From 07d54eba25c058ef15a85b271a5023d38561be79 Mon Sep 17 00:00:00 2001
From: Justin Hall <Justinha@microsoft.com>
Date: Tue, 20 Mar 2018 14:42:32 -0700
Subject: [PATCH 1/5] added surface info

---
 .../bitlocker/bitlocker-recovery-guide-plan.md        | 11 +----------
 1 file changed, 1 insertion(+), 10 deletions(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-recovery-guide-plan.md b/windows/security/information-protection/bitlocker/bitlocker-recovery-guide-plan.md
index 9e780394d7..ef20349b31 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-recovery-guide-plan.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-recovery-guide-plan.md
@@ -24,15 +24,6 @@ This article assumes that you understand how to set up AD DS to back up BitLock
 
 This article does not detail how to configure AD DS to store the BitLocker recovery information.
 
-This article contains the following topics:
-
--   [What Is BitLocker Recovery?](#bkmk-whatisrecovery)
--   [Testing Recovery](#bkmk-testingrecovery)
--   [Planning Your Recovery Process](#bkmk-planningrecovery)
--   [Using Additional Recovery Information](#bkmk-usingaddrecovery)
--   [Resetting Recovery Passwords](#bkmk-appendixb)
--   [Retrieving the BitLocker Key Package](#bkmk-appendixc)
-
 ## <a href="" id="bkmk-whatisrecovery"></a>What is BitLocker recovery?
 
 BitLocker recovery is the process by which you can restore access to a BitLocker-protected drive in the event that you cannot unlock the drive normally. In a recovery scenario you have the following options to restore access to the drive:
@@ -109,7 +100,7 @@ Before you create a thorough BitLocker recovery process, we recommend that you t
 2.  At the command prompt, type the following command and then press ENTER:
     `manage-bde. -ComputerName <RemoteComputerName> -forcerecovery <BitLockerVolume>`
 
-> **Note:**  Recovery triggered by `-forcerecovery` persists for multiple restarts until a TPM protector is added or protection is suspended by the user.
+> **Note:**  Recovery triggered by `-forcerecovery` persists for multiple restarts until a TPM protector is added or protection is suspended by the user. When using Modern Standby devices (such as Surface devices), the `-forcerecovery` option is not recommended because the OS will not boot after the recovery key is entered. Instead, the BitLocker recovery screen reappears until BitLocker protection is suspended or teh OS drice is decrypted.
  
 ## <a href="" id="bkmk-planningrecovery"></a>Planning your recovery process
 

From 004a68d447add51564f1e2d48909c8af6ae7808d Mon Sep 17 00:00:00 2001
From: Justin Hall <Justinha@microsoft.com>
Date: Tue, 20 Mar 2018 14:47:27 -0700
Subject: [PATCH 2/5] added surface info

---
 .../bitlocker/bitlocker-recovery-guide-plan.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-recovery-guide-plan.md b/windows/security/information-protection/bitlocker/bitlocker-recovery-guide-plan.md
index ef20349b31..94f1153940 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-recovery-guide-plan.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-recovery-guide-plan.md
@@ -100,7 +100,7 @@ Before you create a thorough BitLocker recovery process, we recommend that you t
 2.  At the command prompt, type the following command and then press ENTER:
     `manage-bde. -ComputerName <RemoteComputerName> -forcerecovery <BitLockerVolume>`
 
-> **Note:**  Recovery triggered by `-forcerecovery` persists for multiple restarts until a TPM protector is added or protection is suspended by the user. When using Modern Standby devices (such as Surface devices), the `-forcerecovery` option is not recommended because the OS will not boot after the recovery key is entered. Instead, the BitLocker recovery screen reappears until BitLocker protection is suspended or teh OS drice is decrypted.
+> **Note:**  Recovery triggered by `-forcerecovery` persists for multiple restarts until a TPM protector is added or protection is suspended by the user. When using Modern Standby devices (such as Surface devices), the `-forcerecovery` option is not recommended because the OS will not boot after the recovery key is entered. Instead, the BitLocker recovery screen reappears until BitLocker protection is suspended or the OS drive is decrypted.
  
 ## <a href="" id="bkmk-planningrecovery"></a>Planning your recovery process
 

From f2a00934e98de4d58e396d233d37aa85d447daf5 Mon Sep 17 00:00:00 2001
From: Maricia Alforque <maricia@microsoft.com>
Date: Tue, 20 Mar 2018 23:27:59 +0000
Subject: [PATCH 3/5] Merged PR 6515: Policy CSP - removed outdated list for
 IoT, Holographic, and Surface Hub

removed outdated list for IoT, Holographic, and Surface Hub
---
 .../policy-configuration-service-provider.md  | 230 ------------------
 1 file changed, 230 deletions(-)

diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index 7ab9c9e7f4..42c5737c3e 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -4459,235 +4459,6 @@ The following diagram shows the Policy configuration service provider in tree fo
 -   [WirelessDisplay/AllowProjectionToPC](./policy-csp-wirelessdisplay.md#wirelessdisplay-allowprojectiontopc)
 -   [WirelessDisplay/RequirePinForPairing](./policy-csp-wirelessdisplay.md#wirelessdisplay-requirepinforpairing)
 
-<!--StartIoTCore-->
-## <a href="" id="iotcore"></a>Policies supported by IoT Core  
-
--   [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock)  
--   [Authentication/AllowFastReconnect](#authentication-allowfastreconnect)  
--   [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising)  
--   [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode)  
--   [Bluetooth/LocalDeviceName](#bluetooth-localdevicename)  
--   [Bluetooth/ServicesAllowedList](#bluetooth-servicesallowedlist)  
--   [Browser/AllowAutofill](#browser-allowautofill)  
--   [Browser/AllowBrowser](#browser-allowbrowser)  
--   [Browser/AllowCookies](#browser-allowcookies)  
--   [Browser/AllowDoNotTrack](#browser-allowdonottrack)  
--   [Browser/AllowInPrivate](#browser-allowinprivate)  
--   [Browser/AllowPasswordManager](#browser-allowpasswordmanager)  
--   [Browser/AllowPopups](#browser-allowpopups)  
--   [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar)  
--   [Browser/EnterpriseModeSiteList](#browser-enterprisemodesitelist)  
--   [Browser/EnterpriseSiteListServiceUrl](#browser-enterprisesitelistserviceurl)  
--   [Browser/SendIntranetTraffictoInternetExplorer](#browser-sendintranettraffictointernetexplorer)  
--   [Camera/AllowCamera](#camera-allowcamera)  
--   [Cellular/ShowAppCellularAccessUI](#cellular-showappcellularaccessui)  
--   [Connectivity/AllowBluetooth](#connectivity-allowbluetooth)  
--   [Connectivity/AllowCellularDataRoaming](#connectivity-allowcellulardataroaming)  
--   [Connectivity/AllowNFC](#connectivity-allownfc)  
--   [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection)  
--   [Connectivity/AllowVPNOverCellular](#connectivity-allowvpnovercellular)  
--   [Connectivity/AllowVPNRoamingOverCellular](#connectivity-allowvpnroamingovercellular)  
--   [Connectivity/DiablePrintingOverHTTP](#connectivity-diableprintingoverhttp)  
--   [Connectivity/DisableDownloadingOfPrintDriversOverHTTP](#connectivity-disabledownloadingofprintdriversoverhttp)  
--   [Connectivity/DisableInternetDownloadForWebPublishingAndOnlineOrderingWizards](#connectivity-disableinternetdownloadforwebpublishingandonlineorderingwizards)  
--   [Connectivity/HardenedUNCPaths](#connectivity-hardeneduncpaths)  
--   [Connectivity/ProhibitInstallationAndConfigurationOfNetworkBridge](#connectivity-prohibitinstallationandconfigurationofnetworkbridge)  
--   [CredentialProviders/AllowPINLogon](#credentialproviders-allowpinlogon)  
--   [CredentialProviders/BlockPicturePassword](#credentialproviders-blockpicturepassword)  
--   [DataProtection/AllowDirectMemoryAccess](#dataprotection-allowdirectmemoryaccess)  
--   [Privacy/LetAppsGetDiagnosticInfo](#privacy-letappsgetdiagnosticinfo)  
--   [Privacy/LetAppsGetDiagnosticInfo_ForceAllowTheseApps](#privacy-letappsgetdiagnosticinfo-forceallowtheseapps)  
--   [Privacy/LetAppsGetDiagnosticInfo_ForceDenyTheseApps](#privacy-letappsgetdiagnosticinfo-forcedenytheseapps)  
--   [Privacy/LetAppsGetDiagnosticInfo_UserInControlOfTheseApps](#privacy-letappsgetdiagnosticinfo-userincontroloftheseapps)  
--   [Privacy/LetAppsRunInBackground](#privacy-letappsruninbackground)  
--   [Privacy/LetAppsRunInBackground_ForceAllowTheseApps](#privacy-letappsruninbackground-forceallowtheseapps)  
--   [Privacy/LetAppsRunInBackground_ForceDenyTheseApps](#privacy-letappsruninbackground-forcedenytheseapps)  
--   [Privacy/LetAppsRunInBackground_UserInControlOfTheseApps](#privacy-letappsruninbackground-userincontroloftheseapps)  
--   [Security/AllowAddProvisioningPackage](#security-allowaddprovisioningpackage)  
--   [Security/AllowRemoveProvisioningPackage](#security-allowremoveprovisioningpackage)  
--   [Security/RequireDeviceEncryption](#security-requiredeviceencryption)  
--   [Security/RequireProvisioningPackageSignature](#security-requireprovisioningpackagesignature)  
--   [System/AllowEmbeddedMode](#system-allowembeddedmode)  
--   [System/AllowFontProviders](#system-allowfontproviders)  
--   [System/AllowStorageCard](#system-allowstoragecard)  
--   [System/TelemetryProxy](#system-telemetryproxy)  
--   [Update/AllowNonMicrosoftSignedUpdate](#update-allownonmicrosoftsignedupdate)  
--   [Update/AllowUpdateService](#update-allowupdateservice)  
--   [Update/PauseDeferrals](#update-pausedeferrals)  
--   [Update/RequireDeferUpgrade](#update-requiredeferupgrade)  
--   [Update/RequireUpdateApproval](#update-requireupdateapproval)  
--   [Update/ScheduledInstallDay](#update-scheduledinstallday)  
--   [Update/ScheduledInstallTime](#update-scheduledinstalltime)  
--   [Update/UpdateServiceUrl](#update-updateserviceurl)  
--   [Wifi/AllowAutoConnectToWiFiSenseHotspots](#wifi-allowautoconnecttowifisensehotspots)  
--   [Wifi/AllowInternetSharing](#wifi-allowinternetsharing)  
--   [Wifi/AllowWiFi](#wifi-allowwifi)  
--   [Wifi/WLANScanMode](#wifi-wlanscanmode)  
-<!--EndIoTCore-->
-
-<!--StartHoloLens-->
-## <a href="" id="hololenspolicies"></a>Policies supported by Windows Holographic for Business  
-
--   [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection)  
--   [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps)  
--   [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate)  
--   [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock)  
--   [Authentication/AllowFastReconnect](#authentication-allowfastreconnect)  
--   [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising)  
--   [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode)  
--   [Bluetooth/LocalDeviceName](#bluetooth-localdevicename)  
--   [Browser/AllowCookies](#browser-allowcookies)  
--   [Browser/AllowDoNotTrack](#browser-allowdonottrack)  
--   [Browser/AllowPasswordManager](#browser-allowpasswordmanager)  
--   [Browser/AllowPopups](#browser-allowpopups)  
--   [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar)  
--   [Browser/AllowSmartScreen](#browser-allowsmartscreen)  
--   [Connectivity/AllowBluetooth](#connectivity-allowbluetooth)  
--   [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword)  
--   [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled)  
--   [Experience/AllowCortana](#experience-allowcortana)  
--   [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment)  
--   [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization)  
--   [Privacy/LetAppsGetDiagnosticInfo](#privacy-letappsgetdiagnosticinfo)  
--   [Privacy/LetAppsGetDiagnosticInfo_ForceAllowTheseApps](#privacy-letappsgetdiagnosticinfo-forceallowtheseapps)  
--   [Privacy/LetAppsGetDiagnosticInfo_ForceDenyTheseApps](#privacy-letappsgetdiagnosticinfo-forcedenytheseapps)  
--   [Privacy/LetAppsGetDiagnosticInfo_UserInControlOfTheseApps](#privacy-letappsgetdiagnosticinfo-userincontroloftheseapps)  
--   [Privacy/LetAppsRunInBackground](#privacy-letappsruninbackground)  
--   [Privacy/LetAppsRunInBackground_ForceAllowTheseApps](#privacy-letappsruninbackground-forceallowtheseapps)  
--   [Privacy/LetAppsRunInBackground_ForceDenyTheseApps](#privacy-letappsruninbackground-forcedenytheseapps)  
--   [Privacy/LetAppsRunInBackground_UserInControlOfTheseApps](#privacy-letappsruninbackground-userincontroloftheseapps)  
--   [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation)  
--   [Security/RequireDeviceEncryption](#security-requiredeviceencryption)  
--   [Settings/AllowDateTime](#settings-allowdatetime)  
--   [Settings/AllowVPN](#settings-allowvpn)  
--   [System/AllowLocation](#system-allowlocation)  
--   [System/AllowTelemetry](#system-allowtelemetry)  
--   [Update/AllowAutoUpdate](#update-allowautoupdate)  
--   [Update/AllowUpdateService](#update-allowupdateservice)  
--   [Update/RequireDeferUpgrade](#update-requiredeferupgrade)  
--   [Update/RequireUpdateApproval](#update-requireupdateapproval)  
--   [Update/UpdateServiceUrl](#update-updateserviceurl)  
-<!--EndHoloLens-->
-
-<!--StartSurfaceHub-->
-## <a href="" id="surfacehubpolicies"></a>Policies supported by Microsoft Surface Hub  
-  
--   [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising)  
--   [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode)  
--   [Bluetooth/AllowPrepairing](#bluetooth-allowprepairing)  
--   [Bluetooth/LocalDeviceName](#bluetooth-localdevicename)  
--   [Bluetooth/ServicesAllowedList](#bluetooth-servicesallowedlist)  
--   [Browser/AllowAddressBarDropdown](#browser-allowaddressbardropdown)  
--   [Browser/AllowCookies](#browser-allowcookies)  
--   [Browser/AllowDeveloperTools](#browser-allowdevelopertools)  
--   [Browser/AllowDoNotTrack](#browser-allowdonottrack)  
--   [Browser/AllowMicrosoftCompatibilityList](#browser-allowmicrosoftcompatibilitylist)  
--   [Browser/AllowPopups](#browser-allowpopups)  
--   [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar)  
--   [Browser/AllowSmartScreen](#browser-allowsmartscreen)  
--   [Browser/ClearBrowsingDataOnExit](#browser-clearbrowsingdataonexit)  
--   [Browser/ConfigureAdditionalSearchEngines](#browser-configureadditionalsearchengines)  
--   [Browser/DisableLockdownOfStartPages](#browser-disablelockdownofstartpages)  
--   [Browser/HomePages](#browser-homepages)  
--   [Browser/PreventLiveTileDataCollection](#browser-preventlivetiledatacollection)  
--   [Browser/PreventSmartScreenPromptOverride](#browser-preventsmartscreenpromptoverride)  
--   [Browser/PreventSmartScreenPromptOverrideForFiles](#browser-preventsmartscreenpromptoverrideforfiles)  
--   [Browser/SetDefaultSearchEngine](#browser-setdefaultsearchengine)  
--   [Camera/AllowCamera](#camera-allowcamera)  
--   [Cellular/ShowAppCellularAccessUI](#cellular-showappcellularaccessui)  
--   [ConfigOperations/ADMXInstall](#configoperations-admxinstall)  
--   [Connectivity/AllowBluetooth](#connectivity-allowbluetooth)  
--   [Connectivity/AllowConnectedDevices](#connectivity-allowconnecteddevices)  
--   [Cryptography/AllowFipsAlgorithmPolicy](#cryptography-allowfipsalgorithmpolicy)  
--   [Cryptography/TLSCipherSuites](#cryptography-tlsciphersuites)  
--   [Defender/AllowArchiveScanning](#defender-allowarchivescanning)  
--   [Defender/AllowBehaviorMonitoring](#defender-allowbehaviormonitoring)  
--   [Defender/AllowCloudProtection](#defender-allowcloudprotection)  
--   [Defender/AllowEmailScanning](#defender-allowemailscanning)  
--   [Defender/AllowFullScanOnMappedNetworkDrives](#defender-allowfullscanonmappednetworkdrives)  
--   [Defender/AllowFullScanRemovableDriveScanning](#defender-allowfullscanremovabledrivescanning)  
--   [Defender/AllowIOAVProtection](#defender-allowioavprotection)  
--   [Defender/AllowIntrusionPreventionSystem](#defender-allowintrusionpreventionsystem)  
--   [Defender/AllowOnAccessProtection](#defender-allowonaccessprotection)  
--   [Defender/AllowRealtimeMonitoring](#defender-allowrealtimemonitoring)  
--   [Defender/AllowScanningNetworkFiles](#defender-allowscanningnetworkfiles)  
--   [Defender/AllowScriptScanning](#defender-allowscriptscanning)  
--   [Defender/AllowUserUIAccess](#defender-allowuseruiaccess)  
--   [Defender/AvgCPULoadFactor](#defender-avgcpuloadfactor)  
--   [Defender/DaysToRetainCleanedMalware](#defender-daystoretaincleanedmalware)  
--   [Defender/ExcludedExtensions](#defender-excludedextensions)  
--   [Defender/ExcludedPaths](#defender-excludedpaths)  
--   [Defender/ExcludedProcesses](#defender-excludedprocesses)  
--   [Defender/PUAProtection](#defender-puaprotection)  
--   [Defender/RealTimeScanDirection](#defender-realtimescandirection)  
--   [Defender/ScanParameter](#defender-scanparameter)  
--   [Defender/ScheduleQuickScanTime](#defender-schedulequickscantime)  
--   [Defender/ScheduleScanDay](#defender-schedulescanday)  
--   [Defender/ScheduleScanTime](#defender-schedulescantime)  
--   [Defender/SignatureUpdateInterval](#defender-signatureupdateinterval)  
--   [Defender/SubmitSamplesConsent](#defender-submitsamplesconsent)  
--   [Defender/ThreatSeverityDefaultAction](#defender-threatseveritydefaultaction)  
--   [DeliveryOptimization/DOAbsoluteMaxCacheSize](#deliveryoptimization-doabsolutemaxcachesize)  
--   [DeliveryOptimization/DOAllowVPNPeerCaching](#deliveryoptimization-doallowvpnpeercaching)  
--   [DeliveryOptimization/DODownloadMode](#deliveryoptimization-dodownloadmode)  
--   [DeliveryOptimization/DOGroupId](#deliveryoptimization-dogroupid)  
--   [DeliveryOptimization/DOMaxCacheAge](#deliveryoptimization-domaxcacheage)  
--   [DeliveryOptimization/DOMaxCacheSize](#deliveryoptimization-domaxcachesize)  
--   [DeliveryOptimization/DOMaxDownloadBandwidth](#deliveryoptimization-domaxdownloadbandwidth)  
--   [DeliveryOptimization/DOMaxUploadBandwidth](#deliveryoptimization-domaxuploadbandwidth)  
--   [DeliveryOptimization/DOMinBackgroundQos](#deliveryoptimization-dominbackgroundqos)  
--   [DeliveryOptimization/DOMinDiskSizeAllowedToPeer](#deliveryoptimization-domindisksizeallowedtopeer)  
--   [DeliveryOptimization/DOMinFileSizeToCache](#deliveryoptimization-dominfilesizetocache)  
--   [DeliveryOptimization/DOMinRAMAllowedToPeer](#deliveryoptimization-dominramallowedtopeer)  
--   [DeliveryOptimization/DOModifyCacheDrive](#deliveryoptimization-domodifycachedrive)  
--   [DeliveryOptimization/DOMonthlyUploadDataCap](#deliveryoptimization-domonthlyuploaddatacap)  
--   [DeliveryOptimization/DOPercentageMaxDownloadBandwidth](#deliveryoptimization-dopercentagemaxdownloadbandwidth)  
--   [Desktop/PreventUserRedirectionOfProfileFolders](#desktop-preventuserredirectionofprofilefolders)  
--   [Privacy/EnableActivityFeed](#privacy-enableactivityfeed)  
--   [Privacy/LetAppsGetDiagnosticInfo](#privacy-letappsgetdiagnosticinfo)  
--   [Privacy/LetAppsGetDiagnosticInfo_ForceAllowTheseApps](#privacy-letappsgetdiagnosticinfo-forceallowtheseapps)  
--   [Privacy/LetAppsGetDiagnosticInfo_ForceDenyTheseApps](#privacy-letappsgetdiagnosticinfo-forcedenytheseapps)  
--   [Privacy/LetAppsGetDiagnosticInfo_UserInControlOfTheseApps](#privacy-letappsgetdiagnosticinfo-userincontroloftheseapps)  
--   [Privacy/LetAppsRunInBackground](#privacy-letappsruninbackground)  
--   [Privacy/LetAppsRunInBackground_ForceAllowTheseApps](#privacy-letappsruninbackground-forceallowtheseapps)  
--   [Privacy/LetAppsRunInBackground_ForceDenyTheseApps](#privacy-letappsruninbackground-forcedenytheseapps)  
--   [Privacy/LetAppsRunInBackground_UserInControlOfTheseApps](#privacy-letappsruninbackground-userincontroloftheseapps)  
--   [Privacy/PublishUserActivities](#privacy-publishuseractivities)  
--   [Security/RequireProvisioningPackageSignature](#security-requireprovisioningpackagesignature)  
--   [Security/RequireRetrieveHealthCertificateOnBoot](#security-requireretrievehealthcertificateonboot)  
--   [Start/StartLayout](#start-startlayout)
--   [System/AllowFontProviders](#system-allowfontproviders)  
--   [System/AllowLocation](#system-allowlocation)  
--   [System/AllowTelemetry](#system-allowtelemetry)  
--   [TextInput/AllowIMELogging](#textinput-allowimelogging)  
--   [TextInput/AllowIMENetworkAccess](#textinput-allowimenetworkaccess)  
--   [TextInput/AllowInputPanel](#textinput-allowinputpanel)  
--   [TextInput/AllowJapaneseIMESurrogatePairCharacters](#textinput-allowjapaneseimesurrogatepaircharacters)  
--   [TextInput/AllowJapaneseIVSCharacters](#textinput-allowjapaneseivscharacters)  
--   [TextInput/AllowJapaneseNonPublishingStandardGlyph](#textinput-allowjapanesenonpublishingstandardglyph)  
--   [TextInput/AllowJapaneseUserDictionary](#textinput-allowjapaneseuserdictionary)  
--   [TextInput/AllowLanguageFeaturesUninstall](#textinput-allowlanguagefeaturesuninstall)  
--   [TextInput/ExcludeJapaneseIMEExceptJIS0208](#textinput-excludejapaneseimeexceptjis0208)  
--   [TextInput/ExcludeJapaneseIMEExceptJIS0208andEUDC](#textinput-excludejapaneseimeexceptjis0208andeudc)  
--   [TextInput/ExcludeJapaneseIMEExceptShiftJIS](#textinput-excludejapaneseimeexceptshiftjis)  
--   [Update/AllowAutoUpdate](#update-allowautoupdate)  
--   [Update/AllowUpdateService](#update-allowupdateservice)  
--   [Update/AutoRestartNotificationSchedule](#update-autorestartnotificationschedule)  
--   [Update/AutoRestartRequiredNotificationDismissal](#update-autorestartrequirednotificationdismissal)  
--   [Update/BranchReadinessLevel](#update-branchreadinesslevel)  
--   [Update/DeferFeatureUpdatesPeriodInDays](#update-deferfeatureupdatesperiodindays)  
--   [Update/DeferQualityUpdatesPeriodInDays](#update-deferqualityupdatesperiodindays)  
--   [Update/DetectionFrequency](#update-detectionfrequency)  
--   [Update/PauseFeatureUpdates](#update-pausefeatureupdates)  
--   [Update/PauseQualityUpdates](#update-pausequalityupdates)  
--   [Update/ScheduleImminentRestartWarning](#update-scheduleimminentrestartwarning)  
--   [Update/ScheduleRestartWarning](#update-schedulerestartwarning)  
--   [Update/SetAutoRestartNotificationDisable](#update-setautorestartnotificationdisable)  
--   [Update/UpdateServiceUrl](#update-updateserviceurl)  
--   [Update/UpdateServiceUrlAlternate](#update-updateserviceurlalternate)  
--   [WiFi/AllowWiFiHotSpotReporting](#wifi-allowwifihotspotreporting)  
-<!--EndSurfaceHub-->
-
 <!--StartEAS-->
 ## <a href="" id="eas"></a>Policies that can be set using Exchange Active Sync (EAS)  
 
@@ -4715,7 +4486,6 @@ The following diagram shows the Policy configuration service provider in tree fo
 -   [Wifi/AllowWiFi](#wifi-allowwifi)  
 <!--EndEAS-->
 
-
 ## Examples
 
 Set the minimum password length to 4 characters.

