(sM^}Eg;Vg6wbE&?Ba0c)kc|XG3A3tQVz+(Je~msMu(ZW5PE6QerV!hrr(G><
zl`1~(qLZbOk$rOjp{GH4o#Umj>b(U=wJhR7)703lIUmM78H>!S2doE>SWn;_iqtpA
zqs_D4+^oRY>vK9U@Y~LyJAG;g|LdKdV<R<LYUZd{5yy$8k%31jmTH7^<|UiPpp1G|
z<lfQbb+tfbwoA!iQu3!@p5rWalP`*roL))St?eYb>#k}JJFLas$*|q5Fn9XCDe*^U
zN+rR6U#m#A!dNeO>uQ2+ZN*Kz6EshH198&np8o)2^^7Gd&cwDV&zDXP53Uat{P(WY
zu0L;@1-sZz8u?+GT^N`ZL|m0kKg-M7KFTF#O-lblUo$-=Ppvs{JM2tt|CL}Ntq~kh
zCpi3zu)^Poek566yJJs3t`+IT%4W7t;uy{}w6Y>;3ZeLTj~vN0kb@{wH>3ACy<&3F
z?QsLtIw7pOnO9_*D&McpAG=1A)t4_zI%yy1I^G`t)5#fVKKLi8YBr~A+49Xe+cFcF
zlEw2R(hONBh{Rt>Ibnhk7R(rl677OXU0{pf#(tK7ishrn*Ey4DM|U7bHy2HJU@e8S
zZ$Q?e;6@om^v_WK7qi1oS7xt=7dynfvad0qC&HalrUTzJkw_tADr~w_GQu={HCr;q
zT~KDCT);0z1|RuZ67errJV)~o`4{n#&^S+%zQj6$c^53im)8>gO(YS5<TKnKVs+@I
zNT?nK%dNvg95e9`i7l8G0mJe@_n>Wju$_PTByAA72C|q+LR<~fMVk7<U8g-<{Ih((
z${ojv#5B<yoHcjtaz@Ri702Ix|I2wK#Nl2f#xw?)yds6nrNT5z$$cpF&wW%-avxUp
zvF+S!aGr-PlpM&PmVYxwDGL?ff^YQ^HevnvW9la`*fB)X|60Mb%s@oQVjQidcG{5^
zD08sb(YSwb8Tc7$bgid&^6-jH+d!oQ2v7|fcF$qY$BC80KNMcrPzUvdK|kz$qbJGT
zhUfPeRxP^vg)`UAIxlCtuf3t{=HG}qLCOzJ(olc&u^2{*nyK$R8UGnEcp%X7(`L6>
z#F%}nIp!`U0in`Fl#=ZdB@1DqpJl6s7Di6IHX7&}*(H95&bl@K;6o-xt4EgxKE$?s
zwA?kw=ejWh5|>GBv7jNFjo@#*5CrYM<0^9avOc;{@}vrayrp|eoU{X^vXLjDY%otF
zG7iZzZ<=gU^-9dJQ|UVEcKy!W?@mo;YE~M#)0q;t`DE0>6gO~ghOFoc(lo)Oiw`h&
z_tYV417vav2`Th{8OSi~NQpB72k+$l3)PhnXm?Bh8Q>2Ng)5xZQ!J=mJhm>_8tk>@
zv{lB@JOTHe0j1SwZbx|$H5=hDKPZVo`-hy6&bQ9E%&N1`=9RKUF6#GMgAQW31ee)c
zSp-LaaoyJ`3Ye-tQVb2YTv~>R;t8F(D?5V->R+N?aMni%=(x-54%Soy#;}yXO5}~|
zDOxP3{JHhq*#4@f{oY_0_n;_nS(Kw5C*Vx*2?3vIV!8M|7`$=%CS;`zRs?C`$oWH4
zJco?4qy?Wdm&P(j-VMoM5GEvqBFFq9XhH;^27K5K+jHN5L%YsK+s|O7LAZWtNCo5r
zi8vVU<aTAa6H0_><&`TOP@;lLcRNTJ3PCc*%L0#;h=1PF@~>V%3E41lRCvO+)4lQD
z$WDw~H)jqctVr>pcci##QG#=Y6|Y!!mRuX}(K{ALWlj`W$87(Qf6BJy@lia%O8;?K
zF<MIk>kmQc<sID6W#d50c_<Ndi#-m4R4nI#NeApRN_Ep;bC8JwxpU63Wc2||EeE>`
z`;u?viBql8l(fmIU~&_adJw-P^v%u&bvR?0ggXo+Wn)h3w~<~nssZTVM2eTG>)t+^
zr_IISVkL(O`zvfb@R2xsAs9s-6eP={MXz<}uw8biw}GEWyWPU)zVtddoGpxbOK?(@
z4EDvVH==N7*zrGsVmTT~m1A^&x*iA-f4O^@L;Ayvd13ecID-7mLiU<EF!=cl<in6q
z`Oo)u`+!Rot{%6?M&nJmUG_yJru_Cjaf%6)5waOS*w+e5dD-HHuT@oMo9^f}KCoa-
zrMNelE%yBmpL!mXNo$7&_`*XU3W%_TQxuafFg!6?H0w?vqS<r90lGR+U>-?_4eZB(
z1-3w-tZyIG=}~Nv?zVzj#;E@9n4vIF=SW-{^~O3RH@fpvwcp7z!Z(dwKepoYUaQcn
zOPluV(iuxNZ>jYI6*2TFDQ1LEkzC6#1*ZCMZJ)qUlF3P3SG0Pk#++!Xe-J}i1&%-l
zcG!RG>njEU`Atq7d(|K#p*cJ6iA#)Llix-@(BW5HFK<|&*!rdPr$)i00*Q}!z?kU@
zw8TS1#s?tI7nLkXzI@dQ=Gw9I9mn<gc=xuoq=uY4SPM7uY<l*{TsGQU_gEuUo#FKe
zJ()RqPWyIycQ|wOaHKBKgYVU}{pg$X#g%C|{mlx9G4J%`Y%4e%J=!|z%4!Js&>N_2
zdi(t?yy_8X8M*ezhH1h+T#ajJJi+bI8l(zXY=vkO@v{e;fr2Ws4%i*9CE2OG{34;B
z8qL|deaNfjCo6TKkSCss|9aaM%qWN%fPdYhizi<Q0yPq&2zBD;4mdoqw&Obk!Sx9}
z9X<vSxRSmJP;)eUk4N-x>KFN%usuTeNPJh`u7|#b?1SE1NX*GmuqR{j^R^-#0$FZ+
za|H)BdRKvQ!??21javAT^7pp$elhY`s(tBTpMY%D=2s2&uhl5JS@fz0L0}@bzGSNI
z9J*=i3VZ4*z^HPdMLOK$*x6cF_W5rR?wD{LWTg$wd@)U&PYjN+u+*7uPjtEnCSl3_
zIP=Z1B1#DA>HkI?j{iX%R$k7;a(WRUSxsIuQy4>F>yF;y*fB=#2s{K=b16f|&SZgQ
zORbZH1r83>|D=55>vkFi4PC#92+Q%P=l$xvZ4kUK48%6~Uv?4_RO@u0*qbU#R{~lV
z%`Xn*OaBh1<$j1DjGzQkQhz$adsIiL#YAwxH-?`x(=+j2N?*+BGT`L*#_2qu{u^l+
zv>*z%M~09mI`y{N9?25|QkW76Jq(pL)X&|T)E3kv3@nk81a=_n$@<nA6MHwh<S_ck
znP#ofU--YsR+O%wNY;H0(bP!pbS$;74{y&0o_0!Td|d!DB7ThIN#D741=y{uIcY(E
z2h(PuIA~4-TvKI7O$O3tRR$BVfGG7Cm-CP<6F$~L`cl^VT4bdL2Y^IWFg-T#LA;_Z
zIxQTISA=C2YJQ@!Yc|H_%f0+Ubl`4LR!+|`FRg7q$nA1!56kpIajWF0UH^SwyDPrA
zYym<2_O(rkb5`O8lt(^m-11b<t8v#pcvz-wGEEKr9c^@Q!SC~Kr0)WHZQXo5pcFil
z$mw3GZetrQ4d>Zyjc@ad=+oTvw}_%8^piEp>^4b+(;(0as_=cZMj}6$6msA%Rfwfg
zUv8waU(38|946#T%{CMb&xic^y0UL##kbw7=UB?Oz$IBQbSkg$6856`kPK~USm9U+
zr!y%gpEoUPkT)82a#MlsN8OIZc+!Y93n~5F8ETAIwm*Dn@=NwcR3ug}LWv@umKWI%
zZRv2$y$S!&^!weyUU^v$@Byz@ekws-#}#x0)uG*T1=n_#nmc6B;iL{CRJoTh(e-0O
z`r}TIFEHaZ&ZPf+3jfDg<YEEkO$_1|NvuVH1f&wW&o$Lv<`1Ai3*mOQHlWAl9lT2I
zY$!*5&PWlWqi840Qh{=TWTe!(WZoE_e)BL_DnaH^cyyXF;|s1*`Bzl^O=UK;xaG!r
z$%1?+{r2kSgI(Pkcc9kunRx46=5ufP;o%WK4_&!|{>k#I+{lXPO?z6SGm+)ig{Wca
z7BG8yUP;|P`(XTD^LpGr?flm91hl^{JyY~&)(*us#<#p5&%<F%41-9Qwe1uv93m^)
z5~sM&@P#ZYAEnb?NoVfA{GS+oFlVs|m@Pn841?l{o$}ooE5z!}XRhS0z5JOi!&9+6
z01U;U^xS?VX1PU)YlYBgGOe^<BSVxv!0lbY{g-<GCkHIVy(PeZ^V;&*@fic$EkBF9
zQFkNX8N24hzeD&GX@0JFt|B2dZ9tw$Srh(1+rZGDn~3o_iS1v?z$I=cyJ>zt1V5K}
z-@|Y+`P5n&^j(JQ)~3|nSc=}P>oD2sHghZ#yxXl}cvv8yR``%({QcVc`+9~M*wOn@
z<Ig;5(9X!+?AUeJ#8;CQOeQpw*oX7|F8}RjX~5avPP<Hu<Yn8Gtk}UX{RR!RHyjh&
z4T1}yhqG*C3AIkWR>F@yUEmIi2_Xdbd3QQu$(5Wt3Hkf0Mx|*2w>|*Er<~cQ_hD58
zv!vHkm=hU}L>+<#66uGr$LkreH}!fp_5NF+rJ<Zwj3qdivV35o!eYrt{R-Nuq7{<l
zUGmIA({@q=ElE#|JogwCm{4l8q99no9i>|JYhZdAJOMM4e;M!isr{RwRafKMe0ZY9
zyg`Q>`Mn0>CbQ#8t6T_56BB=jwGUnSB2?t%7Yb5}%wAb*ddt;HRCFZJFT2Te0GG}q
zSp-f**%;f9{@w6)EzR?h6gsj6CWlgvUj1K`DPak5W30tSEyrbDlO3`T71xqq3ZD=4
zRfOoUaLGg-3O%%Gr(VpaAWetC>1vehziJFGw%J^owJU2|aP^kY94)ff9}|$n^9HL<
zNcz=|8oG9kkR-+pO#EG-oa>^=X!PCL=b9(+SGj`%#|EJew07PlOJkL9A=X{ncVlbK
z@Am?FhZYrl3NW=0TeHPXUFcC>G^Rtv-82}_jGui7ij0E<@Sb!<v1(xbvEU^epJ@f)
zvii|*!e^sp5d%uT3D*1o!?{?e4~rC3IPv7ww!eMOi(`zF{IdrDblQ|o!`|1Yi#Ovo
ztSCw0fTa%*WXM#1Hzs!S2q+??g=YwaC&%0q*b;>~YBWKVPKgdXQFjig;ynLU_|uHZ
zdE=6=@VnT1Qf->dh*7KO%yIQm1FKB)Ycta2A2okY_h`fvYE@(2Phq@TR5Xp9h60lY
zE9-2zd}7$cKd96INTAb=2|JI$rQN6B6#nZ*e$k#(*_KtcvPQP8V8u@{#7XqTe|1QH
z>cTKCMO<TZ1Xd)(1P7~0`p|G^s9Wxif97nPieH%7JWK1!NMFzw!?S?G-2rfT(D?JD
z&my#vGkBv6$+MvL>gv&b$1aQsDm<)Ngn5j2AMGt(Jn$cY+|T$W9H(y<H3{A|SiMBb
zl*NrsWA>!hzgrh@3JLOa@{3RbB|N38WNktCqH<WFw+OL>PZyrcGHVO@{^T>XK~yT&
z>V%!HH&S}m3+J9l+@LYl3@y%ufl0#R5#D|JSyrh?B|fEJpo?5XV((CTbB{(KO;KyM
zhE11WJ*2Y$Y1yADaF23L!qS)_Y$+;MCc<DC|H;Ju%TIPGYr7sQ#c?L)uYwtr0Qx&K
zu%^m2qnUtsZ~krc%?M<SBTuF`GMAq;>+jCJMu&`*O5X+qhwkS-Wj8RiEb)8s*p5PA
zgMyPKDVL9%n*Lg!qf54s?DprEEru-9ppI3s3)kkrLUM!om`bxif~cfJoW>l<R}T|J
zk6RLg<ZQ_Ly<#bkw#L`P&01|l=G}_Prw6@L&7H2iw;(7&*FloCE^g0%O_6ulA&-Z!
zCw>ueuD4#CJ1yp-xy7*fA$;BXP{YcYi0a>s)ed?s$R#;mMS^Zne;%i5K~Db!=MO-K
z3ue*+{)R64P{s+7sEnsARhuY;zMya&UPUohW-z^Qmsu0GX^6GA27<mg$#vc+Lg8Ec
z<9p~aon`62Dq=Tzw!<MQG;fx4(*E&NdFtys=$Z+uUmQIBi_b;F5d`aZsovE}$vB~5
zY;sf%bWu>RF|gOg&ZNeIr_wJph}Rm>#w_LoJerE=3KXlx3+w%puCMZyUBvHj2x3!Y
zM1@)-{4;$&t)V#L`Zku6S7eN|)dPK$xzy^erNL(eMQ*BPInanINaH6Ss~(DH41U%w
za3C1a;B@~15DbJB(E@bE7j+cUd>E^LNtX~jK<=UGQ7A7yN89?(XgHk?AC?a;ED9U|
z_4QfL*MVh{c#Odo(u}_Hp+)7nawW;*98(+SE7&M+9jR7wDMh-AiKZh=$-57;xG&Oi
z+OC&gPRO5@nSis+Dt$kqG`%X3FaIG$fwZnG)0iWV{o!Gy`NNr8LWwqB?(k$I!^|Mh
zvCvTI>#0r8hse*;e^x0W;Tko(u_a)D=1-{E9k*rfcH&}VEF>!HOJN<!8Ug**GIm_)
z9+Wq=)a__|qA5+edrZO#`iY4@FE34=sKyZrn-mGSV{tGgC6)svktSxpM_e*NFq$Pv
z-*>Xk!+A75j0@aTm{VzE0Ulk6Uu1BGxj7cz9(X@@SIy({Vqtd6&2bif7^&O>Szez@
ze+W=Qz`<1Jys(!vDuuO-BrP8VR>GglZU4<zSTqL^mS?oXe2|ParnjnB5W7mYFP+~-
zy^HWK)s4w6k<vY<O7Shey_?jMi7$Qi2-<R^v`28w&d@4L?qRY~&hFudvvZh4+Gi<~
zMS3-o1_lh}g>bZ`@8de*rE8c1Pfi5FIf(Ja?x0zF(<y!kg_>5_jIY8`wleEk=UlS2
zk6xD$c%yxtB?`OQcHK-;NWQh|1&#FBi?Dac8utYxKL=T0@EQKd7A9T2m+<@u=8yCy
z!jTjp&m~c~AeV~RP7V6CHalR-pSevs2Rfmeq{7$i7{&^gm0)Es?CHS`)P8U$s+Tvz
zMT=`TZkRBk&9{<93&7aZ`JI%Kkq-1<sflU2Nj!S`SmK$q<HJ&=w(68XnS`LbStuFR
z;RmP^Xd~DunAaARh{o3>S7h+mRLv1lG^<LzQR@h@=gegj`MfP*#V~}&iB5nvE-;S;
z<`KVIEMuRX?e%OGYk*|}yGrR}zZz(JEu|2xiX}<8k*j#shWsTob<;rc({a&3ltpn|
z`D6k<4cZqJGFZ|*wsF*95nPWdG_uc07I5D?!b=#q47X#P@$2O-NX~j@_tC%vx~(dO
z>6|aa-MTl*?Jw&LWZOl&%b-Pq%Ed%JFddXBkg_crO@*ABL|vi*7J5MWV^)*vL=D6f
zEd=AlM9nD~eLN_)OfvN8!-DNvGLkt;H)lyP5dYR2P2k^1{Id#iN#;j)$kF8j4Vx*c
zvH0$it@5-f-qHUlz>unzbzcz|5PHG%H($7?wIwOl@?0u+V;_@n@JWQsyN6aeS_?+`
z6RDDUUTs?E2#EtG<i9$vWO~l%7Bo*5(y6}k1<Q^StdSD(ErtH_Vm5FT#e*Utz=|X(
zMa4U}8hJrfC--D>647>v%znj_xD4AEHuB@fa|l#F8Y9bQ1lH%o;Dtsm!d_d$FNw)6
zwajL)NGorIPL}r9_VC>j%RY>Io3&L*EkOoppCcPKB7_2R(&0D*y$n>vU?vj=O2gd}
z$#i7yFoZFdD9RD<@B&TtB$gcDvCuR$xcRgnO*LtHK9D})G7zoUhSTXv&8GH6pXkq$
z_2hk33I<UY9F~46SL@N6^efL%R5R9TWSH@)Ze&}*dE}TB^Hzobj&J$z%1xUOQV-T;
z>CaLfny`T^T<$5xPzWEBF~sC#*z@Ni;`Oandcl)xv4!6aq+27i9x5z)mdAsUp8pkJ
zbVlMvE~_6!!C<k{v>t4XnQIyOT&*3{Je2i4GCH4DPZ_lE$`?T2ZnCjz!F^5KY!+;~
z{+*G9$`GhYEHSzYp`sk~nmn@l^3cr6?9WY|9{d0_w44YZxc??KsPUHjAvCYFlZcA3
zw__MD)cE-ACThB+h}$K9%t#j9>-~sfDo3kfbC&x2?rqH=Wp(HABVQ!k)h@3k&KeUp
zX&Wb_O;=<iet~znrw8TRF5ehWhI8DvZ(&}ZC%-I(7-fld^pQAeAj=af+q%CMskON5
zo$vt0P9@RCi)=%|(oJl7d(7(L<?}!5h;(B+_!<Q9eW~l}eCn>M#G?vJ3d`M-EK|HI
z<YV#)Le}&%v;?!|iV9IT(w9z{0xgl!l{amdHZ#w3iaXtWd_)8k(GVT*d;=N8pnLf)
zwA@y=q&Q#vRdoe4SAv;};gf7LW{ztusgMC&o@zIm=2sR@^msn!#>AuZ^lfA-??Z<8
zM9Bx${)f*$aPOP1T0vJz)0S*oT3^lr&ucb^G2Rc6QF*!U4f^ujIo1*~f%SHkd=dJ$
z;RFX7Zt*ISd@|REoxMGCmIuCq)^CYl1Mi=mt&_j$pEQeE=DJrs`S`m3xOhG-+|2{|
z#LN=z!}Y^6wvW&ED-O)xPQIQV9$)*zr-ygMLQKF9!ylWZ5_E#ICa&&JeO&*AtUz5F
zm5XDW93lp>ei3s-^{_hHYg-bj*`BD>_NLTNY51Hx&3;>VY0UMy?kv%j2D8em$|YS8
zUa^e)3`}$UqK+Le{EHkiZnU}6PwEUTy2Mec>r1Eof5<uq?o6PqNyoNr+qP}nM#s(@
z8y(wDI!4E~Z98w+VaL<othqC@*8LOb?7ge%sqgt0$&Q;iQ3w|Y<~Py{auzt*w;P`1
zM^ZM$u%W}~8IDq{YNU4^tXbZ|3-x#Okd3LFCf|!>FO#kTA&)J;=l4xq-wG7<HWm*L
z;SzD~eCeAVHFbMSay3qOi>9EftZC+&FKmqJdf+X~fL_uhz|G@0LKS)rFy8Cev2!WU
zEn`NRrWy{<qy4lW9A$;v^)}zcTu9{Fg|=Mwsw=I{)l|}Jvb+gt<>s|bckLondtzj)
zit)>SUI5ix%e9^5;Vv3)-b}gn@CU<8DX8o0^G<d?u|F5yW*K=h&=6KU#!6}LxF~an
z(9`ZTn&9s$0;`SKU^fQ6ft9<c*#5$iC)A%qX(HtAuF`!~@095tgw7G=hYfq5C4!jK
z;An>d2!GBOZz*qOYXin^gS-#quMd2fZiTo1TCzF*BV4ibaPy{^OaD9d=s3D<aiQhE
zR~rXU>?l+wz<~N&-%L>oQ7Yp9t}dH?wA=G0K}*L`r;rcQ+OB`$6n?`3*^}VU*j;CD
zlQenR*s(4!eDjiEk(3B%6;3&dEBw5A!CfgRewKEXaBgcp(X13&-<_E@jS+(mZ;UO$
zaZF_A?q~H_c;;vh^y>mN{=Srds|on?d0DVqdqu4M-Pu^2!@DT}H<9>oU6Cd3f7Q;k
zzERG8nT+W$cbV}9`@F!F)q(11OYj?dxXf2#85|CqTx<q>ZHUODMO%x5LE8AK_J+CM
z20K)-1VtL8-xK`$z<D|MJQN`wx;Vbx-f1uGDM@xhT_aU7xLO=A10h|ZK!h^oMuALV
z8P1!U2D$mCTZ76m1e`GGsJ%Tl(=4TW32X;3$%luCpV59f2$~8-T+@(<o)>ZOk0w@9
zty-bkkNm^|Jy01V`zYEJ5dGp1LSDKVYk@OqBN>g|3t>{g`OiPuD-)&~sAGt%JZxCR
zUf>Q-+y0ZyW_x0Qa1K$Xd=Mls0v>Ra7oYyM)!2|ZLSl5Z&eaRZNsJ~1lD|+jKassZ
zZm*FETh<3CVoI<^s_-f}2y}+SSTywu)hLfsMSZ<^>2C@e!0j*>Kr3D}a~*`aSqNh-
z!=<t(GR%J%#pR)<SRylxazq_5mHhM`NNJMUf&hw~1j}jwKApEckIl6uotHqQvxPDv
zipuBx)EB_#=qmwwuBt7HSe57#3}IZcGSEu*sO|Ic#X_@lSwGK5)kYz7rceu(+5`&N
zY2ES93p2D`a!PpyO|Lx4tI(BP*OR4!<2lxIUcu;ctQ?F}#jIc#A+ZrvqDA#mZ^c@*
zg@907q!?oWapcU|;MjTIDm%g*qx?u&kxhlmCYph9H@~rDzqs8Tanytm@9p3<Ehx)O
z^$^%6uuA9M#d@5zwTgKxmo>Y@6Sw%Ht@=}i)DbagGcuKHFrAIMUqz-3vMSr$@Q97X
z2$p3$Fkpy=v;<$6w2xeo%OH-uS2=p{iELmU*Y}`+>r*eUAQN8YPH}PC+~A8XaA&_@
zPmdTWU;7E+>aG%=J|s25&K=ld2-#P3MXC-ltswbe3)t3~sj!n2qu3(Eh~2bk8S4G+
z=OkRxpY37rpavG|ya-XiP^7A74-m2*S6I?I(}45gYPQg)Om~F7tlLwi^Zj*S1rMKS
zR6zoOl&Q2?T{M~);ajhxBb^Xu$MAW{JnUnoU4jiwA61RCfr9^c+^;n(=F|M*Ok#ax
zT|+FrSmINpxX|$utQz*VDW5IFfEJcMnrj|MM}U4`&-ONO!7IOS9$!a?O!W^%mtUCP
z@`sLCa2qy$X;bNGFcrx>VwBX}au^;|)kY!U;e7DdEoLoK4q`obidnx!!ges%9-aLp
zh!QAUF_rBn4=Wbx72;?*EkI`yD5FPNaz^>YKNTx#XSxbL)@@`L8x4NWariRixS=4Z
zU;uHfi~UC>(Yez`(0?Qt+oR=!zX1(S>`+H`Dl?<hE1e>Krw(s3;X33wx$rDYQ!oMG
z9#H&)MAUMiYhz9~Z|Gc`7+2NUW(2=VkY9@zfs7r}F5jv(38QR>H|3N`E^{+TZ$Nd?
zQwZN710(@;gfDILhmN<aYM^4F-f~2Y(-tWscp8^Km=_Dni-}}$Xlj~wt3gat6?)w&
zDvcOHM}F&B`@ZXj5sEx46-0gbfUOB2AhYUZk+>2WOs+9Bf#pn*I6!u~Is=oopf9%y
zQAZg94~+n|uOQEXXc)t<(Y#e$O?xoB`q^5qw8_atTnQZqDLxy?uV2#?Qee^7>^g&!
z`+(+o9WJ(35h#j-xM>!Tsze?8ex<STOB?&v7$Bm*o(tG+35%JHu5#wP7EA%)p*))&
zhp+#U{%8s!uK*ucQrBcTnm1IxRL#6ksJ8;BvlrgpM*hJ%jC<o^rZ0<!m*H7%kH9RN
z(EYSSBM8@y{jtva&92MO$E>pWbWpI=^_cUbHAYx-yCB77s}=M8{?+;fj&6tRH*|Yz
z+S(B0v2^;EorZ{MisR&I7=Qvm3U95`x-6()20c$H^t(ORj(QR95qExE0^xU=$Nl>2
z<aV>DB}W7;SZZHmPp?}}iS<NaB=&eW2;K1^Kj67Ro&Es|E|1Kz*Q_KkmwtW7f@`*V
z{&Bu8?5e{Jxek>wuY-zU>TS<MUM%jLMSPBpPVig}<IKE)J0&u>%^m}=?YdFVFC&j-
z@{HO_WMv;QZG15MwiV-Bb|WTB%)6VjIIdz#@Lk&crFH%kIWw0MPM<k`@OCKI6PjMW
zHBw{rs<aUhvEpZtk2zyaPEkn8mcna{2dc>v58SR3?OTDrV*F7v@oH>LZMOo3+X)H%
z+k+p%tN|q0vs+U{Xu1usXQ*!{E9|d6&If6fPlw+o4vX01P~B}&rBlZomq}}n%@PUM
z!Ai#^qQ7>Mk-Il|Yq!ziLFa1!RYT%LY=U0D*af+n868G&Wrp0Nvhhk|Le;I)KOfcU
z*t=E55EE?9cgqx4Ch{pPF5gs#Og0G<71M)^^R#Wq@_WS${FX~(Rlm0eUrU&bT8|`>
zXLq|isYb_=ck|JX{~faT3qJ2A{l6_K9Nhm$uVLloU`@GG69Z^(xgNKnGWN}C@6Y7Y
zp@zcO%XQFg8g3-@EYfAWr2TtXAd@n2>v$+KhGqD3Ce?S<zS2I-@gN4ae0!A29!a7>
zI`J!%3!J*8A=D)vm0$RI8DKUUcbRS8F+KW{!F?Nbf8B_Enl>9|&R~QigtLyR#&Jc4
zpPB!KcFf0~{dXm<+nKrM{G14QeY-!L{XDoo`>pio8NFH|H8JG+;4~1Gh<j#YmBN&3
zuNsy2tItWhA(3k$L^^Yc=Z1@8%{TfS5)S&`Cmu4!8moJ$fgzn#GS{&>W*Cyy*3cQ-
z727_Y_yfYUUBKpZ+W;X@0EQ*OAuPk!)I-|VD^-;MDhxoH(d0Qa=6F;M6cKKhWs<xW
znoJQIU?oj**({MBdM;u8xZR9cHOhg?e3&=V7eYQzxl+AbV?w#IulaGQr|~vRgDJ<M
zRx~z?=U5w#0o^ElT~x_Wp-htl0iBu50(|C`<n&(A7sIcy$u5tN0=>$e_hGTjBU3G{
zlmw|tTmd}KljI?Op!3O4ZgcTqg@G8(lUImy??2lf_;U8EcJ+R}p3Ypq*$K*nAXBY7
zH@8?gHDQk^>D`%f|1M;op<m>O_+=$Tt1>{`5#Z4g=;P(l)#2-A?io?QL-n@$GCQI*
zfhWjVbvw?tmEUCc`(x|$z41Nhpm1)N2PChWRuCXikNl_`2L}eT58V?jg~S^&{5<g^
zrc_8%uKb)={T<h$7pk|OHl<)=hwSoW*9T?dh;7tmI%GUaa&u<_Y_w=M5{y$fA3Xf1
zC}dXgz68c^8|?gdOA(G{({6fe^k^b$bMBK12mq*P$DHI3n5J486tBcGGxtUlq+%^s
zB>?#Bh%v#3PhRJWupWnvgp!w#i%@Ztp;91?aZ!KM^0PmutHA$QK7~v;wj|Tg!rIgD
z@Tpv$riVP(4|oEY&77Eq>7KuALxtku7WGyYepClADgddskpg2k1dALTtQkEyvIpi^
zs!xh?VW272LS85kp?K!`>WeJNZSXnoPyopXTLxDr1XL`D&|N3U6^ZRA$Q%4g{?jMT
z)6H(;(gN{$Z_jq$nHvucBPtIXOAlU5f_%_Vh}cEqo#nsrJKCPVdB;f&1}~ANv(2T#
z<oD|*EkfIV-s^fA%=-VjWnJx>qppJNM;vSfndHrMSJN$7Wl!k~6eiEp`u!){3IWg}
z23A%$rHka7G)Yy}EXR&LSH>C!b{7#<SQ8XzFQ3<biP5e`577PS<X>g{);IAZ10S6J
zZLLD?mbI=Zo*VZ}<LC?ZlvV;y{ubgJE;uGao++#BHl4a$gt^}=S{-J8Nj76$IjYC$
z3sqB^<r3r5V<|L<Iw_E(7`n?RHUnUQf_SK$Q@?aG<^txTi?uI2|5UccMz85}&Onwg
zPfBceV*}dDjGN8_@q-;K8N=d&RC1h0D~X~LItI_B$#IBAENnz4`!9VV__}Xr__7(&
ziGr^KuLLYTbO~C5gc!4+2fUY2J*bFWZF6!F1^)?#0uF&4pU=LZFP=C#hX5QTLL}D(
z4YuHNSl$IXi0I931M+w^Qlv!<aKs=N_kCg+SWZJwoe-`a2{d-QsZORud)<2Ljs1M5
zRO4Caj5Q4r0m#P%0qJU?nK(%j$lQ(PI<?o95IhR1s)1h>@2mG4BpIX$Qhc2mBi*B>
zaxE;i34PAOB;OUEvmeg-F90(631Luj@R^c+-ZXP5PtWAz^MndKYzerO!io&_JSj##
zBHP6taCLM#c-R2E)*ho}A1HH7f4fcH(_fej9m~yhupJMg1l0!lMOMtDqOA(en=+GG
zOwL8qx~WlMg5yd*EMlzH<ECJTS<TWlX;BO*?#n-NMLbmT!S3r=_yD`Mvfj`)Dv<Sf
z6d0TInw)1fn(9QC5`%*2K|;%|XIB(VrFtIF*=b<t@xSoVD_}1<IrtObzz;-4Xay{h
z$mkVbKkTTGQZcIx0(*jPOg4ECpXT?J-HC_Uq7DdA*(<+E19A^dm9eX;6Yn(S(KAgF
z;MAH!+v$FRCvIW~Hv{xn77e7)$5tBKYh^P~W5@xSCZnjc{8QfZ#GR9G&-W)QBlaz?
zQzJ9TmkBD(+RH5AL%iUK=WpIPreE!6pwjs-g<NCRboSwGV|Y4R;%hn6f{yU#))&;g
zW|!W;i77exLtGFf-iXx#0youyxh<-0m!X63zxBGxZAK(zzX9*s56zFUXH3Y*#eov`
z9tzD(uLW~^{Cn^+it$F{V`G$*cb>MVBY&iey*rtfG*;QaQ$SB|?w@B2-}fJXaL>g{
zMb+fo&c}Lk295cfAb$Vd@dYlfyb(eN$h;&l(rcDeIswaWbMnJq?4DLwjIw)A{1Won
zwRiSeE)8e3mjEs;ThC_#_8Q=A0~8oq5VhQyoDNdHF2p^;Fi5bsTdGZSR2<-lN9YNy
z5gQc}^3qfXGlDJ7OWm}gX3xTq!%{tuf}er#-!NoSE}JpOcUOsz4qH<OFX@pkP=5XP
zUf3|eKanOEV$znG{Ph-O$jJRvw+Nz{4pn=&Ns(FN`gC0xIU~jgXMJ?jWnurdb94R&
zq`}I|#*#v1{69PQmebZK)`-uFHbMwk5u6(bw$W0?5r^Fom5V<^s|`N(NG5@79IYBD
zE&b%B5C3`nBk^25u8~wre49)V#G%2n<#p>?zH*dFOw`-bSB?WUL@jjzmBx3>CLo#7
zw<CADPW)-em6J7=77iEAJfQ@K@i+R}+AY@2J&^Eo0}${Y*!jT&Yew+5!6{40Kc;GK
z;hx21*0{s@v~QbdVFrUS!Grv_9pj16Gr5x%|E&b+YLjnWFUwVlCEEe&DM!K<<P-l>
zbS3ig7z5d|{~cL-@`ay7BQ`JImV{tLPf+WaPFrOn(|`gYZ&!l8v|*ykv>9>7KX)S2
zTx6`^G{Bp{gKBOia)Yz%T1(0W2PMK_@-c+DX4BDA|7~MNKB?2|-p0o|JRNNtYUb7W
zt35-4AEtuj1n+AjO;U}}D_$Y3j|MZo(lYc$ub|Rd$t2TjHG67eTo;LH0fYhRM`;FQ
zV23}TwOuF9;AkLPyM}==E5|{iF+I;XT|Djy2@rrocznQvB$Kf$9Q$YXdC2*iYd7%D
zWf=Ct-*$)7-q+Yhg4Mc>z5X=Txt_T$9s8D9`4)FOSZ4&Pv_?wn+{hY+gtJsvYXg{x
zd6^`+J+uw5Nrd~d^%X>hRt0Q|;vhgY&Z3O;iYdUm@KO|*v6=MEJ(1dTl?1&dO}6Q-
z0sJ>=+n&Z(#yh`4-RP6MY!PHlM32YG^1j+W2H?n+EfoAh5mu$nM57;w(oqDfhrGt`
z39e)H#2~rwdBx07Oq9I)ChWN<$k9TlK%a2}e*8!x(-eH;A$rY(HY(unA+cA{;y9rZ
zWaxK?*@rcG8+Lax3-CtCA{6uw!oz?h0Fc<p-`N<03pL?=s;(ezYMy9WTWD%+?u|U*
zx1j&K%4_^s!c|-GULObJJVfdbouqvrEsNug6w`X5+R7_(2#;wJokL=q+vzG^?$}2S
z#c)?O31TJOJ;d#Fk;wn;GH<Umcqge<_RG0^kH#%#mno@SHzf_S^hEU`SuREj7x0(G
zmf_9?C4XLe%CKCh8%f=IBh?2^eOnioT0zWIH?a&^iF84fl=;5nHcBrm=*cW&WFM(n
zR%VhbPmmRYhe*zqWVM1es>NP$OZ5PSCM|y4bzG0`vUJjuj>UVLj1=ccceH!$<4+KZ
zH~|DWZ9+7H9_X245RX;A0iATc9Dt>mX2+FVzJ|Q|c?4HZBG`$uQ;kCUk?;`Z@AO}n
zdf_)74Qt92ob1rF5VD*%(gD=6*=k%hkj$gu+v<JO2v{nkW!;P4T4I`3)LyC$<Z(7*
zYFZP%nRhHiU0LAeizQ6@S-`(yj!A_N7GJgn9zAQfL2MK+fjq*a?mreMECCDuk|`Jc
zLmWuwK?v%kq%A-e;Db50N&6ac>pm0A?87E7`IB(Iko-n?qouodD=kqxMx6N6(>&Yw
z%iX0`%LOicdjVtRry8n1;MFOxLqhn11H>62qrliWx6hy7I1V`U1e*{bd_!pT<@>bL
zHFB$c7CW+XdHFE%@v`>t8=(DgiK_5fgp4+~{do^_(zv*SbSkwoV;6it);O2L9;;|a
zLFY3W1*W4P43deP7Ji!E8B8phR_wZW^&D@Mj0psIfXn}GO~88r@At=^ja^w+Byu6a
zd_&$TB|($D@=|>^KawezmC;vA4TpH(6araxDYQj$ue()`JrzKs2h0FDple2Xp2bEZ
zhZJ!%g~K`{@T6a|a9$6_cuI|+H#Z!$rbip70yH6|c2@Bpt=WJhq&7brhU#b$cL=)w
zw#WwlAQ4or9>#{xduK?KiLr27L~8;|?T|sF#xLy+{{@|o^=GPH5u2c5fdV;=KJPew
z+N)fi3s<BFw3mM08KA2mI)gSSaMsTFGB55{HB_gI%#zH>83LT8+X$kljE7agpEs;a
z_&t->!(V{jVXqhAOh@9qG7D#mSBK35jUAZOxf3(!PEb6Gp%|p%_A9o<w4PjQD)>N*
z;03G}u?$$fq7e|y>$dvNs8eUZFG*hx)y@{5K~!tJfXdW$1Mt<9#U@yfk<wIA1+$4O
z(ECGr{?6B}Yl;Or2GVxlWZArm4MKKnYC}~&gsZpVK&YR<gTfLe9EN{rRqbWqh|muG
zb0=pmp9O#<C0D}TDO-x7AFYQ-=2m6491NjBxoOdarrFde0SV6W^7j4Dxh05zu4cJP
zl?@FQI*$+m3b>;GY9AoZwPqBO8P6MHhm5xZuMF>llD^YDY2rkDgl(kwm_@SXsZ@Z^
zD}x&+4ZYhvEpEr(k|ot%=r=R=QQo9oRX3+{lhCq}Z$9mCB%oooil2zz5d^3CS@gQb
zMq6~Q0HPmGlburSJM5$#?R3&Z8E1=Q2V<C<8UP2@0<fX}D^e>%MLK<_DtyDa$j0;-
zQu*@W237nfh3$h_aZ=sA_2{p4TnJsTq)M6a1IKS?AvL@N=k1dMHG8l(E1woIGulIS
zRWY3;@6H!lMa`h}hDpQcM2oXMhV-xqN@k6R!%g(!{5}LV@sXiusd$qj%9qp8)M69o
zv5+R}2!Ku(ykW@+=~3hZmst~TY<i|GSlZA|-)jD<V|soMPF5$clA2B13SDi`ujQhz
zrC2k}pgR~e=r5m!a6dF1AftOb7#9V?1^D%nMn&{lYBmuO^twX?qQjKpl*AYj8Q7Cl
zA_aZu?0xEO7lK$Doq}su^P)?hW(jGad#ME;17Jsetz0!DC+m7h;UmOdn~-Ox5!px6
zU9(%qTQU{VAaqX$c5#7}V&|d^A_B#+3gD(P-C_E&c9pWS8FS5j$%qCk)#nqE4DFiE
zFWUs0(+qJwZHQn6s$<CU7V8Iqs0q=xiF$nuBELa~KXCW}npoMfx26`My3-{Im256K
zfGL;Tn4tLD43LuM$F5D=k3rE-F(hD~LKEiW50Rs`FbKvzLlR8N73Aq$MQ{*2K~r@0
z3woa-er5<ulo2J(8|)@Lc%z@6sKh1@+O~?2nd&5;atj(`3#O<8yFb<$(q7ncm}RFd
zN?r*1_+K3gH&MdwSt|Pt1c{8r$L0670aovS5KHL6?$0q-r>2dK7IyE3A&tI?9uW)C
z(Ei;DRb%7j7md>?{MG`uTupVr2QOVtuM)886LFM!0{YMQo&#yC3H18jCVswUSqa2m
zk9huLNyF_x(q)BEEvFW@^JB+vY$?t}{IH<cyY^DViFAnaU}*hG;(g!gA5%Df2iR@S
zy>AoKgP?Qz3$rFVWH3aFxXCe77s#5ka?&eTnoKT-A+_zciiX{k)rt?)1(#lKs#YFp
zjT8hT&qITiWfn0$`lw3-D5QXvl5`bw)Sw#SSs5#(${)R6F}5h`^B>c;Ii<4@ap^<Z
ztBd8Eq2tQvHb{OegsUcNNc2PGfEnspUoF|A1hK>#2bV2rJe#nEe#QjHgZAb->8{B`
zyRYk!SN#_MfWTL)1u!~3$kRI(_;&>xx%YUM;hi5ge5@wN4WOGFx1RGy^LEA;TABI1
zrRPNRYcD;uVws=)DmNJ1)v7SA2Eh{RXT`p(`KQsyx!Yq0edHSpJ7BaufX!~a+cH3h
zb8ipk3ZWjyI|uzGp!+-YA+$0L$B*{*MnsP%sME#egOL7aFU^*&X5mxRM$pV)u6{R1
z8UY#l2s`d%<mBbN><iE2U*_cF@8{v8oHnZu!6Vgx|4MMHg1mvY`V&ZTHuf$@GXV3D
z>zyW<dA`9N{6X-H<iTMT02ir>?)K|xwFz)W!fnrkpAa?}!YhohPK$zjVY};_NXB!e
zi&~y>1z{;-`T=3~X7Gh#UFA{i%Xt)l&u*Ao4Y~`!`8f-$+EeNUkds}b*HqD0Z>CDR
zS;2xCh6?t#b|FDL{dHvVDEiGdou|!~w52bS;uV2o>Hu7fk|wf3Mp`+W%}Dv~FZc$h
z5s|q_$+E*I;bs575qD0W|4Mgp^8O2VQ2`A9@z>J=3XB)ZC@k6dgBIeQ=>vZ__-M;I
z*q8ZCBxun7beQcYgT(`pT&fbd)}I7Oe!I+FOL>7S&dSsY)Y6whub{+l{k|RRINKdX
zW`N_3J>R?gcJ;$-?5ZKIYkx~a{AT=pmB_7K&^vt*ne&upG_A{|V>D{2+LUvxnG6UM
zNZ6S9WB2@z)(Gch<WC;L{Cyeg{QaPNcV-O;5TrMn+o(}ro4WoueWyn)E9!S0*EgK$
zt@2#Sa}ZWl9!%X~s6Ql&^U+0u?{q#_l|be(Vj!y{rVyAmE8?p4jI<jf+RQdWE>`&&
zrfi%(Bnp;<WeUm}!lVA~{~o?Y9SjJuH0AJ@LKX^`c)j~K3FS+MKpIp+3fFcO?m0^~
zbk}=&v3b)gmn_9OjIn=|hJU$Tcuoy2-e6UM)AG8Lv{k=VrwID-=Z4T{K@#JV!L?qT
zL_d`TxI}R@YdPTkE@06+pYcrg2w0lLwD<hgmw_O)Ozqh=`M|>Lvd_Sf+78eLd_H$!
z*XQ@$Gk~in#5dJx$2+Gb@rG$ycwWNF4K_`am3+L9-0^VL<Lxn2pKJ{g;X58nrdV$@
z+|ASqe%s&^g@=!aZJdsXZ)xOomDj$%*H&0%Bftwi>~d`N{=F~rIzJ3XA2TJ8PV({n
zY!?U<QsP2ndI09IAYAK$4*;fE<PCob^<D!68m_;`9>5vkR1tX5etIKfJ?0w5K?O^a
zak=gS4kBwd_TwuIaPJuorAA22dk|vGEqs`yXdhRawT*lI|0OzKz4nkg3>B1*lWAe0
zcbxIsnzLhR6wJZFn#*^zaynD;omjV(bv#75o0Z7~O7Q(i&OnDwF92f{9CtoCOy`DW
z4~@GHI?WmUS}%ktU6y{EFPw$tj@kJuZ`R8Zc9_2J&}2%gI)SjI!?49W5R}&fQ3~<A
zD$w3+>sMIw+|rp60uxrZ7W@FWhl=P=mk6FUd(doxkPDG1Ev+64#VM_(OMS>+xz8)}
zaSiec2zjLsT4++1YJh~&GQ0rl=kxrg&?i%;(8vcC%!^?Z<g7xO(e*m}TfENa7tMME
z0+aCA!TQU#%X;0B^cg4W47sFE^DR3{-MviLA2SIrPxrg*RLuADxi)Qr?nVYh3Zvn*
z#qg9gD5e+;IoG|w%MmHNaEUNEgSb@RUZJUmT<TMcBbxFU9>7dC#Fv743g%dh*2rTD
zT|h(0RD{#59U1b}aDJI4(fH7ExUj3^kM*ujUiX}oXp7Vt@}CRvJIVcH7{9+NK7F?o
z<3qa%s&uclEP%9D!{emd{m~oVWGGV|!SsvD;b*ng(ZONEM+8rdhn9Rbd~h`@t@md{
zV<j?Ys<6%Y>j1Seyc~|Gf!n5W$sK)L2i--tLZWVae^)*w9X+E|CFXc=2ymDX4|>xk
zk1YqqAGR&05>)E%YUR7HNb;NHD%aVIh&qj7N4m{cD+v>Aj+>(7n(#abr*Pww7wGYM
z3G1e{9|tPv2Svl{cF#Juz8k&j)g(XSFOQj2xMayxVgWR)ZSxal$tOIymr-x);KvcA
z7ruX6?6mb1KVawAfhpBA-|#RMxqxD_WNEH(iK@^m>9mxt;N@e>Vv^DpUqb2ASy3%?
zYLQS4{p**fo7tmylT|WV24{uH5tD=`3+jH|q%4o-8>d`q-2-P&c=m}lAT<ISk$Quc
z<4<~wWWWO(LoA1qwT|a{^IEggB&dtx@B<sT1&(q+h20T-y$-5@zIAW@kV4d>k`{iI
z01{V0STs#-#URFfara7pvEPO#XUt5U^~|B){*H{f=X$M0&DUZk5=~;B{bKQQq~Kx0
zRqtrDz6cqsW)f!elDby?#fcVLkXcRj<?{<8B!B_+uW5l4p{|4l!jb&=Qgz1i9#5Us
z%RJL`3w%`*UhRIoOv?9CE7f<z0d-@;xJaamVK@bbjckwLy|O8`rO1x3W@lF9id7sq
zL4cYr2D(W6?7-tOtYkzs2u==|QGXLr`r15l!?@hd3Fb-SeWeQ;=`XqboV~qSr#tT*
z2LRWMfeK40C7d7`q1nMsZ#s{Ny@L=$ruk#^B`*=Rc!3W@0(l())>plDamPd&v9fS@
zmz^rWm=Ul!Ub4MhVEY%D7CLB>$h1-Q?$up5lhX6tuAlfBY(eG=lXI3=JzqhyVKf`K
zuSPv@1e*`wOvAYACa{0u83DY}1349T0B(q5^?eJSD-~zDP&U&~#Ho&xSgb}0?CeKA
zN8z?8(mpygcBV9Y=CWYfS=NIpXDSwW_drau#xLC0-97Nu>C&+Nvr1aXLN%C|Y$i{|
zchBK<h7CHDtJfh5`NGN0EDaN$bc5G~7}40cW+IZn4*J@FB?rFcLBrOxoTaQRz#<xF
zI>2V0BcCO!7V}Tv^8qP7cc|88d6gEn#m3?pAFQUMU=gcMF|$iYlBS=m1*_KWlYjuf
zOMbuVnTrb*oDG2_7saAY<%~v;XUx>hKbk@kb~8Ult5(RPCk7J@hV_Z1n5Kbc^rV^R
zaPbK2N_WbZ?}mfQ$OIV1*+5|kfD$i!-V&>7Xg>M{;aAtz6s6dsSz^Dc2swY@;t+MV
z2n_R{gWruFfb;jEXB&6R7kzad{Doua$Mkj_{0*$eyy8rjo{~09o}nG);ji8JH_j0k
zPm;T3`DMZLze*Wp7$Zs4<oXub{h>JOf3&OftmU%s+a)xKqzEvC0sL3v0MV<@#aLu_
z3MZ!bt-kkx11jv(_P+PL0<hBwmB7Pg@ZLQ?W}LRW#HxWw7NW96$Xhs6taFMuuNNUc
zdi0A(<!(k)?Qn6M7NmmD=i3CaPxGjh=>jHw$9x5=o{7r(Cuj!P3Zli)J4#NsBtUBR
zJ7v{tp|qUa`re0Fm+%t;V2+WLdWOa<-$1=wRjcOahknuCJR*6k4|p18=l2>r?9x3S
z6ThvMY|9NUS5Tb2rYgq%R-2_7-{g4)7vsUadipUz28V31S3s{-#cBUdjqPoE5&x9K
zZ8~!7o~#%(w^dA1RF<v<g<VU|a|l?A5Usz94W#nYDjRcv?L1;MV6OT^%`;Doi__4z
z|BzNe-+%s4Hd#NGJtV)V{&J%@_(Q5yE03VjAB+T12=<O@j!JO2mWaO&xr?|;7CPI3
zTLp`fOWr!WV!F2u^H3d~Dd>2UhWAZBmSyd87(<e;9VNg!H9H-6HC~7Yt1RSh5wK`=
zeIlD2ny(9~qO#EfSaq{-NY6?2-}BZ5|5VSOlNcI4ZLv+qTxpy0a68Q)xle$cVz-4^
z!1?<#PD-SLQ#0r5p^eXXx=}`q2zP|(MeE#fI!1<3i=(cjE_WEoQmw2BH^9QTP5spL
z;(WseZ=&+Cqvpq^5>G~8b0!Dt!9%nTPIFv*hm-ZC9TOW6@MxZmpw9+RqZ}5McbJ95
z%DG{iJ|(`TCTJkD?BB7vO-gIcqvmW?mCYIj)-D*M5vE~lg)Wih$$_Iv-r39wX*tC6
zY+Jk~;_FrTu~$^mD=-~nOJ=m*kv;#8if)IY?7BoJc+Pf7jre*ZiuJ1!Jn(sBPNvxA
zJUE%Am1IN`P^~Db9^_@WN_6r^q3vmok3rXKkARCFudphKy<N+1{aR#6;mk=KbGm`0
zmabw;X7MU+sOg2DnTgl6_!!%23<fpHd&vA?EZRuaC3%$UV-*QYh1jrDO0Tf950cxi
zEmYPmyZL@WViICr%XAx*hfe#Bc0TG5a_0?df#Zx45TAa(0V-;8S~#g+zC?<m6+vDQ
z+SyiEH>|B%otf|1(GhD#(<>XEEpB9TU7&yfBe{LRY~_g;u4;hS^x#_#-3<B3qYx8D
zDgV3q($@$?2hKg7rA)qAK%r?MwQ5rpH`<{iKVvAfwt9j2;D_{+kye<C9Sd}P9w0Q_
zPRBwEP!Df|S0t%$h`ev?3;LaFJ2!ZJC|O8sDxSs$u2B8L(OUe6^a+1QpR-GQqS!`|
z4<{rA&V`gLz}%y~%gV3)S4z>X?xXV2durrcQ&Ozx>2L`Xly}9T;!_EzYy^$~!Va|J
z%eBB0Tg(n8ml$&1ED9cLxh*Rsq20<TDS<CIpu>BcO35Yz-{aWM-*n@8EKq7+DX)TN
z42s`K5f-;;Q%PrOJ*jadGY+$@yWi^Kt|O*AIeW?b7s3g(=LaLvE=z%@gm}l4)J%aF
z6-rQQPHZato^+{^pKaIA%Z0QMk!3ey=TfttZfo}iX~@V6tgg7>D`}u7Hd+;Fk`X;2
zAOVyaeWg}+drHo+3?FX|A<TDv*B#te3UaaVE}UPo^Ux*b+M&H)XI)u`FWOZgPVMmL
z<z<{f+{TaxyJe+Z+(6XRrXDGHeDm5{D1%*GS7!#PUmXx(2bhS{v@m9*4qB2VF9^r&
zFm}uls8(3q6X?c0Lb(7or86INPA8@ffU@)zqJ3#s!L{;K;(TMXx$j77C_t1LdQndu
z(hz%UA4)Z;*H;)abA_HM4<*MA8KER`2`KUTh-5$ary-OsfUq#IES3K>KG5d>&Zpql
z0+BA^XK+9s92oJqeHzo-%l5+!5=&c008u5-!iR|;avguic(srwkGC)4RdiAS{Or7b
zUQvS@?h?If)103OSXs<F)1`&<-n=42QqG}5_U_Hu&XsmK<XSZWqh1BxH<b4**t@@5
z{l>dzM<Hlsr`;|yUD@f{ZY=;Ed2Bo$85U72Oxn}oF8pElmbbMbY~RA+UTG$`cBp#G
z(UpO&tB$}QKOY%cmUn_4AGHGwNPK$;J36Vk4C!5E*r84w6x$jPq`W$-7PmlvF;awt
z{|EHpT2zz;PYT*|nL=4U3-uOFBtD_D;FcJ-p=DL%9<0)HhLT{c^kYB+SaE(HqN##*
z_VGJlC)=%FYiJ=E^XevzwNz|q`3lFbZ}B$$J(QH_k5vO0SOzVNBXpSqVD*ePc^$JZ
zNPiMFvkHPJVY*cuhc*myE>~FPFDk3D=`%|gg|<y7(yEY!;9>0*HLU&<+tAU~gC(t`
zjg)`QNedOiG-~#C)wf&26Hq)Q{yEMT{9}++6yLlL&q_8UfOZHGF#Yb5B=Fo@cSE4$
zwGwbT@kllJqB;5bPD`BvxDh;zMA8o1e&*ld`r6t!IGm7Ni=>1&L!0jwG|QiOZ<vL|
zB>G*?ydMJPlesllA}kllPCWA6nRvKw0Q`rJB_$qt6s*Fj@j7*ylc<!-M-j8;9@p5+
zh5s`nah+BCGF*Y|2jt--B>+@mMuCxr_$pw_Lk5Xjb`pKCgScfnK?uOzG{I3BSv(Yi
zY#=<iKDQdQL{<y3sv59^I^=_g9FieD;A+p`U7Z5^{@i|p5QxBy{kI<XpP(r_FE9Il
zh%Q|JAtwKac5g$%l~Tw}`LA^C|MSOslxs+b!35R6y2sQ|IHBuXS6#P0$43;CL~}|u
z`8OU0UjNSdNc$Mm2Z4}XP%<u0nI1L=i`^L!niGos2w_n8N%_U`Ej5-D{#;@#CGmyD
z`7I&+Xvdko>wSn_vm?VuHC{3fkMj)P!k6HHk3KpN<N&Y*`u1>W$G$9gd-HesvUB(4
zeS2H~^)heqXP^%xs1GDkof^PM5AC@g_a-hs$j3IGWL_7ou^INCmO<fwpL{t?p%g+{
zKi8KCXn^&^O^b}MC8Rocla9S!!WYYiQILbBs*6-Oodg$}8HQULY~v|`#~d`DcIy61
zdecp^ehb*HK>~jdGdqQfPZ_NUhhr$b+U6^oiIH8`Lu$BH>uW^#Qo-G=O-jX`jJ?X#
zw#mSxk?_$;e=UNMPZ%pVS6A>K(;+-W8`!%Snsw`y%#m(6>0)hcu-phnU6l>z5`eo*
zE&=wBeH#X_vpHhxBS})Vlh3&eN|(3rgDP;L@&V#66X2s^KSsYV@t-;n6-pJ2lR*P>
z4}l~|60x!Psn)Ut(TE7>%DbK>rhCq{f?xG^OQMpxt?B*!RWJ_%N-yWV9js)GJVI@T
zvA`BcMVJp%$(^zeo(6*AwR4ss47Cto%dzR;?@%5^px6z8wDs6N3M}*NP#ICVBPYsq
z2tf1=%_!XvF2);BDM1#&OX(TpSOLq4p9@NP(&~Y1{TKLi)y``ZBK!g?keXhUD*EqY
zL$66kBNHg|1i4(Z+)d(AOa-P^Bov?TAdG`sBXdBuaR7kUIUAMW5zNz2d$YUOSGZ5F
z=yn8cYyiuRL(Gahqgng*bc)K1F!iEe6TsUbXYKX0bolgs;>)VfgzfBXHTC*-{jp;v
zM8mu}62iEp3gS~HC)gkCj7}vVus9_bJs83b6B3e&6T*Qhuq}2)BX5Z{2^WZqrJuT@
zX{7Bcn;TOw371YJ&p<llA7NNrbMMNHAP@MqH$~kV)7l6A;tQUv4r14?E7hGG0DMa~
z&ZXNI{W@US`-6A4jhEu>pbzTlZ>2$fQ45AP)F#b&G%8CL(_5+jh!P3@k_X}!2CT_(
zI&|mT=eDX!L{QI=p`HSN!^n#q5}3|y1FKd@Cwri63w_Y*=G@mC9Uc`G5j-N@bsZi$
z|Dm<$0#{4EUHw=S;!n-uFqPi?1^{AJ-d;Ra$%}6&8Qla^^D;vSYO$t@q=_mWIHxBR
zRq0^0#*dk6Wt^K2TDApKSUL`CMuXtH4Ae+tq)$T95za><qmFO=5R&LFyQ+pclK7!L
zIfjuy(Pp2k@HZaj2edVvP(%Yog(`fZq(^x`)|qsi7GaSO&$*0p85#j>ETHi(8jIc4
zCAl|~{dXD1ZoL}aR4L;k^LQaa&nXZKlAAQhTnF~J6c<Br35((#B%TAI7;7YpWSPSL
zZ%1@^O!|CN#$g@orbnYluWvBOcl3vNr({h^C1FS$pP0D&&C*=Ea7G-X;dX>3O+#vg
zbOPHGzln7cxgkX%(LCv?BtS<ZGM}hOWyY~9aNFG}_Es?moqLNqlNzb3u6=IR^tpTJ
z_h@Xn5JMtv1$Hq99+xwaMl-(4g|ToQn0-cjTd{m8Ay?1Gp7c{4;bMov)K~a1rQh(C
z&?mqYusZicSj$O`JWl<>)*xWR3rP>}`l7wA5xTGsgv8LC*(VkB9N>#r!56lITb=)B
z>ydB){<BU#nCuQii)qfJZ^k=|3vCILzBmb*Y-tTxcPO|gu=V?~CopOXZbvpM!-QVc
zwMd?Xr3({%_~AH<7(y3DCzo5TlBhy3TE+RNYQXXiPB!=E=z-A8BwfPK?x&^*Up2uz
z@DC7kS!A^G!swtpFM!uN^#=StIVluy+b&DYC>}*f*34<}oQQm7pz!mr6H4xaEP^)a
zNy$E)NqsrQ(ib6rVVP~=!E>e{G!m>R$q}18wOsu;2!uud+K&`WknEzjLJ{+XEknl&
zj<8YbL9Y~Xqrx9TH<w~+i7cX<U#|AkORVq^nCRyW;jTGPM*s+!YIlpO<6!74IC%9f
zry}*?11O1Y6dEoV9h*(V9Al=7x1Fb)hb<5HrMxmhvEXf;TJ!?h&6^V+F@F?HEL(^W
z7mol=;&ZY-<`U|&9K!g`*O{42xUA!KvG$s}c`irjLg$5ESadqW8AfpRQRL>{wl==p
zJp)4{#HRjPDL}|s06SB?k+E=+Zy)i@+Jm;*1Mf6zuipblwiDgoU(qWw4p-}Rq}Xn@
zgS^DcnLDs<A5RYue)i|0^mk=%8i+5p&n9{>Ux84OI*kYH7p9UT5YY?di<Re;X^#<t
z)eyNqm1VnwdtZ1^{6yf}O59-NtD8!#AgvVVx5!istN`Mq^f<xi-4b?#V0mu!m0@b)
zm&}wErmYIeXQp%JwW*LAEJ5Iu%j=qgwD3!<L+<5B{vh(8B-#amHw}6dkNstm&3{%@
zKrbnf$xGN83R@W&v)dq-8uswz1PW;0Fka(KpM!K(3~6u|HQ@fpuvfI?Inpe`Aha26
z5tr+Ku>flC&0SiSKNLP6#5_286*`qJ#rgPFdG6dZ|J4(rKcW`!_BVdtfXZTpPk?T2
z$xoh(xMm|z$paCkR@B*RHGWQBODNfoU~Nw1soqm(IKzT1O*+3Gxdyldv}S)>dj$Th
zxO|;8@jB}IlhVO`mj+=c8GeH%k5tUzqldj|N%PNIYmW*U9kv*H0YHv#+4s>J)zs?8
zP%RSIJUN-V!008gqos*vwhC!`F23SPd!KTEPRX4o_<50#E4rkt|E@>m&@3YtNICSc
zd4vane`ns|yyVG=q1<F0F-M-jnhn=?)D<Mj6F-pz)5f53+6My=cT9T%K`8o3X|1X$
zi3kAS!ZHiuMd<wK9S0JGQhm8X{6;d5tt<I#*|*ffPC^)UppiL{t9SUII$TkVf0x<|
zzBo=y#2jI8SCc<_zo6w7<%!Zxw9TW|ZD*`NF>-Tle)d=B0o8SydVxF|2;<0v=j07h
zK#rZHI7NtvXa~z&V`0-hOoKYx+9~z1l>vyc;v663bI-x_gqY7w=AM`Zy72l%YB^hL
z?=j^B+XcyVq;S12OM*5&TTASSV`hWMSAfr}=ADsr&et)Oa&6r=zqEin`n+#j2t2m3
zLPneZHkp-dl~p<Y8Ol?g(%{W2fgZGY301HMwIfyl2HD2rFSsrL^<(d&9X8gl<re_x
zn41Rh`L6w=s1pNwfZ2zQIJqy$+nq0bG&1z=(Dg6*d9CzkeEa!0=T%HFEu_$9&qq%Y
zo{+dF+1OA4TpR!EX2x|qnd^DvMeDfjq`;Bg0Lxq&P1a;zobyu}&*`vW=zOiT%1DKm
zI)8WxxaRN05Q#W;UVF><t_`NH0t@)(C^K2NUU!48-&nTu6Tjuf&n_BqrvW3fwuHJf
zwdSNkT&f6fyUq%$TTU({<H^bGq4R)UFp>|T&Nu&(kP5`k8FdwsZuXkG6y3W}v4PPt
ztT{V=@Uzc($P--#$Ywgtxr?(Mh7(XV{~}$>VEmnT_>L264U3}o1TAVe3=P1mIix#S
zTFK-@rGqkH4ssm!o5rhdQu-@wtvWn~M&p7A{R_S>6TTEkq*h9A)MFP7%{ZU~kf}aQ
zo3MU<Fz9S&DN{7PCW}5;QgiV<+bkXzqVh)+t`GKE<M_P_?2DRw0!K(o=F5=l7h5x3
zmtvOi?4=JDGgg@Y_vsB_lmpm(GDTT5Dmqz%$^OVO0Y!Hhn!->E$=z-vhOO|u9Nt2J
zJ^kJ@+>(fS|GZBjg}qmevi^S(E^#%o^XsL)BZR-9MPG3Y{%Z*5`cDvzjfact{|@2*
z0Z#wFAsmd0`+s8<%XD`Vwz#mQoX=>Z$V83@izU_iz%kZk4=I+Y@^!bao%ow!IJg{Z
zk|;Hk$6T=dTD@X><@Q{VWs}~rWH+zOpvH%b#~&W@Zv7*_FnKdcq(3;m>z=KVHuFDy
zrH(5qU#(lE=hCfHd`N_JoMxBJLcn4|q7GQZrarUA8pLq`dPH--3XGYqPM-AbgaPb5
znOl3xfX>#zEmXbS>g-$TDdXA7BhyKot0sd2UFRc)-TV70{}90zgS<u*b~MSE5MZtM
zaTGL!5dvW`kvGyaOq%uR2C32lwGx)|7E-xc=!AgXc0(2RA<D0YEat>4!<Mmj6JrcJ
z@QT9$3ndxA105yL9bt@v3m?PZ_NuGSb#=eA`}UT-2lcTGrF|Hj?W@-UHT@ILz;K0k
z%RlD!umeoNCCA{>Z+fHQcNn!te0AROyWIS!9qJ%}zkKdUTC@k$sqPA3F9OY@lQGX6
z)rhImJ320!nq#VAB~fohX&Lqy*7g)T5>I1h&GkP4Fg%+Nd|1zMUyUDi*yb$Ihc@WM
zk@pQF%FQ*GBPV7ksxqS7nK>4D;v8NsZ6|!W4cQkWYUULy5~8&%XK3TKYrM}R?tlCP
zeR{gPv#ZhuLPMQ@#VXFoy9<-$k4#y($u&71CGu`mtaD$S=QAGe&9z<P;U~Iq|Ah!~
zZmaYL;QLp^20Lix$7I+4t0nOYwebPnpF37QG2PdyMDA<6Ib88e5zDWI<~1Wi+SEhe
zxN?>RSJ*l`Thzr1yGu^UrDm04q4VyTkhhG*HU$F3Mua|Su~zsK{?<p9LI+}*j1mM4
z1~`zRnW9M*Z3)QuXqEW0ODI9$7ODFEB!dtEpaPGe7bD2?lJ*{~@Q*0b>w&-e>1}&s
zE-B`E87KXXmqXQIRY2SZm9MSXVNehS!0pymB&h287z;~d3~_6QUqr5jp=`ma9k+Bw
z6T*HG2gWRv9~+G3zw)rjxGL<^6IFmz3K_S9QZWv+_%Dz`5<?eJ4Mkwf2^AB0<_75k
zUStC+7t#4N8octz>wfb8A~+O@gz4=U2m0~=-^W?#UWINqkndJNI?m|k*0BX;`y)N~
z)mLhzL3osp9LFM6f@%*&PX9zMN#~AuO)&ofnolMQD9&mQ9P~a7FI~K!nFwRs=SIn4
zK>o%3&3`MpJ%G9>)^uxlX4CWCw^<qtK(F)R#qcQgl}6&!qwWT4IDQ8ObA;l>476De
z6jEdZX(M*u$U_d5g}_jxcEmpk+T6mr@Kmh{1J^)`S-{g%AiL{2U8z=pQ_c03c^4u$
z^F+v=4eZXHN+#i9V~}dNeZLQ?+1R>p_}6U`2N~pK>cZOB?fq=kiKE38l`#GQKwzmo
znOkGtW7;(|X24pjKf{i_=vrIiUR!z%l0d}dS$7fCl$cZ6pOR8>J4dq`iEJS%NhhYm
z$RMD71O07@QTUoJVD!JcO)ON`?o1Kld4-opiqhqi6+Sdq8Z`DbG|1qC_oJYePEJ8h
zIp_MO84n}Yqx}grnblMk=_mkU(JYix>`2d399^!ALFlt^JtWJBcDZo|)PqLjzustS
zHBqeA5i7N#WwVR<6DGwYZc@BWggA2gIY8}QGb~a}bABv~M^x48skVyu)k7Jo--U>Z
z)J8>wV|1zJ2&eJOOu<-SaIApf{6I8hG`i-Sz!ygoxf!*`41^r#{uuz+OT*~;I33j!
zN)}4vuyJGS;LjK9A&a73{$;Vo6S^k=9uIaUZ+O`P{Vds6W+0{S%3?xZMZbT*N9z+H
z=2E6mxCj!^zTRuk#C_wh^QYJ;rjDuTR0O(60aeH);L>J@dT;<Sm-aUl+q2*ZpNgJ_
zG+(NVkZH>moAdF@@f9Kfg#{#lB3~j-@1Lg5kg+bjCOBM}Dwm1#Q-~Ct2l(Y`=&Jvu
zuga^7RHzy##~E(cpL{1gu}o%y)~{8KFMkBTuRKRndJ#Luy6GMnRw=LbfBbB#=!mti
z`I&xt4;R$a1tCd4Jxz<TUUj?AXtWFdq~4}sC4WOsM0oxyrap3Qy*yWdv!TkaQT9r-
z@sEw2_JlnR9_atqMs+4&nuzaj9+1}>vj4X=NU8^Xd9Z#ERRF8QK_QmLGp@KHL6W<a
zka1JgnhDHRfu!5ZHn)d(Q<g;ARNhE=TX_@LS$a~zZbX)fQ4v^Sc(h$v<HcW1njD&z
zP`RvLLlC0`fK=hryFKjG)=XS?j3lx$^`ZgmL9Nv5xJvuvJJVc^8|l>nT_Qvnm0DQt
zHrL;eNSM8hEUjLsUG#6zjyV=92r}18j%5e;IfWL*y8emUYH*&F0)rS~SK;Hzj~Ba}
zJG{kE53~rkSgirqPAO&~MdwWSlpDn2Ky4%{iODAgZ2SXFr{lyaCz!%z;jx}pR540m
zNL7c5zQb;rYA?uwRpA6HBpX0pt%$H(p01Ot;3YBrR{zp*8ApR)tGjn#_*6lPN(R+G
z>go<F#)U(H<Di1nNZHh~9cR^DcXDGDJ=<{J5~r<_p5&`16tCEbnsA91v8GMi_;pF0
zS_&r($d@H*&nODAo%B$=NR{=^xVO`xVFGWxZA0iZU^wsM)~<iscyeFr8Sf0G*Kp+b
z5F%=s@ew8|!pVr%8f~uGa4(D{31&o(duPsp_2er^to$jPZ*Mr0Q)iOh23>ZGP+oFi
znb>ygoX1Z@Ok%d3HOFKfO2abnZAApw=DKtRJl_L@m*2a&nak%&PaiU^KktA=+;#u>
z)az!veK<aKaN`eE+h#x3h7GRl#P4FqV4p`1tJQL8Qi1B6+mQ<;qWrwyx2OcGG4P49
z6<QL}AQk2QWi`d<8jC>d0y<FYWA*H9(Y>V?alI>0#`gRKQiiIUm`zRx`_NsighM(2
zF`VuIjKr8FCcG#}7r3Q7UD5L5oBV{W4r3?=1P@GRQj^NRewko2J4awbY8eT`1~s*k
zsz|R;kMqARsN1RxYi5;O9P(GFz+;@;7+Lf0?FCOlVmw)E8d$O7bM;~M>B#+>$?#-S
zL^T<aY~B&~wjvpHZRg+%<P^@ng8p%U_6;F##DL5$banlN>9*&l%Jxs()%8CPIQ50}
z|FZ@0^#3o$-Z{Fmt?3($ZQHhOtCNmx+s2M<Cmq}A*tV^X&5o0fb92u5-uJ=1-x&9w
zz4n-^X04hv7iQJ0s-N@cHt3-0_x7MiH+gJ)Dfu6LCTne{ic=S>a<uHhPW-70T5X|j
zPS&c3lqQl$>1uvaxfoYD`ctV3J&doA;5aia7#;YVu>{fGie+T+$ms2|z26Zc{}3}Y
zjsd9yIGNDNN1S^Je~FONdnTw$XQwfVFIuRth`S18^d@Zz!^ogSX7n1^r(99qzSC?k
z-Xg4rNwplnW%?OCuG|`A*A^Y9v+&uW1&;h&L6}Mv(CUd9LW8p(m_V0z!iM8F_WYhu
zb0ZlK!^WV3?vwIXa(Q3D{43~1)?07s5E!Bv!2Sf}jOFrdn?VQzm-%#xZGu0H5mWfP
z=s?wvN_`%?BcDiB-OJRNlNc<_YNMqcLT(t~Qw7v8D;+xAl4NWc<WNSektCXMbkm;c
z?>#j(_3I;@2U7EL{1yCsE0k$<#mWgRgCMQx+XXBZP9o0u8xSd~O`nKP73cm@331F2
zz~K9!_LdH*3(yEb3U}1`>D@#Wr^WM&(c^mob{Pcv+E&|uH;tlD)h2d=TTjT(ywq6U
zyh2e${}YiPqSQ@mnSU5SNFB9pGN*jiaouZy7dnwFlEgKI;1ZXJV<zql*@YD$e(&5}
z?b4@o({JCLZ$|BQ93XE0xV+lC<=0va1Gpxt>%V=(Jm~5~K<{D$7;%z^CaltP1dWH@
z*L~m{*|>V#3psQ3^vhw{Fn@Rx6k6u*7n)DSu*Udw-5}Oth^D$YQsv+#SnuT4I_sp6
zDxgT4?CSDAS9IB{o`9#2GU!oGapDJs8v8Ew<l3gblZQ~31$G(AmhHyx_L}<=eMP?9
zhfb#<%);T9=prA^1z{&6o*T;9$q|CsZmyxUClU*bJ20GX(li0jseRc#HD9)mn2K#h
zqzj1S&3eB7ku?t_>qWn@_xZ@6sr$z$LI!C2pjV%|4*=4_X#{Gri1g-A<iyAdx$Vlu
z^HKfjnNi57A?aUM!(ZSue*@M2PwFcx6Wjk*W9R&z67Byo8#tN&vKl~&HIgj#*#MY{
zq{C~?8ms>BPF&6m+t1VPNBn;w(7rJP7Jd(ko{zmkD=H*BC)v$S9GbY{jzLZ=i7`@8
z6;R1w#iBND$Y<$yYqn1OkUi^e%VF65CKCCzEmAyTgEE*d4o8oOdi<91`u_Hn^7`f$
zi7`@wuHBaTgf>F3P?;^OciU8!3z*<UgS5zy$GQ+o9Hg^gIHXnRCIT*T1jzdv|CGrY
znBZre9i{S&CRA#OGL7^(^-3SdH*bk>TzudUv_v6F3ptCbyxY|wR8Aet9&&y*a+3{z
zPX5aMCJ<-Hx9S^F-EZ!oca4fPzYOBi>eftn@bM^Wc~iJ)jLUICbQ2zD1}K(1IIcv>
zy+pEX-AXi`^l^!S*wPLeT0AaEdXp+xq8M*OI*Z~}nnvZ;*4SfUMkVMYL9G|7=BO@y
z<LuOlnx>t=m+^MLl)!!Fk`}3zJ-Ir3lD*qgzr$u_B<h>IYyXMs{*bwaiGn(5VZnW8
z)&2DHxM$|+=<Dh=y%QU@513tn(rqe`h@%mP&YPyxJvj4mot$_WCBra?tEZGpyb+wL
zB{aZze8q3o89E?MArAzF#s+m{F3R0uI_){T^BrBEqAC*(d?&k<vlP5kTQ@s!Ac<q8
zz0C5?5s*Wb0*5!2OkTTRIdoT}(hLvcI+08CIHw~3PLoJSIP`2L1lXuMvLBCqf}-!&
zBX?SS??5IkdtnypqNNRt&}57aNA#9hm3=#C;AbU^suXUE6^MfRDLlK+&bV%s%!6WV
z5A_V4`I78vU-ygc{vMOR*@c^-FToe|=NN8dWo5O@Y(+&%7~jM#N3G0GA-;X)W=W{=
zbbQsqfJ8D?HMl*nIzS;fhywa?RQeESKHL%Ne&0QUZ=!TDEy6`DMW!GYt%@WY;4V)+
zD{RJ#ps{l;q2<41ggFkLt1>A9g<9E7CYl8oymGgOX`PF;jyLtdf`w;VaOeqKHzt;}
z{45^|9yh@moMc1Ot`_o&jVj)235pwo4F;9YYz#7hMkRW5nv`yY1+a%ej<t}?iaRs)
zCv8*bkw*Le3YPrL77i30%vI?&3KSCgC$NS|V1}``yb>W4)R;VvUyvIXiBQ}zENGYp
zoY0$2X4nqHzwDxHT-b!BJ73JpJ&_gAGt-fZ=^})k_{xPBZ@}U~jTn9pTwtT9FYhbk
zBL`6c5}wWztY*2C57-3m^EVJ9?@E}#tyFw4ml84T!+af{6|5}n8=~6jmw0(Q8;Q~u
zw+5r+4?_lLI6Zq<I()N=@Kb>Xt{_AZ?CIhHJezf6p-19+a6ucW9$(+4{jg`i?Agp>
z#Ne#8pTWG_)|=Vhn6#JlhYwXdc#fRE%u16iOHQfK%w-C@0z^Gdk|aRfXl0=wK;k5?
zNqR<9C@IP;^o#15m;Gw#@U2WeD1NK8G(2sdBkMJSu$eQxGGceD^!{AgAn85PLvd4t
zN5Nmxsf%MNu95+Mq~&|EsxIQ3O%X=ZzCZGYW+Odngsg1GdL;cdHrz>NLM*CSIFc1N
z8Mcgt{Hxf`4Un7G!0gpUa7e5u!GU}4&2yHEY$hBBqzjCM9iK85FPQyh0whaih>{*N
z&w!!uZDzUncY?i7u;Tl{e;EMpv+7Eo&wqHA)Q3+Oq(zrx$lXaJvoCpV5s)kbc4VHa
z$EnLCW(vEVH`HDsd})Fsn+v#mCAK)ABDreCVY`~<02JR%h1^>=wm8)9FMXtjYS@#v
zmU~a?y;F=}Y>tryT@V=f5)f*3<Ted^=?6T%Yc)nSmQ<2T$aZv4`YLebCx2_q8Rvv9
zoc8JgpFn@q$LeFrOQuP`C-Rk$aEO*Wv$NU_1l8UeAE%}Tig{E%r5Oa4o&W4yjPjQO
z(iS(B0!%!CJQ-I7HRsqPm|K`GI2&>A3H1_vAlZfgsQKlXpqPgR<YF)I9{B9cq-5ba
zXZew656+S(iY78#1`18Z**GRXb?#zp2?b+uneuq!$K)OVTf}UcB7Fuf)D9oPd7AaH
zvCn;49fDAAFl#^^1?M-!ci0{r$!o2n`SjH97k~$zS?-IAc!{9-##zlVe>^9sE8o6}
zu)1t8Cv?Pvhsn=^Y#;t5Go`TO;(9jw-1Xsr+4@Dhg<qR2!C!SFd`ahFBIO}xp+vTF
zRF+WPI+)8KPT%ubm?K=Ob-uD%)FMjQoSm?!tC9MOHrQ=S(Nk>`2)%Xn1P{JNZB?My
z8vtrWXmgQ<H~qE}%+KsTg%gLE?8rbdA>O5fB?`mcB)hV6qz}{XTs7Hkb4XGi%n&^i
zgUP;8nZ}^2Nw+3apt$vy)tgg22Hq-?AHAk}sh1}>0~A}GD*B|{nJfey)5$1Z5=CiB
zh{({?fxWSzQr%)fu>>sUQ`YOeD!5djK~%9h(MP3*QpbTcSqx}<YR{HO8NKHraA4_x
zS*YO4lmY=F^IllztYEXxjaw^`K8wFYijhQcT(*HmVG`V;Y{2;%&tkCHd69hBB3}g_
z7mKih9%EjUKFx5n94(S9lVYmwUbER9&zONp(j!ZNEpC}P`%i`-WWJl*0expoKlYSM
z^Y1jSZ!+0)Reg8!5-dgr#~;cvb}Jw%D9Qy235>?0d!bqWA!88m*na}apY{sYy8uXX
zHm3$4Qest;Bi}Aq;uQ+th%jVkOWmQfx%eM82a3`6=n-L)ui@Q;$>xoUI*HH+--}kA
z4Im{4Kg#^9d4yGrQ)RGtPxl05=_jp32l11~hhJ1aI5uit80O9~G&RWaO&he{!_~$x
zC<fXcHw1W);vpKtAlY*h=#g$HZ`*wK{6PeCeL4dg-WNI$-5EcD#6nRd^NTQH6U=hi
zHai~K6JbF!@%COSw%|EEp$VArz9WsE)qKM0Va|RWl72fdkGu(94xfz|y#8Gi?~YP|
zxkv)4TSg_W<ld+KZp%qy-H$BMs<km}a9fwKRJSPNe?pykCJSa-wG3oZ!UT6oM&1bs
z+RwABF-*g-{pGgOnLd?irC%x{gF+2we8g)VAUiib2{~02LXV@!Sqic~A^;813mPD@
zBC37z(C#BptaW*4N>MUHNh}xQC6T)Cn|8<xwZ<j~b>au}AXtQ0GHMu8*I50B=)M6h
zb3o56jD59fVE$SoRM2g?LCeCO%s~fW8C7Z8a1rFl1UJ(hvOnFQb3qgJ<9P-1*nal*
z;d$u~ENIyiTJiupl~1Xta<*RUT<>z7f5HI7s#(vvaGYqRZ?%@8o0o5amJq=E!9o`K
z{0uDJhmu+`Ry2Me2d%$*=OOB5=MsE2?uF~k+h=_d`A}lRMlYs^9PqU1<2{p<YDon!
z*;L<{wy$~c4T*cLYfnSMRNpR0JF^Y9L~+CYy#Bp+FQtC#j`B#+7yXrfGETFxsO-5y
z?2WP2*wB;mCIA>&h?^}{*@p2sCW`bi3mzzQ=U(=*UK4~x%7(vy*Z%qxg%gGphJNeH
z*{J5FLX;#pUsr4&Q!s$Q8<uA(;V1#*g3>oMC#!4vzAjJw$b!2O72>HZ4ao5O6ccN=
zR@GFG9y>Ce%hC%Jnl>PG_+29^@8d=&uX|F4#(JD0HS|a@dyq@alq9c<5>zs>NNlzJ
z>~zccwZ<iU#L@fL8u$M!aXJ4dUHo63@uV&*+pn7FwALg^ZP0K@<5v0<EPwgWm0$z}
zU>HU1?OaUlT%3tm{_6R6+y7z3lGI~mMalBln)$y;|H1<Q4^pnAUMovV*8gSkZ*2dH
zm-%;ER+hhLlPqk}fms{;Y_~x`*g601&GFYl{J*aBcQVbt_vT>!ix!vTFVKPiqWwDv
zM+qh=#tS!T#!8El<F7=V|EBqCkKjM}asR~+gY&Ndp8uld{L;AtJ0{CNVzK;lMV5b<
zehnhifr^s-ALVfTGj5K5)WY%4h;@m+l;CRTLd49LH08hx!o`*(V2ul*#LNl9%$fAl
zQ5g5{S@_E?`LaCzY5q$HMkP)d&Ln*&Ox(X!|9?53;6#u6x4QrD=aU$m;K}~J+W)fs
z=MOV04D;VN0HYEsI}9s(Ql2vjF5ADELH}=Iu#$S5;K2V^^dvlIc!d9C{l$bd$-x=!
zznlLOl>Og!X8xP^*ZHLIez<?>g&h2Ug+lpzn*U>jUy8%|7XkC%bNn9!|9{5%_iX=v
z_e%Op9%(OhA_-ARWzlc6UsLF0Y3jr%@%5O9nK~OgSvt7bI}tH+B_VjcCS7}jCG~iM
zCuMqmfsuRu1o^6psNje9*WubzGYQ2N4MIgiTt!p9fzI^}7?PcdiHMnrDap|v6@-iF
zZ_2NOfxA8wC*#*MXXtE^)a%ZWMCd}A1m}U5r03Gu@ZjYR4DvNYvR(`zT+IJ;VgBkO
z@)g>S+hFUn0}R5&@=r6%SF>otPrpTAV6G%#cl@tkeRr{>V}INvY)81Hj46DGf5w!=
zTuuYbnWR%L1j_uCnU+(ombANtkpxw-jl%i&ZSnP5_@B24Ytl><8-SgIolQW%*~Q7!
z&=$rcD_av<MR}!N0NH7}P6={PSm=jF6OC(sepw@p>36*JWa%<3utt^&q$6x#LsrUQ
zPZe5_NOW^HMLO~G??SZ=)xVa#vd67oUvg`vetYvmQ`A-dscG5LV!$NxehRz#?Ec*T
z0?jr|79ujhCn@G_0S8>EeDXyRGVV~q?Qb*7^xD1U0wz&zjZkT}#r)-><0Bjwz-~~L
zw~XOjVgjG$lIw(i&JOi>wXbLqR${Z7@rc>QZMWH;o6n&hYtHC0IXb@$=G#;7KuFrI
z<1jnYJQGuJ(K&g0IEXc#H(yW9mqjonASa-1u6)zM?Nr6V_zAe1Qh1>J_`J-cvKkse
z?tV--$8Ub+=J~Bd&_wb}vz>*4!@zapi2Wvj0b01G&rW-z#jn|Iy&Y-hd+pEbkSL6G
z`RD6Ga<>LE`%L3(E_c0KpT0mu8w#aGvhf%#xo;&K)Y?`shr+&6U6S95mlYSN6s&j-
z#WfYT7GIMQ4`l&s%B<xN$)M~}w}p7+YsrF#VpI94%FBx|Rt$%7)kR0jm1W?IR%f7A
z@TQ_|-)oY&O@%d;_Nj^41H8gel&_RX%N3LH*)wrOeMK^qNUTWNQ-6s$CS$Y5qI{nw
zb5CX_FBXdDjmAFWyJ(#ADJ+!etZQ+sbtwOt{aDgtuEqpdSp~OYS?ApFdKzoF*g7NJ
z<tuO*%%#Yu5bWfCuw7g4iPPb(w@bEASu7Kjpp5?Tjb2CxR+d~~Nhqe0cCo6uT2+cY
zbZUb&6E{;I){MR*_%rU4{A}aQd1rEGj&X_M6eUQ<snv~j#nNrqpAKD&I{t)7`iv<B
zjUmI8hjtB+HGnT2#OOzNk<*ee3M45M23d9yZR;%I`NohEJnO;Fh`A@Em6@6m|Gnnp
zSNQN_5OBZL@7UXDFX+kHD~F<)zz`&s6uj6XKnSP^c6HY^Z?PpJl&{M7d>l$ID8f5f
zZf&hhd3jZRn)c1;*Toi#ShAM%1$daL1m;Ac(E>)m)`qq#a#LY@)$kL4-Qk=CZ`1-Q
z_PZCbuD(E{0EpXydzRNxxHzKj+_J}&Yt=A_fDpBRm_srsWH?5uwOoyKk~H~hcq@y^
z2r-VraODk}2EEOahLGBz)HPFA!yy~jo<%1_DQps)2$MV^h&_&30ORCvcmD$f0d|!X
zL8LUG48<q8gh>QEOy!h}uBQ)*{MbA`lHet`<%K|Z%g0Q*L2R&6>ybdf_<6H_VqvgV
z$NmmmE5w)UI^bFE>KTX;F>We~+ykX%p9rmliNB1!k~|0feVJeZseNjGz<U6Oxs6{D
zT96ieMdezMhV&`XeedTX8ZBLaAs`#V%-|6)LCX}Ps0{H_D)DgQ-D}3~B^ohJKHJLs
zb*RDHT~E3Z_**5W5bK&Bp$ym0FegJ$U3En@-E5jTRY+CH3=ABFL17ORFz7#@zN@$v
z4*iEBosKw#?%f)Q0hW!!CIXt&Cu-O?yFT14yWx@pRtM2K?l#xkjl})XZS~D?IY1=<
z4>YM7onPK(RUV(+w^l0CY9(pprY2X@lW5*;Pggnt8j~7bU~2OdK<`hKNPO*w$BJ|e
z;Yp?{q|FjFMCypfI4t8RC@k|vOLhH~$=5X~Udh_YCF};mOmB%~=hU4FOngf~1A<xD
zlQ)Ip3J(k(b1{+mSy4HY0TwTdziRLSoJg=Gj5+;K5u+$_W_*3df{$@d59m>E2B*T8
zOZ1fIo)dWHojp~bBUkpipQU1mdTQXm2fa-otiyd_ntYj!zN+%GI;8zU(;E(24UI@B
zT`J2)3PK*m@-cVFc0e!W-A{qBE05NrZi50%{+-uHccsoW9X4iznFN_c8N|#1m@vLU
z@D0thTrvO}f%H%JRC{r-W9BfzPv00LoNQ(=_=GW&U2;~%ikKy$0}T|JAmULoR>5YD
zT+k*6riZpb)Wl8avvdG29C<MC7p4#Q+Z6=H)w*gy?#_FFeM$Z?HuPgOri+M_yU%`s
zxg0wp;_wtcQE$Wio1d)0JceN|Ae5p)X#z^*H*q+IW)DzB_07|hm&%ViN}1+LCiU1=
znvjBaI#~jB^0h6plrUn#`?1((S-5vJi}&DNu#ej8=!DYB&9YBiO2*F914^&to>Q`-
z6KN1_3*k>q{<rcCH3brH;72_yN-fZ<0c{=EOcH75fa;?ItB0<F=AVqy0CGJ%M0;QN
zT|4iK{8<QTseOzP*|E3!3m;4IPLgUE)q2TkcKselw^uWeXAez@C8UEMLow9wxrnjT
zQ|Y#YBHwimHIJBFtK(xlC0sWmy?MOt&U3<!_WG|%NV30vDA9{ES8Zojb3|n$65tjj
z70XzBPoq>oj^+>sqU5|D0%%V_L`F+MYZx&9Zez7cV=Nz(=5RO6I^YRv7wGZm+`rD>
zU(!86KHF5f$R&JjCpae;WP#5xy@AF)W!~GIEWxNfV>dZBv55|O;*S6gIu0;^S=H-O
zS@1I*O_wASMU}SWgU0LC(4SiM;4W+^!lXSh)vpD3z62IDEBmz81KL4U>ryNu4=%Dg
ztKb~tT|5gYjnwS~9JD~3pbT-)MHe3+khatU0zEE-zWa;5!;@JSY<&s|<ZTJb%iV9R
zM)>{&@!^5@m=n|g!qWy0EwFGX5DY%sVa}uPuu4IM8i@#eIyC$9ut*&lwG$&PE>?Qp
zIbAAFx#Hz1R)cdz2-uMK;T24oOIXF$ky_Wg{!pWH>WuE*Sa4ky;uE9<?wXi@UWKpf
z%5TA-g9QCq44i3?MbxWQ=xJpPe!U21<7vEW7-VdA=GhoVakfM$SA63=OZj$th3P9i
zAQ?0)vYGLw)c|=gN&~;UTr^R@4s-AI0PV#t&<r&na(Qo*1?WbJg;wYy7Hbbty>~xY
ztUZzZ`O3USzbK&rO-L2N@&l#mf{eKti}Kgl3@a{ExML#W=qYaOu^CvcOvD`;rTNvk
zSh-C-Np(RhQ%{-5o9S<6O<JQ@o&io79jum$>=0b&z$uK@sibh0RJ|L&t@S03OBCvk
z+GzE*XE8>}DuA<)thu}X$P6V<1M4~*n?Z1>L$h;B?K_&^<UYh>%adX)vp^$g6@uFI
zsXvkfYi*IM{}Ac@!-~wl3?5~0tKJuadGUQuzOF{a%&yZ5`!>vuWcYyrfd+IG9EpG&
zq13!o%rF}Va3-5lD6I<@U4bD%bN|GRWWQXH#P}B`ApjFTsSkuA;bU>cAf(N2h~dRG
zw0prss&+a@EE_;^Mt8eJ8-AS8r&BQF*RB9zH(#*8kc~<5GBQx64$1^EtkE@CNM5in
zKT2;?$O|hQha{|L#%_E%kBu@nmLV(s>3klWPf<(uEJeY7Gnm(@eBbB8f@M&RNYMk#
zG54Tl2_Vv8Lse(~^%yuqEXkhcKzq$A!uN~lW$fjkrZ7Kz200bm#5Mh+K$$Hk#QPfW
z1et)-pQBJ;QMkwMH9UPoHHy3^<hZpL;|j+eWZ1pREKx1cTL5xcze8)qPu?l7yCQW|
zTs)J6oRyc8RJ7AC$hr~KXuIhg_vyF9=M`cNIG~m>0c~)crP76szJ3`>pJI+&H_GGN
z5N-mIFKjcO#(?bZPU!@;FU$6dy5b-%8F$7o>$Nc-ECFok38)AZbD*Db3qsZ#1$&+z
z)B_fIR%;rQb7MRC(~65$X>WFX|Bk$m<P-JGyIheta;>70piW<}W-F-=s`4gHnd-_L
zHlSN0h^otFpZ<QBpanw`rAu+46uC3bj~!j&QQzwQ3@jh416blXlQ713mluS*;}k{l
z2hO)E#*X*B=j!#DK_03um4NmZdY1jesb~VZtMjG;_t~6bbC2>_rW^AQQLzh4E>^0g
z7f{$_rhsb`)F%g)lH`E8g&ad!n~yEJHvk6*WS=*YCom~b&-ZhEHF-O=5-z3<;j>VR
zLh`hv+y<HbOvsg)&)}Rq+?=K6sv3O3;=O7%)InDS1@g$rUBnwBBqLUjG_+dg400Po
zVh#vrIz<H(A;CU0KS*t@eM6I`1a`Qf8-tr*wn~t(^T~u=6(A+2GvKZCAa;n9CO}D)
zfNST&`M^{MYsXNrr+67q-BM(IMWmdkQ$AUvi>EY^(J`0znlvA#b&AFm8=}KD9w_>6
z_V45!#4^s`MJh0u!`Q%Z2Lh<!FBCX)-xrP`Fr*xod&oyQwK>9>LsilzH@XiRyq275
zLlS!?5y8H>H{v*@=>vZb*`7VFNdis?5OcXvlRk5&f_G8A%4W>A%_!&?)cI38{n6;4
z$Q`PB`FIkWih+Bldc6tS{6c}E?mWbnU@I4%s8xdA?NGQbpx;>VV-e%x(bDFPC*FH`
zASA0bcL1@7NlUR}`~*4f+vtJYX}<(_I+;OSTuedZyn61ufOP>|svNoIVgZCoCNlHQ
z8kl(-uQ0sy-R5N2{V?u&Z(^c+M>)-8gTPx1=2pNz`jLx&_YTZx&@+FvDbEPra2?x(
zAD5{>J7@ZsKLyWnhw-*826G!dcEB5R+Huh_?HjR8hhO6dmQS7hSiJ&g@4i&^Q-e_h
ztijhKwl4#KbKr_Vk28AMvkS=j`SZ$kedsu;*;)fL>k@~OXRPBIUS}sCe(79_fqEVN
zj$;XuAUd^C3bFLD__1`!{I~S4G!6V%k+s9=?&Z5|dHr#W<0bQPROHGd0_ZU|#flX$
z)v<7S2!eMdFH^qgkM7T6nlrH-0%;B1A{*%t>oo*T6;~D2alOS!zfFMe?bg)g)OqC4
zbDfhetzhq>we-`&walXU{tKgThSiFvwUSy;s@zsZ%#X#GdySy2tis%b$3MpchMt%k
zeJ71tY(U)KE1dOZHHz@-)%x%fN4;epOt{R+QA?$2Y7$b|BMhH*)cCRztoW_a^uf>j
z{7)gK9P<U*Ax!OmRbv1gT)me2U@lLDe-3c~Jk91#4S`}f{W-BiC7=~>iXs=hm1XKB
zR20dA1xwGEX}l_IK_TD-u(7=KSM$;MR^}am=kCq4)HQ-bU02VC+)og*)cp+heI639
zF7I*Tn^Hb*-%ZfXx^offehT^^P9n`6pS_&qa(BirJECF1AAJBIpDbTD1XD`L4K6B!