From ee9e7c35e3f0a253592d8b1e60fd963effd5dfba Mon Sep 17 00:00:00 2001
From: Maricia Alforque <maricia@microsoft.com>
Date: Wed, 21 Mar 2018 13:32:12 +0000
Subject: [PATCH 4/5] Merged PR 6514: RootCATrustedCertificates CSP - updated

---
 .../provisioning-csp-rootcacertificate.png    |  Bin 27086 -> 47074 bytes
 ...ew-in-windows-mdm-enrollment-management.md |   13 +
 .../mdm/rootcacertificates-csp.md             |    8 +-
 .../mdm/rootcacertificates-ddf-file.md        | 1245 ++++++++++++++++-
 4 files changed, 1221 insertions(+), 45 deletions(-)

diff --git a/windows/client-management/mdm/images/provisioning-csp-rootcacertificate.png b/windows/client-management/mdm/images/provisioning-csp-rootcacertificate.png
index 7a3f67195542f4a8af567f15be2ab413dc43dd1c..68672472c3d6416a371b76d9c12b194b0f326fbe 100644
GIT binary patch
literal 47074
zcmeFZ2UL^kx;7kSM#ix)qoa%<#Mz2CDx%U`u#F4~L_t7WQ0X<aP?Mm8$e;vN1VjiC
zQF>9T)Tm&P-g^lcAoLJIAcR2vClS#7eS4p?XP<MvfBozGU2E1XlDzNxyw7v@>$>ld
z%etD|zZd-;0)cGT`u)5f1hOds0@>{F-6rtK^=C(%!T$t2^fb>xvKsb{gFn8pJ)?65
z0(l+2m2=};@b?zi-;F&WkR27g{{*U#DOM0jp|{rgGgo~OQ!D)*Vx9Ow?s8*SZBbus
zQQXt?qS#dT<8$dw1_d>-OTJRX5aJPA%WQlO-mdhuWi;M;r&N4pgxjae?`<txg&#>?
zI$->Qc}(D&U++DSx0`(TXnTvN-EZti_vFm>XmJ|GTZNP1g3w#%75}Wj5-0Qvn#Nq@
z&O{B2ZT@Yb^KjiJwie4+0P^?(3`g{!>Xso0Y8od`${VVhi*FCTx_D|ub~NIY3gQak
z05e99AoE@rVrpuHBcdidUWUtrh8gTI5-wHXd<tJs=e#cujvrvWO;qJZjW>3eFHcT*
zynyLXFkV(@7#a}X#VR7Rva;?Hu0q}#zJ5rOk&&?|^773y><^g0M+>VhwasKJ|8fHz
zBQ>y`#@<#Q@CoOTIoBL{X+l;E8zul*HMO9$cMmY(*?3Xa)yaociCz?O*ESOQ3ZXtg
znH8v?Pnlqp<mBwcmJ2{&rkWHDE;>oY%b_ZPkQSkl{6k&G&jx<XrOZ(L6Fh!sLLI`&
zN+hN4DhWw_?H$gIs-3g`nJMZrHbxAC8y0yALlBN+mjB|6fs}6fE7~u~-_&))Qx~v|
zHrDGBZ`xf8Aqa$=XU}>6{yn`X7@dw*wq2gdhKh@?&W)m3?GVW9y*5^(jSJYqxf%Z$
z>TB~wXv!34xHWyK^Bc%psI(aOg9w2b@M$|0iB5`R%+SecBIqHb&5*ad>cs-64fu13
z%S)YZ+G-W;>WbWXYZg-gGJ7V1BqJ@2->31uut|17jXq!$-U%!9rXg4cn;>KUE)*jp
zBS+gKjpf{D3?sD)C-Mq&VmyL#XCGuXsF&p-BE?+_l)@AH_LAzhE=xRpBD$4m2!X6f
zx3hW+k<g4%Dkr~uCe@%rH1dq?jWex*RTFc+_$@ijTP+a$s2!Q6Lq^*m&%$4dYG7^h
zmec10WpVj20?WePC3B*==T^uc5^mdgcVALa>i<mzwrwT&Lc}@ICs~st3-s`9^{JBY
zwA<eY4UN*rR-D8T+A?wxzDMT7nY;B=^@pVTH=X8Q63y0aX#4dkLxjz?y`FXjD$yL!
zV5m?yb9a||RD&z)S%<mS{*tFzq6DmhXCU5uoDyf6VR~anls0nfYQ_<XEEx@yuf}U<
z8*qpX4GniJ6d|{;yA=@lC|o=&AG6qrC)RhWvNPmr44QF;616ioPbedPq1`l!v9<gi
z?^{w;q$FpTxhJktHQQ)@-he{rS;?R1`c-#C;8|l3&M4V>Vz_Q89les6Em5`IvDK%)
zVQR#BneAcLG3fNhChL0DO0Ak<&Ms;~?2NulT-vyZ(7QQL!-(_|=8$~}UB~-nQtpAc
zy|2=dd(w8dYz;hD^Ns4tk3|OtO0q0xJe4AaZmo(aU~f7c3nr^1wm!LfP%Pd`i;>&@
z>_YRQ27A9^_>ARC@08B)<86gK$-i2>34y(Ok+X1U;asxUOGT|6&sKiC3oXIKH52f&
zRoU1n+105Cd-$Y(r*EBjW2?VJ3O?(pj0EI#Knu<Sfq=>Ty<fV77Nk5rBqre)vLm$r
zgnFuO`jyEiv3}OndS+b%s_wmbk5Q-TjD9v@O26x1c`ZUS9CLL#{6ulgzGPkhSAX=f
zuFs!Mf9J>8&#~!I7i-R7Jn58|a;%DqimHqL5%NrUoYdIZNK+}VSQ108P!tY`#n107
z!(PrfoT8GYMXLKowXP#Yi||P=O;Zb@p4VqPNm4cMyH4qstge!nky5^ugzMb3uXO2}
ziJ{t)sKqSWlTJmh7i+|CMV4Xx4P@+GF+GARh0UYgpdx2c;jt0>)lxl;lY17%wg=Xg
zQ2Xds4v&40sSk}hSUXBdFB;GKqDQ~W+$MCi@!-)sr&4Ap^9E(fR|(QYoiQ~x&+IrN
z#%9VEpLUD8YSV``O-^w5<9=hkd#s#%*Nq6nB6)|oYkq(HEooKU<jt#Y7<0~wkh*6g
zc<Uk*{av%UpKs|=eEab29%uso#)_?@kr#zYpd_|y?uJ<|jCR{&Xewd8f*ua@m2-3M
zte0T*vWqBs?sNvJP{n+Qm_11)p^bSjy7%Rlg_yp`N_petcFQ1{1362`Vt4|5;fB#>
zaJ!N}te$F>J+ce9le*26Zb*r%3eJYiADnc`qdTamj&84CmKu2D%dlCy|Hzz8sebC&
z<mmAH*W=s+b&dl{b2WW&e#+qKnv3m|%+9+Oo~ttm>WjvZ`*;MbgOtP#KT+t5Vl9ag
z5W>XA5C~?pyw*sA{o(d>1G#@&Yjr7lu=*0z;=8r)fJF(&;a;KAT<(rru{!)9W44Pp
zct?Eivd-tv3TUhBF&{~e-X_R=%yJvKxu1JPG%4;JMc^5sKe`c~W_wW?SgS!+O!Mre
zEs!SLnUZ;W5by@$oc{U~_&VTL)O@jjTf5!`?YGiCM8y+J_9jIPEl==nqNu32NP1`#
zM=W9Nr3P0qtAD~=?WYkn2!%F`p4t0MKlSyC2TGS#LlnUeJz`iw873NW?R9qr_i(QE
zbZE5XN1W7r$&FpQ;`s@FXWFOuc;0fU^^R)J$AMv1CiG_~?iAjY;bU`mKG#;}Wb23U
z;a(KFio-##?R0;c|6<qJpA2tr3E3aGtBT3^GyYGxZ<oAUF_gr_7D=zLUxEqbtmIx&
zGC>i4!xqU_%Csok)weC+JkbyPC=#FCFENybs{b8Dd;k9I=bN&<YxmF_sZ)gRc<FnH
zmJj2UyHzSjRB`WyQ9-38D^~G}n7L^Q>Zhjbr6!Z)CVfu|!H1TfXlbyn8=YAeEA8)W
z<B0D{#4zv0qf@o6=vjZ?&`@!y>V|l~h`<%4){-0rr{X4O=h2jmV7nr!m6YGmRUM+z
zcTuL+I$2Sj!O3`%V!wfF4no$nJE&pbP~9ztm`mH){682sKVbX<wF1tk{x~y%X5CeV
zjCmB(w{G2fpuMbtJZO${L9`Uv{MKy!{qaztEuk|yEiV(}{eHY&V>^8$Kf&bqbiFn^
zr6pVT6Xi;)gVeh@yIq)r3v;d*#`pV~Id5Sf$Bx_P+dYLL7u+rc=wj^HMSA|15c{6I
zjz8*sr$mLYk~~m^nv7aH1;px?epY*XyTf$bE*hpCn6wJY!579?o+l-pb&QIQEe^Yp
zmw|d@UL>};)g9?~D)@%_9n5WWwHL$Nmwk5GV*HI32+Z?P)Ld{|p3lG|N}Ii~p{qst
z6Up(;?S71BD>hTXwQ9R3<Ey;-Eiw(-jKbEQ=_A=mxI@{Tp>^fc@d=F=dOvj@Zg|q4
zYh~mD3$!mQOftqTW_ZQMeN)({b)TfFnL{TPVh7%@929!sTpB<4ks^HlyCPSk;0icV
zfM@n$jkGN9ijEhD{X(>^?(?4<aD88*XRYJa?s@J8GA6NQS622X2j_Nosc#8Yml{o9
zt!n3-Wspp5ISzLoZ1qMd2_2>Nmt%U-bO?m4-{tf2zQw8Z)|&(eDQac&&XU7yo1Gu7
z_jdgHG&VKQ$58{EfW*Pvk%9TF7R}w-KYSP_CrECMojxyvY+>zxJJf)pwQGt%UzOK_
zgSh=v4(5NSLr9F%-D5EEH%)X3`@th4v4zow@4Qi`CMM5g@;^J;NV(O4GXE;aU|w9t
z5b+b*b-uYRy<5w*E7?cyjKMCa_>AlL+6lXt4v)k1FJG3eesAON=<6UMcZ$*PAiX2i
zfI`U=a-7gGh5mtgP%RX1k4~pbufAznDQKi*CM)I({WARC9AEdk`5{04;`#PSIYg2B
z^jx-PyvOQUi_W|^cT1~V37Xb$F7$?4T&3VG89lzQGf*v0(D#)cm+i;Ktg0RHXLG-+
zxMCqD<)|4Q74<&*XUJ*jC3!?@Ber<5at9UZb@wD=;k8A8g2w@li2!6?v5;O<)tO|m
zJo_6}#``X?kHOK$3BtsSz&>VcQ6gojBwz)9q-Ogh)iFR2e5j$Fm7oY2d^n1;Fg8xr
zjYIo23N~2GYx847BRJuz#qOa_A;?>yda>+dAf6M|Se;rHRte~rwH9OQ(T2O4LEsr=
zu@?e?13&frl!dDPQnwHpwc27^BP%oIpQ7US=&j(b@E4?`>FMdVGTNNpA%bcEQ`Y)P
zCk*X&(;@WIJY+Cc0jHQ{PIP~k!$|G7@DP3L)b9JKEPF;>d7hp>K6?}b8B7Qh%|`or
zl%K-h1YxoleV6;s!WS^ufW@KH)>D;GD)BpwMF>O#)#GDrZ9T$H?$m7$<JP`|D&4qV
zKmxu%i@8+BuC~r<6nwkqRTxREwzd{(UgTNo#WE5i@G=11gFizxF%ki8*O$S;0nc%n
zK%SM|4w>yM7DM)dgY03ZCsKCrUM55RLIQ45DJhLTG}yk&_C|y%;CMb6RSUe`llzWT
zb#=<t*0!oKG(JOIEOo|!XWAVQJzN$DV{fu;+iWY*4m%77^a+QUOL~NSxJJpD9)auW
z69x3wFJHb4I<4-C^>euCP`9Y8X3~#hRSr3PFrEPq`*W$SuN-5FdCKZ{gS;9U>0n9Q
zQ!6=w#G;f{u>lZ_L*)=>DIocHPTwgi44D<dMK}3CZV~ND?~nu`oZl#tauSe18Bv)8
zpm_n!K3i}?5Y~OtB|A09TZ^?z9r$@f3{=nbEb{6^8hwH|G(C5PurfOdP9PS@2m+x%
zw7;N?P<6s~Yj2_E2L>BZ0+wh)*}cCGr8JhaMNbgR?n2#!Ay_vtVsWwGN~>eCL)8-Q
zwN3fTf?}Mc<UWR}9lRq9u`)bYQ*)7(4{`xyD#&f}dtz$B&S_wrI#(LVbK4Tjk6ay3
z-z8Oa3uHIHiv}#t^ha1~Dtp@w`vL*2a)i#AQU#uIgFeTHSSOIss0Jj+YJ0_lKsbV;
z>EkZ}VViZaK*l7ppgznoXgHBMT2w~fN63g-i!6D0;i^7ODIi2vTqiT9BW0V)*84H<
zVn`<EbTB@ZWsdr5!TA%J13>Fqa8U7dwftpA;4>DsX?F$|-;q@;t2a(q4%xJ)uI{vZ
zbeNrAb%S%o{f-*?u^rnFPR=`=!XcM#J6Zh^-Zo`rWp_NaBp=PVfT_P)rJI?R^)&k+
z<TSB})__+HP8W(JmgAdo;ak%zTMb50-|AyTpIoF~&isL9vEu8HG*aYlV`N@`VIj()
zbpE#IsTjdmCh>mHwkyEM$(QQi)%X`8$vf5p9k`1b#(DTR5Y*V};b<zm8%EhS>H4lK
zerJPpq@2^DiWF&f&Q?f6zn8)<av$zEt$w*v<j5SRxQ+Aa?E(<w@Bg=e$+nUtM14He
zZolkQGVbo5&>aF>bnZdQv)uxP?r{gT*}u1CO;pHZVt(;!RayD;7Ph-1AZ*9E0K0C%
zt%~7$OrR#Nk_WC`gT{v~{)*Wz?PU#h^?NQ{gTBQkj+dBVzkhnXExc=9urAAHj}3uf
z=j(^)T5PIpyS5gwe2LO*b2=vypL`qiD)1+-=k0T2HhoXpdg~g-@OOmUZsvPV{Bdc-
zD`iSOB}9zeJfH{tgSoA%HdE7S@wQxVr2pG-!QW-H2vw$zNnTk|LQv#{V7O7k6!F7t
zE$AhOzmNVLlGEWd-?vL8y?a**iOMfM{^mf~I~meoZ7MD7l63LF@OkoX+WF4I%L862
zCaIcR4n?X=rp!NeUKo{l(sS_5_%Y;S@fmo!x%CdE*6WU1>7=dUVmkYf-rP^OQFHij
zfFiQHF?dd`&*CwKFr7tQqv!GX`K|Y_XMBvYFHASY86_I+@QOWuJYTV2V=^Joel9^$
z(G<I1+B>ql()m@{dG*V!q!Ktvt|73%sWe~rL^EB^7n{QXmN|^Dcl-Yq4L4lF30M3O
z^>(}VPnm|bfw8*wIXAW*iqKwp<AQAIwNZE|ij>*r9ou7?8|;|V*JFEM_ysfTlu%s%
zxg7qZ6#I)1Po|0}43>?hx<>a>^{Qs0dEB<O=PWHPnOAu$1$e7QIG~U0F4l8Xn4fda
zH>{2AlRJ~sy9@tLRo%tC2qvECM3D`C>Rj4hG=KYBqhlF~_b$++)V6sH(_yjL{p_T?
zqlNSZSxaa@Iw{#ZD{4}Fv*yleW!Bq3XW3;W>UzhuM!44iY#~;roV6Zi8yXs><=<m?
z7s~2VTB%-1_;)YZ%?`eC7fOzwar(rp_kLvCvnx+y_xQYn%PC6GJC~z@Kx*rmbSdFz
zr%w{s*eP*Qv66IHg`38M(b@_f@Y23EkAz=YQ`)b=QF$l)@GlOrMgwx4ZMgNq8SRXS
zn23B!P8-M`Oxe^v^CGXM&I66g0T|g(HM10<Td-uY?0|8zX(gg;{5ZPJsJ6Q2itZ;6
z`v(!dXTlj4Q|ijY9CcueY&t{4nceVu5n;$P4Un)Ow}{0u#)wJ*k-&yw7l+=ytff|D
ziva_1Q8e4E1UqutI+>$7_T*GJyQj<FeT?GRx?bSmd&SSiBRxM-Jg+3Bg2@gguqbNW
zYdavEK?Q`dxp~>@cz*NinxTo?Ad|YvbNw~S8fb0+OzsU=sD$7i6>VE5@)iX3W7n7y
zQqe|+hVQd?LQaz%TUcFqRqu)0z>>N*5V0qg-Xf2$x^s<feSJx2fn&#x-LcpO{K@aQ
zs)i8Xb{{5rRsjN8efIDBpfB#r=_VyQI$ES@FZLb`A_p8;8Il9ma@=CY&a>1V<fp%*
zWLm4QI!5-4PvlP;@d703kC4+8>oTWO6*mnHb<`WbK@p(>BzXlzH7YqZr&dP2Z6S^x
zwVLjVbmX|JLB4DD(P{*x95NgS4Y21@bc>%b8$gVft{cZMRn=`e9RhxW6y;Ve$?U+*
z1UM{q#+jWI6GQ0+lr9YQmv~oDMIbfzNSFMYd?KGGCRT(`7n8T_Zmmxd(Uz(TpIuP9
z^(c}4=sC|Bs`#;gqLquBY@A*hWm!q1p9?&DY*+eXjAQ}Mm%M}97qTm&a|%XBTA=B^
zEHlB=OHDpn3H-RMO?RQffPH(MZIbw7W8b`j?YD3$2$aOc)9=6)A&-S|(LeRD*7VT0
z=W#R6VxQ;<Ma{dT#kHJ4ZA)jHx5jUbW%c??UcLGOMuA*DC5O<nqcp<d%xaCOOY-HD
zzb_h4EW~{25n@Iaw)-F#?~*Qk?~I=IWR9x~E9vw+{!xtR>~pd_)M9UFhyCk5M3=}*
zZgY9CR3rROqY~utHe7V+mF2VYtIY{V8)+pEm*X-F<3Wn28=+tgY<9B4Xx6jtD`}|Z
zinu}(iT<fr2FsQl;L549V~u}v>rn#zQGoKPL{W>TxHQA%VZw)GBDF!qINP9wIwPom
zh?^NDq_~_$2PXNMSFtEoMc|p0U1_CRdH}O)>SZH0Zuu(d2xd-(lF48VexnXcUL?{%
z=xGP)QykAtr>l9}NUMU!6Ifu$_(RS$d8LN5017YC8%c)-t-S!)K@f}4ON5u72W1ke
zx>c$>3J?-m9S*(`v9YQpVYDX%nc-F;$VxbGZ#dxW!*OA}y>SzT#wB$IYu458r`qU^
zxa6yq?tB)FT<GRlmds?g>CUCw2t3}yJ0hQvz7N%esera$!AW!chKr7N9uIDm|9pV`
ztX1VmvLB<;-$Gs93+?NxjLs5xhUQDiQ9^y6&vI8b9(J<7@pesv4029a?Uo*pED1S;
zvbWn@`w&zm<YsY<V)$z92%P2R2eH-!`eM(Sn3w>j#2eq$ETyr~FzE{f7zCfo!}{0@
z>X0U%D@ajfo2>?@G_#l=Jsx8%6DP_kP4INfWEXO|I4l`**+mY~QcF4t{uyPNONghZ
z$u<KEf(C^b5LmToFarDG>cEBs)3|WkrO`0I=WYA4Bz_i8H{;ItOiVbioHm^v2PzaU
z2GzHH&h%R$C3i|Ck=VAI7vc;WNrS<*aU-#+6CrvteMP%q-jG}0;i8=kDa)<tRW|Lp
zZc~<7cLZ-ic`<A+2vk`?AYLuSkpyp9{5v0I3gIk(DMU>gmLZ5<D`|{em!EA9HNsP*
z9K5_1X8KEp!1>zqVqxbX1+1^{QcIOcT7C_P5_z~m_6`_@Q)fboflm8hQ@=vgm~R1z
zLNmQ)YD$}Rb<^oPytQS%AqC8hw}T454Af^1l+sm+_MqUz3on|Q12XYhbFvtLF8<>0
z+3`-N=zauJVnt+PV1;L$KqcLFbYduC>$Caw-^6%OxSV$py6I20hx?`GQHP-))gXbq
zXGt%T0?^Lvd|?aEBOg4Kk1!^j;_oj&e&U7r1!%E=$&O4=eQ;x6y}S2GR<`tx?N(7#
zrC#p<%>4YX*hm;;?RTI;KHt3v_5AdB5fr<fGUVUKq$w|EA#<Duu4M|@iaN>)HoWh%
z1(oVK`~rl(EO#d!n(#X+JK|-Wt(9F?^OM+ts6I1zc<xF=f$zEe4jI))iAS7x!FcoQ
zi!4vU!$<iK+b71Y#-(TDeq!r#-aZy*G2uz%ZUtmU2m5Vt>GP(c6r(E>`Bzz?f`=v7
zes7^_jsX$BZiM?j%$|XiZ8lLtiATi{Z^Ikg0&_WM$_(6{$=X-x+ObU3AMDxRePn$q
zuSa}H7>a2#1f?3CG6U-qZ%Ee-5ww@94b;V8#8W(eJHZX|@;pd~2BIt}npJ7=(nW)0
zttFjF*{S_mSJEQd-=CF|nn|nIA~Gutbahy#{??^tMxLrsyMsD;{d&!CsbRC&Q;lQ`
z$zd4pjDd{2x7~O8S6)U{IMU5(z9RK|k#73r(D;IBS?9?Dcq%GHKU%=EsFm8+v2(?>
z+9kr7S)pt?E_87r&R6o`B*%_i0gA(4ZnEMuEX#C4FHWZeTiQJGQ!lHny11lIWh)%t
z)H`W=KYnGQ*eWE<@6p73L32LawRir0Xx-5eG*xODs_yM}iZd**wtvwYZMa733%YS#
zyaYF5E_OZyr6wIa5f4wtCM&`VyNw_9IJ?foW96@#M|2A9AwKz7{^+AOcFi&p)YdlY
zN*SArU~?M#;i%^eAa;m5G@|rQlHOL7KjW6ZNMyQ~taLw5?#ZYch(t+1)v~$`rw{hn
za{jg-1L<}YTx#g8!ZJRHSll5ff4*V)eh&{1<UZdI_Il-(?qa%+^)M6rWJ29z)d^vS
zj(T+09O}$FSh7Qhq=5N+o8WlnBcU3wFkjt{FllLNV6kuM@xla)2O}dRK-D-|MW5EP
zyCAsYtsMS$alp88{f3p3wY3oy!fyqhHGu<?34=vKRT0C)M=~@HLkJE)ozMCbbV?&X
z{^-I|0}p=CjWaVg-a@d3NL~P9Qf?>f!5o^9Xc%QY<-=-9WCx-BJOL^fa#<a(rQ{0-
zfWp3%QC;yUP<Wcsd@H?rf>%4Q+jLl+C&y)Ow1Ki}#x79$Dg#yNWUqkwRFMOXxik${
ziLekTR9LJT%eYMtTy!%FQH)t$_>5VCH^yCETxdsM?q2M87})S0`=r?f#i<)hCiD-^
zi=PI5rHQ5UIxjD;$rkIc&D}>1pH!^q#RTs1hHT<J`$Rn1`y58n44mGOGh|kPR~7hK
zPU2QLPmwF0(IIHwn@DWN2@M|L{~nlGC{LDy&rk$dfAZ=B+eC%mYVxe&4Ny>k@#C{V
zlHlx*|KwH|5d5s%f3>c%?Pp3Y$8GigY=n>x|5l-;qQqCPT&?B@dDW28C!LyD^f+bf
zkd*N35B%FHD_~y~cP@Q9t4(gG6^egBpB4T5m~v2wA5#6iLbP%)slxm7idgPDaKSYG
z%XB@(Wq$?)6V$}ItP*9FTCX{#qzZ?>@n$;NsiA>Kl#{q1Bc^e}T)1Zs{Dw|_BK=B8
zV9ee>qmgz6+hs1O?%n(J(u9jNZMw;a6~=q@P=q4Z&2E3L8h5;aE~r1Al|Im@gS?L{
z5MN>MH*iTGNfqk3PLW-<SX{qin<z9aKjgTbch#@**FbI!--Hw5ukHj+!*w;O2CeA9
zp5T;dYPg>Lq<x<>>Cv5P;yRI0g^gBGsz+r<nQonaFzGmGa|7ekW6vp8Xx2PsaKFPX
zc|5D_5Oc_+RMGKyg@Qo`SBD&#g<7E0!{W+bd?-i_F9Xry+L~#lzQ!2IVR<rkSxooR
zl-odfxQfH4pOVZKWzgb394i#vn?XCS9Vuhxf;e7@zvO(gtikTJ*2Idtt;uwa@A>4u
zamjIpkE71wx!AOENqYKre?rVkp~|bMjT0!KvCm^9(E*+EsI%mHwcO>2R$8cf4&x|z
z+>ecv#8|pKBPkOl^IntM*HE+IFoXTW!v&Swe&{U4bovM^)UIATFjF#9R7TC^#6m80
zhB$INf1ju@nJ;$<a~b73k2{Yp)1^geqiPtW(iJoO$bwG42I>)B)NPkyS9M;G!Eu~-
zSXC(FPd!Rz`yckJzntG#9J`P{Q)JH`aDDzp<!EoZd_UZ)C||3fX^4MS<BXY%mRCtU
zgSGJW72}If4BG!ddFo6DHSb`~%@PW~wa-I*|6;*XXHut5$8i^C_;Z3f9xj*ao=&pW
z7yv-&J0TZESU%TKsKb3jzOu!#^+n+=b2d1mU3coWcb;%e=r4NJ>To2G-ALDM`({gM
zp}WaI^`YuS#s0`%mQ|x+ZiPmnQ>o}8B|rZ4pemQL9i+QUCkuXF-;m~7lI)7CoJ4sd
zFRKb9MSHA2Y%@-Vx_<22L@gQ;=(FPgvbuasr+d=|#DhRwM-;`*L4^6c|Ii2kUeW(!
z#^E2>8Sq3}e~F^W)`0FUrLLf2_{AFd%EyzXCp%|Ltp5|$e?}kKke@S@TIDaB<*k}u
zW0H7k?AX-u#_pJA(?9b8Y;WAQl*e8#F7L2A*jih0?W@fsPb=}VsPAZ^PaNb%lL{pr
z7h1n;HF-ME3EdcOrM@9U*f)!8P>Y?Ncx}x5&{SV~C6)H`Qqz{|B<-{emAB229{S{|
zNBG{mB4YaacEX0a_2$j&j@X$4=RAhqvu8c;lY}Op^iQ12>7kYW)b;rDQd5YJ?bRL!
zb7x<(FMf2Cz)qU#Uh>n>qM)oND-Lv&bxZo0$iu!v&%3|-KDW%w;sIP9<`i(k?IROL
zscMf!vgOh1A_Q_L%=7Y{?#kf-<14$ur#Sao9}R?~BnTMI(sBP`plId$FZXU%#E*3N
z21GbAJ8FYw-C~IiW6aO*+-6ZDCsAV<pfM0<n;w$;)ckL90~s-)i28ee4l7f?v91f-
zG}6syRAS}UcRukL*(3Q<9L!%g%F{;zs#8U!dr|5g@28ruUn?Nj1^9xoC}Dd+eq~W9
zRNi#)O?B2EsEn;NI=eorT~#qNQqg<;ha^LnQdot8ar-WF8@SAt!h14<Mw?Lulx;#W
zaD|YlV0+=HYm<{CsiVo8va8hmB1E>wo>*Us<)nOhKvl8(tMQG~vO_l}!OMFawypb)
zXY?{rOm{#l*BGs~e%)Wzv^fV3Kvyp~CeD5Y+@BzV+S_w{CpFye0~zB-v?u<{-t`|S
z(1xQ9-6zJYlz+>zM4{w4bpjH6Uwt5(l>XMpG4kOAf^=WmL>%By?yPD-HNM{m&f16?
zl(w%y=7crdi`Ad=7YxYXD_zM`6YI<?dp-BCzij+{d8}*FYX#ZCW5-<IlaT!E;#97Z
z++YS-@vE~iick)xF$J7FH%{A|T%HERH6|Dvu%Jp?6-ky<mk=cntt((?6~mDez@1)N
zbtv88%Fgli(sGT#r0tphrQK=y`_kQW4-<-9fd?&)AQg5sCVhzzKrsRp^0o4KT%Ei<
zUcB;jzX|L_WVKfkJ#}TwfB67oT?Q;C%c0qVYM|0ztXOhh=RT=K=DW6ncRIGd6Qvg6
zy*}RGVzyORI1g;BOnOD#dsNL-$82P3X9C@(-fG@KH`iY6l@{Nm9{vEx3{5>!BMXmq
z06#gTCNU<=7m>%$>D|{&FJ<V|8JBChPhdP9=T(Nj<<6Q}IF)wW=A9?^Lb-PF>rszW
zH)(R$*p&6c{3F++5nl3<XYkW+y3dS8=sX{}(Gw_{%4Ev<Km3tK496b%^71!vwkrR`
zO8!Nc0`k9y&4HlC@+bW!0=je(7u?BzJ>XIRu4davh<PGviH^}|2>9{;ykh~2169I3
zgW-{pk+ZU20?+JC02aTH=D$~F)DAT~*B<^JE;0BEKcbv-C{>ZUI^v4eQf@7*poOmm
zlz%VaUwf5*ykDX23hVN&y$&fAHm!@sHnLc@W0{iN1M|a&)J$&l&fdH)pGlgG6zljX
zvqNp~hN<o^%udU`V>X&VCag4+a6i~<4JBHdK_y;`?9i4M)tC1VQJr+*M2!`zuL~)K
z&JpF31N^bOM4>-nT>MOPUIf-oP3P)RZm;q(7zxrI9}R?JSFssE*WEQq0$~Gx56zA+
z@dcoiSuRYizkoiG{~P9wjlxNholi9kJ<ZQ>6^oA|T8lO{mwfS>L;f?Kv6O2)A`_^K
zl=}-_X|eJH<t|9Sz5;r+N`rMknU;HWnawpnkE?$9b&9*@Z8p?7idF8{-#P1!ncT`0
zY-K8?=!g>h5*`#8Lhp2I&p&^MJ^2u0wmi`GwE95W_@HypA9pt-9T%V~vS_+njyZsK
zUsC@$fv)R<Csi5f-X#gfhVVo5%x2cuF|+nI6%pZ0(5n1&hL5Q5{9gXK7W_`BA7OuZ
z@ySmQ*O?G03eETdA^2V6YG<oYF4s;TEcl?D#78JUWHNn8e`jCJ2p@YM^zIw-5gB=y
zuK#846)H*|X0{U+x1tAfo^SbeZOdA@c;n8EWBsdf*Vj_@(2^1!DuKR1J{Ky&V1Ep^
zS1aWo7%zu1HU^bFcYu)7t$AtY*Ey6hr0l;tYx@U&1uTv_Iyy01)zYHJiuvL&EUsNs
zLa1{9t{p0p%NW~%rR`f=br_DiSmiIrSzSv-{&GzEjNY)VL9WAQb6imB8o4t8x#1}a
zTq&qbk>JfaTR+^<JjyFpy|(FMT@Siob1J-x@a1Q7zNKMq0K-KnooKhyZl98z@$6$+
zX)Wt>SH;%V?1pH-AV(*1$z^oDeQ7ZaGkC`;S5xGR@&p3qft}_nkM}?+$Vld%B8e;8
zlO<zSLAdyV;Tbx8e_AV-g3>z*7^6Xs9l^<}_Gkuvv2k56LTR+(r1G6@0qt8bij2CM
zbaH^>)I+?5n@LV}V(&hStU{T#$<0+F)6>5zI+kMk5wsWP6#dR6X4y)#@A@*=lA&%|
zdS}sgna;xU%OHCVhcCv;!I)<g0v(w%-%k^_JX`$o@_v*EZ2HdRfmrx)qR;`k0ec0U
z5F3;gK-zCwPH#4T^L-}jxWqTGnd4OYEpNWr?qcH<qbEfo?oDdR!+h?W+o4~b_1V5(
zZCOMN>GiX8^J0&1KXl^>7n@jva{Wu1p3U#C|ACB*7KJ9Or<APb_W8)48LgkU7;N9z
zfm3qv)f@ijYq|gX82ukx)4vlQWrbBA=B#6d%qc`&L!zqPS9)S@j>qFOE1)2m*{<Px
zD|p=#L7Fc8>qU!yApRR+)qhz3@Ri2`z6q%7hoqh)MHek4%T#>jR(NI7zw?wt?;Qw!
z8h4<I#8{@Ni(&)T3KM@hmwQ~gk;UxYu$S}tl)~*Y3LT;`#`{EFJL{a?ok|A`5>G0Y
zN$0<?usFSOG^=XiG-L5z*k!8bO;I9XKlFfd$K`En1(tXmVXr7cTX)1>?eaeUXB_)d