zzhLFg%o|&vA_dtz0#9s*eUTea@?Y>+K9|c0hex@W*fS}^UlWK5*Jto8c*0jx-}7^&
zuQ~tRlc486*SD3!*V(=fv`9OA@(=GQ+9LWozH6>b?LvP9?3JPB!vlw-^TUZDM;P{5
zagSCWFCj+CzZn7$7_lZNrp70PxiN~sYpUp|%juB^M7mX0Ik_H1`KdB@^V&b9l|<$=
z!%3IK%0U*df_^}Q=v^N<guJ#_AEKR^<<hmY`@R&IE)!Jab|WB1`8guMKWZ6UKAa3}
zf4<IjrRhVuR@)#)=}m^9ToP^y(CRL~tgqMp?sO@B)yV~j-NV{3`#H?5&&`=`CdTP7
z-2c(LXs4gsIx7w4NQ`x)u@JN#gd9-N@#7g6;vQw6qbKRzHawN!MT<*>S%_MQa=vXq
z`jM5Binp2L@HoEIRXQze=ePNR1UwPg1s^>~T1sEn7f9`HlcW3lWAB&YO%1M&i-DGi
zlF@4O&T2KlB>KM7<?iEI_MKDVRpD1Hb6yUhR1YYdDH9e79udY0o|i&#c0@}%77v;q
ziAXwV!QRg=PxOv^jT@6Mzvlxvy~6fW8l0_f!H=XjYF<}2fgh$~eIBKSaaZW&aM50g
z#u-OBQ;DVkO4+*=lFmtIb2)*2x>}g3gR8?r-7pmp3NRx7f?`LFkyB)3FnScrjp9$7
zFftC3gf%u3axBK(6sO$#C5l6O?lyWsyNO;m<ao#&xhT;X#_#^|v~+owkWaqX-#V{b
z+jc_xaF7$9m5|V>jW^dSN}w{CvnUvgr2iyM1`)s%<va-P$&E8Ps7k)1J|=@RK4bt6
z-#-NS{(1#62MWpUM=k#q!I-EXO=lvdrlX?u-9qnsvVL%6JYNS}HCPXryR!%QWn|)>
z5?PCoxTknW)Gf?ZgK5T42HDzLn`Xxn5QO?+99XZbLmVkyVRgE&yQ?^bg-M$G$dwb%
z<D6e%wQBv^1Kp(JErm?qOhp(C);A~<2Dv>zED}h<QtDM=DTYj5j_27bCvF4BD%1?x
z{xh6YnKSo=_v*39BKhD}+ooH5<1cB=wKndxM0`bJOTSUVki`owJU_lVSl^*QcF>YE
zKM$Y7d&<hefXRbR1Un02>+St#A>tXvGPGQF`N=7X)9?p4JAT)Xjkyn>CfzSA`SB2d
z5$Hf^x1q=Uw(xgC!^y;VM5c+;(AYj}`-@}LPo|^DiCft3%-RVRQu3QA*^RQ%SD)6J
z@)Toc&EhhiTBe?sj;iGv$}VpLN{-1ApU*B&A(Qd4{v<&p4Z-&zcY|thIRHrIULapc
zs&vNTIKREw;$O5=l(<^j*0BW$i<z?kq+gwNZs<;im`tPWex`%N>9g^{L}*g|=nFWG
zEFU!OWzuCwwwW_K->r3xWfhh4tH73is#==f5a7P)4tYQaHA@#0x7D>_XHWr?kF%aT
zuRGxuTj0ueJM$lI>&j|PWKJfYh&XCE>VR6A23(v<*+yDe*imf<@if|#f~?j8mW4hL
z5xm=nOifMmzqY`vJcTud{SvT-@sJTpjAcQ8cjV`KhUSPTcLolw#p1E*jb#hEo=(_b
z1yH9iawZK5ekDRxL`fC_esZ~)%Wy>+D?^v6jmlI;4YF_Q<97wF0(A5`&K91s8;)f#
zd>bdn#@I<0HZoe;Yik=E*r)md0#0w;Xb2(0(gRKf?&fCsU>wp3dh5OwcLf^1*ZPJ_
zngd^a+TfP*&fqj{grx!+p_|IPx?A%XNCoKmsfAOQ8nrhPl_|-qqj>@Y4(Fzrk(tXC
zzaWOQ4V1Tp?>^RHtFIw3lTvfasPm57S~lbH&ke440NM7xi2;rh(r$eKhQX4e;$kwj
zqQ((fm4s5|<nWM|900F_=>T~tM#RZiY;sU3qsGVe9H(-pFX{m3(A>=!G*!wsV&V7{
zv{baHb>7(J`*<Rq)g25RLJVZe2${$!1Q8rCFzUF3R*C^*2JpiJGO0q5q6nqraHl(8
zp5<(*#E`t1+1R2PkYYtZ#u$~Zb6ICmnH+_HqaMS0RK;Rkzhhb#uJZbKT%PaiepNO3
zjd){AqK>!UWhdfcu|Uj1CtK1T*|2QQaXzFYEjjR9rpy+&3>~Uwe+2N$AcQUaMDE5^
zo72*5uL@oRQ&m>^E}?WZk-JOuZTrtoVQYdsoopoyH3L;SQm(}Xfa+Z6;++BUhh?SO
zq|Whz$A*3)@q!o!H$6RfIm>ChN&y`A504x%x5a%zVX*so$Sc2gde&)sDX8^DEvdnS
zs+TL+pD-1zoh)RMLuIAyrOz7259^fn1zIX8+Nrv!y2<K+tK%%<;tQ!bJ*u?scGrok
z)oWHk*A5tfH>9{=g#^KEPpClsRKBdXdHz+;%GSjk>$C5RDrzkRF9kLDb?O~D7dBlw
zc)#Cx0qZp!1|~-ApTg|vDOa_5s`k{9cxgY<@zOFnzbSsglK&w&ND7bO`5(vlXaoZ=
zuwBx1<P-|$-#aY-=6q)Raz3*I*qHvq_w3=R@#TB|h$Z&6*Zu;wqbQ4LYSOAUZnA2M
z<tiizl7oq4nQ?}Kmi7lrOaYVXM<X)KF-IG$L*PPelDE(<&yKa_FD+j9<>GjGr;Y1v
z2l%sfw;^~53izq%UAz0fb@jew?+6v<2o^Swv4c&3p9N^0<>z>DfP3Z3&6qYci#9fM
zY9SgRtVc$VL;gn83&xPX^PSsxSs_;L0?p%{J)I@PVaGx3@|Gdz`0(<5IuQKIE;dG1
z777twHnYiQZ2qtzaNg{ln`MHWi<ytjY<c}DE_tVHwe@5ty@-EzPIxS$VR$+FkN__e
z&y{QU^AoVG-|)VDL<!aJYaBgOqOm>Y=*MuQjnYhEC;Ka>lhoAwY*#mtXr+;~qge6}
z*cH4ZEW9(~pYZGG`^d;gy*8`IAB0uU4ws$oZx2@lI%T?Otsc@ZO4&9UZ~W7@=vOl&
z;cJ6>M(j5fyAnP^o#Gdy%Sg^p?t8ZVLFuv{D0cuT#yxx^LFU|R3JfHHL5e-y{<Kv&
zI<hw?Oe5r71sh@vRP6}zK@KD8y6jcqPRR?hRMd`e^kCW>fw~{7qE#ed!SOpN2!k$0
z5X2-FMtnCgb*bSL6e#E6(qeQsICTN(a&p87NU_1GTvA-fz=P*vM17PcC<{;sy8)z8
zf{1{xvhhYE+%d3t?r|L<-fICaQf^P7$0NML-NGEoSBf%cn7`6E768%i*q;aJYn7eq
zu=@BJJ1m9<dy^5v5i69oxr=YVo>mrXeYw|+$F-Hm@k+UedANB_vmx{mJ$>V^278!X
z|136^_k4Rb(AsY_4|EOua-#L2=4+hLyp02%znOC$7fwe^n;mN%D=(PKDWq=+yieZ$
zU^SbO`Z1Q#=2>EN6iy|F1|5?mA>xn!f@i$-(^=wi{Rvn?)o>Nm#J~<lN!rClr4F{M
zTI$aV4EgMg#B(VICkC$Uo$TPd10SN+m@#bRzTAxv0~qvt)jN+C$kd_*1l@rs42KW^
zhy9v@xvh8ln$bZ3KafFmBeI-nQsxC`K~@M7e!WbYvLaF&*tea+Dhvx;`B!$NOOK8g
zM4T3NkB@2HB^&%g*%b(*9Um6?X4AL(;BgKQ+5VI*mi%NEZ2A`xAx;ewKck{j7rSw|
zZ5^)*G1C2OM;*zdJH?V<zFPVT2x%ceiA)rNI3F1bUU%oQ=APqsaxk~bHr4Gs%+*<N
zXjj%2kw<s3P`pMR|5TD%Q+o?1AE)cFLymEJ1uKZ9UaRWg7h$#io`F|$RUEmuQbeeM
zjV`LK43Jc=Fc|)<99DpUs_R*x+u#R~CyouzySlC?i5!RdQKQ*0xOIGDdn_wJsG$EM
zTj}v3>B5s}CP|7PDF2znDTfJ_+VP%rcM(Ki*Z6dEEXFIe1I)d&HwkXx`F^B(YBp^-
zT~&EewqHecy&Il;D1t2HECjL@c|PGw<|oK~C9g^2!kw)2gK$T7fcp3xsdR#+uqH3i
zZ_1X&aKkvzWTlsi&Oj&MT)iE@J?a6D{R^ElgtadM<Ln%lRt1EaCTQsmuEq;ICe9bc
z7@O@W2$=|L&P+(`>`j<{J{AlHAWRR_eDF4mfl-JR8T+U2z+8N04w~ad+kM9l>dWhg
z^&hcMY$y-&bl$x_2vRkXoP`wg0I|Gr#WItVZ^<M=cLss=a=HkS!M$n#D?8?c0Fm!S
zrM6|NBH8n);{Y-HUdvHse-6d=KP;?i2L?V2>t&{)(IlHh@PCvY2;|ycRCSlun4=GU
zCujKa<OD9E`aJGf4OtjNR7#6zm4qqcu}z=-4!e&)4cIl%o7SBtE_a52VhZPosl-_G
z1P|U<KiAL|wT39te$Q0`{AbZURuNr2b7Eg0gdlM)J-%xD9?!QW7xEXRN?BLgQbu7#
zhR#)Bn9ZY)go!deud$UT`k+mPWx_ZG=_!_V2oDq|Cy^BtYPtIG_&jKz03G*^X?N#b
zA*Y{UQxOy`LewVzgi|PI%C0|wy*@qVNILWPV2cKMO`+jr|Lp<-U@*#j{)Wl>LYSo&
zHyoAaGt1Qj{{ykroh^cb8OeoNp@VCZayEpJpOy~+nVXG<3>))^Gsm?tQ%3yU)79iz
z0Y4_5Wu7SqZ<F~2S7BJE*eVY;4qln^PMq>M%`h|=&u&d+Rayk+?U&c@y{U<8{UFSp
zAL%0mn9aV?T=*6gfIP*fV4p<W>6fJXA83*AI5_RBoKI6BNBjC)Qiy`&UKg%5;6h+R
zwP4k6JN^oj0z*zhgo*|r^>7{Ia+W)bd_kw8I$YyEqljfu&3JvNyxmc)76_S6)@$yd
zm}l}25y&~)r1ZYB2=pQ2O5>GW>qWndGp?wLb6TMJ4}%7?0C1{iPFlevFk%6%{VLif
z%H!}3KSFDLTt1_$r;vGvcj^XcNAilJ?&1s??(pB@31we;kmLQg7Uvufen?~!xGW&`
ziZ8}Diz(J;)`ZrRDcuC<)G5gpiZcZ)avmPC1L4Szv|9ZBsvGS>p8>ml5W^ug`kJ{1
zH(-VV{rd>+8DJ(SUy_swmTNetZF<ayvv;HrvZm(LLENR{oe?^wGI7HS4~`L2A!U++
zZY=|(YfNu%@vSb5F!tNlSD|R!VrCDruyOu*CVZK?ess|G<wOE12??3=YPAj;=0kxO
zMoF3AQ=d*#nKm^V{g@U$bDIeX<Di^S){iuL`+S$HN<i{CJ6Eoj?V?v<r;2-SD6<2?
zLtBlU-W#x<R9S`6Y6kjJta)wUl6$Ek$yPwiGq(eUg0xjVTborL1Wgc&;8<32F4RfW
z<<<{=tyrI3MuKn)1$qTA#s1z=jofNO-2v$Wm&T%CHuNLx>xe9$NTIss%;M(uZiW$o
z_nU`+4uCm|_8+%!WJl6w9W~Iikde&uS4MVmx@xmxv8{o(tpUpbGS+i&_d(2$X~`qD
z+q&T_Qw@c}Kjoucjz4C{+v0=0yRDy^uNuq#+&{eV?vQYip2FBhQb*NpimE4RG9{<U
zRVXj8DEY$_;V#GlFM}QdP4WZiB%J5+-Oo66TmY!szg|eNVnOvmxZ1i(vqJ-tcdZm}
ziut@yY}B%iDH<Ivjm|PN-rrh?zhPL#;LLTW%<VEOnKoyJkg3<QTb;(udODdd<WH1#
zSWP!YvP35CFR&&BFo~%Fbm2Mx1$xU{%Dz7brk{PW^ze>;mGqn8w&e>cR&_`Y5P2Yb
z?gOw)X#`D-7i|hZ@C-Mo-rxKCg;6oa%%IuJ7*tL<=Pd-=!<VkNqoc*WY%n-pA+RKQ
zkCTX7U7?hZ;q*mcu<NJVli1#X>64UJoT5~F(<ESE2CWX9Om&=+NpNN*N!Meec2Vz}
zvv?xdHLny3eXM>{=e}ldnm#-fZ0T*$&;S&?hqn}6npL<YKA8_oL)Rh!!xA+dqq0qi
ztJ$~&sc3@id+*r^-}T>ApO<NqX`R>J$9_+0@rFf=?2yz&+l)0;_=A--R^To1snDf^
z(x1(5C>bCJMv^FZBs7x{VlNf5m%nTWqJEF-&Eqh`ZMarwRx}<RTfh+pW=hfE-36Rq
z2jtzz2b7PEqG)doy+Ll}!A=t<(tqPexn*^o!_ty00}_|%)UmCZ!YKc>FtG=WpO%H@
z{-kjaL{_sEq&x^05ocKEqt@FVBgp9kX|EyCWQu79N*!O0n&K#{7-&E)m-q+@Bomxh
zG3qiO+=5G0$m1M|{`mgvBr6i&0u8vuoD3@F4*4bWoeC^P{OFPIZP^W5wVJ)M!e__j
zzAKMwJWCPiHlVGwm0%^#rmscH5}w0CPRIh}IkldED)19Y1&{M+{RU-`Z1|h&n6E$b
zBA1>I%&~7MYTBA}6k`f48;cO7Y1(5%J}3CJC5|ck7=D<Io&Q%T-VFO#sun<5*|K(g
z;qY9}s9M|{f}*{<xZ>EwH#*G%F$CjMdV&uvD~kpZ5}7MZ_Z6h}5x<hpUG+evUa*Jc
zVfCKlyXMALNZ71V)$|;WX(Wj-L0SsP$<NhhJx7A#p7|B<5yIDr;=VC15ZOA|_C)LH
zzF{J6>R$_xw!*Yv*G$C#jZr|Ljc9iIL?%gy;esp!t-hI9M~qflE!8}K-mYFn&27tC
z(7C`b7?cp9)cn{vOMjGT?s{O{!|F6l2G4+lSt|d_+27MsEO*&H`S5k$>pt%JX(2fj
zLLjS6(4^?2&O~cP3Hy|}`qZ{9Y}uizEi$65<}oS)@TkznpcQeNNaz8i?3EfsmD6-{
zN79)M6Aqirsc3Acju)|`bSkJ+6BYv3_+GO9QjI)3QYrWew8?$kYBUlV`bIQV)YWK$
z0kytSW{2hQIPo#ICT{Y<ZgisB>FTx40tA8O`i{H(35d@)qVaqT3xc9pNkg)wF!vG$
z5H4}#cRxKEqa$%5pWpy6p}Sm96j_}g&l~)&{XWX#ulVf>Zdul4s?s##^opwMy=FL$
z@9x!)2xS$xl@Xhhac<3Cy-9Sh>z}s7)}``&-#Wo=doM(9!gEFKDOa%TquUWOBTC@@
z$jT5L$E@Y16CcsY`)hC*m+nW?Psq*8l{+^K-6@h57zDJll_mp<-9nZYt$VM*#>(5X
zoQgGJq>E6|MowLyD<HP(k%&M~rM-(3>x0oE@G31R80aiZ8arKtC}qf?k*A=$++P@b
zxiJS<5xTVJl~gp0(dt!tMy_$Vn}T%AICT2|Y@=kJAe;=<<cgf7!MY2cQz?RDM#3ge
zF{97Z5LHz+s_FwaoScet6|5}cS2>y7a5Y3pKa#}by$edK+C)|KZLKZZ<rH3w_j17w
z@0rn8dq4X34ipNW6hURo;rI?Hi3Mk<m2iIgO_es<n@FiQWT_a)AC1v82`)_Pz#PTo
z9Hb=9_HP`<yu>2A|IR&hbJmk6cas~3{}U;Dd2CF!DTE5x-xxI93R`%#^t6OMj0A5J
zAtNzFzeAXb^eb|jqwR#5f0HhM$P5T2L0Oa7?h~*hku}mu&BEn+m@%M9bsYi{6fK3|
z=K9SN^)fUGZ$pDn6h`a*lVG801`<QaT}wsSs4*DEE`ru*3bP67k3_@VIby2l<q*T`
z7{?6*4I?ICntwzTw&q&cty!cvxn#J~2&ilRT$u}-C(G~p<gFa^b%-l1<xviUP7<T)
z&r1onv_z+7D;mnJ^0$b^Cy1Ete2M4i;IL)cQN8b(OV0iToA36DKZNUyLL6z$E2Q@s
z$qyCe=r}6k4CP>pc(^7z9MHD`@A>Jvz4&-m(QV0q<&@2WE{TCkljU!!#v-yVBYiUV
zJFo~v;9-PNk<P%CmSpWMAWGYUop2HRB==a|6O3LP%bw^u;Ouqe6C+}sLC<jr^0>{I
z=R{*6pLm)>k^~kI9N@sP+8DX+n24=@zW1~jz`nb18$jT1q(>RYrgi5dw7eKVJd62+
z_oc1?v7A5FdQh{Kz2EBChj>|qGvkxdFfihq3Gu*y(etMS-jM}?N5Kc+8Dn#cI=mIs
zb%E|>E4ezr3G8;>qQ4EXb42M4)a=z)mseJZp(_*9L@}zR80TszDsCccw5%-gG7#zE
z5yqoeXp7dyzTs_BG~ueqU^d$_)G1ZQjFVgg;zL_@$<B(Et1be}dAJ1;23(f6jLUuF
zO~)2Lsf*V#&KvYuoah<ms**2@&KeKfd9J~HR93Z}i;MSZTESx{I`(kl?&<9{!poIn
zzoo+VY?)MqE!5(BSa<(mEKoZ15>2#_LtyATZ(=Io?Fm?Lz$`&r=5)w_lIXqClPm@T
zv@tIw+h7c04j=8;w_6lW7_GGLtRwF|4JNCEuzVHcPOMVf1Ig4W;>&4Y;}rl2o_&P`
z1$aEQUOsUvsylnao`9?%;H{^JJ%NKTiWYz;1AAM0ceRnOl(75D&l=m-*xUYW4r0wy
zRQ_6TDL$65_Rzo9z0l?LSWZE0wtP?l_UN7MFDjcgyyYYAcAY;CLmxkmcr0BqMlsaT
zfMRC}>I@;>AvfQI@9X*G_-EP#!T#(_%Cy{e(cvUrqT;+L_dsOp|90bYyb?z46tj#r
zj0~omaWTZBo%i$teZ+UE<vx%1U_+6upqSvtg`^sn`8_d1GrxDWw0QGTa!Vit$gP3j
zB$4n-UM5#Qt?6S7QM}L%$i}`rfI}RB!)r=t<M8{*+{9D@58ej?>{7uGfOvzyH**>0
zgdo(`Y=M$2RumB!rFom_HLKt#b2RudY-PfHe&Jgl1(6<6bGrlMw3zETY){4Vr<WQu
z4CAE)4<RKSVK}TD(?T;YYJ~s`;O4{k_A$#=8s{ilR-edw+dzLo7C+8hFqFfGy_{eq
zTGx#PWj*{06}xydz5G|IEUzyxzC`Nveqy4LaYZ6-W<>=KZc>Gj!||VlPSUmMJmX!r
z5rrJ#XN85VEmJ;+lHz!I)<oxIm{S+@_#^45MrCVDsc>$i7egefnDDO>VlupNoqd@C
zh$lO4S0`<xO?|1+Z)ovCSJ(WlmZz7n4vDo?5jG-*oiy`fOC^j9P4bK&huqCJd`VU3
z8ft%BqyP^GX*2xxM1A}>7qVfmz2GnXH`CUXv9coT;!_F5H>P&2qWzMR%(k<x7f%3O
z-Vf)KA-n_Y=nm8%Rz8hqz~qWHyxQaH5(ahbZ)-G-+#h*zs+9+tPC9)m6qcr1O&ftx
zYD$@G-1WStBKiuJwq31-#b*c}BE0Vhto0w;0YU33M?;PXY=(jd#{0F?6I8=%qv<os
ztwEK^YQzY-q7}P5TPLbYG0QhrqgJEkbYaN>0)m;cXKE%DYV}H9fIS7-hSBL~pK$9;
z7}hG2ijSYjuSN32F2y@^jhqU`i&)MfW+{sBY%XRcTEvN?2GJ>SY!Yh-x#F<9e!|B5
zSs?gl6LuDL@7!di?XKe7M4%>SW}~dLa%|GQRRvCPlIYACmn?>C6VE7J;xl@B8Z2)^
zh1AJ*0K1wfCpn#00M_vIvnkd`Lmcnk5C%j>Fy5kuGQ9m<StiK(V&D7;*Qc%`u0QN`
zWdv`=a^fa*&BFDE2In31`jm@Q871J6o0GcnreVne|A5b?XMw(g+wK%Hh>flot_LH<
z&&*TWV0t^OHAOjpUZx!<C8Ry-qFOk%kCI>PG_X)Z2>mn)@USZ0gf@;CF1b&gou<>x
z3u(U`nva^b&xadWbHV71pJ+htdw(k4PJq*_+-tzVmSI)tJ+ThFsg54X%9%OeUYSf#
z^+BOYjY!0}u$5;hu(Y_Y<cKnxMzg0Dp-5His%(Cxyq{)Nt<p)%qHhVlDS{=|ryi@P
z*)l`vmzzcf_^ss8g$V`Zh+XM6hgfbi;3wVcB<Q`O`F2~=Fr9eGC;^_lOe%UA5j8@{
zAoDsZ#(Ny6N>{O(khP>jC5$JfI#O;lhjz~ijM95mPwO=Gi_g%k_!mT^&^Omz&quE*
zhJ1!o7}oXW#u|)Ck>4luW+HCl)2sYCs+N6gd~cCz0Fmq^jRhV|k=i+qfRw>*Yj_=j
z_E2;3T;a-c6sKLuW@qu#I2cXRbW`(7!5t<We@W?i_$m4s9=CNhCq>5KIkH<^-{}tN
z{+|hJ7ui2M4Na7S_J<_333^xK_zAx`;{<oX4SnADtTQ`=`JFjE+YUY(ye4Khr|V-z
zWpztr0aU4(wX?T9JMlT6P$BH!`LO(8zP+g>KVp1#yMLp)&U1$VyU@8}y}mFzteYqm
zlMgC|e4c<1dF>PT+8L}nclQEqxr`93rw4+4=^(W?RCkYEo8(l(l7UODmrSM2OQ=ay
zAtRTWPb?~yr9Fz8?JWPCIME0d&V`+Q2HA+H2H2BT?aq+@p3V4k9`bC03b*r{v``TU
z5qj*XE{y7N7hQoXR!(@DPt5y6ULucb3uq0d&|?-mt^slC0yIpFq%|&gy!%*AZI7Ed
zHwDX*|G-HgNQWV-5A3!O6@|pu3Ki$axm9N7{&~R=6!%-)=Pu&X<Gp?!f)oBtTI8jr
zJYXFlX@4zfcish3GiyH34kD72I3O<HhOC+>pCnz&h{PR&efuCJxT%vj9T^RO1B2|&
z9QQ2m2>7PA{^aCzM3dzJ%d@@5G&QO6QRW9(NSV+uFd_J}+ECyl1hmD~8DQLeZQqj9
z8mZ2Qx{QyMnvO=GNq)+L{&V6G7l;Wc6QD~^!hu#BDrmCre1?sg(_d^@sP7^&Dx7v`
z=nRa5ID4Lb*OTcy*~9RxW8#=$F!it++X@-cl7iT$u(Og_`k;<m!|u9)oA;Ro_9D3N
zmQVi%S^DD(AX)Ia{#_Di1oX*kH0n=iko=IkXA9Llcy9Z07`si`nqDJtC%l<?6(DvU
zwS||)<W9g1rLo9uP-)`%3>h;AH>1B+JpZ#3PSjfc`>t0T`X6D^32I+iMa9aG!)&}e
z30gj_iRTfd4c<XpGqvlhJjo)rFqz%*0ZYQLCg2}_I-WbnGi8{)WlP?MjN+%w6%B6I
z9}j^QV(v+yYA|S^m0Kl(l%vc9V}RI6co31s#<WG(BiG}!l>0}vY#{hN5k*|HC|biQ
z!{Vl@_LUaD%@^Mrzx=%uBGYg$_%8IYzEPH5WQM*v!F#lkj~;Q60~PFN^$W!JKdYZ1
zz;D;cE%4v=DSKxVCaBnUv6o6{Q%*%s0Su)s2{NX^vEXo*J=3S5Ja(LP2Y?QdP1k0O
zzMxX>*^`}-gPf9UKc*CJcTF6H=NmwM`a@hGD;@<T^pm;7QukAkS(~p|u<=^Z+Rtn;
z%g>GR4$*oTCC)vKk@9EY)VJOc3ceF)gwn9!%R4BEMJ)B<CX$yTN%NhxL0|`r`&9Qv
zM4gjBHh)x04-aS`&~K=R!+^Um`JHA;EO5watvZrxcMr7CT>t%?-59c%$$`pCzupkR
zLf1E2)3K>`Nj4qX)9(01yDATZhNaW6RrB}4iX&cA7vvC%ph9G=jWe5K7wvfzx1!Cj
zXYQnB)&kZvYY82g64XnMQ-WgObAY)=KLZB0`hbUsem=V(15+gx7+|a4KajGlW!w+1
zRV<D{J*-=}tor}-b?re>Rbf0JM?nR{SAyUUqF@Z{Irp6V0@Qd0NMcBtio%LZkUR=e
ziANU^9R+7VSIB$~MMl~*l3RkJNW?@VDyWDR`5+tf0VtrmfJmLY)wcIur}NjD?|kp?
zJKrCB_jm6raV3|Y1sT-tf0lk7=31LqoZ~!Wux7NhH{QysWbgg4GY5N+&*bs%^rQYD
z!#usi-9pde!gZgtTx+eHwYj-**20%_uUzpP3ft~U#ZH^I;Yj<q?9m%HGN!l1#b(Bx
zG~D{FtfeW*>zC%G;G)oecFFc;&q$Z$=guBn?Q%FSYIg2@W2&vgWhTPC?^Id0J}oc0
z-H^E=yena2jnjvfU2jDQHJ=*FQ(p^N@l~(S#F`~1OUI=Js5K4GI%<~9?DB{zc&I71
zo!(eA(o(Tv<-rf;A8D~kIegRj)3=bh8Z+6gF|{td=)#`JLyjH$bB)3!-Km7CCXbS<
z_W7N+VzY&m^$}&C4VF&qyy)k#&ac%^=*`ybO0U3F%oG=|MPWaaUnL*=bC)t)+G>XF
zd+f@#&S@&H>}xv_e7eNv?xrhQy6>|ZI!6jClZ%o{t)u%7mm3#HL~gE4Ee@YwJ&?Pn
z;zZr)+8Hs{b)UNpc>QVjM6hjhaO$o~tDoR`AZN?aBxAjY>oMo1ZM$|9+#BJ~*T3p`
z-Sv8N=a|kmr*rqJ0%{ZY26v`EdV{gmcR3`yS*<(yxX|X~y4cz+Lwg+Ze$0q(cfPPH
zZanq+@%G3K)Z(Y{j_;R7RE_bin0j>Jn>*#b-8*l)g>601X>;fDcthIT`}YZHM~kL~
zbhxkF{ep|vGWQpa9t*OwkBxRO@7poC?4yR+??qjHxM^;6>lvpr(fl^S=5||aa*q8#
zeHYa`+j($%Oph+5KcLB%4YvM$Lix3`*B*3E&05gs)SK<G@TqH&N*Jh0%8h?_WA&G{
zu0HwprTL2<BuyziH57N~#?GD}YAbW76Q}=p;u4$N@oRidkypz;@1B(6bqCzlTEq0l
z{OIEk%BqfSBp<%a+RbX*0!9{sC8Hy{M_>5qyf(KuvL-;9#S>Lpg!AbA3s#TS2Y$y`
zIkF}=oCO18VyJHno#4otux%D+tm!PG)qm1UtO*5Yai+UiOzY3z)J`QZH$8eX%X%#I
zg}|4hb<2%v^S;E`Fn6t%1{zAM@dny8YrG*$Bs;Ra8Ab~eDW2D?O<+9Kx;(>N{r<rQ
zt1%D)q9uOV<)2-_Fl)`xy1HSf0K~JH1RyR|n##_!VQESPGD>KOr+JbIDUGEGo@&}t
zcLDJt7*2ACA!bPQ5*iIKlq<oA=H+}0M;K+Yn8ZagCeg<r&g7^-sAlgmg~jjvN*Mto
zJ{gzLFa<feVVc8AKENrR!BE7%{i{#34*=phC^w8)RzxU@%j_UwL<$;>MU13`kLcs&
zP9v66WEGI-`w9;M2Sh}rOd*dI3OS%~n#gh%(V3J$fH=7<1^}9Rhs1A=4sno{*BFvl
z#VBYLW0^ve5lnHEycvlRPF{CXcAfx4&B2-S4=IM1rxhafoO(hL;A<8ZHzYRv99c#B
zA&am)5DX|md0jYK(Og8Bkw*u4#9BroI)eduwT{9;Rz#|b%baP*liZkS!hb{xB3@oQ
zqELj@N`w)|iIYu2qaapXV+vzM1CxJ~Aj!=U^N)A{<&h9!MZ-}X4di^JI}|iBQp7iu
zN*&~Aq_`zy&Is}b!GHmBVRGw$#B0%Mh&j142s1#QYNC&mmk#mfIU|^BLWC)K`VmWu
zuxv>r7_cJ5SxO@VQ*MOhg_D<wbQY5K2gyG}K(TTo3>k59XBZA6MYbSP7$)OL1ZGPe
zq<BSRlJO0ALCz?KC!?{5w~RP5LzA4M%^<LCm3nD%wpK;LR7a<$6R5X{K31v2(-PBF
z#Cw7$SBD3yR{Do>fjAiBAP~eszy$K4RA30P&OjUx1OquPWWoQj{LQgSgzK-*)MR94
UWoQ%aSendJyE$`0qC)Nd0!;0c{Qv*}

delta 42178
zcmZU)Q*@v~o3$O=9d&Hmwr#Ux+jwHzwr!)MPCB-28y)}eKi|xp%u&_4PiwEWYhSyn
zVFRKe5TXGd6qwT5aNZb0^*hm&v$IPrOkv9Ux%nb*!)j(hzJ{7vwKeOH4JL|eqh|?%
zo?hh}IMKfk$jyKR<4TLGB*}~;x53K2oLw)J``kjJ%AqC#S^Yz<BC}hE6CqWG$`6_u
zMfoSm(YlIXOosC3>D2ew_h9hvpjqWV{)HdtSoURO1HkvgWDd~5QNKNPOo;e>@H6Xb
zLZ-yxVTUq?D?=MICtvc%L6*gb0($-8kIMotu0~(mIU-8~s`?{R5<(@e(;qs5FjN!_
zs@tAzN3cA%)H9h7tX_}%9F_&ylXs2CU-A>`NcIf8&>TeYzKC`-gnFAQ>v(49J`BcV
zC33yDKm*N`b#j)po(BJieik3De`T!Sma75ZC#~{rG*`9KFs(rpoH}y0x=xXrn%<Wh
zsb!<;aj*y0`}px?d-e;V`HeYg2FeO`h-4wX#EBgq1jF3x_t&$f<!*uhm(?89a<ee(
zb7u9<s{ul8d-ykVSe(A5c?UNpdpy0LLOKN+kZtXUo-Upj9Nmwwa*tj|jx3l>5*;Vf
z{COg@(TAYpyuV7hgc$S2bz7507_Cf%*+wVAHm#l$(R8&jT_G!>_2_hUDWKR^nSfj=
z##xn6O>7+F6M2e*{-*bAG4a5;uy(QGL3n(#y@L?wDrbnTDRhUXZWE~Cm2_x<V0pO#
zEUu2M;jg2=N}#LL$)s3FnHo3ls4;&uk3Cd<oLw$_FtQ*?jtZ|MnDxLyeEBTV-c}PJ
zNWQ>%5~@Rs6b9D+(BXWcg3?CqM`aJPo6#&Pz%Pss`|aUb0nRXxwxR+l79VSicBZb$
z?9f$@h-^CD%7@rB2V)*)leY!?(7YNCaEV<VFX@c8^2dg8b2aF%7Z(0oDTGXh1Wj4A
zYW7C|ab>w_R0QNejYt`aVl>5DoPZ#GGKE-xqT)0kJN-RP_BZ}O0rvnSiZ`iY89@+N
zqHtLUn`8~#M+^0OzOvViutY~h_!))YAB(k{j#1xMnkPM-@Q@`;5zJj9vCh8_d^R3h
zH^%+wlN)BjQUdA6)jhbE(r<iRWNZ8Bz%*-K@@CI#bHkf2oZZql${=LjiESQ&#5B25
zgrdFF?uVV%h{X?$X|z0v!w%Wfckwz!4HNJe5quu4J|UuT0<LB90(5rhkT-*=p84PC
z7pR5r&+qA>aIs4<v~M*J!nE8aK+2UdbhpF}27W|Xm>&DfKYpP6icn?AB^*2-3k+R4
zC4uqp3LAqgO67y`no%~1zH+m#>5n}3tE7pP%Y79ytY;jhEd>F;%e5zsXNCo{`3s3i
zxH~gk@H{Sgar6fnqRNyWFuk6tU3I0uE-k?&7n8D)N4S+0p}qi_XO~+lAT;m(XjKB>
z^wwF~g+=a;7-x4kBznoq8^2o*qvq^j@Y$tSutKZ5ZYhY(Qoq8$P{g@t-DtEE+gz!o
zhwUT$ipS_DCj(ke8}m9t@7M*JGsFGPe^ysf5)-u9NwT8P|I==dP6EF@v(7iFk5s>$
zYf=Rx)UZXArQ&9_1A8X}8rfN4d-kf5jq?V3Hq51`Nl|l)&3UAcD-thR@s!F!jr(!0
z*A!O1r6<sc=$V46=Q?Tb(JPr-w<=!6gdc3HTy8NXnAphf=u9Zpkk*BMQrUNp;=UC9
z4bq<gd+bVsjH;zb1KaiZN2Mkd-_Nkk4&&T8-7X!%!aP<(noh<6xKb_b;(4+~_1ye{
zv&{`-+QbZYY3jG!2s+ug&Iws$@cDVE)Ox8KNb1xcs!||JrP7+lJFf72#KRcnnRz)^
zH+JOEbYnVnb|Kt8wn(kX?++;rLq@fBK$~);?;~4D%}El|FAe2LWj0=|^or{se6H`M
zjDq?WmF9yUiQ(D^kVEGa2+k|!+V;uQNLTit8>wvXk#Mn|lc*9dS9!UD&VTagILpO9
zx&MB#{^adA_q6U`Jih3bsi!|8S#$n-XY(^BR2;!c6mFgm4aJ6d-gh+;V!Q3}-+;f%
ztwDiXKL-5_&IabJHDn1IX1j{5Co$wxwp5V{MG9%<L!=M}U>H;&ROS_OpXw}cMbzyi
z6{mDP_fu0V5YlQY+<9oI?CVpHbHJS%cc<%ZjmaMJ_NO(p$Bf<`37Q#<NutH?5Z|Sw
zveJ1g;IcBkb^FgHe&8T2RYYHTo4H;)Bc`OSww&Th=-j;k8kpE$R~Y7Pkk~?U*jD`!
zo!+bV;N<}VzzUlFCn&yib9CMSB#%+B>x1Mxy#po9)IlAu<S#M)&Jl!^Ds8QBp42DT
zD*1rKz+DS3w=PoQ2W?6nMXOO`R$YbqeZ?-Qe5x)Psl32>{8J@b@2ud1wM$4M8cC7U
zx<>!(!~-QAHvxoss91O?x2>=0t~?k~s{_knUC<b0fWQBRvRd~!?R(%232n>n_K6;h
zp-Vw?egIC<hvI_$D`B(_Ip!3D{q;M_9h=rqxMs@(^3=8e`_uOA;^-;7x{`oKVFi>2
zS1_)Uv#a1)pysJgqBhFs>E&<s#0B-+>-`hs@#C>Pe;Y1u%l4gr<`+k{;q*6$X#Gxq
z?zVyhaQr0as4J_%??!8&w&@!XQ+%Dr-}dLmD;J~%>u5EhsrmG0m(~ze&>|;92X}x0
zSU(h0iB8b$-+Ds9W!+CM+$qVtEhhR?-uSVzO{ru_m*Reoj`*^&;!6?#a+$*jHsM>l
zh+UL#mqbQMk4En)qT(6)-Ug{zL$NOxH$b}+$iuZC7?n||F&NH$3GUddx;2b^2PR+M
zYzWOrQLrXvaE;cgPlT~O`xOZb&)_%cUOCZE?-(wE9M9dabgpK{ilseOg!7F~)a3JQ
z{t#v>hk6C2ZfnZF#xAw|bpH%!lYKAJmPVnIU4=4Zy3tdxvpLJlWLn2=Ga^M4??Q)E
zYnnkNMTn5{n`mcdttc9B6?monc%^(*0L?YCH+6A!HZ!(^`_Indmo*#*5fjn>zp^lM
zasJPYh3UVCe0+>@X7(1YmP9Pf$%%$!K&qOoW)2fJ|JFTi6Kf7>CLa-5U6q@4Yg{hU
zS=l-yxUv#93O2vnhTwLHu|bz5Ki%%3|4aAIL6~F!D(I@f5HB@8!gY>h_+z<|CpkHn
z^0X!9I=I_KO%N;$H4M3^2$(w0G3hQsg$4B22cDNT&mF@IsT=r6EPT<9UAe3#u*HiG
z9l>J$kH&46%wX7~i~AH69VC@Yj!2>e4{SX$v;i`L7*0+jfDFcEy?P|tOfP^lD~&Vj
zZ=q>C6c}vr1+)DtgwwQ-Hyb{{BiILVK5@6SGS<Ww6N0hHVar8O2wrbd2{*hkE+Q7J
zuHPXU4aR4IVVUlx&yL@r&!Jxi;3k|C^Plmiq9w|U-by>%OD|NQe}SN@>z|8zz}!Pt
z9F$EYo1t<_*1wUO*O?QFX5P-gZQI(`7P0V8DHyu^74$lACg4OSI#07QXuUZ$9E$F!
zoq|z#9150YT9m)|Qo*{Z-M3OHt+Y2ddzfYF)X$2{j4j_W=LmQ;*YpH{weyd2gq%kz
zNws^oeL{=5z7mVo!F^Hb6{d@>E`FTYE}B}UjSk@eCRj2tZO*rbh?7^poF4S`Qh_9r
z+r4Ind*v6EowN&uspWA0HyuX&j-d_MZ>>YS6&%Fmb$&+((ZbfZI$~;r?gK{~(MaWp
zGskT*?Y<KZ7r)iKrMDj7vUX=aHwHm@a#{5J%~zmsEPY^Opr+a#oE21h=sOePT+-yG
zWOPcc;xiQ?{S>E8WO62wc<0|n_W|?WT26PKQ3eT=qFd2Kr&B5bLsho;6k#+di9RoI
zqs6^5^?+q?!JhPg6w1Q<-)iJwBH;dCiL(7)iL(EfM5lD*T{a}pdM`BPI@@RtF+okB
zcK#j{aWAfCuP)2fsG(7}LMD;IGQ%=~SnBj$(;xLGeRtGbFa;yaY?nMYrHZ0~Wt^S)
zf4;fJ`<vxWWJ-Rwd>hy)^0|B5U%+biH$59x)AQ=)@b$->g^yfC`e!z4HE=y`k(otb
zMG|&W121d)jx4WdALH73J;#Dvj0SmqukV|$?q3H}WSyB!)!|)<8)y6JKlVcFZvASS
zwesZ*EX3U@s~H!6aGFLhMdo)1C@wsQzOnP)pMs8tM~*&$3p#=`EY@i^&Tw4*?LG4u
zb%CV6`(Uw)-;ZE&`mwtAFLC{J%Bo!%1b$&S1K=u$o?+y65X9JwB~@e!e;$P=bg(I3
zvwMZMaLdQ=nD?S2^gcQ3RGd}xUfR*va(67)npTxmxtL8{<*{kf;keZIL8x1n^PIuR
ztL|ka)LPiUDu*Gx7;U<IZq_)Rg8O@3R&$t@3Tbmq9*p~x$ZJ8~hg;6&bVy;{Sxvap
z1N3%yyRkbX`f}e#HUGVk=r`L$fnJ7RDZT;clqa28{djNkyTpag%Ajjr>i(SWoZ`G!
zR+LnJ-=A4|UhTE(IH4dxGtZ7LZ|n4Q;%3_t_=$Vn-FM@4d}iBX#HJVDjf#LLGUWT#
ze9`4MOi8kLJZGuScX_o2W`@_nCdP4R037yZ8uoVhx;1(}J<G#anp(<WiTa|Az>!2J
zVJy?^bsOMa*d-=i(VDeRq1Z^n;1C*i@FD&)3CofPXLi<SR2!6dV9k(8Ojfo~EwSY}
z%toa3XfpCrW!0{!3fE5tKT_A`pj#0P&S+}oU0+7!bN8G1c5y8Gd=y1p``ty52!wj?
z;dF9{EAbPECBHOfef9j4bRZ8*9VAArp~+-VO2yEf=&BqiSSP&>!<XeBLt^h4rA*!{
zyr^I8<G6#}@Jk+mcAY0qbi<?&eor!g(p_EJw1~aWI|xVBUL0EYGFY05F|$?24ArBi
zz0b01W;as7smp8}^6Tpobk@6s0>WV1-Wykh2mOE98B~ShU4QM?j9)R>+#g9;SBF67
zDSAuvcHs}OiW7udIU*<)Z5Z1_6i%4P;)Ta--=CE)-xMM~m25x3t~6uUrM#GMipBm2
z`(3OB{_JOPeK8drNJI6S!1+RITb2lag1y2<=+VC6eTpY|m7R%k!9b133jCA$#UQ7k
zvgZn5my#*Wkb>*|(v$pEI>ZJk?K7Bf%5H4Muj;fpPT_){H^3c;8%p8A$BA+7xH8@<
zcSN?Y9^4%bWub3p8n%C+kjsQ&KRonTmre`+H#sYqz`Sc{M8kcW8Dz4$`gzaYmJn4x
z{O+`33}A6FePiu#0cC6O7chL`R_779)_@Q1u{3=$xMMkY!TCw_n`c*@lot{{@P0Cp
z$9X^)Nqw8GAOmyO4IHpo($S6j7Kd`cKxYT*4_-`IU_{sHus{VVuT&ST@TFdF!d$55
zGLBMX(h|h$0{??T^Jkl8<LZ9jz68CXObkV<6s2uLi1sj;z5p|63~+Y!Td_zUE9qr_
zz}ZezUq)a9FDi|o*dVG3!4i={d)tGkzw)>=SCL&)$qOV_q;{teb5Pgr!r4psH($0i
zh5iMKV3TQgs3S=kgo&>2y2&)RwwU>x`i5N4O7gX)z8g^{4$5RUY2IB^=kbD3h&VTF
zgD55I$Ky;RO=X{(1dtUvSu=7_bMv;wIqV4YT!33%r(B-j>-xbFs?W<pV|VAdVoqWI
z{XN7_Oz$HZ$WUHHPYw-H+&AOFnzqvfR(iE2Y|k;>4OX8}g2rs%6$V1Yc3E5_qrD@i
zj}bLuSWgL`;iPNNaTR0?XKUh@15j2|q_c|#Rb3?_^Z4g#0B}6=@2}%uM^ah05pd;|
z_1^?bWcCIB_V$W(O(#CmZJ(S-o$5Yh<-Hh$5n|X>EIAbW2(GcZP_6YG#XKt>3#xYk
z=EDlPdoFC8xdmH4TK8L<Ii*auv}|YYV=sr(PEzhlm*3Rs{UBwZ7%^9IH{x%$W&ix9
z-J~H{cJ<3#0K`>x)IG|8f=<cn4F8bb>fh6qeQ*3hD7ARLE7kgK=f86lU<EYXKKxnP
zoaELLFA`lu_M+<i`E?+E;7MXXvYT~QCW4B$rDlhd3W}4l#xHIw%dXrU$+@PWXT>T9
z2fOPO=-R8AUr1s;Kou$0OVKgwV2Jbb=%_5sNG>0O1GN&b0s?H~wGnXxPAzJO#Y0&1
zsZI+XhKeB2N$%NAj@Gbr)!q#g_fghQ{M1{2p{07&<EDQL6O*ZQW**kLt~KxS#rfT2
z4$d{VL*M*7BqQ$7P^%3MSzAHtwvrSO)(DCwJAbW9Vh7QoW$5kU!DnWdY)*nIWX^4e
z52*CH2k64|BIz?FBfZ6w1vBMnldZDaAIj*7A3HEC<&Md;7qk8TOs6iodIsRE<6>X7
z#GNR`wMA04L)Aj*C0DQ<?Hy55zREQf{R~D3KS)FkVmuy*exQm==Hi1tv5?LZS-N)^
zTzGuUndwIzs06Zx{Y%)Zan>G7Yhe%y`mJkhfC65W(gs##MI5Q)vDD%V4H5aO)1X7q
ztn>43f>FsIm<u7|<<?C-Obh~i3`QaG5|f;nrWCX#fE5x;!GiWOE8kw_6bRgg^5j>x
z2R>?86pH-n^!zK|@gAqe!>$~}*Xx<p;7PdwNK&p(BB9HS;zuXpJWqkjK)!QB_o>G}
zpzmgFQH4<18dN@sI2f$7m6CAQZMovIMvaS<xL5^3x2uuZ@J-KadyVQZ@}J^IYoBIx
zekm@s1}XU^+$xa6F}{@dciZw`;*j5cn-0qf9Z}q~lhkIC^BA8o<-x&=XI%~23p3P-
zA$E%eAw9Do;piPd|NabxJI!X_elZzK1{gXP=>s(XfRlnr_Pd#h4j$)ZRj<l<k1NL*
z3(B$n3~}H%q9JAe*SZ{WU>s8LrO4Ns^@9kH<hlg{v!}FE>cK4)UqYM@mgptMIG&dB
z6m8}nt+(dfN#3}~>|KZhQS`7fjVe}I+%DP^+vyibf!I*YVCQ4{P>i!7Vp?g~IKX+`
zmA7fGikjH+WK}2Zspce#g#okY5!QZ{e;z)*WNoM}<|qq`mfkMo;w{WGkch*IZ;AVN
z7&=>wR2sodfxNyTO$4<rwK9uMmQLk{+)a7xMUsb~HDC^r;PY*5I#v!=k5R2JJI7xH
z%=2oM;|_6nZZZ^Se^Ii+UZr3&0%-85@j=r*%4Zwy`j`h#JOZzNhMe2OcB=?>?|=+|
z%{>||3i>pNq0CHBt$-P&if$1OUJJv9$c@8mU4VD&8JM?Y97WaTUGA8991Bqi5NJ6f
z!mNzjsM@qwKWQ_pEzu*@S&SvxU91K{Qr$c2xWtur33t!3WIuru*4!?#1d2v$W}As%
zrASp)n+>j(E~(VIYfVqFf?@kkk)iTZRC00egwe(F<(F4OuO#BP<=Ae*9!)mHqqngg
z(-cLsW=LIjXBk{7R_qPudCz|(2s?O~q~nQTj`COB{Jv1Ol^j;uIsm2V$-)6EVK)KK
zLscz8RpcFcLvI(4chsG^08HBbw$04{6)IZsyoWp2zsXk#k44t_b3)GZF+N+x1q6$#
zp{Sesjcrb?A`MiR+Tf`1{ykC#-d-ewrg*pg2Jb5l>_3~bmaIMJ<ziaN)MK$_@Ner{
z61G;<d|7MJidSR3H2HYiyNajRZla$DCQG{GBbM-kwJ(r&N*@2L10`~D_#NX=7!c><
z2K=E}vD>m33ETL>_0*5+=@psaHpRSLd6fkT|I9a6>20oCdfFVtgEnw$=Mt61Mf1Yq
z^JRAnJ@?}*mvPq%NTa-X+Oq#F#F)=ocNAg9bX=69-fS<9XN2Gg1xzN4)w%HoX^1pY
zCKkKHwHL&BSN5{t0KkG=^TdVZ@y@JKn;hd6B7x~^pEa&tzP<jbTH|STpf-1c;pRpA
zVSD>B7OH9HsNLFL?UX_;r{%6erAl$v)9M?o%qPc>buW4<+_MFcZ^uG+J!q1y@<#lR
z_v<f`P}fT`skzCPpr;6s;KCsOFjQ#5^^Jq=sngvq^?%RTKufQ1*>EX~%+X;b&t<_J
z>^mtK$K^3EnSeK?MdhOPRzE)TjH>incRI=L>u2Kh_svtOV#}4s>8+cEU)lwHr1Bw{
ztDA7Ta%DaeHVDk4>VpNyb5uvod*=lx*OvX;yM9{|60B&cV3+X7suctyDzc*W3!lK*
zQ^^;7{#(u$07rs@?v!;<)<(PX!r)#=+(xM3cQM4(XsB$Kx7N05WhGV-ttm??T(bA6
zwSrf)s0&LV$$<<7Zq4>`jM0p#Z;kSon6T+cVrrnW45Q0!<psM6{#*c^K3zDoFni~^
zy=K)RT}3`{cT6XK%`G-snD?*J+|U|ZQ8*f2TBi{aASK3>*T2^IFeP>qzS&DapP0n^
zsJngp?ilgp`q+Fs`h%yqpk@5~)%?84<tVo0#RAiS_uX_Oi9uj#IHk-qTc;g+;}V?P
zQg2pVuGgNi{KTOTC`BFHTAbI;_FUb&%3gWkgn#ax&#<(xRpsFB^>y=p-ukc}=2nP^
zffMBgWV7k~ySM<qr~2rH>gwq9^m5Gypf?BbU?xNjJJmn%60QhcUjx^bEtO0T5RJd)
z<gzZ;c(fZhjSH0!Udy_^Uzh#4VVnAH4n0yYVFUS@e%)<Nf9Ts1kcdC9QN3XwwkGiH
zGP*Ck?`>u3)6B+F%ij9aR7M#S?OCuTSE&l{F(LE8)&&cQK>m$Gwx2DkIQ%|FyYQv3
zE-Rvj{wy#faV*+1>fXTP)i)V^V)E<Rb_46o%hzwl-!PV9i}^80Tu8Oeg}Y_XimOkt
zN`_wztr3TfCG$V9-aJkG9U8SN*t(vMe}qD7Ko2W+s65y_Wvh4d@=+aEtR8KsqTwgt
zTjlMb2$39a*IB<tiGtvzD}B8Akt&g_*+jgzW3$iK{OUPObLAvZbEvQ*Yg$t|OO8s5
z+0;$uavO~^{!5YH==L-(OXQfiHRP_PP6e6aBKB;b0L#l<47xz^O!_?f@0Ne{pPb)c
z>1B{-6p?Tgm?gj-Dc5?Fs<b4hdI~on4m;bjl4w0E`pJ?j$oMGBCZ;tWJLhtx4T0eT
zZYO^p{`0~W|J7z#<5qA}9<e3Yo4b!FcQ^+dN&1u_f~ejB2HQ0imuu7Ix+n(vizSN(
zmJCDe`cRLd+E0U@DRDAGsG=N6kxKReR?|O|QQ<2R_yP~)cZmF-*v|UDWQm3Szau&;
zH!Ji1<aXBoi<VgbA6hEa(s$YDz{u@8*EE`+4mpoN0r4+ql-DEA-tyFJP074k$43+!