zjHCw4NCKooNe*mc^PEpUd-l(=%;LS-QGJov{nTGtXySQh^~XZJ4ALvNe!#~D;h{uh
zyN-}(BzoNw+?B!!|4l?1)T1?#EwL(3r-EJr_AzQ+;*sK<&VdStiTYTpYuT0s`O)6!
zgY>7>-#dE`bkhsbl`b1^$ZBSR=&sE-vnHV^wWKQpAK*xUtA^wkx<d~?ReC874arZ!
z+LgVUZctTO?FjFx-*{!}!UPGb6rgWi9;=K&t!5q&!as2Gc^YXzp!Do|ak7)78s3sa
z?@)PX<+VHBx3J&03RkGGjl{mDptRv>0l+nJ^q1_Vg<i6&NzQ9~!;U1WY%zz@{6edU
z{V(Y%;)E)x2;X_O85&pip+VIJy+dlIVPgdcp#7^2V$tp09L93-Q(G^Km3JkHpR+L>
z&a`9RzojE1k?uSY4!6EWQ?N&OS;}UHRVv#s{&e>GU-sc)_5jwROth7Vk{e(zFo*NH
z1`gT<<h}QltaE)}TXsS@K1uVDvQ2J6DT7&dAw&vMPG9%r!$-*^s(KQ=;k};lTK;pu
zLT(^?<NN!hW%;!?4o5S+DSJ24u%+j8?Dl_n4L}i1(o^bW5p~TIA2p+sH?-g*zD7+g
zr?hk*cJy<J;eV$c@za!lkFoUsU;2gE)%}=6F2^i`$o5bY=|WXnqMc*L^Z0bf&g_9A
z4=MC!0f>O8%(xqcN~LO69R<Z`z|~m*DBe7P95J3$G62W{ziFa~4XC)FS0<FOmj{)t
zBY2IX#GIVxx);2~$**}03U^Q9c@^w8+%{F}aa~@!Oye=g<DYTS^GWnemoBx3L`+z<
z{kkXj^%7M$9`LTxqIHHCTOrn9z3O(Q7ax9Ksv>|o`@vIIqi1opvPjgH0l5fju6|9d
zHIky#741dF#H_H4ISdM`g<QS}Kx<D5SBd*!AmW^E+>_E#S0;q)B>b!nV5Ci??5r%q
zDqVH(2D&i-UIe%m&dz4D-eSiQojnWPYRjvE6x$0G$zqV2U_O95-CHPZIN*`frYL(N
zQuoco3c%HuN83Vc(AFnRS_mG183;(CL$W&{lIJLrK?<v2UjZ;u()t3n7qgiN;&@|;
zhL25gS<3}OA4pfFJ&+ppL~(2pf_n^2;v>{xQQ?HW)162FdD7383MEaB{-m*bj@$rW
z(D0l2WCd_89yndCnv9|lK$YGaw&-h3uG~daACya#xj^87%BN~8Uh9&3Gm4fNeFMla
zc*lFV6d!Nrd}<1HK)W%xrF6J%1pDT&d$7nvy-vUXGKP(foh~85R1jM<@Sm~%F<%aH
zN8BnlAinB;=LD0v#EPA+|Blv&Tqu1-O90f4+14%m*G#MYO!_lhBV8qHVNS9AXPy$9
z<EsM#EV6hc32JitFM_A{0#G*r2T;@r9xf`EYH=Z2HF9aTcXD3izV|AqMu8twJ|6Y(
zm^deJ>(q1lqqAb5@_$0Fe^M@$aG^@IXg_qme0&Mx$}ER-6FAj9Joe-4ULigk0Q|PN
z*aS4&6gK~)$f;0<NP^mZkOBfQsrj5e>zi{=EfWv$JU+n@au_Nq^J_8vo=P(Zh??i8
zN>2^YdqD-Havp}mgTltoP>OC^RC27i2W%T~!SIui$Gd@`KBL#Pv^=U&vt{_!^QfG+
zjb!5AuM;|2eSZ6P9QbumHqjj`i2-`z>Et;KxG@#UyCF3=AgLWbmN#zP;MAq0wWU`y
zrkgQ);UAY8RJlwdt!wFH12;Su?V+iD#Q_^I_L7ocu}j|)9U%^>1kzfCQ@r{Tv<R4w
zIG}SBdf*b=3T37fhh`ozG`;#P{;+&*ZZ0R@2jU8(BT23tslK|f8+_01a`F*_G?94`
z&VK_O{sl+B=fatro8xdeOXI1{^oy)>Q%wylt7*V^1w8qoi0>eKcrif1Cs7`!laf1`
zObP?NGL)Aq;e2jQaEmOTUC9B410>jh`>N*$*}=c$4^bpGe+C-H`4qBPKJiWHI65A~
zJ!8NQ&(;Zs9|a7Ay|}{N%`8B#jR&n_$hLY%1mG@Xy<xY2C28_8oxvH|&K{XHi)r-6
zF1+(@L_GP9a1%1ZOOghnkd*c!n`!MJS=Qf10fC0o!#p~)Yx^^>!(e~roH<idbpUin
zefm29958gaR?}m=oW|@6E}gCW36LHDU@b4D>)XiFXp;kRsZTv<>_feyxOTs_GFBZ1
zo5O7ey(GYpoHqUp`F3qEZ)$um+#MCg6^%Pr*E8ppdTCCvidP+1at<h`y}y93F>;XN
z@v6Rn#a%2$tG>*1Kwq_9mh1^@A?!-TxOYLlSb9F})$#1Zo=P-=4`sAI78oHORS3Kk
zsBMh-yles%#dZi+bKS=GL~+j0w;YzXx>7B)%~Y~;q5k~t#yn#SsTASxJBopt+Y~??
z7_a5L`&f8Ko2kL(K*w!1BTU2u4UI+3#sJrFcO6VcF3+eg$(I}QD7ZYRxWl&Vj9KDU
zsq~;AUEMx|*a+-oNP67US?lw!eBYFJNBVv@dGqbt$JM@>&lTkYbcq)~Vt6d)C3~i*
z;Avm})~tB40FcdL1;X2RwTy&@g{hpWL7A8f!wbn1Wnr%|7c(!#6>oc1i-%DQqQ-(R
zdBr-VLmRp;YFy5t0zli08iWzn(Z+#7DjzmZyC4T!cuyo>ZX|(9`wyJLbY%nSIW-t6
zXXbce!+U+H`2}|Ob6aBBapUKS@h?=$oINvPeF`goJHWX3H?r^2+lXjb`46BV^>`;w
zwtDMTxr;A{8V8i8;~yih>xRZ3nOkA~YX~_)9J>mbEFj3?Bhdy2L@mBSVN)AU;r}8s
z4!9+K#i*meWAGQn`Xgl_Ws|Z_jkmT-MTlM+98U?l;*v{kZFbN(BB8s`r`|=qT3>wd
z+5LFG{bdGor@M`I`Zn-*Mjb~u?xN3zc~T<s!bpRfRmuR3r&(qt`(XWihMFDP?cy?H
z!vDm?!PTqNEFM0+F8?2{B+u=lI)HlK$MIdQD;pfN^MZ#@^0YX}1oQ^P!<Odbh2qYi
z?5|6&&?xm>LbHAnJgmt3{x?$-lQi8p4&a5xT|O!H1azQqL01BS026~1K`sKqlpR_)
zC3gup_C<nUaueY?afDA+Fji%E*WqUEzXe>BM7p{MV5|T>4PYSxpTgrP@@z%&jZoQ%
z40H7>yf{Hj6QOLZ>NWFen5VyhTXc(e?{Mj3#{fwZb<@EKP|7U2F+Lp4l7{%Sj`zJQ
z&kPOVZNp0;MMcUJJD&Z@TkeU~#oO?9qxXP1whs{Jp*&(hFr5QiS@r?tc_RPMe=Yg@
zYdAWuJP*2ML3!TVTJnD_&$BxxPx51D9wqH-<N$?8sTtx#T}whzM+D&rHtXz0@%}HT
zj865W&LfVvnrFF}<F`BIH1CbG&ya6x3)bu_@l#mOaT23(&?i|!&i9jFC5<+-QYzoo
zZL6$RlmpmRB0h9my(FqIYSC*wqq~qT#*c;Kxt_hO+o_(N1~h6?;RnUuFf8W5k;3-5
zHbLiC^q7@w|Me?2<Akev&Wq%gP#%kBNTf_k-6je06Ln6jKY>%&c^nIH<=x9JqcQzP
z0eQ=92ULll@+#x^;5w-}`uT%x#^Ec+QLaxX5z>WwdVcBbd|M9yw7gap%K3S?Rob3R
zif*fUs?J13z7MkFe6Vv`1~<0+sQKhnRV+ryU+ccJKGdJFp6dK8%pJ01Mn33N<8&0p
zMRie1p-@y?<*(W$E(n&&{%bDsr>>FBpB%Ax(^qQtr)qRhr60ceW<=ZaNJCyvB;!xr
zqSi|-RC>qLnP3Hj)=Qs2w-Jm_R+ipiC~#b9C}yPVAgBHkfm_7SJaOj^=>8t}Uk1wQ
zoKYf_{G9I6(7Jec*N1jv7joN*zEpSWkBV-Ac<prakrp4SPn}ZuVfg_Q=_jMmvtQ7;
z05Mv8Y!Yp|)V=iFoHCQv6{~2|SgWn#y1c7cQw_{VR)v$w;Yf`QsR$4wV8e|Kq_1gq
zwjq9=zAPim^)-EPVe;i^2aS%rfy%x-z*WdXUMz7JBdq=&aiq`zy+FYih(XbVUKD*E
zf&0sz%oo#DUeXUrBRfFNsH^UvK<=I%{8rV>q*E!}eYEpB58nD5O&-BJJyP>)H7~-!
z7o6l(IUcp7bT<ve<le3242^*kx!fqI<^7F=EOSz8)!3*}+5HoW$iGs9x)6rbIOR7B
zd=F5_$pacm>l_qN>H(a<sU=wu$%V==044Zq1VIfl&vz^T!{nMU93eI~y#fkStRdSS
zYpfZtvKu#szAlil$~@MXGs+6_WGJn9cKJV}&;0Yf`9FoBf1#DEsXqa0`?+G;vaA(p
zAf#06?lKW;p5p<q6H9>hy>loiI%-1pYsK(@4A5ZW(#*Opo@<Kv-EbKny(#w8y6{p|
zkqASJExz@I<kh<X`G&Xnn0JHf6$<GU5^snDxIvlOtM^Vaog%~fIN@HX_CEKrMwT0M
zG#0y^unt9}=)3+edfcA~Rr;m-@#_XkF6~c6OnB*Ulzx$K9C`<na{E+hNcYSEzoH*t
zE{x8-WfJQJ-5a9We-j@VNWo(Mbu8U7T@fZ~{%OA3Bj-g0gJq`z3ojHyB22a0Tf*~w
zH-x^Xh2``rQ?g-XC8fK#O2=z=hNZbrcqh^;bD+pRv$SaAhXw8w=H7zpwD_@8{(f3-
z4A26^Qz^OPwn`t-Ia+yY+WxO9O)L~)#>%^W)JL0ROYOSuZ0H%_POPYQL<Z_W*Wc(2
z#a{t4*YC9f_iV<|+Q({FV^<qLQ8uoV`xgjYA79g}(t|C;un*}sy(Ie2P=@6B{u<!w
zpjk{DaYd%~{{@W$Pz=Asyggv23fdLm>t7==jWj&Nk*92*c{l$Z$|k=?Sed`E?lDPw
z9M@_5*9Pz4$O@%h*Bq^E-0a>O6OkK*QME!N#nrb<u}2vFb>ry_q`30fofnI_S~z&r
zJR72*@=ugOLKsJL-FVW1IUyzc4nQszIOSsfb+RSdtAqW`nqF7{LxxL5UK1ajw`NQ|
z8a%apRl4U~TKB?kpQFR;Bo-+g@-;z6d|fcsu#2)q%3s9XYZYMM&4O~w<iONU`LDPs
zsSK>T3#EVe{K<pDg<s^pz=hKOgyAIb7MXkL4k=bXqB&i;K8gPJPy&xHWqAoGkGRS5
zi#|llkS|&;u1av_HXk_DlY@ylIfmqiDAy`#>6V4N;1E)!gV6ZN`#8nr&?vwIpg`+e
z*I9May*`*t__Dfq#7-CMmMq|^a>W%@H#Fv8etEo&%&AW+i_P#48&YqYLDvr6(7XSt
zSNa-s6BW*0=W9h46&0y)00;D^^%83^fbImI+47Qs{}GDk7qo=0nl*sL&i9EP47kPJ
zuYy-rP*Bi;L?Mf=#UCgiN?~)B|3#?qaqb4>;ouONf5E!R_)XA;0<Z>r%qPKMm#MQS
zhnl|!;i_qdy*whj@6`pY+aM^kt<fX@5ezVY(=!y%LKfcNPQ756W+UTf+m9pfG%wtU
z;?UIk+AoEFJ<iy3zyrM$<>?wzhAFUD`&^T$=qjJw#f+R?G4BMd+r(I3o5gl$sVe(p
zL$;Fi_`9*qrqPqFT00urDr%>+SYJbjy$Xo3f)wG-x<jL9&oZj+WgQ*kUhw|lsA9C=
zPjOvw&y4_Dr`a5+$NifyyrCVs>EA=)Lr799hTrOxDH6=E!WZmHBTSR&ZjliQ^tU$r
z3cRJG986`ak$ir`hrqX0ZqpNL@gzYE=pq6XTIm)ak0R{J)Hm^0DJZ*_B%z~sIw9|K
zxlFl%DGd`H<fDC{6?u+N&LtVzqg|iQa1IpP-8k{Cu;vmjyj7yjoa<|j6OO(kY)fo=
zMn5gU7wfK5INOeOl;Xda6gktE+HvFvBUHpAPsM#{Li1}rBH~Jnku78P1Fv~`0}>Cz
z3Ehh48=L=#7yU(P{#_E-e?qSj*|R6?YcjzSU~_$DPXku<9S{UI{?#B5&r1;Nw<&Ga
z*H6!oKN8q*mb{^DPD7+g6B*D{B64p_xM3IYNjK|X(cgWKtFw}Lt+AmvP9qE-aS9J9
zbiJO|{3NaWQs4L+diA4)<kgi8$+o;?k>2?m0W^^u8y`I7zkI#b=b7;5w4CT=VPvr-
zTO!uLVq1TmSR}i4IZXMN?)heB{_*%^OD78__*3z(xhz_gSXybo=Vd-$)k~sZUabO<
zo6%VWW4dtloqhG8a2F4B(Lnj-Y_WY7d4&i1Gw2H_|FQ@#9Ne7Rxwv34YQF}_l5%NO
zF9~k?iYETS{JXKfyU~-T7AYV(u1a3!GgzA5<@<RDEs(!yS|gW!W^77xk<?HB6oluJ
ztAcHZj^uR|`TW3oQv&?az-LD_sW@PkWubi}ORAkUDD9O1Hgib+*6b9I0(JvXz#KI^
z12zbYhtE&~TRo}J=HIpkZYeiFIH2Pep3Sfu-6`$g#3;4~+&0>9J2g!{hg8>%$X_Nk
z{xhfbe*=9uaTo_((}3CyR%0ST6f{G=e%<l0?o-pP5*wEYOA0fKU-nIvTw!neV?AM*
zr~0BBC%P7Ht7z<OW%0Zf=%KiMbFIF_0JW;7*_-Z1;FQ~+_@52IDbq)n=tXmHuO^-}
zXyxLfs?ytoHK&~0>wWTvv*rbrg&$&R&qf?<Zset#NFol;^c|bxu<Fm|>XxD@8^^6?
zkN%;^uKKN~x?jXVTeFqSv5~7f*@=q}N*^Lc_ZsRW2M$*FiRWgPl~N9bbZQ&gl`tB@
zh$9EQHYny5;UvImdD-A-umd1UA8e*MrpxFat&FnB<<rfTzfQA$&yZ)Hn+yWrd^5ce
z`!zV<>VpY$gg+peiP6+9){;yozlrEJ@EPs*qKYdH^qly4(z1JS!xK-Jz^+(qA(K%$
zAIksUS$22H9d&Gt=-e(p&|{jT^`ONEAJ#~Ts8;jC94{vg+yr-n1@H2<-H2OTOHdTX
z8be1+tT1DI@kOSwCZ)F&N~n1?;M~G`Rb^u$9^z3q`eW}@X)Xo1^k@HuF1=X}FbYR|
zPPR}3X54ix@Bxz_&q#rpW}Y(j=i9ec%_GHeh2<D^W$6ONEj`f86XsiF_YE7%Xon?_
zKeP(#b~;Q$W3sP&`kLslRI|9kDy@<mFupdi9t{rv9j@N&LtM9|53^TY)F|sjng0Nb
z|GR6z;1yiQg`tO&1jN>L-pju_=;QxOuzAj}{H{$fEUXNn@tG0#kjj~V?3d-zU%VTJ
z;rEQrzu_@YL4E&(Njh&HBj{1(m7{r)=Yhsc%TS}nc2H_hp-$K2*MeTwq1-Kym%I*H
zCyuSGBIv*(g1#(G?^WsC+r9w*AWHaVo$~qwI`;20{t9_4#s{^*{2Bmsmt&?n)AV!;
zL8CaB;)J4AC-9-H<Ll5jZ^X^qpjWbiwqh>mq^(v17?+l?Xuvc(G62-Dc%XLfawQQ%
z|3Dqe-Nwf?ep6fpy{A<dG~<+<SKB_<XJ55;1CRP7O?hj@x(}8;FrC2Qtqx370e$fm
zR8c;Z4Y0e)wl2_4_5ITq6$N~wbXvu{?1?7@^(5k4nsE3vM}-(&Q7HPAv?T#fX$PxY
zxDUl|T?bC{=$X2oR8_mDJr!~aohXUwV7N)Ib$PgGc9Kc@Z1y<hbMNw6b9Ag{7D0?V
z)^I!Z?!G}?QQC1hJRV2pO&CMpChH17Rzi8;dMPRaCLi-dT1H2(BWQ4VIp?_vzu3U6
zA1h|xw5};%h0e$-1@90s5es{=lAbCI_ikYs2H%L9Y=2*7EVV+<(p%ORXEfb<6TGL2
zruG}XCSZB)wv-G8{mUA%UMaWQZYdiL<9f{GF8Vlw=`U6C_mYh%)A9ND(#P}se^D<h
z-2b3i2Q#FOCXx{|YGw|??8eln;7KK1_&G7NUSv+X6+tIVIbW#EW=>~IW*Aw0)Tb@|
zFw^A7TFZDfabL_8oQz9B89lD`puCrUV6(s_hn`be4)aevT6>?%GhZx>ZZ^n-_IXAn
zFYKK<Bhsc_YUWUi%1aFl7bdBsO`R-Ug_w#5u&+$<X4d4lwy%Ti$hLA8GTR(IT>rUQ
zo|9eJ2wQat?wpvuwS_<X<L17C6RoT_9YbU0%Bs~0FqE3joCEreuIq`>CnF>&O_xL0
za;+(Z-sO6FwaI!5{aJE2R6~}{8_%Sp*J@6g9#M&jA@x$<HRq{^lU*r+N2(M}<zP=|
z!7UV3S37XrwK*Q3ANDZd%l?{2rzR%@4DSti-)T`~_VtEavGTB*1Vqt?<?fELl{+GJ
zfk(WXz)}6EcK+(81zJ__E(woG()}uO9z7dZ$^yN;U-2aXa0&3s3j0S-wYfP0vO3#y
z(n@}oyi9F6*15}Nr-JH0vc0QXa{=9<0cNUL{^3T-N)`E2)*)0+{|mZKn6Vw&Cp$l+
zDBYSOY$V*rBd~0+DzY;&t~y99nR|Sw*DoO|s2FY`xO`>-<ng+(`Jiu2<*@uRyo?7a
z%@%FGH3w!4@TV}C#HN5oYXK=;?ZpaWs1N|20Ck`Sv~7fec~oHL6u*rg&?m4CoUT(u
z&mE_W0MS8MG`o+}8m*}r9J^YlY9q*-v=YBh)sI&UTKbmPaQbLK4sqp78UV>AA0E<J
z2pdO(*<xHU(I^w23g%`7t#e~C=r!P9q+>J~f>fr$L6ghR5vS`l<0LVsCi+%DgR+W&
zDi-uW0b?`d@jV~t2GcAObWbDEeq~<8Dk>^|PM%gTiVFiq{gLf$x%AdWxKgd6cUb3+
zbgBdB3!R!eh6Dq*c>DyiPcN8KAi}QZ?qgq57t2QbsF(IbfvFLJSwL>diOO{MkrrdC
z$mP%DaTd_n?MOig8<@H#A2Bc*iVuSoHv2$kxBfdHF`v<anPo5-Oh3#VrxJ969%uv|
zttnK88#jJIvmyJz0ztQY6NwC<f55VE$jq5!h4HL5n9=arYJ>LAtBvjaktC7OHsSre
zSyjCLdJ8Z+irzECo1?I#BdZ<Eo0!n=HkRD}T0gE;@D(3<29yH8{?8RT1ZJt++9eH6
z42<ke^<aZBw|C&jZ?*6!n8?~PI@o3ad}=HYmVo|x7n@GHxRu1MGkkJ^KLrqvxPX6z
z2aspDN-XucI)p!dK$=V<7o!}xsorr)kvBFcO*-B`Cm1uL+yG?JP+avx;h+GICXTEv
zqyxqg0YI4loKm3AT7>c@qJa@0l3?5ekCg&Q4`Db!vHm%A29@)e0RT67QDAT$#ZHd9
z74W*{Q##nzn(kMF>UsXhGedM8-z}A{;*Anvf_Y|cIgcl|X?NeY;99Zq&J2=6rf^2>
z(eK4~&}sxfukAG*7^LJywL!UGtD67ITmpm`_BA3qc!Nq%`<k9;+0Gk9)B1vw#N6xk
zL+9c4YKI#M5xczGM_-WrJ{?Iugx>q3lSCHM%Ua@n@y{ntSi2+A$F|oKTC;b$6Tnza
zUtVAE2JvAtjCECAjHs;OKhDtbR!&Sz)P3NNH|(rvoi6mtwsa!sP3}xSE;#0%+*p(;
z$sT&tf2emN*rT9D`0<o7fd4y}*2a}=^t3PZ4NOjSf3&{mjGnOSH+R7YCF_n&Gjo4y
z#QK}(oYz#>LizQMnPA>HvwyoV8hO5)(Xv|A2v4sPx{Tn#mCg|aX{_UHqAi)Y3Tmb1
z4G;CD3Tdmw;EfMqZi>TelZvUWY2@+xR%frM7hYm<CCL`suXPSHZ-0<El#_jM4$m7!
z11L72yzqH?fXqjLQ-k3WUG{omyUcdN@urg!g??O9nZjOzv|n1i-;}vAmHv+M)VW>v
zIff*&sYU2PnZg6wluEfJHeSa3SsNeyKcBC;`{Q42tjEP)Lm+mnPev%;pQa9?3@8|n
z7$JEmdwt*&u(CY*o?N*S=owuF14DFU01K~c>?1HUARPHjh~c-`Ypeo&Q+B&qOt6sX
z!_pHyHh4KA7x8uy;^L$CFy)^aZH7xPJwEr~|5gIn(*~pWIo_TlPYIaW{$|-^FyIL=
zvUo;#3yvm$QV4M1{7kF&R)$Zn_J9$xO8z(gcq{lP|63dw1^{~g2^r$c{lS7CxOz*{
z@;tH+n2OMkLTjR?+UjE!E2MscY~mfCzrDTvcx$5zU^yCq86Ur+klZ>VfxW1>1E;iA
z(Hrm|$86IK!8iqXEH++oP{4}!4DvBx)V8h++X^uoCp4C;qlczpt^m@Xt=@EN55Fws
zgC%bVC=n3S;6j17LjPw7==S!h3P}Nx+t73#o8s?#?Rktl4)*^7_P{@aKPqGXXIKMd
zUq%kEC6_<c@PC9g;6!GIurIP!vmALdK=>{8!UN(ME2<G-DIAEe(p024j_R0BBJPAY
z6yYPM+y9^T&O5H@Y+d(wER3QuRulwgMg<$9(xk@Ds1y|er79{Nq971LNK{nD5;DpN
zLV&0!h%{*;C5eIt5ord9p#&j7Xdwgw1VWO#l0d*Yd-k5$=j?sY`P{qzVNZl#+FI+k
z*84us_i5(OV>I`=rkY<T<u_U**3`zvEU-Unr{e@`KGW}3-GZu^>m{{CODf5YpT_9+
z+O*1GiC4aYi7iC+ZZOnoSMz-t>5-S}pvYQ>S<6`VjAWlWpFFw$m+ABBSq_xm;!oz_
z+YVd`uz6+cRfy~N^NRF-Tq^!69Kglh?+-L)u$j^_AovS1YiH_<`F-87jdF>~y`60k
zsN83F{K}u1Ww8y|hu8+Si4P;@9=5)8vZ}|4P8)PJvX~r550h{9MR*F+m!@?}>jqAG
zPRZH{Pdh6WGu6Js#%ws#u&>DfY;yfc5qUcP`NHLEpq;tJk>>YJp@o1cSDujW8jkX%
z!gL18yo}Gi4FUy0*U{FYbKX0rt71U&;x-|zCj4bxP0cI{#q2ivw6$I7hG_;0t^vR-
zQcLdKJ({8w<)5Z({KaZAFaZx6dK8zko?ew&H79*f6K}R^$VspZf7z0wO=z0t@3&6-
z2ui=er4=)|b*XG%_RBl8KE_FfWFQ?1HC*2^4<KLO1EYuvUBH=gItM2mTHs%kFVI7f
z8~SD(k^MXhkZXyEPzw9?h7UaxRG=VT*Uww2S=%Uo?fzJh0u2<CH_<6}xw5I$t_=6k
zKJ&3@5AZ>HSimRWksnVpgPaz5gJP(t4<s?P3t{xBdE5X29UA@yH041$I5Cg8Mt6JE
zbAK4Dt(d>{)2LtQUXyz6Oa9w;KT>#iRc)b!9?GD!NE~H?sV1zaag2vnql28kf9?~8
zt@7(DCYI;H`#Se=UspQ2ap00dRj=j+MfnS<L{(^2PW`*nmD`soLL1BuWx5_T&O?s=
zgm@{N!{BZYiZ@rB?x7x!Vik}#THuV;j~W<ZFiG@bSP{D`@BK*){wb`qexA4uUA>^m
zuHAu#iA@h_K5zThpy9?CjPFY6jmI{8#7e8b=eFuO;m%^ydT(vdNshj5|6XBmYnVaP
zrJG@&)UgLDN^@n8ri}#9BOh2@rJPg2m*2T*F2zt}jVQJf&pGOU;Y=5_)@T#l$m*>=
zZnM5UCp4j-*dyF#B2_&6nSmve#?6Mpn9XYafByWrqu`d<UNt^B95eg=_HXk+vYHEW
zWKd~oX#im~W9nbU^-SM&qNM`1(=>H`bS84;Y_oHH@Z&Av!$&{H5S0IUk5>&hBgy8p
z*U1I(H%z4E$}cW6b1d#9Tf~&`LVp6x+1-6(Qn%A$#n$@sRrHWh86{~$o;__X7LH96
zu!?!kaZwzYJ7T6m4TK>9SIE(oIY+Nm^ouwZDXvYnU(<gTIUMEsO3Crsg!f3@0BO}V
z3U8BnRAfyasN7yle!<@RFwsuljKZYMs~x(UV)jZ4ZOJqR*7ca=X)uZX7$2tm6)2=d
z_zF)uZCdEwN3WLn8dO*@`0!>@(bn#BKdbl-O9zy9534|nLG^6k;uifKTF*-@(bhi}
zSToJ{iL9B2HWM<P!W&FB=SPbm6H6HEJt(n7H*uwSLb&+2R1KNmw_+vQCsGz_a>E%D
zE&!R6xN(9e;F`{u{3~>waC_V|#Zw|CH#KE(uXkDH(p@<3<r?y2m2HR9Gn1)z?!ttj
z9IH#xH^17;h%6-%d}CJpGg_B#ZWDjU1q|{p{)nXXZyWvpZWr(-H~KVpu5PLxdQooL
zc2+uwXBRerBRBPiOG)A?z-@YUitJhJRB#pz2*#i#Jtf7#5JRm21!<R%pU)r;51=mD
zo#1w_0hXHn8*{DDq?46S?Nx<J#Epf%(wi687l}r7kGbhRX78;9D%Ooh4PJkunKWsu
zbVJ2EdGD)0%MzAeG19X^)~&bg!sv!cwn54R0NO0k0n@`rDbvZmF5Js?h5wI_$Il(4
ztm2>&i`sSKw|<Y88jrJ95f~Qv`Vr4UAA?;C!5x}h2nv^dqe*2xO1Lz-!zcy2A&BaA
z^O>IMGusM;*4`O~kM}KL0}h?B0f#j{Wv3`Cit!rR`>^tWreeRs3Tjy%%RD{C=t=BS
zn$0G6>0oW(=KEhFTJN=DRjNm~hAmTMbu@S&96Hat8@-H?G}IN*n5q(M^K^gq4}+H+
ziVQHx>^(S1XY!7=v@;1)wo93AOrnf|PzGZ|#%?eLjjc)XekRLWgu^rx{<7U}joD!O
z&<PPMKY)UAvZa@9Y%8T|>HwRm7(KY-l^H!IK>D@Lo)CZLmhsJu`yXr%PQcl+l#x!x
zQe!`3tZH0mlBPc;M_H#-&BBbibNSN)_ph!Vd+GnKHhrn~EPWYEh5u$@xhrP-L^J2r
z`NOi&)FxRh5PgUg`9^oYWsvCxT@FpZ!{}Mlq|g-UTGsc}MrCcR93@R$`R_7hfnhc^
zYny^ZoFW3TFV^5O%Qb--I?@wFQlXBo0>*oz!b)~0oVO3}dl6Afi@2OaYN9YlEE;u8
z0^*%pn@}@%nJv}5TiZTI@d@zwCMk7-dzpBcZl$@>;I$1aqeg(0flI~BB7tR3{+3I<
z`0<XRkRAKz@vc$@LRP1eYW$7V8aqb&-mmllKNWcxFc5;bnBF?0YYEH$a${Q9g34mM
zhSx3+&E(hcXAT(i(DD}Kc+>#}jm2tQo8T1orN*$rK1c<igq^3E3FkXWC&H%v^qBtX
zv(7i8{I8A-5naMoo~S$d6a9U^QDGRV)JwdK0Upr>U*C+SC{bm4W<&D@P>LknjDJ?3
z@~3cuA_ib~wjc0ti1~n`!uo85jY!G-q5CcH+r5MB%*0GSY&DdflDeIvkMr3oONfxa
zf<oH}m1-w%N{1Q0jtfZr=)6O&tHT#G>-b~WDP;!LyMF?jE{z_F!uQg1A*7lfVpH}?
zzHa>9LsBM?z>ES(;YtyH6<`r@ZgjVsHx(kS0Ip%Bcu*`xDMFpgG1U)blN8Y@u>xqW
zkyE;fkqb1{mz26O=$Yz=;9oc)vKqEpa*2-hTiE+9F<j3w%Al)b1KPnjo8I-e9j1qU
zICvD)mTR$`qzJW;vzwDW;mY{%4m5)N;bkm*SZ!@X-$Nf}r?TqdV%O|_P4Pj2lNzd7
zSm`@NY9oOtI>0H_&)v6oyRH|bwUI%#aABr5%idPA@F+8NNl#I=)ATMHj))+R%x?bU
z0F=-n<eGL@BaCs}PM2n<{_s;qi5BaXA?r1};pW>@suc^QhdJPG7?DN#x7DA^>Amw9
z8=QEeb?4CI75A4|=49&{2e%xfr{gzb=WRw)dbma=F`p7CjCQYnjX>HZy8rG=L6Uvm
z?_@fI_N{)vTYsq{7HQcS8=y_7<grs0_qC{@<wLxa>hJ9?^H#~KtTHqdM9sGM_vYPD
z7;A+wazmU5wBro6CLYx;!EIz69{X%|vht#tu%Q;#*F=dVyM#nO;@2)BKiE;aH({it
z0~V`txa(o%&7msFnBv9+*f>e@4#ltR!*K$u?7!VG|BV=+rNBRV#y&sW0(8&tL2!Vs
zyz}g{$A2y4<9|i(AKofz;D8)Pk>QDXIbdb{T8I`Li1G4$TNdFC$cT(zaH=RyiAs(6
z$h|dYS<D7KV%&77<9T2md+WUJ3jx^E6X_4egSQvT>;VW;cmo%di2<J#7(+uvH1{jO
z#y;BOENWp><yL_5Zkv{znEMLg*`TZq!0;iyEWLP_ol4lLlJtkEmVRc{SL?6!3!ksp
zl7tN&<;#LJLs8dms;O`6KGl}@TmJqsglP1d-)_n%aa${M1W=1W&z^y+E)JQ@w}_hv
zno_c!>X=5~#8*#6dd&3b!IeROi%BT=6?q@h@5Q`-JSV8KUA+aIraFG@1vtQ1ee-BE
z3cL<rzr8s_g}2Z5WkN<GA~&8bT%4e#M74j#u2lgG%fa&mp8WV!?Ouv}p9DQRQCLp$
z;S!ENUA0AD4A3bl8j2l&bhL)<9_(?`0|wS9K>Q@gLIWK48jt%sV!ozKH~alUtsyCC
z!?XgzT1Q*wG&3qiSQ^?0U35y??f=4EUF1n{&^RfZsVA@czHrSM;{&OouVO$;j{|yv
z(=PDGS(+#5s=>n_hk3po5W{K{Hq8L}&=K7B-;!5((_k$gWBcH6=-$1F*ol%5E|Q3E
z4t`yy!oigm8BncV`Q3xpyad#6_q^)S-<ju&wI^d{%=6a|+nz>;_NE;QfB8PR*vTIN
zv~rUY>S)ahb3FOL%V87(mhh~Iuok#&RltpoujKG}!K0Ee@4V{4ByAB-`*QK}Z=m#_
z#8CQvqZ9TN458-<+mrKg@7+=ZS4CBd!8-g_H+3p0IYRy6(xAKnl3tVB>s#8t!_{X2
zTzx~s$go$DS25nf&4kQ#bt6>`Stzx7+bZjt;0x-xuDt#;Q-0fHGRF>yf&P$!OCx#r
z6yntuk~7$&izYI<&;S{3YeB1Tc<i&h{|uz<AQFGp6IZFEIk3ga*BJg1`P-lc4dYBH
z4(-<iu>%LEkOZRG0Z9ikc7s_`iZ4AeS9W8=;Ru(M>c^FS#%*e6bLgS54Wt#|#M9Le
zqzLu7U#$IL0~G-8h_LNNw7`F{;dyIG0v2b+OK~<0Ws<*2q>6f2Jt)tR`E4D*;<s=|
z5<WuTZ+^iRb!%YE8qka{k&0W2{d$JRZNpLBoD?&wlk`@j2~8XVu7ik@q$h}p?#j3{
z0f1;*JbCEb6)l^O!|zyT@?Pec4M5k2iP7~yoSqr_I)atuc0Cwi^g(#Z$#0zgbdaY3
zLU=&#%&%74l7>b7F3_J3)h*S0JV!><N~gj)K~7Kabpebi@}M5iV&zi_!&K;!rNTiz
z%b-Fp^kieJ$*7WbP{2eL@wd4m_d1Xyk-%H&>gqb#&+{P+qpDKf=<mm>B)?7Mw#)S{
z6}jXAwqq>)U(|(v%?1($`#oObb#1<khDc|azp4eSfft773J!rJrEt?1Au%>q>DC;w
zwoL&@Gz4qzP0OETPKgeMO}D*@4K{+@ED>e9OLjyAvtQN)k|#odnHq>Y5(5k2B7w!i
z`B%h*Df_)>B8YemXzu_x1(?W4{^ns717t|_Lq@7V4#D`dLKzp)7S!jUwxA0~FmmD@
z8z~n-LPSYr^hj&k3)wT`*Vswp0v-g&d=e!ET093|tSL_=0i?jrcK?eaWLK=J`g-Rf
zSeh=5L{><<j3W0xx;jJH_CfP^O?u#!h8P$iM9PhV1)?DWUJQ^&U%2q>gyHE)J*v+i
zBk-sB>WIRbMm-LP1GkRwzste*dy%)O6(K7c?BeFWZSuq317wds@cj2${|47s1yVXh
zHwpmxFC$?hY(ahiXe_TY#of@`5*E|>w)^8vg+aR3$k%PCW6%c<O?oS=jmWN{@sCW5
zmeUri?EG^6k~>T-&-$g2ofXu2?c$7`4<ArMQi#Lj0MU>Ec)!x?GgIOzKt|HE0vDcN
z1jKWz$6XQs3<;l!nw-pqqvt#-77rZ3_%TOgC5SOM2EMN_#&HEIEy5=Lhfag^jPT?p
z=!jF<7n5fV8!a3c)O1?l{Oyl&N;ejnzp9sKct2C!MD+*#_6(5$oEtv0r@R(+YteEv
z20zHs1Fsb1&&(4tJtJ%_R&f)dC)E1}{Q9;T1?+=nf+qQBQ{VlK2EB)0ked!sdP{xC
zn!9$1TJ6(%g6UR!eoOH%3Kej^E1o<MJiefd+nw?gYQlWtok2pBc|ditHIa->ZtCB5
zn5nxv$dah|GNZh2?j2{d^UjAm3^SKPP;_$NRNwyAi)CodYX-!VZZROGAnxmZSZ}l4
z*z0;;E4-jZ;9YCw({PUU(EuZ_Lh()wT+Y-&F8kHwN`Kx}1mjF69)uZ7WfRWd*Q;3n
z0HO#Y%6)bpKQfZyU%ca^&nUvcF8%QP((;5NSzg?W)6w%T*ILOx%|D{DiFf3uYLOtY
z-tI>0Udi|p0R%w4m;{3Zn)4u@$gzNgNt693;+Z2Z0m)<@*b;%py~80q%s>Y@6*MAN
zo^bcY<9D!g<OzM8TRq67Cj*hek(zcg+D-@Pa?eos{+N&cA;g{yw|iU#7dsT9A>*46
zx95n|ku}^W>1k<qEp0$(^M4S_2u8zSGI(PN>wX%PO!tsI@s+ru-TI(bzL0;@w4M)M
zR{RTPA$?Mzjl2jv!6ABxD`2T0vIDaN`<ds6B3Oe6FWPe+kQR_YY6DvIKr}V3W+>r`
z7{AKR<$y#1hY4;8ND6bVBv`GeW*X?}>JMyd<rJ`cM!>#@&H6e=6dMHimqL@ll!+s+
zIpes}CYi5u#je7H)?}2bJmB6di2w6napnaF@ITc#7~*l;#H58CQW7c8keoj}rFxY1
z4ga!u|CKA<OX8E-RJ}l#+AZ2)DtdzL;sBVP)2B_q7Y9ZAuvhP`PFW4RBTlxTaa{mT
zqp{$GTx$V{Cie^ND?+3#q(q8{i~V6+HLB2O^3BP@z87Oap45)@F(sP({GiD*xc92=
z7w#tkMT#d4BZZ&yc_P=?a_Ptt8~M7C$USrbq5>R-|K#^Y4GwhwOYQ#u`o=wwAvmW(
zE(*H99<aGGj$j}Ju?_#<?f<{h?f-Ycj{o27|6eBNi;BDxM~(@tvm}LH9uzH!kbpx{
zvU_DrZL7>fbB+f3f(@Bj{S)I;mAXL(`|P2G)6GZ?fb%^Um?~fHNgO_L#!A{U{MM=o
z$N`F(TkU7{D8D8~%h^0+c1~PFykMW@h27epF}4<xK|_!;+os*Vivt#A5SA~EBL<7)
zhFZy)Rm7nFx#}CRyBdNKqsr_g*1df9V&1hqK1x9UZO`DFXVlwkDwLG@2n-S_QY(%b
z-TG;1lTv*qs|+hLDBDO4%BPQ8rsMG6srJ9^*C$jsx<yJ~zV`^pH1YodaQ^?>Et`Lu
zmj4Gi6Ng!Dk&3u&Ju?)2vDO5rtPo;$ad_)Q6#4$QUVjLF3~0<gbQ%esjaeFr(_7$1
zDern^k~Ohz(et9I$)2?;Cn{fMzOnyN74&NqB#h%beDB`bBATdBh*R`yP~>jGIzCCZ
zribk?%~N@p(UiIHN#|Uv7;iU4TqA~%57}ioO(1zSFxK270}RwTKsRul{DeIq_aAva
z7s;m+3|JJpF3oYT>i(gNGxC;mM^Vmr{c4*Pw)#Z}+>1|Zt;NTZy%puXmy5R%N7zut
zWp`$zU&!Hb2D|p6iabYF@(;CQAVz~)*S6LT`XeTVI`H_xYbaQTrY@~t%kBw_i9u=4
zyee<{$imB`VkE|c!$q+lA5{f5_x~_lu2ws=gZcJ;-2^-q|KXRhR#V6-Y5m(fi=?GI
z?c4%h`#*{y`BRAFKOm@zHib`i$z!%@YKH$`>DCk%BSt4<BnlkSmR*|GB;n3{+pW=%
zlXh!NK~qz(_^-8VI=!dcH4mo)C43)CyBY*NCkh+{G8G*&gXNY0Oy6oRJ2YjhUfMn9
zb+8%SOL#~oWDqMi%QYNvPab%9|E|kl(uGhFl$ME%{=wXIsJ_N#<mJC91Q4OB04Kwt
zitY>-z7ua*pUNgGc{^rUs_XBzlGn^pZ^KXyryK3kR>(LFz%)&;k;W$`4qDiUatkX}
zw-#nR5-PQ<%ItBt+TAjHGTCqw3|qQ(M~&Wq$A9KN!N>QyqVqGGuqydJh-?e^@R`Vt
z?ID#fIbF{=o-t6hZmHhqt_C}Fq%gCsbD}|^7obKj9TOwMfAmi``7S4>`(PN~<tN_j
zQGAL{r0GfW+onbHr47d~io(F{1NmFrXWF05253xb++wt>?g~-SVvT)=*tGm2No-o)
zo#7Z?1{$OQbq*AaSqBxN+bNoAt0<8mjU&Ad0NDo>_rOMp2_!7vG_}Y4{`$x4Jpzfy
zV9VcbgJ!0(+wKpx^+zjet8AKrl_#-36-w`lf26Sd%SwS@9RaB1)!QAskid3{urUQ`
zvYVvmE1;6xDvD85A)EpMa1j4#n0OXjrbbKLI{i}#Xn#?gIRgy<^GT%T)?I`_==!gp
z{jxMc1`=KonZHevV)oY+sxUDUR}|$qEvc!=mrg7D*Z)aUqvZ`C@awf=O#7>6er?>y
zsZ6xeYpxShz(<z{8TcZypYl^s!kN+Z8Dy-?nlxX4dgdSV-Ol@)QYeM61VDw%GWG~8
zw(#r}={GAuG!mf75QYUaYS2Md6EVxF6dGFbm)!jFV@?1iAY0X14C(+yF=Sgt>u&A#
z>rdqmF?5R^S||4LfoIyJ1^Ss=CwF6MMt#xNT%p<(np7SHL#7Iw3SPIqc$YHP6<NW0
z`yDz+q(z&G35bFsF0anm=M{fP_9~{RBG~AwvgDMDoC%?jr@1IdQz+h(u*!#ya`2=3
z$I7Pr{dbpZo9s3Z5-fAf-SP0NedjY$nTLFDhH#snlliZ~T6_hVlzEZ3810rV-D>`k
zP5-anl0bJJ1=0#@8#fvG{Vt13MFuWT-1xgZ{J(}o{JWP52I*gi>B>m;B{SNYpo$3{
zpj(z`Xa2G{VpFhGShh<lr|eFiolKMw)70?=hEF|o4zz(h4-*Mj9!+ag_`xczIR>vn
zA5~%AX(K__Q7%{-AFYwB3tS^5h?aKo!?=%NVcac#j7x^`jvx^kM&c$Kkb-rxJxAJ>
zh1dsZIcXGZ<?pH5|FqT6y&(4V8s-a|TMD-g_2dj8$efzA6`HNw=@GHmQc?B5cDr3W
z95J+~dI8#0xug2l<i2j>4bTqkp_}z}SiSO>PG#O+nk??m?K+XG8V7#wZy!u#14L8G
zu-$|G{#HR*rwxS-Cb+=mUeHdHW7?OF7@92iGUwO8&jJ;}<;nEfDguGF)1QaqpW|g%
z*4dVf1vy$x9qFXn9VM*m1t0iO;bW40$Wh&eCloWu>|n&M7}Lz^_mnU8{l#<=<6`@O
z^gDsU^L-H_U<a`+_xw3}lny^3SEtV%fgPh;t!*eWS5zJSVwSr8QUuk=1^avL!#fKH
zLa5j#COWr;aKO3kf4Y|+^g0^9Y%&^}?cb4k<189R{{x!+AdnffS^!=KghD%-F8owg
z^};fLIdWpo59*-B#uM2g`}%M6^tv<O+|uGjSQ3gEi*q^|wmh}^WP9^GUF1M}S<pc9
zLZYI~BSUeXbSr3#aj3&Z7;_VT!*B3oN!N$viACIgL$`2Ci|3y;!A{qCt<1~g;Fohq
z!b^gR{SUM(i!W6PlyIAw&p+eVVLPs??1=^_Z9TN`vTGpYUO5rPyvENrvKksMqiEiZ
zGbqJ!WD0?m6Ts#tj!uFXHtIaE_*|DNGKkIX7UN^{u9;lqPmGwVhF<pd-Cn$e17Nnm
z3=B8|>Yi?O&Yh#J{fk#r(^0$i0$l-JcQ1-dtwxUGgu^JoTY2O~-YE0pvYJeBK({j?
zkpIlsjY%XQ)eB$UpeUEQTkcMbZH6AGwnmK>_tEOBhZ`Q}_&ZPToV>jkbu7RZExbeI
z%GL9PT#WF$=>OnLp!7iN&aS=XK)Xp9DRhdC=JcFbRDH1fVTQ@|ts%blA+R8%Zc4~R
zh9Cij;P1=RRYBH1!ae^CndnaJjT5}NI=Ag7(WVTvZ-wo5G#7*q>)!&#Z-2z*mv0@P
zDLUJ3&Ix)ls&5#)kw6XnT=wfyNv(DrE+e3FuzVq*i~w~cBKa)A087w^;%62g#+ZPd
zA;7)|-)^yBGvbx8a>J%Fcb|*4Ht-P@-)dAfAt-*mav1#4KwySiS+bYoa0NaRhqRF=
z`qo6#5X0sH`-BsHnc?|Y1t3cYglcm*9r?1=O{fP@ST-{&s@uPTz5ngz>;%q8@5RTb
zPp9YPGHNEhvty|ZX*iQr4XB7$c>IomfsfuUkm~_^ot$;`<f2E-NW41JhekG@u>)oL
zjs4+~Mhhq8H3k-u8g(5WhQ3n+@tJdy65@QFPdyJFjn83hN3KJ*JaTRU;RtVKRZlWF
z2u+m<S#<Q|=sQML>nr^#2m#qf6gD`%&hlvD?q<RZtm8R1y8^D%zc|yRhPK4#D_eA}
zxmJdbLO}gC!yQ5jMt-RrU2B%gKaXiJzFAkv2`&z>^%Q!Jb0624`mi?Og{x&7hUQYa
zMr=|6*{wR<`L}MU?9z3|)H$XR>lQ-iVsDd<zM!m*Bl`Hqfq`41=QmNH*E72N=!y47
z;_nnGxmG{5_erH(rfm+wyfu$+-0-?*n}V}mw?`gM&9qNtKQMZc@{eYZy!Z*fpZ%s`
z#AlvQIEe>DeFIQI7Zf=drg}a9YUO^qo_T<`OA{+3Fx{kZD~^;}yHz$iv9zk7?9mE$
zo1YJ{wuH(wRH{`rkUb%l4M7n<2IN@N<LNu;M($#E%L-)-uj8`5L+aQ)&&gJPODkKm
z?`47eWRkxBK>HZ&6DwpO?MjTUY4ZK~Iy9%}N26%gquTlJ{k(7kDxY#2EuGNS1CU>W
ziWvajf;H!Kysn_=Ly*v+Ms>ZCOeHQIjM(1m3HgkyTi}{8SS*hztIwB-`{5{i<ZS%2
z4H`^E+;5f{N&0#|@Q<mgTk%_UCN44C4<(MRQ1QI@rQD<v1hew5I^YyW$sO+4n-1ow
zq-2bhhAOTud>K=p`<zKqH}n{pV@EFUyRx+F%|hfweCCV#UT1#2GZ^T`V9KvXw`xzg
zeLZPuh{8e<B~GzfN4F*1DYNgf(MfUrZS)Kd-g(9zzar<D<?F+qwysT&u9e63L}53w
zO|ZT$Zo8e<WVH6XlgnyO)9c@<o_oCmcJF-Dyw-75XgBh1<<hjCNb>thdY{6Uyjwu3
zG}yO*5R;H#<2HO=1$&JIP0CR)feRdw_D1U~Bf{L=Tp{vAm#^xpV7oBpd+B<Sf_Ux3
z<ni=uvsCIRZ}<UQEAAb1POrBhQ_!0UgQ^%GqU%wk^@JP&+fQhxnDqX+0xEoq+W-x(
zgiL?q9~l|BWf+lc3^r|0f|p(|RQac2GfzQVkb-=i5w8>Hd&7C-m*q>>?H&w5jRmzW
zc?8oYXd-ln$FHt%8=7DY-DM5GQ({D%R3CSm(CA4?PJpxDE0ikjdFzfK9z#90EmNaS
zUL0aW;`{|9w~tzuM4dd|myVts21s*NKwdcGHI4y`8*v;<OtDFA^Lg~MHi7u5x*8K7
zV{ls8HhF}||Jq*>QpKsB9E{JA7mSwNF;tK5G#g8FYD%ew1>^>fmT=PT9dG~&;Y<`n
zqsF5VLS^_B(pVx;F9g^@^z>|5>Y7YqnuT@{2DzMe2wCT4II@<(V^q-HAUtX!#zc`O
zvuHoPHpLcG`GTa%dl)JIgKY0fq@Ule;yFOXnP>&l-)cix__6v-q|VGk3duv86w#*1
z?nb|AT67-QR>WA;!hQ%su@z8ntFugj1;pSW{c1Cw+kVH=c;qB(?gu5wZx;c|c)*rw
z`7G1DlHd91Vu1>vL3W>nDiT3PHweHmG*l8?UXx3*tfDHq8{HPYx_wHS`*gH;!9Fg%
zun`XU^pSZO+`}eh3GRx$5+vlT-Fp+nmNq3t48TNPe(_oq@=~-5>00(S2P05L4$}%5
zEa##@j=j~E(H9(W_X6MuR1FLWQWLG_>j=m()X*~ZaeQG5W(&VOtK2YX;Cl5oqrLRw
z>%jX0pae{YgX+4N?EN5$MaZ4FanH)_wJ%FS@@!kiNGLEOu;Je!szi5a7~-;@hsS0_
zRPET*i$^GlB1ggP86|9-Uu0>veVD6Sg^rI|gmdQ@PhF&y1SC0pj{OCrTS8jL=SJo@
z>p~R6&=6xL0JrwRf<vf8_NJxaBLwjVA`*v<dcWE#E!)v%-!z?)wUCbHB0~AA;B$G%
zPWU+{yyf&mo;Qy_-uvYM_i`e!R`O0kIhkDDOKdju(Az8w4nn@FeHdSSzuCbOlf$oi
z6}&&MLDTSl;ub#%<OM;hEt`4+>y#jYuDxIw=Y;(>R#(P+lZo0T`ipaU4YCcLt8Oe6
z?PJ{B>igDl45!{t8Ohd*F66?mw)!Mjmng|)o{y4E+^XdC22))ZmNRL~u_@0B)jIxO
z%cp^|5ZwNi#FC7T(aD6ql=N$zwXyKj8@AV^NeoWS`s3^eUTs<tCWj>7O6M1DZSC=*
zL&27RMvC#s#Mck$z8C5)h(kX3m1o3nsH4h}XI*XyVlc((-V)2VXlQ`3Q42D4%z!ky
zIdA)=-d$I=2TjB^**#I+PW8!7NA7k5$CB~{t;`L6%8D#G$@}e%4tI;Y?G0OsOIrm?
z|C4bGZFYD~@h6<MaFHOP=+DI}fZ~_4c;ud2v62sETszvH;_uZ$w_&0BIs<t*2QBkX
zWAI!1j7(q-Iq8jubE~-r_e{uSQx*&<3z%`!&j%mWy7<TO3EUt1?qAss@4X7XrMVY?
zo<o0f@j8s;S^a+-b)$~Da!<cfc`O={WnEu`K7#}r3q^oK0Tb#R8I)n}tU>0dfkZ4Y
zce7$l3jIPaUjM|<otiqUSFZ-V0+UDLzgFXct!XQ}+=mEZb=*G95`8njpMjM@U?2IB
z8>1{+Z8Cw{#1~KIN4?0e?_zQklEj>+l>+hQOr1{w4si^>Sa)YYG2E`R7mQ11n*Ysv
zj7oX+dVlM5bZVi0D9u@0yy9pAK=>A0kRvmK9K!Cm6%vW~-8)0q0{~1HgHiAQ%t_@&
zwesWv(Rh>39RmOh`N^(!Ng~3~e#xVz;=u?Ookx<13_gIlOv!ZHt*zpYAtizzV0GIQ
zBK`qBFWE-PL<TEljS5<{P=XKX>ZtgK_=*1JB|GaSu$ClCoN+aGm$RV9hFiXMvH0(6
zoB)3L)G6*@-MbagxO2r1ZATLdxU~-kBW>4+N9Q9vu#SFxw>EDp=}xeqB}ZEY<m-V~
zG=-a%&o!Nn1OI~u?Q_`EJN8cM8#Sf)*}L`}aqUaCvF`$%s8_HuS0kY$HrAA$xLnpB
zucFyn<3RN{Y%DJt&N<wY-ienOEg#{X^aP`mW4kJbalT5<s+K{HBgnv^BZwSkH$^tZ
z&tAjQxMqP8jw&n^w-H32<lhiTfNzD{WE)T9>lw)l8XVir?f_jr73`K%a#VPZy<fE{
zcspN>-2EAuSFtyahN#7pGC@lH2736DfM$=vt$F326ZW%dX}6X(ojfhn3$-n5pknlR
z7f0`}Zb~v4?GhJ`z;m>K=-8SFxvJ%Eabxtvh}hjXJSdfN&a(3=(hn`@E0VM7l#9kj
z%Uxoez@Ey~vh%(VCpO2}6#1#tZVrMUo-m?;?0_1Qe9uO9>XHy#3_suCWz^KQDYBGa
ztBpr9V)T5{LzbBsFaiN9z<+E-oPR1dU3ZyctEVmd>;W%VMQ;s{dRW_~uq>Q$kWfQ@
z%IQCsIRY>PamkX9f@VSrFWDm7YQ1m!0z>cuK0aetu^(PiIS#V->~>T_u1mabS4Tev
zfwb{H^XwZ-lj}45JP?5l_~GoPk+`yaiM`?xUf_e6Fm|=hJEQDq6>>IrKi+7P;j>pU
zJ^DXV_@~J575?PL1F8jt&CHMB7uTD=Xnw(_VuC*VA_lKE0YfXX{%W2iMp^Vt|7{Y%
zw&ExMOpt+ipv6qpI>D@Su9_NuiPMdxfB0ZUDjOWNQ|?Bjin93Htdb!FKL8$BbyGZB
z-8Fw#;l3eW=VTiJvF8fd5dF8#>wmCRfL97OE0GM%c$1I>_65Oi;f23D?c0JXO1!|j
zqgh5${W@00(~`u@f+cB+z93q2G#TQ$*|!g}0+(u}>8y6Tw0e|3_0K+d644Kz6^I`I
z(d20)6x7cnz4qs%=<uwWkGv&<%xxNOm1DiY=qctz+TPdUd58^_U`0dZle5{zkozOz
zl9f?Sg2&|5VLj_ENm*In$iw!0&TKpZG^4+uWesHIOlASUWt@7k?Q=r;YP5XA&Z7G8
z^Leeon_q68o|y4^nuaJI&*U&Y;6n6hvDb8W^^K{fLfVd|ijn!_C+Vf5vMa(JSXxL2
z{CJXcsn}*M+sFghkX|Ta#5rJJs~8<(wV%Pf?cH#S!KMbi!xBtsGc8x&_%Xc#8z|o4
zJJtO0zPnE1YBzX4A9E&@gr7lgmlo%idMhW^@h5FsTFhOi%G+>He*Z!48F|-gw&Q>S
zR+1^QC&V7luI*l)T%8cPQ5o<_Kz*;c1vcF1GI?wwOBXuzx&5h#0{Pth2TGaMFU@U6
z4n$MQM@!P%<+yU0-QHzuXFS<i4HUGcjm3N?OfW}HQ&Cp}%fCAM%8AYkO4}-nH4%Hb
zM2r3`MuBLp9rNT|5Sk0!*zDOu1?nQqA1Gqk^GcOGN*vA8gZQ*Q;d*cJEsyJGu~sQF
zRV^@mkmNi*?wol}kD52)B%EN3CTqasMwqAVS*CUK`Nsy%&6i!*`1P##mg!uz`7GVq
zgD|48(|g}&gZ;a%zRa9=@BqV}y<4@8UgMAW&?|RtO)2|)G!auO7%rUtBS(6`JZsky
zp^o}_DE^=WYohYmde!EMzEAhj9mmTV-!*;5V;V*Ie^KIZ0=HRke<X&C`Cho}AZlnW
z#TkT-+qI1_fr%?(-h*4h??30GiGuO!oXwtaTR&5`KJ~OOF>`C>O3Y&qZudSv=$3PJ
z9QyKyQ_EYLY7<6`YfF}z{1hVWIhUoPiCp&{{(NQMS8axCS75m0sccVn)l-cSS%rm)
z$gV|XJ+vP6j&M!>CU<*S_$}+^Seqbf1v7qO(UDU+at#>Wh6?P0UDO}oo4gcyG3-Oi
z{RQ>Q8Y?Q5Yth|1^Z2b3ebAIF8!OZ++wV`wCO=iN?7OJB9c)LU0lnUosO@CBA>y|6
zO7-o5x9wUwM}KZv*1R(CLe}cOCHHmg(x5HNjE_ZbjLi#M9pW2sy&-B2FEATDVRg~x
zP4f!Kbth`0hg?s1jZ(5ot$sE*zlk?79AK<_{xs(4?%*8gtHRWB!ZpL|j;GV!Us9W^
z(O_E=QYU<}_$JB>>eAww#o$b6L?=T{c_)Mvq1D)p{QK6NiK`7UfhzkD@2aLRXiC>w
zSbJ;HwUxrRFKxX8qH~PY`aim8G$?KG%01=0(~t&Dk9T~M+v=aX{<5k;s9`fz0F5!P
zkMChE{JEPMYpiv9`1`7RyY&nYNj6Gk1$2;7(mU&{!l%)j*|F&Zi+s<^sWZ2nRlei2
z`E+9W-a~+q8RQmyIhSE$`aHT!>D1P>Z)t=Jj!!Aj3VR-=XO)$`T3VRgJb5U@rNUIy
zp%CrfIQ!`>gn9Qr%tI|YUu9`ed(gb>mngZS+oxnBof3PF-~5DRa$+{7j2JfNP%Zo;
zj%BX=xIveHrpLY^@W{}kdmR3e;;}Bw^XSj8A56h+uP2&S5T<&v-Eg}RTGl{vmaK9V
zO^w7s(C?e~&E79jQD}=Au|-9uQk+r7&4wU6QM`{d)e%(cwHn>ux_$8*z;zexBHQeY
z#XCk2D*#HN-CwwyCfPloyuZCKd=09A>uj9lv%k2A_nF_W`7GPF^7ktQ?_Q%9Ars<q
z40*}b)SwvLS+`Ra%=dj0vi<X=`$L{}1R7(XurN6Hjewe^AxLY$l=^07k56BftD(6#
zTYzifa+usG3*rMP!}VPYHR*|Xf0?SE`?BE_?EUHP(i*PAb>$^c>XOA4(fcp0s&DCv
zF4<D+3XlBx<+hgEBwno?F%Lq^K74mYPs<I%#rfX}yaz7Z`a``MdihttXW^4I>t<9!
za;EwhiRjYcn5-`%dT<flD@nKNmn`;u>as>t$18b@M~gyEZ)~IG%dCQB+wy~Y2TEO-
z+g)@i?aULHr>9M$(gp_H{lz1676b&hBKgK!)$|K<9-Q{qYHCuuYGLDNi-GpZ{ygwu
zpgsyu(dOAh<OK>eg>5;u{*aqjXwiemK#d8ksjP_ue6$e68l3DeiV?*YJ412#TeHEv
z%5a?`E_(OP!>h~>kgx61O~3TLg@&1D_WdF_!XC26&y<WO#f5~OI|@}Y@~tR45~-S+
z4?bNQh*a;NWU@w{E>E2sNAON?T<+ki3hs_S)_e076|Wi!Vz`xxHnkv9T`V`^HedJ2
zFI3vTP!RXi>Rlgw#7|Ik2cWK!{XeCf%p1>w-vJ+_@qZHEl0H0jyk{P>A*=A+(GXhR
zEKUiy<(DJPzt_mbxMjzCAUq*}3G%@RU43s+t23(4-X<{MN9?m>+s^-H?X{6#2AdnY
z{*$i)+EUf-Vnx4pfNAzUySQ8vJlj<?nyR5x0EW2Yrk*K62R-+wg^kU>+NcYPwwCc@
zeV3G28ILeO2EVRUQp6=cdf&sHuW$B{w@XJ?=}>I?`Sg3fKJW*1PG}C{fjh5Gx!l6u
z2$a{=FgakiQA2C+DOU7PNLS173%peW%W>TW*GZ;oJDrRooznu78?VvAb^k{FL{ynN
zl|6Gu=zeKf?zO@{3VJ^duG*rAw}8Ec7*Rm1`{-H_>pofriJjUqG-abH>NV7g{+^9(
zHfl`I)lRk42(0pX6Y2&#l_cX+_wAf5a}?IH1-$NLa3Tc#SMji&(mws+&g<K$8P1xX
zS&|FPY}`b5F_7l!p02wHh47>2%sSo`E6M}*-oNVX`8W5dpq2zEsd9s5y}h2?m{})L
z+pC#(BUE=^x;b;FeI`2TgZ*<VySMn*gZ<3gY!@!bT~HREg{RbD|8Ud3)s604Ks#0B
z6tp_2tER;6T-z$Qw$%~{)Fb0orA)8T5J89pcp}<Jx|pZ3;hi^ihVIO@6iZ}O+@Yf8
zYb$paOq~gh&)@nvv393Z<8TK4r3uabu4;Dl>zn}+^j1dG@3xt`h25eZ?nY$?S18U$
z5hp7-TpI%&tbjCI&JN+Uff<#6_I(*pU=rW))y%l~Q^IwKlX~6|I0m=Hf=SyX3Nty?
z=>NgnW%~wgR9bi8H39UpZE=$S{3k(E&+9f7gH<{Ccl1sX{#0k^{pJgqYoloE9yn<X
zSI)yrbRduL={4L(Q)(yC$y_#1%y!sC=?&X~z2&6+1u!--UaeR=t>6PX%Ejr&YNiM6
zA4Zu-N*iEUqe-T2ZQn?pxJ#yvNlibY^`iTr>i<aV1m>;HpNcX8zZm6Vl#}t7&v`Q^
zLQnt^wx!$xFw8OlOz1ZTpRkT-6J<+}j*6->bKD&|YDBO2gfvk=4lSB0?SOy0x^3z!
z7XSFy&o6LnYc241n<J1&tE30dRQ8s^2es_E>Qy`b_IWjRc%SuBQF*6rtgJLhTzHyN
zQ;N=E`qCQ8-+a(;_~QtvailP3ht71BCsbm50V`)S$O{4oyo&8BSE!_4yim<t?R66^
zZ{vPmZTJ_y1eOTSH6qay%%i$!v}6L7xD)xosokOsWNPI?Mp(qDudPX}c>>G-1_?3f
zi#Flh)FRv(%6l=KFTBaX5{tfW`_H*0<Dz3=<ul_*z}6bC;<-&7lwJYyp>A1pA5(6m
z@Gbjbh~ei-K$gg-7<y2+bpgmwsPIC9C}#pp{8S*0t@42t5JqlHu*|o=|ATB2*~X?J
ziO%mE%n3JQYH{@$7Y+Mau_OxDCG`NPIG2PNf6~G71^cai|2}%ysuC}mHY)K8ET`1{
z7J-877Dy;@kMMs|zO*Ogg1b@VRK4t<t8-+rRTE-i?P&kI3d0|1AiF|b_X7$#;MxG~
zYS4AnB7BNQ6|VX>j{0k678Zg|XTb$=OGsP|{Q%lf6FE5kw&FP*qJ1wY?azwqS~RFC
zWUC5$ApB&J6EOd3G1#@?0U+h&%Zs_Y1Vag0;N5k7cqb&{L)?6n7R}u;X}iml(_Nc*
zNO)x_t#Co%1}jta<NZ<lj_2=Nc->6#$i<?%Fps?4^FQz1zvJe%pY~sjI#Azv>i&hT
zrcuw%mBUp{78%s1ubepa3R^ef&oCpeLmzUP`+N>swquL85d=awXw_GZ8B=Z7F{hIQ
zpRWRsyCd|H8%VhLcx6@9J4+sc-Nmno?3TC*MHb|ps<Lt=!#`_D9ndiPX%nzk&h+u!
z#vrBX$~rWwtFDgAh8e9{{BFT9bw&9P0mW=a#8`Xth1Eqn0<@7PxG}h~)3b0O`TW)E
z1Ra{`z<O`5G$zn4a=T!4mL6smO#4J|Jnhk|@O^-`6D6P`8(c>VTt{bE-|4jSGleZk
z_2YEs;_zY45jRDl$p+mk6Sc5C5hPnGj3M}FuF_dVh7ssX>Jr&k96}Uv$c+%B4FL<M
zaSXTt1uCr3%K`UH8d~oL9YuPL?29>?MhN<~$UgVAQT@pNVs3AF;`{b7RgFWucYU47
zB_#W(XMKfVWKKQ?7dxt`ddRoH&l952`V`Z<=7QyKesJaf6>&cXuZMU(eeQaZdvmcY
z??71+MXvR5v0HW+r{nzqWbAg4nKe4!r>K>sxmqr3$#bCXDG1aSv?E^)IrK4hG%hZD
zof3~CSCeDjC1E}~x$9p#0{-5!`s?SnPdFVn1|ULkg^lPj+*kga;V`$C3Zf6rk{;&P
z%(?E7mdlPw?a(#Jv)t{KyxfxZIa0wF(fj7&2~^bmoDjM>xh^1H9o8=gzED~yKYE-(
z<lHs6V0)xGDcctT)2QdxQSa|B`HjR|iHxvxW%gR;aCJuGL>HMaKM+IBV&6PF_@iOJ
z0{D9q!9)CMxjhBJym3p{XPomDg%b&vJzu#OcksCn7Rx4^D{8{mnbYFW59k*@>6m`&
zJ*1)x!*xq7EiB&YzEsy%IcCaa^zv^_<R7G4sXAM#+#!cwXF3m@f&8*KJb3BqNFEiY
z?lrbfnLAOQ&l53O@RPrJO`hLXtIZr5I^jK+x1T;I;DryOeua)n&X=CewXo716MU1_
z7ps?m@a6z_L=n(Pv^F<$0~jO0+KbS#b&uK1*lTF#ZL5)uI_6k2HJ63%3l!y_llw_p
z)Xkq^71@)8N;iLebrs|WUNO)nI1a<<K20i%7Zhd~My!vz0_Z{Fha)L4;y`KJOG+QQ
z>|EA7?d9OoY$YL|!6~hWCaoIoY|1pFJ5rR<hmbAfnU~z>gXb8YoHW8#4%Db%Fqn2t
z&5qp>9<eTS-HjCGW!{{9!j_R)r}n%5`{PitaR2*~NZOU}zn203JABaMK*qi^*ZvP&
CNt>Ji