zL^FvxL@U6!u`zro_5n>O8YauWa=nbiN9*9~c-eHR`=BMsASvqa%0Dv}nYF*a2+1n1
zcuyplt$s4~|8WL=@gAu!r#!5b;>o2j`^I!9lB0xN8~@`ZeFdQP=<O*J?AF}r{kWSN
z{4~C+=cVk+E?P=f+h@`TGMLbej=fMUa^-Vu4DNF+^RhX)gf3k7M^=la=jjtx-Z17E
zscd6lTN(KX-%~PGz1Hr*{GM!k0e{ipYb1tPQao^w75FJwz}S7{EGdycFk?4b?@By)
zmoUX?q*STm5P%M(d6z@qCz1)R@_8@>33%?b^h~~<sT=Nr0oU>=F28al{oEG7@ahzG
zQ^mI?XK^)TH(8}aa2iXfW~^2AF_iGT;G-Q$fy_u4bBUW#s!KdV8{iZZ#~Zi+>icgB
z$q|ydB6-nAy?-AcSW<zfH*Iq|e*Ua-6^ZLax75A82lkpDS%{$U9p4N`{(7jwCv)>L
zBF^ja3qqezX5=ah=l&+o2$P<-Ku2Q~*Gbh*7jjW<J%L;5kKc#|zdYOMW*cs#<|$LQ
zh5KICaAl0bInP%YNyC>F?Ip<-`@OJwLqz2iMt^TIzw%_lfYIgRN(I{pXNnny&T#CZ
zwrnAB3{1v%CY{2>G;_;#<$(GGEl8(`7sotHZpm9HZPT4}Hzm<1CRTRY1}fq?7Zazb
zy95|CTCw~z3fUjNm@wl;e%Gn=05y9g*%>7x({Gcva$Ug)?LImKmvFc$!X7m?r2TQS
z{I?KYRfeh1ABLTQ2QKY|9f_(%0_|x^*{_mY4uIzfnyAXj^jU>JO#`j*)n%V$`^RF%
zP@K@_NJT$ljE!@uLvcGJRqO$23RUr7wZfryq+S^;B=PPmGy(ZZK%`AP??0ym!qMQ@
zi={6(+sDIfuDq$L^{KH#czEPK+a2*l3u8{l3_Z@FDI!X{Cl{#(*-BrPf>j(QTY$B{
z3%Cl=G^6r-qpwA^V3>{>(Ud?~JF`b&qivvb6mh#Chj{OyitufKC6?2&;Uy*XRo|3t
zP)B1c{F?C^mn)1+6~ZIu563g6`XMZ?pl=&&{i`)}@U)jL^N~8?q(y%1u}k2N3HAei
zd7Gyw=Pk=dc%ScBULD8SKZk|z_rJwGd0@Id6r;a+BM5hPFXV}FVr8W|mN{vHPvT2x
z6z;E1$?NBj#S+wTIJnk69pYSaJEXA4-@Hb6y$P5`p?gX0aLH20lriosyKL&+Xj9f|
zh)i9pq&syEnkzBjd1zt~B@*n4#YW5neWP#l)2w$~noohQT@sAZIFE@I!M8zfU;z6^
z@@-l%c)^LnJf{O7=r8p(^H2XDqvXp$UJ?K<5tb!cn3m2e;qElw;wC@x$Ogfv#~3Mm
ztMKT2Ue4-7NR20@q#m{X4e0>a0DO+Yy-rf)Wz0_}2;Ph82mI7#v=mF@)KF=0#nM~r
zr8**Ck5X`KY0;j~YndVqIEc~i1!QVNgnAN|Rv@ZG?O;#cV(0D@WCx+SkmOvTmC@H}
z)hDnXI&0P`FuchEFGUUCrxkWpD!kf-r!hhjiV`u)L!a!6C|it(_+Y3y2zUZkHlANo
za7M(vG9%9(A_+)iNoON=lLNO!#><RF8uOV>zYBc{MuxJGDy?;}S)0)(fx@Nh25>$0
z<=-Z`U#n|VxW@Ixkq6dvb+A^xOh^iYH#wwuywNY>n%eYOnhu72qBhuqfR<ZG6r;42
zdy{>>JmTq_kr%4@!0RI{9{07d-Fg>Pyy%OaNe$Bve#0w-a{2<onB36^<&a!ARplie
zG>Zhs3McR%BD%N7Bd5;j!104+2J1H~4#%5nLCM6Y;2)ne&KG(l-EF>tRO{xRr0<6>
z-4h>%C!uE<KEB_UdmtBortTz__zX0)DYE8XjoHwbJGJS6t~vMuMUn0s+Yrz91Kh{)
z9z<r@L4n(M&guzL{n{OA&mh-}N4wIhn!%<_sK6(>9?b{ARNrg>*gbRDRsGWrw!<Ao
zlJ5~bG}fKd{A4llW$=5JnwTRb<WJOq_fVoSt25e5pg-&Y>Yajn%Jl<$R$!PH79MNh
z+KJf2w1{^G;<McpE)=gItbn3ayf@D8sUMi1i7~!)F&4dNHJI>^_gm-XbH6d-4jsMR
zz^f{u@wcw-N2FilfLGDDCyP!J#*KIlDIrm{IymNbuqr2=r8PR?eqnNC++7Xb2*G~2
zrw~Y%mOyY0c?&RDv4H63o+Y7e`DLKj?J=hByDZ@ej!$rz0U;a?$9sEOe1w(T&_J7c
zVXp3XxJ+vk4Tq2}$5Oe7?XCy^fvuK2$8&M#Cf^{LfyE0e(9#qag8keOpLcfIlfDZ(
zV{U}wBsld_oFdBXIC;4BFc9`c2pL0`{YF$298l5GouIn25vGdu=O^4y!Gn%%b{eN*
z#0V<{-Cg<Z+U7!ua|Ud$mf{zz;Wy-Uq6z)~*z^CoGwc6Q_5bufZ2xg*od0TrSpP3p
zXZ?RzJylcJVUq(>!tg}%wieCEN$UJsJkSlT-3^!5U<N|!f)2A~I8(VM5naZ_Lglg2
zA^I!zGv0?Ps;kpp=Wt*wf-n8X_k=f`5On|@^{M_n`w|Pn4vP@0<rBjVNaFWyG@x@3
zc^dL=o(-pl`w3@)CCRLFgOwM*CusTE(cu3DxF6NjGoJCD99=v#<DQH@<ZtWF`QX;Z
zxsg6UzYPVU60)v9vR=3v>)!`Cgno2=2KlupVA_Z1<BV<vzNz?;oP&o(qZYmepZvmX
zUZ!S5;**@|)L6j}%4}-riR>1`JC@`MV#4FJ{M5@u^yh<NijxaDIUl+Yo4=+h=0bo0
zM3Ky{0%x+<t*ZDx56L=r=R2_^-G)X&#MZ6i2@v;28(2RKtwd}V%0S(>W=rS^!X2re
zss7mrqFmBeC$t`>j{hv}*=x0&^|Od=TNa55UM)UWS=2|9Opy-)my^bJJE<wc>8T<u
z1Pxqq+maXtaZjK1Vk(tGWmH)t3CNlOmdp)F)e%3CuEd9OIk+%GKyr6T%SBdppUncT
zxdOx%{S7}|pN_rV8nZA8_*n<G|2B7>DRgdC&VutKZX*k^xrkE_3*JAU`##+t?|b{*
z9n0h+<o_e3S<}6+U4V%suszomG0!&9u)PB60c;;+Y^1lMSa2nbtfoO+Fuy~fSRkP5
zUD%-rQ`D*;&kwPNByqF~mD+nUYYTzeaBr(UiD81SeT=KW_1e?fVU#OQ8%4WFsyhe4
zh@s_mHodFErNEJoZMw3~3*C5z9psH(mr5cvAzS6#@&lVS-YxP!Z*g38Ie7zzM@2c#
z&^SXFm^1ip36ilFsN#CAMH!+1sMKt3hhG(uXRzY<DVLs&7-c4f23*f_LEp697ky_w
zSR$<Ldol(TJ%7jdvt`oWt1`KZiGJAcTqwqH+hZGJBK3kmVG#AamIawtyC+>l#dC>k
z-%5sDdzl(>TcH-uA-IJlqQ5(n{7_O2UJIVZ-W96s5=n_gS-L7cgC@TP5M_9oC1K@;
zMy?;q4=nU<yDz~N1y1&r57#QqiSzy__$9A1vicBk_^Ldr)qEtENWK)*5+^EmmaWC=
z;lB4H?L$j@ejZ6F%gWlrw%D;K7bB+lYT%EW321o5EM2{lw1RL6bEWYzLnkZXShHDD
z^xz*2N|jIA^>{ym)uKoO)D@0t!Ez-<3Z@#=$NQZmVO5}E5k_GU!Zwx3&gx*2RJn}N
zJMGYG_x+G<lq^J(zAn&9Bv_H$Y{P#o<LA39ly<o1EGGpib@nV_n0tK|!)s7!n!xmy
zE2xQWmWp2y7PV|b8}k=gWtfM&5D8s9NX~J3+dco|OemK~cs72()p!@T8!U01#(l!n
zDdrE-_M0o-Z0h0K;xrw3eys4h2B;PsOc8vc)F+2r`PLV_d#K`e9ZEi)yp>pqr8}4y
zr=9#MM&(t4fsnVxr-Z*vtF)cI4VmGEdzB+*e{P(OC9?i<z%k=XtiPRHI528{TXEJ=
z`xg(uvsch2{*DL%bg1qE!D<cb5=1I@eG0P!poG|XW|7cCtf2-Vv^;br`C<sP2{c6N
z%tsu1@6<kiX{#dbp);{P;IZFxv0?^-ApA+I^wbhLLDgR{;`r@n@@k6m7e$ivX*2TI
z_F4n%+hRZ`-z5K}9>gKC{;(*2-)YgqZ45XgOUnmz0~(wN@N3tMdyo7qm;CR*PexXx
z2y}|#sXCsx|FjqLCA#ow<Z75;e^{+4`O>|hHqbxR+G!`HX|)D5vZ-P9FMjN3c5(?n
zDF{`TNU>IuABjD2Iy~y9+=6XIDmaQoSxiJ9phcL7F&C>4bw!-Gz2*qHDcjI=>4&=_
zsIA|EZWh9A156Q|mMd)PeqDOYN5T|f_YH+GPKVyh8oMHF6W1cWw!g*bO=}MpjeEn4
zPn3ZI0T`;#@QFN&(Cgxzr$2#BBpA;t@EJ(nF$+qy|2|1xA~%E)>ccVuQ4q*o3#&de
z8RjJjc8$|08V2xisHQOYs~X_=te=M08A@l*sGhlK0L*gsGbRxyHp^)CI7b2PKQ^CC
z>KZF2jEvI;#ZNC5nu2vaB2(LPL-&X;Y-~iA2WBC!2bs`#UYmiJcvV#?i0gP{4RV8v
z*_ZrR2&eDw!ZE8n+urw0D(jwL0iv<SkCfp#6AQ1aAy{@?J<ve*l<5JajCZfk(;@2p
zh|kG8z{_wmSH)eTt^IxV-oA{CCqp_1?*urgf+?nXZ{q>vQQ;FT@}W7e`E*R2Co2y2
z>nEk*-G25hB6@m$;RY>+;GSL3e{MH!G*r{$RPMP>MY~$%blJ^x_I1|#>cg?N*(d75
zo>Y*TcA6LSIxjK9*HD`Kvg(Sr8i6WkQ^Yo4fQ(H8LX^u$m4sz};^TBp*m1SGNX~sN
z#Ei)JI^<Wa{tNZYe4@Cg(T{dQ6YnThsHsaq$YC+N_dM^mPyiCOmdj4E>vk-D(SBn>
z@5MR17s}_ijRmgbd8bF<)o)v~)mDQ@vCEqP`EA%=A<VkHtR%>+(QWQCE78C}|2H^^
z26=(<|26UdiP+5C%*@HL%)&sa_FCMA1m;N3IW1fmsH$+Y8ocI-*?JqAhi$u$j!Z%c
zK7?%(*_=FvS<_<E2af~zx6GH5y}HwntvoX9)d29uwC)_A>&{f<2&1TouZ53ndrF8}
zN<xaokEkqQp5D7HXR=Q8bI6&!G5WuJI<6R-zWv9^$_?iA{W;<%u;%ya-sLL@`wQ=1
zgMFsFZ&c;X+&z=iv|&g6aet3Xk%wvv*RqW5lg_x`rQ~Lv`!*SicJz7V*I+|@+F6KX
z#sZf;=Ay$RWs#r~VRMAi`#|)rjQO?np#b&lD#bbTC1ee^xl#1jDca;?V)I3Z)8Z4%
z2;Fny1bFkoeNX=?FcdSYY;&&%Waz7|+nS+=gBp*OPSX8rsnT!Vn2)ztrpWZ6j03-c
zDlCQI6n6Pi<+~(jMjE7+>J9_kL*=Ru6e8u`qnpIYTa`}h?jqlwA;P?DYI}2Ha*lS<
z5P$E3NSd$hr%$wNMn{i~u@l7fI!E_txT{}Cox1sN#ytA~Tyfy@$M?uyU5RaLueED`
zvXKSixQJ`vW7FN`Pr#1wTsR*0Mttu+-uA7%?w;=-^S0q(l;!BTG-cFIw@sl64(B)w
z)cbgjo%x$0d@|m1d%>e!7Zo4Qy|^Ma4v-?JdcVZW!+sfxmJYO?HY+e2w`?tuza~^q
zQI+^ZSY6Wr%K7fqcKps*ACWp8+g$C^-kh<-sB{r{#LZ_86NFHKA<i*Y7D=INr+gLm
z+r(%jmSCP^(O_3*^aan05;08J5E<>beBHu$%Jc8IM)kD!*K(P}`Ygv}1g{y;e#etR
zdWCvb&MA19M(eD9VD-96T9AIZc%rP~<9h}myKWHzL<X{s=7!*0_c(ra)}ij|o$PB`
zsi{tGPM>gBNnP7^G#zIMXJ~x3A!0P0;HL%7<GylKCey-ERojQ%tSR*gbQs>QDB^qD
z(%m7$sB~T-+uYL189kO3hMd#>XzJAG9t#dnrA^)Zf1C7<N<%sXEyZ*q#jIFuHS!*%
zjRWI>;M)*v91XBxkO41x)9HKa2R74=W|~-i4y%Tm;PF^eNFGZgae<fIl4VSz=2bK1
zA!gk9XcYPBkG5xUyqBDHRr4<CL!Fiq?nAiwnpQ+{NmAiVC20d8YZm2l^}YqC0h1z_
z0c;1ONnKG?LnZx)U;=wXM~no%6Zrrxb0GzQN1RcHNhHm_GuvzlRo%xcY+kHL7rYQ5
z5|ufe3u3&<e=|E?0O?8lj0|d>utexsRgjFUXi>XT05Ska;REyBFa@79!&BL&bVmy|
zH9db*d?1d=daaBgr8FEC`JgcyQiz5(YaKl^k`WyRc0D`iHQaBzO}$@SCV%VwD+n7{
z*p~GZwq!(6DXgorQtV>8&iKjnD-!e#5&n}wb%+8U>R&O(#?RLh0@uN7B+Eh6m;Uv_
zw`C0h1O}wuH018tkNfgyo8Bl@qUE&I3ea@-r>mpv*CVt~Q#3HVSwnw+Kc}zDCtv0&
z^c703=g$ro&)1734+qSC!(2v8O~!g)2J2zRaN5vts$MeS>Ag&nZ^wC~nN)3j9KBYu
zGx-wUjl(Drhdh<*s2hSy+k(&&D|OycrgnF<WL&9Jv%8l?*17V#TBE^LR~K^^6}ro^
z*`pDsd&&RX$6gu5pA2ce;;k{(+WvGjgG844w|_A7OwAGm^!gHVG3bC7*)k8Xs2ncr
z=5!favsBhKAWST(T>Q@WGxKJYtE5JL>yjhAnb})9{QkFfoOke-lw>bEg#H}yZw(MJ
zs1lpY{FXjk=y{e>9i_(E&KcG~u_Sv19U%r`Q_4)len_%MG!#yWc*g$5Ub`HDY&Nwz
zIcLtI)wS(%=YRmPpyb>36xAvK7xN+Kplwssf-WSot&sb-M4dH+c#fusaDM&hl$>E*
zJYg0skB30nuW}q2O$??kdqb5~j&sOqP_=UOvPg>gHtZrwq#;iwotoH|(rQwPiM)9c
zJddPm*wX8wB{d+D+hzHkUdz7Wy9HH}UnVn98hU=z6=Jk4*Fb#`61okDoKGc{1&MuH
zu;haH+zR1LcSlu%HL9k<owxP{{czeA*+5bbXKlfmcj0p!4h#_fAl^jb)NMT=F%e=0
zIi2=>#&|d}DrtBt!lyB9!l;<TD?;IspqCONFOp}dDv{v?#~1*a%4Ol-el~B86Azuf
zOfc$W!cH-nol%K@9fAUOxZ-hq6B2mCC2?@9!7D=hF(q%cPnwt!Az;tg8eLWqMRA_j
zodTv+pbry7JsqOOwqvhK5~?dG>qoaWujH0hZ75ul^l)Tdo=h$Ar06*^JeL}Dp_GXH
z+Uv!2MCR5&IHH)8Db=3>w(8R6*WUv-OABjLqm!FvgdE4sv5^6hVhj=N(T%VxD&_|I
zN0RyDCsMgkA`^L^fM&RAUoh;-$`wVV!mDROcJ0Sv`AwI?oh>nKt|&{NrS7v#4S%nu
zG_%@!^vs$SpWn$8WOhM|>>3C%gG+3v4|7b)y3axP%;ZqPxMvxIB@%)R0eUMx&?VY}
zh2JBCxC9D+WXJ#-swik-)d9UYFyqE?Pu(!l8_v9G$Qa?&!bAsM5I?O}=eY`Gp={;t
zCuG>~Z3=|2XEOv*h<fK6n(^kByO~~y1Ex=&`dAK445Xmoh>iTap@lReTJ+h}e*0B#
zM<_Rg4~!00T$ms$mJ&yIMaDDp-Y>oD!P;eo@Y*am2w4DS(#$j+TC}5m%4KdGP16?&
zZNpZh5D`W+=Q@g7CiVys^l<YPQXMYf0p8=V#G7eCV~VY&a_d$8oW1`!Rjq&^E^|sa
zl9+BQ9qh5wfuibPJ{3@ymW(m}Ee;?AG2fpkb+(@R@s4u74kh3r5LaLmpV+2C>N28}
zFH8+Tl}`XN^}J2YUz=kj1;+y!4y|ckjPK_rNQXt+k!*&-qR?9QvQmrpuV80XXU9g8
zR&e43vp=j0HLfiijo+9c$gc@GtDO5$mb8w7mgBizA3iv|rqCKBNgiMds}4>ZB8=jj
zIa-_LHfM~w$Pnvew{1S251aEmMe&|Y;85!E6zc)v>k5aq@0}Cq!*9NR?ytRtUWEmJ
z_y`2HI52rea50XPlCy36KCMosf-~Z}>T~^XHS7b_p)*ayjF;>$#-yr%=X#(?%-<Ya
zQ7aY(@ztbh3*$|B@G(fnv;ZEl)bgAG&FrPExQQHZ4rXPKm0V6h)U=hZ6@|z<s_O$s
zI1%_Fx8OdKH)iWtNVz4b3oh#nQ$=5=YOT(nHh1f+S1BZq#0*1y$!YzqQlZ^km`BZ3
zgsJXF)4+eJ+z-u%LgmWe5^CTuapGcqWWd16?8gFYMAO3BL~ye~w<9!GCM+lX!dmey
z;KwBXY=a}K-U?lqUpkBT+{IfnP=~)9CJFF-BsS-%4|Wv?9$4#c9-BeE86Cb1J<JX|
zS?nRZr;aRrypFuuwD@}Yzgo|M(C|Q-eec4(+ggtA9T-;R!$R?3GC8k;Y+QQqo;q2!
z*2~dOD&#B5!CUSSXP^AIA6bB9dR0&@A_ylM#h?oDOH@-F4d%ToBy@B7_abH6(hdm8
z)N?TY2OZ{LXFE6~pCi#P3QSDAIo$L+`Ab>TkL5*n^Cn;-71-<H0V7fGoMvf})~)~w
z(l%|~iKfGqPiS~|V^=Z?R{Bn{#j#C*HeL(#_rK5mM;Xlr4?I_jftaPB)=3#XP1Vok
zLLbcSiZww~=j?vPdBxdsxt)9d6M!hncNr#J`NkRQ0(#=B@>^33(PAi3NsDPee4xUZ
zbw2TZ7cpu#;kFLHH2VX>{I~H3gvqhdGx==OK;j#9wareO*FrLJAF`Cq)1pJ!PCrWG
zvHsFB#?q9Dkc&Gk7<VxL@78W4wDY?SqjM2SvkYEFF`Bma0E!!gz)aio`5!QB{N_mP
zC)4T4z(D>tn2Z-cUot%#4g?D~8%webn=o*tW0<_zmI&-92C5{nP-+iC{6lV-Mvf!h
zp^mf@Ur*nZN!_0`a<`gFFi9%D<2ow$ae1vi<u%|G0wFVZFICH%b}NNmLK=`L{{DDd
zLG)Kd8<z_D{`0NbT^+Ki?+1)L)|-Afw2}fnoo|n3k%F7Hb(6m&WE5mFRfzviT>~@|
zRI;khE<I6S@70=jQ_=NaA4h=S-4q}Y{e6FVQ%`#5Eo_kcCVYj-xubtaR*shz-1DUV
z=(eQhQS~k+SjgR}tzQ~cCO7UR{LL;Pa|;@bB|bPA95Y99<h@YEt)_cFyZp~PM=1_X
zz>j(~c$g1MEda+!=hUz7b?_!R5C~GyLd@R_Ry1Vc=o|k@A03jM;ncf3Do=>~jvuf2
zqV7_@-+s=<JvHoJ6ObP>o3H8L9wgJQTZCM4v>Q0qg;QmKczERrS7rvs!7L^cd$tsb
zknFdI;<Z<^+U754-^!HD9`z`?QORzF%d$xeCc#Ge+(sj-Bg5q=9E$mJ4&3bczV9zR
zXa<`7P6<@rx7$KCPh}U)<fh$(y0K6jCu!vAH;ju{wGp~VGHdnrSsl&xu4d5bqWTl+
zV87K!xzP{;XW-a96&>DI+2&!ViTu(nG{uLD<%`*4)$Vt9H1V35J9axvEx$n4s8~;!
z4vmUTnLV1~_k>uwn9F`F2h5Ya5WoFv13Zm3zN1f|V^H*BDp89)gHiwG=*2)GMSEHw
z^?Z}eZifBM<_vUBY9cY#7-3c(8b%EoPf}z#QJgXGd%b^+&OX`kXDw^V$R9gF!E2{$
zx#y&}^8HFvi`XQ0Z?7gARV&cbnTK|5emCV~>Uv<19}h}BSQvfi09v$Dc4c)|OnSGH
z-0N{vkolFTs(7!$aSBRpHUbxqEh-?FvY>FAiwek-2{*YEnp5ss+~#6+v&efKorHf3
zThd=(GTDO$CN}6v+^DsCx;&gj@*zS0Jpt)CS7WD|cQ>tlE3~1cQf10|-*;5mX0#1D
znETlLRCRU~7$5Z;0WKl=Zh8Vd5kuv<RAo5}RvZlx*8@;YawyKwbNj2h{W~Zyv|Hti
zHFTo8D7&p|$7Xe6`YA@=z1;xwjwJJC=x$L<p9;T9M;^x30_^8_%`1CD#3$!!iCQ$O
z`d>wh4^!G-DReHB*~3(6on8v2yWM<*$viw79W*2P65S`$z>;!*J~x?*#aYX%Y!-N{
zqi}XH%<W5e7ysi%GNNWhsO0ZnA^~!dXnOsj`1h&0d|b*@RrYH0*s?rQk?}y@j;a_}
za+E|PQ}}wru(z%AC@k6pPd%Y0nT*Nes?iJ`LmS|F&l7uzF44$6``??EYVsfIgf^1D
z`sY3B%V}u&0C-uTN3Ej5=+7sb&_{1+JI+Zrm>~J`-=^7hTWh;4T9XOH$JgZGC_95m
z*Dwigv9FK;4Pc|m?xIy;6?Hb<%A~Q62nfd$L+cmGa=A#2qC8KZg%X&-YmKZa4faq=
zy$e-ByE-eC6w4fc(WK7En%kH%>ywYT@-ASO96-o$f#fp6-{tD<9M*&R0cgA~D)>hL
zBxWUM{%M41Bs>d)e8OjeOVdwkS!z~3m~@5ugW*kbrrAmOS!EQrC4WOs573_wU6aj|
zi37fR2(ArzR}dje=<fQ9JMs@DD0}AZMifixLot{^qikjBx?>m!e?v=D4y_0VnuhXv
z;=D^G0M}O38B@>%WB#YwI^X&rm5|xXoL6s9^B}1k^;Y%u1ED$AET=O*ahCwht6EID
zE=_%8aS?WKtMnbvZFx3|aPwN8&vYm!3g;~El|zxNA%eYz!@jT|9w3opqF%&B3#uv(
zw?_)Z0fQRqJ2yAH2wJ8`2LiPMEQ+((%jrZjKm|ji)t%hrm9d@{Hdat_4(M;(NaM$H
zo1s&ByBU@11W@EcUC2<X*+OrhF~L~<4A7@rwF`4XjSXrfCQJVk6jmYm>48Udm{5dP
zP$qUrPtY_(BQNkz5X?|hVFTkY%Xl41;=%L7&eu;nSMYewEB6hCe_G}7*k?qTJ-mx>
z0Me{>c0B0utM@Ta7P3<A44C&HxJ&UGn=i_WnaSgE<Z?nQRr-sYs-<{cH?@s7R`73h
z7Z4@xf*1xkf&3e2b7}rAom*%hvzD<heD-M=aN6chxM?jHeBbloKeTrbf{>=ssm@hf
z2M}Lp^%cntZZqva`oB2Nmvaa*JsD&k0BG~<HgPz{<52v~9@s%Pg&&r3Y^@C`H;rVV
zS+G;VEeWIW;9gHSzZ$<F@BKQU7n=@{A@Yk0|MSZx=Y2)4(Wblo$DiY|v;ZSULJD2H
zsv1JJku;M^x6=xA%S5+j@ZtK$Qa8&DJLJ}eN_T4?9#&O`!aq&O^6_OR#XtXp!GXO(
z5D%VV_xU!v);^+%Q~^5<Qj}^tA~wi0Y#BW}^(B2Y>az1*gW2XEqUB@J4;@@TAT4vq
z7|8BTYo@e%ai)$i15#8{NV<ZHmZ^z)`NQDRqnhtoifQ_q$W+86wOaUu*>9HW3|e(7
z_ANnU9z4|sP!R{@GeZ}NS0mAkwt!EAS|TyVXBY%H%l$u!<}D!)kOYU>Hhq+S{MUa5
z`}|{<+$w|Yhy>vU2L?H`p|>`3IuBffvM=YWiKfrZ=j*NF7C-_=4T=Z?;yBCbj+F4U
zIU2={Vfau?=)QDXALJ5CLuD(*4{jk3P6)%H@Wr<4gZ>4?4SNjqe_CMUDFE(P@$cO`
zq0~nCtM{r<zhB;WAtx~XvvB3+U6W+6dM3CrW~H@mu0>s!DOiy6A#_FbVB=?Jd3>KY
z0B^Xb1#C)jE*AH7zDz{NW@$s*Q)~+aA1SP%^hG+aS7qyK&5Gk-g2d;B{#UH4FE%DV
zmk>Pmp$ISM*vv5P+U_BJNZ>Qf3cGO%w~~(Yvp-XMHEqRZO`A2kNPeaPa;#$+Lma%%
zM%TPll;YcZL1Z*frO3s1-ZXRV=`}289lW#txK|f+OMB0|-C6HLftaT=_!b?lu_3xf
zEZF_QAOXB~MvMwcXJDbHmClR`(KUFOa>=^%&44tUfSKRu4o{9&0I<BHqs<+G6`5IG
zK{Q<p`p{_C=*?>Ig&+bK__-^uJ?R~x%c{GHmqpkh4b8S@C#+4?C{FM*56w^AW_Xk$
z2RsS4IAwN+C!~|WybR^_ROEE%Ki4TW3rQ%N#KuceNe)UoPT@RL^4aFIg7`@r{@@sT
zne3#S4I&$%Z$2k*L%`EwqmHJ=E<gL2j!yU#A3Duqo=D8eJ4;?ds2ouvd+(u+2WnE;
zG=*HFaiSOFk-=TO2+Ia%#Y8ji*C<P+>ROxt9P36Rd1_uB{z)Q2YTqNq^eXJM**1DJ
zMVLT-B&5msV%7!6x*EKJQF;D8`f8$fz<tcaBCSCN%0hCkJJ8DGioZNm8kAMf5yorE
z5=4sVo@R{=juo(xEESrN<jxV8QaLaXK`@saOU;B^));THg<0|fJ^2mAb3QRt!v<Ll
z&#8G}E@&!Jdo1m*V+N(~{#irZ&o>4}n-vh>_YX3O>ZeZu-Cuku<~&^0J@nn&ylP4_
zoXWbdkr48;8(?F|Jr<me-x;cI2|o+UGV5wnzXFUEy-nTBb0i`w*GcQX4|YFESV79&
z*d2j*u-V9S^8aJ&oTDpizCIt@W(OVHwr$(CeZ!7<V<#Q6W7{@6w(WE$ljr%p@60=E
zX05x{xp!Bcy>{I?f1IklKi?YQVy0zMxLf?OJv;!mD4ACiiCV^J9)#c2F;_%Bt-WSO
zY7TBy%6tXFRk6IID)c=D`((KVMIN5wtNvXA8U~CPdTFaZ2Pya$2f-VFpv)F}5%ZNM
znZ~3<Kj5kmSH?=E<~RXc>z$GnJec(32Ah>v@kXaFDQ6`ScM{Hj#fU=O&t>3?%z*%j
z4y-|yJ6)(M(q_(NS>d($UO>+Y&mFf`f%itvwV~Xj36pt*<(gjye_fi77uA324l0js
zh1&1{{*q?cE9ki1;PehCt8A>3Sp%h5_RZGWeL;DT{ix2}JU5$b{KkV53WVDW-d7T&
zEgaZnUkjP=5f_~i`DE)-^e$t}YQ-5P04xrHY;ixU{xuUzVunICeGXdi=Tz*9G4ZU9
zo)vXufsl;xW;n_Zsa|IbwPs3?Ew$f^@px61EFZy++YGpn1Oo!1CkV#thT=3`MWD1V
zDXP5B##UWqhC^u?jT-#^Kn*EL4_Jd~Kpj#({-Gz_{<UpOX4*zeF=gmPK@7s(fK83v
z9WWa5H1AHb0;GjRQl1g%BEdXg;_r(VpyL{BTxHpvLtedPz%2R^{GgNN6q7OO)^g-j
zn=mZH$yI|3+cXE*(x*Ox#FC2c$G*b2jT%vGj=lvmJ?)k~#Z2CJPEJy>s9}{6Fh^dw
z%r3BD#`?~IZy5$=mED0uWNvJ_u@X{v&{o50&764g=)9s9IF}#`j^Xf&Q2G943>0(o
zF{_6lRSKTKGze-?4YiXc;q|qMZ$~5v%Rzztb;I%r5mgbe2`#)YshmEbB{J1Ikh+tv
zJ6TQ%g(r6$@|`Gn4=v%PdrsgZp7q3!im(f*(}?H0|Jf&8&)DmybiF0yj@1cL*tsx{
zlk<Y_-#U(#BVj0^f^j`45M=^QT^RXtf_s5*KbN10%Pq4Al$;z=e?8u9icJnSg)ThQ
zH!A&?c5{va+SHIYZfm^XzHv@{yYUn3;8vWUbhPV*$ksZa7{Gh}VeoUiWy)uACY`k`
zC*vmVhdSWeb;W-lxQCs9jSg-D7Wb#59Te`kdAlt(pr)X>Pc)KSUzV~<)veZ|{s_k-
zGavcq{M22dM9~MW#JzX_?cGvSuOd_NXIvt$Ro1E^Ao#DJyHpiukfv!LSWIQA?qO*W
z^GIz-x+%<C1EE)64AD|%5<Zz(D@H~M(XN_46L>$?qTrD>S3@R10#+H+t%v&}70!0~
zQcnZ6`>sAI(0Zmp9!l_@ZI#>k1x-wBGPH;;2gEuM$3YUdQLml5nr;$hG-fRV7vwmz
z&GZfv07Ra4_^H}4dRs~s%~2_RBJ}&96hn!0507q3$hi8r+>U~x8SK74wlkM2Pth+B
zb+5t?U|83S<&?n3Hw?7BBXcqbwa*4OL>agzB_=VL9qG)Ax~O}WcemVeGu-?sWWj{m
zUF(9irRbgEb)6{S#wDC_?)j$w7T+*X+z?#@K$eY|As4!Titx6$4smBFyJ__o1;u8g
zvOewh{-7e9_DlYF7m(R^Ems{%3inIiTPgIb*vjYtM;BIy3nk`x7cN;o(vz~Hu$y7)
zk`(Y?H65{r*?o|$PKSp<EgLEB)uv|6aDe)R2+Xixmfh<p1Vd+x7N-len^%!AEI0Qg
zDr-mI-OF_9J%SWcqEXS2kP{tf$g1r5%CSMBxPC$ce~IFQb8|8Qr$zrsru|O(&4E_!
zzoePpSq_(iMgrFPZhaVOr)V-`B`H%sHklelN)m}1W#)zJeV5rn{~7h^j1SWHJI1v<
zS^uz{WcI}2f!iPN0}?l#IONm%15ptjoRFeNF5-pW<^xvoWXXc1$N80!<2_POE<rZ&
zJZtrS?uf09PEHQpei|KcS-N8D-{7P87~K+G$tnBy_hGzerYEQP7mR6AdU|vW%WfxU
z%)J^-vHnhsh*b5W;@8Kq9*Vv&KymxmLijZo!14kOhR+`|ij374Cp}aktOE`EwlU}T
z{^v&m1z3(saO6JerrRKB9+qF2gHd$eTo~MLM#+-bt>}ig@UIm>n<k;;6YNmQKBt0B
zo(2n3UZ&`IC<m>Du<hDNu4vaV%ZsSESBs8{1r=kxszHIjMn1@)u=ddiDHU$+S+h9v
zt)0DVj4T9T;+<<oJJchd%H*Az`IoU)H`bzbm<JugSyI8-XvycMAL|@FG(LwoPwV$-
zH$B~=MqW_4ahP(zLaPIB0?xMWpPuf-yx+ZE>x<;pJ0sjRaessw+gpXbQwK@5jZF5U
zem@~zcvm-#e5%{?P%&06qv3F23+IlUf^KqhN`ylG9!ND+O5x~%4dO5S)xie+{zHBd
z57Qz+L`Eqml}<{FElRZ%>0r89-GdD(@s|k>gFCZ*WsuPVfT)<!*nF)xKLU9qiqa%o
z)#P=xK1-=#4p&LVLHF6|2PLv~wMXfcQi8+{uQDvD^dS0=CCKPlcUUj!Z_1hKCV*@W
zy6Rtii<)!jz+Mh$-~Q6WrRTK068SFxrZ;XMCTm6WI!zP*f#1;N_bQWpSi;cM;oefm
zVS8U>^~G-|fI3H&%G&0iMxVa{UHbIP=S#n{hJ4!mJN#O7;>M#r>Wl{J$%PEYRG#au
zwFfbZ1<uWj#f1CtAcTeC5QH<~u*6V!$5j%;>VplT#6#=b$IoTxB2_<Bwfp8(BO%S?
zW(JXz)xFz@!i&2<n|?(c8V`7?Y1kWDqzq(8YtGY|19m>YZ(Bw-DJ?stT6Q3MIW%eW
zH6alF&MjBB+^vR4ilk4Y8IA>pV*4wXo{%6(T>TdCfK}Jz+#Wjh8+0ro5zI{I5#!SS
zHdpF|6L)H|;6R%{E=HaCZ75Z+YDgEc#$1N(;(c-H+g=0-R_KVZ^ayoh9C6ZV8sux7
z=_(q%CE$LEUTJ&b9GLc_zN>ZPyR3_blTVciRS-=`cK<eAj)*EVf{k^2X%)lVNNA)T
zxOCKdL?s$1$6l~{JQY<jyc$<N64CdBrd>Z6ZP_(-)Ir$enq+xu0%<x)-t!y$Z#&<n
zll>5kVHJKt2}M`P`I64W<Jj|vxYlha=E{+Cp#d;dKZZEVJ<1e!+RFZ>^?UWmlv4ql
zrFw{ey0~Rk>SD@;gD40OB?2v!*yMFlF2LF5nIiNsEVGq>RlCO&SmU}P69!2g7FOFs
zV6SJ8V1GvLkx!4R74kh0SZrJo=h_qn_disanw^;8DgsTZ5fu>3?>u{_`6Mf(g!uDK
zCjn9UF!B8SA_bYhJ^r?yZyarBaf~=ND>5k(cn}2SRSz89BW>F-X1+1$sq*&h6wm$g
zR+TKb+laLl7?N1woADMbcA!-8S<1K#%{G;~W`Lc4uginD8b2RBhd*x!fC?{n1KJ2@
z!zu2cO?11?&RZ#txW{fn|AhoO#q%BOM*s+|EO0F`mqC^J3_ET%cr!k<GeAc5rf9Vh
z^a_k?WpJP^?9%o}!jmqjp4FJ}Z|hC4E_MY(Ou%izMx+_h3Y!#&5;Ij|q7S+cWe{;`
zJ82={Q>(>q=8Bc^j+gPAIlxWfi#t0>HPlCmk~wr$737*JT7n4nYR!j)PFweLh66SU
zpJ1QBUSJ}EcsO-RP&5a^6q8Omh&xB5JeaHmbNAoDc_MddLj4Z(ATO4Zjn;ci@f+D5
zF*m+79QTqC!<gw=oXVYHqJo4Yyx?8bg9))}5MfwNdbC$wCPS^fM7-Cqj>2P1kBI8S
zob6Ib{Wf%HGUs9UR~UlektNyWcn3Ixk(u+<tKIa5NQDKJn>Wo;?-@apIv`-cL(s8Z
z)=br|xV>M!P2G6dFS%h`$14$YN}LZ`CN%@N<szU9`-x+PW@~C{Q@`sUJeoh)wXSKD
z>2GbwQKv~a4~2DHz}YV}gT6ssX3ZANA8xR)6#xBoVr%<z;B{*0aES{3$mmN<Xp8gm
z?(Fdqz5Mxo&acaloGs6OecjVBS7JdPGLOBkO<T@hmg2yKT5fefc&d@dIIbrk*T|8b
z-Rd=0DX)H4VCtJ3{Kxjp4h}7r9|eDvQv|VqPbeH_S5eZ|FUjJ-{X6PN&)Mg1k|xMj
zef8={#?tDkYPG#pNIqH6Q4;_=Iy3I?C@E=53R?NDSL7*571V#p580})q+Rqc+AV0!
zK`|+MgU~82D|3^>PS-iqOXBPxWRZv^a|GO4wafpg6>7iRR0XOhjU+0grf;ufVYyEP
zTCbiXlGjL*`QP~sGx-Wt-7yp)Skr{H7G<cePjg^dLqO@aTq55`@J|9N|EOgna0{wB
zYL&&2hHI}_^GivN;7O*&-5)-g2lMQ)La#1w^AnHt6LX9B`bx|5BxSe50?FMaf1b5v
zXwXQRv!O5OpbGQ0Eyz3_+#xC$$-Gtr^c)#$YB?r8?S4SFRpef?-8=Yj`m;R0<t7VN
zmnrF+ObI1ZD4vV7Ashm1+UN_36P0|J{u1RUV$scvw~oW5lhU|VRdo7s=MAKp(nFBn
zzR1lk8>HtPnE)~_jg$5>!C5vFS*_l@Z4JjlsNlm6(pdPcFoNw(I`A{u-5b|qUoj9m
zj9nx5<;X;*v^a?8ZT5GIz+&N3xZ(HX3%H823((7Y%uv+T7nuOR#8JQ}jb{&$#Wjv`
z*lyF%TitPV)d&fXAZZ)gVZ@nyM1|2bZOr#McWWJ7Hdfw{CM^Mebc_}?Kpi~6$(c5!
z{-7S8$#cH3;IeE{uc@)A_1$zI@cIq3YxwmLB<opC7Z-?(Zx|^G50D6m&X7#C#%3%p
zw20F`|5kZhOMw9da1Q!{*k@q6f?4xYxX+jF_FQg}?6(+dy7f81mtYc2DD9udqQOiq
zXCf-XW!OMdrzP`$^2`Xk75MAJ*kjf8`DP-&b^1HZe|uX`4<7ub!*txa4ngHQDon5}
zt<*{I6ISTdBV@+$r$d245ST7u&$nxGK&zwoI^+<)j;1>R!}8E@3sC8gp6n;$HFV`2
zGOwi^S9?6;b$cTaP5Q{TdUX&#X|LF=U2~vH4HNa0Q@YeRdpk#ayVSSnnY??wRW(9q
zZ5$796nD`5&`#d1PhSs~@<Sx5d=;EG!u})(?V*r=3?AohAj{S4IeJ&+cHq)+^mknA
zK}!#o`Gp9e03FDU)VF-dl#gxZe8_Dmz{M+p3mY(1vH&4+RWj{o^4GCao*{E9PK6-v
z(>A-QSR@zorhgy=#J!^9zUtfAoFAgmZ&lYy`j?6p3~Rg7<^jW>mpP7kV@E%eW^-~+
zf0(_%bIVz1i`FpeI`ED>Gat>M5f_~yXD>!TvuOZ^)ccRJ%GboGaGg59ns=|6b<4(i
zj6d~4NoZyB2k8lZ(Wjd+Bve34C02O7Rtym}a+&@mDZkUCm}$&Co?i-Muye7+mPW{1
zPHNy?(GY)PHr9RdhM(*xZmUcA6jyT~GAhGZY)b{hYLAPge+afb?m(k@7(%cw$;Fd1
z=0P_Jw}udPAIIOP+N(Y2{B|%!8iEhXGmoqwMCW=e=N_-xb#7a`R#R4RPkc6ovY5uc
z6gjf(tRD-vFfnzoeRKRt$%!NK|J1CpasC$;#=^zH2JDp;0ch(wewD0A82+V&5)V`g
z<Jz0NvB~e{iA-vhH>)l3XlcUk)54Rsqe>#DrX4rQd$OPFng49HwBYJolg`p#6(X2A
z+~~Q_nX4V`gW$d^{qSrObe(;=SYa&`5PuY`<o9Xj%bEm#?Q?N0;Y7z!!Vp6UN7cES
z;rl_@KYQn80r>mJ#h9^nTjl*V>vU-2Bj9bJ8gnadc27;iL{R6$MS>7nb$BQB@NLp(
zLbV%nNVO@Lzfmuz4uus>{PD+KwVulXSWrlT=tJ<aQM?j4uoOBsUr{Qx)E-*ZyU*;~
zlEvyGyfci>>ZGQL1$H$K_CvJD&mA=exueiUN$S3!Yk-oO?CG!F{gTE?KgCORQZM5k
z?9w=T!Vy%Z*6w@3u(|QdOSp`>3A7On^k99k!o}d9cJy8h^y0P#w<>BU{{HC7oRBx+
zj(W#NglNtp&XVLzGqz7!)>|?^C4|Y(hWE_1ze%FTk)DNXXjGvpu1IA>R>Z$r7?Pek
zHDY6?y#ZoA>i*Omn<_#7u|g*bms#B_U0ZtGb78)r3N_l1<BgoC*cv+15BmL5%VFSX
zHE508GH)P<J@W<4O-xi~Y~k`Hc$(_l(J1G?qu$af4`!)mJJ_<~^$83Gpoi7iojwI5
zY-)^rzkbUOoXMh<nS0wf{UM-_S=xza>lRbF*$a?10I^;PmG1x;X;_7BYkB%Tc1LDQ
zt%S@nAw%0ojuAiA7J`;szO}KWLXi-#<ld{<pvJf;+trJl?}?|kmk87$1IFc-6o_xn
zNv;n0;F(P05}ju7<HgcLl~0!8Bc*7Q?SH_c3yWDT!p(DmjD=|M<~oFxi@@N=$%zHb
zoB?e4Ov!<g@@hL$N!4DMmZvS=iI?{_#3@3DtdxHi?K!}q=Xz~ja2b+wcb8hY)l|A^
zTao-In_wP^WKSt_VjN5ldC}^-->D_CL|_hmkM_&P$V#34sJ*~om%?E=dy9rruqb%6
zcJ_(caI^-5NhB5r;?SAS1*VbAT|~mst^hSGWNt@DwBcN{IKhm+657ATy>YO_z}3z8
zyotVLLbPG?Os}R@OO+sB7R5uM+M|+XTi)4I{wN309O(0T9XS22@T&g@-q2reP?_wu
zje%=pCD)6>?~`ET*aS#fk7f=UFnlr1eZz|*vYvdQyMk(e^{I)^#?)_*6kZ?aHUSvT
zm#EZAPM}*0NC@HxNtfZ3TMiJA8wYJBaue1^$dNXq;XrJ>jPIJi@Q`T9YRY63IwX!;
zp4B$V=&@C<iQ-BdiVXjC9m3V}bJp!?|4=UlqE9)*1meBB7D8`oOTkk1;im|l)CmVY
z!%-Uc%$6MXz&KP5s<#0!efjSAJPqK8eO<$d6@9*PA3gN2d48I8e(DEOh={?p>ddb%
zHltuPAtB;=f@X0msuHUljZD55CWIHzYj+5F(iXO3i&07?n@Dp8CvY$u-yoVoMAJmB
zaA;@_scW7)E@MUlLcl!c*5(bO_4t;SA-;jao9NhiCca+j97#r$SW%=+BLo0oT4-K|
z9YAOoV273n$L=Sdi><<Es1v3%^Mv7gfZL23XOo>M<nJXEzNaHEhFhSs$@gY%44s;-
zQV?{FGCjJ}(s-UcFXh|H=vlGk&kGHRL~WME=EV_)nnPT`X4-(jwEn0W*6dKY8AgFH
zYV)h!tVO>=6x;U19AxNes{^FQhblrNu4lttDUd1E!u)|{ubfROy~!%>RR-}dx6OG9
z>^^A`qjIE0__6V|z;SAgf>+K#VQhj^qc#eiIPW-%8qP+hP1JOsQ-@q6xFJrq>7}f3
zBn(O{p6^8*Rnr8=dC!#~q@uUsBcu_`W76?R<h=8xdx8SNLGvfmBn3!RUm7E4R&EG#
z@)wP%RLmDi&r_Nu#Fg~uVfQcp)zDDL6rQ)@#mo{RaFJdoD)m7phCR?Q!IQOzKgh$C
zm)gXRH*GwfhEm3^>NVa0IB~vIOXBG~@^fD`o-HVr2||*ST&Rc-T&i|sQ!V6u6*;qG
zt9(L^|L~}z@~T^R_X1Fa*-=1MDtg8%`O1!tdVn4U^#_&)@NV&a31Ik{`sXx<?z}X~
z#o9n?!}svS8)*;MYtR?2TH}PdPj)a|I?X9~Sj>}*;B5G&-8}qNQUt4m)4lQ83s6z)
zCbVWRAKF*5#?w^n7;jTfyY|o$Ejps!R~{<Wz{SY%$Y*I>zXeois>h$$hkvs$_QV3~
zMm^DKyGZ%VgKn;)IMBTTDoQvxfcUdqOtPgHkq~_anTfeTcj|Sg2BJJx0CWI>JdFjM
z{5}LC+G8|AhwcGSIuuH@S+#Z}Zn&Ov#4pRj9J4kd%EueUM<|)5sD3y}L3$O9f^=C_
zZH*PfNBFf2Ed+2oW}P4sCZX^wZ6b>nmUv|}8_@4DyyS!?N+lr##LxisS)xw&Fug#f
ziXBb<P3>F7r3MRzlcvq1;b8@CHWpa(hk-WV>IXz9SPV6odU&%ro()fG`)?7XY3;Y)
zPfAoL%8k>uBeT{#CN_HCXSLy~InLK%$;&qri{YTJQfL82nJ$|pZc*vm<b?!SQ4@ie
z9rVEr*zj*xQ%jWrZu|>wjPqAJaO%Gma^iXIUAH`?s7B09(r+(pI0$b@VT__7_CIzl
zf^(*iztdPJ9qVY`x6`u8{|=e=gj$%pi5)q4Zkb+)L#CcjXU)@}hB7ch`^@tG<Gfil
zu{Kc&t#%E#U+zp7P|cn(&3zoG3}0^T7X93bI{agD(6&x8Q+gKFhmP)AXN%Ft_zij$
zU-m@CxlpN2anp&&Cm!nZ;7^aQlNK!l9Z;cq6b)2PesEk(e5AbSa7JJWLSep?tUILJ
z6EA^35ORf8Ae3HRTcsn|)_&*rypo=UC@C#!5Ka%Es+A1FiC3sO7)^$LpocBz$L6@S
za9~IvyBbzSurRlhNVWV@K|MwU`TM~jHT)>&{5#wVZ*1-lHr;Im++WUjvn&+|(U~1f
zvCZc%vr;^w(kN(%dGmQL0uZ|HbZm&_tYHvExvH7d9AwsmKu1xDyfK{(MWX}Sr#QR;
zBeH7%Wrbs}@rK8`Qg;G-SsnW6tf6ok1rBN+%1+y7EyycI@<o1Ej;aK7@`44Ewuga_
z8!PYff(&GhUi?y{MpZ%1hR)#t>{=p-Mf&z$=}^b9X2apb^+b1m@4<cbkb`8)Pw1bH
z7&dT=32+PKMpV$l?@Wv_;|VnmvueqBGbEpYSu8wjlDn#y%Bn!>LXnP&@rnB}2n`Qt
zaVlvl%V3IUjkSQn>9n;H6~z?+uXaewod@7ifGG0vnv8OQ{DAiq3g3?|53A-FD_6V;
zY8-`uU9^!5mme8*d}UHCb&|nwYz%5gCYYZk+YjT+>)`LQJ{synpis^1t01m8Zm;%$
zL_!yY?3YtqF~VUipyY39lJN_rs$^ylMB(<D$!Q%&5g4S$R!4Wt^q5brDmjZWARf-P
zLR=f-U;&t=Jd$_Ptvfg9z0KI;)<-%Iw9Zw<GvxUe6zA%Sj|)WRbo4mI)4!`5^MJra
z*cu~}>6I+!zw-%B+&Bk*v}cx~3V{APN$cr7pSM4Edx$#S-Rb^4WzZGE;?0g%P72U)
zfla*M=daR`u@>i@p`F}DU5WLrT&XZPb)&aLjmQk6vn*V<4~I7`d&wruo68F)`=D>n
z5^nbVwB(hNg?V58_`b-P8%%ia`8=C=rT*D%JN<~mzMd=OsoJmlvv<$A><Q>hM(=06
zHQ=C<#W-Z*14u-_x2)kASrhj>7jotq7@k72VRK&dA(n>4#pf<DPP5%j4GDJYASlld
z73euiIRHP_cm~Xw?=TX?u(s5Jwd>CsIbFRj2LtCtA0?)<PF1yU*A0)&J)_sLGOhSE
zp?FBRNPf$TVrOh!1^30^Z1$qzxT<E}5Az7);g2qI`f@}R>+P=OZpBa#?7eM8&lQV2
zgI3iqIeuTOns0MW<+Ss#2Lq1KU}uiU1e3quC!Us%2hBY{Mv*eWI|qG8G)w@{YX@<t
zWzv#&6JfJMi=<~;r*{{%H}{6gmA?{z098B)Rwh<fV2-LVSg|(HJDd%`nPie}A037`
zNF2_3e3x_WXL<L{JDphZBOS1CIVgHQ_71D8nD|P$S(r94cEOQ^oLU)aAg3gzoXkW(
zY1Nj))#KOTl*XC1=<mv}-<=hT@jeNZO<N<2V2;Mo`9?AQO8fl&I^&r0a*077Cr{h#
z!hTB~$6un!o7Q<?t1JjebEHC=WyxV$4I+!wp4A)I%=HrnliR<_1{pC*;R{dmHONm?
zzQYkLvPcV}zAHXArt!?)q!?CSd4?&G4%EY{V62&bclDRkM$?Txz8ktoMY*RY=Yr#p
z(i2$<j;|cH_tZVZ!kpQFb|!e?h^RUq_}+C0h${7eNcQ~&uM!7{WT}qt&@h|VOukL!
zEEGo`CPA~(rA88Ms1;bp_m%<TybGk`?`hHN{_%77Z)nwu`4cP@qxZ$0SU=L7ODy_2
zbG~hjNTd01#P_6?5}{>f8ctbGb_RB`%rt!QBxme7@S)6;R$Mo`OMbVHmqSx`dv9kC
z*<0|)BL%fVZ8iY$*l+3vXdqdNcD-kQ?voRbqhwe{@%5B)NydWml|)8Z9`A&$dP4`_
zQwV~=BQZkk<}7n|m`=OT=KV&0Pf?W#2md8&E@>q4th8r!;Yu9I!1SEvS0pNdEeifo
z_kH|J)%UJLm`Xb$gzFcDbh>u5q*pO&iNAX8rSETby(w?N-L=qAs~rR*-lD@GOhEtw
zOv{oO6Z82H>TSRbjBjL~U$f;8GkJEZl{rgPP&62x^docKSQSZ=i$@YcVbwI2cdSZz
zQANO<v8?7U8o?STNLHtCNBepOM0JIZ_h<v1<9!7L-ui9Hn!OFz5yIFVpPg9byv_}l
z)1w%dRgw`PJ{zNIHwq`bm#16)KwF@=Tdt^~LJiHm$OyCUW0SjB2s-1E%P437-x^dS
zTAvErPlXwtM6L=9zY>L#f5x3H)xoO`D|HkKQ!d6nuEYx$A&zD4t}}4etWf&gk8&V*
z<Pg7KS`?~XBkUa)R9wiMA2t>j!Yhs06l?&4O7sX=5`_!UheC}jJDiYwWa&-Zpv@tJ
zE7J!X_rntdkr2sN|7{s4GUOXXA2V|g?^M6k=VVj`(RfU03A*=_s+r3Qs(8mVUVLnI
z3JfKMP@OwMZiq8ks)dsK{`q~wqrDfbSn<jfAQUWpUCc*34;@i2uFvgGean0r2}f*l
zhQf1@j}#7wMMi*;P@Bhn?Zka3y+V+tqI)sfKEYRbWNXEN)I&%V=y|){)0o5SlO8b^
z3zBX3@ptF$(J3TS7YRIjADD4uoHp#vV3Y{kgZicbre#iO@Zoa*mCk6%x*ys*dc1r!
z`S^YQnw9l>3G+*MJBrUxc|GU;4ko2uh5a1;=*Ax~my0M>B;1Kr8afaJW&WgWP*|as
zJl}Yeu!39hB|5)dLGDfcX``dnZqEk$D;-pK^+LaD*kSD%Fhvg*b46YdYm;zNb`<5G
zOl__X_sej%Pt%sXD<~VG&`Zd%J57kyM8OwF4SOI!tXgL>S_F#)gWYHHb=1!)7PWxG
zz2P0unH@WK?oNdq$x^?TzrCRR8N&q6191WuI2xEK_x9&>Ls+LoY@7g(JKmcjVdwOy
z2>gJ2)FAit##X31=pwvZWptuvyS$r4Ax{CXLW8CaU-`mq+uAiy2p&SS-%(vbn9k?h
zW6pl_I_HThiCQD(6e!1Cv#`>jH@(hDbu0%Uhz9&(*X6ySt<d#Yl*XgF;Gr2xB5ku0
zL)C~k{-wYbgkDPqTGOfIifJd+nD6Ut{(JT5S;U;n>L##;GD~TkLPzm1D^%ICYdiQ5
z?wv8l=u}w-Q;sJ=;QMzj2?}@4Ca1n2dPnoaWXwQ`_i{JPy+HC)fWeu#5P9I2JaG}g
z{EH7^wkW6`$sEAdK|JNg<=PYKCH_Ehh{&p0cTQB!#{qG(6!;tb>dK^I<!xLXFxCQw
zJ4OOWVrnJ~HjZfTqI}P@iNFQ{$>u5Z?zNpI&x?i0(jXfAI%#yWY%I9NXR3(rckE|=
zvnxKy?MGfP=K#`lQ|Sy*Yt9gB4LbxdC<V_MaKM=_)64{S(_kSEC+PPzyty;BqYTm;
z;`ipi@3EpZRBXyv-1RP}oBDk$x-VpfxLEVe$F2pTK<Le3JEAeTZ~>GpIHBc>4+-6L
zK&TM**{+n6Bh{zHrZmq}FQlIGB9M@w6=Nd);zJrujC2o1a;MIr)0bv-)%O617wT4r
z=>5sRr+Dw=HZKLG>Q6>ui;nyAc_U}7FqC~4f1hTk1#latsV^K+t7tnu1yV{&&4;Qi
zYcW&7YR-%GE8wU<Aq*KP2~-UF0rI!hZ4O!uF>11HnC1x)))fgT#$a;}5~8SKV29Lu
z4WNP#nMObnh}h~5J*skPkkmDUg@)xJSybwZU4&8*R>!X^+rI!2E+g<*NN~`3TEsGy
zV1UTHPx=un#O!P1)=HG$V)2j=NhsT|ZIDs8#C35|$c>h>SR8g<6hF484uPk|BAk$?
z*bX2<Jf2RSW3n|cw(7nkhu!&%8I&|Vssz;Pj+wLnWXMNG$<hHti81}yTP`iIQwPsx
zY_LK7uZNFdF)AeCP`0T@A#q_*7D!ld3;|s`&2pBEQP5NW2{eD&J4Ek-KQJ)<OY)c!
zr<xq~ZUMViix_)Kq39J3kEho~SGX|MkTD@9$qvaUm|W?Agu4Jsq@6_L(HKTXgqK`P
z^F6F=ga*4YV6szix^~QVxGxt?O6+Orjcc9m>DNq|{3RWFJSz?Z|A6gJ+2r0Uzh!jC
z(ER{8&^`K*0ozdCv#iU{=Z}JC0N~288Q}B$adk)(II6TqmHfaWRJ2AZ|9o|WHx>pe
zkL0Yce*FgD2@#KjL<M8kbom*)0@(<7l|p~bFySj;CuKW8_UoWM$O%1zY#J59rjbcp
z)W6XH*h-qqbM?clfVMEF`~4WL{}1O;@`fgiTgeWRL5&c?D-C<S!v(O)v|TM0&uZRe
zXS8T2SzjqnND_k^NPnHy*->d^y%%P+HI9~8oGR~qs#6U9b|aKO`#6i`)5VadSf1+p
zuR@G8jA}t{;-QyggC8_W)(=?FO~rzb_lG`=wOZ!X=ErZL0jVOcs}onhpgKIX@V-sl
zj7<Azz+c8e#L?P21Dfno{h5&7cD=23TN{2+c8u>?d^`@l;y3#F2R#1m2cZ#wGzTEU
zZJ*Anm0~-v;hbspjv9m8HEdtzj}$C*Yg9Awb_poc=XZ4Z5XdC<E&T&|s1y=>K_2X1
zkVoG+_I}?ceEz?X$4m1V+M&dTok465IpAf}&v)h=8d#c00bpybZOz%%JAa2G@-%g)
zB>74bh%+wzMp+<h#Q(gx+<TDHyz@l!_(C|$`*h4P9nQ)-&lC9J9oN^kWdibg_D>~G
zR4W`IyIoPl1z7uy7dx{1-umhR<DbM<Mvkj!aPSg;s0i5Y&fE_KT0`!f4(k3l!Epg$
zYGVp`<NiW8QtxQK5RP_l;6DgQM3WC*`suTx*q}k>c)N)lM?C1%DLKpm!V~Dq70<z-
z<@4@hSey*At3jli-8HEE2QC=v=^{C^m5&@@;ZqJH<!A60!NGTe?ePEXVYB}?cm1`8
z&GoOe8E`zw0h9~K4I~9)<_1nDSyQsGeC>0qzzGPzF^W1mxS2b+xf1^?tpBg=%jLhS
z`>g-z%k}^1`;QdM|JC<Dep&xNe*aZf`=5QkUa!Am0D7cgg0eNlq-=u$D>EsunYsUU
z$-?@d%YS}-bv?<Xg4ZYh3e(-ejhLAU$eG1U!12FB`ma!#|1ta%GanzYE*A@enG=o~
zh@8s+|L;KmPXq8d3k~R(3=gHk!U4y^0c6Y(2EwNx0PAxxf#i7v!1QcHU_&kjur`Yl
zc>X`W6Xqa7{`VdD;Q!?u==49W5MNeKAW<GEusY{oC;ul1_WwS|;6KrQd8Y#908SNg
zfU$4_QA+TDM8%E3_W}$k5qVWfZS@As!atz6Okaa#`bUtCot;A;j#1pf)X~h^!IGE*
zh+IYZbvu2P7%;Ag;A>v%ix`lkv{gl<b!fl-B^PUR7vOyn9Z;?i0eFzN1Vku>2O5?`
z0+q@kfHV0GU|)$1lqv#XR_>SRS{3(~4|w2B0X#4=4-;ruiVw!Y{%>=11}c!hiWRs~
zir=tU>;c;FRJsca#=-GV<3AUMD$xd>ip4L}*AV_OaekQ$fH2tzz_&p{An;%Uiv6Et
ziVDy;9jn3TFajEQJxKN6BP1MR00pWHkD#&tJCk3};eSmeI~UOD@N3P*%FQAm@Lz{P
zcxC5!S!=0kc09$A_+INY!NpQoq4R3lS2t)>FQXDDCkjglD<63yk&wWW1(}h9CNV)u
zr61!$I#+>Di&mrS&^9gD>Tb6bFRZ)Gx%$(daR2Rg-8%pC!tl~(aoP3by)EzSGek;2
zfkKC6o1|%GX9c(ei+@=Saeg{}&d8v%ScW)4Y^I(6q{dZu!s#OelQRjCMpAFE5cDuJ
zDe0rF?Q1L#1&?lWDODWfb41R2KAQP7a`h9DP%-lo8^0)yPNT~sOk#dN9JNcEJs7=d
zUAx{BoEI_OLpKrKSMiV>{!v6R^Uct+S<=eOX0os7^Bn*H%shQ^3JRn6at^;bL_Pn`
z-nmXX$!sL|wjFO?ytL+>N4~-cYc(fWCl~1CbyH0D^$L|NvP{-&^pvZb8CQ4g`a72y
ze?0BWDD>R-0SO<1O+T$ym_nDrU`lUzyK5Kh6}>82MX^P(5g8xh8PPR}XM(gV+$rmY
z<_gPb@(r*n-zj<VeT&jB;x&}9F7hSt<~s*EJPe>eOiKy^rDl-S1imhPRfdkF8TEIh
z`5=-BcO6hmxD}NMts`P{kS19229{%2Xp+nV6)c#-fP@0gHd4!kr7kXAq*KC<xCCt>
zLa0A+7Udn5k~G3A2Zo|`(9Hy@kCe|z>vp7I&>x`j2ci_V5B=(w{u(x+RJdBWBlkzP
z=|Pqmd{a!4YR`N?W8}v@W}4<V`Q*-V@1~QbIcWwU6lD+d8q@1pvc0N~f$t&vlC7cq
zWA@W@qss_x+^s^K0#9kd%76jU9*^^k{5Ctk>Dx7{K;|6VKD8quV}j<O?;!Tw=8GY3
z&n4jE%5PQsRPSJe!}V@bl+~V<*CIFbkd4-6nbDCB@O?Ly2qGX@$SR!$56W)#8Rotu
zmc4yu9Fc`8iu8(v-!&&qp>V*oKIcSV+amA>WAKLt4RKdd`Jj@95)DCMty6v&A4?Be
zUph>YUjo_mT4}NPtXQmhA1OnT(f1<d@0I{KAhaFAGr{@2@d?XhO*YbZx}rRi1`N0P
zUpYL^RqaKHvy`@`&G5=p#cL!J4>Lc>Z+?Z{F(#y0Db6#6ya~Mg8UD+>m!k_APgT4n
zi9!9Gcr%ndXS9q7-abcni%m*c?4D-%dN{XFiI)=?zt8a|fNdT<+K}l&E(MAvE@21Y
z+9L+N-Wl3d1jYy32>kl0<Y<>5oQax_EIap3Ndl0Pm=zrIH9~kZ`m5%gXGJSAG^t#@
znxL0~V#(^SfcRlf@Ba<7XnEHV1BWFtGovAGY7?qSSp(%VFMh(5i9$jkWnAqIx$Y-i
zAzGKIIlM28VF1&gjF>`ok;wNs_$~#Qa`Mq&<_Y1gV$e9@m^Hmh_7F|AbN`lmKx+fD
zQGRA~ZP!EyPASyW%GplcOj2Mb`I<3bQMgXCetO()BYUiDdGgB)#U3S}1MTgnW9v*`
zV1=p(FMmhEJWBlpu2(6cKr&hmYElE??1zeLCCU?z5OZ<mG-K85<GGiDplCB-xBXhh
z^4Ie7jvsyO&tfaHRF3-0?lAN1`hp<tUUAmcNl7ra^EJH_7(&1wL^u-1x#tsiV+}sf
zmp#7+DAJH-doBWv-&qtff<SM4KZ#E!r^C3N9xzbH*k6+Tmwge~iI$C++{Cz4F6MBs
zKKRAAvwZ1fjGF3!CIY`wGjtvSulX<-=T@{f=*pCA=JR>8Sx!)Qdj;~z9@-vHdwMZ5
z;<Qa_dFoY!g}VZ9(;?PrJvFrg{Bd=Sd9TH3VPhlT$Z?1qIOGnC5-S?zw0TCM&_arO
zd-`WEU^GJ1nL9f5Ji{2ktiWQCgak4n!HJJcgGSOIa8t7Mnult@{5W?2*1WTq?kq>T
zAcR(}e{qX;v*9i0k)Gjne$wAA6M76P(Z#4YvZyj}ZxQ_{SG43x!OGWSP}5ApcdIA8
zWXEGD$QD!1VUPOBx?8y|49x|t;Qsf>e`d$5)@T={c;2^E+{`=jH6vMDGeS|Z1s^l0
zzYYfO0!X`|-nhWrnqa*P;K;isX!UgA_YvPYh^BaPTqQV}Tcb<w7n+^oJGEfW6UKJ9
zxEO^HJD4wvFw;xl=1#4{qamz5UIbzadU6Pl3k`_5*uAe_6TrG=RD>}Q_@=j~Gj?e8
z#4(YX)lHNRFrdxvv^3Km*BV~DLGeLv5A#3pwLGd0o{2ev;4MV}MkQrbr)9?-lEyg7
ztWWy%_M0&>;sV_1S?@x33Z4@&K~O>D5wu^G^Bp$~)?9>$l8nLDaXm6JmPaf6;aJ1h
zoMK+n@zscI1wtu3{(#iY5wKkj&tF5&EajbGlk)XgN|e|#(Eqq&8SfCYUVNCFd`{LI
zSqsf|5_WM&CFNxYe3!ujHxUw1Zf9@jzQk*l9*E4__<JWKyZGenWp^`=YISAt*EV#@
z4_WYN7zpYJMPAU-<OcTIEL;iB&j#T{!d^w4l2TJ*n@<*&>`#_by*O({B1h^z_4*nc
z_=A<10WYi3k6K^ysIP_FG?w(PrkzZ-XDu$&!Zp>6m4b2sATA%ISa(ugU-u260lq}E
zIBcV2hHgQx$e3oy=RwW1K)ad>ON)&BOhsr#hX(KWyj>#nzAEQC?5A+~V{ZAb$_#>B
zI7^iid0-8zB@}#O(ELl8nuCj6o8m{_ck%%_hAkFyL)z4uVclHTZu5`=Wyt~U&xurh
z>dSDrS0DCiKq&`p(-txP!d9^{LAI!W0exDkUnuq-ZG}09g?Q}#DXr7vC2o2|%Z|JQ
zgI~yZ$|deIK1?OhFav`G6B%kLs0SV7ys6yk@NNVYBnkH-O|lT204KN3>(q#=L=0gH
z9X%Pm=)1=kF@^4-d@)ti(&mZ+ffbJX-KD<YrAfb^0B&%o&h*_PD)4wOk~(-$3~ZA0
z<#n==jcKnx)0W_*EuLJT%834iM9bkGh&EA6_T)+ssm%GJaTKJulE8WbwqNu=rG>Z0
zDiK?Hy`5wh3AYF|bG2HsYDip-xF}Q9iY?8GK_N%k%y2^Jf=Y-dyFln9T<3zG@i?+Q
zvA0(50DKq<Acmk^O+Q;ge)J`OxHyl6`T4-vDQ6o~G}Swpo@J){Z+Mc(V_75E^lhco
zB|4k5shEe8DV8!@ohZ&~yO`exMN@Xz&NRZ-N2#K-HmHIM%FR2e!}tc27%Xm~|NXTv
z{ALP~OJuBDI)FvnR-mL&*d;oE;`Qxy2giIu5YRkQHYC$UV7x)Sxmj39@*Qgo3zfZy
zM&*QK-inAPe(7dACPvc756kxnktL2}*>b>Xf~jPhx+e2sg;sujpY0DSJ*KMWoeV~A
zyaWr}U}dq2w}?#)9oB64&)@NIyWbybl6m6TwXubMg4tZcZg=SOA0i?KcMD9@&=|Uo
zF9Wpw+G7M2KAjIsB`z>OlT-An(^9Rk);w!^40Y}X1D`!*#Qa}94|N%VwUZ6kiZ-Up
z>soT8P}s2KX12NFpkhJ=$_F$@1!!9YRvIaXDWI%GYFPNZ2#t`hGGz|2%FH)N*`Yq(
zJ}JW1qkV!hAv$?kwakGcMs!VXeJi{C27rZX5z~e~1v_ibdm^t81}=b<uk{&bV!Zm$
zz7=6%u$gtFN=mr`wUV1zDkT^X2|M}jPU5PtlwLP@DJ(7;(STimo|Pv)Bc~s{qn1b$
zZFI5_0$GKbcRyP4pf0THAUH^%ia;3y$2ZQsODNg0nhmrJd&8i`Y&9x_7%;DUBY?I;
zVhIe!t+0As`FEn8CV7!1E4e5eLoW2cy|j_c=9s}?Ml{scy^o?}??_|x1wKuvH?jG>
zdRy?2H-??#KYxJX8w6+ex6(3rA+U7njNB{kbdGR2XKZq|nv~1YgSti4R~f?iQ#na&
zl9kI}@)@~9KLp2qI8ZM?tgqAPx&ykKg={fwCUwx6<`Juxx+wAYIw3o#8;v|Ao`Pl<
z-K@zX`nfNbiTv6=rIs=#z)I)+AyZBzEt*3rlHwfrLa~h9<J2b>%%tZ-v)P0s2V0(D
z@2NM7KOA1h6MOXWvZKELg6PPX^)At~Lr_sQ>GDgY)#(d?rr!KZ$~&sD7zSvoVn{vZ
z?AodSBQD{lRqhU1Z*s|xcU5p!833@g+N9JKVj+^MS98{3PY7|A<ghCCbDJ+5nn}dK
z^O^;3-)=W>XjkuTA>~!`0JKl`2h%U?2EgNj&rg`X&7IGtJwqtebFgWzKls7x&=h2{
zi_;K8vS{0=#ORPujLOVV?*gQ4>Sftq3$e_(YksHB_gfIgZIVQ0*gzd>(+6$;^z@1l
zt27nG7%$`NhM2BXa=r^zF*UZ<PPsw#yX0l#H7wQyCvQ$1-=LcE`q9i%YhdorgRszJ
zF#!3K$aU!r#ahHe2uqM594L)>hR_RfV&M8DysO2H$x85ub0@I_@dDt;ZvR-@*!2DW
zXCCsMz$eZ#*SbnI;wxpqyrkP_fma9aQS$^_QA1Q4$v>&c;rkdka(Qw6(h^n`!UM|b
zoHW|of<#8@z|a+|S31LN#cNHGI=@X%@1HK{0NDGHF~J48cZti3ZfWQ3VNs)zQi{<X
zpNRqquWsIE?qQ>;69e$~K~RiHu9&G#$Qn!#(=m_^R?yA2dZ0xHM@z`4*CqHaErTvy
z7iF>EpJY5aIs@TWFO`h3l(gt+yF-xest|EG3te12B;Ewoopa`iqkvxN5HZyWiR}um
zHvr@Z=^DLsmHO**^|U{&B5sxVi)jf%lez}#&l`>Hl=sR$?O%ZZ!hmRKK;NxyA0D1F
z5q;=|Y1birPVf&rThn`SpYc4PAzJd%jG77fdnI8h2pW0ZsWQdSV`2d6tGGj*Ui{;^
zzs$Wws#jAEkY#erPdeoYJ2OMJ?@!%+HVay2#_w$A9_PIpe{BcOW6Kol;bJ{NY0-lN
zsKh)W8|(BG-4Q^P3z(IdS0_Z1l{X>@hNi)K?M!z<NrNnZpq5lJGft=Zz=n}9%JcN?
z$r*S_Hf%oDmbi3-QDUl{hUn7JNRtq~z|i3(G^#gHLdwLd(!F`bEZ+`h1m%{djY=vO
zT|T=UYSQubc<pVS&_BF&9VYm9|MuwAZv~Fegt*Q)%>w?&>gB7AW4Ji`6p|v%(sl`k
zs}>B5`65r}!fa3uw$Zhi|L${X3~8zY`~X@ljv%Fd6^qp{VB&8T&9yAzq@g;``k<~s
zkGuGQpVsMrVl`<e>sK*3V9Fs{zce-OCC<gg?y2Iez?Cat-Gk~4A!-4L9Vl-=pfmRv
z%-m>o*#VkXUKx{ZHC8e<v6mZ$hv0vNj3lhgjHH6$wdB9|<zObf?S6<$5n$$r-+(*Z
z4m{ON?68!@GU^L3?Bz@X-0Iisy0oCBIsVwXVPbn1YOi8I&|B%dEsJuUJWcJ^)<Hjn
zG&q4{Jk++98eoSx<kehcBcC{hgEA$|;rcK4m;*qCYQa3$QrYq@$edMVWW>ajh6R2R
zL8$*|c|j8Ui$IJY!zLi;lYMo{tL=|8%UHFiTYY2n{T$nlre?L_g#ChsK_{!DQWn!W
zCHQU-O&szmG9`sQr|;2s!w)SOEi6))dv~4v;p~KQR$iq+n8dTLWvUp<rb*ZU;cDTA
zA{!vm<rJmfb)$y;b*M<Xb<4As&Glh=gF9ofT1J<_YjC2ib7ZsZDN==jYC$!0d@rTA
ze^Z(cFJlP)PFW*w!Ku>c-7sW24d$v@n-hM_FcjCl%nt8$$2$p)e#Js5%<$n3Sf>v3
zPailu?bsIMBPG%AS&=4Q8@cXkcnNs(vE={?0~2LGP=-o)&UQMNO5`qFaydB#*|f2H
zmsjg@8g7RC@}aw*r&<1JKZS6*9I0ML-jUDab5Y$|)Ea{woXBrRhy4cW54_KTQ~3m|
z>pXaJIo=wv-`s)>WMxHle-?vhgUO%aS<}WQn@(?d9EvVk3juzoVs?A}H6GMHn_C1J
znl?Y=qG0t}ZbZitg3~|lt-1uU7jnT66!PzXf4YWi`}nyd?wuZx>h6hiHJp)Rz3Y>;
zBynlUhL9fs&)u>9*XS<yFPK-53O=csG`B&<ABYaA<MW4A&sqPHZ1Da%E4uPC0%UR|
zrI@gF-2~ODzU|7gpWsuNU4a7H*jF?Fv5(|oa^0(fVMcMKrw%ZD*7+ek+#qc(o1d=L
z8%m-+%6hzTL1BC+YMxIRFVH6wXEJth{Ppz#Bylpph|V<C2g9H#4LhaXUXJ*cQM8VR
z=bzK(#vJXFLA0ZFAV<_Kbzfz#rHJ3OcG5hU^vG88a0)VO>wNV(pLQbl2NID1;g($f
zQTQTZVH*bdY`-ak)M`NK@AjmA#U-D}x`_uG@^0lyQB4io4K4GnpUR#vwWnt#B%u*$
z=B%&k>2EG3s}P3s_9zzRlyg84MmBN>JYmQHa(5p<_aj;9W8E@SGHKHyEolO|4DAYY
z*2nw%<&;^GgN>Zk^u*+bg?GRK%MZRH(9gW#GXxdz?3S2CL1aE1+aL0>9yuYZe;}yM
zSfh5-fC>&8`qCNZ7R+U%O*FT1Nmt*w`B_Q+KK?Z9xoQ95<r(Uz&$Ws?J$D@Eq0jB1
zhOtFr70Dn==Q%=%CcqPA8}6__@;UNyn<wmOA*gA;nnI9yXq`3#mLu*6s3YnarW>yF
zj|DrwPdYfI31gFtqD}9osu?d!%ygcU8AB<RcrMC5zoxIWMe%6X*anNYD$VnkT>0d6
za>^R#6C4kgxCr;F-dK9oCg;M(UC@T}bW-2587#Dw#?%|Z?U1XO<x!y52G>@{OqgG=
z9J!OajItY&=}7+OYi*4MSl2Q{Xoy`fP7RY=A!IYkTO0~^z{rk$I;cdn5&gDZ#8eiT
zIX$g020;oN(~!{j1LwSN!3uO^#MUNoAzxJVl^wBJ5V}Y$zL^W#Ea>8b&Kk=HTz;3i
zvP|!<v9?}wcqozWv0wRgRfC~HdIMOfsdci4p+Ro6pPt@3?(py%z#ZaaY3AEwGd5IY
z1c8d~{Nwd(*$*&X^@6?C(7+sK{6P4dT6wPAxrz%gO=~aD&aBssttq#tGD*hw>~oCu
z7cX`_XzgcShesHj_)O?t6vPRtzm7xZ@l%X2lW)gN9X344x>B4Wol?GA0k#R1&r=A%
zjvXp2m7#VtLJ#F?fcU)7t`=$WW2%hj;og)Evs))?Rq4R&)Q4>kl5~AScl)G?JtHD7
zRX!&sZmc`IKPF+|Rc%~v2EME{ABKx!$47}4l_D|yir!CS(4~zP9dCkJY#MY8SY@ta
zXHDwoiW}KmEE;7Zed3nDZvqGfJA(sh%a@Px8|U<+tte|d0K{M+k>!e<2Y;FJZOW+R
z>xOOj)XvuPDo#r%7-f>;+sP!K-M!n==nW2@wc$6{ue|<+ltLx#Au(uCB^t)972X>(
z^6k#^_&6VsA}>$BxIWlKNmtcvIiSk|T^YMkeC^V9UE|*3C(;8FtF(3oZve8UzJ?bM
zQBNVNa_LekAf^U#*0(ChlBDih2RtpldRJ?-bk?LQ*zP6rQLgS4NZNrqS;y>oU5Dcv
zI3hJqI8{B$?XsZbV=xk4M|MZ#JKUzwA2HW*;n_bwJVzZHcTCi}6>^*B!=Jv(2Jwy)
z^}ew7^nC~G@8IFy*Vz|y%|pCZ&OP*KT>c?imGgVe0Ir^ACwzw+O2o|<bE-Rt%s)BA
z`-E5edFxI)($_F>>vdb6H>Zyk-?0^8vVSNbIj150Kn}cr*s1%j>G%lgxR&E(Ws8FK
zfGn}yS968XkYQW4n07XGh&-7lgsx9tAt#MxUKBBrs@BaYbYJqx_;Vi@%6~@q*wqQT
zxqI$cDu6ewQP^_Y@py|e%NWIy5jQ%RD?+h3MsRSIh{C52)(p?(h<N=RnFVgh32KZ3
zXCP?WYvW_q1YndX1@i2&aCyxQRQFPtwB(l1fnKW`NtpW4kZ$B)r=sGfr>~+a>u>KW
zYvNypLK6OYEBL2iJoS}!QKb3%hsrYRfc0;p6M+0x>7{>KFZr9Bn5UALj7?E5HDiU&
zqB+}{TNqd=jDHZ)iA5%yI``bI@s@GF!x6~}_3ri9d8UEfwB8S(gU~TPT}fERG~t51
zr5l-xhu1B1Gy7y|PyNpFx2NkE+GmU3|EsX84y&s9)^rKdDcuHeiW8)CgEZ11ol+9Q
zAteL^j)-(ir*w!&NGc72Qqqld-{W`h{oPOe<L<xqdH2j(Yu>fyJp0-6yfc-3UY(lc
zq7vjicjJb}vYjll{2H)CF?=3Q>%NRcl723pC*9gZ?7b#Yn;Whe5{KS(XzlwI-hk19
zHMn84gA`qnf9SWKv>NX^lU%%)MtB_W+`AK;(dL||#=s9Vw%u+9%eSWD;E7m1<Ivr1
zK@E5qVQ2V_?NJ7lW1RR*?pt!O@lX`|>02f>fBnJ0&Hx*Ax<7+4gX?Trsydm5thmqZ
zuy1_MY4h|)K|{>pAvRP5EEH`J_UXEjpnXH<QJhdA?y*Ep-(4g7r%zM1JJT5Vt?q~z
zem<K3d<XYCnd!JVXW{2sHAyb#b=qbG)L^Fg8+y;tsuiw$%pCHz5RkF0D{%EJyxzx^
zDLfJ);iKZkq)F3$_9D?9o*VV$783J$b?&QC&!uCk*NI1mP!{ayObs1cGZo&Nl=gc{
z-YOX;?Tv@Nl$Y(Hm2AHNV+=mGZU?u0!H}z``+W70lJWeShA>c5`(U<Ge0SF38iu#~
z6Mxea5}bn5E+>$^o13rIRI8kQEB{(w)i!787jG#Opnm6GF}~e5(Tea5yc(qL-Db>w
zqj5)J=lsh9aa(&>RI}y-ZrZ*2{4Op3lVF-cN3DS1iI?rI(bDut$NBH<Tk-1R>v~^{
zF3I0qb-$1mS;f6=^&)iVkXU9Ej^M6lJFB<W-CbLhaA7#mcK0Ms-*^EDK-qe^0H0G1
zkS%h#hP|2><Dm-0`)XXtenN`$qLXC~rc7UmMzhggyxsWuMQf(V_tK?8zA1c&p^|MY
z)tF;Rvvtk*#*3}5jre1Hb-iomL@KypIgt9gZ<4k~;P_hW?_}ECYlgOqiu6{`<k|`Y
zm}w)23cY6Jl~*H1%uu0*_#K^7l#u<@-k}`Fmx%gmeY@y-j$)8fb||u5WwbsbZv&W$
zRGhm)J+N`vz1DQ4z^3%t$2;d9c5}YCJL80pBVuZ|T{-tm?VGa5^WYS1vRd6T;?ZB~
zw+SaC6P?o!MKDND#r+@$wTWu$SpW(5Tu%K>jlAW<tM@sF(9Bkmol4iOE1CO=L_;*y
zi5wQGh1b$-<T(I8cS7W`m6b}AlW6pAp?Ed-kG@G>3NAa{sf?NpP4imIVOJuS_xUQ<
z!X$N%8mALHU?tP{!Rys^wyTOu671FJmnck_-mH;pNQNj;ORy-HAx4IaKoEn9%F)<s
zC$);ut3kJwt`m0)$F~^AYqCI3H40mOX_NIW{8#I*QpuRbHDE{rryy_=_8y<@Sav+N
z&L-HIseD6d<05prA=JNZVbw*#p_%ip<14Pj3Ev&P4ef`stKt=4LyEZ9yiuJ}2B<x;
z#;j|Pb`P4LgwC$0+t%IY5)AV9$x;%TXz7EWX3!)u*Z*`NE-%Z^&c)TjOlbt2Zv-fg
z0Rb2cjyz?p1iZ*p-{@01Skq_bvOAw{$3+AteMj`qm{R;;obLNZI6cJBySBnsZxtdv
zUG_9CK1A{4r`NX)bAAzXiDl>=Cu^}4Ns}rpI(IzHV_3684yUL=Lgc>4Yv~8MgLVNl
zHYY{TqYG=~l03993M;@(ZH7Kq=_K|e;OMc+pw%fYH=<1B&%CPK!N5g)wQWeM7@vq|
z$vT!7#&$T~g&OX$?`UR(_RkX-=r(rAku~7j0QwWy82D1Y(|Cy6M7qRHj`QIcQ}6aF
zvDWRm_dU8UDZ+<qq>nHfQpDxTaq{m={Rkm(5pxf~G1O4YAscPKTwk=>6yRo@*=p=R
z_pM*8E*!GrA=gQ$dn>#tT51+q9raBYC%CtJJ3`HP3#y!az>6Gy5_BSNynL9C(pwb9
z`|qV+R8z@4OhMFg$wMpz2(^6*Ks_$yMg^AcQwaXEl>V<JR>VI`tb$O`A4{x{@wK!j
z#y@cMw@k>70*rAWVA*Iz2fZLgc8Z5ux%X7U8E_yP+H^j0>sem`2Su_tR2-h}vcPcB
zOtGejWIf{tduqR0{odae*hx#0u<Gyi-7vY<=cnyYt?H|5b>0aM05QrE;$V%7X*4>z
z?Lv`<U%{tOvHULpSAM}bn_bs?=gMpX&}^b8obGN6dV1(9T3v?yvYoaybu#f}5ETJU
z{mF##zW$O0(C>`+yqj-t8tQxo^7&-ghuG(F2+shV4B&*#6%3@Xb1Sonci@D{I1!S@
zgnRyA{2;*~*v187cMUpUCoB$vDYRqNwjeJHw>z$9nW$tC{xtLUv<+SUFEiSQ9b?q{
zvJ;go%&~R499?2a-4zI2Nj#@lKdkj>r|5=xz3>SQ70|2i_W8w=!C#w(u)lQZ>p-}n
zRtT4o4uXN%+!{`!>~<7Os*g2McS+YN*QM-;YLb%`y){O71$u*iy?f4U(i@X3QHspk
zEKGXMvh;8u`=T&!)S)-7D))`LTfx#Oksb4r^gzCj28-sG*VIdr4I1xW(_5-W=Y))U
zt@|k|`#p@#l~u1DwOJQkck6vip}tW79QBFJQ7))_9iT5uAxE#FL4@Po{?@E7j0yJE
z+GQ{Rb^zU^oFWjmaX!PhqIU~T`?`#*QVWy29ro<k%;`ipHOFmw6-W`V@w#lJ$yZK;
zqea%3?r^B!GG`@fM%ZVr<;RYhh4oMWA(5dsz?`lUx|{`v1{_K`lrri=<xb2G!K2N|
z&+n?&o{w;YyBzYq`MZ62{u$o>RP5)MXcOQ}5)v4X418_+E<{ujvz0Ct!3Cv6^5<9#
zgD5De=%Xnra_`(<tP!+zE#wU8viE8r!yg{5?hgqeI-J0R)ZQT=leK%M^#mes+UOL9
z?MKlc5?i?F!g+arlf2hvD|GgLw6DZ!PLSf5-VpXll*z}(Bg5{lMQ0jAr8M8mKghUo
zHgvvr(z1z(io=nl@!RhDvhG%ZjU2NU?A!@24VN|0OJ(jsYw=cJM7AB0$12SlPYD}5
z@R^H*cKViE3DWFhDq@NR1T#)bRaZz_xH={)-)qC`NRSXd8uFqrj^JrmG)w8is$!Q7
z3R_Dp&1}Pzv#?I(S029Are{RZZ2Ok*1K<`~l(FiaTgUDV;LcLqRcB}?KvHjN=AkMs
z@Hk$lW*Fb|S!<o$M0!1KkLcv1ATPK3(QqAddaT5+O8t{4ZGgvy`e^<m{xZ-nAG=vZ
z1o|L;E}}j?_|e<`gY4RpaW9<%136`jRVz2rotnOm#Up91ixMhB^|n?myj_yk*X_$F
zz6yd@S04A?2J{G&f25OD@kd6>#6K|Eo@lBad51IyTSgw1(u)6Rxm3(1vC$94(C<F-
zebgJsq(yLN?X34#a<Z0piBN%5tZm*N4r2(9WUR}vNmxtVi@bWt@Cg-5_b-X7tbl~^
zxBWc#aYgT8i=~#MU-fov3?trfOqAMRPLxOMMH)V~$9siuAwtBN_+<wv;;GT>t1ClN
zWLiAjhXPf(fx(@|{8!U&*l55s0)Yt!z=z^KL_uM&OA*D6(5F>V3?1XW)Qjt8$`-QT
zl9ICeB|<ur3WO}YS-K7CwuZN?aM}eFs?yu!aN0Ew02e<a0vW~i50qDeXn*9=^*5~c
zIE24@Rk}Xo!&GT{u|SWEiVg2?vpJ&_Sq5M8>Y7w`lR6x^mOJs+q&9V!oyjSciCxVv
z*R(3R&sk~@N;J!H&na(e7HqvFw*Ws+4is+A-(_e1sG}SuQmV5RLPz|tYi=65I8?QN
zkiJ~YMbmOuu}5Y#%i%r=_i1a88K$y%Q_}Od5JKWg1+kZP>!4AjWHBBVTnwY5U(J$q
z`L!wbczRFD!QO*D$)m5PP+d{o&^Q8;j})xD5YlW5LD>Y#9C+H2#AIrKXGUIn4<-H^
zppYRc&gxjuD(#h9MYf0kojI_6Yo<v<pkZ_R_ep$EJmm#H6Dm3GtzO&=?^^rio5i{V
zPDk=1dz);bnp9Tg=<OhzxTRZ}Qz^G!*+2B47tVe%{qomhc&QGrUGMwFr(^Ma0~+3R
zza%o8)9UolI|7fZ(W%Z|clFSDH%>*rXm$D3KdtItCUrWkDj6BWS&>9@U;_Qf(mO!H
zS!Hdyl2plVeL^rZZ#PV(kbJ8|kY}P`hq@-r&+p#eceoe&%oOl5A@k!<sG?*t^q!&O
zN`f`5{QaNQwqpg6qAo>CQ->%6C|URCK2Q-p+ch5tgIbiTvZ|U|F9*-oRCC#|{dX#Z
z)+II%Gv5U+zCFI_>)IA!d)@J}+_bxb8dU9P2<IyO>gPLI5<->gk~xhc-jSx&^jPqQ
zbb%Rt=%XhP1>{HKm$qLW&8GbnxKyhfu`ReJ=teKc8rsv&kD1EWWJ%R$yC|-MCSiw@
ztls?)t2du{p5%TGcS|}fH5UBxWP{ToJoH2=LNs_K$P}b!B4#rE)OPS~7^f7aypsqa
z<Htw31CxVs^i{c}_gA@S$D2j`Wz{FRW=ym-BZ|HiL1d7wo~r&jFW~a)Z&xEGsqY*y
zCI&D{zUA&@^=QEjd8VDo$~;X;HTMW9s*s$yFCI&3Gl-((V1jv?v6NtB@QWHlhP92_
z9|nBjT~Avj&63*nD&=cpNFXKn92w*#hw>F#r|Oj1eUZzaJrdT;pD81!>+LNq6unQn
z&H5oN9ld`_+$5o)v_Zz+mFff6`tT3mhWs>weGZwhysWUso3mV6(@Vkb2NOz^Lu<6}
zhEJqcY5n&nUVeBtKY}SWKbUlJ4|TrSZAYRu{;n@u@Y9~vA-NBiST)&j==K47>Ibab
zgs)oiSfp+hukG{{TCau0o)fGP)dZ@4`mD%a&?UXth?KYK?~1J5b5k+i2<7e}T|Dpz
z(;Nv-(^wGc?D;kgR=<~0B47OA?mgZzDx~H!`SBN%S7o~%6trEXJ_bWVSR$xXCpWHa
z;uNKsujh>^s%bo9uH%C}13XjYm3`RyO+IJBNU`CBv~Oi{KR6&Fm7z@@OSUI$uQn!U
zH!D>co+E91_2^4de-N_GS?SA=&J({HOi;NKUF?!dws1ygMBuP`{qc=yPH-g0<qK}y
zT{?Ee+gmiB%v-`qM{wg0#B+er(E;3-udX85PN+rzv<9Yf7li=L@@wG8j}@7APC#%(
zZt200fmxA3Wtu-KYe$fNIHHJ$d@LiPAo96K#}3llob^?A(d-~kx$|K5Pktk7_Oh5@
z^>X8O-`(_1B@umgp=PRv&{8++wq=Z=AugH`M~8Px(sI_5v9(Lfj(&HIB!0#9_cieN
zXeVXgT1Ew8C>a4xYbw&620=nuvGn!HL!P+LZzGEGUK_larCk{E8B!bPdL~HH`8=k=
zP@ovu?oP{;v#0$1rL|P~ZUu8S{f|h+GnG17$Xty6&y#48&$zWd6OELB56-|~cZ~1*
z-vHaaOJ^~f@uDPS9wAHjN2u;5ee<TLUl6o6%Gn}64|KfVm@PB8{Cs)8&0di!w6dyy
zoz0W_vE9KvRCmuK>t`~ZcVb!n@W&bTJ}J$AMAF7Y@h7pY74a_cIi*PdTst98Cwvux
z^1x&hp^<2<@g+#T@Da>3Ch(x+(yB#~*;VWJTqB~HDZcQ_o4L?_;JXM~@#l`r44)v#
zWGQ<x$N8P+Lv$fC^=P5}6^==^#B0^3d$K-8<p#yr5i<q0nuIfQt;tv%<>}7Cz9El-
zwvhH#-Gbr_pFbVrDAtZ}W_t=Ii|M;=bnd6r`BRWetmP4n^4V4r3OJj&o1V$b?fGGQ
zLd4pXLeC<^_e|K$<=P`K3&&aBmWS+x@T9bbp@5deQAuZ%(9iE!zI5!EYmz-Dh^GZ)
zZ`jv3SS~GET1H~GZ{<1JQ0PAgo+64NCCC=!)`8{$j?r;RrBztts>Qt-$&nM2pSx7-
zxr|ph0$6O&KvMZVhIsOi3^b-vfKG}-42%Ox<@w{v1}<h<ojZD;0Cf0P=yN3R#y0mb
zCf&tl<;vflCqcN37e82WI-8uYy>)Kj3ij==JnbwXs}zj<wce}j?Hb2f-CqeIt3<v}
z^!=tNLTihwH2^t&dhH;(w=rVR<A8s6z?iU5zhiTR%z+rc3sRxxd~xusctel1?eTRS
z>+E(lYZsY@8HL+M^H)V4xpLfi@tR8<mAV=R*Dw>j>-N%}y>BwB%%mAWY}7R}8MB=$
zdt)|R(}W4pZjPzBxn0@Y5YSn2c7;5V9*8Es1e_0De&5j>dNOl?!;w5$u%ufUvioDj
zYhHHyoA&UzFkDZ63N>>*Rl~yNENhKr6P>7SCvc6k64)$0Fd(IZzc^^JRah#(XZvkW
z`*dOz!|svV*QZZ>VmL?KGG_`7$IG@3{65dnJKZsFxvT;3INr8J@1wRk7J@*UFfHFP
zVg7YV{?+>H`jJzX<44YBH|>@7H$N5K<NQoL(xQq&uVHaP&!s>Ws+MO0XJwuyn=m&5
z-B%Je#Fm%#5by+(;Qa@~gfwjq;_0Q&mRWqf(^Os>uk6jbDpgiotJHPS#yZ*R!5DX#
z?+f)d?M55UeW(#ER^Y$8Vd*x3gyC#Qzo}L{&OgdGR<ZA%imSd~$;}vA71QU(x56jt
zFJ_QB8+%txx+K|`lXFD6aE45annQ@eYxmAt-c!I?Sh0Y%x*XOs`A_Q{mM`xc_0{!e
z+hrGNdS=rcNq!w_g84v8_{nKIdc%ZvCzONVgv|D*N*h7Su7@)UJ=5wqk(Pp{UlxT+
z4a&EXpI2)}8810^*2kK89_$1OC$W{%w7g*Cz2j=4q?gN7rPbyT-`%8m_z>ocOPMcU
zR+x|gduev^ky|7+&Q8>h!UV4`Fu>MF)G>~~(Z|yHdk&3@hmTG>XnW4MqDu$q!$d#a
zj=@ll>kMj-qF^3VqR!uchm3j>U63tLfK(nb(>hR|#%mrwUp$<9|4}DzuHns#TM_T-
z2Bkt}Y`h43{Z62ld%vhz4ES0v9ue1_A9PPiK09@)A_9x|W7ABsATg|BSN91nTG`o}
zq#{WLGQ;3R#CX51Ze3LSZL=u;)Bqf4e-b$qKirrQ#_7yhZDBm9nL}O?=pQ`vyG?Jf
zF}Cw~F*R9#ps%e(K6Z#H{|K@p<FK(kD8O|x-6RwjIr#kB@b{R>qaX7rTqo;BvO9bZ
z_<l|U3KJyrgjazJ1sqw?nBml-1k&UYW^HzeZs)nNodBiNOU88Z*o?%4j9}M(`CEqC
z+WPvs_g>&WPpUwg_VXZx9#wxd_P9pnhAg1S<ccCRa0@aHp=3DCb1L%`&$3z$>DJ9M
z9yB8yr#^ALVRp0^2nm;IeLzZb<O;3xI_VL=I-dWLNE_6sTOBDQu>A1uaUF98HGlEN
z)~1d}TI;A=QHJt){n+jm!WkbwaqOkI2g0pp$MBdh;z&oFs~UxLkJ6U-tbi>>m+p$Y
z#*4kgIw4&bj)C+|@u=lx=AzC^%uQURdcp=pi1HyCIp!Dh`h;Jlz4=~0xQBt+7nDXF
z)xnX^U;8Pjr>@k$@%#Q^!sWu&M8oRG>X6)yih;Jul<tES@2jqsk(Kfp__p}dx~>4c
zt4lmg_cj}TR)`3aw}5XmR$79^&R*1o)m<%slO(3~@-$s_VCBgQ<8DYX32B?2<GCjF
zAdXs71crd}GY=V0-U5FM`|o8TqHDC8tty4Rwu-i@g;DIvTl35ngJzb#*0u0*nyk(E
z&4n$Q#|&2y2@k9w0{20n3-rFd*=n84-4>NuGX}wI`}$9jh4?=t<Q9Y^li4@wdN+%{
zQ&)05r3OZha#sh7dYtVprH{mA<t=2_S8X}hua@}Csmg!pmj6O62XRcmPpFXdaAxSB
z^=FTeVC`RIbTRXf!2>@XQy>|u8tx(j>OIVHAs@ZWe|Yf8IHs<xhpQp)l&f3$#S^Yh
z%TSqjp`Ey$$O5{a_kF{PdrB^_P~EvQUcS3hu3)WHlT?FLlPAf1eGhs#d%k?>>($1l
zGfa3z7_c$VF9(-30Ag>iM=B3?^Y6rn&%KzGJCCl_>9LwX0StQX+{G0yW-c&=u*D((
zal#J?q;+&Fjnefw1M!xVq^=+I>ziSVNJXsxyFbiWB3pO-Gjh~d$bHXs&W(rdcq}bf
zmYyip%7*5ivLUH7nmmvv^Bqp^Z*Z0HqP||AtPbyeP3s8k&o%UgRR`2;95$E7(o*R}
zs4;LaTjscT_~6ws3Hz<jjbYUoJ(4u+4W<xn&u_N$8a9!5L~GU`e|Ze-BOzhJ)}5L9
z%5&w^jZAn=OO;Jg3(}5DZ4?!@ZK9h!Ux`mujvsJ%|2nd|D6%Sk9aQ;l^~5N5fj9bU
ze{J_x5*sbH44#Y?aP8JgBp;o~4)k3B<{9)6KrM<zY-#YcQHf9P&h(TWX}0R<n?bs%
zs<JPH4Hf(Jiwv#o=0?gk@{(jkob!>kFX0SGdSu!Nr`CRMzqLz2>4(Ca`UZKONV{+A
z)xW%6)m)XCH@}rg$s3Mso@|a%ejPxultkja<*lMooy0ZUz`Vax$WdzPXl3gj2QT3)
zBd@7^c;x;LDhH{B=xjbrn+g-b+|;pWy%r7={jpG0RrLt8CsdPN(Oi+KN4&#Cc01R?