literal 27086
zcmdpeXIN8N+pdniGJ=XoQz6np0YSPIOh9^(CQ6YG5}FW-4G^TrCV)s&3B5@Tp^k+T
zsx%QoQE5_=VCaN$)($iC`nK<z@0|CXALqwhV>WxQy~@3wazFRl!J6tS2lgJ{yJgFk
z1ITMvw6|>8ir=zjhvM#Ez!mo$<Qnk5t*+WCm$u}!a!i09+pRBNzqn;fLBzh*+dIJT
zJ$J7ex^CHW@ICzB)_Ug*%Pm`MEs$3(>fY-k5747X3%=Bib<g#a%O{7BcW8<EBz5&p
z_0~SNCO((pgz}{Gr8OQ0<7KZ8e2&S*9n>)nb?7a`@fhMnYz>Tr3(9kBOl=0la97-O
zubF8Xa(b$$`V4JBewlq6<|%wZ(QGzc<=w**N4IjXm|XZGCVXl4$@b-^E{@-)@@uO7
zH`ZI?rR_`l2(#Aex-k*C&#fRxn4Pxqq^o4gV07bUcemcMlD&n+Bc?4USq#vQj@K3M
zjr~YX8S}BVZKEprI~xD!HlzA4L{}-@vu#^U9$Y>a9k?=)=iIcxqiy_DtZCySw@9VX
zhIMpHs#t5@ljl=YQ$EbQ*@~bJbmiTNCfZqxY7>ZQa5h;!{EA_Y83kkX!9<ulGH`=T
z!rPiMi|<5mD|oy8parCieeGFPTI|oG{?g)xm0a~~uF+AfzBk^=sd(h^{!E;tWZpoT
zoiMjo#au^(;>ylKH8Y|TrXr%!f7;SeS!CJaSMlc%6PNrAqnkd|k5fv^OU5?h1M{;3
zLs42yI@apfY946pKItp4oScnU5~D`3ZP^}|xYC{8hSd;l+#<=%{18$=e?_~uwf|x|
z-Rq#sWvVDVuv?LDJA!A|sZ`QD{n17!tAw%mZ>I*Hc&F5<1iZA|9a*mt*FnA%!X`GM
z?1P?Dc*)B@5n<xInxCxr^pGw)Dz5GJxA>R1SfL&<N2S%BvYK{1#&!I0%_sS7$Ft?K
z>0yaw7nV`gx2=-SEcqRbb4QF~dV`v--YL$^XnJIMDI(%PoGrM<ieB5rp{Z5k{NquD
zCzVD#DUpRsSfjBWdv8sYG>VDT7;}}ISUm1aM{<Q-sjlTWTTC0een$%_Lv4wwyKx*^
zF7M77?^4?CFPUfO{Bhm6=-JcHVJ&*va>w->L`SpEVF=|Lsh8fP^-FU?G9Bu*vu^TB
z%_GQrIf4odzRnm+JAYc9c^0Rm-HMT+*Z&Y`)XOm{n7eTb<uTM$nlqc$7$I*irGZ?t
z`TT6T^bXZJ#Zbr1HAZ(lL8<LXeB!*t!GX^k<Owf4YFS&U1u1TfYGe}|U%OGA>4*<4
z=UzezWmd)tHr=2TQXKj2N>1;5>8}(YP+9n*^VwW*vM3_eZ_$v_5xvjHuVKG{fOJkw
zMM3!RtVFut$ID3e6J|;->JwMXrDR&p77gstTi#t6+tJ%KB<ohR@Giu5wvXo6J2mqu
zL@yaiA>UR=FYmp{FZ6w1qUqiY>4(rZvTIEX(hIdcnOpoaDk)F@CTVf_EWa)NTO4z`
z<+Z28<ujf=izO_VkGrj4CfIc=NLulZq*rc1-J^-~zRtOhjT0B~{#`v>9)6zgN)`SK
z?Gx+tSEaH+dg$MLDHTgn2jfm6$dpps(9z?_q55;BB5dDz=mTylbMI7+ZDTh$?qnw|
zgDxVMTE4U<8=DPaYZl3r8)lf#YuWf@sqogleu!>EPF1#8-8;5j_@_E>t2L$3H>=QO
zX6}>XET}<%hx<Q%JRj5c_VJ!acsm=!eeM?7y(S+d?3QcmY4K>bcI6HacCJ9Y5^7gT
zDdKeAbt&4-vwE#!e{W2}b7%o^vHrVTRIjEs*M1=lg@g~O0T1@Mjjg(}4(=maSiah3
zc{_RhBQjcD;$ysic-;QDd&c5(HvHu8r~%`X+Q`u-sn?O2J7&MU4`NzA964d29r!gU
zaloUl5-Vd;b04LXK?>NvEqhy()Wf6smJJv}nxy^37w@ImU*TjAf3ywClHgi7mMo6$
zb7j(N^662}LX{8Pr4B`O@DD@Vre|Lwn2yHqy_pp_rIUx-k7{&{Q;BP*_)NZj;b0Wh
z(-U<dys%}$0EKa|O&)I;yKOBjw#DZAofNF@Vs8U|>`A58FHO=y1FlTlX6b`_-v(3l
zZ;kmrmZ7XKc+EiLHjUeYK%WH+v?&4ZT?yP&D<~?DcgWso@vce4Yz+MwjqzHO=995*
zp`+r&vp($zcj~!Z%=yw?!wqDuCC0N!+F}v6#`LAT?waY1^r6MqP*TUk7Ma!pndHxz
zL^l;9h{Zx)<dyE++Suh{o%hlE?Pj0v5+6l1MsuJQb|rh*HI(8AA6gzXV1;C==_Z;*
zOAT*mH0I<};GS^X@c0+C=Hc<pk0IItiRC22)5#^zT1}7t5D}kW3NoAaMUP4{?c?dp
z8%a@#7zw-(wX}OV+49$w0|_UqCnesI@06ILMp;gnSJys&$9JKjXJhpA7M~FCDuIot
ztxJ34jihLVgRSYFUr5#Amyx5Q#{_(TdF+uKKBu(xA=M?yPz&vV|HAp5a4^{af!IBz
znPP>lr$$Kq6MnyJm;Qz*dOfl|jewEwxwvsFNZ$FkHk;U_hH*)^qk)R$CsxxOCosQU
z`OM|i%5q}q+kunikhrAnbCvqu3Cg_5u2c;BkFp)PDjePsS2rH*6};0G#r}?K;~D7Y
z_JzAqNn75&<UP3+f#4Ht%Aa0)`+3~aTZoNbwqx{k#DkNqx1=S|I$HE+d3+bH4D~4V
z@?DrSMf+n2O$uOB2%!e6eKGZ`a>McXiTOA;t6-o0hr2E={c3%8Nz7YEOG3id`<E*@
z@kqt3uWO*BAd};7@lL?95UQ)IZA3%UJ2@A5AN}_H*4&y~H~VvY1N<B*X4*m-p`dYp
zH|c$g*DqK6=RGD;pT>G|Nyi}&2y{nNrc&^@?1!6s4tu&pRArVQI{Ts5!lW>wUJ3Vo
z&#$jAWk`+t-?L8&Y@{{T<Nzz?AYiNH?BV5-vFpp+y}U;ov^)Mh{Bth*8gW-feod#n
zeE3YpNvJY67EH#RtANI9jr%W8BCkD%pm^!2fcMVVd!zQ>TYdkTdbglV?K0Gy1@TDo
z>Ckz%ac!I#gZx!S&2$uHES00NtK*Yo1(kjM<iNeT<4Rur@^8DO;v5kOR#5|g|C!`N
z5B4sUM2K>awT^5@kP~EGzZoPeKH7&hs!i3PtWF3iN^D2SZNrWsFH;Kk9?-4uXs+>1
z@e5<xe-SCxQ6TF*{U-GC*6k(aB7-*5^DXHCFL6p}_SsYxmHMSMC&855YfpIj+1LoC
z&-!;?e!+a}Y<%ZA^e&`q-*yCMe06k^Ph}|nx3%U>U9&kJiN1cz*k?80U8}rPJi6rN
z7mQ!%OgLO>OdUp>^0Kb|Dt;d#FLQV;y!Rn|xHeiG<HibnLhB91Q$u-QJ6ta9)Gtgd
zDLKcMiIsa}K8h{j9vvJ;rzfi#h&J4k<lcWN(4df$fGoK|08cPAFOOEIvlTYmDB!0m
z@~Qsn>n%cJV#Hy#vY;I&Ep!Swmo<q|wbkb<PT_M0eMi<DYYm3vXC4-xO}#6Tc)D@p
zT+L@XZdD0^c*HkqQ5T?UM!U81(&<zjJKOtm*Kze+{R*FX2;4owHe>~ra!8D9yom1P
zvs1U6c?@E#JpwYhGM-ay5jCz0qg5tnuI)xKV|gFH<V7)G(qu;LImsUkJ^mGY1$k*V
z>NW4l?FcRC*M|^4a`#0f<F<>)OV^T7<(`FaYOqxf&0~v6i)~_0p$%7zl}F98Z=o>X
zeIJG7_!t&!m(MEgo6KUK4VpDBnX<CbJg72WQ?oJ6<hk12yuLy!zAdwLL|=opg@a%i
zxcZ)G9oSqBnGG058y8f&e6jAg4&6I=@A~>z>?Z{N6>m}YNc2?f0=pdH9Pg2#aua!}
zHXfG-VL<_=!)tfH;`uMkcV-;sx7C7rwYBTUtiA;6^LATT6_3;F^<(ZmJQjBZF=`^l
zZHC?X3-|hiCPvUQQblvmwnBD?r0T9xXp%-=U8fj6t&t#V?bAGd(jZqRxlR3CmMaU-
zZ<*fe*4NAmUGqK{cdbq67Clpa07cd`oEcqBBZp!49%xgsT252+aB=Z^;3plo2hlRD
z+U8HY$AmC_G#xQ@O|viDCV9r>>aMH$ckyEWd0jjt`v=#<gy&xxcVa{7R|EUDUcF2X
z3)Dqd2C1UbDhX0g)M_AcL$9uch>bHgsPNU>vsL};_PP=uj~d#%(aLykYamWxW%J!N
z5~l1V9AS#|;z*IV57jsnheo7|oDg|<2&+r4v3n}!Mi?|Kl{UxMT-q^RnLn#c;Wk%V
zD9ki!FODxCcq^A^P$Kh*(tt6Y{}O(6!!C8f_&inH9nZG-^oj#&;C5AcjV_&a|H3z(
z4Y4Py8;Cj9&~?tWdcM^~D4)Gyv5?_|Xk#t$H5;oXTd{7T-_bAK*Akdq=}|{Z<S)ca
z^&dT@Iv#dPe;+^FDfcIkuj6(45iHM3QG>yP9x>)pfsKQ^NZy0YRU(-=6G~mJ)a<oy
zltvc?Z}<9deysjP{IN|BnbaiA^oE*?JJS74Q*W{~{dEiz&N97%?3?t+!sjAl{*#HW
zamUS~`cJEJW5smTgVCyyFp}=ApdhV6rgoF{RZ_%2fuf48Rau}=^Bzay1=Ys2vhX}h
zH<fPb0<OM!c6}tCGu`wCi)P2rp@Yla&5GXrTJgu9LRzt>mIo!Zi61%lDJd2s_6$Rh
z7R%~iT6SSCZApBi+_@W-wNEadoE^#D9TOVI9_&E5o+FYO7BV*!6Z#@4#3aZC34)|>
zsrp<~`fD|svItZBJ}0~lR>K*8WP(Km*EvvRI62h)5(+uI5`NXxF=b9!&ar?Zb=m(A
zJ>MmsCX|Vf4dRIH!n*mn7$6<#z9w3Sg#=vtEl*>McUIl(7^=Qoai?12Ru?)og;lY$
zFR}Z8k2j~nw%EIi-zzIBZjTH+P<Q{uz&F^x-X}JH>i9}2n@sS=jk&Z-q^6Uu{RODW
zAfv<(ExvD6wsDFc!jnsPt9auK5g5P4z}HI@IQU=YlCE7W+Y_wQF*(TcL_@Jw;lb`b
z1|4XM7{OxQQE@|8X)#vbd-~T{Bm@F<^g1Jd@r=WH4`ln?c61D5Vv4(pKx`1ajgv65
zebwCWw;rjK)vi0`1zLAUh>Wv^q-P%?JfW>!u8G|D4M#rHB-y+qaX8iDWSi#d{JQm`
zh~Jyy$_BRs!03xlcG*adytr*E*X(eQ%d^)68h1&S^B<!OR5W-0isfBTsF=6bqK#Jd
zoIeaK8ZcG=+J^lLQ^&A@mgUjdc*wNI<$AS(sp1_hvQ3yYBw2HJLUlP!##;Cy5suZ4
ziE%G2qbEF*M@Q7<<t<X$>ZuI{-o6{I=$=zv)8t&^{*oszN3end_zN*Xb`86@mXrzG
z#)9_MD3qEjde1#6ihVgU$1mW?E9XA;p|tI00Kr8e%6ei+i|hPFO|&<5_1kn~4d=as
z19f!Eq*{yFex1aZBa-}HqbsT8prPN+CDE<{JAL_7)w`6j+g$Z^EbsTAURzq4(PQaJ
zgKpQ+-9}A?{dT(JX?Mg`lDaRuLN6`#qp@B$-pjuT48-MH7Cp1yDABbE-Dy?rR5D4x
zURZ8_SCO5aoj}}<kjNZKl=Jl9_EI{41xBaYBnykRKHaqKqD<5t)E#YNlYv;3*O!1U
zAsGXQ@<bONYL%cHq5RAd{YFc?Pe8Cl+{+Qm=>EdBZ>=oZ7Wr+B^|;h1Swte2XRU76
zl)3d(@7A++UXy*0_{)<_O`~e3`DHS5`fWlWmaK?_Tu7p{<6JL$>RX%R-t@Buw%d-E
z$oryDM1v~E+Y3dOmuW;m1xQ&rBGV(kmkJf-^Ex6QLTp^Il^$!8pT0F^Qe3Rfh>S=h
z9NLa3%Ea|gs5)6hQF__ql^j<Kij2Bw&uW~UkoIf+%MzOd#+i^SEstkb+$`*ToO49=
zrd)x9Wo9pHNoD8p>qHLxs@w-(J}`DYBr%q?tqS-hpXg`QLEs>XGY!}6kGAZnuD^a6
z0`5~e&0}^&MP=}6aY0YMqOUTgk0_(2DL#wpqoTjgefsvaOsZ~WnL-swJm1LKv<Iag
z42j=8ExoJn?1of%SoRTtE9iXmL#Q*wQcilZC;Y{%ZCRv|hiYE9{4F10PDi82?TB<u
zWD`LkUsABP5k&Z7te9jhRV>ZU+`6gNdHqY(#$qN@O;jlcYI*?C1366k#8{sVRd|A2
z;^jz};Dk}HjikPM@*8fVqiE{*+n!~Oh^F?XT9tI|`SVU*=C3*U32!?d?P5A_u?N-q
z7|Lu}UB;j#OIwFVG{N42!vZi$5E6iYfp7r)3k4X9e|0%LhOTahGw9nD!fpfZY7K#C
z50p%E8+yV}su*195wp~9*}gAF!WU_^`qeK$YcegU##r%D_Bh&u*j-pxjc+HDSOlbz
zktCmnvm@%)z&ms@aFQoMs2Ed$`7-bXQLh<}<Irf;1FJBhMFT`evd9`W*=JQGlwFk=
zi9NlXsN`Ea5dvC1fKv2Xy8CuDL3H7>+?SxHS`enS-T==z2nk3OjSfF;Bd>_&g;kAY
zG!|G<*b!RdB-CJ~p%{ms{mwnJN^3sih<g3-GkhXokAZD;rxhZcU;f%aFz>W8Ow4+2
z@yYQ#6+{twZ9jz3AZWsdJ~ip*GssiZ57B;g+c0c0VX^1pm3@1Ubvg1=9m=YzURV+j
zjh#Y)4&;E)<<>L4ZncglCbh@+q};!MaUgKEb+F)&afxpX$8DL`1UwjdoUV4Bf716I
zkca9=aay~&d-+!<`*vH~F|vVS^`z{vk1bBwpF$AxoN^@LPbCI2O%?Wi`QkKnIRnxI
zqKTqFecbF(FsdjNmz?1`fZuhu^Wv4!<1<~gt;V?)2|f1?56EvFVBNW&d||q>vd9mk
zL&j?!#}QEMS2}0zb|rFRh=*c^o4uYw{Bb4+^{I{ROF<E$RQUo~^OjiF(cWGbvQyB!
zox8%3vyQD@cM=`rJ{=BAEN{mw4%#OYQoeji!;jvt9rlwY$a}{!x<Xj3*S;KHcVjZ;
zk;=%)K9)rM9xd^YT)OPhlPiw^1t~mf>P#&e;PM<Vk?q|2wB8u~c$BS@F&RWFa*foW
zysrOHrGmFHZFaPAik__MJ$YIi;U6z*MwQV@5pI{7D(3cO8M@hKWIv+5@(wBUj#bo`
z$QS^zzY60y^levEe3grAsS&;PsE8fM8-)~RYxC)@u#OnFLHwFg?={bO(Ug^gYK&*m
z2{OIF-b%2IXQ3@#4}EcZ)ZHOl*{D`5PUTP>%TQOF@|~Pnut?vRFR5B}u)2_w8g?4<
z6~|#L^Ug#s98B6*lXCP|;4SXVu!j)4NU5=+H>-cM4FrGrF*ZVb?Gt&h{j|$QaqVcp
z{Jgum1Po0T3agOx<&jofi~MgLeEsIk2rV=Uo#IE1N}+BYJr=|>dhZkaIdu^j{=q&t
zKqkhITpcUYM(-cJb_wj!k;7weAMK)vL^84Z$r1BK)Ln@#QS7M3vsfPD#AC24N(k=R
zqC;{w0S~%w?OupOGNOJmLq@DV3`2o8EXwkZeqKOcs&I0?$=Z5Na@0neWBtgDA8v*K
z;)TnR&U%e;CpJbkVHf)l7+Ni0|KRk19|>m=AfLGMUtNZ8fX#`e1lB?F_&F%Cq3X33
zGXjZ5H6{w|ca1b=vq~-H_EAl;1=ELQ*3))!t2=PENE_tgTY=TNh}_F~VF37}CUlAM
z+E>69Vbu!NQmojPku{c|8+&qN5PCu}jP3|VXMf`0?0@kbHLO`^AEz_lznd;$;2>zs
zf8=;l#7YF?rqUMyCOi8eLWpR}lirNh1D}lMZszG^RJA`tO_EgLm&D~jr597k)(Pe`
zWghPBV2qIF;CbCxiQB^SLw=rPLH?`pudu}=og<yL)ypbV328AkZP~)Q0>zlZ0TEqa
z)WJDsjE3MHhsE9+0WV~(O}X)`XSZqB!>Xlc`soYwokQxT%tgn+2#Fa`$O+TnzT}yM
z;V3!vsjx=0weQBImhe`ZRN2=mqpOooVr_;4U3fwp(|oAkou_R5yGc-E#KRhA`cTBP
zun%+J>9%iDcu|nUeA&5ul}XMS`s;aa_<?a_L(`TT&h!C;5I<xnq!qtcQYlDFT-|!3
zy;JHK!2n*A^634X#-Z9B`2Kuc4G#w$`p)Iql~(uK@;h}3Q-2L{c@duek1-r+B5dtv
z=2`|Hw}xGjT0Gqu<F@1~P4YB`dfBnO60a?n%5WZG;o?th#i%AZowmmFm3^mI5ab#`
zv4TaA$@HhKq5_!|4~mN#>P3U-RuAdSv&~E$pcAQ`W7(iLs)Z^qI#n&>WcA7}ujhv(
zZ6P^jtSt9U>%IKg$8B$nBNN>`o8AUbgC6;rjXsennxX8QC#$SK1cTr;Mrr#*umdP+
zgI@rjU<1J}8ekj74+E$S<k)H!I*3NcENI4MTpryfWR`FN{E;Xi;5GB*tuFwkk^|hD
z76Lg2r@)$U8=KhO4%&vB`uCR^?`7-@_#P=^Vpv#M=eQs`o=s55J;m<;=n-!^u3z?c
zLFI|X;n(6?&Rq8%$fdvHMH(R~V#KvSdkpWU-?tVR#~##a?X>p7P<i<E#2o&(eB)ei
zCmn3Fp1nvDO^`SMkAOe!03trXWL$+1Vg=II%{dU)C4N|h_o|vYF?ZHo2BDnUIFG@M
zMWm@C<KH-K;K>GeiLJn~Wj%j29J&xuJ|*-hBK1;A(Hs37W&Vkr&cU22)sQ4bHF&RP
z&5EV6qfdusC-FNVBcW2A5_9CT?OkL7bTHEN?vcK(Q4hQ<+N2}(<6s)SdZ9_WiVxn*
zD=igI@gr)V3)fyJ>`&=>T9Ln6{D#&QG=$VK7C$e3OjiHcD_pX!SMIFA5N(MI|BKVO
z@B36`Fr-jbr`9sdid<`f>x3`RF+^_6%>}z^RsYw~x^e@Qh>ni~@Ll|I`{FIyjqeUZ
ziX`aJz`{D#Vanv}{363j#2rOg)bsl$&V6(t&NyMxtJnsH7d(H<#hN^X`=+U#+`1s!
zw8HFP-`_x*321c@`pqlR#c{2nm)-rH0%y-oU}d0QJ@KmOa4&X-i4(}hHj@~bP_s_`
zCXQrWJj?*bKiVjXl#!JcZ!fRR;^LsjE1ZJdOW&sVf;*AwNFv~_sZrA-?I|k%F|;9<
zwcmJEs)=J~W3%B#We^0{<DTl5VZg%S8?bqsM*F9JiXX5#F4EKh>;^NoIb^eD!)$;C
zjE9l_%NGG0jB#O`oxdFfLxzG+JNNsoCb}Aznqi}EW4&D#qgfSicul^iGB#RVR;7OB
zN$YoIlfmy|+yrb{(meehsV20dYxnDEkX3{Z$LtMjeP>kA7Xck2!CTUB!o@i;ze(UM
zN-uAS<kfJ^Ac9nyqc1F=bU+j&pRaPKO!JI%^vI%ZdcVx<z;=~dY)J0V1Us6!4k7m#
zpuADzk?QN{xhTPW_w`BR!J>My+1tTgR5HW7J59pi8Fvd))lxOb&b1kmvX{FqGZ15i
z(94>uF2&>8N-eM8IpKK$=@y%u^28J_C|otrlO#uOS#m*I$AdQZioRy-#!L-sOrn)<
zaE*o2h~v_w@v<Was#?pO*Z9*0$myf9t^f(*6~9{_fqxAPumbRQ-n2=?uNF!Xm^f<_
zYk~3BWOzP^0?5K+j3@sm{uOKi*zj!nVCWYFx1!IzWJ^9;HwH8XB|xA!Iy#!#(ZMCi
z;-2C2<!O=7UquHRcB=XctoU%-Vqu;L7)HEPsJ_8-`v_YPP3N64a8S<4<hRXt5IE8%
z1V$BCSXpszN(`Sk@Y7}=4v$V(TvhMjz87C)RDct0))US)SCmpmq+e2or%Y{qqVrF)
zvbxPV{xfjJU4~p4^<e<C-(8XiWX)oA%&}P}HTbESZ)pd_1rwb(&!v}qo)E^kl~36S
z#R6EpC^0WdhhDqp+LW4gI5h{>7~mc4H}G^G&+BGF$G`%g5tRupbay3aRgk2VoqCLG
zMb(fcivve<)1j<DqwxW@MmK+4UT;BRmBFh=S&SL2zgeo8sP5_JDQA#N;0@r<)MA&$
zbXpm3ug%ruujn{lZ|QG|N5X-EL@JK&<uP2CmUp5}I>6cktA)<tP2+S3Q6X~CI_C}U
z&;(6V+nBKjElZ;vJj>(HIX>6W>0tXcR7*Qih+2GMmsVkwue(VHiG_gyfh9`VfbN_r
zbC>D&>&Ep0nI3Inm22Y<uyc3rbmb|)Ta#GKk7UF_I0oW3J>SpR0}TOq^wvO6M|Uhw
zYsF<qGgaOP)5@$z1E$9;K?cDs4}8=7iq$4oc%T0DnC|xo5RUsc{UrRTfF>yClNE{T
zpL%*=rvU;ymAs$)ZMu3g+$Ev_@OFe6*zACxj3zcQ{PPf4GJFQ?x?NqSo+~$r(-=!q
zl!qgm7CmGC^(|$uYwev6FE|m2M{+Lg7(4{;VM`+tBxMcUlIip88~U|A4jib19jlBf
zh->7+JDR7+N^4qsJ>imu!8%syk|ApS?#5)z8l{<OV@cYU;x?6#X?jOP!IRT*RQpxC
zVUd2$LW<>59b?y~sUlUR@twIIc*olQJba_cbI6WL8oVZkC>bnY>zum?8`<wJm|O0$
z1MLH3laethnakL&3~~xEORpAh@iSKJx{$$z0yXxOIobBUezzx(;yh#N)T5w*n3tNV
z#k)99nG$SNLC7JIV_DHTkON3xJCy9@u(PNv*U`kIHmha0qKob(;=Zg}uqDKH$qiJi
zJ}lo?Wjl2q(M=&l;y3zT!z&bsQG-*>jE?_2r~l-sn0*=VR~97PxcRJ&D>~SF_P2fT
zM%O|}OG&l*EeH6_WaQ{pX~CBBKVzT_3=Hgf<qVCDH=7h#+%Dc+3o0I&YF!JDoLw|d
zV0n>3{{|nwhjR=UHewSEM?wdI>4Vhx0X=0TBBa@JNpv37M=Hosb{7>|2e(5GcmxYi
z+Bo|>fzJ_P923ci?1Q00*++09(^7nlDLS2l>*Mx}cL2eYo*KPoV3cB4VovmZwc2Z1
zZ_4GvGi3aoXG>(Z0O{<34XA95YCUe@=gGjW;^}f#z`uFEDZCyUq~7F_UJ=kL>u4@Z
z`J8`%%1X*EG0PUEx@weX1Ac9V{qsE~IqumChQD=-1vP|RFGO1LMxRr7KvkptC)-Q4
zRaY{%_$w@YFmCZP^F@x-(R-Jl55XRaH)G_}a(M!Citgx2RmZnTq~Js{-NT118>;pU
z))lwZ@Nv{$c8y>?m<GajMixb651M4eYpcU7!Nmyr2{9DXS7%U_BecJJ#Yt7U%00Jz
zj?Vsh>8>O4j<Y7j8z0TyQbS*hZKIZ-;(O0O|BWI9v^<&Il%?$Lb%-F%!o@P&&NvCw
zcfriCZGlwelCWkOM5&|eh|@gbS&c&#y7pJwe)H>ts>aJWFH}tFh8+xd3X=8-uPEaC
zx@K>M{9H%Z6`y3>Es-;Fqe)tH(}4ZW3c$AHrwnh?ve9scNs>>Y#~;$#ZMv>`pf}ci
z!R%kUW&(rvzbjvDQoo?41x(?eHLZWa2meFq>*0S{6Z`w;|F1O+8?WsMWFvNUWh$RN
ztgdl_1(c_)Tr<_oT^(w%+uWBYQ+F|O-K}HBCZG|u^*|2Aac+D_X)YdA>S;hgwbZUM
zbkBR-LRSqgjG<o+%Fn!eo4N+%R+vSK%OH469pT)S9~@EBzbH9#z!X%lmbMNL1MQOh
zpTsqxpy1^72F_XM_x(2}LA|!f?OTRqv&;hqp*b#^Flgj+XrS(f($Jd11L!E?A`#?R
zo5W~s39^_!b*cqsMM<c<{Cu$&`_$UiG8RPq?k-YH)hz&(t50isIzD)QrbzN~RKBrD
zw()$zf==gd!{=$R<V#FMtnrPQwfIG%nxH`PAfoe{%Vlwc_CtryvUkhO=SP=cupO~g
z2X2IjbTCn@qOqyF3l$nRT+P)Klyu-854oOgo@M}3$P0hczav0}hCgbi?s{1~u*Rh1
zlhd7Y|7+wUSahZg{GL66%Nv!x3lr~Z6Z!P(Z;}+{W}7zFE}?u2;zLTz1?+aD?&-B?
zxh~4~@tLz1`ZNnRL08{NGF3!|;7zMylE{Q>RKc0y25Gq?6@xJ0%tsnd(ln;EY)dy=
z9;p>xC?nr2wX!`T@epYYlEq=@{Z%Imo<*B$^V8Rt?ptj6c-XT%nKVB@JNpQb>z1dZ
zD_zH1DLmBlMRO!c@jzqil`yu-6~3xOO3%XDl3U5UI54?Us78F~fmxgKntK+r;}u!*
z#bFb3Z#(aO9Z}gw&CAP!``L_xm<dOI#iNERq(OiwE{^uh2la&NdWBbl9DY+{Ewbrn
zFB10)+4j1gXWh6vWA>{f^Wqt$(!wi%?6w?>#x@+N9+5IDlN!t<*IMjDHz8VY1M>PM
zPHnhhHn-GwL2#4P&dbep`2|c1GlC@JPcSm-<B{$SB)pp9<MvmrJ2jdaQhW*^=M@Ce
z7pdHGhB4#D#O|?<6R7x$#vbct{`8=p<drWQ>R&}fM#`@dmbz{zz5}HoqOE=*r<Z<~
zkBG|gE4CQgd<|JfKxMd|>Kj?g8C9{~0P6P9icIAv`DIv8X;RK@L&eekE|HfnZl>^z
zB<QcQ+3Kf&rtcY*lUSwH*rXgc*IanA9u@xF2OmAl0(iN`Xe`yL(epEtC^?q;rlxRl
z7dqa>X|TPm<@4wb;-M%yuAxVA^cXq@xF0Z1bV`3`w+=dji4r9FO+;zrSYzZ!-Fx6;
zby9Kt$(Jbn>&ic@&q&8WJOcGm6@DO>0(F9pNtqu3%TKE`UXzZghNpAr8DYT_V6yw~
zJ(nxicwKtbOy2XWq_r?0sY|1=e4@><suI_puT9hLoRt3R8R>O~aO-{)Oas41H97|J
z`715_Gl6}*&pd8#l>N^0w!jM(W#MK|(3XiPEkQ})Y^}uEb=fC27q>ntKQNkj0FO6_
z5|()fm{DhND*$<}$1u|_e+48D`iMPm=r6zQbZ2js!_+G~bT1eJ^7g#zAQ=1|ZKRi4
zn0%Xkp@n};WQ0dn=K)XSr|PN_&NYoRy`H!Coji<7^o292pL_2V<W)5q4w`oQMMrw}
z5&90Qy&T!y<T6%y6^T_7tx-U$hSy1Ohh9W3-%RwewS4_P@@uYqP`aqcpdIIMWnIem
zu|40b&)l-vWj+pMa-?{>nt+ZIEqZ+?UIYfEP^LethQHykZZ!sWVnkb(o?bsBv$)7@
z((h&N{y|pzrjJvPCtu&d!Kv;^Z$b0Egv=IMl6bDbaXI&tMM_nVtgFh~x7VGU05ffb
ze%w^Qf3qRl+aDX)l(R7_-@ioeDMgg*v@pSFI_hRkF-f^w6lHi;RrPpa`V)I5)piM|
ziGc7hj-0dBQ@7FQFXG(KRVA`)xcr&79>J65bV`qgpP<brv7BpUb}Uk-w@d#Z&*zjV
zQ*dGlmL?!+5Pu&x$ARxG=<f3@wb2^BPiBig&tj48ge}F*R+D=gmCH$PY~7x>I#|`k
z;lwHKEAQPZOZJ?YPha)!ypHx7pE;}IZf-=?3Bq&Bnchn^oOGXwCf{?G{IQRZa1(w3
z2{}?BU1aRDxD))Krz8}uC{Qdzs4gH@QNLWq_v_+z*eknyU5EP3;4Eft_oCqV%~1eK
zoaa+$d~l{8CP+GX<S$2B^TTo1Ad);=HqP3#QI5H~-ZWbV=L>s?6dg0-pF}b<^D>2y
zu!m-La0i2A`%7H%?|BEzJcAbFun-fsVx>kQ3*i7Kh_I3B#QFJo8V%}y_Yb5CaXS|m
zGOS>v&JEpzV8m|!6bx?$9&tC~;DjT}kN5@zm?ElK`ofGPOIHx6LuAX&osF)0W!WR1
zK1n#VV4e3_w-mS<dG2{`#!U_&Io@B4a6MwGe5gn(kv*s6dzDGLCMM-%bQd0^&`3>j
zLxkfaWm4PuTA<@l+zrRtuMWpJ<J-1BKx6v~`tSL+(P9#ZI8ew61--M0WAXmQt+sZ{
z^vcFd(U&UtNCTI;(?>1<MipmX=aIY?55;zcq*a{rHyF4o^7$!~t-D=~^9;EQaW)$!
zuUtk-z8#QZsnc^MC9~O>6bfn4Sq9%~+1A@uX&F*-sAd_x?S_Lpr7I1xuW|lhcI-dn
z^jNDGOXXa1R3PVj8*49X%`7@@&<_<xKIigPI^Y3jt`Nv6a_P<Oeb9sd5zmaOL-1h#
z3e~KJhobCMl_mH47D>Ny<%w*mA{HY!*ZW%*24XB1b|Q$O{A`M%nWiZz`_22B<XETN
z`t%j@ON0H8^!!HEX$AboalAkc^z~81qfk|SJw&3JiCzb(;kQ^8cuEcnv7z<6un;BZ
ziF3HIVaAIocX>Fo&HxIy9Ergx#8-)FeM`Q90rcHda@xdaLk2SDt-_V`OTP5TniBwH
z#2D!C5XkQzLYoKzQ^Fu&z*2(sg&7`ZEF8BYk7G@Q#Tu+58n1v7`VMd#lmW4`v!}P|
zjXYAZN_FbWhx;=En6UkDa`<N^&Dac^3Gu(Z4DQ)1xxjo9@&ROTZ@-B2D6FoAV}D3T
zTM-SS#6OtF^X@A!4-S~ef6X)h9C52%X22f|29(oZTQU>_*R{kAa!Z7pvUxqXF*0o_
ztiw@sBKN3ZOm{{r1Nc{nnh2I5n7R-T{`WLcIktGu)Pg_BZ%6EOf{;{h2%BuH%|=E=
zwfNEvK}p$t_O*78p;lRPOJ4=<`^5Xh;AJ@3jkyU1gf$MA;;tb{nSe%Gl`P{`M+P;B
zmhE+%L{}Jd%7{*A+c<ann$bt&2U*~3<k5T?zO`o*dn{G3hf0>Md|t@qdDrrcTh5tF
zNTp1g(RhCK=nn;_9sRBJKvkG)Iu_fX;6n5;Zqt5&ev3GZG7_np?)HgYzao_BQ9i((
z`l<rHOH-Uxs{S?pOC`d$6v0zYUK8m3L@=MEGHO%eBB;7>trgjcSHsZPfdzGpM0q`#
zdf!-pu${p&;uI6f?lJR-^>C1<f8Ccjtbc!2cDQdPvPgRJF-A7;0BmE6vMs%ZIA^68
zE1+W}5Qk@wGI6b_S}TZg@n?z$PKDLtp+G`e?vh}1aG&1{s1g1SG->C-oXF`Bpp^lS
z0YVsg^btG)U^f2>!WejjQLt%oVVXz#rDaO{m!@{M#x?pP2m}DXgVs1f+4C6Oh2j4z
zIeS{{?_467NFmhNlzw)SstJ)1nmn*OiU$3(+>7o1JIZgr5W!0hX01-Y@L!n=OxQD=
z#kbcO>@P5Iy+PB;`B+k`Q?H+vdZ5;1?SR3$OMRmbw;!J=s_*ec;?Ni7^dgh9m%DZ7
z?Rx`$uWbNQ=Yt2lQHP=UOq`=(?hS3f<0j1MxXZ>p6(%KVS$(ES+1tPD<Ii-gU$@=+
zlCi&gPv&SP>cIEq{#ma`QgGVXyP$Z_IS8Itv`#&O<fxEtZxUj}oPzUj?Yr5M&IRvm
zqOee=cIskD)$gETtYZ2_;^(s{Gd=}36Y)yYpsjOVgsLn_w;rK$_Yi_%4}4`wQ^HfK
ztDLSp&hJ@e>vL_syVv<nshlM{DT(yN!R5YQy`T5)Kl6a#O`vCm>5#l_3||Y}m9m_?
zyieCW3QJ2tK^icDkfkW2JO5pE>u216CO6F-qo`XH-T(RXdHN_TdfN^`AwB0V*!BVD
zPvODQrhRB7Q9+jZu?MUmhCo5M=#k9;;tv*lll=o2gO~HArR6A$h^NN&uv!!BVt{0K
zgd_DuK>z*S9tO{aq<B8*Vv7w*u_5C};Pp?1jK`<Ys8H?bsYMSiajCD{oL%*WV!8rg
zCa1Z+E^|b;;RzUKAkn_|-?PkjWW9zLhN%gpzwy?UGjCxOS$E0}$l9sf7jzmfe0S?<
z*B3o<Jn<Z`QW}V><3{ZcHMoK22mJG$NT1f77gZ=Ps`bx+mAh?%X11CdL#F_)Fcffw
zA*L`_SRrDhfzUfp(pn*bomjtST4Z5`$-lHq4-9<|D!j_!m24vAJH;c<$Q8L)OFKo%
zX(6pCPjO|!-)ug;@5Kv3ymS<7+wY)|8W+x9V^E0dwfqy?nx@kkT)Cz=56Z*%Ve5_C
zNS=;STU;rl^a)fiy%aZT`@S>DX*h`!$5L>z27|T_4!*X;&?n1qcs|DB>&y(WS7d&#
z;LWJ`7+)H$qfJg?_oBCL6PRde&M<{52@fG#t-k^_u#SxJT!iDWLV~VQ-({=U2cwx1
zWPRZ!1_e;dO@?@cTWZr#@w)yWlFsqDBXxCk6Rt-HE&HRR%e87?U;`IONhk%RCf#L|
z_x>%h6L4I)yo<2_f(!sNItoJ7&H6559)dFe?{d!nBG6NFO*bA_Ba34u2|pDxxDoHA
z;ngmT?Fo?{Q9EYP;^=?cl;d+bA<?O%!cl0<qe^e=9aa}Jw4m%QkU9T}oSeo4G)8{}
zXT>E5(tpK71BiAu9?=x;tmCgzFP4(#e2vpkU@UVd&JvH{*A*aN47z3@+6OE<-~=`y
z6dn2kYSpv|g(gkB(svwJ5}k0+<cw7tx(er}+Y$5Xcq;Uga>=<*RvlS_aT*~jEhY>*
zY0z+sjPlqY@zPHP$e$5)g`4qy&=hP-XL9oM<L|^-@>^%6gM|Y21QG_R3GiM21GK<M
z+>D_9@M2hATYb3pF(&T$tU<dqQ3>{lkPal5?lLa<M-;~}M}I_de<%u6@)*zneS<77
z{mo-#8gvYX!zFjaAFQBzmK7p#$IdDYWwa^S3ibY8v<Dio8@VSOZ{uYcV-vrP=w2@)
zSvJ9?u)YnlsHZ{p5mm~*(Kd=Kh4zJgdGHeV)+Z*{d&6y)Vn2}m|Hc{5oozRTvOkqS
zigq-YcQY!L8xV2(WXsa&Qt#(@ujcd3+%+S2uVhSzX$#%<<Irz^V~=0rDsZ|sHZ4MD
zQ`dStT!p9gZWgJt2vQKJ9ZORMe1moi^hwoI(t~ZS^{W)dVxEg%bsY*9v(W2U6pcg$
zP6y{-7xbt6c=r~&e{BF>kW)l<Jh%UNe+-#*)bd#B&3@m}04DvUl^MCeMm9?`b&mpE
zD`<U&ek&XK6}7+>+jYWKd5<Zg#O1dcg+0kT_8N2y-1A2%ufsj!&Ez1=Y=FaY=D!z<
z?ZQdY*ZVb$3l}-?+iW}&v)bRblV<|kTs#+eEB$kY_mJ)-qm<Ve&*~t5NFVkc{^xjo
zJK`T>DMl$9#mvk}_v)|rs&kJ4`exYG{L0J<;Q1HT#V~0L@bi~WSHQOcRR8m_i+}e#
zqhav@)L@N&jed3_5JO+FiVMjH)NexpI1SPY&Sk-RPIUrAld17uLo*Zz)_*%w`|{fq
z&<)2}l+YXKs%b9eMqW!ZC&xuD5+`(FU1c3D(o<<;97rp3(>)cH4`}6+=|3KN&4AO8
z3FSbLdY#BVZx2q9E}f5A8L%b*rr5#3;qE5k7tj!Kbnq(v>?fdx9s4k01<s}dIp*MU
zrvW(MbJuaYq-5zEVPCpT5RlgzBW<UJMa0(KdhnfBL*b}UX{3ok*amJ$n&FM+`}vKJ
z{R30{ZFHY=>`k<-jUgN?#^>U$$KzE?%x&F3iYEm%6$mVYqqlM%h0V5r6U|2T9YDIC
zJ#W!z_9%Pk_#OL;hzjEdJ^QMcYLSrkuFweTKt=uU<SBgUXXKuVDvFryIVPwte_LSE
zMYXDWgRn2QdIX4;<B*7a)0*;<B{Vm7w_3?-LmM~QO4(D@XRpxnoty_UGOCtZrMmN~
zXz#Q!^j2eCx|X<|bYBy>`=NrHr%s;~kar#mEEBmhT|@oVYf5Q@I6U?P(Q5e+iqfNT
zE0zoUAH$H%6lb%2H$EmqS-aa&eI3gc?^iw*=j9FfQbI9VO}@_Qj&IpgbkFTK=tymx
zcopQ(NV?OYXm9+cXKtr;%EC}hn-lSVpieAAl8q}wrwE|b^OAh1?-iqUy<eVnL}FS%
zO$=@C2PK@oA@D{Xgcp3Ds@DrkXKy<azbGzlv|aGru&CeKXm$GTZj^edh!=(Gw~^{r
zUVpRA|K3=t>4tp{sytV)N+eBSB3T(PeWb%NV$x-?KkQ=keu`@)bekRloIpC-ghuOD
z1=6P5{iv)aM>lg46cHfCodSj1S7GPKv$rnq{o#rN8eFI4=WjQs9}v`merF3}p>>K~
z8Dy$yUN`UK+&;13(Pys^9oiSRwH|SKL1rxZLD?FU9+2bn;`N6&7p14ChqXy1P*Z#2
z^>Hub7|~OcmIZWXeC%=YddC3wJM)fprqwLv?1jFb<%9?s$}`_^XW<}<KMtZ%pRL+|
z*nB+-NTio)2l<v;=O0h1aQj-cn>_OmI}hvM^@t@UCClhNt*3RVoZf4FVc7|FKr^3%
zTRY0C-ZWtUtK+nlnTFrHFJrdgaz4%{G$L0RuCxH<H}sUq+T3=pd>dR4=|HEsH1ZuC
ztt<F06$54aAB=s99#&Vs^$^l|jT@C`RpYvJf~7FCqQ~-6n*E5&LDl+*#`|K{Vi$>-
z+TbABovTibLi&w*ezXS~Coj8FHzX4k8*_R6H<s;HTHe!a&Tz@7YNG9;9hh`NqR}Va
zz&VNhPn<vw?rETkT$`ovpe2+1sFvOy$SfekcB%lGAzV?Cv1QnaYWaIJU;ON7@ojlP
z>&qQ5yV!a7P63dF7ekqiq*>`vo7H>uR}b#kWGMbC9r#c3@R2u>VyuG%SCypQZm$c~
z=5^3HBTYs=0x*NV5{(sO1xKG_)GQVw7e`;&!a~n(4PpT#w%+6t<y=DBaUD>#nR+zk
zwHN&v-%5Oy#!8hh$M&DR8vcp{sjdtEQCqt@z_;Anu6~s?QMpTd%!z|fMLV2tTo9;X
z!D)-N57Hq@+se+yaA?2@94JSmV)z}oP2xXTw2PW7LlQ7KPC_+awmsV1X8k55G5eEI
z%O$6G)KhI^BY|Y#a(eZ(SNg=ip1BQ;fjW|vdzN{)A^vM+6D*2}{mn9*<F>jH=m@Op
zzG5uQ9hY+$9B3~*-YrATfAr+&;WHT|&B5Ng7|b~$#3THtD7!J>BRYDBH>^P~C-ThR
z-9RROo;uCRUZ6*^{+sL?i5UHb7JQS_7QbDDhnuXM&Q2*kniz9u&@Xy4JMYoff$35^
zkhKmK6t$R}Vxo&GE7H~kd8oy%C7jPM{9QBI?zF1N;DaiGcp67i`Dd?e_t4qn5wGL<
zUee#)f5rJEG1l{wvvbzkQPd+z1KUS7$GO7Gi!8+c<octU(yiC$K#E=chMvU{bI873
zG6__tf<5r>y-UiILY_-m+ZDBzs@aFssSkXw!ca?E`?c=g?IfXp`&JOc@fDP@ewTo&
zESGYG6?E|h9lhB%yB6F^dd$ye!;}?<a$kF!=Hzg6J`cax=M+&fYm_(v<l`bT@9Oo{
zHko$xFlA$z+rM(DU&UbLe&`KMxbStF_{%4m@z<hP9m{>H#;=4GULoal`psSU!6?}0
zM#@b9V*A)`m^ml-4fjzM<G-AHq+YLYKh*pBYS^|?Yu#^Zp^4>MeNZdC)J%wd!l~0r
zcjy7q?7V==jc^G*c2HM2&11GNQY=VqPWHLf4UydU+09pkW?R2ngin4b9!x*ztmIKX
zgDUEp`XWU7F=+FRRh>2uIB=rF_-7)m&C@@EYNC-b^11QQm?Tg-G~Wd@jOTAl$ABrJ
zA5|*DEQ+SH!NnUM*L@o+6Gcy?9(cuz@YS5J+XD;5mm5UxwXoE|pRlmE5SB?&<qN0r
za)8zag5|TUCYIWfeoWS-DELeS*L@Jf%IHPvNBBfi-Ukf99`&}<cPPc+{Avsb(kK!@
zxiiifKdIXE6wS^~P}$b@8{2n7Y4m&<hxG90NN~b8fpOqMQBA;e1tNXMwxpsP#cOV?
zFRt;8)MP#-@J8K|hrmGz$N}w<yn<@ozAP5>3kYzaXVdZpg4PdLV=q4drXP-&H#y0_
z8m9kF;-jDs(O8W3^Cm0kRf3#99OlD9S?<LQnYIH%;%){O1S>v9ApdVt2eq94=Q{Ac
zO?Z;^!wWJf@(m}40c)q;<(B`96r4@vrqJLsiQ6XU@N01o>JSyoB}!j8IifuhKCwrS
zwyvxPyx>e6b-eo?Qxej3NUXi?z_9YM=<Caa?L(hB*R$}5Xzm^ULkl(BC)tB1+7~--
z!DMLs#~2?_SFi!+AlsyMh5QZ5NtD^#oV>B2@J@=*)f!%9V#f6yFOuK$v!xepe79u}
z?H2-TDUKM14xs|WMU(|5j41}-q-3}+(k(*HPRBw^d~R{R$^r+y!obvLnlTYsg5WtG
zSlt`{kr3H1HfY%g9rUN%p*yLHV;(`4%Gmwfv0ZuXT075@M-!jA%Q|K!8IZ2j;MNRA
z5erEq|1c8Pj5zbQ{$d>>I}2(R%M+Y%wEWT(43kMA(fbKm@+hRI{s-y$Tw&dodD$f8
z!FAUz4*Zc%Y}9#ZhRs8$FpA<Nb3T$Y)3Sk@&2iTH=%DYb>a_;5U*WV&70IY&{c(~2
zfQbQCFh)kw2ZQ%-Iw{BwK^}ME9%t(@Y+P;vM~+|}<$pjMNBjCd2$1xr%&OouA;QQ1
zZ{EBqC_;WEt`*d{3!MLkN!GuVjdp7OpGv|{1&or&5*J@`q<RQT-yABcv>KQ0OvPQl
zf!`o42$flmn-tjUHGgzbrmGChN58Fy1#vfo^m(u#<8=Nsh`6f3od)M+-Cnu(F1J2*
z>F!^!*2dw;x_@I+Em=(hq}&Mux#1kKZUV*liR%0{+I4C$Ok7^KQFR)yPRkKt<6zs*
zDHN*Np^;VjX*t{3%O}EkD}J{6t2Qi?szXRyn-mUwD#E6j+yw_1^i{<$=Y~?1+EH1F
zPKzqG-<{yQu+0H21>Z%^J0p`FiBFs`{-{#-yyq(zMrA_nDO6yAtycH`US@d@U)4Dn
zN^zmfebGmWUWAu{|DT1uUn*P6O8rKr!(_iEh1)*@2qaDm#towCD-Xa{h=|okjX5$H
z(6l0Lm$=O%2LEW9I@3nXy)G(ZbWcyVY!d@%C3J<slltbJVu&vPI1s=~G-ovRKe3&#
zePz&AFb|8|i#0Jd&5fJ}#M&Qc3|Jb@u;Rg~J8>-%Q#Clh``<HPn|W~j&3}TGs0#wl
z%B*%|88*P>DgjOOl#i);uvQj&?WXOIhM(wp>4Tdo{c=4Y=-2P`Ji_|jPZR-lNNN5(
zr+>64!tvc)tMlF9PQ$$CuO>6sYy#f>jxdlrnacrWJ$50s=yv=yK{$5$*H0O(4B@!`
zpFnEk!u#*Qa983Ps&7K(Fhnj*>O3cURU}xeL&@4Pe@ur7^zx-;Otfxh2fgq2BLr}X
z6V|m@P9ICnkK&RQWgB#)7E2G;BN836h9QBnCk(FopKCdibF#zL^C{0g@X0X@?Il3X
zU()C5Ad@7UqVB+5v6PaMassCjd3uQ;T=)+WU$_fI<&?LvDH2#9xq&y|2zDgtLO;uH
zVD%O>A-XEsf71+tS^ty!0+tb;2S$mL_(~AY$W8iX|9}SyD*cIiUufnY;Q03}z2SPQ
z8^c7f1c)I0zc{wq)k5WG3<`2WmOr15PT0!^#z{Qm<@qBfVb4#83zCm+(n;V67WQt!
z1KFl+^JU=HJqi?u2-OwY{|#pTA`ywrjc*F;8z?=Ct{4>bxQ)uHqL$hyMC+dGlBKq4
zrqOxaTf(EsReL#gf%F9M7Yl^}lWyfH6(oXP3qs%uGOVwxH(s=2<$L;uZ+Ehtz1^78
zpqebO3vmJng{`$G978*%uE-rp!7&LJB{QVP7eT$c*Kv=mMF1k~T5Nh`-)0rBD0frf
z``!nzs`qdG&Z^2jfym_SVQ4UkvBlNidOA<1z5YjDl?jKFmPqj+!?S@(yZZ0W$8FYw
zfUkqC)_U{^vPj<cD0rgI%H6$0xiAWxjD?+B2J|1|;Csbtp0V?58fJQ@{K3KRDgK#*
z|0|a0|0M_ixxB5va5nzGlzt-@XhuI6Wk&+J4fk}L@qeoVmwF|#yplBf{{;sh+w!-w
zBV7|wu*a7{AU4$or#9Ze9^pzfZ`?i@V*mRBhF%BwlYEw3Vp01?S4Tkx&(JC))WJ2I
z-x*l|RInWZ`~H(Un1jGLi2Vw@8rt(WH<fx5iIIbq30AdcFuuXJ&dfi|`J^Z=f{!8m
zah3phnUaUa0Rv;3yW?@RE`8W3N(8n_wj210e$!liVS*S|sbZ?E>5=mYW}ol&6X<hR
za%o@9nDHBH(>~2qxIm-XQGdk~nP)V0P`@<z$46UGDZzg<Ouw#H&q*)&x@L|kS+MUO
z^`#&^&r#Da`fp?ZNjy%0v|qhCm;V8~U`A>wcw^wzB6~ffESCSsm;Cyqd)d9zY_Z_}
zpCsd54zxC3x$00o<WR*GLAFA^YN^asLjAs7I^uH-O?5EtjZcN|>D}0ruJF;iDNGE0
zdiBmJN1|fGQ*G@b>>~3n9?z0$5~Ss9YA?CAzEeukWb^PQajfOC`|mO#<Si5QZUiPm
z)$W;0%Huq!@BFQ$q{nT)1PDzyRVpEP{9)xgbd4gvlt08pn1B1DyPX6XFUA4MPN0cv
zo;u57XUw!hJ$Xx?X}X=;T{pSPude-x3VWz#LaOhi2Gb#}8ac4QL|yIG16PO2cp1ux
z-^+%Zrs|)~8K|3pfZ$5KAJ?LITUqNLg`3^MFz)^$bq;^K0L1x!O)d^@15o?B&mjFf
zKA!Qlq<?5wJr@@GEF%34&CJG45d1PisK#CEee>D%>M>1Y+P1b#-5Me>5!l!;KrkOZ
z%i!U1p^kf%-fOhigf}HiFo8gwNQ}^0>(TJ^rO&Um1wS`SFnwhUN@IJYu}ljE(Wx*^
z&+R*Rpn*Nrk3gNM9o=y}8W6B3Vh|Je@%o5LKtmprj#(kr4?)USRa(Q_!N)hi#}T~e
zY$iUmgHL8~0MT{_??z=M6&xK;c+Vg(LsQnK(%ZiE@hS_lMu?nI1~Lu6k<G--9gw&j
z0h9E}U*s674fd5$K*g8eTmEHJHSFb3JAIDh&r=vqMbX83W<4_Xg;Uj$6P``ywn;L+
zsX@%ISzpPJNj}DA@!3d|NI8n`?&E#Qv1Z`6@zMEs*v?I*w-<eZ%sER{3xYJLj00n7
z>O_Nu^)H~%v8jp1QbQU7KJq*}d8Rw$&a3u`nLc0FHi4mIuh$IlcqiSin?Ba@c0D(}
zZf92cj*DdZ3bGYs&WsjndJOt`y&2D|yxJv&>2j^8HdefI7nX46K>mw#u^o*CJsYdT
zasK_wVkrU>!>2DHjb;5kZw$S#c-HrKG`zz`M)LI?pQx0iPFJRC&>B4pO=t#mGFscV
zf5QlyVB+ZIPk(|EOzeMNimSSlBFjoRr<9^DRC4$Rmo$b2f%eo{Uv}{vpC9<-pV_Le
z?8pK;@{`h(b#7ZN_1CES)>ZF~qG0}s((P6H#utzqlI2yI&zvy25%hw$Qs>@4w@K4f
z%=yt#1T3PDYX)Cjg~?!~K&B}ERj8w?;?e3#GsJtT?sRCSiKh?RhV7TW;`HVNQ5lHE
z+2$bHO;nc9QvI)wLVATTDVV<BlBpuHrt|8L@?xQa_>MY6_m4)9iSNpCOf|?isbD;p
z9ohQQZBKnFt|M29CS_;p)V0TH5#b~)Wy#zt-FmFFrL4*Al+-9WiTitq%twyJEuH-|
z>aUBtPVvW0sC!o3UCQlUe^=scf=)mT*+b6KE-wxNT5P1X0w$)+c48Ag)QvZ#f|x{I
z;vv)<-anv9`El;O^iU!e@;|>M7Mp)_WIGRlaOObeI<bAROm+F#)X+hB&&lRJ>LP$h
z-;r9(KRV^MMS3Ny5q!y2#FLC|-`^?(V);+=G0q%KmIw6@`X>Lc(ylwKsdJ6@y6G)d
z5o-|~XrdqpE=Uo%(6CHWricRsy)r}@mnDXPv<Oy2h9?0;$VDI`Q!a!M5DBeSF`!rt
zqZmdtAfOOr%h25S3#i4mYV9AKKX`afPR{q9_x;XqQAGHB;+y4xzUegs0zkjLoa*gz
z8E$h+e+@zuS$D9t_%IzCYrGutyrnljq)_B2U{kF7Z;^B?0k(^E9XL+yQwpHN#&FTu
z#66=f5WZ%o6HN4+h{FPhL_7MM2i8jdvqrBBhmX-rnCXvP4vL|e6MbNK!py3_Quo|f
zYfzNRWG_M!b27C^N&!k+4jOVOpiOCGzq47Xzxc_M!%;>ZHB4O}M%!+07uaV)u9>1K
zct%w<73U@lSL@x>-+OEqFL1kY9oPh_t+0dmfU60jISGKu>>-Wz4|N?j=9O#Ak4x^M
z$<3!K;&eQ(U2Kwx$S+98B@*!$7Zx3Je+UTs&9a43VsJGn9k$~(s?-h(M}Cx+n|^do
z+xDtHMtT**t2ix{T2UaEMJ!RpY*Lmzn?1mWe&cf!I{H-%+FJ;3oK~Vej4A3Q#Ay0(
zk1}wLwmvQ?g-JQ}jLNeX*-}K5WlX|$;^~3cFTeQqW_(@N!jxJm5H20(_zecCrsrTT
zV*sru7*=zR)8o=?4(+y0-`erQf5E*_q&Bb8RrK`AU-MdQ&SzmzAjrK&-?C~~fyp(M
zmHRCLt!D?g%iUcu|5dsQX;T(!+g;P;LE4Q4`qj5gb?drLmgN~=x|qmybRNxqy5E3M
zmbVuaL;>CI?A;9x?drXk-72bX>Gs%r%w1#oO4?4+=#BG=#Ppk~)Il?|V@Gwbd{n*)
zt~4lc%wl-6e5<aczvam4`i@A`6iHj(hob8T2A<1xtcUlx!XwT*8A_C3zh|emk!fiI
z+REfP4^A9Tx84`>zbwTh<MO9H<;6mg_^Pez*8P3QKn=ew0!6cs(scGo21@M?W{O;E
zc))kEF1=HX&R8Av@P0xv_)a$|loHaKo*(gH6aEscj(zhO<QFHYgNSImW_dIx(#kyP
zhV5g!&_BV|3zwKz6~rL|g)WOH+4@3kGnb;-$9yUihZ0wkUEo?;lD8cVqh*+7DwiJ8
z_>ZXr)Z7Z@gp_qQ0M@znm(e=rPV)^6oFEork%LQ~+1V=|<fD?#3dfuRA!o%*T)mQO
zG^^xZ?@SzGk=8CIV{Va6S4_l9)wo92t5Utn##>Sw+HKvMX3fL%YfZ#qDgjaJS8V>`
z_6Z2W(^`%L`lbMLwW#tgJ1SZiKnL)2(b>7hO;@Sx_`)Eb&(QZ0Z}XQ);8i(@zq_%c
z2$IUQb#yI$X+4l2@lla(HDC|%u7)tFDVW;Bz~&_Oj%A_L4!4TChe#q~JNhAgTl==L
zr!ylC$v~+YI%GL`w==y%^*ogr7wFtOA3g?@$-h7RQH~1y)%z9i$|{XO#48-4JYIL@
z%qkdjgxyE((MruzhfNIEWqGZDZ^U<sE0SI6p)ZoB6PAvy1f_#aJ2Tuat!?)cFUgBR
z<h(Uhb>m)Immvrmh^f~xTOX3LYfq;2p%JGtyUa0$QYXN}Hn)EfvqN_DV|(xUaUb_)
zmu1eT^(p6>_l(H$m{)KvS`3_%5>;dwY)^hURJ=J@HEZ7exXc$ay}xD_iHce>)dT8B
zG;6y%)xAzAw&d(&MIVdM_WY7?Ez`YfB>H9Xe}{KL9N~n@^YLQIi+PRPzlq_c%+ZCr
zm$#hj@?FD#Y+Y4roVa*ANG&I4lq-U`!F!q!K=JSR?s3Nk^3ASp{lEuvRzpmROrj^=
zu=0y^#^Cx9wXWWIl|0;)%4M9a0u_a^@v)YT5Gz;?Yjue7xgh?`p)bc=yoenptCDDR
zH_FzD(xjfU_55yG<-ZZ762{uikIkt{XZX1q2l+Nt5$o*pMQ)(PGQHz%cYxXFped7b
zfV)b!OB{b<Q6mU@CU{i~eO(?lFL@%2nV4;b#k#AKKo$*}6u3?)iieUxU&n=_-`>A~
zvpC;QVuxLDvbTL><|R&QNu|T<H?{hwC5?1klf!Q^DuwNMT$x~bq0oBBL>4atTJ_Sk
zKLdg)t~7Q|1KZ+^ky)#7Zpbx0k^rYi$OoKZN|J--X#`_ZS`3$E%eak5TCOVjaW*I3
znHtyT33c~&MhaYMno}kg(F?@YCLKJe#qTzc4XEraJ)U254CfE}VgK<8kBU&r(VE3c
zwl_Xo=2{d|yU$S}NF79=;hcYK5lODhVV9nL)`NowPGe!LtzJsmkr>F6CC`mcGm4nm
zizz6g;t|8|RCj33&lwurvbwV(Oe1_)yLp7;$m`PcX5d(@AeX23f%f!KH7!5NT2svH
zAL&gQdl+3oes@F)@k12ra5psEqm8|Oq*BJ*DJFix@g0SEzBg)H|B0T>qPJ5oI+t@R
zW_n(1lk-CwrlBtPe0Hv8U%>6CtFn%rO57RA4GInQG0EjtYnue#9t+^cm60>J_cwZ-
zfQ^h3Sq%@mb-1rnxHzneJX)G*hfSN26ZCCdfwbL+Os=o57t_0qULG(c{jF*;jai;p
zS&cIU{~@dk?h-D*TvX#W&Hjg&ASfVo;BWa|<s_6~zBe-J3TM=*x1oM%#GhCr{sg}5
zJy38)VgOPGQF}R3y}83^=k@sc73eMYmQ6djZLECkhgw@hwBIX0$6|8_kw@WG)p=EZ
zy?URXr?Bvi!J+taK<Qz#ot(05yJUV?Vreamej$)IfLGxS8t>7ghh1pPh^7<^1I-&s
z<T*GKk|dc^ejYTQu&nG{7CEk^VK{!UG5$<vaXLI2@M8FubK$uC{l<)~8i}EiD#$xs
zdx>3MQ^>pCx{=VY9hB<Zbo!)&YZLdlyg)oG@L|HJk*1%(+FPRnc<X@ZwkZo{+p~g{
z%JSQrFS8lG9e3feoJ<w?kdA>U544C=iaE4hj@_chZ`LRg&Q?}YSRzJ%5lStFt}xlU
zep`A!*-E`ECH{yjrox$=_K}2TV3%AO+PwJj={u*i7UO&3)?a)?H6{@=)L%=&-#nJr
z=Bil)KWDP^pG}LING6+ypMllifS9lc==uNDPEPWJaE*4h?@a&rxlh1Er#x74*OQr_
zQa03qh?ABY!<!!$Wg_zz#pSScO0-7e>re_zK8<DK(bR30urGK}AmKf+;Am<261>(d
zgW>hZ2sW&of>ohV&hO@@l%;1iELL-XHCe#8U5xdZ2e30_2i(Y8XNFD%RCKN+7jyHY
zDS<TfYUA`Nk9Lr-I5=UJ|B^sKy*D|#8N3V<>Pmchq5|hg4EmG3f4C))Zd1_UnQHa?
zje0TTUrDha$IF2Ee00?SfAuD!1dDBBFk<W*?O&6y=FES=<MrN_A!9SWnBbxM^K25-
zXp8aFX%B`HYZN}{g3~%$Q*lJplO_XZyK-O?l+l)sx3)*`K&L^0(H><u<gGf|Agp1T
zy*HsG>}S#N53lJA51*5eY9lm_5mpd;f3!sRnviGzj~kn$9L5n}fiigvB9n-gKIa+T
z#k0cKUDWGb&{bt@hb;hGF{qF4oIi?B2U|hyD_a4wuqc9sMGycM7O0!ROTqw>Wk4#y
zW7#Fv13dyny3uO9xofHSX{crV_VJuHBSNuG=|EvkPp%2WWlu@{M}M{2lLbOl6*M=H
zGW^50&T!YIQ4rgw@urg-j@Sblo@zX@a~h-(M$%?1#EQV~3Iy4!=7q3g1UE`IAJW-z
zPs)rbK~LJ0+6I(4C)WThptWjlUX>sPE6sflu@%1;g`@K+6zu)_!8K1`bT0nK!OvkA
zSTPY|3_=W+<+?8tr3wn0yF63b=1J$Gb%&4qG=5|Fa8E;a^>`Cqe7MEp1OUEM3UBDp
zS19E0ll52Sc0362AXHv+XxDnWCH0X*n$5Qr%W04DTq^Q;I3Ljz&J7>rLJtuO`<!#h
zV=Z`aMe6l&NbPs^9KJe-r2?KShi!*s#3lGj>yYvuX`IgcRp9eT+TZi8j_eZFL>cod
zUW^Fn*48VM6p8#65w_H+MkO_erTzJrytNP61`o+s6nicBw;&2dhHry0MZ;zv1T)J)
zoknwlkn(%l5~AEBKzLst_;eTQeRXA=c9cmv@M2P$R5|SWY=Daqvis@>*EJ#8HCV^~
VtRiCt{12v2NXF(ymx=pB{|_@>rH%jq

diff --git a/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md b/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md
index b9bf7dd558..5965974382 100644
--- a/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md
+++ b/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md
@@ -1345,6 +1345,12 @@ For details about Microsoft mobile device management protocols for Windows 10 s
 <li>OS/Mode</li>
 </ul>
 </td></tr>
+<tr>
+<td style="vertical-align:top">[RootCATrustedCertificates CSP](rootcacertificates-csp.md)</td>
+<td style="vertical-align:top"><p>Added the following node in Windows 10, version 1803:</p>
+<ul>
+<li>UntrustedCertificates</li>
+</ul>
 </td></tr>
 </tbody>
 </table>
@@ -1651,6 +1657,13 @@ The DM agent for [push-button reset](https://msdn.microsoft.com/windows/hardware
 </ul>
 </td></tr>
 <tr>
+<td style="vertical-align:top">[RootCATrustedCertificates CSP](rootcacertificates-csp.md)</td>
+<td style="vertical-align:top"><p>Added the following node in Windows 10, version 1803:</p>
+<ul>
+<li>UntrustedCertificates</li>
+</ul>
+</td></tr>
+<tr>
 <td style="vertical-align:top">[Policy CSP](policy-configuration-service-provider.md)</td>
 <td style="vertical-align:top"><p>Added the following new policies for Windows 10, version 1803:</p>
 <ul>
diff --git a/windows/client-management/mdm/rootcacertificates-csp.md b/windows/client-management/mdm/rootcacertificates-csp.md
index 8f5c11db9d..b7fa5a8362 100644
--- a/windows/client-management/mdm/rootcacertificates-csp.md
+++ b/windows/client-management/mdm/rootcacertificates-csp.md
@@ -7,11 +7,14 @@ ms.topic: article
 ms.prod: w10
 ms.technology: windows
 author: nickbrower
-ms.date: 06/26/2017
+ms.date: 03/06/2018
 ---
 