zO%%D+RF>jhahjQaPd?SL2l(^#_ce=^*3)f%x?pvwTM8HN8;;-Adr6<+zqF{!3(0{)
z6I|@_N=n}88BV($&2e>HZ7tl(7g(qpNalEavKF7GWCRAOB<|B3yL-@-y?Z<<6EmCe
zDQggJtEcMjWJRNBilSQc5dGZvC1Nan%h3+$B;dds+xLjCs3*1)ebl{Tih9%3hMRqp
z$im1lisH%Rfrf?gRG+)HmZRjvCE-pH5#b8al7X8kICu7slC7u3Y=UPS-c}z-t6++L
zZCZNa@Yq*)!n@dS<LLAySn>U>Iu0loA0JmGD38N9J5nS)Tlzus{zcP7;&{5r)ID-h
zBz&Uk_=J9+Mf}pUs?OQmD-$jxhQQ3Ly30vWHJm+6@l<Z5ZOWJ;1Z@99@@G5y0;jq{
z<u?iW-~iSoHj0TSULARvsi`=&THz4&ND6i1K(&>14uvYR1Fos$1ItXvJurQq{q2NA
zn#8^iIn_Q(VfC6bKG-(;j7K|RJ2~HVq|og#*c)xu1|MEkW(Qk(S4^po{jsMs;M+bq
zTf~>GoIt*_;If_v3_Qe9<UZgEsh)WkhVeGiPj>pnO0)@pmzj1|M7;{V&rc~CbJxz8
zpOe9cB9?5&^0-3t5*9dA(w5S~TPC*51jlT@MU9E6gk5scgH)cNMuy{2Me#=pNUq*k
zR7AeQ6FE^IV)jhOZRBp}azDIPg3UqKo{b!ZS{J_+K&j<+x+EW?_{dqsxi72CzAk3w
zp+|vGxk!^p6TFqGQhO<~cR9MoU-f=%>0$h&kaLx!7yPBTZ-CsV?hI#fj5dLnEd6@(
z%+1eH_5CsS+ghVKW7S*djUTWp1rnQ#97<aZ867U0{HL>_rccaCuAh>;)!Hn})!yNi
zV|;Ump6LyJi<0^^UiR%%x%a!9@@TOS040#lfbv<o_uhY7mKYEE`=D+O)ZSZ~e=wqR
z5i$zsKN_(A``!!%{r=uu7j+BMk{SyNuiIzEWWmA*2tmL?08k=52d2P(eyDL^e&hz2
z13>2Hf(Sl<r8%4r2(&WeLkpn*d~hh(;tBeK!UZjP1QJErF}dpuI59tB;sPLGv?W$<
zOs4<2mE^{RVL=gzzTB7$5+FGGV*PCb!0N<G^v?|x0sx^y{{sWTVNkSm?oSK`2Eh`?
zxiLABAP5xwA^p#%2=r#mH!!du2!xh<{m~8#f(YL9CJ2Q?Zem~{To6s(AAJQu(0?LD
zqS60^4+cVDXmQma4Iu~!46Vxh0|Nt~@S9E`U=Z}L0D)k@Uqgo@1kqZ&|F!qqKL7xN
z{mlXZ1cBdV1^@>B#S91m0N->Bf<b}*a`KN4bYH|xRsk?15OK312+jUYgJ5(e+{Dn1
z;eTN;*l&5-@9RIT0$?EEO$Gr7AoQPL(BuD4Ll7FgIbskD0k}yuy7OQ31A##3O(!4(
z=(kAnk6=J>0Oa2(`G<dWXZXLt-#vg3AmXoJ5NI0yG6?)DO+X0fx9al`$3Qr`;%;Cd
z1Q_{Oae?4q@XeH<JHu~cARy?sw(}1s=o80&YdHVJ;C~l2x-aCv14RCdehByvYJOV*
zAq4-LVrc#A-;*2y{;T>yF!VgR84Lmn{v%Dl`3Hm1CT}zZ3&Q@Q6#|AqZx$B>0Y_KR
z?@<45Ac9~3@FvxQFcA1AGw8`Fi2Msg)A~n*zXJq<|DqoZ0z+@61dLAT&0wJDx%jU%
zxx1R#I#{}*1+}aKnzlZcNLKVy0S#wov<Ub2e?F^#f|HdqD>{6%4p=}zn$<u=0tT0n
zfyx2^a7ihMBupBBkOo3z5z^9N2oSxR2o(GOTNwS8B)hqrxw?C~T3Qi7AwU?Mh>J@`
JO%{{rzW}X!Xu|*i

diff --git a/tzpfms.ps b/tzpfms.ps
index 9761651..35d1aa1 100644
--- a/tzpfms.ps
+++ b/tzpfms.ps
@@ -1,15 +1,15 @@
 %!PS-Adobe-3.0
 %%Creator: groff version 1.23.0
-%%CreationDate: Thu Feb 29 00:43:02 2024
+%%CreationDate: Thu Feb 29 01:10:25 2024
 %%DocumentNeededResources: font Times-Roman
 %%+ font Times-Bold
 %%+ font Courier-Bold
 %%+ font Courier-Oblique
+%%+ font Times-Italic
 %%+ font Courier
 %%+ font Symbol
-%%+ font Times-Italic
 %%DocumentSuppliedResources: procset grops 1.23 0
-%%Pages: 10
+%%Pages: 14
 %%PageOrder: Ascend
 %%DocumentMedia: Default 595 842 0 () ()
 %%Orientation: Portrait
@@ -236,9 +236,9 @@ setpacking
 %%IncludeResource: font Times-Bold
 %%IncludeResource: font Courier-Bold
 %%IncludeResource: font Courier-Oblique
+%%IncludeResource: font Times-Italic
 %%IncludeResource: font Courier
 %%IncludeResource: font Symbol
-%%IncludeResource: font Times-Italic
 grops begin/DEFS 1 dict def DEFS begin/u{.001 mul}bind def end/RES 72
 def/PL 841.89 def/LS false def/ENC0[/asciicircum/asciitilde/Scaron
 /Zcaron/scaron/zcaron/Ydieresis/trademark/quotesingle/Euro/.notdef
@@ -267,7 +267,7 @@ def/PL 841.89 def/LS false def/ENC0[/asciicircum/asciitilde/Scaron
 /egrave/eacute/ecircumflex/edieresis/igrave/iacute/icircumflex/idieresis
 /eth/ntilde/ograve/oacute/ocircumflex/otilde/odieresis/divide/oslash
 /ugrave/uacute/ucircumflex/udieresis/yacute/thorn/ydieresis]def
-/Times-Italic@0 ENC0/Times-Italic RE/Courier@0 ENC0/Courier RE
+/Courier@0 ENC0/Courier RE/Times-Italic@0 ENC0/Times-Italic RE
 /Courier-Oblique@0 ENC0/Courier-Oblique RE/Courier-Bold@0 ENC0
 /Courier-Bold RE/Times-Bold@0 ENC0/Times-Bold RE/Times-Roman@0 ENC0
 /Times-Roman RE
@@ -276,15 +276,280 @@ def/PL 841.89 def/LS false def/ENC0[/asciicircum/asciitilde/Scaron
 %%BeginPageSetup
 BP
 %%EndPageSetup
+/F0 10/Times-Roman@0 SF 41.363(ZFS-FIDO2-CHANGE-KEY\(8\) System)72 48 R
+(Manager')2.5 E 2.5(sM)-.55 G 38.862(anual ZFS-FIDO2-CHANGE-KEY\(8\))
+-2.5 F/F1 10/Times-Bold@0 SF -.2(NA)72 84 S(ME).2 E/F2 10/Courier-Bold@0
+SF(zfs-fido2-change-key)108 96 Q F0 2.5<8a63>2.5 G(hange ZFS dataset k)
+-2.5 E .3 -.15(ey t)-.1 H 2.5(oo).15 G(ne authenticated by a FIDO2 de)
+-2.5 E(vice)-.25 E F1(SYNOPSIS)72 112.8 Q F2(zfs-fido2-change-key)108
+124.8 Q F0([)2.5 E F2<ad62>1.666 E/F3 10/Courier-Oblique@0 SF
+(backup-file)6 E F0(])A F3(dataset)2.5 E F1(DESCRIPTION)72 141.6 Q F0
+2.867 -.8(To n)108 153.6 T 1.267(ormalise the).8 F F3(dataset)3.767 E F0
+(,)A F2(zfs-fido2-change-key)3.766 E F0 1.266
+(will open its encryption root in its stead.)3.766 F F2
+(zfs-fido2-change-key)108 165.6 Q F0(will)14.654 E/F4 10/Times-Italic@0
+SF(ne)14.654 E(ver)-.15 E F0 12.154(create or destro)14.654 F 14.655(ye)
+-.1 G 12.155(ncryption roots; use)-14.655 F/F5 10/Courier@0 SF
+(zfs-change-key)108 177.6 Q F0(\(8\) for that.)A
+(First, a connection is made to the FIDO2 de)108 194.4 Q(vice, which)
+-.25 E F4(must)2.5 E F0(support the)2.5 E F5(hmac-secret)2.5 E F0 -.15
+(ex)2.5 G(tension.).15 E(If)108 211.2 Q F3(dataset)3.244 E F0 -.1(wa)
+3.244 G 3.244(sp).1 G(re)-3.244 E .743(viously encrypted with)-.25 F F2
+(fzifdso)3.243 E F0 .743(and the)3.243 F F1(FIDO2)3.243 E F0 .743
+(back-end w)3.243 F .743(as used, the meta-)-.1 F .926
+(data will be silently cleared.)108 223.2 R .926
+(Otherwise, or in case of an error)5.926 F 3.426(,d)-.4 G .926
+(ata required for manual interv)-3.426 F(ention)-.15 E
+(will be written to the standard error stream.)108 235.2 Q(Ne)108 252 Q
+.465(xt, a ne)-.15 F 2.965(wc)-.25 G .465
+(redential of type ES256 is generated on the de)-2.965 F .464
+(vice \(with relying party ID)-.25 F F5(fzifdso)2.964 E F0(and)2.964 E
+.499(name equal to the dataset name\) with the)108 264 R F5(hmac-secret)
+2.999 E F0 -.15(ex)2.999 G .499(tension requested; the de).15 F .499
+(vice PIN, if an)-.25 F -.65(y,)-.15 G(is prompted for here.)108 276 Q
+(This mimicks a W)5 E(ebAuthn re)-.8 E(gistration step.)-.15 E .962(The\
+n, the credential is asserted with a 32-byte random salt, which hashes \
+it with de)108 292.8 R(vice-pri)-.25 E -.25(va)-.25 G .962(te data,).25
+F .137(and thus generates the wrapping k)108 304.8 R .438 -.15(ey \()-.1
+H .138(which is optionally back).15 F .138(ed up \(see)-.1 F F1(OPTIONS)
+2.638 E F0 2.638(\)\). This)B .138(mimicks a)2.638 F -.8(We)108 316.8 S
+(bAuthn login step.).8 E(The follo)108 333.6 Q
+(wing properties are set on)-.25 E F3(dataset)2.5 E F0(:)A F1<83>128
+345.6 Q F5(xyz.nabijaczleweli:tzpfms.backend)7.5 E F0(=)A F1(FIDO2)A<83>
+128 357.6 Q F5(xyz.nabijaczleweli:tzpfms.key)7.5 E F0(=)A F3(salt)A F2
+(:)A F3(credential-ID)A F2(:)A F3(credential-public-key)139 369.6 Q F5
+(tzpfms.backend)108 386.4 Q F0 2.708(identi\214es this dataset for w)
+5.208 F 2.707(ork with)-.1 F F1(FIDO2)5.207 E F0(-back-ended)A F2
+(tzpfms)5.207 E F0 2.707(tools \(i.e.)5.207 F F2(fzifdso)108 398.4 Q F5
+(zfs-fido2-change-key)36.505 E F0(\(8\),)A F5(zfs-fido2-load-key)33.005
+E F0 30.505(\(8\), and)B F5(zfs-fido2-clear-key)108 410.4 Q F0(\(8\)\).)
+A F5(tzpfms.key)108 427.2 Q F0 .486(is a colon-separated tuple of unpad\
+ded URL-safe base64 blobs; the \214rst one is the ran-)2.986 F .217(dom\
+ salt; the second represents the ID of created credential, and the thir\
+d \211 its public k)108 439.2 R -.15(ey)-.1 G 5.217(.T)-.5 G .217
+(here e)-5.217 F(xists)-.15 E(no other user)108 451.2 Q
+(-land tool for deciphering this; perhaps there should be.)-.2 E
+(Finally)108 468 Q 12.006(,t)-.65 G 9.506(he equi)-12.006 F -.25(va)-.25
+G 9.506(lent of).25 F F2 9.505(zfs change-key)12.005 F<ad6f>17.171 E F5
+(keylocation=prompt)15.505 E F2<ad6f>17.171 E F5(keyformat=raw)108 480 Q
+F3(dataset)6.106 E F0 .106(is performed with the ne)2.606 F 2.606(wk)
+-.25 G -.15(ey)-2.706 G 5.106(.I)-.5 G 2.606(fa)-5.106 G 2.606(ne)-2.606
+G .107(rror occurred, best ef)-2.606 F .107(fort is made)-.25 F
+(to clean up the properties, or to issue a note for manual interv)108
+492 Q(ention into the standard error stream.)-.15 E 4.056<418c>108 508.8
+S 1.556(nal v)-4.056 F 1.556(eri\214cation should be made by running)
+-.15 F F2 3.222(zfs-fido2-load-key \255n)4.056 F F3(dataset)7.555 E F0
+6.555(.I)C 4.055(ft)-6.555 G(hat)-4.055 E .729
+(command succeeds, all is well, b)108 520.8 R .729
+(ut otherwise the dataset can be manually rolled back to a passphrase)
+-.2 F(with)108 532.8 Q F2(zfs-fido2-clear-key)5.147 E F3(dataset)8.647 E
+F0(\(or)5.147 E 5.146(,i)-.4 G 5.146(ft)-5.146 G 2.646(hat f)-5.146 F
+2.646(ails to w)-.1 F(ork,)-.1 E F2 2.646(zfs change-key)5.146 F<ad6f>
+10.312 E F5(keyformat=passphrase)108 544.8 Q F3(dataset)6 E F0
+(\), and you are hereby ask)A(ed to report a b)-.1 E(ug, please.)-.2 E
+F2(zfs-fido2-clear-key)108 561.6 Q F3(dataset)7.606 E F0 1.607
+(can be used to clear the properties and go back to using a)4.106 F
+(passphrase.)108 573.6 Q F1(OPTIONS)72 590.4 Q F2<ad62>109.666 602.4 Q
+F3(backup-file)6 E F0(Sa)203 602.4 Q .353 -.15(ve a b)-.2 H .052
+(ack-up of the k).15 F .352 -.15(ey t)-.1 H(o).15 E F3(backup-file)2.552
+E F0 2.552(,w)C .052(hich must not e)-2.552 F .052(xist beforehand.)-.15
+F .693(This back-up)203 614.4 R F4(must)3.193 E F0 .694
+(be stored securely)3.193 F 3.194(,o)-.65 G -.25(ff)-3.194 G 3.194
+(-site. In).25 F .694(case of a catastrophic e)3.194 F -.15(ve)-.25 G
+(nt,).15 E(the k)203 626.4 Q .3 -.15(ey c)-.1 H(an be loaded by running)
+.15 E F2(zfs load-key)233 638.4 Q F3(dataset)6 E F5(<)6 E F3
+(backup-file)6 E F1(ENVIR)72 655.2 Q 1.666(ONMENT V)-.3 F(ARIABLES)-1.35
+E F5(TZPFMS_PASSPHRASE_HELPER)108 667.2 Q F0 .046(By def)133 679.2 R
+.045(ault, passphrases are prompted for and read in on the standard out\
+put and input streams.)-.1 F(If)5.045 E F5(TZPFMS_PASSPHRASE_HELPER)133
+691.2 Q F0 1.595(is set and nonempty)4.095 F 4.096(,i)-.65 G 4.096(tw)
+-4.096 G 1.596(ill be run via)-4.096 F F5(/bin/)4.096 E F2 3.262
+(sh \255c)B F0(to)4.096 E(pro)133 703.2 Q
+(vide each passphrase, instead.)-.15 E .643
+(The standard output stream of the helper is tied to an anon)133 720 R
+.643(ymous \214le and used in its entirety as)-.15 F(the passphrase, e)
+133 732 Q(xcept for a trailing ne)-.15 E(w-line, if an)-.25 E 3.8 -.65
+(y. T)-.15 H(he ar).65 E(guments are:)-.18 E F5($1)143 744 Q F0
+(Pre-formatted noun phrase with all the information belo)160 744 Q 1.3
+-.65(w, f)-.25 H(or use as a prompt).65 E(fzifdso 0)72 817.889 Q
+(February 28, 2024)153.568 E(1)183.837 E 0 Cg EP
+%%Page: 2 2
+%%BeginPageSetup
+BP
+%%EndPageSetup
+/F0 10/Times-Roman@0 SF 41.363(ZFS-FIDO2-CHANGE-KEY\(8\) System)72 48 R
+(Manager')2.5 E 2.5(sM)-.55 G 38.862(anual ZFS-FIDO2-CHANGE-KEY\(8\))
+-2.5 F/F1 10/Courier@0 SF($2)143 84 Q F0
+(Either the dataset name or the element of the TPM hierarch)160 84 Q 2.5
+(yb)-.05 G(eing prompted for)-2.5 E F1($3)143 96 Q F0("ne)160 96 Q
+(w" if this is for a ne)-.25 E 2.5(wp)-.25 G(assphrase, otherwise blank)
+-2.5 E F1($4)143 108 Q F0("ag)160 108 Q(ain" if it')-.05 E 2.5(st)-.55 G
+(he second prompt for that passphrase, otherwise blank)-2.5 E .177
+(If the helper doesn')133 124.8 R 2.677(te)-.18 G .177
+(xist \(the shell e)-2.827 F .177(xits with)-.15 F/F2 10/Times-Bold@0 SF
+(127)2.677 E F0 .178(\), a diagnostic is issued and the normal prompt)B
+(is used as f)133 136.8 Q 2.5(all-back. If)-.1 F(it f)2.5 E(ails for an)
+-.1 E 2.5(yo)-.15 G(ther reason, the prompting is aborted.)-2.5 E F2
+1.666(FIDO2 back-end con\214guration)72 153.6 R(En)87 165.6 Q(vir)-.4 E
+.625(onment v)-.18 F(ariables)-.1 E F1(FIDO_DEBUG)108 177.6 Q F0
+(If set, enables lib\214do2 deb)173 177.6 Q
+(ug logging to the standard error stream.)-.2 E F2(De)87 194.4 Q .625
+(vice selection)-.15 F F0 .727(When creating, the \214rst de)108 206.4 R
+.727(vice which supports the)-.25 F F1(hmac-secret)3.226 E F0 -.15(ex)
+3.226 G .726(tension is used.).15 F .726(When loading,)5.726 F
+(the assertion is shopped around to e)108 218.4 Q -.15(ve)-.25 G
+(ry such de).15 E(vice.)-.25 E F2 .625(See also)87 235.2 R F0
+(The lib\214do2 documentation at https://de)108 247.2 Q -.15(ve)-.25 G
+(lopers.yubico.com/lib\214do2/.).15 E F2 1.666(SPECIAL THANKS)72 264 R
+F0 1.6 -.8(To a)108 276 T(ll who support further de).8 E -.15(ve)-.25 G
+(lopment, in particular:).15 E F2<83>128 288 Q F0(ThePhD)7.5 E F2<83>128
+300 Q F0(Embark Studios)7.5 E F2<83>128 312 Q F0(Jasper Bekk)7.5 E(ers)
+-.1 E F2<83>128 324 Q F0(EvModder)7.5 E F2(REPOR)72 340.8 Q 1.666
+(TING B)-.4 F(UGS)-.1 E F0(https://todo.sr)108 352.8 Q
+(.ht/\001nabijaczle)-.55 E(weli/fzifdso)-.25 E F1
+(\001nabijaczleweli/tzpfms@lists.sr.ht)108 369.6 Q F0 83.762(,a)C(rchi)
+-83.762 E -.15(ve)-.25 G 83.763(da).15 G(t)-83.763 E(https://lists.sr)
+108 381.6 Q(.ht/\001nabijaczle)-.55 E(weli/tzpfms.)-.25 E(fzifdso 0)72
+817.889 Q(February 28, 2024)153.568 E(2)183.837 E 0 Cg EP
+%%Page: 1 3
+%%BeginPageSetup
+BP
+%%EndPageSetup
+/F0 10/Times-Roman@0 SF 50.243(ZFS-FIDO2-CLEAR-KEY\(8\) System)72 48 R
+(Manager')2.5 E 2.5(sM)-.55 G 47.742(anual ZFS-FIDO2-CLEAR-KEY\(8\))-2.5
+F/F1 10/Times-Bold@0 SF -.2(NA)72 84 S(ME).2 E/F2 10/Courier-Bold@0 SF
+(zfs-fido2-clear-key)108 96 Q F0 3.587<8a72>3.588 G -.25(ew)-3.587 G
+1.087(rap ZFS dataset k).25 F 1.387 -.15(ey i)-.1 H 3.587(np).15 G
+(asssw)-3.587 E 1.087(ord and clear tzpfms FIDO2 meta-)-.1 F(data)108
+108 Q F1(SYNOPSIS)72 124.8 Q F2(zfs-fido2-change-key)108 136.8 Q/F3 10
+/Courier-Oblique@0 SF(dataset)2.5 E F1(DESCRIPTION)72 153.6 Q F0
+(After v)108 165.6 Q(erifying)-.15 E F3(dataset)2.5 E F0 -.1(wa)2.5 G
+2.5(se).1 G(ncrypted with)-2.5 E F2(tzpfms)2.5 E F0(back)2.5 E(end)-.1 E
+F1(FIDO2)2.5 E F0(:)A 5(1. performs)118 177.6 R 5.641(the equi)8.141 F
+-.25(va)-.25 G 5.641(lent of).25 F F2 5.642(zfs change-key)8.142 F<ad6f>
+13.308 E/F4 10/Courier@0 SF(keylocation=prompt)11.642 E F2<ad6f>13.308 E
+F4(keyformat=passphrase)133 189.6 Q F3(dataset)6 E F0(,)A 5(2. remo)118
+201.6 R -.15(ve)-.15 G 10.689(st).15 G(he)-10.689 E F4
+(xyz.nabijaczleweli:tzpfms.)10.689 E F0({)A F4(backend)A F0(,)A F4(key)
+14.189 E F0 10.689(}p)C 8.189(roperties from)-10.689 F F3(dataset)133
+213.6 Q F0(.)A(See)108 230.4 Q F4(zfs-fido2-change-key)2.5 E F0
+(\(8\) for a detailed description.)A F1(ENVIR)72 247.2 Q 1.666(ONMENT V)
+-.3 F(ARIABLES)-1.35 E F4(TZPFMS_PASSPHRASE_HELPER)108 259.2 Q F0 .045
+(By def)133 271.2 R .045(ault, passphrases are prompted for and read in\
+ on the standard output and input streams.)-.1 F(If)5.046 E F4
+(TZPFMS_PASSPHRASE_HELPER)133 283.2 Q F0 1.596(is set and nonempty)4.096
+F 4.096(,i)-.65 G 4.096(tw)-4.096 G 1.596(ill be run via)-4.096 F F4
+(/bin/)4.095 E F2 3.261(sh \255c)B F0(to)4.095 E(pro)133 295.2 Q
+(vide each passphrase, instead.)-.15 E .643
+(The standard output stream of the helper is tied to an anon)133 312 R
+.643(ymous \214le and used in its entirety as)-.15 F(the passphrase, e)
+133 324 Q(xcept for a trailing ne)-.15 E(w-line, if an)-.25 E 3.8 -.65
+(y. T)-.15 H(he ar).65 E(guments are:)-.18 E F4($1)143 336 Q F0
+(Pre-formatted noun phrase with all the information belo)160 336 Q 1.3
+-.65(w, f)-.25 H(or use as a prompt).65 E F4($2)143 348 Q F0
+(Either the dataset name or the element of the TPM hierarch)160 348 Q
+2.5(yb)-.05 G(eing prompted for)-2.5 E F4($3)143 360 Q F0("ne)160 360 Q
+(w" if this is for a ne)-.25 E 2.5(wp)-.25 G(assphrase, otherwise blank)
+-2.5 E F4($4)143 372 Q F0("ag)160 372 Q(ain" if it')-.05 E 2.5(st)-.55 G
+(he second prompt for that passphrase, otherwise blank)-2.5 E .178
+(If the helper doesn')133 388.8 R 2.678(te)-.18 G .178
+(xist \(the shell e)-2.828 F .177(xits with)-.15 F F1(127)2.677 E F0
+.177(\), a diagnostic is issued and the normal prompt)B(is used as f)133
+400.8 Q 2.5(all-back. If)-.1 F(it f)2.5 E(ails for an)-.1 E 2.5(yo)-.15
+G(ther reason, the prompting is aborted.)-2.5 E F1 1.666
+(FIDO2 back-end con\214guration)72 417.6 R(En)87 429.6 Q(vir)-.4 E .625
+(onment v)-.18 F(ariables)-.1 E F4(FIDO_DEBUG)108 441.6 Q F0
+(If set, enables lib\214do2 deb)173 441.6 Q
+(ug logging to the standard error stream.)-.2 E F1(De)87 458.4 Q .625
+(vice selection)-.15 F F0 .726(When creating, the \214rst de)108 470.4 R
+.726(vice which supports the)-.25 F F4(hmac-secret)3.227 E F0 -.15(ex)
+3.227 G .727(tension is used.).15 F .727(When loading,)5.727 F
+(the assertion is shopped around to e)108 482.4 Q -.15(ve)-.25 G
+(ry such de).15 E(vice.)-.25 E F1 .625(See also)87 499.2 R F0
+(The lib\214do2 documentation at https://de)108 511.2 Q -.15(ve)-.25 G
+(lopers.yubico.com/lib\214do2/.).15 E F1 1.666(SPECIAL THANKS)72 528 R
+F0 1.6 -.8(To a)108 540 T(ll who support further de).8 E -.15(ve)-.25 G
+(lopment, in particular:).15 E F1<83>128 552 Q F0(ThePhD)7.5 E F1<83>128
+564 Q F0(Embark Studios)7.5 E F1<83>128 576 Q F0(Jasper Bekk)7.5 E(ers)
+-.1 E F1<83>128 588 Q F0(EvModder)7.5 E F1(REPOR)72 604.8 Q 1.666
+(TING B)-.4 F(UGS)-.1 E F0(https://todo.sr)108 616.8 Q
+(.ht/\001nabijaczle)-.55 E(weli/fzifdso)-.25 E F4
+(\001nabijaczleweli/tzpfms@lists.sr.ht)108 633.6 Q F0 83.763(,a)C(rchi)
+-83.763 E -.15(ve)-.25 G 83.762(da).15 G(t)-83.762 E(https://lists.sr)
+108 645.6 Q(.ht/\001nabijaczle)-.55 E(weli/tzpfms.)-.25 E(fzifdso 0)72
+817.889 Q(February 28, 2024)153.568 E(1)183.837 E 0 Cg EP
+%%Page: 1 4
+%%BeginPageSetup
+BP
+%%EndPageSetup
+/F0 10/Times-Roman@0 SF(ZFS-FIDO2-LO)72 48 Q 55.603(AD-KEY\(8\) System)
+-.35 F(Manager')2.5 E 2.5(sM)-.55 G 53.102(anual ZFS-FIDO2-LO)-2.5 F
+(AD-KEY\(8\))-.35 E/F1 10/Times-Bold@0 SF -.2(NA)72 84 S(ME).2 E/F2 10
+/Courier-Bold@0 SF(zfs-fido2-load-key)108 96 Q F0 2.5<8a6c>2.5 G
+(oad FIDO2-encrypted ZFS dataset k)-2.5 E -.15(ey)-.1 G F1(SYNOPSIS)72
+112.8 Q F2(zfs-fido2-change-key)108 124.8 Q F0([)2.5 E F2<ad6e>1.666 E
+F0(])A/F3 10/Courier-Oblique@0 SF(dataset)2.5 E F1(DESCRIPTION)72 141.6
+Q F0 1.141(After v)108 153.6 R(erifying)-.15 E F3(dataset)3.641 E F0 -.1
+(wa)3.641 G 3.641(se).1 G 1.141(ncrypted with)-3.641 F F2(tzpfms)3.641 E
+F0(back)3.641 E(end)-.1 E F1(FIDO2)3.641 E F0 3.641(,a)C 1.142
+(sserts the preserv)-3.641 F 1.142(ed chal-)-.15 F(lenge, HMA)108 165.6
+Q(Cking the salt with the on-de)-.4 E
+(vice secret, and loads the resulting k)-.25 E .3 -.15(ey i)-.1 H(nto)
+.15 E F3(dataset)2.5 E F0(.)A(See)108 182.4 Q/F4 10/Courier@0 SF
+(zfs-fido2-change-key)2.5 E F0(\(8\) for a detailed description.)A F1
+(OPTIONS)72 199.2 Q F2<ad6e>109.666 211.2 Q F0 3.208
+(Do a no-op/dry run, can be used e)131 211.2 R -.15(ve)-.25 G 5.708(ni)
+.15 G 5.708(ft)-5.708 G 3.208(he k)-5.708 F 3.508 -.15(ey i)-.1 H 5.708
+(sa).15 G 3.208(lready loaded.)-5.708 F(Equi)8.207 E -.25(va)-.25 G
+3.207(lent to).25 F F2(zfs)5.707 E(load-key)131 223.2 Q F0 -.55('s)C F2
+<ad6e>4.716 E F0(option.)2.5 E F1(ENVIR)72 240 Q 1.666(ONMENT V)-.3 F
+(ARIABLES)-1.35 E F4(TZPFMS_PASSPHRASE_HELPER)108 252 Q F0 .045(By def)
+133 264 R .045(ault, passphrases are prompted for and read in on the st\
+andard output and input streams.)-.1 F(If)5.046 E F4
+(TZPFMS_PASSPHRASE_HELPER)133 276 Q F0 1.596(is set and nonempty)4.096 F
+4.096(,i)-.65 G 4.096(tw)-4.096 G 1.596(ill be run via)-4.096 F F4
+(/bin/)4.095 E F2 3.261(sh \255c)B F0(to)4.095 E(pro)133 288 Q
+(vide each passphrase, instead.)-.15 E .643
+(The standard output stream of the helper is tied to an anon)133 304.8 R
+.643(ymous \214le and used in its entirety as)-.15 F(the passphrase, e)
+133 316.8 Q(xcept for a trailing ne)-.15 E(w-line, if an)-.25 E 3.8 -.65
+(y. T)-.15 H(he ar).65 E(guments are:)-.18 E F4($1)143 328.8 Q F0
+(Pre-formatted noun phrase with all the information belo)160 328.8 Q 1.3
+-.65(w, f)-.25 H(or use as a prompt).65 E F4($2)143 340.8 Q F0
+(Either the dataset name or the element of the TPM hierarch)160 340.8 Q
+2.5(yb)-.05 G(eing prompted for)-2.5 E F4($3)143 352.8 Q F0("ne)160
+352.8 Q(w" if this is for a ne)-.25 E 2.5(wp)-.25 G
+(assphrase, otherwise blank)-2.5 E F4($4)143 364.8 Q F0("ag)160 364.8 Q
+(ain" if it')-.05 E 2.5(st)-.55 G
+(he second prompt for that passphrase, otherwise blank)-2.5 E .178
+(If the helper doesn')133 381.6 R 2.678(te)-.18 G .178
+(xist \(the shell e)-2.828 F .177(xits with)-.15 F F1(127)2.677 E F0
+.177(\), a diagnostic is issued and the normal prompt)B(is used as f)133
+393.6 Q 2.5(all-back. If)-.1 F(it f)2.5 E(ails for an)-.1 E 2.5(yo)-.15
+G(ther reason, the prompting is aborted.)-2.5 E F1 1.666(SPECIAL THANKS)
+72 410.4 R F0 1.6 -.8(To a)108 422.4 T(ll who support further de).8 E
+-.15(ve)-.25 G(lopment, in particular:).15 E F1<83>128 434.4 Q F0
+(ThePhD)7.5 E F1<83>128 446.4 Q F0(Embark Studios)7.5 E F1<83>128 458.4
+Q F0(Jasper Bekk)7.5 E(ers)-.1 E F1<83>128 470.4 Q F0(EvModder)7.5 E F1
+(REPOR)72 487.2 Q 1.666(TING B)-.4 F(UGS)-.1 E F0(https://todo.sr)108
+499.2 Q(.ht/\001nabijaczle)-.55 E(weli/fzifdso)-.25 E F4
+(\001nabijaczleweli/tzpfms@lists.sr.ht)108 516 Q F0 83.762(,a)C(rchi)
+-83.762 E -.15(ve)-.25 G 83.763(da).15 G(t)-83.763 E(https://lists.sr)
+108 528 Q(.ht/\001nabijaczle)-.55 E(weli/tzpfms.)-.25 E(fzifdso 0)72
+817.889 Q(February 28, 2024)153.568 E(1)183.837 E 0 Cg EP
+%%Page: 1 5
+%%BeginPageSetup
+BP
+%%EndPageSetup
 /F0 10/Times-Roman@0 SF 93.563(ZFS-TPM-LIST\(8\) System)72 48 R
 (Manager')2.5 E 2.5(sM)-.55 G 91.062(anual ZFS-TPM-LIST\(8\))-2.5 F/F1
 10/Times-Bold@0 SF -.2(NA)72 84 S(ME).2 E/F2 10/Courier-Bold@0 SF
 (zfs-tpm-list)108 96 Q F0 2.5<8a70>2.5 G(rint dataset tzpfms metadata)
--2.5 E F1(SYNOPSIS)72 112.8 Q F2(zfs-tpm-list)108 124.8 Q F0([)2.5 E F2
-<ad48>1.666 E F0 2.5(][)C F2<ad72>-.834 E F0(|)A F2<ad64>1.666 E/F3 10
-/Courier-Oblique@0 SF(depth)6 E F0 2.5(][)C F2<ad61>-.834 E F0(|)A F2
-<ad62>1.666 E F3(back-end)6 E F0 2.5(][)C F2<ad75>-.834 E F0(|)A F2
-<ad6c>1.666 E F0(])A([)186 136.8 Q F3(filesystem)A F0(|)A F3(volume)A F0
+-2.5 E F1(SYNOPSIS)72 112.8 Q F2(zfs-fido2-change-key)108 124.8 Q F0([)
+2.5 E F2<ad48>1.666 E F0 2.5(][)C F2<ad72>-.834 E F0(|)A F2<ad64>1.666 E
+/F3 10/Courier-Oblique@0 SF(depth)6 E F0 2.5(][)C F2<ad61>-.834 E F0(|)A
+F2<ad62>1.666 E F3(back-end)6 E F0 2.5(][)C F2<ad75>-.834 E F0(|)A F2
+<ad6c>1.666 E F0(])A([)234 136.8 Q F3(filesystem)A F0(|)A F3(volume)A F0
 1.666(]...)C F1(DESCRIPTION)72 153.6 Q F0(Lists the follo)108 165.6 Q
 (wing properties on encryption roots:)-.25 E/F4 10/Courier@0 SF(name)128
 177.6 Q(back-end)128 189.6 Q F0(the)187 189.6 Q F2(tzpfms)2.979 E F0
@@ -326,26 +591,28 @@ listed \212 by def)108 307.2 R .966(ault, those managed by)-.1 F F2
 G(re una)-2.5 E -.25(va)-.2 G(ilable.).25 E F2<ad6c>109.666 446.4 Q F0
 (List only encryption roots whose k)185 446.4 Q -.15(ey)-.1 G 2.5(sa).15
 G(re a)-2.5 E -.25(va)-.2 G(ilable.).25 E F1(EXAMPLES)72 463.2 Q F4($)
-108 475.2 Q F2(zfs-tpm-list)6 E F4 72(NAME BACK-END)108 487.2 R 18
-(KEYSTATUS COHERENT)12 F 36(tarta-zoot TPM1.X)108 499.2 R 18
+108 475.2 Q F2(zfs-fido2-change-key)6 E F4 72(NAME BACK-END)108 487.2 R
+18(KEYSTATUS COHERENT)12 F 36(tarta-zoot TPM1.X)108 499.2 R 18
 (available yes)24 F 6(tarta-zoot/home TPM2)108 511.2 R 6
-(unavailable yes)36 F($)108 535.2 Q F2 1.666(zfs-tpm-list \255ad0)6 F F4
-24(NAME BACK-END)108 547.2 R 6(KEYSTATUS COHERENT)12 F 6(filling -)108
-559.2 R 6(available yes)54 F($)108 583.2 Q F2 1.666(zfs-tpm-list \255b)6
-F F1(TPM2)6 E F4 72(NAME BACK-END)108 595.2 R 18(KEYSTATUS COHERENT)12 F
-6(tarta-zoot/home TPM2)108 607.2 R 6(unavailable yes)36 F($)108 631.2 Q
-F2 1.666(zfs-tpm-list \255ra)6 F F3(tarta-zoot)6 E F4 72(NAME BACK-END)
-108 643.2 R 18(KEYSTATUS COHERENT)12 F 36(tarta-zoot TPM1.X)108 655.2 R
-18(available yes)24 F 6(tarta-zoot/home TPM2)108 667.2 R 6
-(unavailable yes)36 F 12(tarta-zoot/bkp -)108 679.2 R 18(available yes)
-54 F 18(tarta-zoot/vm -)108 691.2 R 18(available yes)54 F($)108 715.2 Q
-F2 1.666(zfs-tpm-list \255al)6 F F4 72(NAME BACK-END)108 727.2 R 6
+(unavailable yes)36 F($)108 535.2 Q F2 1.666
+(zfs-fido2-change-key \255ad0)6 F F4 24(NAME BACK-END)108 547.2 R 6
+(KEYSTATUS COHERENT)12 F 6(filling -)108 559.2 R 6(available yes)54 F($)
+108 583.2 Q F2 1.666(zfs-fido2-change-key \255b)6 F F1(TPM2)6 E F4 72
+(NAME BACK-END)108 595.2 R 18(KEYSTATUS COHERENT)12 F 6
+(tarta-zoot/home TPM2)108 607.2 R 6(unavailable yes)36 F($)108 631.2 Q
+F2 1.666(zfs-fido2-change-key \255ra)6 F F3(tarta-zoot)6 E F4 72
+(NAME BACK-END)108 643.2 R 18(KEYSTATUS COHERENT)12 F 36
+(tarta-zoot TPM1.X)108 655.2 R 18(available yes)24 F 6
+(tarta-zoot/home TPM2)108 667.2 R 6(unavailable yes)36 F 12
+(tarta-zoot/bkp -)108 679.2 R 18(available yes)54 F 18(tarta-zoot/vm -)
+108 691.2 R 18(available yes)54 F($)108 715.2 Q F2 1.666
+(zfs-fido2-change-key \255al)6 F F4 72(NAME BACK-END)108 727.2 R 6
 (KEYSTATUS COHERENT)12 F 54(filling -)108 739.2 R 6(available yes)54 F
 36(tarta-zoot TPM1.X)108 751.2 R 6(available yes)24 F 12
 (tarta-zoot/bkp -)108 763.2 R 6(available yes)54 F 18(tarta-zoot/vm -)
 108 775.2 R 6(available yes)54 F F0(tzpfms 0.3.4-10-g6a143b6)72 817.889
 Q(December 4, 2022)83.023 E(1)183.842 E 0 Cg EP
-%%Page: 2 2
+%%Page: 2 6
 %%BeginPageSetup
 BP
 %%EndPageSetup
@@ -362,7 +629,7 @@ F0 83.762(,a)C(rchi)-83.762 E -.15(ve)-.25 G 83.763(da).15 G(t)-83.763 E
 (https://lists.sr)108 201.6 Q(.ht/\001nabijaczle)-.55 E(weli/tzpfms.)