 # RootCATrustedCertificates CSP
 
+> [!WARNING]
+> Some information relates to prereleased product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
+
 The RootCATrustedCertificates configuration service provider enables the enterprise to set the Root Certificate Authority (CA) certificates.
 
 > [!Note]
@@ -44,6 +47,9 @@ Node for trusted publisher certificates.
 <a href="" id="rootcatrustedcertificates-trustedpeople"></a>**RootCATrustedCertificates/TrustedPeople**  
 Node for trusted people certificates.
 
+<a href="" id="rootcatrustedcertificates-untrustedcertificates"></a>**RootCATrustedCertificates/UntrustedCertificates**  
+Addeded in Windows 10, version 1803. Node for certificates that are not trusted. IT admin can use this node to immediately flag certificates that have been compromised and no longer usable.
+
 <a href="" id="certhash"></a>**_CertHash_**  
 Defines the SHA1 hash for the certificate. The 20-byte value of the SHA1 certificate hash is specified as a hexadecimal string value.
 
diff --git a/windows/client-management/mdm/rootcacertificates-ddf-file.md b/windows/client-management/mdm/rootcacertificates-ddf-file.md
index 6e6492a240..03c352d150 100644
--- a/windows/client-management/mdm/rootcacertificates-ddf-file.md
+++ b/windows/client-management/mdm/rootcacertificates-ddf-file.md
@@ -7,17 +7,19 @@ ms.topic: article
 ms.prod: w10
 ms.technology: windows
 author: nickbrower
-ms.date: 12/05/2017
+ms.date: 03/07/2018
 ---
 
 # RootCATrustedCertificates DDF file
 
+> [!WARNING]
+> Some information relates to prereleased product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
 
 This topic shows the OMA DM device description framework (DDF) for the **RootCACertificates** configuration service provider. DDF files are used only with OMA DM provisioning XML.
 