 -.25 E(tzpfms 0.3.4-10-g6a143b6)72 817.889 Q(December 4, 2022)83.023 E
 (2)183.842 E 0 Cg EP
-%%Page: 1 3
+%%Page: 1 7
 %%BeginPageSetup
 BP
 %%EndPageSetup
@@ -371,192 +638,193 @@ BP
 -2.5 F/F1 10/Times-Bold@0 SF -.2(NA)72 84 S(ME).2 E/F2 10/Courier-Bold@0
 SF(zfs-tpm1x-change-key)108 96 Q F0 2.5<8a63>2.5 G(hange ZFS dataset k)
 -2.5 E .3 -.15(ey t)-.1 H 2.5(oo).15 G(ne stored on the TPM)-2.5 E F1
-(SYNOPSIS)72 112.8 Q F2(zfs-tpm-list)108 124.8 Q F0([)2.5 E F2<ad62>
-1.666 E/F3 10/Courier-Oblique@0 SF(backup-file)6 E F0 2.5(][)C F2<ad50>
--.834 E F3(PCR)6 E F0([)A F2(,)A F3(PCR)A F0 1.666(]...)C(])-1.666 E F3
-(dataset)2.5 E F1(DESCRIPTION)72 141.6 Q F0 6.867 -.8(To n)108 153.6 T
-5.267(ormalise the).8 F F3(dataset)7.767 E F0(,)A F2(zfs-tpm-list)7.766
-E F0 5.266(will open its encryption root in its stead.)7.766 F F2
-(zfs-tpm-list)108 165.6 Q F0(will)2.5 E/F4 10/Times-Italic@0 SF(ne)2.5 E
-(ver)-.15 E F0(create or destro)2.5 E 2.5(ye)-.1 G(ncryption roots; use)
--2.5 E/F5 10/Courier@0 SF(zfs-change-key)2.5 E F0(\(8\) for that.)A
-(First, a connection is made to the TPM, which)108 182.4 Q F4(must)2.5 E
-F0(be TPM-1.X-compatible.)2.5 E(If)108 199.2 Q F3(dataset)3.176 E F0 -.1
+(SYNOPSIS)72 112.8 Q F2(zfs-fido2-change-key)108 124.8 Q F0([)2.5 E F2
+<ad62>1.666 E/F3 10/Courier-Oblique@0 SF(backup-file)6 E F0 2.5(][)C F2
+<ad50>-.834 E F3(PCR)6 E F0([)A F2(,)A F3(PCR)A F0 1.666(]...)C(])-1.666
+E F3(dataset)2.5 E F1(DESCRIPTION)72 141.6 Q F0 2.867 -.8(To n)108 153.6
+T 1.267(ormalise the).8 F F3(dataset)3.767 E F0(,)A F2
+(zfs-fido2-change-key)3.766 E F0 1.266
+(will open its encryption root in its stead.)3.766 F F2
+(zfs-fido2-change-key)108 165.6 Q F0(will)14.654 E/F4 10/Times-Italic@0
+SF(ne)14.654 E(ver)-.15 E F0 12.154(create or destro)14.654 F 14.655(ye)
+-.1 G 12.155(ncryption roots; use)-14.655 F/F5 10/Courier@0 SF
+(zfs-change-key)108 177.6 Q F0(\(8\) for that.)A
+(First, a connection is made to the TPM, which)108 194.4 Q F4(must)2.5 E
+F0(be TPM-1.X-compatible.)2.5 E(If)108 211.2 Q F3(dataset)3.177 E F0 -.1
 (wa)3.176 G 3.176(sp).1 G(re)-3.176 E .676(viously encrypted with)-.25 F
 F2(tzpfms)3.176 E F0 .676(and the)3.176 F F1(TPM1.X)3.176 E F0 .676
 (back-end w)3.176 F .676(as used, the meta-)-.1 F .926
-(data will be silently cleared.)108 211.2 R .926
+(data will be silently cleared.)108 223.2 R .926
 (Otherwise, or in case of an error)5.926 F 3.426(,d)-.4 G .926
 (ata required for manual interv)-3.426 F(ention)-.15 E
-(will be written to the standard error stream.)108 223.2 Q(Ne)108 240 Q
-.294(xt, a ne)-.15 F 2.794(ww)-.25 G .294(rapping k)-2.794 F .594 -.15
+(will be written to the standard error stream.)108 235.2 Q(Ne)108 252 Q
+.295(xt, a ne)-.15 F 2.794(ww)-.25 G .294(rapping k)-2.794 F .594 -.15
 (ey i)-.1 H 2.794(sg).15 G .294(enerated on the TPM, optionally back)
 -2.794 F .294(ed up \(see)-.1 F F1(OPTIONS)2.794 E F0 .294
-(\), and sealed)B .586(on the TPM; the user is prompted for an optional\
- passphrase to protect the k)108 252 R .885 -.15(ey w)-.1 H .585
-(ith, and for the SRK).15 F(passphrase, set when taking o)108 264 Q
+(\), and sealed)B .585(on the TPM; the user is prompted for an optional\
+ passphrase to protect the k)108 264 R .886 -.15(ey w)-.1 H .586
+(ith, and for the SRK).15 F(passphrase, set when taking o)108 276 Q
 (wnership, if not "well-kno)-.25 E(wn" \(all zeroes\).)-.25 E(The follo)
-108 280.8 Q(wing properties are set on)-.25 E F3(dataset)2.5 E F0(:)A F1
-<83>128 292.8 Q F5(xyz.nabijaczleweli:tzpfms.backend)7.5 E F0(=)A F1
-(TPM1.X)A<83>128 304.8 Q F5(xyz.nabijaczleweli:tzpfms.key)7.5 E F0(=)A
+108 292.8 Q(wing properties are set on)-.25 E F3(dataset)2.5 E F0(:)A F1
+<83>128 304.8 Q F5(xyz.nabijaczleweli:tzpfms.backend)7.5 E F0(=)A F1
+(TPM1.X)A<83>128 316.8 Q F5(xyz.nabijaczleweli:tzpfms.key)7.5 E F0(=)A
 F3(parent-key-blob)A F2(:)A F3(sealed-object-blob)A F5(tzpfms.backend)
-108 321.6 Q F0 .291(identi\214es this dataset for w)2.791 F .292
-(ork with)-.1 F F1(TPM1.X)2.792 E F0(-back-ended)A F2(tzpfms)2.792 E F0
-.292(tools \(namely)2.792 F F5(zfs-tpm1x-change-key)108 333.6 Q F0
+108 333.6 Q F0 .292(identi\214es this dataset for w)2.792 F .291
+(ork with)-.1 F F1(TPM1.X)2.791 E F0(-back-ended)A F2(tzpfms)2.791 E F0
+.291(tools \(namely)2.791 F F5(zfs-tpm1x-change-key)108 345.6 Q F0
 (\(8\),)A F5(zfs-tpm1x-load-key)2.5 E F0(\(8\), and)A F5
-(zfs-tpm1x-clear-key)2.5 E F0(\(8\)\).)A F5(tzpfms.key)108 350.4 Q F0
-1.412(is a colon-separated pair of he)3.913 F 1.412
-(xadecimal-string \(i.e. "4F7730" for "Ow0"\) blobs; the)-.15 F .867
-(\214rst one represents the RSA k)108 362.4 R 1.167 -.15(ey p)-.1 H .868
+(zfs-tpm1x-clear-key)2.5 E F0(\(8\)\).)A F5(tzpfms.key)108 362.4 Q F0
+1.412(is a colon-separated pair of he)3.912 F 1.412
+(xadecimal-string \(i.e. "4F7730" for "Ow0"\) blobs; the)-.15 F .868
+(\214rst one represents the RSA k)108 374.4 R 1.168 -.15(ey p)-.1 H .867
 (rotecting the blob, and it is protected with either the passphrase, if)
-.15 F(pro)108 374.4 Q 1.414(vided, or the SHA1 constant)-.15 F F5
-(CE4CF677875B5EB8993591D5A9AF1ED24A3A8736)3.913 E F0 3.913(;t)C 1.413
-(he sec-)-3.913 F .379
-(ond represents the sealed object containing the wrapping k)108 386.4 R
+.15 F(pro)108 386.4 Q 1.413(vided, or the SHA1 constant)-.15 F F5
+(CE4CF677875B5EB8993591D5A9AF1ED24A3A8736)3.914 E F0 3.914(;t)C 1.414
+(he sec-)-3.914 F .379
+(ond represents the sealed object containing the wrapping k)108 398.4 R
 -.15(ey)-.1 G 2.879(,a)-.5 G .379
 (nd is protected with the SHA1 constant)-2.879 F F5
-(B9EE715DBE4B243FAA81EA04306E063710383E35)108 398.4 Q F0 6.721(.T)C
-1.721(here e)-6.721 F 1.721(xists no other user)-.15 F 1.72
-(-land tool for)-.2 F(decrypting this; perhaps there should be.)108
-410.4 Q(Finally)108 427.2 Q 12.005(,t)-.65 G 9.505(he equi)-12.005 F
--.25(va)-.25 G 9.505(lent of).25 F F2 9.505(zfs change-key)12.005 F
-<ad6f>17.172 E F5(keylocation=prompt)15.506 E F2<ad6f>17.172 E F5
-(keyformat=raw)108 439.2 Q F3(dataset)6.107 E F0 .107
-(is performed with the ne)2.607 F 2.606(wk)-.25 G -.15(ey)-2.706 G 5.106
-(.I)-.5 G 2.606(fa)-5.106 G 2.606(ne)-2.606 G .106
-(rror occurred, best ef)-2.606 F .106(fort is made)-.25 F
+(B9EE715DBE4B243FAA81EA04306E063710383E35)108 410.4 Q F0 6.72(.T)C 1.72
+(here e)-6.72 F 1.721(xists no other user)-.15 F 1.721(-land tool for)
+-.2 F(decrypting this; perhaps there should be.)108 422.4 Q(Finally)108
+439.2 Q 12.006(,t)-.65 G 9.506(he equi)-12.006 F -.25(va)-.25 G 9.506
+(lent of).25 F F2 9.505(zfs change-key)12.005 F<ad6f>17.171 E F5
+(keylocation=prompt)15.505 E F2<ad6f>17.171 E F5(keyformat=raw)108 451.2
+Q F3(dataset)6.106 E F0 .106(is performed with the ne)2.606 F 2.606(wk)
+-.25 G -.15(ey)-2.706 G 5.106(.I)-.5 G 2.606(fa)-5.106 G 2.606(ne)-2.606
+G .107(rror occurred, best ef)-2.606 F .107(fort is made)-.25 F
 (to clean up the properties, or to issue a note for manual interv)108
-451.2 Q(ention into the standard error stream.)-.15 E 4.055<418c>108 468
-S 1.555(nal v)-4.055 F 1.556(eri\214cation should be made by running)
--.15 F F2 3.222(zfs-tpm1x-load-key \255n)4.056 F F3(dataset)7.556 E F0
-6.556(.I)C 4.056(ft)-6.556 G(hat)-4.056 E .729
-(command succeeds, all is well, b)108 480 R .729
+463.2 Q(ention into the standard error stream.)-.15 E 4.056<418c>108 480
+S 1.556(nal v)-4.056 F 1.556(eri\214cation should be made by running)
+-.15 F F2 3.222(zfs-tpm1x-load-key \255n)4.056 F F3(dataset)7.555 E F0
+6.555(.I)C 4.055(ft)-6.555 G(hat)-4.055 E .729
+(command succeeds, all is well, b)108 492 R .729
 (ut otherwise the dataset can be manually rolled back to a passphrase)
--.2 F(with)108 492 Q F2(zfs-tpm1x-clear-key)5.146 E F3(dataset)8.646 E
-F0(\(or)5.146 E 5.146(,i)-.4 G 5.146(ft)-5.146 G 2.646(hat f)-5.146 F
-2.646(ails to w)-.1 F(ork,)-.1 E F2 2.647(zfs change-key)5.147 F<ad6f>
-10.313 E F5(keyformat=passphrase)108 504 Q F3(dataset)6 E F0
+-.2 F(with)108 504 Q F2(zfs-tpm1x-clear-key)5.147 E F3(dataset)8.647 E
+F0(\(or)5.147 E 5.146(,i)-.4 G 5.146(ft)-5.146 G 2.646(hat f)-5.146 F
+2.646(ails to w)-.1 F(ork,)-.1 E F2 2.646(zfs change-key)5.146 F<ad6f>
+10.312 E F5(keyformat=passphrase)108 516 Q F3(dataset)6 E F0
 (\), and you are hereby ask)A(ed to report a b)-.1 E(ug, please.)-.2 E
-F2(zfs-tpm1x-clear-key)108 520.8 Q F3(dataset)7.607 E F0 1.607
-(can be used to clear the properties and go back to using a)4.107 F
-(passphrase.)108 532.8 Q F1(OPTIONS)72 549.6 Q F2<ad62>109.666 561.6 Q
-F3(backup-file)6 E F0(Sa)203 561.6 Q .352 -.15(ve a b)-.2 H .052
+F2(zfs-tpm1x-clear-key)108 532.8 Q F3(dataset)7.606 E F0 1.607
+(can be used to clear the properties and go back to using a)4.106 F
+(passphrase.)108 544.8 Q F1(OPTIONS)72 561.6 Q F2<ad62>109.666 573.6 Q
+F3(backup-file)6 E F0(Sa)203 573.6 Q .353 -.15(ve a b)-.2 H .052
 (ack-up of the k).15 F .352 -.15(ey t)-.1 H(o).15 E F3(backup-file)2.552
-E F0 2.552(,w)C .052(hich must not e)-2.552 F .053(xist beforehand.)-.15
-F .694(This back-up)203 573.6 R F4(must)3.194 E F0 .694
-(be stored securely)3.194 F 3.194(,o)-.65 G -.25(ff)-3.194 G 3.194
-(-site. In).25 F .693(case of a catastrophic e)3.194 F -.15(ve)-.25 G
-(nt,).15 E(the k)203 585.6 Q .3 -.15(ey c)-.1 H(an be loaded by running)
-.15 E F2(zfs load-key)233 597.6 Q F3(dataset)6 E F5(<)6 E F3
-(backup-file)6 E F2<ad50>109.666 614.4 Q F3(PCR)6 E F0([)A F2(,)A F3
-(PCR)A F0 1.666(]...)C .638(Bind the k)203 614.4 R .939 -.15(ey t)-.1 H
+E F0 2.552(,w)C .052(hich must not e)-2.552 F .052(xist beforehand.)-.15
+F .693(This back-up)203 585.6 R F4(must)3.193 E F0 .694
+(be stored securely)3.193 F 3.194(,o)-.65 G -.25(ff)-3.194 G 3.194
+(-site. In).25 F .694(case of a catastrophic e)3.194 F -.15(ve)-.25 G
+(nt,).15 E(the k)203 597.6 Q .3 -.15(ey c)-.1 H(an be loaded by running)
+.15 E F2(zfs load-key)233 609.6 Q F3(dataset)6 E F5(<)6 E F3
+(backup-file)6 E F2<ad50>109.666 626.4 Q F3(PCR)6 E F0([)A F2(,)A F3
+(PCR)A F0 1.666(]...)C .639(Bind the k)203 626.4 R .939 -.15(ey t)-.1 H
 3.139(os).15 G .639(pace- or comma-separated)-3.139 F F3(PCR)3.139 E F0
-3.139(s\212i)C 3.139(ft)-3.139 G(he)-3.139 E 3.139(yc)-.15 G .639
-(hange, the wrap-)-3.139 F .463(ping k)203 626.4 R .763 -.15(ey w)-.1 H
-.463(ill not be able to be unsealed.).15 F .462
-(The minimum number of PCRs for a)5.462 F(PC TPM is)203 638.4 Q F1(24)
+3.139(s\212i)C 3.139(ft)-3.139 G(he)-3.139 E 3.139(yc)-.15 G .638
+(hange, the wrap-)-3.139 F .462(ping k)203 638.4 R .762 -.15(ey w)-.1 H
+.462(ill not be able to be unsealed.).15 F .463
+(The minimum number of PCRs for a)5.462 F(PC TPM is)203 650.4 Q F1(24)
 2.5 E F0(\(numbered [)2.5 E F1(0)A F0(,)A F1(23)2.5 E F0 2.5(]\). F)B
-(or most, this is also the maximum.)-.15 E F1(ENVIR)72 655.2 Q 1.666
-(ONMENT V)-.3 F(ARIABLES)-1.35 E F5(TZPFMS_PASSPHRASE_HELPER)108 667.2 Q
-F0 .045(By def)133 679.2 R .045(ault, passphrases are prompted for and \
-read in on the standard output and input streams.)-.1 F(If)5.046 E F5
-(TZPFMS_PASSPHRASE_HELPER)133 691.2 Q F0 1.596(is set and nonempty)4.096
+(or most, this is also the maximum.)-.15 E F1(ENVIR)72 667.2 Q 1.666
+(ONMENT V)-.3 F(ARIABLES)-1.35 E F5(TZPFMS_PASSPHRASE_HELPER)108 679.2 Q
+F0 .046(By def)133 691.2 R .045(ault, passphrases are prompted for and \
+read in on the standard output and input streams.)-.1 F(If)5.045 E F5
+(TZPFMS_PASSPHRASE_HELPER)133 703.2 Q F0 1.595(is set and nonempty)4.095
 F 4.096(,i)-.65 G 4.096(tw)-4.096 G 1.596(ill be run via)-4.096 F F5
-(/bin/)4.095 E F2 3.261(sh \255c)B F0(to)4.095 E(pro)133 703.2 Q
+(/bin/)4.096 E F2 3.262(sh \255c)B F0(to)4.096 E(pro)133 715.2 Q
 (vide each passphrase, instead.)-.15 E .643
-(The standard output stream of the helper is tied to an anon)133 720 R
+(The standard output stream of the helper is tied to an anon)133 732 R
 .643(ymous \214le and used in its entirety as)-.15 F(the passphrase, e)
-133 732 Q(xcept for a trailing ne)-.15 E(w-line, if an)-.25 E 3.8 -.65
-(y. T)-.15 H(he ar).65 E(guments are:)-.18 E F5($1)143 744 Q F0
-(Pre-formatted noun phrase with all the information belo)160 744 Q 1.3
--.65(w, f)-.25 H(or use as a prompt).65 E(tzpfms 0.3.4-10-g6a143b6)72
+133 744 Q(xcept for a trailing ne)-.15 E(w-line, if an)-.25 E 3.8 -.65
+(y. T)-.15 H(he ar).65 E(guments are:)-.18 E(tzpfms 0.3.4-10-g6a143b6)72
 817.889 Q(February 28, 2024)83.018 E(1)183.837 E 0 Cg EP
-%%Page: 2 4
+%%Page: 2 8
 %%BeginPageSetup
 BP
 %%EndPageSetup
 /F0 10/Times-Roman@0 SF 36.913(ZFS-TPM1X-CHANGE-KEY\(8\) System)72 48 R
 (Manager')2.5 E 2.5(sM)-.55 G 34.412(anual ZFS-TPM1X-CHANGE-KEY\(8\))
--2.5 F/F1 10/Courier@0 SF($2)143 84 Q F0
-(Either the dataset name or the element of the TPM hierarch)160 84 Q 2.5
-(yb)-.05 G(eing prompted for)-2.5 E F1($3)143 96 Q F0("ne)160 96 Q
+-2.5 F/F1 10/Courier@0 SF($1)143 84 Q F0
+(Pre-formatted noun phrase with all the information belo)160 84 Q 1.3
+-.65(w, f)-.25 H(or use as a prompt).65 E F1($2)143 96 Q F0
+(Either the dataset name or the element of the TPM hierarch)160 96 Q 2.5
+(yb)-.05 G(eing prompted for)-2.5 E F1($3)143 108 Q F0("ne)160 108 Q
 (w" if this is for a ne)-.25 E 2.5(wp)-.25 G(assphrase, otherwise blank)
--2.5 E F1($4)143 108 Q F0("ag)160 108 Q(ain" if it')-.05 E 2.5(st)-.55 G
-(he second prompt for that passphrase, otherwise blank)-2.5 E .178
-(If the helper doesn')133 124.8 R 2.678(te)-.18 G .178
-(xist \(the shell e)-2.828 F .177(xits with)-.15 F/F2 10/Times-Bold@0 SF
-(127)2.677 E F0 .177(\), a diagnostic is issued and the normal prompt)B
-(is used as f)133 136.8 Q 2.5(all-back. If)-.1 F(it f)2.5 E(ails for an)
+-2.5 E F1($4)143 120 Q F0("ag)160 120 Q(ain" if it')-.05 E 2.5(st)-.55 G
+(he second prompt for that passphrase, otherwise blank)-2.5 E .177
+(If the helper doesn')133 136.8 R 2.677(te)-.18 G .177
+(xist \(the shell e)-2.827 F .177(xits with)-.15 F/F2 10/Times-Bold@0 SF
+(127)2.677 E F0 .178(\), a diagnostic is issued and the normal prompt)B
+(is used as f)133 148.8 Q 2.5(all-back. If)-.1 F(it f)2.5 E(ails for an)
 -.1 E 2.5(yo)-.15 G(ther reason, the prompting is aborted.)-2.5 E F2
-1.666(TPM1.X back-end con\214guration)72 153.6 R .625(TPM selection)87
-165.6 R F0(The)108 177.6 Q/F3 10/Courier-Bold@0 SF(tzpfms)2.729 E F0
-.229(suite connects to a local)2.729 F F1(tcsd)2.73 E F0 .23
-(\(8\) process \(at)B F1(localhost:30003)2.73 E F0 2.73(\)b)C 2.73(yd)
--2.73 G(ef)-2.73 E 2.73(ault. Use)-.1 F(the)2.73 E(en)108 189.6 Q
-(vironment v)-.4 E(ariable)-.25 E F1(TZPFMS_TPM1X)2.5 E F0
-(to specify a remote TCS hostname.)2.5 E .111(The T)108 206.4 R(rouSerS)
--.35 E F1(tcsd)2.611 E F0 .111(\(8\) daemon will try)B F1(/dev/tpm0)2.61
-E F0 2.61(,t)C(hen)-2.61 E F1(/udev/tpm0)2.61 E F0 2.61(,t)C(hen)-2.61 E
-F1(/dev/tpm)2.61 E F0 2.61(;b)C 2.61(yo)-2.61 G(ccu-)-2.61 E -.1(py)108
-218.4 S(ing one of the earlier ones with, for e).1 E
+1.666(TPM1.X back-end con\214guration)72 165.6 R .625(TPM selection)87
+177.6 R F0(The)108 189.6 Q/F3 10/Courier-Bold@0 SF(tzpfms)2.73 E F0 .23
+(suite connects to a local)2.73 F F1(tcsd)2.73 E F0 .23
+(\(8\) process \(at)B F1(localhost:30003)2.729 E F0 2.729(\)b)C 2.729
+(yd)-2.729 G(ef)-2.729 E 2.729(ault. Use)-.1 F(the)2.729 E(en)108 201.6
+Q(vironment v)-.4 E(ariable)-.25 E F1(TZPFMS_TPM1X)2.5 E F0
+(to specify a remote TCS hostname.)2.5 E .11(The T)108 218.4 R(rouSerS)
+-.35 E F1(tcsd)2.61 E F0 .11(\(8\) daemon will try)B F1(/dev/tpm0)2.61 E
+F0 2.61(,t)C(hen)-2.61 E F1(/udev/tpm0)2.611 E F0 2.611(,t)C(hen)-2.611
+E F1(/dev/tpm)2.611 E F0 2.611(;b)C 2.611(yo)-2.611 G(ccu-)-2.611 E -.1
+(py)108 230.4 S(ing one of the earlier ones with, for e).1 E
 (xample, shell redirection, a later one can be selected.)-.15 E F2 .625
-(See also)87 235.2 R F0(The T)108 247.2 Q
+(See also)87 247.2 R F0(The T)108 259.2 Q
 (rouSerS project page at https://sourcefor)-.35 E
 (ge.net/projects/trousers.)-.18 E 4.415
-(The TPM 1.2 main speci\214cation inde)108 264 R 6.915(xa)-.15 G 6.915
+(The TPM 1.2 main speci\214cation inde)108 276 R 6.915(xa)-.15 G 6.915
 (th)-6.915 G(ttps://trustedcomputinggroup.or)-6.915 E
-(g/resource/tpm-main-)-.18 E(speci\214cation.)108 276 Q F2 1.666
-(SPECIAL THANKS)72 292.8 R F0 1.6 -.8(To a)108 304.8 T
+(g/resource/tpm-main-)-.18 E(speci\214cation.)108 288 Q F2 1.666
+(SPECIAL THANKS)72 304.8 R F0 1.6 -.8(To a)108 316.8 T
 (ll who support further de).8 E -.15(ve)-.25 G(lopment, in particular:)
-.15 E F2<83>128 316.8 Q F0(ThePhD)7.5 E F2<83>128 328.8 Q F0
-(Embark Studios)7.5 E F2<83>128 340.8 Q F0(Jasper Bekk)7.5 E(ers)-.1 E
-F2<83>128 352.8 Q F0(EvModder)7.5 E F2(REPOR)72 369.6 Q 1.666(TING B)-.4
-F(UGS)-.1 E F0(https://todo.sr)108 381.6 Q(.ht/\001nabijaczle)-.55 E
-(weli/tzpfms)-.25 E F1(\001nabijaczleweli/tzpfms@lists.sr.ht)108 398.4 Q
-F0 83.763(,a)C(rchi)-83.763 E -.15(ve)-.25 G 83.762(da).15 G(t)-83.762 E
-(https://lists.sr)108 410.4 Q(.ht/\001nabijaczle)-.55 E(weli/tzpfms.)
--.25 E F2 1.666(SEE ALSO)72 427.2 R F0
-(PCR allocations: https://wiki.archlinux.or)108 439.2 Q(g/title/T)-.18 E
+.15 E F2<83>128 328.8 Q F0(ThePhD)7.5 E F2<83>128 340.8 Q F0
+(Embark Studios)7.5 E F2<83>128 352.8 Q F0(Jasper Bekk)7.5 E(ers)-.1 E
+F2<83>128 364.8 Q F0(EvModder)7.5 E F2(REPOR)72 381.6 Q 1.666(TING B)-.4
+F(UGS)-.1 E F0(https://todo.sr)108 393.6 Q(.ht/\001nabijaczle)-.55 E
+(weli/tzpfms)-.25 E F1(\001nabijaczleweli/tzpfms@lists.sr.ht)108 410.4 Q
+F0 83.762(,a)C(rchi)-83.762 E -.15(ve)-.25 G 83.763(da).15 G(t)-83.763 E
+(https://lists.sr)108 422.4 Q(.ht/\001nabijaczle)-.55 E(weli/tzpfms.)
+-.25 E F2 1.666(SEE ALSO)72 439.2 R F0
+(PCR allocations: https://wiki.archlinux.or)108 451.2 Q(g/title/T)-.18 E
 (rusted_Platform_Module#Accessing_PCR_re)-.35 E(gisters)-.15 E
-(and https://trustedcomputinggroup.or)108 451.2 Q
+(and https://trustedcomputinggroup.or)108 463.2 Q
 (g/wp-content/uploads/PC-)-.18 E(ClientSpeci\214c_Platform_Pro\214le_fo\
-r_TPM_2p0_Systems_v51.pdf, Section 2.3.4 "PCR Usage", T)108 463.2 Q
-(able)-.8 E(1.)108 475.2 Q(tzpfms 0.3.4-10-g6a143b6)72 817.889 Q
+r_TPM_2p0_Systems_v51.pdf, Section 2.3.4 "PCR Usage", T)108 475.2 Q
+(able)-.8 E(1.)108 487.2 Q(tzpfms 0.3.4-10-g6a143b6)72 817.889 Q
 (February 28, 2024)83.018 E(2)183.837 E 0 Cg EP
-%%Page: 1 5
+%%Page: 1 9
 %%BeginPageSetup
 BP
 %%EndPageSetup
 /F0 10/Times-Roman@0 SF 45.793(ZFS-TPM1X-CLEAR-KEY\(8\) System)72 48 R
 (Manager')2.5 E 2.5(sM)-.55 G 43.292(anual ZFS-TPM1X-CLEAR-KEY\(8\))-2.5
 F/F1 10/Times-Bold@0 SF -.2(NA)72 84 S(ME).2 E/F2 10/Courier-Bold@0 SF
-(zfs-tpm1x-clear-key)108 96 Q F0 3.008<8a72>3.007 G -.25(ew)-3.008 G
+(zfs-tpm1x-clear-key)108 96 Q F0 3.008<8a72>3.008 G -.25(ew)-3.008 G
 .508(rap ZFS dataset k).25 F .808 -.15(ey i)-.1 H 3.008(np).15 G(asssw)
 -3.008 E .508(ord and clear tzpfms TPM1.X meta-)-.1 F(data)108 108 Q F1
-(SYNOPSIS)72 124.8 Q F2(zfs-tpm-list)108 136.8 Q/F3 10/Courier-Oblique@0
-SF(dataset)2.5 E F1(DESCRIPTION)72 153.6 Q F0(After v)108 165.6 Q
-(erifying)-.15 E F3(dataset)2.5 E F0 -.1(wa)2.5 G 2.5(se).1 G
-(ncrypted with)-2.5 E F2(tzpfms)2.5 E F0(back)2.5 E(end)-.1 E F1(TPM1.X)
-2.5 E F0(:)A 5(1. performs)118 177.6 R 5.642(the equi)8.142 F -.25(va)
--.25 G 5.642(lent of).25 F F2 5.642(zfs change-key)8.142 F<ad6f>13.307 E
-/F4 10/Courier@0 SF(keylocation=prompt)11.641 E F2<ad6f>13.307 E F4
-(keyformat=passphrase)133 189.6 Q F3(dataset)6 E F0(,)A 5(2. remo)118
+(SYNOPSIS)72 124.8 Q F2(zfs-fido2-change-key)108 136.8 Q/F3 10
+/Courier-Oblique@0 SF(dataset)2.5 E F1(DESCRIPTION)72 153.6 Q F0
+(After v)108 165.6 Q(erifying)-.15 E F3(dataset)2.5 E F0 -.1(wa)2.5 G
+2.5(se).1 G(ncrypted with)-2.5 E F2(tzpfms)2.5 E F0(back)2.5 E(end)-.1 E
+F1(TPM1.X)2.5 E F0(:)A 5(1. performs)118 177.6 R 5.641(the equi)8.141 F
+-.25(va)-.25 G 5.641(lent of).25 F F2 5.642(zfs change-key)8.142 F<ad6f>
+13.308 E/F4 10/Courier@0 SF(keylocation=prompt)11.642 E F2<ad6f>13.308 E
+F4(keyformat=passphrase)133 189.6 Q F3(dataset)6 E F0(,)A 5(2. remo)118
 201.6 R -.15(ve)-.15 G 10.689(st).15 G(he)-10.689 E F4
 (xyz.nabijaczleweli:tzpfms.)10.689 E F0({)A F4(backend)A F0(,)A F4(key)
 14.189 E F0 10.689(}p)C 8.189(roperties from)-10.689 F F3(dataset)133
 213.6 Q F0(.)A(See)108 230.4 Q F4(zfs-tpm1x-change-key)2.5 E F0
 (\(8\) for a detailed description.)A F1 1.666
 (TPM1.X back-end con\214guration)72 247.2 R .625(TPM selection)87 259.2
-R F0(The)108 271.2 Q F2(tzpfms)2.73 E F0 .23(suite connects to a local)
-2.73 F F4(tcsd)2.73 E F0 .23(\(8\) process \(at)B F4(localhost:30003)
-2.729 E F0 2.729(\)b)C 2.729(yd)-2.729 G(ef)-2.729 E 2.729(ault. Use)-.1
-F(the)2.729 E(en)108 283.2 Q(vironment v)-.4 E(ariable)-.25 E F4
-(TZPFMS_TPM1X)2.5 E F0(to specify a remote TCS hostname.)2.5 E .11
-(The T)108 300 R(rouSerS)-.35 E F4(tcsd)2.61 E F0 .11
-(\(8\) daemon will try)B F4(/dev/tpm0)2.61 E F0 2.61(,t)C(hen)-2.61 E F4
-(/udev/tpm0)2.611 E F0 2.611(,t)C(hen)-2.611 E F4(/dev/tpm)2.611 E F0
-2.611(;b)C 2.611(yo)-2.611 G(ccu-)-2.611 E -.1(py)108 312 S
-(ing one of the earlier ones with, for e).1 E
+R F0(The)108 271.2 Q F2(tzpfms)2.729 E F0 .229
+(suite connects to a local)2.729 F F4(tcsd)2.73 E F0 .23
+(\(8\) process \(at)B F4(localhost:30003)2.73 E F0 2.73(\)b)C 2.73(yd)
+-2.73 G(ef)-2.73 E 2.73(ault. Use)-.1 F(the)2.73 E(en)108 283.2 Q
+(vironment v)-.4 E(ariable)-.25 E F4(TZPFMS_TPM1X)2.5 E F0
+(to specify a remote TCS hostname.)2.5 E .111(The T)108 300 R(rouSerS)
+-.35 E F4(tcsd)2.611 E F0 .111(\(8\) daemon will try)B F4(/dev/tpm0)2.61
+E F0 2.61(,t)C(hen)-2.61 E F4(/udev/tpm0)2.61 E F0 2.61(,t)C(hen)-2.61 E
+F4(/dev/tpm)2.61 E F0 2.61(;b)C 2.61(yo)-2.61 G(ccu-)-2.61 E -.1(py)108
+312 S(ing one of the earlier ones with, for e).1 E
 (xample, shell redirection, a later one can be selected.)-.15 E F1 .625
 (See also)87 328.8 R F0(The T)108 340.8 Q
 (rouSerS project page at https://sourcefor)-.35 E
@@ -571,11 +839,11 @@ F(the)2.729 E(en)108 283.2 Q(vironment v)-.4 E(ariable)-.25 E F4
 F1<83>128 446.4 Q F0(EvModder)7.5 E F1(REPOR)72 463.2 Q 1.666(TING B)-.4
 F(UGS)-.1 E F0(https://todo.sr)108 475.2 Q(.ht/\001nabijaczle)-.55 E
 (weli/tzpfms)-.25 E F4(\001nabijaczleweli/tzpfms@lists.sr.ht)108 492 Q
-F0 83.762(,a)C(rchi)-83.762 E -.15(ve)-.25 G 83.763(da).15 G(t)-83.763 E
+F0 83.763(,a)C(rchi)-83.763 E -.15(ve)-.25 G 83.762(da).15 G(t)-83.762 E
 (https://lists.sr)108 504 Q(.ht/\001nabijaczle)-.55 E(weli/tzpfms.)-.25
 E(tzpfms 0.3.4-10-g6a143b6)72 817.889 Q(December 4, 2022)83.023 E(1)
 183.842 E 0 Cg EP
-%%Page: 1 6
+%%Page: 1 10
 %%BeginPageSetup
 BP
 %%EndPageSetup
@@ -584,15 +852,15 @@ BP
 (AD-KEY\(8\))-.35 E/F1 10/Times-Bold@0 SF -.2(NA)72 84 S(ME).2 E/F2 10
 /Courier-Bold@0 SF(zfs-tpm1x-load-key)108 96 Q F0 2.5<8a6c>2.5 G
 (oad TPM1.X-encrypted ZFS dataset k)-2.5 E -.15(ey)-.1 G F1(SYNOPSIS)72
-112.8 Q F2(zfs-tpm-list)108 124.8 Q F0([)2.5 E F2<ad6e>1.666 E F0(])A/F3
-10/Courier-Oblique@0 SF(dataset)2.5 E F1(DESCRIPTION)72 141.6 Q F0 .191
-(After v)108 153.6 R(erifying)-.15 E F3(dataset)2.691 E F0 -.1(wa)2.691
-G 2.691(se).1 G .191(ncrypted with)-2.691 F F2(tzpfms)2.69 E F0(back)
-2.69 E(end)-.1 E F1(TPM1.X)2.69 E F0 .19(will unseal the k)2.69 F .49
--.15(ey a)-.1 H .19(nd load).15 F(it into)108 165.6 Q F3(dataset)2.5 E
-F0(.)A .236
+112.8 Q F2(zfs-fido2-change-key)108 124.8 Q F0([)2.5 E F2<ad6e>1.666 E
+F0(])A/F3 10/Courier-Oblique@0 SF(dataset)2.5 E F1(DESCRIPTION)72 141.6
+Q F0 .19(After v)108 153.6 R(erifying)-.15 E F3(dataset)2.69 E F0 -.1
+(wa)2.69 G 2.69(se).1 G .19(ncrypted with)-2.69 F F2(tzpfms)2.69 E F0
+(back)2.69 E(end)-.1 E F1(TPM1.X)2.69 E F0 .191(will unseal the k)2.69 F
+.491 -.15(ey a)-.1 H .191(nd load).15 F(it into)108 165.6 Q F3(dataset)
+2.5 E F0(.)A .236
 (The user is \214rst prompted for the SRK passphrase, set when taking o)
-108 182.4 R .236(wnership, if not "well-kno)-.25 F .236(wn" \(all)-.25 F
+108 182.4 R .236(wnership, if not "well-kno)-.25 F .235(wn" \(all)-.25 F
 (zeroes\); then for the additional passphrase, set when creating the k)
 108 194.4 Q -.15(ey)-.1 G 2.5(,i)-.5 G 2.5(fo)-2.5 G(ne w)-2.5 E
 (as set.)-.1 E(See)108 211.2 Q/F4 10/Courier@0 SF(zfs-tpm1x-change-key)
@@ -600,14 +868,14 @@ F0(.)A .236
 <ad6e>109.666 240 Q F0 3.208(Do a no-op/dry run, can be used e)131 240 R
 -.15(ve)-.25 G 5.708(ni).15 G 5.708(ft)-5.708 G 3.208(he k)-5.708 F
 3.508 -.15(ey i)-.1 H 5.708(sa).15 G 3.208(lready loaded.)-5.708 F(Equi)
-8.207 E -.25(va)-.25 G 3.207(lent to).25 F F2(zfs)5.707 E(load-key)131
+8.208 E -.25(va)-.25 G 3.208(lent to).25 F F2(zfs)5.708 E(load-key)131
 252 Q F0 -.55('s)C F2<ad6e>4.716 E F0(option.)2.5 E F1(ENVIR)72 268.8 Q
 1.666(ONMENT V)-.3 F(ARIABLES)-1.35 E F4(TZPFMS_PASSPHRASE_HELPER)108
-280.8 Q F0 .045(By def)133 292.8 R .045(ault, passphrases are prompted \
-for and read in on the standard output and input streams.)-.1 F(If)5.046
-E F4(TZPFMS_PASSPHRASE_HELPER)133 304.8 Q F0 1.596(is set and nonempty)
-4.096 F 4.096(,i)-.65 G 4.096(tw)-4.096 G 1.596(ill be run via)-4.096 F
-F4(/bin/)4.095 E F2 3.261(sh \255c)B F0(to)4.095 E(pro)133 316.8 Q
+280.8 Q F0 .046(By def)133 292.8 R .045(ault, passphrases are prompted \
+for and read in on the standard output and input streams.)-.1 F(If)5.045
+E F4(TZPFMS_PASSPHRASE_HELPER)133 304.8 Q F0 1.595(is set and nonempty)
+4.095 F 4.096(,i)-.65 G 4.096(tw)-4.096 G 1.596(ill be run via)-4.096 F
+F4(/bin/)4.096 E F2 3.262(sh \255c)B F0(to)4.096 E(pro)133 316.8 Q
 (vide each passphrase, instead.)-.15 E .643
 (The standard output stream of the helper is tied to an anon)133 333.6 R
 .643(ymous \214le and used in its entirety as)-.15 F(the passphrase, e)
@@ -620,23 +888,23 @@ F4(/bin/)4.095 E F2 3.261(sh \255c)B F0(to)4.095 E(pro)133 316.8 Q
 381.6 Q(w" if this is for a ne)-.25 E 2.5(wp)-.25 G
 (assphrase, otherwise blank)-2.5 E F4($4)143 393.6 Q F0("ag)160 393.6 Q
 (ain" if it')-.05 E 2.5(st)-.55 G
-(he second prompt for that passphrase, otherwise blank)-2.5 E .178
-(If the helper doesn')133 410.4 R 2.678(te)-.18 G .178
-(xist \(the shell e)-2.828 F .177(xits with)-.15 F F1(127)2.677 E F0
-.177(\), a diagnostic is issued and the normal prompt)B(is used as f)133
+(he second prompt for that passphrase, otherwise blank)-2.5 E .177
+(If the helper doesn')133 410.4 R 2.677(te)-.18 G .177
+(xist \(the shell e)-2.827 F .177(xits with)-.15 F F1(127)2.677 E F0
+.178(\), a diagnostic is issued and the normal prompt)B(is used as f)133
 422.4 Q 2.5(all-back. If)-.1 F(it f)2.5 E(ails for an)-.1 E 2.5(yo)-.15
 G(ther reason, the prompting is aborted.)-2.5 E F1 1.666
 (TPM1.X back-end con\214guration)72 439.2 R .625(TPM selection)87 451.2
-R F0(The)108 463.2 Q F2(tzpfms)2.729 E F0 .229
-(suite connects to a local)2.729 F F4(tcsd)2.73 E F0 .23
-(\(8\) process \(at)B F4(localhost:30003)2.73 E F0 2.73(\)b)C 2.73(yd)
--2.73 G(ef)-2.73 E 2.73(ault. Use)-.1 F(the)2.73 E(en)108 475.2 Q
-(vironment v)-.4 E(ariable)-.25 E F4(TZPFMS_TPM1X)2.5 E F0
-(to specify a remote TCS hostname.)2.5 E .111(The T)108 492 R(rouSerS)
--.35 E F4(tcsd)2.611 E F0 .111(\(8\) daemon will try)B F4(/dev/tpm0)2.61
-E F0 2.61(,t)C(hen)-2.61 E F4(/udev/tpm0)2.61 E F0 2.61(,t)C(hen)-2.61 E
-F4(/dev/tpm)2.61 E F0 2.61(;b)C 2.61(yo)-2.61 G(ccu-)-2.61 E -.1(py)108
-504 S(ing one of the earlier ones with, for e).1 E
+R F0(The)108 463.2 Q F2(tzpfms)2.73 E F0 .23(suite connects to a local)
+2.73 F F4(tcsd)2.73 E F0 .23(\(8\) process \(at)B F4(localhost:30003)
+2.729 E F0 2.729(\)b)C 2.729(yd)-2.729 G(ef)-2.729 E 2.729(ault. Use)-.1
+F(the)2.729 E(en)108 475.2 Q(vironment v)-.4 E(ariable)-.25 E F4
+(TZPFMS_TPM1X)2.5 E F0(to specify a remote TCS hostname.)2.5 E .11
+(The T)108 492 R(rouSerS)-.35 E F4(tcsd)2.61 E F0 .11
+(\(8\) daemon will try)B F4(/dev/tpm0)2.61 E F0 2.61(,t)C(hen)-2.61 E F4
+(/udev/tpm0)2.611 E F0 2.611(,t)C(hen)-2.611 E F4(/dev/tpm)2.611 E F0
+2.611(;b)C 2.611(yo)-2.611 G(ccu-)-2.611 E -.1(py)108 504 S
+(ing one of the earlier ones with, for e).1 E
 (xample, shell redirection, a later one can be selected.)-.15 E F1 .625
 (See also)87 520.8 R F0(The T)108 532.8 Q
 (rouSerS project page at https://sourcefor)-.35 E
@@ -651,11 +919,11 @@ F4(/dev/tpm)2.61 E F0 2.61(;b)C 2.61(yo)-2.61 G(ccu-)-2.61 E -.1(py)108
 F1<83>128 638.4 Q F0(EvModder)7.5 E F1(REPOR)72 655.2 Q 1.666(TING B)-.4
 F(UGS)-.1 E F0(https://todo.sr)108 667.2 Q(.ht/\001nabijaczle)-.55 E
 (weli/tzpfms)-.25 E F4(\001nabijaczleweli/tzpfms@lists.sr.ht)108 684 Q
-F0 83.763(,a)C(rchi)-83.763 E -.15(ve)-.25 G 83.762(da).15 G(t)-83.762 E
+F0 83.762(,a)C(rchi)-83.762 E -.15(ve)-.25 G 83.763(da).15 G(t)-83.763 E
 (https://lists.sr)108 696 Q(.ht/\001nabijaczle)-.55 E(weli/tzpfms.)-.25
 E(tzpfms 0.3.4-10-g6a143b6)72 817.889 Q(December 4, 2022)83.023 E(1)
 183.842 E 0 Cg EP
-%%Page: 1 7
+%%Page: 1 11
 %%BeginPageSetup
 BP
 %%EndPageSetup
@@ -664,112 +932,112 @@ BP
 F/F1 10/Times-Bold@0 SF -.2(NA)72 84 S(ME).2 E/F2 10/Courier-Bold@0 SF
 (zfs-tpm2-change-key)108 96 Q F0 2.5<8a63>2.5 G(hange ZFS dataset k)-2.5
 E .3 -.15(ey t)-.1 H 2.5(oo).15 G(ne stored on the TPM)-2.5 E F1
-(SYNOPSIS)72 112.8 Q F2(zfs-tpm-list)108 124.8 Q F0([)2.5 E F2<ad62>
-1.666 E/F3 10/Courier-Oblique@0 SF(backup-file)6 E F0 2.5(][)C F2<ad50>
--.834 E F3(algorithm)6 E F2(:)A F3(PCR)A F0([)A F2(,)A F3(PCR)A F0 1.666
-(]...)C([)186 136.8 Q F2(+)A F3(algorithm)A F2(:)A F3(PCR)A F0([)A F2(,)
-A F3(PCR)A F0 1.666(]...)C -3.332 1.666(]... [)-1.666 H F2<ad41>A F0(]])
-A F3(dataset)2.5 E F1(DESCRIPTION)72 153.6 Q F0 1.676 -.8(To n)108 165.6
-T(ormalise).8 E F3(dataset)2.576 E F0(,)A F2(zfs-tpm-list)2.576 E F0
-.076(will open its encryption root in its stead.)2.576 F F2
-(zfs-tpm-list)5.077 E F0(will)108 177.6 Q/F4 10/Times-Italic@0 SF(ne)2.5
-E(ver)-.15 E F0(create or destro)2.5 E 2.5(ye)-.1 G
-(ncryption roots; use)-2.5 E/F5 10/Courier@0 SF(zfs-change-key)2.5 E F0
-(\(8\) for that.)A(First, a connection is made to the TPM, which)108
-194.4 Q F4(must)2.5 E F0(be TPM-2.0-compatible.)2.5 E(If)108 211.2 Q F3
-(dataset)3.055 E F0 -.1(wa)3.055 G 3.055(sp).1 G(re)-3.055 E .555
-(viously encrypted with)-.25 F F2(tzpfms)3.055 E F0 .555(and the)3.055 F
-F1(TPM2)3.055 E F0 .554(back-end w)3.054 F .554(as used, the pre)-.1 F
-(vious)-.25 E -.1(ke)108 223.2 S 3.059(yw)-.05 G .559
-(ill be freed from the TPM.)-3.059 F .56
+(SYNOPSIS)72 112.8 Q F2(zfs-fido2-change-key)108 124.8 Q F0([)2.5 E F2
+<ad62>1.666 E/F3 10/Courier-Oblique@0 SF(backup-file)6 E F0 2.5(][)C F2
+<ad50>-.834 E F3(algorithm)6 E F2(:)A F3(PCR)A F0([)A F2(,)A F3(PCR)A F0
+1.666(]...)C([)234 136.8 Q F2(+)A F3(algorithm)A F2(:)A F3(PCR)A F0([)A
+F2(,)A F3(PCR)A F0 1.666(]...)C -3.332 1.666(]... [)-1.666 H F2<ad41>A
+F0(]])A F3(dataset)2.5 E F1(DESCRIPTION)72 153.6 Q F0 4.32 -.8(To n)108
+165.6 T(ormalise).8 E F3(dataset)5.22 E F0(,)A F2(zfs-fido2-change-key)
+5.22 E F0 2.719(will open its encryption root in its stead.)5.22 F F2
+(zfs-fido2-change-key)108 177.6 Q F0(will)14.654 E/F4 10/Times-Italic@0
+SF(ne)14.654 E(ver)-.15 E F0 12.154(create or destro)14.654 F 14.655(ye)
+-.1 G 12.155(ncryption roots; use)-14.655 F/F5 10/Courier@0 SF
+(zfs-change-key)108 189.6 Q F0(\(8\) for that.)A
+(First, a connection is made to the TPM, which)108 206.4 Q F4(must)2.5 E
+F0(be TPM-2.0-compatible.)2.5 E(If)108 223.2 Q F3(dataset)3.055 E F0 -.1
+(wa)3.055 G 3.055(sp).1 G(re)-3.055 E .555(viously encrypted with)-.25 F
+F2(tzpfms)3.055 E F0 .555(and the)3.055 F F1(TPM2)3.055 E F0 .554
+(back-end w)3.054 F .554(as used, the pre)-.1 F(vious)-.25 E -.1(ke)108
+235.2 S 3.059(yw)-.05 G .559(ill be freed from the TPM.)-3.059 F .56
 (Otherwise, or in case of an error)5.56 F 3.06(,d)-.4 G .56
 (ata required for manual interv)-3.06 F(en-)-.15 E
-(tion will be written to the standard error stream.)108 235.2 Q(Ne)108
-252 Q .295(xt, a ne)-.15 F 2.794(ww)-.25 G .294(rapping k)-2.794 F .594
+(tion will be written to the standard error stream.)108 247.2 Q(Ne)108
+264 Q .295(xt, a ne)-.15 F 2.794(ww)-.25 G .294(rapping k)-2.794 F .594
 -.15(ey i)-.1 H 2.794(sg).15 G .294
 (enerated on the TPM, optionally back)-2.794 F .294(ed up \(see)-.1 F F1
 (OPTIONS)2.794 E F0 .294(\), and sealed)B .588
-(to a persistent object on the TPM under the o)108 264 R .589
+(to a persistent object on the TPM under the o)108 276 R .589
 (wner hierarch)-.25 F .589(y; if there is a passphrase set on the o)-.05
-F(wner)-.25 E(hierarch)108 276 Q 1.603 -.65(y, t)-.05 H .302
+F(wner)-.25 E(hierarch)108 288 Q 1.603 -.65(y, t)-.05 H .302
 (he user is prompted for it; the user is al).65 F -.1(wa)-.1 G .302
 (ys prompted for an optional passphrase to protect).1 F
-(the sealed object with.)108 288 Q(The follo)108 304.8 Q
+(the sealed object with.)108 300 Q(The follo)108 316.8 Q
 (wing properties are set on)-.25 E F3(dataset)2.5 E F0(:)A F1<83>128
-316.8 Q F5(xyz.nabijaczleweli:tzpfms.backend)7.5 E F0(=)A F1(TPM2)A<83>
-128 328.8 Q F5(xyz.nabijaczleweli:tzpfms.key)7.5 E F0(=)A F3
-(persistent-object-ID)A F0([)139 340.8 Q F2(;)A F3(algorithm)A F2(:)A F3
+328.8 Q F5(xyz.nabijaczleweli:tzpfms.backend)7.5 E F0(=)A F1(TPM2)A<83>
+128 340.8 Q F5(xyz.nabijaczleweli:tzpfms.key)7.5 E F0(=)A F3
+(persistent-object-ID)A F0([)139 352.8 Q F2(;)A F3(algorithm)A F2(:)A F3
 (PCR)A F0([)A F2(,)A F3(PCR)A F0 1.666(]...)C([)-1.666 E F2(+)A F3
 (algorithm)A F2(:)A F3(PCR)A F0([)A F2(,)A F3(PCR)A F0 1.666(]...)C
-1.666(]...)-1.666 G(])-1.666 E F5(tzpfms.backend)108 357.6 Q F0 1.263
+1.666(]...)-1.666 G(])-1.666 E F5(tzpfms.backend)108 369.6 Q F0 1.263
 (identi\214es this dataset for w)3.763 F 1.264(ork with)-.1 F F1(TPM2)
 3.764 E F0(-back-ended)A F2(tzpfms)3.764 E F0 1.264(tools \(namely)3.764
-F F5(zfs-tpm2-change-key)108 369.6 Q F0(\(8\),)A F5(zfs-tpm2-load-key)
+F F5(zfs-tpm2-change-key)108 381.6 Q F0(\(8\),)A F5(zfs-tpm2-load-key)
 2.5 E F0(\(8\), and)A F5(zfs-tpm2-clear-key)2.5 E F0(\(8\)\).)A F5
-(tzpfms.key)108 386.4 Q F0 1.509(is an inte)4.009 F 1.509
+(tzpfms.key)108 398.4 Q F0 1.509(is an inte)4.009 F 1.509
 (ger representing the sealed object, optionally follo)-.15 F 1.509
 (wed by a semicolon and)-.25 F .822(PCR list as speci\214ed with)108
-398.4 R F2<ad50>4.988 E F0 3.322(,n)C .822(ormalised to be)-3.322 F F2
+410.4 R F2<ad50>4.988 E F0 3.322(,n)C .822(ormalised to be)-3.322 F F2
 (tpm-tools)3.322 E F0 .823(-toolchain-compatible; if needed, it can)B
-.866(be passed to)108 410.4 R F2 2.532(tpm2_unseal \255c)3.366 F F5
+.866(be passed to)108 422.4 R F2 2.532(tpm2_unseal \255c)3.366 F F5
 (${tzpfms.key)6.866 E F2(%%)A F5(;)A/F6 10/Symbol SF(*)A F5(})A F0(with)
 3.366 E F2<ad70>5.032 E F0(")6.866 E F5(str:${passphrase})A F0 3.365("o)
-C(r)-3.365 E F2<ad70>109.666 422.4 Q F0(")6.727 E F5(pcr:${tzpfms.key)A
+C(r)-3.365 E F2<ad70>109.666 434.4 Q F0(")6.727 E F5(pcr:${tzpfms.key)A
 F2(#)A F6(*)A F5(;})A F0 .727(", as the case may be, or equi)B -.25(va)
 -.25 G .728(lent, for back-up \(see).25 F F1(OPTIONS)3.228 E F0(\).)A
-.448(If you ha)108 434.4 R .748 -.15(ve a s)-.2 H .448(ealed k).15 F
+.448(If you ha)108 446.4 R .748 -.15(ve a s)-.2 H .448(ealed k).15 F
 .748 -.15(ey y)-.1 H .448(ou can access with that or equi).15 F -.25(va)
 -.25 G .447(lent tool and set both of these properties, it).25 F
-(will funxion seamlessly)108 446.4 Q(.)-.65 E(Finally)108 463.2 Q 12.005
+(will funxion seamlessly)108 458.4 Q(.)-.65 E(Finally)108 475.2 Q 12.005
 (,t)-.65 G 9.505(he equi)-12.005 F -.25(va)-.25 G 9.505(lent of).25 F F2
 9.505(zfs change-key)12.005 F<ad6f>17.172 E F5(keylocation=prompt)15.506
-E F2<ad6f>17.172 E F5(keyformat=raw)108 475.2 Q F3(dataset)6.107 E F0
+E F2<ad6f>17.172 E F5(keyformat=raw)108 487.2 Q F3(dataset)6.107 E F0
 .107(is performed with the ne)2.607 F 2.606(wk)-.25 G -.15(ey)-2.706 G
 5.106(.I)-.5 G 2.606(fa)-5.106 G 2.606(ne)-2.606 G .106
 (rror occurred, best ef)-2.606 F .106(fort is made)-.25 F .289(to clean\
  up the persistent object and properties, or to issue a note for manual\
- interv)108 487.2 R .29(ention into the stan-)-.15 F(dard error stream.)
-108 499.2 Q 2.625<418c>108 516 S .125(nal v)-2.625 F .125
+ interv)108 499.2 R .29(ention into the stan-)-.15 F(dard error stream.)
+108 511.2 Q 2.625<418c>108 528 S .125(nal v)-2.625 F .125
 (eri\214cation should be made by running)-.15 F F2 1.79
 (zfs-tpm2-load-key \255n)2.624 F F3(dataset)6.124 E F0 5.124(.I)C 2.624
 (ft)-5.124 G .124(hat com-)-2.624 F .506(mand succeeds, all is well, b)
-108 528 R .506(ut otherwise the dataset can be manually rolled back to \
-a passphrase with)-.2 F F2(zfs-tpm2-clear-key)108 540 Q F3(dataset)
+108 540 R .506(ut otherwise the dataset can be manually rolled back to \
+a passphrase with)-.2 F F2(zfs-tpm2-clear-key)108 552 Q F3(dataset)
 11.539 E F0(\(or)8.039 E 8.039(,i)-.4 G 8.039(ft)-8.039 G 5.539(hat f)
 -8.039 F 5.539(ails to w)-.1 F(ork,)-.1 E F2 5.539(zfs change-key)8.039
-F<ad6f>13.204 E F5(keyformat=passphrase)108 552 Q F3(dataset)6 E F0
+F<ad6f>13.204 E F5(keyformat=passphrase)108 564 Q F3(dataset)6 E F0
 (\), and you are hereby ask)A(ed to report a b)-.1 E(ug, please.)-.2 E
-F2(zfs-tpm2-clear-key)108 568.8 Q F3(dataset)6.029 E F0 .029
+F2(zfs-tpm2-clear-key)108 580.8 Q F3(dataset)6.029 E F0 .029
 (can be used to free the TPM persistent object and go back to us-)2.529
-F(ing a passphrase.)108 580.8 Q F1(OPTIONS)72 597.6 Q F2<ad62>109.666
-609.6 Q F3(backup-file)6 E F0(Sa)203 609.6 Q .353 -.15(ve a b)-.2 H .052
+F(ing a passphrase.)108 592.8 Q F1(OPTIONS)72 609.6 Q F2<ad62>109.666
+621.6 Q F3(backup-file)6 E F0(Sa)203 621.6 Q .353 -.15(ve a b)-.2 H .052
 (ack-up of the k).15 F .352 -.15(ey t)-.1 H(o).15 E F3(backup-file)2.552
 E F0 2.552(,w)C .052(hich must not e)-2.552 F .052(xist beforehand.)-.15
-F .693(This back-up)203 621.6 R F4(must)3.193 E F0 .694
+F .693(This back-up)203 633.6 R F4(must)3.193 E F0 .694
 (be stored securely)3.193 F 3.194(,o)-.65 G -.25(ff)-3.194 G 3.194
 (-site. In).25 F .694(case of a catastrophic e)3.194 F -.15(ve)-.25 G
-(nt,).15 E(the k)203 633.6 Q .3 -.15(ey c)-.1 H(an be loaded by running)
-.15 E F2(zfs load-key)233 645.6 Q F3(dataset)6 E F5(<)6 E F3
-(backup-file)6 E F2<ad50>109.666 662.4 Q F3(algorithm)6 E F2(:)A F3(PCR)
+(nt,).15 E(the k)203 645.6 Q .3 -.15(ey c)-.1 H(an be loaded by running)
+.15 E F2(zfs load-key)233 657.6 Q F3(dataset)6 E F5(<)6 E F3
+(backup-file)6 E F2<ad50>109.666 674.4 Q F3(algorithm)6 E F2(:)A F3(PCR)
 A F0([)A F2(,)A F3(PCR)A F0 1.666(]...)C([)-1.666 E F2(+)A F3(algorithm)
 A F2(:)A F3(PCR)A F0([)A F2(,)A F3(PCR)A F0 1.666(]...)C 1.666(]...)