 Looking for the DDF XML files? See [CSP DDF files download](configuration-service-provider-reference.md#csp-ddf-files-download).
 
-The XML below is the current version for this CSP.
+The XML below is for Windows 10, version 1803.
 
 ``` syntax
 <?xml version="1.0" encoding="UTF-8"?>
@@ -28,7 +30,7 @@ The XML below is the current version for this CSP.
   <VerDTD>1.2</VerDTD>
       <Node>
         <NodeName>RootCATrustedCertificates</NodeName>
-        <Path>./Vendor/MSFT</Path>
+        <Path>./User/Vendor/MSFT</Path>
         <DFProperties>
           <AccessType>
             <Get />
@@ -43,7 +45,7 @@ The XML below is the current version for this CSP.
             <Permanent />
           </Scope>
           <DFType>
-            <DDFName></DDFName>
+            <MIME>com.microsoft/1.1/MDM/RootCATrustedCertificates</MIME>
           </DFType>
         </DFProperties>
         <Node>
@@ -74,8 +76,6 @@ The XML below is the current version for this CSP.
               <AccessType>
                 <Delete />
                 <Get />
-                <Add />
-                <Replace />
               </AccessType>
               <Description>Defines the SHA1 hash for the certificate. The 20-byte value of the SHA1 certificate hash is specified as a hexadecimal string value</Description>
               <DFFormat>
@@ -100,12 +100,12 @@ The XML below is the current version for this CSP.
               <DFProperties>
                 <AccessType>
                   <Add />
-                  <Replace />
                   <Get />
+                  <Replace />
                 </AccessType>
                 <Description>Specifies the X.509 certificate as a Base64-encoded string. The Base-64 string value cannot include extra formatting characters such as embedded linefeeds, etc.</Description>
                 <DFFormat>
-                  <chr />
+                  <b64 />
                 </DFFormat>
                 <Occurrence>
                   <One />
@@ -117,7 +117,7 @@ The XML below is the current version for this CSP.
                   <CIS />
                 </CaseSense>
                 <DFType>
-                  <MIME>text/plain</MIME>
+                  <DDFName></DDFName>
                 </DFType>
               </DFProperties>
             </Node>
@@ -271,8 +271,6 @@ The XML below is the current version for this CSP.
               <AccessType>
                 <Delete />
                 <Get />
-                <Add />
-                <Replace />
               </AccessType>
               <Description>Defines the SHA1 hash for the certificate. The 20-byte value of the SHA1 certificate hash is specified as a hexadecimal string value</Description>
               <DFFormat>
@@ -297,12 +295,12 @@ The XML below is the current version for this CSP.
               <DFProperties>
                 <AccessType>
                   <Add />
-                  <Replace />
                   <Get />
+                  <Replace />
                 </AccessType>
                 <Description>Specifies the X.509 certificate as a Base64-encoded string. The Base-64 string value cannot include extra formatting characters such as embedded linefeeds, etc.</Description>
                 <DFFormat>
-                  <chr />
+                  <b64 />
                 </DFFormat>
                 <Occurrence>
                   <One />
@@ -311,7 +309,7 @@ The XML below is the current version for this CSP.
                   <Dynamic />
                 </Scope>
                 <DFType>
-                  <MIME>text/plain</MIME>
+                  <DDFName></DDFName>
                 </DFType>
               </DFProperties>
             </Node>
@@ -363,7 +361,7 @@ The XML below is the current version for this CSP.
                 <AccessType>
                   <Get />
                 </AccessType>
-                <Description>Returns the starting date of the certificate's validity. This is equivalent to the NotBefore member in the CERT_INFO structure.</Description>
+                <Description>Returns the starting date of the certificate's validity. Supported operation is Get. This is equivalent to the NotBefore member in the CERT_INFO structure.</Description>
                 <DFFormat>
                   <chr />
                 </DFFormat>
@@ -384,7 +382,7 @@ The XML below is the current version for this CSP.
                 <AccessType>
                   <Get />
                 </AccessType>
-                <Description>Returns the expiration date of the certificate. This is equivalent to the NotAfter member in the CERT_INFO structure</Description>
+                <Description>Returns the expiration date of the certificate. Supported operation is Get. This is equivalent to the NotAfter member in the CERT_INFO structure</Description>
                 <DFFormat>
                   <chr />
                 </DFFormat>
@@ -405,7 +403,7 @@ The XML below is the current version for this CSP.
                 <AccessType>
                   <Get />
                 </AccessType>
-                <Description>Returns the certificate template name. </Description>
+                <Description>Returns the certificate template name. Supported operation is Get.</Description>
                 <DFFormat>
                   <chr />
                 </DFFormat>
@@ -450,8 +448,6 @@ The XML below is the current version for this CSP.
               <AccessType>
                 <Delete />
                 <Get />
-                <Add />
-                <Replace />
               </AccessType>
               <Description>Defines the SHA1 hash for the certificate. The 20-byte value of the SHA1 certificate hash is specified as a hexadecimal string value</Description>
               <DFFormat>
@@ -476,12 +472,12 @@ The XML below is the current version for this CSP.
               <DFProperties>
                 <AccessType>
                   <Add />
-                  <Replace />
                   <Get />
+                  <Replace />
                 </AccessType>
                 <Description>Specifies the X.509 certificate as a Base64-encoded string. The Base-64 string value cannot include extra formatting characters such as embedded linefeeds, etc.</Description>
                 <DFFormat>
-                  <chr />
+                  <b64 />
                 </DFFormat>
                 <Occurrence>
                   <One />
@@ -493,7 +489,7 @@ The XML below is the current version for this CSP.
                   <CIS />
                 </CaseSense>
                 <DFType>
-                  <MIME>text/plain</MIME>
+                  <DDFName></DDFName>
                 </DFType>
               </DFProperties>
             </Node>
@@ -551,7 +547,7 @@ The XML below is the current version for this CSP.
                 <AccessType>
                   <Get />
                 </AccessType>
-                <Description>Returns the starting date of the certificate's validity. This is equivalent to the NotBefore member in the CERT_INFO structure.</Description>
+                <Description>Returns the starting date of the certificate's validity. Supported operation is Get. This is equivalent to the NotBefore member in the CERT_INFO structure.</Description>
                 <DFFormat>
                   <chr />
                 </DFFormat>
@@ -575,7 +571,7 @@ The XML below is the current version for this CSP.
                 <AccessType>
                   <Get />
                 </AccessType>
-                <Description>Returns the expiration date of the certificate. This is equivalent to the NotAfter member in the CERT_INFO structure</Description>
+                <Description>Returns the expiration date of the certificate. Supported operation is Get. This is equivalent to the NotAfter member in the CERT_INFO structure</Description>
                 <DFFormat>
                   <chr />
                 </DFFormat>
@@ -599,7 +595,7 @@ The XML below is the current version for this CSP.
                 <AccessType>
                   <Get />
                 </AccessType>
-                <Description>Returns the certificate template name. </Description>
+                <Description>Returns the certificate template name. Supported operation is Get.</Description>
                 <DFFormat>
                   <chr />
                 </DFFormat>
@@ -647,8 +643,6 @@ The XML below is the current version for this CSP.
               <AccessType>
                 <Delete />
                 <Get />
-                <Add />
-                <Replace />
               </AccessType>
               <Description>Defines the SHA1 hash for the certificate. The 20-byte value of the SHA1 certificate hash is specified as a hexadecimal string value</Description>
               <DFFormat>
@@ -673,12 +667,12 @@ The XML below is the current version for this CSP.
               <DFProperties>
                 <AccessType>
                   <Add />
-                  <Replace />
                   <Get />
+                  <Replace />
                 </AccessType>
                 <Description>Specifies the X.509 certificate as a Base64-encoded string. The Base-64 string value cannot include extra formatting characters such as embedded linefeeds, etc.</Description>
                 <DFFormat>
-                  <chr />
+                  <b64 />
                 </DFFormat>
                 <Occurrence>
                   <One />
@@ -690,7 +684,7 @@ The XML below is the current version for this CSP.
                   <CIS />
                 </CaseSense>
                 <DFType>
-                  <MIME>text/plain</MIME>
+                  <DDFName></DDFName>
                 </DFType>
               </DFProperties>
             </Node>
@@ -748,7 +742,7 @@ The XML below is the current version for this CSP.
                 <AccessType>
                   <Get />
                 </AccessType>
-                <Description>Returns the starting date of the certificate's validity. This is equivalent to the NotBefore member in the CERT_INFO structure.</Description>
+                <Description>Returns the starting date of the certificate's validity. Supported operation is Get. This is equivalent to the NotBefore member in the CERT_INFO structure.</Description>
                 <DFFormat>
                   <chr />
                 </DFFormat>
@@ -772,7 +766,7 @@ The XML below is the current version for this CSP.
                 <AccessType>
                   <Get />
                 </AccessType>
-                <Description>Returns the expiration date of the certificate. This is equivalent to the NotAfter member in the CERT_INFO structure</Description>
+                <Description>Returns the expiration date of the certificate. Supported operation is Get. This is equivalent to the NotAfter member in the CERT_INFO structure</Description>
                 <DFFormat>
                   <chr />
                 </DFFormat>
@@ -796,7 +790,1180 @@ The XML below is the current version for this CSP.
                 <AccessType>
                   <Get />
                 </AccessType>
-                <Description>Returns the certificate template name. </Description>
+                <Description>Returns the certificate template name. Supported operation is Get.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+          </Node>
+        </Node>
+        <Node>
+          <NodeName>UntrustedCertificates</NodeName>
+          <DFProperties>
+            <AccessType>
+              <Get />
+            </AccessType>
+            <DFFormat>
+              <node />
+            </DFFormat>
+            <Occurrence>
+              <One />
+            </Occurrence>
+            <Scope>
+              <Permanent />
+            </Scope>
+            <CaseSense>
+              <CIS />
+            </CaseSense>
+            <DFType>
+              <DDFName></DDFName>
+            </DFType>
+          </DFProperties>
+          <Node>
+            <NodeName></NodeName>
+            <DFProperties>
+              <AccessType>
+                <Get />
+                <Delete />
+              </AccessType>
+              <Description>Defines the SHA1 hash for the certificate. The 20-byte value of the SHA1 certificate hash is specified as a hexadecimal string value</Description>
+              <DFFormat>
+                <node />
+              </DFFormat>
+              <Occurrence>
+                <ZeroOrMore />
+              </Occurrence>
+              <Scope>
+                <Dynamic />
+              </Scope>
+              <CaseSense>
+                <CIS />
+              </CaseSense>
+              <DFTitle>CertHash</DFTitle>
+              <DFType>
+                <DDFName></DDFName>
+              </DFType>
+            </DFProperties>
+            <Node>
+              <NodeName>EncodedCertificate</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                  <Add />
+                  <Replace />
+                </AccessType>
+                <Description>Specifies the X.509 certificate as a Base64-encoded string. The Base-64 string value cannot include extra formatting characters such as embedded linefeeds, etc.</Description>
+                <DFFormat>
+                  <b64 />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <DDFName></DDFName>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>IssuedBy</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the name of the certificate issuer.  This is equivalent to the Issuer member in the CERT_INFO data structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>IssuedTo</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the name of the certificate subject. This is equivalent to the Subject member in the CERT_INFO data structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>ValidFrom</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the starting date of the certificate's validity. Supported operation is Get. This is equivalent to the NotBefore member in the CERT_INFO structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>ValidTo</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the expiration date of the certificate. Supported operation is Get. This is equivalent to the NotAfter member in the CERT_INFO structure</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>TemplateName</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the certificate template name. Supported operation is Get.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+          </Node>
+        </Node>
+      </Node>
+      <Node>
+        <NodeName>RootCATrustedCertificates</NodeName>
+        <Path>./Device/Vendor/MSFT</Path>
+        <DFProperties>
+          <AccessType>
+            <Get />
+          </AccessType>
+          <DFFormat>
+            <node />
+          </DFFormat>
+          <Occurrence>
+            <One />
+          </Occurrence>
+          <Scope>
+            <Permanent />
+          </Scope>
+          <DFType>
+            <MIME>com.microsoft/1.1/MDM/RootCATrustedCertificates</MIME>
+          </DFType>
+        </DFProperties>
+        <Node>
+          <NodeName>Root</NodeName>
+          <DFProperties>
+            <AccessType>
+              <Get />
+            </AccessType>
+            <DFFormat>
+              <node />
+            </DFFormat>
+            <Occurrence>
+              <One />
+            </Occurrence>
+            <Scope>
+              <Permanent />
+            </Scope>
+            <CaseSense>
+              <CIS />
+            </CaseSense>
+            <DFType>
+              <DDFName></DDFName>
+            </DFType>
+          </DFProperties>
+          <Node>
+            <NodeName></NodeName>
+            <DFProperties>
+              <AccessType>
+                <Delete />
+                <Get />
+              </AccessType>
+              <Description>Defines the SHA1 hash for the certificate. The 20-byte value of the SHA1 certificate hash is specified as a hexadecimal string value</Description>
+              <DFFormat>
+                <node />
+              </DFFormat>
+              <Occurrence>
+                <ZeroOrMore />
+              </Occurrence>
+              <Scope>
+                <Dynamic />
+              </Scope>
+              <CaseSense>
+                <CIS />
+              </CaseSense>
+              <DFTitle>CertHash</DFTitle>
+              <DFType>
+                <DDFName></DDFName>
+              </DFType>
+            </DFProperties>
+            <Node>
+              <NodeName>EncodedCertificate</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Add />
+                  <Get />
+                  <Replace />
+                </AccessType>
+                <Description>Specifies the X.509 certificate as a Base64-encoded string. The Base-64 string value cannot include extra formatting characters such as embedded linefeeds, etc.</Description>
+                <DFFormat>
+                  <b64 />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <DDFName></DDFName>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>IssuedBy</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the name of the certificate issuer.  This is equivalent to the Issuer member in the CERT_INFO data structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>IssuedTo</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the name of the certificate subject. This is equivalent to the Subject member in the CERT_INFO data structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>ValidFrom</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the starting date of the certificate's validity. Supported operation is Get. This is equivalent to the NotBefore member in the CERT_INFO structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>ValidTo</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the expiration date of the certificate. Supported operation is Get. This is equivalent to the NotAfter member in the CERT_INFO structure</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>TemplateName</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the certificate template name. Supported operation is Get.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+          </Node>
+        </Node>
+        <Node>
+          <NodeName>CA</NodeName>
+          <DFProperties>
+            <AccessType>
+              <Get />
+            </AccessType>
+            <DFFormat>
+              <node />
+            </DFFormat>
+            <Occurrence>
+              <One />
+            </Occurrence>
+            <Scope>
+              <Permanent />
+            </Scope>
+            <CaseSense>
+              <CIS />
+            </CaseSense>
+            <DFType>
+              <DDFName></DDFName>
+            </DFType>
+          </DFProperties>
+          <Node>
+            <NodeName></NodeName>
+            <DFProperties>
+              <AccessType>
+                <Delete />
+                <Get />
+              </AccessType>
+              <Description>Defines the SHA1 hash for the certificate. The 20-byte value of the SHA1 certificate hash is specified as a hexadecimal string value</Description>
+              <DFFormat>
+                <node />
+              </DFFormat>
+              <Occurrence>
+                <ZeroOrMore />
+              </Occurrence>
+              <Scope>
+                <Dynamic />
+              </Scope>
+              <CaseSense>
+                <CIS />
+              </CaseSense>
+              <DFTitle>CertHash</DFTitle>
+              <DFType>
+                <DDFName></DDFName>
+              </DFType>
+            </DFProperties>
+            <Node>
+              <NodeName>EncodedCertificate</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Add />
+                  <Get />
+                  <Replace />
+                </AccessType>
+                <Description>Specifies the X.509 certificate as a Base64-encoded string. The Base-64 string value cannot include extra formatting characters such as embedded linefeeds, etc.</Description>
+                <DFFormat>
+                  <b64 />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <DFType>
+                  <DDFName></DDFName>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>IssuedBy</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the name of the certificate issuer.  This is equivalent to the Issuer member in the CERT_INFO data structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>IssuedTo</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the name of the certificate subject. This is equivalent to the Subject member in the CERT_INFO data structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>ValidFrom</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the starting date of the certificate's validity. Supported operation is Get. This is equivalent to the NotBefore member in the CERT_INFO structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>ValidTo</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the expiration date of the certificate. Supported operation is Get. This is equivalent to the NotAfter member in the CERT_INFO structure</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>TemplateName</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the certificate template name. Supported operation is Get.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+          </Node>
+        </Node>
+        <Node>
+          <NodeName>TrustedPublisher</NodeName>
+          <DFProperties>
+            <AccessType>
+              <Get />
+            </AccessType>
+            <DFFormat>
+              <node />
+            </DFFormat>
+            <Occurrence>
+              <One />
+            </Occurrence>
+            <Scope>
+              <Permanent />
+            </Scope>
+            <CaseSense>
+              <CIS />
+            </CaseSense>
+            <DFType>
+              <DDFName></DDFName>
+            </DFType>
+          </DFProperties>
+          <Node>
+            <NodeName></NodeName>
+            <DFProperties>
+              <AccessType>
+                <Delete />
+                <Get />
+              </AccessType>
+              <Description>Defines the SHA1 hash for the certificate. The 20-byte value of the SHA1 certificate hash is specified as a hexadecimal string value</Description>
+              <DFFormat>
+                <node />
+              </DFFormat>
+              <Occurrence>
+                <ZeroOrMore />
+              </Occurrence>
+              <Scope>
+                <Dynamic />
+              </Scope>
+              <CaseSense>
+                <CIS />
+              </CaseSense>
+              <DFTitle>CertHash</DFTitle>
+              <DFType>
+                <DDFName></DDFName>
+              </DFType>
+            </DFProperties>
+            <Node>
+              <NodeName>EncodedCertificate</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Add />
+                  <Get />
+                  <Replace />
+                </AccessType>
+                <Description>Specifies the X.509 certificate as a Base64-encoded string. The Base-64 string value cannot include extra formatting characters such as embedded linefeeds, etc.</Description>
+                <DFFormat>
+                  <b64 />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <DDFName></DDFName>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>IssuedBy</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the name of the certificate issuer.  This is equivalent to the Issuer member in the CERT_INFO data structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>IssuedTo</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the name of the certificate subject. This is equivalent to the Subject member in the CERT_INFO data structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>ValidFrom</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the starting date of the certificate's validity. Supported operation is Get. This is equivalent to the NotBefore member in the CERT_INFO structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>ValidTo</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the expiration date of the certificate. Supported operation is Get. This is equivalent to the NotAfter member in the CERT_INFO structure</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>TemplateName</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the certificate template name. Supported operation is Get.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+          </Node>
+        </Node>
+        <Node>
+          <NodeName>TrustedPeople</NodeName>
+          <DFProperties>
+            <AccessType>
+              <Get />
+            </AccessType>
+            <DFFormat>
+              <node />
+            </DFFormat>
+            <Occurrence>
+              <One />
+            </Occurrence>
+            <Scope>
+              <Permanent />
+            </Scope>
+            <CaseSense>
+              <CIS />
+            </CaseSense>
+            <DFType>
+              <DDFName></DDFName>
+            </DFType>
+          </DFProperties>
+          <Node>
+            <NodeName></NodeName>
+            <DFProperties>
+              <AccessType>
+                <Delete />
+                <Get />
+              </AccessType>
+              <Description>Defines the SHA1 hash for the certificate. The 20-byte value of the SHA1 certificate hash is specified as a hexadecimal string value</Description>
+              <DFFormat>
+                <node />
+              </DFFormat>
+              <Occurrence>
+                <ZeroOrMore />
+              </Occurrence>
+              <Scope>
+                <Dynamic />
+              </Scope>
+              <CaseSense>
+                <CIS />
+              </CaseSense>
+              <DFTitle>CertHash</DFTitle>
+              <DFType>
+                <DDFName></DDFName>
+              </DFType>
+            </DFProperties>
+            <Node>
+              <NodeName>EncodedCertificate</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Add />
+                  <Get />
+                  <Replace />
+                </AccessType>
+                <Description>Specifies the X.509 certificate as a Base64-encoded string. The Base-64 string value cannot include extra formatting characters such as embedded linefeeds, etc.</Description>
+                <DFFormat>
+                  <b64 />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <DDFName></DDFName>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>IssuedBy</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the name of the certificate issuer.  This is equivalent to the Issuer member in the CERT_INFO data structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>IssuedTo</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the name of the certificate subject. This is equivalent to the Subject member in the CERT_INFO data structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>ValidFrom</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the starting date of the certificate's validity. Supported operation is Get. This is equivalent to the NotBefore member in the CERT_INFO structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>ValidTo</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the expiration date of the certificate. Supported operation is Get. This is equivalent to the NotAfter member in the CERT_INFO structure</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>TemplateName</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the certificate template name. Supported operation is Get.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+          </Node>
+        </Node>
+        <Node>
+          <NodeName>UntrustedCertificates</NodeName>
+          <DFProperties>
+            <AccessType>
+              <Get />
+            </AccessType>
+            <DFFormat>
+              <node />
+            </DFFormat>
+            <Occurrence>
+              <One />
+            </Occurrence>
+            <Scope>
+              <Permanent />
+            </Scope>
+            <CaseSense>
+              <CIS />
+            </CaseSense>
+            <DFType>
+              <DDFName></DDFName>
+            </DFType>
+          </DFProperties>
+          <Node>
+            <NodeName></NodeName>
+            <DFProperties>
+              <AccessType>
+                <Get />
+                <Delete />
+              </AccessType>
+              <Description>Defines the SHA1 hash for the certificate. The 20-byte value of the SHA1 certificate hash is specified as a hexadecimal string value</Description>
+              <DFFormat>
+                <node />
+              </DFFormat>
+              <Occurrence>
+                <ZeroOrMore />
+              </Occurrence>
+              <Scope>
+                <Dynamic />
+              </Scope>
+              <CaseSense>
+                <CIS />
+              </CaseSense>
+              <DFTitle>CertHash</DFTitle>
+              <DFType>
+                <DDFName></DDFName>
+              </DFType>
+            </DFProperties>
+            <Node>
+              <NodeName>EncodedCertificate</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                  <Add />
+                  <Replace />
+                </AccessType>
+                <Description>Specifies the X.509 certificate as a Base64-encoded string. The Base-64 string value cannot include extra formatting characters such as embedded linefeeds, etc.</Description>
+                <DFFormat>
+                  <b64 />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <DDFName></DDFName>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>IssuedBy</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the name of the certificate issuer.  This is equivalent to the Issuer member in the CERT_INFO data structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>IssuedTo</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the name of the certificate subject. This is equivalent to the Subject member in the CERT_INFO data structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>ValidFrom</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the starting date of the certificate's validity. Supported operation is Get. This is equivalent to the NotBefore member in the CERT_INFO structure.</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>ValidTo</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the expiration date of the certificate. Supported operation is Get. This is equivalent to the NotAfter member in the CERT_INFO structure</Description>
+                <DFFormat>
+                  <chr />
+                </DFFormat>
+                <Occurrence>
+                  <One />
+                </Occurrence>
+                <Scope>
+                  <Dynamic />
+                </Scope>
+                <CaseSense>
+                  <CIS />
+                </CaseSense>
+                <DFType>
+                  <MIME>text/plain</MIME>
+                </DFType>
+              </DFProperties>
+            </Node>
+            <Node>
+              <NodeName>TemplateName</NodeName>
+              <DFProperties>
+                <AccessType>
+                  <Get />
+                </AccessType>
+                <Description>Returns the certificate template name. Supported operation is Get.</Description>
                 <DFFormat>
                   <chr />
                 </DFFormat>
@@ -818,14 +1985,4 @@ The XML below is the current version for this CSP.
         </Node>
       </Node>
 </MgmtTree>
-```
-
- 
-
- 
-
-
-
-
-
-
+```
\ No newline at end of file

From 8d372a5586f6b6ff8440e849750bf0b57cf9749e Mon Sep 17 00:00:00 2001
From: Jeanie Decker <jdecker@microsoft.com>
Date: Wed, 21 Mar 2018 14:42:03 +0000
Subject: [PATCH 5/5] Merged PR 6523: New topic for MPSA

This topic is intentionally not added to the TOC at this time
---
 ...a-software-microsoft-store-for-business.md | 59 +++++++++++++++++++
 1 file changed, 59 insertions(+)
 create mode 100644 store-for-business/manage-mpsa-software-microsoft-store-for-business.md

diff --git a/store-for-business/manage-mpsa-software-microsoft-store-for-business.md b/store-for-business/manage-mpsa-software-microsoft-store-for-business.md
new file mode 100644
index 0000000000..970b3c783f
--- /dev/null
+++ b/store-for-business/manage-mpsa-software-microsoft-store-for-business.md
@@ -0,0 +1,59 @@
+---
+title: Manage software purchased with Microsoft Products and Services agreement in Microsoft Store for Business
+description: Software purchased under Microsoft Products and Services Agreement (MPSA) can be managed in Microsoft Store for Business
+ms.prod: w10
+ms.mktglfcycl: manage
+ms.sitesec: library
+ms.pagetype: store
+author: TrudyHa
+ms.localizationpriority: high
+ms.date: 3/20/2018
+---
+
+# Manage software purchased with Microsoft Products and Services agreement in Microsoft Store for Business
+
+**Applies to**
+
+-   Windows 10
+-   Windows 10 Mobile
+
+Software purchased with the Microsoft Products and Services Agreement (MPSA) can now be managed in Microsoft Store for Business. This allows customers to manage online software purchases in one location. 
+
+There are a couple of things you might need to set up to manage MPSA software purchases in Store for Business. 
+
+**To manage MPSA software in Microsoft Store for Business** 
+1. Sign in to the [Microsoft Store for Business](http://businessstore.microsoft.com).
+2. Click **Manage**, and then click **My Organization**.
+3. Click **Connected tenants** to see purchasing accounts and the tenants that they are connected to. 
+
+## Add tenant
+The tenant or tenants that are added to your purchasing account control how you can distribute software to people in your organization. If there isn't a tenant listed for your purchasing account, you'll need to add one before you can use or manage the software you've purchased. When we give you a list to choose from, tenants are grouped by domain. 
+
+**To add a tenant to a purchasing account**  
+1. Sign in to the [Microsoft Store for Business](http://businessstore.microsoft.com).
+2. Click **Manage**, and then click **My Organization**.
+3. Click **Connected tenants**, and then click the ellipses for a purchasing account without a tenant listed.
+4. Click **Choose a tenant**, and then click **Submit**. 
+
+If you don't see your tenant in the list, you can add the name of your tenant
+
+**To add the name of your tenant**
+1. On **Add a tenant**, click **Don't see your tenant?**.
+2. Enter a domain name, and then click **Next**, and then click **Done**.
+
+You'll need to get permissions for the admin that manages the domain you want to add. We'll take you to Business Center Portal where you can manage permissions and roles. The admin will need to be the **Account Manager**.  
+
+## Add global admin
+In some cases, we might not have info on who the global admin is for the tenant that you select. It might be that the tenant is unmanaged, and you'll need to identify a global admin. Or, you might only need to share account info for the global admin.
+
+If you need to nominate someone to be the global admin, they need sufficient permissions:
+- someone who can distribute sofware
+- in Business Center Portal (BCP), it should be someone with **Agreement Admin** role  
+
+**To add a global admin to a tenant**
+
+We'll ask for a global admin if we need that info when you add a tenant to a purchasing account. You'd see the request for a global admin before returning to **Store for Business**. 
+
+-  On **Add a Global Admin**, click **Make me the Global Admin**, and then click **Submit**.
+-or-
+-  On **Add a Global Admin**, type a name in **Invite someone else**, and then click **Submit**.    
\ No newline at end of file