--1.666 G 1.425(Bind the k)203 674.4 R 1.725 -.15(ey t)-.1 H 3.925(os).15
+-1.666 G 1.425(Bind the k)203 686.4 R 1.725 -.15(ey t)-.1 H 3.925(os).15
 G 1.425(pace- or comma-separated)-3.925 F F3(PCR)3.924 E F0 3.924(sw)C
-1.424(ithin their corresponding)-3.924 F(hashing)203 686.4 Q F3
+1.424(ithin their corresponding)-3.924 F(hashing)203 698.4 Q F3
 (algorithm)2.523 E F0 2.523<8a69>2.523 G 2.523(ft)-2.523 G(he)-2.523 E
 2.523(yc)-.15 G .023(hange, the wrapping k)-2.523 F .323 -.15(ey w)-.1 H
-.024(ill not be able to be).15 F 2.5(unsealed. There)203 698.4 R(are)2.5
+.024(ill not be able to be).15 F 2.5(unsealed. There)203 710.4 R(are)2.5
 E F1(24)2.5 E F0(PCRs, numbered [)2.5 E F1(0)A F0(,)A F1(23)2.5 E F0(].)
-A F3(algorithm)203 715.2 Q F0 2.968(may be an)5.469 F 5.468(yo)-.15 G
+A F3(algorithm)203 727.2 Q F0 2.968(may be an)5.469 F 5.468(yo)-.15 G
 5.468(fc)-5.468 G(ase-insensiti)-5.468 E 3.268 -.15(ve ")-.25 H F1(sha1)
 .15 E F0 2.968(", ")B F1(sha256)A F0 2.968(", ")B F1(sha384)A F0(",)A(")
-203 727.2 Q F1(sha512)A F0 4.983(", ")B F1(sm3_256)A F0 4.983(", ")B F1
+203 739.2 Q F1(sha512)A F0 4.983(", ")B F1(sm3_256)A F0 4.983(", ")B F1
 (sm3-256)A F0 4.983(", ")B F1(sha3_256)A F0 4.983(", ")B F1(sha3-256)A
-F0 4.983(", ")B F1(sha3_384)A F0(",)A(")203 739.2 Q F1(sha3-384)A F0
+F0 4.983(", ")B F1(sha3_384)A F0(",)A(")203 751.2 Q F1(sha3-384)A F0
 (", ")A F1(sha3_512)A F0(", or ")A F1(sha3-512)A F0
 (", and must be supported by the TPM.)A(tzpfms 0.3.4-10-g6a143b6)72
 817.889 Q(February 28, 2024)83.018 E(1)183.837 E 0 Cg EP
-%%Page: 2 8
+%%Page: 2 12
 %%BeginPageSetup
 BP
 %%EndPageSetup
@@ -847,7 +1115,7 @@ E F3 1.666(SEE ALSO)72 616.8 R F4(tpm2_unseal)108 628.8 Q F0(\(1\))A
 r_TPM_2p0_Systems_v51.pdf, Section 2.3.4 "PCR Usage", T)108 669.6 Q
 (able)-.8 E(1.)108 681.6 Q(tzpfms 0.3.4-10-g6a143b6)72 817.889 Q
 (February 28, 2024)83.018 E(2)183.837 E 0 Cg EP
-%%Page: 1 9
+%%Page: 1 13
 %%BeginPageSetup
 BP
 %%EndPageSetup
@@ -857,8 +1125,8 @@ F/F1 10/Times-Bold@0 SF -.2(NA)72 84 S(ME).2 E/F2 10/Courier-Bold@0 SF
 (zfs-tpm2-clear-key)108 96 Q F0 2.5<8a72>2.5 G -.25(ew)-2.5 G
 (rap ZFS dataset k).25 E .3 -.15(ey i)-.1 H 2.5(np).15 G(asssw)-2.5 E
 (ord and clear tzpfms TPM2 metadata)-.1 E F1(SYNOPSIS)72 112.8 Q F2
-(zfs-tpm-list)108 124.8 Q/F3 10/Courier-Oblique@0 SF(dataset)2.5 E F1
-(DESCRIPTION)72 141.6 Q F0(After v)108 153.6 Q(erifying)-.15 E F3
+(zfs-fido2-change-key)108 124.8 Q/F3 10/Courier-Oblique@0 SF(dataset)2.5
+E F1(DESCRIPTION)72 141.6 Q F0(After v)108 153.6 Q(erifying)-.15 E F3
 (dataset)2.5 E F0 -.1(wa)2.5 G 2.5(se).1 G(ncrypted with)-2.5 E F2
 (tzpfms)2.5 E F0(back)2.5 E(end)-.1 E F1(TPM2)2.5 E F0(:)A 5
 (1. performs)118 165.6 R 5.641(the equi)8.141 F -.25(va)-.25 G 5.641
@@ -928,7 +1196,7 @@ F0 83.763(,a)C(rchi)-83.763 E -.15(ve)-.25 G 83.762(da).15 G(t)-83.762 E
 (https://lists.sr)108 710.4 Q(.ht/\001nabijaczle)-.55 E(weli/tzpfms.)
 -.25 E(tzpfms 0.3.4-10-g6a143b6)72 817.889 Q(December 4, 2022)83.023 E
 (1)183.842 E 0 Cg EP
-%%Page: 1 10
+%%Page: 1 14
 %%BeginPageSetup
 BP
 %%EndPageSetup
@@ -937,23 +1205,23 @@ BP
 (AD-KEY\(8\))-.35 E/F1 10/Times-Bold@0 SF -.2(NA)72 84 S(ME).2 E/F2 10
 /Courier-Bold@0 SF(zfs-tpm2-load-key)108 96 Q F0 2.5<8a6c>2.5 G
 (oad TPM2-encrypted ZFS dataset k)-2.5 E -.15(ey)-.1 G F1(SYNOPSIS)72
-112.8 Q F2(zfs-tpm-list)108 124.8 Q F0([)2.5 E F2<ad6e>1.666 E F0(])A/F3
-10/Courier-Oblique@0 SF(dataset)2.5 E F1(DESCRIPTION)72 141.6 Q F0 .864
-(After v)108 153.6 R(erifying)-.15 E F3(dataset)3.364 E F0 -.1(wa)3.364
-G 3.364(se).1 G .864(ncrypted with)-3.364 F F2(tzpfms)3.365 E F0(back)
-3.365 E(end)-.1 E F1(TPM2)3.365 E F0 3.365(,u)C .865(nseals the k)-3.365
-F 1.165 -.15(ey a)-.1 H .865(nd loads it).15 F(into)108 165.6 Q F3
-(dataset)2.5 E F0(.)A(The user is prompted for the additional passphras\
-e, set when creating the k)108 182.4 Q -.15(ey)-.1 G 2.5(,i)-.5 G 2.5
-(fo)-2.5 G(ne w)-2.5 E(as set.)-.1 E(See)108 199.2 Q/F4 10/Courier@0 SF
-(zfs-tpm2-change-key)2.5 E F0(\(8\) for a detailed description.)A F1
-(OPTIONS)72 216 Q F2<ad6e>109.666 228 Q F0 3.208
-(Do a no-op/dry run, can be used e)131 228 R -.15(ve)-.25 G 5.708(ni).15
-G 5.708(ft)-5.708 G 3.208(he k)-5.708 F 3.508 -.15(ey i)-.1 H 5.708(sa)
-.15 G 3.208(lready loaded.)-5.708 F(Equi)8.207 E -.25(va)-.25 G 3.207
-(lent to).25 F F2(zfs)5.707 E(load-key)131 240 Q F0 -.55('s)C F2<ad6e>
-4.716 E F0(option.)2.5 E F1(ENVIR)72 256.8 Q 1.666(ONMENT V)-.3 F
-(ARIABLES)-1.35 E F4(TZPFMS_PASSPHRASE_HELPER)108 268.8 Q F0 .045
+112.8 Q F2(zfs-fido2-change-key)108 124.8 Q F0([)2.5 E F2<ad6e>1.666 E
+F0(])A/F3 10/Courier-Oblique@0 SF(dataset)2.5 E F1(DESCRIPTION)72 141.6
+Q F0 .864(After v)108 153.6 R(erifying)-.15 E F3(dataset)3.364 E F0 -.1
+(wa)3.364 G 3.364(se).1 G .864(ncrypted with)-3.364 F F2(tzpfms)3.365 E
+F0(back)3.365 E(end)-.1 E F1(TPM2)3.365 E F0 3.365(,u)C .865
+(nseals the k)-3.365 F 1.165 -.15(ey a)-.1 H .865(nd loads it).15 F
+(into)108 165.6 Q F3(dataset)2.5 E F0(.)A(The user is prompted for the \
+additional passphrase, set when creating the k)108 182.4 Q -.15(ey)-.1 G
+2.5(,i)-.5 G 2.5(fo)-2.5 G(ne w)-2.5 E(as set.)-.1 E(See)108 199.2 Q/F4
+10/Courier@0 SF(zfs-tpm2-change-key)2.5 E F0
+(\(8\) for a detailed description.)A F1(OPTIONS)72 216 Q F2<ad6e>109.666
+228 Q F0 3.208(Do a no-op/dry run, can be used e)131 228 R -.15(ve)-.25
+G 5.708(ni).15 G 5.708(ft)-5.708 G 3.208(he k)-5.708 F 3.508 -.15(ey i)
+-.1 H 5.708(sa).15 G 3.208(lready loaded.)-5.708 F(Equi)8.207 E -.25(va)
+-.25 G 3.207(lent to).25 F F2(zfs)5.707 E(load-key)131 240 Q F0 -.55('s)
+C F2<ad6e>4.716 E F0(option.)2.5 E F1(ENVIR)72 256.8 Q 1.666(ONMENT V)
+-.3 F(ARIABLES)-1.35 E F4(TZPFMS_PASSPHRASE_HELPER)108 268.8 Q F0 .045
 (By def)133 280.8 R .045(ault, passphrases are prompted for and read in\
  on the standard output and input streams.)-.1 F(If)5.046 E F4
 (TZPFMS_PASSPHRASE_HELPER)133 292.8 Q F0 1.596(is set and nonempty)4.096
diff --git a/zfs-fido2-change-key.8 b/zfs-fido2-change-key.8
new file mode 100644
index 0000000..44ffb17
--- /dev/null
+++ b/zfs-fido2-change-key.8
@@ -0,0 +1,186 @@
+.\" SPDX-License-Identifier: MIT
+.
+.Dd February 28, 2024
+.ds doc-volume-operating-system
+.Dt ZFS-FIDO2-CHANGE-KEY 8
+.Os fzifdso 0
+.
+.Sh NAME
+.Nm zfs-fido2-change-key
+.Nd change ZFS dataset key to one authenticated by a FIDO2 device
+.Sh SYNOPSIS
+.Nm
+.Op Fl b Ar backup-file
+.Ar dataset
+.
+.Sh DESCRIPTION
+To normalise the
+.Ar dataset ,
+.Nm
+will open its encryption root in its stead.
+.Nm
+will
+.Em never
+create or destroy encryption roots; use
+.Xr zfs-change-key 8
+for that.
+.Pp
+First, a connection is made to the FIDO2 device, which
+.Em must
+support the
+.Ql hmac-secret
+extension.
+.Pp
+If
+.Ar dataset
+was previously encrypted with
+.Nm fzifdso
+and the
+.Sy FIDO2
+back-end was used, the metadata will be silently cleared.
+Otherwise, or in case of an error, data required for manual intervention will be written to the standard error stream.
+.Pp
+Next, a new credential of type ES256 is generated on the device (with relying party ID
+.Li fzifdso
+and name equal to the dataset name)
+with the
+.Ql hmac-secret
+extension requested; the device PIN, if any, is prompted for here.
+This mimicks a WebAuthn registration step.
+.Pp
+Then, the credential is asserted with a 32-byte random salt,
+which hashes it with device-private data, and thus generates the wrapping key
+.Pq which is optionally backed up Pq see Sx OPTIONS .
+This mimicks a WebAuthn login step.
+.Pp
+The following properties are set on
+.Ar dataset :
+.Bl -bullet -compact -offset 4n -width "@"
+.It
+.Li xyz.nabijaczleweli:tzpfms.backend Ns = Ns Sy FIDO2
+.It
+.Li xyz.nabijaczleweli:tzpfms.key Ns = Ns Ar salt Ns Cm \&:\:\& Ns Ar credential-ID Ns Cm \&:\:\& Ns Ar credential-public-key
+.El
+.Pp
+.Li tzpfms.backend
+identifies this dataset for work with
+.Sy FIDO2 Ns -back-ended
+.Nm tzpfms
+tools
+.Pq i.e. Nm fzifdso Xr zfs-fido2-change-key 8 , Xr zfs-fido2-load-key 8 , and Xr zfs-fido2-clear-key 8 .
+.Pp
+.Li tzpfms.key
+is a colon-separated tuple of unpadded URL-safe base64 blobs;
+the first one is the random salt;
+the second represents the ID of created credential,
+and the third \(en its public key.
+There exists no other user-land tool for deciphering this; perhaps there should be.
+.\"" TODO: make an LD_PRELOADable for extracting the key maybe?
+.Pp
+Finally, the equivalent of
+.Nm zfs Cm change-key Fl o Li keylocation=prompt Fl o Li keyformat=raw Ar dataset
+is performed with the new key.
+If an error occurred, best effort is made to clean up the properties,
+or to issue a note for manual intervention into the standard error stream.
+.Pp
+A final verification should be made by running
+.Nm zfs-fido2-load-key Fl n Ar dataset .
+If that command succeeds, all is well,
+but otherwise the dataset can be manually rolled back to a passphrase with
+.Nm zfs-fido2-clear-key Ar dataset
+.Pq or, if that fails to work, Nm zfs Cm change-key Fl o Li keyformat=passphrase Ar dataset ,
+and you are hereby asked to report a bug, please.
+.Pp
+.Nm zfs-fido2-clear-key Ar dataset
+can be used to clear the properties and go back to using a passphrase.
+.
+.Sh OPTIONS
+.Bl -tag -compact -width ".Fl b Ar backup-file"
+.It Fl b Ar backup-file
+Save a back-up of the key to
+.Ar backup-file ,
+which must not exist beforehand.
+This back-up
+.Em must
+be stored securely, off-site.
+In case of a catastrophic event, the key can be loaded by running
+.Dl Nm zfs Cm load-key Ar dataset Li < Ar backup-file
+.El
+.
+.\" SPDX-License-Identifier: MIT
+.
+.Sh ENVIRONMENT VARIABLES
+.Bl -tag -compact -width 4n
+.It Ev TZPFMS_PASSPHRASE_HELPER
+By default, passphrases are prompted for and read in on the standard output and input streams.
+If
+.Ev TZPFMS_PASSPHRASE_HELPER
+is set and nonempty, it will be run via
+.Pa /bin/ Ns Nm sh Fl c
+to provide each passphrase, instead.
+.Pp
+The standard output stream of the helper is tied to an anonymous file and used in its entirety as the passphrase, except for a trailing new-line, if any.
+The arguments are:
+.Bl -tag -compact -offset 2n -width ".Li $1"
+.It Li $1
+Pre-formatted noun phrase with all the information below, for use as a prompt
+.\" Passphrase for tarta-zoot
+.\" New passphrase for tarta-zoot (again)
+.It Li $2
+Either the dataset name or the element of the TPM hierarchy being prompted for
+.It Li $3
+.Qq new
+if this is for a new passphrase, otherwise blank
+.It Li $4
+.Qq again
+if it's the second prompt for that passphrase, otherwise blank
+.El
+.Pp
+If the helper doesn't exist
+.Pq the shell exits with Sy 127 ,
+a diagnostic is issued and the normal prompt is used as fall-back.
+If it fails for any other reason, the prompting is aborted.
+.
+.
+.El
+.
+.\" SPDX-License-Identifier: MIT
+.
+.Sh FIDO2 back-end configuration
+.Ss Environment variables
+.Bl -tag -compact -width ".Ev FIDO_DEBUG"
+.It Ev FIDO_DEBUG
+If set, enables libfido2 debug logging to the standard error stream.
+.El
+.
+.Ss Device selection
+When creating, the first device which supports the
+.Ql hmac-secret
+extension is used.
+When loading, the assertion is shopped around to every such device.
+.
+.Ss See also
+The libfido2 documentation at
+.Lk https:/\&/developers.yubico.com/libfido2/ .
+.
+.\" SPDX-License-Identifier: MIT
+.
+.Sh SPECIAL THANKS
+To all who support further development, in particular:
+.Bl -bullet -offset 4n -compact -width "@"
+.It
+ThePhD
+.It
+Embark Studios
+.It
+Jasper Bekkers
+.It
+EvModder
+.El
+.
+.Sh REPORTING BUGS
+.Lk https:/\&/todo.sr.ht/\(tinabijaczleweli/fzifdso
+.Pp
+.Mt \(tinabijaczleweli/tzpfms@lists.sr.ht ,
+archived at
+.Lk https:/\&/lists.sr.ht/\(tinabijaczleweli/tzpfms .
diff --git a/zfs-fido2-change-key.8.html b/zfs-fido2-change-key.8.html
new file mode 100644
index 0000000..773e801
--- /dev/null
+++ b/zfs-fido2-change-key.8.html
@@ -0,0 +1,205 @@
+<!DOCTYPE html>
+<html>
+<!-- This is an automatically generated file.  Do not edit.
+   SPDX-License-Identifier: MIT
+ -->
+<head>
+  <meta charset="utf-8"/>
+  <meta name="viewport" content="width=device-width, initial-scale=1.0"/>
+  <link rel="stylesheet" href="style.css" type="text/css" media="all"/>
+  <title>ZFS-FIDO2-CHANGE-KEY(8)</title>
+</head>
+<body>
+<table class="head">
+  <tr>
+    <td class="head-ltitle">ZFS-FIDO2-CHANGE-KEY(8)</td>
+    <td class="head-vol">System Manager's Manual</td>
+    <td class="head-rtitle">ZFS-FIDO2-CHANGE-KEY(8)</td>
+  </tr>
+</table>
+<div class="manual-text">
+<section class="Sh">
+<h1 class="Sh" id="NAME"><a class="permalink" href="#NAME">NAME</a></h1>
+<p class="Pp"><code class="Nm">zfs-fido2-change-key</code> &#x2014;
+    <span class="Nd">change ZFS dataset key to one authenticated by a FIDO2
+    device</span></p>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="SYNOPSIS"><a class="permalink" href="#SYNOPSIS">SYNOPSIS</a></h1>
+<table class="Nm">
+  <tr>
+    <td><code class="Nm">zfs-fido2-change-key</code></td>
+    <td>[<code class="Fl">-b</code> <var class="Ar">backup-file</var>]
+      <var class="Ar">dataset</var></td>
+  </tr>
+</table>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="DESCRIPTION"><a class="permalink" href="#DESCRIPTION">DESCRIPTION</a></h1>
+<p class="Pp">To normalise the <var class="Ar">dataset</var>,
+    <code class="Nm">zfs-fido2-change-key</code> will open its encryption root
+    in its stead. <code class="Nm">zfs-fido2-change-key</code> will
+    <a class="permalink" href="#never"><i class="Em" id="never">never</i></a>
+    create or destroy encryption roots; use
+    <a class="Xr" href="https://manpages.debian.org/bookworm/zfs-change-key.8">zfs-change-key(8)</a>
+    for that.</p>
+<p class="Pp">First, a connection is made to the FIDO2 device, which
+    <i class="Em">must</i> support the
+    &#x2018;<code class="Li">hmac-secret</code>&#x2019; extension.</p>
+<p class="Pp">If <var class="Ar">dataset</var> was previously encrypted with
+    <code class="Nm">fzifdso</code> and the <b class="Sy">FIDO2</b> back-end was
+    used, the metadata will be silently cleared. Otherwise, or in case of an
+    error, data required for manual intervention will be written to the standard
+    error stream.</p>
+<p class="Pp">Next, a new credential of type ES256 is generated on the device
+    (with relying party ID <code class="Li">fzifdso</code> and name equal to the
+    dataset name) with the &#x2018;<code class="Li">hmac-secret</code>&#x2019;
+    extension requested; the device PIN, if any, is prompted for here. This
+    mimicks a WebAuthn registration step.</p>
+<p class="Pp">Then, the credential is asserted with a 32-byte random salt, which
+    hashes it with device-private data, and thus generates the wrapping key
+    (which is optionally backed up (see
+    <a class="Sx" href="#OPTIONS">OPTIONS</a>)). This mimicks a WebAuthn login
+    step.</p>
+<p class="Pp">The following properties are set on
+  <var class="Ar">dataset</var>:</p>
+<ul class="Bl-bullet Bd-indent Bl-compact">
+  <li id="xyz.nabijaczleweli:tzpfms.backend"><a class="permalink" href="#xyz.nabijaczleweli:tzpfms.backend"><code class="Li">xyz.nabijaczleweli:tzpfms.backend</code></a>=<b class="Sy">FIDO2</b></li>
+  <li id="xyz.nabijaczleweli:tzpfms.key"><a class="permalink" href="#xyz.nabijaczleweli:tzpfms.key"><code class="Li">xyz.nabijaczleweli:tzpfms.key</code></a>=<var class="Ar">salt</var><code class="Cm">:</code><var class="Ar">credential-ID</var><code class="Cm">:</code><var class="Ar">credential-public-key</var></li>
+</ul>
+<p class="Pp"><code class="Li">tzpfms.backend</code> identifies this dataset for
+    work with <b class="Sy">FIDO2</b>-back-ended <code class="Nm">tzpfms</code>
+    tools (i.e. <code class="Nm">fzifdso</code>
+    <a class="Xr" href="zfs-fido2-change-key.8.html">zfs-fido2-change-key(8)</a>,
+    <a class="Xr" href="zfs-fido2-load-key.8.html">zfs-fido2-load-key(8)</a>,
+    and
+    <a class="Xr" href="zfs-fido2-clear-key.8.html">zfs-fido2-clear-key(8)</a>).</p>
+<p class="Pp"><code class="Li">tzpfms.key</code> is a colon-separated tuple of
+    unpadded URL-safe base64 blobs; the first one is the random salt; the second
+    represents the ID of created credential, and the third &#x2013; its public
+    key. There exists no other user-land tool for deciphering this; perhaps
+    there should be.</p>
+<p class="Pp">Finally, the equivalent of <code class="Nm">zfs</code>
+    <code class="Cm">change-key</code> <code class="Fl">-o</code>
+    <code class="Li">keylocation=prompt</code> <code class="Fl">-o</code>
+    <code class="Li">keyformat=raw</code> <var class="Ar">dataset</var> is
+    performed with the new key. If an error occurred, best effort is made to
+    clean up the properties, or to issue a note for manual intervention into the
+    standard error stream.</p>
+<p class="Pp">A final verification should be made by running
+    <code class="Nm">zfs-fido2-load-key</code> <code class="Fl">-n</code>
+    <var class="Ar">dataset</var>. If that command succeeds, all is well, but
+    otherwise the dataset can be manually rolled back to a passphrase with
+    <code class="Nm">zfs-fido2-clear-key</code> <var class="Ar">dataset</var>
+    (or, if that fails to work, <code class="Nm">zfs</code>
+    <code class="Cm">change-key</code> <code class="Fl">-o</code>
+    <code class="Li">keyformat=passphrase</code> <var class="Ar">dataset</var>),
+    and you are hereby asked to report a bug, please.</p>
+<p class="Pp"><code class="Nm">zfs-fido2-clear-key</code>
+    <var class="Ar">dataset</var> can be used to clear the properties and go
+    back to using a passphrase.</p>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="OPTIONS"><a class="permalink" href="#OPTIONS">OPTIONS</a></h1>
+<dl class="Bl-tag Bl-compact">
+  <dt id="b"><a class="permalink" href="#b"><code class="Fl">-b</code></a>
+    <var class="Ar">backup-file</var></dt>
+  <dd>Save a back-up of the key to <var class="Ar">backup-file</var>, which must
+      not exist beforehand. This back-up <i class="Em">must</i> be stored
+      securely, off-site. In case of a catastrophic event, the key can be loaded
+      by running
+    <div class="Bd Bd-indent"><code class="Li"><code class="Nm">zfs</code>
+      <code class="Cm">load-key</code> <var class="Ar">dataset</var>
+      <code class="Li">&lt;</code>
+      <var class="Ar">backup-file</var></code></div>
+  </dd>
+</dl>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="ENVIRONMENT_VARIABLES"><a class="permalink" href="#ENVIRONMENT_VARIABLES">ENVIRONMENT
+  VARIABLES</a></h1>
+<dl class="Bl-tag Bl-compact">
+  <dt id="TZPFMS_PASSPHRASE_HELPER"><a class="permalink" href="#TZPFMS_PASSPHRASE_HELPER"><code class="Ev">TZPFMS_PASSPHRASE_HELPER</code></a></dt>
+  <dd>By default, passphrases are prompted for and read in on the standard
+      output and input streams. If
+      <code class="Ev">TZPFMS_PASSPHRASE_HELPER</code> is set and nonempty, it
+      will be run via <span class="Pa">/bin/</span><code class="Nm">sh</code>
+      <code class="Fl">-c</code> to provide each passphrase, instead.
+    <p class="Pp">The standard output stream of the helper is tied to an
+        anonymous file and used in its entirety as the passphrase, except for a
+        trailing new-line, if any. The arguments are:</p>
+    <div class="Bd-indent">
+    <dl class="Bl-tag Bl-compact">
+      <dt id="$1"><a class="permalink" href="#$1"><code class="Li">$1</code></a></dt>
+      <dd>Pre-formatted noun phrase with all the information below, for use as a
+          prompt</dd>
+      <dt id="$2"><a class="permalink" href="#$2"><code class="Li">$2</code></a></dt>
+      <dd>Either the dataset name or the element of the TPM hierarchy being
+          prompted for</dd>
+      <dt id="$3"><a class="permalink" href="#$3"><code class="Li">$3</code></a></dt>
+      <dd>&quot;new&quot; if this is for a new passphrase, otherwise blank</dd>
+      <dt id="$4"><a class="permalink" href="#$4"><code class="Li">$4</code></a></dt>
+      <dd>&quot;again&quot; if it's the second prompt for that passphrase,
+          otherwise blank</dd>
+    </dl>
+    </div>
+    <p class="Pp" id="127">If the helper doesn't exist (the shell exits with
+        <a class="permalink" href="#127"><b class="Sy">127</b></a>), a
+        diagnostic is issued and the normal prompt is used as fall-back. If it
+        fails for any other reason, the prompting is aborted.</p>
+  </dd>
+</dl>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="FIDO2_back-end_configuration"><a class="permalink" href="#FIDO2_back-end_configuration">FIDO2
+  back-end configuration</a></h1>
+<section class="Ss">
+<h2 class="Ss" id="Environment_variables"><a class="permalink" href="#Environment_variables">Environment
+  variables</a></h2>
+<dl class="Bl-tag Bl-compact">
+  <dt id="FIDO_DEBUG"><a class="permalink" href="#FIDO_DEBUG"><code class="Ev">FIDO_DEBUG</code></a></dt>
+  <dd>If set, enables libfido2 debug logging to the standard error stream.</dd>
+</dl>
+</section>
+<section class="Ss">
+<h2 class="Ss" id="Device_selection"><a class="permalink" href="#Device_selection">Device
+  selection</a></h2>
+<p class="Pp">When creating, the first device which supports the
+    &#x2018;<code class="Li">hmac-secret</code>&#x2019; extension is used. When
+    loading, the assertion is shopped around to every such device.</p>
+</section>
+<section class="Ss">
+<h2 class="Ss" id="See_also"><a class="permalink" href="#See_also">See
+  also</a></h2>
+<p class="Pp">The libfido2 documentation at
+    <a class="Lk" href="https://developers.yubico.com/libfido2/">https://developers.yubico.com/libfido2/</a>.</p>
+</section>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="SPECIAL_THANKS"><a class="permalink" href="#SPECIAL_THANKS">SPECIAL
+  THANKS</a></h1>
+<p class="Pp">To all who support further development, in particular:</p>
+<ul class="Bl-bullet Bd-indent Bl-compact">
+  <li>ThePhD</li>
+  <li>Embark Studios</li>
+  <li>Jasper Bekkers</li>
+  <li>EvModder</li>
+</ul>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="REPORTING_BUGS"><a class="permalink" href="#REPORTING_BUGS">REPORTING
+  BUGS</a></h1>
+<p class="Pp"><a class="Lk" href="https://todo.sr.ht/~nabijaczleweli/fzifdso">https://todo.sr.ht/~nabijaczleweli/fzifdso</a></p>
+<p class="Pp"><a class="Mt" href="mailto:~nabijaczleweli/tzpfms@lists.sr.ht">~nabijaczleweli/tzpfms@lists.sr.ht</a>,
+    archived at
+    <a class="Lk" href="https://lists.sr.ht/~nabijaczleweli/tzpfms">https://lists.sr.ht/~nabijaczleweli/tzpfms</a>.</p>
+</section>
+</div>
+<table class="foot">
+  <tr>
+    <td class="foot-date">February 28, 2024</td>
+    <td class="foot-os">fzifdso 0</td>
+  </tr>
+</table>
+</body>
+</html>
diff --git a/zfs-fido2-clear-key.8 b/zfs-fido2-clear-key.8
new file mode 100644
index 0000000..dd2a76c
--- /dev/null
+++ b/zfs-fido2-clear-key.8
@@ -0,0 +1,113 @@
+.\" SPDX-License-Identifier: MIT
+.
+.Dd February 28, 2024
+.ds doc-volume-operating-system
+.Dt ZFS-FIDO2-CLEAR-KEY 8
+.Os fzifdso 0
+.
+.Sh NAME
+.Nm zfs-fido2-clear-key
+.Nd rewrap ZFS dataset key in passsword and clear tzpfms FIDO2 metadata
+.Sh SYNOPSIS
+.Nm
+.Ar dataset
+.
+.Sh DESCRIPTION
+After verifying
+.Ar dataset
+was encrypted with
+.Nm tzpfms
+backend
+.Sy FIDO2 :
+.Bl -enum -compact -offset 2n -width 2n
+.It
+performs the equivalent of
+.Nm zfs Cm change-key Fl o Li keylocation=prompt Fl o Li keyformat=passphrase Ar dataset ,
+.It
+removes the
+.Li xyz.nabijaczleweli:tzpfms.\& Ns Brq Li backend , key
+properties from
+.Ar dataset .
+.El
+.Pp
+See
+.Xr zfs-fido2-change-key 8
+for a detailed description.
+.
+.\" SPDX-License-Identifier: MIT
+.
+.Sh ENVIRONMENT VARIABLES
+.Bl -tag -compact -width 4n
+.It Ev TZPFMS_PASSPHRASE_HELPER
+By default, passphrases are prompted for and read in on the standard output and input streams.
+If
+.Ev TZPFMS_PASSPHRASE_HELPER
+is set and nonempty, it will be run via
+.Pa /bin/ Ns Nm sh Fl c
+to provide each passphrase, instead.
+.Pp
+The standard output stream of the helper is tied to an anonymous file and used in its entirety as the passphrase, except for a trailing new-line, if any.
+The arguments are:
+.Bl -tag -compact -offset 2n -width ".Li $1"
+.It Li $1
+Pre-formatted noun phrase with all the information below, for use as a prompt
+.\" Passphrase for tarta-zoot
+.\" New passphrase for tarta-zoot (again)
+.It Li $2
+Either the dataset name or the element of the TPM hierarchy being prompted for
+.It Li $3
+.Qq new
+if this is for a new passphrase, otherwise blank
+.It Li $4
+.Qq again
+if it's the second prompt for that passphrase, otherwise blank
+.El
+.Pp
+If the helper doesn't exist
+.Pq the shell exits with Sy 127 ,
+a diagnostic is issued and the normal prompt is used as fall-back.
+If it fails for any other reason, the prompting is aborted.
+.
+.
+.El
+.
+.\" SPDX-License-Identifier: MIT
+.
+.Sh FIDO2 back-end configuration
+.Ss Environment variables
+.Bl -tag -compact -width ".Ev FIDO_DEBUG"
+.It Ev FIDO_DEBUG
+If set, enables libfido2 debug logging to the standard error stream.
+.El
+.
+.Ss Device selection
+When creating, the first device which supports the
+.Ql hmac-secret
+extension is used.
+When loading, the assertion is shopped around to every such device.
+.
+.Ss See also
+The libfido2 documentation at
+.Lk https:/\&/developers.yubico.com/libfido2/ .
+.
+.\" SPDX-License-Identifier: MIT
+.
+.Sh SPECIAL THANKS
+To all who support further development, in particular:
+.Bl -bullet -offset 4n -compact -width "@"
+.It
+ThePhD
+.It
+Embark Studios
+.It
+Jasper Bekkers
+.It
+EvModder
+.El
+.
+.Sh REPORTING BUGS
+.Lk https:/\&/todo.sr.ht/\(tinabijaczleweli/fzifdso
+.Pp
+.Mt \(tinabijaczleweli/tzpfms@lists.sr.ht ,
+archived at
+.Lk https:/\&/lists.sr.ht/\(tinabijaczleweli/tzpfms .
diff --git a/zfs-fido2-clear-key.8.html b/zfs-fido2-clear-key.8.html
new file mode 100644
index 0000000..46e553e
--- /dev/null
+++ b/zfs-fido2-clear-key.8.html
@@ -0,0 +1,143 @@
+<!DOCTYPE html>
+<html>
+<!-- This is an automatically generated file.  Do not edit.
+   SPDX-License-Identifier: MIT
+ -->
+<head>
+  <meta charset="utf-8"/>
+  <meta name="viewport" content="width=device-width, initial-scale=1.0"/>
+  <link rel="stylesheet" href="style.css" type="text/css" media="all"/>
+  <title>ZFS-FIDO2-CLEAR-KEY(8)</title>
+</head>
+<body>
+<table class="head">
+  <tr>
+    <td class="head-ltitle">ZFS-FIDO2-CLEAR-KEY(8)</td>
+    <td class="head-vol">System Manager's Manual</td>
+    <td class="head-rtitle">ZFS-FIDO2-CLEAR-KEY(8)</td>
+  </tr>
+</table>
+<div class="manual-text">
+<section class="Sh">
+<h1 class="Sh" id="NAME"><a class="permalink" href="#NAME">NAME</a></h1>
+<p class="Pp"><code class="Nm">zfs-fido2-clear-key</code> &#x2014;
+    <span class="Nd">rewrap ZFS dataset key in passsword and clear tzpfms FIDO2
+    metadata</span></p>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="SYNOPSIS"><a class="permalink" href="#SYNOPSIS">SYNOPSIS</a></h1>
+<table class="Nm">
+  <tr>
+    <td><code class="Nm">zfs-fido2-clear-key</code></td>
+    <td><var class="Ar">dataset</var></td>
+  </tr>
+</table>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="DESCRIPTION"><a class="permalink" href="#DESCRIPTION">DESCRIPTION</a></h1>
+<p class="Pp">After verifying <var class="Ar">dataset</var> was encrypted with
+    <code class="Nm">tzpfms</code> backend
+    <a class="permalink" href="#FIDO2"><b class="Sy" id="FIDO2">FIDO2</b></a>:</p>
+<ol class="Bl-enum Bd-indent Bl-compact">
+  <li>performs the equivalent of <code class="Nm">zfs</code>
+      <code class="Cm">change-key</code> <code class="Fl">-o</code>
+      <code class="Li">keylocation=prompt</code> <code class="Fl">-o</code>
+      <code class="Li">keyformat=passphrase</code>
+      <var class="Ar">dataset</var>,</li>
+  <li>removes the
+      <code class="Li">xyz.nabijaczleweli:tzpfms.</code>{<code class="Li">backend</code>,
+      <code class="Li">key</code>} properties from
+      <var class="Ar">dataset</var>.</li>
+</ol>
+<p class="Pp">See
+    <a class="Xr" href="zfs-fido2-change-key.8.html">zfs-fido2-change-key(8)</a>
+    for a detailed description.</p>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="ENVIRONMENT_VARIABLES"><a class="permalink" href="#ENVIRONMENT_VARIABLES">ENVIRONMENT
+  VARIABLES</a></h1>
+<dl class="Bl-tag Bl-compact">
+  <dt id="TZPFMS_PASSPHRASE_HELPER"><a class="permalink" href="#TZPFMS_PASSPHRASE_HELPER"><code class="Ev">TZPFMS_PASSPHRASE_HELPER</code></a></dt>
+  <dd>By default, passphrases are prompted for and read in on the standard
+      output and input streams. If
+      <code class="Ev">TZPFMS_PASSPHRASE_HELPER</code> is set and nonempty, it
+      will be run via <span class="Pa">/bin/</span><code class="Nm">sh</code>
+      <code class="Fl">-c</code> to provide each passphrase, instead.
+    <p class="Pp">The standard output stream of the helper is tied to an
+        anonymous file and used in its entirety as the passphrase, except for a
+        trailing new-line, if any. The arguments are:</p>
+    <div class="Bd-indent">
+    <dl class="Bl-tag Bl-compact">
+      <dt id="$1"><a class="permalink" href="#$1"><code class="Li">$1</code></a></dt>
+      <dd>Pre-formatted noun phrase with all the information below, for use as a
+          prompt</dd>
+      <dt id="$2"><a class="permalink" href="#$2"><code class="Li">$2</code></a></dt>
+      <dd>Either the dataset name or the element of the TPM hierarchy being
+          prompted for</dd>
+      <dt id="$3"><a class="permalink" href="#$3"><code class="Li">$3</code></a></dt>
+      <dd>&quot;new&quot; if this is for a new passphrase, otherwise blank</dd>
+      <dt id="$4"><a class="permalink" href="#$4"><code class="Li">$4</code></a></dt>
+      <dd>&quot;again&quot; if it's the second prompt for that passphrase,
+          otherwise blank</dd>
+    </dl>
+    </div>
+    <p class="Pp" id="127">If the helper doesn't exist (the shell exits with
+        <a class="permalink" href="#127"><b class="Sy">127</b></a>), a
+        diagnostic is issued and the normal prompt is used as fall-back. If it
+        fails for any other reason, the prompting is aborted.</p>
+  </dd>
+</dl>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="FIDO2_back-end_configuration"><a class="permalink" href="#FIDO2_back-end_configuration">FIDO2
+  back-end configuration</a></h1>
+<section class="Ss">
+<h2 class="Ss" id="Environment_variables"><a class="permalink" href="#Environment_variables">Environment
+  variables</a></h2>
+<dl class="Bl-tag Bl-compact">
+  <dt id="FIDO_DEBUG"><a class="permalink" href="#FIDO_DEBUG"><code class="Ev">FIDO_DEBUG</code></a></dt>
+  <dd>If set, enables libfido2 debug logging to the standard error stream.</dd>
+</dl>
+</section>
+<section class="Ss">
+<h2 class="Ss" id="Device_selection"><a class="permalink" href="#Device_selection">Device
+  selection</a></h2>
+<p class="Pp">When creating, the first device which supports the
+    &#x2018;<code class="Li">hmac-secret</code>&#x2019; extension is used. When
+    loading, the assertion is shopped around to every such device.</p>
+</section>
+<section class="Ss">
+<h2 class="Ss" id="See_also"><a class="permalink" href="#See_also">See
+  also</a></h2>
+<p class="Pp">The libfido2 documentation at
+    <a class="Lk" href="https://developers.yubico.com/libfido2/">https://developers.yubico.com/libfido2/</a>.</p>
+</section>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="SPECIAL_THANKS"><a class="permalink" href="#SPECIAL_THANKS">SPECIAL
+  THANKS</a></h1>
+<p class="Pp">To all who support further development, in particular:</p>
+<ul class="Bl-bullet Bd-indent Bl-compact">
+  <li>ThePhD</li>
+  <li>Embark Studios</li>
+  <li>Jasper Bekkers</li>
+  <li>EvModder</li>
+</ul>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="REPORTING_BUGS"><a class="permalink" href="#REPORTING_BUGS">REPORTING
+  BUGS</a></h1>
+<p class="Pp"><a class="Lk" href="https://todo.sr.ht/~nabijaczleweli/fzifdso">https://todo.sr.ht/~nabijaczleweli/fzifdso</a></p>
+<p class="Pp"><a class="Mt" href="mailto:~nabijaczleweli/tzpfms@lists.sr.ht">~nabijaczleweli/tzpfms@lists.sr.ht</a>,
+    archived at
+    <a class="Lk" href="https://lists.sr.ht/~nabijaczleweli/tzpfms">https://lists.sr.ht/~nabijaczleweli/tzpfms</a>.</p>
+</section>
+</div>
+<table class="foot">
+  <tr>
+    <td class="foot-date">February 28, 2024</td>
+    <td class="foot-os">fzifdso 0</td>
+  </tr>
+</table>
+</body>
+</html>
diff --git a/zfs-fido2-load-key.8 b/zfs-fido2-load-key.8
new file mode 100644
index 0000000..247ca04
--- /dev/null
+++ b/zfs-fido2-load-key.8
@@ -0,0 +1,98 @@
+.\" SPDX-License-Identifier: MIT
+.
+.Dd February 28, 2024
+.ds doc-volume-operating-system
+.Dt ZFS-FIDO2-LOAD-KEY 8
+.Os fzifdso 0
+.
+.Sh NAME
+.Nm zfs-fido2-load-key
+.Nd load FIDO2-encrypted ZFS dataset key
+.Sh SYNOPSIS
+.Nm
+.Op Fl n
+.Ar dataset
+.
+.Sh DESCRIPTION
+After verifying
+.Ar dataset
+was encrypted with
+.Nm tzpfms
+backend
+.Sy FIDO2 ,
+asserts the preserved challenge, HMACking the salt with the on-device secret, and loads the resulting key into
+.Ar dataset .
+.Pp
+See
+.Xr zfs-fido2-change-key 8
+for a detailed description.
+.
+.Sh OPTIONS
+.Bl -tag -compact -width ".Fl n"
+.It Fl n
+Do a no-op/dry run, can be used even if the key is already loaded.
+Equivalent to
+.Nm zfs Cm load-key Ns 's
+.Fl n
+option.
+.El
+.
+.\" SPDX-License-Identifier: MIT
+.
+.Sh ENVIRONMENT VARIABLES
+.Bl -tag -compact -width 4n
+.It Ev TZPFMS_PASSPHRASE_HELPER
+By default, passphrases are prompted for and read in on the standard output and input streams.
+If
+.Ev TZPFMS_PASSPHRASE_HELPER
+is set and nonempty, it will be run via
+.Pa /bin/ Ns Nm sh Fl c
+to provide each passphrase, instead.
+.Pp
+The standard output stream of the helper is tied to an anonymous file and used in its entirety as the passphrase, except for a trailing new-line, if any.
+The arguments are:
+.Bl -tag -compact -offset 2n -width ".Li $1"
+.It Li $1
+Pre-formatted noun phrase with all the information below, for use as a prompt
+.\" Passphrase for tarta-zoot
+.\" New passphrase for tarta-zoot (again)
+.It Li $2
+Either the dataset name or the element of the TPM hierarchy being prompted for
+.It Li $3
+.Qq new
+if this is for a new passphrase, otherwise blank
+.It Li $4
+.Qq again
+if it's the second prompt for that passphrase, otherwise blank
+.El
+.Pp
+If the helper doesn't exist
+.Pq the shell exits with Sy 127 ,
+a diagnostic is issued and the normal prompt is used as fall-back.
+If it fails for any other reason, the prompting is aborted.
+.
+.
+.El
+.
+.
+.\" SPDX-License-Identifier: MIT
+.
+.Sh SPECIAL THANKS
+To all who support further development, in particular:
+.Bl -bullet -offset 4n -compact -width "@"
+.It
+ThePhD
+.It
+Embark Studios
+.It
+Jasper Bekkers
+.It
+EvModder
+.El
+.
+.Sh REPORTING BUGS
+.Lk https:/\&/todo.sr.ht/\(tinabijaczleweli/fzifdso
+.Pp
+.Mt \(tinabijaczleweli/tzpfms@lists.sr.ht ,
+archived at
+.Lk https:/\&/lists.sr.ht/\(tinabijaczleweli/tzpfms .
diff --git a/zfs-fido2-load-key.8.html b/zfs-fido2-load-key.8.html
new file mode 100644
index 0000000..ffc6446
--- /dev/null
+++ b/zfs-fido2-load-key.8.html
@@ -0,0 +1,117 @@
+<!DOCTYPE html>
+<html>
+<!-- This is an automatically generated file.  Do not edit.
+   SPDX-License-Identifier: MIT
+ -->
+<head>
+  <meta charset="utf-8"/>
+  <meta name="viewport" content="width=device-width, initial-scale=1.0"/>
+  <link rel="stylesheet" href="style.css" type="text/css" media="all"/>
+  <title>ZFS-FIDO2-LOAD-KEY(8)</title>
+</head>
+<body>
+<table class="head">
+  <tr>
+    <td class="head-ltitle">ZFS-FIDO2-LOAD-KEY(8)</td>
+    <td class="head-vol">System Manager's Manual</td>
+    <td class="head-rtitle">ZFS-FIDO2-LOAD-KEY(8)</td>
+  </tr>
+</table>
+<div class="manual-text">
+<section class="Sh">
+<h1 class="Sh" id="NAME"><a class="permalink" href="#NAME">NAME</a></h1>
+<p class="Pp"><code class="Nm">zfs-fido2-load-key</code> &#x2014;
+    <span class="Nd">load FIDO2-encrypted ZFS dataset key</span></p>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="SYNOPSIS"><a class="permalink" href="#SYNOPSIS">SYNOPSIS</a></h1>
+<table class="Nm">
+  <tr>
+    <td><code class="Nm">zfs-fido2-load-key</code></td>
+    <td>[<code class="Fl">-n</code>] <var class="Ar">dataset</var></td>
+  </tr>
+</table>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="DESCRIPTION"><a class="permalink" href="#DESCRIPTION">DESCRIPTION</a></h1>
+<p class="Pp">After verifying <var class="Ar">dataset</var> was encrypted with
+    <code class="Nm">tzpfms</code> backend
+    <a class="permalink" href="#FIDO2"><b class="Sy" id="FIDO2">FIDO2</b></a>,
+    asserts the preserved challenge, HMACking the salt with the on-device
+    secret, and loads the resulting key into <var class="Ar">dataset</var>.</p>
+<p class="Pp">See
+    <a class="Xr" href="zfs-fido2-change-key.8.html">zfs-fido2-change-key(8)</a>
+    for a detailed description.</p>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="OPTIONS"><a class="permalink" href="#OPTIONS">OPTIONS</a></h1>
+<dl class="Bl-tag Bl-compact">
+  <dt id="n"><a class="permalink" href="#n"><code class="Fl">-n</code></a></dt>
+  <dd>Do a no-op/dry run, can be used even if the key is already loaded.
+      Equivalent to <code class="Nm">zfs</code>
+      <code class="Cm">load-key</code>'s <code class="Fl">-n</code> option.</dd>
+</dl>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="ENVIRONMENT_VARIABLES"><a class="permalink" href="#ENVIRONMENT_VARIABLES">ENVIRONMENT
+  VARIABLES</a></h1>
+<dl class="Bl-tag Bl-compact">
+  <dt id="TZPFMS_PASSPHRASE_HELPER"><a class="permalink" href="#TZPFMS_PASSPHRASE_HELPER"><code class="Ev">TZPFMS_PASSPHRASE_HELPER</code></a></dt>
+  <dd>By default, passphrases are prompted for and read in on the standard
+      output and input streams. If
+      <code class="Ev">TZPFMS_PASSPHRASE_HELPER</code> is set and nonempty, it
+      will be run via <span class="Pa">/bin/</span><code class="Nm">sh</code>
+      <code class="Fl">-c</code> to provide each passphrase, instead.
+    <p class="Pp">The standard output stream of the helper is tied to an
+        anonymous file and used in its entirety as the passphrase, except for a
+        trailing new-line, if any. The arguments are:</p>
+    <div class="Bd-indent">
+    <dl class="Bl-tag Bl-compact">
+      <dt id="$1"><a class="permalink" href="#$1"><code class="Li">$1</code></a></dt>
+      <dd>Pre-formatted noun phrase with all the information below, for use as a
+          prompt</dd>
+      <dt id="$2"><a class="permalink" href="#$2"><code class="Li">$2</code></a></dt>
+      <dd>Either the dataset name or the element of the TPM hierarchy being
+          prompted for</dd>
+      <dt id="$3"><a class="permalink" href="#$3"><code class="Li">$3</code></a></dt>
+      <dd>&quot;new&quot; if this is for a new passphrase, otherwise blank</dd>
+      <dt id="$4"><a class="permalink" href="#$4"><code class="Li">$4</code></a></dt>
+      <dd>&quot;again&quot; if it's the second prompt for that passphrase,
+          otherwise blank</dd>
+    </dl>
+    </div>
+    <p class="Pp" id="127">If the helper doesn't exist (the shell exits with
+        <a class="permalink" href="#127"><b class="Sy">127</b></a>), a
+        diagnostic is issued and the normal prompt is used as fall-back. If it
+        fails for any other reason, the prompting is aborted.</p>
+  </dd>
+</dl>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="SPECIAL_THANKS"><a class="permalink" href="#SPECIAL_THANKS">SPECIAL
+  THANKS</a></h1>
+<p class="Pp">To all who support further development, in particular:</p>
+<ul class="Bl-bullet Bd-indent Bl-compact">
+  <li>ThePhD</li>
+  <li>Embark Studios</li>
+  <li>Jasper Bekkers</li>
+  <li>EvModder</li>
+</ul>
+</section>
+<section class="Sh">
+<h1 class="Sh" id="REPORTING_BUGS"><a class="permalink" href="#REPORTING_BUGS">REPORTING
+  BUGS</a></h1>
+<p class="Pp"><a class="Lk" href="https://todo.sr.ht/~nabijaczleweli/fzifdso">https://todo.sr.ht/~nabijaczleweli/fzifdso</a></p>
+<p class="Pp"><a class="Mt" href="mailto:~nabijaczleweli/tzpfms@lists.sr.ht">~nabijaczleweli/tzpfms@lists.sr.ht</a>,
+    archived at
+    <a class="Lk" href="https://lists.sr.ht/~nabijaczleweli/tzpfms">https://lists.sr.ht/~nabijaczleweli/tzpfms</a>.</p>
+</section>
+</div>
+<table class="foot">
+  <tr>
+    <td class="foot-date">February 28, 2024</td>
+    <td class="foot-os">fzifdso 0</td>
+  </tr>
+</table>
+</body>
+</html>